Se connecter / S'enregistrer
Votre question

Ouverture intempestive de page sur le web

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
9 Mai 2009 09:51:06

Bonjour, j'ai 51 ans et je ne maîtrise pas trop l'informatique. J'ai depuis peu un soucis avec internet explorer qui m'ouvre des fenêtres intempestives et me dit que mon pc est infecté et me propose de télécharger un logiciel antivirus depuis un site appelé ms-scan. Mon anti virus Kas... et arrivé en fin de validation pourriez-vous me conseiller?
Merci
Eric

Autres pages sur : ouverture intempestive page web

a b 8 Sécurité
9 Mai 2009 12:42:52

Bonjour,

Télécharge Random's System Information Tool (RSIT) (de random/random) et sauvegarde-le sur le Bureau.

  • Double-clique sur RSIT.exe afin de lancer RSIT.
  • Clique Continue  à l'écran Disclaimer.
  • Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
  • Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt  (qui sera affiché)
    ainsi que de info.txt  (qui sera réduit dans la Barre des Tâches)
  • NB : Les rapports sont sauvegardés dans le dossier C:\rsit  
  • Veille bien à me poster l'intégralité des rapports, vérifie qu'ils soient complets une fois que tu les as postés.
    10 Mai 2009 07:55:18

    Angeldark a dit :
    Bonjour,

    Télécharge Random's System Information Tool (RSIT) (de random/random) et sauvegarde-le sur le Bureau.

  • Double-clique sur RSIT.exe afin de lancer RSIT.
  • Clique Continue  à l'écran Disclaimer.
  • Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
  • Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt  (qui sera affiché)
    ainsi que de info.txt  (qui sera réduit dans la Barre des Tâches)
  • NB : Les rapports sont sauvegardés dans le dossier C:\rsit  
  • Veille bien à me poster l'intégralité des rapports, vérifie qu'ils soient complets une fois que tu les as postés.



  • Merci pour tes conseils, j'ai aussi installé Avira AntiVir et le problème semble résolu. Je ne suis pas sûr que tout soit clair sur mon PC mais pour l'instant cela fonctionne
    Merci encore

    info.txt logfile of random's system information tool 1.06 2009-05-09 09:55:41

    ======Uninstall list======

    -->C:\Program Files\InstallShield Installation Information\{22EB2FA7-1BA0-4FFB-972F-353EC6ABA9D5}\setup.exe -runfromtemp -l0x040c -removeonly
    -->C:\Program Files\InstallShield Installation Information\{28B97CAB-828F-49D8-A30A-675476F9BA92}\setup.exe -runfromtemp -l0x040c/cont -removeonly
    -->C:\Program Files\InstallShield Installation Information\{4E7DC12A-3597-4A94-9429-F6C6987361B1}\setup.exe -runfromtemp -l0x040c -removeonly
    -->C:\Program Files\InstallShield Installation Information\{6813C983-427E-4511-8456-E98FCAA1A125}\setup.exe -runfromtemp -l0x040c -removeonly
    -->C:\Program Files\InstallShield Installation Information\{7DADB304-AF20-48C3-A780-4B4133A08817}\setup.exe -runfromtemp -l0x040c -removeonly
    -->C:\Program Files\InstallShield Installation Information\{9C423CF6-2DAA-4A37-94B8-59D7ECC7DB13}\setup.exe -runfromtemp -l0x040c -removeonly
    -->C:\Program Files\InstallShield Installation Information\{ACE66099-E18E-4037-83C8-9D182E5B9FA8}\setup.exe -runfromtemp -l0x040c -removeonly
    -->C:\Program Files\InstallShield Installation Information\{B34B6E67-FCDD-4E03-8742-B5701427FAFB}\setup.exe -runfromtemp -l0x040c -removeonly
    -->C:\Program Files\InstallShield Installation Information\{FA6CC4B4-7741-4F8D-8E81-15C4BAB9869B}\setup.exe -runfromtemp -l0x040c -removeonly
    -->C:\Program Files\Nero\Nero 7\nero\uninstall\UNNERO.exe /UNINSTALL
    -->C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL
    -->C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL
    -->C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL
    -->C:\WINDOWS\UNNeroVision.exe /UNINSTALL
    -->C:\WINDOWS\UNRecode.exe /UNINSTALL
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{57FA4E0F-82C9-417D-87BC-0186D6CB7A44}\setup.exe" -l0x40c
    -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
    Ad-aware Plus 5.83-->C:\PROGRA~1\LAVASO~1\UNWISE.EXE C:\PROGRA~1\LAVASO~1\INSTALL.LOG
    Adobe Acrobat 5.0-->C:\WINDOWS\ISUN040C.EXE -f"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.dll"
    Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
    Adobe Flash Player Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
    Adobe Reader 9 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A90000000001}
    Apple Software Update-->MsiExec.exe /I{A50C25D7-62E9-4511-AD70-8E2DA5E79B7D}
    Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
    ASUS GameFace Live-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{68D8533B-9EE7-46AB-B8B2-D643F888C5DF}
    ASUS USB2.0 Webcam-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4A57592C-FF92-4083-97A9-92783BD5AFB4}\Setup.exe" -l0x40c
    ASUS Video Security-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{169E414A-37C7-434E-9021-27A03AE087CD}
    AudibleManager-->C:\Program Files\Audible\Bin\Upgrade.exe /Uninstall
    AviSynth 2.5-->"C:\Program Files\AviSynth 2.5\Uninstall.exe"
    CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
    CDDC-Mahjongg (Supprimer uniquement)-->C:\Program Files\CDDC-MahJongg\Uninst.exe
    Cloneur Expert-->C:\Program Files\Micro Application\Cloneur Expert\MediaBuilder.exe -uninstall
    C-Media High Definition Audio Driver-->C:\WINDOWS\system32\cmirmdrv.exe
    Copernic Agent Basic-->"C:\WINDOWS\CopernicAgentUninstall.exe" /ARGSFILE="C:\Program Files\Copernic Agent\unwise.dat"
    Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
    Disc2Phone-->MsiExec.exe /I{FFAB5ABB-8AAB-42E2-847F-1743E51E01E9}
    DivX Content Uploader-->C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER
    DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
    DVD Shrink 3.2-->"C:\Program Files\DVD Shrink\unins000.exe"
    e-Carte Bleue Banque Populaire-->"C:\Program Files\InstallShield Installation Information\{B0900CB5-8EC0-43B4-9DAC-A32FE52DC864}\setup.exe" -runfromtemp -l0x040c -removeonly
    e-Carte Bleue Banque Populaire-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\ECBBP.INF, DefaultUninstall.ntx86
    Family Key Logger v2.50 (remove only)-->"C:\Program Files\FamilyKeyLogger\uninstall.exe"
    Favorit-->"c:\documents and settings\admin.xpsp2-3d84c0a6f\local settings\application data\wyicm.exe" -uninstall
    ffvfw MPEG-4 Video Codec (uninstall only)-->"D:\Alex\Ripper\ffvfw\uninstall.exe"
    Free - Kit de connexion-->C:\Program Files\Free.fr\uninstall.exe
    Free Video Converter V 2.0-->"C:\Program Files\Free Video Converter\unins000.exe"
    Gestionnaire de disques amovible Creative-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{57FA4E0F-82C9-417D-87BC-0186D6CB7A44}\setup.exe" -l0x40c /remove
    getPlus(R) for Adobe-->"C:\Program Files\NOS\bin\getPlus_HelperSvc.exe" /UninstallGet1
    Google Toolbar for Firefox-->MsiExec.exe /X{2CCBABCB-6427-4A55-B091-49864623C43F}
    Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_BDA1448D3D255554.exe" /uninstall
    Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
    High Definition Audio Driver Package - KB835221-->C:\WINDOWS\$NtUninstallKB835221WXP$\spuninst\spuninst.exe
    HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
    Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
    Hotfix for Windows XP (KB915800-v4)-->"C:\WINDOWS\$NtUninstallKB915800-v4$\spuninst\spuninst.exe"
    iTunes-->MsiExec.exe /I{AB90749C-7422-4580-8A7A-66CC5E9E5F98}
    Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
    Java(TM) SE Runtime Environment 6 Update 1-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160010}
    Kyodai Mahjongg 2006 v1.42-->"C:\Program Files\Kyodai Mahjongg 2006\unins000.exe"
    Lame ACM MP3 Codec-->C:\WINDOWS\system32\rundll32.exe setupapi,InstallHinfSection Remove_LameMP3 132 C:\WINDOWS\INF\LameACM.inf
    Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
    Lexmark 3100 Series-->C:\WINDOWS\system32\spool\drivers\w32x86\3\LXBRUN5C.EXE -dLexmark 3100 Series
    LifeFrame-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{91F1D88A-2DB5-41E0-AD1A-1FB8374C19C4}\Setup.exe" -l0x40c
    Live_TV Toolbar-->C:\PROGRA~1\Live_TV\UNWISE.EXE C:\PROGRA~1\Live_TV\INSTALL.LOG
    Logiciel iTouch de Logitech-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{036AA4D4-6D32-11D4-9875-00105ACE7734}\Setup.exe" -l0x40c UNINSTALL
    Logitech Desktop Messenger-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\SETUP.exe" -l0x40c UNINSTALL -removeonly
    Logitech QuickCam-->MsiExec.exe /I{77E70C3C-DBB9-4C47-8663-1E1F81FEC623}
    Logitech SetPoint-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}\setup.exe" -l0x40c -removeonly
    Ma-Config.com plugin-->MsiExec.exe /I{BF85A9D4-030F-4D2A-83CF-D4DDA0D3E68C}
    Micro Application - Jeu de Tarot-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Micro Application\Jeu de Tarot\Uninst.isu"
    Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
    Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
    Microsoft .NET Framework 3.0 French Language Pack-->MsiExec.exe /X{E3C080B0-23F5-49AF-89F8-8E8DBC89E659}
    Microsoft .NET Framework 3.0-->C:\WINDOWS\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0\setup.exe
    Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
    Microsoft Office Professional Edition 2003-->MsiExec.exe /I{9011040C-6000-11D3-8CFE-0150048383C9}
    Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
    Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
    Mise à jour critique pour Lecteur Windows Media 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 9 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP9$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958215)-->"C:\WINDOWS\$NtUninstallKB958215$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960714)-->"C:\WINDOWS\$NtUninstallKB960714$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB963027)-->"C:\WINDOWS\$NtUninstallKB963027$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
    Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe
    Module de prise en charge linguistique du français de Microsoft .NET Framework 3.0-->C:\WINDOWS\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0 French Language Pack\setup.exe
    Motorola Wireless Network Adapter-->C:\WINDOWS\system32\BCMWLU00.exe verbose
    Mozilla Firefox (2.0.0.20)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
    MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
    MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
    MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
    MSXML 6.0 Parser (KB925673)-->MsiExec.exe /I{FE9126DB-5F84-495A-BB46-3C724F1C2D08}
    Nero 7-->MsiExec.exe /I{4908C75E-E5E2-43F7-B1DF-023CBA831036}
    NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
    PartyPoker-->"C:\Program Files\PartyGaming\PartyPoker\Uninstall.exe" "C:\Program Files\PartyGaming\PartyPoker\install.log"
    PC TimeWatch-->"C:\Program Files\MainSoft\PC TimeWatch\unins000.exe"
    QuickTime-->MsiExec.exe /I{5E863175-E85D-44A6-8968-82507D34AE7F}
    Ri4m v5.0.1d-->C:\Program Files\Ripp-it_AM\Ri4m_Uninstal.exe
    SAMSUNG CDMA Modem Driver Set-->C:\WINDOWS\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe
    SAMSUNG Mobile Composite Device Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\6\SSBCUninstall.exe
    Samsung Mobile phone USB driver Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\5\SSSDUninstall.exe
    SAMSUNG Mobile USB Modem 1.0 Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe
    SAMSUNG Mobile USB Modem Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe
    Samsung Samples Installer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7AC15160-A49B-4A89-B181-D4619C025FFF}\setup.exe" -l0x40c -removeonly
    Sony Image Data Suite-->C:\Program Files\InstallShield Installation Information\{359FCAA7-B544-4147-AE3B-8C8A526E2427}\setup.exe -runfromtemp -l0x040c -removeonly
    Sony Picture Utility-->C:\Program Files\InstallShield Installation Information\{D5068583-D569-468B-9755-5FBF5848F46F}\setup.exe -runfromtemp -l0x040c /removeonly uninstall -removeonly
    VLC media player 0.9.9-->C:\Program Files\VideoLAN\VLC\uninstall.exe
    Vuze Toolbar-->"C:\Program Files\AskBarDis\unins000.exe"
    Vuze-->C:\Program Files\Vuze\uninstall.exe
    Windows Communication Foundation-->MsiExec.exe /X{491DD792-AD81-429C-9EB4-86DD3D22E333}
    Windows Genuine Advantage v1.3.0254.0-->MsiExec.exe /I{63569CE9-FA00-469C-AF5C-E5D4D93ACF91}
    Windows Live Messenger-->MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411}
    Windows Live Sign-in Assistant-->MsiExec.exe /I{22B3CC30-77B8-419C-AA4B-F571FDF5D66D}
    Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
    Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
    Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
    Windows Presentation Foundation Language Pack (FRA)-->MsiExec.exe /X{6901DD22-527A-41EF-9059-E81FEDE9E494}
    Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
    Windows Workflow Foundation FR Language Pack-->MsiExec.exe /I{B84C141C-9A13-44BE-9A69-301D7B11D836}
    Windows Workflow Foundation-->MsiExec.exe /I{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}
    Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
    WinZip 11.1-->MsiExec.exe /X{CD95F661-A5C4-44F5-A6AA-ECDD91C240B5}
    XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"
    Yahoo! Toolbar-->C:\PROGRA~1\Yahoo!\Common\unyt.exe

    ======Hosts File======

    127.0.0.1 bin.errorprotector.com ## added by CiD
    127.0.0.1 br.errorsafe.com ## added by CiD
    127.0.0.1 br.winantivirus.com ## added by CiD
    127.0.0.1 br.winfixer.com ## added by CiD
    127.0.0.1 cdn.drivecleaner.com ## added by CiD
    127.0.0.1 cdn.errorsafe.com ## added by CiD
    127.0.0.1 cdn.winsoftware.com ## added by CiD
    127.0.0.1 de.errorsafe.com ## added by CiD
    127.0.0.1 de.winantivirus.com ## added by CiD
    127.0.0.1 download.cdn.drivecleaner.com ## added by CiD

    ======Security center information======

    AV: Trend Micro Internet Security (disabled) (outdated)

    ======System event log======

    Computer Name: ERIC
    Event Code: 7036
    Message: Le service Téléphonie est entré dans l'état : en cours d'exécution.

    Record Number: 6258
    Source Name: Service Control Manager
    Time Written: 20090320063247.000000+060
    Event Type: Informations
    User:

    Computer Name: ERIC
    Event Code: 7036
    Message: Le service Service de la passerelle de la couche Application est entré dans l'état : en cours d'exécution.

    Record Number: 6257
    Source Name: Service Control Manager
    Time Written: 20090320063247.000000+060
    Event Type: Informations
    User:

    Computer Name: ERIC
    Event Code: 7035
    Message: Un contrôle Démarrer a correctement été envoyé au service Service de la passerelle de la couche Application.

    Record Number: 6256
    Source Name: Service Control Manager
    Time Written: 20090320063247.000000+060
    Event Type: Informations
    User: AUTORITE NT\SYSTEM

    Computer Name: ERIC
    Event Code: 7035
    Message: Un contrôle Démarrer a correctement été envoyé au service PTW - Process monitoring driver.

    Record Number: 6255
    Source Name: Service Control Manager
    Time Written: 20090320063245.000000+060
    Event Type: Informations
    User: AUTORITE NT\SYSTEM

    Computer Name: ERIC
    Event Code: 7036
    Message: Le service Compatibilité avec le Changement rapide d'utilisateur est entré dans l'état : en cours d'exécution.

    Record Number: 6254
    Source Name: Service Control Manager
    Time Written: 20090320063245.000000+060
    Event Type: Informations
    User:

    =====Application event log=====

    Computer Name: ERIC
    Event Code: 0
    Message:
    Record Number: 3566
    Source Name: Serutpac.exe
    Time Written: 20090108113237.000000+060
    Event Type: erreur
    User:

    Computer Name: ERIC
    Event Code: 0
    Message:
    Record Number: 3565
    Source Name: Serutpac.exe
    Time Written: 20090108113235.000000+060
    Event Type: erreur
    User:

    Computer Name: ERIC
    Event Code: 0
    Message:
    Record Number: 3564
    Source Name: Serutpac.exe
    Time Written: 20090108113233.000000+060
    Event Type: erreur
    User:

    Computer Name: ERIC
    Event Code: 101
    Message: msnmsgr (1784) Le moteur de base de données est arrêté.

    Record Number: 3563
    Source Name: ESENT
    Time Written: 20090108110658.000000+060
    Event Type: Informations
    User:

    Computer Name: ERIC
    Event Code: 103
    Message: msnmsgr (1784) \\.\C:\Documents and Settings\Admin.XPSP2-3D84C0A6F\Local Settings\Application Data\Microsoft\Messenger\alexjumper@live.fr\SharingMetadata\Working\database_28CC_3491_CC34_5AF0\dfsr.db: Le moteur de base de données a arrêté une instance (0).

    Record Number: 3562
    Source Name: ESENT
    Time Written: 20090108110658.000000+060
    Event Type: Informations
    User:

    ======Environment variables======

    "ComSpec"=%SystemRoot%\system32\cmd.exe
    "Path"=%SYSTEMROOT%\SYSTEM32;%SYSTEMROOT%;%SYSTEMROOT%\SYSTEM32\WBEM;C:\Program Files\QuickTime\QTSystem\;C:\Program Files\Samsung\Samsung PC Studio 3\
    "windir"=%SystemRoot%
    "FP_NO_HOST_CHECK"=NO
    "OS"=Windows_NT
    "PROCESSOR_ARCHITECTURE"=x86
    "PROCESSOR_LEVEL"=15
    "PROCESSOR_IDENTIFIER"=x86 Family 15 Model 4 Stepping 1, GenuineIntel
    "PROCESSOR_REVISION"=0401
    "NUMBER_OF_PROCESSORS"=2
    "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
    "TEMP"=%SystemRoot%\TEMP
    "TMP"=%SystemRoot%\TEMP
    "CLASSPATH"=.;C:\Program Files\Java\jre1.5.0_11\lib\ext\QTJava.zip
    "QTJAVA"=C:\Program Files\Java\jre1.5.0_11\lib\ext\QTJava.zip

    -----------------EOF-----------------

    Logfile of random's system information tool 1.06 (written by random/random)
    Run by Admin at 2009-05-09 10:57:49
    Microsoft Windows XP Professionnel Service Pack 3
    System drive C: has 16 GB (36%) free of 45 GB
    Total RAM: 2047 MB (78% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 10:57:54, on 09/05/2009
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\SYSTEM32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\SYSTEM32\LEXBCES.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\SYSTEM32\LEXPPS.EXE
    C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe
    C:\Program Files\AskBarDis\bar\bin\AskService.exe
    C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
    C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
    C:\WINDOWS\system32\nvsvc32.exe
    C:\Program Files\MainSoft\PC TimeWatch\PTWsvc.exe
    C:\WINDOWS\system32\Serutpac.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\wltrysvc.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\System32\bcmwltry.exe
    C:\WINDOWS\system32\RunDll32.exe
    C:\Program Files\Logitech\iTouch\iTouch.exe
    C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
    C:\Program Files\e-Carte Bleue\Banque Populaire\ECB-BP.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Lexmark 3100 Series\lxbrbmgr.exe
    C:\WINDOWS\system32\RUNDLL32.EXE
    C:\Program Files\Micro Application\Cloneur Expert\TrueImageMonitor.exe
    C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe
    C:\Program Files\Lexmark 3100 Series\lxbrbmon.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\Lexmark 3100 Series\lxbrcmon.exe
    C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
    C:\Program Files\Logitech\SetPoint\SetPoint.exe
    C:\Program Files\MainSoft\PC TimeWatch\PctwTI.exe
    C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE
    C:\Documents and Settings\Admin.XPSP2-3D84C0A6F\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe
    C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    C:\Program Files\Avira\AntiVir Desktop\sched.exe
    C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
    C:\Program Files\FamilyKeyLogger\cisvc.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Documents and Settings\Admin.XPSP2-3D84C0A6F\Bureau\RSIT.exe
    C:\Program Files\trend micro\Admin.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://home.free.fr/
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://home.free.fr/
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = ;<local>
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: (no name) - {BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - (no file)
    R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    R3 - URLSearchHook: DefaultSearchHook Class - {C94E154B-1459-4A47-966B-4B843BEFC7DB} - C:\Program Files\AskSearch\bin\DefaultSearch.dll
    R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL (file missing)
    O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: (no name) - {1a1ddc19-5893-43ab-a73f-f41a0f34d115} - (no file)
    O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
    O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll
    O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - (no file)
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
    O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - (no file)
    O3 - Toolbar: (no name) - {5d4831e0-5a7c-4a46-afd5-a79ab8ce36c2} - (no file)
    O3 - Toolbar: (no name) - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - (no file)
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
    O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe
    O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
    O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
    O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
    O4 - HKLM\..\Run: [eCarteBleue-BP] "C:\Program Files\e-Carte Bleue\Banque Populaire\ECB-BP.exe" /dontopenmycards
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [Lexmark 3100 Series] "C:\Program Files\Lexmark 3100 Series\lxbrbmgr.exe"
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [Cloneur Expert Monitor] "C:\Program Files\Micro Application\Cloneur Expert\TrueImageMonitor.exe"
    O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
    O4 - HKLM\..\Run: [FamilyKeyLogger] C:\Program Files\FamilyKeyLogger\cisvc.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKLM\..\Policies\Explorer\Run: [isamonitor.exe] C:\Program Files\Video ActiveX Object\isamonitor.exe
    O4 - HKLM\..\Policies\Explorer\Run: [Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\%s] C:\Program Files\Video ActiveX Object\isamonitor.exe
    O4 - HKLM\..\Policies\Explorer\Run: [isamini.exe] C:\Program Files\Video ActiveX Object\isamonitor.exe
    O4 - HKUS\S-1-5-19\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe (User 'SYSTEM')
    O4 - HKUS\S-1-5-18\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe (User 'Default user')
    O4 - HKUS\.DEFAULT\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'Default user')
    O4 - Startup: Notification de cadeaux MSN.lnk = C:\Documents and Settings\Admin.XPSP2-3D84C0A6F\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe
    O4 - Startup: Outil de détection de support Picture Motion Browser.lnk = C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe
    O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
    O4 - Global Startup: PC TimeWatch Tray Icon.lnk = C:\Program Files\MainSoft\PC TimeWatch\PctwTI.exe
    O8 - Extra context menu item: Chercher avec Copernic Agent - res://C:\Program Files\Copernic Agent\CopernicAgentExt.rdl/INTEGRATION_MENU_SEARCHEXT
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\shdocvw.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\shdocvw.dll
    O9 - Extra button: (no name) - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE (file missing)
    O9 - Extra 'Tools' menuitem: Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE (file missing)
    O9 - Extra button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE (file missing)
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe
    O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O14 - IERESET.INF: START_PAGE_URL=http://home.free.fr/
    O17 - HKLM\System\CCS\Services\Tcpip\..\{7DD9B40A-CCA6-43AF-A78D-4E49FD9E22CF}: NameServer = 212.27.40.240,212.27.40.241
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Filter: x-sdch - (no CLSID) - (no file)
    O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe
    O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
    O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    O23 - Service: ASKService - Unknown owner - C:\Program Files\AskBarDis\bar\bin\AskService.exe
    O23 - Service: ASKUpgrade - Unknown owner - C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
    O23 - Service: Creative Centrale Media Server (CTUPnPSv) - Unknown owner - C:\Program Files\Creative\Creative Centrale\CTUPnPSv.exe (file missing)
    O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\SYSTEM32\LEXBCES.EXE
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
    O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: PCTimeWatch (PTWsvc) - MainSoft - C:\Program Files\MainSoft\PC TimeWatch\PTWsvc.exe
    O23 - Service: Serutpac - Unknown owner - C:\WINDOWS\system32\Serutpac.exe
    O23 - Service: WLTRYSVC - Unknown owner - C:\WINDOWS\System32\wltrysvc.exe

    --
    End of file - 13922 bytes

    ======Scheduled tasks folder======

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
    Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-10-26 440384]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2008-06-11 61816]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1a1ddc19-5893-43ab-a73f-f41a0f34d115}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
    AskBar BHO - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-12-09 333192]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2E03C0FD-4C48-43A7-9A54-00240C70FF16}]
    ECarteBleueBrowserHelper Class - C:\WINDOWS\system32\BhoECart.dll [2003-05-14 69632]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Windows Live Sign-in Helper - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-07-07 324416]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
    Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-04-19 259696]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
    Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll [2009-04-16 668656]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {5d4831e0-5a7c-4a46-afd5-a79ab8ce36c2}
    {F2E259E8-0FC8-438C-A6E0-342DD80FA53E}
    {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-10-26 440384]
    {3041d03e-fd4b-44e0-b742-2d9b88305f98} - Ask Toolbar - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-12-09 333192]
    {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-04-19 259696]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "Raccourci vers la page des propriétés de High Definition Audio"=C:\WINDOWS\SYSTEM32\HDAudPropShortcut.exe [2004-03-17 61952]
    "Cmaudio"=RunDll32 cmicnfg.cpl,CMICtrlWnd []
    "zBrowser Launcher"=C:\Program Files\Logitech\iTouch\iTouch.exe [2004-03-18 892928]
    "LVCOMS"=C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE [2001-09-24 98304]
    "eCarteBleue-BP"=C:\Program Files\e-Carte Bleue\Banque Populaire\ECB-BP.exe [2003-06-20 188416]
    "NeroFilterCheck"=C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]
    "QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2007-02-16 282624]
    "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2007-03-14 257088]
    "Lexmark 3100 Series"=C:\Program Files\Lexmark 3100 Series\lxbrbmgr.exe [2003-09-03 106496]
    "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2007-09-17 8491008]
    "nwiz"=nwiz.exe /install []
    "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2007-09-17 81920]
    "Cloneur Expert Monitor"=C:\Program Files\Micro Application\Cloneur Expert\TrueImageMonitor.exe [2008-04-06 437675]
    "Acronis Scheduler2 Service"=C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe [2008-04-06 61440]
    "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]
    "avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
    "FamilyKeyLogger"=C:\Program Files\FamilyKeyLogger\cisvc.exe [2003-01-31 70144]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
    "isamonitor.exe"=C:\Program Files\Video ActiveX Object\isamonitor.exe []
    "Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\%s"=C:\Program Files\Video ActiveX Object\isamonitor.exe []
    "isamini.exe"=C:\Program Files\Video ActiveX Object\isamonitor.exe []

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
    "LDM"=C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2007-03-23 67128]
    "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe [2006-11-16 139264]
    "WebCamRT.exe"= []
    "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-02-18 39408]

    C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Démarrage
    Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe
    PC TimeWatch Tray Icon.lnk - C:\Program Files\MainSoft\PC TimeWatch\PctwTI.exe

    C:\Documents and Settings\Admin.XPSP2-3D84C0A6F\Menu Démarrer\Programmes\Démarrage
    Notification de cadeaux MSN.lnk - C:\Documents and Settings\Admin.XPSP2-3D84C0A6F\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe
    Outil de détection de support Picture Motion Browser.lnk - C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
    C:\WINDOWS\SYSTEM32\WgaLogon.dll [2009-03-10 265088]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=95000000
    "MemCheckBoxInRunDlg"=1
    "NoSMBalloonTip"=1
    "NoDesktopCleanupWizard"=1
    "NoWelcomeScreen"=1
    "NoAutoUpdate"=1
    "NoDriveAutoRun"=00010000

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "HonorAutoRunSetting"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
    "C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:D isabled:LimeWire"
    "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
    "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
    "C:\Program Files\TribalWeb.net\tribalweb.exe"="C:\Program Files\TribalWeb.net\tribalweb.exe:*:D isabled:TribalWeb.net : Réseau privé sur Internet"
    "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe"="C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe:*:Enabled:Kaspersky Anti-Virus 7.0"
    "C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:D isabled:@xpsp2res.dll,-22019"
    "D:\Jeux\JEUX\BF2142.exe"="D:\Jeux\JEUX\BF2142.exe:*:D isabled:Battlefield 2"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
    "C:\Program Files\eMule0.47c\emule.exe"="C:\Program Files\eMule0.47c\emule.exe:*:Enabled:eMule"
    "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe"="C:\Program Files\Veoh Networks\Veoh\VeohClient.exe:*:D isabled:Veoh Client"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
    "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{3e0e2cda-5836-11db-b67d-806d6172696f}]
    shell\AutoRun\command - H:\Install.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{7d2cd1eb-d326-11dd-b2f4-0011d802e50a}]
    shell\AutoRun\command - J:\DPFMate.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b8677340-fa99-11dc-9875-0011d802e50a}]
    shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe MS32DLL.dll.vbs

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e15beb17-c6b8-11dd-b2c8-0011d802e50a}]
    shell\AutoRun\command - wdsync.exe


    ======List of files/folders created in the last 1 months======

    2009-05-09 10:43:04 ----DC---- C:\WINDOWS\LastGood
    2009-05-09 10:42:57 ----DC---- C:\Program Files\Avira
    2009-05-09 10:42:57 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Avira
    2009-05-09 10:32:03 ----DC---- C:\Documents and Settings\Admin.XPSP2-3D84C0A6F\Application Data\Malwarebytes
    2009-05-09 10:31:58 ----DC---- C:\Program Files\Malwarebytes' Anti-Malware
    2009-05-09 10:31:58 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Malwarebytes
    2009-05-09 09:55:29 ----D---- C:\rsit
    2009-04-30 18:50:53 ----DC---- C:\Documents and Settings\Admin.XPSP2-3D84C0A6F\Application Data\dvdcss
    2009-04-30 18:50:52 ----DC---- C:\Program Files\vghd
    2009-04-30 08:33:42 ----DC---- C:\Documents and Settings\Admin.XPSP2-3D84C0A6F\Application Data\vghd
    2009-04-26 08:13:01 ----A---- C:\WINDOWS\system32\WooDial2000.dll
    2009-04-26 08:09:32 ----A---- C:\WINDOWS\system32\stci.dll
    2009-04-26 08:08:33 ----A---- C:\WINDOWS\system32\rnaph.dll
    2009-04-26 08:06:37 ----DC---- C:\Program Files\Wanadoo
    2009-04-25 10:51:06 ----DC---- C:\Program Files\CDDC-MahJongg
    2009-04-19 18:19:00 ----DC---- C:\Documents and Settings\Admin.XPSP2-3D84C0A6F\Application Data\vlc
    2009-04-19 18:17:36 ----DC---- C:\Program Files\VideoLAN
    2009-04-19 17:49:56 ----DC---- C:\Program Files\CCleaner
    2009-04-18 08:48:21 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Azureus
    2009-04-18 08:48:19 ----DC---- C:\Documents and Settings\Admin.XPSP2-3D84C0A6F\Application Data\Azureus
    2009-04-18 08:48:16 ----DC---- C:\Program Files\AskSearch
    2009-04-18 08:48:16 ----DC---- C:\Program Files\AskBarDis
    2009-04-18 08:39:47 ----DC---- C:\Program Files\Vuze
    2009-04-18 08:39:47 ----D---- C:\Program Files\Fichiers communs\i4j_jres
    2009-04-16 21:23:28 ----DC---- C:\Documents and Settings\Admin.XPSP2-3D84C0A6F\Application Data\Windows Search
    2009-04-15 07:10:29 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
    2009-04-15 07:10:22 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
    2009-04-15 07:08:24 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
    2009-04-15 07:08:12 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
    2009-04-15 07:08:06 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
    2009-04-15 07:06:15 ----HDC---- C:\WINDOWS\$NtUninstallKB963027$
    2009-04-15 07:06:03 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
    2009-04-13 08:07:36 ----DC---- C:\Documents and Settings\Admin.XPSP2-3D84C0A6F\Application Data\Pogo Games
    2009-04-13 08:05:41 ----DC---- C:\WINDOWS\Mahjong Fortuna 2 Deluxe
    2009-04-12 09:54:42 ----DC---- C:\Program Files\Kyodai Mahjongg 2006
    2009-04-11 13:41:05 ----DC---- C:\Program Files\Windows Desktop Search
    2009-04-11 13:40:23 ----HDC---- C:\WINDOWS\$NtUninstallKB915800-v4$
    2009-04-11 13:07:04 ----DC---- C:\WINDOWS\WBEM
    2009-04-11 08:04:38 ----DC---- C:\WINDOWS\ie8updates
    2009-04-11 07:57:03 ----AC---- C:\WINDOWS\system32\ieencode.dll
    2009-04-11 07:53:50 ----DC---- C:\Program Files\Microsoft Silverlight

    ======List of files/folders modified in the last 1 months======

    2009-05-09 10:57:50 ----D---- C:\Program Files\Trend Micro
    2009-05-09 10:55:47 ----HD---- C:\Program Files\FamilyKeyLogger
    2009-05-09 10:46:31 ----DC---- C:\WINDOWS
    2009-05-09 10:43:28 ----DC---- C:\WINDOWS\TEMP
    2009-05-09 10:43:06 ----D---- C:\WINDOWS\system32\drivers
    2009-05-09 10:43:05 ----HD---- C:\WINDOWS\inf
    2009-05-09 10:43:04 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-05-09 10:42:57 ----RHDC---- C:\Program Files
    2009-05-09 10:40:13 ----SHD---- C:\WINDOWS\Installer
    2009-05-09 10:40:12 ----SHDC---- C:\Config.Msi
    2009-05-09 10:40:11 ----D---- C:\WINDOWS\WinSxS
    2009-05-09 10:40:10 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
    2009-05-09 10:39:34 ----AC---- C:\WINDOWS\iTouch.ini
    2009-05-09 10:39:06 ----AD---- C:\WINDOWS\system32
    2009-05-09 10:38:07 ----N---- C:\WINDOWS\SchedLgU.Txt
    2009-05-09 10:37:46 ----RSD---- C:\WINDOWS\Fonts
    2009-05-09 09:27:49 ----DC---- C:\Program Files\Mozilla Firefox
    2009-05-09 09:12:42 ----D---- C:\Program Files\WinZip
    2009-05-09 09:10:12 ----D---- C:\Program Files\Fichiers communs
    2009-05-09 09:09:26 ----DC---- C:\WINDOWS\Prefetch
    2009-05-09 09:09:17 ----DC---- C:\WINDOWS\system32\DRVSTORE
    2009-05-09 09:06:36 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-05-09 09:05:14 ----D---- C:\WINDOWS\repair
    2009-05-09 08:53:44 ----DC---- C:\Program Files\MediaCoder
    2009-05-07 21:24:27 ----AC---- C:\WINDOWS\3DBELOTE2.INI
    2009-05-02 11:59:57 ----HD---- C:\WINDOWS\msdownld.tmp
    2009-05-02 11:59:47 ----D---- C:\Program Files\Internet Explorer
    2009-05-02 11:59:43 ----D---- C:\WINDOWS\Cursors
    2009-05-02 08:02:04 ----AC---- C:\WINDOWS\lexstat.ini
    2009-05-01 10:05:06 ----D---- C:\Program Files\Lavasoft Ad-Aware
    2009-04-30 20:49:18 ----DC---- C:\Program Files\PartyGaming
    2009-04-30 18:40:03 ----SD---- C:\WINDOWS\Downloaded Program Files
    2009-04-30 18:20:10 ----AC---- C:\WINDOWS\NeroDigital.ini
    2009-04-30 08:20:14 ----D---- C:\Program Files\eMule0.47c
    2009-04-27 07:01:42 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-04-26 10:53:30 ----DC---- C:\Program Files\Lexmark 3100 Series
    2009-04-26 09:18:00 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-04-26 08:28:45 ----DC---- C:\WINDOWS\network diagnostic
    2009-04-26 08:27:06 ----D---- C:\Program Files\Outlook Express
    2009-04-21 07:35:58 ----D---- C:\WINDOWS\system32\en-us
    2009-04-21 07:31:55 ----D---- C:\WINDOWS\system32\wbem
    2009-04-21 06:55:02 ----AC---- C:\WINDOWS\_delis32.ini
    2009-04-19 17:52:52 ----D---- C:\WINDOWS\Debug
    2009-04-15 10:16:02 ----D---- C:\WINDOWS\AppPatch
    2009-04-15 07:08:19 ----HD---- C:\WINDOWS\$hf_mig$
    2009-04-11 14:03:47 ----D---- C:\WINDOWS\system32\fr-fr
    2009-04-11 14:03:45 ----D---- C:\WINDOWS\Help
    2009-04-11 14:00:50 ----D---- C:\WINDOWS\Media
    2009-04-11 13:41:27 ----SD---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft
    2009-04-11 13:06:28 ----D---- C:\WINDOWS\system32\Samsung_USB_Drivers
    2009-04-11 07:53:27 ----SDC---- C:\Documents and Settings\Admin.XPSP2-3D84C0A6F\Application Data\Microsoft

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 aslm75;aslm75; \??\C:\WINDOWS\system32\drivers\aslm75.sys []
    R1 ASPI32;ASPI32; C:\WINDOWS\system32\drivers\ASPI32.sys [2003-12-22 25244]
    R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
    R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
    R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
    R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-02-13 28376]
    R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
    R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-02 12032]
    R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-03-24 55640]
    R2 MDC8021X;AEGIS Protocol (IEEE 802.1x) v2.3.0.0; C:\WINDOWS\system32\DRIVERS\mdc8021x.sys [2007-07-09 15584]
    R2 tifsfilter;Acronis TrueImage FS Filter; C:\WINDOWS\system32\DRIVERS\tifsfilt.sys [2008-04-06 28768]
    R3 Cam5603D;ASUS USB2.0 Webcam; C:\WINDOWS\System32\Drivers\BisonCam.sys [2006-08-18 840576]
    R3 cmudax;C-Media High Definition Audio Interface; C:\WINDOWS\system32\drivers\cmudax.sys [2005-05-12 1287296]
    R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2006-09-19 15664]
    R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
    R3 itchfltr;iTouch Keyboard Filter; C:\WINDOWS\system32\DRIVERS\itchfltr.sys [2004-03-10 12953]
    R3 L8042mou;Logitech SetPoint PS/2 Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\L8042mou.Sys [2005-05-20 54528]
    R3 LMouKE;Logitech SetPoint Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouKE.Sys [2005-05-20 68352]
    R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
    R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-09-17 6853088]
    R3 PTWDrv;PTW - Process monitoring driver; \??\C:\Program Files\MainSoft\PC TimeWatch\PTWatch.sys []
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
    R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
    R3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
    R3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
    R3 usbstor;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
    R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
    R3 Video3D;ASUS Video3D Service; C:\WINDOWS\System32\Drivers\Video3D.sys [2004-07-06 44544]
    R3 W8100XP;Marvell Libertas 802.11b/g SoftAP Driver for Windows XP ; C:\WINDOWS\system32\DRIVERS\mrv8ka51.sys [2004-05-21 258560]
    R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2004-06-16 180480]
    S1 lusbaudio;Logitech USB Microphone; C:\WINDOWS\system32\drivers\lvsound2.sys [2001-09-24 33280]
    S2 EIO;EIO; \??\C:\WINDOWS\system32\drivers\EIO.sys []
    S3 alcan5wn;SpeedTouch USB ADSL PPP Networking Driver (NDISWAN); C:\WINDOWS\system32\DRIVERS\alcan5wn.sys [2003-09-05 53600]
    S3 alcaudsl;SpeedTouch ADSL Modem ATM Transport; C:\WINDOWS\system32\DRIVERS\alcaudsl.sys [2003-09-05 70624]
    S3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
    S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
    S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files\MediaCoder\SysInfo.sys []
    S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
    S3 fbxusb;FreeBox USB Network Adapter; C:\WINDOWS\system32\DRIVERS\fbxusb.sys [2002-12-11 18953]
    S3 HdAudAddService;Pilote de fonction Microsoft UAA pour Service High Definition Audio; C:\WINDOWS\system32\drivers\HdAudio.sys [2004-03-17 113664]
    S3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2005-05-20 13056]
    S3 LVBulk;LVBulk Service; C:\WINDOWS\system32\DRIVERS\LVBulk.sys [2001-09-24 10261]
    S3 LVVI500A;LVVI500A Service; C:\WINDOWS\system32\DRIVERS\lvvi500a.sys [2001-09-20 193574]
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
    S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
    S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
    S3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
    S3 nm;Pilote du Moniteur réseau; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-13 40320]
    S3 PavSRK.sys;PavSRK.sys; \??\C:\WINDOWS\system32\PavSRK.sys []
    S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
    S3 ssm_bus;SAMSUNG Mobile USB Device II 1.0 driver (WDM); C:\WINDOWS\system32\DRIVERS\ssm_bus.sys [2005-08-30 58320]
    S3 ssm_mdfl;SAMSUNG Mobile USB Modem II 1.0 Filter; C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys [2005-08-30 8336]
    S3 ssm_mdm;SAMSUNG Mobile USB Modem II 1.0 Drivers; C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys [2005-08-30 94000]
    S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
    S3 TVICHW32;TVICHW32; \??\C:\WINDOWS\system32\DRIVERS\TVICHW32.SYS []
    S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
    S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
    S3 w200bus;Sony Ericsson W200 driver (WDM); C:\WINDOWS\system32\DRIVERS\w200bus.sys [2006-11-07 61504]
    S3 w200mdfl;Sony Ericsson W200 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\w200mdfl.sys [2006-11-07 9328]
    S3 w200mdm;Sony Ericsson W200 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\w200mdm.sys [2006-11-07 97056]
    S3 w200mgmt;Sony Ericsson W200 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\w200mgmt.sys [2006-11-07 88560]
    S3 w200obex;Sony Ericsson W200 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\w200obex.sys [2006-11-07 86368]
    S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
    S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
    S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 AcrSch2Svc;Acronis Scheduler2 Service; C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe [2008-04-06 151552]
    R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-04-01 108289]
    R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-03-02 185089]
    R2 ASKService;ASKService; C:\Program Files\AskBarDis\bar\bin\AskService.exe [2008-12-09 464264]
    R2 ASKUpgrade;ASKUpgrade; C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe [2008-12-09 234888]
    R2 LexBceS;LexBce Server; C:\WINDOWS\SYSTEM32\LEXBCES.EXE [2003-08-29 307200]
    R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe [2005-09-22 53248]
    R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
    R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2007-09-17 155716]
    R2 PTWsvc;PCTimeWatch; C:\Program Files\MainSoft\PC TimeWatch\PTWsvc.exe [2007-10-10 937984]
    R2 Serutpac;Serutpac; C:\WINDOWS\system32\Serutpac.exe [2003-11-13 296448]
    R2 WLTRYSVC;WLTRYSVC; C:\WINDOWS\System32\wltrysvc.exe [2003-10-07 45056]
    R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    R3 iPod Service;Service de l'iPod; C:\Program Files\iPod\bin\iPodService.exe [2007-03-14 500800]
    S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
    S3 CTUPnPSv;Creative Centrale Media Server; C:\Program Files\Creative\Creative Centrale\CTUPnPSv.exe []
    S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2006-10-20 36864]
    S3 getPlus(R) Helper;getPlus(R) Helper; C:\Program Files\NOS\bin\getPlus_HelperSvc.exe [2008-12-01 33752]
    S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-04-20 182768]
    S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
    S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2006-10-30 741376]
    S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-11-10 774144]
    S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
    S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
    S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
    S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2006-10-30 122880]

    -----------------EOF-----------------

    Contenus similaires
    10 Mai 2009 10:00:29

    Moi dans ces cas là je conseille d'utiliser Ad-aware pour supprimer les cochonneries, et de bannir définitivement Internet Explorer.
    Il suffit d'utiliser Firefox, Safari, Chrome, ou Opera, et on n'a plus de problème.
    a b 8 Sécurité
    10 Mai 2009 16:28:46

    Re,

    Télécharge MalwareByte's Anti-Malware sur ton Bureau.

  • Installe-le en double-cliquant sur le fichier Download_mbam-setup.exe.
  • Exécute maintenant MalwareByte's Anti-Malware. Si cela n'est pas déjà fait, sélectionne "Exécuter un examen complet".
  • Afin de lancer la recherche, clic sur"Rechercher".
  • Une fois le scan terminé, une fenêtre s'ouvre, clic sur OK. Deux possibilités s'offrent à toi :

    ~ Si le programme n'a rien trouvé, appuie sur OK. Un rapport va apparaître, ferme-le.
    ~~ Si des infections sont présentes, clic sur "Afficher les résultats" puis sur "Supprimer la sélection". Enregistre le rapport sur ton Bureau.
    ~~~~ Fais redémarrer ton ordinateur normalement et poste le rapport dans ta prochaine réponse.

    REMARQUE : Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok.[/#f]

    Note : Si tu ne parviens à télécharger MBAM à part de MajorGeeks, tu peux le télécharger ici!

    [#FF0000]Aide
    :
  • Comment utiliser MBAM.
  • Comment faire démarrer son ordinateur en mode sans échec.

    &

    Télécharge Lop S&D.exe (d’ Eric 71) sur ton Bureau.

  • Double-clique sur le raccourci Lop S&D présent sur ton bureau (Si tu es sous Vista, clique droit -> exécuter en tant qu'admin)
  • Séléctionne la langue souhaitée , puis choisis l'Option 1 (Recherche)
  • Patiente jusqu'à la fin du scan
  • Poste le rapport généré (C:\lopR.txt)
    11 Mai 2009 07:09:49

    Angeldark a dit :
    Re,

    Télécharge MalwareByte's Anti-Malware sur ton Bureau.

  • Installe-le en double-cliquant sur le fichier Download_mbam-setup.exe.
  • Exécute maintenant MalwareByte's Anti-Malware. Si cela n'est pas déjà fait, sélectionne "Exécuter un examen complet".
  • Afin de lancer la recherche, clic sur"Rechercher".
  • Une fois le scan terminé, une fenêtre s'ouvre, clic sur OK. Deux possibilités s'offrent à toi :

    ~ Si le programme n'a rien trouvé, appuie sur OK. Un rapport va apparaître, ferme-le.
    ~~ Si des infections sont présentes, clic sur "Afficher les résultats" puis sur "Supprimer la sélection". Enregistre le rapport sur ton Bureau.
    ~~~~ Fais redémarrer ton ordinateur normalement et poste le rapport dans ta prochaine réponse.

    REMARQUE : Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok.[/#f]

    Note : Si tu ne parviens à télécharger MBAM à part de MajorGeeks, tu peux le télécharger ici!

    [#FF0000]Aide
    :
  • Comment utiliser MBAM.
  • Comment faire démarrer son ordinateur en mode sans échec.

    &

    Télécharge Lop S&D.exe (d’ Eric 71) sur ton Bureau.

  • Double-clique sur le raccourci Lop S&D présent sur ton bureau (Si tu es sous Vista, clique droit -> exécuter en tant qu'admin)
  • Séléctionne la langue souhaitée , puis choisis l'Option 1 (Recherche)
  • Patiente jusqu'à la fin du scan
  • Poste le rapport généré (C:\lopR.txt)


  • Bonjour j'ai téléchargé les deux et apparemment cela fonctionne
    Merci


    --------------------\\ Lop S&D 4.2.5-0 XP/Vista

    Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
    X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 3.20GHz )
    BIOS : BIOS Date: 09/26/04 14:53:28 Ver: 08.00.10
    USER : Admin ( Administrator )
    BOOT : Normal boot
    Antivirus : Trend Micro Internet Security 14.00 (Not Activated)
    A:\ (USB)
    C:\ (Local Disk) - NTFS - Total:44 Go (Free:15 Go)
    D:\ (Local Disk) - NTFS - Total:232 Go (Free:219 Go)
    E:\ (Local Disk) - NTFS - Total:20 Go (Free:20 Go)
    F:\ (Local Disk) - NTFS - Total:87 Go (Free:79 Go)
    G:\ (CD or DVD)
    H:\ (CD or DVD)
    I:\ (USB)

    "C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
    Option : [1] ( 11/05/2009| 6:51 )

    --------------------\\ Listing des dossiers dans APPLIC~1

    [29/09/2006|18:17] C:\DOCUME~1\Admin\APPLIC~1\Google
    [27/09/2006|12:56] C:\DOCUME~1\Admin\APPLIC~1\Identities
    [03/10/2006|18:54] C:\DOCUME~1\Admin\APPLIC~1\Macromedia
    [29/09/2006|18:14] C:\DOCUME~1\Admin\APPLIC~1\Microsoft
    [02/10/2006|20:31] C:\DOCUME~1\Admin\APPLIC~1\Mozilla
    [29/09/2006|16:27] C:\DOCUME~1\Admin\APPLIC~1\Sun
    [02/10/2006|20:32] C:\DOCUME~1\Admin\APPLIC~1\Talkback

    [26/01/2008|17:36] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Adobe
    [26/01/2008|17:36] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\AdobeUM
    [01/01/2007|16:17] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Ahead
    [27/12/2006|18:34] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Apple Computer
    [30/04/2009|18:50] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Azureus
    [22/03/2009|11:27] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Babylon
    [08/03/2009|12:25] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Broad Intelligence
    [11/09/2007|22:39] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Copernic
    [07/03/2009|08:07] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Creative
    [12/12/2006|06:49] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\DivX
    [30/04/2009|18:50] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\dvdcss
    [08/03/2008|10:12] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\EAST Technologies
    [10/01/2008|23:23] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\EoRezo
    [08/03/2009|12:21] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Flock
    [26/03/2008|23:04] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Gadu-Gadu
    [02/04/2008|18:31] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Google
    [05/11/2007|14:37] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Help
    [10/10/2006|08:24] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Identities
    [30/03/2007|23:22] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\IDS_COMPANY
    [06/02/2007|23:05] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\InstallShield
    [11/10/2006|18:47] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\InterTrust
    [07/01/2008|23:12] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\ItsLabel
    [29/03/2008|08:35] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Leadertech
    [05/04/2008|08:04] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\LimeWire
    [25/11/2006|13:24] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Logitech
    [05/11/2007|19:09] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\ma-config.com
    [10/10/2006|17:57] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Macromedia
    [09/05/2009|10:32] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Malwarebytes
    [21/03/2008|11:28] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Micro Application
    [11/04/2009|07:53] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Microsoft
    [08/03/2009|12:22] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Mozilla
    [18/04/2007|16:30] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Nero
    [08/03/2009|12:18] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\OpenCandy
    [13/04/2009|08:07] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Pogo Games
    [13/05/2007|23:36] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Propellerhead Software
    [09/05/2009|09:11] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Samsung
    [03/02/2007|20:50] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\SecuROM
    [01/02/2009|19:23] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Sony Corporation
    [26/01/2008|17:29] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Sony Ericsson
    [26/01/2008|10:29] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\SpaceTime 3D
    [27/02/2009|19:12] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\SpinTop
    [12/11/2006|10:16] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Sun
    [26/01/2008|17:47] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Teleca
    [30/04/2009|08:33] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\vghd
    [19/04/2009|18:19] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\vlc
    [16/04/2009|21:23] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Windows Search
    [04/04/2008|07:20] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\WinRAR

    [10/10/2006|08:21] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft



    [31/03/2008|21:40] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Adobe
    [03/04/2008|21:22] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Ahead
    [25/03/2008|20:46] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Gadu-Gadu
    [01/03/2008|17:15] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Google
    [29/02/2008|19:04] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Identities
    [04/04/2008|21:27] C:\DOCUME~1\ALEXAN~1\APPLIC~1\LimeWire
    [29/02/2008|19:04] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Logitech
    [29/02/2008|22:13] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Macromedia
    [01/03/2008|17:01] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Microsoft
    [29/02/2008|19:04] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Sony Ericsson
    [29/02/2008|19:05] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Teleca

    [29/09/2006|16:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
    [29/09/2006|18:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [02/10/2006|07:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [29/09/2006|18:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage

    [23/02/2009|09:16] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Adobe
    [09/12/2007|11:59] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Ahead
    [27/12/2006|18:34] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple Computer
    [09/05/2009|10:42] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Avira
    [18/04/2009|08:48] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Azureus
    [22/03/2009|11:27] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Babylon
    [09/12/2007|18:52] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\BVRP Software
    [21/02/2009|20:10] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Creative
    [10/08/2007|07:45] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\DVD Shrink
    [03/11/2006|09:13] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Google
    [14/10/2007|10:10] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Google Updater
    [08/12/2008|19:28] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Kaspersky Lab Setup Files
    [21/02/2007|11:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Macrovision
    [29/02/2008|18:28] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\MainSoft
    [09/05/2009|10:31] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Malwarebytes
    [10/06/2007|19:54] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Messenger Plus!
    [11/04/2009|13:41] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft
    [20/12/2006|20:57] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft Help
    [14/03/2008|22:17] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Mozilla
    [11/01/2009|15:58] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\MSScanAppDataDir
    [01/01/2007|16:05] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Nero
    [23/02/2009|09:12] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\NOS
    [01/12/2007|16:29] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\nView_Profiles
    [15/06/2007|15:43] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\readme play coal noun
    [11/01/2009|15:59] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\SSScanAppDataDir
    [22/03/2009|11:15] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\TEMP
    [12/11/2006|16:27] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Trymedia
    [11/10/2006|07:02] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Genuine Advantage
    [11/03/2008|11:17] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\WinZip
    [07/02/2007|22:58] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Yahoo! Companion

    [27/09/2006|12:53] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

    [01/12/2007|15:53] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\Microsoft

    [27/09/2006|12:53] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

    [05/10/2006|18:26] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft

    [11/04/2009|13:56] C:\DOCUME~1\LOCALS~1.000\APPLIC~1\Microsoft

    [27/09/2006|12:53] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    [01/01/2008|16:57] C:\DOCUME~1\NETWOR~1.000\APPLIC~1\Google
    [01/01/2008|16:57] C:\DOCUME~1\NETWOR~1.000\APPLIC~1\Microsoft

    --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

    [29/04/2009 17:11][--a--c---] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [10/05/2009 16:08][--ah-c---] C:\WINDOWS\tasks\SA.DAT
    [02/10/2001 18:16][-r-h-c---] C:\WINDOWS\tasks\desktop.ini

    --------------------\\ Listing des dossiers dans C:\Program Files

    [13/05/2007|08:48] C:\Program Files\Accessories
    [23/02/2009|09:15] C:\Program Files\Adobe
    [01/01/2007|16:04] C:\Program Files\Ahead
    [27/12/2006|18:27] C:\Program Files\Apple Software Update
    [18/04/2009|08:48] C:\Program Files\AskBarDis
    [18/04/2009|08:48] C:\Program Files\AskSearch
    [09/03/2008|08:50] C:\Program Files\ASUS
    [02/01/2009|22:04] C:\Program Files\ASUS LifeFrame
    [05/11/2007|19:13] C:\Program Files\ASUSTeK
    [21/02/2009|20:10] C:\Program Files\Audible
    [09/12/2007|18:52] C:\Program Files\Avanquest update
    [09/05/2009|10:42] C:\Program Files\Avira
    [29/03/2009|10:00] C:\Program Files\AviSynth 2.5
    [11/09/2007|22:39] C:\Program Files\BitSpirit
    [19/04/2009|17:49] C:\Program Files\CCleaner
    [09/05/2009|14:55] C:\Program Files\CDDC-MahJongg
    [27/09/2006|12:50] C:\Program Files\ComPlus Applications
    [09/03/2008|08:28] C:\Program Files\Conduit
    [29/09/2006|16:30] C:\Program Files\CyberLink
    [11/09/2007|22:39] C:\Program Files\directx
    [26/01/2008|17:33] C:\Program Files\Disc2Phone
    [19/03/2008|21:46] C:\Program Files\DivX
    [10/08/2007|07:45] C:\Program Files\DVD Shrink
    [20/11/2006|23:40] C:\Program Files\e-Carte Bleue
    [10/05/2009|18:24] C:\Program Files\e-Carte Bleue Banque Populaire
    [30/04/2009|08:20] C:\Program Files\eMule0.47c
    [11/05/2009|06:45] C:\Program Files\FamilyKeyLogger
    [19/03/2008|21:46] C:\Program Files\FaxTools eXPert Network(2)
    [09/05/2009|09:10] C:\Program Files\Fichiers communs
    [08/03/2009|12:26] C:\Program Files\Flock
    [08/04/2009|20:23] C:\Program Files\Free Video Converter
    [28/11/2006|19:18] C:\Program Files\Free.fr
    [18/02/2009|08:07] C:\Program Files\Google
    [03/06/2007|16:43] C:\Program Files\GRETECH
    [19/03/2008|21:46] C:\Program Files\iMediaCodec
    [09/05/2009|09:06] C:\Program Files\InstallShield Installation Information
    [29/09/2006|16:16] C:\Program Files\Intel
    [02/05/2009|11:59] C:\Program Files\Internet Explorer
    [18/04/2007|17:20] C:\Program Files\iPod
    [29/09/2006|16:26] C:\Program Files\ITE
    [04/04/2008|20:44] C:\Program Files\iTunes
    [23/08/2007|14:25] C:\Program Files\iWin.com
    [04/04/2008|18:29] C:\Program Files\Java
    [05/04/2008|09:09] C:\Program Files\Kaspersky Lab
    [12/04/2009|14:54] C:\Program Files\Kyodai Mahjongg 2006
    [01/05/2009|10:05] C:\Program Files\Lavasoft Ad-Aware
    [26/04/2009|10:53] C:\Program Files\Lexmark 3100 Series
    [25/11/2006|13:21] C:\Program Files\Logitech
    [19/03/2008|21:46] C:\Program Files\ma-config.com
    [29/02/2008|18:28] C:\Program Files\MainSoft
    [09/05/2009|10:32] C:\Program Files\Malwarebytes' Anti-Malware
    [29/09/2006|16:26] C:\Program Files\Marvell
    [09/05/2009|08:53] C:\Program Files\MediaCoder
    [18/12/2008|21:04] C:\Program Files\Messenger
    [15/06/2007|15:43] C:\Program Files\Messenger Plus! Live
    [21/03/2008|11:22] C:\Program Files\Micro Application
    [13/12/2008|18:28] C:\Program Files\Microsoft Digital Image 2006
    [27/09/2006|12:53] C:\Program Files\microsoft frontpage
    [20/12/2006|20:57] C:\Program Files\Microsoft Office
    [13/04/2009|10:10] C:\Program Files\Microsoft Silverlight
    [29/09/2006|17:48] C:\Program Files\Microsoft Visual Studio
    [21/12/2006|23:29] C:\Program Files\Microsoft Works
    [06/02/2007|23:05] C:\Program Files\Microsoft Xbox 360 Accessories
    [29/09/2006|17:12] C:\Program Files\Microsoft.NET
    [17/12/2008|08:26] C:\Program Files\movie maker
    [09/05/2009|09:27] C:\Program Files\Mozilla Firefox
    [23/12/2008|17:11] C:\Program Files\MSBuild
    [15/06/2007|15:43] C:\Program Files\MSN Apps
    [10/10/2006|08:21] C:\Program Files\msn gaming zone
    [21/02/2009|21:36] C:\Program Files\MSN Messenger
    [08/08/2007|09:12] C:\Program Files\MSXML 4.0
    [11/09/2007|22:39] C:\Program Files\MumboJumbo
    [31/12/2006|18:52] C:\Program Files\MUSICMATCH
    [03/12/2006|11:14] C:\Program Files\Nero
    [17/12/2008|08:24] C:\Program Files\NetMeeting
    [23/02/2009|09:11] C:\Program Files\NOS
    [29/09/2006|17:23] C:\Program Files\OfficeUpdate11
    [26/04/2009|08:27] C:\Program Files\Outlook Express
    [30/04/2009|20:49] C:\Program Files\PartyGaming
    [04/04/2008|20:49] C:\Program Files\QuickTime
    [23/12/2008|17:05] C:\Program Files\Reference Assemblies
    [29/03/2009|10:08] C:\Program Files\Ripp-it_AM
    [06/04/2008|07:53] C:\Program Files\Safety Bar
    [08/04/2009|12:09] C:\Program Files\Samsung
    [29/09/2006|16:27] C:\Program Files\Silicon Image
    [27/12/2008|18:31] C:\Program Files\Sony
    [22/03/2009|11:29] C:\Program Files\TorrentSpeeder
    [09/05/2009|10:57] C:\Program Files\Trend Micro
    [27/09/2006|12:55] C:\Program Files\Uninstall Information
    [30/04/2009|18:50] C:\Program Files\vghd
    [29/09/2006|16:11] C:\Program Files\VID_0E8F&PID_0003
    [19/04/2009|18:17] C:\Program Files\VideoLAN
    [18/04/2009|08:40] C:\Program Files\Vuze
    [26/04/2009|08:27] C:\Program Files\Wanadoo
    [21/04/2009|07:35] C:\Program Files\Windows Desktop Search
    [29/09/2006|16:39] C:\Program Files\Windows Media Components
    [05/08/2007|12:22] C:\Program Files\Windows Media Connect 2
    [18/03/2009|08:16] C:\Program Files\Windows Media Player
    [27/09/2006|12:53] C:\Program Files\Windows NT
    [27/09/2006|12:52] C:\Program Files\WindowsUpdate
    [04/01/2009|13:18] C:\Program Files\WinRAR
    [13/02/2008|07:58] C:\Program Files\Winspy
    [09/05/2009|09:12] C:\Program Files\WinZip
    [27/09/2006|12:53] C:\Program Files\xerox
    [07/02/2007|22:55] C:\Program Files\Yahoo!

    --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

    [06/04/2008|09:22] C:\Program Files\Fichiers communs\Acronis
    [13/12/2008|18:28] C:\Program Files\Fichiers communs\Adobe
    [01/01/2007|16:06] C:\Program Files\Fichiers communs\Ahead
    [01/12/2007|16:37] C:\Program Files\Fichiers communs\AnwSoft
    [11/09/2007|22:39] C:\Program Files\Fichiers communs\Copernic
    [29/09/2006|17:55] C:\Program Files\Fichiers communs\DESIGNER
    [29/09/2006|17:03] C:\Program Files\Fichiers communs\Fellowes
    [18/04/2009|08:39] C:\Program Files\Fichiers communs\i4j_jres
    [29/09/2006|16:11] C:\Program Files\Fichiers communs\InstallShield
    [29/09/2006|16:27] C:\Program Files\Fichiers communs\Java
    [04/04/2008|20:43] C:\Program Files\Fichiers communs\LightScribe
    [25/11/2006|13:20] C:\Program Files\Fichiers communs\Logitech
    [21/02/2007|11:38] C:\Program Files\Fichiers communs\Macrovision Shared
    [10/05/2009|10:26] C:\Program Files\Fichiers communs\Microsoft Shared
    [27/09/2006|12:51] C:\Program Files\Fichiers communs\MSSoap
    [14/10/2006|16:11] C:\Program Files\Fichiers communs\Nero
    [27/09/2006|14:46] C:\Program Files\Fichiers communs\ODBC
    [11/10/2006|18:53] C:\Program Files\Fichiers communs\Panda Software
    [10/10/2006|08:19] C:\Program Files\Fichiers communs\Services
    [27/09/2006|14:46] C:\Program Files\Fichiers communs\SpeechEngines
    [17/12/2008|08:24] C:\Program Files\Fichiers communs\System

    --------------------\\ Process

    ( 58 Processes )

    iexplore.exe ~ [PID:2412]

    --------------------\\ Recherche avec S_Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Recherche de Fichiers / Dossiers Lop

    C:\Program Files\TorrentSpeeder
    C:\DOCUME~1\ADMIN~2.XPS\Cookies\admin@advertising[2].txt
    C:\DOCUME~1\ADMIN~2.XPS\Cookies\admin@partygaming.122.2o7[1].txt

    --------------------\\ Verification du Registre

    ..... OK !

    --------------------\\ Verification du fichier Hosts

    Fichier Hosts MODIFIE

    127.0.0.1 bin.errorprotector.com ## added by CiD
    127.0.0.1 br.errorsafe.com ## added by CiD
    127.0.0.1 br.winantivirus.com ## added by CiD
    127.0.0.1 br.winfixer.com ## added by CiD
    127.0.0.1 cdn.drivecleaner.com ## added by CiD
    127.0.0.1 cdn.errorsafe.com ## added by CiD
    127.0.0.1 cdn.winsoftware.com ## added by CiD
    127.0.0.1 de.errorsafe.com ## added by CiD
    127.0.0.1 de.winantivirus.com ## added by CiD
    127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
    127.0.0.1 download.cdn.errorsafe.com ## added by CiD
    127.0.0.1 download.cdn.winsoftware.com ## added by CiD
    127.0.0.1 download.errorsafe.com ## added by CiD
    127.0.0.1 download.systemdoctor.com ## added by CiD
    127.0.0.1 download.winantispyware.com ## added by CiD
    127.0.0.1 download.windrivecleaner.com ## added by CiD
    127.0.0.1 download.winfixer.com ## added by CiD
    127.0.0.1 drivecleaner.com ## added by CiD
    127.0.0.1 dynamique.drivecleaner.com ## added by CiD
    127.0.0.1 errorprotector.com ## added by CiD
    127.0.0.1 errorsafe.com ## added by CiD
    127.0.0.1 es.winantivirus.com ## added by CiD
    127.0.0.1 fr.winantivirus.com ## added by CiD
    127.0.0.1 fr.winfixer.com ## added by CiD
    127.0.0.1 go.drivecleaner.com ## added by CiD
    127.0.0.1 go.errorsafe.com ## added by CiD
    127.0.0.1 go.winantispyware.com ## added by CiD
    127.0.0.1 go.winantivirus.com ## added by CiD
    127.0.0.1 hk.winantivirus.com ## added by CiD
    127.0.0.1 instlog.errorsafe.com ## added by CiD
    127.0.0.1 instlog.winantivirus.com ## added by CiD
    127.0.0.1 instlog.winfixer.com ## added by CiD
    127.0.0.1 jsp.drivecleaner.com ## added by CiD
    127.0.0.1 kb.errorsafe.com ## added by CiD
    127.0.0.1 kb.winantivirus.com ## added by CiD
    127.0.0.1 nl.errorsafe.com ## added by CiD
    127.0.0.1 se.errorsafe.com ## added by CiD
    127.0.0.1 secure.drivecleaner.com ## added by CiD
    127.0.0.1 secure.errorsafe.com ## added by CiD
    127.0.0.1 secure.winantispam.com ## added by CiD
    127.0.0.1 secure.winantispy.com ## added by CiD
    127.0.0.1 secure.winantivirus.com ## added by CiD
    127.0.0.1 support.winantivirus.com ## added by CiD
    127.0.0.1 trial.updates.winsoftware.com ## added by CiD
    127.0.0.1 ulog.winantivirus.com ## added by CiD
    127.0.0.1 utils.errorsafe.com ## added by CiD
    127.0.0.1 utils.winantivirus.com ## added by CiD
    127.0.0.1 utils.winfixer.com ## added by CiD
    127.0.0.1 winantispyware.com ## added by CiD
    127.0.0.1 winantivirus.com ## added by CiD
    127.0.0.1 winfixer.com ## added by CiD
    127.0.0.1 winfixer2006.com ## added by CiD
    127.0.0.1 winsoftware.com ## added by CiD
    127.0.0.1 www.drivecleaner.com ## added by CiD
    127.0.0.1 www.errorprotector.com ## added by CiD
    127.0.0.1 www.errorsafe.com ## added by CiD
    127.0.0.1 www.systemdoctor.com ## added by CiD
    127.0.0.1 www.utils.winfixer.com ## added by CiD
    127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
    127.0.0.1 www.win-virus-pro.com ## added by CiD
    127.0.0.1 www.winantispam.com ## added by CiD
    127.0.0.1 www.winantispy.com ## added by CiD
    127.0.0.1 www.winantispyware.com ## added by CiD
    127.0.0.1 www.winantivirus.com ## added by CiD
    127.0.0.1 www.winantiviruspro.com ## added by CiD
    127.0.0.1 www.windrivecleaner.com ## added by CiD
    127.0.0.1 www.windrivesafe.com ## added by CiD
    127.0.0.1 www.winfixer.com ## added by CiD
    127.0.0.1 www.winfixer2006.com ## added by CiD
    127.0.0.1 www.winsoftware.com ## added by CiD

    -> 72 [ 70 ## added by CiD ]

    --------------------\\ Recherche de fichiers avec Catchme

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2009-05-11 06:52:33
    Windows 5.1.2600 Service Pack 3 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 240

    --------------------\\ Recherche d'autres infections

    C:\WINDOWS\system32\PsuENqss.ini
    C:\WINDOWS\system32\PsuENqss.ini2
    ==> VUNDO <==



    [F:17][D:4]-> C:\DOCUME~1\ADMIN~2.XPS\LOCALS~1\Temp
    [F:88][D:0]-> C:\DOCUME~1\ADMIN~2.XPS\Cookies
    [F:255][D:4]-> C:\DOCUME~1\ADMIN~2.XPS\LOCALS~1\TEMPOR~1\content.IE5

    1 - "C:\Lop SD\LopR_1.txt" - 11/05/2009| 6:53 - Option : [1]

    --------------------\\ Fin du rapport a 6:53:49
    Malwarebytes' Anti-Malware 1.36
    Version de la base de données: 2098
    Windows 5.1.2600 Service Pack 3

    11/05/2009 07:08:41
    mbam-log-2009-05-11 (07-08-41).txt

    Type de recherche: Examen rapide
    Eléments examinés: 116041
    Temps écoulé: 3 minute(s), 12 second(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 0
    Valeur(s) du Registre infectée(s): 0
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 0

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Valeur(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    (Aucun élément nuisible détecté)

    a b 8 Sécurité
    11 Mai 2009 19:56:12

    Re,

    Télécharge ComboFix (de sUBs) sur ton Bureau.

  • Désactive temporairement toute protection résidente ! (Antivirus, antispywares..)
  • Double clique sur ComboFix.exe.
  • Accepte la licence en cliquant sur Oui.
  • Le programme va te demander si tu souhaites installer la Console de Récupération. C'est une précaution, au cas où l'ordinateur tomberait en panne. Je te conseille donc de l'installer, ça ne coûte rien, et ça pourrait potentiellement servir !
  • Lorsque l'opération sera terminée, un rapport apparaîtra. Poste ce rapport dans ta prochaine réponse.

    Le rapport se trouve ici : %SystemDrive%\ComboFix.txt (%systemdrive% étant la partition où est installée Windows; C:\ en général)

    Aide : Comment utiliser ComboFix.

    &

    Relance Lop S&D.

  • Choisis cette fois ci l'Option 2 (Suppression)
    [#ff0000]! Ne ferme pas la fenêtre lors de la suppression ! [/#f]
  • Poste le rapport généré (C:\lopR.txt)
    12 Mai 2009 07:28:17

    Bonjour, voici le rapport
    bonne journée


    --------------------\\ Lop S&D 4.2.5-0 XP/Vista

    Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
    X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 3.20GHz )
    BIOS : BIOS Date: 09/26/04 14:53:28 Ver: 08.00.10
    USER : Admin ( Administrator )
    BOOT : Normal boot
    Antivirus : Trend Micro Internet Security 14.00 (Not Activated)
    A:\ (USB)
    C:\ (Local Disk) - NTFS - Total:44 Go (Free:15 Go)
    D:\ (Local Disk) - NTFS - Total:232 Go (Free:219 Go)
    E:\ (Local Disk) - NTFS - Total:20 Go (Free:20 Go)
    F:\ (Local Disk) - NTFS - Total:87 Go (Free:79 Go)
    G:\ (CD or DVD)
    H:\ (CD or DVD)
    I:\ (USB)

    "C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
    Option : [2] ( 12/05/2009| 7:23 )


    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

    Supprime! - C:\DOCUME~1\ADMIN~2.XPS\Cookies\admin@euroclick[2].txt

    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


    --------------------\\ Listing des dossiers dans APPLIC~1

    [29/09/2006|18:17] C:\DOCUME~1\Admin\APPLIC~1\Google
    [27/09/2006|12:56] C:\DOCUME~1\Admin\APPLIC~1\Identities
    [03/10/2006|18:54] C:\DOCUME~1\Admin\APPLIC~1\Macromedia
    [29/09/2006|18:14] C:\DOCUME~1\Admin\APPLIC~1\Microsoft
    [02/10/2006|20:31] C:\DOCUME~1\Admin\APPLIC~1\Mozilla
    [29/09/2006|16:27] C:\DOCUME~1\Admin\APPLIC~1\Sun
    [02/10/2006|20:32] C:\DOCUME~1\Admin\APPLIC~1\Talkback

    [26/01/2008|17:36] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Adobe
    [26/01/2008|17:36] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\AdobeUM
    [01/01/2007|16:17] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Ahead
    [27/12/2006|18:34] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Apple Computer
    [12/05/2009|07:22] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Azureus
    [22/03/2009|11:27] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Babylon
    [08/03/2009|12:25] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Broad Intelligence
    [11/09/2007|22:39] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Copernic
    [07/03/2009|08:07] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Creative
    [12/12/2006|06:49] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\DivX
    [30/04/2009|18:50] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\dvdcss
    [08/03/2008|10:12] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\EAST Technologies
    [10/01/2008|23:23] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\EoRezo
    [08/03/2009|12:21] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Flock
    [26/03/2008|23:04] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Gadu-Gadu
    [02/04/2008|18:31] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Google
    [05/11/2007|14:37] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Help
    [10/10/2006|08:24] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Identities
    [30/03/2007|23:22] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\IDS_COMPANY
    [06/02/2007|23:05] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\InstallShield
    [11/10/2006|18:47] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\InterTrust
    [07/01/2008|23:12] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\ItsLabel
    [29/03/2008|08:35] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Leadertech
    [05/04/2008|08:04] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\LimeWire
    [25/11/2006|13:24] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Logitech
    [05/11/2007|19:09] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\ma-config.com
    [10/10/2006|17:57] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Macromedia
    [09/05/2009|10:32] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Malwarebytes
    [21/03/2008|11:28] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Micro Application
    [11/04/2009|07:53] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Microsoft
    [08/03/2009|12:22] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Mozilla
    [18/04/2007|16:30] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Nero
    [08/03/2009|12:18] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\OpenCandy
    [13/04/2009|08:07] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Pogo Games
    [13/05/2007|23:36] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Propellerhead Software
    [09/05/2009|09:11] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Samsung
    [03/02/2007|20:50] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\SecuROM
    [01/02/2009|19:23] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Sony Corporation
    [26/01/2008|17:29] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Sony Ericsson
    [26/01/2008|10:29] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\SpaceTime 3D
    [27/02/2009|19:12] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\SpinTop
    [12/11/2006|10:16] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Sun
    [26/01/2008|17:47] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Teleca
    [30/04/2009|08:33] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\vghd
    [19/04/2009|18:19] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\vlc
    [16/04/2009|21:23] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\Windows Search
    [04/04/2008|07:20] C:\DOCUME~1\ADMIN~2.XPS\APPLIC~1\WinRAR

    [10/10/2006|08:21] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft



    [31/03/2008|21:40] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Adobe
    [03/04/2008|21:22] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Ahead
    [25/03/2008|20:46] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Gadu-Gadu
    [01/03/2008|17:15] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Google
    [29/02/2008|19:04] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Identities
    [04/04/2008|21:27] C:\DOCUME~1\ALEXAN~1\APPLIC~1\LimeWire
    [29/02/2008|19:04] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Logitech
    [29/02/2008|22:13] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Macromedia
    [01/03/2008|17:01] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Microsoft
    [29/02/2008|19:04] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Sony Ericsson
    [29/02/2008|19:05] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Teleca

    [29/09/2006|16:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
    [29/09/2006|18:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [02/10/2006|07:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [29/09/2006|18:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage

    [23/02/2009|09:16] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Adobe
    [09/12/2007|11:59] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Ahead
    [27/12/2006|18:34] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple Computer
    [09/05/2009|10:42] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Avira
    [18/04/2009|08:48] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Azureus
    [22/03/2009|11:27] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Babylon
    [09/12/2007|18:52] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\BVRP Software
    [21/02/2009|20:10] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Creative
    [10/08/2007|07:45] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\DVD Shrink
    [03/11/2006|09:13] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Google
    [14/10/2007|10:10] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Google Updater
    [08/12/2008|19:28] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Kaspersky Lab Setup Files
    [21/02/2007|11:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Macrovision
    [29/02/2008|18:28] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\MainSoft
    [09/05/2009|10:31] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Malwarebytes
    [10/06/2007|19:54] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Messenger Plus!
    [11/04/2009|13:41] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft
    [20/12/2006|20:57] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft Help
    [14/03/2008|22:17] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Mozilla
    [11/01/2009|15:58] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\MSScanAppDataDir
    [01/01/2007|16:05] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Nero
    [23/02/2009|09:12] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\NOS
    [01/12/2007|16:29] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\nView_Profiles
    [15/06/2007|15:43] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\readme play coal noun
    [11/01/2009|15:59] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\SSScanAppDataDir
    [22/03/2009|11:15] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\TEMP
    [12/11/2006|16:27] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Trymedia
    [11/10/2006|07:02] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Genuine Advantage
    [11/03/2008|11:17] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\WinZip
    [07/02/2007|22:58] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Yahoo! Companion

    [27/09/2006|12:53] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

    [01/12/2007|15:53] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\Microsoft

    [27/09/2006|12:53] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

    [05/10/2006|18:26] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft

    [11/04/2009|13:56] C:\DOCUME~1\LOCALS~1.000\APPLIC~1\Microsoft

    [27/09/2006|12:53] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    [01/01/2008|16:57] C:\DOCUME~1\NETWOR~1.000\APPLIC~1\Google
    [01/01/2008|16:57] C:\DOCUME~1\NETWOR~1.000\APPLIC~1\Microsoft

    --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

    [29/04/2009 17:11][--a--c---] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [12/05/2009 06:50][--ah-c---] C:\WINDOWS\tasks\SA.DAT
    [02/10/2001 18:16][-r-h-c---] C:\WINDOWS\tasks\desktop.ini

    --------------------\\ Listing des dossiers dans C:\Program Files

    [13/05/2007|08:48] C:\Program Files\Accessories
    [23/02/2009|09:15] C:\Program Files\Adobe
    [01/01/2007|16:04] C:\Program Files\Ahead
    [27/12/2006|18:27] C:\Program Files\Apple Software Update
    [18/04/2009|08:48] C:\Program Files\AskBarDis
    [18/04/2009|08:48] C:\Program Files\AskSearch
    [09/03/2008|08:50] C:\Program Files\ASUS
    [02/01/2009|22:04] C:\Program Files\ASUS LifeFrame
    [05/11/2007|19:13] C:\Program Files\ASUSTeK
    [21/02/2009|20:10] C:\Program Files\Audible
    [09/12/2007|18:52] C:\Program Files\Avanquest update
    [09/05/2009|10:42] C:\Program Files\Avira
    [29/03/2009|10:00] C:\Program Files\AviSynth 2.5
    [11/09/2007|22:39] C:\Program Files\BitSpirit
    [19/04/2009|17:49] C:\Program Files\CCleaner
    [09/05/2009|14:55] C:\Program Files\CDDC-MahJongg
    [27/09/2006|12:50] C:\Program Files\ComPlus Applications
    [09/03/2008|08:28] C:\Program Files\Conduit
    [29/09/2006|16:30] C:\Program Files\CyberLink
    [11/09/2007|22:39] C:\Program Files\directx
    [26/01/2008|17:33] C:\Program Files\Disc2Phone
    [19/03/2008|21:46] C:\Program Files\DivX
    [10/08/2007|07:45] C:\Program Files\DVD Shrink
    [20/11/2006|23:40] C:\Program Files\e-Carte Bleue
    [10/05/2009|18:24] C:\Program Files\e-Carte Bleue Banque Populaire
    [12/05/2009|07:05] C:\Program Files\eMule0.47c
    [12/05/2009|06:50] C:\Program Files\FamilyKeyLogger
    [19/03/2008|21:46] C:\Program Files\FaxTools eXPert Network(2)
    [09/05/2009|09:10] C:\Program Files\Fichiers communs
    [08/03/2009|12:26] C:\Program Files\Flock
    [08/04/2009|20:23] C:\Program Files\Free Video Converter
    [28/11/2006|19:18] C:\Program Files\Free.fr
    [18/02/2009|08:07] C:\Program Files\Google
    [03/06/2007|16:43] C:\Program Files\GRETECH
    [19/03/2008|21:46] C:\Program Files\iMediaCodec
    [09/05/2009|09:06] C:\Program Files\InstallShield Installation Information
    [29/09/2006|16:16] C:\Program Files\Intel
    [02/05/2009|11:59] C:\Program Files\Internet Explorer
    [18/04/2007|17:20] C:\Program Files\iPod
    [29/09/2006|16:26] C:\Program Files\ITE
    [04/04/2008|20:44] C:\Program Files\iTunes
    [23/08/2007|14:25] C:\Program Files\iWin.com
    [04/04/2008|18:29] C:\Program Files\Java
    [05/04/2008|09:09] C:\Program Files\Kaspersky Lab
    [12/04/2009|14:54] C:\Program Files\Kyodai Mahjongg 2006
    [11/05/2009|07:15] C:\Program Files\Lavasoft Ad-Aware
    [26/04/2009|10:53] C:\Program Files\Lexmark 3100 Series
    [25/11/2006|13:21] C:\Program Files\Logitech
    [19/03/2008|21:46] C:\Program Files\ma-config.com
    [29/02/2008|18:28] C:\Program Files\MainSoft
    [09/05/2009|10:32] C:\Program Files\Malwarebytes' Anti-Malware
    [29/09/2006|16:26] C:\Program Files\Marvell
    [09/05/2009|08:53] C:\Program Files\MediaCoder
    [18/12/2008|21:04] C:\Program Files\Messenger
    [15/06/2007|15:43] C:\Program Files\Messenger Plus! Live
    [21/03/2008|11:22] C:\Program Files\Micro Application
    [13/12/2008|18:28] C:\Program Files\Microsoft Digital Image 2006
    [27/09/2006|12:53] C:\Program Files\microsoft frontpage
    [20/12/2006|20:57] C:\Program Files\Microsoft Office
    [13/04/2009|10:10] C:\Program Files\Microsoft Silverlight
    [29/09/2006|17:48] C:\Program Files\Microsoft Visual Studio
    [21/12/2006|23:29] C:\Program Files\Microsoft Works
    [06/02/2007|23:05] C:\Program Files\Microsoft Xbox 360 Accessories
    [29/09/2006|17:12] C:\Program Files\Microsoft.NET
    [17/12/2008|08:26] C:\Program Files\movie maker
    [11/05/2009|14:51] C:\Program Files\Mozilla Firefox
    [23/12/2008|17:11] C:\Program Files\MSBuild
    [15/06/2007|15:43] C:\Program Files\MSN Apps
    [10/10/2006|08:21] C:\Program Files\msn gaming zone
    [21/02/2009|21:36] C:\Program Files\MSN Messenger
    [08/08/2007|09:12] C:\Program Files\MSXML 4.0
    [11/09/2007|22:39] C:\Program Files\MumboJumbo
    [31/12/2006|18:52] C:\Program Files\MUSICMATCH
    [03/12/2006|11:14] C:\Program Files\Nero
    [17/12/2008|08:24] C:\Program Files\NetMeeting
    [23/02/2009|09:11] C:\Program Files\NOS
    [29/09/2006|17:23] C:\Program Files\OfficeUpdate11
    [26/04/2009|08:27] C:\Program Files\Outlook Express
    [30/04/2009|20:49] C:\Program Files\PartyGaming
    [04/04/2008|20:49] C:\Program Files\QuickTime
    [23/12/2008|17:05] C:\Program Files\Reference Assemblies
    [29/03/2009|10:08] C:\Program Files\Ripp-it_AM
    [06/04/2008|07:53] C:\Program Files\Safety Bar
    [08/04/2009|12:09] C:\Program Files\Samsung
    [29/09/2006|16:27] C:\Program Files\Silicon Image
    [27/12/2008|18:31] C:\Program Files\Sony
    [09/05/2009|10:57] C:\Program Files\Trend Micro
    [27/09/2006|12:55] C:\Program Files\Uninstall Information
    [30/04/2009|18:50] C:\Program Files\vghd
    [29/09/2006|16:11] C:\Program Files\VID_0E8F&PID_0003
    [19/04/2009|18:17] C:\Program Files\VideoLAN
    [18/04/2009|08:40] C:\Program Files\Vuze
    [26/04/2009|08:27] C:\Program Files\Wanadoo
    [21/04/2009|07:35] C:\Program Files\Windows Desktop Search
    [29/09/2006|16:39] C:\Program Files\Windows Media Components
    [05/08/2007|12:22] C:\Program Files\Windows Media Connect 2
    [18/03/2009|08:16] C:\Program Files\Windows Media Player
    [27/09/2006|12:53] C:\Program Files\Windows NT
    [27/09/2006|12:52] C:\Program Files\WindowsUpdate
    [04/01/2009|13:18] C:\Program Files\WinRAR
    [13/02/2008|07:58] C:\Program Files\Winspy
    [09/05/2009|09:12] C:\Program Files\WinZip
    [27/09/2006|12:53] C:\Program Files\xerox
    [07/02/2007|22:55] C:\Program Files\Yahoo!

    --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

    [06/04/2008|09:22] C:\Program Files\Fichiers communs\Acronis
    [13/12/2008|18:28] C:\Program Files\Fichiers communs\Adobe
    [01/01/2007|16:06] C:\Program Files\Fichiers communs\Ahead
    [01/12/2007|16:37] C:\Program Files\Fichiers communs\AnwSoft
    [11/09/2007|22:39] C:\Program Files\Fichiers communs\Copernic
    [29/09/2006|17:55] C:\Program Files\Fichiers communs\DESIGNER
    [29/09/2006|17:03] C:\Program Files\Fichiers communs\Fellowes
    [18/04/2009|08:39] C:\Program Files\Fichiers communs\i4j_jres
    [29/09/2006|16:11] C:\Program Files\Fichiers communs\InstallShield
    [29/09/2006|16:27] C:\Program Files\Fichiers communs\Java
    [04/04/2008|20:43] C:\Program Files\Fichiers communs\LightScribe
    [25/11/2006|13:20] C:\Program Files\Fichiers communs\Logitech
    [21/02/2007|11:38] C:\Program Files\Fichiers communs\Macrovision Shared
    [10/05/2009|10:26] C:\Program Files\Fichiers communs\Microsoft Shared
    [27/09/2006|12:51] C:\Program Files\Fichiers communs\MSSoap
    [14/10/2006|16:11] C:\Program Files\Fichiers communs\Nero
    [27/09/2006|14:46] C:\Program Files\Fichiers communs\ODBC
    [11/10/2006|18:53] C:\Program Files\Fichiers communs\Panda Software
    [10/10/2006|08:19] C:\Program Files\Fichiers communs\Services
    [27/09/2006|14:46] C:\Program Files\Fichiers communs\SpeechEngines
    [17/12/2008|08:24] C:\Program Files\Fichiers communs\System

    --------------------\\ Process

    ( 56 Processes )

    ... OK !

    --------------------\\ Recherche avec S_Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Recherche de Fichiers / Dossiers Lop

    C:\DOCUME~1\ADMIN~2.XPS\Cookies\admin@advertising[2].txt

    --------------------\\ Verification du Registre

    ..... OK !

    --------------------\\ Verification du fichier Hosts

    Fichier Hosts PROPRE


    --------------------\\ Recherche de fichiers avec Catchme

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2009-05-12 07:24:34
    Windows 5.1.2600 Service Pack 3 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 240

    --------------------\\ Recherche d'autres infections

    C:\WINDOWS\system32\PsuENqss.ini
    C:\WINDOWS\system32\PsuENqss.ini2
    ==> VUNDO <==



    [F:25][D:5]-> C:\DOCUME~1\ADMIN~2.XPS\LOCALS~1\Temp
    [F:66][D:0]-> C:\DOCUME~1\ADMIN~2.XPS\Cookies
    [F:18][D:4]-> C:\DOCUME~1\ADMIN~2.XPS\LOCALS~1\TEMPOR~1\content.IE5

    1 - "C:\Lop SD\LopR_1.txt" - 11/05/2009| 6:53 - Option : [1]
    2 - "C:\Lop SD\LopR_2.txt" - 12/05/2009| 7:18 - Option : [2]
    3 - "C:\Lop SD\LopR_3.txt" - 12/05/2009| 7:25 - Option : [2]

    --------------------\\ Fin du rapport a 7:25:37
    a b 8 Sécurité
    12 Mai 2009 19:02:12

    Le combofix ?
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS