Se connecter / S'enregistrer
Votre question

Ralentissement et fenêtres publicitaires intempestives

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
28 Mars 2009 11:36:23

Bonjour, Mon PC est anormalement lent au démarrage depuis quelque temps, et des fenêtres pop-up intempestives apparaissent régulièrement. Je souhaiterai faire analyser mon PC pour détecter la présence de virus éventuels. Pourriez-vous m'aider?
Merci d'avance

Autres pages sur : ralentissement fenetres publicitaires intempestives

a b 8 Sécurité
28 Mars 2009 13:11:40

Bonjour,

Télécharge Random's System Information Tool (RSIT) (de random/random) et sauvegarde-le sur le Bureau.

  • Double-clique sur RSIT.exe afin de lancer RSIT.
  • Clique Continue  à l'écran Disclaimer.
  • Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
  • Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt  (qui sera affiché)
    ainsi que de info.txt  (qui sera réduit dans la Barre des Tâches)
  • NB : Les rapports sont sauvegardés dans le dossier C:\rsit  
  • Veille bien à me poster l'intégralité des rapports, vérifie qu'ils soient complets une fois que tu les as postés.
    28 Mars 2009 13:20:17

    Merci pour ta réponse.
    Voici les fichiers LOG et INFO:

    Logfile of random's system information tool 1.06 (written by random/random)
    Run by HP_Administrateur at 2009-03-28 13:17:15
    Microsoft Windows XP Professionnel Service Pack 3
    System drive C: has 107 GB (59%) free of 184 GB
    Total RAM: 1022 MB (28% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 13:17:37, on 28/03/2009
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16791)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe
    C:\WINDOWS\system32\wbem\wmiapsrv.exe
    C:\WINDOWS\system32\wscntfy.exe
    C:\WINDOWS\ehome\ehtray.exe
    C:\WINDOWS\RTHDCPL.EXE
    C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
    C:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe
    C:\WINDOWS\system32\rundll32.exe
    C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    C:\HP\KBD\KBD.EXE
    C:\Program Files\Search Settings\SearchSettings.exe
    C:\Program Files\Sécurité\ZoneAlarm\zlclient.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
    C:\Program Files\Sécurité\Spybot - Search & Destroy\TeaTimer.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\VisualTaskTips\VisualTaskTips.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    C:\Program Files\Blaero Start Orb\Blaero Start Orb 2.0.exe
    C:\Program Files\Mozilla Thunderbird\thunderbird.exe
    C:\Program Files\Windows Live\Contacts\wlcomm.exe
    c:\windows\system\hpsysdrv.exe
    C:\Program Files\Logiciels divers\Firefox\firefox.exe
    C:\Documents and Settings\HP_Administrateur\Bureau\RSIT.exe
    C:\Program Files\trend micro\HP_Administrateur.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&loca...
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&lo...
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://recherche.neuf.fr/ie/default.html
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://recherche.neuf.fr/
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://recherche.neuf.fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&lo...
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://recherche.neuf.fr/ie/default.html
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb126\SearchSettings.dll
    O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
    O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SCURIT~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office2007\Office12\GrooveShellExtensions.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: (no name) - {A44CBB0B-C77D-4BF5-87CC-B4EE79AD1B7E} - (no file)
    O2 - BHO: (no name) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - (no file)
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb126\SearchSettings.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Logiciels multimédias\Veoh\Plugins\reg\VeohToolbar.dll
    O3 - Toolbar: (no name) - {63AB4C54-3310-44c9-85D8-AA92C2263D58} - (no file)
    O3 - Toolbar: Foxit Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
    O3 - Toolbar: StylerToolBar - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - C:\Program Files\Styler\TB\StylerTB.dll
    O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
    O4 - HKLM\..\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
    O4 - HKLM\..\Run: [HPHUPD08] c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe
    O4 - HKLM\..\Run: [DMAScheduler] "c:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe"
    O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
    O4 - HKLM\..\Run: [HPBootOp] "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [IMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE
    O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
    O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 - HKLM\..\Run: [SearchSettings] C:\Program Files\Search Settings\SearchSettings.exe
    O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Sécurité\ZoneAlarm\zlclient.exe"
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\Logiciels divers\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [TkBellExe] "realsched.exe" -osboot
    O4 - HKLM\..\Run: [Adobe Version Cue CS2] C:\Program Files\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Sécurité\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\Logiciels divers\RocketDock\RocketDock.exe"
    O4 - HKCU\..\Run: [Uniblue RegistryBooster 2] C:\Program Files\Sécurité\Uniblue\RegistryBooster 2\RegistryBooster.exe /S
    O4 - HKCU\..\Run: [VisualTaskTips] "C:\Program Files\VisualTaskTips\VisualTaskTips.exe" noTrayIcon
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - S-1-5-18 Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'SYSTEM')
    O4 - .DEFAULT Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
    O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
    O4 - Startup: Blaero Start Orb (Normal taskbar).lnk = C:\Program Files\Blaero Start Orb\Blaero Start Orb 2.0.exe
    O4 - Startup: Blaero Start Orb.lnk = C:\Program Files\Blaero Start Orb\Blaero Start Orb 2.0.exe
    O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\Office12\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\ssv.dll
    O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\OFFICE~1\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\OFFICE~1\Office12\ONBttnIE.dll
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SCURIT~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SCURIT~1\SPYBOT~1\SDHelper.dll
    O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
    O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {051D0E35-F4E3-4C8D-B411-AB0875F4C683} (Anark Client 4.0 ActiveX Control) - http://install.anark.com/client/version4/windows-ie/en/...
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Co...
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
    O17 - HKLM\System\CCS\Services\Tcpip\..\{96B40763-CC32-47D8-B0A4-C967353ED01F}: NameServer = 192.168.30.1
    O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office2007\Office12\GrooveSystemServices.dll
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
    O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    O23 - Service: Intel® Quick Resume Technology Drivers (ELService) - Intel Corporation - C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe
    O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
    O23 - Service: HP Status Server - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE
    O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXE
    O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

    --
    End of file - 13166 bytes

    ======Scheduled tasks folder======

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
    AskBar BHO - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-11-18 333192]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
    Spybot-S&D IE Protection - C:\PROGRA~1\SCURIT~1\SPYBOT~1\SDHelper.dll [2008-01-28 1554256]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
    Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office2007\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
    SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2009-01-11 320920]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A44CBB0B-C77D-4BF5-87CC-B4EE79AD1B7E}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B922D405-6D13-4A2B-AE89-08A030DA4402}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-01-11 34816]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]
    SearchSettings Class - C:\Program Files\Search Settings\kb126\SearchSettings.dll [2008-02-06 1160544]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
    JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-01-11 73728]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {D0943516-5076-4020-A3B5-AEFAF26AB263} - Veoh Browser Plug-in - C:\Program Files\Logiciels multimédias\Veoh\Plugins\reg\VeohToolbar.dll [2008-03-24 352256]
    {63AB4C54-3310-44c9-85D8-AA92C2263D58}
    {3041d03e-fd4b-44e0-b742-2d9b88305f98} - Foxit Toolbar - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-11-18 333192]
    {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - StylerToolBar - C:\Program Files\Styler\TB\StylerTB.dll [2007-04-15 102400]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "ehTray"=C:\WINDOWS\ehome\ehtray.exe [2005-08-05 64512]
    "ftutil2"=ftutil2.dll,SetWriteCacheMode []
    "RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2006-03-08 16010240]
    "IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2005-10-12 139264]
    "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-02-14 7557120]
    "nwiz"=nwiz.exe /installquiet /keeploaded /nodetect []
    "HPHUPD08"=c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe [2005-06-02 49152]
    "DMAScheduler"=c:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe [2006-03-20 90112]
    "Recguard"=C:\WINDOWS\SMINST\RECGUARD.EXE [2005-07-22 237568]
    "HPBootOp"=C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe [2006-02-15 249856]
    "HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
    "KBD"=C:\HP\KBD\KBD.EXE [2005-02-02 61440]
    "IMJPMIG8.1"=C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [2004-08-09 208952]
    "IMEKRMIG6.1"=C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE [2004-08-09 44032]
    "MSPY2002"=C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe [2004-08-09 59392]
    "PHIME2002ASync"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-09 455168]
    "PHIME2002A"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-09 455168]
    "SearchSettings"=C:\Program Files\Search Settings\SearchSettings.exe [2008-02-06 1036640]
    "ZoneAlarm Client"=C:\Program Files\Sécurité\ZoneAlarm\zlclient.exe [2008-07-09 919016]
    "avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497]
    "QuickTime Task"=C:\Program Files\Logiciels divers\QTTask.exe [2009-01-05 413696]
    "TkBellExe"=realsched.exe -osboot []
    "Adobe Version Cue CS2"=C:\Program Files\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe [2005-04-06 856064]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-01-11 136600]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "MsnMsgr"=C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2009-02-06 3885408]
    "SpybotSD TeaTimer"=C:\Program Files\Sécurité\Spybot - Search & Destroy\TeaTimer.exe [2008-01-28 2097488]
    "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 25088]
    "RocketDock"=C:\Program Files\Logiciels divers\RocketDock\RocketDock.exe []
    "Uniblue RegistryBooster 2"=C:\Program Files\Sécurité\Uniblue\RegistryBooster 2\RegistryBooster.exe /S []
    ""= []
    "VisualTaskTips"=C:\Program Files\VisualTaskTips\VisualTaskTips.exe [2008-05-31 65536]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Version Cue CS2]
    C:\Program Files\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe [2005-04-06 856064]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
    C:\Program Files\Microsoft Office\Office2007\Office12\GrooveMonitor.exe [2007-08-24 33648]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCDrProfiler]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
    C:\Program Files\Logiciels divers\Quick Time\qttask.exe -atboottime []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
    C:\Program Files\Skype\Phone\Skype.exe [2008-02-06 21898024]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Wambo]
    C:\Program Files\Wambo.com Swapper\Swapper.exe -auto []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
    "aawservice"=2
    "WZCSVC"=2
    "TapiSrv"=3
    "SharedAccess"=2
    "seclogon"=2
    "Schedule"=2
    "Redirector"=2
    "Netman"=3
    "Netlogon"=3
    "napagent"=3
    "MSIServer"=3
    "mnmsrvc"=3
    "McrdSvc"=2
    "Fax"=3
    "Adobe Version Cue CS2"=3
    "Adobe LM Service"=3

    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
    HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

    C:\Documents and Settings\HP_Administrateur\Menu Démarrer\Programmes\Démarrage
    Blaero Start Orb (Normal taskbar).lnk - C:\Program Files\Blaero Start Orb\Blaero Start Orb 2.0.exe
    Blaero Start Orb.lnk - C:\Program Files\Blaero Start Orb\Blaero Start Orb 2.0.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
    UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 286720]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office2007\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1
    "InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
    "InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "HonorAutoRunSetting"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
    "C:\Program Files\Wambo.com Swapper\Swapper.exe"="C:\Program Files\Wambo.com Swapper\Swapper.exe:*:Enabled:Wambo"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\Microsoft Office\Office2007\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office2007\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
    "C:\Program Files\Microsoft Office\Office2007\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office2007\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
    "C:\Program Files\Microsoft Office\Office2007\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office2007\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
    "C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"="C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe:*:Enabled:Veoh Web Player "
    "C:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe"="C:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe:*:Enabled:Adobe Version Cue CS2"
    "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\K]
    shell\AutoRun\command - K:\autorun.exe


    ======File associations======

    .js - edit - "C:\Program Files\Logiciels multimédias\création site\Dreamweaver 8\dreamweaver.exe" "%1"
    .js - open - "C:\Program Files\Adobe\Adobe Dreamweaver CS4\Dreamweaver.exe","%1"
    .txt - open -

    ======List of files/folders created in the last 1 months======

    2009-03-28 13:17:16 ----D---- C:\Program Files\trend micro
    2009-03-28 13:17:15 ----D---- C:\rsit
    2009-03-28 11:48:35 ----A---- C:\cleannavi.txt
    2009-03-28 11:20:02 ----A---- C:\fixnavi.txt
    2009-03-28 11:19:29 ----D---- C:\Program Files\Navilog1
    2009-03-28 08:58:40 ----D---- C:\Program Files\VisualTaskTips
    2009-03-28 08:58:32 ----D---- C:\Program Files\Blaero Start Orb
    2009-03-28 08:44:14 ----D---- C:\WINDOWS\VistaMizer
    2009-03-28 08:28:55 ----D---- C:\Documents and Settings\HP_Administrateur\Application Data\Styler
    2009-03-26 21:54:59 ----D---- C:\Program Files\Styler
    2009-03-24 17:34:21 ----D---- C:\Program Files\JRE
    2009-03-24 17:34:12 ----D---- C:\Program Files\OpenOffice.org 3
    2009-03-24 17:33:48 ----A---- C:\WINDOWS\system32\javaws.exe
    2009-03-24 17:33:48 ----A---- C:\WINDOWS\system32\javaw.exe
    2009-03-24 17:33:48 ----A---- C:\WINDOWS\system32\java.exe
    2009-03-18 21:46:15 ----D---- C:\Program Files\EasyPHP 3.0
    2009-03-16 20:08:02 ----D---- C:\Program Files\AskBarDis
    2009-03-16 20:07:53 ----D---- C:\Documents and Settings\HP_Administrateur\Application Data\Foxit
    2009-03-15 21:40:09 ----A---- C:\WINDOWS\system32\dopdfmn6.dll
    2009-03-15 21:40:09 ----A---- C:\WINDOWS\system32\dopdfmi6.dll
    2009-03-14 23:34:12 ----D---- C:\Program Files\Microsoft Office Outlook Connector
    2009-03-14 23:31:50 ----D---- C:\Program Files\Microsoft
    2009-03-14 23:31:32 ----D---- C:\Program Files\Windows Live SkyDrive
    2009-03-14 19:57:33 ----D---- C:\Program Files\Fichiers communs\Windows Live
    2009-03-12 07:17:18 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
    2009-03-12 07:17:07 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
    2009-03-12 07:16:56 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
    2009-03-12 07:15:56 ----HDC---- C:\WINDOWS\$NtUninstallKB959772_WM11$
    2009-03-11 12:08:45 ----D---- C:\Program Files\Windows Installer 4.5 SDK
    2009-03-11 12:06:09 ----D---- C:\WINDOWS\system32\NtmsData
    2009-03-08 17:19:28 ----D---- C:\Program Files\Total Training
    2009-03-08 16:51:36 ----A---- C:\WINDOWS\Explorer.EXE.Z-missing.txt
    2009-03-08 16:47:54 ----D---- C:\Documents and Settings\All Users\Application Data\Macromedia
    2009-03-08 16:46:32 ----D---- C:\Program Files\Fichiers communs\Macromedia
    2009-03-08 16:41:17 ----A---- C:\WINDOWS\system32\rundll32.exe.Z-missing.txt
    2009-03-08 16:05:58 ----A---- C:\WINDOWS\system32\FileOps.exe
    2009-03-08 15:56:19 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe Systems
    2009-03-08 15:51:16 ----D---- C:\Program Files\Fichiers communs\Adobe Systems Shared
    2009-03-06 21:44:38 ----A---- C:\WINDOWS\system32\VB5STKIT.DLL
    2009-03-06 21:44:37 ----A---- C:\WINDOWS\system32\iwpsetup.exe
    2009-03-05 21:11:51 ----ASH---- C:\Program Files\desktop.ini

    ======List of files/folders modified in the last 1 months======

    2009-03-28 13:17:16 ----RD---- C:\Program Files
    2009-03-28 13:08:46 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-03-28 13:06:50 ----A---- C:\WINDOWS\ntbtlog.txt
    2009-03-28 11:58:34 ----D---- C:\Program Files\Mozilla Thunderbird
    2009-03-28 11:57:21 ----D---- C:\WINDOWS\system32\Lang
    2009-03-28 11:57:05 ----D---- C:\WINDOWS\Temp
    2009-03-28 11:56:46 ----D---- C:\WINDOWS\system32
    2009-03-28 09:08:31 ----D---- C:\Program Files\Windows Media Player
    2009-03-28 09:08:31 ----D---- C:\Program Files\NetMeeting
    2009-03-28 09:08:31 ----D---- C:\Program Files\Movie Maker
    2009-03-28 09:08:31 ----D---- C:\Program Files\Messenger
    2009-03-28 09:08:30 ----D---- C:\WINDOWS\system32\wbem
    2009-03-28 09:08:30 ----D---- C:\WINDOWS\network diagnostic
    2009-03-28 09:08:30 ----D---- C:\WINDOWS
    2009-03-28 09:08:30 ----D---- C:\Program Files\Outlook Express
    2009-03-28 09:08:30 ----D---- C:\Program Files\Internet Explorer
    2009-03-28 09:08:30 ----AD---- C:\WINDOWS\ehome
    2009-03-28 09:08:29 ----D---- C:\WINDOWS\system32\usmt
    2009-03-28 09:08:29 ----D---- C:\WINDOWS\system32\Restore
    2009-03-28 09:08:29 ----D---- C:\WINDOWS\system32\oobe
    2009-03-28 09:08:29 ----D---- C:\Program Files\Windows NT
    2009-03-28 09:08:28 ----D---- C:\WINDOWS\system32\Setup
    2009-03-28 09:08:28 ----D---- C:\WINDOWS\msagent
    2009-03-28 09:08:28 ----D---- C:\Program Files\Fichiers communs\System
    2009-03-28 09:08:27 ----D---- C:\WINDOWS\srchasst
    2009-03-28 09:08:26 ----D---- C:\WINDOWS\system32\1036
    2009-03-28 08:58:26 ----A---- C:\WINDOWS\system32\uxtheme.dll
    2009-03-28 08:58:22 ----D---- C:\WINDOWS\Media
    2009-03-28 08:58:20 ----D---- C:\WINDOWS\Cursors
    2009-03-28 08:38:02 ----RSD---- C:\WINDOWS\assembly
    2009-03-27 22:13:15 ----A---- C:\AUTOEXEC.BAT
    2009-03-27 20:56:00 ----RD---- C:\Program Files\Logiciels divers
    2009-03-27 19:28:10 ----SHD---- C:\WINDOWS\Installer
    2009-03-27 19:27:30 ----HD---- C:\Config.Msi
    2009-03-25 18:48:26 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
    2009-03-25 15:25:01 ----D---- C:\WINDOWS\ime
    2009-03-25 12:17:37 ----RSHD---- C:\WINDOWS\system32\dllcache
    2009-03-25 12:03:43 ----D---- C:\Documents and Settings\HP_Administrateur\Application Data\HP
    2009-03-24 17:38:19 ----RD---- C:\Program Files\Microsoft Office
    2009-03-24 17:34:46 ----RSD---- C:\WINDOWS\Fonts
    2009-03-24 17:33:47 ----D---- C:\Program Files\Java
    2009-03-24 17:26:02 ----D---- C:\Documents and Settings\HP_Administrateur\Application Data\OpenOffice.org2
    2009-03-18 21:36:07 ----D---- C:\WINDOWS\Internet Logs
    2009-03-15 21:40:21 ----D---- C:\WINDOWS\system32\FxsTmp
    2009-03-15 21:29:12 ----D---- C:\Program Files\MSECache
    2009-03-14 23:33:32 ----D---- C:\Program Files\Windows Live
    2009-03-14 23:33:24 ----D---- C:\WINDOWS\WinSxS
    2009-03-14 23:31:38 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
    2009-03-14 23:31:37 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
    2009-03-14 23:30:47 ----HD---- C:\WINDOWS\inf
    2009-03-14 23:08:24 ----SD---- C:\Documents and Settings\HP_Administrateur\Application Data\Microsoft
    2009-03-14 19:57:33 ----D---- C:\Program Files\Fichiers communs
    2009-03-12 07:17:11 ----A---- C:\WINDOWS\imsins.BAK
    2009-03-11 16:27:37 ----HD---- C:\hp
    2009-03-11 16:08:12 ----D---- C:\WINDOWS\system32\fr-fr
    2009-03-11 16:08:11 ----D---- C:\WINDOWS\system32\XPSViewer
    2009-03-11 16:08:11 ----D---- C:\WINDOWS\system32\mui
    2009-03-11 16:06:01 ----D---- C:\WINDOWS\Registration
    2009-03-11 16:05:51 ----D---- C:\WINDOWS\system32\URTTemp
    2009-03-11 16:05:35 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-03-11 15:41:04 ----D---- C:\WINDOWS\SHELLNEW
    2009-03-11 12:25:21 ----HD---- C:\WINDOWS\$hf_mig$
    2009-03-10 18:42:08 ----D---- C:\Documents and Settings\HP_Administrateur\Application Data\gtk-2.0
    2009-03-10 17:47:34 ----D---- C:\Documents and Settings\HP_Administrateur\Application Data\FileZilla
    2009-03-09 21:03:47 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-03-09 20:36:31 ----RASH---- C:\boot.ini
    2009-03-09 20:36:31 ----A---- C:\WINDOWS\win.ini
    2009-03-09 20:36:31 ----A---- C:\WINDOWS\SYSTEM.INI
    2009-03-09 20:28:53 ----D---- C:\Documents and Settings\HP_Administrateur\Application Data\Skype
    2009-03-09 20:27:03 ----D---- C:\Documents and Settings\HP_Administrateur\Application Data\skypePM
    2009-03-08 19:01:03 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-03-08 18:47:10 ----D---- C:\Program Files\Fichiers communs\Adobe
    2009-03-08 17:21:12 ----D---- C:\Program Files\Adobe
    2009-03-08 17:17:45 ----D---- C:\Documents and Settings\HP_Administrateur\Application Data\Macromedia
    2009-03-08 17:17:10 ----RD---- C:\Program Files\Logiciels multimédias
    2009-03-08 17:13:01 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
    2009-03-08 16:25:29 ----D---- C:\Documents and Settings\HP_Administrateur\Application Data\Adobe
    2009-03-08 16:05:58 ----D---- C:\WINDOWS\system32\Adobe
    2009-03-08 15:41:22 ----D---- C:\WINDOWS\Prefetch
    2009-03-04 20:51:45 ----D---- C:\Documents and Settings\HP_Administrateur\Application Data\Apple Computer
    2009-03-02 20:11:22 ----D---- C:\Program Files\Crawler

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys []
    R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-01-12 75072]
    R1 ELhid;ELhid; C:\WINDOWS\System32\DRIVERS\ELhid.sys [2005-11-08 10112]
    R1 ELkbd;ELkbd; C:\WINDOWS\System32\DRIVERS\ELkbd.sys [2005-11-08 6912]
    R1 ELmon;ELmon; C:\WINDOWS\System32\DRIVERS\ELmon.sys [2005-11-08 7040]
    R1 ELmou;ELmou; C:\WINDOWS\System32\DRIVERS\ELmou.sys [2005-11-08 6400]
    R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
    R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
    R1 KLIF;KLIF; C:\WINDOWS\system32\DRIVERS\klif.sys [2007-07-19 127768]
    R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-03-01 28352]
    R1 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2008-07-09 394952]
    R3 3xHybrid;3xHybrid service; C:\WINDOWS\system32\DRIVERS\3xHybrid.sys [2006-02-15 2825088]
    R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
    R3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys []
    R3 E100B;Intel(R) PRO Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2005-06-13 162816]
    R3 ELacpi;ELacpi; C:\WINDOWS\system32\DRIVERS\ELacpi.sys [2005-11-08 7808]
    R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
    R3 HidIr;Pilote HID infrarouge Microsoft; C:\WINDOWS\system32\DRIVERS\hidir.sys [2008-04-13 19200]
    R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-03-08 4246016]
    R3 IrBus;Pilote de filtre de bus infrarouge pour les contrôles distants eHome; C:\WINDOWS\system32\DRIVERS\IrBus.sys [2008-04-13 46592]
    R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
    R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
    R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-02-14 3642784]
    R3 Ps2;PS2; C:\WINDOWS\system32\DRIVERS\PS2.sys [2005-12-12 19072]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
    R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
    R3 usbstor;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
    R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
    S3 axkfnmbt;axkfnmbt; C:\WINDOWS\system32\drivers\axkfnmbt.sys []
    S3 catchme;catchme; \??\C:\DOCUME~1\HP_ADM~1\LOCALS~1\Temp\catchme.sys []
    S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
    S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2006-02-01 49664]
    S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2006-02-01 16496]
    S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2006-02-01 21568]
    S3 MHNDRV;Pilote MHN; C:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008]
    S3 MPE;Filtre BDA MPE; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
    S3 MS1000;MS1000; C:\WINDOWS\System32\DRIVERS\MS1000.sys [2008-04-13 5376]
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
    S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
    S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
    S3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
    S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
    S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
    S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
    S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
    S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
    S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
    S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
    S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 AntiVirScheduler;Avira AntiVir Personal - Free Antivirus Scheduler; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2009-01-12 68865]
    R2 AntiVirService;Avira AntiVir Personal - Free Antivirus Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2009-01-12 151297]
    R2 ELService;Intel® Quick Resume Technology Drivers; C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe [2005-11-08 180224]
    R2 IAANTMon;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe [2005-10-12 86140]
    R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-01-11 152984]
    R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe [2006-03-24 73728]
    R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-02-14 143426]
    R2 vsmon;TrueVector Internet Monitor; C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2008-07-09 75304]
    R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXE [2007-08-09 73728]
    S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
    S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2007-10-09 36864]
    S3 HP Port Resolver;HP Port Resolver; C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE [2005-05-20 81920]
    S3 HP Status Server;HP Status Server; C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE [2004-10-16 73728]
    S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
    S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2007-10-11 864256]
    S3 MHN;MHN; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
    S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office2007\Office12\GrooveAuditService.exe [2007-08-24 68464]
    S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
    S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
    S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
    S4 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\Sécurité\Adaware\aawservice.exe [2008-06-14 611664]
    S4 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2009-03-08 72704]
    S4 Adobe Version Cue CS2;Adobe Version Cue CS2; C:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe [2005-04-06 163840]
    S4 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268800]
    S4 McrdSvc;Media Center Extender Service; C:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328]
    S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2007-10-11 122880]
    S4 Redirector;ExaleadDesktop Redirector; C:\Program Files\Logiciels divers\Exalead Desktop\ExaleadRedirector.exe []

    -----------------EOF-----------------







    info.txt logfile of random's system information tool 1.06 2009-03-28 13:17:45

    ======Uninstall list======

    -->"C:\Documents and Settings\HP_Administrateur\Mes documents\JEUX\Uninstall.exe"
    -->C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\orun32.isu
    -->c:\WINDOWS\system32\\MSIEXEC.EXE /x {075473F5-846A-448B-BCB3-104AA1760205}
    -->c:\WINDOWS\system32\\MSIEXEC.EXE /x {AB708C9B-97C8-4AC9-899B-DBF226AC9382}
    -->c:\WINDOWS\system32\\MSIEXEC.EXE /x {B12665F4-4E93-4AB4-B7FC-37053B524629}
    -->c:\WINDOWS\system32\\MSIEXEC.EXE /x {F80239D8-7811-4D5E-B033-0D0BBFE32920}
    -->msiexec /I {236BB7C4-4419-42FD-040C-1E257A25E34D}
    -->msiexec /I {B2F5D08C-7E79-4FCD-AAF4-57AD35FF0601}
    -->msiexec /I{7F4C8163-F259-49A0-A018-2857A90578BC}
    -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {5A2F65A4-808F-4A1E-973E-92E17824982D}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C095BAB72C}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {B3F4DC34-7F60-4B7C-A79F-1C13012D99D4}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B91D7BF1}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0044-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-00A1-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-00BA-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    40 polices pour l'école-->C:\Program Files\Logiciels divers\desinst_40_polices.exe
    7-Zip 4.57-->"C:\Program Files\Logiciels divers\7-Zip\Uninstall.exe"
    Ad-Aware-->MsiExec.exe /I{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}
    Adobe Bridge 1.0-->MsiExec.exe /I{B74D4E10-6884-0000-0000-000000000103}
    Adobe Common File Installer-->MsiExec.exe /I{8EDBA74D-0686-4C99-BFDD-F894678E5101}
    Adobe Creative Suite 2-->C:\PROGRA~1\INSTAL~1\{0134A~1\setup.exe /relaunched/rootloc=e:\adobe creative suite 2.0/lang=040c
    Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
    Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
    Adobe Help Center 1.0-->MsiExec.exe /I{E9787678-119F-4D52-B551-6739B2B22101}
    Adobe Stock Photos 1.0-->MsiExec.exe /I{786C5747-0C40-4930-9AFE-113BCE553101}
    Adobe SVG Viewer 3.0-->C:\Program Files\Fichiers communs\Adobe\SVG Viewer 3.0\Uninstall\Winstall.exe -u -fC:\Program Files\Fichiers communs\Adobe\SVG Viewer 3.0\Uninstall\Install.log
    Amélioration de nos services-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\1050\INTEL3~1\IDriver.exe /M{23012310-3E05-46A5-88A9-C6CBCABCAC79} /l1036
    Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
    Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
    Audacity 1.2.6-->"C:\Program Files\Logiciels multimédias\Audacity\unins000.exe"
    Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE
    Canopia 3.20-->C:\PROGRAM FILES\LOGICIELS DIVERS\canopia\Uninstal.exe
    CCleaner (remove only)-->"C:\Program Files\Sécurité\CCleaner\uninst.exe"
    Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
    Color Schemer Studio-->"C:\Program Files\Logiciels multimédias\création site\unins000.exe"
    Compatibility Pack for the 2007 Office system-->MsiExec.exe /X{90120000-0020-040C-0000-0000000FF1CE}
    Complément Microsoft Enregistrer en tant que XPS pour programmes Microsoft Office 2007-->MsiExec.exe /X{90120000-00B1-040C-0000-0000000FF1CE}
    Correctif pour Lecteur Windows Media 10 (KB910393)-->"C:\WINDOWS\$NtUninstallKB910393$\spuninst\spuninst.exe"
    Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
    Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
    Crawler Desktop Notes-->"C:\Program Files\Crawler\Notes\unins000.exe"
    DivX Codec-->C:\Program Files\Logiciels multimédias\DivX\DivXCodecUninstall.exe /CODEC
    DivX Web Player-->C:\Program Files\Logiciels multimédias\DivX\DivXWebPlayerUninstall.exe /PLUGIN
    doPDF 6.2 printer-->"C:\Program Files\Logiciels divers\doPDF 6\unins000.exe"
    DVD Decoder Pak for Windows XP-->MsiExec.exe /X{92C5DB3D-9D6F-4324-BB11-57825F4C2635}
    Enhanced Multimedia Keyboard Solution-->C:\HP\KBD\Install.exe /u
    FileZilla Client 3.1.5-->C:\Program Files\Logiciels multimédias\création site\FileZilla FTP Client\uninstall.exe
    Foxit PDF Preview Handler for XP-->MsiExec.exe /I{833CF9E6-42DD-46EB-BC96-50A88FFC7A61}
    Foxit Reader-->C:\Program Files\Microsoft Office\Foxit Reader\Uninstall.exe
    Foxit Toolbar-->"C:\Program Files\AskBarDis\unins000.exe"
    GIMP 2.4.4-->"C:\Program Files\Logiciels multimédias\GIMP-2.0\setup\unins000.exe"
    Google Earth-->MsiExec.exe /I{1D14373E-7970-4F2F-A467-ACA4F0EA21E3}
    Happyland Adventures - Xmas Edition-->C:\PROGRAM FILES\LOGICIELS DIVERS\happyland\Uninstal.exe
    High Definition Audio - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
    HijackThis 2.0.2-->"C:\Documents and Settings\HP_Administrateur\Bureau\HijackThis.exe" /uninstall
    Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
    HP Boot Optimizer-->MsiExec.exe /X{1341D838-719C-4A05-B50F-49420CA1B4BB}
    HP Deskjet Printer Preload-->MsiExec.exe /I{2C5D07FB-31A2-4F2D-9FDA-0B24ACD42BD0}
    HP DigitalMedia Archive-->MsiExec.exe /X{F80239D8-7811-4D5E-B033-0D0BBFE32920}
    HP Document Viewer 6.1-->C:\Program Files\HP\Digital Imaging\DocumentViewer\hpzscr01.exe -datfile hpqbud04.dat
    HP Imaging Device Functions 7.0-->C:\Program Files\HP\Digital Imaging\DeviceManagement\hpzscr01.exe -datfile hpqbud01.dat
    HP Photosmart 330,380,420,470,7800,8000,8200 Series-->C:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\setup\hpzscr01.exe -d MsiRollbackUninstaller -datfile hphscr08.dat
    HP Photosmart and Deskjet 7.0.A-->C:\Program Files\HP\Digital Imaging\{A9F5421F-DA70-4C77-BB97-8D77EC33ED5E}\setup\hpzscr01.exe -datfile hposcr09.dat
    HP Photosmart Essential-->MsiExec.exe /X{6994491D-D491-48F1-AE1F-E179C1FFFC2F}
    HP Photosmart for Media Center PC-->c:\Program Files\HP\Digital Imaging\bin\mcpc\setupmcl.exe /u
    HP Photosmart Premier Software 6.5-->C:\Program Files\HP\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat
    HP Product Assistant-->MsiExec.exe /I{36FDBE6E-6684-462B-AE98-9A39A1B200CC}
    HP PSC & OfficeJet 5.3.B-->"C:\Program Files\HP\Digital Imaging\{5B79CFD1-6845-4158-9D7D-6BE89DF2C135}\setup\hpzscr01.exe" -datfile hposcr07.dat
    HP Solution Center 7.0-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat
    HP Update-->MsiExec.exe /X{7059BDA7-E1DB-442C-B7A1-6144596720A4}
    iColorFolder-->C:\Program Files\Logiciels divers\iColorFolder\uninstall.exe
    Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
    Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
    Intel Matrix Storage Manager-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}\Setup.exe" -l040c -INTELUNINST
    Intel(R) PRO Network Connections Drivers-->Prounstl.exe
    Intel(R) Quick Resume Technology Drivers-->MsiExec.exe /I{8C22F265-DE76-44D1-8A79-A71D819137DA}
    Intel(R) Quick Resume Technology Drivers-->MsiExec.exe /X{8C22F265-DE76-44D1-8A79-A71D819137DA} /qb!
    J2SE Runtime Environment 5.0 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150050}
    Java(TM) 6 Update 11-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
    Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
    Junk Mail filter update-->MsiExec.exe /I{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}
    KompoZer 0.7.10 (supprimer uniquement)-->C:\Program Files\Logiciels multimédias\création site\Kompozer\uninstall.exe
    Le logiciel Intel® Viiv™-->MsiExec.exe /X{27E395E5-EB04-4BFD-96C3-C9A102E97E1B}
    Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
    Macromedia Dreamweaver 8-->MsiExec.exe /I{5FD788ED-1A37-4496-9BDD-463F493B27FA}
    Macromedia Extension Manager-->MsiExec.exe /I{3C8C9FB3-5FDF-40B4-B314-EAD722728C76}
    MainConcept for Software Encoder-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{E7A02A01-C75A-4490-A168-5CA709A3D862}
    MFZ0 codec (Remove Only)-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\MFZ0Vfw.INF
    Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
    Microsoft .NET Framework 3.0 Service Pack 1-->MsiExec.exe /I{2BA00471-0328-3743-93BD-FA813353A783}
    Microsoft .NET Framework 3.5 Language Pack - fra-->MsiExec.exe /I{5B76AEA2-D4E5-3B55-B965-ACC36AE0EAFC}
    Microsoft .NET Framework 3.5-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5\setup.exe
    Microsoft .NET Framework 3.5-->MsiExec.exe /I{2FC099BD-AC9B-33EB-809C-D332E1B27C40}
    Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
    Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
    Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
    Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
    Microsoft Office Enterprise 2007-->"C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
    Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
    Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
    Microsoft Office Groove MUI (French) 2007-->MsiExec.exe /X{90120000-00BA-040C-0000-0000000FF1CE}
    Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}
    Microsoft Office Language Pack 2007 Service Pack 1 (SP1)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {EC50B538-CBE1-42E6-B7FE-87AA540AADFB}
    Microsoft Office OneNote MUI (French) 2007-->MsiExec.exe /X{90120000-00A1-040C-0000-0000000FF1CE}
    Microsoft Office Outlook Connector-->MsiExec.exe /I{95120000-0120-040C-0000-0000000FF1CE}
    Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
    Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
    Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
    Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
    Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
    Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
    Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
    Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
    Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
    Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
    Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
    Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
    Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
    Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
    Mise à jour critique pour Lecteur Windows Media 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Step by Step Interactive Training (KB923723)-->"C:\WINDOWS\$NtUninstallKB923723$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
    Mise à jour pour Lecteur Windows Media 10 (KB913800)-->"C:\WINDOWS\$NtUninstallKB913800$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
    Module linguistique Microsoft .NET Framework 3.5 - fra-->c:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - fra\setup.exe
    Monopoly-->C:\WINDOWS\system32\msinfhlp.exe ;uninstall; ;C:\Documents and Settings\HP_Administrateur\Mes documents\jeux\Monopoly.dat;
    Mozilla Firefox (3.0.7)-->C:\Program Files\Logiciels divers\Firefox\uninstall\helper.exe
    Mozilla Thunderbird (2.0.0.19)-->C:\Program Files\Mozilla Thunderbird\uninstall\helper.exe
    MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
    MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
    MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
    MSXML 6.0 Parser (KB933579)-->MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
    muvee autoProducer 5.0-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{27428D1B-8CBA-4EEA-B9C0-A23CA7B4FCC1}\setup.exe" -l0x40c
    muvee autoProducer unPlugged 2.0-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5FDD0538-C67A-4F67-B3F8-09D1AAF04D99}\setup.exe" -l0x40c
    Navilog1 3.7.6-->"C:\Program Files\Navilog1\unins000.exe"
    Neuf - Kit de connexion-->C:\Program Files\Neuf\Kit\uninstall.exe
    NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
    OCR Software by I.R.I.S 7.0-->C:\Program Files\HP\Digital Imaging\OCR\hpzscr01.exe -datfile hpqbud11.dat
    OpenOffice.org 3.0-->MsiExec.exe /I{6860B340-530D-46B3-91F8-1AE1F70F7C33}
    Otto-->"C:\Program Files\FrenchOtto\uninstallotto.exe"
    Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
    Paint.NET v3.36-->MsiExec.exe /X{43602F34-1AA3-44FB-AEB2-D08C2C73743F}
    PC-Doctor 5 for Windows-->C:\Program Files\PC-Doctor 5 for Windows\uninst.exe
    Pekka Kana 2-->C:\Program Files\Logiciels divers\pekka\Uninstal.exe
    Python 2.2 pywin32 extensions (build 203)-->"C:\Python22\Removepywin32.exe" -u "C:\Python22\pywin32-wininst.log"
    QuickTime-->MsiExec.exe /I{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}
    Realtek High Definition Audio Driver-->RtlUpd.exe -r -m
    Search Settings 1.1-->MsiExec.exe /X{32AD1A7A-25F1-44B9-A396-EA8A4A6605B0}
    Security Update for 2007 Microsoft Office System (KB951550)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {B243E9A5-ED77-4F1B-B338-2486FD82DC85}
    Security Update for 2007 Microsoft Office System (KB951944)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7}
    Security Update for 2007 Microsoft Office System (KB958439)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {6491B8AA-D11C-4648-A461-6234B31EB7E2}
    Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
    Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
    Security Update for Microsoft Office Excel 2007 (KB958437)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {648FC016-2D6B-4A16-8D87-404533642F4B}
    Security Update for Microsoft Office OneNote 2007 (KB950130)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {F1B2401C-B610-4BF2-AA1C-52C55827A8F4}
    Security Update for Microsoft Office PowerPoint 2007 (KB951338)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {558B709B-821B-4FC5-90FC-9A8890641E77}
    Security Update for Microsoft Office Publisher 2007 (KB950114)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {F9C3CDBA-1F00-4D4D-959D-75C9D3ACDD85}
    Security Update for Microsoft Office system 2007 (KB954326)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {5F7F6FFF-395D-480E-8450-64F385D82C5F}
    Security Update for Microsoft Office system 2007 (KB956828)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {885E081B-72BD-4E76-8E98-30B4BE468FAC}
    Security Update for Microsoft Office Word 2007 (KB956358)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {4551666D-0FD6-4C69-8A81-1C6F2E64517C}
    Segoe UI-->MsiExec.exe /I
    Contenus similaires
    a b 8 Sécurité
    28 Mars 2009 13:23:28

    Re,

    Télécharge Toolbar-S&D (Team IDN) sur ton Bureau.

  • Lance l'installation du programme en exécutant le fichier téléchargé.
  • Double-clique maintenant sur le raccourci de Toolbar-S&D.
  • Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
  • Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
  • Poste le rapport généré. (C:\TB.txt)
    28 Mars 2009 13:28:12

    Merci pour ta réponse si rapide.
    Voici le nouveau rapport:


    -----------\\ ToolBar S&D 1.2.8 XP/Vista

    Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
    X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) D CPU 2.80GHz )
    BIOS : Phoenix - AwardBIOS v6.00PG
    USER : HP_Administrateur ( Administrator )
    BOOT : Normal boot
    Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Activated)
    Firewall : ZoneAlarm Firewall 7.0.483.000 (Not Activated)
    C:\ (Local Disk) - NTFS - Total:179 Go (Free:104 Go)
    D:\ (Local Disk) - FAT32 - Total:7 Go (Free:0 Go)
    E:\ (CD or DVD)
    F:\ (USB)
    G:\ (USB)
    H:\ (USB)
    I:\ (USB)

    "C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
    Option : [1] ( 28/03/2009|13:24 )

    -----------\\ Recherche de Fichiers / Dossiers ...

    C:\Program Files\AskBarDis
    C:\Program Files\AskBarDis\bar
    C:\Program Files\AskBarDis\unins000.dat
    C:\Program Files\AskBarDis\unins000.exe
    C:\Program Files\AskBarDis\bar\bin
    C:\Program Files\AskBarDis\bar\Settings
    C:\Program Files\AskBarDis\bar\bin\askBar.dll
    C:\Program Files\AskBarDis\bar\bin\askPopStp.dll
    C:\Program Files\AskBarDis\bar\bin\psvince.dll
    C:\Program Files\AskBarDis\bar\Settings\config.dat
    C:\Program Files\AskBarDis\bar\Settings\config.dat.bak
    C:\Program Files\AskBarDis\bar\Settings\prevCfg2.htm
    C:\Program Files\Crawler
    C:\Program Files\Crawler\Download
    C:\Program Files\Crawler\Notes
    C:\Program Files\Crawler\Shared
    C:\Program Files\Crawler\UserData
    C:\Program Files\Crawler\Notes\CNotes.exe
    C:\Program Files\Crawler\Notes\unins000.dat
    C:\Program Files\Crawler\Notes\unins000.exe
    C:\Program Files\Crawler\Shared\CShared.dll
    C:\Program Files\Crawler\UserData\A6E77EE5.dat
    C:\WINDOWS\Prefetch\SEARCHSETTINGS.EXE-253CB611.pf
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb126
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb128
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb126\res
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb126\temp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb126\temp\ws-14328.log
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb126\temp\ws-14329.log
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb126\temp\ws-14330.log
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb126\temp\ws-14331.log
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb128\res
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb128\temp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb128\res\icon_settings.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb128\res\pdfc_branding.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb128\res\pdfc_branding_hover.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb128\res\pdfc_icon.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb128\res\pdfc_portal_logo.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb128\res\search-button-hover.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb128\res\search-button.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb128\res\search-chevron-hover.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb128\res\search-chevron.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb128\res\search_amazon.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb128\res\search_ebay.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb128\res\search_yahoo.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb128\res\separator.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb128\res\widgets.xml
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb128\temp\ws-14299.log
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb128\temp\ws-14300.log
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb128\temp\ws-14301.log
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb128\temp\ws-14302.log
    C:\Program Files\Search Settings
    C:\Program Files\Search Settings\kb126
    C:\Program Files\Search Settings\SearchSettings.exe
    C:\Program Files\Search Settings\kb126\res
    C:\Program Files\Search Settings\kb126\SearchSettings.dll
    C:\Program Files\Search Settings\kb126\temp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\a.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\amazon.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\an.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\arrow.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\arrowB.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\arrowT.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\arrow_down.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\arrow_up.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\autofill.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\b.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\bg_pub.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\bg_ttl.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\bn.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\bottom.png
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\bottom_left.png
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\bottom_right.png
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\btn_addstations.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\btn_delete.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\c.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\CAlogo.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\canalblog.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\cn.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\d.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\dictionary2.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\dn.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\DownloadCOM.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\dropdown.css
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\email_b.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\equalizer_loading.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\equalizer_off.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\equalizer_on.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\ErrorPageTemplate.css
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\ErrorPageTemplate_search.css
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\f.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\fn.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\g.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\gaming.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\gn.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\graphred0.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\graphred0_5.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\graphred1.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\graphred1_5.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\graphred2.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\graphred2_5.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\graphred3.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\graphred3_5.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\graphred4.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\graphred4_5.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\graphred5.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\help.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\hideremove.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\highlight.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\hn.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\horoscope.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_aquarius.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_aries.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_cancer.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_capricorn.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_gemini.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_leo.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_libra.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_pisces.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_sagittarius.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_scorpio.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_taurus.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_virgo.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\i.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\images01.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\in.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\j.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\jn.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\k.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\kn.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\l.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\left.png
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\ln.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\loading.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\logo.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\logo_facebook.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\minus.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\minus_on.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\music2.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\n.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\news.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\news.html
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\newsb.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\nn.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\o.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\on.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\p.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\pixsy.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\play.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\play_on.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\plus.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\plus_on.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\pn.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\popup_off.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\popup_on.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\popup_ona.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\p_yahoo.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\p_yahoo_fr.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\q.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\qn.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\r.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\radiocfgdlg.html
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\RadioStations.list
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\radio_bg.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\relatedlinks.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\report.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\right.png
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\rn.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\rss.xsl
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\rss1.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\rsslib.js
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\s.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\search.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\search.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\search_fr.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\settings.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\shop2.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\siteinfo.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\slider.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\sn.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\spacer.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\stars-red1.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\stars-red2.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\stars-red3.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\stars-red4.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\stars-red5.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\stop.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\stop_on.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\t.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\tabdataV3.js
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\tabwelcome_en.html
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\tabwelcome_fr.html
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\tab_icon.png
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\technorati.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\tn.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\tools.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\top.png
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\top_left.png
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\top_right.png
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\translate.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\ttl_add.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\u.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\un.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\UserStations.list
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\utf8.js
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\v.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\vmlib.js
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\vn.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\w.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\web_en.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\web_fr.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\wikipedia.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\wn.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\x.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\xp_close_small.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\yahoo_search.gif
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\YouTube.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\z.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\zn.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\zoom.bmp
    C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\__slider.bmp
    C:\WINDOWS\iun6002.exe

    -----------\\ Extensions

    (HP_Administrateur) - {19503e42-ca3c-4c27-b1e2-9cdb2170ee34} => flashgot
    (HP_Administrateur) - {3b56bcc7-54e5-44a2-9b44-66c3ef58c13e} => tidy
    (HP_Administrateur) - {53A03D43-5363-4669-8190-99061B2DEBA5} => scrapbook
    (HP_Administrateur) - {6AC85730-7D0F-4de0-B3FA-21142DD85326} => colorzilla
    (HP_Administrateur) - {71328583-3CA7-4809-B4BA-570A85818FBB} => cacheviewer
    (HP_Administrateur) - {95f24680-9e31-11da-a746-0800200c9a66} => updatenotifier
    (HP_Administrateur) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper
    (HP_Administrateur) - {c45c406e-ab73-11d8-be73-000a95be3b12} => webdeveloper
    (HP_Administrateur) - {c50ca3c4-5656-43c2-a061-13e717f73fc8} => fvd
    (HP_Administrateur) - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} => adblockplus
    (HP_Administrateur) - {E9A1DEE0-C623-4439-8932-001E7D17607D} => ajtoolbar
    (HP_Administrateur) - {770102ac-cc90-4d13-9ad9-b90b912abe93} => nvutut
    (HP_Administrateur) - {31513E58-F253-47ad-86DB-D5F21E905429} => minimizetotray
    (HP_Administrateur) - {3c8e8390-2cf6-11d9-9669-0800200c9a66} => web-mail
    (HP_Administrateur) - {3ed8cc52-86fc-4613-9026-c1ef969da4c3} => mboximport
    (HP_Administrateur) - {86d029a0-ac28-11db-abbd-0800200c9a66} => cobalt_thunderbird-3.0.7-tb
    (HP_Administrateur) - {a6a33690-2c6a-11d9-9669-0800200c9a66} => hotmail
    (HP_Administrateur) - {F3A60010-0E28-4503-B4AA-0E5F90275F77} => walnut_tb


    -----------\\ [..\Internet Explorer\Main]

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Local Page"="C:\\WINDOWS\\system32\\blank.htm"
    "Start Page"="http://google.com/"
    "Search Page"="http://recherche.neuf.fr/"
    "Default_Page_URL"="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&loca..."
    "Default_Search_URL"="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&lo..."
    "Search Bar"="http://recherche.neuf.fr/ie/default.html"

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
    "Default_Page_URL"="http://fr.yahoo.com"
    "Default_Search_URL"="http://recherche.neuf.fr/"
    "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
    "Start Page"="http://fr.yahoo.com"
    "Search Bar"="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&lo..."


    --------------------\\ Recherche d'autres infections


    Aucune autre infection trouvée !


    1 - "C:\ToolBar SD\TB_1.txt" - 28/03/2009|13:27 - Option : [1]

    -----------\\ Fin du rapport a 13:27:54,21

    a b 8 Sécurité
    28 Mars 2009 16:35:01

    Re,

    Relance Toolbar-S&D en double-cliquant sur le raccourci.

  • Choisis cette fois l'option 2 puis valide en appuyant sur Entrée.
    ! Ne ferme pas la fenêtre lors de la suppression ! [/#f]
  • Un rapport sera généré, poste son contenu ici, puis un nouveau rapport HijackThis.

    [#008040]Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
    Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "Nouvelle tâche (exécuter)"
    Tapes explorer et valide. Cela te fera apparaitre ton bureau
    28 Mars 2009 20:02:02

    Et voilà!



    -----------\\ ToolBar S&D 1.2.8 XP/Vista

    Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
    X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) D CPU 2.80GHz )
    BIOS : Phoenix - AwardBIOS v6.00PG
    USER : HP_Administrateur ( Administrator )
    BOOT : Normal boot
    Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Activated)
    Firewall : ZoneAlarm Firewall 7.0.483.000 (Activated)
    C:\ (Local Disk) - NTFS - Total:179 Go (Free:104 Go)
    D:\ (Local Disk) - FAT32 - Total:7 Go (Free:0 Go)
    E:\ (CD or DVD)
    F:\ (USB)
    G:\ (USB)
    H:\ (USB)
    I:\ (USB)

    "C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
    Option : [2] ( 28/03/2009|19:51 )

    -----------\\ SUPPRESSION

    Supprime! - C:\Program Files\AskBarDis\bar
    Supprime! - C:\Program Files\AskBarDis\unins000.dat
    Supprime! - C:\Program Files\AskBarDis\unins000.exe
    Supprime! - C:\Program Files\Crawler\Download
    Supprime! - C:\Program Files\Crawler\Notes
    Supprime! - C:\Program Files\Crawler\Shared
    Supprime! - C:\Program Files\Crawler\UserData
    Supprime! - C:\WINDOWS\Prefetch\SEARCHSETTINGS.EXE-253CB611.pf
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb126
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings\kb128
    Supprime! - C:\Program Files\Search Settings\kb126
    Supprime! - C:\Program Files\Search Settings\SearchSettings.exe
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\a.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\amazon.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\an.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\arrow.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\arrowB.gif
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\arrowT.gif
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\arrow_down.gif
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\arrow_up.gif
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\autofill.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\b.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\bg_pub.gif
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\bg_ttl.gif
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\bn.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\bottom.png
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\bottom_left.png
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\bottom_right.png
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\btn_addstations.gif
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\btn_delete.gif
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\c.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\CAlogo.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\canalblog.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\cn.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\d.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\dictionary2.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\dn.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\DownloadCOM.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\dropdown.css
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\email_b.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\equalizer_loading.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\equalizer_off.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\equalizer_on.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\ErrorPageTemplate.css
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\ErrorPageTemplate_search.css
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\f.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\fn.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\g.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\gaming.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\gn.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\graphred0.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\graphred0_5.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\graphred1.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\graphred1_5.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\graphred2.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\graphred2_5.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\graphred3.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\graphred3_5.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\graphred4.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\graphred4_5.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\graphred5.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\help.gif
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\hideremove.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\highlight.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\hn.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\horoscope.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_aquarius.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_aries.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_cancer.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_capricorn.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_gemini.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_leo.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_libra.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_pisces.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_sagittarius.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_scorpio.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_taurus.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\h_virgo.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\i.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\images01.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\in.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\j.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\jn.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\k.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\kn.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\l.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\left.png
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\ln.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\loading.gif
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\logo.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\logo_facebook.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\minus.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\minus_on.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\music2.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\n.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\news.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\news.html
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\newsb.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\nn.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\o.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\on.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\p.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\pixsy.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\play.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\play_on.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\plus.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\plus_on.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\pn.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\popup_off.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\popup_on.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\popup_ona.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\p_yahoo.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\p_yahoo_fr.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\q.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\qn.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\r.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\radiocfgdlg.html
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\RadioStations.list
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\radio_bg.gif
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\relatedlinks.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\report.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\right.png
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\rn.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\rss.xsl
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\rss1.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\rsslib.js
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\s.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\search.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\search.gif
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\search_fr.gif
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\settings.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\shop2.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\siteinfo.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\slider.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\sn.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\spacer.gif
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\stars-red1.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\stars-red2.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\stars-red3.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\stars-red4.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\stars-red5.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\stop.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\stop_on.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\t.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\tabdataV3.js
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\tabwelcome_en.html
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\tabwelcome_fr.html
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\tab_icon.png
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\technorati.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\tn.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\tools.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\top.png
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\top_left.png
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\top_right.png
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\translate.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\ttl_add.gif
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\u.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\un.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\UserStations.list
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\utf8.js
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\v.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\vmlib.js
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\vn.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\w.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\web_en.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\web_fr.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\wikipedia.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\wn.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\x.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\xp_close_small.gif
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\yahoo_search.gif
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\YouTube.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\z.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\zn.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\zoom.bmp
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar\__slider.bmp
    Supprime! - C:\WINDOWS\iun6002.exe
    Supprime! - C:\Program Files\AskBarDis
    Supprime! - C:\Program Files\Crawler
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\Search Settings
    Supprime! - C:\Program Files\Search Settings
    Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\VMNToolbar

    -----------\\ Recherche de Fichiers / Dossiers ...


    -----------\\ Extensions

    (HP_Administrateur) - {19503e42-ca3c-4c27-b1e2-9cdb2170ee34} => flashgot
    (HP_Administrateur) - {3b56bcc7-54e5-44a2-9b44-66c3ef58c13e} => tidy
    (HP_Administrateur) - {53A03D43-5363-4669-8190-99061B2DEBA5} => scrapbook
    (HP_Administrateur) - {6AC85730-7D0F-4de0-B3FA-21142DD85326} => colorzilla
    (HP_Administrateur) - {71328583-3CA7-4809-B4BA-570A85818FBB} => cacheviewer
    (HP_Administrateur) - {95f24680-9e31-11da-a746-0800200c9a66} => updatenotifier
    (HP_Administrateur) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper
    (HP_Administrateur) - {c45c406e-ab73-11d8-be73-000a95be3b12} => webdeveloper
    (HP_Administrateur) - {c50ca3c4-5656-43c2-a061-13e717f73fc8} => fvd
    (HP_Administrateur) - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} => adblockplus
    (HP_Administrateur) - {E9A1DEE0-C623-4439-8932-001E7D17607D} => ajtoolbar
    (HP_Administrateur) - {770102ac-cc90-4d13-9ad9-b90b912abe93} => nvutut
    (HP_Administrateur) - {31513E58-F253-47ad-86DB-D5F21E905429} => minimizetotray
    (HP_Administrateur) - {3c8e8390-2cf6-11d9-9669-0800200c9a66} => web-mail
    (HP_Administrateur) - {3ed8cc52-86fc-4613-9026-c1ef969da4c3} => mboximport
    (HP_Administrateur) - {86d029a0-ac28-11db-abbd-0800200c9a66} => cobalt_thunderbird-3.0.7-tb
    (HP_Administrateur) - {a6a33690-2c6a-11d9-9669-0800200c9a66} => hotmail
    (HP_Administrateur) - {F3A60010-0E28-4503-B4AA-0E5F90275F77} => walnut_tb


    -----------\\ [..\Internet Explorer\Main]

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Local Page"="C:\\WINDOWS\\system32\\blank.htm"
    "Start Page"="http://google.com/"
    "Search Page"="http://recherche.neuf.fr/"
    "Default_Page_URL"="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&loca..."
    "Default_Search_URL"="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&lo..."
    "Search Bar"="http://recherche.neuf.fr/ie/default.html"

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
    "Default_Page_URL"="http://fr.yahoo.com"
    "Default_Search_URL"="http://recherche.neuf.fr/"
    "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
    "Start Page"="http://www.msn.com/"
    "Search Bar"="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&lo..."


    --------------------\\ Recherche d'autres infections


    Aucune autre infection trouvée !


    1 - "C:\ToolBar SD\TB_1.txt" - 28/03/2009|13:27 - Option : [1]
    2 - "C:\ToolBar SD\TB_2.txt" - 28/03/2009|19:58 - Option : [2]

    -----------\\ Fin du rapport a 19:58:56,17


    a b 8 Sécurité
    29 Mars 2009 13:44:24

    Refais un scan RSTI.
    29 Mars 2009 19:00:26

    Angeldark a dit :
    Refais un scan RSTI.


    Voici le nouveau rapport du scan RSTI, et plus bas le rapport de Hijackthis:




    Logfile of random's system information tool 1.06 (written by random/random)
    Run by HP_Administrateur at 2009-03-29 18:58:26
    Microsoft Windows XP Professionnel Service Pack 3
    System drive C: has 107 GB (58%) free of 184 GB
    Total RAM: 1022 MB (26% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 18:58:38, on 29/03/2009
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16791)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe
    C:\WINDOWS\ehome\ehtray.exe
    C:\WINDOWS\RTHDCPL.EXE
    C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
    C:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe
    C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    C:\HP\KBD\KBD.EXE
    C:\Program Files\Sécurité\ZoneAlarm\zlclient.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
    C:\WINDOWS\system32\rundll32.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
    C:\Program Files\Sécurité\Spybot - Search & Destroy\TeaTimer.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\VisualTaskTips\VisualTaskTips.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    C:\Program Files\Windows Live\Contacts\wlcomm.exe
    C:\Program Files\Mozilla Thunderbird\thunderbird.exe
    C:\Program Files\Logiciels divers\Firefox\firefox.exe
    C:\Documents and Settings\HP_Administrateur\Bureau\HiJackThis.exe
    c:\windows\system\hpsysdrv.exe
    C:\Documents and Settings\HP_Administrateur\Bureau\RSIT.exe
    C:\Documents and Settings\HP_Administrateur\Bureau\HP_Administrateur.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&loca...
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&lo...
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://recherche.neuf.fr/ie/default.html
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://recherche.neuf.fr/
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://recherche.neuf.fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&lo...
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://recherche.neuf.fr/ie/default.html
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - Default URLSearchHook is missing
    O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SCURIT~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office2007\Office12\GrooveShellExtensions.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: (no name) - {A44CBB0B-C77D-4BF5-87CC-B4EE79AD1B7E} - (no file)
    O2 - BHO: (no name) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - (no file)
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Logiciels multimédias\Veoh\Plugins\reg\VeohToolbar.dll
    O3 - Toolbar: (no name) - {63AB4C54-3310-44c9-85D8-AA92C2263D58} - (no file)
    O3 - Toolbar: StylerToolBar - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - C:\Program Files\Styler\TB\StylerTB.dll
    O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
    O4 - HKLM\..\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
    O4 - HKLM\..\Run: [HPHUPD08] c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe
    O4 - HKLM\..\Run: [DMAScheduler] "c:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe"
    O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
    O4 - HKLM\..\Run: [HPBootOp] "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [IMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE
    O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
    O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Sécurité\ZoneAlarm\zlclient.exe"
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\Logiciels divers\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [TkBellExe] "realsched.exe" -osboot
    O4 - HKLM\..\Run: [Adobe Version Cue CS2] C:\Program Files\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Sécurité\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\Logiciels divers\RocketDock\RocketDock.exe"
    O4 - HKCU\..\Run: [Uniblue RegistryBooster 2] C:\Program Files\Sécurité\Uniblue\RegistryBooster 2\RegistryBooster.exe /S
    O4 - HKCU\..\Run: [VisualTaskTips] "C:\Program Files\VisualTaskTips\VisualTaskTips.exe" noTrayIcon
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - S-1-5-18 Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'SYSTEM')
    O4 - .DEFAULT Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
    O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
    O4 - Startup: Blaero Start Orb (Normal taskbar).lnk = C:\Program Files\Blaero Start Orb\Blaero Start Orb 2.0.exe
    O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\Office12\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\ssv.dll
    O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\OFFICE~1\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\OFFICE~1\Office12\ONBttnIE.dll
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SCURIT~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SCURIT~1\SPYBOT~1\SDHelper.dll
    O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
    O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {051D0E35-F4E3-4C8D-B411-AB0875F4C683} (Anark Client 4.0 ActiveX Control) - http://install.anark.com/client/version4/windows-ie/en/...
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Co...
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
    O17 - HKLM\System\CCS\Services\Tcpip\..\{96B40763-CC32-47D8-B0A4-C967353ED01F}: NameServer = 192.168.30.1
    O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office2007\Office12\GrooveSystemServices.dll
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
    O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    O23 - Service: Intel® Quick Resume Technology Drivers (ELService) - Intel Corporation - C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe
    O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
    O23 - Service: HP Status Server - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE
    O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXE
    O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

    --
    End of file - 12366 bytes

    ======Scheduled tasks folder======

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
    Spybot-S&D IE Protection - C:\PROGRA~1\SCURIT~1\SPYBOT~1\SDHelper.dll [2008-01-28 1554256]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
    Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office2007\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
    SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2009-01-11 320920]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A44CBB0B-C77D-4BF5-87CC-B4EE79AD1B7E}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B922D405-6D13-4A2B-AE89-08A030DA4402}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-01-11 34816]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
    JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-01-11 73728]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {D0943516-5076-4020-A3B5-AEFAF26AB263} - Veoh Browser Plug-in - C:\Program Files\Logiciels multimédias\Veoh\Plugins\reg\VeohToolbar.dll [2008-03-24 352256]
    {63AB4C54-3310-44c9-85D8-AA92C2263D58}
    {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - StylerToolBar - C:\Program Files\Styler\TB\StylerTB.dll [2007-04-15 102400]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "ehTray"=C:\WINDOWS\ehome\ehtray.exe [2005-08-05 64512]
    "ftutil2"=ftutil2.dll,SetWriteCacheMode []
    "RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2006-03-08 16010240]
    "IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2005-10-12 139264]
    "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-02-14 7557120]
    "nwiz"=nwiz.exe /installquiet /keeploaded /nodetect []
    "HPHUPD08"=c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe [2005-06-02 49152]
    "DMAScheduler"=c:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe [2006-03-20 90112]
    "Recguard"=C:\WINDOWS\SMINST\RECGUARD.EXE [2005-07-22 237568]
    "HPBootOp"=C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe [2006-02-15 249856]
    "HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
    "KBD"=C:\HP\KBD\KBD.EXE [2005-02-02 61440]
    "IMJPMIG8.1"=C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [2004-08-09 208952]
    "IMEKRMIG6.1"=C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE [2004-08-09 44032]
    "MSPY2002"=C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe [2004-08-09 59392]
    "PHIME2002ASync"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-09 455168]
    "PHIME2002A"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-09 455168]
    "ZoneAlarm Client"=C:\Program Files\Sécurité\ZoneAlarm\zlclient.exe [2008-07-09 919016]
    "avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497]
    "QuickTime Task"=C:\Program Files\Logiciels divers\QTTask.exe [2009-01-05 413696]
    "TkBellExe"=realsched.exe -osboot []
    "Adobe Version Cue CS2"=C:\Program Files\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe [2005-04-06 856064]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-01-11 136600]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "MsnMsgr"=C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2009-02-06 3885408]
    "SpybotSD TeaTimer"=C:\Program Files\Sécurité\Spybot - Search & Destroy\TeaTimer.exe [2008-01-28 2097488]
    "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 25088]
    "RocketDock"=C:\Program Files\Logiciels divers\RocketDock\RocketDock.exe []
    "Uniblue RegistryBooster 2"=C:\Program Files\Sécurité\Uniblue\RegistryBooster 2\RegistryBooster.exe /S []
    ""= []
    "VisualTaskTips"=C:\Program Files\VisualTaskTips\VisualTaskTips.exe [2008-05-31 65536]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Version Cue CS2]
    C:\Program Files\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe [2005-04-06 856064]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
    C:\Program Files\Microsoft Office\Office2007\Office12\GrooveMonitor.exe [2007-08-24 33648]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCDrProfiler]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
    C:\Program Files\Logiciels divers\Quick Time\qttask.exe -atboottime []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
    C:\Program Files\Skype\Phone\Skype.exe [2008-02-06 21898024]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Wambo]
    C:\Program Files\Wambo.com Swapper\Swapper.exe -auto []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
    "aawservice"=2
    "WZCSVC"=2
    "TapiSrv"=3
    "SharedAccess"=2
    "seclogon"=2
    "Schedule"=2
    "Redirector"=2
    "Netman"=3
    "Netlogon"=3
    "napagent"=3
    "MSIServer"=3
    "mnmsrvc"=3
    "McrdSvc"=2
    "Fax"=3
    "Adobe Version Cue CS2"=3
    "Adobe LM Service"=3

    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
    HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

    C:\Documents and Settings\HP_Administrateur\Menu Démarrer\Programmes\Démarrage
    Blaero Start Orb (Normal taskbar).lnk - C:\Program Files\Blaero Start Orb\Blaero Start Orb 2.0.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
    UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 286720]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office2007\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1
    "InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
    "InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "HonorAutoRunSetting"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
    "C:\Program Files\Wambo.com Swapper\Swapper.exe"="C:\Program Files\Wambo.com Swapper\Swapper.exe:*:Enabled:Wambo"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\Microsoft Office\Office2007\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office2007\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
    "C:\Program Files\Microsoft Office\Office2007\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office2007\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
    "C:\Program Files\Microsoft Office\Office2007\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office2007\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
    "C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"="C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe:*:Enabled:Veoh Web Player "
    "C:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe"="C:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe:*:Enabled:Adobe Version Cue CS2"
    "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\K]
    shell\AutoRun\command - K:\autorun.exe


    ======File associations======

    .js - edit - "C:\Program Files\Logiciels multimédias\création site\Dreamweaver 8\dreamweaver.exe" "%1"
    .js - open - "C:\Program Files\Adobe\Adobe Dreamweaver CS4\Dreamweaver.exe","%1"
    .txt - open -

    ======List of files/folders created in the last 1 months======

    2009-03-28 21:00:59 ----D---- C:\Documents and Settings\HP_Administrateur\Application Data\Search Settings
    2009-03-28 14:24:45 ----A---- C:\TB.txt
    2009-03-28 14:24:29 ----D---- C:\ToolBar SD
    2009-03-28 14:17:16 ----D---- C:\Program Files\trend micro
    2009-03-28 14:17:15 ----D---- C:\rsit
    2009-03-28 12:48:35 ----A---- C:\cleannavi.txt
    2009-03-28 12:20:02 ----A---- C:\fixnavi.txt
    2009-03-28 12:19:29 ----D---- C:\Program Files\Navilog1
    2009-03-28 09:58:40 ----D---- C:\Program Files\VisualTaskTips
    2009-03-28 09:44:14 ----D---- C:\WINDOWS\VistaMizer
    2009-03-28 09:28:55 ----D---- C:\Documents and Settings\HP_Administrateur\Application Data\Styler
    2009-03-26 22:54:59 ----D---- C:\Program Files\Styler
    2009-03-24 18:34:21 ----D---- C:\Program Files\JRE
    2009-03-24 18:34:12 ----D---- C:\Program Files\OpenOffice.org 3
    2009-03-24 18:33:48 ----A---- C:\WINDOWS\system32\javaws.exe
    2009-03-24 18:33:48 ----A---- C:\WINDOWS\system32\javaw.exe
    2009-03-24 18:33:48 ----A---- C:\WINDOWS\system32\java.exe
    2009-03-18 22:46:15 ----D---- C:\Program Files\EasyPHP 3.0
    2009-03-16 21:07:53 ----D---- C:\Documents and Settings\HP_Administrateur\Application Data\Foxit
    2009-03-15 22:40:09 ----A---- C:\WINDOWS\system32\dopdfmn6.dll
    2009-03-15 22:40:09 ----A---- C:\WINDOWS\system32\dopdfmi6.dll
    2009-03-15 00:34:12 ----D---- C:\Program Files\Microsoft Office Outlook Connector
    2009-03-15 00:31:50 ----D---- C:\Program Files\Microsoft
    2009-03-15 00:31:32 ----D---- C:\Program Files\Windows Live SkyDrive
    2009-03-14 20:57:33 ----D---- C:\Program Files\Fichiers communs\Windows Live
    2009-03-12 08:17:18 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
    2009-03-12 08:17:07 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
    2009-03-12 08:16:56 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
    2009-03-12 08:15:56 ----HDC---- C:\WINDOWS\$NtUninstallKB959772_WM11$
    2009-03-11 13:08:45 ----D---- C:\Program Files\Windows Installer 4.5 SDK
    2009-03-11 13:06:09 ----D---- C:\WINDOWS\system32\NtmsData
    2009-03-08 18:19:28 ----D---- C:\Program Files\Total Training
    2009-03-08 17:51:36 ----A---- C:\WINDOWS\Explorer.EXE.Z-missing.txt
    2009-03-08 17:47:54 ----D---- C:\Documents and Settings\All Users\Application Data\Macromedia
    2009-03-08 17:46:32 ----D---- C:\Program Files\Fichiers communs\Macromedia
    2009-03-08 17:41:17 ----A---- C:\WINDOWS\system32\rundll32.exe.Z-missing.txt
    2009-03-08 17:05:58 ----A---- C:\WINDOWS\system32\FileOps.exe
    2009-03-08 16:56:19 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe Systems
    2009-03-08 16:51:16 ----D---- C:\Program Files\Fichiers communs\Adobe Systems Shared
    2009-03-06 22:44:38 ----A---- C:\WINDOWS\system32\VB5STKIT.DLL
    2009-03-06 22:44:37 ----A---- C:\WINDOWS\system32\iwpsetup.exe
    2009-03-05 22:11:51 ----ASH---- C:\Program Files\desktop.ini

    ======List of files/folders modified in the last 1 months======

    2009-03-29 18:58:10 ----A---- C:\WINDOWS\ntbtlog.txt
    2009-03-29 18:57:40 ----D---- C:\WINDOWS\Internet Logs
    2009-03-29 18:54:49 ----D---- C:\WINDOWS\system32
    2009-03-29 18:54:48 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-03-29 18:53:20 ----D---- C:\Program Files\Mozilla Thunderbird
    2009-03-29 18:51:45 ----D---- C:\WINDOWS\Temp
    2009-03-29 18:51:38 ----D---- C:\WINDOWS\system32\Lang
    2009-03-28 22:09:17 ----RD---- C:\Program Files
    2009-03-28 20:52:29 ----D---- C:\WINDOWS
    2009-03-28 20:51:24 ----D---- C:\WINDOWS\Prefetch
    2009-03-28 15:31:05 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-03-28 10:08:31 ----D---- C:\Program Files\Windows Media Player
    2009-03-28 10:08:31 ----D---- C:\Program Files\NetMeeting
    2009-03-28 10:08:31 ----D---- C:\Program Files\Movie Maker
    2009-03-28 10:08:31 ----D---- C:\Program Files\Messenger
    2009-03-28 10:08:30 ----D---- C:\WINDOWS\system32\wbem
    2009-03-28 10:08:30 ----D---- C:\WINDOWS\network diagnostic
    2009-03-28 10:08:30 ----D---- C:\Program Files\Outlook Express
    2009-03-28 10:08:30 ----D---- C:\Program Files\Internet Explorer
    2009-03-28 10:08:30 ----AD---- C:\WINDOWS\ehome
    2009-03-28 10:08:29 ----D---- C:\WINDOWS\system32\usmt
    2009-03-28 10:08:29 ----D---- C:\WINDOWS\system32\Restore
    2009-03-28 10:08:29 ----D---- C:\WINDOWS\system32\oobe
    2009-03-28 10:08:29 ----D---- C:\Program Files\Windows NT
    2009-03-28 10:08:28 ----D---- C:\WINDOWS\system32\Setup
    2009-03-28 10:08:28 ----D---- C:\WINDOWS\msagent
    2009-03-28 10:08:28 ----D---- C:\Program Files\Fichiers communs\System
    2009-03-28 10:08:27 ----D---- C:\WINDOWS\srchasst
    2009-03-28 10:08:26 ----D---- C:\WINDOWS\system32\1036
    2009-03-28 09:58:26 ----A---- C:\WINDOWS\system32\uxtheme.dll
    2009-03-28 09:58:22 ----D---- C:\WINDOWS\Media
    2009-03-28 09:58:20 ----D---- C:\WINDOWS\Cursors
    2009-03-28 09:38:02 ----RSD---- C:\WINDOWS\assembly
    2009-03-27 23:13:15 ----A---- C:\AUTOEXEC.BAT
    2009-03-27 21:56:00 ----RD---- C:\Program Files\Logiciels divers
    2009-03-27 20:28:10 ----SHD---- C:\WINDOWS\Installer
    2009-03-27 20:27:30 ----HD---- C:\Config.Msi
    2009-03-25 19:48:26 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
    2009-03-25 16:25:01 ----D---- C:\WINDOWS\ime
    2009-03-25 13:17:37 ----RSHD---- C:\WINDOWS\system32\dllcache
    2009-03-25 13:03:43 ----D---- C:\Documents and Settings\HP_Administrateur\Application Data\HP
    2009-03-24 18:38:19 ----RD---- C:\Program Files\Microsoft Office
    2009-03-24 18:34:46 ----RSD---- C:\WINDOWS\Fonts
    2009-03-24 18:33:47 ----D---- C:\Program Files\Java
    2009-03-24 18:26:02 ----D---- C:\Documents and Settings\HP_Administrateur\Application Data\OpenOffice.org2
    2009-03-15 22:40:21 ----D---- C:\WINDOWS\system32\FxsTmp
    2009-03-15 22:29:12 ----D---- C:\Program Files\MSECache
    2009-03-15 00:33:32 ----D---- C:\Program Files\Windows Live
    2009-03-15 00:33:24 ----D---- C:\WINDOWS\WinSxS
    2009-03-15 00:31:38 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
    2009-03-15 00:31:37 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
    2009-03-15 00:30:47 ----HD---- C:\WINDOWS\inf
    2009-03-15 00:08:24 ----SD---- C:\Documents and Settings\HP_Administrateur\Application Data\Microsoft
    2009-03-14 20:57:33 ----D---- C:\Program Files\Fichiers communs
    2009-03-12 08:17:11 ----A---- C:\WINDOWS\imsins.BAK
    2009-03-11 17:27:37 ----HD---- C:\hp
    2009-03-11 17:08:12 ----D---- C:\WINDOWS\system32\fr-fr
    2009-03-11 17:08:11 ----D---- C:\WINDOWS\system32\XPSViewer
    2009-03-11 17:08:11 ----D---- C:\WINDOWS\system32\mui
    2009-03-11 17:06:01 ----D---- C:\WINDOWS\Registration
    2009-03-11 17:05:51 ----D---- C:\WINDOWS\system32\URTTemp
    2009-03-11 16:41:04 ----D---- C:\WINDOWS\SHELLNEW
    2009-03-11 13:25:21 ----HD---- C:\WINDOWS\$hf_mig$
    2009-03-10 19:42:08 ----D---- C:\Documents and Settings\HP_Administrateur\Application Data\gtk-2.0
    2009-03-10 18:47:34 ----D---- C:\Documents and Settings\HP_Administrateur\Application Data\FileZilla
    2009-03-09 22:03:47 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-03-09 21:36:31 ----RASH---- C:\boot.ini
    2009-03-09 21:36:31 ----A---- C:\WINDOWS\win.ini
    2009-03-09 21:36:31 ----A---- C:\WINDOWS\SYSTEM.INI
    2009-03-09 21:28:53 ----D---- C:\Documents and Settings\HP_Administrateur\Application Data\Skype
    2009-03-09 21:27:03 ----D---- C:\Documents and Settings\HP_Administrateur\Application Data\skypePM
    2009-03-08 20:01:03 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-03-08 19:47:10 ----D---- C:\Program Files\Fichiers communs\Adobe
    2009-03-08 18:21:12 ----D---- C:\Program Files\Adobe
    2009-03-08 18:17:45 ----D---- C:\Documents and Settings\HP_Administrateur\Application Data\Macromedia
    2009-03-08 18:17:10 ----RD---- C:\Program Files\Logiciels multimédias
    2009-03-08 18:13:01 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
    2009-03-08 17:25:29 ----D---- C:\Documents and Settings\HP_Administrateur\Application Data\Adobe
    2009-03-08 17:05:58 ----D---- C:\WINDOWS\system32\Adobe
    2009-03-04 21:51:45 ----D---- C:\Documents and Settings\HP_Administrateur\Application Data\Apple Computer

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys []
    R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-01-12 75072]
    R1 ELhid;ELhid; C:\WINDOWS\System32\DRIVERS\ELhid.sys [2005-11-08 10112]
    R1 ELkbd;ELkbd; C:\WINDOWS\System32\DRIVERS\ELkbd.sys [2005-11-08 6912]
    R1 ELmon;ELmon; C:\WINDOWS\System32\DRIVERS\ELmon.sys [2005-11-08 7040]
    R1 ELmou;ELmou; C:\WINDOWS\System32\DRIVERS\ELmou.sys [2005-11-08 6400]
    R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
    R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
    R1 KLIF;KLIF; C:\WINDOWS\system32\DRIVERS\klif.sys [2007-07-19 127768]
    R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-03-01 28352]
    R1 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2008-07-09 394952]
    R3 3xHybrid;3xHybrid service; C:\WINDOWS\system32\DRIVERS\3xHybrid.sys [2006-02-15 2825088]
    R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
    R3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys []
    R3 E100B;Intel(R) PRO Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2005-06-13 162816]
    R3 ELacpi;ELacpi; C:\WINDOWS\system32\DRIVERS\ELacpi.sys [2005-11-08 7808]
    R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
    R3 HidIr;Pilote HID infrarouge Microsoft; C:\WINDOWS\system32\DRIVERS\hidir.sys [2008-04-13 19200]
    R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-03-08 4246016]
    R3 IrBus;Pilote de filtre de bus infrarouge pour les contrôles distants eHome; C:\WINDOWS\system32\DRIVERS\IrBus.sys [2008-04-13 46592]
    R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
    R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
    R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-02-14 3642784]
    R3 Ps2;PS2; C:\WINDOWS\system32\DRIVERS\PS2.sys [2005-12-12 19072]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
    R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
    R3 usbstor;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
    R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
    S3 a0nrqdk6;a0nrqdk6; C:\WINDOWS\system32\drivers\a0nrqdk6.sys []
    S3 catchme;catchme; \??\C:\DOCUME~1\HP_ADM~1\LOCALS~1\Temp\catchme.sys []
    S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
    S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2006-02-01 49664]
    S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2006-02-01 16496]
    S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2006-02-01 21568]
    S3 MHNDRV;Pilote MHN; C:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008]
    S3 MPE;Filtre BDA MPE; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
    S3 MS1000;MS1000; C:\WINDOWS\System32\DRIVERS\MS1000.sys [2008-04-13 5376]
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
    S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
    S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
    S3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
    S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
    S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
    S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
    S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
    S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
    S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
    S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
    S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 AntiVirScheduler;Avira AntiVir Personal - Free Antivirus Scheduler; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2009-01-12 68865]
    R2 AntiVirService;Avira AntiVir Personal - Free Antivirus Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2009-01-12 151297]
    R2 ELService;Intel® Quick Resume Technology Drivers; C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe [2005-11-08 180224]
    R2 IAANTMon;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe [2005-10-12 86140]
    R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-01-11 152984]
    R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe [2006-03-24 73728]
    R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-02-14 143426]
    R2 vsmon;TrueVector Internet Monitor; C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2008-07-09 75304]
    R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXE [2007-08-09 73728]
    S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
    S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2007-10-09 36864]
    S3 HP Port Resolver;HP Port Resolver; C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE [2005-05-20 81920]
    S3 HP Status Server;HP Status Server; C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE [2004-10-16 73728]
    S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
    S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2007-10-11 864256]
    S3 MHN;MHN; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
    S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office2007\Office12\GrooveAuditService.exe [2007-08-24 68464]
    S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
    S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
    S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
    S4 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\Sécurité\Adaware\aawservice.exe [2008-06-14 611664]
    S4 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2009-03-08 72704]
    S4 Adobe Version Cue CS2;Adobe Version Cue CS2; C:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe [2005-04-06 163840]
    S4 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268800]
    S4 McrdSvc;Media Center Extender Service; C:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328]
    S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2007-10-11 122880]
    S4 Redirector;ExaleadDesktop Redirector; C:\Program Files\Logiciels divers\Exalead Desktop\ExaleadRedirector.exe []

    -----------------EOF-----------------









    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 18:58:38, on 29/03/2009
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16791)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe
    C:\WINDOWS\ehome\ehtray.exe
    C:\WINDOWS\RTHDCPL.EXE
    C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
    C:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe
    C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    C:\HP\KBD\KBD.EXE
    C:\Program Files\Sécurité\ZoneAlarm\zlclient.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
    C:\WINDOWS\system32\rundll32.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
    C:\Program Files\Sécurité\Spybot - Search & Destroy\TeaTimer.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\VisualTaskTips\VisualTaskTips.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    C:\Program Files\Windows Live\Contacts\wlcomm.exe
    C:\Program Files\Mozilla Thunderbird\thunderbird.exe
    C:\Program Files\Logiciels divers\Firefox\firefox.exe
    C:\Documents and Settings\HP_Administrateur\Bureau\HiJackThis.exe
    c:\windows\system\hpsysdrv.exe
    C:\Documents and Settings\HP_Administrateur\Bureau\RSIT.exe
    C:\Documents and Settings\HP_Administrateur\Bureau\HP_Administrateur.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&loca...
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&lo...
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://recherche.neuf.fr/ie/default.html
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://recherche.neuf.fr/
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://recherche.neuf.fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&lo...
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://recherche.neuf.fr/ie/default.html
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - Default URLSearchHook is missing
    O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SCURIT~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office2007\Office12\GrooveShellExtensions.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: (no name) - {A44CBB0B-C77D-4BF5-87CC-B4EE79AD1B7E} - (no file)
    O2 - BHO: (no name) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - (no file)
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Logiciels multimédias\Veoh\Plugins\reg\VeohToolbar.dll
    O3 - Toolbar: (no name) - {63AB4C54-3310-44c9-85D8-AA92C2263D58} - (no file)
    O3 - Toolbar: StylerToolBar - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - C:\Program Files\Styler\TB\StylerTB.dll
    O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
    O4 - HKLM\..\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
    O4 - HKLM\..\Run: [HPHUPD08] c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe
    O4 - HKLM\..\Run: [DMAScheduler] "c:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe"
    O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
    O4 - HKLM\..\Run: [HPBootOp] "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [IMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE
    O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
    O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Sécurité\ZoneAlarm\zlclient.exe"
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\Logiciels divers\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [TkBellExe] "realsched.exe" -osboot
    O4 - HKLM\..\Run: [Adobe Version Cue CS2] C:\Program Files\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Sécurité\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\Logiciels divers\RocketDock\RocketDock.exe"
    O4 - HKCU\..\Run: [Uniblue RegistryBooster 2] C:\Program Files\Sécurité\Uniblue\RegistryBooster 2\RegistryBooster.exe /S
    O4 - HKCU\..\Run: [VisualTaskTips] "C:\Program Files\VisualTaskTips\VisualTaskTips.exe" noTrayIcon
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - S-1-5-18 Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'SYSTEM')
    O4 - .DEFAULT Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
    O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
    O4 - Startup: Blaero Start Orb (Normal taskbar).lnk = C:\Program Files\Blaero Start Orb\Blaero Start Orb 2.0.exe
    O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\Office12\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\ssv.dll
    O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\OFFICE~1\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\OFFICE~1\Office12\ONBttnIE.dll
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SCURIT~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SCURIT~1\SPYBOT~1\SDHelper.dll
    O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
    O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {051D0E35-F4E3-4C8D-B411-AB0875F4C683} (Anark Client 4.0 ActiveX Control) - http://install.anark.com/client/version4/windows-ie/en/...
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Co...
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
    O17 - HKLM\System\CCS\Services\Tcpip\..\{96B40763-CC32-47D8-B0A4-C967353ED01F}: NameServer = 192.168.30.1
    O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office2007\Office12\GrooveSystemServices.dll
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
    O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    O23 - Service: Intel® Quick Resume Technology Drivers (ELService) - Intel Corporation - C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe
    O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
    O23 - Service: HP Status Server - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE
    O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXE
    O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

    --
    End of file - 12366 bytes

    a b 8 Sécurité
    30 Mars 2009 19:41:36

    Tu as les mêmes prob ?
    30 Mars 2009 19:47:13

    Il me semble que ça va mieux.
    Merci pour ton aide.
    a b 8 Sécurité
    30 Mars 2009 19:52:33

    Tiens moi au courant ;) 
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS