Se connecter / S'enregistrer
Votre question
Résolu

[Résolu] PC extrêmement lent

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
5 Mai 2009 17:12:27

Bonjour,
Comme dit dans le titre, mon PC est devenu extrêmement lent dans presque tout ce que je veux faire, à un point tel que je n'arrive plus à suivre mes cours en ligne d'infographie photo et je dois rendre mes 3 derniers examens avant lundi prochain.
J'ai scanné avec NOD32 et il m'a trouvé 8 problèmes, que j'ai supprimé.
Afin de gagner du temps, je vous envoie mon rapport Hijackthis.
Si une âme charitable pouvait m'aider, je l'en remercie d'avance. :) 

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:54:03, on 5/05/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE
C:\Program Files\Logitech\ImageStudio\LogiTray.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\PESTPA~1\PPMemCheck.exe
C:\PROGRA~1\PESTPA~1\CookiePatrol.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
C:\Program Files\Sunbelt Software\CounterSpy\SBCSTray.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\SweetIM\Messenger\SweetIM.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\logiciels\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
C:\Program Files\DNA\btdna.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\IncrediMail\bin\IMApp.exe
C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\system32\pctspk.exe
C:\Program Files\Sunbelt Software\CounterSpy\SBCSSvc.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\LOGICI~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr-be\msntb.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Systran50premi.IEPlugIn - {9A0844DB-84CF-4440-BDB1-1F4F7C4F7FB0} - C:\Program Files\SYSTRAN\5.0\Premium\IEPlugIn.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [NvMediaCenter] "RUNDLL32.EXE" C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [LVCOMS] "C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE"
O4 - HKLM\..\Run: [LogitechGalleryRepair] "C:\Program Files\Logitech\ImageStudio\ISStart.exe"
O4 - HKLM\..\Run: [LogitechImageStudioTray] "C:\Program Files\Logitech\ImageStudio\LogiTray.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [PPMemCheck] C:\PROGRA~1\PESTPA~1\PPMemCheck.exe
O4 - HKLM\..\Run: [CookiePatrol] C:\PROGRA~1\PESTPA~1\CookiePatrol.exe
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] "C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SBCSTray] C:\Program Files\Sunbelt Software\CounterSpy\SBCSTray.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SBRegRebootCleaner] C:\Program Files\Sunbelt Software\CounterSpy\SBRC.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [Microsoft WinUpdate] C:\WINDOWS\system32\msupdte.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [SuperCopier.exe] C:\Program Files\SuperCopier\SuperCopier.exe
O4 - HKCU\..\Run: [LDM] "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"
O4 - HKCU\..\Run: [msnmsgr] ~"C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [TZ Spyware Remover] "C:\Program Files\logiciels\TZ Spyware Remover\SpyRem.exe" /STARTUP
O4 - HKCU\..\Run: [SpybotSD TeaTimer] "C:\Program Files\logiciels\Spybot - Search & Destroy\TeaTimer.exe"
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Outil de détection de support Picture Motion Browser.lnk = C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Open and Translate in Word - res://C:\Program Files\SYSTRAN\5.0\Premium\IEShellExt.dll /10
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\LOGICI~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\LOGICI~1\SPYBOT~1\SDHelper.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: PCTEL Speaker Phone (Pctspk) - PCtel, Inc. - C:\WINDOWS\system32\pctspk.exe
O23 - Service: Sunbelt CounterSpy Antispyware (SBCSSvc) - Sunbelt Software - C:\Program Files\Sunbelt Software\CounterSpy\SBCSSvc.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.8\bin\httpd.exe
O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.0.51b\bin\mysqld-nt.exe

--
End of file - 13096 bytes

Autres pages sur : resolu extremement lent

Meilleure solution

a c 267 8 Sécurité
5 Mai 2009 17:39:08

Bonjour,

Tu as Avast et NOD32, tu dois désinstaller un antivirus.

  • Télécharge Malwarebytes' Anti-Malware (MBAM) sur ton Bureau.
  • Double-clique sur le fichier téléchargé pour lancer le processus d'installation.
  • Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.
  • Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.
  • Sélectionne Exécuter un examen rapide.
  • Clique sur Rechercher. L'analyse démarre.
  • A la fin de l'analyse, un message s'affiche :
    Citation :
    L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.

  • Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
  • Ferme tes navigateurs.
  • Si des malwares ont été détectés, clique sur Afficher les résultats.
  • Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.
  • MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.
    partage
    6 Mai 2009 13:18:49

    Bonjour et un grand merci pour ton aide Destrio5.
    Excuse-moi de la réponse tardive mais mon PC est tellement lent que je ne sais pas faire autrement.
    Voici le rapport demandé :

    Malwarebytes' Anti-Malware 1.36
    Version de la base de données: 1945
    Windows 5.1.2600 Service Pack 2

    6/05/2009 12:27:40
    mbam-log-2009-05-06 (12-27-40).txt

    Type de recherche: Examen rapide
    Eléments examinés: 79818
    Temps écoulé: 11 minute(s), 40 second(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 3
    Valeur(s) du Registre infectée(s): 0
    Elément(s) de données du Registre infecté(s): 1
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 1

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    HKEY_CURRENT_USER\SOFTWARE\TZ Remover (Rogue.TZSpyware) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\TZ Spyware Remover (Rogue.TZSpyware) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\TZ Spyware Remover_is1 (Rogue.TZSpyware) -> Quarantined and deleted successfully.

    Valeur(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Elément(s) de données du Registre infecté(s):
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSMHelp (Hijack.Help) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    C:\Program Files\bass.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.
    m
    0
    l
    Contenus similaires
    a c 267 8 Sécurité
    6 Mai 2009 13:55:14

  • Désinstalle AVG Anti-Spyware 7.5 ou Spyware Doctor.

  • Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.
  • Double-clique sur RSIT.exe afin de lancer le programme.
    (Sous Vista, il faut cliquer droit sur RSIT.exe et choisir Exécuter en tant qu'administrateur)
  • Clique sur Continue à l'écran Disclaimer.
  • Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
  • Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

    Note : les rapports sont sauvegardés dans le dossier C:\rsit.
    m
    0
    l
    6 Mai 2009 14:45:02

    Rebonjour,
    J'ai comme l'impression que mon PC va déjà mieux, mais ce n' est peut-être qu'une impression...
    Voici les 2 rapports demandés :

    Logfile of random's system information tool 1.06 (written by random/random)
    Run by Admin at 2009-05-06 14:29:44
    Microsoft Windows XP Professionnel Service Pack 2
    System drive C: has 395 MB (1%) free of 76 GB
    Total RAM: 2048 MB (68% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 14:30:00, on 6/05/2009
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Eset\nod32kui.exe
    C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE
    C:\Program Files\Logitech\ImageStudio\LogiTray.exe
    C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
    C:\PROGRA~1\PESTPA~1\PPMemCheck.exe
    C:\PROGRA~1\PESTPA~1\CookiePatrol.exe
    C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
    C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
    C:\Program Files\Sunbelt Software\CounterSpy\SBCSTray.exe
    C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe
    C:\WINDOWS\System32\DLA\DLACTRLW.EXE
    C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    C:\Program Files\SweetIM\Messenger\SweetIM.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
    C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\logiciels\Spybot - Search & Destroy\TeaTimer.exe
    C:\WINDOWS\system32\rundll32.exe
    C:\Program Files\DNA\btdna.exe
    C:\Program Files\DAEMON Tools Lite\daemon.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
    C:\Program Files\Eset\nod32krn.exe
    C:\WINDOWS\system32\pctspk.exe
    C:\Program Files\Sunbelt Software\CounterSpy\SBCSSvc.exe
    C:\Program Files\IncrediMail\bin\IMApp.exe
    C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    C:\WINDOWS\system32\wscntfy.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Documents and Settings\Admin\Bureau\RSIT.exe
    C:\Program Files\Admin.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
    O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\LOGICI~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll
    O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr-be\msntb.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O3 - Toolbar: Systran50premi.IEPlugIn - {9A0844DB-84CF-4440-BDB1-1F4F7C4F7FB0} - C:\Program Files\SYSTRAN\5.0\Premium\IEPlugIn.dll
    O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
    O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
    O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
    O4 - HKLM\..\Run: [NvMediaCenter] "RUNDLL32.EXE" C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [LVCOMS] "C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE"
    O4 - HKLM\..\Run: [LogitechGalleryRepair] "C:\Program Files\Logitech\ImageStudio\ISStart.exe"
    O4 - HKLM\..\Run: [LogitechImageStudioTray] "C:\Program Files\Logitech\ImageStudio\LogiTray.exe"
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [PPMemCheck] C:\PROGRA~1\PESTPA~1\PPMemCheck.exe
    O4 - HKLM\..\Run: [CookiePatrol] C:\PROGRA~1\PESTPA~1\CookiePatrol.exe
    O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] "C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [SBCSTray] C:\Program Files\Sunbelt Software\CounterSpy\SBCSTray.exe
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
    O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [SBRegRebootCleaner] C:\Program Files\Sunbelt Software\CounterSpy\SBRC.exe
    O4 - HKLM\..\Run: [Microsoft WinUpdate] C:\WINDOWS\system32\msupdte.exe
    O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
    O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
    O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
    O4 - HKCU\..\Run: [SuperCopier.exe] C:\Program Files\SuperCopier\SuperCopier.exe
    O4 - HKCU\..\Run: [LDM] "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"
    O4 - HKCU\..\Run: [msnmsgr] ~"C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [TZ Spyware Remover] "C:\Program Files\logiciels\TZ Spyware Remover\SpyRem.exe" /STARTUP
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] "C:\Program Files\logiciels\Spybot - Search & Destroy\TeaTimer.exe"
    O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
    O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
    O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'Default user')
    O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Startup: Outil de détection de support Picture Motion Browser.lnk = C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe
    O4 - Global Startup: Adobe Gamma Loader.lnk = ?
    O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O8 - Extra context menu item: Open and Translate in Word - res://C:\Program Files\SYSTRAN\5.0\Premium\IEShellExt.dll /10
    O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\LOGICI~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\LOGICI~1\SPYBOT~1\SDHelper.dll
    O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
    O23 - Service: PCTEL Speaker Phone (Pctspk) - PCtel, Inc. - C:\WINDOWS\system32\pctspk.exe
    O23 - Service: Sunbelt CounterSpy Antispyware (SBCSSvc) - Sunbelt Software - C:\Program Files\Sunbelt Software\CounterSpy\SBCSSvc.exe
    O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.8\bin\httpd.exe
    O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.0.51b\bin\mysqld-nt.exe

    --
    End of file - 11920 bytes

    ======Scheduled tasks folder======

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
    Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2005-11-22 399352]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Adobe PDF Reader Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
    Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2008-02-01 1377576]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
    Spybot-S&D IE Protection - C:\PROGRA~1\LOGICI~1\SPYBOT~1\SDHelper.dll [2008-09-15 1562960]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}]
    DriveLetterAccess - C:\WINDOWS\System32\DLA\DLASHX_W.DLL [2006-06-13 110652]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Windows Live Sign-in Helper - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-08-31 322368]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9394EDE7-C8B5-483E-8773-474BF36AF6E4}]
    ST - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll [2004-08-13 155648]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
    Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll [2008-10-20 737776]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}]
    MSNToolBandBHO - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr-be\msntb.dll [2006-01-17 282624]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-09 35840]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
    JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-03-09 73728]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
    SweetIM Toolbar Helper - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2008-10-08 1172792]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2005-11-22 399352]
    {9A0844DB-84CF-4440-BDB1-1F4F7C4F7FB0} - Systran50premi.IEPlugIn - C:\Program Files\SYSTRAN\5.0\Premium\IEPlugIn.dll [2004-06-21 253952]
    {EEE6C35B-6118-11DC-9C72-001320C79847} - SweetIM Toolbar for Internet Explorer - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2008-10-08 1172792]
    {32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2009-04-23 937416]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "nod32kui"=C:\Program Files\Eset\nod32kui.exe [2006-06-05 917504]
    "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2006-03-09 86016]
    "LVCOMS"=C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE [2002-12-10 127022]
    "LogitechGalleryRepair"=C:\Program Files\Logitech\ImageStudio\ISStart.exe [2002-12-10 155648]
    "LogitechImageStudioTray"=C:\Program Files\Logitech\ImageStudio\LogiTray.exe [2002-12-10 61440]
    "TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2006-12-21 185896]
    "PPMemCheck"=C:\PROGRA~1\PESTPA~1\PPMemCheck.exe [2002-10-15 148480]
    "CookiePatrol"=C:\PROGRA~1\PESTPA~1\CookiePatrol.exe [2002-11-07 65536]
    "Share-to-Web Namespace Daemon"=C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe [2002-04-17 69632]
    "QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2007-06-29 286720]
    "SBCSTray"=C:\Program Files\Sunbelt Software\CounterSpy\SBCSTray.exe [2007-11-28 698864]
    "IMJPMIG8.1"=C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [2004-08-04 208952]
    "MSPY2002"=C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe [2004-08-04 59392]
    "PHIME2002ASync"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-04 455168]
    "PHIME2002A"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-04 455168]
    "Adobe Photo Downloader"=C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe [2007-03-09 63712]
    "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
    "SBRegRebootCleaner"=C:\Program Files\Sunbelt Software\CounterSpy\SBRC.exe [2007-11-28 141808]
    "Microsoft WinUpdate"=C:\WINDOWS\system32\msupdte.exe []
    "PinnacleDriverCheck"=C:\WINDOWS\system32\PSDrvCheck.exe [2003-12-04 406016]
    "DLA"=C:\WINDOWS\System32\DLA\DLACTRLW.EXE [2006-06-13 127036]
    "nwiz"=nwiz.exe /install []
    "ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2008-07-09 919016]
    "SweetIM"=C:\Program Files\SweetIM\Messenger\SweetIM.exe [2009-02-15 111928]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-03-09 148888]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-19 15360]
    "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe [2005-12-16 94208]
    "SuperCopier.exe"=C:\Program Files\SuperCopier\SuperCopier.exe [2003-04-25 683520]
    "LDM"=C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2007-02-26 67128]
    "msnmsgr"=~C:\Program Files\MSN Messenger\msnmsgr.exe /background []
    "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2007-05-30 68856]
    "TZ Spyware Remover"=C:\Program Files\logiciels\TZ Spyware Remover\SpyRem.exe [2007-05-09 593920]
    "SpybotSD TeaTimer"=C:\Program Files\logiciels\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
    "IncrediMail"=C:\Program Files\IncrediMail\bin\IncMail.exe [2009-01-27 251264]
    "BitTorrent DNA"=C:\Program Files\DNA\btdna.exe [2008-12-22 342848]
    "DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2009-04-23 691656]

    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
    Adobe Gamma Loader.lnk - C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe

    C:\Documents and Settings\Admin\Menu Démarrer\Programmes\Démarrage
    Adobe Gamma.lnk - C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    Outil de détection de support Picture Motion Browser.lnk - C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SBCSSvc]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SBCSSvc]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdauxservice]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdcoreservice]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=FF000000
    "ForceClassicControlPanel"=1
    "MemCheckBoxInRunDlg"=1
    "NoSMBalloonTip"=1
    "NoDesktopCleanupWizard"=1
    "NoWelcomeScreen"=1
    "NoAutoUpdate"=1
    "NoDrives"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveAutoRun"=
    "NoDriveTypeAutoRun"=
    "NoDrives"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
    "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
    "C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"
    "C:\Program Files\Shareaza\Shareaza.exe"="C:\Program Files\Shareaza\Shareaza.exe:*:Enabled:Shareaza"
    "C:\Program Files\incredimail_install.exe"="C:\Program Files\incredimail_install.exe:*:Enabled:IncrediMail Installer"
    "C:\Program Files\IncrediMail\bin\ImApp.exe"="C:\Program Files\IncrediMail\bin\ImApp.exe:*:Enabled:IncrediMail"
    "C:\Program Files\IncrediMail\bin\IncMail.exe"="C:\Program Files\IncrediMail\bin\IncMail.exe:*:Enabled:IncrediMail"
    "C:\Program Files\IncrediMail\bin\ImpCnt.exe"="C:\Program Files\IncrediMail\bin\ImpCnt.exe:*:Enabled:IncrediMail"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
    "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
    "C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled:D NA"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

    ======List of files/folders created in the last 3 months======

    2009-05-06 14:29:44 ----D---- C:\rsit
    2009-05-06 14:29:44 ----A---- C:\Program Files\Admin.exe
    2009-05-06 12:53:54 ----A---- C:\mbam-log-2009-05-06 (12-27-40).txt
    2009-05-06 09:09:58 ----A---- C:\TB.txt
    2009-05-05 22:25:03 ----D---- C:\ToolBar SD
    2009-05-05 15:01:09 ----D---- C:\Program Files\hijackthis
    2009-04-29 13:20:34 ----D---- C:\Documents and Settings\Admin\Application Data\Opera
    2009-04-28 09:30:26 ----D---- C:\Program Files\DAEMON Tools Toolbar
    2009-04-28 09:27:17 ----D---- C:\Program Files\DAEMON Tools Lite
    2009-04-26 16:12:23 ----D---- C:\Documents and Settings\All Users\Application Data\PoBros
    2009-04-26 16:12:23 ----D---- C:\Documents and Settings\Admin\Application Data\PoBros
    2009-04-22 18:29:45 ----D---- C:\Program Files\Magic Ball
    2009-04-16 13:37:42 ----D---- C:\Program Files\Fichiers communs\Adobe Systems Shared
    2009-04-05 13:33:15 ----A---- C:\Program Files\daemon4303-lite.exe
    2009-04-05 10:46:55 ----D---- C:\Documents and Settings\Admin\Application Data\DAEMON Tools Pro
    2009-04-05 10:46:42 ----D---- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
    2009-04-05 10:39:48 ----D---- C:\Documents and Settings\Admin\Application Data\DAEMON Tools Lite
    2009-04-04 12:38:22 ----D---- C:\Program Files\Adobe Illustrator Cs3 Fr Crack Par Fatah Fr
    2009-04-03 12:03:51 ----D---- C:\Documents and Settings\Admin\Application Data\Inkscape
    2009-04-03 11:52:22 ----D---- C:\Program Files\Inkscape
    2009-04-03 11:30:11 ----A---- C:\Program Files\Inkscape-0.46.win32.exe
    2009-04-01 10:54:24 ----A---- C:\WINDOWS\system32\javaws.exe
    2009-04-01 10:54:24 ----A---- C:\WINDOWS\system32\javaw.exe
    2009-04-01 10:54:24 ----A---- C:\WINDOWS\system32\java.exe
    2009-03-27 15:45:34 ----A---- C:\Program Files\eMule0.49c-Installer.exe
    2009-03-27 15:30:09 ----A---- C:\Program Files\zapSetup_80_298_004_fr.exe
    2009-03-24 16:23:51 ----D---- C:\WINDOWS\A5W_DATA
    2009-03-24 16:23:51 ----A---- C:\WINDOWS\A5W.INI
    2009-03-24 15:22:02 ----A---- C:\WINDOWS\system32\tsccinst.dll
    2009-03-24 15:19:29 ----A---- C:\WINDOWS\system32\Winskfr.dll
    2009-03-24 15:19:25 ----A---- C:\WINDOWS\system32\VB6FR.DLL
    2009-03-24 15:19:18 ----A---- C:\WINDOWS\system32\tsccvid.dll
    2009-03-24 15:19:13 ----A---- C:\WINDOWS\system32\Mscmcfr.dll
    2009-03-24 15:19:11 ----A---- C:\WINDOWS\system32\Cmdlgfr.dll
    2009-03-24 15:19:06 ----A---- C:\WINDOWS\system32\Cmctlfr.dll
    2009-03-24 15:18:54 ----D---- C:\Program Files\Editions ENI
    2009-03-24 15:16:27 ----D---- C:\Program Files\Fichiers communs\Editions ENI
    2009-03-17 17:44:04 ----D---- C:\Documents and Settings\All Users\Application Data\Flood Light Games
    2009-03-17 17:44:04 ----D---- C:\Documents and Settings\Admin\Application Data\Flood Light Games
    2009-03-16 14:31:18 ----SHD---- C:\Config.Msi
    2009-03-14 14:21:32 ----D---- C:\Documents and Settings\All Users\Application Data\TonkyPonky
    2009-03-13 17:31:51 ----D---- C:\Program Files\WildGames
    2009-03-11 18:02:10 ----D---- C:\Documents and Settings\All Users\Application Data\MiniIT Games
    2009-03-11 18:02:10 ----D---- C:\Documents and Settings\Admin\Application Data\MiniIT Games
    2009-03-09 11:11:00 ----D---- C:\diapos
    2009-03-08 16:33:34 ----A---- C:\Program Files\Escape_the_Museum-setup.exe
    2009-03-01 16:37:21 ----D---- C:\Documents and Settings\All Users\Application Data\Rumbic Studio
    2009-02-27 17:28:55 ----D---- C:\Program Files\Kellogg's
    2009-02-25 19:09:20 ----D---- C:\blagues
    2009-02-24 16:35:26 ----D---- C:\Documents and Settings\All Users\Application Data\Big Fish Games Vancouver
    2009-02-19 19:33:36 ----D---- C:\Program Files\Oberon Media
    2009-02-16 17:21:55 ----D---- C:\WINDOWS\.jagex_cache_32
    2009-02-08 14:52:00 ----D---- C:\Documents and Settings\Admin\Application Data\JoyBits
    2009-02-07 12:07:26 ----A---- C:\WINDOWS\system32\zlcommdb.dll
    2009-02-07 12:07:26 ----A---- C:\WINDOWS\system32\zlcomm.dll
    2009-02-07 12:07:21 ----A---- C:\WINDOWS\system32\zpeng24.dll
    2009-02-07 12:07:21 ----A---- C:\WINDOWS\system32\vswmi.dll
    2009-02-07 12:07:20 ----A---- C:\WINDOWS\system32\vspubapi.dll
    2009-02-07 12:07:20 ----A---- C:\WINDOWS\system32\vsmonapi.dll
    2009-02-07 12:05:28 ----A---- C:\WINDOWS\system32\vsutil.dll
    2009-02-07 12:05:28 ----A---- C:\WINDOWS\system32\vsinit.dll
    2009-02-07 11:59:34 ----A---- C:\Program Files\zapSetup_70_483_000_fr.exe

    ======List of files/folders modified in the last 3 months======

    2009-05-06 14:29:51 ----RD---- C:\Program Files
    2009-05-06 14:29:46 ----D---- C:\WINDOWS\Temp
    2009-05-06 14:29:33 ----D---- C:\Documents and Settings\Admin\Application Data\DNA
    2009-05-06 14:28:15 ----D---- C:\WINDOWS\Internet Logs
    2009-05-06 14:25:48 ----D---- C:\Program Files\Mozilla Firefox
    2009-05-06 14:19:32 ----D---- C:\Program Files\DNA
    2009-05-06 14:18:01 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-05-06 14:15:55 ----D---- C:\WINDOWS\system32
    2009-05-06 14:15:51 ----D---- C:\WINDOWS\system32\drivers
    2009-05-06 12:59:58 ----D---- C:\WINDOWS\system32\ZoneLabs
    2009-05-06 12:59:23 ----D---- C:\WINDOWS
    2009-05-06 12:13:03 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
    2009-05-06 09:09:57 ----D---- C:\WINDOWS\Prefetch
    2009-05-05 13:08:36 ----A---- C:\WINDOWS\NeroDigital.ini
    2009-05-05 12:31:40 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-04-30 18:38:27 ----D---- C:\Documents and Settings\Admin\Application Data\Identities
    2009-04-30 18:38:23 ----D---- C:\Documents and Settings\Admin\Application Data\Zylom
    2009-04-30 18:36:36 ----D---- C:\Program Files\Zylom Games
    2009-04-29 13:20:36 ----A---- C:\WINDOWS\win.ini
    2009-04-28 09:32:07 ----HD---- C:\WINDOWS\inf
    2009-04-26 17:43:23 ----D---- C:\Program Files\userdata
    2009-04-25 15:35:16 ----SHD---- C:\WINDOWS\Installer
    2009-04-22 18:27:28 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
    2009-04-21 12:06:49 ----D---- C:\Documents and Settings\Admin\Application Data\BitTorrent
    2009-04-18 10:15:45 ----D---- C:\Documents and Settings\Admin\Application Data\Adobe
    2009-04-16 13:43:49 ----D---- C:\Program Files\Adobe
    2009-04-16 13:38:57 ----D---- C:\Program Files\Fichiers communs\Adobe
    2009-04-16 13:37:42 ----D---- C:\Program Files\Fichiers communs
    2009-04-16 13:33:30 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
    2009-04-12 14:25:05 ----D---- C:\Documents and Settings\Admin\Application Data\gtk-2.0
    2009-04-05 10:46:56 ----D---- C:\Documents and Settings\Admin\Application Data\DAEMON Tools
    2009-04-01 10:54:18 ----D---- C:\Program Files\Java
    2009-04-01 10:49:34 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-03-28 22:10:38 ----D---- C:\My Download Files
    2009-03-27 15:48:10 ----D---- C:\Program Files\eMule1
    2009-03-27 15:35:46 ----D---- C:\WINDOWS\WinSxS
    2009-03-27 14:50:53 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
    2009-03-25 19:05:14 ----A---- C:\WINDOWS\PestPatrol.ini
    2009-03-25 19:04:48 ----D---- C:\Program Files\SuperScan
    2009-03-24 15:32:37 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-03-24 15:21:52 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-03-18 18:04:27 ----D---- C:\Documents and Settings\All Users\Application Data\BigFishGamesCache
    2009-03-16 19:13:16 ----D---- C:\Program Files\Incredijeux
    2009-03-16 18:54:14 ----D---- C:\Program Files\Micro Application
    2009-03-16 18:47:25 ----D---- C:\Program Files\Infogrames
    2009-03-16 18:40:40 ----D---- C:\Program Files\Jewel Quest 2
    2009-03-16 18:10:21 ----D---- C:\Program Files\Fichiers communs\Oberon Media
    2009-03-16 18:04:54 ----D---- C:\Program Files\Chuzzle Deluxe
    2009-03-16 17:13:58 ----D---- C:\Documents and Settings\All Users\Application Data\Playrix Entertainment
    2009-03-16 15:21:48 ----SD---- C:\WINDOWS\Tasks
    2009-03-16 14:32:55 ----D---- C:\Program Files\SweetIM
    2009-03-14 17:17:33 ----D---- C:\Documents and Settings\All Users\Application Data\Intenium
    2009-03-13 20:00:33 ----D---- C:\Documents and Settings\Admin\Application Data\Boomzap
    2009-03-09 05:19:08 ----A---- C:\WINDOWS\system32\deploytk.dll
    2009-03-08 15:36:36 ----D---- C:\Documents and Settings\All Users\Application Data\Friends Games
    2009-03-07 13:17:17 ----D---- C:\Documents and Settings\All Users\Application Data\NETg
    2009-03-02 20:13:11 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
    2009-02-27 17:34:57 ----D---- C:\WINDOWS\RegisteredPackages
    2009-02-27 17:30:48 ----D---- C:\WINDOWS\system32\DirectX
    2009-02-27 17:30:46 ----RSD---- C:\WINDOWS\assembly
    2009-02-26 13:46:30 ----D---- C:\Documents and Settings\All Users\Application Data\DVD Shrink
    2009-02-19 19:34:15 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 AFS2K;AFS2k; C:\WINDOWS\system32\drivers\AFS2K.sys [2007-06-03 82380]
    R1 AmdK7;Pilote de processeur AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2005-10-12 41600]
    R1 DLACDBHM;DLACDBHM; C:\WINDOWS\System32\Drivers\DLACDBHM.SYS [2006-03-17 5660]
    R1 DLARTL_N;DLARTL_N; C:\WINDOWS\System32\Drivers\DLARTL_N.SYS [2006-03-17 22684]
    R1 FsVga;FsVga; C:\WINDOWS\system32\DRIVERS\fsvga.sys [2005-07-26 12416]
    R1 LStone;Pinnacle Systems Studio AV/DV Overlay; C:\WINDOWS\system32\DRIVERS\lstone2k.sys [2002-12-10 256113]
    R1 MemAlloc;MemAlloc; C:\WINDOWS\system32\DRIVERS\memalloc.sys [2002-08-26 5543]
    R1 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2008-07-09 394952]
    R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-02 12032]
    R2 AMON;AMON; \??\C:\WINDOWS\system32\drivers\amon.sys []
    R2 DLABOIOM;DLABOIOM; C:\WINDOWS\System32\DLA\DLABOIOM.SYS [2006-06-13 25724]
    R2 DLADResN;DLADResN; C:\WINDOWS\System32\DLA\DLADResN.SYS [2006-06-13 2496]
    R2 DLAIFS_M;DLAIFS_M; C:\WINDOWS\System32\DLA\DLAIFS_M.SYS [2006-06-13 86844]
    R2 DLAOPIOM;DLAOPIOM; C:\WINDOWS\System32\DLA\DLAOPIOM.SYS [2006-06-13 14716]
    R2 DLAPoolM;DLAPoolM; C:\WINDOWS\System32\DLA\DLAPoolM.SYS [2006-06-13 6364]
    R2 DLAUDF_M;DLAUDF_M; C:\WINDOWS\System32\DLA\DLAUDF_M.SYS [2006-06-13 88476]
    R2 DLAUDFAM;DLAUDFAM; C:\WINDOWS\System32\DLA\DLAUDFAM.SYS [2006-06-13 94460]
    R2 DRVNDDM;DRVNDDM; C:\WINDOWS\System32\Drivers\DRVNDDM.SYS [2006-03-17 40544]
    R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2002-04-01 4816]
    R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2005-10-12 60800]
    R3 ASAPIW2k;ASAPIW2K; C:\WINDOWS\system32\drivers\ASAPIW2k.sys [2003-12-04 11264]
    R3 FETNDIS;Pilote NT de carte VIA PCI 10/100Mo Fast Ethernet; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2005-07-26 27165]
    R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2005-10-12 61824]
    R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2005-07-26 1897408]
    R3 pfc;PADUS ASPI SHELL; C:\WINDOWS\system32\drivers\pfc.sys [2002-06-13 14604]
    R3 Ptserlp;PCTEL Serial Device Driver for PCI; C:\WINDOWS\system32\DRIVERS\ptserlp.sys [2005-07-26 112574]
    R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-07-15 578368]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
    R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
    R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-03 17024]
    R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
    S1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys []
    S1 InCDRm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys []
    S3 61883;Pilote d'unité 61883; C:\WINDOWS\system32\DRIVERS\61883.sys [2005-07-26 48128]
    S3 a9n6jwtn;a9n6jwtn; C:\WINDOWS\system32\drivers\a9n6jwtn.sys []
    S3 ASUSHWIO;ASUSHWIO; \??\C:\WINDOWS\system32\drivers\ASUSHWIO.sys []
    S3 Avc;Périphérique AVC; C:\WINDOWS\system32\DRIVERS\avc.sys [2005-07-26 38912]
    S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
    S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2005-07-26 17024]
    S3 C-Dilla;C-Dilla; \??\C:\WINDOWS\system32\drivers\CDANT.SYS []
    S3 gmer;gmer; C:\WINDOWS\System32\DRIVERS\gmer.sys [2008-04-08 86097]
    S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2005-07-26 9600]
    S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2005-07-26 12288]
    S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\system32\DRIVERS\msdv.sys [2005-07-26 51328]
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2005-07-26 5504]
    S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2005-07-26 85376]
    S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2005-07-26 10880]
    S3 PciCon;PciCon; \??\D:\PciCon.sys []
    S3 PhilCam8116;Logitech QuickCam Pro 3000(PID_08B0); C:\WINDOWS\system32\DRIVERS\CamDrL21.sys [2002-12-10 236121]
    S3 SBAPIFS;SBAPIFS; \??\C:\WINDOWS\system32\drivers\sbapifs.sys []
    S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2005-07-26 11136]
    S3 ssm_bus;SAMSUNG Mobile USB Device II 1.0 driver (WDM); C:\WINDOWS\system32\DRIVERS\ssm_bus.sys [2005-08-30 58320]
    S3 ssm_mdfl;SAMSUNG Mobile USB Modem II 1.0 Filter; C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys [2005-08-30 8336]
    S3 ssm_mdm;SAMSUNG Mobile USB Modem II 1.0 Drivers; C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys [2005-08-30 94000]
    S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2005-07-26 15360]
    S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2005-07-26 59264]
    S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2005-07-26 31616]
    S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2005-07-26 25856]
    S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2005-07-26 15104]
    S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2005-07-26 26496]
    S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2005-07-26 19328]
    S4 InCDFs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys []
    S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-03-09 152984]
    R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
    R2 NOD32krn;NOD32 Kernel Service; C:\Program Files\Eset\nod32krn.exe [2006-06-05 495616]
    R2 Pctspk;PCTEL Speaker Phone; C:\WINDOWS\system32\pctspk.exe [2005-07-26 86016]
    R2 SBCSSvc;Sunbelt CounterSpy Antispyware; C:\Program Files\Sunbelt Software\CounterSpy\SBCSSvc.exe [2007-11-28 788976]
    R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056]
    R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-10 38912]
    R2 vsmon;TrueVector Internet Monitor; C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2008-07-09 75304]
    S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2009-04-16 72704]
    S3 AresChatServer;Ares Chatroom server; C:\Program Files\Ares\chatServer.exe [2007-03-20 263168]
    S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
    S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-01-27 138168]
    S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
    S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
    S3 wampapache;wampapache; c:\wamp\bin\apache\apache2.2.8\bin\httpd.exe [2008-01-18 24635]
    S3 wampmysqld;wampmysqld; c:\wamp\bin\mysql\mysql5.0.51b\bin\mysqld-nt.exe [2008-04-17 5750784]

    -----------------EOF-----------------


    et le 2eme :


    info.txt logfile of random's system information tool 1.06 2009-05-06 14:30:03

    ======Uninstall list======

    -->C:\Program Files\DivX\ConverterUninstall.exe /CONVERTER
    -->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
    -->C:\Program Files\Nero\Nero 7\nero\uninstall\UNNERO.exe /UNINSTALL
    -->C:\WINDOWS\ISUN040C.EXE -a -f"C:\Program Files\Hewlett-Packard\HP DeskJet 1220C Toolbox\Uninst.isu" -c"C:\Program Files\Hewlett-Packard\HP DeskJet 1220C Toolbox\hpwioi.dll" -i"tbxinst.ini" -h"HPZIOU00.DLL"
    -->C:\WINDOWS\system32\\MSIEXEC.EXE /x {1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
    -->C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL
    -->C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL
    -->C:\WINDOWS\UNNeroVision.exe /UNINSTALL
    -->C:\WINDOWS\UNRecode.exe /UNINSTALL
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9D08670E-A696-41DD-B835-42760509CE08}\setup.exe" -l0x9
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{28B97CAB-828F-49D8-A30A-675476F9BA92}\setup.exe" -l0x40c /cont -removeonly
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4E7DC12A-3597-4A94-9429-F6C6987361B1}\setup.exe" -l0x40c -removeonly
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6813C983-427E-4511-8456-E98FCAA1A125}\setup.exe" -l0x40c -removeonly
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7DADB304-AF20-48C3-A780-4B4133A08817}\setup.exe" -l0x40c -removeonly
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9225EABF-4457-403B-A82B-91614C9DDDF7}\setup.exe" -l0x40c -removeonly
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9C423CF6-2DAA-4A37-94B8-59D7ECC7DB13}\setup.exe" -l0x40c -removeonly
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{ACE66099-E18E-4037-83C8-9D182E5B9FA8}\setup.exe" -l0x40c -removeonly
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B34B6E67-FCDD-4E03-8742-B5701427FAFB}\setup.exe" -l0x40c -removeonly
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C9EFF51A-C925-4F1A-9DEB-DB5F970DE983}\setup.exe" -l0x40c -removeonly
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E9CCEA28-3608-4078-8A07-997646E1A357}\setup.exe" -l0x40c -removeonly
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FA6CC4B4-7741-4F8D-8E81-15C4BAB9869B}\setup.exe" -l0x40c -removeonly
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD7FF74D-0AB5-48D6-929C-7E93A5162521}\setup.exe" -l0x40c -removeonly
    -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
    Ad-Aware SE Personal-->C:\PROGRA~1\Lavasoft\AD-AWA~1\UNWISE.EXE C:\PROGRA~1\Lavasoft\AD-AWA~1\INSTALL.LOG
    Adobe Acrobat 5.0-->C:\WINDOWS\ISUNINST.EXE -f"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.dll"
    Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)-->MsiExec.exe /X{6846389C-BAC0-4374-808E-B120F86AF5D7}
    Adobe Bridge 1.0-->MsiExec.exe /I{B74D4E10-6884-0000-0000-000000000101}
    Adobe Common File Installer-->MsiExec.exe /I{8EDBA74D-0686-4C99-BFDD-F894678E5101}
    Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
    Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
    Adobe Help Center 1.0-->MsiExec.exe /I{E9787678-119F-4D52-B551-6739B2B22101}
    Adobe Photoshop CS2-->msiexec /I {236BB7C4-4419-42FD-040C-1E257A25E34D}
    Adobe Photoshop Elements 2.0-->C:\WINDOWS\ISUN040C.EXE -f"C:\Program Files\Adobe\Photoshop Elements 2\Uninst.isu" -c"C:\Program Files\Adobe\Photoshop Elements 2\Uninst.dll"
    Adobe Reader 8.1.2-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A81200000003}
    Adobe Shockwave Player-->C:\WINDOWS\system32\Adobe\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Adobe\SHOCKW~1\Install.log
    Adobe Stock Photos 1.0-->MsiExec.exe /I{786C5747-0C40-4930-9AFE-113BCE553101}
    Adobe SVG Viewer 3.0-->C:\Program Files\Fichiers communs\Adobe\SVG Viewer 3.0\Uninstall\Winstall.exe -u -fC:\Program Files\Fichiers communs\Adobe\SVG Viewer 3.0\Uninstall\Install.log
    Adobe® Photoshop® Album Starter Edition 3.2-->MsiExec.exe /I{A654A805-41D9-40C7-AA46-4AF04F044D61}
    AIDA32 v3.93-->"C:\Program Files\AIDA32 - Enterprise System Information\unins000.exe"
    Ancient Secrets Deluxe-->"C:\Program Files\Zylom Games\Ancient Secrets Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Annie's Millions Deluxe-->"C:\Program Files\Zylom Games\Annie's Millions Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Apple Software Update-->MsiExec.exe /I{74EC78BC-B379-4E29-9006-8F161DCAABA6}
    Applian FLV Player-->"C:\WINDOWS\Applian FLV Player\uninstall.exe" "/U:C:\Program Files\FLV Player\Uninstall\uninstall.xml"
    Ares 2.0.9-->"C:\Program Files\Ares\uninstall.exe"
    AsusUpdate-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{587178E7-B1DF-494E-9838-FA4DD36E873C}\Setup.exe" -l0x40c
    Barre d'outils MSN-->C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr-be\mtbs.exe c
    BeTrapped!-->"C:\Program Files\Incredijeux\BeTrapped!\Uninstall.exe" "C:\Program Files\Incredijeux\BeTrapped!\install.log"
    Big Fish Games Client-->C:\Program Files\bfgclient\Uninstall.exe
    BitLord 1.1-->C:\Program Files\BitLord\uninst.exe
    CamStudio 2.0 Fr-->"C:\Program Files\CamStudio\unins000.exe"
    Canon EOS Kiss REBEL 300D Pilote WIA -->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{31A57C3E-30DD-421F-B5C7-974DACB0D05F}
    Canon Internet Library for ZoomBrowser EX-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{9E75AF24-815C-4BD1-9A05-F96866CC6005}
    Canon PhotoRecord-->C:\WINDOWS\IsUn040c.exe -fC:\PROGRA~1\Canon\PhotoRecord\Uninst.isu -c"C:\PROGRA~1\Canon\PhotoRecord\Program\uninstdll.dll"
    Canon Utilities File Viewer Utility 1.3-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{74344F10-34CA-480E-BD02-B3F4FA692BFA}
    Canon Utilities PhotoStitch 3.1-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{F11A403B-0DE9-4953-B790-7A2F014FBB2B}
    Canon Utilities RemoteCapture 2.7-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{EF91B23E-3819-43A1-AE47-043E1900EB2B}
    Canon Utilities ZoomBrowser EX-->MsiExec.exe /X{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}
    CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
    DAEMON Tools Toolbar-->C:\Program Files\DAEMON Tools Toolbar\uninst.exe
    Diaporama version 3.0.0.1-->"C:\Program Files\SoftChris\Diaporama\unins000.exe"
    DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
    DivX Content Uploader-->C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER
    DivX Converter-->C:\Program Files\DivX\ConverterUninstall.exe /CONVERTER
    DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
    DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
    DivxToDVD 0.5.2-->"C:\Program Files\vso\DivxToDVD\unins000.exe"
    DVD Shrink 3.2-->"C:\Program Files\DVD Shrink\unins000.exe"
    EasyBanner 4.0-->"C:\Program Files\EasyBanner 4\unins000.exe"
    eMule-->"C:\Program Files\eMule1\Uninstall.exe"
    Fairy Island Deluxe-->"C:\Program Files\Zylom Games\Fairy Island Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Feeding Frenzy 2 Deluxe-->"C:\Program Files\Zylom Games\Feeding Frenzy 2 Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Feeding Frenzy Deluxe-->"C:\Program Files\Zylom Games\Feeding Frenzy Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Fenêtre d'appareil photo Canon pour ZoomBrowser EX-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{A833A505-4D7A-41F5-9362-A2F8DFFE6E9B}
    Freecorder Toolbar 3.01 Application-->"C:\WINDOWS\Freecorder Toolbar\uninstall.exe" "/U:C:\Program Files\Freecorder Toolbar\Uninstall\uninstall.xml"
    Freecorder Toolbar-->C:\PROGRA~1\FREECO~2\UNWISE.EXE C:\PROGRA~1\FREECO~2\INSTALL.LOG
    Frogs in Love-->"C:\Program Files\WildGames\Frogs in Love\unins000.exe"
    Gimp 2.6.1-->"C:\Program Files\Gimp-2.0\setup\unins000.exe"
    Gold Rush - Treasure Hunt Deluxe-->"C:\Program Files\Zylom Games\Gold Rush - Treasure Hunt Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Google Earth-->MsiExec.exe /I{1E04F83B-2AB9-4301-9EF7-E86307F79C72}
    Google Toolbar for Firefox-->MsiExec.exe /X{2CCBABCB-6427-4A55-B091-49864623C43F}
    Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar4.dll"
    Hidden Wonders of the Depths Deluxe-->"C:\Program Files\Zylom Games\Hidden Wonders of the Depths Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    HijackThis 2.0.2-->"C:\Program Files\HijackThis.exe" /uninstall
    Hitman Pro-->"C:\Program Files\logiciels\Hitman Pro\unins000.exe"
    HP Photo and Imaging 1.2 - Scanjet 4570c Series-->MsiExec.exe /I{EF729AE1-4AE9-402A-AF64-5C5A8150F549}
    ILLUSION ?????? ???????-->MsiExec.exe /X{57464BB0-495D-42BD-B409-E8DB7E24AADE}
    ILLUSION ??????????-->MsiExec.exe /X{F46361A5-6E52-439B-9690-4B57376F199E}
    ILLUSION ????3-->MsiExec.exe /X{E4D02EF2-6F12-4BE9-9928-2F27DA01A915}
    Imprimante HP DeskJet 1220C-->C:\WINDOWS\ISUN040C.EXE -a -f"C:\Program Files\Hewlett-Packard\HP DeskJet 1220C Printer\Uninst.isu" -c"C:\Program Files\Hewlett-Packard\HP DeskJet 1220C Printer\HPWTVW.DLL" -u"comp.ini"
    IncrediMail-->C:\Program Files\IncrediMail\bin\ImSetup.exe /remove /addon:IncrediMail /log:IncMail.log
    Inkscape 0.46-->C:\Program Files\Inkscape\Uninstall.exe
    Interpol 2: Most Wanted-->"C:\Program Files\Interpol 2 - Most Wanted\Uninstall.exe"
    IS Package Installer-->MsiExec.exe /X{B167042A-0984-4AA6-99C0-4312C291BD85}
    ISO Recorder-->MsiExec.exe /I{0F6A7971-0F11-4A79-A0E9-133D0963A570}
    IZArc 3.81-->"C:\Program Files\IZArc\unins000.exe"
    J2SE Runtime Environment 5.0 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}
    J'ai trouvé-Le manoir hanté-->C:\program files\GALLIMARD\Le manoir hanté\unwise.exe
    Java(TM) 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
    Java(TM) 6 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160060}
    Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
    Jewel Match 2 Deluxe-->"C:\Program Files\Zylom Games\Jewel Match 2 Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    K-Lite Codec Pack 2.71 Full-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
    La boite a couleurs version 1.6.14-->"C:\Program Files\LaBoiteACouleurs\unins000.exe"
    Lecteur Windows Media 10-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
    Les Sims 2-->C:\Program Files\EA GAMES\Les Sims 2\EAUninstall.exe
    LimeWire 4.16.6-->"C:\Program Files\LimeWire\uninstall.exe"
    Liong - The Dragon Dance Deluxe-->"C:\Program Files\Zylom Games\Liong - The Dragon Dance Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Logitech Desktop Messenger-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\Setup.exe" -l0x40c UNINSTALL
    Logitech IM Video Companion-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{984F10FD-11FD-4BED-8163-92DB81E6A825}\Setup.exe" -l0x9 UNINSTALL
    Logitech ImageStudio-->MsiExec.exe /I{5A24DD7E-7B01-41AC-ADA8-F1776177A3BA}
    Logitech Print Service-->C:\PROGRA~1\Logitech\PRINTS~1\UNWISE.EXE C:\PROGRA~1\Logitech\PRINTS~1\INSTALL.LOG
    Loop12 V2-->C:\Program Files\Loop12 V2\Uninstal.exe
    Lost In Reefs-->"C:\Program Files\Incredijeux\Lost In Reefs\Uninstall.exe" "C:\Program Files\Incredijeux\Lost In Reefs\install.log"
    Luxor 2 Deluxe-->"C:\Program Files\Zylom Games\Luxor 2 Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Magic Ball-->"C:\Program Files\Magic Ball\ReflexiveArcade\unins000.exe"
    Magic Farm Deluxe-->"C:\Program Files\Zylom Games\Magic Farm Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
    MEDIAplus Démarrez Avec FF-->"C:\Program Files\InstallShield Installation Information\{AFA8DB34-6447-4FA9-9012-DFDAAE319C20}\setup.exe" -runfromtemp -l0x0009 -removeonly
    MEDIAplus Plugin-->"C:\Program Files\InstallShield Installation Information\{FC759117-A409-4939-8A50-243A867C9F35}\setup.exe" -runfromtemp -l0x0009 -removeonly
    Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
    Microsoft Office Professional Edition 2003-->MsiExec.exe /I{9011040C-6000-11D3-8CFE-0150048383C9}
    Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
    Miriel the Magical Merchant Deluxe-->"C:\Program Files\Zylom Games\Miriel the Magical Merchant Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Miss Teri Tale 2 Vote 4 me-->"C:\Program Files\Incredijeux\Miss Teri Tale 2 Vote 4 me\Uninstall.exe" "C:\Program Files\Incredijeux\Miss Teri Tale 2 Vote 4 me\install.log"
    Miss Teri Tale-->"C:\Program Files\Zylom Games\Miss Teri Tale\GameInstlr.exe" --uninstall UnInstall.log
    Mortimer Beckett and the Time Paradox-->"C:\Program Files\Zylom Games\Mortimer Beckett and the Time Paradox\GameInstlr.exe" --uninstall UnInstall.log
    Mozilla Firefox (3.0.10)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
    Namo WebEditor 5.5 Evaluation-->C:\Program Files\InstallShield Installation Information\{D73B1505-58C4-4CEA-BD95-A6A768D69A0D}\setup.exe -UninstallAll
    Nero 7 Demo-->MsiExec.exe /I{6F9C0903-4311-4619-7B30-F1E19CF11036}
    NFO viewer v 2.1-->"C:\Program Files\NFO viewer\unins000.exe"
    NOD32 Antivirus System-->C:\Program Files\Eset\Setup\setup.exe /UNINSTALL
    NOD32 FiX v1.9-->"C:\Program Files\Eset\unins000.exe"
    Notepad++-->C:\Program Files\Notepad++\uninstall.exe
    NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
    OpenOffice.org Installer 1.0-->MsiExec.exe /X{3A2AF807-9F9F-43C9-A24A-17B617238B74}
    Pinnacle Hollywood FX 4.6-->C:\WINDOWS\unvise32.exe C:\Program Files\Pinnacle\Hollywood FX 4.6\uninstal.log
    Pinnacle Studio AV/DV-->C:\PROGRA~1\Pinnacle\STUDIO~2\UNWISE.EXE C:\PROGRA~1\Pinnacle\STUDIO~2\INSTALL.LOG
    Pinnacle Studio DC10plus-->C:\PROGRA~1\Pinnacle\DC10plus\UNWISE.EXE C:\PROGRA~1\Pinnacle\DC10plus\INSTALL.LOG
    Pixia 3.3b-->"C:\Program Files\Seagrand\Pixia\unins000.exe"
    PowerDVD-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\Setup.exe" -uninstall
    Puzzle Hero Deluxe-->"C:\Program Files\Zylom Games\Puzzle Hero Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    QuickTime-->MsiExec.exe /I{95A890AA-B3B1-44B6-9C18-A8F7AB3EE7FC}
    RealArcade-->C:\Program Files\Real\RealArcade\Update\rnuninst.exe RealNetworks|RealArcade|1.2
    RealPlayer-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
    Replay Converter 2.8-->C:\WINDOWS\iun6002.exe "C:\Program Files\Replay Converter\iruninRCV.ini"
    Replay Media Catcher-->"C:\WINDOWS\Replay Media Catcher\uninstall.exe" "/U:C:\Program Files\Replay Media Catcher\Uninstall\uninstall.xml"
    SAMSUNG CDMA Modem Driver Set-->C:\WINDOWS\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe
    SAMSUNG Mobile USB Modem ^^-->C:\WINDOWS\system32\Samsung_USB_Drivers\4\SSVDUninstall.exe
    SAMSUNG Mobile USB Modem 1.0 Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe
    SAMSUNG Mobile USB Modem Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe
    Samsung PC Studio 3 USB Driver Installer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}\setup.exe" -l0x40c -removeonly
    Samsung PC Studio-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C4A4722E-79F9-417C-BD72-8D359A090C97}\setup.exe" -l0x40c -removeonly
    Samsung Samples Installer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7AC15160-A49B-4A89-B181-D4619C025FFF}\setup.exe" -l0x40c -removeonly
    Sandlot Games Client Services 1.2.2-->"C:\Program Files\Fichiers communs\Sandlot Shared\unins000.exe"
    SetupPPUpdater-->C:\PROGRA~1\PESTPA~1\UNWISE.EXE C:\PROGRA~1\PESTPA~1\install.log
    Shareaza version 2.2.5.0-->"C:\Program Files\Shareaza\Uninstall\unins000.exe"
    Shockwave-->C:\WINDOWS\system32\Macromed\SHOCKW~2\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~2\Install.log
    Singles2-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F4851D03-553C-4ACE-ADBD-CA6BE8451072}\setup.exe" -l0x40c -removeonly
    SKIP-BO Castaway Caper(TM)-->"C:\Program Files\Zylom Games\SKIP-BO Castaway Caper(TM)\GameInstlr.exe" --uninstall UnInstall.log
    Skype™ 3.6-->MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}
    SLD Codec Pack-->C:\Program Files\SLD Codec Pack\uninstall.exe
    Sonic UDF Reader-->MsiExec.exe /I{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
    Sony Picture Utility-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D5068583-D569-468B-9755-5FBF5848F46F}\setup.exe" -l0x40c /removeonly uninstall -removeonly
    Sony USB Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5C29CB8B-AC1E-4114-8D68-9CD080140D4A}\setup.exe" -l0x40c UNINSTALL -removeonly
    SoulSeek Client 157 test 8-->"C:\Program Files\Soulseek-Test\uninstall.exe"
    SoundMAX-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\Setup.exe"
    Spybot - Search & Destroy 1.5.2.20-->"C:\WINDOWS\unins000.exe"
    Spybot - Search & Destroy-->"C:\Program Files\logiciels\Spybot - Search & Destroy\unins000.exe"
    Spyware and Adware Removal 3.0i-->C:\Program Files\logiciels\Spyware & Adware Removal\uninst.exe
    SpywareBlaster v3.5.1-->"C:\Program Files\SpywareBlaster\unins000.exe"
    Stellar Phoenix (FAT & NTFS) 2.1-->"C:\Program Files\Stellar Phoenix FAT & NTFS\unins000.exe"
    Stellar Phoenix NTFS 2.2-->"C:\Program Files\Stellar Phoenix NTFS\unins000.exe"
    Studio 8-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{53EF6570-21A4-47ED-A40A-E6470A5677A3}\Setup.exe" -l0x40c UNINSTALL -c
    Studio Content CD-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0700\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4C643986-DE3C-4737-8472-CCEC36CCC267}\Setup.exe" -l0x40c
    Super Collapse! Puzzle Gallery 3 Deluxe-->"C:\Program Files\Zylom Games\Super Collapse! Puzzle Gallery 3 Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Super Collapse! Puzzle Gallery 4-->"C:\Program Files\Zylom Games\Super Collapse! Puzzle Gallery 4\GameInstlr.exe" --uninstall UnInstall.log
    SuperCopier-->"C:\Program Files\SuperCopier\SCUninst.exe"
    SuperScan 3.0-->C:\Program Files\SuperScan\Uninstal.exe
    SweetIM for Messenger 2.6-->MsiExec.exe /X{C359507C-30B1-48A6-BD9B-C7B1CC3B06D7}
    SweetIM Toolbar for Internet Explorer 3.3-->MsiExec.exe /X{266C7330-C0F4-49E5-8F20-A56F9F822875}
    SYSTRAN Premium 5.0-->MsiExec.exe /I{53595300-0624-0001-3530-007072656D69}
    The Mystery of the Crystal Portal Deluxe-->"C:\Program Files\Zylom Games\The Mystery of the Crystal Portal Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Treasure Island-->"C:\Program Files\Incredijeux\Treasure Island\Uninstall.exe" "C:\Program Files\Incredijeux\Treasure Island\install.log"
    Universalis 9-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88872E86-59A5-4213-A609-FDCFA4D9BEA6}\setup.exe"
    VC 9.0 Runtime-->MsiExec.exe /I{02E89EFC-7B07-4D5A-AA03-9EC0902914EE}
    WampServer 2.0-->"c:\wamp\unins000.exe"
    Winamp (remove only)-->"C:\Program Files\Winamp\UninstWA.exe"
    Windows Genuine Advantage v1.3.0254.0-->MsiExec.exe /I{63569CE9-FA00-469C-AF5C-E5D4D93ACF91}
    Windows Live Messenger-->MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411}
    Windows Live Sign-in Assistant-->MsiExec.exe /I{49672EC2-171B-47B4-8CE7-50D7806360D7}
    Windows Media Format Runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
    WinISO 5.3-->"C:\Program Files\WinISO\unins000.exe"
    Yahoo! Toolbar-->C:\PROGRA~1\Yahoo!\Common\unyt.exe
    Yahtzee Texas Hold'em-->"C:\Program Files\Zylom Games\Yahtzee Texas Hold'em\GameInstlr.exe" --uninstall UnInstall.log
    ZoneAlarm Pro-->C:\Program Files\Zone Labs\ZoneAlarm\zauninst.exe
    Zuma Deluxe! 1.0-->C:\WINDOWS\iun6002.exe "C:\irunin.ini"
    Zuma Deluxe-->"C:\Program Files\Zylom Games\Zuma Deluxe\GameInstlr.exe" --uninstall UnInstall.log

    =====HijackThis Backups=====

    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') [2008-06-27]
    O9 - Extra button: (no name) - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - (no file) [2008-06-27]
    R3 - URLSearchHook: (no name) - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - (no file) [2008-06-27]
    O3 - Toolbar: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file) [2008-06-27]
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') [2008-06-27]
    O3 - Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file) [2008-06-27]
    R3 - URLSearchHook: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file) [2008-06-27]
    O3 - Toolbar: (no name) - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - (no file) [2008-06-27]
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') [2008-06-27]
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') [2008-06-27]
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com [2008-06-27]
    O2 - BHO: (no name) - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - (no file) [2008-06-27]

    ======Security center information======

    AV: NOD32 Antivirus System 2.50
    FW: ZoneAlarm Pro Firewall

    ======System event log======

    Computer Name: XPSP2-3A1A13B1A
    Event Code: 7000
    Message: Le service avast! Antivirus n'a pas pu démarrer en raison de l'erreur :
    Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle.


    Record Number: 92452
    Source Name: Service Control Manager
    Time Written: 20090328081116.000000+060
    Event Type: error
    User:

    Computer Name: XPSP2-3A1A13B1A
    Event Code: 7009
    Message: Délai (30000 millisecondes) d'attente pour une connexion du service avast! Antivirus.

    Record Number: 92451
    Source Name: Service Control Manager
    Time Written: 20090328081116.000000+060
    Event Type: error
    User:

    Computer Name: XPSP2-3A1A13B1A
    Event Code: 1003
    Message: Votre ordinateur n'a pas pu renouveler son adresse à partir du réseau (à partir
    du serveur DHCP) pour la carte réseau dont l'adresse réseau est 000102030405. Il s'est
    produit l'erreur suivante :
    Le délai de temporisation de sémaphore a expiré.
    .
    Votre ordinateur va continuer à essayer d'obtenir sa propre adresse auprès du
    serveur d'adresse réseau (DHCP).

    Record Number: 92440
    Source Name: Dhcp
    Time Written: 20090327200722.000000+060
    Event Type: warning
    User:

    Computer Name: XPSP2-3A1A13B1A
    Event Code: 7000
    Message: Le service avast! Antivirus n'a pas pu démarrer en raison de l'erreur :
    Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle.


    Record Number: 92424
    Source Name: Service Control Manager
    Time Written: 20090327150855.000000+060
    Event Type: error
    User:

    Computer Name: XPSP2-3A1A13B1A
    Event Code: 7009
    Message: Délai (30000 millisecondes) d'attente pour une connexion du service avast! Antivirus.

    Record Number: 92423
    Source Name:
    m
    0
    l
    6 Mai 2009 14:52:19

    J'ai l'impression que "info.txt" ne s'est pas collé complètement.
    Je le réenvoie :

    info.txt logfile of random's system information tool 1.06 2009-05-06 14:30:03

    ======Uninstall list======

    -->C:\Program Files\DivX\ConverterUninstall.exe /CONVERTER
    -->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
    -->C:\Program Files\Nero\Nero 7\nero\uninstall\UNNERO.exe /UNINSTALL
    -->C:\WINDOWS\ISUN040C.EXE -a -f"C:\Program Files\Hewlett-Packard\HP DeskJet 1220C Toolbox\Uninst.isu" -c"C:\Program Files\Hewlett-Packard\HP DeskJet 1220C Toolbox\hpwioi.dll" -i"tbxinst.ini" -h"HPZIOU00.DLL"
    -->C:\WINDOWS\system32\\MSIEXEC.EXE /x {1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
    -->C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL
    -->C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL
    -->C:\WINDOWS\UNNeroVision.exe /UNINSTALL
    -->C:\WINDOWS\UNRecode.exe /UNINSTALL
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9D08670E-A696-41DD-B835-42760509CE08}\setup.exe" -l0x9
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{28B97CAB-828F-49D8-A30A-675476F9BA92}\setup.exe" -l0x40c /cont -removeonly
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4E7DC12A-3597-4A94-9429-F6C6987361B1}\setup.exe" -l0x40c -removeonly
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6813C983-427E-4511-8456-E98FCAA1A125}\setup.exe" -l0x40c -removeonly
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7DADB304-AF20-48C3-A780-4B4133A08817}\setup.exe" -l0x40c -removeonly
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9225EABF-4457-403B-A82B-91614C9DDDF7}\setup.exe" -l0x40c -removeonly
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9C423CF6-2DAA-4A37-94B8-59D7ECC7DB13}\setup.exe" -l0x40c -removeonly
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{ACE66099-E18E-4037-83C8-9D182E5B9FA8}\setup.exe" -l0x40c -removeonly
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B34B6E67-FCDD-4E03-8742-B5701427FAFB}\setup.exe" -l0x40c -removeonly
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C9EFF51A-C925-4F1A-9DEB-DB5F970DE983}\setup.exe" -l0x40c -removeonly
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E9CCEA28-3608-4078-8A07-997646E1A357}\setup.exe" -l0x40c -removeonly
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FA6CC4B4-7741-4F8D-8E81-15C4BAB9869B}\setup.exe" -l0x40c -removeonly
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD7FF74D-0AB5-48D6-929C-7E93A5162521}\setup.exe" -l0x40c -removeonly
    -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
    Ad-Aware SE Personal-->C:\PROGRA~1\Lavasoft\AD-AWA~1\UNWISE.EXE C:\PROGRA~1\Lavasoft\AD-AWA~1\INSTALL.LOG
    Adobe Acrobat 5.0-->C:\WINDOWS\ISUNINST.EXE -f"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.dll"
    Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)-->MsiExec.exe /X{6846389C-BAC0-4374-808E-B120F86AF5D7}
    Adobe Bridge 1.0-->MsiExec.exe /I{B74D4E10-6884-0000-0000-000000000101}
    Adobe Common File Installer-->MsiExec.exe /I{8EDBA74D-0686-4C99-BFDD-F894678E5101}
    Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
    Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
    Adobe Help Center 1.0-->MsiExec.exe /I{E9787678-119F-4D52-B551-6739B2B22101}
    Adobe Photoshop CS2-->msiexec /I {236BB7C4-4419-42FD-040C-1E257A25E34D}
    Adobe Photoshop Elements 2.0-->C:\WINDOWS\ISUN040C.EXE -f"C:\Program Files\Adobe\Photoshop Elements 2\Uninst.isu" -c"C:\Program Files\Adobe\Photoshop Elements 2\Uninst.dll"
    Adobe Reader 8.1.2-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A81200000003}
    Adobe Shockwave Player-->C:\WINDOWS\system32\Adobe\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Adobe\SHOCKW~1\Install.log
    Adobe Stock Photos 1.0-->MsiExec.exe /I{786C5747-0C40-4930-9AFE-113BCE553101}
    Adobe SVG Viewer 3.0-->C:\Program Files\Fichiers communs\Adobe\SVG Viewer 3.0\Uninstall\Winstall.exe -u -fC:\Program Files\Fichiers communs\Adobe\SVG Viewer 3.0\Uninstall\Install.log
    Adobe® Photoshop® Album Starter Edition 3.2-->MsiExec.exe /I{A654A805-41D9-40C7-AA46-4AF04F044D61}
    AIDA32 v3.93-->"C:\Program Files\AIDA32 - Enterprise System Information\unins000.exe"
    Ancient Secrets Deluxe-->"C:\Program Files\Zylom Games\Ancient Secrets Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Annie's Millions Deluxe-->"C:\Program Files\Zylom Games\Annie's Millions Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Apple Software Update-->MsiExec.exe /I{74EC78BC-B379-4E29-9006-8F161DCAABA6}
    Applian FLV Player-->"C:\WINDOWS\Applian FLV Player\uninstall.exe" "/U:C:\Program Files\FLV Player\Uninstall\uninstall.xml"
    Ares 2.0.9-->"C:\Program Files\Ares\uninstall.exe"
    AsusUpdate-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{587178E7-B1DF-494E-9838-FA4DD36E873C}\Setup.exe" -l0x40c
    Barre d'outils MSN-->C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr-be\mtbs.exe c
    BeTrapped!-->"C:\Program Files\Incredijeux\BeTrapped!\Uninstall.exe" "C:\Program Files\Incredijeux\BeTrapped!\install.log"
    Big Fish Games Client-->C:\Program Files\bfgclient\Uninstall.exe
    BitLord 1.1-->C:\Program Files\BitLord\uninst.exe
    CamStudio 2.0 Fr-->"C:\Program Files\CamStudio\unins000.exe"
    Canon EOS Kiss REBEL 300D Pilote WIA -->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{31A57C3E-30DD-421F-B5C7-974DACB0D05F}
    Canon Internet Library for ZoomBrowser EX-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{9E75AF24-815C-4BD1-9A05-F96866CC6005}
    Canon PhotoRecord-->C:\WINDOWS\IsUn040c.exe -fC:\PROGRA~1\Canon\PhotoRecord\Uninst.isu -c"C:\PROGRA~1\Canon\PhotoRecord\Program\uninstdll.dll"
    Canon Utilities File Viewer Utility 1.3-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{74344F10-34CA-480E-BD02-B3F4FA692BFA}
    Canon Utilities PhotoStitch 3.1-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{F11A403B-0DE9-4953-B790-7A2F014FBB2B}
    Canon Utilities RemoteCapture 2.7-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{EF91B23E-3819-43A1-AE47-043E1900EB2B}
    Canon Utilities ZoomBrowser EX-->MsiExec.exe /X{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}
    CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
    DAEMON Tools Toolbar-->C:\Program Files\DAEMON Tools Toolbar\uninst.exe
    Diaporama version 3.0.0.1-->"C:\Program Files\SoftChris\Diaporama\unins000.exe"
    DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
    DivX Content Uploader-->C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER
    DivX Converter-->C:\Program Files\DivX\ConverterUninstall.exe /CONVERTER
    DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
    DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
    DivxToDVD 0.5.2-->"C:\Program Files\vso\DivxToDVD\unins000.exe"
    DVD Shrink 3.2-->"C:\Program Files\DVD Shrink\unins000.exe"
    EasyBanner 4.0-->"C:\Program Files\EasyBanner 4\unins000.exe"
    eMule-->"C:\Program Files\eMule1\Uninstall.exe"
    Fairy Island Deluxe-->"C:\Program Files\Zylom Games\Fairy Island Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Feeding Frenzy 2 Deluxe-->"C:\Program Files\Zylom Games\Feeding Frenzy 2 Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Feeding Frenzy Deluxe-->"C:\Program Files\Zylom Games\Feeding Frenzy Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Fenêtre d'appareil photo Canon pour ZoomBrowser EX-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{A833A505-4D7A-41F5-9362-A2F8DFFE6E9B}
    Freecorder Toolbar 3.01 Application-->"C:\WINDOWS\Freecorder Toolbar\uninstall.exe" "/U:C:\Program Files\Freecorder Toolbar\Uninstall\uninstall.xml"
    Freecorder Toolbar-->C:\PROGRA~1\FREECO~2\UNWISE.EXE C:\PROGRA~1\FREECO~2\INSTALL.LOG
    Frogs in Love-->"C:\Program Files\WildGames\Frogs in Love\unins000.exe"
    Gimp 2.6.1-->"C:\Program Files\Gimp-2.0\setup\unins000.exe"
    Gold Rush - Treasure Hunt Deluxe-->"C:\Program Files\Zylom Games\Gold Rush - Treasure Hunt Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Google Earth-->MsiExec.exe /I{1E04F83B-2AB9-4301-9EF7-E86307F79C72}
    Google Toolbar for Firefox-->MsiExec.exe /X{2CCBABCB-6427-4A55-B091-49864623C43F}
    Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar4.dll"
    Hidden Wonders of the Depths Deluxe-->"C:\Program Files\Zylom Games\Hidden Wonders of the Depths Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    HijackThis 2.0.2-->"C:\Program Files\HijackThis.exe" /uninstall
    Hitman Pro-->"C:\Program Files\logiciels\Hitman Pro\unins000.exe"
    HP Photo and Imaging 1.2 - Scanjet 4570c Series-->MsiExec.exe /I{EF729AE1-4AE9-402A-AF64-5C5A8150F549}
    ILLUSION ?????? ???????-->MsiExec.exe /X{57464BB0-495D-42BD-B409-E8DB7E24AADE}
    ILLUSION ??????????-->MsiExec.exe /X{F46361A5-6E52-439B-9690-4B57376F199E}
    ILLUSION ????3-->MsiExec.exe /X{E4D02EF2-6F12-4BE9-9928-2F27DA01A915}
    Imprimante HP DeskJet 1220C-->C:\WINDOWS\ISUN040C.EXE -a -f"C:\Program Files\Hewlett-Packard\HP DeskJet 1220C Printer\Uninst.isu" -c"C:\Program Files\Hewlett-Packard\HP DeskJet 1220C Printer\HPWTVW.DLL" -u"comp.ini"
    IncrediMail-->C:\Program Files\IncrediMail\bin\ImSetup.exe /remove /addon:IncrediMail /log:IncMail.log
    Inkscape 0.46-->C:\Program Files\Inkscape\Uninstall.exe
    Interpol 2: Most Wanted-->"C:\Program Files\Interpol 2 - Most Wanted\Uninstall.exe"
    IS Package Installer-->MsiExec.exe /X{B167042A-0984-4AA6-99C0-4312C291BD85}
    ISO Recorder-->MsiExec.exe /I{0F6A7971-0F11-4A79-A0E9-133D0963A570}
    IZArc 3.81-->"C:\Program Files\IZArc\unins000.exe"
    J2SE Runtime Environment 5.0 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}
    J'ai trouvé-Le manoir hanté-->C:\program files\GALLIMARD\Le manoir hanté\unwise.exe
    Java(TM) 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
    Java(TM) 6 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160060}
    Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
    Jewel Match 2 Deluxe-->"C:\Program Files\Zylom Games\Jewel Match 2 Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    K-Lite Codec Pack 2.71 Full-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
    La boite a couleurs version 1.6.14-->"C:\Program Files\LaBoiteACouleurs\unins000.exe"
    Lecteur Windows Media 10-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
    Les Sims 2-->C:\Program Files\EA GAMES\Les Sims 2\EAUninstall.exe
    LimeWire 4.16.6-->"C:\Program Files\LimeWire\uninstall.exe"
    Liong - The Dragon Dance Deluxe-->"C:\Program Files\Zylom Games\Liong - The Dragon Dance Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Logitech Desktop Messenger-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\Setup.exe" -l0x40c UNINSTALL
    Logitech IM Video Companion-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{984F10FD-11FD-4BED-8163-92DB81E6A825}\Setup.exe" -l0x9 UNINSTALL
    Logitech ImageStudio-->MsiExec.exe /I{5A24DD7E-7B01-41AC-ADA8-F1776177A3BA}
    Logitech Print Service-->C:\PROGRA~1\Logitech\PRINTS~1\UNWISE.EXE C:\PROGRA~1\Logitech\PRINTS~1\INSTALL.LOG
    Loop12 V2-->C:\Program Files\Loop12 V2\Uninstal.exe
    Lost In Reefs-->"C:\Program Files\Incredijeux\Lost In Reefs\Uninstall.exe" "C:\Program Files\Incredijeux\Lost In Reefs\install.log"
    Luxor 2 Deluxe-->"C:\Program Files\Zylom Games\Luxor 2 Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Magic Ball-->"C:\Program Files\Magic Ball\ReflexiveArcade\unins000.exe"
    Magic Farm Deluxe-->"C:\Program Files\Zylom Games\Magic Farm Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
    MEDIAplus Démarrez Avec FF-->"C:\Program Files\InstallShield Installation Information\{AFA8DB34-6447-4FA9-9012-DFDAAE319C20}\setup.exe" -runfromtemp -l0x0009 -removeonly
    MEDIAplus Plugin-->"C:\Program Files\InstallShield Installation Information\{FC759117-A409-4939-8A50-243A867C9F35}\setup.exe" -runfromtemp -l0x0009 -removeonly
    Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
    Microsoft Office Professional Edition 2003-->MsiExec.exe /I{9011040C-6000-11D3-8CFE-0150048383C9}
    Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
    Miriel the Magical Merchant Deluxe-->"C:\Program Files\Zylom Games\Miriel the Magical Merchant Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Miss Teri Tale 2 Vote 4 me-->"C:\Program Files\Incredijeux\Miss Teri Tale 2 Vote 4 me\Uninstall.exe" "C:\Program Files\Incredijeux\Miss Teri Tale 2 Vote 4 me\install.log"
    Miss Teri Tale-->"C:\Program Files\Zylom Games\Miss Teri Tale\GameInstlr.exe" --uninstall UnInstall.log
    Mortimer Beckett and the Time Paradox-->"C:\Program Files\Zylom Games\Mortimer Beckett and the Time Paradox\GameInstlr.exe" --uninstall UnInstall.log
    Mozilla Firefox (3.0.10)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
    Namo WebEditor 5.5 Evaluation-->C:\Program Files\InstallShield Installation Information\{D73B1505-58C4-4CEA-BD95-A6A768D69A0D}\setup.exe -UninstallAll
    Nero 7 Demo-->MsiExec.exe /I{6F9C0903-4311-4619-7B30-F1E19CF11036}
    NFO viewer v 2.1-->"C:\Program Files\NFO viewer\unins000.exe"
    NOD32 Antivirus System-->C:\Program Files\Eset\Setup\setup.exe /UNINSTALL
    NOD32 FiX v1.9-->"C:\Program Files\Eset\unins000.exe"
    Notepad++-->C:\Program Files\Notepad++\uninstall.exe
    NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
    OpenOffice.org Installer 1.0-->MsiExec.exe /X{3A2AF807-9F9F-43C9-A24A-17B617238B74}
    Pinnacle Hollywood FX 4.6-->C:\WINDOWS\unvise32.exe C:\Program Files\Pinnacle\Hollywood FX 4.6\uninstal.log
    Pinnacle Studio AV/DV-->C:\PROGRA~1\Pinnacle\STUDIO~2\UNWISE.EXE C:\PROGRA~1\Pinnacle\STUDIO~2\INSTALL.LOG
    Pinnacle Studio DC10plus-->C:\PROGRA~1\Pinnacle\DC10plus\UNWISE.EXE C:\PROGRA~1\Pinnacle\DC10plus\INSTALL.LOG
    Pixia 3.3b-->"C:\Program Files\Seagrand\Pixia\unins000.exe"
    PowerDVD-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\Setup.exe" -uninstall
    Puzzle Hero Deluxe-->"C:\Program Files\Zylom Games\Puzzle Hero Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    QuickTime-->MsiExec.exe /I{95A890AA-B3B1-44B6-9C18-A8F7AB3EE7FC}
    RealArcade-->C:\Program Files\Real\RealArcade\Update\rnuninst.exe RealNetworks|RealArcade|1.2
    RealPlayer-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
    Replay Converter 2.8-->C:\WINDOWS\iun6002.exe "C:\Program Files\Replay Converter\iruninRCV.ini"
    Replay Media Catcher-->"C:\WINDOWS\Replay Media Catcher\uninstall.exe" "/U:C:\Program Files\Replay Media Catcher\Uninstall\uninstall.xml"
    SAMSUNG CDMA Modem Driver Set-->C:\WINDOWS\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe
    SAMSUNG Mobile USB Modem ^^-->C:\WINDOWS\system32\Samsung_USB_Drivers\4\SSVDUninstall.exe
    SAMSUNG Mobile USB Modem 1.0 Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe
    SAMSUNG Mobile USB Modem Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe
    Samsung PC Studio 3 USB Driver Installer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}\setup.exe" -l0x40c -removeonly
    Samsung PC Studio-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C4A4722E-79F9-417C-BD72-8D359A090C97}\setup.exe" -l0x40c -removeonly
    Samsung Samples Installer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7AC15160-A49B-4A89-B181-D4619C025FFF}\setup.exe" -l0x40c -removeonly
    Sandlot Games Client Services 1.2.2-->"C:\Program Files\Fichiers communs\Sandlot Shared\unins000.exe"
    SetupPPUpdater-->C:\PROGRA~1\PESTPA~1\UNWISE.EXE C:\PROGRA~1\PESTPA~1\install.log
    Shareaza version 2.2.5.0-->"C:\Program Files\Shareaza\Uninstall\unins000.exe"
    Shockwave-->C:\WINDOWS\system32\Macromed\SHOCKW~2\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~2\Install.log
    Singles2-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F4851D03-553C-4ACE-ADBD-CA6BE8451072}\setup.exe" -l0x40c -removeonly
    SKIP-BO Castaway Caper(TM)-->"C:\Program Files\Zylom Games\SKIP-BO Castaway Caper(TM)\GameInstlr.exe" --uninstall UnInstall.log
    Skype™ 3.6-->MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}
    SLD Codec Pack-->C:\Program Files\SLD Codec Pack\uninstall.exe
    Sonic UDF Reader-->MsiExec.exe /I{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
    Sony Picture Utility-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D5068583-D569-468B-9755-5FBF5848F46F}\setup.exe" -l0x40c /removeonly uninstall -removeonly
    Sony USB Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5C29CB8B-AC1E-4114-8D68-9CD080140D4A}\setup.exe" -l0x40c UNINSTALL -removeonly
    SoulSeek Client 157 test 8-->"C:\Program Files\Soulseek-Test\uninstall.exe"
    SoundMAX-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\Setup.exe"
    Spybot - Search & Destroy 1.5.2.20-->"C:\WINDOWS\unins000.exe"
    Spybot - Search & Destroy-->"C:\Program Files\logiciels\Spybot - Search & Destroy\unins000.exe"
    Spyware and Adware Removal 3.0i-->C:\Program Files\logiciels\Spyware & Adware Removal\uninst.exe
    SpywareBlaster v3.5.1-->"C:\Program Files\SpywareBlaster\unins000.exe"
    Stellar Phoenix (FAT & NTFS) 2.1-->"C:\Program Files\Stellar Phoenix FAT & NTFS\unins000.exe"
    Stellar Phoenix NTFS 2.2-->"C:\Program Files\Stellar Phoenix NTFS\unins000.exe"
    Studio 8-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{53EF6570-21A4-47ED-A40A-E6470A5677A3}\Setup.exe" -l0x40c UNINSTALL -c
    Studio Content CD-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0700\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4C643986-DE3C-4737-8472-CCEC36CCC267}\Setup.exe" -l0x40c
    Super Collapse! Puzzle Gallery 3 Deluxe-->"C:\Program Files\Zylom Games\Super Collapse! Puzzle Gallery 3 Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Super Collapse! Puzzle Gallery 4-->"C:\Program Files\Zylom Games\Super Collapse! Puzzle Gallery 4\GameInstlr.exe" --uninstall UnInstall.log
    SuperCopier-->"C:\Program Files\SuperCopier\SCUninst.exe"
    SuperScan 3.0-->C:\Program Files\SuperScan\Uninstal.exe
    SweetIM for Messenger 2.6-->MsiExec.exe /X{C359507C-30B1-48A6-BD9B-C7B1CC3B06D7}
    SweetIM Toolbar for Internet Explorer 3.3-->MsiExec.exe /X{266C7330-C0F4-49E5-8F20-A56F9F822875}
    SYSTRAN Premium 5.0-->MsiExec.exe /I{53595300-0624-0001-3530-007072656D69}
    The Mystery of the Crystal Portal Deluxe-->"C:\Program Files\Zylom Games\The Mystery of the Crystal Portal Deluxe\GameInstlr.exe" --uninstall UnInstall.log
    Treasure Island-->"C:\Program Files\Incredijeux\Treasure Island\Uninstall.exe" "C:\Program Files\Incredijeux\Treasure Island\install.log"
    Universalis 9-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88872E86-59A5-4213-A609-FDCFA4D9BEA6}\setup.exe"
    VC 9.0 Runtime-->MsiExec.exe /I{02E89EFC-7B07-4D5A-AA03-9EC0902914EE}
    WampServer 2.0-->"c:\wamp\unins000.exe"
    Winamp (remove only)-->"C:\Program Files\Winamp\UninstWA.exe"
    Windows Genuine Advantage v1.3.0254.0-->MsiExec.exe /I{63569CE9-FA00-469C-AF5C-E5D4D93ACF91}
    Windows Live Messenger-->MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411}
    Windows Live Sign-in Assistant-->MsiExec.exe /I{49672EC2-171B-47B4-8CE7-50D7806360D7}
    Windows Media Format Runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
    WinISO 5.3-->"C:\Program Files\WinISO\unins000.exe"
    Yahoo! Toolbar-->C:\PROGRA~1\Yahoo!\Common\unyt.exe
    Yahtzee Texas Hold'em-->"C:\Program Files\Zylom Games\Yahtzee Texas Hold'em\GameInstlr.exe" --uninstall UnInstall.log
    ZoneAlarm Pro-->C:\Program Files\Zone Labs\ZoneAlarm\zauninst.exe
    Zuma Deluxe! 1.0-->C:\WINDOWS\iun6002.exe "C:\irunin.ini"
    Zuma Deluxe-->"C:\Program Files\Zylom Games\Zuma Deluxe\GameInstlr.exe" --uninstall UnInstall.log

    =====HijackThis Backups=====

    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') [2008-06-27]
    O9 - Extra button: (no name) - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - (no file) [2008-06-27]
    R3 - URLSearchHook: (no name) - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - (no file) [2008-06-27]
    O3 - Toolbar: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file) [2008-06-27]
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') [2008-06-27]
    O3 - Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file) [2008-06-27]
    R3 - URLSearchHook: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file) [2008-06-27]
    O3 - Toolbar: (no name) - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - (no file) [2008-06-27]
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') [2008-06-27]
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') [2008-06-27]
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com [2008-06-27]
    O2 - BHO: (no name) - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - (no file) [2008-06-27]

    ======Security center information======

    AV: NOD32 Antivirus System 2.50
    FW: ZoneAlarm Pro Firewall

    ======System event log======

    Computer Name: XPSP2-3A1A13B1A
    Event Code: 7000
    Message: Le service avast! Antivirus n'a pas pu démarrer en raison de l'erreur :
    Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle.


    Record Number: 92452
    Source Name: Service Control Manager
    Time Written: 20090328081116.000000+060
    Event Type: error
    User:

    Computer Name: XPSP2-3A1A13B1A
    Event Code: 7009
    Message: Délai (30000 millisecondes) d'attente pour une connexion du service avast! Antivirus.

    Record Number: 92451
    Source Name: Service Control Manager
    Time Written: 20090328081116.000000+060
    Event Type: error
    User:

    Computer Name: XPSP2-3A1A13B1A
    Event Code: 1003
    Message: Votre ordinateur n'a pas pu renouveler son adresse à partir du réseau (à partir
    du serveur DHCP) pour la carte réseau dont l'adresse réseau est 000102030405. Il s'est
    produit l'erreur suivante :
    Le délai de temporisation de sémaphore a expiré.
    .
    Votre ordinateur va continuer à essayer d'obtenir sa propre adresse auprès du
    serveur d'adresse réseau (DHCP).

    Record Number: 92440
    Source Name: Dhcp
    Time Written: 20090327200722.000000+060
    Event Type: warning
    User:

    Computer Name: XPSP2-3A1A13B1A
    Event Code: 7000
    Message: Le service avast! Antivirus n'a pas pu démarrer en raison de l'erreur :
    Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle.


    Record Number: 92424
    Source Name: Service Control Manager
    Time Written: 20090327150855.000000+060
    Event Type: error
    User:

    Computer Name: XPSP2-3A1A13B1A
    Event Code: 7009
    Message: Délai (30000 millisecondes) d'attente pour une connexion du service avast! Antivirus.

    Record Number: 92423
    Source Name: Service Control Manager
    Time Written: 20090327150854.000000+060
    Event Type: error
    User:

    =====Application event log=====

    Computer Name: XPSP2-3A1A13B1A
    Event Code: 1517
    Message: Windows a sauvegardé le Registre utilisateur XPSP2-3A1A13B1A\Admin alors qu'une application ou un service utilisait toujours le Registre pendant la fermeture de la session. La mémoire utilisée par le Registre de l'utilisateur n'a pas été libérée. le Registre sera déchargé lorsqu'il ne sera plus utilisé.


    Cela est souvent causé par des services s'exécutant en tant que compte d'utilisateur, essayez de configurer les services pour s'exécuter dans le compte service réseau ou service local.

    Record Number: 8953
    Source Name: Userenv
    Time Written: 20090408130823.000000+120
    Event Type: warning
    User: AUTORITE NT\SYSTEM

    Computer Name: XPSP2-3A1A13B1A
    Event Code: 1524
    Message: Windows ne peut pas décharger vos classes fichier de Registre - il est en cours d'utilisation par d'autres applications ou services. Le fichier sera déchargé quand il ne sera plus utilisé.



    Record Number: 8952
    Source Name: Userenv
    Time Written: 20090408130628.000000+120
    Event Type: warning
    User: XPSP2-3A1A13B1A\Admin

    Computer Name: XPSP2-3A1A13B1A
    Event Code: 12001
    Message: The Messenger Sharing USN Journal Reader service started successfully.

    Record Number: 8911
    Source Name: usnjsvc
    Time Written: 20090407122738.000000+120
    Event Type:
    User:

    Computer Name: XPSP2-3A1A13B1A
    Event Code: 1517
    Message: Windows a sauvegardé le Registre utilisateur XPSP2-3A1A13B1A\Admin alors qu'une application ou un service utilisait toujours le Registre pendant la fermeture de la session. La mémoire utilisée par le Registre de l'utilisateur n'a pas été libérée. le Registre sera déchargé lorsqu'il ne sera plus utilisé.


    Cela est souvent causé par des services s'exécutant en tant que compte d'utilisateur, essayez de configurer les services pour s'exécuter dans le compte service réseau ou service local.

    Record Number: 8907
    Source Name: Userenv
    Time Written: 20090407121826.000000+120
    Event Type: warning
    User: AUTORITE NT\SYSTEM

    Computer Name: XPSP2-3A1A13B1A
    Event Code: 1524
    Message: Windows ne peut pas décharger vos classes fichier de Registre - il est en cours d'utilisation par d'autres applications ou services. Le fichier sera déchargé quand il ne sera plus utilisé.



    Record Number: 8906
    Source Name: Userenv
    Time Written: 20090407121626.000000+120
    Event Type: warning
    User: XPSP2-3A1A13B1A\Admin

    ======Environment variables======

    "ComSpec"=%SystemRoot%\system32\cmd.exe
    "Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Program Files\QuickTime\QTSystem;C:\Program Files\Fichiers communs\Adobe\AGL
    "windir"=%SystemRoot%
    "FP_NO_HOST_CHECK"=NO
    "OS"=Windows_NT
    "PROCESSOR_ARCHITECTURE"=x86
    "PROCESSOR_LEVEL"=6
    "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 10 Stepping 0, AuthenticAMD
    "PROCESSOR_REVISION"=0a00
    "NUMBER_OF_PROCESSORS"=1
    "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
    "TEMP"=%SystemRoot%\TEMP
    "TMP"=%SystemRoot%\TEMP
    "CLASSPATH"=.;C:\Program Files\Java\jre1.5.0_06\lib\ext\QTJava.zip
    "QTJAVA"=C:\Program Files\Java\jre1.5.0_06\lib\ext\QTJava.zip
    "tvdumpflags"=8

    -----------------EOF-----------------
    m
    0
    l
    a c 267 8 Sécurité
    6 Mai 2009 16:58:22

  • Fais un scan en ligne ici : http://webscanner.kaspersky.fr/ (Avec Internet Explorer)

  • En bas à droite, clique sur Démarrer Online-scanner.

  • Dans la nouvelle fenêtre qui s'affiche, clique sur J'accepte.

  • Accepte les Contrôles ActiveX.

  • Choisis Poste de travail pour le scan.

  • Celui-ci terminé, sauvegarde (Choisis fichier texte) et poste le rapport.

  • Pour t'aider à utiliser le scan en ligne : Tutoriel

    Note : Si tu reçois le message La licence de Kaspersky On-line Scanner est périmée, va dans Ajout/Suppression de programmes puis désinstalle On-Line Scanner, reconnecte-toi sur le site de Kaspersky pour retenter le scan en ligne.
    m
    0
    l
    6 Mai 2009 22:05:50

    Rebonjour, Destrio5
    Et encore merci pour ton aide.
    Voici le rapport :

    -------------------------------------------------------------------------------
    KASPERSKY ON-LINE SCANNER REPORT
    Wednesday, May 06, 2009 9:41:19 PM
    Système d'exploitation : Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
    Kaspersky On-line Scanner version : 5.0.84.2
    Dernière mise à jour de la base antivirus Kaspersky : 6/05/2009
    Enregistrements dans la base antivirus Kaspersky : 1935504
    -------------------------------------------------------------------------------

    Paramètres d'analyse:
    Analyser avec la base antivirus suivante: standard
    Analyser les archives: vrai
    Analyser les bases de messagerie: vrai

    Cible de l'analyse - Poste de travail:
    A:\
    C:\
    D:\
    E:\

    Statistiques de l'analyse:
    Total d'objets analysés: 141881
    Nombre de virus trouvés: 6
    Nombre d'objets infectés: 8 / 0
    Nombre d'objets suspects: 3
    Durée de l'analyse: 03:49:55

    Nom de l'objet infecté / Nom du virus / Dernière action
    C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\cert8.db L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\content-prefs.sqlite L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\cookies.sqlite L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\downloads.sqlite L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\formhistory.sqlite L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\key3.db L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\parent.lock L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\permissions.sqlite L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\places.sqlite L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\places.sqlite-journal L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\search.sqlite L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\Cookies\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\Local Settings\Application Data\Identities\{DD91273D-CF38-4330-804A-3BC664B8C94B}\Microsoft\Outlook Express\Boîte de réception.dbx/[From security@e-gold.com][Date 19 Sep 2006 23:50:59][Subj e-gold - Important Notice]/html Suspect : Trojan-Spy.HTML.Fraud.gen ignoré
    C:\Documents and Settings\Admin\Local Settings\Application Data\Identities\{DD91273D-CF38-4330-804A-3BC664B8C94B}\Microsoft\Outlook Express\Boîte de réception.dbx/[From notice@e-gold.com][Date 23 Sep 2006 04:44:15][Subj e-gold - Important Notice]/html Suspect : Trojan-Spy.HTML.Fraud.gen ignoré
    C:\Documents and Settings\Admin\Local Settings\Application Data\Identities\{DD91273D-CF38-4330-804A-3BC664B8C94B}\Microsoft\Outlook Express\Boîte de réception.dbx MailMSOutlook5: suspect - 2 ignoré
    C:\Documents and Settings\Admin\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\Local Settings\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\Cache\_CACHE_001_ L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\Local Settings\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\Cache\_CACHE_002_ L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\Local Settings\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\Cache\_CACHE_003_ L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\Local Settings\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\Cache\_CACHE_MAP_ L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\Local Settings\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\urlclassifier3.sqlite L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\Local Settings\Temp\etilqs_ZXIjEFUEUZBRasl9R2vx L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\Local Settings\Temp\temp.exe Infecté : Trojan-Downloader.Win32.Agent.bjhd ignoré
    C:\Documents and Settings\Admin\Local Settings\Temp\~DF3465.tmp L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\NTUSER.DAT L'objet est verrouillé ignoré
    C:\Documents and Settings\Admin\ntuser.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService.AUTORITE NT\Cookies\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService.AUTORITE NT\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService.AUTORITE NT\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService.AUTORITE NT\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService.AUTORITE NT\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService.AUTORITE NT\NTUSER.DAT L'objet est verrouillé ignoré
    C:\Documents and Settings\LocalService.AUTORITE NT\ntuser.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
    C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
    C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré
    C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré
    C:\Program Files\Eset\cache\CACHE.NDB L'objet est verrouillé ignoré
    C:\Program Files\Eset\cache\FND0.NFI/irsetup.dat Infecté : P2P-Worm.Win32.Padonak.b ignoré
    C:\Program Files\Eset\cache\FND0.NFI SetupFactory: infecté - 1 ignoré
    C:\Program Files\Eset\cache\FND0.NFI PE-Crypt.XorPE: infecté - 1 ignoré
    C:\Program Files\Eset\infected\EEWCVABA.NQF Infecté : Trojan-Downloader.Win32.Zlob.jbe ignoré
    C:\Program Files\Eset\infected\HAQ352CA.NQF Infecté : Trojan-Downloader.Win32.IstBar.gen ignoré
    C:\Program Files\Eset\infected\M3NLF2CA.NQF Infecté : Trojan-Downloader.Win32.Zlob.jbe ignoré
    C:\Program Files\Eset\infected\XGHZVLAA.NQF Infecté : P2P-Worm.Win32.Kapucen.b ignoré
    C:\Program Files\Eset\logs\virlog.dat L'objet est verrouillé ignoré
    C:\Program Files\Eset\logs\warnlog.dat L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Admin\Data\chandir.dat L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Admin\Data\chandir.idx L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Admin\Data\chn.dat L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Admin\Data\chn.idx L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Admin\Data\D0000000.FCS L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Admin\Data\inuse.txt L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Admin\Data\L0000002.FCS L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Admin\Data\main.log L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Admin\Data\prs.dat L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Admin\Data\prs.idx L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Admin\Data\prs_die.dat L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Admin\Data\prs_die.idx L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Admin\Data\prs_dnd.dat L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Admin\Data\prs_dnd.idx L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Admin\Data\prs_ext.dat L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Admin\Data\prs_ext.idx L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Admin\Data\prs_rcv.dat L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Admin\Data\prs_rcv.idx L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Admin\Data\storydb.dat L'objet est verrouillé ignoré
    C:\Program Files\Logitech\Desktop Messenger\8876480\Users\Admin\Data\storydb.idx L'objet est verrouillé ignoré
    C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré
    C:\System Volume Information\_restore{9C92996B-85E1-4AE6-A22B-799639C2DF2D}\RP528\change.log L'objet est verrouillé ignoré
    C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\Internet Logs\fwdbglog.txt L'objet est verrouillé ignoré
    C:\WINDOWS\Internet Logs\fwpktlog.txt L'objet est verrouillé ignoré
    C:\WINDOWS\Internet Logs\IAMDB.RDB L'objet est verrouillé ignoré
    C:\WINDOWS\Internet Logs\tvDebug.log L'objet est verrouillé ignoré
    C:\WINDOWS\Internet Logs\XPSP2-3A1A13B1A.ldb L'objet est verrouillé ignoré
    C:\WINDOWS\SchedLgU.Txt L'objet est verrouillé ignoré
    C:\WINDOWS\SoftwareDistribution\ReportingEvents.log L'objet est verrouillé ignoré
    C:\WINDOWS\Sti_Trace.log L'objet est verrouillé ignoré
    C:\WINDOWS\system32\CatRoot2\edb.log L'objet est verrouillé ignoré
    C:\WINDOWS\system32\CatRoot2\tmp.edb L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\AppEvent.Evt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\default L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\default.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SAM L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SAM.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SecEvent.Evt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SECURITY L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SECURITY.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\software L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\software.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\SysEvent.Evt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\system L'objet est verrouillé ignoré
    C:\WINDOWS\system32\config\system.LOG L'objet est verrouillé ignoré
    C:\WINDOWS\system32\drivers\sptd.sys L'objet est verrouillé ignoré
    C:\WINDOWS\system32\h323log.txt L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré
    C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré
    C:\WINDOWS\Temp\Perflib_Perfdata_594.dat L'objet est verrouillé ignoré
    C:\WINDOWS\Temp\ZLT009e8.TMP L'objet est verrouillé ignoré
    C:\WINDOWS\Temp\ZLT00a15.TMP L'objet est verrouillé ignoré
    C:\WINDOWS\wiadebug.log L'objet est verrouillé ignoré
    C:\WINDOWS\wiaservc.log L'objet est verrouillé ignoré
    C:\WINDOWS\WindowsUpdate.log L'objet est verrouillé ignoré

    Analyse terminée.

    m
    0
    l
    a c 267 8 Sécurité
    7 Mai 2009 00:14:34

  • Désinstalle TZ Spyware Remover qui est un rogue.

  • Désinstalle les programmes suivants :
    - DAEMON Tools Toolbar
    - J2SE Runtime Environment 5.0 Update 6
    - Java 6 Update 6
    - Java 6 Update 7

  • Mets à jour Adobe Reader.

  • Mets à jour Internet Explorer.

  • Refais un scan RSIT et poste le rapport log.
    m
    0
    l
    7 Mai 2009 10:35:09

    Je n'ai pas trouvé TZ spyware remover dans "ajout-suppression de programmes", je n'ai trouvé que "Spyware and Adware Removal 3.0i"; par contre j'ai retrouvé son dossier dans "Program Files" où il y a un fichier "unins000.exe". Je peux désinstaller avec ça?
    Il y a aussi un raccourci dans "C:\Documents and Settings\All Users\Menu Démarrer\etc.....
    m
    0
    l
    a c 267 8 Sécurité
    7 Mai 2009 12:07:12

    Citation :
    j'ai retrouvé son dossier dans "Program Files" où il y a un fichier "unins000.exe". Je peux désinstaller avec ça?

    ---> Oui.
    m
    0
    l
    8 Mai 2009 15:51:27

    Rebonjour,
    Excuse le retard de la réponse, mais j' essaie depuis hier de le désinstaller et j'y arrive pas. Une fenêtre me dit en gros: "TZ is running, please close it and try again".
    Je l'ai retrouvé dans "démarrer - tous les programmes"sous le nom "TrackZapper.com". Mais il n'est pas dans "ajout- suppression".
    Le problème, c'est que j'arrive pas à ouvrir sa fenêtre pour pouvoir fermer le logiciel ensuite. J'entends un "tong" et il ne se passe rien.
    Peut-être en mode sans échec ?

    m
    0
    l
    a c 267 8 Sécurité
    8 Mai 2009 18:37:17

    Essaie en mode sans échec.
    m
    0
    l
    9 Mai 2009 10:19:17

    Rebonjour Destrio5,
    A 1ere vue, pas évident de désinstaller et supprimer complètement TZ.
    Jette un oeil ici : http://www.411-spyware.com/fr/enlever-trackzapper#delet...
    Mais apparement, la désinfection que tu m'as fait faire avec Malwarebytes a fait beaucoup de bien et aurait supprimer en partie TZ (peut-être raison pour laquelle il ne veut plus s'ouvrir).
    D'ailleurs mon PC va déjà beaucoup mieux. :) 
    J'ai refait une analyse RSIT comme demandé.
    Voici le log :

    Logfile of random's system information tool 1.06 (written by random/random)
    Run by Admin at 2009-05-09 10:03:48
    Microsoft Windows XP Professionnel Service Pack 2
    System drive C: has 2 GB (3%) free of 76 GB
    Total RAM: 2048 MB (62% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 10:04:08, on 9/05/2009
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Eset\nod32kui.exe
    C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE
    C:\Program Files\Logitech\ImageStudio\LogiTray.exe
    C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
    C:\PROGRA~1\PESTPA~1\PPMemCheck.exe
    C:\PROGRA~1\PESTPA~1\CookiePatrol.exe
    C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
    C:\Program Files\Sunbelt Software\CounterSpy\SBCSTray.exe
    C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe
    C:\WINDOWS\System32\DLA\DLACTRLW.EXE
    C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    C:\Program Files\SweetIM\Messenger\SweetIM.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\WINDOWS\system32\rundll32.exe
    C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
    C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\logiciels\Spybot - Search & Destroy\TeaTimer.exe
    C:\Program Files\DNA\btdna.exe
    C:\Program Files\DAEMON Tools Lite\daemon.exe
    C:\Program Files\MSN Messenger\msnmsgr.exe
    C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\Program Files\IncrediMail\bin\IMApp.exe
    C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
    C:\Program Files\Eset\nod32krn.exe
    C:\WINDOWS\system32\pctspk.exe
    C:\Program Files\Sunbelt Software\CounterSpy\SBCSSvc.exe
    C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    C:\WINDOWS\system32\wscntfy.exe
    C:\Program Files\MSN Messenger\usnsvc.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\WINDOWS\Explorer.EXE
    C:\Documents and Settings\Admin\Bureau\RSIT.exe
    C:\Program Files\Admin.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
    O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\LOGICI~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll
    O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr-be\msntb.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O3 - Toolbar: Systran50premi.IEPlugIn - {9A0844DB-84CF-4440-BDB1-1F4F7C4F7FB0} - C:\Program Files\SYSTRAN\5.0\Premium\IEPlugIn.dll
    O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
    O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
    O4 - HKLM\..\Run: [NvMediaCenter] "RUNDLL32.EXE" C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [LVCOMS] "C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE"
    O4 - HKLM\..\Run: [LogitechGalleryRepair] "C:\Program Files\Logitech\ImageStudio\ISStart.exe"
    O4 - HKLM\..\Run: [LogitechImageStudioTray] "C:\Program Files\Logitech\ImageStudio\LogiTray.exe"
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [PPMemCheck] C:\PROGRA~1\PESTPA~1\PPMemCheck.exe
    O4 - HKLM\..\Run: [CookiePatrol] C:\PROGRA~1\PESTPA~1\CookiePatrol.exe
    O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] "C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [SBCSTray] C:\Program Files\Sunbelt Software\CounterSpy\SBCSTray.exe
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
    O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [SBRegRebootCleaner] C:\Program Files\Sunbelt Software\CounterSpy\SBRC.exe
    O4 - HKLM\..\Run: [Microsoft WinUpdate] C:\WINDOWS\system32\msupdte.exe
    O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
    O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
    O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
    O4 - HKCU\..\Run: [SuperCopier.exe] C:\Program Files\SuperCopier\SuperCopier.exe
    O4 - HKCU\..\Run: [LDM] "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"
    O4 - HKCU\..\Run: [msnmsgr] ~"C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [TZ Spyware Remover] "C:\Program Files\logiciels\TZ Spyware Remover\SpyRem.exe" /STARTUP
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] "C:\Program Files\logiciels\Spybot - Search & Destroy\TeaTimer.exe"
    O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
    O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
    O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'Default user')
    O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Startup: Outil de détection de support Picture Motion Browser.lnk = C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe
    O4 - Global Startup: Adobe Gamma Loader.lnk = ?
    O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O8 - Extra context menu item: Open and Translate in Word - res://C:\Program Files\SYSTRAN\5.0\Premium\IEShellExt.dll /10
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
    O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\LOGICI~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\LOGICI~1\SPYBOT~1\SDHelper.dll
    O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
    O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
    O23 - Service: PCTEL Speaker Phone (Pctspk) - PCtel, Inc. - C:\WINDOWS\system32\pctspk.exe
    O23 - Service: Sunbelt CounterSpy Antispyware (SBCSSvc) - Sunbelt Software - C:\Program Files\Sunbelt Software\CounterSpy\SBCSSvc.exe
    O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.8\bin\httpd.exe
    O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.0.51b\bin\mysqld-nt.exe

    --
    End of file - 12389 bytes

    ======Scheduled tasks folder======

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
    Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2005-11-22 399352]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Adobe PDF Reader Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
    Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2008-02-01 1377576]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
    Spybot-S&D IE Protection - C:\PROGRA~1\LOGICI~1\SPYBOT~1\SDHelper.dll [2008-09-15 1562960]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}]
    DriveLetterAccess - C:\WINDOWS\System32\DLA\DLASHX_W.DLL [2006-06-13 110652]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
    SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2009-03-09 320920]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Windows Live Sign-in Helper - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-08-31 322368]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9394EDE7-C8B5-483E-8773-474BF36AF6E4}]
    ST - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll [2004-08-13 155648]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
    Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll [2008-10-20 737776]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}]
    MSNToolBandBHO - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr-be\msntb.dll [2006-01-17 282624]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-09 35840]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
    JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-03-09 73728]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
    SweetIM Toolbar Helper - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2008-10-08 1172792]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2005-11-22 399352]
    {9A0844DB-84CF-4440-BDB1-1F4F7C4F7FB0} - Systran50premi.IEPlugIn - C:\Program Files\SYSTRAN\5.0\Premium\IEPlugIn.dll [2004-06-21 253952]
    {EEE6C35B-6118-11DC-9C72-001320C79847} - SweetIM Toolbar for Internet Explorer - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2008-10-08 1172792]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "nod32kui"=C:\Program Files\Eset\nod32kui.exe [2006-06-05 917504]
    "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2006-03-09 86016]
    "LVCOMS"=C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE [2002-12-10 127022]
    "LogitechGalleryRepair"=C:\Program Files\Logitech\ImageStudio\ISStart.exe [2002-12-10 155648]
    "LogitechImageStudioTray"=C:\Program Files\Logitech\ImageStudio\LogiTray.exe [2002-12-10 61440]
    "TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2006-12-21 185896]
    "PPMemCheck"=C:\PROGRA~1\PESTPA~1\PPMemCheck.exe [2002-10-15 148480]
    "CookiePatrol"=C:\PROGRA~1\PESTPA~1\CookiePatrol.exe [2002-11-07 65536]
    "Share-to-Web Namespace Daemon"=C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe [2002-04-17 69632]
    "QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2007-06-29 286720]
    "SBCSTray"=C:\Program Files\Sunbelt Software\CounterSpy\SBCSTray.exe [2007-11-28 698864]
    "IMJPMIG8.1"=C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [2004-08-04 208952]
    "MSPY2002"=C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe [2004-08-04 59392]
    "PHIME2002ASync"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-04 455168]
    "PHIME2002A"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-04 455168]
    "Adobe Photo Downloader"=C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe [2007-03-09 63712]
    "SBRegRebootCleaner"=C:\Program Files\Sunbelt Software\CounterSpy\SBRC.exe [2007-11-28 141808]
    "Microsoft WinUpdate"=C:\WINDOWS\system32\msupdte.exe []
    "PinnacleDriverCheck"=C:\WINDOWS\system32\PSDrvCheck.exe [2003-12-04 406016]
    "DLA"=C:\WINDOWS\System32\DLA\DLACTRLW.EXE [2006-06-13 127036]
    "nwiz"=nwiz.exe /install []
    "ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2008-07-09 919016]
    "SweetIM"=C:\Program Files\SweetIM\Messenger\SweetIM.exe [2009-02-15 111928]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-03-09 148888]
    "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-19 15360]
    "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe [2005-12-16 94208]
    "SuperCopier.exe"=C:\Program Files\SuperCopier\SuperCopier.exe [2003-04-25 683520]
    "LDM"=C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2007-02-26 67128]
    "msnmsgr"=~C:\Program Files\MSN Messenger\msnmsgr.exe /background []
    "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2007-05-30 68856]
    "TZ Spyware Remover"=C:\Program Files\logiciels\TZ Spyware Remover\SpyRem.exe [2007-05-09 593920]
    "SpybotSD TeaTimer"=C:\Program Files\logiciels\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
    "IncrediMail"=C:\Program Files\IncrediMail\bin\IncMail.exe [2009-01-27 251264]
    "BitTorrent DNA"=C:\Program Files\DNA\btdna.exe [2008-12-22 342848]
    "DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2009-04-23 691656]

    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
    Adobe Gamma Loader.lnk - C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe

    C:\Documents and Settings\Admin\Menu Démarrer\Programmes\Démarrage
    Adobe Gamma.lnk - C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    Outil de détection de support Picture Motion Browser.lnk - C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SBCSSvc]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SBCSSvc]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdauxservice]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdcoreservice]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=FF000000
    "ForceClassicControlPanel"=1
    "MemCheckBoxInRunDlg"=1
    "NoSMBalloonTip"=1
    "NoDesktopCleanupWizard"=1
    "NoWelcomeScreen"=1
    "NoAutoUpdate"=1
    "NoDrives"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveAutoRun"=
    "NoDriveTypeAutoRun"=
    "NoDrives"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
    "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
    "C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"
    "C:\Program Files\Shareaza\Shareaza.exe"="C:\Program Files\Shareaza\Shareaza.exe:*:Enabled:Shareaza"
    "C:\Program Files\incredimail_install.exe"="C:\Program Files\incredimail_install.exe:*:Enabled:IncrediMail Installer"
    "C:\Program Files\IncrediMail\bin\ImApp.exe"="C:\Program Files\IncrediMail\bin\ImApp.exe:*:Enabled:IncrediMail"
    "C:\Program Files\IncrediMail\bin\IncMail.exe"="C:\Program Files\IncrediMail\bin\IncMail.exe:*:Enabled:IncrediMail"
    "C:\Program Files\IncrediMail\bin\ImpCnt.exe"="C:\Program Files\IncrediMail\bin\ImpCnt.exe:*:Enabled:IncrediMail"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
    "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
    "C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled:D NA"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

    ======List of files/folders created in the last 3 months======

    2009-05-06 22:26:05 ----A---- C:\kas.txt
    2009-05-06 22:24:10 ----A---- C:\nouveau909.txt
    2009-05-06 21:41:19 ----A---- C:\nouveau.txt
    2009-05-06 17:06:13 ----D---- C:\WINDOWS\system32\Kaspersky Lab
    2009-05-06 15:08:30 ----A---- C:\log2.txt
    2009-05-06 15:07:49 ----A---- C:\info.txt
    2009-05-06 14:29:44 ----D---- C:\rsit
    2009-05-06 14:29:44 ----A---- C:\Program Files\Admin.exe
    2009-05-06 12:53:54 ----A---- C:\mbam-log-2009-05-06 (12-27-40).txt
    2009-05-06 09:09:58 ----A---- C:\TB.txt
    2009-05-05 22:25:03 ----D---- C:\ToolBar SD
    2009-05-05 15:01:09 ----D---- C:\Program Files\hijackthis
    2009-04-29 13:20:34 ----D---- C:\Documents and Settings\Admin\Application Data\Opera
    2009-04-28 09:30:26 ----D---- C:\Program Files\DAEMON Tools Toolbar
    2009-04-28 09:27:17 ----D---- C:\Program Files\DAEMON Tools Lite
    2009-04-26 16:12:23 ----D---- C:\Documents and Settings\All Users\Application Data\PoBros
    2009-04-26 16:12:23 ----D---- C:\Documents and Settings\Admin\Application Data\PoBros
    2009-04-22 18:29:45 ----D---- C:\Program Files\Magic Ball
    2009-04-16 13:37:42 ----D---- C:\Program Files\Fichiers communs\Adobe Systems Shared
    2009-04-05 13:33:15 ----A---- C:\Program Files\daemon4303-lite.exe
    2009-04-05 10:46:55 ----D---- C:\Documents and Settings\Admin\Application Data\DAEMON Tools Pro
    2009-04-05 10:46:42 ----D---- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
    2009-04-05 10:39:48 ----D---- C:\Documents and Settings\Admin\Application Data\DAEMON Tools Lite
    2009-04-04 12:38:22 ----D---- C:\Program Files\Adobe Illustrator Cs3 Fr Crack Par Fatah Fr
    2009-04-03 12:03:51 ----D---- C:\Documents and Settings\Admin\Application Data\Inkscape
    2009-04-03 11:52:22 ----D---- C:\Program Files\Inkscape
    2009-04-03 11:30:11 ----A---- C:\Program Files\Inkscape-0.46.win32.exe
    2009-04-01 10:54:24 ----A---- C:\WINDOWS\system32\javaws.exe
    2009-04-01 10:54:24 ----A---- C:\WINDOWS\system32\javaw.exe
    2009-04-01 10:54:24 ----A---- C:\WINDOWS\system32\java.exe
    2009-03-27 15:45:34 ----A---- C:\Program Files\eMule0.49c-Installer.exe
    2009-03-27 15:30:09 ----A---- C:\Program Files\zapSetup_80_298_004_fr.exe
    2009-03-24 16:23:51 ----D---- C:\WINDOWS\A5W_DATA
    2009-03-24 16:23:51 ----A---- C:\WINDOWS\A5W.INI
    2009-03-24 15:22:02 ----A---- C:\WINDOWS\system32\tsccinst.dll
    2009-03-24 15:19:29 ----A---- C:\WINDOWS\system32\Winskfr.dll
    2009-03-24 15:19:25 ----A---- C:\WINDOWS\system32\VB6FR.DLL
    2009-03-24 15:19:18 ----A---- C:\WINDOWS\system32\tsccvid.dll
    2009-03-24 15:19:13 ----A---- C:\WINDOWS\system32\Mscmcfr.dll
    2009-03-24 15:19:11 ----A---- C:\WINDOWS\system32\Cmdlgfr.dll
    2009-03-24 15:19:06 ----A---- C:\WINDOWS\system32\Cmctlfr.dll
    2009-03-24 15:18:54 ----D---- C:\Program Files\Editions ENI
    2009-03-24 15:16:27 ----D---- C:\Program Files\Fichiers communs\Editions ENI
    2009-03-17 17:44:04 ----D---- C:\Documents and Settings\All Users\Application Data\Flood Light Games
    2009-03-17 17:44:04 ----D---- C:\Documents and Settings\Admin\Application Data\Flood Light Games
    2009-03-16 14:31:18 ----SHD---- C:\Config.Msi
    2009-03-14 14:21:32 ----D---- C:\Documents and Settings\All Users\Application Data\TonkyPonky
    2009-03-13 17:31:51 ----D---- C:\Program Files\WildGames
    2009-03-11 18:02:10 ----D---- C:\Documents and Settings\All Users\Application Data\MiniIT Games
    2009-03-11 18:02:10 ----D---- C:\Documents and Settings\Admin\Application Data\MiniIT Games
    2009-03-09 11:11:00 ----D---- C:\diapos
    2009-03-08 16:33:34 ----A---- C:\Program Files\Escape_the_Museum-setup.exe
    2009-03-01 16:37:21 ----D---- C:\Documents and Settings\All Users\Application Data\Rumbic Studio
    2009-02-27 17:28:55 ----D---- C:\Program Files\Kellogg's
    2009-02-25 19:09:20 ----D---- C:\blagues
    2009-02-24 16:35:26 ----D---- C:\Documents and Settings\All Users\Application Data\Big Fish Games Vancouver
    2009-02-19 19:33:36 ----D---- C:\Program Files\Oberon Media
    2009-02-16 17:21:55 ----D---- C:\WINDOWS\.jagex_cache_32

    ======List of files/folders modified in the last 3 months======

    2009-05-09 10:04:04 ----D---- C:\WINDOWS\Prefetch
    2009-05-09 10:03:55 ----RD---- C:\Program Files
    2009-05-09 10:03:51 ----D---- C:\WINDOWS\Temp
    2009-05-09 10:03:19 ----D---- C:\WINDOWS\Internet Logs
    2009-05-09 10:02:20 ----D---- C:\Documents and Settings\Admin\Application Data\DNA
    2009-05-09 08:56:40 ----D---- C:\Program Files\Mozilla Firefox
    2009-05-09 08:32:09 ----D---- C:\Program Files\DNA
    2009-05-09 08:31:57 ----D---- C:\WINDOWS\system32\ZoneLabs
    2009-05-08 21:56:32 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-05-07 10:46:38 ----SHD---- C:\WINDOWS\Installer
    2009-05-07 10:46:09 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
    2009-05-07 10:45:54 ----D---- C:\Program Files\Fichiers communs\Adobe
    2009-05-07 10:45:54 ----D---- C:\Program Files\Adobe
    2009-05-07 10:44:07 ----D---- C:\WINDOWS\system32
    2009-05-07 10:03:50 ----D---- C:\Program Files\Java
    2009-05-07 10:03:49 ----D---- C:\Program Files\Fichiers communs
    2009-05-07 09:43:34 ----D---- C:\WINDOWS
    2009-05-06 17:06:14 ----SD---- C:\WINDOWS\Downloaded Program Files
    2009-05-06 17:06:12 ----HD---- C:\WINDOWS\inf
    2009-05-06 17:06:11 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-05-06 14:15:51 ----D---- C:\WINDOWS\system32\drivers
    2009-05-06 12:13:03 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
    2009-05-05 13:08:36 ----A---- C:\WINDOWS\NeroDigital.ini
    2009-04-30 18:38:27 ----D---- C:\Documents and Settings\Admin\Application Data\Identities
    2009-04-30 18:38:23 ----D---- C:\Documents and Settings\Admin\Application Data\Zylom
    2009-04-30 18:36:36 ----D---- C:\Program Files\Zylom Games
    2009-04-29 13:20:36 ----A---- C:\WINDOWS\win.ini
    2009-04-26 17:43:23 ----D---- C:\Program Files\userdata
    2009-04-22 18:27:28 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
    2009-04-21 12:06:49 ----D---- C:\Documents and Settings\Admin\Application Data\BitTorrent
    2009-04-18 10:15:45 ----D---- C:\Documents and Settings\Admin\Application Data\Adobe
    2009-04-12 14:25:05 ----D---- C:\Documents and Settings\Admin\Application Data\gtk-2.0
    2009-04-05 10:46:56 ----D---- C:\Documents and Settings\Admin\Application Data\DAEMON Tools
    2009-04-01 10:49:34 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-03-28 22:10:38 ----D---- C:\My Download Files
    2009-03-27 15:48:10 ----D---- C:\Program Files\eMule1
    2009-03-27 15:35:46 ----D---- C:\WINDOWS\WinSxS
    2009-03-27 14:50:53 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
    2009-03-25 19:05:14 ----A---- C:\WINDOWS\PestPatrol.ini
    2009-03-25 19:04:48 ----D---- C:\Program Files\SuperScan
    2009-03-24 15:32:37 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-03-24 15:21:52 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-03-18 18:04:27 ----D---- C:\Documents and Settings\All Users\Application Data\BigFishGamesCache
    2009-03-16 19:13:16 ----D---- C:\Program Files\Incredijeux
    2009-03-16 18:54:14 ----D---- C:\Program Files\Micro Application
    2009-03-16 18:47:25 ----D---- C:\Program Files\Infogrames
    2009-03-16 18:40:40 ----D---- C:\Program Files\Jewel Quest 2
    2009-03-16 18:10:21 ----D---- C:\Program Files\Fichiers communs\Oberon Media
    2009-03-16 18:04:54 ----D---- C:\Program Files\Chuzzle Deluxe
    2009-03-16 17:13:58 ----D---- C:\Documents and Settings\All Users\Application Data\Playrix Entertainment
    2009-03-16 15:21:48 ----SD---- C:\WINDOWS\Tasks
    2009-03-16 14:32:55 ----D---- C:\Program Files\SweetIM
    2009-03-14 17:17:33 ----D---- C:\Documents and Settings\All Users\Application Data\Intenium
    2009-03-13 20:00:33 ----D---- C:\Documents and Settings\Admin\Application Data\Boomzap
    2009-03-09 05:19:08 ----A---- C:\WINDOWS\system32\deploytk.dll
    2009-03-08 15:36:36 ----D---- C:\Documents and Settings\All Users\Application Data\Friends Games
    2009-03-07 13:17:17 ----D---- C:\Documents and Settings\All Users\Application Data\NETg
    2009-03-02 20:13:11 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
    2009-02-27 17:34:57 ----D---- C:\WINDOWS\RegisteredPackages
    2009-02-27 17:30:48 ----D---- C:\WINDOWS\system32\DirectX
    2009-02-27 17:30:46 ----RSD---- C:\WINDOWS\assembly
    2009-02-26 13:46:30 ----D---- C:\Documents and Settings\All Users\Application Data\DVD Shrink
    2009-02-19 19:34:15 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 AFS2K;AFS2k; C:\WINDOWS\system32\drivers\AFS2K.sys [2007-06-03 82380]
    R1 AmdK7;Pilote de processeur AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2005-10-12 41600]
    R1 DLACDBHM;DLACDBHM; C:\WINDOWS\System32\Drivers\DLACDBHM.SYS [2006-03-17 5660]
    R1 DLARTL_N;DLARTL_N; C:\WINDOWS\System32\Drivers\DLARTL_N.SYS [2006-03-17 22684]
    R1 FsVga;FsVga; C:\WINDOWS\system32\DRIVERS\fsvga.sys [2005-07-26 12416]
    R1 LStone;Pinnacle Systems Studio AV/DV Overlay; C:\WINDOWS\system32\DRIVERS\lstone2k.sys [2002-12-10 256113]
    R1 MemAlloc;MemAlloc; C:\WINDOWS\system32\DRIVERS\memalloc.sys [2002-08-26 5543]
    R1 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2008-07-09 394952]
    R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-02 12032]
    R2 AMON;AMON; \??\C:\WINDOWS\system32\drivers\amon.sys []
    R2 DLABOIOM;DLABOIOM; C:\WINDOWS\System32\DLA\DLABOIOM.SYS [2006-06-13 25724]
    R2 DLADResN;DLADResN; C:\WINDOWS\System32\DLA\DLADResN.SYS [2006-06-13 2496]
    R2 DLAIFS_M;DLAIFS_M; C:\WINDOWS\System32\DLA\DLAIFS_M.SYS [2006-06-13 86844]
    R2 DLAOPIOM;DLAOPIOM; C:\WINDOWS\System32\DLA\DLAOPIOM.SYS [2006-06-13 14716]
    R2 DLAPoolM;DLAPoolM; C:\WINDOWS\System32\DLA\DLAPoolM.SYS [2006-06-13 6364]
    R2 DLAUDF_M;DLAUDF_M; C:\WINDOWS\System32\DLA\DLAUDF_M.SYS [2006-06-13 88476]
    R2 DLAUDFAM;DLAUDFAM; C:\WINDOWS\System32\DLA\DLAUDFAM.SYS [2006-06-13 94460]
    R2 DRVNDDM;DRVNDDM; C:\WINDOWS\System32\Drivers\DRVNDDM.SYS [2006-03-17 40544]
    R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2002-04-01 4816]
    R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2005-10-12 60800]
    R3 ASAPIW2k;ASAPIW2K; C:\WINDOWS\system32\drivers\ASAPIW2k.sys [2003-12-04 11264]
    R3 FETNDIS;Pilote NT de carte VIA PCI 10/100Mo Fast Ethernet; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2005-07-26 27165]
    R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2005-10-12 61824]
    R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2005-07-26 1897408]
    R3 pfc;PADUS ASPI SHELL; C:\WINDOWS\system32\drivers\pfc.sys [2002-06-13 14604]
    R3 Ptserlp;PCTEL Serial Device Driver for PCI; C:\WINDOWS\system32\DRIVERS\ptserlp.sys [2005-07-26 112574]
    R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-07-15 578368]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
    R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
    R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-03 17024]
    R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2005-07-26 26496]
    R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
    S1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys []
    S1 InCDRm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys []
    S3 61883;Pilote d'unité 61883; C:\WINDOWS\system32\DRIVERS\61883.sys [2005-07-26 48128]
    S3 ahy61ov3;ahy61ov3; C:\WINDOWS\system32\drivers\ahy61ov3.sys []
    S3 ASUSHWIO;ASUSHWIO; \??\C:\WINDOWS\system32\drivers\ASUSHWIO.sys []
    S3 Avc;Périphérique AVC; C:\WINDOWS\system32\DRIVERS\avc.sys [2005-07-26 38912]
    S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
    S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2005-07-26 17024]
    S3 C-Dilla;C-Dilla; \??\C:\WINDOWS\system32\drivers\CDANT.SYS []
    S3 gmer;gmer; C:\WINDOWS\System32\DRIVERS\gmer.sys [2008-04-08 86097]
    S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2005-07-26 9600]
    S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2005-07-26 12288]
    S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\system32\DRIVERS\msdv.sys [2005-07-26 51328]
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2005-07-26 5504]
    S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2005-07-26 85376]
    S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2005-07-26 10880]
    S3 PciCon;PciCon; \??\D:\PciCon.sys []
    S3 PhilCam8116;Logitech QuickCam Pro 3000(PID_08B0); C:\WINDOWS\system32\DRIVERS\CamDrL21.sys [2002-12-10 236121]
    S3 SBAPIFS;SBAPIFS; \??\C:\WINDOWS\system32\drivers\sbapifs.sys []
    S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2005-07-26 11136]
    S3 ssm_bus;SAMSUNG Mobile USB Device II 1.0 driver (WDM); C:\WINDOWS\system32\DRIVERS\ssm_bus.sys [2005-08-30 58320]
    S3 ssm_mdfl;SAMSUNG Mobile USB Modem II 1.0 Filter; C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys [2005-08-30 8336]
    S3 ssm_mdm;SAMSUNG Mobile USB Modem II 1.0 Drivers; C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys [2005-08-30 94000]
    S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2005-07-26 15360]
    S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2005-07-26 59264]
    S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2005-07-26 31616]
    S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2005-07-26 25856]
    S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2005-07-26 15104]
    S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2005-07-26 19328]
    S4 InCDFs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys []
    S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-03-09 152984]
    R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
    R2 NOD32krn;NOD32 Kernel Service; C:\Program Files\Eset\nod32krn.exe [2006-06-05 495616]
    R2 Pctspk;PCTEL Speaker Phone; C:\WINDOWS\system32\pctspk.exe [2005-07-26 86016]
    R2 SBCSSvc;Sunbelt CounterSpy Antispyware; C:\Program Files\Sunbelt Software\CounterSpy\SBCSSvc.exe [2007-11-28 788976]
    R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056]
    R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-10 38912]
    R2 vsmon;TrueVector Internet Monitor; C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2008-07-09 75304]
    R3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
    S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2009-04-16 72704]
    S3 AresChatServer;Ares Chatroom server; C:\Program Files\Ares\chatServer.exe [2007-03-20 263168]
    S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
    S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-01-27 138168]
    S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
    S3 wampapache;wampapache; c:\wamp\bin\apache\apache2.2.8\bin\httpd.exe [2008-01-18 24635]
    S3 wampmysqld;wampmysqld; c:\wamp\bin\mysql\mysql5.0.51b\bin\mysqld-nt.exe [2008-04-17 5750784]

    -----------------EOF-----------------

    m
    0
    l
    a c 267 8 Sécurité
    9 Mai 2009 13:05:29

    1/

  • Démarre Spybot, clique sur Mode, coche Mode avancé.
  • A gauche, clique sur Outils, puis sur Résident.
  • Décoche la case devant Résident "TeaTimer" :

  • Quitte Spybot.


    2/

  • Télécharge OTMoveIt3 (OldTimer) sur ton Bureau.
  • Double-clique sur OTMoveIt3.exe afin de le lancer.
  • Copie (Ctrl+C) le texte suivant ci-dessous :

    :processes
    explorer.exe

    :files
    C:\Documents and Settings\Admin\Local Settings\Temp\temp.exe
    C:\Program Files\logiciels\TZ Spyware Remover
    C:\Program Files\DAEMON Tools Toolbar

    :reg
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "Microsoft WinUpdate"=-
    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "TZ Spyware Remover"=-

    :commands
    [purity]
    [emptytemp]
    [reboot]


  • Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
  • Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.

    ---> Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
    Accepte en cliquant sur YES.

  • Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
    ---> Le nom du rapport correspond au moment de sa création : date_heure.log
    m
    0
    l
    15 Mai 2009 09:58:32

    Rebonjour Destrio5,
    Tout d'abord excuse mon long retard, mais j'ai dû m'absenter pour aller à Bruxelles.
    Ensuite, je n'ai trouvé nulle part dans Spybot le résident "TeaTimer" comme tu m'as expliqué.
    Donc j'ai carrément fermé Spybot avant le scan.
    Voici le rapport de OTMoveIt3 :


    ========== PROCESSES ==========
    Process explorer.exe killed successfully.
    ========== FILES ==========
    C:\Documents and Settings\Admin\Local Settings\Temp\temp.exe moved successfully.
    C:\Program Files\logiciels\TZ Spyware Remover moved successfully.
    C:\Program Files\DAEMON Tools Toolbar moved successfully.
    ========== REGISTRY ==========
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Microsoft WinUpdate deleted successfully.
    Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\TZ Spyware Remover deleted successfully.
    ========== COMMANDS ==========
    File delete failed. C:\DOCUME~1\Admin\LOCALS~1\Temp\etilqs_bilVq6859RNqdGPqKO8a scheduled to be deleted on reboot.
    File delete failed. C:\DOCUME~1\Admin\LOCALS~1\Temp\Perflib_Perfdata_b00.dat scheduled to be deleted on reboot.
    File delete failed. C:\DOCUME~1\Admin\LOCALS~1\Temp\~DF58E9.tmp scheduled to be deleted on reboot.
    User's Temp folder emptied.
    User's Internet Explorer cache folder emptied.
    File delete failed. C:\Documents and Settings\Admin\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
    User's Temporary Internet Files folder emptied.
    Local Service Temp folder emptied.
    Local Service Temporary Internet Files folder emptied.
    Network Service Temp folder emptied.
    Network Service Temporary Internet Files folder emptied.
    File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_26c.dat scheduled to be deleted on reboot.
    File delete failed. C:\WINDOWS\temp\ZLT02bfa.TMP scheduled to be deleted on reboot.
    File delete failed. C:\WINDOWS\temp\ZLT02c48.TMP scheduled to be deleted on reboot.
    Windows Temp folder emptied.
    Java cache emptied.
    File delete failed. C:\Documents and Settings\Admin\Local Settings\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\Admin\Local Settings\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\Admin\Local Settings\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\Admin\Local Settings\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\Admin\Local Settings\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\Admin\Local Settings\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\XUL.mfl scheduled to be deleted on reboot.
    FireFox cache emptied.
    Temp folders emptied.

    OTMoveIt3 by OldTimer - Version 1.0.11.0 log created on 05152009_092933

    Files moved on Reboot...
    File C:\DOCUME~1\Admin\LOCALS~1\Temp\etilqs_bilVq6859RNqdGPqKO8a not found!
    File C:\DOCUME~1\Admin\LOCALS~1\Temp\Perflib_Perfdata_b00.dat not found!
    C:\DOCUME~1\Admin\LOCALS~1\Temp\~DF58E9.tmp moved successfully.
    File C:\WINDOWS\temp\Perflib_Perfdata_26c.dat not found!
    C:\WINDOWS\temp\ZLT02bfa.TMP moved successfully.
    C:\WINDOWS\temp\ZLT02c48.TMP moved successfully.
    C:\Documents and Settings\Admin\Local Settings\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\Cache\_CACHE_001_ moved successfully.
    C:\Documents and Settings\Admin\Local Settings\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\Cache\_CACHE_002_ moved successfully.
    C:\Documents and Settings\Admin\Local Settings\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\Cache\_CACHE_003_ moved successfully.
    C:\Documents and Settings\Admin\Local Settings\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\Cache\_CACHE_MAP_ moved successfully.
    C:\Documents and Settings\Admin\Local Settings\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\urlclassifier3.sqlite moved successfully.
    C:\Documents and Settings\Admin\Local Settings\Application Data\Mozilla\Firefox\Profiles\wih7icpc.default\XUL.mfl moved successfully.
    m
    0
    l
    a c 267 8 Sécurité
    15 Mai 2009 10:48:01

    Plus de souci ?
    m
    0
    l
    15 Mai 2009 12:09:29

    Non, apparement tout va très bien. :) 
    Un tout grand merci, Destrio5.
    Qu'est-ce que je peux faire pour te remercier ?
    m
    0
    l
    a c 267 8 Sécurité
    15 Mai 2009 12:59:29

    1/

  • Désinstalle HijackThis.

  • Télécharge ToolsCleaner2 sur ton Bureau.
  • Double-clique sur ToolsCleaner2.exe pour le lancer.
  • Clique sur Recherche et laisse le scan agir.
  • Clique sur Suppression pour finaliser.
  • Tu peux, si tu le souhaites, te servir des Options Facultatives.
  • Clique sur Quitter pour obtenir le rapport.
  • Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).


    2/

  • Télécharge et installe CCleaner Slim.
  • Lance-le. Va dans Options puis Avancé et décoche la case Effacer uniquement les fichiers etc....
  • Va dans Nettoyeur, choisis Analyse. Une fois terminé, lance le nettoyage.
  • Ensuite, choisis Registre, puis Chercher des erreurs. Une fois terminé, répare toutes les erreurs (Sauvegarde la base de registre).


    3/

  • Il est nécessaire de désactiver puis réactiver la restauration système pour la purger.


    ==Prévention==

    Conserve MBAM. Il te servira à scanner les fichiers douteux en complément de l'antivirus et scanne le disque dur régulièrement.

    Vérifie que les mises à jour automatiques sont bien activées (Menu Démarrer, clique droit sur Poste de travail, onglet Mises à jour automatiques).

    Par rapport au P2P : Lien

    Voici un dossier complet (A lire avec Adobe Reader ou Foxit Reader) : Lien


    ==Problème résolu ?==

    Si tu estimes que ton problème est résolu :

    ---> Ajoute maintenant [Résolu] au titre. Pour cela :
  • Clique, dans ton premier message, sur le bouton Editer .
  • Rajoute la mention [Résolu] devant le titre.
  • Clique ensuite sur Valider votre message.


    Sois plus vigilant(e) sur Internet ;) 
    m
    0
    l
    16 Mai 2009 09:11:27

    Rebonjour,
    Encore un tout grand merci à toi, Destrio5. Tout semble refonctionner comme avant.
    Juste une petite question : j'ai un ami qui a aussi un gros problème de lenteur avec son PC, mais en beaucoup plus grave que moi. Son PC ne bouge pratiquement plus.
    Comme il n'y connait rien en informatique, il m'a confié sa tour pour voir si je pouvais faire quelque chose.
    Pourrai-je encore user de votre patience et demander votre aide la semaine prochaine pour son PC ? (je ne voudrais pas abuser).
    Voici le rapport que tu m'as demandé :


    [ Rapport ToolsCleaner version 2.3.5 (par A.Rothstein & dj QUIOU) ]

    --> Recherche:

    C:\VundoFix.txt: trouvé !
    C:\Combofix.txt: trouvé !
    C:\fixnavi.txt: trouvé !
    C:\cleannavi.txt: trouvé !
    C:\TB.txt: trouvé !
    C:\Qoobox: trouvé !
    C:\_OtMoveIt: trouvé !
    C:\Toolbar SD: trouvé !
    C:\Rsit: trouvé !
    C:\Documents and Settings\Admin\Bureau\ToolBarSD.exe: trouvé !
    C:\Documents and Settings\Admin\Bureau\OTMoveIt3.exe: trouvé !
    C:\Documents and Settings\Admin\Bureau\Rsit.exe: trouvé !
    C:\Program Files\Gmer.zip: trouvé !
    C:\Program Files\ComboFix.exe: trouvé !
    C:\Program Files\HijackThis.exe: trouvé !
    C:\Program Files\hijackthis.log: trouvé !
    C:\Program Files\HijackThis: trouvé !
    C:\Program Files\gmer\Gmer.exe: trouvé !
    C:\Program Files\hijackthis\HijackThis.exe: trouvé !
    C:\WINDOWS\Gmer.exe: trouvé !

    ---------------------------------
    --> Suppression:

    C:\Documents and Settings\Admin\Bureau\ToolBarSD.exe: supprimé !
    C:\Program Files\Gmer.zip: supprimé !
    C:\Program Files\ComboFix.exe: supprimé !
    C:\Program Files\HijackThis.exe: supprimé !
    C:\Program Files\gmer\Gmer.exe: supprimé !
    C:\Program Files\hijackthis\HijackThis.exe: supprimé !
    C:\WINDOWS\Gmer.exe: supprimé !
    C:\VundoFix.txt: supprimé !
    C:\Combofix.txt: supprimé !
    C:\fixnavi.txt: supprimé !
    C:\cleannavi.txt: supprimé !
    C:\TB.txt: supprimé !
    C:\Documents and Settings\Admin\Bureau\OTMoveIt3.exe: supprimé !
    C:\Documents and Settings\Admin\Bureau\Rsit.exe: supprimé !
    C:\Program Files\hijackthis.log: supprimé !
    C:\Qoobox: supprimé !
    C:\_OtMoveIt: supprimé !
    C:\Toolbar SD: supprimé !
    C:\Rsit: supprimé !
    C:\Program Files\HijackThis: supprimé !
    m
    0
    l
    a c 267 8 Sécurité
    16 Mai 2009 11:26:44

    Citation :
    Comme il n'y connait rien en informatique, il m'a confié sa tour pour voir si je pouvais faire quelque chose.
    Pourrai-je encore user de votre patience et demander votre aide la semaine prochaine pour son PC ? (je ne voudrais pas abuser).

    ---> Oui en ouvrant un nouveau sujet ;) 

    Tu peux supprimer ToolsCleaner.
    m
    0
    l
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS