Se connecter / S'enregistrer
Votre question

Mon ordi rame [Résolu]

Tags :
  • Windows
  • Sécurité
Dernière réponse : dans Sécurité et virus
24 Septembre 2009 21:04:39

bonjour,
depuis quelques jours mon ordi rame
j'ai beaucoup de difficultés à surfer sur internet
j'ai fait un scan hijackthis
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:02:25, on 24/09/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Documents and Settings\pc1\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
C:\Program Files\Labtec\Keyboard\V5.1\kbdap32a.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\WINDOWS\system32\cisvc.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE
C:\WINDOWS\System32\tcpsvcs.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\pc1\Local Settings\Temporary Internet Files\Content.IE5\I1QWEZY4\HiJackThis[1].exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.ke.voila.fr/S/voila?kw=
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://r.orange.fr/r/Ohome_accueil?ref=O_toolbar32_hook...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fourni par Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {AEEC3B59-CA98-4EBA-A140-57B94E283583} - (no file)
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll (file missing)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: iGraal - {88F05591-0079-4c37-B138-5DA8BC1782EF} - C:\Program Files\iGraal\iGraal.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: iGraal - {88F05591-0079-4c37-B138-5DA8BC1782EF} - C:\Program Files\iGraal\iGraal.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: barre d'outils Orange - {D3028143-6145-4318-99D3-3EDCE54A95A9} - C:\Program Files\Orange\ToolbarFR\ToolbarContainer101000313.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SoftwareHelper] C:\Documents and Settings\pc1\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
O4 - HKLM\..\Run: [OFFICEKB] C:\Program Files\Labtec\Keyboard\V5.1\kbdap32a.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - S-1-5-18 Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe (User 'SYSTEM')
O4 - S-1-5-18 Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe (User 'SYSTEM')
O4 - S-1-5-18 Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe (User 'SYSTEM')
O4 - S-1-5-18 Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe (User 'SYSTEM')
O4 - S-1-5-18 Startup: Yahoo! Widgets.lnk = C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe (User 'Default user')
O4 - .DEFAULT Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe (User 'Default user')
O4 - .DEFAULT Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe (User 'Default user')
O4 - .DEFAULT Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe (User 'Default user')
O4 - .DEFAULT Startup: Yahoo! Widgets.lnk = C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe (User 'Default user')
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
O4 - Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
O4 - Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
O4 - Startup: Yahoo! Widgets.lnk = C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: ajouter cette page à vos favoris Orange - C:\DOCUME~1\pc1\LOCALS~1\Temp\cce165.html
O8 - Extra context menu item: traduire la page - C:\DOCUME~1\pc1\LOCALS~1\Temp\cce163.html
O8 - Extra context menu item: traduire le texte sélectionné - C:\DOCUME~1\pc1\LOCALS~1\Temp\cce164.html
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: iGraal - {88F05591-0079-4c37-B138-5DA8BC1782EF} - C:\Program Files\iGraal\iGraal.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O15 - Trusted Zone: http://logicielsgratuits.orange.fr
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/F...
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986....
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {4A85DBE0-BFB2-4119-8401-186A7C6EB653} - http://messenger.zone.msn.com/binary/MJSS.cab69309.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {5A779DC0-837B-4590-AC42-C7C0847478C5} (OrangeInstaller_ModuleIE Control) - http://logicielsgratuits.orange.fr/download_service/Ins...
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/maconfig/MaConfig_3_...
O16 - DPF: {B7D07999-2ADB-4AEB-997E-F61CB7B2E2CD} (TSEasyInstallX Control) - http://www.trendsecure.com/easy_install/_activex/fr/TSE...
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.ca...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697516} (NsvPlayX Control) - http://www.nullsoft.com/nsv/embed/nsvplayx_vp6_mp3.cab
O20 - AppInit_DLLs: nazqva.dll
O20 - Winlogon Notify: jkkHYqnN - jkkHYqnN.dll (file missing)
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: InCD Helper (read only) (InCDsrvR) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\logishrd\Bluetooth\LBTServ.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Unknown owner - C:\Program Files\Inventel\Gateway\wlancfg.exe (file missing)

--
End of file - 12602 bytes

merci de m'aider

Autres pages sur : ordi rame resolu

a c 267 8 Sécurité
a b 9 Windows
24 Septembre 2009 21:18:24

Bonjour,

Je vois des infections.

  • Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.
  • Double-clique sur RSIT.exe afin de lancer le programme.
    (Sous Vista, il faut cliquer droit sur RSIT.exe et choisir Exécuter en tant qu'administrateur)
  • Clique sur Continue à l'écran Disclaimer.
  • Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
  • Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

    Note : les rapports sont sauvegardés dans le dossier C:\rsit.
    24 Septembre 2009 21:41:10

    Logfile of random's system information tool 1.06 (written by random/random)
    Run by pc1 at 2009-09-24 21:38:44
    Microsoft Windows XP Édition familiale Service Pack 3
    System drive C: has 32 GB (28%) free of 114 GB
    Total RAM: 1023 MB (48% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 21:38:50, on 24/09/2009
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Ahead\InCD\InCDsrv.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
    C:\WINDOWS\system32\cisvc.exe
    C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\WINDOWS\System32\tcpsvcs.exe
    C:\WINDOWS\System32\snmp.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Documents and Settings\pc1\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
    C:\Program Files\Labtec\Keyboard\V5.1\kbdap32a.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
    C:\Program Files\Logitech\SetPoint\SetPoint.exe
    C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
    C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
    C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
    C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE
    C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
    C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Documents and Settings\pc1\Favoris\Bureau\RSIT.exe
    C:\Program Files\trend micro\pc1.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.ke.voila.fr/S/voila?kw=
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://r.orange.fr/r/Ohome_accueil?ref=O_toolbar32_hook...
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fourni par Orange
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: (no name) - {AEEC3B59-CA98-4EBA-A140-57B94E283583} - (no file)
    R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll (file missing)
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: iGraal - {88F05591-0079-4c37-B138-5DA8BC1782EF} - C:\Program Files\iGraal\iGraal.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O3 - Toolbar: iGraal - {88F05591-0079-4c37-B138-5DA8BC1782EF} - C:\Program Files\iGraal\iGraal.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
    O3 - Toolbar: barre d'outils Orange - {D3028143-6145-4318-99D3-3EDCE54A95A9} - C:\Program Files\Orange\ToolbarFR\ToolbarContainer101000313.dll
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [SoftwareHelper] C:\Documents and Settings\pc1\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
    O4 - HKLM\..\Run: [OFFICEKB] C:\Program Files\Labtec\Keyboard\V5.1\kbdap32a.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
    O4 - S-1-5-18 Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe (User 'SYSTEM')
    O4 - S-1-5-18 Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe (User 'SYSTEM')
    O4 - S-1-5-18 Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe (User 'SYSTEM')
    O4 - S-1-5-18 Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe (User 'SYSTEM')
    O4 - S-1-5-18 Startup: Yahoo! Widgets.lnk = C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe (User 'SYSTEM')
    O4 - .DEFAULT Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe (User 'Default user')
    O4 - .DEFAULT Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe (User 'Default user')
    O4 - .DEFAULT Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe (User 'Default user')
    O4 - .DEFAULT Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe (User 'Default user')
    O4 - .DEFAULT Startup: Yahoo! Widgets.lnk = C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe (User 'Default user')
    O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
    O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
    O4 - Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
    O4 - Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
    O4 - Startup: Yahoo! Widgets.lnk = C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
    O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
    O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
    O8 - Extra context menu item: ajouter cette page à vos favoris Orange - C:\DOCUME~1\pc1\LOCALS~1\Temp\cce3D.html
    O8 - Extra context menu item: traduire la page - C:\DOCUME~1\pc1\LOCALS~1\Temp\cce3B.html
    O8 - Extra context menu item: traduire le texte sélectionné - C:\DOCUME~1\pc1\LOCALS~1\Temp\cce3C.html
    O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
    O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
    O9 - Extra button: iGraal - {88F05591-0079-4c37-B138-5DA8BC1782EF} - C:\Program Files\iGraal\iGraal.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
    O15 - Trusted Zone: http://logicielsgratuits.orange.fr
    O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/F...
    O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986....
    O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
    O16 - DPF: {4A85DBE0-BFB2-4119-8401-186A7C6EB653} - http://messenger.zone.msn.com/binary/MJSS.cab69309.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
    O16 - DPF: {5A779DC0-837B-4590-AC42-C7C0847478C5} (OrangeInstaller_ModuleIE Control) - http://logicielsgratuits.orange.fr/download_service/Ins...
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
    O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/maconfig/MaConfig_3_...
    O16 - DPF: {B7D07999-2ADB-4AEB-997E-F61CB7B2E2CD} (TSEasyInstallX Control) - http://www.trendsecure.com/easy_install/_activex/fr/TSE...
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.ca...
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
    O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697516} (NsvPlayX Control) - http://www.nullsoft.com/nsv/embed/nsvplayx_vp6_mp3.cab
    O20 - AppInit_DLLs: nazqva.dll
    O20 - Winlogon Notify: jkkHYqnN - jkkHYqnN.dll (file missing)
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
    O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
    O23 - Service: InCD Helper (read only) (InCDsrvR) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\logishrd\Bluetooth\LBTServ.exe
    O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
    O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
    O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Unknown owner - C:\Program Files\Inventel\Gateway\wlancfg.exe (file missing)

    --
    End of file - 12548 bytes

    ======Scheduled tasks folder======

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    C:\WINDOWS\tasks\User_Feed_Synchronization-{CE3AA5F3-A6FE-4AB7-95C3-1CE51750976A}.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88F05591-0079-4c37-B138-5DA8BC1782EF}]
    iGraal - C:\Program Files\iGraal\iGraal.dll [2008-09-19 612160]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
    Google Toolbar Helper - c:\program files\google\googletoolbar1.dll [2009-02-15 2436160]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-07-25 41760]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
    JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-07-25 73728]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {88F05591-0079-4c37-B138-5DA8BC1782EF} - iGraal - C:\Program Files\iGraal\iGraal.dll [2008-09-19 612160]
    {2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll [2009-02-15 2436160]
    {D3028143-6145-4318-99D3-3EDCE54A95A9} - barre d'outils Orange - C:\Program Files\Orange\ToolbarFR\ToolbarContainer101000313.dll [2009-04-22 2300822]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-08-17 81000]
    "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
    "EoEngine"= []
    "SoftwareHelper"=C:\Documents and Settings\pc1\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe [2008-12-09 368224]
    "OFFICEKB"=C:\Program Files\Labtec\Keyboard\V5.1\kbdap32a.exe [2009-06-23 387584]
    "QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-05-26 413696]
    "Kernel and Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2008-12-18 76304]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-07-25 149280]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
    "TomTomHOME.exe"=C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [2009-04-08 251240]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Démarrer^Programmes^Démarrage^Ralink Wireless Utility.lnk]
    C:\PROGRA~1\RALINK\Common\RaUI.exe [2007-09-04 675840]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^pc1^Menu Démarrer^Programmes^Démarrage^NETGEAR WG111v2 Smart Wizard.lnk]
    C:\Program Files\NETGEAR\WG111v2\WG111v2.exe []

    C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Démarrage
    Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe

    C:\Documents and Settings\pc1\Menu Démarrer\Programmes\Démarrage
    RocketDock.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
    TransBar.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
    UberIcon.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
    Y'z Shadow.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
    Yahoo! Widgets.lnk - C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "AppInit_DLLS"="nazqva.dll"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
    C:\WINDOWS\system32\Ati2evxx.dll [2006-05-03 61440]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\jkkHYqnN]
    jkkHYqnN.dll []

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
    c:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll [2009-02-19 72208]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
    UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 240128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    "{88485281-8b4b-4f8d-9ede-82e29a064277}"= []

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
    "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=95000000

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveAutoRun"=
    "NoDriveTypeAutoRun"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe"="C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil"
    "C:\Program Files\utorrent\utorrent.exe"="C:\Program Files\utorrent\utorrent.exe:*:Enabled:µTorrent"
    "C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
    "C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule Plus"
    "C:\Documents and Settings\pc1\Favoris\Bureau\microtorrent_torrent_1.7.7_anglais_18245(2).exe"="C:\Documents and Settings\pc1\Favoris\Bureau\microtorrent_torrent_1.7.7_anglais_18245(2).exe:*:Enabled:µTorrent"
    "C:\WINDOWS\Temp\occ.exe"="C:\WINDOWS\Temp\occ.exe:*:D isabled:o neCC Module"
    "C:\WINDOWS\system32\mmc.exe"="C:\WINDOWS\system32\mmc.exe:*:Enabled:Microsoft Management Console"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
    "C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:D isabled:Internet Explorer"
    "C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{48b32622-f9ec-11dd-91da-001e2aef17fb}]
    shell\AutoRun\command - F:\InstallTomTomHOME.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{6384265c-f39f-11dd-91c8-001e2aef17fb}]
    shell\AutoRun\command - F:\InstallTomTomHOME.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a18bb6c8-6e65-11dc-a1f4-00032f441728}]
    shell\AutoRun\command - E:\Autorun.exe


    ======File associations======

    .reg - open - regedit.exe "%1" %*
    .scr - open - "%1" %*

    ======List of files/folders created in the last 1 months======

    2009-09-24 21:38:45 ----D---- C:\Program Files\trend micro
    2009-09-24 21:38:44 ----DC---- C:\rsit
    2009-09-24 21:30:50 ----D---- C:\WINDOWS\$NtUninstallXPSEPSCLP$
    2009-09-24 19:53:01 ----D---- C:\Program Files\Ad-Remover
    2009-09-17 19:10:46 ----D---- C:\Program Files\AlerteGPS
    2009-09-11 15:22:45 ----HDC---- C:\WINDOWS\ie8
    2009-09-11 15:06:12 ----D---- C:\Program Files\Orange

    ======List of files/folders modified in the last 1 months======

    2009-09-24 21:38:50 ----D---- C:\WINDOWS\Prefetch
    2009-09-24 21:38:45 ----RD---- C:\Program Files
    2009-09-24 21:33:13 ----D---- C:\WINDOWS\Temp
    2009-09-24 21:32:31 ----A---- C:\WINDOWS\ModemLog_Bluetooth Fax Modem.txt
    2009-09-24 21:32:31 ----A---- C:\WINDOWS\ModemLog_Bluetooth DUN Modem.txt
    2009-09-24 21:31:14 ----D---- C:\WINDOWS\system32\config
    2009-09-24 21:31:02 ----D---- C:\WINDOWS\system32\wbem
    2009-09-24 21:31:02 ----D---- C:\WINDOWS\Registration
    2009-09-24 21:30:50 ----D---- C:\WINDOWS
    2009-09-24 21:30:41 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-09-24 19:47:23 ----DC---- C:\Temp
    2009-09-24 18:04:02 ----D---- C:\Program Files\Pochette Express 2
    2009-09-23 07:01:39 ----D---- C:\WINDOWS\system32
    2009-09-21 13:22:55 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-09-17 19:10:51 ----HD---- C:\WINDOWS\inf
    2009-09-16 17:35:08 ----D---- C:\WINDOWS\network diagnostic
    2009-09-14 18:47:51 ----AC---- C:\WINDOWS\ModemLog_Bluetooth LAP Modem #2.txt
    2009-09-11 15:25:02 ----D---- C:\WINDOWS\system32\fr-fr
    2009-09-11 15:25:02 ----D---- C:\WINDOWS\Media
    2009-09-11 15:25:02 ----D---- C:\Program Files\Internet Explorer
    2009-09-11 15:25:01 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-09-11 15:25:01 ----D---- C:\WINDOWS\Help
    2009-09-11 15:23:43 ----HD---- C:\WINDOWS\msdownld.tmp
    2009-09-11 15:06:13 ----SD---- C:\WINDOWS\Downloaded Program Files
    2009-09-11 13:36:57 ----A---- C:\WINDOWS\NeroDigital.ini

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-08-17 26944]
    R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-08-17 114768]
    R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-08-17 51376]
    R1 InCDPass;InCDPass; C:\WINDOWS\System32\DRIVERS\InCDPass.sys [2005-07-25 29696]
    R1 incdrm;InCD Reader; C:\WINDOWS\system32\drivers\incdrm.sys [2005-07-26 28672]
    R1 kbfilter;Keyboard Filter Driver; C:\WINDOWS\system32\drivers\kbfilter.sys [1999-08-27 14624]
    R1 Tcpip6;Pilote du protocole IPv6 Microsoft; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2008-06-20 225856]
    R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.5.3.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2009-07-18 21419]
    R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-08-17 20560]
    R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-08-17 94160]
    R2 EAPPkt;Realtek EAPPkt Protocol; C:\WINDOWS\system32\DRIVERS\EAPPkt.sys [2007-10-09 38144]
    R2 irda;Protocole IrDA; C:\WINDOWS\System32\DRIVERS\irda.sys [2008-04-13 88192]
    R2 LBeepKE;LBeepKE; C:\WINDOWS\System32\Drivers\LBeepKE.sys [2008-12-18 10384]
    R2 ppsio;PrmxPPDev; C:\WINDOWS\system32\drivers\ppsio.sys [2001-11-25 22688]
    R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-08-17 23152]
    R3 ati2mtag;ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [2006-05-03 1540608]
    R3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\System32\DRIVERS\blueletaudio.sys [2004-10-19 20096]
    R3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\System32\DRIVERS\btnetdrv.sys [2004-09-21 10804]
    R3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys [2004-12-01 22488]
    R3 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\System32\DRIVERS\vbtenum.sys [2004-09-21 11604]
    R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
    R3 irsir;Pilote série infrarouge Microsoft; C:\WINDOWS\System32\DRIVERS\irsir.sys [2001-08-17 18688]
    R3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2008-12-18 20240]
    R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2008-12-18 35472]
    R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2008-12-18 37392]
    R3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [2008-12-18 28816]
    R3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\DRIVERS\LVUSBSta.sys [2004-01-21 12080]
    R3 mouhid;Pilote HID de souris; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-23 12288]
    R3 ms_mpu401;Pilote UART MIDI MPU-401 Microsoft; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
    R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [2004-05-17 33280]
    R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [2004-05-17 12928]
    R3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWS\System32\DRIVERS\rasirda.sys [2001-08-17 19584]
    R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2003-04-24 5888]
    R3 rt2870;Ralink 802.11n USB Wireless LAN Card Driver; C:\WINDOWS\system32\DRIVERS\rt2870.sys [2007-07-28 517632]
    R3 tunmp;Pilote de carte miniport Tun Microsoft; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-13 12288]
    R3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
    R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]
    R3 usbehci;Pilote miniport de contrôleur hôte amélioré USB 2.0 Microsoft; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208]
    R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
    R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbohci.sys [2008-04-13 17152]
    R3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2008-04-13 25856]
    R3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
    R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
    R3 VComm;Virtual Serial port driver; C:\WINDOWS\System32\DRIVERS\VComm.sys [2004-10-19 61312]
    R3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys [2004-11-05 82148]
    R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
    R4 InCDfs;InCD File System; C:\WINDOWS\system32\drivers\InCDfs.sys [2005-07-25 101504]
    S3 arusb(TP-LINK);Atheros Wireless Network Adapter Service(TP-LINK); C:\WINDOWS\system32\DRIVERS\arusb.sys [2008-05-26 434688]
    S3 BTNetFilter;Bluetooth Network Filter; \??\C:\WINDOWS\system32\drivers\BTNetFilter.sys []
    S3 catchme;catchme; \??\C:\DOCUME~1\pc1\LOCALS~1\Temp\catchme.sys []
    S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
    S3 cm102u32;C-Media CM6501 Like Sound Interface; C:\WINDOWS\system32\drivers\c6501.sys [2006-07-11 1419776]
    S3 DNINDIS5;DNINDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\DNINDIS5.SYS []
    S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
    S3 dtscsi;dtscsi; C:\WINDOWS\system32\drivers\dtscsi.sys []
    S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
    S3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\WINDOWS\system32\DRIVERS\mcdbus.sys []
    S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
    S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
    S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [2008-04-13 10880]
    S3 NPF;Netgroup Packet Filter; C:\WINDOWS\system32\drivers\npf.sys [2008-12-29 42512]
    S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCAMPR5.SYS []
    S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
    S3 pepifilter;Volume Adapter; C:\WINDOWS\System32\DRIVERS\lv302af.sys [2004-01-21 5915]
    S3 PID_08A0;Labtec WebCam Pro(PID_08A0); C:\WINDOWS\System32\DRIVERS\LV302AV.SYS [2004-01-21 271360]
    S3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\WINDOWS\system32\DRIVERS\LV302V32.SYS [2007-10-12 1279000]
    S3 RTLWUSB;NETGEAR WG111v2 54Mbps Wireless USB 2.0 Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\wg111v2.sys []
    S3 SIS163u;SiS163 usb Wireless LAN Adapter Driver; C:\WINDOWS\System32\DRIVERS\sis163u.sys []
    S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\System32\DRIVERS\SLIP.sys [2008-04-13 11136]
    S3 streamip;BDA IPSink; C:\WINDOWS\System32\DRIVERS\StreamIP.sys [2008-04-13 15232]
    S3 usbbus;LGE Mobile Composite USB Device; C:\WINDOWS\system32\DRIVERS\lgusbbus.sys []
    S3 UsbDiag;LGE Mobile USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys []
    S3 USBModem;LGE Mobile USB Modem; C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys []
    S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
    S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
    S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
    S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 6to4;Service d'application d'assistance IPv6; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-02-18 110592]
    R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-08-17 18752]
    R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-05-03 413696]
    R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-08-17 138680]
    R2 BlueSoleil Hid Service;BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [2004-12-13 106496]
    R2 FTRTSVC;France Telecom Routing Table Service; C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe [2008-06-20 65536]
    R2 InCDsrv;InCD Helper; C:\Program Files\Ahead\InCD\InCDsrv.exe [2005-07-26 876032]
    R2 Iprip;Écouteur RIP; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
    R2 Irmon;Moniteur infrarouge; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
    R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-07-25 153376]
    R2 SimpTcp;Services TCP/IP simplifiés; C:\WINDOWS\System32\tcpsvcs.exe [2003-04-24 19456]
    R2 SNMP;Service SNMP; C:\WINDOWS\System32\snmp.exe [2008-04-14 33280]
    R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2009-04-08 92008]
    R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-08-17 254040]
    R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-08-17 352920]
    S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2006-05-03 520192]
    S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268800]
    S2 InCDsrvR;InCD Helper (read only); C:\Program Files\Ahead\InCD\InCDsrv.exe [2005-07-26 876032]
    S2 Wlancfg;Service de lancement de WlanCfg; C:\Program Files\Inventel\Gateway\wlancfg.exe SVC []
    S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
    S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-12-30 138168]
    S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Fichiers communs\logishrd\Bluetooth\LBTServ.exe [2009-02-19 121360]
    S3 LPDSVC;Serveur d'impression TCP/IP; C:\WINDOWS\System32\tcpsvcs.exe [2003-04-24 19456]
    S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2009-05-29 234864]
    S3 p2pgasvc;Authentification de groupe réseau homologue; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    S3 p2pimsvc;Gestionnaire d'identité réseau homologue; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    S3 p2psvc;Réseau homologue; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    S3 PNRPSvc;Protocole de résolution de noms d'homologues; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    S3 SNMPTRAP;Service d'interruption SNMP; C:\WINDOWS\System32\snmptrap.exe [2008-04-14 8704]
    S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-24 918016]

    -----------------EOF-----------------
    info.txt logfile of random's system information tool 1.06 2009-09-24 21:38:53

    ======Uninstall list======

    -->C:\Program Files\Ahead\nero\nero\uninstall\UNNERO.exe /UNINSTALL
    -->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
    -->C:\WINDOWS\IsUninst.exe -fC:\Program Files\MediaKey\uninst.isu
    -->C:\WINDOWS\NuNInst.exe /UNINSTALL
    -->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
    -->C:\WINDOWS\unmrw.exe /UNINSTALL
    -->C:\WINDOWS\UNNeroVision.exe /UNINSTALL
    -->C:\WINDOWS\UNNMP.exe /UNINSTALL
    -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
    Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
    Adobe Flash Player 10 Plugin-->MsiExec.exe /X{ECA1A3B6-898F-4DCE-9F04-714CF3BA126B}
    Adobe Flash Player 9 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
    Adobe Reader 9.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
    Apple Mobile Device Support-->MsiExec.exe /I{44734179-8A79-4DEE-BB08-73037F065543}
    Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
    Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
    Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
    ATI - Software Uninstall Utility-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
    ATI Control Panel-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe"
    ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:D ISPLAY -clean
    avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
    barre d'outils Orange-->C:\Program Files\Orange\ToolbarFR\uninst.exe
    Barre d'outils Outlook de Windows Live (Windows Live Toolbar)-->MsiExec.exe /X{4002F73D-EBB3-4EA1-A2FF-DBCB4529759E}
    Bloqueur de fenêtres pop-up (Windows Live Toolbar)-->MsiExec.exe /X{51F366F4-C2E4-429A-866A-59C885ED42FD}
    BlueSoleil-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B9F499B8-D1F0-42FC-84BE-CC552123CCCB}\Setup.exe" -l0x40c
    Canon iP1600-->C:\WINDOWS\system32\CNMCP75.exe "-PRINTERNAMECanon iP1600" "-HELPERDLLC:\Documents and Settings\All Users.WINDOWS\Application Data\CanonBJ\IJPrinter\CNMWINDOWS\Canon iP1600 Installer\Inst2\cnmis.dll" "-RCDLLcnmi040c.dll"
    CDDRV_Installer-->MsiExec.exe /I{0C826C5B-B131-423A-A229-C71B3CACCD6A}
    Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
    Compatibility Pack for the 2007 Office system-->MsiExec.exe /X{90120000-0020-040C-0000-0000000FF1CE}
    Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
    DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
    DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
    DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
    DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
    Google Toolbar for Internet Explorer-->MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}
    Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar1.dll"
    Grisbi 0.5.9-->C:\Program Files\Grisbi\uninstall.exe
    HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
    iGraal Toolbar for Internet Explorer-->"C:\Program Files\iGraal\uninstall.exe"
    Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
    Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
    Java(TM) 6 Update 15-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216010FF}
    KhalInstallWrapper-->MsiExec.exe /I{3101CB58-3482-4D21-AF1A-7057FC935355}
    Labtec Media Keyboard V5.1-->C:\Program Files\Labtec\Keyboard\V5.1\uninst00.exe
    Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
    Les Sims-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Maxis\Les Sims\Uninst.isu"
    Logitech SetPoint-->"C:\Program Files\InstallShield Installation Information\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}\setup.exe" -runfromtemp -l0x040c -removeonly
    Ma-Config.com-->MsiExec.exe /X{6C4D4FC0-467B-4BD7-8D11-50E49B2770D2}
    Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
    Microsoft .NET Framework (French) v1.0.3705-->C:\WINDOWS\Microsoft.NET\Framework\Install.exe /u /p Microsoft .NET Framework Full v1.0.3705 (1036)
    Microsoft .NET Framework (French)-->MsiExec.exe /X{6B908BF7-A583-4962-B068-69657D87CD56}
    Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
    Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
    Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
    Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
    Microsoft Kernel-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe"
    Microsoft Money-->C:\Program Files\Microsoft Money 2005\MNYCoreFiles\Setup\uninst.exe /s:120
    Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
    Microsoft Office XP Professional avec FrontPage-->MsiExec.exe /I{9028040C-6000-11D3-8CFE-0050048383C9}
    Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
    Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
    Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
    MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
    MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
    MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
    MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
    Nero Suite-->C:\Program Files\Fichiers communs\Nero\Uninstall\Setup.exe /uninstall ExtraUninstallID=""
    NVIDIA Drivers-->C:\WINDOWS\system32\NVUNINST.EXE UninstallGUI
    OpenOffice.org 3.0-->MsiExec.exe /I{6860B340-530D-46B3-91F8-1AE1F70F7C33}
    OrangeInstaller version 1.0.0.0-->RunDll32 C:\WINDOWS\system32\advpack.dll,LaunchINFSection C:\WINDOWS\INF\OrangeInstaller_1.0.0.0.inf,DefaultUninstall
    Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
    Pack Vista Inspirat 2 1.0-->C:\WINDOWS\BricoPacks\Vista Inspirat 2\Remove.exe
    Picasa 3-->"C:\Program Files\Google\Picasa3\Uninstall.exe"
    Pochette Express 2-->C:\Program Files\Pochette Express 2\uninstall.exe
    Programme de gestion Camera de Logitech®-->"C:\Program Files\Fichiers communs\Labtec\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT
    QuickTime-->MsiExec.exe /I{C78EAC6F-7A73-452E-8134-DBB2165C5A68}
    Ralink Wireless LAN-->C:\Program Files\InstallShield Installation Information\{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}\setup.exe -runfromtemp -l0x0009 -removeonly
    Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
    Shockwave-->C:\WINDOWS\system32\Macromed\SHOCKW~2\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~2\Install.log
    SoftwareUpdate 1.0-->"C:\Documents and Settings\pc1\Application Data\eoRezo\SoftwareUpdate\unins000.exe"
    TomTom HOME 2.6.2.1586-->C:\Program Files\TomTom HOME 2\Uninstall TomTom HOME.exe
    TomTom HOME Visual Studio Merge Modules-->MsiExec.exe /I{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}
    Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
    Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"
    Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
    Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
    Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
    Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
    Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
    Windows Support Tools-->MsiExec.exe /I{8398B542-3CC4-44D9-83DF-696CCE70124B}
    Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
    Yahoo! Install Manager-->C:\WINDOWS\system32\regsvr32 /u C:\PROGRA~1\Yahoo!\Common\YINSTH~1.DLL
    Yahoo! Widgets-->C:\PROGRA~1\Yahoo!\Widgets\uninstall.exe

    ======Hosts File======

    127.0.0.1 bin.errorprotector.com ## added by CiD
    127.0.0.1 br.errorsafe.com ## added by CiD
    127.0.0.1 br.winantivirus.com ## added by CiD
    127.0.0.1 br.winfixer.com ## added by CiD
    127.0.0.1 cdn.drivecleaner.com ## added by CiD
    127.0.0.1 cdn.errorsafe.com ## added by CiD
    127.0.0.1 cdn.winsoftware.com ## added by CiD
    127.0.0.1 de.errorsafe.com ## added by CiD
    127.0.0.1 de.winantivirus.com ## added by CiD
    127.0.0.1 download.cdn.drivecleaner.com ## added by CiD

    ======Security center information======

    AV: avast! antivirus 4.8.1351 [VPS 090924-0]

    ======System event log======

    Computer Name: CHAUSSE
    Event Code: 2
    Message: Device identified.

    Record Number: 5
    Source Name: nvatabus
    Time Written: 20090913184445.000000+120
    Event Type: Informations
    User:

    Computer Name: CHAUSSE
    Event Code: 2
    Message: Device identified.

    Record Number: 4
    Source Name: nvatabus
    Time Written: 20090913184445.000000+120
    Event Type: Informations
    User:

    Computer Name: CHAUSSE
    Event Code: 2
    Message: Device identified.

    Record Number: 3
    Source Name: nvatabus
    Time Written: 20090913184445.000000+120
    Event Type: Informations
    User:

    Computer Name: CHAUSSE
    Event Code: 6005
    Message: Le service d'Enregistrement d'événement a démarré.

    Record Number: 2
    Source Name: EventLog
    Time Written: 20090913184439.000000+120
    Event Type: Informations
    User:

    Computer Name: CHAUSSE
    Event Code: 6009
    Message: Microsoft (R) Windows (R) 5.01. 2600 Service Pack 3 Multiprocessor Free.

    Record Number: 1
    Source Name: EventLog
    Time Written: 20090913184439.000000+120
    Event Type: Informations
    User:

    =====Application event log=====

    Computer Name: CHAUSSE
    Event Code: 4137
    Message: CI a démarré pour le catalogue c:\system volume information\catalog.wci.

    Record Number: 4917
    Source Name: Ci
    Time Written: 20090427113324.000000+120
    Event Type: Informations
    User:

    Computer Name: CHAUSSE
    Event Code: 2002
    Message: Impossible d'ouvrir le Service redirecteur. Les données de performance du
    redirecteur ne seront pas renvoyées. Le code d'erreur renvoyé est la donnée DWORD 0.

    Record Number: 4916
    Source Name: PerfNet
    Time Written: 20090427112613.000000+120
    Event Type: erreur
    User:

    Computer Name: CHAUSSE
    Event Code: 1015
    Message: Le paramètre TraceLevel ne se trouve pas dans le Registre.
    La niveau de suivi utilisé par défaut est 32.

    Record Number: 4915
    Source Name: EvntAgnt
    Time Written: 20090427112612.000000+120
    Event Type: Avertissement
    User:

    Computer Name: CHAUSSE
    Event Code: 1003
    Message: Le paramètre TraceFileName ne se trouve pas dans le Registre.
    Le fichier de suivi utilisé par défaut est .

    Record Number: 4914
    Source Name: EvntAgnt
    Time Written: 20090427112612.000000+120
    Event Type: Avertissement
    User:

    Computer Name: CHAUSSE
    Event Code: 105
    Message: The service was started.

    Record Number: 4913
    Source Name: ATI Smart
    Time Written: 20090427112607.000000+120
    Event Type: Informations
    User:

    ======Environment variables======

    "ComSpec"=%SystemRoot%\system32\cmd.exe
    "Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Program Files\ATI Technologies\ATI Control Panel;C:\Program Files\Fichiers communs\Ulead Systems\MPEG;C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727;C:\Program Files\Smart Projects\IsoBuster;C:\Program Files\QuickTime\QTSystem;C:\Program Files\QuickTime\QTSystem;C:\Program Files\Support Tools\;C:\Program Files\QuickTime\QTSystem\
    "windir"=%SystemRoot%
    "OS"=Windows_NT
    "PROCESSOR_ARCHITECTURE"=x86
    "PROCESSOR_LEVEL"=15
    "PROCESSOR_IDENTIFIER"=x86 Family 15 Model 75 Stepping 2, AuthenticAMD
    "PROCESSOR_REVISION"=4b02
    "NUMBER_OF_PROCESSORS"=2
    "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
    "TEMP"=%SystemRoot%\TEMP
    "TMP"=%SystemRoot%\TEMP
    "FP_NO_HOST_CHECK"=NO
    "CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
    "QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip

    -----------------EOF-----------------
    Contenus similaires
    a c 267 8 Sécurité
    a b 9 Windows
    24 Septembre 2009 21:47:36

  • Télécharge Ad-Remover (de Cyrildu17 / C_XX) sur ton Bureau.

    /!\ Déconnecte-toi et ferme toutes applications en cours /!\

  • Double-clique sur AD-R situé sur ton Bureau pour le lancer.
    (Sous Vista, il faut cliquer droit sur AD-R et choisir Exécuter en tant qu'administrateur)
  • Choisis la langue F pour français.
  • Au menu principal, choisis l'option S.

    /!\ Laisse travailler l'outil /!\

  • Poste le rapport qui apparaît à la fin (C:\Ad-Report-SCAN.log).

    (CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)

    Note : "Process.exe", une composante de l'outil, est détectée par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool. Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus. Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
    24 Septembre 2009 22:01:57

    voici le rapport
    ======= RAPPORT D'AD-REMOVER 1.1.4.5_V | UNIQUEMENT XP/VISTA/7 =======
    .
    Mit à jour par C_XX le 24/09/2009 à 5:40 PM
    Contact: AdRemover.contact@gmail.com
    Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
    .
    Lancé à: 21:53:22, 24/09/2009 | Mode Normal | Option: SCAN
    Exécuté de: C:\Program Files\Ad-Remover\
    Système d'exploitation: Microsoft® Windows XP™ Service Pack 3 v5.1.2600
    Nom du PC: CHAUSSE | Utilisateur actuel: pc1
    .
    ============== ÉLÉMENT(S) TROUVÉ(S) ==============
    .
    .
    HKCU\Software\EoRezo
    HKCU\Software\ItsLabel
    HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1A0AADCD-3A72-4B5F-900F-E3BB5A838E2A}
    HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64F56FC1-1272-44CD-BA6E-39723696E350}
    HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BC4FFE41-DE9F-46fa-B455-AAD49B9F9938}
    HKCU\Software\SWEETIE
    HKLM\Software\Classes\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A}
    HKLM\Software\Classes\TypeLib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}
    HKLM\Software\EoRezo
    HKLM\Software\ItsLabel
    HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdate_is1
    HKU\S-1-5-21-73586283-842925246-725345543-1004\Software\Eorezo
    HKU\S-1-5-21-73586283-842925246-725345543-1004\Software\ItsLabel
    HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\EoEngine
    HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SoftwareHelper
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
    .
    C:\Documents and Settings\pc1\Application Data\EoRezo
    C:\Documents and Settings\pc1\Application Data\ItsLabel
    C:\Documents and Settings\pc1\Cookies\pc1@ads.eorezo[2].txt
    C:\Documents and Settings\pc1\Cookies\pc1@dl.eorezo[2].txt
    C:\Documents and Settings\pc1\Cookies\pc1@eorezo[1].txt
    C:\Documents and Settings\pc1\Cookies\pc1@eorezo[2].txt
    C:\Documents and Settings\pc1\Cookies\pc1@eorezo[4].txt
    C:\Documents and Settings\pc1\Cookies\pc1@eurobarre[2].txt
    C:\Documents and Settings\pc1\Cookies\pc1@mir1.eorezo[1].txt
    C:\WINDOWS\Prefetch\ITSTV.EXE-0AA9B5BA.pf
    C:\WINDOWS\Prefetch\ITSTV.EXE-35A15D36.pf
    C:\WINDOWS\Prefetch\SOFTWAREUPDATEHP.EXE-221615F3.pf
    .
    ============== Scan additionnel ==============
    .
    .
    * Mozilla FireFox Version [Impossible d'obtenir la version] *
    .
    Nom du profil: (pc1)
    .
    .
    .
    * Internet Explorer Version 8.0.6001.18702 *
    .
    [HKEY_CURRENT_USER\..\Internet Explorer\Main]
    .
    Search Page: hxxp://www.google.com
    Start Page: hxxp://r.orange.fr/r/Ohome_accueil?ref=O_toolbar32_hook_defaultPage
    Secondary Start Pages: \0
    Start Page Redirect Cache: hxxp://fr.msn.com/?ocid=iehp
    Start Page Redirect Cache_TIMESTAMP: 205ac8ccdaf4c901
    Start Page Redirect Cache AcceptLangs: fr
    Default_Search_URL: hxxp://www.google.com/ie
    Search Bar: hxxp://search.ke.voila.fr/S/voila?kw=
    .
    [HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
    .
    Start Page: hxxp://go.microsoft.com/fwlink/?LinkId=69157
    Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
    Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
    Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
    .
    [HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
    .
    Tabs: res://ieframe.dll/tabswelcome.htm
    .
    ===================================
    .
    3432 Octet(s) - C:\Ad-Report-SCAN.log
    .
    284 Fichier(s) - C:\DOCUME~1\pc1\LOCALS~1\Temp
    236 Fichier(s) - C:\WINDOWS\Temp
    .
    1 Fichier(s) - C:\Program Files\Ad-Remover\BACKUP
    0 Fichier(s) - C:\Program Files\Ad-Remover\QUARANTINE
    .
    Fin à: 21:58:41 | 24/09/2009
    .
    ============== E.O.F ==============
    .
    a c 267 8 Sécurité
    a b 9 Windows
    24 Septembre 2009 22:03:25

    Ok, tu peux faire l'option L d'Ad-Remover.
    24 Septembre 2009 22:11:49

    voici le rapport
    ====== RAPPORT D'AD-REMOVER 1.1.4.5_V | UNIQUEMENT XP/VISTA/7 =======
    .
    Mit à jour par C_XX le 24/09/2009 à 5:40 PM
    Contact: AdRemover.contact@gmail.com
    Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
    .
    Lancé à: 22:05:40, 24/09/2009 | Mode Normal | Option: CLEAN
    Exécuté de: C:\Program Files\Ad-Remover\
    Système d'exploitation: Microsoft® Windows XP™ Service Pack 3 v5.1.2600
    Nom du PC: CHAUSSE | Utilisateur actuel: pc1
    .
    ============== ÉLÉMENT(S) NEUTRALISÉ(S) ==============
    .
    .
    HKCU\Software\EoRezo
    HKCU\Software\ItsLabel
    HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1A0AADCD-3A72-4B5F-900F-E3BB5A838E2A}
    HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64F56FC1-1272-44CD-BA6E-39723696E350}
    HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BC4FFE41-DE9F-46fa-B455-AAD49B9F9938}
    HKCU\Software\SWEETIE
    HKLM\Software\Classes\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A}
    HKLM\Software\Classes\TypeLib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}
    HKLM\Software\EoRezo
    HKLM\Software\ItsLabel
    HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdate_is1
    HKU\S-1-5-21-73586283-842925246-725345543-1004\Software\Eorezo
    HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\EoEngine
    HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SoftwareHelper
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
    .
    /!\ NON SUPPRIME: C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate
    C:\Documents and Settings\pc1\Application Data\EoRezo
    C:\Documents and Settings\pc1\Application Data\EoRezo\cache
    C:\Documents and Settings\pc1\Application Data\EoRezo\cmhost.cyp
    C:\Documents and Settings\pc1\Application Data\EoRezo\ConfMedia.cyp
    C:\Documents and Settings\pc1\Application Data\EoRezo\db
    C:\Documents and Settings\pc1\Application Data\EoRezo\db\cat.cyp
    C:\Documents and Settings\pc1\Application Data\EoRezo\eoDesktop
    C:\Documents and Settings\pc1\Application Data\EoRezo\eoDesktop\config.xml
    C:\Documents and Settings\pc1\Application Data\EoRezo\eoDesktop\eoDesktop.html
    C:\Documents and Settings\pc1\Application Data\EoRezo\eoDesktop\userConfig.xml
    C:\Documents and Settings\pc1\Application Data\EoRezo\eoStats
    C:\Documents and Settings\pc1\Application Data\EoRezo\host.cyp
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Download
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\help_config.cyp
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\eobrowserpub
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\eobrowserpub\1.0.0.1
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.2
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.3
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.3\itstv.exe
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.4
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.4\itstv.exe
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.5
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.5\itstv.exe
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.6
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.6\itstv.exe
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.7
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.7\itstv.exe
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.8
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.8\itstv.exe
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.9
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.0.9\itstv.exe
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.0
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.0\itstv.exe
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.1
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.1\itstv.exe
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.3
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.3\itstv.exe
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.4
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.4\itstv.exe
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.5
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.5\itstv.exe
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.6
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.6\itstv.exe
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.7
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.7\itstv.exe
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.8
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\Software\itsTV\3.0.1.8\itstv.exe
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\SoftwareUpdate.exe
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\unins000.dat
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\unins000.exe
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\user_config.cyp
    C:\Documents and Settings\pc1\Application Data\EoRezo\SoftwareUpdate\user_profil.cyp
    C:\Documents and Settings\pc1\Application Data\EoRezo\user.cyp
    C:\Documents and Settings\pc1\Application Data\ItsLabel
    C:\Documents and Settings\pc1\Application Data\ItsLabel\ItsTV
    C:\Documents and Settings\pc1\Application Data\ItsLabel\ItsTV\itsTV.xml
    C:\Documents and Settings\pc1\Cookies\pc1@ads.eorezo[2].txt
    C:\Documents and Settings\pc1\Cookies\pc1@dl.eorezo[2].txt
    C:\Documents and Settings\pc1\Cookies\pc1@eorezo[1].txt
    C:\Documents and Settings\pc1\Cookies\pc1@eorezo[2].txt
    C:\Documents and Settings\pc1\Cookies\pc1@eorezo[4].txt
    C:\Documents and Settings\pc1\Cookies\pc1@eurobarre[2].txt
    C:\Documents and Settings\pc1\Cookies\pc1@mir1.eorezo[1].txt
    C:\WINDOWS\Prefetch\ITSTV.EXE-0AA9B5BA.pf
    C:\WINDOWS\Prefetch\ITSTV.EXE-35A15D36.pf
    C:\WINDOWS\Prefetch\SOFTWAREUPDATEHP.EXE-221615F3.pf

    (!) -- Fichiers temporaires supprimés.

    .
    ============== Scan additionnel ==============
    .
    .
    * Mozilla FireFox Version [Impossible d'obtenir la version] *
    .
    Nom du profil: (pc1)
    .
    .
    .
    * Internet Explorer Version 8.0.6001.18702 *
    .
    [HKEY_CURRENT_USER\..\Internet Explorer\Main]
    .
    Search Page: hxxp://www.google.com
    Start Page: hxxp://fr.msn.com/
    Secondary Start Pages: \0
    Start Page Redirect Cache: hxxp://fr.msn.com/?ocid=iehp
    Start Page Redirect Cache_TIMESTAMP: 205ac8ccdaf4c901
    Start Page Redirect Cache AcceptLangs: fr
    Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    Search Bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
    Default_page_url: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
    .
    [HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
    .
    Start Page: hxxp://fr.msn.com/
    Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
    Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    Search bar: hxxp://search.msn.com/spbasic.htm
    .
    [HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
    .
    Tabs: res://ieframe.dll/tabswelcome.htm
    .
    ===================================
    .
    8731 Octet(s) - C:\Ad-Report-CLEAN.log
    3745 Octet(s) - C:\Ad-Report-SCAN.log
    .
    0 Fichier(s) - C:\DOCUME~1\pc1\LOCALS~1\Temp
    49 Fichier(s) - C:\WINDOWS\Temp
    .
    18 Fichier(s) - C:\Program Files\Ad-Remover\BACKUP
    28 Fichier(s) - C:\Program Files\Ad-Remover\QUARANTINE
    .
    Fin à: 22:09:42 | 24/09/2009
    .
    ============== E.O.F ==============
    .
    a c 267 8 Sécurité
    a b 9 Windows
    24 Septembre 2009 22:31:58

  • Désinstalle Ad-Remover.

  • Télécharge Lop S&D sur ton Bureau.
  • Double-clique dessus pour lancer l'installation.
  • Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau.
    (Sous Vista, il faut cliquer droit sur le raccourci Lop S&D et choisir Exécuter en tant qu'administrateur)
  • Sélectionne la langue souhaitée, puis choisis l'option 1 (Recherche) .
  • Patiente jusqu'à la fin du scan.
  • Poste le rapport généré (C:\lopR.txt).
    24 Septembre 2009 22:38:16

    -\\ Lop S&D 4.2.5-0 XP/Vista

    Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
    X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 3800+ )
    BIOS : Default System BIOS
    USER : pc1 ( Administrator )
    BOOT : Normal boot
    Antivirus : avast! antivirus 4.8.1351 [VPS 090924-0] 4.8.1351 (Activated)
    A:\ (USB)
    C:\ (Local Disk) - NTFS - Total:111 Go (Free:31 Go)
    D:\ (CD or DVD)
    E:\ (CD or DVD)
    F:\ (USB)
    G:\ (USB)
    I:\ (USB)
    J:\ (USB)

    "C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
    Option : [1] ( 24/09/2009|22:34 )

    --------------------\\ Listing des dossiers dans APPLIC~1

    [25/07/2008|20:18] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

    [25/07/2008|20:18] C:\DOCUME~1\ADMINI~1.CHA\APPLIC~1\Microsoft

    [30/12/2008|15:26] C:\DOCUME~1\ADMINI~1.000\APPLIC~1\Malwarebytes
    [29/12/2008|21:06] C:\DOCUME~1\ADMINI~1.000\APPLIC~1\Microsoft

    [20/02/2005|12:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft

    [05/07/2009|21:58] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\4D
    [13/03/2009|17:56] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Adobe
    [11/08/2007|14:32] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Ahead
    [24/02/2008|18:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple
    [14/08/2007|18:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple Computer
    [13/02/2008|19:08] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Avg7
    [11/08/2007|18:01] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Bluetooth
    [11/08/2007|10:55] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\CanonBJ
    [19/12/2008|16:49] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Downloaded Installations
    [15/02/2009|11:33] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Google
    [13/02/2008|19:07] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Grisoft
    [03/05/2009|10:29] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\iDeal Designer But_4
    [15/12/2007|10:47] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Lavasoft
    [18/07/2009|17:25] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\LogiShrd
    [18/07/2009|17:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Logitech
    [18/07/2009|12:41] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\ma-config.com
    [05/05/2008|21:30] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Malwarebytes
    [06/07/2009|21:03] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft
    [10/08/2007|19:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\MSN6
    [14/11/2007|19:46] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\NFS Underground
    [14/04/2009|19:33] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\NOS
    [17/11/2008|19:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Prism
    [17/04/2008|10:09] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Skype
    [07/05/2008|17:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Spybot - Search & Destroy
    [19/08/2008|19:01] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\TEMP
    [05/02/2009|18:13] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\TomTom
    [17/07/2009|20:42] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\TP-LINK
    [11/08/2007|17:50] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Ulead Systems
    [17/08/2007|16:47] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Genuine Advantage
    [10/08/2007|22:52] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Live Toolbar
    [30/06/2008|20:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\WLInstaller
    [30/04/2008|18:04] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Yahoo! Companion

    [20/02/2005|12:32] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

    [30/03/2008|10:55] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\Microsoft

    [12/11/2005|06:02] C:\DOCUME~1\LAFAMI~1\APPLIC~1\Identities
    [12/11/2005|17:55] C:\DOCUME~1\LAFAMI~1\APPLIC~1\Microsoft

    [20/02/2005|12:39] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

    [17/05/2007|16:50] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Google
    [22/07/2005|22:53] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Help
    [17/05/2007|16:51] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Macromedia
    [22/05/2007|21:09] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft
    [17/05/2007|19:30] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Spyware Terminator
    [17/05/2007|16:52] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\uTorrent

    [17/11/2007|16:36] C:\DOCUME~1\LOCALS~1.000\APPLIC~1\Google
    [13/02/2008|19:07] C:\DOCUME~1\LOCALS~1.000\APPLIC~1\Microsoft


    [20/02/2005|12:40] C:\DOCUME~1\mary\APPLIC~1\Identities
    [20/02/2005|12:41] C:\DOCUME~1\mary\APPLIC~1\Microsoft

    [20/02/2005|12:39] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    [20/02/2005|13:37] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft
    [25/05/2007|19:48] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Spyware Terminator
    [23/02/2005|19:21] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Symantec

    [13/02/2008|19:07] C:\DOCUME~1\NETWOR~1.000\APPLIC~1\Microsoft

    [03/05/2009|10:29] C:\DOCUME~1\pc1\APPLIC~1\2020 Fusion
    [13/01/2008|22:21] C:\DOCUME~1\pc1\APPLIC~1\AccurateRip
    [18/12/2008|22:36] C:\DOCUME~1\pc1\APPLIC~1\Adobe
    [27/05/2009|19:32] C:\DOCUME~1\pc1\APPLIC~1\AdSigner
    [16/10/2007|18:07] C:\DOCUME~1\pc1\APPLIC~1\Ahead
    [03/07/2009|21:48] C:\DOCUME~1\pc1\APPLIC~1\AlauxSoft
    [15/04/2008|17:06] C:\DOCUME~1\pc1\APPLIC~1\Apple Computer
    [26/04/2008|16:07] C:\DOCUME~1\pc1\APPLIC~1\ATI
    [28/09/2007|19:15] C:\DOCUME~1\pc1\APPLIC~1\DAEMON Tools Pro
    [27/08/2007|19:08] C:\DOCUME~1\pc1\APPLIC~1\DivX
    [30/09/2007|11:13] C:\DOCUME~1\pc1\APPLIC~1\Google
    [06/07/2009|19:09] C:\DOCUME~1\pc1\APPLIC~1\Grisbi
    [10/08/2007|21:21] C:\DOCUME~1\pc1\APPLIC~1\Help
    [20/01/2009|18:55] C:\DOCUME~1\pc1\APPLIC~1\Icone
    [09/08/2007|22:59] C:\DOCUME~1\pc1\APPLIC~1\Identities
    [17/07/2009|21:09] C:\DOCUME~1\pc1\APPLIC~1\InstallShield
    [16/04/2009|19:20] C:\DOCUME~1\pc1\APPLIC~1\LG Electronics
    [05/07/2009|16:33] C:\DOCUME~1\pc1\APPLIC~1\LimeWire
    [18/07/2009|17:25] C:\DOCUME~1\pc1\APPLIC~1\Logitech
    [10/08/2007|21:29] C:\DOCUME~1\pc1\APPLIC~1\Macromedia
    [05/05/2008|21:31] C:\DOCUME~1\pc1\APPLIC~1\Malwarebytes
    [25/06/2009|20:59] C:\DOCUME~1\pc1\APPLIC~1\Media Player
    [06/07/2009|17:21] C:\DOCUME~1\pc1\APPLIC~1\Microsoft
    [05/02/2009|18:12] C:\DOCUME~1\pc1\APPLIC~1\Mozilla
    [10/08/2007|22:48] C:\DOCUME~1\pc1\APPLIC~1\MSN6
    [05/07/2009|21:40] C:\DOCUME~1\pc1\APPLIC~1\OMP
    [28/11/2008|17:20] C:\DOCUME~1\pc1\APPLIC~1\OpenOffice.org
    [04/07/2008|17:02] C:\DOCUME~1\pc1\APPLIC~1\OpenOffice.org2
    [29/04/2008|19:26] C:\DOCUME~1\pc1\APPLIC~1\PicturesToExe
    [28/03/2008|18:15] C:\DOCUME~1\pc1\APPLIC~1\Player Orange
    [14/12/2007|19:53] C:\DOCUME~1\pc1\APPLIC~1\RegClean
    [22/12/2007|13:33] C:\DOCUME~1\pc1\APPLIC~1\Sun
    [26/05/2008|18:38] C:\DOCUME~1\pc1\APPLIC~1\TaoUSign
    [05/02/2009|18:12] C:\DOCUME~1\pc1\APPLIC~1\TomTom
    [13/12/2007|16:16] C:\DOCUME~1\pc1\APPLIC~1\Uniblue
    [06/07/2009|18:13] C:\DOCUME~1\pc1\APPLIC~1\uTorrent
    [06/07/2009|18:13] C:\DOCUME~1\pc1\APPLIC~1\Visual Money
    [20/04/2008|21:07] C:\DOCUME~1\pc1\APPLIC~1\vlc
    [17/08/2007|18:10] C:\DOCUME~1\pc1\APPLIC~1\Vso
    [25/08/2007|14:26] C:\DOCUME~1\pc1\APPLIC~1\WinRAR
    [19/02/2009|19:37] C:\DOCUME~1\pc1\APPLIC~1\XnView


    --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

    [24/09/2009 21:16][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{CE3AA5F3-A6FE-4AB7-95C3-1CE51750976A}.job
    [07/09/2009 18:06][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [24/09/2009 21:32][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [29/02/2008 16:36][-rah-----] C:\WINDOWS\tasks\desktop.ini

    --------------------\\ Listing des dossiers dans C:\Program Files

    [23/10/2007|19:05] C:\Program Files\2D and 3D Animator
    [14/03/2009|19:52] C:\Program Files\Adobe
    [24/09/2009|22:09] C:\Program Files\Ad-Remover
    [30/08/2008|15:50] C:\Program Files\Ahead
    [17/09/2009|19:18] C:\Program Files\AlerteGPS
    [27/06/2008|17:58] C:\Program Files\Alwil Software
    [28/06/2009|17:27] C:\Program Files\Apple Software Update
    [23/07/2006|16:17] C:\Program Files\Ariane
    [28/04/2008|17:31] C:\Program Files\ATI Technologies
    [12/11/2006|20:05] C:\Program Files\AviSynth 2.5
    [14/10/2005|18:55] C:\Program Files\BoontyGames
    [30/04/2008|15:43] C:\Program Files\Common Files
    [27/05/2006|18:36] C:\Program Files\Dictionnaire
    [26/05/2006|11:48] C:\Program Files\DIFX
    [13/04/2009|18:19] C:\Program Files\directx
    [19/12/2008|16:33] C:\Program Files\DivX
    [02/08/2009|12:09] C:\Program Files\Fichiers communs
    [17/08/2007|17:50] C:\Program Files\FileView6
    [28/05/2009|19:19] C:\Program Files\Google
    [03/07/2009|17:53] C:\Program Files\Icon Constructor 3
    [04/07/2008|17:12] C:\Program Files\Icone
    [10/01/2009|11:36] C:\Program Files\iGraal
    [13/01/2008|22:21] C:\Program Files\Illustrate
    [17/08/2007|17:04] C:\Program Files\Image Assistant
    [19/07/2009|12:32] C:\Program Files\InstallShield Installation Information
    [11/09/2009|15:25] C:\Program Files\Internet Explorer
    [23/04/2007|19:32] C:\Program Files\IVT Corporation
    [12/08/2009|10:52] C:\Program Files\Java
    [28/11/2008|17:16] C:\Program Files\JRE
    [23/06/2009|17:34] C:\Program Files\Labtec
    [27/05/2009|18:55] C:\Program Files\LETMIN2
    [07/06/2009|15:18] C:\Program Files\LimeWire
    [15/01/2006|20:19] C:\Program Files\ListeCd2
    [21/05/2006|12:31] C:\Program Files\Livecom
    [18/07/2009|17:22] C:\Program Files\Logitech
    [18/07/2009|12:41] C:\Program Files\ma-config.com
    [13/04/2009|10:26] C:\Program Files\MagicDisc
    [30/12/2008|15:21] C:\Program Files\Malwarebytes' Anti-Malware
    [13/08/2007|11:26] C:\Program Files\MessengerPlus! 3
    [06/07/2009|18:13] C:\Program Files\Microsoft
    [20/02/2005|12:34] C:\Program Files\microsoft frontpage
    [07/07/2009|17:50] C:\Program Files\Microsoft Money 2005
    [06/07/2009|17:22] C:\Program Files\Microsoft Office
    [06/10/2006|18:46] C:\Program Files\Microsoft SQL Server
    [13/10/2007|12:45] C:\Program Files\Microsoft SQL Server Compact Edition
    [06/10/2006|19:38] C:\Program Files\Microsoft.NET
    [06/07/2009|19:45] C:\Program Files\Movie Maker
    [16/03/2007|19:20] C:\Program Files\MP3 Player Utilities 4.00
    [29/08/2008|14:48] C:\Program Files\MSBuild
    [17/08/2007|16:44] C:\Program Files\MSECache
    [20/02/2005|12:28] C:\Program Files\MSN Gaming Zone
    [18/07/2008|16:13] C:\Program Files\NetMeeting
    [20/02/2005|13:24] C:\Program Files\Online Services
    [28/11/2008|17:16] C:\Program Files\OpenOffice.org 3
    [11/09/2009|15:23] C:\Program Files\Orange
    [19/08/2009|13:27] C:\Program Files\OrangeHSS
    [06/07/2009|19:45] C:\Program Files\Outlook Express
    [24/09/2009|18:04] C:\Program Files\Pochette Express 2
    [28/06/2009|17:28] C:\Program Files\QuickTime
    [19/07/2009|12:32] C:\Program Files\RALINK
    [29/08/2008|14:48] C:\Program Files\Reference Assemblies
    [17/07/2009|21:20] C:\Program Files\Securitoo
    [20/02/2005|12:31] C:\Program Files\Services en ligne
    [30/12/2008|00:52] C:\Program Files\Support Tools
    [05/02/2009|18:10] C:\Program Files\TomTom DesktopSuite
    [24/06/2009|17:28] C:\Program Files\TomTom HOME 2
    [24/06/2009|17:28] C:\Program Files\TomTom International B.V
    [17/07/2009|20:42] C:\Program Files\TP-LINK
    [24/09/2009|21:38] C:\Program Files\trend micro
    [20/02/2005|12:40] C:\Program Files\Uninstall Information
    [11/07/2006|08:52] C:\Program Files\Unlocker
    [27/06/2008|17:08] C:\Program Files\Wanadoo Messager
    [22/04/2008|18:44] C:\Program Files\Web Media Player
    [24/03/2009|18:25] C:\Program Files\Windows Live
    [24/03/2009|18:25] C:\Program Files\Windows Live SkyDrive
    [23/10/2007|19:04] C:\Program Files\Windows Live Toolbar
    [17/08/2007|16:50] C:\Program Files\Windows Media Connect 2
    [19/12/2008|16:47] C:\Program Files\Windows Media Player
    [18/07/2008|16:13] C:\Program Files\Windows NT
    [10/08/2007|20:28] C:\Program Files\WindowsUpdate
    [26/08/2007|12:50] C:\Program Files\WinRAR
    [20/02/2005|12:34] C:\Program Files\xerox
    [02/07/2009|21:10] C:\Program Files\Yahoo!

    --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

    [13/03/2009|17:56] C:\Program Files\Fichiers communs\Adobe
    [20/02/2005|15:18] C:\Program Files\Fichiers communs\Ahead
    [24/02/2008|18:23] C:\Program Files\Fichiers communs\Apple
    [29/06/2005|09:10] C:\Program Files\Fichiers communs\BOONTY Shared
    [06/07/2009|17:11] C:\Program Files\Fichiers communs\Borland Shared
    [20/02/2005|14:14] C:\Program Files\Fichiers communs\DESIGNER
    [10/03/2005|20:15] C:\Program Files\Fichiers communs\DirectX
    [17/07/2009|12:36] C:\Program Files\Fichiers communs\France Telecom
    [24/02/2005|14:42] C:\Program Files\Fichiers communs\InstallShield
    [07/04/2005|21:36] C:\Program Files\Fichiers communs\Java
    [26/04/2006|19:23] C:\Program Files\Fichiers communs\Labtec
    [18/07/2009|17:23] C:\Program Files\Fichiers communs\logishrd
    [18/07/2009|17:24] C:\Program Files\Fichiers communs\Microsoft Shared
    [20/02/2005|12:29] C:\Program Files\Fichiers communs\MSSoap
    [30/08/2008|15:50] C:\Program Files\Fichiers communs\Nero
    [14/05/2008|11:09] C:\Program Files\Fichiers communs\NSV
    [20/02/2005|12:20] C:\Program Files\Fichiers communs\ODBC
    [11/08/2007|11:29] C:\Program Files\Fichiers communs\ScanSoft Shared
    [10/12/2006|11:58] C:\Program Files\Fichiers communs\Services
    [15/04/2007|13:12] C:\Program Files\Fichiers communs\Simple Star Shared
    [20/02/2005|12:20] C:\Program Files\Fichiers communs\SpeechEngines
    [31/01/2006|23:49] C:\Program Files\Fichiers communs\Symantec Shared
    [18/07/2008|16:13] C:\Program Files\Fichiers communs\System
    [11/08/2007|15:17] C:\Program Files\Fichiers communs\Ulead Systems
    [23/10/2006|17:50] C:\Program Files\Fichiers communs\Vbox
    [24/03/2009|18:24] C:\Program Files\Fichiers communs\Windows Live
    [20/02/2008|17:23] C:\Program Files\Fichiers communs\WindowsLiveInstaller

    --------------------\\ Process

    ( 52 Processes )

    iexplore.exe ~ [PID:2984]
    iexplore.exe ~ [PID:272]
    iexplore.exe ~ [PID:2008]

    --------------------\\ Recherche avec S_Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Recherche de Fichiers / Dossiers Lop

    C:\DOCUME~1\pc1\Cookies\pc1@advertstream[1].txt
    C:\DOCUME~1\pc1\Cookies\pc1@advertstream[2].txt
    C:\DOCUME~1\pc1\Cookies\pc1@advertstream[3].txt
    C:\DOCUME~1\pc1\Cookies\pc1@advertstream[4].txt
    C:\DOCUME~1\pc1\Cookies\pc1@advertstream[5].txt
    C:\DOCUME~1\pc1\Cookies\pc1@advertstream[6].txt
    C:\DOCUME~1\pc1\Cookies\pc1@adultfriendfinder[1].txt
    C:\DOCUME~1\pc1\Cookies\pc1@advertising[10].txt
    C:\DOCUME~1\pc1\Cookies\pc1@advertising[11].txt
    C:\DOCUME~1\pc1\Cookies\pc1@advertising[1].txt
    C:\DOCUME~1\pc1\Cookies\pc1@advertising[2].txt
    C:\DOCUME~1\pc1\Cookies\pc1@advertising[3].txt
    C:\DOCUME~1\pc1\Cookies\pc1@advertising[4].txt
    C:\DOCUME~1\pc1\Cookies\pc1@advertising[5].txt
    C:\DOCUME~1\pc1\Cookies\pc1@advertising[6].txt
    C:\DOCUME~1\pc1\Cookies\pc1@advertising[7].txt
    C:\DOCUME~1\pc1\Cookies\pc1@advertising[8].txt
    C:\DOCUME~1\pc1\Cookies\pc1@advertising[9].txt
    C:\DOCUME~1\pc1\Cookies\pc1@bigpoint[1].txt
    C:\DOCUME~1\pc1\Cookies\pc1@fr.darkorbit.bigpoint[2].txt
    C:\DOCUME~1\pc1\Cookies\pc1@adopt.euroclick[1].txt
    C:\DOCUME~1\pc1\Cookies\pc1@euroclick[1].txt
    C:\DOCUME~1\pc1\Cookies\pc1@serve.32vegas[1].txt
    C:\DOCUME~1\pc1\Cookies\pc1@2xmoinscher[1].txt
    C:\DOCUME~1\pc1\Cookies\pc1@2xmoinscher[2].txt
    C:\DOCUME~1\pc1\Cookies\pc1@nouveau.2xmoinscher[2].txt
    C:\DOCUME~1\pc1\Cookies\pc1@www.2xmoinscher[1].txt
    C:\DOCUME~1\pc1\Cookies\pc1@www.2xmoinscher[3].txt

    --------------------\\ Verification du Registre

    ..... OK !

    --------------------\\ Verification du fichier Hosts

    Fichier Hosts MODIFIE

    127.0.0.1 bin.errorprotector.com ## added by CiD
    127.0.0.1 br.errorsafe.com ## added by CiD
    127.0.0.1 br.winantivirus.com ## added by CiD
    127.0.0.1 br.winfixer.com ## added by CiD
    127.0.0.1 cdn.drivecleaner.com ## added by CiD
    127.0.0.1 cdn.errorsafe.com ## added by CiD
    127.0.0.1 cdn.winsoftware.com ## added by CiD
    127.0.0.1 de.errorsafe.com ## added by CiD
    127.0.0.1 de.winantivirus.com ## added by CiD
    127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
    127.0.0.1 download.cdn.errorsafe.com ## added by CiD
    127.0.0.1 download.cdn.winsoftware.com ## added by CiD
    127.0.0.1 download.errorsafe.com ## added by CiD
    127.0.0.1 download.systemdoctor.com ## added by CiD
    127.0.0.1 download.winantispyware.com ## added by CiD
    127.0.0.1 download.windrivecleaner.com ## added by CiD
    127.0.0.1 download.winfixer.com ## added by CiD
    127.0.0.1 drivecleaner.com ## added by CiD
    127.0.0.1 dynamique.drivecleaner.com ## added by CiD
    127.0.0.1 errorprotector.com ## added by CiD
    127.0.0.1 errorsafe.com ## added by CiD
    127.0.0.1 es.winantivirus.com ## added by CiD
    127.0.0.1 fr.winantivirus.com ## added by CiD
    127.0.0.1 fr.winfixer.com ## added by CiD
    127.0.0.1 go.drivecleaner.com ## added by CiD
    127.0.0.1 go.errorsafe.com ## added by CiD
    127.0.0.1 go.winantispyware.com ## added by CiD
    127.0.0.1 go.winantivirus.com ## added by CiD
    127.0.0.1 hk.winantivirus.com ## added by CiD
    127.0.0.1 instlog.errorsafe.com ## added by CiD
    127.0.0.1 instlog.winantivirus.com ## added by CiD
    127.0.0.1 instlog.winfixer.com ## added by CiD
    127.0.0.1 jsp.drivecleaner.com ## added by CiD
    127.0.0.1 kb.errorsafe.com ## added by CiD
    127.0.0.1 kb.winantivirus.com ## added by CiD
    127.0.0.1 nl.errorsafe.com ## added by CiD
    127.0.0.1 se.errorsafe.com ## added by CiD
    127.0.0.1 secure.drivecleaner.com ## added by CiD
    127.0.0.1 secure.errorsafe.com ## added by CiD
    127.0.0.1 secure.winantispam.com ## added by CiD
    127.0.0.1 secure.winantispy.com ## added by CiD
    127.0.0.1 secure.winantivirus.com ## added by CiD
    127.0.0.1 support.winantivirus.com ## added by CiD
    127.0.0.1 trial.updates.winsoftware.com ## added by CiD
    127.0.0.1 ulog.winantivirus.com ## added by CiD
    127.0.0.1 utils.errorsafe.com ## added by CiD
    127.0.0.1 utils.winantivirus.com ## added by CiD
    127.0.0.1 utils.winfixer.com ## added by CiD
    127.0.0.1 winantispyware.com ## added by CiD
    127.0.0.1 winantivirus.com ## added by CiD
    127.0.0.1 winfixer.com ## added by CiD
    127.0.0.1 winfixer2006.com ## added by CiD
    127.0.0.1 winsoftware.com ## added by CiD
    127.0.0.1 www.drivecleaner.com ## added by CiD
    127.0.0.1 www.errorprotector.com ## added by CiD
    127.0.0.1 www.errorsafe.com ## added by CiD
    127.0.0.1 www.systemdoctor.com ## added by CiD
    127.0.0.1 www.utils.winfixer.com ## added by CiD
    127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
    127.0.0.1 www.win-virus-pro.com ## added by CiD
    127.0.0.1 www.winantispam.com ## added by CiD
    127.0.0.1 www.winantispy.com ## added by CiD
    127.0.0.1 www.winantispyware.com ## added by CiD
    127.0.0.1 www.winantivirus.com ## added by CiD
    127.0.0.1 www.winantiviruspro.com ## added by CiD
    127.0.0.1 www.windrivecleaner.com ## added by CiD
    127.0.0.1 www.windrivesafe.com ## added by CiD
    127.0.0.1 www.winfixer.com ## added by CiD
    127.0.0.1 www.winfixer2006.com ## added by CiD
    127.0.0.1 www.winsoftware.com ## added by CiD

    -> 71 [ 70 ## added by CiD ]

    --------------------\\ Recherche de fichiers avec Catchme

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2009-09-24 22:36:00
    Windows 5.1.2600 Service Pack 3 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    C:\DOCUME~1\pc1\LOCALS~1\APPLIC~1\Microsoft\Windows\GameExplorer\{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}\PlayTasks\1\Les Sims™ 2 : Boit@Look.lnk 1087 bytes hidden from API
    scan completed successfully
    hidden processes: 0
    hidden files: 1669

    --------------------\\ Recherche d'autres infections

    --------------------\\ Cracks & Keygens ..

    C:\DOCUME~1\pc1\Application Data\uTorrent\Call Of Duty 4 No CD Keyand No CD Crack.rar.torrent
    C:\DOCUME~1\pc1\Application Data\uTorrent\Nero 8.3.6.0 Ultra Edition + Keygen.torrent
    C:\DOCUME~1\pc1\Application Data\uTorrent\The Sims 2 Bon Voyage PC Incl Crack.1.torrent
    C:\DOCUME~1\pc1\Application Data\uTorrent\The Sims 2 Bon Voyage PC Incl Crack.2.torrent
    C:\DOCUME~1\pc1\Application Data\uTorrent\The Sims 2 Bon Voyage PC Incl Crack.torrent
    C:\DOCUME~1\pc1\Application Data\uTorrent\The Sims 2 FreeTime + Crack.1.torrent
    C:\DOCUME~1\pc1\Application Data\uTorrent\The Sims 2 FreeTime + Crack.torrent
    C:\DOCUME~1\pc1\Application Data\uTorrent\Visual Money v2.4 Inlud. Keygen.torrent
    C:\DOCUME~1\pc1\Application Data\uTorrent\Visual.Money.v2.2.Incl.Keygen-iNDUCT.torrent
    C:\DOCUME~1\pc1\Application Data\uTorrent\[PC] - The_Sims_2_Bon_Voyage.Multi-Es .+Crack.[www.gamepcrip.com].nrg.1.torrent
    C:\DOCUME~1\pc1\Application Data\uTorrent\[PC] - The_Sims_2_Bon_Voyage.Multi-Es .+Crack.[www.gamepcrip.com].nrg.torrent
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\01DBD57D-0C7D-4DF3-953B-099B0200903C.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\03BF7AA8-AD7D-4D64-8069-B788B62DA50F.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\0FE8AE78-F364-47E8-BB4A-CBE33BCA2169.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\12C829A3-8007-47F9-913F-3117C2266A40.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\1380FD8A-655A-48EF-93AB-76464F027BFB.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\35B51C54-AFA5-4435-94F1-57C957970ADC.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\3EF7E7A5-85C2-45D1-88C0-A7AA0EA85144.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\4A2330E7-BD8E-42BE-81A7-71079744B4EA.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\4AD7D007-0B86-4B9B-9E4F-CBF0F0E0AE50.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\648F037C-B737-45B2-9837-053D7007F968.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\6A60AA2E-5C44-441A-8A95-3A17638CF91A.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\722A7BD8-100C-4839-AF3E-D2411D055D97.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\731A0B60-011E-44A3-93CB-3F87E419EF3E.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\7449BD48-9BC7-485C-8B83-180FDEDC5AFB.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\8BBE2C3C-C6B3-47CA-B46B-DE54C7734E74.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\9333CBA9-BF5E-46E4-8895-54D03318D97F.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\C8B8B5C0-16F9-4CD7-BDB4-EFB1C9D07B40.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\CBF4332C-3DF7-4B7E-83AC-C50EFD11ECE5.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\contactcoll.cache
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\F5EEF266-D630-4459-9879-0854B9FA9BDF.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\F997B688-9380-48A2-98B7-EF759241D2A0.WindowsLiveContact
    C:\DOCUME~1\pc1\Favoris\Incomplete\6NLAG3XH3VO3GVJVHLEFFOFMBFB2IN4N\The Sims 2 - Freetime\Crack.rar
    C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\Keygens
    C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\No-cd Cracks
    C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\Keygens\allsims.exe
    C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\Keygens\freetime.exe
    C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\Keygens\Kitchen and Bath keygen.exe
    C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\No-cd Cracks\Sims2EP5.exe
    C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\No-cd Cracks\Sims2SP2.exe
    C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\No-cd Cracks\Sims2SP4.exe
    C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\No-cd Cracks\Sims2SP6.exe
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\Sharing Folders
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\objectstore.v2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\H0C+m00zJnUEpqvrpUwmEeNk+m4=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\H0C+m00zJnUEpqvrpUwmEeNk+m4=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\IA9vmN0qT34TQ+xiZbPmcxeXUDg=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\IA9vmN0qT34TQ+xiZbPmcxeXUDg=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\lCyhu24yMQt+CJlbGST3Jy9+KEI=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\lCyhu24yMQt+CJlbGST3Jy9+KEI=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\VfEKKH2K+gUzhtlVXHIvzB2twQ0=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\VfEKKH2K+gUzhtlVXHIvzB2twQ0=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\VoP12bdqQyV2pOm1b3Quh6qvYdc=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\VoP12bdqQyV2pOm1b3Quh6qvYdc=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\axF7a0ekuiAc7WjQjNmjxYpRX6Q=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\axF7a0ekuiAc7WjQjNmjxYpRX6Q=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\B3VEl5u5DvNzgIua1+Zd4Uxt2FLs=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\B3VEl5u5DvNzgIua1+Zd4Uxt2FLs=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\hyiJu8sDcRCbJhl+Ccy2CjQR8lA=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\hyiJu8sDcRCbJhl+Ccy2CjQR8lA=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\jdI6F7DFhC2OSW2FJWOBKjulvAds=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\jdI6F7DFhC2OSW2FJWOBKjulvAds=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\2VdOiRn8R6vgyAo1OuWk82FGrO9g=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\2VdOiRn8R6vgyAo1OuWk82FGrO9g=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\cmJCJjUVJ+x1g5BUj5TlTOAoFIo=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\cmJCJjUVJ+x1g5BUj5TlTOAoFIo=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\dW0VZfrFH4igpqB+aknu+YLVPQc=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\dW0VZfrFH4igpqB+aknu+YLVPQc=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\eXGWmogZak9R61lyiAgAEW2Fr2U4=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\eXGWmogZak9R61lyiAgAEW2Fr2U4=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\iMu6QwjGaz19Uc3Iub132FGgtfY4=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\iMu6QwjGaz19Uc3Iub132FGgtfY4=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\iyD2FcB82FO02FOIroc+DEhvb4wfnE=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\iyD2FcB82FO02FOIroc+DEhvb4wfnE=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\mW7MfHUhXfGj2FMzw2GAHWck7kvM=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\mW7MfHUhXfGj2FMzw2GAHWck7kvM=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\OELOe8WY+L2rRFjc5PgniHNJB6M=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\OELOe8WY+L2rRFjc5PgniHNJB6M=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\S+c8gyL8O5ZxTtEamXVEcWNlWPg=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\S+c8gyL8O5ZxTtEamXVEcWNlWPg=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\VOiCOo9yjYbP2JvqMKdXagPp+6o=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\VOiCOo9yjYbP2JvqMKdXagPp+6o=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\WliJzSCj1p0+9+BOKoKSC2FcHKMk=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\WliJzSCj1p0+9+BOKoKSC2FcHKMk=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\ZTbE6J8kl20dzoFo9bmIlpOOF90=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\ZTbE6J8kl20dzoFo9bmIlpOOF90=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\+8UdQGeB2FwWIYG+mC+vuvUy9zEw=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\+8UdQGeB2FwWIYG+mC+vuvUy9zEw=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\72FjqK0b2FzFkbJWZ+BlMs1OxQprI=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\72FjqK0b2FzFkbJWZ+BlMs1OxQprI=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\alxGH2FFbmTzeLEdtRHmv6GBUzdw=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\alxGH2FFbmTzeLEdtRHmv6GBUzdw=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\AzBXDxf+Tcdvcans2TCRnoXh2Fjg=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\AzBXDxf+Tcdvcans2TCRnoXh2Fjg=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\enMqwlYLN4AvpmaOrIfYLWsVAdA=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\enMqwlYLN4AvpmaOrIfYLWsVAdA=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\ioAfCdA6Kn0hKsu+Ga1jHJ1UCG8=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\ioAfCdA6Kn0hKsu+Ga1jHJ1UCG8=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\J9+5k2FTpQP6WuWOj5y0n41qN5dc=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\J9+5k2FTpQP6WuWOj5y0n41qN5dc=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\lnHW2s0zHIsgKVjOiirk1ZBZ54g=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\lnHW2s0zHIsgKVjOiirk1ZBZ54g=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Nt2FqWL50Iag4EvPJjVS0IoDBFQ4=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Nt2FqWL50Iag4EvPJjVS0IoDBFQ4=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\rTeUDzJzwMepiafQ4bVfqDvados=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\rTeUDzJzwMepiafQ4bVfqDvados=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\rXcZb6ekO9S3jB29KleJkBOXYmY=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\rXcZb6ekO9S3jB29KleJkBOXYmY=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Sgj64GS+QyVyVxkslxY2FFsRARkg=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Sgj64GS+QyVyVxkslxY2FFsRARkg=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\SrJJm7YJAcA15VowAhBWXri5yLc=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\SrJJm7YJAcA15VowAhBWXri5yLc=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\tn+dOhziBZ+E4zoUS7frcglxoz0=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\tn+dOhziBZ+E4zoUS7frcglxoz0=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Zh9cZsOdVXAK4fAulijLqPGggcA=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Zh9cZsOdVXAK4fAulijLqPGggcA=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\pending.dat
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\volume.xml
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\volume.xml~
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs\Dfsr00001.log.gz
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs\Dfsr00002.log.gz
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs\Dfsr00003.log.gz
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs\Dfsr00004.log.gz
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs\Dfsr00005.log
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\$db_normal$
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\$db_clean$
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\dfsr.db
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\fsr.chk
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\fsr.log
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\fsr00009.log
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\res1.log
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\res2.log
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\real
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\real\24eef702-96b4-4c80-9311-3abdff597f9c.AddressBook
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\real\8bab87c6-06c8-45f0-b74b-be0a00730c50.MeContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\real\contactcoll.cache
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\real\members.stg
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\01DBD57D-0C7D-4DF3-953B-099B0200903C.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\03BF7AA8-AD7D-4D64-8069-B788B62DA50F.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\0FE8AE78-F364-47E8-BB4A-CBE33BCA2169.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\1380FD8A-655A-48EF-93AB-76464F027BFB.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\3283C7F6-149B-4E3E-9AD2-4E727578C33E.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\35B51C54-AFA5-4435-94F1-57C957970ADC.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\4A2330E7-BD8E-42BE-81A7-71079744B4EA.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\4AD7D007-0B86-4B9B-9E4F-CBF0F0E0AE50.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\648F037C-B737-45B2-9837-053D7007F968.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\6A60AA2E-5C44-441A-8A95-3A17638CF91A.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\731A0B60-011E-44A3-93CB-3F87E419EF3E.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\7364F97C-1078-47C2-B16D-0D417172497E.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\7449BD48-9BC7-485C-8B83-180FDEDC5AFB.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\8BBE2C3C-C6B3-47CA-B46B-DE54C7734E74.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\9333CBA9-BF5E-46E4-8895-54D03318D97F.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\98162C17-3D35-4639-A739-3F0BBA700423.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\a8adbacc-45d1-432b-ba76-7d12e5cd3664.MeContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\C8B8B5C0-16F9-4CD7-BDB4-EFB1C9D07B40.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\CBF4332C-3DF7-4B7E-83AC-C50EFD11ECE5.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\contactcoll.cache
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\F5EEF266-D630-4459-9879-0854B9FA9BDF.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\F997B688-9380-48A2-98B7-EF759241D2A0.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\members.stg


    [F:24][D:4]-> C:\DOCUME~1\pc1\LOCALS~1\Temp
    [F:3273][D:0]-> C:\DOCUME~1\pc1\Cookies
    [F:5590][D:73]-> C:\DOCUME~1\pc1\LOCALS~1\TEMPOR~1\content.IE5

    1 - "C:\Lop SD\LopR_1.txt" - 24/09/2009|22:37 - Option : [1]

    --------------------\\ Fin du rapport a 22:37:36
    a c 267 8 Sécurité
    a b 9 Windows
    24 Septembre 2009 22:44:40

  • Relance Lop S&D.
    (Sous Vista, il faut cliquer droit sur le raccourci Lop S&D et choisir Exécuter en tant qu'administrateur)
  • Choisis cette fois-ci l'option 2 (Suppression).
  • Ne ferme pas la fenêtre lors de la suppression !
  • Poste le rapport généré (C:\lopR.txt).

    (Si le Bureau ne réapparaît pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)
    24 Septembre 2009 22:57:59

    -\\ Lop S&D 4.2.5-0 XP/Vista

    Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
    X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 3800+ )
    BIOS : Default System BIOS
    USER : pc1 ( Administrator )
    BOOT : Normal boot
    Antivirus : avast! antivirus 4.8.1351 [VPS 090924-0] 4.8.1351 (Activated)
    A:\ (USB)
    C:\ (Local Disk) - NTFS - Total:111 Go (Free:31 Go)
    D:\ (CD or DVD)
    E:\ (CD or DVD)
    F:\ (USB)
    G:\ (USB)
    I:\ (USB)
    J:\ (USB)

    "C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
    Option : [2] ( 24/09/2009|22:52 )


    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertstream[1].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertstream[2].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertstream[3].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertstream[4].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertstream[5].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertstream[6].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@adultfriendfinder[1].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertising[10].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertising[11].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertising[1].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertising[2].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertising[3].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertising[4].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertising[5].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertising[6].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertising[7].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertising[8].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@advertising[9].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@bigpoint[1].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@fr.darkorbit.bigpoint[2].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@adopt.euroclick[1].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@euroclick[1].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@serve.32vegas[1].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@2xmoinscher[1].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@2xmoinscher[2].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@nouveau.2xmoinscher[2].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@www.2xmoinscher[1].txt
    Supprime! - C:\DOCUME~1\pc1\Cookies\pc1@www.2xmoinscher[3].txt
    -
    [ Fichier Hosts ] .. Restaure!

    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


    --------------------\\ Listing des dossiers dans APPLIC~1

    [25/07/2008|20:18] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

    [25/07/2008|20:18] C:\DOCUME~1\ADMINI~1.CHA\APPLIC~1\Microsoft

    [30/12/2008|15:26] C:\DOCUME~1\ADMINI~1.000\APPLIC~1\Malwarebytes
    [29/12/2008|21:06] C:\DOCUME~1\ADMINI~1.000\APPLIC~1\Microsoft

    [20/02/2005|12:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft

    [05/07/2009|21:58] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\4D
    [13/03/2009|17:56] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Adobe
    [11/08/2007|14:32] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Ahead
    [24/02/2008|18:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple
    [14/08/2007|18:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple Computer
    [13/02/2008|19:08] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Avg7
    [11/08/2007|18:01] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Bluetooth
    [11/08/2007|10:55] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\CanonBJ
    [19/12/2008|16:49] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Downloaded Installations
    [15/02/2009|11:33] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Google
    [13/02/2008|19:07] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Grisoft
    [03/05/2009|10:29] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\iDeal Designer But_4
    [15/12/2007|10:47] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Lavasoft
    [18/07/2009|17:25] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\LogiShrd
    [18/07/2009|17:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Logitech
    [18/07/2009|12:41] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\ma-config.com
    [05/05/2008|21:30] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Malwarebytes
    [24/09/2009|22:41] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft
    [10/08/2007|19:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\MSN6
    [14/11/2007|19:46] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\NFS Underground
    [14/04/2009|19:33] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\NOS
    [17/11/2008|19:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Prism
    [17/04/2008|10:09] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Skype
    [07/05/2008|17:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Spybot - Search & Destroy
    [19/08/2008|19:01] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\TEMP
    [05/02/2009|18:13] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\TomTom
    [17/07/2009|20:42] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\TP-LINK
    [11/08/2007|17:50] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Ulead Systems
    [17/08/2007|16:47] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Genuine Advantage
    [10/08/2007|22:52] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Live Toolbar
    [30/06/2008|20:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\WLInstaller
    [30/04/2008|18:04] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Yahoo! Companion

    [20/02/2005|12:32] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

    [30/03/2008|10:55] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\Microsoft

    [12/11/2005|06:02] C:\DOCUME~1\LAFAMI~1\APPLIC~1\Identities
    [12/11/2005|17:55] C:\DOCUME~1\LAFAMI~1\APPLIC~1\Microsoft

    [20/02/2005|12:39] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

    [17/05/2007|16:50] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Google
    [22/07/2005|22:53] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Help
    [17/05/2007|16:51] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Macromedia
    [22/05/2007|21:09] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft
    [17/05/2007|19:30] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Spyware Terminator
    [17/05/2007|16:52] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\uTorrent

    [17/11/2007|16:36] C:\DOCUME~1\LOCALS~1.000\APPLIC~1\Google
    [13/02/2008|19:07] C:\DOCUME~1\LOCALS~1.000\APPLIC~1\Microsoft


    [20/02/2005|12:40] C:\DOCUME~1\mary\APPLIC~1\Identities
    [20/02/2005|12:41] C:\DOCUME~1\mary\APPLIC~1\Microsoft

    [20/02/2005|12:39] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    [20/02/2005|13:37] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft
    [25/05/2007|19:48] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Spyware Terminator
    [23/02/2005|19:21] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Symantec

    [13/02/2008|19:07] C:\DOCUME~1\NETWOR~1.000\APPLIC~1\Microsoft

    [03/05/2009|10:29] C:\DOCUME~1\pc1\APPLIC~1\2020 Fusion
    [13/01/2008|22:21] C:\DOCUME~1\pc1\APPLIC~1\AccurateRip
    [18/12/2008|22:36] C:\DOCUME~1\pc1\APPLIC~1\Adobe
    [27/05/2009|19:32] C:\DOCUME~1\pc1\APPLIC~1\AdSigner
    [16/10/2007|18:07] C:\DOCUME~1\pc1\APPLIC~1\Ahead
    [03/07/2009|21:48] C:\DOCUME~1\pc1\APPLIC~1\AlauxSoft
    [15/04/2008|17:06] C:\DOCUME~1\pc1\APPLIC~1\Apple Computer
    [26/04/2008|16:07] C:\DOCUME~1\pc1\APPLIC~1\ATI
    [28/09/2007|19:15] C:\DOCUME~1\pc1\APPLIC~1\DAEMON Tools Pro
    [27/08/2007|19:08] C:\DOCUME~1\pc1\APPLIC~1\DivX
    [30/09/2007|11:13] C:\DOCUME~1\pc1\APPLIC~1\Google
    [06/07/2009|19:09] C:\DOCUME~1\pc1\APPLIC~1\Grisbi
    [10/08/2007|21:21] C:\DOCUME~1\pc1\APPLIC~1\Help
    [20/01/2009|18:55] C:\DOCUME~1\pc1\APPLIC~1\Icone
    [09/08/2007|22:59] C:\DOCUME~1\pc1\APPLIC~1\Identities
    [17/07/2009|21:09] C:\DOCUME~1\pc1\APPLIC~1\InstallShield
    [16/04/2009|19:20] C:\DOCUME~1\pc1\APPLIC~1\LG Electronics
    [05/07/2009|16:33] C:\DOCUME~1\pc1\APPLIC~1\LimeWire
    [18/07/2009|17:25] C:\DOCUME~1\pc1\APPLIC~1\Logitech
    [10/08/2007|21:29] C:\DOCUME~1\pc1\APPLIC~1\Macromedia
    [05/05/2008|21:31] C:\DOCUME~1\pc1\APPLIC~1\Malwarebytes
    [25/06/2009|20:59] C:\DOCUME~1\pc1\APPLIC~1\Media Player
    [06/07/2009|17:21] C:\DOCUME~1\pc1\APPLIC~1\Microsoft
    [05/02/2009|18:12] C:\DOCUME~1\pc1\APPLIC~1\Mozilla
    [10/08/2007|22:48] C:\DOCUME~1\pc1\APPLIC~1\MSN6
    [05/07/2009|21:40] C:\DOCUME~1\pc1\APPLIC~1\OMP
    [28/11/2008|17:20] C:\DOCUME~1\pc1\APPLIC~1\OpenOffice.org
    [04/07/2008|17:02] C:\DOCUME~1\pc1\APPLIC~1\OpenOffice.org2
    [29/04/2008|19:26] C:\DOCUME~1\pc1\APPLIC~1\PicturesToExe
    [28/03/2008|18:15] C:\DOCUME~1\pc1\APPLIC~1\Player Orange
    [14/12/2007|19:53] C:\DOCUME~1\pc1\APPLIC~1\RegClean
    [22/12/2007|13:33] C:\DOCUME~1\pc1\APPLIC~1\Sun
    [26/05/2008|18:38] C:\DOCUME~1\pc1\APPLIC~1\TaoUSign
    [05/02/2009|18:12] C:\DOCUME~1\pc1\APPLIC~1\TomTom
    [13/12/2007|16:16] C:\DOCUME~1\pc1\APPLIC~1\Uniblue
    [06/07/2009|18:13] C:\DOCUME~1\pc1\APPLIC~1\uTorrent
    [06/07/2009|18:13] C:\DOCUME~1\pc1\APPLIC~1\Visual Money
    [20/04/2008|21:07] C:\DOCUME~1\pc1\APPLIC~1\vlc
    [17/08/2007|18:10] C:\DOCUME~1\pc1\APPLIC~1\Vso
    [25/08/2007|14:26] C:\DOCUME~1\pc1\APPLIC~1\WinRAR
    [19/02/2009|19:37] C:\DOCUME~1\pc1\APPLIC~1\XnView


    --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

    [24/09/2009 21:16][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{CE3AA5F3-A6FE-4AB7-95C3-1CE51750976A}.job
    [07/09/2009 18:06][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [24/09/2009 21:32][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [29/02/2008 16:36][-rah-----] C:\WINDOWS\tasks\desktop.ini

    --------------------\\ Listing des dossiers dans C:\Program Files

    [23/10/2007|19:05] C:\Program Files\2D and 3D Animator
    [14/03/2009|19:52] C:\Program Files\Adobe
    [24/09/2009|22:09] C:\Program Files\Ad-Remover
    [30/08/2008|15:50] C:\Program Files\Ahead
    [17/09/2009|19:18] C:\Program Files\AlerteGPS
    [27/06/2008|17:58] C:\Program Files\Alwil Software
    [28/06/2009|17:27] C:\Program Files\Apple Software Update
    [23/07/2006|16:17] C:\Program Files\Ariane
    [28/04/2008|17:31] C:\Program Files\ATI Technologies
    [12/11/2006|20:05] C:\Program Files\AviSynth 2.5
    [14/10/2005|18:55] C:\Program Files\BoontyGames
    [30/04/2008|15:43] C:\Program Files\Common Files
    [27/05/2006|18:36] C:\Program Files\Dictionnaire
    [26/05/2006|11:48] C:\Program Files\DIFX
    [13/04/2009|18:19] C:\Program Files\directx
    [19/12/2008|16:33] C:\Program Files\DivX
    [02/08/2009|12:09] C:\Program Files\Fichiers communs
    [17/08/2007|17:50] C:\Program Files\FileView6
    [28/05/2009|19:19] C:\Program Files\Google
    [03/07/2009|17:53] C:\Program Files\Icon Constructor 3
    [04/07/2008|17:12] C:\Program Files\Icone
    [10/01/2009|11:36] C:\Program Files\iGraal
    [13/01/2008|22:21] C:\Program Files\Illustrate
    [17/08/2007|17:04] C:\Program Files\Image Assistant
    [19/07/2009|12:32] C:\Program Files\InstallShield Installation Information
    [24/09/2009|22:42] C:\Program Files\Internet Explorer
    [23/04/2007|19:32] C:\Program Files\IVT Corporation
    [12/08/2009|10:52] C:\Program Files\Java
    [28/11/2008|17:16] C:\Program Files\JRE
    [23/06/2009|17:34] C:\Program Files\Labtec
    [27/05/2009|18:55] C:\Program Files\LETMIN2
    [07/06/2009|15:18] C:\Program Files\LimeWire
    [15/01/2006|20:19] C:\Program Files\ListeCd2
    [21/05/2006|12:31] C:\Program Files\Livecom
    [18/07/2009|17:22] C:\Program Files\Logitech
    [18/07/2009|12:41] C:\Program Files\ma-config.com
    [13/04/2009|10:26] C:\Program Files\MagicDisc
    [30/12/2008|15:21] C:\Program Files\Malwarebytes' Anti-Malware
    [13/08/2007|11:26] C:\Program Files\MessengerPlus! 3
    [24/09/2009|22:41] C:\Program Files\Microsoft
    [20/02/2005|12:34] C:\Program Files\microsoft frontpage
    [07/07/2009|17:50] C:\Program Files\Microsoft Money 2005
    [06/07/2009|17:22] C:\Program Files\Microsoft Office
    [06/10/2006|18:46] C:\Program Files\Microsoft SQL Server
    [13/10/2007|12:45] C:\Program Files\Microsoft SQL Server Compact Edition
    [06/10/2006|19:38] C:\Program Files\Microsoft.NET
    [06/07/2009|19:45] C:\Program Files\Movie Maker
    [16/03/2007|19:20] C:\Program Files\MP3 Player Utilities 4.00
    [29/08/2008|14:48] C:\Program Files\MSBuild
    [17/08/2007|16:44] C:\Program Files\MSECache
    [20/02/2005|12:28] C:\Program Files\MSN Gaming Zone
    [18/07/2008|16:13] C:\Program Files\NetMeeting
    [20/02/2005|13:24] C:\Program Files\Online Services
    [28/11/2008|17:16] C:\Program Files\OpenOffice.org 3
    [11/09/2009|15:23] C:\Program Files\Orange
    [19/08/2009|13:27] C:\Program Files\OrangeHSS
    [06/07/2009|19:45] C:\Program Files\Outlook Express
    [24/09/2009|18:04] C:\Program Files\Pochette Express 2
    [28/06/2009|17:28] C:\Program Files\QuickTime
    [19/07/2009|12:32] C:\Program Files\RALINK
    [29/08/2008|14:48] C:\Program Files\Reference Assemblies
    [17/07/2009|21:20] C:\Program Files\Securitoo
    [20/02/2005|12:31] C:\Program Files\Services en ligne
    [30/12/2008|00:52] C:\Program Files\Support Tools
    [05/02/2009|18:10] C:\Program Files\TomTom DesktopSuite
    [24/06/2009|17:28] C:\Program Files\TomTom HOME 2
    [24/06/2009|17:28] C:\Program Files\TomTom International B.V
    [17/07/2009|20:42] C:\Program Files\TP-LINK
    [24/09/2009|21:38] C:\Program Files\trend micro
    [20/02/2005|12:40] C:\Program Files\Uninstall Information
    [11/07/2006|08:52] C:\Program Files\Unlocker
    [27/06/2008|17:08] C:\Program Files\Wanadoo Messager
    [22/04/2008|18:44] C:\Program Files\Web Media Player
    [24/09/2009|22:41] C:\Program Files\Windows Live
    [24/03/2009|18:25] C:\Program Files\Windows Live SkyDrive
    [23/10/2007|19:04] C:\Program Files\Windows Live Toolbar
    [17/08/2007|16:50] C:\Program Files\Windows Media Connect 2
    [19/12/2008|16:47] C:\Program Files\Windows Media Player
    [18/07/2008|16:13] C:\Program Files\Windows NT
    [10/08/2007|20:28] C:\Program Files\WindowsUpdate
    [26/08/2007|12:50] C:\Program Files\WinRAR
    [20/02/2005|12:34] C:\Program Files\xerox
    [02/07/2009|21:10] C:\Program Files\Yahoo!

    --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

    [13/03/2009|17:56] C:\Program Files\Fichiers communs\Adobe
    [20/02/2005|15:18] C:\Program Files\Fichiers communs\Ahead
    [24/02/2008|18:23] C:\Program Files\Fichiers communs\Apple
    [29/06/2005|09:10] C:\Program Files\Fichiers communs\BOONTY Shared
    [06/07/2009|17:11] C:\Program Files\Fichiers communs\Borland Shared
    [20/02/2005|14:14] C:\Program Files\Fichiers communs\DESIGNER
    [10/03/2005|20:15] C:\Program Files\Fichiers communs\DirectX
    [17/07/2009|12:36] C:\Program Files\Fichiers communs\France Telecom
    [24/02/2005|14:42] C:\Program Files\Fichiers communs\InstallShield
    [07/04/2005|21:36] C:\Program Files\Fichiers communs\Java
    [26/04/2006|19:23] C:\Program Files\Fichiers communs\Labtec
    [18/07/2009|17:23] C:\Program Files\Fichiers communs\logishrd
    [18/07/2009|17:24] C:\Program Files\Fichiers communs\Microsoft Shared
    [20/02/2005|12:29] C:\Program Files\Fichiers communs\MSSoap
    [30/08/2008|15:50] C:\Program Files\Fichiers communs\Nero
    [14/05/2008|11:09] C:\Program Files\Fichiers communs\NSV
    [20/02/2005|12:20] C:\Program Files\Fichiers communs\ODBC
    [11/08/2007|11:29] C:\Program Files\Fichiers communs\ScanSoft Shared
    [10/12/2006|11:58] C:\Program Files\Fichiers communs\Services
    [15/04/2007|13:12] C:\Program Files\Fichiers communs\Simple Star Shared
    [20/02/2005|12:20] C:\Program Files\Fichiers communs\SpeechEngines
    [31/01/2006|23:49] C:\Program Files\Fichiers communs\Symantec Shared
    [18/07/2008|16:13] C:\Program Files\Fichiers communs\System
    [11/08/2007|15:17] C:\Program Files\Fichiers communs\Ulead Systems
    [23/10/2006|17:50] C:\Program Files\Fichiers communs\Vbox
    [24/03/2009|18:24] C:\Program Files\Fichiers communs\Windows Live
    [20/02/2008|17:23] C:\Program Files\Fichiers communs\WindowsLiveInstaller

    --------------------\\ Process

    ( 50 Processes )

    ... OK !

    --------------------\\ Recherche avec S_Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Recherche de Fichiers / Dossiers Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Verification du Registre

    ..... OK !

    --------------------\\ Verification du fichier Hosts

    Fichier Hosts PROPRE


    --------------------\\ Recherche de fichiers avec Catchme

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2009-09-24 22:53:47
    Windows 5.1.2600 Service Pack 3 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    C:\DOCUME~1\pc1\LOCALS~1\APPLIC~1\Microsoft\Windows\GameExplorer\{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}\PlayTasks\1\Les Sims™ 2 : Boit@Look.lnk 1087 bytes hidden from API
    scan completed successfully
    hidden processes: 0
    hidden files: 1669

    --------------------\\ Recherche d'autres infections

    --------------------\\ Cracks & Keygens ..

    C:\DOCUME~1\pc1\Application Data\uTorrent\Call Of Duty 4 No CD Keyand No CD Crack.rar.torrent
    C:\DOCUME~1\pc1\Application Data\uTorrent\Nero 8.3.6.0 Ultra Edition + Keygen.torrent
    C:\DOCUME~1\pc1\Application Data\uTorrent\The Sims 2 Bon Voyage PC Incl Crack.1.torrent
    C:\DOCUME~1\pc1\Application Data\uTorrent\The Sims 2 Bon Voyage PC Incl Crack.2.torrent
    C:\DOCUME~1\pc1\Application Data\uTorrent\The Sims 2 Bon Voyage PC Incl Crack.torrent
    C:\DOCUME~1\pc1\Application Data\uTorrent\The Sims 2 FreeTime + Crack.1.torrent
    C:\DOCUME~1\pc1\Application Data\uTorrent\The Sims 2 FreeTime + Crack.torrent
    C:\DOCUME~1\pc1\Application Data\uTorrent\Visual Money v2.4 Inlud. Keygen.torrent
    C:\DOCUME~1\pc1\Application Data\uTorrent\Visual.Money.v2.2.Incl.Keygen-iNDUCT.torrent
    C:\DOCUME~1\pc1\Application Data\uTorrent\[PC] - The_Sims_2_Bon_Voyage.Multi-Es .+Crack.[www.gamepcrip.com].nrg.1.torrent
    C:\DOCUME~1\pc1\Application Data\uTorrent\[PC] - The_Sims_2_Bon_Voyage.Multi-Es .+Crack.[www.gamepcrip.com].nrg.torrent
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\01DBD57D-0C7D-4DF3-953B-099B0200903C.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\03BF7AA8-AD7D-4D64-8069-B788B62DA50F.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\0FE8AE78-F364-47E8-BB4A-CBE33BCA2169.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\12C829A3-8007-47F9-913F-3117C2266A40.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\1380FD8A-655A-48EF-93AB-76464F027BFB.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\35B51C54-AFA5-4435-94F1-57C957970ADC.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\3EF7E7A5-85C2-45D1-88C0-A7AA0EA85144.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\4A2330E7-BD8E-42BE-81A7-71079744B4EA.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\4AD7D007-0B86-4B9B-9E4F-CBF0F0E0AE50.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\648F037C-B737-45B2-9837-053D7007F968.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\6A60AA2E-5C44-441A-8A95-3A17638CF91A.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\722A7BD8-100C-4839-AF3E-D2411D055D97.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\731A0B60-011E-44A3-93CB-3F87E419EF3E.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\7449BD48-9BC7-485C-8B83-180FDEDC5AFB.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\8BBE2C3C-C6B3-47CA-B46B-DE54C7734E74.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\9333CBA9-BF5E-46E4-8895-54D03318D97F.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\C8B8B5C0-16F9-4CD7-BDB4-EFB1C9D07B40.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\CBF4332C-3DF7-4B7E-83AC-C50EFD11ECE5.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\contactcoll.cache
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\F5EEF266-D630-4459-9879-0854B9FA9BDF.WindowsLiveContact
    C:\DOCUME~1\pc1\Contacts\criick-crack-b0um-x33@hotmail.fr\F997B688-9380-48A2-98B7-EF759241D2A0.WindowsLiveContact
    C:\DOCUME~1\pc1\Favoris\Incomplete\6NLAG3XH3VO3GVJVHLEFFOFMBFB2IN4N\The Sims 2 - Freetime\Crack.rar
    C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\Keygens
    C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\No-cd Cracks
    C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\Keygens\allsims.exe
    C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\Keygens\freetime.exe
    C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\Keygens\Kitchen and Bath keygen.exe
    C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\No-cd Cracks\Sims2EP5.exe
    C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\No-cd Cracks\Sims2SP2.exe
    C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\No-cd Cracks\Sims2SP4.exe
    C:\DOCUME~1\pc1\Favoris\Incomplete\JMGBFXURXXVAOZIOPKZWXGTZ4RSJA64U\The Sims 2 - Bon Voyage Expansion Pack\No-cd Cracks\Sims2SP6.exe
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\Sharing Folders
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\objectstore.v2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\H0C+m00zJnUEpqvrpUwmEeNk+m4=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\H0C+m00zJnUEpqvrpUwmEeNk+m4=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\IA9vmN0qT34TQ+xiZbPmcxeXUDg=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\IA9vmN0qT34TQ+xiZbPmcxeXUDg=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\lCyhu24yMQt+CJlbGST3Jy9+KEI=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\lCyhu24yMQt+CJlbGST3Jy9+KEI=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\VfEKKH2K+gUzhtlVXHIvzB2twQ0=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\VfEKKH2K+gUzhtlVXHIvzB2twQ0=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\VoP12bdqQyV2pOm1b3Quh6qvYdc=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Backgrounds\VoP12bdqQyV2pOm1b3Quh6qvYdc=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\axF7a0ekuiAc7WjQjNmjxYpRX6Q=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\axF7a0ekuiAc7WjQjNmjxYpRX6Q=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\B3VEl5u5DvNzgIua1+Zd4Uxt2FLs=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\B3VEl5u5DvNzgIua1+Zd4Uxt2FLs=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\hyiJu8sDcRCbJhl+Ccy2CjQR8lA=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\hyiJu8sDcRCbJhl+Ccy2CjQR8lA=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\jdI6F7DFhC2OSW2FJWOBKjulvAds=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\DynamicBackgrounds\jdI6F7DFhC2OSW2FJWOBKjulvAds=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\2VdOiRn8R6vgyAo1OuWk82FGrO9g=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\2VdOiRn8R6vgyAo1OuWk82FGrO9g=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\cmJCJjUVJ+x1g5BUj5TlTOAoFIo=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\cmJCJjUVJ+x1g5BUj5TlTOAoFIo=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\dW0VZfrFH4igpqB+aknu+YLVPQc=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\dW0VZfrFH4igpqB+aknu+YLVPQc=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\eXGWmogZak9R61lyiAgAEW2Fr2U4=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\eXGWmogZak9R61lyiAgAEW2Fr2U4=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\iMu6QwjGaz19Uc3Iub132FGgtfY4=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\iMu6QwjGaz19Uc3Iub132FGgtfY4=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\iyD2FcB82FO02FOIroc+DEhvb4wfnE=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\iyD2FcB82FO02FOIroc+DEhvb4wfnE=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\mW7MfHUhXfGj2FMzw2GAHWck7kvM=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\mW7MfHUhXfGj2FMzw2GAHWck7kvM=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\OELOe8WY+L2rRFjc5PgniHNJB6M=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\OELOe8WY+L2rRFjc5PgniHNJB6M=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\S+c8gyL8O5ZxTtEamXVEcWNlWPg=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\S+c8gyL8O5ZxTtEamXVEcWNlWPg=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\VOiCOo9yjYbP2JvqMKdXagPp+6o=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\VOiCOo9yjYbP2JvqMKdXagPp+6o=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\WliJzSCj1p0+9+BOKoKSC2FcHKMk=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\WliJzSCj1p0+9+BOKoKSC2FcHKMk=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\ZTbE6J8kl20dzoFo9bmIlpOOF90=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\UserTile\ZTbE6J8kl20dzoFo9bmIlpOOF90=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\+8UdQGeB2FwWIYG+mC+vuvUy9zEw=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\+8UdQGeB2FwWIYG+mC+vuvUy9zEw=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\72FjqK0b2FzFkbJWZ+BlMs1OxQprI=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\72FjqK0b2FzFkbJWZ+BlMs1OxQprI=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\alxGH2FFbmTzeLEdtRHmv6GBUzdw=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\alxGH2FFbmTzeLEdtRHmv6GBUzdw=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\AzBXDxf+Tcdvcans2TCRnoXh2Fjg=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\AzBXDxf+Tcdvcans2TCRnoXh2Fjg=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\enMqwlYLN4AvpmaOrIfYLWsVAdA=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\enMqwlYLN4AvpmaOrIfYLWsVAdA=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\ioAfCdA6Kn0hKsu+Ga1jHJ1UCG8=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\ioAfCdA6Kn0hKsu+Ga1jHJ1UCG8=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\J9+5k2FTpQP6WuWOj5y0n41qN5dc=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\J9+5k2FTpQP6WuWOj5y0n41qN5dc=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\lnHW2s0zHIsgKVjOiirk1ZBZ54g=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\lnHW2s0zHIsgKVjOiirk1ZBZ54g=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Nt2FqWL50Iag4EvPJjVS0IoDBFQ4=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Nt2FqWL50Iag4EvPJjVS0IoDBFQ4=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\rTeUDzJzwMepiafQ4bVfqDvados=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\rTeUDzJzwMepiafQ4bVfqDvados=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\rXcZb6ekO9S3jB29KleJkBOXYmY=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\rXcZb6ekO9S3jB29KleJkBOXYmY=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Sgj64GS+QyVyVxkslxY2FFsRARkg=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Sgj64GS+QyVyVxkslxY2FFsRARkg=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\SrJJm7YJAcA15VowAhBWXri5yLc=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\SrJJm7YJAcA15VowAhBWXri5yLc=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\tn+dOhziBZ+E4zoUS7frcglxoz0=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\tn+dOhziBZ+E4zoUS7frcglxoz0=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Zh9cZsOdVXAK4fAulijLqPGggcA=.dt2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\ObjectStore\Winks3\Zh9cZsOdVXAK4fAulijLqPGggcA=.id2
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\pending.dat
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\volume.xml
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\volume.xml~
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs\Dfsr00001.log.gz
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs\Dfsr00002.log.gz
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs\Dfsr00003.log.gz
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs\Dfsr00004.log.gz
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Logs\Dfsr00005.log
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\$db_normal$
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\$db_clean$
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\dfsr.db
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\fsr.chk
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\fsr.log
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\fsr00009.log
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\res1.log
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Messenger\criick-crack-b0um-x33@hotmail.fr\SharingMetadata\Working\database_1C5_1559_5DD7_70C0\res2.log
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\real
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\real\24eef702-96b4-4c80-9311-3abdff597f9c.AddressBook
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\real\8bab87c6-06c8-45f0-b74b-be0a00730c50.MeContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\real\contactcoll.cache
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\real\members.stg
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\01DBD57D-0C7D-4DF3-953B-099B0200903C.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\03BF7AA8-AD7D-4D64-8069-B788B62DA50F.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\0FE8AE78-F364-47E8-BB4A-CBE33BCA2169.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\1380FD8A-655A-48EF-93AB-76464F027BFB.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\3283C7F6-149B-4E3E-9AD2-4E727578C33E.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\35B51C54-AFA5-4435-94F1-57C957970ADC.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\4A2330E7-BD8E-42BE-81A7-71079744B4EA.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\4AD7D007-0B86-4B9B-9E4F-CBF0F0E0AE50.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\648F037C-B737-45B2-9837-053D7007F968.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\6A60AA2E-5C44-441A-8A95-3A17638CF91A.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\731A0B60-011E-44A3-93CB-3F87E419EF3E.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\7364F97C-1078-47C2-B16D-0D417172497E.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\7449BD48-9BC7-485C-8B83-180FDEDC5AFB.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\8BBE2C3C-C6B3-47CA-B46B-DE54C7734E74.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\9333CBA9-BF5E-46E4-8895-54D03318D97F.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\98162C17-3D35-4639-A739-3F0BBA700423.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\a8adbacc-45d1-432b-ba76-7d12e5cd3664.MeContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\C8B8B5C0-16F9-4CD7-BDB4-EFB1C9D07B40.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\CBF4332C-3DF7-4B7E-83AC-C50EFD11ECE5.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\contactcoll.cache
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\F5EEF266-D630-4459-9879-0854B9FA9BDF.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\F997B688-9380-48A2-98B7-EF759241D2A0.WindowsLiveContact
    C:\DOCUME~1\pc1\Local Settings\Application Data\Microsoft\Windows Live Contacts\criick-crack-b0um-x33@hotmail.fr\shadow\members.stg


    [F:42][D:12]-> C:\DOCUME~1\pc1\LOCALS~1\Temp
    [F:3245][D:0]-> C:\DOCUME~1\pc1\Cookies
    [F:5749][D:73]-> C:\DOCUME~1\pc1\LOCALS~1\TEMPOR~1\content.IE5

    1 - "C:\Lop SD\LopR_1.txt" - 24/09/2009|22:37 - Option : [1]
    2 - "C:\Lop SD\LopR_2.txt" - 24/09/2009|22:55 - Option : [2]

    --------------------\\ Fin du rapport a 22:55:25
    a c 267 8 Sécurité
    a b 9 Windows
    24 Septembre 2009 23:00:03

  • Désinstalle Java(TM) 6 Update 15.

  • Mets à jour Java.

  • Télécharge Malwarebytes' Anti-Malware (MBAM) sur ton Bureau.
  • Double-clique sur le fichier téléchargé pour lancer le processus d'installation.
  • Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.
  • Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.
  • Sélectionne Exécuter un examen rapide.
  • Clique sur Rechercher. L'analyse démarre.
  • A la fin de l'analyse, un message s'affiche :
    Citation :
    L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.

  • Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
  • Ferme tes navigateurs.
  • Si des malwares ont été détectés, clique sur Afficher les résultats.
  • Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.
  • MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.
    25 Septembre 2009 10:16:05

    voici le rapport
    Malwarebytes' Anti-Malware 1.41
    Version de la base de données: 2775
    Windows 5.1.2600 Service Pack 3

    25/09/2009 10:15:25
    mbam-log-2009-09-25 (10-15-25).txt

    Type de recherche: Examen rapide
    Eléments examinés: 144006
    Temps écoulé: 7 minute(s), 37 second(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 1
    Valeur(s) du Registre infectée(s): 0
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 1

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\cs41275 (Malware.Trace) -> Quarantined and deleted successfully.

    Valeur(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    C:\WINDOWS\system32\MSINET.oca (Malware.Trace) -> Quarantined and deleted successfully.
    a c 267 8 Sécurité
    a b 9 Windows
    25 Septembre 2009 13:40:36

    Citation :
    Version de la base de données: 2775

    --> Malwarebytes' Anti-Malware n'est pas à jour.
    25 Septembre 2009 14:11:05

    je viens de refaire une mise à jour et relancer le programme
    et voici le rapport
    Malwarebytes' Anti-Malware 1.41
    Version de la base de données: 2857
    Windows 5.1.2600 Service Pack 3

    25/09/2009 14:10:18
    mbam-log-2009-09-25 (14-10-18).txt

    Type de recherche: Examen rapide
    Eléments examinés: 147808
    Temps écoulé: 7 minute(s), 25 second(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 0
    Valeur(s) du Registre infectée(s): 0
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 0

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Valeur(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    (Aucun élément nuisible détecté)
    a c 267 8 Sécurité
    a b 9 Windows
    25 Septembre 2009 17:02:18

    Ton PC va mieux ?

  • Relance MBAM, va dans Quarantaine et supprime tout.

  • Refais un scan RSIT et poste le rapport log.
    25 Septembre 2009 17:16:50

    Logfile of random's system information tool 1.06 (written by random/random)
    Run by pc1 at 2009-09-25 17:16:15
    Microsoft Windows XP Édition familiale Service Pack 3
    System drive C: has 32 GB (28%) free of 114 GB
    Total RAM: 1023 MB (50% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 17:16:20, on 25/09/2009
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Ahead\InCD\InCDsrv.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
    C:\WINDOWS\system32\cisvc.exe
    C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\WINDOWS\System32\tcpsvcs.exe
    C:\WINDOWS\System32\snmp.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Documents and Settings\pc1\Favoris\Bureau\RSIT.exe
    C:\Program Files\trend micro\pc1.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://orange.fr/
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fourni par Orange
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll (file missing)
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: iGraal - {88F05591-0079-4c37-B138-5DA8BC1782EF} - C:\Program Files\iGraal\iGraal.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O3 - Toolbar: iGraal - {88F05591-0079-4c37-B138-5DA8BC1782EF} - C:\Program Files\iGraal\iGraal.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKLM\..\Run: [SoftwareHelper] C:\Documents and Settings\pc1\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
    O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
    O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
    O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
    O9 - Extra button: iGraal - {88F05591-0079-4c37-B138-5DA8BC1782EF} - C:\Program Files\iGraal\iGraal.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
    O15 - Trusted Zone: http://logicielsgratuits.orange.fr
    O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/F...
    O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986....
    O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
    O16 - DPF: {4A85DBE0-BFB2-4119-8401-186A7C6EB653} - http://messenger.zone.msn.com/binary/MJSS.cab69309.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
    O16 - DPF: {5A779DC0-837B-4590-AC42-C7C0847478C5} (OrangeInstaller_ModuleIE Control) - http://logicielsgratuits.orange.fr/download_service/Ins...
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
    O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/maconfig/MaConfig_3_...
    O16 - DPF: {B7D07999-2ADB-4AEB-997E-F61CB7B2E2CD} (TSEasyInstallX Control) - http://www.trendsecure.com/easy_install/_activex/fr/TSE...
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.ca...
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
    O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697516} (NsvPlayX Control) - http://www.nullsoft.com/nsv/embed/nsvplayx_vp6_mp3.cab
    O20 - AppInit_DLLs: nazqva.dll
    O20 - Winlogon Notify: jkkHYqnN - jkkHYqnN.dll (file missing)
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
    O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
    O23 - Service: InCD Helper (read only) (InCDsrvR) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\logishrd\Bluetooth\LBTServ.exe
    O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
    O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
    O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Unknown owner - C:\Program Files\Inventel\Gateway\wlancfg.exe (file missing)

    --
    End of file - 8986 bytes

    ======Scheduled tasks folder======

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    C:\WINDOWS\tasks\User_Feed_Synchronization-{CE3AA5F3-A6FE-4AB7-95C3-1CE51750976A}.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88F05591-0079-4c37-B138-5DA8BC1782EF}]
    iGraal - C:\Program Files\iGraal\iGraal.dll [2008-09-19 612160]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
    Google Toolbar Helper - c:\program files\google\googletoolbar1.dll [2009-02-15 2436160]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-07-25 41760]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
    JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-07-25 73728]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {88F05591-0079-4c37-B138-5DA8BC1782EF} - iGraal - C:\Program Files\iGraal\iGraal.dll [2008-09-19 612160]
    {2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll [2009-02-15 2436160]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-08-17 81000]
    "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
    "Kernel and Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2008-12-18 76304]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-07-25 149280]
    "SoftwareHelper"=C:\Documents and Settings\pc1\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe []
    "Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2009-09-10 1312080]
    "QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-05-26 413696]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OFFICEKB]
    C:\Program Files\Labtec\Keyboard\V5.1\kbdap32a.exe [2009-06-23 387584]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
    C:\Program Files\QuickTime\qttask.exe [2009-05-26 413696]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe]
    C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [2009-04-08 251240]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Démarrer^Programmes^Démarrage^Logitech SetPoint.lnk]
    C:\PROGRA~1\Logitech\SetPoint\SetPoint.exe [2009-02-19 809488]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Démarrer^Programmes^Démarrage^Ralink Wireless Utility.lnk]
    C:\PROGRA~1\RALINK\Common\RaUI.exe [2007-09-04 675840]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^pc1^Menu Démarrer^Programmes^Démarrage^NETGEAR WG111v2 Smart Wizard.lnk]
    C:\Program Files\NETGEAR\WG111v2\WG111v2.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^pc1^Menu Démarrer^Programmes^Démarrage^Yahoo! Widgets.lnk]
    C:\PROGRA~1\Yahoo!\Widgets\YAHOOW~1.EXE []

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "AppInit_DLLS"="nazqva.dll"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
    C:\WINDOWS\system32\Ati2evxx.dll [2006-05-03 61440]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\jkkHYqnN]
    jkkHYqnN.dll []

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
    c:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll [2009-02-19 72208]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
    UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 240128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    "{88485281-8b4b-4f8d-9ede-82e29a064277}"= []

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
    "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=95000000

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveAutoRun"=
    "NoDriveTypeAutoRun"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe"="C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil"
    "C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
    "C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule Plus"
    "C:\Documents and Settings\pc1\Favoris\Bureau\microtorrent_torrent_1.7.7_anglais_18245(2).exe"="C:\Documents and Settings\pc1\Favoris\Bureau\microtorrent_torrent_1.7.7_anglais_18245(2).exe:*:Enabled:µTorrent"
    "C:\WINDOWS\Temp\occ.exe"="C:\WINDOWS\Temp\occ.exe:*:D isabled:o neCC Module"
    "C:\WINDOWS\system32\mmc.exe"="C:\WINDOWS\system32\mmc.exe:*:Enabled:Microsoft Management Console"
    "C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:D isabled:Internet Explorer"
    "C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{48b32622-f9ec-11dd-91da-001e2aef17fb}]
    shell\AutoRun\command - F:\InstallTomTomHOME.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{6384265c-f39f-11dd-91c8-001e2aef17fb}]
    shell\AutoRun\command - F:\InstallTomTomHOME.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a18bb6c8-6e65-11dc-a1f4-00032f441728}]
    shell\AutoRun\command - E:\Autorun.exe


    ======File associations======

    .reg - open - regedit.exe "%1" %*
    .scr - open - "%1" %*

    ======List of files/folders created in the last 1 months======

    2009-09-24 22:34:32 ----AC---- C:\lopR.txt
    2009-09-24 22:34:15 ----DC---- C:\Lop SD
    2009-09-24 21:38:45 ----D---- C:\Program Files\trend micro
    2009-09-24 21:38:44 ----DC---- C:\rsit
    2009-09-24 21:30:50 ----D---- C:\WINDOWS\$NtUninstallXPSEPSCLP$
    2009-09-24 19:53:01 ----D---- C:\Program Files\Ad-Remover
    2009-09-17 19:10:46 ----D---- C:\Program Files\AlerteGPS
    2009-09-11 15:22:45 ----HDC---- C:\WINDOWS\ie8
    2009-09-11 15:06:12 ----D---- C:\Program Files\Orange

    ======List of files/folders modified in the last 1 months======

    2009-09-25 17:13:07 ----D---- C:\WINDOWS\Temp
    2009-09-25 17:12:29 ----A---- C:\WINDOWS\ModemLog_Bluetooth Fax Modem.txt
    2009-09-25 17:12:29 ----A---- C:\WINDOWS\ModemLog_Bluetooth DUN Modem.txt
    2009-09-25 15:09:21 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-09-25 15:09:20 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-09-25 13:27:58 ----HD---- C:\WINDOWS\inf
    2009-09-25 11:35:14 ----RASHC---- C:\boot.ini
    2009-09-25 11:35:13 ----AC---- C:\WINDOWS\system.ini
    2009-09-25 11:35:13 ----A---- C:\WINDOWS\win.ini
    2009-09-25 11:29:34 ----AD---- C:\Program Files\Fichiers communs
    2009-09-25 11:17:49 ----RD---- C:\Program Files
    2009-09-25 11:03:49 ----D---- C:\WINDOWS\pss
    2009-09-25 11:02:17 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-09-25 11:02:17 ----D---- C:\WINDOWS\system32\usmt
    2009-09-25 11:02:17 ----D---- C:\WINDOWS\system32
    2009-09-25 11:02:17 ----D---- C:\WINDOWS
    2009-09-25 11:02:17 ----D---- C:\Program Files\Outlook Express
    2009-09-25 11:02:17 ----D---- C:\Program Files\Movie Maker
    2009-09-25 10:59:55 ----D---- C:\WINDOWS\Prefetch
    2009-09-25 10:22:09 ----SHD---- C:\WINDOWS\Installer
    2009-09-25 10:22:09 ----SD---- C:\Documents and Settings\pc1\Application Data\Microsoft
    2009-09-25 10:22:09 ----D---- C:\Config.Msi
    2009-09-25 10:21:58 ----D---- C:\Program Files\MSECache
    2009-09-25 09:53:09 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
    2009-09-24 23:05:04 ----D---- C:\WINDOWS\system32\drivers
    2009-09-24 22:42:35 ----D---- C:\Program Files\Internet Explorer
    2009-09-24 22:41:33 ----D---- C:\Program Files\Microsoft
    2009-09-24 22:41:17 ----SD---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft
    2009-09-24 21:31:14 ----D---- C:\WINDOWS\system32\config
    2009-09-24 21:31:02 ----D---- C:\WINDOWS\system32\wbem
    2009-09-24 21:31:02 ----D---- C:\WINDOWS\Registration
    2009-09-24 19:47:23 ----DC---- C:\Temp
    2009-09-24 18:04:02 ----D---- C:\Program Files\Pochette Express 2
    2009-09-16 17:35:08 ----D---- C:\WINDOWS\network diagnostic
    2009-09-14 18:47:51 ----AC---- C:\WINDOWS\ModemLog_Bluetooth LAP Modem #2.txt
    2009-09-11 15:25:02 ----D---- C:\WINDOWS\system32\fr-fr
    2009-09-11 15:25:02 ----D---- C:\WINDOWS\Media
    2009-09-11 15:25:01 ----D---- C:\WINDOWS\Help
    2009-09-11 15:23:43 ----HD---- C:\WINDOWS\msdownld.tmp
    2009-09-11 15:06:13 ----SD---- C:\WINDOWS\Downloaded Program Files
    2009-09-11 13:36:57 ----A---- C:\WINDOWS\NeroDigital.ini

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-08-17 26944]
    R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-08-17 114768]
    R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-08-17 51376]
    R1 InCDPass;InCDPass; C:\WINDOWS\System32\DRIVERS\InCDPass.sys [2005-07-25 29696]
    R1 incdrm;InCD Reader; C:\WINDOWS\system32\drivers\incdrm.sys [2005-07-26 28672]
    R1 kbfilter;Keyboard Filter Driver; C:\WINDOWS\system32\drivers\kbfilter.sys [1999-08-27 14624]
    R1 Tcpip6;Pilote du protocole IPv6 Microsoft; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2008-06-20 225856]
    R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.5.3.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2009-07-18 21419]
    R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-08-17 20560]
    R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-08-17 94160]
    R2 EAPPkt;Realtek EAPPkt Protocol; C:\WINDOWS\system32\DRIVERS\EAPPkt.sys [2007-10-09 38144]
    R2 irda;Protocole IrDA; C:\WINDOWS\System32\DRIVERS\irda.sys [2008-04-13 88192]
    R2 LBeepKE;LBeepKE; C:\WINDOWS\System32\Drivers\LBeepKE.sys [2008-12-18 10384]
    R2 ppsio;PrmxPPDev; C:\WINDOWS\system32\drivers\ppsio.sys [2001-11-25 22688]
    R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-08-17 23152]
    R3 ati2mtag;ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [2006-05-03 1540608]
    R3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\System32\DRIVERS\blueletaudio.sys [2004-10-19 20096]
    R3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\System32\DRIVERS\btnetdrv.sys [2004-09-21 10804]
    R3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys [2004-12-01 22488]
    R3 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\System32\DRIVERS\vbtenum.sys [2004-09-21 11604]
    R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
    R3 irsir;Pilote série infrarouge Microsoft; C:\WINDOWS\System32\DRIVERS\irsir.sys [2001-08-17 18688]
    R3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2008-12-18 20240]
    R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2008-12-18 35472]
    R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2008-12-18 37392]
    R3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [2008-12-18 28816]
    R3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\DRIVERS\LVUSBSta.sys [2004-01-21 12080]
    R3 mouhid;Pilote HID de souris; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-23 12288]
    R3 ms_mpu401;Pilote UART MIDI MPU-401 Microsoft; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
    R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [2004-05-17 33280]
    R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [2004-05-17 12928]
    R3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWS\System32\DRIVERS\rasirda.sys [2001-08-17 19584]
    R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2003-04-24 5888]
    R3 rt2870;Ralink 802.11n USB Wireless LAN Card Driver; C:\WINDOWS\system32\DRIVERS\rt2870.sys [2007-07-28 517632]
    R3 tunmp;Pilote de carte miniport Tun Microsoft; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-13 12288]
    R3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
    R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]
    R3 usbehci;Pilote miniport de contrôleur hôte amélioré USB 2.0 Microsoft; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208]
    R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
    R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbohci.sys [2008-04-13 17152]
    R3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
    R3 VComm;Virtual Serial port driver; C:\WINDOWS\System32\DRIVERS\VComm.sys [2004-10-19 61312]
    R3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys [2004-11-05 82148]
    R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
    R4 InCDfs;InCD File System; C:\WINDOWS\system32\drivers\InCDfs.sys [2005-07-25 101504]
    S3 arusb(TP-LINK);Atheros Wireless Network Adapter Service(TP-LINK); C:\WINDOWS\system32\DRIVERS\arusb.sys [2008-05-26 434688]
    S3 BTNetFilter;Bluetooth Network Filter; \??\C:\WINDOWS\system32\drivers\BTNetFilter.sys []
    S3 catchme;catchme; \??\C:\DOCUME~1\pc1\LOCALS~1\Temp\catchme.sys []
    S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
    S3 cm102u32;C-Media CM6501 Like Sound Interface; C:\WINDOWS\system32\drivers\c6501.sys [2006-07-11 1419776]
    S3 DNINDIS5;DNINDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\DNINDIS5.SYS []
    S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
    S3 dtscsi;dtscsi; C:\WINDOWS\system32\drivers\dtscsi.sys []
    S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
    S3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\WINDOWS\system32\DRIVERS\mcdbus.sys []
    S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
    S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
    S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [2008-04-13 10880]
    S3 NPF;Netgroup Packet Filter; C:\WINDOWS\system32\drivers\npf.sys [2008-12-29 42512]
    S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCAMPR5.SYS []
    S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
    S3 pepifilter;Volume Adapter; C:\WINDOWS\System32\DRIVERS\lv302af.sys [2004-01-21 5915]
    S3 PID_08A0;Labtec WebCam Pro(PID_08A0); C:\WINDOWS\System32\DRIVERS\LV302AV.SYS [2004-01-21 271360]
    S3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\WINDOWS\system32\DRIVERS\LV302V32.SYS [2007-10-12 1279000]
    S3 RTLWUSB;NETGEAR WG111v2 54Mbps Wireless USB 2.0 Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\wg111v2.sys []
    S3 SIS163u;SiS163 usb Wireless LAN Adapter Driver; C:\WINDOWS\System32\DRIVERS\sis163u.sys []
    S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\System32\DRIVERS\SLIP.sys [2008-04-13 11136]
    S3 streamip;BDA IPSink; C:\WINDOWS\System32\DRIVERS\StreamIP.sys [2008-04-13 15232]
    S3 usbbus;LGE Mobile Composite USB Device; C:\WINDOWS\system32\DRIVERS\lgusbbus.sys []
    S3 UsbDiag;LGE Mobile USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys []
    S3 USBModem;LGE Mobile USB Modem; C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys []
    S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2008-04-13 25856]
    S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
    S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
    S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
    S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
    S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 6to4;Service d'application d'assistance IPv6; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-02-18 110592]
    R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-08-17 18752]
    R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-05-03 413696]
    R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-08-17 138680]
    R2 BlueSoleil Hid Service;BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [2004-12-13 106496]
    R2 FTRTSVC;France Telecom Routing Table Service; C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\1\FTRTSVC.exe [2008-06-20 65536]
    R2 InCDsrv;InCD Helper; C:\Program Files\Ahead\InCD\InCDsrv.exe [2005-07-26 876032]
    R2 Iprip;Écouteur RIP; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
    R2 Irmon;Moniteur infrarouge; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
    R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-07-25 153376]
    R2 SimpTcp;Services TCP/IP simplifiés; C:\WINDOWS\System32\tcpsvcs.exe [2003-04-24 19456]
    R2 SNMP;Service SNMP; C:\WINDOWS\System32\snmp.exe [2008-04-14 33280]
    R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2009-04-08 92008]
    R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-08-17 254040]
    R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-08-17 352920]
    S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2006-05-03 520192]
    S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268800]
    S2 InCDsrvR;InCD Helper (read only); C:\Program Files\Ahead\InCD\InCDsrv.exe [2005-07-26 876032]
    S2 Wlancfg;Service de lancement de WlanCfg; C:\Program Files\Inventel\Gateway\wlancfg.exe SVC []
    S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
    S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-12-30 138168]
    S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Fichiers communs\logishrd\Bluetooth\LBTServ.exe [2009-02-19 121360]
    S3 LPDSVC;Serveur d'impression TCP/IP; C:\WINDOWS\System32\tcpsvcs.exe [2003-04-24 19456]
    S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2009-05-29 234864]
    S3 p2pgasvc;Authentification de groupe réseau homologue; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    S3 p2pimsvc;Gestionnaire d'identité réseau homologue; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    S3 p2psvc;Réseau homologue; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    S3 PNRPSvc;Protocole de résolution de noms d'homologues; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    S3 SNMPTRAP;Service d'interruption SNMP; C:\WINDOWS\System32\snmptrap.exe [2008-04-14 8704]
    S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-24 918016]

    -----------------EOF-----------------
    a c 267 8 Sécurité
    a b 9 Windows
    25 Septembre 2009 17:21:25

  • Lance ce fichier : C:\Program Files\trend micro\pc1.exe
  • Choisis Do a system scan only.
  • Coche les cases qui sont devant les lignes suivantes :

    O4 - HKLM\..\Run: [SoftwareHelper] C:\Documents and Settings\pc1\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe

    O20 - AppInit_DLLs: nazqva.dll

    O20 - Winlogon Notify: jkkHYqnN - jkkHYqnN.dll (file missing)

  • Clique en bas sur Fix checked. Mets oui si HijackThis te demande quelque chose.
  • Ferme HijackThis.
    25 Septembre 2009 17:36:07

    ok c'est fait que dois je faire maintenant
    a c 267 8 Sécurité
    a b 9 Windows
    25 Septembre 2009 17:39:51

    As-tu fait une défragmentation récemment ?
    a c 267 8 Sécurité
    a b 9 Windows
    25 Septembre 2009 17:48:16

    Le PC va mieux ?
    25 Septembre 2009 17:49:57

    je crois que oui à suivre
    merci de ton aide
    a c 267 8 Sécurité
    a b 9 Windows
    25 Septembre 2009 17:54:17

    1/

  • Désinstalle HijackThis.

  • Télécharge ToolsCleaner2 sur ton Bureau.
  • Double-clique sur ToolsCleaner2.exe pour le lancer.
  • Clique sur Recherche et laisse le scan agir.
  • Clique sur Suppression pour finaliser.
  • Tu peux, si tu le souhaites, te servir des Options Facultatives.
  • Clique sur Quitter pour obtenir le rapport.
  • Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).


    2/

  • Télécharge et installe CCleaner Slim.
  • Lance-le. Va dans Options puis Avancé et décoche la case Effacer uniquement les fichiers etc....
  • Va dans Nettoyeur, choisis Analyser. Une fois terminé, lance le nettoyage.


    3/

  • Il est nécessaire de désactiver puis réactiver la restauration système pour la purger.


    ==Prévention==

    Conserve MBAM. Il te servira à scanner les fichiers douteux en complément de l'antivirus et scanne le disque dur régulièrement.

    Comme navigateur, utilise plutôt Mozilla Firefox qu'Internet Explorer.

    Vérifie que les mises à jour automatiques sont bien activées (Menu Démarrer, clique droit sur Poste de travail, Propriétés, onglet Mises à jour automatiques).


    ==Problème résolu ?==

    --> Si tu estimes que ton problème est résolu, ajoute [Résolu] au titre. Pour cela :
  • Clique, dans ton premier message, sur le bouton Editer .
  • Ajoute la mention [Résolu] devant le titre.
  • Clique ensuite sur Valider votre message.


    Sois plus vigilant(e) sur Internet ;) 
    25 Septembre 2009 18:00:20

    après toolscleaner
    [ Rapport ToolsCleaner version 2.3.10 (par A.Rothstein & dj QUIOU) ]

    --> Recherche:

    C:\lopR.txt: trouvé !
    C:\catchme.log: trouvé !
    C:\Lop SD: trouvé !
    C:\Rsit: trouvé !
    C:\Documents and Settings\pc1\Favoris\Bureau\LopSD.exe: trouvé !
    C:\Documents and Settings\pc1\Favoris\Bureau\Ad-R.exe: trouvé !
    C:\Documents and Settings\pc1\Favoris\Bureau\Rsit.exe: trouvé !
    C:\Documents and Settings\pc1\Local Settings\Temporary Internet Files\Content.IE5\I1QWEZY4\hijackthis.log: trouvé !
    C:\Lop SD\catchme.exe: trouvé !
    C:\Program Files\Ad-remover: trouvé !
    C:\Program Files\Ad-Remover\BACKUP\Ad-R.exe: trouvé !
    C:\Program Files\trend micro\HijackThis.exe: trouvé !
    C:\Program Files\trend micro\hijackthis.log: trouvé !

    ---------------------------------
    --> Suppression:

    C:\Documents and Settings\pc1\Favoris\Bureau\LopSD.exe: supprimé !
    C:\Documents and Settings\pc1\Favoris\Bureau\Ad-R.exe: supprimé !
    C:\Lop SD\catchme.exe: supprimé !
    C:\Program Files\Ad-Remover\BACKUP\Ad-R.exe: supprimé !
    C:\Program Files\trend micro\HijackThis.exe: supprimé !
    C:\lopR.txt: supprimé !
    C:\catchme.log: supprimé !
    C:\Documents and Settings\pc1\Favoris\Bureau\Rsit.exe: supprimé !
    C:\Documents and Settings\pc1\Local Settings\Temporary Internet Files\Content.IE5\I1QWEZY4\hijackthis.log: supprimé !
    C:\Program Files\trend micro\hijackthis.log: supprimé !
    C:\Lop SD: supprimé !
    C:\Rsit: supprimé !
    C:\Program Files\Ad-remover: supprimé !
    a c 267 8 Sécurité
    a b 9 Windows
    25 Septembre 2009 18:01:16

    Tu peux supprimer ToolsCleaner.
    25 Septembre 2009 18:14:10

    comment dois je faire pour déactiver la restauration du système et la réactiver merci
    25 Septembre 2009 18:19:19

    merci de ton aide
    8 Novembre 2009 14:12:59

    Bonjour je viens vous demander de l'aide mon a un problème avec son ordi une mise à jour ne s'est pas faite correctement l'ordi a été arrêté pendant la mise à jour (orage)
    donc quand il allume son pc il y a ce message qui s'affiche " Configuration des mise à jours étapes 3 sur 3 : 0%; N'éteignez pas l'ordinateur " ( il est sous Vista ) donc j'attends qu'il termine cette étape.

    Mais l'ordi se redémarre et revient sur " Configuration des mise à jours étapes 3 sur 3 : 0%; N'éteignez pas l'ordinateur " mais le pourcentage de progression de bouge pas il reste toujours à zéro.
    Donc l'ordi redémarre sans cesse
    on a essayé démarrage sans échec touche f8
    aussi restauration touche f11
    rien n'y fait
    et nous n'avons pas de cd vista le pc a été livré avec l'installation
    que puis je faire
    merci de votre aide
    a c 267 8 Sécurité
    a b 9 Windows
    8 Novembre 2009 16:39:05

    Le mode sans échec fonctionne ?
    8 Novembre 2009 17:59:06

    non ca ne fonctionne pas
    a c 267 8 Sécurité
    a b 9 Windows
    8 Novembre 2009 19:05:06

    Il m'est arrivé pratiquement la même chose une fois et j'ai utilisé un DVD de Vista pour pouvoir faire une restauration système.
    8 Novembre 2009 19:42:33

    oui mais le problème c'est que le pc est livré sans cd vista
    a c 267 8 Sécurité
    a b 9 Windows
    8 Novembre 2009 19:44:49

    Oui, c'était sûrement à toi de le graver.

    Le PC est de quelle marque ?
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS