Se connecter / S'enregistrer
Votre question

(RESOLU) Virus windows system suite impossible de supprimer

Tags :
  • windows media player
  • Sécurité
Dernière réponse : dans Sécurité et virus
4 Septembre 2009 07:30:10

Bonjour a tous , voila j'ai un souci sur un pc portable ou j'ai windows system suite qui n'arrête pas en coutinue de s'afficher pour me dire que le pc est infecté de 96 voir 110 de divers virus et autre j'ai essayé de le supprimer mais sans succés et le probleme est que toute applications que je lui demande est ralenti voir impossible a afficher , ce pourquoi je passe part un autre pc pour se message . Je vous remercie d'avance pour toute aide que vous pourriez m'apporter pour supprimer celui ci

Autres pages sur : resolu virus windows system suite impossible supprimer

4 Septembre 2009 15:23:23

Re bonjour je poste un rapport Hijackthis a tout hazard si sa peut faire avancer les chose
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:17:57, on 04/09/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\keyhook.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\SANGHA Multimedia Keyboard Driver\PS2USBKbdDrv.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Documents and Settings\All Users\Application Data\ad79d4c\WSad79.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Realtek\Rtl8180\RtlWake.exe
C:\WINDOWS\system32\sistray.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Fichiers communs\Teleca Shared\CapabilityManager.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orange.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O1 - Hosts: 212.150.54.250 dv-networks.com
O1 - Hosts: 74.125.45.100 4-open-davinci.com
O1 - Hosts: 74.125.45.100 securitysoftwarepayments.com
O1 - Hosts: 74.125.45.100 privatesecuredpayments.com
O1 - Hosts: 74.125.45.100 secure.privatesecuredpayments.com
O1 - Hosts: 74.125.45.100 getantivirusplusnow.com
O1 - Hosts: 74.125.45.100 secure-plus-payments.com
O1 - Hosts: 74.125.45.100 www.getantivirusplusnow.com
O1 - Hosts: 74.125.45.100 www.secure-plus-payments.com
O1 - Hosts: 74.125.45.100 www.getavplusnow.com
O1 - Hosts: 74.125.45.100 www.securesoftwarebill.com
O1 - Hosts: 64.86.17.32 google.ae
O1 - Hosts: 64.86.17.32 google.as
O1 - Hosts: 64.86.17.32 google.at
O1 - Hosts: 64.86.17.32 google.az
O1 - Hosts: 64.86.17.32 google.ba
O1 - Hosts: 64.86.17.32 google.be
O1 - Hosts: 64.86.17.32 google.bg
O1 - Hosts: 64.86.17.32 google.bs
O1 - Hosts: 64.86.17.32 google.ca
O1 - Hosts: 64.86.17.32 google.cd
O1 - Hosts: 64.86.17.32 google.com.gh
O1 - Hosts: 64.86.17.32 google.com.hk
O1 - Hosts: 64.86.17.32 google.com.jm
O1 - Hosts: 64.86.17.32 google.com.mx
O1 - Hosts: 64.86.17.32 google.com.my
O1 - Hosts: 64.86.17.32 google.com.na
O1 - Hosts: 64.86.17.32 google.com.nf
O1 - Hosts: 64.86.17.32 google.com.ng
O1 - Hosts: 64.86.17.32 google.ch
O1 - Hosts: 64.86.17.32 google.com.np
O1 - Hosts: 64.86.17.32 google.com.pr
O1 - Hosts: 64.86.17.32 google.com.qa
O1 - Hosts: 64.86.17.32 google.com.sg
O1 - Hosts: 64.86.17.32 google.com.tj
O1 - Hosts: 64.86.17.32 google.com.tw
O1 - Hosts: 64.86.17.32 google.dj
O1 - Hosts: 64.86.17.32 google.de
O1 - Hosts: 64.86.17.32 google.dk
O1 - Hosts: 64.86.17.32 google.dm
O1 - Hosts: 64.86.17.32 google.ee
O1 - Hosts: 64.86.17.32 google.fi
O1 - Hosts: 64.86.17.32 google.fm
O1 - Hosts: 64.86.17.32 google.fr
O1 - Hosts: 64.86.17.32 google.ge
O1 - Hosts: 64.86.17.32 google.gg
O1 - Hosts: 64.86.17.32 google.gm
O1 - Hosts: 64.86.17.32 google.gr
O1 - Hosts: 64.86.17.32 google.ht
O1 - Hosts: 64.86.17.32 google.ie
O1 - Hosts: 64.86.17.32 google.im
O1 - Hosts: 64.86.17.32 google.in
O1 - Hosts: 64.86.17.32 google.it
O1 - Hosts: 64.86.17.32 google.ki
O1 - Hosts: 64.86.17.32 google.la
O1 - Hosts: 64.86.17.32 google.li
O1 - Hosts: 64.86.17.32 google.lv
O1 - Hosts: 64.86.17.32 google.ma
O1 - Hosts: 64.86.17.32 google.ms
O1 - Hosts: 64.86.17.32 google.mu
O1 - Hosts: 64.86.17.32 google.mw
O1 - Hosts: 64.86.17.32 google.nl
O1 - Hosts: 64.86.17.32 google.no
O1 - Hosts: 64.86.17.32 google.nr
O1 - Hosts: 64.86.17.32 google.nu
O1 - Hosts: 64.86.17.32 google.pl
O1 - Hosts: 64.86.17.32 google.pn
O1 - Hosts: 64.86.17.32 google.pt
O1 - Hosts: 64.86.17.32 google.ro
O1 - Hosts: 64.86.17.32 google.ru
O1 - Hosts: 64.86.17.32 google.rw
O1 - Hosts: 64.86.17.32 google.sc
O1 - Hosts: 64.86.17.32 google.se
O1 - Hosts: 64.86.17.32 google.sh
O1 - Hosts: 64.86.17.32 google.si
O1 - Hosts: 64.86.17.32 google.sm
O1 - Hosts: 64.86.17.32 google.sn
O1 - Hosts: 64.86.17.32 google.st
O1 - Hosts: 64.86.17.32 google.tl
O1 - Hosts: 64.86.17.32 google.tm
O1 - Hosts: 64.86.17.32 google.tt
O1 - Hosts: 64.86.17.32 google.us
O1 - Hosts: 64.86.17.32 google.vu
O1 - Hosts: 64.86.17.32 google.ws
O1 - Hosts: 64.86.17.32 google.co.ck
O1 - Hosts: 64.86.17.32 google.co.id
O1 - Hosts: 64.86.17.32 google.co.il
O1 - Hosts: 64.86.17.32 google.co.in
O1 - Hosts: 64.86.17.32 google.co.jp
O1 - Hosts: 64.86.17.32 google.co.kr
O1 - Hosts: 64.86.17.32 google.co.ls
O1 - Hosts: 64.86.17.32 google.co.ma
O1 - Hosts: 64.86.17.32 google.co.nz
O1 - Hosts: 64.86.17.32 google.co.tz
O1 - Hosts: 64.86.17.32 google.co.ug
O1 - Hosts: 64.86.17.32 google.co.uk
O1 - Hosts: 64.86.17.32 google.co.za
O1 - Hosts: 64.86.17.32 google.co.zm
O1 - Hosts: 64.86.17.32 google.com
O1 - Hosts: 64.86.17.32 google.com.af
O1 - Hosts: 64.86.17.32 google.com.ag
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {7009fcd4-05be-44f4-9583-93fe419ab7b0} - (no file)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [SiS Windows KeyHook] C:\WINDOWS\system32\keyhook.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [WireLessKeyboard ] C:\Program Files\SANGHA Multimedia Keyboard Driver\PS2USBKbdDrv.exe
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe"
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe"
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [Windows System Suite] "C:\Documents and Settings\All Users\Application Data\ad79d4c\WSad79.exe" /s /d
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - Startup: Reboot.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: RtlWake.lnk = ?
O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ShopperReports - Compare product prices - {C5428486-50A0-4a02-9D20-520B59A9F9B2} - C:\Program Files\ShoppingReport\Bin\2.0.22\ShoppingReport.dll (file missing)
O9 - Extra button: ShopperReports - Compare travel rates - {C5428486-50A0-4a02-9D20-520B59A9F9B3} - C:\Program Files\ShoppingReport\Bin\2.0.22\ShoppingReport.dll (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://www.touslesdrivers.com/fichiers/hardwaredetectio...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O23 - Service: BitDefender Arrakis Server (Arrakis3) - Unknown owner - C:\Program Files\Fichiers communs\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe

--
End of file - 11698 bytes
5 Septembre 2009 03:48:05

Salut desoler pour le retard je vien de m'inscrire ^^ :D 

Fait ceci :

(!) Faire une mise à jour du logiciel avant de le manipuler (!)

♦ Installe Malwarbytes sur ton bureaux

### http://www.malwarebytes.org/mbam/program/mbam-setup.exe ###

♦ Sélectionne Exécuter un examen complet puis clique sur le bouton Rechercher pour lancer le scan.
♦ Clique sur le bouton Lancer l'examen pour démarrer le scan.
♦ Clique sur le bouton Supprimer la sélection en bas à gauche.
Un rapport de scan s'ouvre, sélectionne tout copie le et colle le dans ta prochaine réponse.



Tuto: http://www.malekal.com/tutorial_MalwareBytes_AntiMalwar...




Bonne chance ! ;)  :D  :D 
Contenus similaires
5 Septembre 2009 11:31:43

Seuls les helpers ont le droit d'intervenir sur ces topics -histoire d'assurer la sécurité des pcs des utilisateurs qui demandent de l'aide- Tu peux te prévaloir de ce titre Joker Colombo ?
5 Septembre 2009 12:12:52

Salut Joker colombo , je suis embêté car entre ta reponse j'avais déja fait se dont tu ma demandé et effectivement il ma retiré windows sytem suite . et j'avais mis resolu , le probleme est que j'ai crées un autre poste mais toutefois pourras-tu m'aider donc je fais ce que tu me demande car l'ordi rame il est trés lent pour toute appications demandés et encore pire pour surfé donc je te poste un nouveau rapport de Malwarebytes .
Malwarebytes' Anti-Malware 1.40
Version de la base de données: 2744
Windows 5.1.2600 Service Pack 3

05/09/2009 12:08:51
mbam-log-2009-09-05 (12-08-50).txt

Type de recherche: Examen complet (C:\|)
Eléments examinés: 154232
Temps écoulé: 1 hour(s), 35 minute(s), 51 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
5 Septembre 2009 12:54:19

Bonjour chez vous,

je passe par hasard ici cherchant une réponse à mon problème, mais peu importe...

Juste à dire que l'intervention de TCM@IDN (sauf votre respect), bien que justifié quant à la sécurité des pcs des utilisateurs, aurait pu également précisé que la réponse de Joker colombo n'était pas dénuée de sens et constituait un premier pas à la résolution du soucis de armagedon54, en attendant une réponse "helpienne"

J' en déduit que TCM@IDN n'est également pas helper , ce qui en soit n' est vraiment pas une déficience,
mais peut-être est-il modérateur ?
Comment le savoir ? - rien n'indique la qualité du posteur (ou alors je n'ai pas vu et m'en excuse).

Ceci étant dit, n' étant pas moi-même ni helper, ni modérateur, ni ...

Bonjour chez vous

PS: je n'avais vraiment rien d' autre à fout' ce matin.
Mais relire ce post inutile peut, peut-être améliorer votre système - sans froisser personne.

Tchao
Anonyme
5 Septembre 2009 13:05:51

:hello: 

C'est très facile de balancer un logiciel au hasard sur une désinfection ;) 

Malwarebytes'Anti-malware,HJt etc... C'est sûr MBAm ne fera pas de mal mais quid de l'efficacité.

Si la désinfection prends une tournure inattendue c'est le plantage assuré...

C'est pourquoi il vaut mieux que la procédure soit donnée par un helper du début a la fin ;) 

Jojo1602,
Helper en formation sur S-X mais ni helper ni modo ; juste de passage.

PS:Je ne blâme pas Joker colombo qui je pense voulait juste aider ;) 
5 Septembre 2009 15:12:34

Rebonjour,

j'entends, comprends et suis totalement d'accord avec cette réponse jojo1602.


----- Ce qui suit ne remet rien en cause sur la qualité de ce forum, ----
----- mais sert juste à éclaircir ma pensé sur mon premier post ----

!! C'est bien à un helper seul de donner une procédure.
!! Sinon il pourrait éventuellement y avoir le risque d' aggraver son cas.


Mais que doit-on dire alors à toutes personnes qui s' intéresse un minimum à la sécurité de leur(s) PC ?

Puisqu'il est conseillé ici même d' utiliser:

Infos-du-Net.com : Dossier nettoyer securiser ordinateur



Ou là:




Exemple de réponse: Servez vous en, mais pas quand vous êtes infecté.


Et dans la section enfantillage :bounce: 

Merci à TCM@IDN, je viens de me rendre compte que sur un forum de désinfection, DrPopol
n'est absolument pas approprié - c'est juste un film avec jean-paul Belmondo qui s' appelle
"Docteur Popaul".

TCM@IDN:
Docteur Popol ça craint quand même /: Non pour le nom mais pour l'efficacité.

Derrière un chaton se cache une vrai lionne :p rosterne: :) 


Merci à tous, non je ne m'échappe pas, mais je ne répondrais plus sur ce post, pour ne pas pourrir davantage armagedon54 qui lui(elle) attend une vrai désinfection...

by









5 Septembre 2009 15:45:58

Pour ceux qui ont ce sentiment bizzare de voir quelqu'un s'incrusté comme sa voila mon profile sur CCM :

http://www.commentcamarche.net/communaute/profil-COLOMB... :) 
************************************************************************************


Salut fait ceci :

◆ Télécharge sur ton bureaux RSIT ( Random's Systeme Information Tools ) de Random/Random :

http://images.malwareremoval.com/random/RSIT.exe

◆ Double clique sur RSIT.exe qui se trouve sur ton bureau pour le lancer
◆ Une fenetre intitulé " Disclaimer of Warranty " s'ouvre clique sur continue Le rapport commence ...



* Les rapports ce trouvent à cet endroit : C:\rsit\info.txt C:\rsit\log.txt

Tu dois fusionner les deux rapports. Pour en faire un seul

info.txt + log.txt



[!] Pour les utilisateurs de Vista veuillez desactive l'UAC [!]


► Voici la marche à suivre afin de désactiver l’UAC

● Double-clique sur l’icône “Comptes d’utilisateurs”
● Clique ensuite sur “Activer ou désactiver le contrôle des comptes d’utilisateurs”
● Windows (l’UAC) vous demande alors une confirmation, cliquez sur le bouton “Continuer“
● Dans la fenêtre qui vient de s’ouvrir, décoche la case “Utiliser le contrôle des comptes d’utilisateurs pour vous aider à protéger votre ordinateur” puis clique sur “OK”

► Redémarre ensuite ton ordinateur pour que les changements prennent effet. Dorénavant Windows Vista ne te demandera plus l’autorisation afin de procéder à l’installation d’un logiciel ou lors de l’accès à certains fichiers.
Anonyme
5 Septembre 2009 19:15:46

Avec ton lien:

Citation :
Le profil de ce membre a été bloqué car il ne respecte pas la charte !

...
5 Septembre 2009 19:59:17

Et c'est clair non ? Tu donnes une référence et elle montre justement que tes propos sont considérés comme "sujet à caution" sur d'autres forums !

Après, que tu saches jouer avec des multis ne donne aucune indication sur tes capacités à désinfecter non plus.
5 Septembre 2009 20:03:32

Ont dirait que tu commence à geuler toi :-)

Si je suis pas le bienvenue dites le ^^
5 Septembre 2009 20:15:33

Eh bien, pour ma part, un mec qui démarre des formations sans les terminer et se prétend ensuite habilité à aider les internautes (à flinguer leur ordi plutôt !!!) non il n'est pas le bienvenu.

Un mec qui joue avec des multi pour "faire croire" : non il n'est pas le bienvenu

Et puis, j'en rajoute une couche, aussi mince soit-elle : les mecs qui ne savent même pas écrire correctement... Ben non, pour moi tu vois, j'aurais trop peur de te demander de désinfecter mon pc après avoir constaté ça ! p'tain, j'imagine une manip' mal orthographiée :lol: 

Tu n'es pas un Joker Colombo. Tu es un clown. Bye
5 Septembre 2009 20:16:20

merci pour ton aide
info.txt logfile of random's system information tool 1.06 2009-09-05 19:56:41

======Uninstall list======

-->C:\Program Files\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E06E4F4E-72D6-4497-BFFD-BCB43077C2F4}\setup.exe" -l0x40c -uninst
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 7.0.8 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70800000002}
Adobe Shockwave Player-->C:\WINDOWS\system32\Adobe\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Adobe\SHOCKW~1\Install.log
Agere Systems AC'97 Modem v2136D-->agrsmdel
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Assistant de connexion Windows Live ID-->MsiExec.exe /X{10A44844-4465-456E-8C97-80BDD4F68845}
BitDefender Total Security 2009-->MsiExec.exe /X{46E0C50A-1F67-46B9-B4A6-B153245ECFE7}
Canon PhotoRecord-->MsiExec.exe /X{D958FAC4-BAE0-4B1D-A42E-DE9BFDE7DDEE}
Canon PIXMA iP2000-->C:\WINDOWS\system32\CNMCP66.exe "-PRINTERNAMECanon PIXMA iP2000" "-HELPERDLLC:\BJPrinter\CNMWINDOWS\Canon PIXMA iP2000 Installer\Inst2\cnmis.dll" "-RCDLLC:\BJPrinter\CNMWINDOWS\Canon PIXMA iP2000 Installer\Inst2\cnmi040c.dll"
Canon Utilities Easy-PhotoPrint-->C:\Program Files\Canon\Easy-PhotoPrint\uninst.exe C:\Program Files\Canon\Easy-PhotoPrint\uninst.ini
Canon Utilities Easy-PrintToolBox-->C:\WINDOWS\BJPSUNST.EXE
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB970653-v3)-->"C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe"
Easy-WebPrint-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Canon\Easy-WebPrint\Uninst.isu"
eMule-->"C:\Program Files\eMule\Uninstall.exe"
Extension HighMAT pour l'Assistant Graver un CD de Microsoft Windows XP-->MsiExec.exe /X{FCE65C4E-B0E8-4FBD-AD16-EDCBE6CD591F}
Galerie de photos Windows Live-->MsiExec.exe /X{B131E59D-202C-43C6-84C9-68F0C37541F1}
Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_E582EA556D8DE101.exe" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB915800-v4)-->"C:\WINDOWS\$NtUninstallKB915800-v4$\spuninst\spuninst.exe"
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C063A63F31}
Junk Mail filter update-->MsiExec.exe /I{E2DFE069-083E-4631-9B6C-43C48E991DE5}
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Livebox-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AB3F9176-E74A-4F28-9A09-4F22349B145E}\setup.exe" -l0x40c
Ma-Config.com plugin-->MsiExec.exe /I{BF85A9D4-030F-4D2A-83CF-D4DDA0D3E68C}
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Messenger Plus! 3-->"C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /Remove
Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{72AD53CC-CCC0-3757-8480-9EE176866A7C}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{0BD83598-C2EF-3343-847B-7D2E84599128}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Office Live Add-in 1.4-->MsiExec.exe /I{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}
Microsoft Office Professional Edition 2003-->MsiExec.exe /I{9011040C-6000-11D3-8CFE-0150048383C9}
Microsoft Search Enhancement Pack-->MsiExec.exe /X{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Works-->MsiExec.exe /I{A059DE09-1B49-4450-B340-7AE097EC3F04}
Mise à jour critique pour Lecteur Windows Media 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB972260)-->"C:\WINDOWS\ie8updates\KB972260-IE8\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950759)-->"C:\WINDOWS\$NtUninstallKB950759$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953838)-->"C:\WINDOWS\$NtUninstallKB953838$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956390)-->"C:\WINDOWS\$NtUninstallKB956390$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958215)-->"C:\WINDOWS\$NtUninstallKB958215$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960714)-->"C:\WINDOWS\$NtUninstallKB960714$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961371)-->"C:\WINDOWS\$NtUninstallKB961371$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB963027)-->"C:\WINDOWS\$NtUninstallKB963027$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB968537)-->"C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB969897)-->"C:\WINDOWS\$NtUninstallKB969897$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB969898)-->"C:\WINDOWS\$NtUninstallKB969898$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971557)-->"C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB972260)-->"C:\WINDOWS\$NtUninstallKB972260$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973346)-->"C:\WINDOWS\$NtUninstallKB973346$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"
Mise à jour pour Windows Internet Explorer 8 (KB973874)-->"C:\WINDOWS\ie8updates\KB973874-IE8\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB961503)-->"C:\WINDOWS\$NtUninstallKB961503$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"
Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->c:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Nero Suite-->C:\Program Files\Fichiers communs\Nero\Uninstall\Setupx.exe /uninstall ExtraUninstallID=""
Nokia Connectivity Cable Driver-->RUNDLL32.EXE nsesetup.dll,DoNTUninst
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Package de base Microsoft de service de chiffrement pour cartes à puce-->"C:\WINDOWS\$NtUninstallbasecsp$\spuninst\spuninst.exe"
PC Camera-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{02BD1C19-5946-4420-BAE3-F742686B3D43} /l1036
QuickTime-->C:\WINDOWS\unvise32qt.exe C:\WINDOWS\system32\QuickTime\Uninstall.log
Realtek AC'97 Audio-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe" REMOVE
REALTEK Gigabit and Fast Ethernet NIC Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{94FB906A-CF42-4128-A509-D353026A607E}\Setup.exe" -l0x40c REMOVE
Realtek RTL8180 Wireless LAN Cardbus Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C583CEE0-56CD-4545-9BA9-9042EE1FC9E0}\setup.exe" -l0x9
SANGHA Multimedia Keyboard Driver-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{7EE0A91A-A38D-43D6-BBF5-179893B781BF}
Security Update for Windows Search 4 - KB963093-->"C:\WINDOWS\$NtUninstallKB963093$\spuninst\spuninst.exe"
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
SiS VGA Utilities-->Rundll32 SiSInst.dll,Uninstall VGA,R,oem3.inf
SiSAGP driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DC226AC9-0314-496C-BE6A-B6A132628466}\setup.exe" -l0x40c
SLD Codec Pack-->C:\Program Files\SLD Codec Pack\uninstall.exe
Sony Ericsson PC Suite 1.20.224-->MsiExec.exe /I{7689CA7A-1270-425A-9959-EB4CB25EA29A}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
Visionneuse Journal Windows Microsoft-->MsiExec.exe /X{43DCF766-6838-4F9A-8C91-D92DA586DFA7}
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live FolderShare-->MsiExec.exe /X{2075CB0A-D26F-4DAA-B424-5079296B43BA}
Windows Live Mail-->MsiExec.exe /I{5DD76286-9BE7-4894-A990-E905E91AC818}
Windows Live Messenger-->MsiExec.exe /X{770F1BEC-2871-4E70-B837-FB8525FFA3B1}
Windows Live OneCare safety scanner-->RunDll32.exe "C:\Program Files\Windows Live Safety Center\wlscCore.dll",UninstallFunction WLSC_SCANNER_PRODUCT
Windows Live Toolbar-->MsiExec.exe /X{F7D27C70-90F5-49B9-B188-0A133C0CE353}
Windows Live Writer-->MsiExec.exe /X{4634B21A-CC07-4396-890C-2B8168661FEA}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows Search 4.0-->"C:\WINDOWS\$NtUninstallKB940157$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"

======Hosts File======

212.150.54.250 dv-networks.com
74.125.45.100 4-open-davinci.com
74.125.45.100 securitysoftwarepayments.com
74.125.45.100 privatesecuredpayments.com
74.125.45.100 secure.privatesecuredpayments.com
74.125.45.100 getantivirusplusnow.com
74.125.45.100 secure-plus-payments.com
74.125.45.100 www.getantivirusplusnow.com
74.125.45.100 www.secure-plus-payments.com
74.125.45.100 www.getavplusnow.com

======Security center information======

AV: Antivirus BitDefender
AV: Windows System Suite
FW: Pare-feu BitDefender (disabled)
FW: Windows System Suite

======System event log======

Computer Name: VANESSA
Event Code: 4201
Message: Le système a détecté que la carte réseau \DEVICE\TCPIP_{B12DA696-2E02-4594-A13E-044042A05938} était connectée au réseau,
et a lancé une opération normale sur la carte réseau.

Record Number: 26527
Source Name: Tcpip
Time Written: 20090703033939.000000+120
Event Type: Informations
User:

Computer Name: VANESSA
Event Code: 4201
Message: Le système a détecté que la carte réseau \DEVICE\TCPIP_{B12DA696-2E02-4594-A13E-044042A05938} était connectée au réseau,
et a lancé une opération normale sur la carte réseau.

Record Number: 26526
Source Name: Tcpip
Time Written: 20090703033939.000000+120
Event Type: Informations
User:

Computer Name: VANESSA
Event Code: 7036
Message: Le service Compatibilité avec le Changement rapide d'utilisateur est entré dans l'état : en cours d'exécution.

Record Number: 26525
Source Name: Service Control Manager
Time Written: 20090703033931.000000+120
Event Type: Informations
User:

Computer Name: VANESSA
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Compatibilité avec le Changement rapide d'utilisateur.

Record Number: 26524
Source Name: Service Control Manager
Time Written: 20090703033931.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: VANESSA
Event Code: 7036
Message: Le service Services Terminal Server est entré dans l'état : en cours d'exécution.

Record Number: 26523
Source Name: Service Control Manager
Time Written: 20090703033931.000000+120
Event Type: Informations
User:

=====Application event log=====

Computer Name: VANESSA
Event Code: 101
Message: msnmsgr (2596) Le moteur de base de données est arrêté.

Record Number: 6003
Source Name: ESENT
Time Written: 20090222192730.000000+060
Event Type: Informations
User:

Computer Name: VANESSA
Event Code: 103
Message: msnmsgr (2596) \\.\C:\Documents and Settings\vanes\Local Settings\Application Data\Microsoft\Messenger\louisavirion@hotmail.fr\SharingMetadata\Working\database_3A24_B90B_24B8_CB61\dfsr.db: Le moteur de base de données a arrêté une instance (0).

Record Number: 6002
Source Name: ESENT
Time Written: 20090222192730.000000+060
Event Type: Informations
User:

Computer Name: VANESSA
Event Code: 302
Message: msnmsgr (2596) \\.\C:\Documents and Settings\vanes\Local Settings\Application Data\Microsoft\Messenger\louisavirion@hotmail.fr\SharingMetadata\Working\database_3A24_B90B_24B8_CB61\dfsr.db: Le moteur de base de données a exécuté la procédure de récupération avec succès.

Record Number: 6001
Source Name: ESENT
Time Written: 20090222184341.000000+060
Event Type: Informations
User:

Computer Name: VANESSA
Event Code: 301
Message: msnmsgr (2596) \\.\C:\Documents and Settings\vanes\Local Settings\Application Data\Microsoft\Messenger\louisavirion@hotmail.fr\SharingMetadata\Working\database_3A24_B90B_24B8_CB61\dfsr.db: Le moteur de base de données commence la relecture du fichier journal \\.\C:\Documents and Settings\vanes\Local Settings\Application Data\Microsoft\Messenger\louisavirion@hotmail.fr\SharingMetadata\Working\database_3A24_B90B_24B8_CB61\fsr.log.

Record Number: 6000
Source Name: ESENT
Time Written: 20090222184338.000000+060
Event Type: Informations
User:

Computer Name: VANESSA
Event Code: 301
Message: msnmsgr (2596) \\.\C:\Documents and Settings\vanes\Local Settings\Application Data\Microsoft\Messenger\louisavirion@hotmail.fr\SharingMetadata\Working\database_3A24_B90B_24B8_CB61\dfsr.db: Le moteur de base de données commence la relecture du fichier journal \\.\C:\Documents and Settings\vanes\Local Settings\Application Data\Microsoft\Messenger\louisavirion@hotmail.fr\SharingMetadata\Working\database_3A24_B90B_24B8_CB61\fsr000DE.log.

Record Number: 5999
Source Name: ESENT
Time Written: 20090222184336.000000+060
Event Type: Informations
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%CommonProgramFiles%\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Fichiers communs\Teleca Shared
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 13 Stepping 8, GenuineIntel
"PROCESSOR_REVISION"=0d08
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP

-----------------EOF-----------------
Logfile of random's system information tool 1.06 (written by random/random)
Run by vanes at 2009-09-05 20:00:51
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 24 GB (63%) free of 38 GB
Total RAM: 223 MB (24% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:01:00, on 05/09/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\SANGHA Multimedia Keyboard Driver\PS2USBKbdDrv.exe
C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\WINDOWS\system32\keyhook.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Fichiers communs\Teleca Shared\CapabilityManager.exe
C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe
C:\Program Files\Realtek\Rtl8180\RtlWake.exe
C:\WINDOWS\system32\sistray.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\Documents and Settings\vanes\Bureau\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\vanes.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O1 - Hosts: 212.150.54.250 dv-networks.com
O1 - Hosts: 74.125.45.100 4-open-davinci.com
O1 - Hosts: 74.125.45.100 securitysoftwarepayments.com
O1 - Hosts: 74.125.45.100 privatesecuredpayments.com
O1 - Hosts: 74.125.45.100 secure.privatesecuredpayments.com
O1 - Hosts: 74.125.45.100 getantivirusplusnow.com
O1 - Hosts: 74.125.45.100 secure-plus-payments.com
O1 - Hosts: 74.125.45.100 www.getantivirusplusnow.com
O1 - Hosts: 74.125.45.100 www.secure-plus-payments.com
O1 - Hosts: 74.125.45.100 www.getavplusnow.com
O1 - Hosts: 74.125.45.100 www.securesoftwarebill.com
O1 - Hosts: 64.86.17.32 google.ae
O1 - Hosts: 64.86.17.32 google.as
O1 - Hosts: 64.86.17.32 google.at
O1 - Hosts: 64.86.17.32 google.az
O1 - Hosts: 64.86.17.32 google.ba
O1 - Hosts: 64.86.17.32 google.be
O1 - Hosts: 64.86.17.32 google.bg
O1 - Hosts: 64.86.17.32 google.bs
O1 - Hosts: 64.86.17.32 google.ca
O1 - Hosts: 64.86.17.32 google.cd
O1 - Hosts: 64.86.17.32 google.com.gh
O1 - Hosts: 64.86.17.32 google.com.hk
O1 - Hosts: 64.86.17.32 google.com.jm
O1 - Hosts: 64.86.17.32 google.com.mx
O1 - Hosts: 64.86.17.32 google.com.my
O1 - Hosts: 64.86.17.32 google.com.na
O1 - Hosts: 64.86.17.32 google.com.nf
O1 - Hosts: 64.86.17.32 google.com.ng
O1 - Hosts: 64.86.17.32 google.ch
O1 - Hosts: 64.86.17.32 google.com.np
O1 - Hosts: 64.86.17.32 google.com.pr
O1 - Hosts: 64.86.17.32 google.com.qa
O1 - Hosts: 64.86.17.32 google.com.sg
O1 - Hosts: 64.86.17.32 google.com.tj
O1 - Hosts: 64.86.17.32 google.com.tw
O1 - Hosts: 64.86.17.32 google.dj
O1 - Hosts: 64.86.17.32 google.de
O1 - Hosts: 64.86.17.32 google.dk
O1 - Hosts: 64.86.17.32 google.dm
O1 - Hosts: 64.86.17.32 google.ee
O1 - Hosts: 64.86.17.32 google.fi
O1 - Hosts: 64.86.17.32 google.fm
O1 - Hosts: 64.86.17.32 google.fr
O1 - Hosts: 64.86.17.32 google.ge
O1 - Hosts: 64.86.17.32 google.gg
O1 - Hosts: 64.86.17.32 google.gm
O1 - Hosts: 64.86.17.32 google.gr
O1 - Hosts: 64.86.17.32 google.ht
O1 - Hosts: 64.86.17.32 google.ie
O1 - Hosts: 64.86.17.32 google.im
O1 - Hosts: 64.86.17.32 google.in
O1 - Hosts: 64.86.17.32 google.it
O1 - Hosts: 64.86.17.32 google.ki
O1 - Hosts: 64.86.17.32 google.la
O1 - Hosts: 64.86.17.32 google.li
O1 - Hosts: 64.86.17.32 google.lv
O1 - Hosts: 64.86.17.32 google.ma
O1 - Hosts: 64.86.17.32 google.ms
O1 - Hosts: 64.86.17.32 google.mu
O1 - Hosts: 64.86.17.32 google.mw
O1 - Hosts: 64.86.17.32 google.nl
O1 - Hosts: 64.86.17.32 google.no
O1 - Hosts: 64.86.17.32 google.nr
O1 - Hosts: 64.86.17.32 google.nu
O1 - Hosts: 64.86.17.32 google.pl
O1 - Hosts: 64.86.17.32 google.pn
O1 - Hosts: 64.86.17.32 google.pt
O1 - Hosts: 64.86.17.32 google.ro
O1 - Hosts: 64.86.17.32 google.ru
O1 - Hosts: 64.86.17.32 google.rw
O1 - Hosts: 64.86.17.32 google.sc
O1 - Hosts: 64.86.17.32 google.se
O1 - Hosts: 64.86.17.32 google.sh
O1 - Hosts: 64.86.17.32 google.si
O1 - Hosts: 64.86.17.32 google.sm
O1 - Hosts: 64.86.17.32 google.sn
O1 - Hosts: 64.86.17.32 google.st
O1 - Hosts: 64.86.17.32 google.tl
O1 - Hosts: 64.86.17.32 google.tm
O1 - Hosts: 64.86.17.32 google.tt
O1 - Hosts: 64.86.17.32 google.us
O1 - Hosts: 64.86.17.32 google.vu
O1 - Hosts: 64.86.17.32 google.ws
O1 - Hosts: 64.86.17.32 google.co.ck
O1 - Hosts: 64.86.17.32 google.co.id
O1 - Hosts: 64.86.17.32 google.co.il
O1 - Hosts: 64.86.17.32 google.co.in
O1 - Hosts: 64.86.17.32 google.co.jp
O1 - Hosts: 64.86.17.32 google.co.kr
O1 - Hosts: 64.86.17.32 google.co.ls
O1 - Hosts: 64.86.17.32 google.co.ma
O1 - Hosts: 64.86.17.32 google.co.nz
O1 - Hosts: 64.86.17.32 google.co.tz
O1 - Hosts: 64.86.17.32 google.co.ug
O1 - Hosts: 64.86.17.32 google.co.uk
O1 - Hosts: 64.86.17.32 google.co.za
O1 - Hosts: 64.86.17.32 google.co.zm
O1 - Hosts: 64.86.17.32 google.com
O1 - Hosts: 64.86.17.32 google.com.af
O1 - Hosts: 64.86.17.32 google.com.ag
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: (no name) - {7009fcd4-05be-44f4-9583-93fe419ab7b0} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [WireLessKeyboard ] C:\Program Files\SANGHA Multimedia Keyboard Driver\PS2USBKbdDrv.exe
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe"
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe"
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [SiS Windows KeyHook] C:\WINDOWS\system32\keyhook.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - Startup: Reboot.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: RtlWake.lnk = ?
O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://www.touslesdrivers.com/fichiers/hardwaredetectio...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O23 - Service: BitDefender Arrakis Server (Arrakis3) - Unknown owner - C:\Program Files\Fichiers communs\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe

--
End of file - 12642 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-01-12 63128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7009fcd4-05be-44f4-9583-93fe419ab7b0}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live ID - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30 403824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-09-04 256112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2009-09-04 761840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2009-09-04 458736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [2004-04-16 405504]
{381FFDE8-2394-4f90-B10D-FC6124A40F8C} - BitDefender Toolbar - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll [2009-03-24 95536]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-09-04 256112]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-12-01 77824]
"AGRSMMSG"=C:\WINDOWS\AGRSMMSG.exe [2003-11-20 88363]
"MessengerPlus3"=C:\Program Files\MessengerPlus! 3\MsgPlus.exe [2007-09-05 190024]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"WireLessKeyboard "=C:\Program Files\SANGHA Multimedia Keyboard Driver\PS2USBKbdDrv.exe [2005-09-28 659456]
"BDAgent"=C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe [2009-09-02 782336]
"BitDefender Antiphishing Helper"=C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe [2009-02-23 69632]
"Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2005-10-26 159744]
"SiSPower"=SiSPower.dll,ModeAgent []
"SiS Windows KeyHook"=C:\WINDOWS\system32\keyhook.exe [2005-04-08 32768]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2007-09-17 77824]
"Easy-PrintToolBox"=C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE [2004-01-14 409600]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MessengerPlus3"=C:\Program Files\MessengerPlus! 3\MsgPlus.exe [2007-09-05 190024]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2006-11-03 204288]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-09-04 39408]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Lancement rapide d'Adobe Reader.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
RtlWake.lnk - C:\Program Files\Realtek\Rtl8180\RtlWake.exe
Utility Tray.lnk - C:\WINDOWS\system32\sistray.exe
Windows Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe

C:\Documents and Settings\vanes\Menu Démarrer\Programmes\Démarrage
Reboot.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Documents and Settings\All Users\Application Data\ad79d4c\WSad79.exe"="C:\Documents and Settings\All Users\Application Data\ad79d4c\WSad79.exe:*:Enabled:Windows System Suite"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"

======List of files/folders created in the last 1 months======

2009-09-05 19:55:59 ----D---- C:\rsit
2009-09-05 14:29:22 ----N---- C:\WINDOWS\system32\spmsg2.dll
2009-09-05 14:29:20 ----HDC---- C:\WINDOWS\$NtUninstallXPSEPSCLP$
2009-09-05 14:29:17 ----D---- C:\WINDOWS\LastGood
2009-09-05 02:13:11 ----HDC---- C:\WINDOWS\$NtUninstallKB961503$
2009-09-05 02:12:01 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2009-09-05 02:08:30 ----HDC---- C:\WINDOWS\$NtUninstallKB963093$
2009-09-05 01:12:29 ----D---- C:\WINDOWS\pss
2009-09-04 23:51:17 ----D---- C:\Documents and Settings\vanes\Application Data\Windows Search
2009-09-04 23:13:58 ----D---- C:\Program Files\Microsoft Sync Framework
2009-09-04 23:05:59 ----D---- C:\Program Files\Windows Live SkyDrive
2009-09-04 16:49:08 ----D---- C:\Documents and Settings\vanes\Application Data\Malwarebytes
2009-09-04 16:48:58 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-09-04 16:48:57 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-09-04 15:16:55 ----D---- C:\Program Files\Trend Micro
2009-09-04 13:43:13 ----D---- C:\WINDOWS\system32\XPSViewer
2009-09-04 13:42:20 ----D---- C:\Program Files\MSBuild
2009-09-04 13:41:53 ----D---- C:\WINDOWS\system32\en-US
2009-09-04 13:40:28 ----D---- C:\Program Files\Reference Assemblies
2009-09-04 12:57:25 ----N---- C:\WINDOWS\system32\prntvpt.dll
2009-09-04 12:57:23 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2009-09-04 12:57:10 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2009-09-04 12:56:46 ----D---- C:\d58e1ff23603a59145b5c2f943a6
2009-09-04 12:05:39 ----D---- C:\80f6110ce517c7be63
2009-09-04 12:04:10 ----D---- C:\6d23d6d7aa6fd445e2711ab42405
2009-09-04 07:54:35 ----D---- C:\Program Files\Microsoft Silverlight
2009-09-04 07:52:45 ----D---- C:\Program Files\Microsoft
2009-09-04 07:52:14 ----HDC---- C:\WINDOWS\$NtUninstallbasecsp$
2009-09-04 07:36:32 ----D---- C:\Program Files\Fichiers communs\Windows Live
2009-09-04 07:34:49 ----D---- C:\Documents and Settings\vanes\Application Data\Windows Desktop Search
2009-09-04 07:32:34 ----D---- C:\WINDOWS\system32\GroupPolicy
2009-09-04 07:32:34 ----D---- C:\Program Files\Windows Desktop Search
2009-09-04 07:32:17 ----HDC---- C:\WINDOWS\$NtUninstallKB940157$
2009-09-04 07:31:39 ----HDC---- C:\WINDOWS\$NtUninstallKB915800-v4$
2009-09-03 16:30:55 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2009-09-03 14:49:56 ----A---- C:\WINDOWS\system32\un2065.txt
2009-09-03 14:49:56 ----A---- C:\WINDOWS\system32\2065.txt
2009-09-03 14:13:53 ----A---- C:\WINDOWS\bdagent.INI
2009-09-03 14:06:17 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2009-09-03 14:04:51 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2009-09-03 13:56:25 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2009-09-03 13:56:08 ----HDC---- C:\WINDOWS\$NtUninstallKB971557$
2009-09-03 13:55:50 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2009-09-03 13:55:30 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2009-09-03 13:55:11 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2009-09-03 13:54:53 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
2009-09-03 13:53:49 ----D---- C:\WINDOWS\ie8updates
2009-09-03 13:52:48 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2009-09-03 13:52:24 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2009-09-03 13:46:52 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2009-09-03 13:41:28 ----HDC---- C:\WINDOWS\$NtUninstallKB970653-v3$
2009-09-02 17:09:00 ----A---- C:\WINDOWS\system32\tmp.txt
2009-09-02 17:08:46 ----A---- C:\rapport.txt
2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\VACFix.exe
2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\o4Patch.exe
2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\IEDFix.exe
2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\IEDFix.C.exe
2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\Agent.OMZ.Fix.exe
2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\404Fix.exe
2009-09-02 17:04:28 ----A---- C:\WINDOWS\system32\WS2Fix.exe
2009-09-02 17:04:28 ----A---- C:\WINDOWS\system32\VCCLSID.exe
2009-09-02 17:04:28 ----A---- C:\WINDOWS\system32\swxcacls.exe
2009-09-02 17:04:28 ----A---- C:\WINDOWS\system32\dumphive.exe
2009-09-02 17:04:27 ----A---- C:\WINDOWS\system32\swsc.exe
2009-09-02 17:04:27 ----A---- C:\WINDOWS\system32\swreg.exe
2009-09-02 17:04:27 ----A---- C:\WINDOWS\system32\SrchSTS.exe
2009-09-02 17:04:27 ----A---- C:\WINDOWS\system32\Process.exe
2009-09-02 16:50:57 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2009-09-02 16:49:52 ----D---- C:\Documents and Settings\vanes\Application Data\Simply Super Software
2009-09-02 16:18:31 ----D---- C:\Documents and Settings\vanes\Application Data\BitDefender
2009-09-02 16:16:37 ----D---- C:\Program Files\BitDefender
2009-09-02 16:16:37 ----D---- C:\Documents and Settings\All Users\Application Data\BitDefender
2009-09-02 16:01:03 ----D---- C:\Program Files\Fichiers communs\BitDefender
2009-09-02 06:14:42 ----D---- C:\Program Files\Enigma Software Group
2009-09-02 05:42:38 ----A---- C:\WINDOWS\ntbtlog.txt
2009-09-02 05:27:53 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
2009-09-02 05:14:49 ----A---- C:\WINDOWS\resetlog.txt
2009-09-02 04:39:32 ----D---- C:\Program Files\SAGEM
2009-09-02 04:39:32 ----A---- C:\WINDOWS\system32\coclassfast.dll
2009-09-01 18:56:22 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
2009-09-01 18:55:46 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2009-09-01 18:55:14 ----HDC---- C:\WINDOWS\$NtUninstallKB968537$
2009-09-01 18:54:09 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2009-09-01 18:53:47 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2009-09-01 18:53:29 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
2009-09-01 18:53:15 ----HDC---- C:\WINDOWS\$NtUninstallKB961371$
2009-09-01 18:52:57 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2009-09-01 18:52:33 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2009-09-01 18:52:17 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2009-09-01 18:52:01 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
2009-09-01 18:51:47 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2009-09-01 18:51:31 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2009-09-01 18:51:11 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2009-09-01 18:50:55 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
2009-09-01 18:50:41 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2009-09-01 18:50:23 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2009-09-01 18:50:07 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2009-09-01 18:49:05 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2009-09-01 18:48:33 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2009-09-01 18:48:16 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2009-09-01 18:48:01 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
2009-09-01 18:47:35 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2009-09-01 18:47:21 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2009-09-01 18:47:01 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2009-09-01 18:46:39 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2009-09-01 18:45:53 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2009-09-01 18:45:06 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2009-09-01 18:44:24 ----HDC---- C:\WINDOWS\$NtUninstallKB951376$
2009-09-01 18:43:32 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2009-09-01 18:42:46 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2009-09-01 18:42:00 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2009-09-01 18:40:48 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2009-09-01 18:40:17 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$
2009-09-01 18:39:30 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2009-09-01 18:23:29 ----D---- C:\WINDOWS\l2schemas
2009-09-01 18:23:27 ----D---- C:\WINDOWS\system32\fr
2009-09-01 18:23:25 ----D---- C:\WINDOWS\system32\bits
2009-09-01 18:18:22 ----D---- C:\WINDOWS\ServicePackFiles
2009-09-01 18:11:56 ----D---- C:\WINDOWS\network diagnostic
2009-09-01 17:59:47 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2009-09-01 17:59:32 ----D---- C:\WINDOWS\EHome
2009-09-01 17:06:28 ----D---- C:\WINDOWS\WBEM
2009-09-01 17:04:44 ----HDC---- C:\WINDOWS\ie8
2009-09-01 17:04:44 ----D---- C:\WINDOWS\system32\fr-FR
2009-08-08 18:08:35 ----SHD---- C:\Documents and Settings\All Users\Application Data\ad79d4c

======List of files/folders modified in the last 1 months======

2009-09-05 19:56:19 ----D---- C:\WINDOWS\Prefetch
2009-09-05 19:39:33 ----D---- C:\WINDOWS\Temp
2009-09-05 17:44:35 ----D---- C:\WINDOWS\system32
2009-09-05 14:29:48 ----HD---- C:\WINDOWS\inf
2009-09-05 14:29:41 ----D---- C:\WINDOWS
2009-09-05 14:29:16 ----D---- C:\WINDOWS\system32\CatRoot2
2009-09-05 14:29:06 ----SHD---- C:\WINDOWS\Installer
2009-09-05 14:29:06 ----SHD---- C:\Config.Msi
2009-09-05 14:29:05 ----RSD---- C:\WINDOWS\assembly
2009-09-05 03:28:47 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-09-05 03:24:52 ----SH---- C:\boot.ini
2009-09-05 03:24:51 ----A---- C:\WINDOWS\win.ini
2009-09-05 03:24:45 ----A---- C:\WINDOWS\system.ini
2009-09-05 02:42:37 ----D---- C:\WINDOWS\Microsoft.NET
2009-09-05 02:13:21 ----A---- C:\WINDOWS\imsins.BAK
2009-09-05 02:13:15 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-09-05 02:12:52 ----D---- C:\WINDOWS\system32\CatRoot
2009-09-05 01:11:38 ----HD---- C:\WINDOWS\$hf_mig$
2009-09-04 23:51:23 ----SD---- C:\Documents and Settings\vanes\Application Data\Microsoft
2009-09-04 23:15:07 ----D---- C:\Program Files\Windows Live
2009-09-04 23:14:00 ----D---- C:\WINDOWS\WinSxS
2009-09-04 23:13:58 ----RD---- C:\Program Files
2009-09-04 23:13:43 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-09-04 23:11:47 ----D---- C:\WINDOWS\system32\DirectX
2009-09-04 22:28:58 ----D---- C:\Documents and Settings\All Users\Application Data\Google
2009-09-04 22:28:03 ----D---- C:\Program Files\Google
2009-09-04 21:48:25 ----D---- C:\Program Files\Fichiers communs\Symantec Shared
2009-09-04 20:57:18 ----SD---- C:\WINDOWS\Tasks
2009-09-04 17:19:59 ----D---- C:\WINDOWS\system32\drivers
2009-09-04 14:23:03 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-09-04 13:41:41 ----RSD---- C:\WINDOWS\Fonts
2009-09-04 07:58:36 ----D---- C:\WINDOWS\security
2009-09-04 07:57:23 ----D---- C:\Program Files\Internet Explorer
2009-09-04 07:53:47 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2009-09-04 07:36:32 ----D---- C:\Program Files\Fichiers communs
2009-09-04 07:32:34 ----D---- C:\WINDOWS\system32\wbem
2009-09-03 13:54:59 ----D---- C:\Program Files\Outlook Express
2009-09-03 09:02:14 ----D---- C:\WINDOWS\system32\Tools
2009-09-02 05:43:16 ----D---- C:\Documents and Settings
2009-09-02 04:39:31 ----HD---- C:\Program Files\InstallShield Installation Information
2009-09-02 04:15:05 ----A---- C:\WINDOWS\OEWABLog.txt
2009-09-02 04:00:30 ----A---- C:\WINDOWS\setuplog.txt
2009-09-02 03:09:39 ----D---- C:\WINDOWS\system32\Setup
2009-09-02 03:09:39 ----D---- C:\WINDOWS\AppPatch
2009-09-02 03:09:39 ----D---- C:\Program Files\Messenger
2009-09-01 18:24:28 ----D---- C:\WINDOWS\ime
2009-09-01 18:24:27 ----D---- C:\WINDOWS\Help
2009-09-01 18:23:35 ----D---- C:\WINDOWS\system32\usmt
2009-09-01 18:23:25 ----D---- C:\WINDOWS\PeerNet
2009-09-01 18:23:24 ----D---- C:\Program Files\Movie Maker
2009-09-01 18:18:04 ----D---- C:\WINDOWS\system32\Restore
2009-09-01 18:18:03 ----D---- C:\WINDOWS\system32\npp
2009-09-01 18:17:59 ----D---- C:\WINDOWS\msagent
2009-09-01 18:17:55 ----D---- C:\WINDOWS\srchasst
2009-09-01 18:17:53 ----D---- C:\Program Files\NetMeeting
2009-09-01 18:17:50 ----D---- C:\WINDOWS\system32\Com
2009-09-01 18:17:42 ----D---- C:\Program Files\Windows Media Player
2009-09-01 18:17:39 ----D---- C:\Program Files\Windows NT
2009-09-01 18:17:18 ----D---- C:\Program Files\Fichiers communs\System
2009-09-01 18:16:20 ----D---- C:\WINDOWS\system32\oobe
2009-09-01 18:16:14 ----D---- C:\WINDOWS\system
2009-09-01 18:07:52 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-09-01 17:06:35 ----D---- C:\WINDOWS\system32\config
2009-09-01 17:06:15 ----D---- C:\WINDOWS\Media

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
R1 SiSkp;SiSkp; C:\WINDOWS\system32\DRIVERS\srvkp.sys [2005-04-12 11904]
R2 BDVEDISK;BDVEDISK; \??\C:\Program Files\BitDefender\BitDefender 2009\BDVEDISK.sys []
R2 EAPPkt;Realtek EAPPkt Protocol; C:\WINDOWS\system32\DRIVERS\EAPPkt.sys [2003-12-10 8576]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2003-11-20 1205292]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-12-01 2300928]
R3 bdfm;BDFM; C:\WINDOWS\system32\drivers\bdfm.sys [2008-09-18 111112]
R3 bdfsfltr;bdfsfltr; C:\WINDOWS\system32\drivers\bdfsfltr.sys [2008-12-10 242184]
R3 BDSelfPr;BDSelfPr; \??\C:\Program Files\BitDefender\BitDefender 2009\bdselfpr.sys []
R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 RTL8023xp;Realtek RTL8139/810x/8169/8110 all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2004-04-14 70144]
R3 rtl8180;Realtek RTL8180 Wireless LAN (Mini-)PCI NIC NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8180.SYS [2004-04-29 185216]
R3 SiS315;SiS315; C:\WINDOWS\system32\DRIVERS\sisgrp.sys [2005-04-12 247296]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\nmwcd.sys [2007-06-28 137216]
S3 PCANDIS5;PCANDIS5 Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
S3 Profos;Profos; \??\c:\program files\fichiers communs\bitdefender\bitdefender threat scanner\profos.sys []
S3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-04 20992]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 SoC PC-Camera Service;SoC PC-Camera; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2004-07-28 136576]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 Trufos;Trufos; \??\c:\program files\fichiers communs\bitdefender\bitdefender threat scanner\trufos.sys []
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 w810bus;Sony Ericsson W810 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\w810bus.sys [2006-02-20 58288]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 LIVESRV;BitDefender Desktop Update Service; C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe [2009-03-24 415024]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
R2 VSSERV;BitDefender Virus Shield; C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe [2009-09-02 1642360]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-03-30 1533808]
R2 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 Arrakis3;BitDefender Arrakis Server; C:\Program Files\Fichiers communs\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe [2009-01-20 172032]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-09-04 182768]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 scan;BitDefender Threat Scanner; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
5 Septembre 2009 20:17:23

Hello,

Citation :
Ont dirait que tu commence à geuler toi :-)

Si je suis pas le bienvenue dites le ^^


Personne ne dit que tu n'es pas le bienvenu, seulement il y à des règles a respecter avant de poster

Merci de lire les règles de la section

Citation :
Note à ceux qui prennent en charge des désinfections :

Si vous souhaitez prendre part aux désinfections, vous devez respecter plusieurs choses :

- Dans le cas où vous ne pourriez pas y parvenir, merci d'envoyer un message privé à un helper, un Helper en formation ou à un membre affilié

* Helper : Angeldark, Chercheur_ , Egwene , Eric_71, IL-MAFIOSO, Sham_Rock et XmichouX.
* Helper en formation: BlackTig3r et Dedala.
* Membre affilié : frederix et Destrio5 .

- Ne vous lancez pas dans des désinfections au hasard ! Faites en fonction de vos capacités !
- Les personnes qui créent des sujets suite à une infection vous confient leur ordinateur. Il ne s'agit pas de faire passer des outils au hasard ou de faire appliquer des procédures que vous ne maîtrisez pas. Une erreur de votre part peut amener à endommager le PC de la personne infectée.
C'est pourquoi, deux outils de grande puissance sont réservés au groupe des helpers et aux membres affiliés : The Avenger (de Swandog46), ainsi que Combofix (de sUBs).

Note: Les Helpers en formation sont tous supervisés par la team Helper, ils ont suivi une formation et tous leurs messages sur le forum sont vérifiés par un Helper avant qu'ils ne soient postés.


->> http://www.infos-du-net.com/forum/272538-11-rappels-sec...

Inconnu ici certains sont donc en droit de se poser des questions sur les capacités à désinfecter

5 Septembre 2009 20:20:37

Merci et pour celui qui ma traiter de clown

Je peux te dire que si t'est un homme devoile ta geul !


5 Septembre 2009 20:30:15

Clown, sans aucun doute, et j'ai pitié de celui qui te ferait confiance ! Le pauvre :whistle: 

A part ça, j'ai plaisir à t'informer que dévoile du verbe dévoiler prend un "e" à la 1ère personne de l'impératif
et que gueule, qui est du féminin, en prend également un.

Tu veux apprendre autre chose mignon ?
5 Septembre 2009 20:32:01

Merci Joker colombo j'ai posté les rapports info+log j'espere ne pas avoir fait de boulettte
5 Septembre 2009 20:35:30

Fait ceci :

(!) Faire une mise à jour du logiciel avant de le manipuler (!)

♦ Installe Malwarbytes sur ton bureaux

### http://www.malwarebytes.org/mbam/program/mbam-setup.exe ###

♦ Sélectionne Exécuter un examen complet puis clique sur le bouton Rechercher pour lancer le scan.
♦ Clique sur le bouton Lancer l'examen pour démarrer le scan.
♦ Clique sur le bouton Supprimer la sélection en bas à gauche.
Un rapport de scan s'ouvre, sélectionne tout copie le et colle le dans ta prochaine réponse.



Tuto: http://www.malekal.com/tutorial_MalwareBytes_AntiMalwar...




Bonne chance ! ;) 
5 Septembre 2009 20:39:55

C'est le seul tuto que tu as réussi à copier sur SA ?
5 Septembre 2009 20:42:22

Pourquoi sa te regarde cochon ?
5 Septembre 2009 20:52:43

Je te l'ai déja fait au début du poste joker colombo . je dois en refaire un autre
Anonyme
5 Septembre 2009 21:24:30

Re,

@armagedon54

Pour le moment et en attendant qu'un véritable Helper prenne en charge ton sujet, je te conseille vivement de ne pas suivre les instructions de Joker colombo. Au moins jusqu'à que se soit tiré au clair :heink: 

@Joker colombo

C'est quoi ces canned speeches :ouch: 
5 Septembre 2009 23:29:40

Désolé mais l'ordi ram voila le resulta de Findykill.

############################## | FindyKill V5.008 |

# User : vanes () # VANESSA
# Update on 04/09/2009 by Chiquitine29
# Start at: 21:17:58 | 05/09/2009
# Website : http://pagesperso-orange.fr/NosTools/index.html

# Intel(R) Celeron(R) M processor 1.30GHz
# Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 8.0.6001.18702
# Windows Firewall Status : Enabled
# AV : Antivirus BitDefender 12.0 [ Enabled | Updated ]
# AV : Windows System Suite [ Enabled | Updated ]
# FW : Pare-feu BitDefender [ (!) Disabled ]12.0
# FW : Windows System Suite[ Enabled ]

# A:\ # Lecteur de disquettes 3 ½ pouces # 1,39 Mo (1,39 Mo free) # FAT
# C:\ # Disque fixe local # 37,25 Go (23,34 Go free) # NTFS
# D:\ # Disque CD-ROM
# E:\ # Disque amovible # 121,23 Mo (90,38 Mo free) [USBDISKPRO] # FAT

############################## | Processus actifs |

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\WMPNetwk.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\SANGHA Multimedia Keyboard Driver\PS2USBKbdDrv.exe
C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\WINDOWS\system32\keyhook.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Fichiers communs\Teleca Shared\CapabilityManager.exe
C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe
C:\Program Files\Realtek\Rtl8180\RtlWake.exe
C:\WINDOWS\system32\sistray.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

################## | C: |


################## | C:\WINDOWS |


################## | C:\WINDOWS\system32 |


################## | C:\WINDOWS\system32\drivers |


################## | C:\Documents and Settings\vanes\Application Data |


################## | C:\Documents and Settings\vanes\Temporary Internet Files |


################## | Registre / Clés infectieuses |

Présent ! [HKLM\software\microsoft\security center] "AntiVirusDisableNotify"
Présent ! [HKLM\software\microsoft\security center] "AntiVirusOverride"
Présent ! [HKLM\software\microsoft\security center] "FirewallDisableNotify"
Présent ! [HKLM\software\microsoft\security center] "FirewallOverride"
Présent ! [HKLM\software\microsoft\security center] "UpdatesDisableNotify"

################## | Etat / Services / Informations |

# Affichage des fichiers cachés : OK

# Mode sans echec : OK

# Ndisuio -> Start = 3 ( Good = 3 | Bad = 4 )
# EapHost -> Start = 3 ( Good = 2 | Bad = 4 )
# Ip6Fw -> Start = 3 ( Good = 2 | Bad = 4 )
# SharedAccess -> Start = 2 ( Good = 2 | Bad = 4 )
# wuauserv -> Start = 2 ( Good = 2 | Bad = 4 )
# wscsvc -> Start = 2 ( Good = 2 | Bad = 4 )


################## | Cracks / Keygens / Serials |


################## | ! Fin du rapport # FindyKill V5.008 ! |

5 Septembre 2009 23:45:29

Bon bon bon, on va se calmer un peu :) 
@joker: va lire les règles, et si tu veux toujours désinfecter, tu contactes les personnes susnommées dans les règles.
Mais pour le moment sur ce site, c'est non.

Si Eg ou un autre helper pouvait continuer svp. Merci :) 
6 Septembre 2009 00:44:40

je fait quoi je ne comprend rien de ce qu'il se passe merci
a c 267 8 Sécurité
6 Septembre 2009 02:24:13

Bonjour,

  • Désinstalle FindyKill.

  • Télécharge OTM (OldTimer) sur ton Bureau.
  • Double-clique sur OTM.exe afin de le lancer.
  • Copie (Ctrl+C) le texte suivant ci-dessous :

    :processes
    explorer.exe

    :reg
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "C:\Documents and Settings\All Users\Application Data\ad79d4c\WSad79.exe"=-
    [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
    [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7009fcd4-05be-44f4-9583-93fe419ab7b0}]

    :files
    C:\Documents and Settings\All Users\Application Data\ad79d4c
    C:\Documents and Settings\vanes\Menu Démarrer\Programmes\Démarrage\Reboot.exe

    :commands
    [purity]
    [emptytemp]
    [reboot]

  • Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
  • Clique maintenant sur le bouton MoveIt! puis ferme OTM.

    ---> Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
    Accepte en cliquant sur YES.

  • Poste le rapport situé dans ce dossier : C:\_OTM\MovedFiles\
    ---> Le nom du rapport correspond au moment de sa création : date_heure.log
    6 Septembre 2009 10:53:18

    Bonjour et merci pour ton aide Destrio5 voici le rapport OTM
    All processes killed
    ========== PROCESSES ==========
    No active process named explorer.exe was found!
    ========== REGISTRY ==========
    Registry value HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list\\C:\Documents and Settings\All Users\Application Data\ad79d4c\WSad79.exe deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7009fcd4-05be-44f4-9583-93fe419ab7b0}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7009fcd4-05be-44f4-9583-93fe419ab7b0}\ not found.
    ========== FILES ==========
    C:\Documents and Settings\All Users\Application Data\ad79d4c\WSYSSSys moved successfully.
    C:\Documents and Settings\All Users\Application Data\ad79d4c\BackUp moved successfully.
    C:\Documents and Settings\All Users\Application Data\ad79d4c moved successfully.
    C:\Documents and Settings\vanes\Menu Démarrer\Programmes\Démarrage\Reboot.exe moved successfully.
    ========== COMMANDS ==========

    [EMPTYTEMP]

    User: Administrateur
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 85634 bytes

    User: All Users

    User: Application Data

    User: cs

    User: Default User
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 33170 bytes

    User: Documents and Settings

    User: LocalService
    ->Temp folder emptied: 0 bytes
    File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
    ->Temporary Internet Files folder emptied: 2791940 bytes

    User: NetworkService
    ->Temp folder emptied: 0 bytes
    File delete failed. C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
    ->Temporary Internet Files folder emptied: 33170 bytes

    User: vanes
    ->Temp folder emptied: 116644400 bytes
    File delete failed. C:\Documents and Settings\vanes\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
    ->Temporary Internet Files folder emptied: 175491992 bytes

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 2134506 bytes
    %systemroot%\System32 .tmp files removed: 7014400 bytes
    Windows Temp folder emptied: 52853990 bytes
    RecycleBin emptied: 0 bytes

    Total Files Cleaned = 340,54 mb


    OTM by OldTimer - Version 3.0.0.6 log created on 09062009_103025

    Files moved on Reboot...

    Registry entries deleted on Reboot...
    a c 267 8 Sécurité
    6 Septembre 2009 13:38:48

    1/

  • Télécharge HostsXpert sur ton Bureau.
  • Décompresse-le (Clic droit >> Extraire ici).
  • Double-clique sur HostsXpert pour le lancer.
  • Clique sur le bouton Restore MS Hosts File puis ferme le programme.

    PS : Avant de cliquer sur le bouton Restore MS Hosts File, vérifie que le cadenas en haut à gauche soit ouvert sinon tu vas avoir un message d'erreur.


    2/

  • Télécharge Gmer sur ton Bureau.
  • Extrais l'archive (Clic droit > Extraire) puis renomme gmer.exe en IDN.exe (Le .exe n'est pas forcément visible).
  • Double-clique sur IDN.exe.
  • Onglet "Rootkit/Malware", clique sur "Scan" puis patiente.
  • En fin de traitement, clique sur "Save..." et enregistre sur ton Bureau "gmer.txt".
  • Double-clique sur "gmer.txt", le rapport apparaît, poste-le.
    6 Septembre 2009 23:24:28

    je sais pas si c'eGMER 1.0.15.15077 [IND.exe] - http://www.gmer.net
    Rootkit scan 2009-09-06 23:20:01
    Windows 5.1.2600 Service Pack 3


    ---- System - GMER 1.0.15 ----

    SSDT \??\C:\Program Files\BitDefender\BitDefender 2009\bdselfpr.sys (BitDefender Self Protection Driver/BitDefender S.R.L.) ZwOpenProcess [0xED568C90]
    SSDT \??\C:\Program Files\BitDefender\BitDefender 2009\bdselfpr.sys (BitDefender Self Protection Driver/BitDefender S.R.L.) ZwOpenThread [0xED568D7E]
    SSDT \??\C:\Program Files\BitDefender\BitDefender 2009\bdselfpr.sys (BitDefender Self Protection Driver/BitDefender S.R.L.) ZwTerminateProcess [0xED568BF4]
    SSDT \??\C:\Program Files\BitDefender\BitDefender 2009\bdselfpr.sys (BitDefender Self Protection Driver/BitDefender S.R.L.) ZwTerminateThread [0xED568EC4]

    ---- User code sections - GMER 1.0.15 ----

    .text C:\WINDOWS\system32\SearchIndexer.exe[528] kernel32.dll!WriteFile 7C810E27 7 Bytes JMP 00585C0C C:\WINDOWS\system32\MSSRCH.DLL (mssrch.dll/Microsoft Corporation)
    .text C:\Program Files\Windows Live\Messenger\msnmsgr.exe[2524] WS2_32.dll!closesocket 719F3E2B 5 Bytes JMP 030B4408 C:\Program Files\MessengerPlus! 3\MsgPlusH.dll (Messenger Plus! Hook DLL/Patchou)
    .text C:\Program Files\Windows Live\Messenger\msnmsgr.exe[2524] WS2_32.dll!send 719F4C27 5 Bytes JMP 030B48E8 C:\Program Files\MessengerPlus! 3\MsgPlusH.dll (Messenger Plus! Hook DLL/Patchou)
    .text C:\Program Files\Windows Live\Messenger\msnmsgr.exe[2524] WS2_32.dll!recv 719F676F 5 Bytes JMP 030B48A6 C:\Program Files\MessengerPlus! 3\MsgPlusH.dll (Messenger Plus! Hook DLL/Patchou)
    .text C:\Program Files\Windows Live\Messenger\msnmsgr.exe[2524] SHELL32.dll!Shell_NotifyIcon 7CA38C56 5 Bytes JMP 030B1163 C:\Program Files\MessengerPlus! 3\MsgPlusH.dll (Messenger Plus! Hook DLL/Patchou)

    ---- Devices - GMER 1.0.15 ----

    AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
    AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)

    ---- EOF - GMER 1.0.15 ----
    st bon ou pas du tuto mais voila le rappor
    a c 267 8 Sécurité
    6 Septembre 2009 23:25:14

    Le PC va mieux ?
    7 Septembre 2009 01:46:55

    je ne sais pas si j'ai bien fait l'application mais c'est toujours la même chose !!!!
    a c 267 8 Sécurité
    7 Septembre 2009 02:08:20

    Comment ça ?
    7 Septembre 2009 12:20:52

    Bonjour , quand j'ouvre HostsXpert le cadenas est make ReadOnly? mais il y a un message qui s'affiche donc Warning You Hosts file is marked as "system file "and can NOT be manipulated Press ok to remove the system file attribute , cancel to quit.
    ***HostsXpert wil NOT reset these attributes.***
    Donc je clic sur ok la le petit cadre warning s'efface et tout de suite le cadenas me mais Make Writeable ? donc je n'ai pas le temps de cliquer sur Restore MS Hosts file
    et un nouveau message Error Cannot create file C:\Document and Settings\vane\Bureau\Hospert.tmp
    7 Septembre 2009 13:17:03

    la j'ai bien sur HostsXpert le cadenas ouvert Make ReadOnly pas de message d'erreur mais quand je clic sur Restore MS Hosts file rien ne se passe .......!
    a c 267 8 Sécurité
    7 Septembre 2009 13:27:27

  • Refais un scan RSIT et poste le rapport log.
    7 Septembre 2009 13:54:16

    ok voila le rapport
    Logfile of random's system information tool 1.06 (written by random/random)
    Run by vanes at 2009-09-07 13:49:59
    Microsoft Windows XP Édition familiale Service Pack 3
    System drive C: has 25 GB (64%) free of 38 GB
    Total RAM: 223 MB (19% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 13:52:03, on 07/09/2009
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
    C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\WINDOWS\system32\SearchIndexer.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\WINDOWS\SOUNDMAN.EXE
    C:\WINDOWS\AGRSMMSG.exe
    C:\Program Files\MessengerPlus! 3\MsgPlus.exe
    C:\Program Files\SANGHA Multimedia Keyboard Driver\PS2USBKbdDrv.exe
    C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe
    C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
    C:\WINDOWS\system32\keyhook.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\Windows Media Player\WMPNSCFG.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe
    C:\Program Files\Realtek\Rtl8180\RtlWake.exe
    C:\WINDOWS\system32\sistray.exe
    C:\Program Files\Windows Desktop Search\WindowsSearch.exe
    C:\Program Files\Fichiers communs\Teleca Shared\CapabilityManager.exe
    C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe
    C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
    C:\WINDOWS\system32\SearchProtocolHost.exe
    C:\Documents and Settings\vanes\Bureau\RSIT.exe
    C:\Program Files\Trend Micro\HijackThis\vanes.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O1 - Hosts: 212.150.54.250 dv-networks.com
    O1 - Hosts: 74.125.45.100 4-open-davinci.com
    O1 - Hosts: 74.125.45.100 securitysoftwarepayments.com
    O1 - Hosts: 74.125.45.100 privatesecuredpayments.com
    O1 - Hosts: 74.125.45.100 secure.privatesecuredpayments.com
    O1 - Hosts: 74.125.45.100 getantivirusplusnow.com
    O1 - Hosts: 74.125.45.100 secure-plus-payments.com
    O1 - Hosts: 74.125.45.100 www.getantivirusplusnow.com
    O1 - Hosts: 74.125.45.100 www.secure-plus-payments.com
    O1 - Hosts: 74.125.45.100 www.getavplusnow.com
    O1 - Hosts: 74.125.45.100 www.securesoftwarebill.com
    O1 - Hosts: 64.86.17.32 google.ae
    O1 - Hosts: 64.86.17.32 google.as
    O1 - Hosts: 64.86.17.32 google.at
    O1 - Hosts: 64.86.17.32 google.az
    O1 - Hosts: 64.86.17.32 google.ba
    O1 - Hosts: 64.86.17.32 google.be
    O1 - Hosts: 64.86.17.32 google.bg
    O1 - Hosts: 64.86.17.32 google.bs
    O1 - Hosts: 64.86.17.32 google.ca
    O1 - Hosts: 64.86.17.32 google.cd
    O1 - Hosts: 64.86.17.32 google.com.gh
    O1 - Hosts: 64.86.17.32 google.com.hk
    O1 - Hosts: 64.86.17.32 google.com.jm
    O1 - Hosts: 64.86.17.32 google.com.mx
    O1 - Hosts: 64.86.17.32 google.com.my
    O1 - Hosts: 64.86.17.32 google.com.na
    O1 - Hosts: 64.86.17.32 google.com.nf
    O1 - Hosts: 64.86.17.32 google.com.ng
    O1 - Hosts: 64.86.17.32 google.ch
    O1 - Hosts: 64.86.17.32 google.com.np
    O1 - Hosts: 64.86.17.32 google.com.pr
    O1 - Hosts: 64.86.17.32 google.com.qa
    O1 - Hosts: 64.86.17.32 google.com.sg
    O1 - Hosts: 64.86.17.32 google.com.tj
    O1 - Hosts: 64.86.17.32 google.com.tw
    O1 - Hosts: 64.86.17.32 google.dj
    O1 - Hosts: 64.86.17.32 google.de
    O1 - Hosts: 64.86.17.32 google.dk
    O1 - Hosts: 64.86.17.32 google.dm
    O1 - Hosts: 64.86.17.32 google.ee
    O1 - Hosts: 64.86.17.32 google.fi
    O1 - Hosts: 64.86.17.32 google.fm
    O1 - Hosts: 64.86.17.32 google.fr
    O1 - Hosts: 64.86.17.32 google.ge
    O1 - Hosts: 64.86.17.32 google.gg
    O1 - Hosts: 64.86.17.32 google.gm
    O1 - Hosts: 64.86.17.32 google.gr
    O1 - Hosts: 64.86.17.32 google.ht
    O1 - Hosts: 64.86.17.32 google.ie
    O1 - Hosts: 64.86.17.32 google.im
    O1 - Hosts: 64.86.17.32 google.in
    O1 - Hosts: 64.86.17.32 google.it
    O1 - Hosts: 64.86.17.32 google.ki
    O1 - Hosts: 64.86.17.32 google.la
    O1 - Hosts: 64.86.17.32 google.li
    O1 - Hosts: 64.86.17.32 google.lv
    O1 - Hosts: 64.86.17.32 google.ma
    O1 - Hosts: 64.86.17.32 google.ms
    O1 - Hosts: 64.86.17.32 google.mu
    O1 - Hosts: 64.86.17.32 google.mw
    O1 - Hosts: 64.86.17.32 google.nl
    O1 - Hosts: 64.86.17.32 google.no
    O1 - Hosts: 64.86.17.32 google.nr
    O1 - Hosts: 64.86.17.32 google.nu
    O1 - Hosts: 64.86.17.32 google.pl
    O1 - Hosts: 64.86.17.32 google.pn
    O1 - Hosts: 64.86.17.32 google.pt
    O1 - Hosts: 64.86.17.32 google.ro
    O1 - Hosts: 64.86.17.32 google.ru
    O1 - Hosts: 64.86.17.32 google.rw
    O1 - Hosts: 64.86.17.32 google.sc
    O1 - Hosts: 64.86.17.32 google.se
    O1 - Hosts: 64.86.17.32 google.sh
    O1 - Hosts: 64.86.17.32 google.si
    O1 - Hosts: 64.86.17.32 google.sm
    O1 - Hosts: 64.86.17.32 google.sn
    O1 - Hosts: 64.86.17.32 google.st
    O1 - Hosts: 64.86.17.32 google.tl
    O1 - Hosts: 64.86.17.32 google.tm
    O1 - Hosts: 64.86.17.32 google.tt
    O1 - Hosts: 64.86.17.32 google.us
    O1 - Hosts: 64.86.17.32 google.vu
    O1 - Hosts: 64.86.17.32 google.ws
    O1 - Hosts: 64.86.17.32 google.co.ck
    O1 - Hosts: 64.86.17.32 google.co.id
    O1 - Hosts: 64.86.17.32 google.co.il
    O1 - Hosts: 64.86.17.32 google.co.in
    O1 - Hosts: 64.86.17.32 google.co.jp
    O1 - Hosts: 64.86.17.32 google.co.kr
    O1 - Hosts: 64.86.17.32 google.co.ls
    O1 - Hosts: 64.86.17.32 google.co.ma
    O1 - Hosts: 64.86.17.32 google.co.nz
    O1 - Hosts: 64.86.17.32 google.co.tz
    O1 - Hosts: 64.86.17.32 google.co.ug
    O1 - Hosts: 64.86.17.32 google.co.uk
    O1 - Hosts: 64.86.17.32 google.co.za
    O1 - Hosts: 64.86.17.32 google.co.zm
    O1 - Hosts: 64.86.17.32 google.com
    O1 - Hosts: 64.86.17.32 google.com.af
    O1 - Hosts: 64.86.17.32 google.com.ag
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
    O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
    O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
    O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
    O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
    O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [WireLessKeyboard ] C:\Program Files\SANGHA Multimedia Keyboard Driver\PS2USBKbdDrv.exe
    O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe"
    O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe"
    O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
    O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
    O4 - HKLM\..\Run: [SiS Windows KeyHook] C:\WINDOWS\system32\keyhook.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
    O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: RtlWake.lnk = ?
    O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
    O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
    O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
    O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
    O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
    O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
    O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
    O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3/resources/MSNPUpld.cab
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
    O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://www.touslesdrivers.com/fichiers/hardwaredetectio...
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
    O23 - Service: BitDefender Arrakis Server (Arrakis3) - Unknown owner - C:\Program Files\Fichiers communs\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
    O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe

    --
    End of file - 12545 bytes

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Adobe PDF Reader Link Helper - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-01-12 63128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
    Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live ID - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30 403824]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
    Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-09-04 256112]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
    Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2009-09-04 761840]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
    Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2009-09-04 458736]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
    Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [2004-04-16 405504]
    {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - BitDefender Toolbar - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll [2009-03-24 95536]
    {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-09-04 256112]
    {21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-12-01 77824]
    "AGRSMMSG"=C:\WINDOWS\AGRSMMSG.exe [2003-11-20 88363]
    "MessengerPlus3"=C:\Program Files\MessengerPlus! 3\MsgPlus.exe [2007-09-05 190024]
    "NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
    "WireLessKeyboard "=C:\Program Files\SANGHA Multimedia Keyboard Driver\PS2USBKbdDrv.exe [2005-09-28 659456]
    "BDAgent"=C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe [2009-09-02 782336]
    "BitDefender Antiphishing Helper"=C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe [2009-02-23 69632]
    "Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2005-10-26 159744]
    "SiSPower"=SiSPower.dll,ModeAgent []
    "SiS Windows KeyHook"=C:\WINDOWS\system32\keyhook.exe [2005-04-08 32768]
    "QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2007-09-17 77824]
    "Easy-PrintToolBox"=C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE [2004-01-14 409600]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "MessengerPlus3"=C:\Program Files\MessengerPlus! 3\MsgPlus.exe [2007-09-05 190024]
    "MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
    "WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2006-11-03 204288]
    "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
    "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-09-04 39408]
    "msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]

    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
    Lancement rapide d'Adobe Reader.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    RtlWake.lnk - C:\Program Files\Realtek\Rtl8180\RtlWake.exe
    Utility Tray.lnk - C:\WINDOWS\system32\sistray.exe
    Windows Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    "{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=145

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "HonorAutoRunSetting"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
    "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
    "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"

    ======List of files/folders created in the last 1 months======

    2009-09-06 10:30:25 ----D---- C:\_OTM
    2009-09-05 21:17:56 ----A---- C:\FindyKill.txt
    2009-09-05 19:55:59 ----D---- C:\rsit
    2009-09-05 14:29:22 ----N---- C:\WINDOWS\system32\spmsg2.dll
    2009-09-05 14:29:20 ----HDC---- C:\WINDOWS\$NtUninstallXPSEPSCLP$
    2009-09-05 02:13:11 ----HDC---- C:\WINDOWS\$NtUninstallKB961503$
    2009-09-05 02:12:01 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
    2009-09-05 02:08:30 ----HDC---- C:\WINDOWS\$NtUninstallKB963093$
    2009-09-05 01:12:29 ----D---- C:\WINDOWS\pss
    2009-09-04 23:51:17 ----D---- C:\Documents and Settings\vanes\Application Data\Windows Search
    2009-09-04 23:13:58 ----D---- C:\Program Files\Microsoft Sync Framework
    2009-09-04 23:05:59 ----D---- C:\Program Files\Windows Live SkyDrive
    2009-09-04 16:49:08 ----D---- C:\Documents and Settings\vanes\Application Data\Malwarebytes
    2009-09-04 16:48:58 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
    2009-09-04 16:48:57 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
    2009-09-04 15:16:55 ----D---- C:\Program Files\Trend Micro
    2009-09-04 13:43:13 ----D---- C:\WINDOWS\system32\XPSViewer
    2009-09-04 13:42:20 ----D---- C:\Program Files\MSBuild
    2009-09-04 13:41:53 ----D---- C:\WINDOWS\system32\en-US
    2009-09-04 13:40:28 ----D---- C:\Program Files\Reference Assemblies
    2009-09-04 12:57:25 ----N---- C:\WINDOWS\system32\prntvpt.dll
    2009-09-04 12:57:23 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
    2009-09-04 12:57:10 ----N---- C:\WINDOWS\system32\xpssvcs.dll
    2009-09-04 12:56:46 ----D---- C:\d58e1ff23603a59145b5c2f943a6
    2009-09-04 12:05:39 ----D---- C:\80f6110ce517c7be63
    2009-09-04 12:04:10 ----D---- C:\6d23d6d7aa6fd445e2711ab42405
    2009-09-04 07:54:35 ----D---- C:\Program Files\Microsoft Silverlight
    2009-09-04 07:52:45 ----D---- C:\Program Files\Microsoft
    2009-09-04 07:52:14 ----HDC---- C:\WINDOWS\$NtUninstallbasecsp$
    2009-09-04 07:36:32 ----D---- C:\Program Files\Fichiers communs\Windows Live
    2009-09-04 07:34:49 ----D---- C:\Documents and Settings\vanes\Application Data\Windows Desktop Search
    2009-09-04 07:32:34 ----D---- C:\WINDOWS\system32\GroupPolicy
    2009-09-04 07:32:34 ----D---- C:\Program Files\Windows Desktop Search
    2009-09-04 07:32:17 ----HDC---- C:\WINDOWS\$NtUninstallKB940157$
    2009-09-04 07:31:39 ----HDC---- C:\WINDOWS\$NtUninstallKB915800-v4$
    2009-09-03 16:30:55 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
    2009-09-03 14:49:56 ----A---- C:\WINDOWS\system32\un2065.txt
    2009-09-03 14:49:56 ----A---- C:\WINDOWS\system32\2065.txt
    2009-09-03 14:13:53 ----A---- C:\WINDOWS\bdagent.INI
    2009-09-03 14:06:17 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
    2009-09-03 14:04:51 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
    2009-09-03 13:56:25 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
    2009-09-03 13:56:08 ----HDC---- C:\WINDOWS\$NtUninstallKB971557$
    2009-09-03 13:55:50 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
    2009-09-03 13:55:30 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
    2009-09-03 13:55:11 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
    2009-09-03 13:54:53 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
    2009-09-03 13:53:49 ----D---- C:\WINDOWS\ie8updates
    2009-09-03 13:52:48 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
    2009-09-03 13:52:24 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
    2009-09-03 13:46:52 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
    2009-09-03 13:41:28 ----HDC---- C:\WINDOWS\$NtUninstallKB970653-v3$
    2009-09-02 17:09:00 ----A---- C:\WINDOWS\system32\tmp.txt
    2009-09-02 17:08:46 ----A---- C:\rapport.txt
    2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\VACFix.exe
    2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\o4Patch.exe
    2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\IEDFix.exe
    2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\IEDFix.C.exe
    2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\Agent.OMZ.Fix.exe
    2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\404Fix.exe
    2009-09-02 17:04:28 ----A---- C:\WINDOWS\system32\WS2Fix.exe
    2009-09-02 17:04:28 ----A---- C:\WINDOWS\system32\VCCLSID.exe
    2009-09-02 17:04:28 ----A---- C:\WINDOWS\system32\swxcacls.exe
    2009-09-02 17:04:28 ----A---- C:\WINDOWS\system32\dumphive.exe
    2009-09-02 17:04:27 ----A---- C:\WINDOWS\system32\swsc.exe
    2009-09-02 17:04:27 ----A---- C:\WINDOWS\system32\swreg.exe
    2009-09-02 17:04:27 ----A---- C:\WINDOWS\system32\SrchSTS.exe
    2009-09-02 17:04:27 ----A---- C:\WINDOWS\system32\Process.exe
    2009-09-02 16:50:57 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
    2009-09-02 16:49:52 ----D---- C:\Documents and Settings\vanes\Application Data\Simply Super Software
    2009-09-02 16:18:31 ----D---- C:\Documents and Settings\vanes\Application Data\BitDefender
    2009-09-02 16:16:37 ----D---- C:\Program Files\BitDefender
    2009-09-02 16:16:37 ----D---- C:\Documents and Settings\All Users\Application Data\BitDefender
    2009-09-02 16:01:03 ----D---- C:\Program Files\Fichiers communs\BitDefender
    2009-09-02 06:14:42 ----D---- C:\Program Files\Enigma Software Group
    2009-09-02 05:42:38 ----A---- C:\WINDOWS\ntbtlog.txt
    2009-09-02 05:27:53 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
    2009-09-02 05:14:49 ----A---- C:\WINDOWS\resetlog.txt
    2009-09-02 04:39:32 ----D---- C:\Program Files\SAGEM
    2009-09-02 04:39:32 ----A---- C:\WINDOWS\system32\coclassfast.dll
    2009-09-01 18:56:22 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
    2009-09-01 18:55:46 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
    2009-09-01 18:55:14 ----HDC---- C:\WINDOWS\$NtUninstallKB968537$
    2009-09-01 18:54:09 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
    2009-09-01 18:53:47 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
    2009-09-01 18:53:29 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
    2009-09-01 18:53:15 ----HDC---- C:\WINDOWS\$NtUninstallKB961371$
    2009-09-01 18:52:57 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
    2009-09-01 18:52:33 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
    2009-09-01 18:52:17 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
    2009-09-01 18:52:01 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
    2009-09-01 18:51:47 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
    2009-09-01 18:51:31 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
    2009-09-01 18:51:11 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
    2009-09-01 18:50:55 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
    2009-09-01 18:50:41 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
    2009-09-01 18:50:23 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
    2009-09-01 18:50:07 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
    2009-09-01 18:49:05 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
    2009-09-01 18:48:33 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
    2009-09-01 18:48:16 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
    2009-09-01 18:48:01 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
    2009-09-01 18:47:35 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
    2009-09-01 18:47:21 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
    2009-09-01 18:47:01 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
    2009-09-01 18:46:39 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
    2009-09-01 18:45:53 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
    2009-09-01 18:45:06 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
    2009-09-01 18:44:24 ----HDC---- C:\WINDOWS\$NtUninstallKB951376$
    2009-09-01 18:43:32 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
    2009-09-01 18:42:46 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
    2009-09-01 18:42:00 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
    2009-09-01 18:40:48 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
    2009-09-01 18:40:17 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$
    2009-09-01 18:39:30 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
    2009-09-01 18:23:29 ----D---- C:\WINDOWS\l2schemas
    2009-09-01 18:23:27 ----D---- C:\WINDOWS\system32\fr
    2009-09-01 18:23:25 ----D---- C:\WINDOWS\system32\bits
    2009-09-01 18:18:22 ----D---- C:\WINDOWS\ServicePackFiles
    2009-09-01 18:11:56 ----D---- C:\WINDOWS\network diagnostic
    2009-09-01 17:59:47 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
    2009-09-01 17:59:32 ----D---- C:\WINDOWS\EHome
    2009-09-01 17:06:28 ----D---- C:\WINDOWS\WBEM
    2009-09-01 17:04:44 ----HDC---- C:\WINDOWS\ie8
    2009-09-01 17:04:44 ----D---- C:\WINDOWS\system32\fr-FR

    ======List of files/folders modified in the last 1 months======

    2009-09-07 13:38:36 ----D---- C:\WINDOWS\system32
    2009-09-07 13:38:16 ----D---- C:\WINDOWS\Temp
    2009-09-07 13:28:51 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-09-07 13:28:39 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-09-07 13:27:03 ----D---- C:\WINDOWS\Prefetch
    2009-09-07 12:34:46 ----HD---- C:\WINDOWS\inf
    2009-09-06 10:31:35 ----D---- C:\WINDOWS
    2009-09-05 14:29:06 ----SHD---- C:\WINDOWS\Installer
    2009-09-05 14:29:06 ----SHD---- C:\Config.Msi
    2009-09-05 14:29:05 ----RSD---- C:\WINDOWS\assembly
    2009-09-05 03:24:52 ----SH---- C:\boot.ini
    2009-09-05 03:24:51 ----A---- C:\WINDOWS\win.ini
    2009-09-05 03:24:45 ----A---- C:\WINDOWS\system.ini
    2009-09-05 02:42:37 ----D---- C:\WINDOWS\Microsoft.NET
    2009-09-05 02:13:21 ----A---- C:\WINDOWS\imsins.BAK
    2009-09-05 02:13:15 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-09-05 02:12:52 ----D---- C:\WINDOWS\system32\CatRoot
    2009-09-05 01:11:38 ----HD---- C:\WINDOWS\$hf_mig$
    2009-09-04 23:51:23 ----SD---- C:\Documents and Settings\vanes\Application Data\Microsoft
    2009-09-04 23:15:07 ----D---- C:\Program Files\Windows Live
    2009-09-04 23:14:00 ----D---- C:\WINDOWS\WinSxS
    2009-09-04 23:13:58 ----RD---- C:\Program Files
    2009-09-04 23:13:43 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
    2009-09-04 23:11:47 ----D---- C:\WINDOWS\system32\DirectX
    2009-09-04 22:28:58 ----D---- C:\Documents and Settings\All Users\Application Data\Google
    2009-09-04 22:28:03 ----D---- C:\Program Files\Google
    2009-09-04 21:48:25 ----D---- C:\Program Files\Fichiers communs\Symantec Shared
    2009-09-04 20:57:18 ----SD---- C:\WINDOWS\Tasks
    2009-09-04 17:19:59 ----D---- C:\WINDOWS\system32\drivers
    2009-09-04 14:23:03 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-09-04 13:41:41 ----RSD---- C:\WINDOWS\Fonts
    2009-09-04 07:58:36 ----D---- C:\WINDOWS\security
    2009-09-04 07:57:23 ----D---- C:\Program Files\Internet Explorer
    2009-09-04 07:53:47 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
    2009-09-04 07:36:32 ----D---- C:\Program Files\Fichiers communs
    2009-09-04 07:32:34 ----D---- C:\WINDOWS\system32\wbem
    2009-09-03 13:54:59 ----D---- C:\Program Files\Outlook Express
    2009-09-03 09:02:14 ----D---- C:\WINDOWS\system32\Tools
    2009-09-02 05:43:16 ----D---- C:\Documents and Settings
    2009-09-02 04:39:31 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-09-02 04:15:05 ----A---- C:\WINDOWS\OEWABLog.txt
    2009-09-02 04:00:30 ----A---- C:\WINDOWS\setuplog.txt
    2009-09-02 03:09:39 ----D---- C:\WINDOWS\system32\Setup
    2009-09-02 03:09:39 ----D---- C:\WINDOWS\AppPatch
    2009-09-02 03:09:39 ----D---- C:\Program Files\Messenger
    2009-09-01 18:24:28 ----D---- C:\WINDOWS\ime
    2009-09-01 18:24:27 ----D---- C:\WINDOWS\Help
    2009-09-01 18:23:35 ----D---- C:\WINDOWS\system32\usmt
    2009-09-01 18:23:25 ----D---- C:\WINDOWS\PeerNet
    2009-09-01 18:23:24 ----D---- C:\Program Files\Movie Maker
    2009-09-01 18:18:04 ----D---- C:\WINDOWS\system32\Restore
    2009-09-01 18:18:03 ----D---- C:\WINDOWS\system32\npp
    2009-09-01 18:17:59 ----D---- C:\WINDOWS\msagent
    2009-09-01 18:17:55 ----D---- C:\WINDOWS\srchasst
    2009-09-01 18:17:53 ----D---- C:\Program Files\NetMeeting
    2009-09-01 18:17:50 ----D---- C:\WINDOWS\system32\Com
    2009-09-01 18:17:42 ----D---- C:\Program Files\Windows Media Player
    2009-09-01 18:17:39 ----D---- C:\Program Files\Windows NT
    2009-09-01 18:17:18 ----D---- C:\Program Files\Fichiers communs\System
    2009-09-01 18:16:20 ----D---- C:\WINDOWS\system32\oobe
    2009-09-01 18:16:14 ----D---- C:\WINDOWS\system
    2009-09-01 18:07:52 ----D---- C:\WINDOWS\system32\ReinstallBackups
    2009-09-01 17:06:35 ----D---- C:\WINDOWS\system32\config
    2009-09-01 17:06:15 ----D---- C:\WINDOWS\Media

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
    R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
    R1 SiSkp;SiSkp; C:\WINDOWS\system32\DRIVERS\srvkp.sys [2005-04-12 11904]
    R2 BDVEDISK;BDVEDISK; \??\C:\Program Files\BitDefender\BitDefender 2009\BDVEDISK.sys []
    R2 EAPPkt;Realtek EAPPkt Protocol; C:\WINDOWS\system32\DRIVERS\EAPPkt.sys [2003-12-10 8576]
    R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2003-11-20 1205292]
    R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-12-01 2300928]
    R3 bdfm;BDFM; C:\WINDOWS\system32\drivers\bdfm.sys [2008-09-18 111112]
    R3 bdfsfltr;bdfsfltr; C:\WINDOWS\system32\drivers\bdfsfltr.sys [2008-12-10 242184]
    R3 BDSelfPr;BDSelfPr; \??\C:\Program Files\BitDefender\BitDefender 2009\bdselfpr.sys []
    R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
    R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
    R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
    R3 RTL8023xp;Realtek RTL8139/810x/8169/8110 all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2004-04-14 70144]
    R3 rtl8180;Realtek RTL8180 Wireless LAN (Mini-)PCI NIC NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8180.SYS [2004-04-29 185216]
    R3 SiS315;SiS315; C:\WINDOWS\system32\DRIVERS\sisgrp.sys [2005-04-12 247296]
    R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
    R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
    R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
    R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
    S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
    S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
    S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
    S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
    S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\nmwcd.sys [2007-06-28 137216]
    S3 PCANDIS5;PCANDIS5 Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
    S3 Profos;Profos; \??\c:\program files\fichiers communs\bitdefender\bitdefender threat scanner\profos.sys []
    S3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-04 20992]
    S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
    S3 SoC PC-Camera Service;SoC PC-Camera; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2004-07-28 136576]
    S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
    S3 Trufos;Trufos; \??\c:\program files\fichiers communs\bitdefender\bitdefender threat scanner\trufos.sys []
    S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
    S3 w810bus;Sony Ericsson W810 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\w810bus.sys [2006-02-20 58288]
    S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
    S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
    S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
    S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 LIVESRV;BitDefender Desktop Update Service; C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe [2009-03-24 415024]
    R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
    R2 VSSERV;BitDefender Virus Shield; C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe [2009-09-02 1642360]
    R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-03-30 1533808]
    R2 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
    R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
    R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    S3 Arrakis3;BitDefender Arrakis Server; C:\Program Files\Fichiers communs\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe [2009-01-20 172032]
    S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
    S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
    S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-09-04 182768]
    S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
    S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
    S3 scan;BitDefender Threat Scanner; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
    S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

    -----------------EOF-----------------
    a c 267 8 Sécurité
    7 Septembre 2009 14:06:19

  • Supprime HostsXpert et Gmer.

  • Télécharge R-Hosts (de S!ri) sur ton Bureau.
  • Double-clique sur R-Hosts puis clique sur Restaurer, puis OK.
    7 Septembre 2009 14:14:55

    Il me met un message impossible de créer le fichier C:\WINDOWS\system32\drivers\etc\hosts.
    a c 267 8 Sécurité
    7 Septembre 2009 14:29:42

  • Supprime R-Hosts.

  • Lance ce fichier : C:\Program Files\Trend Micro\HijackThis\vanes.exe
  • Choisis Do a system scan only.
  • Coche les cases qui sont devant les lignes O1.
  • Clique en bas sur Fix checked. Mets oui si HijackThis te demande quelque chose.
  • Ferme HijackThis.

  • Refais un scan RSIT et poste le rapport log.
    7 Septembre 2009 14:56:06

    voila le rapport RSIT

    Logfile of random's system information tool 1.06 (written by random/random)
    Run by vanes at 2009-09-07 14:53:17
    Microsoft Windows XP Édition familiale Service Pack 3
    System drive C: has 24 GB (64%) free of 38 GB
    Total RAM: 223 MB (44% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 14:53:26, on 07/09/2009
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
    C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\WINDOWS\system32\SearchIndexer.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\WINDOWS\SOUNDMAN.EXE
    C:\WINDOWS\AGRSMMSG.exe
    C:\Program Files\MessengerPlus! 3\MsgPlus.exe
    C:\Program Files\SANGHA Multimedia Keyboard Driver\PS2USBKbdDrv.exe
    C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe
    C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
    C:\WINDOWS\system32\keyhook.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\Windows Media Player\WMPNSCFG.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe
    C:\Program Files\Realtek\Rtl8180\RtlWake.exe
    C:\WINDOWS\system32\sistray.exe
    C:\Program Files\Windows Desktop Search\WindowsSearch.exe
    C:\Program Files\Fichiers communs\Teleca Shared\CapabilityManager.exe
    C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe
    C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
    C:\Documents and Settings\vanes\Bureau\RSIT.exe
    C:\Program Files\Trend Micro\HijackThis\vanes.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O1 - Hosts: 212.150.54.250 dv-networks.com
    O1 - Hosts: 74.125.45.100 4-open-davinci.com
    O1 - Hosts: 74.125.45.100 securitysoftwarepayments.com
    O1 - Hosts: 74.125.45.100 privatesecuredpayments.com
    O1 - Hosts: 74.125.45.100 secure.privatesecuredpayments.com
    O1 - Hosts: 74.125.45.100 getantivirusplusnow.com
    O1 - Hosts: 74.125.45.100 secure-plus-payments.com
    O1 - Hosts: 74.125.45.100 www.getantivirusplusnow.com
    O1 - Hosts: 74.125.45.100 www.secure-plus-payments.com
    O1 - Hosts: 74.125.45.100 www.getavplusnow.com
    O1 - Hosts: 74.125.45.100 www.securesoftwarebill.com
    O1 - Hosts: 64.86.17.32 google.ae
    O1 - Hosts: 64.86.17.32 google.as
    O1 - Hosts: 64.86.17.32 google.at
    O1 - Hosts: 64.86.17.32 google.az
    O1 - Hosts: 64.86.17.32 google.ba
    O1 - Hosts: 64.86.17.32 google.be
    O1 - Hosts: 64.86.17.32 google.bg
    O1 - Hosts: 64.86.17.32 google.bs
    O1 - Hosts: 64.86.17.32 google.ca
    O1 - Hosts: 64.86.17.32 google.cd
    O1 - Hosts: 64.86.17.32 google.com.gh
    O1 - Hosts: 64.86.17.32 google.com.hk
    O1 - Hosts: 64.86.17.32 google.com.jm
    O1 - Hosts: 64.86.17.32 google.com.mx
    O1 - Hosts: 64.86.17.32 google.com.my
    O1 - Hosts: 64.86.17.32 google.com.na
    O1 - Hosts: 64.86.17.32 google.com.nf
    O1 - Hosts: 64.86.17.32 google.com.ng
    O1 - Hosts: 64.86.17.32 google.ch
    O1 - Hosts: 64.86.17.32 google.com.np
    O1 - Hosts: 64.86.17.32 google.com.pr
    O1 - Hosts: 64.86.17.32 google.com.qa
    O1 - Hosts: 64.86.17.32 google.com.sg
    O1 - Hosts: 64.86.17.32 google.com.tj
    O1 - Hosts: 64.86.17.32 google.com.tw
    O1 - Hosts: 64.86.17.32 google.dj
    O1 - Hosts: 64.86.17.32 google.de
    O1 - Hosts: 64.86.17.32 google.dk
    O1 - Hosts: 64.86.17.32 google.dm
    O1 - Hosts: 64.86.17.32 google.ee
    O1 - Hosts: 64.86.17.32 google.fi
    O1 - Hosts: 64.86.17.32 google.fm
    O1 - Hosts: 64.86.17.32 google.fr
    O1 - Hosts: 64.86.17.32 google.ge
    O1 - Hosts: 64.86.17.32 google.gg
    O1 - Hosts: 64.86.17.32 google.gm
    O1 - Hosts: 64.86.17.32 google.gr
    O1 - Hosts: 64.86.17.32 google.ht
    O1 - Hosts: 64.86.17.32 google.ie
    O1 - Hosts: 64.86.17.32 google.im
    O1 - Hosts: 64.86.17.32 google.in
    O1 - Hosts: 64.86.17.32 google.it
    O1 - Hosts: 64.86.17.32 google.ki
    O1 - Hosts: 64.86.17.32 google.la
    O1 - Hosts: 64.86.17.32 google.li
    O1 - Hosts: 64.86.17.32 google.lv
    O1 - Hosts: 64.86.17.32 google.ma
    O1 - Hosts: 64.86.17.32 google.ms
    O1 - Hosts: 64.86.17.32 google.mu
    O1 - Hosts: 64.86.17.32 google.mw
    O1 - Hosts: 64.86.17.32 google.nl
    O1 - Hosts: 64.86.17.32 google.no
    O1 - Hosts: 64.86.17.32 google.nr
    O1 - Hosts: 64.86.17.32 google.nu
    O1 - Hosts: 64.86.17.32 google.pl
    O1 - Hosts: 64.86.17.32 google.pn
    O1 - Hosts: 64.86.17.32 google.pt
    O1 - Hosts: 64.86.17.32 google.ro
    O1 - Hosts: 64.86.17.32 google.ru
    O1 - Hosts: 64.86.17.32 google.rw
    O1 - Hosts: 64.86.17.32 google.sc
    O1 - Hosts: 64.86.17.32 google.se
    O1 - Hosts: 64.86.17.32 google.sh
    O1 - Hosts: 64.86.17.32 google.si
    O1 - Hosts: 64.86.17.32 google.sm
    O1 - Hosts: 64.86.17.32 google.sn
    O1 - Hosts: 64.86.17.32 google.st
    O1 - Hosts: 64.86.17.32 google.tl
    O1 - Hosts: 64.86.17.32 google.tm
    O1 - Hosts: 64.86.17.32 google.tt
    O1 - Hosts: 64.86.17.32 google.us
    O1 - Hosts: 64.86.17.32 google.vu
    O1 - Hosts: 64.86.17.32 google.ws
    O1 - Hosts: 64.86.17.32 google.co.ck
    O1 - Hosts: 64.86.17.32 google.co.id
    O1 - Hosts: 64.86.17.32 google.co.il
    O1 - Hosts: 64.86.17.32 google.co.in
    O1 - Hosts: 64.86.17.32 google.co.jp
    O1 - Hosts: 64.86.17.32 google.co.kr
    O1 - Hosts: 64.86.17.32 google.co.ls
    O1 - Hosts: 64.86.17.32 google.co.ma
    O1 - Hosts: 64.86.17.32 google.co.nz
    O1 - Hosts: 64.86.17.32 google.co.tz
    O1 - Hosts: 64.86.17.32 google.co.ug
    O1 - Hosts: 64.86.17.32 google.co.uk
    O1 - Hosts: 64.86.17.32 google.co.za
    O1 - Hosts: 64.86.17.32 google.co.zm
    O1 - Hosts: 64.86.17.32 google.com
    O1 - Hosts: 64.86.17.32 google.com.af
    O1 - Hosts: 64.86.17.32 google.com.ag
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
    O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
    O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
    O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
    O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
    O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [WireLessKeyboard ] C:\Program Files\SANGHA Multimedia Keyboard Driver\PS2USBKbdDrv.exe
    O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe"
    O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe"
    O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
    O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
    O4 - HKLM\..\Run: [SiS Windows KeyHook] C:\WINDOWS\system32\keyhook.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
    O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: RtlWake.lnk = ?
    O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
    O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
    O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
    O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
    O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
    O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
    O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
    O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3/resources/MSNPUpld.cab
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
    O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://www.touslesdrivers.com/fichiers/hardwaredetectio...
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
    O23 - Service: BitDefender Arrakis Server (Arrakis3) - Unknown owner - C:\Program Files\Fichiers communs\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
    O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe

    --
    End of file - 12468 bytes

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Adobe PDF Reader Link Helper - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-01-12 63128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
    Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live ID - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30 403824]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
    Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-09-04 256112]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
    Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2009-09-04 761840]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
    Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2009-09-04 458736]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
    Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [2004-04-16 405504]
    {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - BitDefender Toolbar - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll [2009-03-24 95536]
    {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-09-04 256112]
    {21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-12-01 77824]
    "AGRSMMSG"=C:\WINDOWS\AGRSMMSG.exe [2003-11-20 88363]
    "MessengerPlus3"=C:\Program Files\MessengerPlus! 3\MsgPlus.exe [2007-09-05 190024]
    "NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
    "WireLessKeyboard "=C:\Program Files\SANGHA Multimedia Keyboard Driver\PS2USBKbdDrv.exe [2005-09-28 659456]
    "BDAgent"=C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe [2009-09-02 782336]
    "BitDefender Antiphishing Helper"=C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe [2009-02-23 69632]
    "Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2005-10-26 159744]
    "SiSPower"=SiSPower.dll,ModeAgent []
    "SiS Windows KeyHook"=C:\WINDOWS\system32\keyhook.exe [2005-04-08 32768]
    "QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2007-09-17 77824]
    "Easy-PrintToolBox"=C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE [2004-01-14 409600]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "MessengerPlus3"=C:\Program Files\MessengerPlus! 3\MsgPlus.exe [2007-09-05 190024]
    "MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
    "WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2006-11-03 204288]
    "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
    "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-09-04 39408]
    "msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]

    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
    Lancement rapide d'Adobe Reader.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    RtlWake.lnk - C:\Program Files\Realtek\Rtl8180\RtlWake.exe
    Utility Tray.lnk - C:\WINDOWS\system32\sistray.exe
    Windows Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    "{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=145

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "HonorAutoRunSetting"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
    "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
    "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"

    ======List of files/folders created in the last 1 months======

    2009-09-06 10:30:25 ----D---- C:\_OTM
    2009-09-05 21:17:56 ----A---- C:\FindyKill.txt
    2009-09-05 19:55:59 ----D---- C:\rsit
    2009-09-05 14:29:22 ----N---- C:\WINDOWS\system32\spmsg2.dll
    2009-09-05 14:29:20 ----HDC---- C:\WINDOWS\$NtUninstallXPSEPSCLP$
    2009-09-05 02:13:11 ----HDC---- C:\WINDOWS\$NtUninstallKB961503$
    2009-09-05 02:12:01 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
    2009-09-05 02:08:30 ----HDC---- C:\WINDOWS\$NtUninstallKB963093$
    2009-09-05 01:12:29 ----D---- C:\WINDOWS\pss
    2009-09-04 23:51:17 ----D---- C:\Documents and Settings\vanes\Application Data\Windows Search
    2009-09-04 23:13:58 ----D---- C:\Program Files\Microsoft Sync Framework
    2009-09-04 23:05:59 ----D---- C:\Program Files\Windows Live SkyDrive
    2009-09-04 16:49:08 ----D---- C:\Documents and Settings\vanes\Application Data\Malwarebytes
    2009-09-04 16:48:58 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
    2009-09-04 16:48:57 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
    2009-09-04 15:16:55 ----D---- C:\Program Files\Trend Micro
    2009-09-04 13:43:13 ----D---- C:\WINDOWS\system32\XPSViewer
    2009-09-04 13:42:20 ----D---- C:\Program Files\MSBuild
    2009-09-04 13:41:53 ----D---- C:\WINDOWS\system32\en-US
    2009-09-04 13:40:28 ----D---- C:\Program Files\Reference Assemblies
    2009-09-04 12:57:25 ----N---- C:\WINDOWS\system32\prntvpt.dll
    2009-09-04 12:57:23 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
    2009-09-04 12:57:10 ----N---- C:\WINDOWS\system32\xpssvcs.dll
    2009-09-04 12:56:46 ----D---- C:\d58e1ff23603a59145b5c2f943a6
    2009-09-04 12:05:39 ----D---- C:\80f6110ce517c7be63
    2009-09-04 12:04:10 ----D---- C:\6d23d6d7aa6fd445e2711ab42405
    2009-09-04 07:54:35 ----D---- C:\Program Files\Microsoft Silverlight
    2009-09-04 07:52:45 ----D---- C:\Program Files\Microsoft
    2009-09-04 07:52:14 ----HDC---- C:\WINDOWS\$NtUninstallbasecsp$
    2009-09-04 07:36:32 ----D---- C:\Program Files\Fichiers communs\Windows Live
    2009-09-04 07:34:49 ----D---- C:\Documents and Settings\vanes\Application Data\Windows Desktop Search
    2009-09-04 07:32:34 ----D---- C:\WINDOWS\system32\GroupPolicy
    2009-09-04 07:32:34 ----D---- C:\Program Files\Windows Desktop Search
    2009-09-04 07:32:17 ----HDC---- C:\WINDOWS\$NtUninstallKB940157$
    2009-09-04 07:31:39 ----HDC---- C:\WINDOWS\$NtUninstallKB915800-v4$
    2009-09-03 16:30:55 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
    2009-09-03 14:49:56 ----A---- C:\WINDOWS\system32\un2065.txt
    2009-09-03 14:49:56 ----A---- C:\WINDOWS\system32\2065.txt
    2009-09-03 14:13:53 ----A---- C:\WINDOWS\bdagent.INI
    2009-09-03 14:06:17 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
    2009-09-03 14:04:51 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
    2009-09-03 13:56:25 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
    2009-09-03 13:56:08 ----HDC---- C:\WINDOWS\$NtUninstallKB971557$
    2009-09-03 13:55:50 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
    2009-09-03 13:55:30 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
    2009-09-03 13:55:11 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
    2009-09-03 13:54:53 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
    2009-09-03 13:53:49 ----D---- C:\WINDOWS\ie8updates
    2009-09-03 13:52:48 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
    2009-09-03 13:52:24 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
    2009-09-03 13:46:52 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
    2009-09-03 13:41:28 ----HDC---- C:\WINDOWS\$NtUninstallKB970653-v3$
    2009-09-02 17:09:00 ----A---- C:\WINDOWS\system32\tmp.txt
    2009-09-02 17:08:46 ----A---- C:\rapport.txt
    2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\VACFix.exe
    2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\o4Patch.exe
    2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\IEDFix.exe
    2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\IEDFix.C.exe
    2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\Agent.OMZ.Fix.exe
    2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\404Fix.exe
    2009-09-02 17:04:28 ----A---- C:\WINDOWS\system32\WS2Fix.exe
    2009-09-02 17:04:28 ----A---- C:\WINDOWS\system32\VCCLSID.exe
    2009-09-02 17:04:28 ----A---- C:\WINDOWS\system32\swxcacls.exe
    2009-09-02 17:04:28 ----A---- C:\WINDOWS\system32\dumphive.exe
    2009-09-02 17:04:27 ----A---- C:\WINDOWS\system32\swsc.exe
    2009-09-02 17:04:27 ----A---- C:\WINDOWS\system32\swreg.exe
    2009-09-02 17:04:27 ----A---- C:\WINDOWS\system32\SrchSTS.exe
    2009-09-02 17:04:27 ----A---- C:\WINDOWS\system32\Process.exe
    2009-09-02 16:50:57 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
    2009-09-02 16:49:52 ----D---- C:\Documents and Settings\vanes\Application Data\Simply Super Software
    2009-09-02 16:18:31 ----D---- C:\Documents and Settings\vanes\Application Data\BitDefender
    2009-09-02 16:16:37 ----D---- C:\Program Files\BitDefender
    2009-09-02 16:16:37 ----D---- C:\Documents and Settings\All Users\Application Data\BitDefender
    2009-09-02 16:01:03 ----D---- C:\Program Files\Fichiers communs\BitDefender
    2009-09-02 06:14:42 ----D---- C:\Program Files\Enigma Software Group
    2009-09-02 05:42:38 ----A---- C:\WINDOWS\ntbtlog.txt
    2009-09-02 05:27:53 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
    2009-09-02 05:14:49 ----A---- C:\WINDOWS\resetlog.txt
    2009-09-02 04:39:32 ----D---- C:\Program Files\SAGEM
    2009-09-02 04:39:32 ----A---- C:\WINDOWS\system32\coclassfast.dll
    2009-09-01 18:56:22 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
    2009-09-01 18:55:46 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
    2009-09-01 18:55:14 ----HDC---- C:\WINDOWS\$NtUninstallKB968537$
    2009-09-01 18:54:09 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
    2009-09-01 18:53:47 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
    2009-09-01 18:53:29 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
    2009-09-01 18:53:15 ----HDC---- C:\WINDOWS\$NtUninstallKB961371$
    2009-09-01 18:52:57 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
    2009-09-01 18:52:33 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
    2009-09-01 18:52:17 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
    2009-09-01 18:52:01 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
    2009-09-01 18:51:47 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
    2009-09-01 18:51:31 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
    2009-09-01 18:51:11 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
    2009-09-01 18:50:55 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
    2009-09-01 18:50:41 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
    2009-09-01 18:50:23 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
    2009-09-01 18:50:07 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
    2009-09-01 18:49:05 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
    2009-09-01 18:48:33 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
    2009-09-01 18:48:16 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
    2009-09-01 18:48:01 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
    2009-09-01 18:47:35 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
    2009-09-01 18:47:21 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
    2009-09-01 18:47:01 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
    2009-09-01 18:46:39 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
    2009-09-01 18:45:53 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
    2009-09-01 18:45:06 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
    2009-09-01 18:44:24 ----HDC---- C:\WINDOWS\$NtUninstallKB951376$
    2009-09-01 18:43:32 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
    2009-09-01 18:42:46 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
    2009-09-01 18:42:00 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
    2009-09-01 18:40:48 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
    2009-09-01 18:40:17 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$
    2009-09-01 18:39:30 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
    2009-09-01 18:23:29 ----D---- C:\WINDOWS\l2schemas
    2009-09-01 18:23:27 ----D---- C:\WINDOWS\system32\fr
    2009-09-01 18:23:25 ----D---- C:\WINDOWS\system32\bits
    2009-09-01 18:18:22 ----D---- C:\WINDOWS\ServicePackFiles
    2009-09-01 18:11:56 ----D---- C:\WINDOWS\network diagnostic
    2009-09-01 17:59:47 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
    2009-09-01 17:59:32 ----D---- C:\WINDOWS\EHome
    2009-09-01 17:06:28 ----D---- C:\WINDOWS\WBEM
    2009-09-01 17:04:44 ----HDC---- C:\WINDOWS\ie8
    2009-09-01 17:04:44 ----D---- C:\WINDOWS\system32\fr-FR

    ======List of files/folders modified in the last 1 months======

    2009-09-07 14:49:23 ----D---- C:\WINDOWS\Prefetch
    2009-09-07 14:03:03 ----D---- C:\WINDOWS\system32
    2009-09-07 14:02:59 ----D---- C:\WINDOWS\Temp
    2009-09-07 13:28:51 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-09-07 13:28:39 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-09-07 12:34:46 ----HD---- C:\WINDOWS\inf
    2009-09-06 10:31:35 ----D---- C:\WINDOWS
    2009-09-05 14:29:06 ----SHD---- C:\WINDOWS\Installer
    2009-09-05 14:29:06 ----SHD---- C:\Config.Msi
    2009-09-05 14:29:05 ----RSD---- C:\WINDOWS\assembly
    2009-09-05 03:24:52 ----SH---- C:\boot.ini
    2009-09-05 03:24:51 ----A---- C:\WINDOWS\win.ini
    2009-09-05 03:24:45 ----A---- C:\WINDOWS\system.ini
    2009-09-05 02:42:37 ----D---- C:\WINDOWS\Microsoft.NET
    2009-09-05 02:13:21 ----A---- C:\WINDOWS\imsins.BAK
    2009-09-05 02:13:15 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-09-05 02:12:52 ----D---- C:\WINDOWS\system32\CatRoot
    2009-09-05 01:11:38 ----HD---- C:\WINDOWS\$hf_mig$
    2009-09-04 23:51:23 ----SD---- C:\Documents and Settings\vanes\Application Data\Microsoft
    2009-09-04 23:15:07 ----D---- C:\Program Files\Windows Live
    2009-09-04 23:14:00 ----D---- C:\WINDOWS\WinSxS
    2009-09-04 23:13:58 ----RD---- C:\Program Files
    2009-09-04 23:13:43 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
    2009-09-04 23:11:47 ----D---- C:\WINDOWS\system32\DirectX
    2009-09-04 22:28:58 ----D---- C:\Documents and Settings\All Users\Application Data\Google
    2009-09-04 22:28:03 ----D---- C:\Program Files\Google
    2009-09-04 21:48:25 ----D---- C:\Program Files\Fichiers communs\Symantec Shared
    2009-09-04 20:57:18 ----SD---- C:\WINDOWS\Tasks
    2009-09-04 17:19:59 ----D---- C:\WINDOWS\system32\drivers
    2009-09-04 14:23:03 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-09-04 13:41:41 ----RSD---- C:\WINDOWS\Fonts
    2009-09-04 07:58:36 ----D---- C:\WINDOWS\security
    2009-09-04 07:57:23 ----D---- C:\Program Files\Internet Explorer
    2009-09-04 07:53:47 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
    2009-09-04 07:36:32 ----D---- C:\Program Files\Fichiers communs
    2009-09-04 07:32:34 ----D---- C:\WINDOWS\system32\wbem
    2009-09-03 13:54:59 ----D---- C:\Program Files\Outlook Express
    2009-09-03 09:02:14 ----D---- C:\WINDOWS\system32\Tools
    2009-09-02 05:43:16 ----D---- C:\Documents and Settings
    2009-09-02 04:39:31 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-09-02 04:15:05 ----A---- C:\WINDOWS\OEWABLog.txt
    2009-09-02 04:00:30 ----A---- C:\WINDOWS\setuplog.txt
    2009-09-02 03:09:39 ----D---- C:\WINDOWS\system32\Setup
    2009-09-02 03:09:39 ----D---- C:\WINDOWS\AppPatch
    2009-09-02 03:09:39 ----D---- C:\Program Files\Messenger
    2009-09-01 18:24:28 ----D---- C:\WINDOWS\ime
    2009-09-01 18:24:27 ----D---- C:\WINDOWS\Help
    2009-09-01 18:23:35 ----D---- C:\WINDOWS\system32\usmt
    2009-09-01 18:23:25 ----D---- C:\WINDOWS\PeerNet
    2009-09-01 18:23:24 ----D---- C:\Program Files\Movie Maker
    2009-09-01 18:18:04 ----D---- C:\WINDOWS\system32\Restore
    2009-09-01 18:18:03 ----D---- C:\WINDOWS\system32\npp
    2009-09-01 18:17:59 ----D---- C:\WINDOWS\msagent
    2009-09-01 18:17:55 ----D---- C:\WINDOWS\srchasst
    2009-09-01 18:17:53 ----D---- C:\Program Files\NetMeeting
    2009-09-01 18:17:50 ----D---- C:\WINDOWS\system32\Com
    2009-09-01 18:17:42 ----D---- C:\Program Files\Windows Media Player
    2009-09-01 18:17:39 ----D---- C:\Program Files\Windows NT
    2009-09-01 18:17:18 ----D---- C:\Program Files\Fichiers communs\System
    2009-09-01 18:16:20 ----D---- C:\WINDOWS\system32\oobe
    2009-09-01 18:16:14 ----D---- C:\WINDOWS\system
    2009-09-01 18:07:52 ----D---- C:\WINDOWS\system32\ReinstallBackups
    2009-09-01 17:06:35 ----D---- C:\WINDOWS\system32\config
    2009-09-01 17:06:15 ----D---- C:\WINDOWS\Media

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
    R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
    R1 SiSkp;SiSkp; C:\WINDOWS\system32\DRIVERS\srvkp.sys [2005-04-12 11904]
    R2 BDVEDISK;BDVEDISK; \??\C:\Program Files\BitDefender\BitDefender 2009\BDVEDISK.sys []
    R2 EAPPkt;Realtek EAPPkt Protocol; C:\WINDOWS\system32\DRIVERS\EAPPkt.sys [2003-12-10 8576]
    R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2003-11-20 1205292]
    R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-12-01 2300928]
    R3 bdfm;BDFM; C:\WINDOWS\system32\drivers\bdfm.sys [2008-09-18 111112]
    R3 bdfsfltr;bdfsfltr; C:\WINDOWS\system32\drivers\bdfsfltr.sys [2008-12-10 242184]
    R3 BDSelfPr;BDSelfPr; \??\C:\Program Files\BitDefender\BitDefender 2009\bdselfpr.sys []
    R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
    R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
    R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
    R3 RTL8023xp;Realtek RTL8139/810x/8169/8110 all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2004-04-14 70144]
    R3 rtl8180;Realtek RTL8180 Wireless LAN (Mini-)PCI NIC NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8180.SYS [2004-04-29 185216]
    R3 SiS315;SiS315; C:\WINDOWS\system32\DRIVERS\sisgrp.sys [2005-04-12 247296]
    R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
    R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
    R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
    R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
    S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
    S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
    S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
    S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
    S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\nmwcd.sys [2007-06-28 137216]
    S3 PCANDIS5;PCANDIS5 Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
    S3 Profos;Profos; \??\c:\program files\fichiers communs\bitdefender\bitdefender threat scanner\profos.sys []
    S3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-04 20992]
    S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
    S3 SoC PC-Camera Service;SoC PC-Camera; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2004-07-28 136576]
    S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
    S3 Trufos;Trufos; \??\c:\program files\fichiers communs\bitdefender\bitdefender threat scanner\trufos.sys []
    S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
    S3 w810bus;Sony Ericsson W810 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\w810bus.sys [2006-02-20 58288]
    S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
    S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
    S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
    S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 LIVESRV;BitDefender Desktop Update Service; C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe [2009-03-24 415024]
    R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
    R2 VSSERV;BitDefender Virus Shield; C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe [2009-09-02 1642360]
    R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-03-30 1533808]
    R2 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
    R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
    R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    S3 Arrakis3;BitDefender Arrakis Server; C:\Program Files\Fichiers communs\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe [2009-01-20 172032]
    S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
    S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
    S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-09-04 182768]
    S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
    S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
    S3 scan;BitDefender Threat Scanner; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
    S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

    -----------------EOF-----------------
    a c 267 8 Sécurité
    7 Septembre 2009 15:03:52

    Ça n'a pas fonctionné, refais la manip' en mode sans échec.
    7 Septembre 2009 15:20:42

    voila donc j'ai tout refais en mode sans échec mais apparament c'est toujours la je pense .
    Logfile of random's system information tool 1.06 (written by random/random)
    Run by vanes at 2009-09-07 15:16:51
    Microsoft Windows XP Édition familiale Service Pack 3
    System drive C: has 25 GB (64%) free of 38 GB
    Total RAM: 223 MB (51% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 15:16:57, on 07/09/2009
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Safe mode

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\Documents and Settings\vanes\Bureau\RSIT.exe
    C:\Program Files\Trend Micro\HijackThis\vanes.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O1 - Hosts: 212.150.54.250 dv-networks.com
    O1 - Hosts: 74.125.45.100 4-open-davinci.com
    O1 - Hosts: 74.125.45.100 securitysoftwarepayments.com
    O1 - Hosts: 74.125.45.100 privatesecuredpayments.com
    O1 - Hosts: 74.125.45.100 secure.privatesecuredpayments.com
    O1 - Hosts: 74.125.45.100 getantivirusplusnow.com
    O1 - Hosts: 74.125.45.100 secure-plus-payments.com
    O1 - Hosts: 74.125.45.100 www.getantivirusplusnow.com
    O1 - Hosts: 74.125.45.100 www.secure-plus-payments.com
    O1 - Hosts: 74.125.45.100 www.getavplusnow.com
    O1 - Hosts: 74.125.45.100 www.securesoftwarebill.com
    O1 - Hosts: 64.86.17.32 google.ae
    O1 - Hosts: 64.86.17.32 google.as
    O1 - Hosts: 64.86.17.32 google.at
    O1 - Hosts: 64.86.17.32 google.az
    O1 - Hosts: 64.86.17.32 google.ba
    O1 - Hosts: 64.86.17.32 google.be
    O1 - Hosts: 64.86.17.32 google.bg
    O1 - Hosts: 64.86.17.32 google.bs
    O1 - Hosts: 64.86.17.32 google.ca
    O1 - Hosts: 64.86.17.32 google.cd
    O1 - Hosts: 64.86.17.32 google.com.gh
    O1 - Hosts: 64.86.17.32 google.com.hk
    O1 - Hosts: 64.86.17.32 google.com.jm
    O1 - Hosts: 64.86.17.32 google.com.mx
    O1 - Hosts: 64.86.17.32 google.com.my
    O1 - Hosts: 64.86.17.32 google.com.na
    O1 - Hosts: 64.86.17.32 google.com.nf
    O1 - Hosts: 64.86.17.32 google.com.ng
    O1 - Hosts: 64.86.17.32 google.ch
    O1 - Hosts: 64.86.17.32 google.com.np
    O1 - Hosts: 64.86.17.32 google.com.pr
    O1 - Hosts: 64.86.17.32 google.com.qa
    O1 - Hosts: 64.86.17.32 google.com.sg
    O1 - Hosts: 64.86.17.32 google.com.tj
    O1 - Hosts: 64.86.17.32 google.com.tw
    O1 - Hosts: 64.86.17.32 google.dj
    O1 - Hosts: 64.86.17.32 google.de
    O1 - Hosts: 64.86.17.32 google.dk
    O1 - Hosts: 64.86.17.32 google.dm
    O1 - Hosts: 64.86.17.32 google.ee
    O1 - Hosts: 64.86.17.32 google.fi
    O1 - Hosts: 64.86.17.32 google.fm
    O1 - Hosts: 64.86.17.32 google.fr
    O1 - Hosts: 64.86.17.32 google.ge
    O1 - Hosts: 64.86.17.32 google.gg
    O1 - Hosts: 64.86.17.32 google.gm
    O1 - Hosts: 64.86.17.32 google.gr
    O1 - Hosts: 64.86.17.32 google.ht
    O1 - Hosts: 64.86.17.32 google.ie
    O1 - Hosts: 64.86.17.32 google.im
    O1 - Hosts: 64.86.17.32 google.in
    O1 - Hosts: 64.86.17.32 google.it
    O1 - Hosts: 64.86.17.32 google.ki
    O1 - Hosts: 64.86.17.32 google.la
    O1 - Hosts: 64.86.17.32 google.li
    O1 - Hosts: 64.86.17.32 google.lv
    O1 - Hosts: 64.86.17.32 google.ma
    O1 - Hosts: 64.86.17.32 google.ms
    O1 - Hosts: 64.86.17.32 google.mu
    O1 - Hosts: 64.86.17.32 google.mw
    O1 - Hosts: 64.86.17.32 google.nl
    O1 - Hosts: 64.86.17.32 google.no
    O1 - Hosts: 64.86.17.32 google.nr
    O1 - Hosts: 64.86.17.32 google.nu
    O1 - Hosts: 64.86.17.32 google.pl
    O1 - Hosts: 64.86.17.32 google.pn
    O1 - Hosts: 64.86.17.32 google.pt
    O1 - Hosts: 64.86.17.32 google.ro
    O1 - Hosts: 64.86.17.32 google.ru
    O1 - Hosts: 64.86.17.32 google.rw
    O1 - Hosts: 64.86.17.32 google.sc
    O1 - Hosts: 64.86.17.32 google.se
    O1 - Hosts: 64.86.17.32 google.sh
    O1 - Hosts: 64.86.17.32 google.si
    O1 - Hosts: 64.86.17.32 google.sm
    O1 - Hosts: 64.86.17.32 google.sn
    O1 - Hosts: 64.86.17.32 google.st
    O1 - Hosts: 64.86.17.32 google.tl
    O1 - Hosts: 64.86.17.32 google.tm
    O1 - Hosts: 64.86.17.32 google.tt
    O1 - Hosts: 64.86.17.32 google.us
    O1 - Hosts: 64.86.17.32 google.vu
    O1 - Hosts: 64.86.17.32 google.ws
    O1 - Hosts: 64.86.17.32 google.co.ck
    O1 - Hosts: 64.86.17.32 google.co.id
    O1 - Hosts: 64.86.17.32 google.co.il
    O1 - Hosts: 64.86.17.32 google.co.in
    O1 - Hosts: 64.86.17.32 google.co.jp
    O1 - Hosts: 64.86.17.32 google.co.kr
    O1 - Hosts: 64.86.17.32 google.co.ls
    O1 - Hosts: 64.86.17.32 google.co.ma
    O1 - Hosts: 64.86.17.32 google.co.nz
    O1 - Hosts: 64.86.17.32 google.co.tz
    O1 - Hosts: 64.86.17.32 google.co.ug
    O1 - Hosts: 64.86.17.32 google.co.uk
    O1 - Hosts: 64.86.17.32 google.co.za
    O1 - Hosts: 64.86.17.32 google.co.zm
    O1 - Hosts: 64.86.17.32 google.com
    O1 - Hosts: 64.86.17.32 google.com.af
    O1 - Hosts: 64.86.17.32 google.com.ag
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
    O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
    O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
    O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
    O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
    O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [WireLessKeyboard ] C:\Program Files\SANGHA Multimedia Keyboard Driver\PS2USBKbdDrv.exe
    O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe"
    O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe"
    O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
    O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
    O4 - HKLM\..\Run: [SiS Windows KeyHook] C:\WINDOWS\system32\keyhook.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
    O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
    O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: RtlWake.lnk = ?
    O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
    O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
    O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
    O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
    O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
    O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
    O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
    O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3/resources/MSNPUpld.cab
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
    O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://www.touslesdrivers.com/fichiers/hardwaredetectio...
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
    O23 - Service: BitDefender Arrakis Server (Arrakis3) - Unknown owner - C:\Program Files\Fichiers communs\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
    O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe

    --
    End of file - 10796 bytes

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Adobe PDF Reader Link Helper - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-01-12 63128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
    Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live ID - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30 403824]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
    Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-09-04 256112]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
    Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2009-09-04 761840]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
    Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2009-09-04 458736]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
    Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [2004-04-16 405504]
    {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - BitDefender Toolbar - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll [2009-03-24 95536]
    {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-09-04 256112]
    {21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-12-01 77824]
    "AGRSMMSG"=C:\WINDOWS\AGRSMMSG.exe [2003-11-20 88363]
    "MessengerPlus3"=C:\Program Files\MessengerPlus! 3\MsgPlus.exe [2007-09-05 190024]
    "NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
    "WireLessKeyboard "=C:\Program Files\SANGHA Multimedia Keyboard Driver\PS2USBKbdDrv.exe [2005-09-28 659456]
    "BDAgent"=C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe [2009-09-02 782336]
    "BitDefender Antiphishing Helper"=C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe [2009-02-23 69632]
    "Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2005-10-26 159744]
    "SiSPower"=SiSPower.dll,ModeAgent []
    "SiS Windows KeyHook"=C:\WINDOWS\system32\keyhook.exe [2005-04-08 32768]
    "QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2007-09-17 77824]
    "Easy-PrintToolBox"=C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE [2004-01-14 409600]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "MessengerPlus3"=C:\Program Files\MessengerPlus! 3\MsgPlus.exe [2007-09-05 190024]
    "MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
    "WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2006-11-03 204288]
    "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
    "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-09-04 39408]

    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
    Lancement rapide d'Adobe Reader.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    RtlWake.lnk - C:\Program Files\Realtek\Rtl8180\RtlWake.exe
    Utility Tray.lnk - C:\WINDOWS\system32\sistray.exe
    Windows Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    "{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=145

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "HonorAutoRunSetting"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
    "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
    "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"

    ======List of files/folders created in the last 1 months======

    2009-09-06 10:30:25 ----D---- C:\_OTM
    2009-09-05 21:17:56 ----A---- C:\FindyKill.txt
    2009-09-05 19:55:59 ----D---- C:\rsit
    2009-09-05 14:29:22 ----N---- C:\WINDOWS\system32\spmsg2.dll
    2009-09-05 14:29:20 ----HDC---- C:\WINDOWS\$NtUninstallXPSEPSCLP$
    2009-09-05 02:13:11 ----HDC---- C:\WINDOWS\$NtUninstallKB961503$
    2009-09-05 02:12:01 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
    2009-09-05 02:08:30 ----HDC---- C:\WINDOWS\$NtUninstallKB963093$
    2009-09-05 01:12:29 ----D---- C:\WINDOWS\pss
    2009-09-04 23:51:17 ----D---- C:\Documents and Settings\vanes\Application Data\Windows Search
    2009-09-04 23:13:58 ----D---- C:\Program Files\Microsoft Sync Framework
    2009-09-04 23:05:59 ----D---- C:\Program Files\Windows Live SkyDrive
    2009-09-04 16:49:08 ----D---- C:\Documents and Settings\vanes\Application Data\Malwarebytes
    2009-09-04 16:48:58 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
    2009-09-04 16:48:57 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
    2009-09-04 15:16:55 ----D---- C:\Program Files\Trend Micro
    2009-09-04 13:43:13 ----D---- C:\WINDOWS\system32\XPSViewer
    2009-09-04 13:42:20 ----D---- C:\Program Files\MSBuild
    2009-09-04 13:41:53 ----D---- C:\WINDOWS\system32\en-US
    2009-09-04 13:40:28 ----D---- C:\Program Files\Reference Assemblies
    2009-09-04 12:57:25 ----N---- C:\WINDOWS\system32\prntvpt.dll
    2009-09-04 12:57:23 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
    2009-09-04 12:57:10 ----N---- C:\WINDOWS\system32\xpssvcs.dll
    2009-09-04 12:56:46 ----D---- C:\d58e1ff23603a59145b5c2f943a6
    2009-09-04 12:05:39 ----D---- C:\80f6110ce517c7be63
    2009-09-04 12:04:10 ----D---- C:\6d23d6d7aa6fd445e2711ab42405
    2009-09-04 07:54:35 ----D---- C:\Program Files\Microsoft Silverlight
    2009-09-04 07:52:45 ----D---- C:\Program Files\Microsoft
    2009-09-04 07:52:14 ----HDC---- C:\WINDOWS\$NtUninstallbasecsp$
    2009-09-04 07:36:32 ----D---- C:\Program Files\Fichiers communs\Windows Live
    2009-09-04 07:34:49 ----D---- C:\Documents and Settings\vanes\Application Data\Windows Desktop Search
    2009-09-04 07:32:34 ----D---- C:\WINDOWS\system32\GroupPolicy
    2009-09-04 07:32:34 ----D---- C:\Program Files\Windows Desktop Search
    2009-09-04 07:32:17 ----HDC---- C:\WINDOWS\$NtUninstallKB940157$
    2009-09-04 07:31:39 ----HDC---- C:\WINDOWS\$NtUninstallKB915800-v4$
    2009-09-03 16:30:55 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
    2009-09-03 14:49:56 ----A---- C:\WINDOWS\system32\un2065.txt
    2009-09-03 14:49:56 ----A---- C:\WINDOWS\system32\2065.txt
    2009-09-03 14:13:53 ----A---- C:\WINDOWS\bdagent.INI
    2009-09-03 14:06:17 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
    2009-09-03 14:04:51 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
    2009-09-03 13:56:25 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
    2009-09-03 13:56:08 ----HDC---- C:\WINDOWS\$NtUninstallKB971557$
    2009-09-03 13:55:50 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
    2009-09-03 13:55:30 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
    2009-09-03 13:55:11 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
    2009-09-03 13:54:53 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
    2009-09-03 13:53:49 ----D---- C:\WINDOWS\ie8updates
    2009-09-03 13:52:48 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
    2009-09-03 13:52:24 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
    2009-09-03 13:46:52 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
    2009-09-03 13:41:28 ----HDC---- C:\WINDOWS\$NtUninstallKB970653-v3$
    2009-09-02 17:09:00 ----A---- C:\WINDOWS\system32\tmp.txt
    2009-09-02 17:08:46 ----A---- C:\rapport.txt
    2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\VACFix.exe
    2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\o4Patch.exe
    2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\IEDFix.exe
    2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\IEDFix.C.exe
    2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\Agent.OMZ.Fix.exe
    2009-09-02 17:04:29 ----A---- C:\WINDOWS\system32\404Fix.exe
    2009-09-02 17:04:28 ----A---- C:\WINDOWS\system32\WS2Fix.exe
    2009-09-02 17:04:28 ----A---- C:\WINDOWS\system32\VCCLSID.exe
    2009-09-02 17:04:28 ----A---- C:\WINDOWS\system32\swxcacls.exe
    2009-09-02 17:04:28 ----A---- C:\WINDOWS\system32\dumphive.exe
    2009-09-02 17:04:27 ----A---- C:\WINDOWS\system32\swsc.exe
    2009-09-02 17:04:27 ----A---- C:\WINDOWS\system32\swreg.exe
    2009-09-02 17:04:27 ----A---- C:\WINDOWS\system32\SrchSTS.exe
    2009-09-02 17:04:27 ----A---- C:\WINDOWS\system32\Process.exe
    2009-09-02 16:50:57 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
    2009-09-02 16:49:52 ----D---- C:\Documents and Settings\vanes\Application Data\Simply Super Software
    2009-09-02 16:18:31 ----D---- C:\Documents and Settings\vanes\Application Data\BitDefender
    2009-09-02 16:16:37 ----D---- C:\Program Files\BitDefender
    2009-09-02 16:16:37 ----D---- C:\Documents and Settings\All Users\Application Data\BitDefender
    2009-09-02 16:01:03 ----D---- C:\Program Files\Fichiers communs\BitDefender
    2009-09-02 06:14:42 ----D---- C:\Program Files\Enigma Software Group
    2009-09-02 05:42:38 ----A---- C:\WINDOWS\ntbtlog.txt
    2009-09-02 05:27:53 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
    2009-09-02 05:14:49 ----A---- C:\WINDOWS\resetlog.txt
    2009-09-02 04:39:32 ----D---- C:\Program Files\SAGEM
    2009-09-02 04:39:32 ----A---- C:\WINDOWS\system32\coclassfast.dll
    2009-09-01 18:56:22 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
    2009-09-01 18:55:46 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
    2009-09-01 18:55:14 ----HDC---- C:\WINDOWS\$NtUninstallKB968537$
    2009-09-01 18:54:09 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
    2009-09-01 18:53:47 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
    2009-09-01 18:53:29 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
    2009-09-01 18:53:15 ----HDC---- C:\WINDOWS\$NtUninstallKB961371$
    2009-09-01 18:52:57 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
    2009-09-01 18:52:33 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
    2009-09-01 18:52:17 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
    2009-09-01 18:52:01 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
    2009-09-01 18:51:47 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
    2009-09-01 18:51:31 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
    2009-09-01 18:51:11 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
    2009-09-01 18:50:55 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
    2009-09-01 18:50:41 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
    2009-09-01 18:50:23 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
    2009-09-01 18:50:07 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
    2009-09-01 18:49:05 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
    2009-09-01 18:48:33 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
    2009-09-01 18:48:16 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
    2009-09-01 18:48:01 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
    2009-09-01 18:47:35 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
    2009-09-01 18:47:21 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
    2009-09-01 18:47:01 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
    2009-09-01 18:46:39 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
    2009-09-01 18:45:53 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
    2009-09-01 18:45:06 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
    2009-09-01 18:44:24 ----HDC---- C:\WINDOWS\$NtUninstallKB951376$
    2009-09-01 18:43:32 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
    2009-09-01 18:42:46 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
    2009-09-01 18:42:00 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
    2009-09-01 18:40:48 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
    2009-09-01 18:40:17 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$
    2009-09-01 18:39:30 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
    2009-09-01 18:23:29 ----D---- C:\WINDOWS\l2schemas
    2009-09-01 18:23:27 ----D---- C:\WINDOWS\system32\fr
    2009-09-01 18:23:25 ----D---- C:\WINDOWS\system32\bits
    2009-09-01 18:18:22 ----D---- C:\WINDOWS\ServicePackFiles
    2009-09-01 18:11:56 ----D---- C:\WINDOWS\network diagnostic
    2009-09-01 17:59:47 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
    2009-09-01 17:59:32 ----D---- C:\WINDOWS\EHome
    2009-09-01 17:06:28 ----D---- C:\WINDOWS\WBEM
    2009-09-01 17:04:44 ----HDC---- C:\WINDOWS\ie8
    2009-09-01 17:04:44 ----D---- C:\WINDOWS\system32\fr-FR

    ======List of files/folders modified in the last 1 months======

    2009-09-07 15:07:04 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-09-07 15:03:41 ----D---- C:\WINDOWS\system32
    2009-09-07 15:03:37 ----D---- C:\WINDOWS\Temp
    2009-09-07 14:49:23 ----D---- C:\WINDOWS\Prefetch
    2009-09-07 13:28:39 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-09-07 12:34:46 ----HD---- C:\WINDOWS\inf
    2009-09-06 10:31:35 ----D---- C:\WINDOWS
    2009-09-05 14:29:06 ----SHD---- C:\WINDOWS\Installer
    2009-09-05 14:29:06 ----SHD---- C:\Config.Msi
    2009-09-05 14:29:05 ----RSD---- C:\WINDOWS\assembly
    2009-09-05 03:24:52 ----SH---- C:\boot.ini
    2009-09-05 03:24:51 ----A---- C:\WINDOWS\win.ini
    2009-09-05 03:24:45 ----A---- C:\WINDOWS\system.ini
    2009-09-05 02:42:37 ----D---- C:\WINDOWS\Microsoft.NET
    2009-09-05 02:13:21 ----A---- C:\WINDOWS\imsins.BAK
    2009-09-05 02:13:15 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-09-05 02:12:52 ----D---- C:\WINDOWS\system32\CatRoot
    2009-09-05 01:11:38 ----HD---- C:\WINDOWS\$hf_mig$
    2009-09-04 23:51:23 ----SD---- C:\Documents and Settings\vanes\Application Data\Microsoft
    2009-09-04 23:15:07 ----D---- C:\Program Files\Windows Live
    2009-09-04 23:14:00 ----D---- C:\WINDOWS\WinSxS
    2009-09-04 23:13:58 ----RD---- C:\Program Files
    2009-09-04 23:13:43 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
    2009-09-04 23:11:47 ----D---- C:\WINDOWS\system32\DirectX
    2009-09-04 22:28:58 ----D---- C:\Documents and Settings\All Users\Application Data\Google
    2009-09-04 22:28:03 ----D---- C:\Program Files\Google
    2009-09-04 21:48:25 ----D---- C:\Program Files\Fichiers communs\Symantec Shared
    2009-09-04 20:57:18 ----SD---- C:\WINDOWS\Tasks
    2009-09-04 17:19:59 ----D---- C:\WINDOWS\system32\drivers
    2009-09-04 14:23:03 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-09-04 13:41:41 ----RSD---- C:\WINDOWS\Fonts
    2009-09-04 07:58:36 ----D---- C:\WINDOWS\security
    2009-09-04 07:57:23 ----D---- C:\Program Files\Internet Explorer
    2009-09-04 07:53:47 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
    2009-09-04 07:36:32 ----D---- C:\Program Files\Fichiers communs
    2009-09-04 07:32:34 ----D---- C:\WINDOWS\system32\wbem
    2009-09-03 13:54:59 ----D---- C:\Program Files\Outlook Express
    2009-09-03 09:02:14 ----D---- C:\WINDOWS\system32\Tools
    2009-09-02 05:43:16 ----D---- C:\Documents and Settings
    2009-09-02 04:39:31 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-09-02 04:15:05 ----A---- C:\WINDOWS\OEWABLog.txt
    2009-09-02 04:00:30 ----A---- C:\WINDOWS\setuplog.txt
    2009-09-02 03:09:39 ----D---- C:\WINDOWS\system32\Setup
    2009-09-02 03:09:39 ----D---- C:\WINDOWS\AppPatch
    2009-09-02 03:09:39 ----D---- C:\Program Files\Messenger
    2009-09-01 18:24:28 ----D---- C:\WINDOWS\ime
    2009-09-01 18:24:27 ----D---- C:\WINDOWS\Help
    2009-09-01 18:23:35 ----D---- C:\WINDOWS\system32\usmt
    2009-09-01 18:23:25 ----D---- C:\WINDOWS\PeerNet
    2009-09-01 18:23:24 ----D---- C:\Program Files\Movie Maker
    2009-09-01 18:18:04 ----D---- C:\WINDOWS\system32\Restore
    2009-09-01 18:18:03 ----D---- C:\WINDOWS\system32\npp
    2009-09-01 18:17:59 ----D---- C:\WINDOWS\msagent
    2009-09-01 18:17:55 ----D---- C:\WINDOWS\srchasst
    2009-09-01 18:17:53 ----D---- C:\Program Files\NetMeeting
    2009-09-01 18:17:50 ----D---- C:\WINDOWS\system32\Com
    2009-09-01 18:17:42 ----D---- C:\Program Files\Windows Media Player
    2009-09-01 18:17:39 ----D---- C:\Program Files\Windows NT
    2009-09-01 18:17:18 ----D---- C:\Program Files\Fichiers communs\System
    2009-09-01 18:16:20 ----D---- C:\WINDOWS\system32\oobe
    2009-09-01 18:16:14 ----D---- C:\WINDOWS\system
    2009-09-01 18:07:52 ----D---- C:\WINDOWS\system32\ReinstallBackups
    2009-09-01 17:06:35 ----D---- C:\WINDOWS\system32\config
    2009-09-01 17:06:15 ----D---- C:\WINDOWS\Media

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
    R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
    R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
    R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
    R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
    R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
    S1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
    S1 SiSkp;SiSkp; C:\WINDOWS\system32\DRIVERS\srvkp.sys [2005-04-12 11904]
    S2 BDVEDISK;BDVEDISK; \??\C:\Program Files\BitDefender\BitDefender 2009\BDVEDISK.sys []
    S2 EAPPkt;Realtek EAPPkt Protocol; C:\WINDOWS\system32\DRIVERS\EAPPkt.sys [2003-12-10 8576]
    S3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2003-11-20 1205292]
    S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-12-01 2300928]
    S3 bdfm;BDFM; C:\WINDOWS\system32\drivers\bdfm.sys [2008-09-18 111112]
    S3 bdfsfltr;bdfsfltr; C:\WINDOWS\system32\drivers\bdfsfltr.sys [2008-12-10 242184]
    S3 BDSelfPr;BDSelfPr; \??\C:\Program Files\BitDefender\BitDefender 2009\bdselfpr.sys []
    S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
    S3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
    S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
    S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
    S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
    S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\nmwcd.sys [2007-06-28 137216]
    S3 PCANDIS5;PCANDIS5 Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
    S3 Profos;Profos; \??\c:\program files\fichiers communs\bitdefender\bitdefender threat scanner\profos.sys []
    S3 RTL8023xp;Realtek RTL8139/810x/8169/8110 all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2004-04-14 70144]
    S3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-04 20992]
    S3 rtl8180;Realtek RTL8180 Wireless LAN (Mini-)PCI NIC NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8180.SYS [2004-04-29 185216]
    S3 SiS315;SiS315; C:\WINDOWS\system32\DRIVERS\sisgrp.sys [2005-04-12 247296]
    S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
    S3 SoC PC-Camera Service;SoC PC-Camera; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2004-07-28 136576]
    S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
    S3 Trufos;Trufos; \??\c:\program files\fichiers communs\bitdefender\bitdefender threat scanner\trufos.sys []
    S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
    S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
    S3 w810bus;Sony Ericsson W810 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\w810bus.sys [2006-02-20 58288]
    S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
    S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
    S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
    S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    S2 LIVESRV;BitDefender Desktop Update Service; C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe [2009-03-24 415024]
    S2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
    S2 VSSERV;BitDefender Virus Shield; C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe [2009-09-02 1642360]
    S2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-03-30 1533808]
    S2 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
    S2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
    S2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    S3 Arrakis3;BitDefender Arrakis Server; C:\Program Files\Fichiers communs\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe [2009-01-20 172032]
    S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
    S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
    S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-09-04 182768]
    S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
    S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
    S3 scan;BitDefender Threat Scanner; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
    S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

    -----------------EOF-----------------
    a c 267 8 Sécurité
    7 Septembre 2009 15:30:37

    Essaie R-Hosts en mode sans échec.
    7 Septembre 2009 15:48:25

    Il me met toujours un message impossible de créer le fichier C:\WINDOWS\system32\drivers\etc\hosts.
        • 1 / 2
        • 2
        • Dernier
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS