Votre question

Virtumonde , zlob.dowloader hijackthis

Tags :
  • Windows
  • Sécurité
Dernière réponse : dans Sécurité et virus
29 Avril 2009 13:21:39

Bonjour ,
Je crais etre infecté par le trojan virtumonde et zlob.dowloader voici mon rapport hijackthis :

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\system32\cisvc.exe
c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
c:\APPS\Powercinema\Kernel\TV\CLSched.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
c:\APPS\HIDSERVICE\HIDSERVICE.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Motive\McciCMService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\tcpsvcs.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\OrangeHSS\Launcher\Launcher.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\OrangeHSS\systray\systrayapp.exe
C:\Program Files\OrangeHSS\Deskboard\deskboard.exe
C:\Program Files\OrangeHSS\connectivity\connectivitymanager.exe
C:\Program Files\OrangeHSS\connectivity\CoreCom\CoreCom.exe
C:\Program Files\OrangeHSS\connectivity\CoreCom\OraConfigRecover.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
C:\Program Files\OrangeHSS\browser\browser.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Documents and Settings\PAPA!!!!!!!!!!\Mes documents\scanner.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com/?fr=fp-yie8
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com/?fr=fp-yie8
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fourni par Yahoo!
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [1A:MacVisionTrayMonitor] C:\DOCUME~1\astrid!!\LOCALS~1\Temp\Rar$EX01.234\TrayMonitor.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe
O4 - HKLM\..\Run: [LVCOMS] "C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [BDMCon] C:\PROGRA~1\Softwin\BITDEF~1\bdmcon.exe
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe"
O4 - HKLM\..\Run: [ATIPTA] "C:\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2008\IEShow.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [PHIME2002ASync] "C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE" /SYNC
O4 - HKLM\..\Run: [PHIME2002A] "C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE" /IMEName
O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Orange_Install] "C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp\KIT1.tmp\Installation\Tempcomponents\LIVEASSISTANT\Live Assistant 2.0.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Nord] C:\WINDOWS\system32\nordsys.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU)
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O15 - Trusted Zone: http://pfttbc.ft.motive.com
O15 - Trusted Zone: http://*.orange.fr
O15 - Trusted Zone: http://rw.search.ke.voila.fr
O15 - Trusted Zone: http://orange.weborama.fr
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
O16 - DPF: {029FDBA6-3547-11D7-AA4C-0050BF051A00} (Rawflow ICD Client) - http://s.tf1.fr/mmdia/static/rawflow/clients/5.3.1.0/Ra...
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
O16 - DPF: {45E83043-1F6F-4D22-A5E7-0138EA171B49} (FileSharingCtrl Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Ap...
O16 - DPF: {4D7F48C0-CB49-4EA6-97D4-04F4EACC2F3B} - http://sib1.od2.com/common/Member/ClientInstall/9.20.00...
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common...
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://go.divx.com/plugin/DivXBrowserPlugin.cab
O16 - DPF: {7F8C8173-AD80-4807-AA75-5672F22B4582} (ICSScanner Class) - http://download.zonelabs.com/bin/promotions/spywaredete...
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://drivers1.free.fr/hardwaredetection.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-09.sun.com/s/ESD7/JSCDL/jdk/6u13-b03/jin...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDown...
O16 - DPF: {B79A53C0-1DAC-4636-BACE-FD086A7A79BF} (AdSignerLCContrl Class) - https://static.impots.gouv.fr/tdir/static/adpform/AdSig...
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.ca...
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown....
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - c:\APPS\HIDSERVICE\HIDSERVICE.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Fichiers communs\Motive\McciCMService.exe
O23 - Service: MysqlInventime - Unknown owner - c:\mysql\bin\mysqld-nt.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - BitDefender - C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe

--
End of file - 15124 bytes

Merci pour votre aide ;) 

Autres pages sur : virtumonde zlob dowloader hijackthis

a c 327 8 Sécurité
a b 9 Windows
29 Avril 2009 13:32:51

Bonjour,

Tu es infecté.

  • Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.
  • Double-clique sur RSIT.exe afin de lancer le programme.
    (Sous Vista, il faut cliquer droit sur RSIT.exe et choisir Exécuter en tant qu'administrateur)
  • Clique sur Continue à l'écran Disclaimer.
  • Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
  • Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

    Note : les rapports sont sauvegardés dans le dossier C:\rsit.
    29 Avril 2009 13:42:34

    ok ! alors voila le log.tkt :
    Logfile of random's system information tool 1.06 (written by random/random)
    Run by PAPA!!!!!!!!!! at 2009-04-29 13:37:37
    Microsoft Windows XP Édition familiale Service Pack 2
    System drive C: has 147 GB (80%) free of 185 GB
    Total RAM: 1015 MB (43% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 13:38:37, on 29/04/2009
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
    C:\WINDOWS\system32\cisvc.exe
    c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
    c:\APPS\Powercinema\Kernel\TV\CLSched.exe
    C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
    C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
    C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
    c:\APPS\HIDSERVICE\HIDSERVICE.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\Program Files\Fichiers communs\Motive\McciCMService.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
    C:\WINDOWS\system32\tcpsvcs.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe
    C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
    C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Canon\CAL\CALMAIN.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe
    C:\WINDOWS\system32\igfxpers.exe
    C:\WINDOWS\system32\hkcmd.exe
    C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
    C:\Program Files\OrangeHSS\systray\systrayapp.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\WINDOWS\system32\cidaemon.exe
    C:\Program Files\OrangeHSS\Launcher\Launcher.exe
    C:\Program Files\OrangeHSS\connectivity\connectivitymanager.exe
    C:\Program Files\OrangeHSS\Deskboard\deskboard.exe
    C:\Program Files\OrangeHSS\connectivity\CoreCom\CoreCom.exe
    C:\Program Files\OrangeHSS\connectivity\CoreCom\OraConfigRecover.exe
    C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
    C:\Program Files\OrangeHSS\browser\browser.exe
    C:\WINDOWS\system32\NOTEPAD.EXE
    C:\Documents and Settings\PAPA!!!!!!!!!!\Mes documents\RSIT.exe
    C:\Program Files\trend micro\PAPA!!!!!!!!!!.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com/?fr=fp-yie8
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com/?fr=fp-yie8
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fourni par Yahoo!
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll
    O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll
    O4 - HKLM\..\Run: [1A:MacVisionTrayMonitor] C:\DOCUME~1\astrid!!\LOCALS~1\Temp\Rar$EX01.234\TrayMonitor.exe
    O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe
    O4 - HKLM\..\Run: [LVCOMS] "C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE"
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [BDMCon] C:\PROGRA~1\Softwin\BITDEF~1\bdmcon.exe
    O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe"
    O4 - HKLM\..\Run: [ATIPTA] "C:\ATI Technologies\ATI Control Panel\atiptaxx.exe"
    O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
    O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
    O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2008\IEShow.exe"
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [PHIME2002ASync] "C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE" /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] "C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE" /IMEName
    O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
    O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
    O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
    O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [Orange_Install] "C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp\KIT1.tmp\Installation\Tempcomponents\LIVEASSISTANT\Live Assistant 2.0.exe"
    O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\S-1-5-18\..\Run: [Nord] C:\WINDOWS\system32\nordsys.exe (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU)
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
    O15 - Trusted Zone: http://pfttbc.ft.motive.com
    O15 - Trusted Zone: http://*.orange.fr
    O15 - Trusted Zone: http://rw.search.ke.voila.fr
    O15 - Trusted Zone: http://orange.weborama.fr
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
    O16 - DPF: {029FDBA6-3547-11D7-AA4C-0050BF051A00} (Rawflow ICD Client) - http://s.tf1.fr/mmdia/static/rawflow/clients/5.3.1.0/Ra...
    O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
    O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
    O16 - DPF: {45E83043-1F6F-4D22-A5E7-0138EA171B49} (FileSharingCtrl Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Ap...
    O16 - DPF: {4D7F48C0-CB49-4EA6-97D4-04F4EACC2F3B} - http://sib1.od2.com/common/Member/ClientInstall/9.20.00...
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
    O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common...
    O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://go.divx.com/plugin/DivXBrowserPlugin.cab
    O16 - DPF: {7F8C8173-AD80-4807-AA75-5672F22B4582} (ICSScanner Class) - http://download.zonelabs.com/bin/promotions/spywaredete...
    O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://drivers1.free.fr/hardwaredetection.cab
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-09.sun.com/s/ESD7/JSCDL/jdk/6u13-b03/jin...
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
    O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDown...
    O16 - DPF: {B79A53C0-1DAC-4636-BACE-FD086A7A79BF} (AdSignerLCContrl Class) - https://static.impots.gouv.fr/tdir/static/adpform/AdSig...
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.ca...
    O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown....
    O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
    O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
    O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe
    O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
    O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
    O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - c:\APPS\HIDSERVICE\HIDSERVICE.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
    O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Fichiers communs\Motive\McciCMService.exe
    O23 - Service: MysqlInventime - Unknown owner - c:\mysql\bin\mysqld-nt.exe
    O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
    O23 - Service: BitDefender Communicator (XCOMM) - BitDefender - C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe

    --
    End of file - 13834 bytes

    ======Scheduled tasks folder======

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    C:\WINDOWS\tasks\B4F9E28E94AE87FA.job
    C:\WINDOWS\tasks\BitDefender Antivirus Plus v10.job
    C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-4036880024-3374177845-1600862251-1010.job
    C:\WINDOWS\tasks\User_Feed_Synchronization-{8890293E-B54D-4D96-9D65-53B36DA8869D}.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Adobe PDF Reader Link Helper - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-12-18 59032]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
    Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-09-15 1562960]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-04-29 35840]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
    JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-04-29 73728]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - BitDefender Toolbar - C:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll [2008-02-28 86016]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "1A:MacVisionTrayMonitor"=C:\DOCUME~1\astrid!!\LOCALS~1\Temp\Rar$EX01.234\TrayMonitor.exe []
    "WinampAgent"=C:\Program Files\Winamp\winampa.exe []
    "TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe -osboot []
    "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-04-29 148888]
    "Raccourci vers la page des propriétés de High Definition Audio"=C:\WINDOWS\system32\HDAudPropShortcut.exe [2004-03-17 61952]
    "QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-03-28 413696]
    "ORAHSSSessionManager"=C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe [2008-01-22 107248]
    "LVCOMS"=C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE []
    "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-03-30 267048]
    "BDMCon"=C:\PROGRA~1\Softwin\BITDEF~1\bdmcon.exe []
    "BDAgent"=C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe [2008-12-28 368640]
    "ATIPTA"=C:\ATI Technologies\ATI Control Panel\atiptaxx.exe []
    "AlcWzrd"=ALCWZRD.EXE []
    "Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2004-07-20 57344]
    "BitDefender Antiphishing Helper"=C:\Program Files\BitDefender\BitDefender 2008\IEShow.exe [2007-10-09 61440]
    "SoundMan"=SOUNDMAN.EXE []
    "PHIME2002ASync"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC []
    "PHIME2002A"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName []
    "PCMService"=c:\Apps\Powercinema\PCMService.exe []
    "IMJPMIG8.1"=C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [2004-08-05 208952]
    "igfxtray"=C:\WINDOWS\system32\igfxtray.exe [2005-09-20 94208]
    "igfxpers"=C:\WINDOWS\system32\igfxpers.exe [2005-09-20 114688]
    "igfxhkcmd"=C:\WINDOWS\system32\hkcmd.exe [2005-09-20 77824]
    "Cmaudio"=RunDll32 cmicnfg.cpl,CMICtrlWnd []

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "swg"=C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe []
    "Orange_Install"=C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp\KIT1.tmp\Installation\Tempcomponents\LIVEASSISTANT\Live Assistant 2.0.exe [2008-01-22 226880]
    "Google Update"=C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2008-12-30 133104]
    "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2006-03-02 15360]

    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
    Adobe Gamma Loader.lnk - C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    Lancement rapide d'Adobe Reader.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
    C:\WINDOWS\system32\Ati2evxx.dll [2005-02-12 61440]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
    C:\WINDOWS\system32\igfxdev.dll [2005-09-20 135168]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
    C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WRNotifier]
    WRLogonNTF.dll []

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2006-03-02 240128]
    WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "DisableTaskMgr"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=95000000
    "NoToolbarCustomize"=0
    "NoBandCustomize"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "HonorAutoRunSetting"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Messenger"
    "C:\Program Files\Valve\Steam\SteamApps\curly_is_cool\counter-strike\hl.exe"="C:\Program Files\Valve\Steam\SteamApps\curly_is_cool\counter-strike\hl.exe:*:Enabled:Half-Life Launcher"
    "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d8f9621d-f67a-11dc-9e42-00038a000015}]
    shell\AutoRun\command - J:\setupSNK.exe


    ======List of files/folders created in the last 1 months======

    2009-04-29 13:37:38 ----D---- C:\Program Files\trend micro
    2009-04-29 13:37:37 ----D---- C:\rsit
    2009-04-29 04:06:41 ----D---- C:\Program Files\CCleaner
    2009-04-29 03:27:18 ----A---- C:\WINDOWS\system32\javaws.exe
    2009-04-29 03:27:18 ----A---- C:\WINDOWS\system32\javaw.exe
    2009-04-29 03:27:18 ----A---- C:\WINDOWS\system32\deploytk.dll
    2009-04-29 03:27:17 ----A---- C:\WINDOWS\system32\java.exe
    2009-04-29 02:26:30 ----D---- C:\VundoFix Backups
    2009-04-29 02:26:30 ----A---- C:\VundoFix.txt
    2009-04-18 10:24:05 ----HD---- C:\WINDOWS\PIF
    2009-04-18 03:26:11 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
    2009-04-18 03:25:29 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
    2009-04-18 03:19:43 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
    2009-04-18 03:18:51 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
    2009-04-18 03:17:13 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
    2009-04-18 03:16:49 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
    2009-04-09 13:42:03 ----D---- C:\Documents and Settings\PAPA!!!!!!!!!!\Application Data\Yahoo!
    2009-04-09 13:38:53 ----HDC---- C:\WINDOWS\ie8

    ======List of files/folders modified in the last 1 months======

    2009-04-29 13:38:08 ----D---- C:\WINDOWS\Temp
    2009-04-29 13:37:38 ----RAD---- C:\Program Files
    2009-04-29 13:37:28 ----D---- C:\WINDOWS\Prefetch
    2009-04-29 13:30:37 ----AD---- C:\WINDOWS\system32
    2009-04-29 12:49:36 ----SHD---- C:\WINDOWS\Installer
    2009-04-29 12:48:28 ----SHD---- C:\Config.Msi
    2009-04-29 12:48:11 ----DC---- C:\WINDOWS\system32\DRVSTORE
    2009-04-29 12:48:10 ----HD---- C:\WINDOWS\inf
    2009-04-29 12:48:08 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-04-29 12:48:01 ----D---- C:\Program Files\Fichiers communs
    2009-04-29 12:45:23 ----D---- C:\WINDOWS
    2009-04-29 12:43:51 ----D---- C:\Program Files\WinRAR
    2009-04-29 12:42:52 ----D---- C:\Program Files\epson
    2009-04-29 12:42:49 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-04-29 12:42:09 ----D---- C:\Program Files\Orange
    2009-04-29 12:40:39 ----D---- C:\Program Files\Yahoo!
    2009-04-29 10:21:43 ----D---- C:\Documents and Settings\PAPA!!!!!!!!!!\Application Data\ZoomBrowser EX
    2009-04-29 10:21:35 ----D---- C:\Documents and Settings\PAPA!!!!!!!!!!\Application Data\CameraWindowDC
    2009-04-29 04:33:21 ----N---- C:\WINDOWS\SchedLgU.Txt
    2009-04-29 04:32:01 ----A---- C:\WINDOWS\bdagent.INI
    2009-04-29 04:24:26 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
    2009-04-29 04:21:44 ----D---- C:\WINDOWS\Debug
    2009-04-29 04:21:02 ----D---- C:\WINDOWS\Minidump
    2009-04-29 03:30:37 ----SD---- C:\WINDOWS\Downloaded Program Files
    2009-04-29 03:23:33 ----D---- C:\Program Files\Java
    2009-04-28 10:34:05 ----D---- C:\Program Files\Mozilla Firefox
    2009-04-28 02:41:14 ----D---- C:\My Music
    2009-04-27 17:17:10 ----SHD---- C:\RECYCLER
    2009-04-27 15:58:15 ----D---- C:\Documents and Settings\All Users\Application Data\Skype
    2009-04-18 10:25:28 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-04-18 10:20:40 ----D---- C:\WINDOWS\system32\wbem
    2009-04-18 10:20:37 ----D---- C:\WINDOWS\AppPatch
    2009-04-18 03:26:14 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-04-18 03:19:18 ----HD---- C:\WINDOWS\$hf_mig$
    2009-04-09 14:15:05 ----SD---- C:\WINDOWS\Tasks
    2009-04-09 13:57:20 ----D---- C:\WINDOWS\system32\fr-fr
    2009-04-09 13:57:19 ----D---- C:\WINDOWS\Media
    2009-04-09 13:57:19 ----D---- C:\WINDOWS\Help
    2009-04-09 13:57:19 ----D---- C:\Program Files\Internet Explorer
    2009-04-09 13:43:00 ----HD---- C:\WINDOWS\msdownld.tmp
    2009-04-06 16:57:24 ----A---- C:\WINDOWS\system32\MRT.exe

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 bdftdif;bdftdif; \??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Firewall\bdftdif.sys []
    R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2006-03-02 40320]
    R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
    R1 Tcpip6;Pilote du protocole IPv6 Microsoft; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2008-06-20 225920]
    R2 Aspi32;Aspi32; C:\WINDOWS\system32\drivers\Aspi32.sys [1999-09-10 25244]
    R2 NwlnkIpx;Protocole de transport compatible NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2006-03-02 88448]
    R2 NwlnkNb;NetBIOS NWLink; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2006-03-02 63232]
    R2 NwlnkSpx;Protocole NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2006-03-02 55936]
    R2 STEC3;STEC3; \??\C:\WINDOWS\system32\STEC3.sys []
    R3 Bdfndisf;BitDefender Firewall NDIS Filter Service; C:\WINDOWS\system32\DRIVERS\bdfndisf.sys [2008-06-02 86792]
    R3 bdfsfltr;bdfsfltr; C:\WINDOWS\system32\drivers\bdfsfltr.sys [2008-01-07 196368]
    R3 BDSelfPr;BDSelfPr; \??\C:\Program Files\BitDefender\BitDefender 2008\bdselfpr.sys []
    R3 Cap713x;Cap713x Video Capture; C:\WINDOWS\system32\DRIVERS\Cap713x.sys [2005-01-28 671104]
    R3 cmuda;C-Media WDM Audio Interface; C:\WINDOWS\system32\drivers\cmuda.sys [2005-05-12 1332544]
    R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2008-01-29 16168]
    R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2005-09-20 1302332]
    R3 Mtlmnt5;Mtlmnt5; C:\WINDOWS\system32\DRIVERS\Mtlmnt5.sys [2003-07-16 221736]
    R3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
    R3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2005-03-04 74496]
    R3 Slntamr;SmartLink AMR_PCI Driver; C:\WINDOWS\system32\DRIVERS\slntamr.sys [2003-08-20 548952]
    R3 SlWdmSup;SlWdmSup; C:\WINDOWS\system32\DRIVERS\SlWdmSup.sys [2003-07-02 39348]
    R3 tunmp;Pilote de carte miniport Tun Microsoft; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2006-03-02 12416]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-04 26624]
    R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-04 57600]
    R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2006-03-02 26496]
    R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-04 20480]
    R3 wanatw;WAN Miniport (ATW); C:\WINDOWS\system32\DRIVERS\wanatw4.sys [2003-01-10 33588]
    S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2006-03-02 14848]
    S3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2006-03-02 60800]
    S3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-02-12 986624]
    S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
    S3 HdAudAddService;Pilote de fonction Microsoft UAA pour Service High Definition Audio; C:\WINDOWS\system32\drivers\HdAudio.sys [2004-03-17 113664]
    S3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2004-03-17 135168]
    S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2006-03-02 9600]
    S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2004-09-16 2257920]
    S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12288]
    S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\FICHIE~1\Motive\MREMP50.SYS []
    S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\FICHIE~1\Motive\MREMP50a64.SYS []
    S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\C:\PROGRA~1\FICHIE~1\Motive\MREMPR5.SYS []
    S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\C:\PROGRA~1\FICHIE~1\Motive\MRENDIS5.SYS []
    S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\FICHIE~1\Motive\MRESP50.SYS []
    S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\FICHIE~1\Motive\MRESP50a64.SYS []
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
    S3 Mtlstrm;Mtlstrm; C:\WINDOWS\system32\DRIVERS\Mtlstrm.sys [2003-07-02 1301128]
    S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
    S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2006-03-02 10880]
    S3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2006-03-02 61824]
    S3 NtMtlFax;NtMtlFax; C:\WINDOWS\system32\DRIVERS\NtMtlFax.sys [2003-07-02 167384]
    S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCAMPR5.SYS []
    S3 Profos;Profos; \??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\profos.sys []
    S3 QCMerced;Logitech QuickCam Express; C:\WINDOWS\system32\DRIVERS\LVCM.sys [2002-09-20 472396]
    S3 RecAgent;recagent; \??\C:\WINDOWS\system32\DRIVERS\RecAgent.sys []
    S3 RTL8023;Realtek RTL8139/810x/8169/8110 all in one NDIS NT Driver; C:\WINDOWS\system32\DRIVERS\Rtlnic51.sys [2003-12-31 69504]
    S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2006-03-02 11136]
    S3 SlNtHal;SlNtHal; C:\WINDOWS\system32\DRIVERS\Slnthal.sys [2003-07-02 86128]
    S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:\WINDOWS\system32\DRIVERS\ss_bus.sys [2005-08-30 58320]
    S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; C:\WINDOWS\system32\DRIVERS\ss_mdfl.sys [2005-08-30 8304]
    S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; C:\WINDOWS\system32\DRIVERS\ss_mdm.sys [2005-08-30 94000]
    S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2006-03-02 15360]
    S3 Trufos;Trufos; \??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\trufos.sys []
    S3 USB_RNDIS;Inventel Gateway; C:\WINDOWS\system32\DRIVERS\usb8023.sys [2006-03-02 12672]
    S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-03 59264]
    S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2006-03-02 31616]
    S3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2006-03-02 17024]
    S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
    S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
    S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2006-10-18 38528]
    S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
    S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
    S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 6to4;Service d'application d'assistance IPv6; C:\WINDOWS\system32\svchost.exe [2006-03-02 14336]
    R2 AOL ACS;AOL Connectivity Service; C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe [2004-02-25 1123440]
    R2 CCALib8;Canon Camera Access Library 8; C:\Program Files\Canon\CAL\CALMAIN.exe [2007-01-31 96370]
    R2 CLCapSvc;CyberLink Background Capture Service (CBCS); c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe [2005-01-28 176220]
    R2 CLSched;CyberLink Task Scheduler (CTS); c:\APPS\Powercinema\Kernel\TV\CLSched.exe [2005-01-28 110682]
    R2 CyberLink Media Library Service;CyberLink Media Library Service; C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe [2005-01-28 24576]
    R2 FTRTSVC;France Telecom Routing Table Service; C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [2008-01-22 65536]
    R2 GenericHidService;Generic Service for HID Keyboard Input Collections; c:\APPS\HIDSERVICE\HIDSERVICE.exe [2005-01-07 49152]
    R2 Iprip;Écouteur RIP; C:\WINDOWS\System32\svchost.exe [2006-03-02 14336]
    R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-04-29 152984]
    R2 LIVESRV;BitDefender Desktop Update Service; C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe [2008-12-28 1179648]
    R2 McciCMService;McciCMService; C:\Program Files\Fichiers communs\Motive\McciCMService.exe [2007-10-23 303104]
    R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe [2003-06-20 322120]
    R2 NwSapAgent;Agent SAP; C:\WINDOWS\system32\svchost.exe [2006-03-02 14336]
    R2 SimpTcp;Services TCP/IP simplifiés; C:\WINDOWS\system32\tcpsvcs.exe [2006-03-02 19456]
    R2 VSSERV;BitDefender Virus Shield; C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe [2008-12-28 1261568]
    R2 XCOMM;BitDefender Communicator; C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe [2007-11-27 86016]
    R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2008-03-30 504104]
    R3 scan;BitDefender Threat Scanner; C:\WINDOWS\System32\svchost.exe [2006-03-02 14336]
    S2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-02-12 344064]
    S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
    S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
    S3 LPDSVC;Serveur d'impression TCP/IP; C:\WINDOWS\system32\tcpsvcs.exe [2006-03-02 19456]
    S3 MysqlInventime;MysqlInventime; c:\mysql\bin\mysqld-nt MysqlInventime []
    S3 p2pgasvc;Authentification de groupe réseau homologue; C:\WINDOWS\system32\svchost.exe [2006-03-02 14336]
    S3 p2pimsvc;Gestionnaire d'identité réseau homologue; C:\WINDOWS\system32\svchost.exe [2006-03-02 14336]
    S3 p2psvc;Réseau homologue; C:\WINDOWS\system32\svchost.exe [2006-03-02 14336]
    S3 PNRPSvc;Protocole de résolution de noms d'homologues; C:\WINDOWS\system32\svchost.exe [2006-03-02 14336]
    S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
    S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
    S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
    S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2006-03-02 14336]

    -----------------EOF-----------------
    et l'info.txt :
    info.txt logfile of random's system information tool 1.06 2009-04-29 13:38:43

    ======Uninstall list======

    -->"C:\Program Files\Fichiers communs\aolshare\Coach\AolCInUn.exe" -lang="fr-fr"
    -->c:\apps\skype\phone\unins000.exe
    -->C:\PROGRA~1\FICHIE~1\AOL\ACS\AcsUninstall.exe /c
    -->C:\Program Files\Fichiers communs\AOL\Screensaver\uninst_ygpss.exe
    -->C:\Program Files\Fichiers communs\aolshare\Aolunins_fr.exe
    -->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
    -->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
    -->C:\Program Files\Learn2.com\StRunner\stuninst.exe
    -->C:\Program Files\Viewpoint\Viewpoint Experience Technology\mtsAxInstaller.exe /u
    -->C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\orun32.isu
    -->C:\WINDOWS\system32\\MSIEXEC.EXE /x {9541FED0-327F-4df0-8B96-EF57EF622F19}
    -->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe"
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{23EFDB58-0874-4883-9810-EDA510B19FAE}\setup.exe" -l0x9
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2637C347-9DAD-11D6-9EA2-00055D0CA761}\Setup.EXE" -uninstall
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2BB79C8D-9DCC-4861-8A23-AE1B0B45E2B6}\setup.exe" -l0x9
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{775FFF70-4A8C-4500-908D-3C34DBEB11D5}\setup.exe" -l0x9
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{83021AC3-086F-4B77-ACCD-1BD7C9AB211E}\setup.exe" -l0x9
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B14F9B26-D695-4C4A-8B11-0FE6CDCC797B}\setup.exe" -l0x9
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E213C271-AEFA-481D-A9B4-914D88925B8D}\setup.exe" -l0x9
    -->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:D ISPLAY -clean
    -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
    Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
    Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
    Adobe Photoshop 7.0-->C:\WINDOWS\ISUN040C.EXE -f"C:\Program Files\Adobe\Photoshop 7.0\Uninst.isu" -c"C:\Program Files\Adobe\Photoshop 7.0\Uninst.dll"
    Adobe Reader 7.1.0 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A71000000002}
    Advanced Messenger Plus-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Advanced Messenger Plus\Uninst.isu"
    Apple Software Update-->MsiExec.exe /I{02DFF6B1-1654-411C-8D7B-FD6052EF016F}
    Assistant de connexion Windows Live-->MsiExec.exe /I{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}
    Atlas mondial Microsoft Encarta 2000-->"C:\Program Files\Microsoft Encarta\Atlas mondial Encarta 2000\evgunnst.exe" /uninstall
    BitDefender Internet Security 2008-->MsiExec.exe /I{BF7D87C5-CFC3-40C5-A367-24586EEBB8CA}
    Canon Camera Access Library-->"C:\Program Files\Fichiers communs\Canon\UIW\1.5.0.0\Uninst.exe" "C:\Program Files\Canon\CAL\Uninst.ini"
    Canon Camera Support Core Library-->"C:\Program Files\Fichiers communs\Canon\UIW\1.5.0.0\Uninst.exe" "C:\Program Files\Canon\CSCLIB\Uninst.ini"
    CANON iMAGE GATEWAY Task for ZoomBrowser EX-->"C:\Program Files\Fichiers communs\Canon\UIW\1.5.0.0\Uninst.exe" "C:\Program Files\Canon\ZoomBrowser EX\Program\CRWUnInstall.ini"
    Canon Internet Library for ZoomBrowser EX-->"C:\Program Files\Fichiers communs\Canon\UIW\1.5.0.0\Uninst.exe" "C:\Program Files\Canon\ZoomBrowser EX\Program\CIGUnInstall.ini"
    Canon MOV Decoder-->"C:\Program Files\Fichiers communs\Canon\UIW\1.5.0.0\Uninst.exe" "C:\Program Files\Canon\Canon MOV Decoder\CanonMOVDecoderUnInstall.ini"
    Canon Utilities CameraWindow DC_DV 5 for ZoomBrowser EX-->"C:\Program Files\Fichiers communs\Canon\UIW\1.5.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\CameraWindowDVC\Uninst.ini"
    Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX-->"C:\Program Files\Fichiers communs\Canon\UIW\1.5.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\CameraWindowDVC6\Uninst.ini"
    Canon Utilities CameraWindow DC-->"C:\Program Files\Fichiers communs\Canon\UIW\1.5.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\CameraWindowDC\Uninst.ini"
    Canon Utilities CameraWindow-->"C:\Program Files\Fichiers communs\Canon\UIW\1.5.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\CameraWindowLauncher\Uninst.ini"
    Canon Utilities Digital Photo Professional 3.5-->"C:\Program Files\Fichiers communs\Canon\UIW\1.5.0.0\Uninst.exe" "C:\Program Files\Canon\Digital Photo Professional\Uninst.ini"
    Canon Utilities EOS Utility-->"C:\Program Files\Fichiers communs\Canon\UIW\1.5.0.0\Uninst.exe" "C:\Program Files\Canon\EOS Utility\Uninst.ini"
    Canon Utilities MyCamera DC-->"C:\Program Files\Fichiers communs\Canon\UIW\1.5.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\MyCameraDC\Uninst.ini"
    Canon Utilities MyCamera-->"C:\Program Files\Fichiers communs\Canon\UIW\1.5.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\MyCamera\Uninst.ini"
    Canon Utilities PhotoStitch-->"C:\Program Files\Fichiers communs\Canon\UIW\1.5.0.0\Uninst.exe" "C:\Program Files\Canon\PhotoStitch\Uninst.ini"
    Canon Utilities RemoteCapture DC-->"C:\Program Files\Fichiers communs\Canon\UIW\1.5.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\RemoteCaptureDC\Uninst.ini"
    Canon Utilities RemoteCapture Task for ZoomBrowser EX-->"C:\Program Files\Fichiers communs\Canon\UIW\1.5.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\RemoteCaptureTask DC\Uninst.ini"
    Canon Utilities ZoomBrowser EX-->"C:\Program Files\Fichiers communs\Canon\UIW\1.5.0.0\Uninst.exe" "C:\Program Files\Canon\ZoomBrowser EX\Program\Uninst.ini"
    Canon ZoomBrowser EX Memory Card Utility-->"C:\Program Files\Fichiers communs\Canon\UIW\1.5.0.0\Uninst.exe" "C:\Program Files\Canon\ZoomBrowser EX MCU\Uninst.ini"
    CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
    C-Media 3D Audio-->C:\WINDOWS\CMIUnInstall.exe
    Compatibility Pack for the 2007 Office system-->MsiExec.exe /X{90120000-0020-040C-0000-0000000FF1CE}
    Cool MP3 Converter V1.86-->"C:\Program Files\Cool MP3 Converter\unins000.exe"
    Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
    Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB914440)-->"C:\WINDOWS\$NtUninstallKB914440$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB935448)-->"C:\WINDOWS\$NtUninstallKB935448$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
    Correctif Windows XP - KB873339-->C:\WINDOWS\$NtUninstallKB873339$\spuninst\spuninst.exe
    Correctif Windows XP - KB885835-->C:\WINDOWS\$NtUninstallKB885835$\spuninst\spuninst.exe
    Correctif Windows XP - KB885836-->C:\WINDOWS\$NtUninstallKB885836$\spuninst\spuninst.exe
    Correctif Windows XP - KB885884-->C:\WINDOWS\$NtUninstallKB885884$\spuninst\spuninst.exe
    Correctif Windows XP - KB886185-->C:\WINDOWS\$NtUninstallKB886185$\spuninst\spuninst.exe
    Correctif Windows XP - KB888302-->C:\WINDOWS\$NtUninstallKB888302$\spuninst\spuninst.exe
    Correctif Windows XP - KB890859-->"C:\WINDOWS\$NtUninstallKB890859$\spuninst\spuninst.exe"
    Correctif Windows XP - KB891781-->C:\WINDOWS\$NtUninstallKB891781$\spuninst\spuninst.exe
    Counter-Strike(TM)-->MsiExec.exe /I{DF5A03CC-D5AA-43D8-B948-D9903F2AF94A}
    CutePDF Writer 2.7-->C:\Program Files\Acro Software\CutePDF Writer\uninscpw.exe
    Encyclopédie Microsoft Encarta 2000-->"C:\Program Files\Microsoft Encarta\Encyclopédie Encarta 2000\unee2000.exe" /uninstall
    EPSON CardMonitor-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{109D28C7-FB38-483A-9C91-001CB59E2699}\SETUP.EXE" -l0x40c uninst
    EPSON Copy Utility 3-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{67EDD823-135A-4D59-87BD-950616D6E857}\Setup.exe" -l0x40c -UnInstall
    EPSON Logiciel imprimante-->C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /R
    EPSON PhotoQuicker3.5-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{65F5B7AF-3363-11D7-BB6B-00018021113F}\SETUP.EXE" -l0x40c uninst
    EPSON PhotoStarter3.1-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C48817E7-AA05-4151-A99D-1E1E550CE801}\SETUP.EXE" -l0x40c uninst
    EPSON PRINT Image Framer Tool2.1-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{23B59ED4-C360-11D7-875B-0090CC005647}\SETUP.EXE" -l0x40c anything
    EPSON Scan-->C:\Program Files\epson\escndv\setup\setup.exe /r
    EPSON Smart Panel-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6C11D561-620B-47DA-A693-4C597F3CDF40}\SETUP.EXE" -l0x40c Uninstall
    ESCX3600 Guide de réf.-->C:\Program Files\EPSON\TPMANUAL\ESCX3600\REF_G\DOCUNINS.EXE
    ESCX3600 Guide des logiciels-->C:\Program Files\EPSON\TPMANUAL\ESCX3600\PQU_G\DOCUNINS.EXE
    Google Toolbar for Firefox-->MsiExec.exe /X{2CCBABCB-6427-4A55-B091-49864623C43F}
    Guitar Pro 4 Demo-->MsiExec.exe /X{22C1B575-C746-46F2-80A3-EE9612AF5FAA}
    HijackThis 2.0.2-->"C:\Documents and Settings\PAPA!!!!!!!!!!\Mes documents\HijackThis.exe" /uninstall
    Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
    Hotfix for Windows XP (KB915865)-->"C:\WINDOWS\$NtUninstallKB915865$\spuninst\spuninst.exe"
    Hotfix for Windows XP (KB926239)-->"C:\WINDOWS\$NtUninstallKB926239$\spuninst\spuninst.exe"
    Intel(R) Extreme Graphics 2 Driver-->RUNDLL32.EXE C:\WINDOWS\system32\ialmrem.dll,UninstallW2KIGfx PCI\VEN_8086&DEV_2572
    iTunes-->MsiExec.exe /I{585776BC-4BD6-4BD2-A19A-1D6CB44A403B}
    Java 2 SDK Standard Edition v1.2.2_017-->C:\WINDOWS\IsUninst.exe -fC:\jdk1.2.2\Uninst.isu
    Java(TM) 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF}
    L&H TTS3000 Français-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\LHTTSFRF.inf, Uninstall
    Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
    live assistant 2.0-->C:\WINDOWS\UnInstall.exe
    Logitech IM Video Companion-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{984F10FD-11FD-4BED-8163-92DB81E6A825}\Setup.exe" -l0x40c UNINSTALL
    Lotus Organizer 97 GS-->C:\WINDOWS\lunin10.exe /T Organizer /V 97.1 /I "c:\lotus\organize\org.inf" /C "c:\lotus\organize\cinstall.ini" /O c:\uninst.log /L FR /U ME the user
    Macromedia Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~2\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~2\Install.log
    MAIET entertainment - Gunz-->C:\Program Files\MAIET\Gunz\Uninstall.exe
    MaxTV Online-->"C:\WINDOWS\MaxTV Online\uninstall.exe" "/U:C:\Documents and Settings\PAPA!!!!!!!!!!\Mes documents\Uninstall\uninstall.xml"
    MaxTV-->"C:\WINDOWS\MaxTV\uninstall.exe" "/U:C:\Program Files\MaxTV\Uninstall\uninstall.xml"
    MDI-->C:\WINDOWS\ST4UNST.EXE -n "c:\Program Files\ST4UNST.LOG"
    Messenger Plus! Live-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
    Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
    Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
    Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
    Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
    Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
    Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
    Microsoft Office 2000 CD-ROM 2-->MsiExec.exe /I{0004040C-78E1-11D2-B60F-006097C998E7}
    Microsoft Office 2000 Professional-->MsiExec.exe /I{0001040C-78E1-11D2-B60F-006097C998E7}
    Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
    Microsoft Word 2002-->MsiExec.exe /I{911B040C-6000-11D3-8CFE-0050048383C9}
    Mise à jour critique pour Lecteur Windows Media 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)-->"C:\WINDOWS\$NtUninstallKB898458$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Step by Step Interactive Training (KB923723)-->"C:\WINDOWS\$NtUninstallKB923723$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB893756)-->"C:\WINDOWS\$NtUninstallKB893756$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896358)-->"C:\WINDOWS\$NtUninstallKB896358$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896423)-->"C:\WINDOWS\$NtUninstallKB896423$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896424)-->"C:\WINDOWS\$NtUninstallKB896424$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896428)-->"C:\WINDOWS\$NtUninstallKB896428$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB899587)-->"C:\WINDOWS\$NtUninstallKB899587$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB899591)-->"C:\WINDOWS\$NtUninstallKB899591$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB900725)-->"C:\WINDOWS\$NtUninstallKB900725$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB901017)-->"C:\WINDOWS\$NtUninstallKB901017$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB901190)-->"C:\WINDOWS\$NtUninstallKB901190$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB901214)-->"C:\WINDOWS\$NtUninstallKB901214$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB902400)-->"C:\WINDOWS\$NtUninstallKB902400$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB904706)-->"C:\WINDOWS\$NtUninstallKB904706$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB905414)-->"C:\WINDOWS\$NtUninstallKB905414$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB905749)-->"C:\WINDOWS\$NtUninstallKB905749$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB908519)-->"C:\WINDOWS\$NtUninstallKB908519$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB911562)-->"C:\WINDOWS\$NtUninstallKB911562$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB911927)-->"C:\WINDOWS\$NtUninstallKB911927$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB912919)-->"C:\WINDOWS\$NtUninstallKB912919$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB913580)-->"C:\WINDOWS\$NtUninstallKB913580$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB914388)-->"C:\WINDOWS\$NtUninstallKB914388$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB914389)-->"C:\WINDOWS\$NtUninstallKB914389$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB917344)-->"C:\WINDOWS\$NtUninstallKB917344$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB917422)-->"C:\WINDOWS\$NtUninstallKB917422$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB917953)-->"C:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB918118)-->"C:\WINDOWS\$NtUninstallKB918118$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB918439)-->"C:\WINDOWS\$NtUninstallKB918439$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB919007)-->"C:\WINDOWS\$NtUninstallKB919007$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920213)-->"C:\WINDOWS\$NtUninstallKB920213$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920670)-->"C:\WINDOWS\$NtUninstallKB920670$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920683)-->"C:\WINDOWS\$NtUninstallKB920683$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920685)-->"C:\WINDOWS\$NtUninstallKB920685$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB921398)-->"C:\WINDOWS\$NtUninstallKB921398$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB921503)-->"C:\WINDOWS\$NtUninstallKB921503$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB922616)-->"C:\WINDOWS\$NtUninstallKB922616$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB922819)-->"C:\WINDOWS\$NtUninstallKB922819$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923191)-->"C:\WINDOWS\$NtUninstallKB923191$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923414)-->"C:\WINDOWS\$NtUninstallKB923414$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923689)-->"C:\WINDOWS\$NtUninstallKB923689$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923694)-->"C:\WINDOWS\$NtUninstallKB923694$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923980)-->"C:\WINDOWS\$NtUninstallKB923980$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB924191)-->"C:\WINDOWS\$NtUninstallKB924191$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB924270)-->"C:\WINDOWS\$NtUninstallKB924270$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB924496)-->"C:\WINDOWS\$NtUninstallKB924496$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB924667)-->"C:\WINDOWS\$NtUninstallKB924667$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB925454)-->"C:\WINDOWS\$NtUninstallKB925454$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB925486)-->"C:\WINDOWS\$NtUninstallKB925486$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB925902)-->"C:\WINDOWS\$NtUninstallKB925902$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB926255)-->"C:\WINDOWS\$NtUninstallKB926255$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB926436)-->"C:\WINDOWS\$NtUninstallKB926436$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB927779)-->"C:\WINDOWS\$NtUninstallKB927779$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB927802)-->"C:\WINDOWS\$NtUninstallKB927802$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB928090)-->"C:\WINDOWS\$NtUninstallKB928090$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB928255)-->"C:\WINDOWS\$NtUninstallKB928255$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB928843)-->"C:\WINDOWS\$NtUninstallKB928843$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB929123)-->"C:\WINDOWS\$NtUninstallKB929123$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB929969)-->"C:\WINDOWS\$NtUninstallKB929969$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB930178)-->"C:\WINDOWS\$NtUninstallKB930178$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB931261)-->"C:\WINDOWS\$NtUninstallKB931261$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB931768)-->"C:\WINDOWS\$NtUninstallKB931768$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB931784)-->"C:\WINDOWS\$NtUninstallKB931784$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB932168)-->"C:\WINDOWS\$NtUninstallKB932168$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB933566)-->"C:\WINDOWS\$NtUninstallKB933566$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB933729)-->"C:\WINDOWS\$NtUninstallKB933729$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB935839)-->"C:\WINDOWS\$NtUninstallKB935839$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB935840)-->"C:\WINDOWS\$NtUninstallKB935840$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB936021)-->"C:\WINDOWS\$NtUninstallKB936021$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB937143)-->"C:\WINDOWS\$NtUninstallKB937143$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB938127)-->"C:\WINDOWS\$NtUninstallKB938127$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB938829)-->"C:\WINDOWS\$NtUninstallKB938829$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB939653)-->"C:\WINDOWS\$NtUninstallKB939653$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB941202)-->"C:\WINDOWS\$NtUninstallKB941202$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB941568)-->"C:\WINDOWS\$NtUninstallKB941568$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB941644)-->"C:\WINDOWS\$NtUninstallKB941644$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB941693)-->"C:\WINDOWS\$NtUninstallKB941693$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB942615)-->"C:\WINDOWS\$NtUninstallKB942615$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB943055)-->"C:\WINDOWS\$NtUninstallKB943055$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB943460)-->"C:\WINDOWS\$NtUninstallKB943460$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB943485)-->"C:\WINDOWS\$NtUninstallKB943485$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB944533)-->"C:\WINDOWS\$NtUninstallKB944533$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB944653)-->"C:\WINDOWS\$NtUninstallKB944653$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB945553)-->"C:\WINDOWS\$NtUninstallKB945553$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB946026)-->"C:\WINDOWS\$NtUninstallKB946026$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB948590)-->"C:\WINDOWS\$NtUninstallKB948590$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB948881)-->"C:\WINDOWS\$NtUninstallKB948881$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950749)-->"C:\WINDOWS\$NtUninstallKB950749$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB953155)-->"C:\WINDOWS\$NtUninstallKB953155$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB894391)-->"C:\WINDOWS\$NtUninstallKB894391$\s
    Contenus similaires
    a c 327 8 Sécurité
    a b 9 Windows
    29 Avril 2009 13:49:14

    Le rapport log n'est pas entier.
    29 Avril 2009 14:08:15

    Voila j'espere que cette fois c'est bon :

    Logfile of random's system information tool 1.06 (written by random/random)
    Run by PAPA!!!!!!!!!! at 2009-04-29 13:37:37
    Microsoft Windows XP Édition familiale Service Pack 2
    System drive C: has 147 GB (80%) free of 185 GB
    Total RAM: 1015 MB (43% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 13:38:37, on 29/04/2009
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
    C:\WINDOWS\system32\cisvc.exe
    c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
    c:\APPS\Powercinema\Kernel\TV\CLSched.exe
    C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
    C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
    C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
    c:\APPS\HIDSERVICE\HIDSERVICE.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\Program Files\Fichiers communs\Motive\McciCMService.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
    C:\WINDOWS\system32\tcpsvcs.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe
    C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
    C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Canon\CAL\CALMAIN.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe
    C:\WINDOWS\system32\igfxpers.exe
    C:\WINDOWS\system32\hkcmd.exe
    C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
    C:\Program Files\OrangeHSS\systray\systrayapp.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\WINDOWS\system32\cidaemon.exe
    C:\Program Files\OrangeHSS\Launcher\Launcher.exe
    C:\Program Files\OrangeHSS\connectivity\connectivitymanager.exe
    C:\Program Files\OrangeHSS\Deskboard\deskboard.exe
    C:\Program Files\OrangeHSS\connectivity\CoreCom\CoreCom.exe
    C:\Program Files\OrangeHSS\connectivity\CoreCom\OraConfigRecover.exe
    C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
    C:\Program Files\OrangeHSS\browser\browser.exe
    C:\WINDOWS\system32\NOTEPAD.EXE
    C:\Documents and Settings\PAPA!!!!!!!!!!\Mes documents\RSIT.exe
    C:\Program Files\trend micro\PAPA!!!!!!!!!!.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com/?fr=fp-yie8
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com/?fr=fp-yie8
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fourni par Yahoo!
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll
    O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll
    O4 - HKLM\..\Run: [1A:MacVisionTrayMonitor] C:\DOCUME~1\astrid!!\LOCALS~1\Temp\Rar$EX01.234\TrayMonitor.exe
    O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe
    O4 - HKLM\..\Run: [LVCOMS] "C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE"
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [BDMCon] C:\PROGRA~1\Softwin\BITDEF~1\bdmcon.exe
    O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe"
    O4 - HKLM\..\Run: [ATIPTA] "C:\ATI Technologies\ATI Control Panel\atiptaxx.exe"
    O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
    O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
    O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2008\IEShow.exe"
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [PHIME2002ASync] "C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE" /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] "C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE" /IMEName
    O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
    O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
    O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
    O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [Orange_Install] "C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp\KIT1.tmp\Installation\Tempcomponents\LIVEASSISTANT\Live Assistant 2.0.exe"
    O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\S-1-5-18\..\Run: [Nord] C:\WINDOWS\system32\nordsys.exe (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU)
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
    O15 - Trusted Zone: http://pfttbc.ft.motive.com
    O15 - Trusted Zone: http://*.orange.fr
    O15 - Trusted Zone: http://rw.search.ke.voila.fr
    O15 - Trusted Zone: http://orange.weborama.fr
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
    O16 - DPF: {029FDBA6-3547-11D7-AA4C-0050BF051A00} (Rawflow ICD Client) - http://s.tf1.fr/mmdia/static/rawflow/clients/5.3.1.0/Ra...
    O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
    O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
    O16 - DPF: {45E83043-1F6F-4D22-A5E7-0138EA171B49} (FileSharingCtrl Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Ap...
    O16 - DPF: {4D7F48C0-CB49-4EA6-97D4-04F4EACC2F3B} - http://sib1.od2.com/common/Member/ClientInstall/9.20.00...
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
    O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common...
    O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://go.divx.com/plugin/DivXBrowserPlugin.cab
    O16 - DPF: {7F8C8173-AD80-4807-AA75-5672F22B4582} (ICSScanner Class) - http://download.zonelabs.com/bin/promotions/spywaredete...
    O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://drivers1.free.fr/hardwaredetection.cab
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-09.sun.com/s/ESD7/JSCDL/jdk/6u13-b03/jin...
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
    O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDown...
    O16 - DPF: {B79A53C0-1DAC-4636-BACE-FD086A7A79BF} (AdSignerLCContrl Class) - https://static.impots.gouv.fr/tdir/static/adpform/AdSig...
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.ca...
    O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown....
    O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
    O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
    O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe
    O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
    O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
    O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - c:\APPS\HIDSERVICE\HIDSERVICE.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
    O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Fichiers communs\Motive\McciCMService.exe
    O23 - Service: MysqlInventime - Unknown owner - c:\mysql\bin\mysqld-nt.exe
    O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
    O23 - Service: BitDefender Communicator (XCOMM) - BitDefender - C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe

    --
    End of file - 13834 bytes

    ======Scheduled tasks folder======

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    C:\WINDOWS\tasks\B4F9E28E94AE87FA.job
    C:\WINDOWS\tasks\BitDefender Antivirus Plus v10.job
    C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-4036880024-3374177845-1600862251-1010.job
    C:\WINDOWS\tasks\User_Feed_Synchronization-{8890293E-B54D-4D96-9D65-53B36DA8869D}.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Adobe PDF Reader Link Helper - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-12-18 59032]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
    Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-09-15 1562960]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-04-29 35840]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
    JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-04-29 73728]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - BitDefender Toolbar - C:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll [2008-02-28 86016]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "1A:MacVisionTrayMonitor"=C:\DOCUME~1\astrid!!\LOCALS~1\Temp\Rar$EX01.234\TrayMonitor.exe []
    "WinampAgent"=C:\Program Files\Winamp\winampa.exe []
    "TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe -osboot []
    "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-04-29 148888]
    "Raccourci vers la page des propriétés de High Definition Audio"=C:\WINDOWS\system32\HDAudPropShortcut.exe [2004-03-17 61952]
    "QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-03-28 413696]
    "ORAHSSSessionManager"=C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe [2008-01-22 107248]
    "LVCOMS"=C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE []
    "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-03-30 267048]
    "BDMCon"=C:\PROGRA~1\Softwin\BITDEF~1\bdmcon.exe []
    "BDAgent"=C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe [2008-12-28 368640]
    "ATIPTA"=C:\ATI Technologies\ATI Control Panel\atiptaxx.exe []
    "AlcWzrd"=ALCWZRD.EXE []
    "Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2004-07-20 57344]
    "BitDefender Antiphishing Helper"=C:\Program Files\BitDefender\BitDefender 2008\IEShow.exe [2007-10-09 61440]
    "SoundMan"=SOUNDMAN.EXE []
    "PHIME2002ASync"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC []
    "PHIME2002A"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName []
    "PCMService"=c:\Apps\Powercinema\PCMService.exe []
    "IMJPMIG8.1"=C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [2004-08-05 208952]
    "igfxtray"=C:\WINDOWS\system32\igfxtray.exe [2005-09-20 94208]
    "igfxpers"=C:\WINDOWS\system32\igfxpers.exe [2005-09-20 114688]
    "igfxhkcmd"=C:\WINDOWS\system32\hkcmd.exe [2005-09-20 77824]
    "Cmaudio"=RunDll32 cmicnfg.cpl,CMICtrlWnd []

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "swg"=C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe []
    "Orange_Install"=C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp\KIT1.tmp\Installation\Tempcomponents\LIVEASSISTANT\Live Assistant 2.0.exe [2008-01-22 226880]
    "Google Update"=C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2008-12-30 133104]
    "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2006-03-02 15360]

    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
    Adobe Gamma Loader.lnk - C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    Lancement rapide d'Adobe Reader.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
    C:\WINDOWS\system32\Ati2evxx.dll [2005-02-12 61440]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
    C:\WINDOWS\system32\igfxdev.dll [2005-09-20 135168]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
    C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WRNotifier]
    WRLogonNTF.dll []

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2006-03-02 240128]
    WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "DisableTaskMgr"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=95000000
    "NoToolbarCustomize"=0
    "NoBandCustomize"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "HonorAutoRunSetting"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Messenger"
    "C:\Program Files\Valve\Steam\SteamApps\curly_is_cool\counter-strike\hl.exe"="C:\Program Files\Valve\Steam\SteamApps\curly_is_cool\counter-strike\hl.exe:*:Enabled:Half-Life Launcher"
    "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d8f9621d-f67a-11dc-9e42-00038a000015}]
    shell\AutoRun\command - J:\setupSNK.exe


    ======List of files/folders created in the last 1 months======

    2009-04-29 13:37:38 ----D---- C:\Program Files\trend micro
    2009-04-29 13:37:37 ----D---- C:\rsit
    2009-04-29 04:06:41 ----D---- C:\Program Files\CCleaner
    2009-04-29 03:27:18 ----A---- C:\WINDOWS\system32\javaws.exe
    2009-04-29 03:27:18 ----A---- C:\WINDOWS\system32\javaw.exe
    2009-04-29 03:27:18 ----A---- C:\WINDOWS\system32\deploytk.dll
    2009-04-29 03:27:17 ----A---- C:\WINDOWS\system32\java.exe
    2009-04-29 02:26:30 ----D---- C:\VundoFix Backups
    2009-04-29 02:26:30 ----A---- C:\VundoFix.txt
    2009-04-18 10:24:05 ----HD---- C:\WINDOWS\PIF
    2009-04-18 03:26:11 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
    2009-04-18 03:25:29 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
    2009-04-18 03:19:43 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
    2009-04-18 03:18:51 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
    2009-04-18 03:17:13 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
    2009-04-18 03:16:49 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
    2009-04-09 13:42:03 ----D---- C:\Documents and Settings\PAPA!!!!!!!!!!\Application Data\Yahoo!
    2009-04-09 13:38:53 ----HDC---- C:\WINDOWS\ie8

    ======List of files/folders modified in the last 1 months======

    2009-04-29 13:38:08 ----D---- C:\WINDOWS\Temp
    2009-04-29 13:37:38 ----RAD---- C:\Program Files
    2009-04-29 13:37:28 ----D---- C:\WINDOWS\Prefetch
    2009-04-29 13:30:37 ----AD---- C:\WINDOWS\system32
    2009-04-29 12:49:36 ----SHD---- C:\WINDOWS\Installer
    2009-04-29 12:48:28 ----SHD---- C:\Config.Msi
    2009-04-29 12:48:11 ----DC---- C:\WINDOWS\system32\DRVSTORE
    2009-04-29 12:48:10 ----HD---- C:\WINDOWS\inf
    2009-04-29 12:48:08 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-04-29 12:48:01 ----D---- C:\Program Files\Fichiers communs
    2009-04-29 12:45:23 ----D---- C:\WINDOWS
    2009-04-29 12:43:51 ----D---- C:\Program Files\WinRAR
    2009-04-29 12:42:52 ----D---- C:\Program Files\epson
    2009-04-29 12:42:49 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-04-29 12:42:09 ----D---- C:\Program Files\Orange
    2009-04-29 12:40:39 ----D---- C:\Program Files\Yahoo!
    2009-04-29 10:21:43 ----D---- C:\Documents and Settings\PAPA!!!!!!!!!!\Application Data\ZoomBrowser EX
    2009-04-29 10:21:35 ----D---- C:\Documents and Settings\PAPA!!!!!!!!!!\Application Data\CameraWindowDC
    2009-04-29 04:33:21 ----N---- C:\WINDOWS\SchedLgU.Txt
    2009-04-29 04:32:01 ----A---- C:\WINDOWS\bdagent.INI
    2009-04-29 04:24:26 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
    2009-04-29 04:21:44 ----D---- C:\WINDOWS\Debug
    2009-04-29 04:21:02 ----D---- C:\WINDOWS\Minidump
    2009-04-29 03:30:37 ----SD---- C:\WINDOWS\Downloaded Program Files
    2009-04-29 03:23:33 ----D---- C:\Program Files\Java
    2009-04-28 10:34:05 ----D---- C:\Program Files\Mozilla Firefox
    2009-04-28 02:41:14 ----D---- C:\My Music
    2009-04-27 17:17:10 ----SHD---- C:\RECYCLER
    2009-04-27 15:58:15 ----D---- C:\Documents and Settings\All Users\Application Data\Skype
    2009-04-18 10:25:28 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-04-18 10:20:40 ----D---- C:\WINDOWS\system32\wbem
    2009-04-18 10:20:37 ----D---- C:\WINDOWS\AppPatch
    2009-04-18 03:26:14 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-04-18 03:19:18 ----HD---- C:\WINDOWS\$hf_mig$
    2009-04-09 14:15:05 ----SD---- C:\WINDOWS\Tasks
    2009-04-09 13:57:20 ----D---- C:\WINDOWS\system32\fr-fr
    2009-04-09 13:57:19 ----D---- C:\WINDOWS\Media
    2009-04-09 13:57:19 ----D---- C:\WINDOWS\Help
    2009-04-09 13:57:19 ----D---- C:\Program Files\Internet Explorer
    2009-04-09 13:43:00 ----HD---- C:\WINDOWS\msdownld.tmp
    2009-04-06 16:57:24 ----A---- C:\WINDOWS\system32\MRT.exe

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 bdftdif;bdftdif; \??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Firewall\bdftdif.sys []
    R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2006-03-02 40320]
    R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
    R1 Tcpip6;Pilote du protocole IPv6 Microsoft; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2008-06-20 225920]
    R2 Aspi32;Aspi32; C:\WINDOWS\system32\drivers\Aspi32.sys [1999-09-10 25244]
    R2 NwlnkIpx;Protocole de transport compatible NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2006-03-02 88448]
    R2 NwlnkNb;NetBIOS NWLink; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2006-03-02 63232]
    R2 NwlnkSpx;Protocole NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2006-03-02 55936]
    R2 STEC3;STEC3; \??\C:\WINDOWS\system32\STEC3.sys []
    R3 Bdfndisf;BitDefender Firewall NDIS Filter Service; C:\WINDOWS\system32\DRIVERS\bdfndisf.sys [2008-06-02 86792]
    R3 bdfsfltr;bdfsfltr; C:\WINDOWS\system32\drivers\bdfsfltr.sys [2008-01-07 196368]
    R3 BDSelfPr;BDSelfPr; \??\C:\Program Files\BitDefender\BitDefender 2008\bdselfpr.sys []
    R3 Cap713x;Cap713x Video Capture; C:\WINDOWS\system32\DRIVERS\Cap713x.sys [2005-01-28 671104]
    R3 cmuda;C-Media WDM Audio Interface; C:\WINDOWS\system32\drivers\cmuda.sys [2005-05-12 1332544]
    R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2008-01-29 16168]
    R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2005-09-20 1302332]
    R3 Mtlmnt5;Mtlmnt5; C:\WINDOWS\system32\DRIVERS\Mtlmnt5.sys [2003-07-16 221736]
    R3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
    R3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2005-03-04 74496]
    R3 Slntamr;SmartLink AMR_PCI Driver; C:\WINDOWS\system32\DRIVERS\slntamr.sys [2003-08-20 548952]
    R3 SlWdmSup;SlWdmSup; C:\WINDOWS\system32\DRIVERS\SlWdmSup.sys [2003-07-02 39348]
    R3 tunmp;Pilote de carte miniport Tun Microsoft; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2006-03-02 12416]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-04 26624]
    R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-04 57600]
    R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2006-03-02 26496]
    R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-04 20480]
    R3 wanatw;WAN Miniport (ATW); C:\WINDOWS\system32\DRIVERS\wanatw4.sys [2003-01-10 33588]
    S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2006-03-02 14848]
    S3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2006-03-02 60800]
    S3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-02-12 986624]
    S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
    S3 HdAudAddService;Pilote de fonction Microsoft UAA pour Service High Definition Audio; C:\WINDOWS\system32\drivers\HdAudio.sys [2004-03-17 113664]
    S3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2004-03-17 135168]
    S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2006-03-02 9600]
    S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2004-09-16 2257920]
    S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12288]
    S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\FICHIE~1\Motive\MREMP50.SYS []
    S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\FICHIE~1\Motive\MREMP50a64.SYS []
    S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\C:\PROGRA~1\FICHIE~1\Motive\MREMPR5.SYS []
    S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\C:\PROGRA~1\FICHIE~1\Motive\MRENDIS5.SYS []
    S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\FICHIE~1\Motive\MRESP50.SYS []
    S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\FICHIE~1\Motive\MRESP50a64.SYS []
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
    S3 Mtlstrm;Mtlstrm; C:\WINDOWS\system32\DRIVERS\Mtlstrm.sys [2003-07-02 1301128]
    S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
    S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2006-03-02 10880]
    S3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2006-03-02 61824]
    S3 NtMtlFax;NtMtlFax; C:\WINDOWS\system32\DRIVERS\NtMtlFax.sys [2003-07-02 167384]
    S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCAMPR5.SYS []
    S3 Profos;Profos; \??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\profos.sys []
    S3 QCMerced;Logitech QuickCam Express; C:\WINDOWS\system32\DRIVERS\LVCM.sys [2002-09-20 472396]
    S3 RecAgent;recagent; \??\C:\WINDOWS\system32\DRIVERS\RecAgent.sys []
    S3 RTL8023;Realtek RTL8139/810x/8169/8110 all in one NDIS NT Driver; C:\WINDOWS\system32\DRIVERS\Rtlnic51.sys [2003-12-31 69504]
    S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2006-03-02 11136]
    S3 SlNtHal;SlNtHal; C:\WINDOWS\system32\DRIVERS\Slnthal.sys [2003-07-02 86128]
    S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:\WINDOWS\system32\DRIVERS\ss_bus.sys [2005-08-30 58320]
    S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; C:\WINDOWS\system32\DRIVERS\ss_mdfl.sys [2005-08-30 8304]
    S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; C:\WINDOWS\system32\DRIVERS\ss_mdm.sys [2005-08-30 94000]
    S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2006-03-02 15360]
    S3 Trufos;Trufos; \??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\trufos.sys []
    S3 USB_RNDIS;Inventel Gateway; C:\WINDOWS\system32\DRIVERS\usb8023.sys [2006-03-02 12672]
    S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-03 59264]
    S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2006-03-02 31616]
    S3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2006-03-02 17024]
    S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
    S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
    S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2006-10-18 38528]
    S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
    S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
    S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 6to4;Service d'application d'assistance IPv6; C:\WINDOWS\system32\svchost.exe [2006-03-02 14336]
    R2 AOL ACS;AOL Connectivity Service; C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe [2004-02-25 1123440]
    R2 CCALib8;Canon Camera Access Library 8; C:\Program Files\Canon\CAL\CALMAIN.exe [2007-01-31 96370]
    R2 CLCapSvc;CyberLink Background Capture Service (CBCS); c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe [2005-01-28 176220]
    R2 CLSched;CyberLink Task Scheduler (CTS); c:\APPS\Powercinema\Kernel\TV\CLSched.exe [2005-01-28 110682]
    R2 CyberLink Media Library Service;CyberLink Media Library Service; C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe [2005-01-28 24576]
    R2 FTRTSVC;France Telecom Routing Table Service; C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [2008-01-22 65536]
    R2 GenericHidService;Generic Service for HID Keyboard Input Collections; c:\APPS\HIDSERVICE\HIDSERVICE.exe [2005-01-07 49152]
    R2 Iprip;Écouteur RIP; C:\WINDOWS\System32\svchost.exe [2006-03-02 14336]
    R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-04-29 152984]
    R2 LIVESRV;BitDefender Desktop Update Service; C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe [2008-12-28 1179648]
    R2 McciCMService;McciCMService; C:\Program Files\Fichiers communs\Motive\McciCMService.exe [2007-10-23 303104]
    R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe [2003-06-20 322120]
    R2 NwSapAgent;Agent SAP; C:\WINDOWS\system32\svchost.exe [2006-03-02 14336]
    R2 SimpTcp;Services TCP/IP simplifiés; C:\WINDOWS\system32\tcpsvcs.exe [2006-03-02 19456]
    R2 VSSERV;BitDefender Virus Shield; C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe [2008-12-28 1261568]
    R2 XCOMM;BitDefender Communicator; C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe [2007-11-27 86016]
    R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2008-03-30 504104]
    R3 scan;BitDefender Threat Scanner; C:\WINDOWS\System32\svchost.exe [2006-03-02 14336]
    S2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-02-12 344064]
    S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
    S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
    S3 LPDSVC;Serveur d'impression TCP/IP; C:\WINDOWS\system32\tcpsvcs.exe [2006-03-02 19456]
    S3 MysqlInventime;MysqlInventime; c:\mysql\bin\mysqld-nt MysqlInventime []
    S3 p2pgasvc;Authentification de groupe réseau homologue; C:\WINDOWS\system32\svchost.exe [2006-03-02 14336]
    S3 p2pimsvc;Gestionnaire d'identité réseau homologue; C:\WINDOWS\system32\svchost.exe [2006-03-02 14336]
    S3 p2psvc;Réseau homologue; C:\WINDOWS\system32\svchost.exe [2006-03-02 14336]
    S3 PNRPSvc;Protocole de résolution de noms d'homologues; C:\WINDOWS\system32\svchost.exe [2006-03-02 14336]
    S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
    S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
    S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
    S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2006-03-02 14336]

    -----------------EOF-----------------
    a c 327 8 Sécurité
    a b 9 Windows
    29 Avril 2009 14:09:59

    Bien.

  • Télécharge Lop S&D sur ton Bureau.
  • Double-clique dessus pour lancer l'installation.
  • Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau.
  • Sélectionne la langue souhaitée, puis choisis l'option 1 (Recherche) .
  • Patiente jusqu'à la fin du scan.
  • Poste le rapport généré (C:\lopR.txt).
    29 Avril 2009 14:31:31

    Voilà :

    --------------------\\ Lop S&D 4.2.5-0 XP/Vista

    Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
    X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 3.00GHz )
    BIOS : Default System BIOS
    USER : PAPA!!!!!!!!!! ( Administrator )
    BOOT : Normal boot
    Antivirus : Bitdefender Antivirus 8.0 (Activated)
    Firewall : Bitdefender Firewall 8.0 (Activated)
    C:\ (Local Disk) - NTFS - Total:180 Go (Free:143 Go)
    D:\ (CD or DVD) - CDFS - Total:1 Go (Free:0 Go)
    E:\ (CD or DVD)
    F:\ (USB)
    G:\ (USB)
    H:\ (USB)
    I:\ (USB)

    "C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
    Option : [1] ( 29/04/2009|14:18 )

    --------------------\\ Listing des dossiers dans APPLIC~1

    [16/08/2004|18:19] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
    [30/07/2007|19:18] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
    [07/04/2005|20:50] C:\DOCUME~1\ADMINI~1\APPLIC~1\Real
    [07/04/2005|20:40] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sun
    [07/04/2005|20:47] C:\DOCUME~1\ADMINI~1\APPLIC~1\Symantec
    [07/04/2005|20:45] C:\DOCUME~1\ADMINI~1\APPLIC~1\You've Got Pictures Screensaver

    [16/11/2008|00:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{51019853-129C-4EDE-9030-D5FD7BBD9AD0}
    [08/05/2008|20:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [06/07/2005|18:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
    [22/11/2007|02:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
    [22/11/2007|02:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
    [30/07/2007|19:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
    [02/08/2008|17:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender
    [06/07/2005|22:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
    [30/08/2006|00:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Drawpeakpingdefy
    [27/10/2006|21:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [30/07/2007|19:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
    [14/12/2007|22:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
    [17/05/2007|09:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [08/05/2008|18:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Motive
    [08/07/2005|01:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NFS Underground
    [09/03/2009|23:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PhotoStitch
    [07/04/2005|20:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
    [16/08/2004|18:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
    [19/11/2005|11:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBT
    [27/04/2009|15:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
    [29/04/2009|04:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
    [16/07/2007|18:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
    [31/10/2005|21:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
    [22/08/2005|14:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
    [07/04/2005|20:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
    [02/10/2005|12:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    [04/05/2008|18:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
    [07/03/2009|18:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ZoomBrowser

    [30/01/2007|16:47] C:\DOCUME~1\astrid!!\APPLIC~1\Adobe
    [05/06/2006|22:00] C:\DOCUME~1\astrid!!\APPLIC~1\AdobeUM
    [03/07/2006|14:03] C:\DOCUME~1\astrid!!\APPLIC~1\Apple Computer
    [01/07/2006|12:40] C:\DOCUME~1\astrid!!\APPLIC~1\Bird Trans Bike
    [05/09/2008|16:23] C:\DOCUME~1\astrid!!\APPLIC~1\BitDefender
    [31/10/2005|13:28] C:\DOCUME~1\astrid!!\APPLIC~1\Block Checker
    [07/07/2005|13:55] C:\DOCUME~1\astrid!!\APPLIC~1\CyberLink
    [14/10/2005|23:40] C:\DOCUME~1\astrid!!\APPLIC~1\EPSON
    [17/12/2006|17:11] C:\DOCUME~1\astrid!!\APPLIC~1\F-Secure
    [16/06/2006|14:15] C:\DOCUME~1\astrid!!\APPLIC~1\Google
    [01/11/2007|13:43] C:\DOCUME~1\astrid!!\APPLIC~1\Grisoft
    [06/07/2005|20:39] C:\DOCUME~1\astrid!!\APPLIC~1\Help
    [31/12/2005|09:27] C:\DOCUME~1\astrid!!\APPLIC~1\ICQLite
    [16/08/2004|18:19] C:\DOCUME~1\astrid!!\APPLIC~1\Identities
    [07/12/2006|07:57] C:\DOCUME~1\astrid!!\APPLIC~1\ispnews
    [24/10/2005|13:11] C:\DOCUME~1\astrid!!\APPLIC~1\Lavasoft
    [24/08/2005|17:11] C:\DOCUME~1\astrid!!\APPLIC~1\Leadertech
    [06/07/2005|20:48] C:\DOCUME~1\astrid!!\APPLIC~1\Macromedia
    [30/07/2007|19:18] C:\DOCUME~1\astrid!!\APPLIC~1\Microsoft
    [30/05/2006|20:48] C:\DOCUME~1\astrid!!\APPLIC~1\Morpheus
    [14/06/2006|10:25] C:\DOCUME~1\astrid!!\APPLIC~1\Mozilla
    [16/09/2005|23:25] C:\DOCUME~1\astrid!!\APPLIC~1\MSNInstaller
    [14/06/2006|13:59] C:\DOCUME~1\astrid!!\APPLIC~1\MySpace
    [08/07/2005|17:51] C:\DOCUME~1\astrid!!\APPLIC~1\Real
    [24/09/2006|19:05] C:\DOCUME~1\astrid!!\APPLIC~1\Simply Super Software
    [24/08/2005|17:12] C:\DOCUME~1\astrid!!\APPLIC~1\Sonic
    [07/04/2005|20:40] C:\DOCUME~1\astrid!!\APPLIC~1\Sun
    [07/04/2005|20:47] C:\DOCUME~1\astrid!!\APPLIC~1\Symantec
    [14/06/2006|10:25] C:\DOCUME~1\astrid!!\APPLIC~1\Talkback
    [07/07/2006|11:34] C:\DOCUME~1\astrid!!\APPLIC~1\way lies sect
    [24/08/2007|11:21] C:\DOCUME~1\astrid!!\APPLIC~1\WinRAR
    [07/04/2005|20:45] C:\DOCUME~1\astrid!!\APPLIC~1\You've Got Pictures Screensaver


    [16/08/2004|18:19] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
    [16/08/2004|17:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
    [07/04/2005|20:50] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
    [07/04/2005|20:40] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun
    [07/04/2005|20:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
    [07/04/2005|20:45] C:\DOCUME~1\DEFAUL~1\APPLIC~1\You've Got Pictures Screensaver

    [05/01/2007|18:51] C:\DOCUME~1\LOCALS~1\APPLIC~1\Adobe
    [28/07/2007|22:11] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
    [29/08/2006|22:44] C:\DOCUME~1\LOCALS~1\APPLIC~1\Google
    [19/09/2006|11:24] C:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia
    [30/07/2007|19:18] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
    [15/06/2007|19:24] C:\DOCUME~1\LOCALS~1\APPLIC~1\Mozilla

    [12/06/2006|10:54] C:\DOCUME~1\NETWOR~1\APPLIC~1\Macromedia
    [30/07/2007|19:18] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
    [03/10/2005|16:42] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec

    [18/03/2009|13:53] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Adobe
    [08/05/2008|20:53] C:\DOCUME~1\PAPA!!~1\APPLIC~1\AdobeUM
    [24/03/2008|12:52] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Apple Computer
    [30/07/2007|16:59] C:\DOCUME~1\PAPA!!~1\APPLIC~1\AVG7
    [02/08/2008|17:29] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Bitdefender
    [29/04/2009|10:21] C:\DOCUME~1\PAPA!!~1\APPLIC~1\CameraWindowDC
    [09/03/2009|23:04] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Canon
    [07/03/2009|21:32] C:\DOCUME~1\PAPA!!~1\APPLIC~1\CANON INC
    [25/08/2005|14:31] C:\DOCUME~1\PAPA!!~1\APPLIC~1\CyberLink
    [17/12/2007|18:28] C:\DOCUME~1\PAPA!!~1\APPLIC~1\EPSON
    [07/03/2009|23:58] C:\DOCUME~1\PAPA!!~1\APPLIC~1\FlyGimp Pro
    [05/12/2006|20:30] C:\DOCUME~1\PAPA!!~1\APPLIC~1\F-Secure
    [17/06/2006|14:41] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Google
    [08/03/2009|00:00] C:\DOCUME~1\PAPA!!~1\APPLIC~1\gtk-2.0
    [20/07/2005|09:39] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Help
    [16/08/2004|18:19] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Identities
    [05/12/2006|19:36] C:\DOCUME~1\PAPA!!~1\APPLIC~1\ispnews
    [25/09/2006|09:22] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Lavasoft
    [28/03/2006|22:51] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Leadertech
    [25/06/2006|13:31] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Macromedia
    [20/02/2009|10:14] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Microsoft
    [19/11/2005|10:31] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Microsoft Web Folders
    [08/05/2008|18:55] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Motive
    [05/12/2008|23:13] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Mozilla
    [17/03/2009|14:47] C:\DOCUME~1\PAPA!!~1\APPLIC~1\OpenOffice.org2
    [25/06/2007|10:13] C:\DOCUME~1\PAPA!!~1\APPLIC~1\PEX
    [21/07/2005|22:35] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Real
    [12/04/2008|17:47] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Samsung
    [25/09/2006|09:04] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Simply Super Software
    [15/03/2009|21:11] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Smart Panel
    [15/04/2006|17:04] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Sonic
    [07/04/2005|20:40] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Sun
    [06/12/2007|12:11] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Viewpoint
    [08/03/2008|11:28] C:\DOCUME~1\PAPA!!~1\APPLIC~1\vlc
    [17/08/2007|13:10] C:\DOCUME~1\PAPA!!~1\APPLIC~1\WinRAR
    [09/04/2009|13:42] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Yahoo!
    [07/04/2005|20:45] C:\DOCUME~1\PAPA!!~1\APPLIC~1\You've Got Pictures Screensaver
    [29/04/2009|10:30] C:\DOCUME~1\PAPA!!~1\APPLIC~1\ZoomBrowser EX

    [07/07/2005|13:41] C:\DOCUME~1\PROPRI~1\APPLIC~1\You've Got Pictures Screensaver

    --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

    [29/04/2009 12:50][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{8890293E-B54D-4D96-9D65-53B36DA8869D}.job
    [29/04/2009 12:20][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-4036880024-3374177845-1600862251-1010.job
    [29/04/2009 08:59][--a------] C:\WINDOWS\tasks\BitDefender Antivirus Plus v10.job
    [27/04/2009 11:48][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [29/04/2009 14:00][--ah-----] C:\WINDOWS\tasks\B4F9E28E94AE87FA.job
    [29/04/2009 08:59][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    ( B4F9E28E94AE87FA.job )=( c:\docume~1\astrid!!\applic~1\birdtr~1\exitlovedeaf.exe )

    --------------------\\ Listing des dossiers dans C:\Program Files

    [21/01/2009|21:07] C:\Program Files\Acro Software
    [18/03/2009|13:37] C:\Program Files\Adobe
    [11/06/2006|17:30] C:\Program Files\Advanced Messenger Plus
    [30/07/2007|19:28] C:\Program Files\AntivirusFirewall
    [05/12/2006|01:33] C:\Program Files\AOL 9.0
    [07/04/2005|20:45] C:\Program Files\AOL Compagnon
    [01/05/2008|20:55] C:\Program Files\Apple Software Update
    [19/03/2006|21:26] C:\Program Files\Atelier Web
    [30/06/2006|18:45] C:\Program Files\Bird Trans Bike
    [02/08/2008|17:27] C:\Program Files\BitDefender
    [07/03/2009|18:14] C:\Program Files\Canon
    [29/04/2009|04:06] C:\Program Files\CCleaner
    [05/12/2006|22:49] C:\Program Files\Cheating-Death
    [05/01/2007|18:54] C:\Program Files\C-Media 3D Audio
    [03/06/2006|00:48] C:\Program Files\Common Files
    [16/08/2004|18:05] C:\Program Files\ComPlus Applications
    [31/12/2007|03:07] C:\Program Files\Controle Parental
    [18/08/2007|21:54] C:\Program Files\Cool MP3 Converter
    [07/04/2005|20:49] C:\Program Files\CyberLink
    [20/08/2006|16:10] C:\Program Files\Dictionnaire
    [10/06/2006|01:30] C:\Program Files\DIFX
    [08/07/2005|22:05] C:\Program Files\directx
    [26/07/2007|01:07] C:\Program Files\DivX
    [08/03/2008|11:26] C:\Program Files\DMV
    [08/07/2007|23:21] C:\Program Files\Eidos Interactive
    [29/04/2009|12:42] C:\Program Files\epson
    [10/05/2006|21:50] C:\Program Files\ExoSee
    [29/04/2009|12:48] C:\Program Files\Fichiers communs
    [26/07/2007|00:53] C:\Program Files\Google
    [21/01/2009|21:08] C:\Program Files\GPLGS
    [14/01/2006|16:20] C:\Program Files\GrabIt
    [18/03/2008|16:17] C:\Program Files\Grisoft
    [26/08/2006|12:08] C:\Program Files\Guitar Pro 4 Demo
    [30/06/2007|00:05] C:\Program Files\HardwareDetection
    [01/01/2006|11:53] C:\Program Files\ICQLite
    [29/04/2009|12:42] C:\Program Files\InstallShield Installation Information
    [05/01/2007|18:50] C:\Program Files\Intel
    [09/04/2009|13:57] C:\Program Files\Internet Explorer
    [08/04/2008|18:26] C:\Program Files\Inventel
    [01/05/2008|21:05] C:\Program Files\iPod
    [01/05/2008|21:05] C:\Program Files\iTunes
    [29/04/2009|03:23] C:\Program Files\Java
    [15/06/2006|13:36] C:\Program Files\JavaSoft
    [17/05/2007|09:11] C:\Program Files\Lavasoft
    [07/04/2005|20:45] C:\Program Files\Learn2.com
    [13/08/2006|00:30] C:\Program Files\Logitech
    [21/07/2007|23:36] C:\Program Files\MAIET
    [28/03/2008|15:10] C:\Program Files\Managed DirectX (0901)
    [31/05/2007|21:53] C:\Program Files\MaxSoftware
    [01/06/2007|09:19] C:\Program Files\MaxTV
    [15/08/2008|17:17] C:\Program Files\Messenger
    [29/03/2008|15:32] C:\Program Files\Messenger Plus! Live
    [27/10/2006|22:02] C:\Program Files\MessengerPlus! 3
    [09/12/2007|03:29] C:\Program Files\Microsoft CAPICOM 2.1.0.2
    [24/03/2008|14:54] C:\Program Files\Microsoft Encarta
    [19/11/2005|11:08] C:\Program Files\microsoft frontpage
    [30/08/2006|10:30] C:\Program Files\Microsoft Games
    [26/05/2008|16:44] C:\Program Files\microsoft office
    [07/04/2005|20:52] C:\Program Files\Microsoft Visual Studio
    [14/09/2006|21:38] C:\Program Files\Microsoft Windows Script
    [05/01/2007|17:12] C:\Program Files\Movie Maker
    [28/04/2009|10:34] C:\Program Files\Mozilla Firefox
    [25/12/2005|00:59] C:\Program Files\MP3 Player Utilities 3.10
    [08/11/2007|22:01] C:\Program Files\mp3DirectCut
    [11/07/2006|15:13] C:\Program Files\Mplayer
    [26/05/2008|16:44] C:\Program Files\MSECache
    [14/06/2006|18:22] C:\Program Files\MSN
    [16/08/2004|18:03] C:\Program Files\MSN Gaming Zone
    [17/12/2007|16:13] C:\Program Files\MSN Messenger
    [15/11/2006|23:04] C:\Program Files\MSXML 4.0
    [28/03/2008|15:13] C:\Program Files\MSXML 6.0
    [14/06/2006|13:59] C:\Program Files\MySpace
    [05/01/2007|17:11] C:\Program Files\NetMeeting
    [27/07/2007|00:42] C:\Program Files\Nokia
    [07/07/2005|10:56] C:\Program Files\NovaLogic
    [25/08/2005|15:16] C:\Program Files\OfficeUpdate11
    [16/08/2004|18:03] C:\Program Files\Online Services
    [21/03/2008|17:43] C:\Program Files\OpenOffice.org 2.3
    [29/04/2009|12:42] C:\Program Files\Orange
    [09/05/2008|11:32] C:\Program Files\OrangeHSS
    [20/06/2007|03:03] C:\Program Files\Outlook Express
    [24/11/2007|18:45] C:\Program Files\PhotoFiltre
    [13/08/2006|00:29] C:\Program Files\PokerStars
    [31/10/2005|21:22] C:\Program Files\PopCap Games
    [29/11/2006|14:11] C:\Program Files\PSDream
    [01/05/2008|21:02] C:\Program Files\QuickTime
    [07/04/2005|20:45] C:\Program Files\Real
    [07/04/2005|20:37] C:\Program Files\Realtek
    [12/04/2008|17:41] C:\Program Files\Samsung
    [25/06/2007|14:29] C:\Program Files\Securitoo
    [16/08/2004|18:07] C:\Program Files\Services en ligne
    [22/08/2005|14:49] C:\Program Files\Smart Panel
    [23/03/2008|00:08] C:\Program Files\Snapshot Viewer
    [07/04/2005|20:53] C:\Program Files\Sonic
    [03/09/2006|16:06] C:\Program Files\Soulseek
    [02/07/2008|21:10] C:\Program Files\Soulseek-Test
    [12/03/2009|22:56] C:\Program Files\Spybot - Search & Destroy
    [26/09/2007|16:03] C:\Program Files\Teamspeak2_RC2
    [23/06/2006|19:40] C:\Program Files\TGTSoft
    [29/04/2009|13:38] C:\Program Files\trend micro
    [30/07/2007|19:31] C:\Program Files\UnHackMe
    [16/08/2004|18:19] C:\Program Files\Uninstall Information
    [30/01/2008|19:25] C:\Program Files\Valve
    [07/04/2005|20:45] C:\Program Files\Viewpoint
    [16/05/2007|11:43] C:\Program Files\VSAdd-in
    [08/05/2008|18:46] C:\Program Files\Wanadoo
    [20/06/2007|00:45] C:\Program Files\Winamp
    [08/12/2007|22:19] C:\Program Files\Windows Live
    [14/01/2007|18:48] C:\Program Files\Windows Live Safety Center
    [08/07/2005|22:03] C:\Program Files\Windows Media Components
    [19/01/2008|16:20] C:\Program Files\Windows Media Connect 2
    [21/01/2009|23:00] C:\Program Files\Windows Media Player
    [05/01/2007|17:09] C:\Program Files\Windows NT
    [16/08/2004|18:07] C:\Program Files\WindowsUpdate
    [29/04/2009|12:43] C:\Program Files\WinRAR
    [16/08/2004|18:11] C:\Program Files\xerox
    [29/04/2009|12:40] C:\Program Files\Yahoo!
    [17/05/2007|09:12] C:\Program Files\Zone Labs

    --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

    [24/09/2006|18:54] C:\Program Files\Fichiers communs\{FC86333C-0BB0-1036-0123-050502210021}
    [18/03/2009|13:37] C:\Program Files\Fichiers communs\Adobe
    [07/04/2005|20:45] C:\Program Files\Fichiers communs\AOL
    [07/04/2005|20:45] C:\Program Files\Fichiers communs\aolshare
    [27/12/2008|23:51] C:\Program Files\Fichiers communs\BitDefender
    [07/03/2009|18:10] C:\Program Files\Fichiers communs\Canon
    [23/03/2008|00:10] C:\Program Files\Fichiers communs\Designer
    [06/07/2005|16:25] C:\Program Files\Fichiers communs\DirectX
    [08/05/2008|18:45] C:\Program Files\Fichiers communs\France Telecom
    [14/06/2006|20:30] C:\Program Files\Fichiers communs\InstallShield
    [07/04/2005|20:39] C:\Program Files\Fichiers communs\Java
    [08/07/2005|22:05] C:\Program Files\Fichiers communs\Logitech
    [05/03/2009|13:00] C:\Program Files\Fichiers communs\Microsoft Shared
    [08/05/2008|18:53] C:\Program Files\Fichiers communs\Motive
    [16/08/2004|18:06] C:\Program Files\Fichiers communs\MSSoap
    [07/01/2006|07:59] C:\Program Files\Fichiers communs\NSV
    [07/04/2005|20:45] C:\Program Files\Fichiers communs\Nullsoft
    [16/08/2004|17:57] C:\Program Files\Fichiers communs\ODBC
    [07/04/2005|20:50] C:\Program Files\Fichiers communs\Real
    [02/10/2005|12:36] C:\Program Files\Fichiers communs\Services
    [02/08/2008|17:26] C:\Program Files\Fichiers communs\Softwin
    [07/04/2005|20:53] C:\Program Files\Fichiers communs\Sonic Shared
    [16/08/2004|17:56] C:\Program Files\Fichiers communs\SpeechEngines
    [07/04/2005|20:51] C:\Program Files\Fichiers communs\SureThing Shared
    [23/03/2008|00:08] C:\Program Files\Fichiers communs\System
    [08/12/2007|22:23] C:\Program Files\Fichiers communs\WindowsLiveInstaller
    [07/04/2005|20:50] C:\Program Files\Fichiers communs\xing shared

    --------------------\\ Process

    ( 59 Processes )

    ... OK !

    --------------------\\ Recherche avec S_Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Recherche de Fichiers / Dossiers Lop

    C:\DOCUME~1\astrid!!\APPLIC~1\birdtr~1
    C:\Program Files\birdtr~1
    C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp\nsb8.tmp
    C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp\nsf1B.tmp
    C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp\nsf82.tmp
    C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp\nsp2.tmp
    C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp\nsu793.tmp
    C:\WINDOWS\Tasks\B4F9E28E94AE87FA.job

    --------------------\\ Verification du Registre

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

    ..... OK !

    --------------------\\ Verification du fichier Hosts

    Fichier Hosts PROPRE


    --------------------\\ Recherche de fichiers avec Catchme

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2009-04-29 14:23:48
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 47

    --------------------\\ Recherche d'autres infections

    --------------------\\ Cracks & Keygens ..

    C:\DOCUME~1\PAPA!!~1\Mes documents\Ma musique\iTunes\iTunes Music\Supuration\Still in the sphere\01 The Crack.m4a
    C:\DOCUME~1\PAPA!!~1\Mes documents\Ma musique\MUSIQUE FICHIERS RE‡U\01 The Crack.wma


    [F:9687][D:665]-> C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp
    [F:30][D:0]-> C:\DOCUME~1\PAPA!!~1\Cookies
    [F:887][D:4]-> C:\DOCUME~1\PAPA!!~1\LOCALS~1\TEMPOR~1\content.IE5

    1 - "C:\Lop SD\LopR_1.txt" - 29/04/2009|14:27 - Option : [1]

    --------------------\\ Fin du rapport a 14:27:14
    a c 327 8 Sécurité
    a b 9 Windows
    29 Avril 2009 14:35:48

  • Relance Lop S&D.
  • Choisis cette fois-ci l'option 2 (Suppression).
  • Ne ferme pas la fenêtre lors de la suppression !
  • Poste le rapport généré (C:\lopR.txt).

    (Si le Bureau ne réapparaît pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)
    29 Avril 2009 14:52:56

    voila le rapport :

    --------------------\\ Lop S&D 4.2.5-0 XP/Vista

    Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
    X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 3.00GHz )
    BIOS : Default System BIOS
    USER : PAPA!!!!!!!!!! ( Administrator )
    BOOT : Normal boot
    Antivirus : Bitdefender Antivirus 8.0 (Activated)
    Firewall : Bitdefender Firewall 8.0 (Activated)
    C:\ (Local Disk) - NTFS - Total:180 Go (Free:143 Go)
    D:\ (CD or DVD) - CDFS - Total:1 Go (Free:0 Go)
    E:\ (CD or DVD)
    F:\ (USB)
    G:\ (USB)
    H:\ (USB)
    I:\ (USB)

    "C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
    Option : [2] ( 29/04/2009|14:40 )


    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

    Supprime! - C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp\nsb8.tmp
    Supprime! - C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp\nsf1B.tmp
    Supprime! - C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp\nsf82.tmp
    Supprime! - C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp\nsp2.tmp
    Supprime! - C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp\nsu793.tmp
    Supprime! - C:\WINDOWS\Tasks\B4F9E28E94AE87FA.job
    Supprime! - C:\DOCUME~1\astrid!!\APPLIC~1\birdtr~1
    Supprime! - C:\Program Files\birdtr~1
    -
    [ Fichier Hosts ] .. Restaure!

    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

    Supprime! - C:\Program Files\Viewpoint
    Supprime! - C:\DOCUME~1\PAPA!!~1\APPLIC~1\Viewpoint
    Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint

    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


    --------------------\\ Listing des dossiers dans APPLIC~1

    [16/08/2004|18:19] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
    [30/07/2007|19:18] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
    [07/04/2005|20:50] C:\DOCUME~1\ADMINI~1\APPLIC~1\Real
    [07/04/2005|20:40] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sun
    [07/04/2005|20:47] C:\DOCUME~1\ADMINI~1\APPLIC~1\Symantec
    [07/04/2005|20:45] C:\DOCUME~1\ADMINI~1\APPLIC~1\You've Got Pictures Screensaver

    [16/11/2008|00:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{51019853-129C-4EDE-9030-D5FD7BBD9AD0}
    [08/05/2008|20:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [06/07/2005|18:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
    [22/11/2007|02:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
    [22/11/2007|02:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
    [30/07/2007|19:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
    [02/08/2008|17:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender
    [06/07/2005|22:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
    [30/08/2006|00:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Drawpeakpingdefy
    [27/10/2006|21:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [30/07/2007|19:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
    [14/12/2007|22:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
    [17/05/2007|09:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [08/05/2008|18:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Motive
    [08/07/2005|01:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NFS Underground
    [09/03/2009|23:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PhotoStitch
    [07/04/2005|20:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
    [16/08/2004|18:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
    [19/11/2005|11:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBT
    [27/04/2009|15:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
    [29/04/2009|04:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
    [16/07/2007|18:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
    [31/10/2005|21:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
    [22/08/2005|14:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
    [02/10/2005|12:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    [04/05/2008|18:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
    [07/03/2009|18:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ZoomBrowser

    [30/01/2007|16:47] C:\DOCUME~1\astrid!!\APPLIC~1\Adobe
    [05/06/2006|22:00] C:\DOCUME~1\astrid!!\APPLIC~1\AdobeUM
    [03/07/2006|14:03] C:\DOCUME~1\astrid!!\APPLIC~1\Apple Computer
    [05/09/2008|16:23] C:\DOCUME~1\astrid!!\APPLIC~1\BitDefender
    [31/10/2005|13:28] C:\DOCUME~1\astrid!!\APPLIC~1\Block Checker
    [07/07/2005|13:55] C:\DOCUME~1\astrid!!\APPLIC~1\CyberLink
    [14/10/2005|23:40] C:\DOCUME~1\astrid!!\APPLIC~1\EPSON
    [17/12/2006|17:11] C:\DOCUME~1\astrid!!\APPLIC~1\F-Secure
    [16/06/2006|14:15] C:\DOCUME~1\astrid!!\APPLIC~1\Google
    [01/11/2007|13:43] C:\DOCUME~1\astrid!!\APPLIC~1\Grisoft
    [06/07/2005|20:39] C:\DOCUME~1\astrid!!\APPLIC~1\Help
    [31/12/2005|09:27] C:\DOCUME~1\astrid!!\APPLIC~1\ICQLite
    [16/08/2004|18:19] C:\DOCUME~1\astrid!!\APPLIC~1\Identities
    [07/12/2006|07:57] C:\DOCUME~1\astrid!!\APPLIC~1\ispnews
    [24/10/2005|13:11] C:\DOCUME~1\astrid!!\APPLIC~1\Lavasoft
    [24/08/2005|17:11] C:\DOCUME~1\astrid!!\APPLIC~1\Leadertech
    [06/07/2005|20:48] C:\DOCUME~1\astrid!!\APPLIC~1\Macromedia
    [30/07/2007|19:18] C:\DOCUME~1\astrid!!\APPLIC~1\Microsoft
    [30/05/2006|20:48] C:\DOCUME~1\astrid!!\APPLIC~1\Morpheus
    [14/06/2006|10:25] C:\DOCUME~1\astrid!!\APPLIC~1\Mozilla
    [16/09/2005|23:25] C:\DOCUME~1\astrid!!\APPLIC~1\MSNInstaller
    [14/06/2006|13:59] C:\DOCUME~1\astrid!!\APPLIC~1\MySpace
    [08/07/2005|17:51] C:\DOCUME~1\astrid!!\APPLIC~1\Real
    [24/09/2006|19:05] C:\DOCUME~1\astrid!!\APPLIC~1\Simply Super Software
    [24/08/2005|17:12] C:\DOCUME~1\astrid!!\APPLIC~1\Sonic
    [07/04/2005|20:40] C:\DOCUME~1\astrid!!\APPLIC~1\Sun
    [07/04/2005|20:47] C:\DOCUME~1\astrid!!\APPLIC~1\Symantec
    [14/06/2006|10:25] C:\DOCUME~1\astrid!!\APPLIC~1\Talkback
    [07/07/2006|11:34] C:\DOCUME~1\astrid!!\APPLIC~1\way lies sect
    [24/08/2007|11:21] C:\DOCUME~1\astrid!!\APPLIC~1\WinRAR
    [07/04/2005|20:45] C:\DOCUME~1\astrid!!\APPLIC~1\You've Got Pictures Screensaver


    [16/08/2004|18:19] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
    [16/08/2004|17:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
    [07/04/2005|20:50] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
    [07/04/2005|20:40] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun
    [07/04/2005|20:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
    [07/04/2005|20:45] C:\DOCUME~1\DEFAUL~1\APPLIC~1\You've Got Pictures Screensaver

    [05/01/2007|18:51] C:\DOCUME~1\LOCALS~1\APPLIC~1\Adobe
    [28/07/2007|22:11] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
    [29/08/2006|22:44] C:\DOCUME~1\LOCALS~1\APPLIC~1\Google
    [19/09/2006|11:24] C:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia
    [30/07/2007|19:18] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
    [15/06/2007|19:24] C:\DOCUME~1\LOCALS~1\APPLIC~1\Mozilla

    [12/06/2006|10:54] C:\DOCUME~1\NETWOR~1\APPLIC~1\Macromedia
    [30/07/2007|19:18] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
    [03/10/2005|16:42] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec

    [18/03/2009|13:53] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Adobe
    [08/05/2008|20:53] C:\DOCUME~1\PAPA!!~1\APPLIC~1\AdobeUM
    [24/03/2008|12:52] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Apple Computer
    [30/07/2007|16:59] C:\DOCUME~1\PAPA!!~1\APPLIC~1\AVG7
    [02/08/2008|17:29] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Bitdefender
    [29/04/2009|10:21] C:\DOCUME~1\PAPA!!~1\APPLIC~1\CameraWindowDC
    [09/03/2009|23:04] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Canon
    [07/03/2009|21:32] C:\DOCUME~1\PAPA!!~1\APPLIC~1\CANON INC
    [25/08/2005|14:31] C:\DOCUME~1\PAPA!!~1\APPLIC~1\CyberLink
    [17/12/2007|18:28] C:\DOCUME~1\PAPA!!~1\APPLIC~1\EPSON
    [07/03/2009|23:58] C:\DOCUME~1\PAPA!!~1\APPLIC~1\FlyGimp Pro
    [05/12/2006|20:30] C:\DOCUME~1\PAPA!!~1\APPLIC~1\F-Secure
    [17/06/2006|14:41] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Google
    [08/03/2009|00:00] C:\DOCUME~1\PAPA!!~1\APPLIC~1\gtk-2.0
    [20/07/2005|09:39] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Help
    [16/08/2004|18:19] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Identities
    [05/12/2006|19:36] C:\DOCUME~1\PAPA!!~1\APPLIC~1\ispnews
    [25/09/2006|09:22] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Lavasoft
    [28/03/2006|22:51] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Leadertech
    [25/06/2006|13:31] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Macromedia
    [20/02/2009|10:14] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Microsoft
    [19/11/2005|10:31] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Microsoft Web Folders
    [08/05/2008|18:55] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Motive
    [05/12/2008|23:13] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Mozilla
    [17/03/2009|14:47] C:\DOCUME~1\PAPA!!~1\APPLIC~1\OpenOffice.org2
    [25/06/2007|10:13] C:\DOCUME~1\PAPA!!~1\APPLIC~1\PEX
    [21/07/2005|22:35] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Real
    [12/04/2008|17:47] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Samsung
    [25/09/2006|09:04] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Simply Super Software
    [15/03/2009|21:11] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Smart Panel
    [15/04/2006|17:04] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Sonic
    [07/04/2005|20:40] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Sun
    [08/03/2008|11:28] C:\DOCUME~1\PAPA!!~1\APPLIC~1\vlc
    [17/08/2007|13:10] C:\DOCUME~1\PAPA!!~1\APPLIC~1\WinRAR
    [09/04/2009|13:42] C:\DOCUME~1\PAPA!!~1\APPLIC~1\Yahoo!
    [07/04/2005|20:45] C:\DOCUME~1\PAPA!!~1\APPLIC~1\You've Got Pictures Screensaver
    [29/04/2009|10:30] C:\DOCUME~1\PAPA!!~1\APPLIC~1\ZoomBrowser EX

    [07/07/2005|13:41] C:\DOCUME~1\PROPRI~1\APPLIC~1\You've Got Pictures Screensaver

    --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

    [29/04/2009 12:50][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{8890293E-B54D-4D96-9D65-53B36DA8869D}.job
    [29/04/2009 14:30][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-4036880024-3374177845-1600862251-1010.job
    [29/04/2009 08:59][--a------] C:\WINDOWS\tasks\BitDefender Antivirus Plus v10.job
    [27/04/2009 11:48][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [29/04/2009 08:59][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    --------------------\\ Listing des dossiers dans C:\Program Files

    [21/01/2009|21:07] C:\Program Files\Acro Software
    [18/03/2009|13:37] C:\Program Files\Adobe
    [11/06/2006|17:30] C:\Program Files\Advanced Messenger Plus
    [30/07/2007|19:28] C:\Program Files\AntivirusFirewall
    [05/12/2006|01:33] C:\Program Files\AOL 9.0
    [07/04/2005|20:45] C:\Program Files\AOL Compagnon
    [01/05/2008|20:55] C:\Program Files\Apple Software Update
    [19/03/2006|21:26] C:\Program Files\Atelier Web
    [02/08/2008|17:27] C:\Program Files\BitDefender
    [07/03/2009|18:14] C:\Program Files\Canon
    [29/04/2009|04:06] C:\Program Files\CCleaner
    [05/12/2006|22:49] C:\Program Files\Cheating-Death
    [05/01/2007|18:54] C:\Program Files\C-Media 3D Audio
    [03/06/2006|00:48] C:\Program Files\Common Files
    [16/08/2004|18:05] C:\Program Files\ComPlus Applications
    [31/12/2007|03:07] C:\Program Files\Controle Parental
    [18/08/2007|21:54] C:\Program Files\Cool MP3 Converter
    [07/04/2005|20:49] C:\Program Files\CyberLink
    [20/08/2006|16:10] C:\Program Files\Dictionnaire
    [10/06/2006|01:30] C:\Program Files\DIFX
    [08/07/2005|22:05] C:\Program Files\directx
    [26/07/2007|01:07] C:\Program Files\DivX
    [08/03/2008|11:26] C:\Program Files\DMV
    [08/07/2007|23:21] C:\Program Files\Eidos Interactive
    [29/04/2009|12:42] C:\Program Files\epson
    [10/05/2006|21:50] C:\Program Files\ExoSee
    [29/04/2009|12:48] C:\Program Files\Fichiers communs
    [26/07/2007|00:53] C:\Program Files\Google
    [21/01/2009|21:08] C:\Program Files\GPLGS
    [14/01/2006|16:20] C:\Program Files\GrabIt
    [18/03/2008|16:17] C:\Program Files\Grisoft
    [26/08/2006|12:08] C:\Program Files\Guitar Pro 4 Demo
    [30/06/2007|00:05] C:\Program Files\HardwareDetection
    [01/01/2006|11:53] C:\Program Files\ICQLite
    [29/04/2009|12:42] C:\Program Files\InstallShield Installation Information
    [05/01/2007|18:50] C:\Program Files\Intel
    [09/04/2009|13:57] C:\Program Files\Internet Explorer
    [08/04/2008|18:26] C:\Program Files\Inventel
    [01/05/2008|21:05] C:\Program Files\iPod
    [01/05/2008|21:05] C:\Program Files\iTunes
    [29/04/2009|03:23] C:\Program Files\Java
    [15/06/2006|13:36] C:\Program Files\JavaSoft
    [17/05/2007|09:11] C:\Program Files\Lavasoft
    [07/04/2005|20:45] C:\Program Files\Learn2.com
    [13/08/2006|00:30] C:\Program Files\Logitech
    [21/07/2007|23:36] C:\Program Files\MAIET
    [28/03/2008|15:10] C:\Program Files\Managed DirectX (0901)
    [31/05/2007|21:53] C:\Program Files\MaxSoftware
    [01/06/2007|09:19] C:\Program Files\MaxTV
    [15/08/2008|17:17] C:\Program Files\Messenger
    [29/03/2008|15:32] C:\Program Files\Messenger Plus! Live
    [27/10/2006|22:02] C:\Program Files\MessengerPlus! 3
    [09/12/2007|03:29] C:\Program Files\Microsoft CAPICOM 2.1.0.2
    [24/03/2008|14:54] C:\Program Files\Microsoft Encarta
    [19/11/2005|11:08] C:\Program Files\microsoft frontpage
    [30/08/2006|10:30] C:\Program Files\Microsoft Games
    [26/05/2008|16:44] C:\Program Files\microsoft office
    [07/04/2005|20:52] C:\Program Files\Microsoft Visual Studio
    [14/09/2006|21:38] C:\Program Files\Microsoft Windows Script
    [05/01/2007|17:12] C:\Program Files\Movie Maker
    [28/04/2009|10:34] C:\Program Files\Mozilla Firefox
    [25/12/2005|00:59] C:\Program Files\MP3 Player Utilities 3.10
    [08/11/2007|22:01] C:\Program Files\mp3DirectCut
    [11/07/2006|15:13] C:\Program Files\Mplayer
    [26/05/2008|16:44] C:\Program Files\MSECache
    [14/06/2006|18:22] C:\Program Files\MSN
    [16/08/2004|18:03] C:\Program Files\MSN Gaming Zone
    [17/12/2007|16:13] C:\Program Files\MSN Messenger
    [15/11/2006|23:04] C:\Program Files\MSXML 4.0
    [28/03/2008|15:13] C:\Program Files\MSXML 6.0
    [14/06/2006|13:59] C:\Program Files\MySpace
    [05/01/2007|17:11] C:\Program Files\NetMeeting
    [27/07/2007|00:42] C:\Program Files\Nokia
    [07/07/2005|10:56] C:\Program Files\NovaLogic
    [25/08/2005|15:16] C:\Program Files\OfficeUpdate11
    [16/08/2004|18:03] C:\Program Files\Online Services
    [21/03/2008|17:43] C:\Program Files\OpenOffice.org 2.3
    [29/04/2009|12:42] C:\Program Files\Orange
    [09/05/2008|11:32] C:\Program Files\OrangeHSS
    [20/06/2007|03:03] C:\Program Files\Outlook Express
    [24/11/2007|18:45] C:\Program Files\PhotoFiltre
    [13/08/2006|00:29] C:\Program Files\PokerStars
    [31/10/2005|21:22] C:\Program Files\PopCap Games
    [29/11/2006|14:11] C:\Program Files\PSDream
    [01/05/2008|21:02] C:\Program Files\QuickTime
    [07/04/2005|20:45] C:\Program Files\Real
    [07/04/2005|20:37] C:\Program Files\Realtek
    [12/04/2008|17:41] C:\Program Files\Samsung
    [25/06/2007|14:29] C:\Program Files\Securitoo
    [16/08/2004|18:07] C:\Program Files\Services en ligne
    [22/08/2005|14:49] C:\Program Files\Smart Panel
    [23/03/2008|00:08] C:\Program Files\Snapshot Viewer
    [07/04/2005|20:53] C:\Program Files\Sonic
    [03/09/2006|16:06] C:\Program Files\Soulseek
    [02/07/2008|21:10] C:\Program Files\Soulseek-Test
    [12/03/2009|22:56] C:\Program Files\Spybot - Search & Destroy
    [26/09/2007|16:03] C:\Program Files\Teamspeak2_RC2
    [23/06/2006|19:40] C:\Program Files\TGTSoft
    [29/04/2009|13:38] C:\Program Files\trend micro
    [30/07/2007|19:31] C:\Program Files\UnHackMe
    [16/08/2004|18:19] C:\Program Files\Uninstall Information
    [30/01/2008|19:25] C:\Program Files\Valve
    [16/05/2007|11:43] C:\Program Files\VSAdd-in
    [08/05/2008|18:46] C:\Program Files\Wanadoo
    [20/06/2007|00:45] C:\Program Files\Winamp
    [08/12/2007|22:19] C:\Program Files\Windows Live
    [14/01/2007|18:48] C:\Program Files\Windows Live Safety Center
    [08/07/2005|22:03] C:\Program Files\Windows Media Components
    [19/01/2008|16:20] C:\Program Files\Windows Media Connect 2
    [21/01/2009|23:00] C:\Program Files\Windows Media Player
    [05/01/2007|17:09] C:\Program Files\Windows NT
    [16/08/2004|18:07] C:\Program Files\WindowsUpdate
    [29/04/2009|12:43] C:\Program Files\WinRAR
    [16/08/2004|18:11] C:\Program Files\xerox
    [29/04/2009|12:40] C:\Program Files\Yahoo!
    [17/05/2007|09:12] C:\Program Files\Zone Labs

    --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

    [24/09/2006|18:54] C:\Program Files\Fichiers communs\{FC86333C-0BB0-1036-0123-050502210021}
    [18/03/2009|13:37] C:\Program Files\Fichiers communs\Adobe
    [07/04/2005|20:45] C:\Program Files\Fichiers communs\AOL
    [07/04/2005|20:45] C:\Program Files\Fichiers communs\aolshare
    [27/12/2008|23:51] C:\Program Files\Fichiers communs\BitDefender
    [07/03/2009|18:10] C:\Program Files\Fichiers communs\Canon
    [23/03/2008|00:10] C:\Program Files\Fichiers communs\Designer
    [06/07/2005|16:25] C:\Program Files\Fichiers communs\DirectX
    [08/05/2008|18:45] C:\Program Files\Fichiers communs\France Telecom
    [14/06/2006|20:30] C:\Program Files\Fichiers communs\InstallShield
    [07/04/2005|20:39] C:\Program Files\Fichiers communs\Java
    [08/07/2005|22:05] C:\Program Files\Fichiers communs\Logitech
    [05/03/2009|13:00] C:\Program Files\Fichiers communs\Microsoft Shared
    [08/05/2008|18:53] C:\Program Files\Fichiers communs\Motive
    [16/08/2004|18:06] C:\Program Files\Fichiers communs\MSSoap
    [07/01/2006|07:59] C:\Program Files\Fichiers communs\NSV
    [07/04/2005|20:45] C:\Program Files\Fichiers communs\Nullsoft
    [16/08/2004|17:57] C:\Program Files\Fichiers communs\ODBC
    [07/04/2005|20:50] C:\Program Files\Fichiers communs\Real
    [02/10/2005|12:36] C:\Program Files\Fichiers communs\Services
    [02/08/2008|17:26] C:\Program Files\Fichiers communs\Softwin
    [07/04/2005|20:53] C:\Program Files\Fichiers communs\Sonic Shared
    [16/08/2004|17:56] C:\Program Files\Fichiers communs\SpeechEngines
    [07/04/2005|20:51] C:\Program Files\Fichiers communs\SureThing Shared
    [23/03/2008|00:08] C:\Program Files\Fichiers communs\System
    [08/12/2007|22:23] C:\Program Files\Fichiers communs\WindowsLiveInstaller
    [07/04/2005|20:50] C:\Program Files\Fichiers communs\xing shared

    --------------------\\ Process

    ( 61 Processes )

    ... OK !

    --------------------\\ Recherche avec S_Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Recherche de Fichiers / Dossiers Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Verification du Registre

    ..... OK !

    --------------------\\ Verification du fichier Hosts

    Fichier Hosts PROPRE


    --------------------\\ Recherche de fichiers avec Catchme

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2009-04-29 14:46:05
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 47

    --------------------\\ Recherche d'autres infections

    --------------------\\ Cracks & Keygens ..

    C:\DOCUME~1\PAPA!!~1\Mes documents\Ma musique\iTunes\iTunes Music\Supuration\Still in the sphere\01 The Crack.m4a
    C:\DOCUME~1\PAPA!!~1\Mes documents\Ma musique\MUSIQUE FICHIERS RE‡U\01 The Crack.wma


    [F:9679][D:660]-> C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp
    [F:30][D:0]-> C:\DOCUME~1\PAPA!!~1\Cookies
    [F:899][D:4]-> C:\DOCUME~1\PAPA!!~1\LOCALS~1\TEMPOR~1\content.IE5

    1 - "C:\Lop SD\LopR_1.txt" - 29/04/2009|14:27 - Option : [1]
    2 - "C:\Lop SD\LopR_2.txt" - 29/04/2009|14:49 - Option : [2]

    --------------------\\ Fin du rapport a 14:49:14
    a c 327 8 Sécurité
    a b 9 Windows
    29 Avril 2009 15:00:04

  • Télécharge DirLook sur ton Bureau.
  • Double-clique sur DirLook.exe pour lance l'outil.
  • Vérifie que les deux cases situées derrière "Show hidden files/folders:" et "BBCode Output:" soient cochées.
  • Copie le texte ci-dessous :

    C:\DOCUME~1\ALLUSE~1\APPLIC~1\Drawpeakpingdefy


  • Dans la petite fenêtre de DirLook, faire un clic droit dans la zone blanche et choisir Coller.
    Note : les lignes sélectionnées précédemment doivent avoir été recopiées dans la zone blanche de DirLook.

  • Clique sur le bouton DirLook pour lancer la recherche. Lorsque l'outil a terminé cette recherche, le Bloc-notes s'ouvre.
    Note : Dans le Bloc-notes, vérifie dans le menu Format (en haut) que l'option "Retour automatique à la ligne" n'est pas cochée.

  • Enregistre le rapport sous le nom DirLook1.txt et ferme le Bloc-notes.
  • Ferme DirLook en cliquant sur le bouton Exit puis poste le rapport.
    29 Avril 2009 15:05:04

    voilà :
    DirLook.exe v2.0 by jpshortstuff
    Log created at 15:03 on 29/04/2009
    ==================================
    Contents of "C:\DOCUME~1\ALLUSE~1\APPLIC~1\Drawpeakpingdefy"

    ---FOLDERS---

    (none found)

    ---FILES---

    Ace Beep Jump (1182488 bytes - created on 28/02/2006 at 10:37, modified on 06/07/2006 at 18:06) --ahs-
    Axis Keep Platform (1101568 bytes - created on 25/08/2005 at 13:23, modified on 22/06/2006 at 10:56) --ahs-
    bore city test (1282144 bytes - created on 30/07/2005 at 13:25, modified on 07/07/2006 at 10:26) --ahs-
    Build long 01 (2120 bytes - created on 01/09/2005 at 16:59, modified on 01/09/2005 at 16:59) --ahs-
    Web Sixth Help (1457984 bytes - created on 12/10/2005 at 14:32, modified on 29/08/2006 at 12:16) --ahs-

    ==================================
    =EOF=
    a c 327 8 Sécurité
    a b 9 Windows
    29 Avril 2009 15:20:26

    Ok, c'est bien un dossier infecté par Lop/Swizzor.

  • Télécharge OTMoveIt3 (OldTimer) sur ton Bureau.
  • Double-clique sur OTMoveIt3.exe afin de le lancer.
  • Copie (Ctrl+C) le texte suivant ci-dessous :

    :processes
    explorer.exe

    :files
    C:\DOCUME~1\ALLUSE~1\APPLIC~1\Drawpeakpingdefy
    C:\Program Files\VSAdd-in
    C:\VundoFix Backups
    C:\VundoFix.txt

    :reg
    [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
    [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "1A:MacVisionTrayMonitor"=-
    [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WRNotifier]

    :commands
    [purity]
    [emptytemp]
    [reboot]


  • Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
  • Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.

    ---> Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
    Accepte en cliquant sur YES.

  • Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
    ---> Le nom du rapport correspond au moment de sa création : date_heure.log
    29 Avril 2009 15:48:34

    voila le rapport :
    ========== PROCESSES ==========
    Process explorer.exe killed successfully.
    ========== FILES ==========
    C:\DOCUME~1\ALLUSE~1\APPLIC~1\Drawpeakpingdefy moved successfully.
    C:\Program Files\VSAdd-in moved successfully.
    C:\VundoFix Backups moved successfully.
    C:\VundoFix.txt moved successfully.
    ========== REGISTRY ==========
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}\\ deleted successfully.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\1A:MacVisionTrayMonitor deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WRNotifier\\ deleted successfully.
    ========== COMMANDS ==========
    File delete failed. C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp\~DF39F8.tmp scheduled to be deleted on reboot.
    File delete failed. C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp\~DF97CF.tmp scheduled to be deleted on reboot.
    File delete failed. C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp\~DFFEB3.tmp scheduled to be deleted on reboot.
    User's Temp folder emptied.
    User's Internet Explorer cache folder emptied.
    File delete failed. C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Temporary Internet Files\Content.IE5\ZAPHGMLN\01[1].htm scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Temporary Internet Files\Content.IE5\ZAPHGMLN\idn%3BOS[1].htm scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Temporary Internet Files\Content.IE5\UDZ7FOKB\idn%3BOS[1].htm scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Temporary Internet Files\Content.IE5\TI1YWW3L\01[1].htm scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Temporary Internet Files\Content.IE5\TI1YWW3L\287031-11-virtumonde-zlob-dowloader-hijackthis[1].txt scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Temporary Internet Files\Content.IE5\TI1YWW3L\B3604005[1].htm scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Temporary Internet Files\Content.IE5\TI1YWW3L\idn%3BSecurite-Virus[1].htm scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Temporary Internet Files\Content.IE5\TI1YWW3L\idn%3BSecurite-Virus[2].htm scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Temporary Internet Files\Content.IE5\BY1UN91K\264790-10-comment-optimiser-maximum[1].txt scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Temporary Internet Files\Content.IE5\BY1UN91K\fr[3].txt scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
    User's Temporary Internet Files folder emptied.
    Local Service Temp folder emptied.
    File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
    Local Service Temporary Internet Files folder emptied.
    Network Service Temp folder emptied.
    Network Service Temporary Internet Files folder emptied.
    File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_104.dat scheduled to be deleted on reboot.
    Windows Temp folder emptied.
    Java cache emptied.
    FireFox cache emptied.
    Temp folders emptied.

    OTMoveIt3 by OldTimer - Version 1.0.11.0 log created on 04292009_152510

    Files moved on Reboot...
    C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp\~DF39F8.tmp moved successfully.
    C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp\~DF97CF.tmp moved successfully.
    C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp\~DFFEB3.tmp moved successfully.
    C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Temporary Internet Files\Content.IE5\ZAPHGMLN\01[1].htm moved successfully.
    C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Temporary Internet Files\Content.IE5\ZAPHGMLN\idn%3BOS[1].htm moved successfully.
    C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Temporary Internet Files\Content.IE5\UDZ7FOKB\idn%3BOS[1].htm moved successfully.
    C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Temporary Internet Files\Content.IE5\TI1YWW3L\01[1].htm moved successfully.
    C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Temporary Internet Files\Content.IE5\TI1YWW3L\287031-11-virtumonde-zlob-dowloader-hijackthis[1].txt moved successfully.
    C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Temporary Internet Files\Content.IE5\TI1YWW3L\B3604005[1].htm moved successfully.
    C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Temporary Internet Files\Content.IE5\TI1YWW3L\idn%3BSecurite-Virus[1].htm moved successfully.
    C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Temporary Internet Files\Content.IE5\TI1YWW3L\idn%3BSecurite-Virus[2].htm moved successfully.
    C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Temporary Internet Files\Content.IE5\BY1UN91K\264790-10-comment-optimiser-maximum[1].txt moved successfully.
    C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Temporary Internet Files\Content.IE5\BY1UN91K\fr[3].txt moved successfully.
    File C:\WINDOWS\temp\Perflib_Perfdata_104.dat not found!
    a c 327 8 Sécurité
    a b 9 Windows
    29 Avril 2009 16:37:39

  • Mets à jour Adobe Reader.

  • Télécharge Malwarebytes' Anti-Malware (MBAM) sur ton Bureau.
  • Double-clique sur le fichier téléchargé pour lancer le processus d'installation.
  • Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.
  • Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.
  • Sélectionne Exécuter un examen rapide.
  • Clique sur Rechercher. L'analyse démarre.
  • A la fin de l'analyse, un message s'affiche :
    Citation :
    L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.

  • Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
  • Ferme tes navigateurs.
  • Si des malwares ont été détectés, clique sur Afficher les résultats.
  • Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.
  • MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.
    29 Avril 2009 18:04:22

    voila le rapport :
    Malwarebytes' Anti-Malware 1.36
    Version de la base de données: 2059
    Windows 5.1.2600 Service Pack 2

    29/04/2009 18:03:02
    mbam-log-2009-04-29 (18-03-02).txt

    Type de recherche: Examen rapide
    Eléments examinés: 103417
    Temps écoulé: 43 minute(s), 37 second(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 5
    Valeur(s) du Registre infectée(s): 2
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 6

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Juan (Trojan.Vundo) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR (Trojan.DNSChanger) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE (Trojan.Downloader) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\CAC (Malware.Trace) -> Quarantined and deleted successfully.

    Valeur(s) du Registre infectée(s):
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{25f97eb4-1c02-45ba-ba0c-e67aace64d4a} (Adware.ToolBar) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{25f97eb4-1c02-45ba-ba0c-e67aace64d4a} (Adware.ToolBar) -> Quarantined and deleted successfully.

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    C:\WINDOWS\system32\mcrh.tmp (Malware.Trace) -> Quarantined and deleted successfully.
    C:\Documents and Settings\astrid!!\Application Data\Dxcknwrd.dll (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Documents and Settings\PAPA!!!!!!!!!!\Application Data\Dxcknwrd.dll (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\kr_done1 (Malware.Trace) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\ldinfo.ldr (Malware.Trace) -> Quarantined and deleted successfully.
    C:\WINDOWS\tcb.pmw (Malware.Trace) -> Quarantined and deleted successfully.
    a c 327 8 Sécurité
    a b 9 Windows
    29 Avril 2009 18:10:08

  • Relance MBAM, va dans Quarantaine et supprime tout.

  • Refais un scan RSIT et poste le rapport log.

    Ton PC va mieux ?
    29 Avril 2009 18:26:59

    voila le rapport :
    Logfile of random's system information tool 1.06 (written by random/random)
    Run by PAPA!!!!!!!!!! at 2009-04-29 18:20:23
    Microsoft Windows XP Édition familiale Service Pack 2
    System drive C: has 148 GB (80%) free of 185 GB
    Total RAM: 1015 MB (46% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 18:23:13, on 29/04/2009
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
    C:\WINDOWS\system32\cisvc.exe
    c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
    c:\APPS\Powercinema\Kernel\TV\CLSched.exe
    C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
    C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
    C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
    c:\APPS\HIDSERVICE\HIDSERVICE.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\Program Files\Fichiers communs\Motive\McciCMService.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
    C:\WINDOWS\system32\tcpsvcs.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
    C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
    C:\Program Files\Canon\CAL\CALMAIN.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe
    C:\Program Files\OrangeHSS\Launcher\Launcher.exe
    C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\WINDOWS\system32\igfxpers.exe
    C:\WINDOWS\system32\hkcmd.exe
    C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\OrangeHSS\systray\systrayapp.exe
    C:\Program Files\OrangeHSS\Deskboard\deskboard.exe
    C:\Program Files\OrangeHSS\connectivity\connectivitymanager.exe
    C:\Program Files\OrangeHSS\connectivity\CoreCom\CoreCom.exe
    C:\Program Files\OrangeHSS\connectivity\CoreCom\OraConfigRecover.exe
    C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
    C:\Program Files\OrangeHSS\browser\browser.exe
    C:\WINDOWS\system32\cidaemon.exe
    C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
    C:\Documents and Settings\PAPA!!!!!!!!!!\Mes documents\RSIT.exe
    C:\Program Files\trend micro\PAPA!!!!!!!!!!.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com/?fr=fp-yie8
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com/?fr=fp-yie8
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fourni par Yahoo!
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll
    O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe
    O4 - HKLM\..\Run: [LVCOMS] "C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE"
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [BDMCon] C:\PROGRA~1\Softwin\BITDEF~1\bdmcon.exe
    O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe"
    O4 - HKLM\..\Run: [ATIPTA] "C:\ATI Technologies\ATI Control Panel\atiptaxx.exe"
    O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
    O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
    O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2008\IEShow.exe"
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [PHIME2002ASync] "C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE" /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] "C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE" /IMEName
    O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
    O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
    O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
    O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [Orange_Install] "C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp\KIT1.tmp\Installation\Tempcomponents\LIVEASSISTANT\Live Assistant 2.0.exe"
    O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\S-1-5-18\..\Run: [Nord] C:\WINDOWS\system32\nordsys.exe (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU)
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
    O15 - Trusted Zone: http://pfttbc.ft.motive.com
    O15 - Trusted Zone: http://*.orange.fr
    O15 - Trusted Zone: http://rw.search.ke.voila.fr
    O15 - Trusted Zone: http://orange.weborama.fr
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
    O16 - DPF: {029FDBA6-3547-11D7-AA4C-0050BF051A00} (Rawflow ICD Client) - http://s.tf1.fr/mmdia/static/rawflow/clients/5.3.1.0/Ra...
    O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
    O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
    O16 - DPF: {45E83043-1F6F-4D22-A5E7-0138EA171B49} (FileSharingCtrl Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Ap...
    O16 - DPF: {4D7F48C0-CB49-4EA6-97D4-04F4EACC2F3B} - http://sib1.od2.com/common/Member/ClientInstall/9.20.00...
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
    O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common...
    O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://go.divx.com/plugin/DivXBrowserPlugin.cab
    O16 - DPF: {7F8C8173-AD80-4807-AA75-5672F22B4582} (ICSScanner Class) - http://download.zonelabs.com/bin/promotions/spywaredete...
    O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://drivers1.free.fr/hardwaredetection.cab
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-09.sun.com/s/ESD7/JSCDL/jdk/6u13-b03/jin...
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
    O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDown...
    O16 - DPF: {B79A53C0-1DAC-4636-BACE-FD086A7A79BF} (AdSignerLCContrl Class) - https://static.impots.gouv.fr/tdir/static/adpform/AdSig...
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.ca...
    O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown....
    O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
    O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
    O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe
    O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
    O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
    O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - c:\APPS\HIDSERVICE\HIDSERVICE.exe
    O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
    O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Fichiers communs\Motive\McciCMService.exe
    O23 - Service: MysqlInventime - Unknown owner - c:\mysql\bin\mysqld-nt.exe
    O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
    O23 - Service: BitDefender Communicator (XCOMM) - BitDefender - C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe

    --
    End of file - 13864 bytes

    ======Scheduled tasks folder======

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    C:\WINDOWS\tasks\BitDefender Antivirus Plus v10.job
    C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-4036880024-3374177845-1600862251-1010.job
    C:\WINDOWS\tasks\User_Feed_Synchronization-{8890293E-B54D-4D96-9D65-53B36DA8869D}.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2009-02-27 61816]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
    Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-09-15 1562960]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-04-29 35840]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
    JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-04-29 73728]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - BitDefender Toolbar - C:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll [2008-02-28 86016]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "WinampAgent"=C:\Program Files\Winamp\winampa.exe []
    "TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe -osboot []
    "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-04-29 148888]
    "Raccourci vers la page des propriétés de High Definition Audio"=C:\WINDOWS\system32\HDAudPropShortcut.exe [2004-03-17 61952]
    "QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-03-28 413696]
    "ORAHSSSessionManager"=C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe [2008-01-22 107248]
    "LVCOMS"=C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE []
    "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-03-30 267048]
    "BDMCon"=C:\PROGRA~1\Softwin\BITDEF~1\bdmcon.exe []
    "BDAgent"=C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe [2008-12-28 368640]
    "ATIPTA"=C:\ATI Technologies\ATI Control Panel\atiptaxx.exe []
    "AlcWzrd"=ALCWZRD.EXE []
    "Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2004-07-20 57344]
    "BitDefender Antiphishing Helper"=C:\Program Files\BitDefender\BitDefender 2008\IEShow.exe [2007-10-09 61440]
    "SoundMan"=SOUNDMAN.EXE []
    "PHIME2002ASync"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC []
    "PHIME2002A"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName []
    "PCMService"=c:\Apps\Powercinema\PCMService.exe []
    "IMJPMIG8.1"=C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [2004-08-05 208952]
    "igfxtray"=C:\WINDOWS\system32\igfxtray.exe [2005-09-20 94208]
    "igfxpers"=C:\WINDOWS\system32\igfxpers.exe [2005-09-20 114688]
    "igfxhkcmd"=C:\WINDOWS\system32\hkcmd.exe [2005-09-20 77824]
    "Cmaudio"=RunDll32 cmicnfg.cpl,CMICtrlWnd []
    "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "swg"=C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe []
    "Orange_Install"=C:\DOCUME~1\PAPA!!~1\LOCALS~1\Temp\KIT1.tmp\Installation\Tempcomponents\LIVEASSISTANT\Live Assistant 2.0.exe []
    "Google Update"=C:\Documents and Settings\PAPA!!!!!!!!!!\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2008-12-30 133104]
    "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2006-03-02 15360]

    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
    Adobe Gamma Loader.lnk - C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
    C:\WINDOWS\system32\Ati2evxx.dll [2005-02-12 61440]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
    C:\WINDOWS\system32\igfxdev.dll [2005-09-20 135168]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
    C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2006-03-02 240128]
    WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "DisableTaskMgr"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=95000000
    "NoToolbarCustomize"=0
    "NoBandCustomize"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "HonorAutoRunSetting"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Messenger"
    "C:\Program Files\Valve\Steam\SteamApps\curly_is_cool\counter-strike\hl.exe"="C:\Program Files\Valve\Steam\SteamApps\curly_is_cool\counter-strike\hl.exe:*:Enabled:Half-Life Launcher"
    "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d8f9621d-f67a-11dc-9e42-00038a000015}]
    shell\AutoRun\command - J:\setupSNK.exe


    ======List of files/folders created in the last 1 months======

    2009-04-29 17:08:30 ----D---- C:\Documents and Settings\PAPA!!!!!!!!!!\Application Data\Malwarebytes
    2009-04-29 17:07:57 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
    2009-04-29 17:07:54 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
    2009-04-29 17:02:59 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
    2009-04-29 16:47:38 ----D---- C:\Documents and Settings\All Users\Application Data\NOS
    2009-04-29 16:45:50 ----D---- C:\Program Files\NOS
    2009-04-29 15:25:10 ----D---- C:\_OTMoveIt
    2009-04-29 15:04:14 ----A---- C:\DirLook1.txt
    2009-04-29 15:03:07 ----A---- C:\DirLook.txt
    2009-04-29 14:17:45 ----A---- C:\lopR.txt
    2009-04-29 14:16:13 ----D---- C:\Lop SD
    2009-04-29 13:37:38 ----D---- C:\Program Files\trend micro
    2009-04-29 13:37:37 ----D---- C:\rsit
    2009-04-29 04:06:41 ----D---- C:\Program Files\CCleaner
    2009-04-29 03:27:18 ----A---- C:\WINDOWS\system32\javaws.exe
    2009-04-29 03:27:18 ----A---- C:\WINDOWS\system32\javaw.exe
    2009-04-29 03:27:18 ----A---- C:\WINDOWS\system32\deploytk.dll
    2009-04-29 03:27:17 ----A---- C:\WINDOWS\system32\java.exe
    2009-04-18 10:24:05 ----HD---- C:\WINDOWS\PIF
    2009-04-18 03:26:11 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
    2009-04-18 03:25:29 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
    2009-04-18 03:19:43 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
    2009-04-18 03:18:51 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
    2009-04-18 03:17:13 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
    2009-04-18 03:16:49 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
    2009-04-09 13:42:03 ----D---- C:\Documents and Settings\PAPA!!!!!!!!!!\Application Data\Yahoo!
    2009-04-09 13:38:53 ----HDC---- C:\WINDOWS\ie8

    ======List of files/folders modified in the last 1 months======

    2009-04-29 18:20:01 ----D---- C:\WINDOWS\Temp
    2009-04-29 18:11:39 ----AD---- C:\WINDOWS\system32
    2009-04-29 18:11:13 ----D---- C:\WINDOWS\Prefetch
    2009-04-29 18:07:56 ----D---- C:\WINDOWS\system32\drivers
    2009-04-29 18:06:48 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-04-29 18:05:18 ----A---- C:\WINDOWS\bdagent.INI
    2009-04-29 18:03:02 ----D---- C:\WINDOWS
    2009-04-29 17:07:54 ----RAD---- C:\Program Files
    2009-04-29 17:06:13 ----SHD---- C:\WINDOWS\Installer
    2009-04-29 17:05:53 ----SHD---- C:\Config.Msi
    2009-04-29 17:03:31 ----D---- C:\Program Files\Fichiers communs\Adobe
    2009-04-29 17:02:10 ----D---- C:\Program Files\Adobe
    2009-04-29 15:35:14 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-04-29 14:40:44 ----SD---- C:\WINDOWS\Tasks
    2009-04-29 12:48:11 ----DC---- C:\WINDOWS\system32\DRVSTORE
    2009-04-29 12:48:10 ----HD---- C:\WINDOWS\inf
    2009-04-29 12:48:01 ----D---- C:\Program Files\Fichiers communs
    2009-04-29 12:43:51 ----D---- C:\Program Files\WinRAR
    2009-04-29 12:42:52 ----D---- C:\Program Files\epson
    2009-04-29 12:42:49 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-04-29 12:42:09 ----D---- C:\Program Files\Orange
    2009-04-29 12:40:39 ----D---- C:\Program Files\Yahoo!
    2009-04-29 10:30:36 ----D---- C:\Documents and Settings\PAPA!!!!!!!!!!\Application Data\ZoomBrowser EX
    2009-04-29 10:21:43 ----D---- C:\Documents and Settings\PAPA!!!!!!!!!!\Application Data\CameraWindowDC
    2009-04-29 04:24:26 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
    2009-04-29 04:21:44 ----D---- C:\WINDOWS\Debug
    2009-04-29 04:21:02 ----D---- C:\WINDOWS\Minidump
    2009-04-29 03:30:37 ----SD---- C:\WINDOWS\Downloaded Program Files
    2009-04-29 03:23:33 ----D---- C:\Program Files\Java
    2009-04-28 10:34:05 ----D---- C:\Program Files\Mozilla Firefox
    2009-04-28 02:41:14 ----D---- C:\My Music
    2009-04-27 17:17:10 ----SHD---- C:\RECYCLER
    2009-04-27 15:58:15 ----D---- C:\Documents and Settings\All Users\Application Data\Skype
    2009-04-18 10:25:28 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-04-18 10:20:40 ----D---- C:\WINDOWS\system32\wbem
    2009-04-18 10:20:37 ----D---- C:\WINDOWS\AppPatch
    2009-04-18 03:26:14 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-04-18 03:19:18 ----HD---- C:\WINDOWS\$hf_mig$
    2009-04-09 13:57:20 ----D---- C:\WINDOWS\system32\fr-fr
    2009-04-09 13:57:19 ----D---- C:\WINDOWS\Media
    2009-04-09 13:57:19 ----D---- C:\WINDOWS\Help
    2009-04-09 13:57:19 ----D---- C:\Program Files\Internet Explorer
    2009-04-09 13:43:00 ----HD---- C:\WINDOWS\msdownld.tmp
    2009-04-06 16:57:24 ----A---- C:\WINDOWS\system32\MRT.exe

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 bdftdif;bdftdif; \??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Firewall\bdftdif.sys []
    R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2006-03-02 40320]
    R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
    R1 Tcpip6;Pilote du protocole IPv6 Microsoft; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2008-06-20 225920]
    R2 Aspi32;Aspi32; C:\WINDOWS\system32\drivers\Aspi32.sys [1999-09-10 25244]
    R2 NwlnkIpx;Protocole de transport compatible NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2006-03-02 88448]
    R2 NwlnkNb;NetBIOS NWLink; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2006-03-02 63232]
    R2 NwlnkSpx;Protocole NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2006-03-02 55936]
    R2 STEC3;STEC3; \??\C:\WINDOWS\system32\STEC3.sys []
    R3 Bdfndisf;BitDefender Firewall NDIS Filter Service; C:\WINDOWS\system32\DRIVERS\bdfndisf.sys [2008-06-02 86792]
    R3 bdfsfltr;bdfsfltr; C:\WINDOWS\system32\drivers\bdfsfltr.sys [2008-01-07 196368]
    R3 BDSelfPr;BDSelfPr; \??\C:\Program Files\BitDefender\BitDefender 2008\bdselfpr.sys []
    R3 Cap713x;Cap713x Video Capture; C:\WINDOWS\system32\DRIVERS\Cap713x.sys [2005-01-28 671104]
    R3 cmuda;C-Media WDM Audio Interface; C:\WINDOWS\system32\drivers\cmuda.sys [2005-05-12 1332544]
    R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2008-01-29 16168]
    R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2005-09-20 1302332]
    R3 Mtlmnt5;Mtlmnt5; C:\WINDOWS\system32\DRIVERS\Mtlmnt5.sys [2003-07-16 221736]
    R3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
    R3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2005-03-04 74496]
    R3 Slntamr;SmartLink AMR_PCI Driver; C:\WINDOWS\system32\DRIVERS\slntamr.sys [2003-08-20 548952]
    R3 SlWdmSup;SlWdmSup; C:\WINDOWS\system32\DRIVERS\SlWdmSup.sys [2003-07-02 39348]
    R3 tunmp;Pilote de carte miniport Tun Microsoft; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2006-03-02 12416]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-04 26624]
    R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-04 57600]
    R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2006-03-02 26496]
    R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-04 20480]
    R3 wanatw;WAN Miniport (ATW); C:\WINDOWS\system32\DRIVERS\wanatw4.sys [2003-01-10 33588]
    S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2006-03-02 14848]
    S3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2006-03-02 60800]
    S3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-02-12 986624]
    S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
    S3 HdAudAddService;Pilote de fonction Microsoft UAA pour Service High Definition Audio; C:\WINDOWS\system32\drivers\HdAudio.sys [2004-03-17 113664]
    S3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2004-03-17 135168]
    S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2006-03-02 9600]
    S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2004-09-16 2257920]
    S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12288]
    S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\FICHIE~1\Motive\MREMP50.SYS []
    S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\FICHIE~1\Motive\MREMP50a64.SYS []
    S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\C:\PROGRA~1\FICHIE~1\Motive\MREMPR5.SYS []
    S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\C:\PROGRA~1\FICHIE~1\Motive\MRENDIS5.SYS []
    S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\FICHIE~1\Motive\MRESP50.SYS []
    S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\FICHIE~1\Motive\MRESP50a64.SYS []
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
    S3 Mtlstrm;Mtlstrm; C:\WINDOWS\system32\DRIVERS\Mtlstrm.sys [2003-07-02 1301128]
    S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
    S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2006-03-02 10880]
    S3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2006-03-02 61824]
    S3 NtMtlFax;NtMtlFax; C:\WINDOWS\system32\DRIVERS\NtMtlFax.sys [2003-07-02 167384]
    S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCAMPR5.SYS []
    S3 Profos;Profos; \??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\profos.sys []
    S3 QCMerced;Logitech QuickCam Express; C:\WINDOWS\system32\DRIVERS\LVCM.sys [2002-09-20 472396]
    S3 RecAgent;recagent; \??\C:\WINDOWS\system32\DRIVERS\RecAgent.sys []
    S3 RTL8023;Realtek RTL8139/810x/8169/8110 all in one NDIS NT Driver; C:\WINDOWS\system32\DRIVERS\Rtlnic51.sys [2003-12-31 69504]
    S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2006-03-02 11136]
    S3 SlNtHal;SlNtHal; C:\WINDOWS\system32\DRIVERS\Slnthal.sys [2003-07-02 86128]
    S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:\WINDOWS\system32\DRIVERS\ss_bus.sys [2005-08-30 58320]
    S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; C:\WINDOWS\system32\DRIVERS\ss_mdfl.sys [2005-08-30 8304]
    S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; C:\WINDOWS\system32\DRIVERS\ss_mdm.sys [2005-08-30 94000]
    S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2006-03-02 15360]
    S3 Trufos;Trufos; \??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\trufos.sys []
    S3 USB_RNDIS;Inventel Gateway; C:\WINDOWS\system32\DRIVERS\usb8023.sys [2006-03-02 12672]
    S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-03 59264]
    S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2006-03-02 31616]
    S3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2006-03-02 17024]
    S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
    S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
    S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2006-10-18 38528]
    S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
    S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
    S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 6to4;Service d'application d'assistance IPv6; C:\WINDOWS\system32\svchost.exe [2006-03-02 14336]
    R2 AOL ACS;AOL Connectivity Service; C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe [2004-02-25 1123440]
    R2 CCALib8;Canon Camera Access Library 8; C:\Program Files\Canon\CAL\CALMAIN.exe [2007-01-31 96370]
    R2 CLCapSvc;CyberLink Background Capture Service (CBCS); c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe [2005-01-28 176220]
    R2 CLSched;CyberLink Task Scheduler (CTS); c:\APPS\Powercinema\Kernel\TV\CLSched.exe [2005-01-28 110682]
    R2 CyberLink Media Library Service;CyberLink Media Library Service; C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe [2005-01-28 24576]
    R2 FTRTSVC;France Telecom Routing Table Service; C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [2008-01-22 65536]
    R2 GenericHidService;Generic Service for HID Keyboard Input Collections; c:\APPS\HIDSERVICE\HIDSERVICE.exe [2005-01-07 49152]
    R2 Iprip;Écouteur RIP; C:\WINDOWS\System32\svchost.exe [2006-03-02 14336]
    R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-04-29 152984]
    R2 LIVESRV;BitDefender Desktop Update Service; C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe [2008-12-28 1179648]
    R2 McciCMService;McciCMService; C:\Program Files\Fichiers communs\Motive\McciCMService.exe [2007-10-23 303104]
    R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe [2003-06-20 322120]
    R2 NwSapAgent;Agent SAP; C:\WINDOWS\system32\svchost.exe [2006-03-02 14336]
    R2 SimpTcp;Services TCP/IP simplifiés; C:\WINDOWS\system32\tcpsvcs.exe [2006-03-02 19456]
    R2 VSSERV;BitDefender Virus Shield; C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe [2008-12-28 1261568]
    R2 XCOMM;BitDefender Communicator; C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe [2007-11-27 86016]
    R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2008-03-30 504104]
    R3 scan;BitDefender Threat Scanner; C:\WINDOWS\System32\svchost.exe [2006-03-02 14336]
    S2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-02-12 344064]
    S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
    S3 getPlus(R) Helper;getPlus(R) Helper; C:\Program Files\NOS\bin\getPlus_HelperSvc.exe [2009-03-03 33176]
    S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
    S3 LPDSVC;Serveur d'impression TCP/IP; C:\WINDOWS\system32\tcpsvcs.exe [2006-03-02 19456]
    S3 MysqlInventime;MysqlInventime; c:\mysql\bin\mysqld-nt MysqlInventime []
    S3 p2pgasvc;Authentification de groupe réseau homologue; C:\WINDOWS\system32\svchost.exe [2006-03-02 14336]
    S3 p2pimsvc;Gestionnaire d'identité réseau homologue; C:\WINDOWS\system32\svchost.exe [2006-03-02 14336]
    S3 p2psvc;Réseau homologue; C:\WINDOWS\system32\svchost.exe [2006-03-02 14336]
    S3 PNRPSvc;Protocole de résolution de noms d'homologues; C:\WINDOWS\system32\svchost.exe [2006-03-02 14336]
    S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
    S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
    S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
    S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2006-03-02 14336]

    -----------------EOF-----------------
    oui en effet mon pc va mieux , les fenetres s'ouvrent plus rapidemment
    a c 327 8 Sécurité
    a b 9 Windows
    29 Avril 2009 18:40:29

    On va vérifier que c'est OK.

  • Fais un scan en ligne ici : http://webscanner.kaspersky.fr/ (Avec Internet Explorer)

  • En bas à droite, clique sur Démarrer Online-scanner.

  • Dans la nouvelle fenêtre qui s'affiche, clique sur J'accepte.

  • Accepte les Contrôles ActiveX.

  • Choisis Poste de travail pour le scan.

  • Celui-ci terminé, sauvegarde (Choisis fichier texte) et poste le rapport.

  • Pour t'aider à utiliser le scan en ligne : Tutoriel

    Note : Si tu reçois le message La licence de Kaspersky On-line Scanner est périmée, va dans Ajout/Suppression de programmes puis désinstalle On-Line Scanner, reconnecte-toi sur le site de Kaspersky pour retenter le scan en ligne.
    30 Avril 2009 11:03:49

    Ok je vais faire le scan .
    Jme rend compte enfaite que lorsque j'ouvre ou que je déplace mes fenetres sa lag encore . J'ai fais un dxdiag et lorsque je vais dans l'onglet "fichiers directX" il est écrit "Le fichier system.dll est manquant.
    Vous devriez installer DirectX à nouveau afin d'obtenir la dernière version."
    y a t'il un rapport ?
    Jme demendais aussi si il n'y avait pas une histoire de mise à jour de drivers ?

    Merci de ton aide ;) 
    a c 327 8 Sécurité
    a b 9 Windows
    30 Avril 2009 12:13:29

    Afin d'en connaître un peu plus sur ta config', fais ce qui suit :

  • Télécharge et installe Everest Ultimate.
  • Lance-le, va dans Ordinateur puis Résumé et donne-moi le résumé. Pour prendre le résumé, utilise la fonction Rapport en haut de ton écran :



    PS : supprime ton adresse mail si elle apparaît dans le rapport.
    30 Avril 2009 12:39:06

    voilà le rapport :
    --------[ EVEREST Ultimate Edition ]------------------------------------------------------------------------------------

    Version EVEREST v4.50.1330/fr
    Module de benchmark 2.3.224.0
    Site web http://www.lavalys.com/
    Type de rapport Rapport rapide [ TRIAL VERSION ]
    Ordinateur NOUVELORDI (boris)
    Générateur PAPA!!!!!!!!!!
    Système d'exploitation Microsoft Windows XP Home Edition 5.1.2600 (WinXP Retail)
    Date 2009-04-30
    Heure 12:35


    --------[ Résumé ]------------------------------------------------------------------------------------------------------

    Ordinateur:
    Type de système PC multiprocesseur ACPI
    Système d'exploitation Microsoft Windows XP Home Edition
    Service Pack du système [ TRIAL VERSION ]
    Internet Explorer 8.0.6001.18702
    DirectX 4.09.00.0904 (DirectX 9.0c)
    Nom du système NOUVELORDI (boris)
    Nom de l'utilisateur PAPA!!!!!!!!!!
    Adresse e-mail SMTP
    Domaine de connexion [ TRIAL VERSION ]
    Date / Heure 2009-04-30 / 12:35

    Carte mère:
    Type de processeur Intel Pentium 4 530, 3000 MHz (15 x 200)
    Nom de la carte mère ASRock 775i65G (3 PCI, 1 AGP, 1 AMR, 2 DDR DIMM, Audio, Video, LAN)
    Chipset de la carte mère Intel Springdale-G i865G
    Mémoire système [ TRIAL VERSION ]
    DIMM1: Micron Tech. 16VDDT12864AG40BD1 1 Go PC3200 DDR SDRAM (3.0-3-3-8 @ 200 MHz) (2.5-3-3-7 @ 166 MHz) (2.0-2-2-6 @ 133 MHz)
    Type de BIOS AMI (09/05/06)
    Port de communication Port de communication (COM1)
    Port de communication Port imprimante ECP (LPT1)

    Moniteur:
    Carte vidéo Intel(R) 82865G Graphics Controller (96 Mo)
    Accélérateur 3D Intel Extreme Graphics 2
    Moniteur Philips 190S (190S5) [19" LCD] (VN 005624)

    Multimédia:
    Carte audio C-Media CMI9739A/9761 @ Intel 82801EB ICH5 - AC'97 Audio Controller [A-2/A-3]

    Stockage:
    Contrôleur IDE Intel(R) 82801EB Ultra ATA Storage Controllers
    Contrôleur IDE Intel(R) 82801EB Ultra ATA Storage Controllers
    Disque dur GENERIC USB Storage-CFC USB Device
    Disque dur GENERIC USB Storage-MMC USB Device
    Disque dur GENERIC USB Storage-MSC USB Device
    Disque dur GENERIC USB Storage-SMC USB Device
    Disque dur ST3200822AS (200 Go, 7200 RPM, SATA)
    Lecteur optique Lecteur de CD-ROM
    Lecteur optique LITE-ON DVD SOHD-167T (16x/48x DVD-ROM)
    État des disques durs SMART OK

    Partitions:
    C: (NTFS) [ TRIAL VERSION ]
    Taille totale [ TRIAL VERSION ]

    Entrée:
    Clavier Clavier standard 101/102 touches ou clavier Microsoft Natural Keyboard PS/2
    Souris Souris Microsoft PS/2

    Réseau:
    Adresse IP principale [ TRIAL VERSION ]
    Adresse MAC principale 00-13-8F-DD-09-72
    Carte réseau Realtek RTL8139/810x Family Fast Ethernet NIC (192. [ TRIAL VERSION ])
    Modem Smart Link 56K Modem #2

    Périphériques:
    Imprimante AGFA-AccuSet v52.3
    Imprimante CutePDF Writer
    Imprimante EPSON Stylus CX3600 Series
    Contrôleur USB1 Intel 82801EB ICH5 - USB Controller [A-2/A-3]
    Contrôleur USB1 Intel 82801EB ICH5 - USB Controller [A-2/A-3]
    Contrôleur USB1 Intel 82801EB ICH5 - USB Controller [A-2/A-3]
    Contrôleur USB1 Intel 82801EB ICH5 - USB Controller [A-2/A-3]
    Contrôleur USB2 Intel 82801EB ICH5 - Enhanced USB2 Controller [A-2/A-3]
    Périphérique USB Périphérique de stockage de masse USB

    DMI:
    Distributeur du BIOS American Megatrends Inc.
    Version du BIOS P2.70
    Fabricant du système To Be Filled By O.E.M.
    Nom du système To Be Filled By O.E.M.
    Version du système To Be Filled By O.E.M.
    Numéro de série du système [ TRIAL VERSION ]
    UUID du système [ TRIAL VERSION ]
    Fabricant de la carte mère
    Nom de la carte mère 775i65G.
    Version de la carte mère
    Numéro de série de la carte mère [ TRIAL VERSION ]
    Fabricant du châssis To Be Filled By O.E.M.
    Version du châssis To Be Filled By O.E.M.
    Numéro de série du châssis [ TRIAL VERSION ]
    Identifiant du châssis [ TRIAL VERSION ]
    Type du châssis Desktop Case
    Sockets mémoire (Total/Libres) 2 / 1


    --------[ Debug - PCI ]-------------------------------------------------------------------------------------------------

    B00 D00 F00: Intel 82865G Memory Controller Hub [A-2]

    Offset 000: 86 80 70 25 06 00 90 20 02 00 00 06 00 00 00 00
    Offset 010: 08 00 80 FE 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 49 18 70 25
    Offset 030: 00 00 00 00 E4 00 00 00 00 00 00 00 00 00 00 00
    Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 00 00 30 00 40 80 1C 00 00 00 00 00 00 00 00 00
    Offset 060: 08 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 10 11 01 00 00 33 33 00 00 00 00 00 00 0A 38 00
    Offset 0A0: 02 00 30 00 17 42 00 1F 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 3F 00 00 00 00 00 00 00 20 10 00 00
    Offset 0C0: 00 00 00 00 80 3F 0E 20 00 01 00 00 00 00 00 00
    Offset 0D0: 02 28 04 0E 0B 0D 00 00 00 00 00 00 00 00 40 01
    Offset 0E0: 00 00 00 00 09 00 06 01 00 02 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 02 00 00 00 68 0F 03 00 00 00 00 00

    B00 D02 F00: Intel 82865G Graphics Controller [A-2]

    Offset 000: 86 80 72 25 07 00 90 00 02 00 00 03 00 00 00 00
    Offset 010: 08 00 00 F0 00 00 28 FF 01 EC 00 00 00 00 00 00
    Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 49 18 72 25
    Offset 030: 00 00 00 00 D0 00 00 00 00 00 00 00 10 01 00 00
    Offset 040: 00 00 00 00 E0 23 E0 11 00 00 00 00 00 00 00 00
    Offset 050: 00 00 30 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 060: 08 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 01 02 FF 00 00 00 71 02 10 20
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 05 00 00 00 E4 20 36 ED 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 51 FF FF 51 FF FF 00 00
    Offset 0B0: 02 04 00 00 44 00 00 00 D5 1B FF 9F 7B 40 59 00
    Offset 0C0: 00 00 00 00 80 3F 0E 20 00 00 00 00 00 00 00 00
    Offset 0D0: 01 00 21 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 01 00 00 00 09 00 06 01 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 68 0F 03 00 00 00 00 00

    B00 D06 F00: Intel 82865G I/O Memory Interface [A-2]

    Offset 000: 86 80 76 25 02 00 80 00 02 00 80 08 00 00 00 00
    Offset 010: 00 00 CF FE 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 040: 43 65 10 04 00 00 00 00 04 00 00 00 00 00 00 00
    Offset 050: 01 00 8F 00 02 01 80 00 00 00 00 00 00 00 00 00
    Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 04 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 55 05 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 20 08 00
    Offset 0B0: 00 00 00 00 F0 43 FC 7D 01 00 00 00 09 00 00 00
    Offset 0C0: 00 08 00 00 20 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 FF FF FF FF FF FF FF 3F
    Offset 0E0: 01 00 00 00 00 00 01 02 FF 0E 00 00 00 00 04 00
    Offset 0F0: 00 0C 02 00 00 00 00 00 68 0F 03 00 74 F8 00 00

    B00 D1D F00: Intel 82801EB ICH5 - USB Controller [A-2/A-3]

    Offset 000: 86 80 D2 24 05 00 80 02 02 00 03 0C 00 00 80 00
    Offset 010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 01 DC 00 00 00 00 00 00 00 00 00 00 49 18 D0 24
    Offset 030: 00 00 00 00 00 00 00 00 00 00 00 00 10 01 00 00
    Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 060: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 2F 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 66 0F 05 00 00 00 00 00

    B00 D1D F01: Intel 82801EB ICH5 - USB Controller [A-2/A-3]

    Offset 000: 86 80 D4 24 05 00 80 02 02 00 03 0C 00 00 00 00
    Offset 010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 01 E0 00 00 00 00 00 00 00 00 00 00 49 18 D0 24
    Offset 030: 00 00 00 00 00 00 00 00 00 00 00 00 13 02 00 00
    Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 060: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 2F 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 66 0F 05 00 00 00 00 00

    B00 D1D F02: Intel 82801EB ICH5 - USB Controller [A-2/A-3]

    Offset 000: 86 80 D7 24 05 00 80 02 02 00 03 0C 00 00 00 00
    Offset 010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 01 E4 00 00 00 00 00 00 00 00 00 00 49 18 D0 24
    Offset 030: 00 00 00 00 00 00 00 00 00 00 00 00 12 03 00 00
    Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 060: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 2F 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 66 0F 05 00 00 00 00 00

    B00 D1D F03: Intel 82801EB ICH5 - USB Controller [A-2/A-3]

    Offset 000: 86 80 DE 24 05 00 80 02 02 00 03 0C 00 00 00 00
    Offset 010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 01 E8 00 00 00 00 00 00 00 00 00 00 49 18 D0 24
    Offset 030: 00 00 00 00 00 00 00 00 00 00 00 00 10 01 00 00
    Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 060: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 2F 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 66 0F 05 00 00 00 00 00

    B00 D1D F07: Intel 82801EB ICH5 - Enhanced USB2 Controller [A-2/A-3]

    Offset 000: 86 80 DD 24 06 01 90 02 02 20 03 0C 00 00 00 00
    Offset 010: 00 FC 27 FF 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 49 18 D0 24
    Offset 030: 00 00 00 00 50 00 00 00 00 00 00 00 17 04 00 00
    Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 01 58 C2 C9 00 00 00 00 0A 00 A0 20 00 00 00 00
    Offset 060: 20 20 FF 01 00 00 00 00 01 00 00 00 00 00 00 C0
    Offset 070: 00 00 CF 3F 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 55 55 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 80 00 00 88 83 40 00 66 0F 05 00 06 14 00 00

    B00 D1E F00: Intel 82801EB I/O Controller Hub 5 (ICH5) [A-2/A-3]

    Offset 000: 86 80 4E 24 07 01 80 00 C2 00 04 06 00 00 01 00
    Offset 010: 00 00 00 00 00 00 00 00 00 01 01 20 B0 B0 80 22
    Offset 020: 00 FF 00 FF F0 FF 00 00 00 00 00 00 00 00 00 00
    Offset 030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 06 00
    Offset 040: 02 28 30 76 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 02 64 73 00 00 00 00 00 50 01 34 00 00 00 00 00
    Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 A0 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 01 00 02 00 00 00 C0 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 66 0F 05 00 00 00 4D 35

    B00 D1F F00: Intel 82801EB ICH5 - LPC Bridge [A-2/A-3]

    Offset 000: 86 80 D0 24 0F 00 80 02 02 00 01 06 00 00 80 00
    Offset 010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 040: 01 08 00 00 10 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 00 00 00 00 00 00 00 00 81 04 00 00 10 00 00 00
    Offset 060: 8A 86 85 83 D0 00 00 00 80 85 8A 8B 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: FF FC 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 20 02 00 00 39 00 00 00 0D 00 00 00 00 03 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 02 00 00 00 00
    Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 86 21 00 00 02 0F 00 00 04 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 80 00 00 08 14 33 22 11 00 00 00 67 45
    Offset 0F0: 00 00 40 00 04 00 00 00 66 0F 05 3E 00 00 00 00

    B00 D1F F01: Intel 82801EB ICH5 - ATA-100 IDE Controller [A-2/A-3]

    Offset 000: 86 80 DB 24 07 00 88 02 02 8A 01 01 00 00 00 00
    Offset 010: 01 00 00 00 01 00 00 00 01 00 00 00 01 00 00 00
    Offset 020: 01 FC 00 00 00 FC 37 FF 00 00 00 00 49 18 D0 24
    Offset 030: 00 00 00 00 00 00 00 00 00 00 00 00 00 01 00 00
    Offset 040: 33 E3 00 80 0B 00 00 00 03 00 22 00 00 00 00 00
    Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 060: 08 00 00 00 00 00 00 00 08 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 66 0F 05 00 00 00 00 00

    B00 D1F F02: Intel 82801EB ICH5 - Serial-ATA/150 IDE Controller [A-2/A-3]

    Offset 000: 86 80 D1 24 05 00 A0 02 02 8F 01 01 00 00 00 00
    Offset 010: 01 D0 00 00 01 CC 00 00 01 C8 00 00 01 C4 00 00
    Offset 020: 01 C0 00 00 00 00 00 00 00 00 00 00 49 18 D1 24
    Offset 030: 00 00 00 00 00 00 00 00 00 00 00 00 12 01 00 00
    Offset 040: 07 A3 00 80 00 00 00 00 01 00 01 00 00 00 00 00
    Offset 050: 00 00 00 00 30 10 00 00 00 00 00 00 00 00 00 00
    Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 01 00 02 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 05 70 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 13 00 20 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 40 00 00 00 43 00 22 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 66 0F 05 00 00 00 00 00

    B00 D1F F03: Intel 82801EB ICH5 - SMBus Controller [A-2/A-3]

    Offset 000: 86 80 D3 24 01 00 80 02 02 00 05 0C 00 00 00 00
    Offset 010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 01 04 00 00 00 00 00 00 00 00 00 00 49 18 D0 24
    Offset 030: 00 00 00 00 00 00 00 00 00 00 00 00 06 02 00 00
    Offset 040: 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 66 0F 05 00 00 00 00 00

    B00 D1F F05: Intel 82801EB ICH5 - AC'97 Audio Controller [A-2/A-3]

    Offset 000: 86 80 D5 24 07 00 90 02 02 00 01 04 00 00 00 00
    Offset 010: 01 D8 00 00 01 D4 00 00 00 F8 27 FF 00 F4 27 FF
    Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 49 18 61 97
    Offset 030: 00 00 00 00 50 00 00 00 00 00 00 00 11 02 00 00
    Offset 040: 09 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 01 00 C2 C9 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 66 0F 05 00 00 00 00 00

    B01 D00 F00: Smart Link 56k Modem

    Offset 000: 3C 16 52 30 97 00 90 02 04 00 03 07 08 20 00 00
    Offset 010: 00 F0 0F FF 01 B8 00 00 00 00 00 00 00 00 00 00
    Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 2D 12 52 30
    Offset 030: 00 00 00 00 80 00 00 00 00 00 00 00 15 01 01 3E
    Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 01 00 42 C8 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

    B01 D01 F00: Philips SAA7135HL Multimedia Capture Device

    Offset 000: 31 11 33 71 06 00 90 02 F0 00 80 04 00 20 00 00
    Offset 010: 00 E8 0F FF 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 43 10 45 48
    Offset 030: 00 00 00 00 40 00 00 00 00 00 00 00 16 01 54 20
    Offset 040: 01 00 02 06 00 20 00 1C 00 00 00 00 00 00 00 00
    Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

    B01 D05 F00: Realtek RTL8139 PCI Fast Ethernet Adapter [A/B/C]

    Offset 000: EC 10 39 81 05 00 90 02 10 00 00 02 00 20 00 00
    Offset 010: 01 B4 00 00 00 E4 0F FF 00 00 00 00 00 00 00 00
    Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 49 18 39 81
    Offset 030: 00 00 00 00 50 00 00 00 00 00 00 00 16 01 20 40
    Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 01 00 C2 F7 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

    PCI-8086-2570: Intel i848/865/875/E7210 MMR

    Offset 00: 08 10 10 10 10 10 10 10 00 00 00 00 00 00 00 00
    Offset 10: 22 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 60: 0A 12 64 16 C6 42 14 00 71 02 10 20 01 D0 00 00


    --------[ Debug - Video BIOS ]------------------------------------------------------------------------------------------

    C000:0000 U.P.k.000000000000.....O@...00IBM VGA Compatible BIOS. .[.k.y...
    C000:0040 PCIR..r%........`........g...............u.............0........
    C000:0080 ....................................d......d......d.....0d......
    C000:00C0 d......d......d......d.....0d......d.....0d......d......d......d
    C000:0100 ......d.....0d......d......d.....0$......$......d.......... ....
    C000:0140 `".......N... ....@............ ...88.......... .1X. (.........V
    C000:0180 . .1X. .P.......... .0X. @........d..@A.&0..6.......... A. 0.`.
    C000:01C0 ........$.`A.(00`........0*..Q.*@0p.........4..Q.0@...........=.
    C000:0200 .Q.0@@.........H?@0b.2@@..........O@0b.2@@..........Y@0b.2@@....
    C000:0240 .....h[..r.<P...........t..r.<P..........0.7..2.m..4....8....:..
    C000:0280 ..<.E..A.7..C.m..E....I....K....M.E..P 7..R m..T ...X ...Z ...\
    C000:02C0 E..`....a....b ...c....d....e ...f....g....h ...................
    C000:0300 ................................................................
    C000:0340 ............For Evaluation Use Only....(........c-'(.+..........
    C000:0380 .......................................(........c-'(.+..........
    C000:03C0 .......................................P........c_OP.U..........


    ------------------------------------------------------------------------------------------------------------------------

    The names of actual companies and products mentioned herein may be the trademarks of their respective owners.

    30 Avril 2009 13:03:20

    voilà c'est fait ;) 
    a c 327 8 Sécurité
    a b 9 Windows
    30 Avril 2009 13:04:10

    Tu vois des changements ?
    30 Avril 2009 13:46:50

    oui c'est mieux !;)
    a c 327 8 Sécurité
    a b 9 Windows
    30 Avril 2009 18:34:22

    Tu comptes faire un scan avec Kaspersky ou je te donne une dernière procédure ?
    1 Mai 2009 12:45:31

    Allons y pour la dernière procédure , je pourrai faire le scan ensuite ? ;) 
    a c 327 8 Sécurité
    a b 9 Windows
    1 Mai 2009 15:05:10

    Citation :
    Allons y pour la dernière procédure , je pourrai faire le scan ensuite ? ;) 

    ---> Oui.


    1/

  • Désinstalle HijackThis.

  • Télécharge ToolsCleaner2 sur ton Bureau.
  • Double-clique sur ToolsCleaner2.exe pour le lancer.
  • Clique sur Recherche et laisse le scan agir.
  • Clique sur Suppression pour finaliser.
  • Tu peux, si tu le souhaites, te servir des Options Facultatives.
  • Clique sur Quitter pour obtenir le rapport.
  • Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).


    2/

  • Télécharge et installe CCleaner Slim.
  • Lance-le. Va dans Options puis Avancé et décoche la case Effacer uniquement les fichiers etc....
  • Va dans Nettoyeur, choisis Analyse. Une fois terminé, lance le nettoyage.
  • Ensuite, choisis Registre, puis Chercher des erreurs. Une fois terminé, répare toutes les erreurs (Sauvegarde la base de registre).


    3/

  • Il est nécessaire de désactiver puis réactiver la restauration système pour la purger.


    ==Prévention==

    Conserve MBAM. Il te servira à scanner les fichiers douteux en complément de l'antivirus et scanne le disque dur régulièrement.

    Comme navigateur, utilise plutôt Mozilla Firefox qu'Internet Explorer. Tu peux utiliser l'extension NoScript pour plus de sécurité.

    Vérifie que les mises à jour automatiques sont bien activées (Menu Démarrer, clique droit sur Poste de travail, onglet Mises à jour automatiques).

    Par rapport au P2P : Lien

    Voici un dossier complet (A lire avec Adobe Reader ou Foxit Reader) : Lien


    ==Problème résolu ?==

    Si tu estimes que ton problème est résolu :

    ---> Ajoute maintenant [Résolu] au titre. Pour cela :
  • Clique, dans ton premier message, sur le bouton Editer .
  • Rajoute la mention [Résolu] devant le titre.
  • Clique ensuite sur Valider votre message.


    Sois plus vigilant(e) sur Internet ;) 
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS