Se connecter / S'enregistrer
Votre question

Problèmes, problèmes et encore problèmes....

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
24 Février 2009 12:16:21

Bonjour,
Depuis mon changement d'opérateur et d'anti-virus, les problèmes ne cessent de pulluler sur mon PC.
Les deux pour lesquels je poste ce sujet semblent liés étroitement, du fait qu'ils sont apparus à peu près en même temps.
Le premier :


Et le second :

(J'ai le même panneau, pour mon pilote de carte son, Audio-Deck)

Bon si personne n'a de solution, je règle moi-même ces soucis mais manière Rambo.

Voilà merci d'avance de votre aide.

Autres pages sur : problemes problemes problemes

a b 8 Sécurité
24 Février 2009 21:15:03

Bonjour,

Télécharge Random's System Information Tool (RSIT) (de random/random) et sauvegarde-le sur le Bureau.

  • Double-clique sur RSIT.exe afin de lancer RSIT.
  • Clique Continue  à l'écran Disclaimer.
  • Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
  • Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt  (qui sera affiché)
    ainsi que de info.txt  (qui sera réduit dans la Barre des Tâches)
  • NB : Les rapports sont sauvegardés dans le dossier C:\rsit  
  • Veille bien à me poster l'intégralité des rapports, vérifie qu'ils soient complets une fois que tu les as postés.
    28 Février 2009 18:04:16

    Super, merci de ta réponse, je le fais de ce pas, et je poste le rapport.

    EDIT : voilà le rapport :

    Log.txt :
    Logfile of random's system information tool 1.05 (written by random/random)
    Run by Antonin at 2009-02-28 18:03:16
    Microsoft Windows XP Édition familiale Service Pack 2
    System drive C: has 113 MB (1%) free of 8 GB
    Total RAM: 511 MB (30% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 18:04:09, on 28/02/2009
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WIN\System32\smss.exe
    C:\WIN\system32\winlogon.exe
    C:\WIN\system32\services.exe
    C:\WIN\system32\lsass.exe
    C:\WIN\system32\svchost.exe
    C:\WIN\System32\svchost.exe
    C:\WIN\system32\spoolsv.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe
    D:\Program Files\AVG\AVG8\avgwdsvc.exe
    D:\Program Files\AVG\AVG8\avgfws8.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
    D:\Program Files\CDBurnerXP\NMSAccessU.exe
    C:\WIN\system32\PnkBstrA.exe
    C:\WIN\system32\svchost.exe
    D:\Program Files\AVG\AVG8\avgam.exe
    C:\Program Files\Windows Live\Messenger\usnsvc.exe
    D:\Program Files\AVG\AVG8\avgrsx.exe
    C:\WIN\System32\svchost.exe
    C:\WIN\system32\system.exe
    C:\WIN\Explorer.EXE
    D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
    C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
    D:\Program Files\QuickTime\qttask.exe
    D:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    D:\Program Files\AVG\AVG8\avgtray.exe
    C:\Program Files\VIA\VIAudioi\SBADeck\ADeck.exe
    D:\Program Files\RocketDock\RocketDock.exe
    D:\Program Files\FDF\FAST2.EXE
    C:\WIN\system32\ctfmon.exe
    D:\Program Files\Veoh Networks\Veoh\VeohClient.exe
    C:\WIN\system32\dwwin.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
    D:\Program Files\LED\LedWallpaper\LedWallpaper.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe
    C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
    D:\Program Files\AVG\AVG8\avgnsx.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    C:\WIN\system32\dwwin.exe
    D:\RSIT.exe
    C:\Program Files\Trend Micro\HijackThis\Antonin.exe
    C:\WIN\system32\dwwin.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\windows\system32\blank.htm
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\windows\system32\blank.htm
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    F2 - REG:system.ini: UserInit=C:\WIN\system32\userinit.exe,C:\WIN\system32\system.exe
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
    O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - D:\Program Files\AVG\AVG8\avgssie.dll
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Program Files\MICROS~2\Office12\GRA8E1~1.DLL
    O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O2 - BHO: (no name) - {FFFFFEF0-5B30-21D4-945D-000000000000} - D:\Program Files\STARDO~1\SDIEInt.dll
    O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - D:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
    O4 - HKLM\..\Run: [adiras] adiras.exe
    O4 - HKLM\..\Run: [WinVNC] "D:\Program Files\TightVNC\WinVNC.exe" -servicehelper
    O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
    O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
    O4 - HKLM\..\Run: [GrooveMonitor] "D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
    O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
    O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "D:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
    O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKLM\..\Run: [AVG8_TRAY] D:\Program Files\AVG\AVG8\avgtray.exe
    O4 - HKLM\..\Run: [AudioDeck] C:\Program Files\VIA\VIAudioi\SBADeck\ADeck.exe 1
    O4 - HKCU\..\Run: [RocketDock] "D:\Program Files\RocketDock\RocketDock.exe"
    O4 - HKCU\..\Run: [FAST Defrag] D:\Program Files\FDF\FAST2.EXE -tray
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WIN\system32\ctfmon.exe
    O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
    O4 - HKCU\..\Run: [Dot1XCfg] C:\Program Files\Dot1XCfg\Dot1XCfg.exe
    O4 - HKCU\..\Run: [Veoh] "D:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WIN\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WIN\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WIN\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WIN\system32\CTFMON.EXE (User 'Default user')
    O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
    O4 - Global Startup: LedWallpaper.lnk = D:\Program Files\LED\LedWallpaper\LedWallpaper.exe
    O8 - Extra context menu item: Download with Star Downloader - D:\Program Files\STARDO~1\sdie.htm
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\Program Files\MICROS~2\Office12\EXCEL.EXE/3000
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://D:\Program Files\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O8 - Extra context menu item: Sothink SWF Catcher - C:\Program Files\Fichiers communs\SourceTec\SWF Catcher\InternetExplorer.htm
    O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Program Files\MICROS~2\Office12\REFIEBAR.DLL
    O9 - Extra button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Fichiers communs\SourceTec\SWF Catcher\InternetExplorer.htm
    O9 - Extra 'Tools' menuitem: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Fichiers communs\SourceTec\SWF Catcher\InternetExplorer.htm
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3/resources/MSNPUpld.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Cont...
    O17 - HKLM\System\CCS\Services\Tcpip\..\{25B54A5B-0C1A-4B72-B5F6-633CEEE50330}: NameServer = 192.168.1.1
    O17 - HKLM\System\CCS\Services\Tcpip\..\{A37E81E1-C8C7-4867-8D45-8442D2FC6569}: NameServer = 192.65.137.10,56.64.131.10,96.62.131.10,63.40.109.80
    O17 - HKLM\System\CCS\Services\Tcpip\..\{BE45D516-F05F-4D0D-8C28-A2EE47D12557}: NameServer = 192.65.137.10,56.64.131.10,96.62.131.10,63.40.109.80
    O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 192.65.137.10 56.64.131.10,96.62.131.10,63.40.109.80
    O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 192.65.137.10 56.64.131.10,96.62.131.10,63.40.109.80
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 192.65.137.10 56.64.131.10,96.62.131.10,63.40.109.80
    O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Program Files\MICROS~2\Office12\GR99D3~1.DLL
    O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - D:\Program Files\AVG\AVG8\avgpp.dll
    O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
    O20 - Winlogon Notify: avgrsstarter - C:\WIN\SYSTEM32\avgrsstx.dll
    O21 - SSODL: hstsys - {6B3D7499-EA26-4C3E-862B-E23A67523E8D} - C:\WIN\hstsys.dll (file missing)
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Ati HotKey Poller - Unknown owner - C:\WIN\system32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WIN\system32\ati2sgag.exe
    O23 - Service: Autodesk Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe
    O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - D:\Program Files\AVG\AVG8\avgwdsvc.exe
    O23 - Service: AVG8 Firewall (avgfws8) - AVG Technologies CZ, s.r.o. - D:\Program Files\AVG\AVG8\avgfws8.exe
    O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
    O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    O23 - Service: Google Desktop Manager 5.7.806.10245 (GoogleDesktopManager-061008-081103) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: Macromedia Licensing Service - Macromedia - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe
    O23 - Service: NMSAccessU - Unknown owner - D:\Program Files\CDBurnerXP\NMSAccessU.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\WIN\system32\PnkBstrA.exe
    O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files\Fichiers communs\SolidWorks Shared\Service\SolidWorksLicensing.exe
    O23 - Service: Windows Telephony (WindowsTelephony) - Unknown owner - C:\WIN\system\svhost.exe (file missing)
    O23 - Service: VNC Server (winvnc) - Unknown owner - D:\Program Files\TightVNC\WinVNC.exe (file missing)

    --
    End of file - 13281 bytes

    ======Scheduled tasks folder======

    C:\WIN\tasks\AppleSoftwareUpdate.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    AcroIEHlprObj Class - D:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx [2001-04-16 37808]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
    AVG Safe Search - D:\Program Files\AVG\AVG8\avgssie.dll [2009-02-14 1078552]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
    Groove GFS Browser Helper - D:\Program Files\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-26 2210608]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
    Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2009-02-23 320920]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-06-22 329104]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
    Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll [2008-03-02 654320]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-02-23 34816]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
    JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-02-23 73728]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFEF0-5B30-21D4-945D-000000000000}]
    D:\Program Files\STARDO~1\SDIEInt.dll [2006-02-26 135680]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {D0943516-5076-4020-A3B5-AEFAF26AB263} - Veoh Browser Plug-in - D:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll [2008-04-01 352256]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "adiras"=adiras.exe []
    "WinVNC"=D:\Program Files\TightVNC\WinVNC.exe -servicehelper []
    "ISUSPM Startup"=C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe [2005-02-16 221184]
    "ISUSScheduler"=C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe [2005-02-16 81920]
    "GrooveMonitor"=D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-26 31016]
    "ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2003-02-28 315392]
    "QuickTime Task"=D:\Program Files\QuickTime\qttask.exe [2008-05-27 413696]
    "iTunesHelper"=D:\Program Files\iTunes\iTunesHelper.exe [2008-06-02 267048]
    "Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-08-02 29744]
    "Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2007-03-28 593920]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-02-23 136600]
    "AVG8_TRAY"=D:\Program Files\AVG\AVG8\avgtray.exe [2009-02-14 1601304]
    "AudioDeck"=C:\Program Files\VIA\VIAudioi\SBADeck\ADeck.exe [2007-08-09 528384]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "RocketDock"=D:\Program Files\RocketDock\RocketDock.exe [2007-03-18 630784]
    "FAST Defrag"=D:\Program Files\FDF\FAST2.EXE [2005-08-24 97792]
    "ctfmon.exe"=C:\WIN\system32\ctfmon.exe [2004-08-05 15360]
    "MessengerPlus3"=C:\Program Files\MessengerPlus! 3\MsgPlus.exe [2007-09-27 190024]
    "Dot1XCfg"=C:\Program Files\Dot1XCfg\Dot1XCfg.exe []
    "Veoh"=D:\Program Files\Veoh Networks\Veoh\VeohClient.exe [2008-04-01 3587120]

    C:\Documents and Settings\All Users.WIN\Menu Démarrer\Programmes\Démarrage
    DSLMON.lnk - C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
    LedWallpaper.lnk - D:\Program Files\LED\LedWallpaper\LedWallpaper.exe

    C:\Documents and Settings\Antonin.ETIENNE\Menu Démarrer\Programmes\Démarrage
    Adobe Gamma.lnk - C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
    C:\WIN\system32\avgrsstx.dll [2009-02-14 10520]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WIN\system32\WPDShServiceObj.dll [2006-10-18 133632]
    hstsys - {6B3D7499-EA26-4C3E-862B-E23A67523E8D} - C:\WIN\hstsys.dll []

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\Program Files\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-26 2210608]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msliksurserv.sys]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WindowsTelephony]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\msliksurserv.sys]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WindowsTelephony]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "DisableTaskMgr"=0
    "DisableChangePassword"=0
    "DisableLockWorkstation"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoClose"=0
    "NoLogoff"=0
    "NoDriveTypeAutoRun"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveAutoRun"=
    "NoDriveTypeAutoRun"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
    "D:\Program Files\Pando Networks\Pando\pando.exe"="D:\Program Files\Pando Networks\Pando\pando.exe:*:Enabled:p ando"
    "D:\Program Files\Veoh Networks\Veoh\VeohClient.exe"="D:\Program Files\Veoh Networks\Veoh\VeohClient.exe:*:Enabled:Veoh Client"
    "D:\Program Files\Hercules\Hercules Blog Webcam\Station2.exe"="D:\Program Files\Hercules\Hercules Blog Webcam\Station2.exe:*:Enabled:Hercules Webcam Station Evolution"
    "D:\Program Files\uTorrent\utorrent.exe"="D:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
    "C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:firefox.exe"
    "D:\Program Files\PS3Portal\hfs.exe"="D:\Program Files\PS3Portal\hfs.exe:*:Enabled:hfs"
    "D:\eMule0.48a\eMule0.48a\emule.exe"="D:\eMule0.48a\eMule0.48a\emule.exe:*:Enabled:eMule"
    "D:\Program Files\eMule\emule.exe"="D:\Program Files\eMule\emule.exe:*:Enabled:eMule"
    "D:\Program Files\Sierra\SWAT 4\ContentExpansion\System\Swat4X.exe"="D:\Program Files\Sierra\SWAT 4\ContentExpansion\System\Swat4X.exe:*:Enabled:SWAT 4 - The Stetchkov Syndicate"
    "D:\Program Files\Sierra\SWAT 4\ContentExpansion\System\Swat4XDedicatedServer.exe"="D:\Program Files\Sierra\SWAT 4\ContentExpansion\System\Swat4XDedicatedServer.exe:*:Enabled:SWAT 4 - The Stetchkov Syndicate Dedicated Server"
    "D:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="D:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
    "D:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="D:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
    "D:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="D:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
    "D:\Program Files\Ubisoft\XIII\system\XIII.exe"="D:\Program Files\Ubisoft\XIII\system\XIII.exe:*:Enabled:XIII"
    "D:\Program Files\Wolfenstein - Enemy Territory\ET.exe"="D:\Program Files\Wolfenstein - Enemy Territory\ET.exe:*:Enabled:ET"
    "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
    "D:\Program Files\iTunes\iTunes.exe"="D:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
    "D:\Program Files\Free Music Zilla\FMZilla.exe"="D:\Program Files\Free Music Zilla\FMZilla.exe:*:Enabled:FMZilla Module"
    "D:\Program Files\LimeWire\LimeWire.exe"="D:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "D:\Program Files\FileZilla\FileZilla.exe"="D:\Program Files\FileZilla\FileZilla.exe:*:Enabled:FileZilla"
    "D:\Program Files\AVG\AVG8\avgupd.exe"="D:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe"
    "D:\Program Files\AVG\AVG8\avgnsx.exe"="D:\Program Files\AVG\AVG8\avgnsx.exe:*:Enabled:avgnsx.exe"
    "C:\WIN\system\svhost.exe"="C:\WIN\system\svhost.exe:*:WindowsTelephony"
    "C:\WIN\System32\67.scr"="C:\WIN\System32\67.scr:*:WindowsTelephony"
    "C:\WIN\system32\system.exe"="C:\WIN\system32\system.exe:*:Enabled:Mozillacorp"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e04a904a-80cd-11dc-b151-0030187180dd}]
    shell\AutoRun\command - G:\LaunchU3.exe -a


    ======List of files/folders created in the last 1 months======

    2070-01-01 02:03:39 ----A---- C:\WIN\system32\278.exe
    2070-01-01 02:03:36 ----A---- C:\WIN\system32\202.exe
    2070-01-01 02:01:49 ----A---- C:\WIN\system32\423507.exe
    2070-01-01 02:01:07 ----RSH---- C:\WIN\system32\system.exe
    2009-02-28 18:03:16 ----D---- C:\rsit
    2009-02-28 09:16:05 ----A---- C:\WIN\system32\627.exe
    2009-02-27 20:08:25 ----A---- C:\WIN\system32\482.exe
    2009-02-27 13:31:06 ----A---- C:\WIN\system32\122.exe
    2009-02-27 08:59:12 ----A---- C:\WIN\system32\412.exe
    2009-02-27 08:54:09 ----A---- C:\WIN\system32\826.exe
    2009-02-27 08:46:51 ----A---- C:\WIN\system32\443.exe
    2009-02-23 23:57:52 ----A---- C:\WIN\system32\javaws.exe
    2009-02-23 23:57:52 ----A---- C:\WIN\system32\deploytk.dll
    2009-02-23 23:57:50 ----A---- C:\WIN\system32\javaw.exe
    2009-02-23 23:57:49 ----A---- C:\WIN\system32\java.exe
    2009-02-18 18:26:01 ----A---- C:\WIN\system32\msvcrt2.dll
    2009-02-17 21:05:55 ----N---- C:\WIN\system32\difxapi.dll
    2009-02-17 21:05:55 ----D---- C:\Program Files\VIA
    2009-02-17 18:22:29 ----A---- C:\WIN\imsins.BAK
    2009-02-17 18:22:24 ----HDC---- C:\WIN\$NtUninstallKB921883$
    2009-02-17 18:11:02 ----A---- C:\WIN\system32\wuapi.dll.mui
    2009-02-14 15:22:50 ----HD---- C:\$AVG8.VAULT$
    2009-02-14 14:28:23 ----A---- C:\WIN\system32\avgrsstx.dll
    2009-02-14 14:26:01 ----A---- C:\WIN\system32\avgfwdx.dll
    2009-02-14 14:25:58 ----D---- C:\Program Files\AVG
    2009-02-14 14:25:54 ----D---- C:\Documents and Settings\All Users.WIN\Application Data\avg8

    ======List of files/folders modified in the last 1 months======

    2009-02-28 18:04:07 ----D---- C:\WIN\Temp
    2009-02-28 18:03:35 ----D---- C:\WIN\Prefetch
    2009-02-28 16:54:44 ----D---- C:\WIN\system32
    2009-02-28 11:57:54 ----D---- C:\Program Files\Mozilla Firefox
    2009-02-23 23:58:13 ----HD---- C:\Config.Msi
    2009-02-23 23:57:10 ----SHD---- C:\WIN\Installer
    2009-02-23 23:57:05 ----D---- C:\Program Files\Java
    2009-02-23 12:31:37 ----D---- C:\WIN\system
    2009-02-19 23:57:50 ----D---- C:\WIN\system32\CatRoot2
    2009-02-19 12:09:32 ----AC---- C:\WIN\system32\PerfStringBackup.INI
    2009-02-19 12:09:10 ----D---- C:\WIN
    2009-02-18 17:39:14 ----A---- C:\WIN\SchedLgU.Txt
    2009-02-18 09:39:59 ----D---- C:\WIN\system32\drivers
    2009-02-17 21:06:51 ----RSHDC---- C:\WIN\system32\dllcache
    2009-02-17 21:06:35 ----HD---- C:\WIN\inf
    2009-02-17 21:05:55 ----RD---- C:\Program Files
    2009-02-17 18:22:09 ----HD---- C:\WIN\$hf_mig$
    2009-02-17 18:11:51 ----SD---- C:\WIN\Downloaded Program Files
    2009-02-17 18:11:51 ----D---- C:\WIN\SoftwareDistribution
    2009-02-17 18:11:09 ----D---- C:\WIN\Help
    2009-02-14 14:47:11 ----D---- C:\Documents and Settings\All Users.WIN\Application Data\Spybot - Search & Destroy
    2009-02-14 14:25:43 ----D---- C:\WIN\WinSxS
    2009-02-14 14:25:43 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
    2009-02-14 12:15:50 ----SHD---- C:\System Volume Information
    2009-02-14 12:15:50 ----D---- C:\Program Files\Fichiers communs
    2009-02-13 20:59:09 ----D---- C:\Documents and Settings
    2009-02-08 10:49:16 ----D---- C:\Documents and Settings\Antonin.ETIENNE\Application Data\SolidWorks

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 AmdK7;Pilote de processeur AMD K7; C:\WIN\system32\DRIVERS\amdk7.sys [2004-08-05 41600]
    R1 AvgLdx86;AVG AVI Loader Driver x86; C:\WIN\System32\Drivers\avgldx86.sys [2009-02-14 325128]
    R1 AvgMfx86;AVG On-access Scanner Minifilter Driver x86; C:\WIN\System32\Drivers\avgmfx86.sys [2009-02-14 27656]
    R1 AvgTdiX;AVG8 Network Redirector; C:\WIN\System32\Drivers\avgtdix.sys [2009-02-14 107272]
    R1 FileDisk;FileDisk; C:\WIN\system32\drivers\FileDisk.sys [2004-06-09 10556]
    R2 CdaC15BA;CdaC15BA; \??\C:\WIN\system32\drivers\CdaC15BA.SYS []
    R2 enodpl;enodpl; C:\WIN\System32\drivers\enodpl.sys [2003-03-02 7552]
    R2 Hardlock;Hardlock; \??\C:\WIN\system32\drivers\hardlock.sys []
    R2 tandpl;tandpl; C:\WIN\System32\drivers\tandpl.sys [2003-04-19 4736]
    R3 ati2mtag;ati2mtag; C:\WIN\system32\DRIVERS\ati2mtag.sys [2004-08-03 701440]
    R3 Avgfwdx;Avgfwdx; C:\WIN\system32\DRIVERS\avgfwdx.sys [2009-02-14 29208]
    R3 FETNDIS;Pilote NT de carte VIA PCI 10/100Mo Fast Ethernet; C:\WIN\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
    R3 GEARAspiWDM;GEARAspiWDM; C:\WIN\System32\Drivers\GEARAspiWDM.sys [2008-01-29 16168]
    R3 ms_mpu401;Pilote UART MIDI MPU-401 Microsoft; C:\WIN\system32\drivers\msmpu401.sys [2001-08-17 2944]
    R3 PPJoyBus;Parallel Port Joystick Bus device driver; C:\WIN\system32\drivers\PPJoyBus.sys [2004-10-24 13952]
    R3 PPortJoystick;Parallel Port Joystick device driver; C:\WIN\system32\drivers\PPortJoy.sys [2004-10-24 28800]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WIN\system32\DRIVERS\usbehci.sys [2004-08-05 26624]
    R3 usbhub;Concentrateur USB2; C:\WIN\system32\DRIVERS\usbhub.sys [2004-08-05 57600]
    R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WIN\system32\DRIVERS\usbuhci.sys [2004-08-05 20480]
    R3 VIAudio;Vinyl AC'97 Audio Controller (WDM); C:\WIN\system32\drivers\vinyl97.sys [2007-06-27 207488]
    S1 msliksurserv;msliksurserv; \??\globalroot\systemroot\system32\drivers\msliksurserv.sys []
    S2 ADILOADER;General Purpose USB Driver (adildr.sys); C:\WIN\System32\Drivers\adildr.sys [2003-07-17 46167]
    S3 adiusbaw;USB ADSL WAN Adapter; C:\WIN\system32\DRIVERS\adiusbaw.sys [2003-03-27 127145]
    S3 APL531;Hercules Blog Webcam; C:\WIN\System32\Drivers\BLvid.sys [2006-09-29 274816]
    S3 Avgfwfd;AVG network filter service; C:\WIN\system32\DRIVERS\avgfwdx.sys [2009-02-14 29208]
    S3 camfilt;camfilt; C:\WIN\System32\Drivers\camfilt.sys [2006-10-03 22656]
    S3 catchme;catchme; \??\C:\DOCUME~1\ANTONI~1.ETI\LOCALS~1\Temp\catchme.sys []
    S3 CCDECODE;Décodeur sous-titre fermé; C:\WIN\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
    S3 EraserUtilDrv10822;EraserUtilDrv10822; \??\C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\EraserUtilDrv10822.sys []
    S3 ggsemc;Sony Ericsson USB Flash Driver; C:\WIN\system32\DRIVERS\ggsemc.sys [2008-09-07 8704]
    S3 libusb0;LibUsb-Win32 - Kernel Driver 11/20/2005, 20051120; C:\WIN\system32\DRIVERS\libusb0.sys [2007-09-19 29184]
    S3 Mozillacorp;Mozillacorp; \??\C:\DOCUME~1\ANTONI~1.ETI\LOCALS~1\Temp\04227.sys []
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WIN\system32\drivers\MSTEE.sys [2004-08-03 5504]
    S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WIN\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
    S3 NdisIP;Connection TV/vidéo Microsoft; C:\WIN\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
    S3 SE2Ebus;Sony Ericsson Device 046 Driver driver (WDM); C:\WIN\system32\DRIVERS\SE2Ebus.sys [2006-05-01 61600]
    S3 SE2Emdfl;Sony Ericsson Device 046 USB WMC Modem Filter; C:\WIN\system32\DRIVERS\SE2Emdfl.sys [2006-05-01 9360]
    S3 SE2Emdm;Sony Ericsson Device 046 USB WMC Modem Driver; C:\WIN\system32\DRIVERS\SE2Emdm.sys [2006-05-01 97184]
    S3 SE2Emgmt;Sony Ericsson Device 046 USB WMC Device Management Drivers (WDM); C:\WIN\system32\DRIVERS\SE2Emgmt.sys [2006-05-01 88688]
    S3 se2End5;Sony Ericsson Device 046 USB Ethernet Emulation SEMC46 (NDIS); C:\WIN\system32\DRIVERS\se2End5.sys [2006-05-01 18704]
    S3 SE2Eobex;Sony Ericsson Device 046 USB WMC OBEX Interface; C:\WIN\system32\DRIVERS\SE2Eobex.sys [2006-05-01 86560]
    S3 se2Eunic;Sony Ericsson Device 046 USB Ethernet Emulation SEMC46 (WDM); C:\WIN\system32\DRIVERS\se2Eunic.sys [2006-05-01 90800]
    S3 se58bus;Sony Ericsson Device 088 driver (WDM); C:\WIN\system32\DRIVERS\se58bus.sys [2006-09-05 61536]
    S3 se58mdfl;Sony Ericsson Device 088 USB WMC Modem Filter; C:\WIN\system32\DRIVERS\se58mdfl.sys [2006-09-05 9360]
    S3 se58mdm;Sony Ericsson Device 088 USB WMC Modem Driver; C:\WIN\system32\DRIVERS\se58mdm.sys [2006-09-05 97088]
    S3 se58mgmt;Sony Ericsson Device 088 USB WMC Device Management Drivers (WDM); C:\WIN\system32\DRIVERS\se58mgmt.sys [2006-09-05 88624]
    S3 se58nd5;Sony Ericsson Device 088 USB Ethernet Emulation SEMC58 (NDIS); C:\WIN\system32\DRIVERS\se58nd5.sys [2006-09-05 18704]
    S3 se58obex;Sony Ericsson Device 088 USB WMC OBEX Interface; C:\WIN\system32\DRIVERS\se58obex.sys [2006-09-05 86432]
    S3 se58unic;Sony Ericsson Device 088 USB Ethernet Emulation SEMC58 (WDM); C:\WIN\system32\DRIVERS\se58unic.sys [2006-09-05 90800]
    S3 se59bus;Sony Ericsson Device 089 driver (WDM); C:\WIN\system32\DRIVERS\se59bus.sys [2006-09-05 61536]
    S3 se59mdfl;Sony Ericsson Device 089 USB WMC Modem Filter; C:\WIN\system32\DRIVERS\se59mdfl.sys [2006-09-05 9360]
    S3 se59mdm;Sony Ericsson Device 089 USB WMC Modem Driver; C:\WIN\system32\DRIVERS\se59mdm.sys [2006-09-05 97088]
    S3 se59mgmt;Sony Ericsson Device 089 USB WMC Device Management Drivers (WDM); C:\WIN\system32\DRIVERS\se59mgmt.sys [2006-09-05 88624]
    S3 se59nd5;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (NDIS); C:\WIN\system32\DRIVERS\se59nd5.sys [2006-09-05 18704]
    S3 se59obex;Sony Ericsson Device 089 USB WMC OBEX Interface; C:\WIN\system32\DRIVERS\se59obex.sys [2006-09-05 86432]
    S3 se59unic;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (WDM); C:\WIN\system32\DRIVERS\se59unic.sys [2006-09-05 90800]
    S3 SLIP;Détrameur décalage BDA; C:\WIN\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
    S3 SQTECH905C;DaulCamera; C:\WIN\System32\Drivers\Capt905c.sys [2004-12-08 32123]
    S3 streamip;BDA IPSink; C:\WIN\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
    S3 sysdrv32;Play Port I/O Driver; \??\C:\WIN\system32\drivers\sysdrv32.sys []
    S3 USB_RNDIS;RNDIS/BeWAN ADSL2+; C:\WIN\system32\DRIVERS\usb8023.sys [2004-08-05 12672]
    S3 USBAAPL;Apple Mobile USB Driver; C:\WIN\System32\Drivers\usbaapl.sys [2007-10-31 30464]
    S3 usbaudio;Pilote USB audio (WDM); C:\WIN\system32\drivers\usbaudio.sys [2004-08-03 59264]
    S3 usbccgp;Pilote parent générique USB Microsoft; C:\WIN\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
    S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WIN\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
    S3 usbscan;Pilote de scanneur USB; C:\WIN\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
    S3 USBSTOR;Pilote de stockage de masse USB; C:\WIN\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
    S3 WSTCODEC;Codec Teletext standard; C:\WIN\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
    S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WIN\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
    S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WIN\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
    S4 IntelIde;IntelIde; C:\WIN\system32\drivers\IntelIde.sys []

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2007-09-06 110592]
    R2 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe [2007-08-03 68608]
    R2 avg8wd;AVG8 WatchDog; D:\Program Files\AVG\AVG8\avgwdsvc.exe [2009-02-14 298264]
    R2 avgfws8;AVG8 Firewall; D:\Program Files\AVG\AVG8\avgfws8.exe [2009-02-14 1339600]
    R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2007-07-24 229376]
    R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-02-23 152984]
    R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
    R2 NMSAccessU;NMSAccessU; D:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-03-09 71096]
    R2 PnkBstrA;PnkBstrA; C:\WIN\system32\PnkBstrA.exe [2008-05-14 66872]
    R2 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
    R3 iPod Service;Service de l'iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-06-02 504104]
    S2 Ati HotKey Poller;Ati HotKey Poller; C:\WIN\system32\Ati2evxx.exe [2003-03-01 184405]
    S2 ATI Smart;ATI Smart; C:\WIN\system32\ati2sgag.exe [2003-02-28 110677]
    S2 shanvsf;shanvsf; C:\WIN\system32\svchost.exe [2004-08-05 14336]
    S2 WindowsTelephony;Windows Telephony; C:\WIN\system\svhost.exe []
    S2 winvnc;VNC Server; D:\Program Files\TightVNC\WinVNC.exe -service []
    S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2007-05-19 72704]
    S3 aspnet_state;Service d'état ASP.NET; C:\WIN\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
    S3 Boonty Games;Boonty Games; C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe [2007-12-15 69120]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WIN\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
    S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2007-08-03 654848]
    S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WIN\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2006-10-20 36864]
    S3 GoogleDesktopManager-061008-081103;Google Desktop Manager 5.7.806.10245; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-08-02 29744]
    S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-03-02 138680]
    S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
    S3 idsvc;Windows CardSpace; C:\WIN\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2006-10-30 741376]
    S3 Macromedia Licensing Service;Macromedia Licensing Service; C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe [2007-04-15 69632]
    S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; D:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-26 65824]
    S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
    S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
    S3 SolidWorks Licensing Service;SolidWorks Licensing Service; C:\Program Files\Fichiers communs\SolidWorks Shared\Service\SolidWorksLicensing.exe [2008-06-16 72704]
    S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
    S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
    S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WIN\system32\svchost.exe [2004-08-05 14336]
    S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WIN\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2006-10-30 122880]

    -----------------EOF-----------------



    Et info.txt :
    info.txt logfile of random's system information tool 1.05 2009-02-28 18:04:41

    ======Uninstall list======

    -->D:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
    -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WIN\INF\PCHealth.inf
    3ds max 7-->MsiExec.exe /I{7CD67EDB-D57F-4465-88DD-88F0EA360E2B}
    Adobe Acrobat 5.0-->C:\WIN\ISUN040C.EXE -f"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.dll"
    Adobe After Effects 6.5-->MsiExec.exe /I{61CEB2D7-8D3B-4247-B75E-A95F6699B90A}
    Adobe Anchor Service CS3-->MsiExec.exe /I{90176341-0A8B-4CCC-A78D-F862228A6B95}
    Adobe Asset Services CS3-->MsiExec.exe /I{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}
    Adobe Bridge CS3-->MsiExec.exe /I{9C9824D9-9000-4373-A6A5-D0E5D4831394}
    Adobe Bridge Start Meeting-->MsiExec.exe /I{08B32819-6EEF-4057-AEDA-5AB681A36A23}
    Adobe Camera Raw 4.0-->MsiExec.exe /I{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}
    Adobe CMaps-->MsiExec.exe /I{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}
    Adobe Color - Photoshop Specific-->MsiExec.exe /I{A2D81E70-2A98-4A08-A628-94388B063C5E}
    Adobe Color Common Settings-->MsiExec.exe /I{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}
    Adobe Color EU Recommended Settings-->MsiExec.exe /I{73B5D990-04EA-4751-B10F-5534770B91F2}
    Adobe Color JA Extra Settings-->MsiExec.exe /I{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}
    Adobe Color NA Extra Settings-->MsiExec.exe /I{FF29A7E2-FF40-4D07-B7E4-2093DE59E10A}
    Adobe Default Language CS3-->MsiExec.exe /I{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}
    Adobe Device Central CS3-->MsiExec.exe /I{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}
    Adobe ExtendScript Toolkit 2-->MsiExec.exe /I{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}
    Adobe Extension Manager CS3-->MsiExec.exe /I{D7A53E41-3F32-4A44-989C-53DDEBB2130C}
    Adobe Fireworks CS3-->C:\Program Files\Fichiers communs\Adobe\Installers\ba9815ac58164aa9fea0bd903e9fe83\Setup.exe
    Adobe Fireworks CS3-->MsiExec.exe /I{21C4D775-368A-46C4-8DC3-4207165B7115}
    Adobe Flash Player 10 ActiveX-->C:\WIN\system32\Macromed\Flash\uninstall_activeX.exe
    Adobe Flash Player 10 Plugin-->C:\WIN\system32\Macromed\Flash\uninstall_plugin.exe
    Adobe Fonts All-->MsiExec.exe /I{6ABE0BEE-D572-4FE8-B434-9E72A289431B}
    Adobe Help Viewer CS3-->MsiExec.exe /I{04AF207D-9A77-465A-8B76-991F6AB66245}
    Adobe Linguistics CS3-->MsiExec.exe /I{54793AA1-5001-42F4-ABB6-C364617C6078}
    Adobe PDF Library Files-->MsiExec.exe /I{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}
    Adobe Photoshop CS3-->C:\Program Files\Fichiers communs\Adobe\Installers\32e9033392a51340b32fdc6ad893ab7\Setup.exe
    Adobe Photoshop CS3-->MsiExec.exe /I{BF794769-8875-4E01-B7BE-E00104604F4A}
    Adobe Setup-->MsiExec.exe /I{926DEB4E-2B0A-4C5C-AE4A-BF6C06949702}
    Adobe Setup-->MsiExec.exe /I{F73A5E2B-FC9D-4E80-82CB-B7B167C5DED7}
    Adobe Stock Photos CS3-->MsiExec.exe /I{29E5EA97-5F74-4A57-B8B2-D4F169117183}
    Adobe Type Support-->MsiExec.exe /I{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}
    Adobe Update Manager CS3-->MsiExec.exe /I{E69AE897-9E0B-485C-8552-7841F48D42D8}
    Adobe Version Cue CS3 Client-->MsiExec.exe /I{D0DFF92A-492E-4C40-B862-A74A173C25C5}
    Adobe WinSoft Linguistics Plugin-->MsiExec.exe /I{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}
    Adobe XMP Panels CS3-->MsiExec.exe /I{802771A9-A856-4A41-ACF7-1450E523C923}
    adsl TV-->D:\Program Files\adslTV\Uninstal.exe
    Apple Mobile Device Support-->MsiExec.exe /I{44734179-8A79-4DEE-BB08-73037F065543}
    Apple Software Update-->MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}
    Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
    Assistant de connexion Windows Live-->MsiExec.exe /I{CB5EA99C-8A5B-49F2-9A1A-2EF78BE4DB41}
    ATI Control Panel-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe"
    ATI Display Driver-->rundll32 C:\WIN\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:D ISPLAY -clean
    Audition-->C:\WIN\SDUnInst.exe c:\program files\software by design\audition.uni
    AVG 8.0-->D:\Program Files\AVG\AVG8\setup.exe /UNINSTALL
    AviSynth 2.5-->"D:\Program Files\AviSynth 2.5\Uninstall.exe"
    AVPM-Setup-->MsiExec.exe /I{33C4A0D3-3F48-460F-A1F2-4438C638991B}
    Ballance-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{42E0783D-3BA4-454B-B58A-BF26E49EB7DE}\setup.exe"
    Beneton Movie GIF 1.1.2-->"D:\Program Files\Beneton Movie GIF\unins000.exe"
    Bonjour-->MsiExec.exe /I{47BF1BD6-DCAC-468F-A0AD-E5DECC2211C3}
    Capturino 1.4-->D:\Program Files\Capturino 1.4\Uninstal.exe
    CCleaner (remove only)-->"D:\Program Files\CCleaner\uninst.exe"
    CDBurnerXP-->"D:\Program Files\CDBurnerXP\unins000.exe"
    Dev-C++ 5 beta 9 release (4.9.9.2)-->"D:\Dev-Cpp\uninstall.exe"
    DivX Codec-->D:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
    DivX Converter-->D:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
    DivX Player-->D:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
    DivX Web Player-->D:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
    DWGeditor-->MsiExec.exe /X{F5125699-C01A-4ED8-BD3A-265DF29859FE}
    e-anim701-->D:\Program Files\e-anim701\uninstall.exe
    EasyPHP 2.0b1-->"D:\Program Files\EasyPHP 2.0b1\unins000.exe"
    eDrawings 2007-->MsiExec.exe /I{75FEB085-179F-4C85-B0E4-B517D2160750}
    eMule-->"D:\Program Files\eMule\Uninstall.exe"
    Express Burn-->C:\Program Files\NCH Swift Sound\ExpressBurn\uninst.exe
    Far Manager v1.70-->D:\W580i\Far\uninstall.exe
    FAST Defrag Freeware 2.3-->"D:\Program Files\FDF\unins000.exe"
    FileZilla (remove only)-->"D:\Program Files\FileZilla\uninstall.exe"
    Foxit Reader-->C:\Program Files\Foxit Software\Foxit Reader\Uninstall.exe
    Free iPod Video Converter 1.34-->"D:\Program Files\Free iPod Video Converter\unins000.exe"
    Free Music Zilla-->"D:\Program Files\Free Music Zilla\unins000.exe"
    FreeUndelete-->D:\Program Files\FreeUndelete\GLF65.exe /handle:fru
    GetDataBack for NTFS-->"C:\Program Files\Runtime Software\GetDataBack for NTFS\Uninstall.exe" "C:\Program Files\Runtime Software\GetDataBack for NTFS\install.log" -u
    Google Desktop-->C:\Program Files\Google\Google Desktop Search\GoogleDesktopSetup.exe -uninstall
    Hercules Blog Webcam-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8B6490BA-FAEA-486C-BAB5-561251D5F2B1}\setup.exe" -l0x40c -removeonly
    HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
    Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WIN\$NtUninstallKB929399$\spuninst\spuninst.exe"
    Hotfix for Windows XP (KB926239)-->"C:\WIN\$NtUninstallKB926239$\spuninst\spuninst.exe"
    HydraVision-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3EA9D975-BFDC-4E8E-B88B-0446FBC8CA66}\setup.exe"
    iTunes-->MsiExec.exe /I{9F70BF98-003C-491D-81FC-FF9792206AF0}
    iWizz-->D:\Program Files\iWizz\uninstall.exe
    Java(TM) 6 Update 11-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
    Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
    Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
    LedWallpaper 1.5.1-->"D:\Program Files\LED\LedWallpaper\unins000.exe"
    LimeWire 4.18.3-->"D:\Program Files\LimeWire\uninstall.exe"
    LMSOFT Web Creator Pro 3-->D:\Program Files\MINDSC~1\WEBCRE~1\UNWISE.EXE D:\Program Files\MINDSC~1\WEBCRE~1\INSTALL.LOG
    LuaDev II-->D:\Program Files\LuaDev 2\Uninstal.exe
    Matériaux et textures 3ds max 7 suppl.-->MsiExec.exe /I{E50777EF-E75E-4E95-A794-CE06870B6433}
    Messenger Plus! 3-->"C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /Remove
    Messenger Plus! Live-->"D:\Program Files\Messenger Plus! Live\Uninstall.exe"
    Microsoft .NET Framework 2.0-->C:\WIN\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
    Microsoft .NET Framework 3.0 French Language Pack-->MsiExec.exe /X{E3C080B0-23F5-49AF-89F8-8E8DBC89E659}
    Microsoft .NET Framework 3.0-->C:\WIN\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0\setup.exe
    Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WIN\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
    Microsoft Office Access MUI (English) 2007-->MsiExec.exe /X{90120000-0015-0409-0000-0000000FF1CE}
    Microsoft Office Access Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0117-0409-0000-0000000FF1CE}
    Microsoft Office Enterprise 2007-->"C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
    Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
    Microsoft Office Excel MUI (English) 2007-->MsiExec.exe /X{90120000-0016-0409-0000-0000000FF1CE}
    Microsoft Office Groove MUI (English) 2007-->MsiExec.exe /X{90120000-00BA-0409-0000-0000000FF1CE}
    Microsoft Office Groove Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0114-0409-0000-0000000FF1CE}
    Microsoft Office InfoPath MUI (English) 2007-->MsiExec.exe /X{90120000-0044-0409-0000-0000000FF1CE}
    Microsoft Office OneNote MUI (English) 2007-->MsiExec.exe /X{90120000-00A1-0409-0000-0000000FF1CE}
    Microsoft Office Outlook MUI (English) 2007-->MsiExec.exe /X{90120000-001A-0409-0000-0000000FF1CE}
    Microsoft Office PowerPoint MUI (English) 2007-->MsiExec.exe /X{90120000-0018-0409-0000-0000000FF1CE}
    Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
    Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
    Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
    Microsoft Office Proofing (English) 2007-->MsiExec.exe /X{90120000-002C-0409-0000-0000000FF1CE}
    Microsoft Office Publisher MUI (English) 2007-->MsiExec.exe /X{90120000-0019-0409-0000-0000000FF1CE}
    Microsoft Office Shared MUI (English) 2007-->MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE}
    Microsoft Office Shared Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE}
    Microsoft Office Word MUI (English) 2007-->MsiExec.exe /X{90120000-001B-0409-0000-0000000FF1CE}
    Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WIN\$NtUninstallWudf01000$\spuninst\spuninst.exe"
    Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
    Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)-->"C:\WIN\$NtUninstallKB925398_WMP64$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896423)-->"C:\WIN\$NtUninstallKB896423$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB914389)-->"C:\WIN\$NtUninstallKB914389$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB921883)-->"C:\WIN\$NtUninstallKB921883$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB898461)-->"C:\WIN\$NtUninstallKB898461$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB922582)-->"C:\WIN\$NtUninstallKB922582$\spuninst\spuninst.exe"
    Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA-->C:\WIN\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe
    Module de prise en charge linguistique du français de Microsoft .NET Framework 3.0-->C:\WIN\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0 French Language Pack\setup.exe
    Mozilla Firefox (3.0.6)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
    MSN Reaper-->"D:\Program Files\MSN Reaper\uninst.exe"
    MSXML 6.0 Parser (KB933579)-->MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
    MyDsc2-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{83D96ED0-98AA-4515-8DDC-816F3EFDD104}\Setup.exe" -l0x40c
    OpenOffice.org Installer 1.0-->MsiExec.exe /X{3A2AF807-9F9F-43C9-A24A-17B617238B74}
    Operation Flashpoint uninstall-->D:\Program Files\Codemasters\OperationFlashpoint\uninstall.exe
    Pack Vista Inspirat 2 1.0-->C:\WIN\BricoPacks\Vista Inspirat 2\Remove.exe
    Paint.NET v3.22-->MsiExec.exe /X{96C267DA-0926-4C11-B4E7-4D3EF85130D0}
    Parallel Port Joystick-->C:\WIN\unvise32.exe D:\Program Files\Parallel Port Joystick\uninstal.log
    PDF Settings-->MsiExec.exe /I{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}
    PSP Brew 0.91-->"D:\Program Files\PSP Brew\unins000.exe"
    QuickTime-->MsiExec.exe /I{08CA9554-B5FE-4313-938F-D4A417B81175}
    Ri4m v5.0.1d-->D:\Program Files\Ripp-it_AM\Ri4m_Uninstal.exe
    SAGEM F@st 800-840-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4AE3A0CB-87B0-4F51-BECD-3D1F8DFDD62F}\setup.exe" -l0x40c
    Security Update pour Microsoft .NET Framework 2.0 (KB922770)-->C:\WIN\system32\msiexec.exe /promptrestart /uninstall {0E92DD42-76F5-4EF2-B381-F9C1D72BE23D} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
    SLD Codec Pack-->C:\Program Files\SLD Codec Pack\uninstall.exe
    SMPlayer 0.6.1-->"D:\Program Files\SMPlayer\unins000.exe"
    SolidWorks 2007 SP0-->MsiExec.exe /I{D0B5FD6D-F787-4D40-BB8F-7EDD73DD523E}
    SolidWorks Explorer 2007 sp0-->MsiExec.exe /I{559FAB96-A0CD-4105-A02F-1C21DEBCEF89}
    SolidWorks Installation Manager-->MsiExec.exe /X{26621E14-A45B-45CD-9ED9-7A0A9B585DB4}
    Sony ATRAC3 Audio Codec (remove only)-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall.NT 132 C:\WIN\INF\atrac3.inf
    Sony Ericsson PC Suite-->MsiExec.exe /I{FE6397C1-CECA-4EC3-B064-42AED7676898}
    Sothink SWF Decompiler-->"D:\Program Files\SourceTec\Sothink SWF Decompiler\unins000.exe"
    Star Downloader Free-->D:\Program Files\STARDO~1\UNWISE.EXE D:\Program Files\STARDO~1\INSTALL.LOG
    SWAT 4-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\10\INTEL3~1\IDriver.exe /M{8E1CCF20-9E12-4824-BD59-7AD9E0486DD8} uninstall
    Transparent Screen Lock for Win2000 NT and XP v 2.10-->"D:\Program Files\Transparent Screen Lock\unins000.exe"
    treize-->"C:\Program Files\treize\unins000.exe"
    TubeMaster-->"D:\Program Files\TubeMaster\uninstall.exe"
    Tux Airsoft Toolkit version 1.1-->C:\WIN\unvise32.exe D:\Program Files\Tux Airsoft Toolkit\uninstal.log
    VC80CRTRedist - 8.0.50727.762-->MsiExec.exe /I{767CC44C-9BBC-438D-BAD3-FD4595DD148B}
    VIA Audio Driver Setup Program-->RunDll32.exe UnAudioNT.dll,UninstallAudio C:\WIN\IsUninst.exe -f"C:\PROGRA~1\VIATEC~1\VIAAUD~1/Uninst.isu"
    VIA Gestionnaire de périphériques de plate-forme-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{20D4A895-748C-4D88-871C-FDB1695B0169}
    VideoLAN VLC media player 0.8.6b-->D:\Program Files\adslTV\uninstall.exe
    Viewpoint Media Player (Remove Only)-->C:\Program Files\Viewpoint\Viewpoint Media Player\mtsAxInstaller.exe /u
    VirginMega.Fr Premium-->MsiExec.exe /I{EE467474-04A8-48D5-8DDF-0F8D3A3CCBE5}
    Windows Communication Foundation-->MsiExec.exe /X{491DD792-AD81-429C-9EB4-86DD3D22E333}
    Windows Imaging Component-->"C:\WIN\$NtUninstallWIC$\spuninst\spuninst.exe"
    Windows Installer 3.1 (KB893803)-->"C:\WIN\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"
    Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
    Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
    Windows Live Writer-->MsiExec.exe /X{35F42206-1CDE-4E45-AB89-99591ABD8EE0}
    Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
    Windows Media Format 11 runtime-->"C:\WIN\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
    Windows Media Player 11-->"C:\WIN\$NtUninstallwmp11$\spuninst\spuninst.exe"
    Windows Presentation Foundation Language Pack (FRA)-->MsiExec.exe /X{6901DD22-527A-41EF-9059-E81FEDE9E494}
    Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
    Windows Workflow Foundation FR Language Pack-->MsiExec.exe /I{B84C141C-9A13-44BE-9A69-301D7B11D836}
    Windows Workflow Foundation-->MsiExec.exe /I{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}
    Wolfenstein - Enemy Territory-->D:\Program Files\WOLFEN~1\Uninstall\Unwise.exe /u D:\Program Files\WOLFEN~1\Uninstall\Install.log
    XIII-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{42BC0474-6E50-464A-8183-5E3D32E41B1B}\setup.exe" -l0x40c
    XML Paper Specification Shared Components Language Pack 1.0-->"C:\WIN\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"
    XviD4PSP 5.0-->D:\Program Files\Winnydows\XviD4PSP5\Uninstall.exe

    ======Security center information======

    AV: AVG Internet Security
    FW: AVG Firewall

    System event log

    Computer Name: ETIENNE
    Event Code: 7023
    Message: Le service Service de transfert intelligent en arrière-plan s'est arrêté avec l'erreur :
    Le module spécifié est introuvable.


    Record Number: 25257
    Source Name: Service Control Manager
    Time Written: 20090223133137.000000+060
    Event Type: erreur
    User:

    Computer Name: ETIENNE
    Event Code: 7036
    Message: Le service Service de transfert intelligent en arrière-plan est entré dans l'état : arrêté.

    Record Number: 25256
    Source Name: Service Control Manager
    Time Written: 20090223133137.000000+060
    Event Type: Informations
    User:

    Computer Name: ETIENNE
    Event Code: 7035
    Message: Un contrôle Démarrer a correctement été envoyé au service Service de transfert intelligent en arrière-plan.

    Record Number: 25255
    Source Name: Service Control Manager
    Time Written: 20090223133137.000000+060
    Event Type: Informations
    User: AUTORITE NT\SYSTEM

    Computer Name: ETIENNE
    Event Code: 10010
    Message: Le serveur {4991D34B-80A1-4291-83B6-3328366B9097} ne s'est pas enregistré sur DCOM avant la fin du temps imparti.

    Record Number: 25254
    Source Name: DCOM
    Time Written: 20090223133137.000000+060
    Event Type: erreur
    User: AUTORITE NT\SYSTEM

    Computer Name: ETIENNE
    Event Code: 7023
    Message: Le service Service de transfert intelligent en arrière-plan s'est arrêté avec l'erreur :
    Le module spécifié est introuvable.


    Record Number: 25253
    Source Name: Service Control Manager
    Time Written: 20090223133107.000000+060
    Event Type: erreur
    User:

    Application event log

    Computer Name: ETIENNE
    Event Code: 105
    Message: The service was started.

    Record Number: 5
    Source Name: ATI Smart
    Time Written: 20081018133807.000000+120
    Event Type: Informations
    User:

    Computer Name: ETIENNE
    Event Code: 0
    Message:
    Record Number: 4
    Source Name: iPod Service
    Time Written: 20081018132449.000000+120
    Event Type: Informations
    User:

    Computer Name: ETIENNE
    Event Code: 1800
    Message: Le service Centre de sécurité Windows a démarré.

    Record Number: 3
    Source Name: SecurityCenter
    Time Written: 20081018132446.000000+120
    Event Type: Informations
    User:

    Computer Name: ETIENNE
    Event Code: 1
    Message:
    Record Number: 2
    Source Name: Bonjour Service
    Time Written: 20081018132443.000000+120
    Event Type: Informations
    User:

    Computer Name: ETIENNE
    Event Code: 105
    Message: The service was started.

    Record Number: 1
    Source Name: ATI Smart
    Time Written: 20081018132440.000000+120
    Event Type: Informations
    User:

    ======Environment variables======

    "ComSpec"=%SystemRoot%\system32\cmd.exe
    "FP_NO_HOST_CHECK"=NO
    "GS_LIB"=C:\Program Files\gs\gs8.14\lib
    "GS_PROG"=C:\Program Files\gs\gs8.14\bin\gswin32.exe
    "LANG"=fr
    "NUMBER_OF_PROCESSORS"=1
    "OS"=Windows_NT
    "Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Program Files\Fichiers communs\Adobe\AGL;C:\Program Files\Fichiers communs\Autodesk Shared\;C:\Program Files\backburner 2\;D:\Program Files\Fichiers communs\GTK\2.0\bin;C:\Program Files\Fichiers communs\Teleca Shared;D:\Program Files\QuickTime\QTSystem";C:\Program Files\ATI Technologies\ATI Control Panel;D:\Program Files\QuickTime\QTSystem\
    "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
    "PROCESSOR_ARCHITECTURE"=x86
    "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 6 Stepping 2, AuthenticAMD
    "PROCESSOR_LEVEL"=6
    "PROCESSOR_REVISION"=0602
    "TEMP"=%SystemRoot%\TEMP
    "TMP"=%SystemRoot%\TEMP
    "windir"=%SystemRoot%
    "CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_03\lib\ext\QTJava.zip
    "QTJAVA"=C:\Program Files\Java\jre1.6.0_03\lib\ext\QTJava.zip

    -----------------EOF-----------------



    Voilà encore merci.
    Contenus similaires
    a b 8 Sécurité
    28 Février 2009 18:26:58

    Re,

    Télécharge MalwareByte's Anti-Malware sur ton Bureau.

  • Installe-le en double-cliquant sur le fichier Download_mbam-setup.exe.
  • Exécute maintenant MalwareByte's Anti-Malware. Si cela n'est pas déjà fait, sélectionne "Exécuter un examen complet".
  • Afin de lancer la recherche, clic sur"Rechercher".
  • Une fois le scan terminé, une fenêtre s'ouvre, clic sur OK. Deux possibilités s'offrent à toi :

    ~ Si le programme n'a rien trouvé, appuie sur OK. Un rapport va apparaître, ferme-le.
    ~~ Si des infections sont présentes, clic sur "Afficher les résultats" puis sur "Supprimer la sélection". Enregistre le rapport sur ton Bureau.
    ~~~~ Fais redémarrer ton ordinateur normalement et poste le rapport dans ta prochaine réponse.

    REMARQUE : Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok.[/#f]

    Note : Si tu ne parviens à télécharger MBAM à part de MajorGeeks, tu peux le télécharger ici!

    [#FF0000]Aide
    :
  • Comment utiliser MBAM.
  • Comment faire démarrer son ordinateur en mode sans échec.
    28 Février 2009 23:21:50

    Plop, après avoir fait ce que tu m'as dit, je te poste le rapport :

    Malwarebytes' Anti-Malware 1.34
    Version de la base de données: 1813
    Windows 5.1.2600 Service Pack 2

    28/02/2009 20:28:53
    mbam-log-2009-02-28 (20-28-53).txt

    Type de recherche: Examen complet (C:\|D:\|)
    Eléments examinés: 242433
    Temps écoulé: 1 hour(s), 12 minute(s), 54 second(s)

    Processus mémoire infecté(s): 1
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 12
    Valeur(s) du Registre infectée(s): 1
    Elément(s) de données du Registre infecté(s): 2
    Dossier(s) infecté(s): 1
    Fichier(s) infecté(s): 3

    Processus mémoire infecté(s):
    C:\WIN\system32\system.exe (Spyware.OnlineGames) -> Unloaded process successfully.

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{480598dd-ae28-48b7-82f7-6adda1aa6b66} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{c58a4487-4c2e-45e4-9e3a-52b3a23cc396} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sysdrv32 (Backdoor.Bot) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sysdrv32 (Backdoor.Bot) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sysdrv32 (Backdoor.Bot) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\msliksur (Trojan.DNSChanger) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\sunporn (Trojan.DNSChanger) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\sunpornwrrb325 (Trojan.DNSChanger) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\msliksurserv (Rootkit.Agent) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Trymedia Systems (Adware.Trymedia) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\kernelexe (Malware.Trace) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Dot1XCfg (Trojan.Downloader) -> Quarantined and deleted successfully.

    Valeur(s) du Registre infectée(s):
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow\*.starsdoor.com (Backdoor.Bot) -> Quarantined and deleted successfully.

    Elément(s) de données du Registre infecté(s):
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Spyware.OnlineGames) -> Data: c:\win\system32\system.exe -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Spyware.OnlineGames) -> Data: system32\system.exe -> Quarantined and deleted successfully.

    Dossier(s) infecté(s):
    C:\Program Files\Dot1XCfg (Trojan.Downloader) -> Quarantined and deleted successfully.

    Fichier(s) infecté(s):
    C:\WIN\system32\drivers\sysdrv32.sys (Backdoor.Bot) -> Quarantined and deleted successfully.
    C:\WIN\system32\system.exe (Spyware.OnlineGames) -> Delete on reboot.
    C:\WIN\system32\msvcrt2.dll (Trojan.Agent) -> Quarantined and deleted successfully.


    Voilà, encore merci de ton aide :ange: 

    PS : j'ai encore le second message, bien que le premier ait été remplacé par :
    a b 8 Sécurité
    1 Mars 2009 20:35:37

    Pas certain que cette erreur soit liée à l'infection.

    Télécharge ComboFix (de sUBs) sur ton Bureau.

  • Désactive temporairement toute protection résidente ! (Antivirus, antispywares..)
  • Double clique sur ComboFix.exe.
  • Accepte la licence en cliquant sur Oui.
  • Le programme va te demander si tu souhaites installer la Console de Récupération. C'est une précaution, au cas où l'ordinateur tomberait en panne. Je te conseille donc de l'installer, ça ne coûte rien, et ça pourrait potentiellement servir !
  • Lorsque l'opération sera terminée, un rapport apparaîtra. Poste ce rapport dans ta prochaine réponse.

    Le rapport se trouve ici : %SystemDrive%\ComboFix.txt (%systemdrive% étant la partition où est installée Windows; C:\ en général)

    Aide : Comment utiliser ComboFix.
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS