Votre question

[Résolu] Virus : Bug d'affichage sur windows xp.

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
24 Février 2009 16:57:34

Bonjour,

Depuis ce matin j 'ai de grave problème d'affichage sur windows Xp qui apparaissent quand je déplace n'importe quelle fenêtre horizontalement ou verticalement.

Voici un petit screenshot pour que vous vous fassiez une idée.
http://img14.imageshack.us/img14/9232/capture04.jpg

Je pense que c'est un problème de virus car il n'apparait que sous windows.
Ma carte graphique est une nvidia geforce 6500 gt.

Merci d'avance.

Autres pages sur : resolu virus bug affichage windows

a c 295 8 Sécurité
24 Février 2009 17:18:28

Salut,

Citation :
Je pense que c'est un problème de virus car il n'apparait que sous windows.

---> Tu as essayé sous Linux ?
24 Février 2009 17:19:30

Je n' ai pas Linux installé sur mon pc.
Contenus similaires
a c 295 8 Sécurité
24 Février 2009 17:29:53

Ok, dans ce cas, pourquoi tu dis qu'il n'apparaît que sous Windows ?
24 Février 2009 18:40:03

Car les bugs d'affichages n'apparaissent pas quand je boot.
a c 295 8 Sécurité
24 Février 2009 18:40:51

Ok.

  • Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.
  • Double-clique sur RSIT.exe afin de lancer le programme.
  • Clique sur Continue à l'écran Disclaimer.
  • Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
  • Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

    Note : les rapports sont sauvegardés dans le dossier C:\rsit\.
    24 Février 2009 18:49:52

    Alors pour le log.txt :

    Logfile of random's system information tool 1.05 (written by random/random)
    Run by jean marc at 2009-02-24 18:46:51
    Microsoft Windows XP Professionnel Service Pack 2
    System drive C: has 3 GB (10%) free of 31 GB
    Total RAM: 1535 MB (69% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 18:46:53, on 24/02/2009
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\EXPLORER.EXE
    C:\WINDOWS\Explorer.EXE
    C:\Documents and Settings\jean marc\Menu Démarrer\Programmes\Démarrage\ctfmon.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\wscntfy.exe
    C:\Documents and Settings\jean marc\Bureau\aMSN\bin\wish.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Documents and Settings\jean marc\Bureau\RSIT.exe
    C:\Program Files\Trend Micro\HijackThis\jean marc.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\PCHEALTH\HELPCTR\System\panels\blank.htm
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\PCHEALTH\HELPCTR\System\panels\blank.htm
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    F2 - REG:system.ini: UserInit=userinit.exe,EXPLORER.EXE
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.EXE /auto
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKCU\..\Run: [wsctf.exe] wsctf.exe
    O4 - HKCU\..\Run: [EXPLORER.EXE] EXPLORER.EXE
    O4 - Startup: ctfmon.exe
    O20 - AppInit_DLLs: fipghy.dll
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

    --
    End of file - 2028 bytes

    ======Scheduled tasks folder======

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "MSConfig"=C:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.EXE [2004-08-19 160768]
    "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-01-15 13680640]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "wsctf.exe"=wsctf.exe []
    "EXPLORER.EXE"=C:\WINDOWS\system32\EXPLORER.EXE [2006-10-25 36864]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
    C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdVantage]
    C:\Program Files\AdVantage\AdVantage.exe [2007-11-05 884176]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AGEIA PhysX SysTray]
    C:\Program Files\AGEIA Technologies\bin\TrayIcon.exe [2007-01-05 357928]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AltnetPointsManager]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Anti-Blaxx Manager]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Archive]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ares]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BearShare]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BMd76ebd67]
    C:\WINDOWS\system32\rnksvmln.dll [2008-09-15 97280]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cdoosoft]
    C:\WINDOWS\system32\olhrwef.exe [2009-02-24 106199]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CloneCDTray]
    C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe [2006-09-28 57344]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative Detector]
    C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe [2004-12-02 102400]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative MediaSource Go]
    C:\Program Files\Creative\MediaSource\Go\CTCMSGo.exe [2004-11-30 135168]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
    C:\WINDOWS\system32\ctfmon.exe [2004-08-19 15360]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTSysVol]
    C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe [2005-02-15 57344]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\d45d8efb]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
    C:\Program Files\DAEMON Tools\daemon.exe [2006-11-12 157592]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DigidesignMMERefresh]
    C:\Program Files\Digidesign\Drivers\MMERefresh.exe [2006-12-09 61440]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EXPLORER.EXE]
    C:\WINDOWS\system32\EXPLORER.EXE [2006-10-25 36864]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\funktitle]
    C:\DOCUME~1\JEANMA~1\APPLIC~1\POLLAC~1\Kind Team Trans.exe [2007-03-01 438784]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GreyHtmIdleDelete]
    C:\Documents and Settings\All Users\Application Data\loud poke grey htm\DefyPlay.exe [2007-03-01 542720]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igndlm.exe]
    e:\Program Files\Download Manager\DLM.exe [2007-03-05 1103480]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
    C:\Program Files\iTunes\iTunesHelper.exe [2006-09-12 229952]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\kamsoft]
    C:\WINDOWS\system32\kamsoft.exe [2008-12-08 107045]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\kava]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KAVPersonal50]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KAZAA]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
    C:\WINDOWS\system32\dumprep 0 -k []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\kis]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe [2006-03-24 139367]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lphca68j0er6a]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
    C:\Program Files\Messenger\msmsgs.exe [2004-10-13 1694208]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
    C:\Program Files\MSN Messenger\msnmsgr.exe [2007-01-19 5674352]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
    C:\WINDOWS\system32\NvCpl.dll [2009-01-15 13680640]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
    C:\WINDOWS\system32\NvMcTray.dll [2009-02-09 86016]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
    nwiz.exe /install []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\outlook]
    C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE [2003-07-15 196152]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P17Helper]
    Rundll32 P17.dll []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P2P Networking]
    C:\WINDOWS\system32\P2P Networking\P2P Networking.exe [2006-04-08 468152]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pando]
    C:\Program Files\Pando Networks\Pando\Pando.exe [2007-06-27 4044104]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PinnacleDriverCheck]
    C:\WINDOWS\system32\\PSDrvCheck.exe [2004-03-11 406016]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
    C:\Program Files\PowerISO\PWRISOVM.EXE [2006-01-31 180224]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
    C:\Program Files\QuickTime\QTTask.exe [2008-05-27 413696]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RavAV]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\rfagent]
    C:\Program Files\RFA\rfagent.exe [2007-12-04 916800]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Run]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SemanticInsight]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Shareaza]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpySheriff]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
    E:\Program Files\Steam\Steam.exe [2008-10-23 1410296]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
    C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe [2006-12-15 75520]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SVCHOST.EXE]
    C:\WINDOWS\system32\svchost.exe [2004-08-19 14336]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tbon]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
    C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2006-03-23 180269]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TopSearch]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdReg]
    C:\WINDOWS\UpdReg.EXE [2000-05-11 90112]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UserFaultCheck]
    C:\WINDOWS\system32\dumprep 0 -u []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vamsoft]
    C:\WINDOWS\system32\vamsoft.exe [2008-12-20 116839]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\webHancer Agent]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\webHancer Survey Companion]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebRebates]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WhenUSave]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
    C:\Program Files\Winamp\winampa.exe [2006-06-21 35328]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows installer]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\wsctf.exe]
    wsctf.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Gamma Loader.lnk]
    C:\PROGRA~1\FICHIE~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2000-08-24 110592]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Reader Speed Launch.lnk]
    C:\PROGRA~1\Adobe\READER~1.0\Reader\READER~1.EXE [2008-06-12 34672]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^Adobe Gamma.lnk]
    C:\PROGRA~1\FICHIE~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2000-08-24 110592]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^ctfmon.exe]
    C:\Documents and Settings\jean marc\Menu Démarrer\Programmes\Démarrage\ctfmon.exe [2007-12-21 20480]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^MagicDisc.lnk]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^Morpheus.lnk]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 2.3.lnk]
    C:\PROGRA~1\OPENOF~1.3\program\QUICKS~1.EXE [2007-08-17 393216]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
    "FLEXnet Licensing Service"=3
    "Bonjour Service"=2
    "WebrootSpySweeperService"=2
    "usnjsvc"=3
    "ose"=3
    "LicCtrlService"=2
    "IDriverT"=3
    "DigiRefresh"=2
    "AVP"=2
    "AvidStartup"=2
    "AvidSDMService"=2

    C:\Documents and Settings\jean marc\Menu Démarrer\Programmes\Démarrage
    ctfmon.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "AppInit_DLLS"="fipghy.dll"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
    C:\WINDOWS\system32\klogon.dll [2006-03-24 28778]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WRNotifier]
    C:\WINDOWS\system32\WRLogonNTF.dll [2007-03-01 233024]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    "{C5F43BEF-CE2F-46D8-AFE6-A647BACD1F09}"=C:\WINDOWS\system32\Bitkv0.dll [2007-06-13 69632]
    "{BB4C402F-882A-4526-8C08-51278EA437C1}"=C:\WINDOWS\system32\afmain1.dll [2007-06-13 78848]

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
    "SecurityProviders"=msapsspc.dll schannel.dll digest.dll msnsspc.dll

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\tdssserv.sys]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WebrootSpySweeperService]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\tdssserv.sys]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WebrootSpySweeperService]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "NoDispScrSavPage"=0
    ""=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=145
    "NoDriveAutoRun"=FFFFFFFF

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\Pinnacle\Studio 10\programs\RM.exe"="C:\Program Files\Pinnacle\Studio 10\programs\RM.exe:*:Enabled:Render Manager"
    "C:\Program Files\Pinnacle\Studio 10\programs\Studio.exe"="C:\Program Files\Pinnacle\Studio 10\programs\Studio.exe:*:Enabled:Studio"
    "C:\Program Files\Pinnacle\Studio 10\programs\PMSRegisterFile.exe"="C:\Program Files\Pinnacle\Studio 10\programs\PMSRegisterFile.exe:*:Enabled:p MSRegisterFile"
    "C:\Program Files\Pinnacle\Studio 10\programs\umi.exe"="C:\Program Files\Pinnacle\Studio 10\programs\umi.exe:*:Enabled:umi"
    "C:\Program Files\Azureus\Azureus.exe"="C:\Program Files\Azureus\Azureus.exe:*:Enabled:Azureus"
    "E:\doom3\Doom3Ded.exe"="E:\doom3\Doom3Ded.exe:*:D isabled:D OOM 3"
    "E:\Call of Duty 2\CoD2MP_s.exe"="E:\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
    "E:\Kazaa\kazaa.exe"="E:\Kazaa\kazaa.exe:*:Enabled:Kazaa"
    "E:\Program Files\Kazaa\kazaa.exe"="E:\Program Files\Kazaa\kazaa.exe:*:Enabled:Kazaa"
    "E:\Program Files\truc\kazaa.exe"="E:\Program Files\truc\kazaa.exe:*:Enabled:Kazaa Media Desktop"
    "C:\WINDOWS\system32\P2P Networking\P2P Networking.exe"="C:\WINDOWS\system32\P2P Networking\P2P Networking.exe:*:Enabled:p 2P Networking"
    "C:\Program Files\Kazaa\kazaa.exe"="C:\Program Files\Kazaa\kazaa.exe:*:Enabled:Kazaa Media Desktop"
    "C:\Program Files\WebRebates\WebRebates.exe"="C:\Program Files\WebRebates\WebRebates.exe:*:D isabled:WebRebates"
    "C:\WINDOWS\system32\javaw.exe"="C:\WINDOWS\system32\javaw.exe:*:Enabled:Java(TM) 2 Platform Standard Edition binary"
    "E:\Blubster\Blubster.exe"="E:\Blubster\Blubster.exe:*:Enabled:MP2P servent main executable"
    "C:\StubInstaller.exe"="C:\StubInstaller.exe:*:Enabled:LimeWire swarmed installer"
    "C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "E:\kaza\kazaa.exe"="E:\kaza\kazaa.exe:*:Enabled:Kazaa Media Desktop"
    "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
    "C:\BoxOffice\__MACOSX\LimeWire\LimeWire.exe"="C:\BoxOffice\__MACOSX\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "E:\Shareaza\Shareaza.exe"="E:\Shareaza\Shareaza.exe:*:Enabled:Shareaza"
    "E:\truc\LimeWire\LimeWire.exe"="E:\truc\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "E:\LimeWire\LimeWire.exe"="E:\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "E:\Battlefield 2142\BF2142.exe"="E:\Battlefield 2142\BF2142.exe:*:Enabled:Battlefield 2"
    "E:\zike\Java - Hawai - Lame 192kbps - Guxfer.rar\LimeWire\LimeWire.exe"="E:\zike\Java - Hawai - Lame 192kbps - Guxfer.rar\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Mozilla Firefox"
    "C:\Program Files\Opera\Opera.exe"="C:\Program Files\Opera\Opera.exe:*:Enabled:o pera Internet Browser"
    "E:\movie madgic\Movie Magic\MM Scheduling 3.6 - 3.7\Scheduling and Budgeting -- Crack\EPROXY.EXE"="E:\movie madgic\Movie Magic\MM Scheduling 3.6 - 3.7\Scheduling and Budgeting -- Crack\EPROXY.EXE:*:Enabled:EPROXY"
    "E:\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe"="E:\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (CLI)"
    "E:\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe"="E:\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (SRV)"
    "E:\eMule\emule.exe"="E:\eMule\emule.exe:*:Enabled:eMule"
    "C:\Program Files\Freeplayer\vlc\vlc.exe"="C:\Program Files\Freeplayer\vlc\vlc.exe:*:Enabled:VLC media player"
    "C:\Program Files\aMSN\bin\wish.exe"="C:\Program Files\aMSN\bin\wish.exe:*:Enabled:Wish Application"
    "C:\Program Files\Pando Networks\Pando\pando.exe"="C:\Program Files\Pando Networks\Pando\pando.exe:*:Enabled:p ando"
    "E:\lime wire\LimeWire\LimeWire.exe"="E:\lime wire\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
    "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
    "C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
    "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
    "E:\Program Files\Steam\Steam.exe"="E:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
    "E:\Program Files\Steam\steamapps\anungunrama227\team fortress 2\hl2.exe"="E:\Program Files\Steam\steamapps\anungunrama227\team fortress 2\hl2.exe:*:Enabled:hl2"
    "E:\Program Files\GameSpy Arcade\Aphex.exe"="E:\Program Files\GameSpy Arcade\Aphex.exe:*:Enabled:GameSpy Arcade"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\E]
    shell\AutoRun\command - C:\WINDOWS\system32\ctfmon.exe
    shell\Open(0)\command - Recycled\ctfmon.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{0d6859f1-2392-11dc-b7f1-0015f22d81da}]
    shell\AutoRun\command - C:\WINDOWS\system32\ctfmon.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2e297a8a-e915-11da-9fe2-0015f22d81da}]
    shell\dinstall\command - E:\Program Files\Steam\steamapps\common\enemy territory quake wars\DirectX\DXSETUP.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5b2ea1d6-c090-11dc-8333-0015f22d81da}]
    shell\AutoRun\command - C:\WINDOWS\system32\ctfmon.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{65db29e4-9d44-11db-bf5b-0015f22d81da}]
    shell\AutoRun\command - C:\WINDOWS\system32\ctfmon.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b6b79167-c83a-11d9-8341-0015f22d81da}]
    shell\AutoRun\command - C:\WINDOWS\system32\ctfmon.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c5e13896-f467-11da-9fed-0015f22d81da}]
    shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdobeR.exe e

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c5e1d37d-bc07-11d9-833f-0015f22d81da}]
    shell\AutoRun\command - C:\WINDOWS\system32\ctfmon.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{dfd6f1eb-9234-11dc-b824-0015f22d81da}]
    shell\Auto\command - AdobeR.exe e
    shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdobeR.exe e

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f172ae28-c2be-11d9-833f-0015f22d81da}]
    shell\AutoRun\command - C:\WINDOWS\system32\ctfmon.exe


    ======File associations======

    .reg - open - regedit.exe "%1" %*
    .scr - open - "%1" %*

    ======List of files/folders created in the last 1 months======

    2009-02-24 18:46:51 ----D---- C:\rsit
    2009-02-24 16:59:06 ----D---- C:\Program Files\RFA
    2009-02-24 16:39:56 ----D---- C:\WINDOWS\NV28802884.TMP
    2009-02-24 06:46:46 ----RSH---- C:\jeorels.cmd
    2009-02-21 08:16:19 ----RSH---- C:\2fiy.bat
    2009-02-20 07:43:19 ----RSH---- C:\w2.com
    2009-02-17 17:54:32 ----RSH---- C:\WINDOWS\system32\nmdfgds2.dll
    2009-02-17 06:35:08 ----RSH---- C:\hyetn1i.exe
    2009-02-15 08:25:58 ----N---- C:\WINDOWS\system32\nmdfgds0.dll
    2009-02-15 08:05:09 ----D---- C:\WINDOWS\NV6441684.TMP
    2009-02-15 08:01:44 ----A---- C:\WINDOWS\system32\nvudisp.exe
    2009-02-15 08:01:43 ----D---- C:\WINDOWS\NV784572.TMP
    2009-02-15 08:01:10 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
    2009-02-15 08:00:48 ----D---- C:\NVIDIA
    2009-02-15 07:43:20 ----D---- C:\WINDOWS\NV13401936.TMP
    2009-02-15 07:37:49 ----D---- C:\WINDOWS\NV568584.TMP
    2009-02-15 07:30:58 ----D---- C:\WINDOWS\NV18561836.TMP
    2009-02-15 07:28:00 ----D---- C:\WINDOWS\NV8041080.TMP
    2009-02-15 07:26:19 ----D---- C:\Program Files\Driver Cleaner Pro
    2009-02-15 07:21:03 ----D---- C:\WINDOWS\NV18241820.TMP
    2009-02-15 07:20:52 ----A---- C:\WINDOWS\system32\OLD18.tmp
    2009-02-15 07:20:52 ----A---- C:\WINDOWS\system32\OLD17.tmp
    2009-02-15 07:20:51 ----A---- C:\WINDOWS\system32\OLD16.tmp
    2009-02-15 07:17:03 ----D---- C:\WINDOWS\NV35763580.TMP
    2009-02-15 07:16:57 ----A---- C:\WINDOWS\system32\SET9.tmp
    2009-02-15 07:13:43 ----D---- C:\Documents and Settings\All Users\Application Data\nView_Profiles
    2009-02-15 07:02:27 ----D---- C:\WINDOWS\NV14361504.TMP
    2009-02-15 06:59:40 ----RSH---- C:\qphdin.com
    2009-02-15 06:56:17 ----D---- C:\WINDOWS\NV11001288.TMP
    2009-02-15 06:37:13 ----D---- C:\WINDOWS\NV36403644.TMP
    2009-02-15 06:29:13 ----D---- C:\WINDOWS\NV12122992.TMP
    2009-02-12 18:29:38 ----RSH---- C:\ur0.com
    2009-02-11 16:40:10 ----RSH---- C:\opgde.exe
    2009-02-10 13:20:05 ----RSH---- C:\2aaxaiy.exe
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\SET62.tmp
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\SET38.tmp
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\SET31.tmp
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\SET2D.tmp
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvcuvid.dll
    2009-02-08 21:59:44 ----RSH---- C:\1utbfd.bat
    2009-02-03 15:02:26 ----RSH---- C:\pook.com
    2009-01-31 16:31:02 ----RASH---- C:\a2h2.com
    2009-01-30 17:47:30 ----RSH---- C:\hl80c6b1.com
    2009-01-28 18:26:39 ----RSH---- C:\8.bat

    ======List of files/folders modified in the last 1 months======

    2009-02-24 18:46:27 ----D---- C:\WINDOWS\Prefetch
    2009-02-24 18:45:55 ----D---- C:\WINDOWS\system32
    2009-02-24 18:45:55 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-02-24 18:43:58 ----D---- C:\Program Files\Mozilla Firefox
    2009-02-24 18:41:55 ----D---- C:\WINDOWS\Temp
    2009-02-24 18:41:44 ----D---- C:\WINDOWS\system32\config
    2009-02-24 18:40:41 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-02-24 18:34:09 ----ASH---- C:\boot.ini
    2009-02-24 18:34:09 ----A---- C:\WINDOWS\win.ini
    2009-02-24 18:34:09 ----A---- C:\WINDOWS\system.ini
    2009-02-24 18:32:47 ----D---- C:\Documents and Settings\jean marc\Application Data\Azureus
    2009-02-24 16:59:06 ----RD---- C:\Program Files
    2009-02-24 16:41:47 ----D---- C:\WINDOWS
    2009-02-24 16:39:54 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-02-24 16:39:54 ----D---- C:\WINDOWS\Help
    2009-02-24 16:39:42 ----D---- C:\WINDOWS\system32\drivers
    2009-02-24 16:39:33 ----HD---- C:\WINDOWS\inf
    2009-02-24 16:39:31 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-02-24 06:46:19 ----RSH---- C:\WINDOWS\system32\nmdfgds1.dll
    2009-02-24 06:46:18 ----RSH---- C:\WINDOWS\system32\olhrwef.exe
    2009-02-24 03:14:53 ----D---- C:\Program Files\Celtx
    2009-02-21 18:26:12 ----D---- C:\Documents and Settings\jean marc\Application Data\Adobe
    2009-02-21 18:26:12 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
    2009-02-15 08:01:32 ----D---- C:\WINDOWS\system32\CatRoot
    2009-02-09 14:21:58 ----D---- C:\Documents and Settings\jean marc\Application Data\Vso
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwssr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwss.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwddi.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvvitvsr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvvitvs.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvsvc32.exe
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvoglnt.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvmoblsr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvmobls.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvmctray.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvmccssr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvmccss.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvmccsrs.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvmccs.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvgamesr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvgames.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvdispsr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvdisps.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvcuda.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvcodins.dll
    2009-01-27 13:53:25 ----D---- C:\Documents and Settings\jean marc\Application Data\OpenOffice.org2

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2004-08-19 40320]
    R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-19 14848]
    R1 oreans32;oreans32; \??\C:\WINDOWS\system32\drivers\oreans32.sys []
    R1 PCLEPCI;PCLEPCI; \??\C:\WINDOWS\system32\drivers\pclepci.sys []
    R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2006-01-31 25900]
    R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
    R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-08-28 12032]
    R2 ACEDRV06;ACEDRV06; \??\C:\WINDOWS\system32\drivers\ACEDRV06.sys []
    R2 ACEDRV07;ACEDRV07; \??\C:\WINDOWS\system32\drivers\ACEDRV07.sys []
    R2 Aspi32;Aspi32; C:\WINDOWS\System32\drivers\aspi32.sys [1999-09-10 25244]
    R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2007-02-27 271360]
    R2 DigiNet;Digidesign Ethernet Support; C:\WINDOWS\system32\DRIVERS\diginet.sys [2006-12-08 11776]
    R2 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2006-12-26 15440]
    R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2007-02-27 18048]
    R2 Sentinel;Sentinel; C:\WINDOWS\System32\Drivers\SENTINEL.SYS [2006-03-14 90176]
    R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2004-08-03 60800]
    R3 ASAPIW2K;ASAPIW2K; C:\WINDOWS\System32\Drivers\ASAPIW2K.sys [2005-02-23 11264]
    R3 BENDER;Pinnacle DV/AV Capture; C:\WINDOWS\system32\drivers\bender.sys [2005-08-22 200320]
    R3 ctsfm2k;Creative SoundFont Management Device Driver; C:\WINDOWS\System32\DRIVERS\ctsfm2k.sys [2005-01-10 138752]
    R3 E1000;Intel(R) PRO/1000 Network Connection Driver; C:\WINDOWS\System32\DRIVERS\e1000325.sys [2004-11-22 176128]
    R3 ElbyCDFL;ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2006-12-26 34760]
    R3 ElbyDelay;ElbyDelay; C:\WINDOWS\System32\Drivers\ElbyDelay.sys [2006-12-14 11984]
    R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2006-07-14 14448]
    R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2001-08-28 9600]
    R3 MarvinBus;Pinnacle Marvin Bus; C:\WINDOWS\system32\DRIVERS\MarvinBus.sys [2005-06-02 171008]
    R3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\WINDOWS\system32\DRIVERS\mcdbus.sys [2006-09-22 92160]
    R3 NCHSSVAD;SoundTap Recorder; C:\WINDOWS\system32\drivers\nchssvad.sys [2008-05-07 26112]
    R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2004-08-03 61824]
    R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-02-09 6307328]
    R3 ossrv;Creative OS Services Driver; C:\WINDOWS\System32\DRIVERS\ctoss2k.sys [2005-01-10 106496]
    R3 P17;SB Live! 24-bit; C:\WINDOWS\system32\drivers\P17.sys [2007-06-15 1127936]
    R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2005-03-31 47360]
    R3 SSKBFD;Webroot Spy Sweeper Keylogger Shield Keyboard Filter; C:\WINDOWS\System32\Drivers\sskbfd.sys [2007-03-01 21056]
    R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2004-08-03 57600]
    R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2004-08-03 20480]
    S3 61883;Pilote d'unité 61883; C:\WINDOWS\system32\DRIVERS\61883.sys [2004-08-03 48128]
    S3 a1d1sus9;a1d1sus9; C:\WINDOWS\system32\drivers\a1d1sus9.sys []
    S3 Avc;Périphérique AVC; C:\WINDOWS\system32\DRIVERS\avc.sys [2004-08-03 38912]
    S3 AVCSTRM;AVC Streaming Filter Driver; C:\WINDOWS\system32\DRIVERS\avcstrm.sys [2004-08-03 13696]
    S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
    S3 dtscsi;dtscsi; C:\WINDOWS\System32\Drivers\dtscsi.sys []
    S3 KLIF;KLIF; C:\WINDOWS\system32\drivers\KLIF.sys []
    S3 mouhid;Pilote HID de souris; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-23 12288]
    S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\system32\DRIVERS\msdv.sys [2004-08-03 51328]
    S3 MSTAPE;Microsoft AV/C Tape Subunit Device; C:\WINDOWS\system32\DRIVERS\mstape.sys [2004-08-03 49024]
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
    S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
    S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
    S3 Shrvddms;Shrvddms; C:\WINDOWS\system32\drivers\Shrvddms.sys []
    S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
    S3 ssm_bus;SAMSUNG Mobile USB Device II 1.0 driver (WDM); C:\WINDOWS\system32\DRIVERS\ssm_bus.sys [2005-08-30 58320]
    S3 ssm_mdfl;SAMSUNG Mobile USB Modem II 1.0 Filter; C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys [2005-08-30 8336]
    S3 ssm_mdm;SAMSUNG Mobile USB Modem II 1.0 Drivers; C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys [2005-08-30 94000]
    S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
    S3 SynasUSB;SynasUSB; C:\WINDOWS\system32\drivers\SynasUSB.sys [2007-10-24 23288]
    S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
    S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2004-08-03 25856]
    S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
    S3 vaxscsi;vaxscsi; C:\WINDOWS\System32\Drivers\vaxscsi.sys [2006-06-29 223128]
    S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2005-01-28 18944]
    S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
    S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-02-09 163908]
    R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
    S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2007-05-18 72704]
    S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
    S3 MSSQL$SONY_MEDIAMGR;MSSQL$SONY_MEDIAMGR; E:\Sony Vegas\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe [2002-12-17 7520337]
    S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2002-12-17 66112]
    S3 SQLAgent$SONY_MEDIAMGR;SQLAgent$SONY_MEDIAMGR; E:\Sony Vegas\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE [2002-12-17 311872]
    S4 AvidSDMService;Avid SDM Service; C:\WINDOWS\system32\AvidSDMService.exe [2007-06-15 49152]
    S4 AvidStartup;Avid Startup; C:\WINDOWS\system32\AvidStartup.exe [2007-06-15 1536000]
    S4 AVP;Kaspersky Internet Security 6.0; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe [2006-03-24 139367]
    S4 Creative Service for CDROM Access;Creative Service for CDROM Access; C:\WINDOWS\System32\CTsvcCDA.EXE [1999-12-13 44032]
    S4 DigiRefresh;Digidesign MME Refresh Service; C:\Program Files\Digidesign\Drivers\MMERefresh.exe [2006-12-09 61440]
    S4 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
    S4 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2006-09-12 451136]
    S4 LicCtrlService;LicCtrl Service; C:\WINDOWS\runservice.exe [2007-02-15 2560]
    S4 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
    S4 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2007-10-15 66872]
    S4 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
    S4 WebrootSpySweeperService;Moteur Webroot Spy Sweeper; C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe [2007-03-01 3379264]

    -----------------EOF-----------------

    et pour le info.txt :

    info.txt logfile of random's system information tool 1.05 2009-02-24 18:46:56

    ======Uninstall list======

    -->"C:\Program Files\Creative\SBAudigy\Program\Setup.exe" /S /U /W /L:FRN
    -->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
    -->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
    -->MsiExec /X{E2BE1618-AF5F-4F7D-8484-42E080EDF609}
    -->MsiExec.exe /I{0CDCA5CD-C404-41FD-9216-9B4B3D24A7AA}
    -->MsiExec.exe /X{69495273-FCDC-4A86-BCB7-49B504D3FB0E}
    -->MsiExec.exe /X{7B4AB13C-1A5C-4BC5-ABA6-762F8198444C}
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0B095086-7205-4D48-90DF-DCD16613C6D4}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0B095086-7205-4D48-90DF-DCD16613C6D4}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{103BCDA0-E063-46AC-8028-64E78722ABA7}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{103BCDA0-E063-46AC-8028-64E78722ABA7}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2616B36E-38CE-4357-8AB5-8B3EE9B1C117}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2616B36E-38CE-4357-8AB5-8B3EE9B1C117}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{32B4B536-4443-42F0-9676-98373BE9114F}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{32B4B536-4443-42F0-9676-98373BE9114F}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{34EBD418-B8E6-4E86-89C4-33B72CF5663F}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{34EBD418-B8E6-4E86-89C4-33B72CF5663F}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{52338F65-A1C3-4CDC-B733-50051682B297}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{52338F65-A1C3-4CDC-B733-50051682B297}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{569A9538-86EC-44C3-8EE4-C68B165F2A75}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{569A9538-86EC-44C3-8EE4-C68B165F2A75}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5B17E626-7885-4FC3-A66A-73548A4F01FD}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5B17E626-7885-4FC3-A66A-73548A4F01FD}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{73919E2B-725C-4FAA-8473-45E063A3575F}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{73919E2B-725C-4FAA-8473-45E063A3575F}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7AFFF09F-386B-4F7A-B3E0-EC24C13893AA}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7AFFF09F-386B-4F7A-B3E0-EC24C13893AA}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{836612F0-1571-4C65-A4B7-58A39AA578EE}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{836612F0-1571-4C65-A4B7-58A39AA578EE}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{84F573D3-0F71-4768-978A-D35310E3FBA6}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{84F573D3-0F71-4768-978A-D35310E3FBA6}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8A3F2ADE-DEF2-4A50-866A-6B9357B5590F}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8A3F2ADE-DEF2-4A50-866A-6B9357B5590F}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9194237B-7B58-40B4-A739-184AD59531A2}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9194237B-7B58-40B4-A739-184AD59531A2}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A82F10CB-18B5-4EAC-AEF2-FA49CD565626}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BD6928A2-9F8F-4AA7-9A3A-FD4A271712EE}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BD6928A2-9F8F-4AA7-9A3A-FD4A271712EE}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CB99E420-8071-48F9-9567-4A53BE7569C4}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CB99E420-8071-48F9-9567-4A53BE7569C4}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DE4A4C48-2232-4CCB-AD61-490ACD29BA85}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DE4A4C48-2232-4CCB-AD61-490ACD29BA85}\setup.exe" -l0x40c /remove
    -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
    Acrobat.com-->C:\Program Files\Fichiers communs\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe -uninstall com.adobe.mauby 4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
    Acrobat.com-->MsiExec.exe /I{77DCDCE3-2DED-62F3-8154-05E745472D07}
    Ad-Aware SE Personal-->C:\PROGRA~1\Lavasoft\AD-AWA~1\UNWISE.EXE C:\PROGRA~1\Lavasoft\AD-AWA~1\INSTALL.LOG
    Adobe AIR-->MsiExec.exe /I{00203668-8170-44A0-BE44-B632FA4D780F}
    Adobe Bridge 1.0-->MsiExec.exe /I{AE3D38A6-13B1-40B3-9423-D1FA9982FB6A}
    Adobe Common File Installer-->MsiExec.exe /I{8EDBA74D-0686-4C99-BFDD-F894678E5101}
    Adobe Flash Player Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
    Adobe Help Center 1.0-->MsiExec.exe /I{E9787678-119F-4D52-B551-6739B2B22101}
    Adobe Photoshop 7.0.1-->C:\WINDOWS\ISUN040C.EXE -f"C:\Program Files\Adobe\Photoshop 7.0\Uninst.isu" -c"C:\Program Files\Adobe\Photoshop 7.0\Uninst.dll"
    Adobe Photoshop CS-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EFB21DE7-8C19-4A88-BB28-A766E16493BC}\setup.exe" -l0x40c
    Adobe Photoshop CS2-->msiexec /I {236BB7C4-4419-42FD-040C-2E257A25E34D}
    Adobe Premiere Pro 2.0-->msiexec /I {FA17A726-B229-4116-B793-A2AB1A4EAE2E}
    Adobe Reader 9-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A90000000001}
    Adobe Stock Photos 1.0-->MsiExec.exe /I{786C5747-0C40-4930-9AFE-113BCE553101}
    AGEIA PhysX v7.01.12-->MsiExec.exe /X{E2BE1618-AF5F-4F7D-8484-42E080EDF609}
    Alive MP4 Converter (version 2.0.6.9)-->"e:\MP4 Converter\unins000.exe"
    aMSN 0.97.2-->C:\Documents and Settings\jean marc\Bureau\aMSN\uninstall.exe
    AnalogX DXMan-->C:\Program Files\AnalogX\DXMan\dxmanu.exe
    Apple Software Update-->MsiExec.exe /I{02DFF6B1-1654-411C-8D7B-FD6052EF016F}
    Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
    Area 51(R)-->MsiExec.exe /X{B0CBCAE2-0671-487F-931E-266780EA8445}
    Audacity 1.2.6-->"e:\Program Files\Audacity\unins000.exe"
    Audio Editor Gold v8.4.4-->"e:\Program Files\Audio Editor Gold\unins000.exe"
    Auto-Mate Pro 3.0-->MsiExec.exe /I{7EAE12F2-CCB0-41BB-8B4E-32684F8B7818}
    Avid Codecs LE-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7BDDC00E-F2F3-418E-A57F-245B7815EF20}\SETUP.exe" -l0x9 -removeonly
    Avid Core Runtime-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{94EACECB-3D7C-4F31-99FD-39B95B9BA158}\SETUP.exe" -l0x9 -removeonly
    Avid DIO Runtime-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6823E209-3E0C-45A6-9B6C-BCEC0B7AB145}\SETUP.exe" -l0x9 -removeonly
    Avid EDL Manager-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BFD4B470-4B04-4A7C-B4A5-910AC94D43E8}\setup.exe" -l0x9 -removeonly
    Avid FilmScribe-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DFC89B6D-9302-4E63-84E9-BCD47633C4C5}\setup.exe" -l0x9 -removeonly
    Avid Log Exchange-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EE31FBE6-219F-4ABE-B9AE-7E0F9220416E}\setup.exe" -l0x9 -removeonly
    Avid Xpress Pro-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6FBFE41B-D08F-4A84-ACB6-16E78D7D58ED}\setup.exe" -l0x9 -removeonly
    AviSynth 2.5-->"C:\Program Files\AviSynth 2.5\Uninstall.exe"
    AVS DVDMenu Editor 1.2.1.19-->"C:\Program Files\Fichiers communs\AVSMedia\AVS DVDMenu Editor\unins000.exe"
    AVS TV Box 1.5.1-->"C:\Program Files\AVS4YOU\AVSTVBox\unins000.exe"
    AVS Video ReMaker 2.3-->"C:\Program Files\AVS4YOU\AVSVideoReMaker\unins000.exe"
    Azureus-->C:\Program Files\Azureus\Uninstall.exe
    Barre d'outils MSN-->C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\mtbs.exe c
    Bink and Smacker-->C:\PROGRA~1\RADVideo\UNWISE.EXE C:\PROGRA~1\RADVideo\INSTALL.LOG
    BS.Player FREE powered by AdVantage-->"C:\Program Files\Webteh\BSplayer\uninstall.exe"
    BSplayer-->"C:\Program Files\Webteh\BSplayer\uninstall.exe"
    Burn4Free CD and DVD-->"e:\Program Files\Burn4Free\uninstall.exe"
    Burn4Free Toolbar-->"C:\WINDOWS\Burn4Free_Toolbar_Uninstaller_6140.exe" _?=C:\Program Files\Burn4Free Toolbar
    CCleaner (remove only)-->"e:\Program Files\CCleaner\uninst.exe"
    CDBurnerXP Pro 3-->MsiExec.exe /I{896D642C-7125-44F0-AC49-A23ABF82209C}
    CDRIPMP3-->E:\CDRIPMP3\UNWISE.EXE E:\CDRIPMP3\INSTALL.LOG
    Celtx (1.0)-->C:\Program Files\Celtx\uninstall\helper.exe
    CloneCD-->"C:\Program Files\SlySoft\CloneCD\ccd-uninst.exe" /D="C:\Program Files\SlySoft\CloneCD"
    CloneDVD2-->"C:\Program Files\Elaborate Bytes\CloneDVD2\CloneDVD2-uninst.exe" /D="C:\Program Files\Elaborate Bytes\CloneDVD2"
    Combined Community Codec Pack 2008-01-24-->"e:\Program Files\Combined Community Codec Pack\unins000.exe"
    Compel Adaptec WinASPI-->"e:\Program Files\WinASPI\unins000.exe"
    ControlMK 0.232-->C:\Program Files\ControlMK\uninst.exe
    ConvertXtoDVD 3.3.4.107-->"e:\convertX\3\unins000.exe"
    Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
    Correctif Windows XP - KB873339-->C:\WINDOWS\$NtUninstallKB873339$\spuninst\spuninst.exe
    Correctif Windows XP - KB885250-->C:\WINDOWS\$NtUninstallKB885250$\spuninst\spuninst.exe
    Correctif Windows XP - KB885835-->C:\WINDOWS\$NtUninstallKB885835$\spuninst\spuninst.exe
    Correctif Windows XP - KB885836-->C:\WINDOWS\$NtUninstallKB885836$\spuninst\spuninst.exe
    Correctif Windows XP - KB886185-->C:\WINDOWS\$NtUninstallKB886185$\spuninst\spuninst.exe
    Correctif Windows XP - KB887472-->C:\WINDOWS\$NtUninstallKB887472$\spuninst\spuninst.exe
    Correctif Windows XP - KB887742-->C:\WINDOWS\$NtUninstallKB887742$\spuninst\spuninst.exe
    Correctif Windows XP - KB888113-->C:\WINDOWS\$NtUninstallKB888113$\spuninst\spuninst.exe
    Correctif Windows XP - KB888302-->C:\WINDOWS\$NtUninstallKB888302$\spuninst\spuninst.exe
    Correctif Windows XP - KB890859-->"C:\WINDOWS\$NtUninstallKB890859$\spuninst\spuninst.exe"
    Correctif Windows XP - KB891781-->C:\WINDOWS\$NtUninstallKB891781$\spuninst\spuninst.exe
    Creative MediaSource-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2E0C1913-886B-4C5C-8DAF-D1E649CE5FCC}\SETUP.EXE" -l0x40c /remove
    DH Driver Cleaner Professional Edition-->C:\Program Files\Driver Cleaner Pro\Uninstall.exe
    Digidesign Audio Drivers 7.3.1-->C:\Program Files\InstallShield Installation Information\{9F1D8E17-2AE6-4608-901D-42146D7D9C68}\setup.exe -runfromtemp -l0x0009 -removeonly
    DiscAPI (Studio 10)-->MsiExec.exe /X{A77F3C2D-50CC-4A29-A1FB-1E018BE4DCA2}
    DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
    DivX Content Uploader-->C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER
    DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
    DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
    DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
    Download Manager 2.3.6-->e:\Program Files\Download Manager\uninst.exe
    DVD Audio Extractor 4.2.2-->"e:\Program Files\DVD Audio Extractor\unins000.exe"
    DVD de bonus Studio 10-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6A012D9C-2E2E-405A-B87C-E909F5297C3F}\Setup.exe" -l0x40c UNINSTALL
    DVD Shrink 3.2-->"e:\Program Files\DVD Shrink\unins000.exe"
    DVDCoach Express 0.9.2-->"C:\Program Files\Kibisoft\DVDCoach Express\unins000.exe"
    DVDInfoPro-->MsiExec.exe /I{13B0919D-9115-428F-9B96-9D65C504559F}
    dvdSanta 4.00-->"E:\VSO\unins000.exe"
    Easy CD-DA Extractor 6-->C:\WINDOWS\iun6002.exe "C:\Easy CD-DA Extractor 6\irunin.ini"
    EAX4 Unified Redist-->MsiExec.exe /X{89661B04-C646-4412-B6D3-5E19F02F1F37}
    Enemy Territory: QUAKE Wars-->"E:\Program Files\Steam\steam.exe" steam://uninstall/10000
    Express Burn-->C:\Program Files\NCH Swift Sound\ExpressBurn\uninst.exe
    ffdshow-->"e:\Program Files\Matroska Pack\ffdshow\uninstall.exe"
    FileZilla (remove only)-->"C:\Program Files\FileZilla\uninstall.exe"
    Final Draft 7-->MsiExec.exe /I{78D62D17-D970-42DA-B8CF-5E5576293B33}
    FlashGet(JetCar)-->C:\PROGRA~1\FlashGet\UNWISE.EXE C:\PROGRA~1\FlashGet\INSTALL.LOG
    Free Mp3 Wma Converter V 1.6.2-->"C:\Program Files\Free Audio Pack\unins000.exe"
    Freeplayer-->C:\Program Files\Freeplayer\Uninstall.exe
    GameSpy Arcade-->E:\PROGRA~1\GAMESP~1\UNWISE.EXE E:\PROGRA~1\GAMESP~1\INSTALL.LOG
    Ghost Recon Advanced Warfighter-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EFC97089-04D6-42CE-A707-A343B4A7D2CD}\setup.exe" -l0x40c
    Google Video Uploader-->"e:\Program Files\Google Video\Uninstall.exe"
    Haali Media Splitter-->"e:\Program Files\Matroska Pack\haali\uninstall.exe"
    Half-Life 2: Episode One-->"E:\Program Files\Steam\steam.exe" steam://uninstall/380
    Half-Life 2: Episode Two-->"E:\Program Files\Steam\steam.exe" steam://uninstall/420
    Half-Life 2: Lost Coast-->"E:\Program Files\Steam\steam.exe" steam://uninstall/340
    Half-Life 2-->"E:\Program Files\Steam\steam.exe" steam://uninstall/220
    HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
    Hitman Pro-->"C:\Program Files\Hitman Pro\unins000.exe"
    InstaFinderK-->C:\Program Files\INSTAFINK\Uninstall.exe
    Intel(R) PROSafe for Wired Connections-->MsiExec.exe /I{36BD0774-6CD6-4FF9-A148-83CA09AC123E}
    Intel(R) PROSafe for Wired Connections-->MsiExec.exe /I{403EF592-953B-4794-BCEF-ECAB835C2095}
    IsoBuster 2.0-->"C:\Program Files\Smart Projects\IsoBuster\Uninst\unins000.exe"
    iTunes-->MsiExec.exe /I{885894A5-BA0A-460E-AB4C-96C5C9B2C5E2}
    J2SE Runtime Environment 5.0 Update 11-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150110}
    J2SE Runtime Environment 5.0 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}
    Kaspersky Internet Security 6.0-->MsiExec.exe /I{D0DCD54F-C829-41A5-AF32-71E632BB0E2C}
    Kaspersky Online Scanner-->C:\WINDOWS\system32\KASPER~1\KASPER~1\kavuninstall.exe
    Kazaa 3.2.4-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{064CA01C-E84A-4B0A-B577-6792717A2F04}\Setup.exe" -l0x9 --AddRemove
    K-Lite Codec Pack 3.6.5 Full-->"e:\Program Files\K-Lite Codec Pack\unins000.exe"
    Knights of the Force 2.0-->e:\KotF Jedi Academy Expansion Pack\..\uninstall.exe
    Lame ACM MP3 Codec-->C:\WINDOWS\system32\rundll32.exe setupapi,InstallHinfSection Remove_LameMP3 132 C:\WINDOWS\INF\LameACM.inf
    Language pack for Ad-Aware SE-->C:\PROGRA~1\Lavasoft\AD-AWA~1\Plugins\Langs\UNWISE.EXE C:\PROGRA~1\Lavasoft\AD-AWA~1\Plugins\Langs\INSTALL.LOG
    Le Centre de Contrôle de Licences de Syncrosoft-->C:\PROGRA~1\SYNCRO~1\UNWISE.EXE C:\PROGRA~1\SYNCRO~1\INSTALL.LOG
    Lecteur Windows Media 10-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
    Liquidator-->C:/WINDOWS/TMUninst.exe "-xe:/Liquidator/uninstal.dat"
    Logiciel des cartes réseau Intel(R) PRO v9.2.4.9-->C:\Program Files\Intel\DMIX\uninst\DxSetup.exe /x /qr /le C:\DOCUME~1\JEANMA~1\LOCALS~1\Temp\PROSetDX\DMIX\\DxUninst.log
    Magic ISO Maker v5.4 (build 0247)-->E:\MagicISO\UNWISE.EXE E:\MagicISO\INSTALL.LOG
    Malwarebytes' Anti-Malware-->"e:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
    Matroska Pack-->e:\Program Files\Matroska Pack\uninstall.exe
    Max Payne 2-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EFE1AB94-5466-4B6E-BE31-FF4C115FD25D}\Setup.exe" -l0x9
    Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
    Microsoft Office Professional Edition 2003-->MsiExec.exe /I{9011040C-6000-11D3-8CFE-0150048383C9}
    Microsoft Office Word Viewer 2003-->MsiExec.exe /I{9085040C-6000-11D3-8CFE-0150048383C9}
    Microsoft SQL Server Desktop Engine (SONY_MEDIAMGR)-->MsiExec.exe /X{E09B48B5-E141-427A-AB0C-D3605127224A}
    Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
    Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
    Mise à jour de sécurité pour Lecteur Windows Media (KB911564)-->"C:\WINDOWS\$NtUninstallKB911564$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)-->"C:\WINDOWS\$NtUninstallKB925398_WMP64$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB890046)-->"C:\WINDOWS\$NtUninstallKB890046$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB893756)-->"C:\WINDOWS\$NtUninstallKB893756$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896358)-->"C:\WINDOWS\$NtUninstallKB896358$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896422)-->"C:\WINDOWS\$NtUninstallKB896422$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896423)-->"C:\WINDOWS\$NtUninstallKB896423$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896424)-->"C:\WINDOWS\$NtUninstallKB896424$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896428)-->"C:\WINDOWS\$NtUninstallKB896428$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB899587)-->"C:\WINDOWS\$NtUninstallKB899587$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB899589)-->"C:\WINDOWS\$NtUninstallKB899589$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB899591)-->"C:\WINDOWS\$NtUninstallKB899591$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB900725)-->"C:\WINDOWS\$NtUninstallKB900725$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB901017)-->"C:\WINDOWS\$NtUninstallKB901017$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB901214)-->"C:\WINDOWS\$NtUninstallKB901214$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB902400)-->"C:\WINDOWS\$NtUninstallKB902400$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB904706)-->"C:\WINDOWS\$NtUninstallKB904706$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB905414)-->"C:\WINDOWS\$NtUninstallKB905414$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB905749)-->"C:\WINDOWS\$NtUninstallKB905749$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB905915)-->"C:\WINDOWS\$NtUninstallKB905915$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB908519)-->"C:\WINDOWS\$NtUninstallKB908519$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB908531)-->"C:\WINDOWS\$NtUninstallKB908531$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB911280)-->"C:\WINDOWS\$NtUninstallKB911280$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB911562)-->"C:\WINDOWS\$NtUninstallKB911562$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB911567)-->"C:\WINDOWS\$NtUninstallKB911567$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB911927)-->"C:\WINDOWS\$NtUninstallKB911927$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB912812)-->"C:\WINDOWS\$NtUninstallKB912812$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB912919)-->"C:\WINDOWS\$NtUninstallKB912919$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB913446)-->"C:\WINDOWS\$NtUninstallKB913446$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB913580)-->"C:\WINDOWS\$NtUninstallKB913580$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB914388)-->"C:\WINDOWS\$NtUninstallKB914388$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB914389)-->"C:\WINDOWS\$NtUninstallKB914389$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB916281)-->"C:\WINDOWS\$NtUninstallKB916281$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB917159)-->"C:\WINDOWS\$NtUninstallKB917159$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB917344)-->"C:\WINDOWS\$NtUninstallKB917344$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB917422)-->"C:\WINDOWS\$NtUninstallKB917422$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB917953)-->"C:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB918118)-->"C:\WINDOWS\$NtUninstallKB918118$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB918439)-->"C:\WINDOWS\$NtUninstallKB918439$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB918899)-->"C:\WINDOWS\$NtUninstallKB918899$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB919007)-->"C:\WINDOWS\$NtUninstallKB919007$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920213)-->"C:\WINDOWS\$NtUninstallKB920213$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920214)-->"C:\WINDOWS\$NtUninstallKB920214$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920670)-->"C:\WINDOWS\$NtUninstallKB920670$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920683)-->"C:\WINDOWS\$NtUninstallKB920683$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920685)-->"C:\WINDOWS\$NtUninstallKB920685$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB921398)-->"C:\WINDOWS\$NtUninstallKB921398$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB921503)-->"C:\WINDOWS\$NtUninstallKB921503$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB921883)-->"C:\WINDOWS\$NtUninstallKB921883$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB922616)-->"C:\WINDOWS\$NtUninstallKB922616$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB922760)-->"C:\WINDOWS\$NtUninstallKB922760$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB922819)-->"C:\WINDOWS\$NtUninstallKB922819$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923191)-->"C:\WINDOWS\$NtUninstallKB923191$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923414)-->"C:\WINDOWS\$NtUninstallKB923414$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923689)-->"C:\WINDOWS\$NtUninstallKB923689$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923694)-->"C:\WINDOWS\$NtUninstallKB923694$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923980)-->"C:\WINDOWS\$NtUninstallKB923980$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB924191)-->"C:\WINDOWS\$NtUninstallKB924191$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB924270)-->"C:\WINDOWS\$NtUninstallKB924270$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB924496)-->"C:\WINDOWS\$NtUninstallKB924496$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB924667)-->"C:\WINDOWS\$NtUninstallKB924667$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB925454)-->"C:\WINDOWS\$NtUninstallKB925454$\spuninst\spunins
    a c 295 8 Sécurité
    24 Février 2009 18:51:24

    De jolies infections en effet :D 

    L'auteur d'UsbFix ayant retiré son programme (UsbFix), je prends la responsabilité de te le faire utiliser. Merci aux autres de ne pas utiliser le lien de téléchargement donné.

  • Télécharge UsbFix sur ton Bureau.
  • Lance l'installation avec les paramètres par défaut.
  • Branche tes sources de données externes à ton PC (clé USB, disque dur externe, carte SD, etc...) sans les ouvrir.
  • Double-clique sur le raccourci UsbFix sur ton Bureau.
  • Choisis l'option 1 (Nettoyage).
  • Le PC va redémarrer.
  • Après redémarrage, poste le rapport UsbFix.txt

    Note : le rapport UsbFix.txt est sauvegardé à la racine du disque.

    (Si le Bureau ne réapparaît pas, presse Ctrl+Alt+Suppr, onglet "Fichier", "Nouvelle tâche", tape explorer.exe et valide)
    24 Février 2009 19:09:21

    Merci pour ton aide.
    Malheureusement ce soft na pas reglé mon problème je commence a me demander si ma carte graphique n'est pas tout bêtement en fin de course.
    a c 295 8 Sécurité
    24 Février 2009 19:12:04

    Citation :
    si ma carte graphique n'est pas tout bêtement en fin de course.

    ---> C'est ce que je me disais au début mais ton PC a des infections.

    Si tu as le rapport d'UsbFix, poste-le.

  • Télécharge Malwarebytes' Anti-Malware (MBAM) sur ton Bureau.
  • Double-clique sur le fichier téléchargé pour lancer le processus d'installation.
  • Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.
  • Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.
  • Sélectionne Exécuter un examen rapide.
  • Clique sur Rechercher.
  • L'analyse démarre.
  • A la fin de l'analyse, un message s'affiche :
    Citation :
    L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.

  • Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
  • Ferme tes navigateurs.
  • Si des malwares ont été détectés, clique sur Afficher les résultats.
  • Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.
  • MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.
    24 Février 2009 20:51:19

    voila pour le rapport
    Malwarebytes' Anti-Malware 1.34
    Version de la base de données: 1799
    Windows 5.1.2600 Service Pack 2

    24/02/2009 20:51:02
    mbam-log-2009-02-24 (20-51-02).txt

    Type de recherche: Examen rapide
    Eléments examinés: 66464
    Temps écoulé: 3 minute(s), 36 second(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 1
    Clé(s) du Registre infectée(s): 9
    Valeur(s) du Registre infectée(s): 1
    Elément(s) de données du Registre infecté(s): 1
    Dossier(s) infecté(s): 7
    Fichier(s) infecté(s): 22

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    C:\Program Files\AdVantage\{A89AED22-9133-424c-88E7-C8235C5FF302}\components\MeMedia_FF.dll (Adware.Advantage) -> Delete on reboot.

    Clé(s) du Registre infectée(s):
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\oreans32 (Rootkit.Agent) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\oreans32 (Rootkit.Agent) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\oreans32 (Rootkit.Agent) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\oreans32 (Rootkit.Agent) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\TypeLib\{dabf362d-d442-4402-9208-ca9ed70dd01e} (Adware.Advantage) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\Interface\{5ac3a9ef-c0f8-41d4-b4e2-b7cebb794151} (Adware.Advantage) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\Interface\{862def42-89aa-49fa-ae1f-8a84b1b08a17} (Adware.Advantage) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\Interface\{f6e4845d-1d13-4bc0-942d-b9191524cc48} (Adware.Advantage) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\CLSID\{602d9049-b4ac-4a25-bf75-a9b54d747cba} (Adware.Advantage) -> Quarantined and deleted successfully.

    Valeur(s) du Registre infectée(s):
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\explorer.exe (Trojan.Agent) -> Quarantined and deleted successfully.

    Elément(s) de données du Registre infecté(s):
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SecurityProviders (Broken.SecurityProviders) -> Bad: (msapsspc.dll schannel.dll digest.dll msnsspc.dll) Good: (msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll) -> Quarantined and deleted successfully.

    Dossier(s) infecté(s):
    C:\Program Files\Advantage (Adware.Advantage) -> Delete on reboot.
    C:\Program Files\Advantage\{A89AED22-9133-424c-88E7-C8235C5FF302} (Adware.Advantage) -> Delete on reboot.
    C:\Program Files\Advantage\{A89AED22-9133-424c-88E7-C8235C5FF302}\chrome (Adware.Advantage) -> Quarantined and deleted successfully.
    C:\Program Files\Advantage\{A89AED22-9133-424c-88E7-C8235C5FF302}\chrome\content (Adware.Advantage) -> Quarantined and deleted successfully.
    C:\Program Files\Advantage\{A89AED22-9133-424c-88E7-C8235C5FF302}\chrome\locale (Adware.Advantage) -> Quarantined and deleted successfully.
    C:\Program Files\Advantage\{A89AED22-9133-424c-88E7-C8235C5FF302}\chrome\locale\en-US (Adware.Advantage) -> Quarantined and deleted successfully.
    C:\Program Files\Advantage\{A89AED22-9133-424c-88E7-C8235C5FF302}\components (Adware.Advantage) -> Delete on reboot.

    Fichier(s) infecté(s):
    C:\WINDOWS\system32\drivers\oreans32.sys (Rootkit.Agent) -> Quarantined and deleted successfully.
    C:\Program Files\Advantage\AdVantage.db (Adware.Advantage) -> Quarantined and deleted successfully.
    C:\Program Files\Advantage\AdVantage.htm (Adware.Advantage) -> Quarantined and deleted successfully.
    C:\Program Files\Advantage\AdVUninst.exe (Adware.Advantage) -> Quarantined and deleted successfully.
    C:\Program Files\Advantage\ffext.mod (Adware.Advantage) -> Quarantined and deleted successfully.
    C:\Program Files\Advantage\TR.dll (Adware.Advantage) -> Quarantined and deleted successfully.
    C:\Program Files\Advantage\user.db (Adware.Advantage) -> Quarantined and deleted successfully.
    C:\Program Files\Advantage\{A89AED22-9133-424c-88E7-C8235C5FF302}\chrome.manifest (Adware.Advantage) -> Quarantined and deleted successfully.
    C:\Program Files\Advantage\{A89AED22-9133-424c-88E7-C8235C5FF302}\install.js (Adware.Advantage) -> Quarantined and deleted successfully.
    C:\Program Files\Advantage\{A89AED22-9133-424c-88E7-C8235C5FF302}\install.rdf (Adware.Advantage) -> Quarantined and deleted successfully.
    C:\Program Files\Advantage\{A89AED22-9133-424c-88E7-C8235C5FF302}\vssver2.scc (Adware.Advantage) -> Quarantined and deleted successfully.
    C:\Program Files\Advantage\{A89AED22-9133-424c-88E7-C8235C5FF302}\chrome\content\advantage.png (Adware.Advantage) -> Quarantined and deleted successfully.
    C:\Program Files\Advantage\{A89AED22-9133-424c-88E7-C8235C5FF302}\chrome\content\contents.rdf (Adware.Advantage) -> Quarantined and deleted successfully.
    C:\Program Files\Advantage\{A89AED22-9133-424c-88E7-C8235C5FF302}\chrome\content\overlay.js (Adware.Advantage) -> Quarantined and deleted successfully.
    C:\Program Files\Advantage\{A89AED22-9133-424c-88E7-C8235C5FF302}\chrome\content\overlay.xul (Adware.Advantage) -> Quarantined and deleted successfully.
    C:\Program Files\Advantage\{A89AED22-9133-424c-88E7-C8235C5FF302}\chrome\content\vssver2.scc (Adware.Advantage) -> Quarantined and deleted successfully.
    C:\Program Files\Advantage\{A89AED22-9133-424c-88E7-C8235C5FF302}\chrome\locale\en-US\overlay.dtd (Adware.Advantage) -> Quarantined and deleted successfully.
    C:\Program Files\Advantage\{A89AED22-9133-424c-88E7-C8235C5FF302}\chrome\locale\en-US\vssver2.scc (Adware.Advantage) -> Quarantined and deleted successfully.
    C:\Program Files\Advantage\{A89AED22-9133-424c-88E7-C8235C5FF302}\components\IMeMedia_FF.xpt (Adware.Advantage) -> Quarantined and deleted successfully.
    C:\Program Files\Advantage\{A89AED22-9133-424c-88E7-C8235C5FF302}\components\MeMedia_FF.dll (Adware.Advantage) -> Delete on reboot.
    C:\WINDOWS\smdat32a.sys (Rootkit.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\smdat32m.sys (Rootkit.Agent) -> Quarantined and deleted successfully.
    a c 295 8 Sécurité
    24 Février 2009 20:53:07

  • Relance MBAM, va dans Quarantaine et supprime tout.

    Ton affichage va mieux ?
    24 Février 2009 20:55:49

    Ok c'est fait , mon affichage bug toujours autant.
    a c 295 8 Sécurité
    24 Février 2009 20:57:24

    Désinstalle le pilote nVidia et regarde si la carte graphique bogue quand le pilote n'est pas installé.
    24 Février 2009 21:08:09

    Merci , c'est ca ! Je viens de désinstaller mes drivesr via le panneau de config et magie ! je n'est plus le problème ! Est que ma version des drivers avait un dysfonctionnement ?
    J'ai installé la version 182.06_geforce_winxp_32bit_international_whql , est ce que tu me conseil de réinstaller même version pour ma Geforce 6500 gt ?
    a c 295 8 Sécurité
    24 Février 2009 21:10:18

    Tu peux tester un pilote moins récent ou réessayer celui-là.

    Sans pilote, la carte graphique est moins sollicitée donc je pense encore à un dysfonctionnement.
    24 Février 2009 21:19:07

    Effectivement le probléme reviens après la réinstalle des ces drivers. Quel version de driver solliciterai le moins ma carte selon vous ?
    a c 295 8 Sécurité
    24 Février 2009 21:22:02

    Je ne sais pas.

    Par rapport aux infections : refais un scan RSIT et poste le rapport log.
    24 Février 2009 21:29:00

    log :

    Logfile of random's system information tool 1.05 (written by random/random)
    Run by jean marc at 2009-02-24 21:27:29
    Microsoft Windows XP Professionnel Service Pack 2
    System drive C: has 3 GB (9%) free of 31 GB
    Total RAM: 1535 MB (65% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 21:27:33, on 24/02/2009
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\WINDOWS\system32\wscntfy.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Documents and Settings\jean marc\Bureau\RSIT.exe
    C:\Program Files\Trend Micro\HijackThis\jean marc.exe

    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\PCHEALTH\HELPCTR\System\panels\blank.htm
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\PCHEALTH\HELPCTR\System\panels\blank.htm
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.EXE /auto
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O20 - AppInit_DLLs: fipghy.dll
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

    --
    End of file - 2298 bytes

    ======Scheduled tasks folder======

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "MSConfig"=C:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.EXE [2004-08-19 160768]
    "avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-02-05 81000]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
    C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdVantage]
    C:\Program Files\AdVantage\AdVantage.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AGEIA PhysX SysTray]
    C:\Program Files\AGEIA Technologies\bin\TrayIcon.exe [2007-01-05 357928]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AltnetPointsManager]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Anti-Blaxx Manager]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Archive]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ares]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BearShare]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BMd76ebd67]
    C:\WINDOWS\system32\rnksvmln.dll []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CloneCDTray]
    C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe [2006-09-28 57344]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative Detector]
    C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe [2004-12-02 102400]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative MediaSource Go]
    C:\Program Files\Creative\MediaSource\Go\CTCMSGo.exe [2004-11-30 135168]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
    C:\WINDOWS\system32\ctfmon.exe [2004-08-19 15360]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTSysVol]
    C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe [2005-02-15 57344]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\d45d8efb]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
    C:\Program Files\DAEMON Tools\daemon.exe [2006-11-12 157592]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DigidesignMMERefresh]
    C:\Program Files\Digidesign\Drivers\MMERefresh.exe [2006-12-09 61440]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EXPLORER.EXE]
    C:\WINDOWS\EXPLORER.EXE [2007-06-13 1037312]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\funktitle]
    C:\DOCUME~1\JEANMA~1\APPLIC~1\POLLAC~1\Kind Team Trans.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GreyHtmIdleDelete]
    C:\Documents and Settings\All Users\Application Data\loud poke grey htm\DefyPlay.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igndlm.exe]
    e:\Program Files\Download Manager\DLM.exe [2007-03-05 1103480]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
    C:\Program Files\iTunes\iTunesHelper.exe [2006-09-12 229952]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KAVPersonal50]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KAZAA]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
    C:\WINDOWS\system32\dumprep 0 -k []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\kis]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe [2006-03-24 139367]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lphca68j0er6a]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
    C:\Program Files\Messenger\msmsgs.exe [2004-10-13 1694208]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
    C:\Program Files\MSN Messenger\msnmsgr.exe [2007-01-19 5674352]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
    C:\WINDOWS\system32\NvCpl.dll []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
    C:\WINDOWS\system32\NvMcTray.dll []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
    nwiz.exe /install []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\outlook]
    C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE [2003-07-15 196152]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P17Helper]
    Rundll32 P17.dll []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P2P Networking]
    C:\WINDOWS\system32\P2P Networking\P2P Networking.exe /AUTOSTART []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pando]
    C:\Program Files\Pando Networks\Pando\Pando.exe [2007-06-27 4044104]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PinnacleDriverCheck]
    C:\WINDOWS\system32\\PSDrvCheck.exe [2004-03-11 406016]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
    C:\Program Files\PowerISO\PWRISOVM.EXE [2006-01-31 180224]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
    C:\Program Files\QuickTime\QTTask.exe [2008-05-27 413696]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\rfagent]
    C:\Program Files\RFA\rfagent.exe [2007-12-04 916800]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Run]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SemanticInsight]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Shareaza]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpySheriff]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
    E:\Program Files\Steam\Steam.exe [2008-10-23 1410296]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
    C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe [2006-12-15 75520]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SVCHOST.EXE]
    C:\WINDOWS\system32\svchost.exe [2004-08-19 14336]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tbon]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
    C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2006-03-23 180269]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TopSearch]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdReg]
    C:\WINDOWS\UpdReg.EXE [2000-05-11 90112]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UserFaultCheck]
    C:\WINDOWS\system32\dumprep 0 -u []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\webHancer Agent]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\webHancer Survey Companion]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebRebates]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WhenUSave]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
    C:\Program Files\Winamp\winampa.exe [2006-06-21 35328]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows installer]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\wsctf.exe]
    wsctf.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Gamma Loader.lnk]
    C:\PROGRA~1\FICHIE~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2000-08-24 110592]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Reader Speed Launch.lnk]
    C:\PROGRA~1\Adobe\READER~1.0\Reader\READER~1.EXE [2008-06-12 34672]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^Adobe Gamma.lnk]
    C:\PROGRA~1\FICHIE~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2000-08-24 110592]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^ctfmon.exe]
    C:\Documents and Settings\jean marc\Menu Démarrer\Programmes\Démarrage\ctfmon.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^MagicDisc.lnk]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^Morpheus.lnk]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 2.3.lnk]
    C:\PROGRA~1\OPENOF~1.3\program\QUICKS~1.EXE [2007-08-17 393216]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
    "FLEXnet Licensing Service"=3
    "Bonjour Service"=2
    "WebrootSpySweeperService"=2
    "usnjsvc"=3
    "ose"=3
    "LicCtrlService"=2
    "IDriverT"=3
    "DigiRefresh"=2
    "AVP"=2
    "AvidStartup"=2
    "AvidSDMService"=2

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "AppInit_DLLS"="fipghy.dll"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
    C:\WINDOWS\system32\klogon.dll [2006-03-24 28778]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WRNotifier]
    C:\WINDOWS\system32\WRLogonNTF.dll [2007-03-01 233024]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    "{C5F43BEF-CE2F-46D8-AFE6-A647BACD1F09}"=C:\WINDOWS\system32\Bitkv0.dll []

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\tdssserv.sys]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WebrootSpySweeperService]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\tdssserv.sys]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WebrootSpySweeperService]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "NoDispScrSavPage"=0
    ""=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=145
    "NoDriveAutoRun"=FFFFFFFF

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\Pinnacle\Studio 10\programs\RM.exe"="C:\Program Files\Pinnacle\Studio 10\programs\RM.exe:*:Enabled:Render Manager"
    "C:\Program Files\Pinnacle\Studio 10\programs\Studio.exe"="C:\Program Files\Pinnacle\Studio 10\programs\Studio.exe:*:Enabled:Studio"
    "C:\Program Files\Pinnacle\Studio 10\programs\PMSRegisterFile.exe"="C:\Program Files\Pinnacle\Studio 10\programs\PMSRegisterFile.exe:*:Enabled:p MSRegisterFile"
    "C:\Program Files\Pinnacle\Studio 10\programs\umi.exe"="C:\Program Files\Pinnacle\Studio 10\programs\umi.exe:*:Enabled:umi"
    "C:\Program Files\Azureus\Azureus.exe"="C:\Program Files\Azureus\Azureus.exe:*:Enabled:Azureus"
    "E:\doom3\Doom3Ded.exe"="E:\doom3\Doom3Ded.exe:*:D isabled:D OOM 3"
    "E:\Call of Duty 2\CoD2MP_s.exe"="E:\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
    "E:\Kazaa\kazaa.exe"="E:\Kazaa\kazaa.exe:*:Enabled:Kazaa"
    "E:\Program Files\Kazaa\kazaa.exe"="E:\Program Files\Kazaa\kazaa.exe:*:Enabled:Kazaa"
    "E:\Program Files\truc\kazaa.exe"="E:\Program Files\truc\kazaa.exe:*:Enabled:Kazaa Media Desktop"
    "C:\WINDOWS\system32\P2P Networking\P2P Networking.exe"="C:\WINDOWS\system32\P2P Networking\P2P Networking.exe:*:Enabled:p 2P Networking"
    "C:\Program Files\Kazaa\kazaa.exe"="C:\Program Files\Kazaa\kazaa.exe:*:Enabled:Kazaa Media Desktop"
    "C:\Program Files\WebRebates\WebRebates.exe"="C:\Program Files\WebRebates\WebRebates.exe:*:D isabled:WebRebates"
    "C:\WINDOWS\system32\javaw.exe"="C:\WINDOWS\system32\javaw.exe:*:Enabled:Java(TM) 2 Platform Standard Edition binary"
    "E:\Blubster\Blubster.exe"="E:\Blubster\Blubster.exe:*:Enabled:MP2P servent main executable"
    "C:\StubInstaller.exe"="C:\StubInstaller.exe:*:Enabled:LimeWire swarmed installer"
    "C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "E:\kaza\kazaa.exe"="E:\kaza\kazaa.exe:*:Enabled:Kazaa Media Desktop"
    "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
    "C:\BoxOffice\__MACOSX\LimeWire\LimeWire.exe"="C:\BoxOffice\__MACOSX\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "E:\Shareaza\Shareaza.exe"="E:\Shareaza\Shareaza.exe:*:Enabled:Shareaza"
    "E:\truc\LimeWire\LimeWire.exe"="E:\truc\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "E:\LimeWire\LimeWire.exe"="E:\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "E:\Battlefield 2142\BF2142.exe"="E:\Battlefield 2142\BF2142.exe:*:Enabled:Battlefield 2"
    "E:\zike\Java - Hawai - Lame 192kbps - Guxfer.rar\LimeWire\LimeWire.exe"="E:\zike\Java - Hawai - Lame 192kbps - Guxfer.rar\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Mozilla Firefox"
    "C:\Program Files\Opera\Opera.exe"="C:\Program Files\Opera\Opera.exe:*:Enabled:o pera Internet Browser"
    "E:\movie madgic\Movie Magic\MM Scheduling 3.6 - 3.7\Scheduling and Budgeting -- Crack\EPROXY.EXE"="E:\movie madgic\Movie Magic\MM Scheduling 3.6 - 3.7\Scheduling and Budgeting -- Crack\EPROXY.EXE:*:Enabled:EPROXY"
    "E:\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe"="E:\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (CLI)"
    "E:\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe"="E:\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (SRV)"
    "E:\eMule\emule.exe"="E:\eMule\emule.exe:*:Enabled:eMule"
    "C:\Program Files\Freeplayer\vlc\vlc.exe"="C:\Program Files\Freeplayer\vlc\vlc.exe:*:Enabled:VLC media player"
    "C:\Program Files\aMSN\bin\wish.exe"="C:\Program Files\aMSN\bin\wish.exe:*:Enabled:Wish Application"
    "C:\Program Files\Pando Networks\Pando\pando.exe"="C:\Program Files\Pando Networks\Pando\pando.exe:*:Enabled:p ando"
    "E:\lime wire\LimeWire\LimeWire.exe"="E:\lime wire\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
    "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
    "C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
    "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
    "E:\Program Files\Steam\Steam.exe"="E:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
    "E:\Program Files\Steam\steamapps\anungunrama227\team fortress 2\hl2.exe"="E:\Program Files\Steam\steamapps\anungunrama227\team fortress 2\hl2.exe:*:Enabled:hl2"
    "E:\Program Files\GameSpy Arcade\Aphex.exe"="E:\Program Files\GameSpy Arcade\Aphex.exe:*:Enabled:GameSpy Arcade"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

    ======File associations======

    .reg - open - regedit.exe "%1" %*
    .scr - open - "%1" %*

    ======List of files/folders created in the last 1 months======

    2009-02-24 19:13:42 ----A---- C:\WINDOWS\system32\aswBoot.exe
    2009-02-24 19:13:39 ----D---- C:\Program Files\Alwil Software
    2009-02-24 18:59:53 ----HD---- C:\autorun.inf
    2009-02-24 18:56:15 ----A---- C:\UsbFix.txt
    2009-02-24 18:54:19 ----D---- C:\Program Files\UsbFix
    2009-02-24 18:46:51 ----D---- C:\rsit
    2009-02-24 16:59:06 ----D---- C:\Program Files\RFA
    2009-02-24 16:39:56 ----D---- C:\WINDOWS\NV28802884.TMP
    2009-02-21 08:16:19 ----RSH---- C:\2fiy.bat
    2009-02-15 08:05:09 ----D---- C:\WINDOWS\NV6441684.TMP
    2009-02-15 08:01:43 ----D---- C:\WINDOWS\NV784572.TMP
    2009-02-15 08:00:48 ----D---- C:\NVIDIA
    2009-02-15 07:43:20 ----D---- C:\WINDOWS\NV13401936.TMP
    2009-02-15 07:37:49 ----D---- C:\WINDOWS\NV568584.TMP
    2009-02-15 07:30:58 ----D---- C:\WINDOWS\NV18561836.TMP
    2009-02-15 07:28:00 ----D---- C:\WINDOWS\NV8041080.TMP
    2009-02-15 07:26:19 ----D---- C:\Program Files\Driver Cleaner Pro
    2009-02-15 07:21:03 ----D---- C:\WINDOWS\NV18241820.TMP
    2009-02-15 07:20:52 ----A---- C:\WINDOWS\system32\OLD18.tmp
    2009-02-15 07:20:52 ----A---- C:\WINDOWS\system32\OLD17.tmp
    2009-02-15 07:20:51 ----A---- C:\WINDOWS\system32\OLD16.tmp
    2009-02-15 07:17:03 ----D---- C:\WINDOWS\NV35763580.TMP
    2009-02-15 07:16:57 ----A---- C:\WINDOWS\system32\SET9.tmp
    2009-02-15 07:02:27 ----D---- C:\WINDOWS\NV14361504.TMP
    2009-02-15 06:56:17 ----D---- C:\WINDOWS\NV11001288.TMP
    2009-02-15 06:37:13 ----D---- C:\WINDOWS\NV36403644.TMP
    2009-02-15 06:29:13 ----D---- C:\WINDOWS\NV12122992.TMP
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\SET62.tmp
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\SET38.tmp
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\SET31.tmp
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\SET2D.tmp
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvcuvid.dll
    2009-01-31 16:31:02 ----RASH---- C:\a2h2.com

    ======List of files/folders modified in the last 1 months======

    2009-02-24 21:26:18 ----D---- C:\Program Files\Mozilla Firefox
    2009-02-24 21:26:13 ----D---- C:\WINDOWS\Temp
    2009-02-24 21:25:47 ----D---- C:\WINDOWS\system32
    2009-02-24 21:25:47 ----D---- C:\WINDOWS\Help
    2009-02-24 21:24:47 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-02-24 21:24:29 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-02-24 21:24:28 ----HD---- C:\WINDOWS\inf
    2009-02-24 21:24:26 ----D---- C:\WINDOWS
    2009-02-24 21:20:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-02-24 21:17:01 ----ASH---- C:\boot.ini
    2009-02-24 21:17:01 ----A---- C:\WINDOWS\win.ini
    2009-02-24 21:17:01 ----A---- C:\WINDOWS\system.ini
    2009-02-24 21:14:22 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-02-24 21:14:14 ----D---- C:\WINDOWS\system32\drivers
    2009-02-24 21:14:13 ----D---- C:\WINDOWS\system32\CatRoot
    2009-02-24 21:02:32 ----D---- C:\WINDOWS\Prefetch
    2009-02-24 20:53:05 ----D---- C:\WINDOWS\system32\config
    2009-02-24 20:52:36 ----RD---- C:\Program Files
    2009-02-24 19:02:02 ----RSHD---- C:\Recycled
    2009-02-24 18:32:47 ----D---- C:\Documents and Settings\jean marc\Application Data\Azureus
    2009-02-24 03:14:53 ----D---- C:\Program Files\Celtx
    2009-02-21 18:26:12 ----D---- C:\Documents and Settings\jean marc\Application Data\Adobe
    2009-02-21 18:26:12 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
    2009-02-09 14:21:58 ----D---- C:\Documents and Settings\jean marc\Application Data\Vso
    2009-02-09 13:18:00 ----N---- C:\WINDOWS\system32\nv4_disp.dll
    2009-01-27 13:53:25 ----D---- C:\Documents and Settings\jean marc\Application Data\OpenOffice.org2

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-02-05 26944]
    R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-02-05 114768]
    R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-02-05 51376]
    R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2004-08-19 40320]
    R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-19 14848]
    R1 PCLEPCI;PCLEPCI; \??\C:\WINDOWS\system32\drivers\pclepci.sys []
    R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2006-01-31 25900]
    R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
    R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-08-28 12032]
    R2 ACEDRV06;ACEDRV06; \??\C:\WINDOWS\system32\drivers\ACEDRV06.sys []
    R2 ACEDRV07;ACEDRV07; \??\C:\WINDOWS\system32\drivers\ACEDRV07.sys []
    R2 Aspi32;Aspi32; C:\WINDOWS\System32\drivers\aspi32.sys [1999-09-10 25244]
    R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]
    R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-02-05 94032]
    R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2007-02-27 271360]
    R2 DigiNet;Digidesign Ethernet Support; C:\WINDOWS\system32\DRIVERS\diginet.sys [2006-12-08 11776]
    R2 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2006-12-26 15440]
    R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2007-02-27 18048]
    R2 Sentinel;Sentinel; C:\WINDOWS\System32\Drivers\SENTINEL.SYS [2006-03-14 90176]
    R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2004-08-03 60800]
    R3 ASAPIW2K;ASAPIW2K; C:\WINDOWS\System32\Drivers\ASAPIW2K.sys [2005-02-23 11264]
    R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-02-05 23152]
    R3 BENDER;Pinnacle DV/AV Capture; C:\WINDOWS\system32\drivers\bender.sys [2005-08-22 200320]
    R3 ctsfm2k;Creative SoundFont Management Device Driver; C:\WINDOWS\System32\DRIVERS\ctsfm2k.sys [2005-01-10 138752]
    R3 E1000;Intel(R) PRO/1000 Network Connection Driver; C:\WINDOWS\System32\DRIVERS\e1000325.sys [2004-11-22 176128]
    R3 ElbyCDFL;ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2006-12-26 34760]
    R3 ElbyDelay;ElbyDelay; C:\WINDOWS\System32\Drivers\ElbyDelay.sys [2006-12-14 11984]
    R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2006-07-14 14448]
    R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2001-08-28 9600]
    R3 MarvinBus;Pinnacle Marvin Bus; C:\WINDOWS\system32\DRIVERS\MarvinBus.sys [2005-06-02 171008]
    R3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\WINDOWS\system32\DRIVERS\mcdbus.sys [2006-09-22 92160]
    R3 NCHSSVAD;SoundTap Recorder; C:\WINDOWS\system32\drivers\nchssvad.sys [2008-05-07 26112]
    R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2004-08-03 61824]
    R3 ossrv;Creative OS Services Driver; C:\WINDOWS\System32\DRIVERS\ctoss2k.sys [2005-01-10 106496]
    R3 P17;SB Live! 24-bit; C:\WINDOWS\system32\drivers\P17.sys [2007-06-15 1127936]
    R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2005-03-31 47360]
    R3 SSKBFD;Webroot Spy Sweeper Keylogger Shield Keyboard Filter; C:\WINDOWS\System32\Drivers\sskbfd.sys [2007-03-01 21056]
    R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2004-08-03 57600]
    R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2004-08-03 20480]
    S3 61883;Pilote d'unité 61883; C:\WINDOWS\system32\DRIVERS\61883.sys [2004-08-03 48128]
    S3 aknr07u9;aknr07u9; C:\WINDOWS\system32\drivers\aknr07u9.sys []
    S3 Avc;Périphérique AVC; C:\WINDOWS\system32\DRIVERS\avc.sys [2004-08-03 38912]
    S3 AVCSTRM;AVC Streaming Filter Driver; C:\WINDOWS\system32\DRIVERS\avcstrm.sys [2004-08-03 13696]
    S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
    S3 dtscsi;dtscsi; C:\WINDOWS\System32\Drivers\dtscsi.sys []
    S3 KLIF;KLIF; C:\WINDOWS\system32\drivers\KLIF.sys []
    S3 mouhid;Pilote HID de souris; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-23 12288]
    S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\system32\DRIVERS\msdv.sys [2004-08-03 51328]
    S3 MSTAPE;Microsoft AV/C Tape Subunit Device; C:\WINDOWS\system32\DRIVERS\mstape.sys [2004-08-03 49024]
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
    S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
    S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
    S3 Shrvddms;Shrvddms; C:\WINDOWS\system32\drivers\Shrvddms.sys []
    S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
    S3 ssm_bus;SAMSUNG Mobile USB Device II 1.0 driver (WDM); C:\WINDOWS\system32\DRIVERS\ssm_bus.sys [2005-08-30 58320]
    S3 ssm_mdfl;SAMSUNG Mobile USB Modem II 1.0 Filter; C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys [2005-08-30 8336]
    S3 ssm_mdm;SAMSUNG Mobile USB Modem II 1.0 Drivers; C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys [2005-08-30 94000]
    S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
    S3 SynasUSB;SynasUSB; C:\WINDOWS\system32\drivers\SynasUSB.sys [2007-10-24 23288]
    S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
    S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2004-08-03 25856]
    S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
    S3 vaxscsi;vaxscsi; C:\WINDOWS\System32\Drivers\vaxscsi.sys [2006-06-29 223128]
    S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2005-01-28 18944]
    S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
    S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-02-05 18752]
    R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-02-05 138680]
    R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
    R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-02-05 254040]
    R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-02-05 352920]
    S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2007-05-18 72704]
    S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
    S3 MSSQL$SONY_MEDIAMGR;MSSQL$SONY_MEDIAMGR; E:\Sony Vegas\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe [2002-12-17 7520337]
    S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2002-12-17 66112]
    S3 SQLAgent$SONY_MEDIAMGR;SQLAgent$SONY_MEDIAMGR; E:\Sony Vegas\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE [2002-12-17 311872]
    S4 AvidSDMService;Avid SDM Service; C:\WINDOWS\system32\AvidSDMService.exe [2007-06-15 49152]
    S4 AvidStartup;Avid Startup; C:\WINDOWS\system32\AvidStartup.exe [2007-06-15 1536000]
    S4 AVP;Kaspersky Internet Security 6.0; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe [2006-03-24 139367]
    S4 Creative Service for CDROM Access;Creative Service for CDROM Access; C:\WINDOWS\System32\CTsvcCDA.EXE [1999-12-13 44032]
    S4 DigiRefresh;Digidesign MME Refresh Service; C:\Program Files\Digidesign\Drivers\MMERefresh.exe [2006-12-09 61440]
    S4 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
    S4 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2006-09-12 451136]
    S4 LicCtrlService;LicCtrl Service; C:\WINDOWS\runservice.exe [2007-02-15 2560]
    S4 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
    S4 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2007-10-15 66872]
    S4 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
    S4 WebrootSpySweeperService;Moteur Webroot Spy Sweeper; C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe [2007-03-01 3379264]

    -----------------EOF-----------------

    a c 295 8 Sécurité
    24 Février 2009 21:36:34

    Tu peux me donner ce rapport : C:\UsbFix.txt
    24 Février 2009 21:40:23

    ------------- UsbFix V2.414.3 ---------------

    * User : jean marc - ROCK
    * Outils mis a jours le 18/01/2009 par Chiquitine29 et Chimay8
    * Recherche effectuée à 18:56:15 le 24/02/2009
    * Windows Xp - Internet Explorer 6.0.2900.2180


    --------------- [ Processus actifs ] ----------------


    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\csrss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\logonui.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\userinit.exe
    C:\WINDOWS\system32\EXPLORER.EXE
    C:\WINDOWS\Explorer.EXE

    --------------- [ Informations lecteurs ] ----------------

    C: - Lecteur fixe

    D: - Lecteur de CD-ROM

    E: - Lecteur fixe

    G: - Lecteur de CD-ROM

    H: - Lecteur de CD-ROM


    +- Contenu de l'autorun : C:\autorun.inf

    [AutoRun]
    ;ask1sl02liKlpqjKwpLii408rj4ZariLiKAFr5fjadLo2Lk
    open=jeorels.cmd
    ;9asj23k5qdmsldawa44LsowsedZaIsoD44K1k33Cl0DkwlAiA8Kl7kakdjLjKkKK38wffiJdKl343iD9wA
    shell\open\Command=jeorels.cmd


    +- Contenu de l'autorun : D:\autorun.inf

    [autorun]
    icon = Cubase Studio 4 for Windows\Additional Content\Installer Data\Cubase.ico
    open = Autorun.exe


    +- Contenu de l'autorun : E:\autorun.inf

    [AutoRun]
    ;ask1sl02liKlpqjKwpLii408rj4ZariLiKAFr5fjadLo2Lk
    open=jeorels.cmd
    ;9asj23k5qdmsldawa44LsowsedZaIsoD44K1k33Cl0DkwlAiA8Kl7kakdjLjKkKK38wffiJdKl343iD9wA
    shell\open\Command=jeorels.cmd


    --------------- [ Lecteur C ] ----------------

    C: - Lecteur fixe


    +- Listing des fichiers présents :

    [08/02/2009 21:59][-r-hs----] C:\1utbfd.bat
    [08/02/2009 21:59][-r-hs----] C:\2fiy.bat
    [08/02/2009 21:59][-r-hs----] C:\8.bat
    [08/02/2009 21:59][-r-hs----] C:\abk.bat
    [08/02/2009 21:59][-r-hs----] C:\AUTOEXEC.BAT
    [08/02/2009 21:59][-r-hs----] C:\i.bat
    [08/02/2009 21:59][-r-hs----] C:\ij.bat
    [08/02/2009 21:59][-r-hs----] C:\m2nl.bat
    [08/02/2009 21:59][-r-hs----] C:\ncyrf.bat
    [16/11/2008 15:12][-r-hs----] C:\0w.com
    [16/11/2008 15:12][-r-hs----] C:\2u.com
    [16/11/2008 15:12][-r-hs----] C:\a2h2.com
    [16/11/2008 15:12][-r-hs----] C:\hl80c6b1.com
    [16/11/2008 15:12][-r-hs----] C:\NTDETECT.COM
    [16/11/2008 15:12][-r-hs----] C:\o1.com
    [16/11/2008 15:12][-r-hs----] C:\pook.com
    [16/11/2008 15:12][-r-hs----] C:\qphdin.com
    [16/11/2008 15:12][-r-hs----] C:\sq.com
    [16/11/2008 15:12][-r-hs----] C:\ur0.com
    [16/11/2008 15:12][-r-hs----] C:\w2.com
    [16/11/2008 15:12][-r-hs----] C:\w98.com
    [16/11/2008 15:12][-r-hs----] C:\whi.com
    [02/12/2008 14:08][-r-hs----] C:\e.cmd
    [02/12/2008 14:08][-r-hs----] C:\j60osk9.cmd
    [02/12/2008 14:08][-r-hs----] C:\jeorels.cmd
    [02/12/2008 14:08][-r-hs----] C:\uvsqfgwd.cmd
    [10/02/2009 13:19][-r-hs----] C:\2aaxaiy.exe
    [10/02/2009 13:19][-r-hs----] C:\C3CU_v2.exe
    [10/02/2009 13:19][-r-hs----] C:\Firefox Setup 3.0.1.exe
    [10/02/2009 13:19][-r-hs----] C:\gy.exe
    [10/02/2009 13:19][-r-hs----] C:\hyetn1i.exe
    [10/02/2009 13:19][-r-hs----] C:\k6wkwon2.exe
    [10/02/2009 13:19][-r-hs----] C:\lky.exe
    [10/02/2009 13:19][-r-hs----] C:\m9ma.exe
    [10/02/2009 13:19][-r-hs----] C:\opgde.exe
    [10/02/2009 13:19][-r-hs----] C:\StubInstaller.exe
    [10/02/2009 13:19][-r-hs----] C:\x2csvg.exe
    [24/02/2009 18:34][--ahs----] C:\boot.ini
    [24/02/2009 11:55][-r-hs----] C:\autorun.inf
    [11/03/2006 21:21][--a------] C:\adorage-protocol.txt
    [11/03/2006 21:21][--a------] C:\dvdlog.txt
    [11/03/2006 21:21][--a------] C:\GF_Excpt.txt
    [11/03/2006 21:21][--a------] C:\graph.txt
    [11/03/2006 21:21][--a------] C:\mpeg.txt
    [11/03/2006 21:21][--a------] C:\rapport.txt
    [11/03/2006 21:21][--a------] C:\temp.txt
    [11/03/2006 21:21][--a------] C:\UsbFix.txt
    [11/03/2006 21:21][--a------] C:\xml2.txt
    [11/03/2006 19:33][--a------] C:\CONFIG.SYS
    [11/03/2006 19:33][--a------] C:\IO.SYS
    [11/03/2006 19:33][--a------] C:\MSDOS.SYS
    [11/03/2006 19:33][--a------] C:\pagefile.sys

    --------------- [ Lecteur D ] ----------------

    D: - Lecteur de CD-ROM


    +- Listing des fichiers présents :

    [26/01/2007 10:35][-r-h-----] D:\Autorun.exe
    [09/03/2007 11:34][-r-h-----] D:\Desktop.ini
    [09/03/2007 11:34][-r-h-----] D:\Autorun.inf

    --------------- [ Lecteur E ] ----------------

    E: - Lecteur fixe


    +- Listing des fichiers présents :

    [08/02/2009 21:59][-r-hs----] E:\1utbfd.bat
    [08/02/2009 21:59][-r-hs----] E:\2fiy.bat
    [08/02/2009 21:59][-r-hs----] E:\8.bat
    [08/02/2009 21:59][-r-hs----] E:\abk.bat
    [08/02/2009 21:59][-r-hs----] E:\i.bat
    [08/02/2009 21:59][-r-hs----] E:\ij.bat
    [08/02/2009 21:59][-r-hs----] E:\m0vnonh.bat
    [08/02/2009 21:59][-r-hs----] E:\m2nl.bat
    [08/02/2009 21:59][-r-hs----] E:\ncyrf.bat
    [16/11/2008 15:12][-r-hs----] E:\0w.com
    [16/11/2008 15:12][-r-hs----] E:\2u.com
    [16/11/2008 15:12][-r-hs----] E:\a2h2.com
    [16/11/2008 15:12][-r-hs----] E:\hl80c6b1.com
    [16/11/2008 15:12][-r-hs----] E:\o1.com
    [16/11/2008 15:12][-r-hs----] E:\pook.com
    [16/11/2008 15:12][-r-hs----] E:\qphdin.com
    [16/11/2008 15:12][-r-hs----] E:\sq.com
    [16/11/2008 15:12][-r-hs----] E:\ur0.com
    [16/11/2008 15:12][-r-hs----] E:\w2.com
    [16/11/2008 15:12][-r-hs----] E:\w98.com
    [16/11/2008 15:12][-r-hs----] E:\whi.com
    [19/02/2009 14:36][-r-hs----] E:\cv22.cmd
    [19/02/2009 14:36][-r-hs----] E:\e.cmd
    [19/02/2009 14:36][-r-hs----] E:\j60osk9.cmd
    [19/02/2009 14:36][-r-hs----] E:\jeorels.cmd
    [19/02/2009 14:36][-r-hs----] E:\nq0cq.cmd
    [19/02/2009 14:36][-r-hs----] E:\rcukd.cmd
    [19/02/2009 14:36][-r-hs----] E:\uvsqfgwd.cmd
    [19/02/2009 14:36][-r-hs----] E:\yannh.cmd
    [10/02/2009 13:19][-r-hs----] E:\2aaxaiy.exe
    [10/02/2009 13:19][-r-hs----] E:\gy.exe
    [10/02/2009 13:19][-r-hs----] E:\hyetn1i.exe
    [10/02/2009 13:19][-r-hs----] E:\k6wkwon2.exe
    [10/02/2009 13:19][-r-hs----] E:\lky.exe
    [10/02/2009 13:19][-r-hs----] E:\m9ma.exe
    [10/02/2009 13:19][-r-hs----] E:\opgde.exe
    [10/02/2009 13:19][-r-hs----] E:\uninstall.exe
    [10/02/2009 13:19][-r-hs----] E:\x2csvg.exe
    [24/02/2009 11:55][-r-hs----] E:\autorun.inf

    --------------- [ Lecteur G ] ----------------

    G: - Lecteur de CD-ROM


    +- Listing des fichiers présents :


    --------------- [ Lecteur H ] ----------------

    H: - Lecteur de CD-ROM


    +- Listing des fichiers présents :

    [05/04/2007 09:39][-r-------] H:\Setup.exe

    --------------- [ Registre / Startup ] ----------------

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
    "Userinit"="userinit.exe,EXPLORER.EXE"

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Search Page"="http://home.microsoft.com/access/allinone.asp"
    "Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&..."

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
    wsctf.exe=wsctf.exe
    EXPLORER.EXE=EXPLORER.EXE

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
    MSConfig=C:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.EXE /auto
    NvCplDaemon=RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\optionalcomponents=
    <NO NAME>=
    HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\optionalcomponents\IMAIL=
    Installed=1
    <NO NAME>=
    HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\optionalcomponents\MAPI=
    Installed=1
    NoChange=1
    <NO NAME>=
    HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\optionalcomponents\MSFS=
    Installed=1
    <NO NAME>=

    --------------- [ Registre / Mountpoint2 ] ----------------

    Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E\Shell\AutoRun\command
    Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0d6859f1-2392-11dc-b7f1-0015f22d81da}\Shell\AutoRun\command
    Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2e297a8a-e915-11da-9fe2-0015f22d81da}\Shell\AutoRun\command
    Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5b2ea1d6-c090-11dc-8333-0015f22d81da}\Shell\AutoRun\command
    Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{65db29e4-9d44-11db-bf5b-0015f22d81da}\Shell\AutoRun\command
    Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9de0afd1-4e1c-11dd-b540-0015f22d81da}\Shell\AutoRun\command
    Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9de0afd1-4e1c-11dd-b540-0015f22d81da}\Shell\open\Command
    Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b6b79167-c83a-11d9-8341-0015f22d81da}\Shell\AutoRun\command
    Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c5e13896-f467-11da-9fed-0015f22d81da}\Shell\AutoRun\command
    Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c5e1d37d-bc07-11d9-833f-0015f22d81da}\Shell\AutoRun\command
    Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{df53e7e5-077c-11db-9ff5-0015f22d81da}\Shell\AutoRun\command
    Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{dfd6f1eb-9234-11dc-b824-0015f22d81da}\Shell\AutoRun\command
    Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f172ae28-c2be-11d9-833f-0015f22d81da}\Shell\AutoRun\command

    --------------- [ Nettoyage des disques ] ----------------

    Supprimé ! - [08/12/2008 18:55][-r-hs----] C:\WINDOWS\system32\kamsoft.exe
    Supprimé ! - [20/12/2008 13:41][-r-hs----] C:\WINDOWS\system32\vamsoft.exe
    Supprimé ! - [24/02/2009 06:46][-r-hs----] C:\WINDOWS\system32\olhrwef.exe
    Supprimé ! - [13/06/2007 14:22][--a------] C:\WINDOWS\system32\afmain0.dll
    Echec de la supression !! - [13/06/2007 14:22] C:\WINDOWS\system32\afmain1.dll
    Echec de la supression !! - [13/06/2007 14:22] C:\WINDOWS\system32\Bitkv0.dll
    Supprimé ! - [13/06/2007 14:22][--a------] C:\WINDOWS\system32\Bitkv1.dll
    Supprimé ! - [09/11/2008 09:51][---------] C:\WINDOWS\system32\ckvo0.dll
    Supprimé ! - [09/11/2008 09:52][-r-hs----] C:\WINDOWS\system32\ckvo1.dll
    Supprimé ! - [08/12/2008 18:55][---------] C:\WINDOWS\system32\gasretyw0.dll
    Supprimé ! - [08/12/2008 18:55][-r-hs----] C:\WINDOWS\system32\gasretyw1.dll
    Supprimé ! - [23/02/2009 06:35][---------] C:\WINDOWS\system32\nmdfgds0.dll
    Supprimé ! - [24/02/2009 06:46][-r-hs----] C:\WINDOWS\system32\nmdfgds1.dll
    Supprimé ! - [17/02/2009 17:54][-r-hs----] C:\WINDOWS\system32\nmdfgds2.dll
    Supprimé ! - [20/12/2008 13:41][-r-hs----] C:\WINDOWS\system32\vbsdfe0.dll
    Supprimé ! - [20/12/2008 12:40][-r-hs----] C:\WINDOWS\system32\vbsdfe1.dll
    Supprimé ! - C:\DOCUME~1\JEANMA~1\LOCALS~1\Temp\ConvertXtoDVD 3.3.4.107+Keygen-LnDL [mininova].torrent
    Supprimé ! - C:\DOCUME~1\JEANMA~1\LOCALS~1\Temp\Registry First Aid Platinum 6.1.0 Build 1546 + Keygen [mininova].torrent
    Supprimé ! - C:\DOCUME~1\JEANMA~1\LOCALS~1\Temp\SIntf32.dll
    Supprimé ! - C:\DOCUME~1\JEANMA~1\LOCALS~1\Temp\nsaAA.tmp\System.dll
    C:\autorun.inf ~> fichier appelé : "C:\jeorels.cmd" ( présent ! )
    Supprimé ! - C:\jeorels.cmd
    E:\autorun.inf ~> fichier appelé : "E:\jeorels.cmd" ( présent ! )
    Supprimé ! - E:\jeorels.cmd
    Supprimé ! - [16/11/2008 15:12][-r-hs----] C:\0w.com
    Supprimé ! - [06/12/2008 17:33][-r-hs----] C:\2u.com
    Supprimé ! - [24/11/2008 14:28][-r-hs----] C:\abk.bat
    Supprimé ! - [26/11/2008 16:45][-r-hs----] C:\ij.bat
    Supprimé ! - [11/07/2008 13:41][-r-hs----] C:\k6wkwon2.exe
    Supprimé ! - [14/11/2008 06:46][-r-hs----] C:\lky.exe
    Supprimé ! - [27/11/2008 14:51][-r-hs----] C:\m2nl.bat
    Supprimé ! - [08/12/2008 18:55][-r-hs----] C:\m9ma.exe
    Supprimé ! - [03/12/2008 15:53][-r-hs----] C:\ncyrf.bat
    Supprimé ! - [29/11/2008 06:09][-r-hs----] C:\o1.com
    Supprimé ! - [05/06/2008 14:56][-r-hs----] C:\Recycled\ctfmon.exe
    Supprimé ! - [09/11/2008 09:52][-r-hs----] C:\sq.com
    Supprimé ! - [10/11/2008 13:51][-r-hs----] C:\whi.com
    Supprimé ! - [28/01/2009 18:26][-r-hs----] C:\8.bat
    Supprimé ! - [29/11/2008 15:32][-r-hs----] C:\i.bat
    Supprimé ! - [02/12/2008 14:08][-r-hs----] C:\e.cmd
    Supprimé ! - [24/02/2009 11:55][-r-hs----] C:\autorun.inf
    Supprimé ! - [24/03/2005 11:44][dr-hs----] C:\Recycled\Recycled
    Echec de la supression !! - [26/01/2007 10:35] D:\autorun.exe
    Echec de la supression !! - [09/03/2007 11:34] D:\autorun.inf
    Echec de la supression !! - [09/03/2007 11:34] D:\autorun.inf
    Supprimé ! - [16/11/2008 15:12][-r-hs----] E:\0w.com
    Supprimé ! - [06/12/2008 17:33][-r-hs----] E:\2u.com
    Supprimé ! - [24/11/2008 14:28][-r-hs----] E:\abk.bat
    Supprimé ! - [26/11/2008 16:45][-r-hs----] E:\ij.bat
    Supprimé ! - [11/07/2008 13:41][-r-hs----] E:\k6wkwon2.exe
    Supprimé ! - [14/11/2008 06:46][-r-hs----] E:\lky.exe
    Supprimé ! - [27/11/2008 14:51][-r-hs----] E:\m2nl.bat
    Supprimé ! - [08/12/2008 18:55][-r-hs----] E:\m9ma.exe
    Supprimé ! - [03/12/2008 15:53][-r-hs----] E:\ncyrf.bat
    Supprimé ! - [07/11/2008 09:55][-r-hs----] E:\nq0cq.cmd
    Supprimé ! - [29/11/2008 06:09][-r-hs----] E:\o1.com
    Supprimé ! - [04/12/2008 16:46][-r-hs----] E:\rcukd.cmd
    Supprimé ! - [21/12/2007 14:23][-r-hs----] E:\Recycled\ctfmon.exe
    Supprimé ! - [09/11/2008 09:52][-r-hs----] E:\sq.com
    Supprimé ! - [10/11/2008 13:51][-r-hs----] E:\whi.com
    Supprimé ! - [17/11/2008 06:19][-r-hs----] E:\yannh.cmd
    Supprimé ! - [28/01/2009 18:26][-r-hs----] E:\8.bat
    Supprimé ! - [29/11/2008 15:32][-r-hs----] E:\i.bat
    Supprimé ! - [02/12/2008 14:08][-r-hs----] E:\e.cmd
    Supprimé ! - [24/02/2009 11:55][-r-hs----] E:\autorun.inf
    Echec de la supression !! - [05/04/2007 09:39] H:\Setup.exe

    --------------- [ Resumé ] ----------------

    -> /!\ Le resultat doit etre [http://www.virustotal.com/fr/ interprété] par un spécialiste /!\

    [08/02/2009 21:59][-r-hs----] C:\1utbfd.bat
    [08/02/2009 21:59][-r-hs----] C:\2fiy.bat
    [08/02/2009 21:59][-r-hs----] C:\AUTOEXEC.BAT
    [31/01/2009 16:43][-rahs----] C:\a2h2.com
    [31/01/2009 16:43][-rahs----] C:\hl80c6b1.com
    [31/01/2009 16:43][-rahs----] C:\NTDETECT.COM
    [31/01/2009 16:43][-rahs----] C:\pook.com
    [31/01/2009 16:43][-rahs----] C:\qphdin.com
    [31/01/2009 16:43][-rahs----] C:\ur0.com
    [31/01/2009 16:43][-rahs----] C:\w2.com
    [31/01/2009 16:43][-rahs----] C:\w98.com
    [19/01/2009 06:29][-r-hs----] C:\j60osk9.cmd
    [19/01/2009 06:29][-r-hs----] C:\uvsqfgwd.cmd
    [10/02/2009 13:19][-r-hs----] C:\2aaxaiy.exe
    [10/02/2009 13:19][-r-hs----] C:\C3CU_v2.exe
    [10/02/2009 13:19][-r-hs----] C:\Firefox Setup 3.0.1.exe
    [10/02/2009 13:19][-r-hs----] C:\gy.exe
    [10/02/2009 13:19][-r-hs----] C:\hyetn1i.exe
    [10/02/2009 13:19][-r-hs----] C:\opgde.exe
    [10/02/2009 13:19][-r-hs----] C:\StubInstaller.exe
    [10/02/2009 13:19][-r-hs----] C:\x2csvg.exe
    [24/02/2009 18:34][--ahs----] C:\boot.ini
    [26/01/2007 10:35][-r-h-----] D:\Autorun.exe
    [09/03/2007 11:34][-r-h-----] D:\Desktop.ini
    [09/03/2007 11:34][-r-h-----] D:\Autorun.inf
    [08/02/2009 21:59][-r-hs----] E:\1utbfd.bat
    [08/02/2009 21:59][-r-hs----] E:\2fiy.bat
    [08/02/2009 21:59][-r-hs----] E:\m0vnonh.bat
    [31/01/2009 16:43][-r-hs----] E:\a2h2.com
    [31/01/2009 16:43][-r-hs----] E:\hl80c6b1.com
    [31/01/2009 16:43][-r-hs----] E:\pook.com
    [31/01/2009 16:43][-r-hs----] E:\qphdin.com
    [31/01/2009 16:43][-r-hs----] E:\ur0.com
    [31/01/2009 16:43][-r-hs----] E:\w2.com
    [31/01/2009 16:43][-r-hs----] E:\w98.com
    [19/02/2009 14:36][-r-hs----] E:\cv22.cmd
    [19/02/2009 14:36][-r-hs----] E:\j60osk9.cmd
    [19/02/2009 14:36][-r-hs----] E:\uvsqfgwd.cmd
    [10/02/2009 13:19][-r-hs----] E:\2aaxaiy.exe
    [10/02/2009 13:19][-r-hs----] E:\gy.exe
    [10/02/2009 13:19][-r-hs----] E:\hyetn1i.exe
    [10/02/2009 13:19][-r-hs----] E:\opgde.exe
    [10/02/2009 13:19][-r-hs----] E:\uninstall.exe
    [10/02/2009 13:19][-r-hs----] E:\x2csvg.exe
    [05/04/2007 09:39][-r-------] H:\Setup.exe

    --------------- [ Vaccination ] ----------------

    C:\autorun.inf -> Dossier autorun.inf crée par UsbFix !
    E:\autorun.inf -> Dossier autorun.inf crée par UsbFix !

    --------------- ! Fin du rapport ! ----------------
    a c 295 8 Sécurité
    24 Février 2009 22:29:19

    1/

  • Télécharge et installe CCleaner (N'installe pas la Yahoo Toolbar).
  • Lance-le. Va dans Options puis Avancé et décoche la case Effacer uniquement les fichiers etc....
  • Va dans Nettoyeur, choisis Analyse. Une fois terminé, lance le nettoyage.
  • Ensuite, choisis Registre, puis Chercher des erreurs. Une fois terminé, répare toutes les erreurs (Sauvegarde la base de registre).


    2/

  • Télécharge OTMoveIt3 (OldTimer) sur ton Bureau.
  • Double-clique sur OTMoveIt3.exe pour le lancer.
  • Copie (Ctrl+C) le texte suivant ci-dessous :

    :processes
    explorer.exe

    :files
    E:\1utbfd.bat
    E:\2fiy.bat
    E:\m0vnonh.bat
    E:\a2h2.com
    E:\hl80c6b1.com
    E:\pook.com
    E:\qphdin.com
    E:\ur0.com
    E:\w2.com
    E:\w98.com
    E:\cv22.cmd
    E:\j60osk9.cmd
    E:\uvsqfgwd.cmd
    E:\2aaxaiy.exe
    E:\gy.exe
    E:\hyetn1i.exe
    E:\opgde.exe
    E:\x2csvg.exe
    C:\pook.com
    C:\qphdin.com
    C:\ur0.com
    C:\w2.com
    C:\w98.com
    C:\j60osk9.cmd
    C:\uvsqfgwd.cmd
    C:\2aaxaiy.exe
    C:\gy.exe
    C:\hyetn1i.exe
    C:\opgde.exe
    C:\x2csvg.exe
    C:\1utbfd.bat
    C:\2fiy.bat
    C:\a2h2.com
    C:\hl80c6b1.com

    :commands
    [purity]
    [emptytemp]
    [reboot]


  • Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
  • Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.

    ---> Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
    Accepte en cliquant sur YES.

  • Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
    ---> Le nom du rapport correspond au moment de sa création : date_heure.log
    25 Février 2009 08:07:29

    voila pour le rapport OTmoveIt

    ========= PROCESSES ==========
    Process explorer.exe killed successfully.
    ========== FILES ==========
    File/Folder E:\1utbfd.bat not found.
    File/Folder E:\2fiy.bat not found.
    File/Folder E:\m0vnonh.bat not found.
    File/Folder E:\a2h2.com not found.
    File/Folder E:\hl80c6b1.com not found.
    File/Folder E:\pook.com not found.
    File/Folder E:\qphdin.com not found.
    File/Folder E:\ur0.com not found.
    File/Folder E:\w2.com not found.
    File/Folder E:\w98.com not found.
    File/Folder E:\cv22.cmd not found.
    File/Folder E:\j60osk9.cmd not found.
    File/Folder E:\uvsqfgwd.cmd not found.
    File/Folder E:\2aaxaiy.exe not found.
    File/Folder E:\gy.exe not found.
    File/Folder E:\hyetn1i.exe not found.
    File/Folder E:\opgde.exe not found.
    File/Folder E:\x2csvg.exe not found.
    File/Folder C:\pook.com not found.
    File/Folder C:\qphdin.com not found.
    File/Folder C:\ur0.com not found.
    File/Folder C:\w2.com not found.
    File/Folder C:\w98.com not found.
    File/Folder C:\j60osk9.cmd not found.
    File/Folder C:\uvsqfgwd.cmd not found.
    File/Folder C:\2aaxaiy.exe not found.
    File/Folder C:\gy.exe not found.
    File/Folder C:\hyetn1i.exe not found.
    File/Folder C:\opgde.exe not found.
    File/Folder C:\x2csvg.exe not found.
    File/Folder C:\1utbfd.bat not found.
    File/Folder C:\2fiy.bat not found.
    File/Folder C:\a2h2.com not found.
    File/Folder C:\hl80c6b1.com not found.
    ========== COMMANDS ==========
    File delete failed. C:\DOCUME~1\JEANMA~1\LOCALS~1\Temp\etilqs_1qEGbBgRUczcp9VtC8UW scheduled to be deleted on reboot.
    File delete failed. C:\DOCUME~1\JEANMA~1\LOCALS~1\Temp\~DFE056.tmp scheduled to be deleted on reboot.
    User's Temp folder emptied.
    User's Temporary Internet Files folder emptied.
    User's Internet Explorer cache folder emptied.
    File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Historique\History.IE5\index.dat scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
    Local Service Temp folder emptied.
    File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
    Local Service Temporary Internet Files folder emptied.
    File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_5f8.dat scheduled to be deleted on reboot.
    File delete failed. C:\WINDOWS\temp\~DFF0E4.tmp scheduled to be deleted on reboot.
    Windows Temp folder emptied.
    Java cache emptied.
    File delete failed. C:\Documents and Settings\jean marc\Local Settings\Application Data\Mozilla\Firefox\Profiles\pxafflw7.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\jean marc\Local Settings\Application Data\Mozilla\Firefox\Profiles\pxafflw7.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\jean marc\Local Settings\Application Data\Mozilla\Firefox\Profiles\pxafflw7.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\jean marc\Local Settings\Application Data\Mozilla\Firefox\Profiles\pxafflw7.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\jean marc\Local Settings\Application Data\Mozilla\Firefox\Profiles\pxafflw7.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\jean marc\Local Settings\Application Data\Mozilla\Firefox\Profiles\pxafflw7.default\XUL.mfl scheduled to be deleted on reboot.
    FireFox cache emptied.
    Opera cache emptied.
    Temp folders emptied.

    OTMoveIt3 by OldTimer - Version 1.0.8.0 log created on 02252009_074118
    25 Février 2009 09:56:08

    Pour revenir a mon problème d affichage, j’ai désinstaller proprement tous mes driver a l’aide de driver cleaner, j’ai démonter ma carte graphique pour la nettoyer et vérifier qu’elle tait bien branché. J’ai ensuite réinstallé les derniers drivers et le problème subsiste toujours.
    25 Février 2009 09:57:20

    Ah oui j 'ai fait une petite erreur dans le premier message, ma carte est bien un Geforce series 6 mais c'est une 6800 gt par une 6500.
    25 Février 2009 11:23:13

    Je viens de remarquer que le problème disparait en retirant l'accélération matérielle.
    a c 295 8 Sécurité
    25 Février 2009 11:43:07

    Oui, c'est pas bête le coup de l'accélération matérielle.

  • Refais un scan RSIT et poste le rapport log.
    25 Février 2009 12:10:37

    Logfile of random's system information tool 1.05 (written by random/random)
    Run by jean marc at 2009-02-25 12:09:43
    Microsoft Windows XP Professionnel Service Pack 2
    System drive C: has 1 GB (4%) free of 31 GB
    Total RAM: 1535 MB (65% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 12:09:52, on 25/02/2009
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\WINDOWS\system32\wscntfy.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Documents and Settings\jean marc\Bureau\aMSN\bin\wish.exe
    C:\Documents and Settings\jean marc\Bureau\RSIT.exe
    C:\Program Files\Trend Micro\HijackThis\jean marc.exe

    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\PCHEALTH\HELPCTR\System\panels\blank.htm
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\PCHEALTH\HELPCTR\System\panels\blank.htm
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.EXE /auto
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O20 - AppInit_DLLs: fipghy.dll
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

    --
    End of file - 2840 bytes

    ======Scheduled tasks folder======

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "MSConfig"=C:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.EXE [2004-08-19 160768]
    "avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-02-05 81000]
    "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-02-09 13680640]
    "nwiz"=nwiz.exe /install []
    "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-02-09 86016]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
    C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdVantage]
    C:\Program Files\AdVantage\AdVantage.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AGEIA PhysX SysTray]
    C:\Program Files\AGEIA Technologies\bin\TrayIcon.exe [2007-01-05 357928]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AltnetPointsManager]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Anti-Blaxx Manager]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Archive]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ares]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BearShare]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BMd76ebd67]
    C:\WINDOWS\system32\rnksvmln.dll []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CloneCDTray]
    C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe [2006-09-28 57344]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative Detector]
    C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe [2004-12-02 102400]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative MediaSource Go]
    C:\Program Files\Creative\MediaSource\Go\CTCMSGo.exe [2004-11-30 135168]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
    C:\WINDOWS\system32\ctfmon.exe [2004-08-19 15360]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTSysVol]
    C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe [2005-02-15 57344]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\d45d8efb]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
    C:\Program Files\DAEMON Tools\daemon.exe [2006-11-12 157592]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DigidesignMMERefresh]
    C:\Program Files\Digidesign\Drivers\MMERefresh.exe [2006-12-09 61440]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EXPLORER.EXE]
    C:\WINDOWS\EXPLORER.EXE [2007-06-13 1037312]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\funktitle]
    C:\DOCUME~1\JEANMA~1\APPLIC~1\POLLAC~1\Kind Team Trans.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GreyHtmIdleDelete]
    C:\Documents and Settings\All Users\Application Data\loud poke grey htm\DefyPlay.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igndlm.exe]
    e:\Program Files\Download Manager\DLM.exe [2007-03-05 1103480]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
    C:\Program Files\iTunes\iTunesHelper.exe [2006-09-12 229952]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KAVPersonal50]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KAZAA]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
    C:\WINDOWS\system32\dumprep 0 -k []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\kis]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe [2006-03-24 139367]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lphca68j0er6a]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
    C:\Program Files\Messenger\msmsgs.exe [2004-10-13 1694208]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
    C:\Program Files\MSN Messenger\msnmsgr.exe [2007-01-19 5674352]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
    C:\WINDOWS\system32\NvCpl.dll [2009-02-09 13680640]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
    C:\WINDOWS\system32\NvMcTray.dll [2009-02-09 86016]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
    nwiz.exe /install []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\outlook]
    C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE [2003-07-15 196152]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P17Helper]
    Rundll32 P17.dll []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P2P Networking]
    C:\WINDOWS\system32\P2P Networking\P2P Networking.exe /AUTOSTART []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pando]
    C:\Program Files\Pando Networks\Pando\Pando.exe [2007-06-27 4044104]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PinnacleDriverCheck]
    C:\WINDOWS\system32\\PSDrvCheck.exe [2004-03-11 406016]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
    C:\Program Files\PowerISO\PWRISOVM.EXE [2006-01-31 180224]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
    C:\Program Files\QuickTime\QTTask.exe [2008-05-27 413696]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\rfagent]
    C:\Program Files\RFA\rfagent.exe [2007-12-04 916800]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Run]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SemanticInsight]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Shareaza]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpySheriff]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
    E:\Program Files\Steam\Steam.exe [2008-10-23 1410296]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
    C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe [2006-12-15 75520]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SVCHOST.EXE]
    C:\WINDOWS\system32\svchost.exe [2004-08-19 14336]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tbon]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
    C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2006-03-23 180269]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TopSearch]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdReg]
    C:\WINDOWS\UpdReg.EXE [2000-05-11 90112]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UserFaultCheck]
    C:\WINDOWS\system32\dumprep 0 -u []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\webHancer Agent]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\webHancer Survey Companion]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebRebates]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WhenUSave]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
    C:\Program Files\Winamp\winampa.exe [2006-06-21 35328]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows installer]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\wsctf.exe]
    wsctf.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Gamma Loader.lnk]
    C:\PROGRA~1\FICHIE~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2000-08-24 110592]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Reader Speed Launch.lnk]
    C:\PROGRA~1\Adobe\READER~1.0\Reader\READER~1.EXE [2008-06-12 34672]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^Adobe Gamma.lnk]
    C:\PROGRA~1\FICHIE~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2000-08-24 110592]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^ctfmon.exe]
    C:\Documents and Settings\jean marc\Menu Démarrer\Programmes\Démarrage\ctfmon.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^MagicDisc.lnk]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^Morpheus.lnk]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 2.3.lnk]
    C:\PROGRA~1\OPENOF~1.3\program\QUICKS~1.EXE [2007-08-17 393216]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
    "FLEXnet Licensing Service"=3
    "Bonjour Service"=2
    "WebrootSpySweeperService"=2
    "usnjsvc"=3
    "ose"=3
    "LicCtrlService"=2
    "IDriverT"=3
    "DigiRefresh"=2
    "AVP"=2
    "AvidStartup"=2
    "AvidSDMService"=2

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "AppInit_DLLS"="fipghy.dll"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
    C:\WINDOWS\system32\klogon.dll [2006-03-24 28778]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WRNotifier]
    C:\WINDOWS\system32\WRLogonNTF.dll [2007-03-01 233024]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    "{C5F43BEF-CE2F-46D8-AFE6-A647BACD1F09}"= []

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\tdssserv.sys]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WebrootSpySweeperService]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\tdssserv.sys]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WebrootSpySweeperService]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "NoDispScrSavPage"=0
    ""=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=145
    "NoDriveAutoRun"=FFFFFFFF

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\Pinnacle\Studio 10\programs\RM.exe"="C:\Program Files\Pinnacle\Studio 10\programs\RM.exe:*:Enabled:Render Manager"
    "C:\Program Files\Pinnacle\Studio 10\programs\Studio.exe"="C:\Program Files\Pinnacle\Studio 10\programs\Studio.exe:*:Enabled:Studio"
    "C:\Program Files\Pinnacle\Studio 10\programs\PMSRegisterFile.exe"="C:\Program Files\Pinnacle\Studio 10\programs\PMSRegisterFile.exe:*:Enabled:p MSRegisterFile"
    "C:\Program Files\Pinnacle\Studio 10\programs\umi.exe"="C:\Program Files\Pinnacle\Studio 10\programs\umi.exe:*:Enabled:umi"
    "C:\Program Files\Azureus\Azureus.exe"="C:\Program Files\Azureus\Azureus.exe:*:Enabled:Azureus"
    "E:\doom3\Doom3Ded.exe"="E:\doom3\Doom3Ded.exe:*:D isabled:D OOM 3"
    "E:\Call of Duty 2\CoD2MP_s.exe"="E:\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
    "E:\Kazaa\kazaa.exe"="E:\Kazaa\kazaa.exe:*:Enabled:Kazaa"
    "E:\Program Files\Kazaa\kazaa.exe"="E:\Program Files\Kazaa\kazaa.exe:*:Enabled:Kazaa"
    "E:\Program Files\truc\kazaa.exe"="E:\Program Files\truc\kazaa.exe:*:Enabled:Kazaa Media Desktop"
    "C:\WINDOWS\system32\P2P Networking\P2P Networking.exe"="C:\WINDOWS\system32\P2P Networking\P2P Networking.exe:*:Enabled:p 2P Networking"
    "C:\Program Files\Kazaa\kazaa.exe"="C:\Program Files\Kazaa\kazaa.exe:*:Enabled:Kazaa Media Desktop"
    "C:\Program Files\WebRebates\WebRebates.exe"="C:\Program Files\WebRebates\WebRebates.exe:*:D isabled:WebRebates"
    "C:\WINDOWS\system32\javaw.exe"="C:\WINDOWS\system32\javaw.exe:*:Enabled:Java(TM) 2 Platform Standard Edition binary"
    "E:\Blubster\Blubster.exe"="E:\Blubster\Blubster.exe:*:Enabled:MP2P servent main executable"
    "C:\StubInstaller.exe"="C:\StubInstaller.exe:*:Enabled:LimeWire swarmed installer"
    "C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "E:\kaza\kazaa.exe"="E:\kaza\kazaa.exe:*:Enabled:Kazaa Media Desktop"
    "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
    "C:\BoxOffice\__MACOSX\LimeWire\LimeWire.exe"="C:\BoxOffice\__MACOSX\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "E:\Shareaza\Shareaza.exe"="E:\Shareaza\Shareaza.exe:*:Enabled:Shareaza"
    "E:\truc\LimeWire\LimeWire.exe"="E:\truc\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "E:\LimeWire\LimeWire.exe"="E:\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "E:\Battlefield 2142\BF2142.exe"="E:\Battlefield 2142\BF2142.exe:*:Enabled:Battlefield 2"
    "E:\zike\Java - Hawai - Lame 192kbps - Guxfer.rar\LimeWire\LimeWire.exe"="E:\zike\Java - Hawai - Lame 192kbps - Guxfer.rar\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Mozilla Firefox"
    "C:\Program Files\Opera\Opera.exe"="C:\Program Files\Opera\Opera.exe:*:Enabled:o pera Internet Browser"
    "E:\movie madgic\Movie Magic\MM Scheduling 3.6 - 3.7\Scheduling and Budgeting -- Crack\EPROXY.EXE"="E:\movie madgic\Movie Magic\MM Scheduling 3.6 - 3.7\Scheduling and Budgeting -- Crack\EPROXY.EXE:*:Enabled:EPROXY"
    "E:\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe"="E:\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (CLI)"
    "E:\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe"="E:\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (SRV)"
    "E:\eMule\emule.exe"="E:\eMule\emule.exe:*:Enabled:eMule"
    "C:\Program Files\Freeplayer\vlc\vlc.exe"="C:\Program Files\Freeplayer\vlc\vlc.exe:*:Enabled:VLC media player"
    "C:\Program Files\aMSN\bin\wish.exe"="C:\Program Files\aMSN\bin\wish.exe:*:Enabled:Wish Application"
    "C:\Program Files\Pando Networks\Pando\pando.exe"="C:\Program Files\Pando Networks\Pando\pando.exe:*:Enabled:p ando"
    "E:\lime wire\LimeWire\LimeWire.exe"="E:\lime wire\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
    "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
    "C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
    "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
    "E:\Program Files\Steam\Steam.exe"="E:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
    "E:\Program Files\Steam\steamapps\anungunrama227\team fortress 2\hl2.exe"="E:\Program Files\Steam\steamapps\anungunrama227\team fortress 2\hl2.exe:*:Enabled:hl2"
    "E:\Program Files\GameSpy Arcade\Aphex.exe"="E:\Program Files\GameSpy Arcade\Aphex.exe:*:Enabled:GameSpy Arcade"
    "C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

    ======File associations======

    .reg - open - regedit.exe "%1" %*
    .scr - open - "%1" %*

    ======List of files/folders created in the last 1 months======

    2009-02-25 11:32:58 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
    2009-02-25 11:32:58 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
    2009-02-25 11:32:58 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
    2009-02-25 11:32:58 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
    2009-02-25 11:32:58 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
    2009-02-25 11:32:57 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
    2009-02-25 11:32:57 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
    2009-02-25 11:32:56 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
    2009-02-25 11:32:56 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
    2009-02-25 11:32:56 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
    2009-02-25 11:32:56 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
    2009-02-25 11:32:56 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
    2009-02-25 11:32:55 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
    2009-02-25 11:32:54 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
    2009-02-25 11:32:54 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
    2009-02-25 11:32:53 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
    2009-02-25 11:32:53 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
    2009-02-25 11:32:53 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
    2009-02-25 11:32:53 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
    2009-02-25 11:32:52 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
    2009-02-25 11:32:52 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
    2009-02-25 11:32:50 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
    2009-02-25 11:32:50 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
    2009-02-25 11:32:50 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
    2009-02-25 11:32:50 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
    2009-02-25 11:32:49 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
    2009-02-25 11:32:49 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
    2009-02-25 11:32:48 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
    2009-02-25 11:32:48 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
    2009-02-25 11:32:47 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
    2009-02-25 11:32:46 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
    2009-02-25 11:32:45 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
    2009-02-25 11:32:45 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
    2009-02-25 11:32:44 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
    2009-02-25 11:31:35 ----D---- C:\WINDOWS\LastGood
    2009-02-25 11:31:34 ----D---- C:\WINDOWS\Logs
    2009-02-25 10:27:15 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
    2009-02-25 10:16:24 ----D---- C:\Documents and Settings\All Users\Application Data\nView_Profiles
    2009-02-25 10:13:58 ----D---- C:\WINDOWS\nview
    2009-02-25 10:13:58 ----A---- C:\WINDOWS\system32\nvudisp.exe
    2009-02-25 09:53:11 ----D---- C:\WINDOWS\NV28163244.TMP
    2009-02-25 09:46:39 ----D---- C:\NVIDIA
    2009-02-25 09:33:16 ----D---- C:\Program Files\ma-config.com
    2009-02-25 09:33:16 ----D---- C:\Documents and Settings\All Users\Application Data\ma-config.com
    2009-02-25 09:30:41 ----A---- C:\WINDOWS\system32\nv4_disp.dll
    2009-02-25 09:20:26 ----D---- C:\Program Files\SystemRequirementsLab
    2009-02-25 09:20:23 ----D---- C:\Documents and Settings\jean marc\Application Data\SystemRequirementsLab
    2009-02-25 07:36:12 ----D---- C:\_OTMoveIt
    2009-02-24 22:21:35 ----D---- C:\WINDOWS\NV37563572.TMP
    2009-02-24 22:18:38 ----D---- C:\Program Files\Uniblue
    2009-02-24 22:18:38 ----D---- C:\Documents and Settings\jean marc\Application Data\Uniblue
    2009-02-24 22:18:38 ----D---- C:\Documents and Settings\All Users\Application Data\DriverScanner
    2009-02-24 22:17:38 ----HDC---- C:\Documents and Settings\All Users\Application Data\{66E2F539-12B6-4870-A500-7689CDE75C5E}
    2009-02-24 19:13:42 ----A---- C:\WINDOWS\system32\aswBoot.exe
    2009-02-24 19:13:39 ----D---- C:\Program Files\Alwil Software
    2009-02-24 18:59:53 ----HD---- C:\autorun.inf
    2009-02-24 18:56:15 ----A---- C:\UsbFix.txt
    2009-02-24 18:54:19 ----D---- C:\Program Files\UsbFix
    2009-02-24 18:46:51 ----D---- C:\rsit
    2009-02-24 16:59:06 ----D---- C:\Program Files\RFA
    2009-02-24 16:39:56 ----D---- C:\WINDOWS\NV28802884.TMP
    2009-02-15 08:05:09 ----D---- C:\WINDOWS\NV6441684.TMP
    2009-02-15 08:01:43 ----D---- C:\WINDOWS\NV784572.TMP
    2009-02-15 07:43:20 ----D---- C:\WINDOWS\NV13401936.TMP
    2009-02-15 07:37:49 ----D---- C:\WINDOWS\NV568584.TMP
    2009-02-15 07:30:58 ----D---- C:\WINDOWS\NV18561836.TMP
    2009-02-15 07:28:00 ----D---- C:\WINDOWS\NV8041080.TMP
    2009-02-15 07:26:19 ----D---- C:\Program Files\Driver Cleaner Pro
    2009-02-15 07:21:03 ----D---- C:\WINDOWS\NV18241820.TMP
    2009-02-15 07:20:52 ----A---- C:\WINDOWS\system32\OLD18.tmp
    2009-02-15 07:20:52 ----A---- C:\WINDOWS\system32\OLD17.tmp
    2009-02-15 07:20:51 ----A---- C:\WINDOWS\system32\OLD16.tmp
    2009-02-15 07:17:03 ----D---- C:\WINDOWS\NV35763580.TMP
    2009-02-15 07:16:57 ----A---- C:\WINDOWS\system32\SET9.tmp
    2009-02-15 07:02:27 ----D---- C:\WINDOWS\NV14361504.TMP
    2009-02-15 06:56:17 ----D---- C:\WINDOWS\NV11001288.TMP
    2009-02-15 06:37:13 ----D---- C:\WINDOWS\NV36403644.TMP
    2009-02-15 06:29:13 ----D---- C:\WINDOWS\NV12122992.TMP
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\SET62.tmp
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\SET38.tmp
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\SET31.tmp
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\SET2D.tmp
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwssr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwss.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsth.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvvitvsr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvvitvs.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsth.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvmoblsr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvmobls.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvmccssr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvmccss.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvmccsrs.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvmccs.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvgamesr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvgames.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvdispsr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvdisps.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvcuvid.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvcuda.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvcpluir.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvcplui.exe
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvapi.dll

    ======List of files/folders modified in the last 1 months======

    2009-02-25 12:09:52 ----D---- C:\WINDOWS\Prefetch
    2009-02-25 11:33:00 ----D---- C:\WINDOWS\system32\DirectX
    2009-02-25 11:32:59 ----D---- C:\WINDOWS\system32
    2009-02-25 11:32:58 ----HD---- C:\WINDOWS\inf
    2009-02-25 11:32:49 ----D---- C:\WINDOWS\Temp
    2009-02-25 11:31:37 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-02-25 11:31:35 ----D---- C:\WINDOWS
    2009-02-25 11:30:58 ----D---- C:\Program Files\Mozilla Firefox
    2009-02-25 11:21:32 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-02-25 11:16:08 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-02-25 10:29:50 ----D---- C:\WINDOWS\Help
    2009-02-25 10:28:10 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-02-25 10:28:00 ----D---- C:\WINDOWS\system32\drivers
    2009-02-25 10:27:57 ----D---- C:\WINDOWS\system32\CatRoot
    2009-02-25 10:27:56 ----D---- C:\WINDOWS\system32\ReinstallBackups
    2009-02-25 10:16:03 ----ASH---- C:\boot.ini
    2009-02-25 10:16:03 ----A---- C:\WINDOWS\win.ini
    2009-02-25 10:16:03 ----A---- C:\WINDOWS\system.ini
    2009-02-25 09:33:20 ----SHD---- C:\WINDOWS\Installer
    2009-02-25 09:33:16 ----RD---- C:\Program Files
    2009-02-24 22:18:52 ----D---- C:\WINDOWS\system32\config
    2009-02-24 19:02:02 ----RSHD---- C:\Recycled
    2009-02-24 18:32:47 ----D---- C:\Documents and Settings\jean marc\Application Data\Azureus
    2009-02-24 03:14:53 ----D---- C:\Program Files\Celtx
    2009-02-21 18:26:12 ----D---- C:\Documents and Settings\jean marc\Application Data\Adobe
    2009-02-21 18:26:12 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
    2009-02-09 14:21:58 ----D---- C:\Documents and Settings\jean marc\Application Data\Vso
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nwiz.exe
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrszht.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrszhc.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrstr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrssv.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrssl.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrssk.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsru.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsptb.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrspt.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrspl.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsno.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsnl.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsko.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsja.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsit.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrshu.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrshe.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsfr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsfi.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsesm.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrses.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrseng.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsel.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsde.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsda.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrscs.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsar.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwimg.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwdmcpl.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwddi.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvsvc32.exe
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvshell.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrszht.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrszhc.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrstr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrssv.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrssl.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrssk.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsru.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsptb.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrspt.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrspl.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsno.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsnl.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsko.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsja.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsit.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrshu.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrshe.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsfr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsfi.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsesm.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrses.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrseng.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsel.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsde.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsda.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrscs.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsar.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvoglnt.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvmctray.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nview.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvdspsch.exe
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvcpl.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvcolor.exe
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvcodins.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvcod.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvappbar.exe
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\keystone.exe
    2009-01-27 13:53:25 ----D---- C:\Documents and Settings\jean marc\Application Data\OpenOffice.org2

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-02-05 26944]
    R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-02-05 114768]
    R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-02-05 51376]
    R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2004-08-19 40320]
    R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-19 14848]
    R1 PCLEPCI;PCLEPCI; \??\C:\WINDOWS\system32\drivers\pclepci.sys []
    R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2006-01-31 25900]
    R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
    R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-08-28 12032]
    R2 ACEDRV06;ACEDRV06; \??\C:\WINDOWS\system32\drivers\ACEDRV06.sys []
    R2 ACEDRV07;ACEDRV07; \??\C:\WINDOWS\system32\drivers\ACEDRV07.sys []
    R2 Aspi32;Aspi32; C:\WINDOWS\System32\drivers\aspi32.sys [1999-09-10 25244]
    R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]
    R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-02-05 94032]
    R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2007-02-27 271360]
    R2 DigiNet;Digidesign Ethernet Support; C:\WINDOWS\system32\DRIVERS\diginet.sys [2006-12-08 11776]
    R2 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2006-12-26 15440]
    R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2007-02-27 18048]
    R2 Sentinel;Sentinel; C:\WINDOWS\System32\Drivers\SENTINEL.SYS [2006-03-14 90176]
    R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2004-08-03 60800]
    R3 ASAPIW2K;ASAPIW2K; C:\WINDOWS\System32\Drivers\ASAPIW2K.sys [2005-02-23 11264]
    R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-02-05 23152]
    R3 BENDER;Pinnacle DV/AV Capture; C:\WINDOWS\system32\drivers\bender.sys [2005-08-22 200320]
    R3 ctsfm2k;Creative SoundFont Management Device Driver; C:\WINDOWS\System32\DRIVERS\ctsfm2k.sys [2005-01-10 138752]
    R3 E1000;Intel(R) PRO/1000 Network Connection Driver; C:\WINDOWS\System32\DRIVERS\e1000325.sys [2004-11-22 176128]
    R3 ElbyCDFL;ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2006-12-26 34760]
    R3 ElbyDelay;ElbyDelay; C:\WINDOWS\System32\Drivers\ElbyDelay.sys [2006-12-14 11984]
    R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2006-07-14 14448]
    R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2001-08-28 9600]
    R3 MarvinBus;Pinnacle Marvin Bus; C:\WINDOWS\system32\DRIVERS\MarvinBus.sys [2005-06-02 171008]
    R3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\WINDOWS\system32\DRIVERS\mcdbus.sys [2006-09-22 92160]
    R3 NCHSSVAD;SoundTap Recorder; C:\WINDOWS\system32\drivers\nchssvad.sys [2008-05-07 26112]
    R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2004-08-03 61824]
    R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-02-09 6307328]
    R3 ossrv;Creative OS Services Driver; C:\WINDOWS\System32\DRIVERS\ctoss2k.sys [2005-01-10 106496]
    R3 P17;SB Live! 24-bit; C:\WINDOWS\system32\drivers\P17.sys [2007-06-15 1127936]
    R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2005-03-31 47360]
    R3 SSKBFD;Webroot Spy Sweeper Keylogger Shield Keyboard Filter; C:\WINDOWS\System32\Drivers\sskbfd.sys [2007-03-01 21056]
    R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2004-08-03 57600]
    R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2004-08-03 20480]
    S3 61883;Pilote d'unité 61883; C:\WINDOWS\system32\DRIVERS\61883.sys [2004-08-03 48128]
    S3 Avc;Périphérique AVC; C:\WINDOWS\system32\DRIVERS\avc.sys [2004-08-03 38912]
    S3 AVCSTRM;AVC Streaming Filter Driver; C:\WINDOWS\system32\DRIVERS\avcstrm.sys [2004-08-03 13696]
    S3 ay818av0;ay818av0; C:\WINDOWS\system32\drivers\ay818av0.sys []
    S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
    S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
    S3 dtscsi;dtscsi; C:\WINDOWS\System32\Drivers\dtscsi.sys []
    S3 KLIF;KLIF; C:\WINDOWS\system32\drivers\KLIF.sys []
    S3 mouhid;Pilote HID de souris; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-23 12288]
    S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\system32\DRIVERS\msdv.sys [2004-08-03 51328]
    S3 MSTAPE;Microsoft AV/C Tape Subunit Device; C:\WINDOWS\system32\DRIVERS\mstape.sys [2004-08-03 49024]
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
    S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
    S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
    S3 Shrvddms;Shrvddms; C:\WINDOWS\system32\drivers\Shrvddms.sys []
    S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
    S3 ssm_bus;SAMSUNG Mobile USB Device II 1.0 driver (WDM); C:\WINDOWS\system32\DRIVERS\ssm_bus.sys [2005-08-30 58320]
    S3 ssm_mdfl;SAMSUNG Mobile USB Modem II 1.0 Filter; C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys [2005-08-30 8336]
    S3 ssm_mdm;SAMSUNG Mobile USB Modem II 1.0 Drivers; C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys [2005-08-30 94000]
    S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
    S3 SynasUSB;SynasUSB; C:\WINDOWS\system32\drivers\SynasUSB.sys [2007-10-24 23288]
    S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
    S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2004-08-03 25856]
    S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
    S3 vaxscsi;vaxscsi; C:\WINDOWS\System32\Drivers\vaxscsi.sys [2006-06-29 223128]
    S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2005-01-28 18944]
    S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
    S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-02-05 18752]
    R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-02-05 138680]
    R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-02-09 163908]
    R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
    R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-02-05 254040]
    R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-02-05 352920]
    S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2007-05-18 72704]
    S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
    S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2009-01-24 216232]
    S3 MSSQL$SONY_MEDIAMGR;MSSQL$SONY_MEDIAMGR; E:\Sony Vegas\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe [2002-12-17 7520337]
    S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2002-12-17 66112]
    S3 SQLAgent$SONY_MEDIAMGR;SQLAgent$SONY_MEDIAMGR; E:\Sony Vegas\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE [2002-12-17 311872]
    S4 AvidSDMService;Avid SDM Service; C:\WINDOWS\system32\AvidSDMService.exe [2007-06-15 49152]
    S4 AvidStartup;Avid Startup; C:\WINDOWS\system32\AvidStartup.exe [2007-06-15 1536000]
    S4 AVP;Kaspersky Internet Security 6.0; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe [2006-03-24 139367]
    S4 Creative Service for CDROM Access;Creative Service for CDROM Access; C:\WINDOWS\System32\CTsvcCDA.EXE [1999-12-13 44032]
    S4 DigiRefresh;Digidesign MME Refresh Service; C:\Program Files\Digidesign\Drivers\MMERefresh.exe [2006-12-09 61440]
    S4 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
    S4 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2006-09-12 451136]
    S4 LicCtrlService;LicCtrl Service; C:\WINDOWS\runservice.exe [2007-02-15 2560]
    S4 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
    S4 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2007-10-15 66872]
    S4 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
    S4 WebrootSpySweeperService;Moteur Webroot Spy Sweeper; C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe [2007-03-01 3379264]

    -----------------EOF-----------------
    a c 295 8 Sécurité
    25 Février 2009 12:29:38

  • Télécharge OTMoveIt3 (OldTimer) sur ton Bureau.
  • Double-clique sur OTMoveIt3.exe afin de le lancer.
  • Copie (Ctrl+C) le texte suivant ci-dessous :

    :processes
    explorer.exe

    :files
    C:\Program Files\WebRebates
    C:\WINDOWS\system32\P2P Networking
    C:\Documents and Settings\All Users\Application Data\loud poke grey htm
    C:\DOCUME~1\JEANMA~1\APPLIC~1\POLLAC~1

    :reg
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "C:\Program Files\WebRebates\WebRebates.exe"=-
    [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\tdssserv.sys]
    [-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\tdssserv.sys]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "AppInit_DLLS"=""
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^Morpheus.lnk]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^MagicDisc.lnk]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^ctfmon.exe]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\wsctf.exe]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows installer]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WhenUSave]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebRebates]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\webHancer Survey Companion]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\webHancer Agent]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UserFaultCheck]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TopSearch]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tbon]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpySheriff]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Shareaza]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SemanticInsight]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Run]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P2P Networking]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P17Helper]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\outlook]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lphca68j0er6a]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KAZAA]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KAVPersonal50]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GreyHtmIdleDelete]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\funktitle]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\d45d8efb]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BMd76ebd67]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BearShare]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ares]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Archive]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Anti-Blaxx Manager]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AltnetPointsManager]
    [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdVantage]

    :commands
    [purity]
    [emptytemp]
    [reboot]


  • Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
  • Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.

    ---> Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
    Accepte en cliquant sur YES.

  • Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
    ---> Le nom du rapport correspond au moment de sa création : date_heure.log
    25 Février 2009 13:10:30

    ========== PROCESSES ==========
    Process explorer.exe killed successfully.
    ========== FILES ==========
    File/Folder C:\Program Files\WebRebates not found.
    C:\WINDOWS\system32\P2P Networking\Cache\Database moved successfully.
    C:\WINDOWS\system32\P2P Networking\Cache moved successfully.
    C:\WINDOWS\system32\P2P Networking moved successfully.
    C:\Documents and Settings\All Users\Application Data\loud poke grey htm moved successfully.
    C:\DOCUME~1\JEANMA~1\APPLIC~1\PollAceAudio moved successfully.
    ========== REGISTRY ==========
    Registry value HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list\\C:\Program Files\WebRebates\WebRebates.exe deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\tdssserv.sys\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\tdssserv.sys\\ deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\"AppInit_DLLS"|"" /E : value set successfully!
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^Morpheus.lnk\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^MagicDisc.lnk\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^ctfmon.exe\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\wsctf.exe\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows installer\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WhenUSave\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebRebates\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\webHancer Survey Companion\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\webHancer Agent\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UserFaultCheck\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TopSearch\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tbon\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpySheriff\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Shareaza\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SemanticInsight\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Run\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P2P Networking\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P17Helper\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\outlook\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lphca68j0er6a\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KAZAA\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KAVPersonal50\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GreyHtmIdleDelete\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\funktitle\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\d45d8efb\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BMd76ebd67\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BearShare\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ares\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Archive\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Anti-Blaxx Manager\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AltnetPointsManager\\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdVantage\\ deleted successfully.
    ========== COMMANDS ==========
    File delete failed. C:\DOCUME~1\JEANMA~1\LOCALS~1\Temp\etilqs_lJ2u6Ama51pXCpIvsBoF scheduled to be deleted on reboot.
    User's Temp folder emptied.
    User's Temporary Internet Files folder emptied.
    User's Internet Explorer cache folder emptied.
    File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Historique\History.IE5\index.dat scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
    Local Service Temp folder emptied.
    File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
    Local Service Temporary Internet Files folder emptied.
    File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
    File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_610.dat scheduled to be deleted on reboot.
    File delete failed. C:\WINDOWS\temp\~DF632.tmp scheduled to be deleted on reboot.
    Windows Temp folder emptied.
    Java cache emptied.
    File delete failed. C:\Documents and Settings\jean marc\Local Settings\Application Data\Mozilla\Firefox\Profiles\pxafflw7.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\jean marc\Local Settings\Application Data\Mozilla\Firefox\Profiles\pxafflw7.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\jean marc\Local Settings\Application Data\Mozilla\Firefox\Profiles\pxafflw7.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\jean marc\Local Settings\Application Data\Mozilla\Firefox\Profiles\pxafflw7.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\jean marc\Local Settings\Application Data\Mozilla\Firefox\Profiles\pxafflw7.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\jean marc\Local Settings\Application Data\Mozilla\Firefox\Profiles\pxafflw7.default\XUL.mfl scheduled to be deleted on reboot.
    FireFox cache emptied.
    Opera cache emptied.
    Temp folders emptied.

    OTMoveIt3 by OldTimer - Version 1.0.8.0 log created on 02252009_130544
    a c 295 8 Sécurité
    25 Février 2009 13:17:25

    On est sur la bonne voie.

  • Télécharge Lop S&D sur ton Bureau.
  • Double-clique dessus pour lancer l'installation.
  • Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau.
  • Sélectionne la langue souhaitée, puis choisis l'option 1 (Recherche) .
  • Patiente jusqu'à la fin du scan.
  • Poste le rapport généré (C:\lopR.txt).
    25 Février 2009 13:29:10

    --------------------\\ Lop S&D 4.2.5-0 XP/Vista

    Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
    X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 3.20GHz )
    BIOS : BIOS Date: 09/30/05 15:08:12 Ver: 08.00.10
    USER : jean marc ( Administrator )
    BOOT : Normal boot
    Antivirus : Kaspersky Internet Security 6.0 6.0.0.303 (Activated)
    Firewall : Kaspersky Internet Security 6.0 6.0.0.299 (Activated)
    A:\ (USB)
    C:\ (Local Disk) - NTFS - Total:30 Go (Free:1 Go)
    D:\ (CD or DVD) - UDF - Total:2 Go (Free:0 Go)
    E:\ (Local Disk) - NTFS - Total:203 Go (Free:24 Go)
    F:\ (CD or DVD)
    G:\ (CD or DVD)
    H:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)

    "C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
    Option : [1] ( 25/02/2009|13:20 )

    --------------------\\ Listing des dossiers dans APPLIC~1

    [24/02/2009|22:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{66E2F539-12B6-4870-A500-7689CDE75C5E}
    [25/02/2009|12:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [18/05/2007|02:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
    [13/03/2006|03:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
    [02/09/2008|12:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
    [16/09/2006|18:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
    [04/09/2007|19:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avid
    [22/07/2007|07:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVS4YOU
    [24/02/2009|22:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DriverScanner
    [30/08/2008|19:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
    [31/01/2007|23:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Elaborate Bytes
    [19/01/2009|17:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Final Draft
    [15/09/2008|11:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FLEXnet
    [28/10/2007|17:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [20/11/2006|11:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
    [25/02/2009|09:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ma-config.com
    [15/01/2008|22:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
    [23/08/2008|07:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
    [15/01/2008|23:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [12/03/2006|02:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
    [10/04/2006|21:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\muvee Technologies
    [07/05/2008|00:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NCH Swift Sound
    [28/10/2006|17:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA
    [25/02/2009|10:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
    [04/09/2007|19:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PACE Anti-Piracy
    [16/08/2008|14:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
    [03/10/2006|21:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\POP3Profiles
    [23/08/2008|04:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Prevx
    [18/03/2006|00:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
    [15/06/2006|20:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\River Past G4
    [05/10/2007|20:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
    [25/04/2006|00:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SmartSound Software Inc
    [10/09/2007|19:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony
    [23/08/2008|05:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
    [03/12/2008|19:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Steinberg
    [03/12/2008|18:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Syncrosoft
    [21/01/2009|09:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\vsosdk
    [23/08/2008|05:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Webroot
    [09/01/2007|22:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage

    [11/03/2006|19:33] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

    [25/02/2009|12:24] C:\DOCUME~1\JEANMA~1\APPLIC~1\Adobe
    [28/03/2006|20:44] C:\DOCUME~1\JEANMA~1\APPLIC~1\AdobeUM
    [13/03/2006|03:50] C:\DOCUME~1\JEANMA~1\APPLIC~1\Ahead
    [16/09/2007|23:07] C:\DOCUME~1\JEANMA~1\APPLIC~1\amen help online
    [20/04/2006|17:19] C:\DOCUME~1\JEANMA~1\APPLIC~1\Apple Computer
    [04/09/2007|19:35] C:\DOCUME~1\JEANMA~1\APPLIC~1\Avid
    [22/07/2007|07:32] C:\DOCUME~1\JEANMA~1\APPLIC~1\AVS4YOU
    [24/02/2009|18:32] C:\DOCUME~1\JEANMA~1\APPLIC~1\Azureus
    [09/12/2006|07:45] C:\DOCUME~1\JEANMA~1\APPLIC~1\BitRoll
    [20/09/2008|13:04] C:\DOCUME~1\JEANMA~1\APPLIC~1\BSplayer
    [04/05/2008|07:13] C:\DOCUME~1\JEANMA~1\APPLIC~1\BSplayer Pro
    [12/03/2006|14:44] C:\DOCUME~1\JEANMA~1\APPLIC~1\Creative
    [31/03/2005|00:12] C:\DOCUME~1\JEANMA~1\APPLIC~1\DivX
    [06/12/2007|04:30] C:\DOCUME~1\JEANMA~1\APPLIC~1\dvdcss
    [16/05/2005|10:06] C:\DOCUME~1\JEANMA~1\APPLIC~1\FileMaker
    [19/01/2009|17:07] C:\DOCUME~1\JEANMA~1\APPLIC~1\Final Draft
    [19/01/2009|16:38] C:\DOCUME~1\JEANMA~1\APPLIC~1\Greyfirst
    [24/04/2006|13:53] C:\DOCUME~1\JEANMA~1\APPLIC~1\Help
    [11/03/2006|19:41] C:\DOCUME~1\JEANMA~1\APPLIC~1\Identities
    [11/01/2008|20:31] C:\DOCUME~1\JEANMA~1\APPLIC~1\IGN_DLM
    [16/09/2006|03:02] C:\DOCUME~1\JEANMA~1\APPLIC~1\InstallShield
    [08/09/2008|13:59] C:\DOCUME~1\JEANMA~1\APPLIC~1\kibisoft
    [12/03/2006|14:19] C:\DOCUME~1\JEANMA~1\APPLIC~1\Lavasoft
    [12/03/2006|20:44] C:\DOCUME~1\JEANMA~1\APPLIC~1\Macromedia
    [23/08/2008|07:17] C:\DOCUME~1\JEANMA~1\APPLIC~1\Malwarebytes
    [24/04/2006|16:26] C:\DOCUME~1\JEANMA~1\APPLIC~1\Media Player Classic
    [26/09/2008|12:10] C:\DOCUME~1\JEANMA~1\APPLIC~1\Microsoft
    [23/08/2008|03:50] C:\DOCUME~1\JEANMA~1\APPLIC~1\Mozilla
    [21/04/2005|07:34] C:\DOCUME~1\JEANMA~1\APPLIC~1\MSN6
    [10/04/2006|21:47] C:\DOCUME~1\JEANMA~1\APPLIC~1\muvee Technologies
    [07/05/2008|00:02] C:\DOCUME~1\JEANMA~1\APPLIC~1\NCH Swift Sound
    [27/01/2009|13:53] C:\DOCUME~1\JEANMA~1\APPLIC~1\OpenOffice.org2
    [09/01/2007|22:50] C:\DOCUME~1\JEANMA~1\APPLIC~1\Opera
    [04/09/2007|19:28] C:\DOCUME~1\JEANMA~1\APPLIC~1\PACE Anti-Piracy
    [16/05/2005|13:37] C:\DOCUME~1\JEANMA~1\APPLIC~1\Pergenex Software
    [10/09/2007|20:14] C:\DOCUME~1\JEANMA~1\APPLIC~1\Publish Providers
    [29/09/2008|20:55] C:\DOCUME~1\JEANMA~1\APPLIC~1\Real
    [15/06/2006|20:35] C:\DOCUME~1\JEANMA~1\APPLIC~1\River Past G4
    [15/06/2006|20:25] C:\DOCUME~1\JEANMA~1\APPLIC~1\RiverPast G4
    [16/10/2007|18:32] C:\DOCUME~1\JEANMA~1\APPLIC~1\Samsung
    [01/08/2006|20:45] C:\DOCUME~1\JEANMA~1\APPLIC~1\SecuROM
    [27/09/2006|01:05] C:\DOCUME~1\JEANMA~1\APPLIC~1\Shareaza
    [13/10/2007|12:59] C:\DOCUME~1\JEANMA~1\APPLIC~1\Skype
    [18/04/2007|14:24] C:\DOCUME~1\JEANMA~1\APPLIC~1\SlySoft
    [10/09/2007|20:13] C:\DOCUME~1\JEANMA~1\APPLIC~1\Sony
    [10/09/2007|19:45] C:\DOCUME~1\JEANMA~1\APPLIC~1\Sony Setup
    [03/12/2008|19:47] C:\DOCUME~1\JEANMA~1\APPLIC~1\Steinberg
    [15/03/2006|14:36] C:\DOCUME~1\JEANMA~1\APPLIC~1\Sun
    [12/12/2006|02:45] C:\DOCUME~1\JEANMA~1\APPLIC~1\System Requirements Lab
    [25/02/2009|09:20] C:\DOCUME~1\JEANMA~1\APPLIC~1\SystemRequirementsLab
    [24/02/2009|22:18] C:\DOCUME~1\JEANMA~1\APPLIC~1\Uniblue
    [31/05/2007|01:47] C:\DOCUME~1\JEANMA~1\APPLIC~1\vlc
    [09/02/2009|14:21] C:\DOCUME~1\JEANMA~1\APPLIC~1\Vso
    [23/08/2008|04:17] C:\DOCUME~1\JEANMA~1\APPLIC~1\Webroot

    [11/03/2006|19:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
    [23/08/2008|05:13] C:\DOCUME~1\LOCALS~1\APPLIC~1\Webroot

    [11/03/2006|19:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

    [20/02/2009 23:46][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [25/02/2009 13:07][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [28/08/2001 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    --------------------\\ Listing des dossiers dans C:\Program Files

    [24/09/2008|13:42] C:\Program Files\Adobe
    [11/03/2006|21:21] C:\Program Files\AdorageI-GfxDatas
    [11/03/2006|21:21] C:\Program Files\AdorageI-SAL
    [26/06/2007|01:27] C:\Program Files\AGEIA Technologies
    [07/07/2008|00:54] C:\Program Files\Ahead
    [21/05/2006|22:57] C:\Program Files\Alcohol Soft
    [08/04/2006|14:05] C:\Program Files\Altnet
    [24/02/2009|19:13] C:\Program Files\Alwil Software
    [16/09/2007|23:07] C:\Program Files\amen help online
    [21/07/2007|07:33] C:\Program Files\aMSN
    [23/09/2007|14:31] C:\Program Files\AnalogX
    [02/09/2008|12:02] C:\Program Files\Apple Software Update
    [12/03/2006|02:56] C:\Program Files\Archive
    [10/04/2006|21:29] C:\Program Files\Autofr
    [04/09/2007|19:29] C:\Program Files\Avid
    [19/09/2008|23:13] C:\Program Files\AviSynth 2.5
    [22/07/2007|07:31] C:\Program Files\AVS4YOU
    [24/11/2008|11:55] C:\Program Files\Azureus
    [23/11/2007|14:28] C:\Program Files\Burn4Free Toolbar
    [26/09/2008|10:41] C:\Program Files\Capturino V2
    [19/07/2007|18:36] C:\Program Files\CDBurnerXP Pro 3
    [24/02/2009|03:14] C:\Program Files\Celtx
    [26/04/2006|15:21] C:\Program Files\CodecPack
    [20/03/2006|01:04] C:\Program Files\Common Files
    [11/03/2006|19:31] C:\Program Files\ComPlus Applications
    [27/06/2006|17:59] C:\Program Files\ControlMK
    [11/03/2006|19:52] C:\Program Files\Creative
    [12/12/2006|03:12] C:\Program Files\DAEMON Tools
    [04/09/2007|19:27] C:\Program Files\Digidesign
    [31/03/2005|00:08] C:\Program Files\DivX
    [15/02/2009|07:26] C:\Program Files\Driver Cleaner Pro
    [02/07/2007|17:42] C:\Program Files\DVDInfoPro
    [31/01/2007|19:00] C:\Program Files\Elaborate Bytes
    [03/12/2008|19:46] C:\Program Files\Fichiers communs
    [11/03/2006|20:31] C:\Program Files\FileZilla
    [19/01/2009|17:20] C:\Program Files\Final Draft 7
    [19/01/2009|17:20] C:\Program Files\Final Draft Tagger
    [23/08/2008|03:11] C:\Program Files\FlashGet
    [22/07/2007|07:38] C:\Program Files\Free Audio Pack
    [31/05/2007|01:47] C:\Program Files\Freeplayer
    [23/08/2008|05:52] C:\Program Files\Hitman Pro
    [21/11/2006|02:05] C:\Program Files\INSTAFINK
    [23/10/2008|05:06] C:\Program Files\InstallShield Installation Information
    [11/03/2006|20:02] C:\Program Files\Intel
    [04/09/2007|19:27] C:\Program Files\InterLok
    [14/08/2008|02:01] C:\Program Files\Internet Explorer
    [16/09/2006|18:36] C:\Program Files\iPod
    [16/09/2006|18:36] C:\Program Files\iTunes
    [03/06/2008|16:41] C:\Program Files\Java
    [15/07/2007|18:26] C:\Program Files\Kaspersky Lab
    [08/09/2008|13:47] C:\Program Files\Kibisoft
    [12/03/2006|14:18] C:\Program Files\Lavasoft
    [25/02/2009|09:33] C:\Program Files\ma-config.com
    [22/03/2005|20:02] C:\Program Files\Matroska Pack
    [14/08/2008|02:02] C:\Program Files\Messenger
    [11/03/2006|19:34] C:\Program Files\microsoft frontpage
    [26/09/2008|10:57] C:\Program Files\Microsoft Office
    [10/09/2007|19:57] C:\Program Files\Microsoft SQL Server
    [03/04/2006|18:30] C:\Program Files\Microsoft.NET
    [16/09/2006|04:15] C:\Program Files\MonitorTest
    [25/06/2006|18:20] C:\Program Files\Morpheus Toolbar
    [31/08/2007|22:18] C:\Program Files\MOVAVI
    [11/03/2006|20:45] C:\Program Files\Movie Maker
    [25/02/2009|13:07] C:\Program Files\Mozilla Firefox
    [26/09/2008|10:57] C:\Program Files\MSECache
    [11/03/2006|19:30] C:\Program Files\MSN
    [11/03/2006|22:18] C:\Program Files\MSN Apps
    [11/03/2006|19:30] C:\Program Files\MSN Gaming Zone
    [14/09/2007|09:21] C:\Program Files\MSN Messenger
    [04/10/2006|15:10] C:\Program Files\MSXML 4.0
    [10/04/2006|21:30] C:\Program Files\muvee Technologies
    [07/05/2008|00:02] C:\Program Files\NCH Swift Sound
    [19/03/2006|19:18] C:\Program Files\Need2Find
    [11/03/2006|20:44] C:\Program Files\NetMeeting
    [19/02/2007|02:55] C:\Program Files\OpenAL
    [10/11/2007|23:37] C:\Program Files\OpenOffice.org 2.3
    [05/07/2008|12:46] C:\Program Files\Opera
    [23/08/2008|10:30] C:\Program Files\outlook
    [26/06/2007|02:02] C:\Program Files\Outlook Express
    [22/07/2007|07:38] C:\Program Files\Pando Networks
    [18/05/2007|02:32] C:\Program Files\PhotoFiltre Studio
    [11/03/2006|21:29] C:\Program Files\Pinnacle
    [27/10/2006|06:34] C:\Program Files\PlayLinc
    [14/09/2007|00:11] C:\Program Files\POLLAC~1
    [12/03/2006|12:36] C:\Program Files\PowerISO
    [02/09/2008|12:04] C:\Program Files\QuickTime
    [02/09/2008|12:05] C:\Program Files\RADVideo
    [23/03/2006|18:42] C:\Program Files\Real
    [24/02/2009|17:30] C:\Program Files\RFA
    [15/06/2006|20:25] C:\Program Files\River Past
    [10/04/2006|21:27] C:\Program Files\RM-X DVrecorder
    [10/04/2006|21:27] C:\Program Files\RM-X© Search
    [04/09/2007|19:21] C:\Program Files\SafeNet Sentinel
    [16/10/2007|18:22] C:\Program Files\Samsung
    [11/03/2006|19:30] C:\Program Files\Services en ligne
    [31/01/2007|18:15] C:\Program Files\SlySoft
    [02/07/2007|17:41] C:\Program Files\Smart Projects
    [11/03/2006|20:59] C:\Program Files\SmartSound Software
    [23/08/2008|05:12] C:\Program Files\Spybot - Search & Destroy
    [03/12/2008|19:43] C:\Program Files\Steinberg
    [03/12/2008|19:45] C:\Program Files\Syncrosoft
    [25/02/2009|09:20] C:\Program Files\SystemRequirementsLab
    [21/11/2006|02:05] C:\Program Files\TBONBin
    [23/08/2008|05:05] C:\Program Files\Trend Micro
    [24/02/2009|22:18] C:\Program Files\Uniblue
    [10/09/2007|19:58] C:\Program Files\Uninstall Information
    [24/02/2009|18:57] C:\Program Files\UsbFix
    [08/04/2006|14:48] C:\Program Files\VideoLAN
    [20/01/2009|17:52] C:\Program Files\VSO
    [10/09/2007|19:56] C:\Program Files\Vstplugins
    [23/08/2008|05:13] C:\Program Files\Webroot
    [12/03/2006|21:46] C:\Program Files\Webteh
    [01/09/2007|14:36] C:\Program Files\Winamp
    [21/03/2006|03:02] C:\Program Files\Windows Media Player
    [11/03/2006|20:44] C:\Program Files\Windows NT
    [04/09/2007|19:28] C:\Program Files\WindowsUpdate
    [16/07/2006|12:46] C:\Program Files\WinRAR
    [11/03/2006|19:34] C:\Program Files\xerox

    --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

    [24/09/2008|13:41] C:\Program Files\Fichiers communs\Adobe
    [24/09/2008|13:41] C:\Program Files\Fichiers communs\Adobe AIR
    [18/05/2007|02:35] C:\Program Files\Fichiers communs\Adobe Systems Shared
    [04/09/2007|19:27] C:\Program Files\Fichiers communs\Avid
    [22/07/2007|07:31] C:\Program Files\Fichiers communs\AVSMedia
    [03/04/2006|18:29] C:\Program Files\Fichiers communs\DESIGNER
    [04/09/2007|19:30] C:\Program Files\Fichiers communs\Digidesign
    [04/04/2006|22:38] C:\Program Files\Fichiers communs\DirectX
    [15/02/2007|22:06] C:\Program Files\Fichiers communs\InstallShield
    [11/03/2006|20:26] C:\Program Files\Fichiers communs\Java
    [26/09/2008|10:57] C:\Program Files\Fichiers communs\Microsoft Shared
    [11/03/2006|19:31] C:\Program Files\Fichiers communs\MSSoap
    [10/04/2006|21:32] C:\Program Files\Fichiers communs\muvee Technologies
    [12/03/2006|02:24] C:\Program Files\Fichiers communs\ODBC
    [04/09/2007|19:28] C:\Program Files\Fichiers communs\PACE Anti-Piracy
    [16/05/2005|13:26] C:\Program Files\Fichiers communs\Pergenex Shared
    [23/03/2006|18:42] C:\Program Files\Fichiers communs\Real
    [15/06/2006|20:25] C:\Program Files\Fichiers communs\River Past
    [04/09/2007|19:21] C:\Program Files\Fichiers communs\SafeNet Sentinel
    [11/03/2006|19:31] C:\Program Files\Fichiers communs\Services
    [05/10/2007|20:22] C:\Program Files\Fichiers communs\Skype
    [12/03/2006|02:24] C:\Program Files\Fichiers communs\SpeechEngines
    [03/12/2008|19:46] C:\Program Files\Fichiers communs\Steinberg
    [26/06/2007|02:02] C:\Program Files\Fichiers communs\System
    [12/12/2006|02:45] C:\Program Files\Fichiers communs\SystemRequirementsLab
    [14/04/2006|00:29] C:\Program Files\Fichiers communs\Vbox
    [19/01/2009|17:19] C:\Program Files\Fichiers communs\Wise Installation Wizard
    [23/03/2006|18:42] C:\Program Files\Fichiers communs\xing shared

    --------------------\\ Process

    ( 22 Processes )

    ... OK !

    --------------------\\ Recherche avec S_Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Recherche de Fichiers / Dossiers Lop

    C:\DOCUME~1\JEANMA~1\APPLIC~1\BitRoll
    C:\DOCUME~1\JEANMA~1\APPLIC~1\BitRoll
    C:\DOCUME~1\JEANMA~1\APPLIC~1\BitRoll\Data

    --------------------\\ Verification du Registre

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\moveburnone]
    "DisplayName"="CiD Help"
    "UninstallString"="C:\\DOCUME~1\\JEANMA~1\\APPLIC~1\\POLLAC~1\\Kind Team Trans.exe -uninstall"

    --------------------\\ Verification du fichier Hosts

    Fichier Hosts PROPRE


    --------------------\\ Recherche de fichiers avec Catchme

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2009-02-25 13:21:33
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 2

    --------------------\\ Recherche d'autres infections

    --------------------\\ ROOTKIT !!

    Rootkit Tibs ! .. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_TDSSSERV]
    Rootkit Tibs ! .. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_TDSSSERV]
    Rootkit Tibs ! .. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_TDSSSERV]
    Rootkit Tibs ! .. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\tdssserv]
    Rootkit Tibs ! .. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\tdssserv]
    Rootkit Tibs ! .. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\tdssserv]

    --------------------\\ Cracks & Keygens ..

    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\+{mininova.org}+ [NTi]_Splinter.Cell.Chaos.Theory.CRACK.ONLY-RELOADED_[www.NewTorrents.info].torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\-[mininova.org]- Tom Clancy's SPLINTER CELL 4 DOUBLE AGENT MULTILANGUAGE WITH CRACK.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\-{mininova.org}-.Prince.of.Persia.The.Two.Thrones.NoDVD.Crack.ONLY.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\Adobe After Effects Pro CS3 [FULL Use dll.Crack].torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\Adobe Contribute CS3 KEYGEN [mininova].torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\Adobe Photoshop Pro CS2 v9.0 Full ISO + WORKING Keygen.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\Adobe_CS3_Products_Crack_(Test__The_real_thing_).3736617.TPB.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\Adobe_Premiere_Pro_CS3_Full_Version_with_Crack.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\ConvertXtoDVD 3.3.4.107+Keygen-LnDL [mininova].torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\Crackdown.USA.XBOX360-RANT.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\Crackdown.USA.XBOX360.STEALTH.PATCHER.FIX-RANTSUCKSASS.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\Godfather The Game NOGROUP CRACK ONLY -~mininova.org~-.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\Prey.CLONEDVD+KeyGen.rar.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\prince.of.persia.-.two.thrones.WORKING.crack.zip.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\Registry First Aid Platinum 6.1.0 Build 1546 + Keygen [mininova].torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\ScarFace [ NO CD] Company of Heroes Condemned crack by Razor1911.rar -[mininova.org]-.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\Splinter_Cell_Chaos_Theory_Crack_ ^mininova.org^.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\STALKER Clear Sky CRACK, graph instruction and conversion english Vista x86 x64 and XP by Kosa53.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\STALKER.CLEAR.SKY.WITH.CRACK-MAVERICK.iso.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\The Godfather PC, serial + crack,Repack by jboog.rar ^mininova.org^'.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\www.bitreactor.to_Ghost.Recon.Advanced.Warfighter-RELOA... ^mininova.org^.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\[PC]POSTAL.2.SHARE.THE.PAIN.+.APOCALYPSE.WEEKEND.+.CRACK.+.PATCH.&.CHEAT.by.DARK.SHADOW.zip.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\_Crackdown.USA.XBOX360-RANT.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\_STALKER.CLEAR.SKY.WITH.CRACK-MAVERICK.iso.torrent
    C:\DOCUME~1\JEANMA~1\Complete\Alcohol 120 v1 9 5 4212 + Keygen.zip
    C:\DOCUME~1\JEANMA~1\Complete\AVG Pro v7 1 371 - Incl Keygen rar.zip
    C:\DOCUME~1\JEANMA~1\Complete\Bigfish Games - Sweetopia + Crack.zip
    C:\DOCUME~1\JEANMA~1\Complete\Hitman Blood Money CRACK ONLY-iND.zip
    C:\DOCUME~1\JEANMA~1\Complete\KeyGen RC4 Encryption Key Maker 1.0.8.zip
    C:\DOCUME~1\JEANMA~1\Complete\KeyGen RC4 Encryption Key Maker 2.zip
    C:\DOCUME~1\JEANMA~1\Complete\Magic DVD Ripper 4.2 + crack Updated Sept 14th.zip
    C:\DOCUME~1\JEANMA~1\Complete\Nero 7 Premium Reloaded 7.5.1.1 - Official PT-BR With Keygen.zip
    C:\DOCUME~1\JEANMA~1\Complete\PalmCrack 1.1.zip
    C:\DOCUME~1\JEANMA~1\Complete\password discovery 2 2 crack-rev zip.zip
    C:\DOCUME~1\JEANMA~1\Complete\Pinnacle Studio Plus v10.5.1 Titanium Edition + 2CDs + Keygen + MultiLanguage.zip
    C:\DOCUME~1\JEANMA~1\Complete\PowerISO 3.1 with keygen (latest version).zip
    C:\DOCUME~1\JEANMA~1\Complete\Sony DVD Architect v4 0 Incl Keygen-SSG.zip
    C:\DOCUME~1\JEANMA~1\Complete\Sony Vegas + DVD Production Suite 7 + keygen - [www slotorrent net].zip
    C:\DOCUME~1\JEANMA~1\Complete\Sony Vegas v7 0a Incl Keygen-SSG.zip
    C:\DOCUME~1\JEANMA~1\Complete\Ulead DVD MovieFactory v5 0 Plus Incl Keygen SSG.zip
    C:\DOCUME~1\JEANMA~1\Complete\WGA May 2006 Crack.zip
    C:\DOCUME~1\JEANMA~1\Complete\WinRar version 3 61 + crack (by CFF).zip
    C:\DOCUME~1\JEANMA~1\Complete\Xilisoft DVD Ripper Platinum 4 0 54 0915 + Keygen (iTeam PaNNa).zip
    C:\DOCUME~1\JEANMA~1\Recent\crack.lnk
    C:\DOCUME~1\JEANMA~1\Recent\Registry First Aid Platinum 6.1.0 Build 1546 + Keygen.lnk


    [F:2][D:2]-> C:\DOCUME~1\JEANMA~1\LOCALS~1\Temp
    [F:2][D:1]-> C:\DOCUME~1\JEANMA~1\Cookies
    [F:14][D:4]-> C:\DOCUME~1\JEANMA~1\LOCALS~1\TEMPOR~1\content.IE5
    [F:2][D:1]-> C:\Recycled

    1 - "C:\Lop SD\LopR_1.txt" - 25/02/2009|13:22 - Option : [1]

    --------------------\\ Fin du rapport a 13:22:46
    a c 295 8 Sécurité
    25 Février 2009 13:31:38

    Tu as un rootkit, on s'en occupera après Lop.

  • Relance Lop S&D.
  • Choisis cette fois-ci l'option 2 (Suppression).
  • Ne ferme pas la fenêtre lors de la suppression !
  • Poste le rapport généré (C:\lopR.txt).

    (Si le Bureau ne réapparait pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)
    25 Février 2009 13:52:46


    --------------------\\ Lop S&D 4.2.5-0 XP/Vista

    Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
    X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 3.20GHz )
    BIOS : BIOS Date: 09/30/05 15:08:12 Ver: 08.00.10
    USER : jean marc ( Administrator )
    BOOT : Normal boot
    Antivirus : Kaspersky Internet Security 6.0 6.0.0.303 (Activated)
    Firewall : Kaspersky Internet Security 6.0 6.0.0.299 (Activated)
    A:\ (USB)
    C:\ (Local Disk) - NTFS - Total:30 Go (Free:1 Go)
    D:\ (CD or DVD) - UDF - Total:2 Go (Free:0 Go)
    E:\ (Local Disk) - NTFS - Total:203 Go (Free:24 Go)
    F:\ (CD or DVD)
    G:\ (CD or DVD)
    H:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)

    "C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
    Option : [2] ( 25/02/2009|13:33 )


    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

    Supprime! - C:\DOCUME~1\JEANMA~1\APPLIC~1\BitRoll\Data
    Supprime! - C:\DOCUME~1\JEANMA~1\APPLIC~1\BitRoll

    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


    --------------------\\ Listing des dossiers dans APPLIC~1

    [24/02/2009|22:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{66E2F539-12B6-4870-A500-7689CDE75C5E}
    [25/02/2009|12:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [18/05/2007|02:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
    [13/03/2006|03:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
    [02/09/2008|12:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
    [16/09/2006|18:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
    [04/09/2007|19:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avid
    [22/07/2007|07:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVS4YOU
    [24/02/2009|22:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DriverScanner
    [30/08/2008|19:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
    [31/01/2007|23:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Elaborate Bytes
    [19/01/2009|17:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Final Draft
    [15/09/2008|11:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FLEXnet
    [28/10/2007|17:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [20/11/2006|11:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
    [25/02/2009|09:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ma-config.com
    [15/01/2008|22:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
    [23/08/2008|07:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
    [15/01/2008|23:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [12/03/2006|02:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
    [10/04/2006|21:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\muvee Technologies
    [07/05/2008|00:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NCH Swift Sound
    [28/10/2006|17:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA
    [25/02/2009|10:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
    [04/09/2007|19:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PACE Anti-Piracy
    [16/08/2008|14:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
    [03/10/2006|21:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\POP3Profiles
    [23/08/2008|04:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Prevx
    [18/03/2006|00:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
    [15/06/2006|20:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\River Past G4
    [05/10/2007|20:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
    [25/04/2006|00:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SmartSound Software Inc
    [10/09/2007|19:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony
    [23/08/2008|05:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
    [03/12/2008|19:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Steinberg
    [03/12/2008|18:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Syncrosoft
    [21/01/2009|09:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\vsosdk
    [23/08/2008|05:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Webroot
    [09/01/2007|22:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage

    [11/03/2006|19:33] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

    [25/02/2009|12:24] C:\DOCUME~1\JEANMA~1\APPLIC~1\Adobe
    [28/03/2006|20:44] C:\DOCUME~1\JEANMA~1\APPLIC~1\AdobeUM
    [13/03/2006|03:50] C:\DOCUME~1\JEANMA~1\APPLIC~1\Ahead
    [16/09/2007|23:07] C:\DOCUME~1\JEANMA~1\APPLIC~1\amen help online
    [20/04/2006|17:19] C:\DOCUME~1\JEANMA~1\APPLIC~1\Apple Computer
    [04/09/2007|19:35] C:\DOCUME~1\JEANMA~1\APPLIC~1\Avid
    [22/07/2007|07:32] C:\DOCUME~1\JEANMA~1\APPLIC~1\AVS4YOU
    [24/02/2009|18:32] C:\DOCUME~1\JEANMA~1\APPLIC~1\Azureus
    [20/09/2008|13:04] C:\DOCUME~1\JEANMA~1\APPLIC~1\BSplayer
    [04/05/2008|07:13] C:\DOCUME~1\JEANMA~1\APPLIC~1\BSplayer Pro
    [12/03/2006|14:44] C:\DOCUME~1\JEANMA~1\APPLIC~1\Creative
    [31/03/2005|00:12] C:\DOCUME~1\JEANMA~1\APPLIC~1\DivX
    [06/12/2007|04:30] C:\DOCUME~1\JEANMA~1\APPLIC~1\dvdcss
    [16/05/2005|10:06] C:\DOCUME~1\JEANMA~1\APPLIC~1\FileMaker
    [19/01/2009|17:07] C:\DOCUME~1\JEANMA~1\APPLIC~1\Final Draft
    [19/01/2009|16:38] C:\DOCUME~1\JEANMA~1\APPLIC~1\Greyfirst
    [24/04/2006|13:53] C:\DOCUME~1\JEANMA~1\APPLIC~1\Help
    [11/03/2006|19:41] C:\DOCUME~1\JEANMA~1\APPLIC~1\Identities
    [11/01/2008|20:31] C:\DOCUME~1\JEANMA~1\APPLIC~1\IGN_DLM
    [16/09/2006|03:02] C:\DOCUME~1\JEANMA~1\APPLIC~1\InstallShield
    [08/09/2008|13:59] C:\DOCUME~1\JEANMA~1\APPLIC~1\kibisoft
    [12/03/2006|14:19] C:\DOCUME~1\JEANMA~1\APPLIC~1\Lavasoft
    [12/03/2006|20:44] C:\DOCUME~1\JEANMA~1\APPLIC~1\Macromedia
    [23/08/2008|07:17] C:\DOCUME~1\JEANMA~1\APPLIC~1\Malwarebytes
    [24/04/2006|16:26] C:\DOCUME~1\JEANMA~1\APPLIC~1\Media Player Classic
    [26/09/2008|12:10] C:\DOCUME~1\JEANMA~1\APPLIC~1\Microsoft
    [23/08/2008|03:50] C:\DOCUME~1\JEANMA~1\APPLIC~1\Mozilla
    [21/04/2005|07:34] C:\DOCUME~1\JEANMA~1\APPLIC~1\MSN6
    [10/04/2006|21:47] C:\DOCUME~1\JEANMA~1\APPLIC~1\muvee Technologies
    [07/05/2008|00:02] C:\DOCUME~1\JEANMA~1\APPLIC~1\NCH Swift Sound
    [27/01/2009|13:53] C:\DOCUME~1\JEANMA~1\APPLIC~1\OpenOffice.org2
    [09/01/2007|22:50] C:\DOCUME~1\JEANMA~1\APPLIC~1\Opera
    [04/09/2007|19:28] C:\DOCUME~1\JEANMA~1\APPLIC~1\PACE Anti-Piracy
    [16/05/2005|13:37] C:\DOCUME~1\JEANMA~1\APPLIC~1\Pergenex Software
    [10/09/2007|20:14] C:\DOCUME~1\JEANMA~1\APPLIC~1\Publish Providers
    [29/09/2008|20:55] C:\DOCUME~1\JEANMA~1\APPLIC~1\Real
    [15/06/2006|20:35] C:\DOCUME~1\JEANMA~1\APPLIC~1\River Past G4
    [15/06/2006|20:25] C:\DOCUME~1\JEANMA~1\APPLIC~1\RiverPast G4
    [16/10/2007|18:32] C:\DOCUME~1\JEANMA~1\APPLIC~1\Samsung
    [01/08/2006|20:45] C:\DOCUME~1\JEANMA~1\APPLIC~1\SecuROM
    [27/09/2006|01:05] C:\DOCUME~1\JEANMA~1\APPLIC~1\Shareaza
    [13/10/2007|12:59] C:\DOCUME~1\JEANMA~1\APPLIC~1\Skype
    [18/04/2007|14:24] C:\DOCUME~1\JEANMA~1\APPLIC~1\SlySoft
    [10/09/2007|20:13] C:\DOCUME~1\JEANMA~1\APPLIC~1\Sony
    [10/09/2007|19:45] C:\DOCUME~1\JEANMA~1\APPLIC~1\Sony Setup
    [03/12/2008|19:47] C:\DOCUME~1\JEANMA~1\APPLIC~1\Steinberg
    [15/03/2006|14:36] C:\DOCUME~1\JEANMA~1\APPLIC~1\Sun
    [12/12/2006|02:45] C:\DOCUME~1\JEANMA~1\APPLIC~1\System Requirements Lab
    [25/02/2009|09:20] C:\DOCUME~1\JEANMA~1\APPLIC~1\SystemRequirementsLab
    [24/02/2009|22:18] C:\DOCUME~1\JEANMA~1\APPLIC~1\Uniblue
    [31/05/2007|01:47] C:\DOCUME~1\JEANMA~1\APPLIC~1\vlc
    [09/02/2009|14:21] C:\DOCUME~1\JEANMA~1\APPLIC~1\Vso
    [23/08/2008|04:17] C:\DOCUME~1\JEANMA~1\APPLIC~1\Webroot

    [11/03/2006|19:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
    [23/08/2008|05:13] C:\DOCUME~1\LOCALS~1\APPLIC~1\Webroot

    [11/03/2006|19:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

    [20/02/2009 23:46][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [25/02/2009 13:07][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [28/08/2001 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    --------------------\\ Listing des dossiers dans C:\Program Files

    [24/09/2008|13:42] C:\Program Files\Adobe
    [11/03/2006|21:21] C:\Program Files\AdorageI-GfxDatas
    [11/03/2006|21:21] C:\Program Files\AdorageI-SAL
    [26/06/2007|01:27] C:\Program Files\AGEIA Technologies
    [07/07/2008|00:54] C:\Program Files\Ahead
    [21/05/2006|22:57] C:\Program Files\Alcohol Soft
    [08/04/2006|14:05] C:\Program Files\Altnet
    [24/02/2009|19:13] C:\Program Files\Alwil Software
    [16/09/2007|23:07] C:\Program Files\amen help online
    [21/07/2007|07:33] C:\Program Files\aMSN
    [23/09/2007|14:31] C:\Program Files\AnalogX
    [02/09/2008|12:02] C:\Program Files\Apple Software Update
    [12/03/2006|02:56] C:\Program Files\Archive
    [10/04/2006|21:29] C:\Program Files\Autofr
    [04/09/2007|19:29] C:\Program Files\Avid
    [19/09/2008|23:13] C:\Program Files\AviSynth 2.5
    [22/07/2007|07:31] C:\Program Files\AVS4YOU
    [24/11/2008|11:55] C:\Program Files\Azureus
    [23/11/2007|14:28] C:\Program Files\Burn4Free Toolbar
    [26/09/2008|10:41] C:\Program Files\Capturino V2
    [19/07/2007|18:36] C:\Program Files\CDBurnerXP Pro 3
    [24/02/2009|03:14] C:\Program Files\Celtx
    [26/04/2006|15:21] C:\Program Files\CodecPack
    [20/03/2006|01:04] C:\Program Files\Common Files
    [11/03/2006|19:31] C:\Program Files\ComPlus Applications
    [27/06/2006|17:59] C:\Program Files\ControlMK
    [11/03/2006|19:52] C:\Program Files\Creative
    [12/12/2006|03:12] C:\Program Files\DAEMON Tools
    [04/09/2007|19:27] C:\Program Files\Digidesign
    [31/03/2005|00:08] C:\Program Files\DivX
    [15/02/2009|07:26] C:\Program Files\Driver Cleaner Pro
    [02/07/2007|17:42] C:\Program Files\DVDInfoPro
    [31/01/2007|19:00] C:\Program Files\Elaborate Bytes
    [03/12/2008|19:46] C:\Program Files\Fichiers communs
    [11/03/2006|20:31] C:\Program Files\FileZilla
    [19/01/2009|17:20] C:\Program Files\Final Draft 7
    [19/01/2009|17:20] C:\Program Files\Final Draft Tagger
    [23/08/2008|03:11] C:\Program Files\FlashGet
    [22/07/2007|07:38] C:\Program Files\Free Audio Pack
    [31/05/2007|01:47] C:\Program Files\Freeplayer
    [23/08/2008|05:52] C:\Program Files\Hitman Pro
    [21/11/2006|02:05] C:\Program Files\INSTAFINK
    [23/10/2008|05:06] C:\Program Files\InstallShield Installation Information
    [11/03/2006|20:02] C:\Program Files\Intel
    [04/09/2007|19:27] C:\Program Files\InterLok
    [14/08/2008|02:01] C:\Program Files\Internet Explorer
    [16/09/2006|18:36] C:\Program Files\iPod
    [16/09/2006|18:36] C:\Program Files\iTunes
    [03/06/2008|16:41] C:\Program Files\Java
    [15/07/2007|18:26] C:\Program Files\Kaspersky Lab
    [08/09/2008|13:47] C:\Program Files\Kibisoft
    [12/03/2006|14:18] C:\Program Files\Lavasoft
    [25/02/2009|09:33] C:\Program Files\ma-config.com
    [22/03/2005|20:02] C:\Program Files\Matroska Pack
    [14/08/2008|02:02] C:\Program Files\Messenger
    [11/03/2006|19:34] C:\Program Files\microsoft frontpage
    [26/09/2008|10:57] C:\Program Files\Microsoft Office
    [10/09/2007|19:57] C:\Program Files\Microsoft SQL Server
    [03/04/2006|18:30] C:\Program Files\Microsoft.NET
    [16/09/2006|04:15] C:\Program Files\MonitorTest
    [25/06/2006|18:20] C:\Program Files\Morpheus Toolbar
    [31/08/2007|22:18] C:\Program Files\MOVAVI
    [11/03/2006|20:45] C:\Program Files\Movie Maker
    [25/02/2009|13:07] C:\Program Files\Mozilla Firefox
    [26/09/2008|10:57] C:\Program Files\MSECache
    [11/03/2006|19:30] C:\Program Files\MSN
    [11/03/2006|22:18] C:\Program Files\MSN Apps
    [11/03/2006|19:30] C:\Program Files\MSN Gaming Zone
    [14/09/2007|09:21] C:\Program Files\MSN Messenger
    [04/10/2006|15:10] C:\Program Files\MSXML 4.0
    [10/04/2006|21:30] C:\Program Files\muvee Technologies
    [07/05/2008|00:02] C:\Program Files\NCH Swift Sound
    [19/03/2006|19:18] C:\Program Files\Need2Find
    [11/03/2006|20:44] C:\Program Files\NetMeeting
    [19/02/2007|02:55] C:\Program Files\OpenAL
    [10/11/2007|23:37] C:\Program Files\OpenOffice.org 2.3
    [05/07/2008|12:46] C:\Program Files\Opera
    [23/08/2008|10:30] C:\Program Files\outlook
    [26/06/2007|02:02] C:\Program Files\Outlook Express
    [22/07/2007|07:38] C:\Program Files\Pando Networks
    [18/05/2007|02:32] C:\Program Files\PhotoFiltre Studio
    [11/03/2006|21:29] C:\Program Files\Pinnacle
    [27/10/2006|06:34] C:\Program Files\PlayLinc
    [14/09/2007|00:11] C:\Program Files\POLLAC~1
    [12/03/2006|12:36] C:\Program Files\PowerISO
    [02/09/2008|12:04] C:\Program Files\QuickTime
    [02/09/2008|12:05] C:\Program Files\RADVideo
    [23/03/2006|18:42] C:\Program Files\Real
    [24/02/2009|17:30] C:\Program Files\RFA
    [15/06/2006|20:25] C:\Program Files\River Past
    [10/04/2006|21:27] C:\Program Files\RM-X DVrecorder
    [10/04/2006|21:27] C:\Program Files\RM-X© Search
    [04/09/2007|19:21] C:\Program Files\SafeNet Sentinel
    [16/10/2007|18:22] C:\Program Files\Samsung
    [11/03/2006|19:30] C:\Program Files\Services en ligne
    [31/01/2007|18:15] C:\Program Files\SlySoft
    [02/07/2007|17:41] C:\Program Files\Smart Projects
    [11/03/2006|20:59] C:\Program Files\SmartSound Software
    [23/08/2008|05:12] C:\Program Files\Spybot - Search & Destroy
    [03/12/2008|19:43] C:\Program Files\Steinberg
    [03/12/2008|19:45] C:\Program Files\Syncrosoft
    [25/02/2009|09:20] C:\Program Files\SystemRequirementsLab
    [21/11/2006|02:05] C:\Program Files\TBONBin
    [23/08/2008|05:05] C:\Program Files\Trend Micro
    [24/02/2009|22:18] C:\Program Files\Uniblue
    [10/09/2007|19:58] C:\Program Files\Uninstall Information
    [24/02/2009|18:57] C:\Program Files\UsbFix
    [08/04/2006|14:48] C:\Program Files\VideoLAN
    [20/01/2009|17:52] C:\Program Files\VSO
    [10/09/2007|19:56] C:\Program Files\Vstplugins
    [23/08/2008|05:13] C:\Program Files\Webroot
    [12/03/2006|21:46] C:\Program Files\Webteh
    [01/09/2007|14:36] C:\Program Files\Winamp
    [21/03/2006|03:02] C:\Program Files\Windows Media Player
    [11/03/2006|20:44] C:\Program Files\Windows NT
    [04/09/2007|19:28] C:\Program Files\WindowsUpdate
    [16/07/2006|12:46] C:\Program Files\WinRAR
    [11/03/2006|19:34] C:\Program Files\xerox

    --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

    [24/09/2008|13:41] C:\Program Files\Fichiers communs\Adobe
    [24/09/2008|13:41] C:\Program Files\Fichiers communs\Adobe AIR
    [18/05/2007|02:35] C:\Program Files\Fichiers communs\Adobe Systems Shared
    [04/09/2007|19:27] C:\Program Files\Fichiers communs\Avid
    [22/07/2007|07:31] C:\Program Files\Fichiers communs\AVSMedia
    [03/04/2006|18:29] C:\Program Files\Fichiers communs\DESIGNER
    [04/09/2007|19:30] C:\Program Files\Fichiers communs\Digidesign
    [04/04/2006|22:38] C:\Program Files\Fichiers communs\DirectX
    [15/02/2007|22:06] C:\Program Files\Fichiers communs\InstallShield
    [11/03/2006|20:26] C:\Program Files\Fichiers communs\Java
    [26/09/2008|10:57] C:\Program Files\Fichiers communs\Microsoft Shared
    [11/03/2006|19:31] C:\Program Files\Fichiers communs\MSSoap
    [10/04/2006|21:32] C:\Program Files\Fichiers communs\muvee Technologies
    [12/03/2006|02:24] C:\Program Files\Fichiers communs\ODBC
    [04/09/2007|19:28] C:\Program Files\Fichiers communs\PACE Anti-Piracy
    [16/05/2005|13:26] C:\Program Files\Fichiers communs\Pergenex Shared
    [23/03/2006|18:42] C:\Program Files\Fichiers communs\Real
    [15/06/2006|20:25] C:\Program Files\Fichiers communs\River Past
    [04/09/2007|19:21] C:\Program Files\Fichiers communs\SafeNet Sentinel
    [11/03/2006|19:31] C:\Program Files\Fichiers communs\Services
    [05/10/2007|20:22] C:\Program Files\Fichiers communs\Skype
    [12/03/2006|02:24] C:\Program Files\Fichiers communs\SpeechEngines
    [03/12/2008|19:46] C:\Program Files\Fichiers communs\Steinberg
    [26/06/2007|02:02] C:\Program Files\Fichiers communs\System
    [12/12/2006|02:45] C:\Program Files\Fichiers communs\SystemRequirementsLab
    [14/04/2006|00:29] C:\Program Files\Fichiers communs\Vbox
    [19/01/2009|17:19] C:\Program Files\Fichiers communs\Wise Installation Wizard
    [23/03/2006|18:42] C:\Program Files\Fichiers communs\xing shared

    --------------------\\ Process

    ( 23 Processes )

    ... OK !

    --------------------\\ Recherche avec S_Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Recherche de Fichiers / Dossiers Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Verification du Registre

    ..... OK !

    --------------------\\ Verification du fichier Hosts

    Fichier Hosts PROPRE


    --------------------\\ Recherche de fichiers avec Catchme

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2009-02-25 13:34:51
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 2

    --------------------\\ Recherche d'autres infections

    --------------------\\ ROOTKIT !!

    Rootkit Tibs ! .. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_TDSSSERV]
    Rootkit Tibs ! .. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_TDSSSERV]
    Rootkit Tibs ! .. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_TDSSSERV]
    Rootkit Tibs ! .. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\tdssserv]
    Rootkit Tibs ! .. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\tdssserv]
    Rootkit Tibs ! .. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\tdssserv]

    --------------------\\ Cracks & Keygens ..

    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\+{mininova.org}+ [NTi]_Splinter.Cell.Chaos.Theory.CRACK.ONLY-RELOADED_[www.NewTorrents.info].torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\-[mininova.org]- Tom Clancy's SPLINTER CELL 4 DOUBLE AGENT MULTILANGUAGE WITH CRACK.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\-{mininova.org}-.Prince.of.Persia.The.Two.Thrones.NoDVD.Crack.ONLY.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\Adobe After Effects Pro CS3 [FULL Use dll.Crack].torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\Adobe Contribute CS3 KEYGEN [mininova].torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\Adobe Photoshop Pro CS2 v9.0 Full ISO + WORKING Keygen.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\Adobe_CS3_Products_Crack_(Test__The_real_thing_).3736617.TPB.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\Adobe_Premiere_Pro_CS3_Full_Version_with_Crack.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\ConvertXtoDVD 3.3.4.107+Keygen-LnDL [mininova].torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\Crackdown.USA.XBOX360-RANT.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\Crackdown.USA.XBOX360.STEALTH.PATCHER.FIX-RANTSUCKSASS.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\Godfather The Game NOGROUP CRACK ONLY -~mininova.org~-.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\Prey.CLONEDVD+KeyGen.rar.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\prince.of.persia.-.two.thrones.WORKING.crack.zip.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\Registry First Aid Platinum 6.1.0 Build 1546 + Keygen [mininova].torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\ScarFace [ NO CD] Company of Heroes Condemned crack by Razor1911.rar -[mininova.org]-.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\Splinter_Cell_Chaos_Theory_Crack_ ^mininova.org^.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\STALKER Clear Sky CRACK, graph instruction and conversion english Vista x86 x64 and XP by Kosa53.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\STALKER.CLEAR.SKY.WITH.CRACK-MAVERICK.iso.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\The Godfather PC, serial + crack,Repack by jboog.rar ^mininova.org^'.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\www.bitreactor.to_Ghost.Recon.Advanced.Warfighter-RELOA... ^mininova.org^.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\[PC]POSTAL.2.SHARE.THE.PAIN.+.APOCALYPSE.WEEKEND.+.CRACK.+.PATCH.&.CHEAT.by.DARK.SHADOW.zip.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\_Crackdown.USA.XBOX360-RANT.torrent
    C:\DOCUME~1\JEANMA~1\Application Data\Azureus\torrents\_STALKER.CLEAR.SKY.WITH.CRACK-MAVERICK.iso.torrent
    C:\DOCUME~1\JEANMA~1\Complete\Alcohol 120 v1 9 5 4212 + Keygen.zip
    C:\DOCUME~1\JEANMA~1\Complete\AVG Pro v7 1 371 - Incl Keygen rar.zip
    C:\DOCUME~1\JEANMA~1\Complete\Bigfish Games - Sweetopia + Crack.zip
    C:\DOCUME~1\JEANMA~1\Complete\Hitman Blood Money CRACK ONLY-iND.zip
    C:\DOCUME~1\JEANMA~1\Complete\KeyGen RC4 Encryption Key Maker 1.0.8.zip
    C:\DOCUME~1\JEANMA~1\Complete\KeyGen RC4 Encryption Key Maker 2.zip
    C:\DOCUME~1\JEANMA~1\Complete\Magic DVD Ripper 4.2 + crack Updated Sept 14th.zip
    C:\DOCUME~1\JEANMA~1\Complete\Nero 7 Premium Reloaded 7.5.1.1 - Official PT-BR With Keygen.zip
    C:\DOCUME~1\JEANMA~1\Complete\PalmCrack 1.1.zip
    C:\DOCUME~1\JEANMA~1\Complete\password discovery 2 2 crack-rev zip.zip
    C:\DOCUME~1\JEANMA~1\Complete\Pinnacle Studio Plus v10.5.1 Titanium Edition + 2CDs + Keygen + MultiLanguage.zip
    C:\DOCUME~1\JEANMA~1\Complete\PowerISO 3.1 with keygen (latest version).zip
    C:\DOCUME~1\JEANMA~1\Complete\Sony DVD Architect v4 0 Incl Keygen-SSG.zip
    C:\DOCUME~1\JEANMA~1\Complete\Sony Vegas + DVD Production Suite 7 + keygen - [www slotorrent net].zip
    C:\DOCUME~1\JEANMA~1\Complete\Sony Vegas v7 0a Incl Keygen-SSG.zip
    C:\DOCUME~1\JEANMA~1\Complete\Ulead DVD MovieFactory v5 0 Plus Incl Keygen SSG.zip
    C:\DOCUME~1\JEANMA~1\Complete\WGA May 2006 Crack.zip
    C:\DOCUME~1\JEANMA~1\Complete\WinRar version 3 61 + crack (by CFF).zip
    C:\DOCUME~1\JEANMA~1\Complete\Xilisoft DVD Ripper Platinum 4 0 54 0915 + Keygen (iTeam PaNNa).zip
    C:\DOCUME~1\JEANMA~1\Recent\crack.lnk
    C:\DOCUME~1\JEANMA~1\Recent\Registry First Aid Platinum 6.1.0 Build 1546 + Keygen.lnk


    [F:2][D:2]-> C:\DOCUME~1\JEANMA~1\LOCALS~1\Temp
    [F:2][D:1]-> C:\DOCUME~1\JEANMA~1\Cookies
    [F:14][D:4]-> C:\DOCUME~1\JEANMA~1\LOCALS~1\TEMPOR~1\content.IE5
    [F:2][D:1]-> C:\Recycled

    1 - "C:\Lop SD\LopR_1.txt" - 25/02/2009|13:22 - Option : [1]
    2 - "C:\Lop SD\LopR_2.txt" - 25/02/2009|13:35 - Option : [2]

    --------------------\\ Fin du rapport a 13:35:33
    a c 295 8 Sécurité
    25 Février 2009 14:07:49

    [#ff0000]/!\ Désactive tes protections résidentes (Antivirus, etc...) /!\[/#f]

  • Télécharge ComboFix ([#ff0000]sUBs[/#f]) sur ton Bureau.
  • Double-clique sur ComboFix.exe (le .exe n'est pas forcément visible) afin de le lancer.
  • Il va te demander d'installer la console de récupération : accepte.
  • Lorsque la recherche sera terminée, un rapport apparaîtra. Poste ce rapport (C:\Combofix.txt) dans ta prochaine réponse.

    Pour t'aider : Un guide et un tutoriel sur l'utilisation de ComboFix
    25 Février 2009 15:16:10

    Voila le rapport avec un peu de retard, désolé j ai mis du tps a désactiver mes protections.

    ComboFix 09-02-24.02 - jean marc 2009-02-25 14:53:19.1 - NTFSx86
    Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.1535.1179 [GMT 1:00]
    Lancé depuis: c:\documents and settings\jean marc\Bureau\ComboFix.exe
    * Un nouveau point de restauration a été créé
    .

    (((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
    .

    c:\documents and settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat
    c:\documents and settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat
    c:\documents and settings\jean marc\Application Data\inst.exe
    c:\program files\Altnet
    c:\program files\Altnet\DBBackup\Sigfiles.db
    c:\program files\Altnet\Download Manager\dminfo3.cab
    c:\program files\Altnet\Download Manager\dminstall7.cab
    c:\program files\Altnet\Download Manager\dmsetup.bmp
    c:\program files\Altnet\Download Manager\dmsetupbig.bmp
    c:\program files\Altnet\Download Manager\jsinstall.cab
    c:\program files\Altnet\Download Manager\jslegals.txt
    c:\program files\Altnet\Download Manager\selectdir.txt
    c:\program files\Altnet\Download Manager\selectdir1st.txt
    c:\program files\Altnet\My Altnet Shares\Bullguard Protection\plugins.cab.cab
    c:\program files\Altnet\Points Manager\LocalPages\altnet.css
    c:\program files\Altnet\Points Manager\LocalPages\gradient.gif
    c:\program files\Altnet\Points Manager\LocalPages\local_firstuse.html
    c:\program files\Altnet\Points Manager\LocalPages\local_points.html
    c:\program files\Altnet\Points Manager\LocalPages\local_redeem.html
    c:\program files\Altnet\Points Manager\LocalPages\local_start.html
    c:\program files\Altnet\Points Manager\LocalPages\local_wallet.html
    c:\program files\Altnet\Points Manager\LocalPages\notconnected.gif
    c:\program files\Altnet\Points Manager\LocalPages\offline.gif
    c:\program files\Altnet\Points Manager\LocalPages\pixel.gif
    c:\program files\Altnet\Points Manager\Points Manager.exe.Manifest
    c:\program files\Altnet\Points Manager\settings.cab
    c:\program files\Altnet\Points Manager\setup.cab
    c:\program files\Altnet\Points Manager\Skin\back-over.bmp
    c:\program files\Altnet\Points Manager\Skin\back.bmp
    c:\program files\Altnet\Points Manager\Skin\bottom.bmp
    c:\program files\Altnet\Points Manager\Skin\bottomleft.bmp
    c:\program files\Altnet\Points Manager\Skin\bottomright.bmp
    c:\program files\Altnet\Points Manager\Skin\close-over.bmp
    c:\program files\Altnet\Points Manager\Skin\close.bmp
    c:\program files\Altnet\Points Manager\Skin\forward-over.bmp
    c:\program files\Altnet\Points Manager\Skin\forward.bmp
    c:\program files\Altnet\Points Manager\Skin\help-bottom.bmp
    c:\program files\Altnet\Points Manager\Skin\help-over.bmp
    c:\program files\Altnet\Points Manager\Skin\help-sel.bmp
    c:\program files\Altnet\Points Manager\Skin\help-top.bmp
    c:\program files\Altnet\Points Manager\Skin\help-topleft.bmp
    c:\program files\Altnet\Points Manager\Skin\help-topright.bmp
    c:\program files\Altnet\Points Manager\Skin\help.bmp
    c:\program files\Altnet\Points Manager\Skin\Help.xml
    c:\program files\Altnet\Points Manager\Skin\left.bmp
    c:\program files\Altnet\Points Manager\Skin\maximise-over.bmp
    c:\program files\Altnet\Points Manager\Skin\maximise.bmp
    c:\program files\Altnet\Points Manager\Skin\mb_bottom.bmp
    c:\program files\Altnet\Points Manager\Skin\mb_bottomleft.bmp
    c:\program files\Altnet\Points Manager\Skin\mb_bottomright.bmp
    c:\program files\Altnet\Points Manager\Skin\mb_left.bmp
    c:\program files\Altnet\Points Manager\Skin\mb_right.bmp
    c:\program files\Altnet\Points Manager\Skin\mb_top.bmp
    c:\program files\Altnet\Points Manager\Skin\mb_topleft.bmp
    c:\program files\Altnet\Points Manager\Skin\mb_topright.bmp
    c:\program files\Altnet\Points Manager\Skin\message.xml
    c:\program files\Altnet\Points Manager\Skin\minimise-over.bmp
    c:\program files\Altnet\Points Manager\Skin\minimise.bmp
    c:\program files\Altnet\Points Manager\Skin\points-disabled.bmp
    c:\program files\Altnet\Points Manager\Skin\points-over.bmp
    c:\program files\Altnet\Points Manager\Skin\points-sel.bmp
    c:\program files\Altnet\Points Manager\Skin\points.bmp
    c:\program files\Altnet\Points Manager\Skin\redeem-disabled.bmp
    c:\program files\Altnet\Points Manager\Skin\redeem-over.bmp
    c:\program files\Altnet\Points Manager\Skin\redeem-sel.bmp
    c:\program files\Altnet\Points Manager\Skin\redeem.bmp
    c:\program files\Altnet\Points Manager\Skin\refresh-over.bmp
    c:\program files\Altnet\Points Manager\Skin\refresh.bmp
    c:\program files\Altnet\Points Manager\Skin\right.bmp
    c:\program files\Altnet\Points Manager\Skin\Sav3BD.tmp
    c:\program files\Altnet\Points Manager\Skin\settings-disabled.bmp
    c:\program files\Altnet\Points Manager\Skin\settings-over.bmp
    c:\program files\Altnet\Points Manager\Skin\settings-sel.bmp
    c:\program files\Altnet\Points Manager\Skin\settings.bmp
    c:\program files\Altnet\Points Manager\Skin\Skin.xml
    c:\program files\Altnet\Points Manager\Skin\start-disabled.bmp
    c:\program files\Altnet\Points Manager\Skin\start-over.bmp
    c:\program files\Altnet\Points Manager\Skin\start-sel.bmp
    c:\program files\Altnet\Points Manager\Skin\start.bmp
    c:\program files\Altnet\Points Manager\Skin\top.bmp
    c:\program files\Altnet\Points Manager\Skin\topleft-pro.bmp
    c:\program files\Altnet\Points Manager\Skin\topleft-reg.bmp
    c:\program files\Altnet\Points Manager\Skin\topleft.bmp
    c:\program files\Altnet\Points Manager\Skin\topright.bmp
    c:\program files\Altnet\Points Manager\Skin\wallet-disabled.bmp
    c:\program files\Altnet\Points Manager\Skin\wallet-over.bmp
    c:\program files\Altnet\Points Manager\Skin\wallet-sel.bmp
    c:\program files\Altnet\Points Manager\Skin\wallet.bmp
    c:\program files\Need2Find
    c:\program files\Need2Find\bar\1.bin\N2FFXTBR.JAR
    c:\program files\Need2Find\bar\1.bin\N2NTSTBR.JAR
    c:\program files\Need2Find\bar\1.bin\PARTNER.DAT
    c:\program files\Need2Find\bar\Cache\0816ADC0
    c:\program files\Need2Find\bar\Cache\files.ini
    c:\program files\Need2Find\bar\History\search
    c:\program files\Need2Find\bar\Settings\prevcfg.htm
    c:\program files\outlook
    c:\recycled\Recycled
    c:\windows\cdmxtras
    c:\windows\cdmxtras\uninst.exe
    c:\windows\system32\AdCache
    c:\windows\system32\AdCache\B_329_0_0_106800.htm
    c:\windows\system32\AdCache\B_329_0_0_107400.htm
    c:\windows\system32\AdCache\B_329_1_0_449200.gif
    c:\windows\system32\AdCache\B_329_1_0_449600.gif
    c:\windows\system32\AdCache\B_329_1_0_454300.gif
    c:\windows\system32\AdCache\B_329_2_0_106800.htm
    c:\windows\system32\AdCache\B_329_2_0_107400.htm
    c:\windows\system32\AdCache\B_329_3_0_106800.htm
    c:\windows\system32\AdCache\B_329_3_0_107400.htm
    c:\windows\system32\AdCache\B_329_4_0_111600.htm
    c:\windows\system32\AdCache\B_329_4_0_152400.htm
    c:\windows\system32\AdCache\B_329_4_0_155300.htm
    c:\windows\system32\AdCache\B_329_4_0_164100.htm
    c:\windows\system32\bszip.dll
    c:\windows\system32\cache329
    c:\windows\system32\cache329\B_329_0_0_106800.htm
    c:\windows\system32\cache329\B_329_0_0_107400.htm
    c:\windows\system32\cache329\B_329_1_0_449200.gif
    c:\windows\system32\cache329\B_329_1_0_449600.gif
    c:\windows\system32\cache329\B_329_1_0_454300.gif
    c:\windows\system32\cache329\B_329_2_0_106800.htm
    c:\windows\system32\cache329\B_329_2_0_107400.htm
    c:\windows\system32\cache329\B_329_3_0_106800.htm
    c:\windows\system32\cache329\B_329_3_0_107400.htm
    c:\windows\system32\cache329\B_329_4_0_111600.htm
    c:\windows\system32\cache329\B_329_4_0_152400.htm
    c:\windows\system32\cache329\B_329_4_0_155300.htm
    c:\windows\system32\cache329\B_329_4_0_164100.htm
    c:\windows\system32\cache329\t_B_329_0_0_106800.htm
    c:\windows\system32\cache329\t_B_329_0_0_107400.htm
    c:\windows\system32\cache329\t_B_329_2_0_106800.htm
    c:\windows\system32\cache329\t_B_329_2_0_107400.htm
    c:\windows\system32\cache329\t_B_329_3_0_106800.htm
    c:\windows\system32\cache329\t_B_329_3_0_107400.htm
    c:\windows\system32\cache329\t_B_329_4_0_111600.htm
    c:\windows\system32\cache329\t_B_329_4_0_152400.htm
    c:\windows\system32\cache329\t_B_329_4_0_155300.htm
    c:\windows\system32\cache329\t_B_329_4_0_164100.htm
    c:\windows\system32\fdruwvkm.ini
    c:\windows\whAgent.inf
    c:\windows\whInstaller.ini

    ----- BITS: Il y a peut-être des sites infectés -----

    hxxp://91.203.93.21
    .
    ((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))
    .

    -------\Legacy_OREANS32
    -------\Legacy_TDSSSERV
    -------\Service_tdssserv


    ((((((((((((((((((((((((((((( Fichiers créés du 2009-01-25 au 2009-02-25 ))))))))))))))))))))))))))))))))))))
    .

    2009-02-25 14:58 . 2009-02-25 14:58 <REP> d-------- c:\windows\LastGood
    2009-02-25 13:19 . 2009-02-25 13:35 <REP> d-------- C:\Lop SD
    2009-02-25 11:31 . 2009-02-25 11:31 <REP> d-------- c:\windows\Logs
    2009-02-25 11:21 . 2009-02-25 14:22 664 --a------ c:\windows\system32\d3d9caps.dat
    2009-02-25 11:18 . 2009-02-25 11:18 8 --a------ c:\windows\system32\nvModes.dat
    2009-02-25 10:28 . 2009-02-09 13:18 211,189 --a------ c:\windows\system32\nvapps.nvb
    2009-02-25 10:27 . 2009-02-05 10:54 453,152 --a------ c:\windows\system32\NVUNINST.EXE
    2009-02-25 10:16 . 2009-02-25 10:16 <REP> d-------- c:\documents and settings\All Users\Application Data\nView_Profiles
    2009-02-25 10:13 . 2009-02-25 10:29 <REP> d-------- c:\windows\nview
    2009-02-25 10:13 . 2009-02-09 13:18 453,152 --a------ c:\windows\system32\nvudisp.exe
    2009-02-25 10:13 . 2009-02-09 13:18 18,795 --a------ c:\windows\system32\nvdisp.nvu
    2009-02-25 09:53 . 2009-02-25 10:01 <REP> d-------- c:\windows\NV28163244.TMP
    2009-02-25 09:46 . 2009-02-25 10:26 <REP> d-------- C:\NVIDIA
    2009-02-25 09:33 . 2009-02-25 09:33 <REP> d-------- c:\program files\ma-config.com
    2009-02-25 09:33 . 2009-02-25 09:33 <REP> d-------- c:\documents and settings\All Users\Application Data\ma-config.com
    2009-02-25 09:30 . 2009-02-09 13:18 6,307,328 --a------ c:\windows\system32\drivers\nv4_mini.sys
    2009-02-25 09:30 . 2009-02-09 13:18 6,307,328 --a--c--- c:\windows\system32\dllcache\nv4_mini.sys
    2009-02-25 09:30 . 2009-02-09 13:18 6,185,088 --a------ c:\windows\system32\nv4_disp.dll
    2009-02-25 09:30 . 2004-10-29 16:50 3,736,704 --a--c--- c:\windows\system32\dllcache\nv4_disp.dll
    2009-02-25 09:20 . 2009-02-25 09:20 <REP> d-------- c:\program files\SystemRequirementsLab
    2009-02-25 09:20 . 2009-02-25 09:20 <REP> d-------- c:\documents and settings\jean marc\Application Data\SystemRequirementsLab
    2009-02-25 07:36 . 2009-02-25 07:36 <REP> d-------- C:\_OTMoveIt
    2009-02-24 22:21 . 2009-02-24 22:27 <REP> d-------- c:\windows\NV37563572.TMP
    2009-02-24 22:18 . 2009-02-24 22:18 <REP> d-------- c:\program files\Uniblue
    2009-02-24 22:18 . 2009-02-24 22:18 <REP> d-------- c:\documents and settings\jean marc\Application Data\Uniblue
    2009-02-24 22:18 . 2009-02-24 22:19 <REP> d-------- c:\documents and settings\All Users\Application Data\DriverScanner
    2009-02-24 22:17 . 2009-02-24 22:18 <REP> d--h-c--- c:\documents and settings\All Users\Application Data\{66E2F539-12B6-4870-A500-7689CDE75C5E}
    2009-02-24 19:13 . 2009-02-24 19:13 <REP> d-------- c:\program files\Alwil Software
    2009-02-24 18:54 . 2009-02-24 18:57 <REP> d-------- c:\program files\UsbFix
    2009-02-24 18:46 . 2009-02-24 18:46 <REP> d-------- C:\rsit
    2009-02-24 16:59 . 2009-02-24 17:30 <REP> d-------- c:\program files\RFA
    2009-02-24 16:39 . 2009-02-24 16:40 <REP> d-------- c:\windows\NV28802884.TMP
    2009-02-18 06:46 . 2009-02-18 06:46 <REP> d---s---- c:\documents and settings\jean marc\UserData
    2009-02-15 08:05 . 2009-02-15 08:05 <REP> d-------- c:\windows\NV6441684.TMP
    2009-02-15 08:01 . 2009-02-15 08:01 <REP> d-------- c:\windows\NV784572.TMP
    2009-02-15 07:43 . 2009-02-15 07:43 <REP> d-------- c:\windows\NV13401936.TMP
    2009-02-15 07:37 . 2009-02-15 07:37 <REP> d-------- c:\windows\NV568584.TMP
    2009-02-15 07:30 . 2009-02-15 07:31 <REP> d-------- c:\windows\NV18561836.TMP
    2009-02-15 07:28 . 2009-02-15 07:28 <REP> d-------- c:\windows\NV8041080.TMP
    2009-02-15 07:26 . 2009-02-15 07:26 <REP> d-------- c:\program files\Driver Cleaner Pro
    2009-02-15 07:21 . 2009-02-15 07:21 <REP> d-------- c:\windows\NV18241820.TMP
    2009-02-15 07:20 . 2007-09-17 00:07 8,491,008 --a------ c:\windows\system32\OLD16.tmp
    2009-02-15 07:20 . 2004-10-29 16:50 3,736,704 --a------ c:\windows\system32\OLD17.tmp
    2009-02-15 07:20 . 2007-09-17 00:07 36,864 --a------ c:\windows\system32\OLD18.tmp
    2009-02-15 07:17 . 2009-02-15 07:17 <REP> d-------- c:\windows\NV35763580.TMP
    2009-02-15 07:16 . 2004-10-29 16:50 32,256 --a------ c:\windows\system32\SET9.tmp
    2009-02-15 07:02 . 2009-02-15 07:02 <REP> d-------- c:\windows\NV14361504.TMP
    2009-02-15 06:56 . 2009-02-15 06:56 <REP> d-------- c:\windows\NV11001288.TMP
    2009-02-15 06:37 . 2009-02-15 06:37 <REP> d-------- c:\windows\NV36403644.TMP
    2009-02-15 06:29 . 2009-02-15 06:29 <REP> d-------- c:\windows\NV12122992.TMP

    .
    (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2009-02-25 13:16 --------- d-----w c:\program files\Kaspersky Lab
    2009-02-24 17:32 --------- d-----w c:\documents and settings\jean marc\Application Data\Azureus
    2009-02-24 02:14 --------- d-----w c:\program files\Celtx
    2009-02-11 09:19 38,496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys
    2009-02-11 09:19 15,504 ----a-w c:\windows\system32\drivers\mbam.sys
    2009-02-09 13:21 --------- d-----w c:\documents and settings\jean marc\Application Data\Vso
    2009-01-27 12:53 --------- d-----w c:\documents and settings\jean marc\Application Data\OpenOffice.org2
    2009-01-21 08:47 --------- d-----w c:\documents and settings\All Users\Application Data\vsosdk
    2009-01-20 16:52 --------- d-----w c:\program files\VSO
    2009-01-19 16:20 --------- d-----w c:\program files\Final Draft Tagger
    2009-01-19 16:20 --------- d-----w c:\program files\Final Draft 7
    2009-01-19 16:19 --------- d-----w c:\program files\Fichiers communs\Wise Installation Wizard
    2009-01-19 16:07 --------- d-----w c:\documents and settings\jean marc\Application Data\Final Draft
    2009-01-19 16:06 --------- d-----w c:\documents and settings\All Users\Application Data\Final Draft
    2009-01-19 15:38 --------- d-----w c:\documents and settings\jean marc\Application Data\Greyfirst
    2005-03-31 19:42 47,360 ----a-w c:\documents and settings\jean marc\Application Data\pcouffin.sys
    2006-05-03 09:06 163,328 --sh--r c:\windows\system32\flvDX.dll
    2005-03-30 23:04 10,856 --sha-w c:\windows\system32\KGyGaAvL.sys
    2008-08-23 05:14 1,401 --sha-w c:\windows\system32\mmf.sys
    2007-02-21 10:47 31,232 --sh--r c:\windows\system32\msfDX.dll
    2008-10-16 03:07 154,579,744 --sha-w c:\windows\system32\drivers\fidbox.dat
    2008-10-16 03:00 3,375,136 --sha-w c:\windows\system32\drivers\fidbox2.dat
    .

    ((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
    REGEDIT4

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "MSConfig"="c:\windows\pchealth\helpctr\Binaries\MSCONFIG.EXE" [2004-08-19 160768]

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
    "<NO NAME>"= 0

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
    "VIDC.I420"= i420vfw.dll
    "VIDC.MJPG"= Pvmjpg30.dll
    "MIDI1"= diomidi.dll
    "wave1"= Digi32.dll
    "vidc.ffds"= e:\progra~1\COMBIN~1\Filters\FFDShow\ff_vfw.dll

    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Gamma Loader.lnk]
    backup=c:\windows\pss\Adobe Gamma Loader.lnkCommon Startup

    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Reader Speed Launch.lnk]
    backup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup

    [HKLM\~\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^Adobe Gamma.lnk]
    backup=c:\windows\pss\Adobe Gamma.lnkStartup

    [HKLM\~\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 2.3.lnk]
    backup=c:\windows\pss\OpenOffice.org 2.3.lnkStartup

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
    --a------ 2008-06-12 01:38 34672 c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AGEIA PhysX SysTray]
    --a------ 2007-01-05 21:23 357928 c:\program files\AGEIA Technologies\bin\TrayIcon.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CloneCDTray]
    --a------ 2006-09-28 20:21 57344 c:\program files\SlySoft\CloneCD\CloneCDTray.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative Detector]
    --a------ 2004-12-02 18:23 102400 c:\program files\Creative\MediaSource\Detector\CTDetect.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative MediaSource Go]
    --a------ 2004-11-30 11:00 135168 c:\program files\Creative\MediaSource\Go\CTCMSGo.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
    --a------ 2004-08-19 16:09 15360 c:\windows\system32\ctfmon.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTSysVol]
    --a------ 2005-02-15 15:10 57344 c:\program files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
    --a------ 2006-11-12 11:48 157592 c:\program files\DAEMON Tools\daemon.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DigidesignMMERefresh]
    --a------ 2006-12-09 00:17 61440 c:\program files\Digidesign\Drivers\MMERefresh.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igndlm.exe]
    --a------ 2007-03-05 22:57 1103480 e:\program files\Download Manager\DLM.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
    --a------ 2006-09-12 00:58 229952 c:\program files\iTunes\iTunesHelper.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\kis]
    --a------ 2006-03-24 19:09 139367 c:\program files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
    --a------ 2004-10-13 17:24 1694208 c:\program files\Messenger\msmsgs.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
    --a------ 2007-01-19 11:55 5674352 c:\program files\MSN Messenger\msnmsgr.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
    --a------ 2009-02-09 13:18 13680640 c:\windows\system32\nvcpl.dll

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
    --a------ 2009-02-09 13:18 86016 c:\windows\system32\nvmctray.dll

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pando]
    --a------ 2007-06-27 15:22 4044104 c:\program files\Pando Networks\Pando\pando.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PinnacleDriverCheck]
    --a------ 2004-03-11 00:26 406016 c:\windows\system32\PSDrvCheck.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
    --a------ 2006-01-31 13:20 180224 c:\program files\PowerISO\PWRISOVM.EXE

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
    --a------ 2008-05-27 09:50 413696 c:\program files\QuickTime\QTTask.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\rfagent]
    --a------ 2007-12-04 20:45 916800 c:\program files\RFA\rfagent.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
    --a------ 2008-10-23 04:56 1410296 e:\program files\Steam\steam.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
    --a------ 2006-12-15 02:23 75520 c:\program files\Java\jre1.5.0_11\bin\jusched.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SVCHOST.EXE]
    --a------ 2004-08-19 16:10 14336 c:\windows\system32\svchost.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
    --a------ 2006-03-23 18:42 180269 c:\program files\Fichiers communs\Real\Update_OB\realsched.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdReg]
    --a------ 2000-05-11 00:00 90112 c:\windows\Updreg.EXE

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
    --a------ 2006-06-21 18:14 35328 c:\program files\Winamp\winampa.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EXPLORER.EXE]
    --a------ 2007-06-13 14:22 1037312 c:\windows\explorer.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
    "FLEXnet Licensing Service"=3 (0x3)
    "Bonjour Service"=2 (0x2)
    "WebrootSpySweeperService"=2 (0x2)
    "usnjsvc"=3 (0x3)
    "ose"=3 (0x3)
    "LicCtrlService"=2 (0x2)
    "IDriverT"=3 (0x3)
    "DigiRefresh"=2 (0x2)
    "AVP"=2 (0x2)
    "AvidStartup"=2 (0x2)
    "AvidSDMService"=2 (0x2)

    [HKEY_LOCAL_MACHINE\software\microsoft\security center]
    "AntiVirusDisableNotify"=dword:00000001
    "UpdatesDisableNotify"=dword:00000001

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
    "EnableFirewall"= 0 (0x0)

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
    "%windir%\\system32\\sessmgr.exe"=
    "c:\\Program Files\\Pinnacle\\Studio 10\\programs\\RM.exe"=
    "c:\\Program Files\\Pinnacle\\Studio 10\\programs\\Studio.exe"=
    "c:\\Program Files\\Pinnacle\\Studio 10\\programs\\PMSRegisterFile.exe"=
    "c:\\Program Files\\Pinnacle\\Studio 10\\programs\\umi.exe"=
    "c:\\Program Files\\Azureus\\Azureus.exe"=
    "c:\\WINDOWS\\system32\\javaw.exe"=
    "c:\\StubInstaller.exe"=
    "c:\\Program Files\\iTunes\\iTunes.exe"=
    "c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
    "c:\\Program Files\\Opera\\Opera.exe"=
    "c:\\Program Files\\Freeplayer\\vlc\\vlc.exe"=
    "c:\\Program Files\\aMSN\\bin\\wish.exe"=
    "c:\\Program Files\\Pando Networks\\Pando\\pando.exe"=
    "c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
    "c:\\Program Files\\MSN Messenger\\livecall.exe"=
    "c:\\Program Files\\Messenger\\msmsgs.exe"=
    "e:\\Program Files\\Steam\\Steam.exe"=
    "e:\\Program Files\\Steam\\steamapps\\anungunrama227\\team fortress 2\\hl2.exe"=
    "e:\\Program Files\\GameSpy Arcade\\Aphex.exe"=

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
    "14314:TCP"= 14314:TCP:NortonAV
    "17784:TCP"= 17784:TCP:NortonAV
    "14758:TCP"= 14758:TCP:NortonAV
    "18900:TCP"= 18900:TCP:NortonAV

    R0 sfsync03;StarForce Protection Synchronization Driver (version 3.x);c:\windows\system32\drivers\sfsync03.sys [2005-12-06 35328]
    R2 ACEDRV06;ACEDRV06;c:\windows\system32\drivers\ACEDRV06.sys [2006-07-14 99840]
    R2 DigiNet;Digidesign Ethernet Support;c:\windows\system32\drivers\diginet.sys [2007-09-04 11776]
    R3 BENDER;Pinnacle DV/AV Capture;c:\windows\system32\drivers\bender.sys [2006-03-11 200320]
    S3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [2009-01-24 216232]
    S3 Shrvddms;Shrvddms; [x]
    S3 SynasUSB;SynasUSB;c:\windows\system32\drivers\synasUSB.sys [2008-12-03 23288]
    S4 LicCtrlService;LicCtrl Service;c:\windows\Runservice.exe [2007-02-15 2560]
    .
    Contenu du dossier 'Tâches planifiées'

    2009-02-20 c:\windows\Tasks\AppleSoftwareUpdate.job
    - c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-04-11 16:57]
    .
    .
    ------- Examen supplémentaire -------
    .
    uLocal Page = c:\windows\PCHEALTH\HELPCTR\System\panels\blank.htm
    mLocal Page = c:\windows\PCHEALTH\HELPCTR\System\panels\blank.htm
    uInternet Settings,ProxyOverride = *.local
    FF - ProfilePath - c:\documents and settings\jean marc\Application Data\Mozilla\Firefox\Profiles\pxafflw7.default\
    FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
    FF - prefs.js: browser.search.selectedEngine - Google
    FF - prefs.js: browser.startup.homepage - hxxp://french.icrfast.com/index.php?rvs=hompag
    FF - prefs.js: keyword.URL - hxxp://ws1.appswebservice.com/index.php?tpid=10244&tspid=650244&ttid=105&st=
    FF - plugin: c:\documents and settings\jean marc\Application Data\Mozilla\Firefox\Profiles\pxafflw7.default\extensions\{bb628310-0ab7-11db-9cd8-0800200c9a66}\plugins\nphardwaredetection.dll
    FF - plugin: c:\program files\Java\jre1.5.0_11\bin\NPJava11.dll
    FF - plugin: c:\program files\Java\jre1.5.0_11\bin\NPJava12.dll
    FF - plugin: c:\program files\Java\jre1.5.0_11\bin\NPJava13.dll
    FF - plugin: c:\program files\Java\jre1.5.0_11\bin\NPJava14.dll
    FF - plugin: c:\program files\Java\jre1.5.0_11\bin\NPJava32.dll
    FF - plugin: c:\program files\Java\jre1.5.0_11\bin\NPJPI150_11.dll
    FF - plugin: c:\program files\Java\jre1.5.0_11\bin\NPOJI610.dll
    FF - plugin: c:\program files\ma-config.com\nphardwaredetection.dll
    FF - plugin: c:\program files\Mozilla Firefox\plugins\npqtplugin8.dll
    FF - plugin: c:\program files\Opera\program\plugins\npdivx32.dll
    FF - plugin: c:\program files\Opera\program\plugins\npqtplugin8.dll
    FF - plugin: c:\program files\QuickTime\Plugins\npqtplugin8.dll
    FF - plugin: e:\program files\Download Manager\npfpdlm.dll
    .

    **************************************************************************

    catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2009-02-25 14:58:07
    Windows 5.1.2600 Service Pack 2 NTFS

    Recherche de processus cachés ...

    Recherche d'éléments en démarrage automatique cachés ...

    Recherche de fichiers cachés ...

    Scan terminé avec succès
    Fichiers cachés: 0

    **************************************************************************
    .
    --------------------- CLES DE REGISTRE BLOQUEES ---------------------

    [HKEY_USERS\S-1-5-21-746137067-1708537768-839522115-1003\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
    "??"=hex:71,60,ad,c2,e0,5a,08,70,3e,7c,24,a3,d2,26,05,e6,c2,9e,16,94,51,7f,92,
    38,7f,f6,a0,e8,01,e7,38,3c,2e,8d,e3,d3,7d,0a,04,0f,79,96,6b,47,26,67,0e,3f,\
    "??"=hex:3d,cb,dd,a5,c9,98,69,67,8c,71,b3,4c,ce,16,c7,42

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "cd042efbbd7f7af1647644e76e06692b"=hex:c8,28,51,af,b0,29,a3,98,bf,92,ee,21,4d,
    a4,d4,06,e2,63,26,f1,3f,c8,ff,68,a4,f6,f0,43,d9,6a,ca,85,e2,63,26,f1,3f,c8,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "bca643cdc5c2726b20d2ecedcc62c59b"=hex:71,3b,04,66,8b,46,0d,96,74,57,25,b5,a3,
    36,e7,cd,6a,9c,d6,61,af,45,84,18,b7,07,78,99,50,76,1c,ed,6a,9c,d6,61,af,45,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "2c81e34222e8052573023a60d06dd016"=hex:25,da,ec,7e,55,20,c9,26,b1,01,c0,ab,59,
    1c,d8,2c,ff,7c,85,e0,43,d4,0e,fe,5d,b5,45,78,7b,ef,34,21,ff,7c,85,e0,43,d4,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "2582ae41fb52324423be06337561aa48"=hex:6b,65,49,6a,7e,99,74,f7,17,16,8c,c3,2d,
    2d,ae,ec,86,8c,21,01,be,91,eb,e7,26,f4,e9,ea,9e,12,be,c1,86,8c,21,01,be,91,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "caaeda5fd7a9ed7697d9686d4b818472"=hex:f5,1d,4d,73,a8,13,5c,05,f5,40,a0,9e,4b,
    b3,f4,72,f5,1d,4d,73,a8,13,5c,05,03,d9,e5,e3,cf,c2,ba,2f,f5,1d,4d,73,a8,13,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "a4a1bcf2cc2b8bc3716b74b2b4522f5d"=hex:D f,20,58,62,78,6b,cf,c8,e9,77,1e,24,27,
    84,5c,97,df,20,58,62,78,6b,cf,c8,28,81,3b,e8,d2,32,e8,eb,df,20,58,62,78,6b,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "4d370831d2c43cd13623e232fed27b7b"=hex:fb,a7,78,e6,12,2f,9a,ea,cb,dc,3e,d0,98,
    84,84,e7,fb,a7,78,e6,12,2f,9a,ea,82,e8,5f,cb,43,1f,95,9e,fb,a7,78,e6,12,2f,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "1d68fe701cdea33e477eb204b76f993d"=hex:01,3a,48,fc,e8,04,4a,f1,9f,0f,45,e8,c1,
    75,1b,e4,01,3a,48,fc,e8,04,4a,f1,f3,64,02,2d,f0,63,eb,08,01,3a,48,fc,e8,04,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "1fac81b91d8e3c5aa4b0a51804d844a3"=hex:f6,0f,4e,58,98,5b,89,c9,de,b0,7a,46,01,
    4c,5f,18,f6,0f,4e,58,98,5b,89,c9,30,09,a4,6e,b9,3e,94,f3,f6,0f,4e,58,98,5b,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "f5f62a6129303efb32fbe080bb27835b"=hex:3d,ce,ea,26,2d,45,aa,78,1c,8f,b0,8b,c8,
    ea,f4,5f,3d,ce,ea,26,2d,45,aa,78,94,3b,ad,12,78,3a,e4,b2,3d,ce,ea,26,2d,45,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "fd4e2e1a3940b94dceb5a6a021f2e3c6"=hex:e3,0e,66,d5,eb,bc,2f,6b,63,cb,51,0b,66,
    49,c9,a3,2a,b7,cc,b5,b9,7f,41,e7,bb,f3,1e,7a,8c,01,99,5a,2a,b7,cc,b5,b9,7f,\

    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32*]
    "ThreadingModel"="Apartment"
    @="c:\\WINDOWS\\system32\\OLE32.DLL"
    "8a8aec57dd6508a385616fbc86791ec2"=hex:05,73,21,dd,54,d8,4a,c5,92,94,85,a7,25,
    06,e3,fa,6c,43,2d,1e,aa,22,2f,9c,ee,5a,25,89,22,cb,b3,37,6c,43,2d,1e,aa,22,\

    [HKEY_LOCAL_MACHINE\software\LicCtrl\LicCtrl\LicCtrl\LicCtrl*lkzs$i&#&y@^t! #^$ g9^$&pgb SDB36o \37C5EB2B5B076D44]
    "1"=hex:93,2a,00,8f,d9,a2,25,7c,e8,3f,57,15,09,0b,14,c7,c1,3b,d7,87,de,2d,74,
    a6
    "2"=hex:e7,27,cf,42,f4,44,fe,c6,76,b9,01,5b,8d,a1,e7,a3,0d,7c,64,c7,d4,b6,98,
    ef,57,9e,38,bd,58,d4,6b,93,75,65,1b,0e,35,47,cf,8d
    "3"=hex:93,2a,00,8f,d9,a2,25,7c,e8,3f,57,15,09,0b,14,c7,c7,19,35,aa,3b,a1,f4,
    b5,3a,93,87,3e,8d,02,2d,2f,68,df,e1,27,67,af,7b,22,1e,46,a4,e0,eb,b8,b6,2c,\

    [HKEY_LOCAL_MACHINE\software\LicCtrl\LicCtrl\LicCtrl\LicCtrl*lkzs$i&#&y@^t! #^$ g9^$&pgb SDB36o \37C5EB2B5B076D44\F4D9536879BA6642]
    "1"=hex:c9,79,69,4e,3d,a7,2b,2e,a9,3f,42,59,36,dc,b2,cf,19,d8,95,d3,c6,6b,9f,
    8d,da,97,99,9a,2a,95,07,c1,2c,93,51,a0,b8,7a,e1,d8
    "2"=hex:D 2,4c,5a,cd,82,f8,df,90
    "3"=hex:8b,9c,96,5f,06,e6,43,03,93,7e,c6,3e,2a,a8,21,27,b3,38,6b,0f,0f,3c,d0,
    4c,c5,ff,5e,8d,0e,d9,2a,11,71,3e,5b,64,f7,11,c0,9b,62,89,c9,eb,87,cc,e4,eb,\
    "4"=hex:2f,ad,a2,e7,8a,bf,05,5e
    "5"=hex:bf,e5,23,7b,b0,66,d6,fc,b8,e8,6b,a0,96,52,f7,32,80,09,8f,24,b7,b3,55,
    1a,98,d1,47,16,02,43,61,1c,b9,d5,8f,2a,7b,81,b1,fb,95,22,f8,b3,2c,53,9d,ae,\
    "6"=hex:c9,79,69,4e,3d,a7,2b,2e,a9,3f,42,59,36,dc,b2,cf,19,d8,95,d3,c6,6b,9f,
    8d,da,97,99,9a,2a,95,07,c1,d8,91,b0,75,1d,3d,0b,7c,a2,ee,ab,86,37,be,8a,d6,\
    "7"=hex:85,61,fe,fc,a7,58,24,fd,86,de,72,8f,47,4d,0a,7e,83,3d,10,99,a5,35,45,
    2a,33,5e,6a,d1,48,ad,60,64,42,0b,87,10,ed,f1,37,8c,63,2f,1d,b1,60,4a,fc,a6,\
    "8"=hex:D c,ab,e0,1f,22,1a,42,9f,18,f5,97,af,41,40,b1,2c,08,05,9e,9b,54,a5,ba,
    7f,cd,d9,65,a1,6d,90,b8,48,da,6b,50,62,dd,56,4e,93
    "9"=hex:81,20,8f,ab,28,6a,52,9c
    "18"=hex:4b,72,8f,bc,6c,3f,e4,15
    "10"=hex:81,20,8f,ab,28,6a,52,9c
    "11"=hex:81,20,8f,ab,28,6a,52,9c
    "12"=hex:53,33,4c,95,8f,ee,51,76,88,f8,f9,d8,c0,52,f4,71,b6,ef,53,0c,8b,19,f1,
    c0,a9,09,1c,58,38,14,3d,28,25,23,ef,7a,85,34,97,fc,aa,47,4b,72,58,4d,7a,7b,\
    "13"=hex:f7,9f,13,49,93,ed,1b,35,a0,ec,49,64,9e,1c,59,02
    "14"=hex:0c,62,e2,f7,b3,6c,4f,06,12,26,8e,13,32,43,88,2c
    "24"=hex:81,20,8f,ab,28,6a,52,9c
    "19"=hex:7f,1a,b8,4f,58,80,ac,8a,87,83,1e,20,0f,93,b8,75
    "22"=hex:81,20,8f,ab,28,6a,52,9c
    "15"=hex:5b,02,55,8b,0f,bc,d6,c4,01,11,55,a2,65,9e,48,79,98,cc,de,1f,39,6c,51,
    de,1e,ff,de,34,41,f9,a5,87,4d,6d,26,b2,b7,73,2d,83,4f,ba,71,51,3b,41,3c,95,\
    .
    --------------------- DLLs chargées dans les processus actifs ---------------------

    - - - - - - - > 'winlogon.exe'(812)
    c:\windows\system32\WRLogonNTF.dll
    .
    ------------------------ Autres processus actifs ------------------------
    .
    c:\windows\system32\nvsvc32.exe
    c:\windows\system32\wdfmgr.exe
    c:\windows\system32\wscntfy.exe
    .
    **************************************************************************
    .
    Heure de fin: 2009-02-25 15:01:03 - La machine a redémarré
    ComboFix-quarantined-files.txt 2009-02-25 14:01:00

    Avant-CF: 9 448 652 800 octets libres
    Après-CF: 9,262,288,896 octets libres

    WindowsXP-KB310994-SP2-Pro-BootDisk-FRA.exe
    [boot loader]
    timeout=2
    default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
    [operating systems]
    c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
    multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professionnel" /fastdetect /NoExecute=OptIn

    531 --- E O F --- 2008-09-11 01:01:05
    a c 295 8 Sécurité
    25 Février 2009 15:30:55

  • Menu Démarrer > Exécuter > Tape combofix /u et valide.

  • Télécharge DirLook sur ton Bureau.
  • Double-clique sur DirLook.exe pour lance l'outil.
  • Vérifie que les deux cases situées derrière "Show hidden files/folders:" et "BBCode Output:" soient cochées.
  • Copie le texte ci-dessous :

    C:\DOCUME~1\JEANMA~1\APPLIC~1\amen help online
    C:\DOCUME~1\JEANMA~1\APPLIC~1\Greyfirst
    C:\Program Files\amen help online
    C:\Program Files\POLLAC~1
    C:\Program Files\TBONBin


  • Dans la petite fenêtre de DirLook, faire un clic droit dans la zone blanche et choisir Coller.
    Note : les lignes sélectionnées précédemment doivent avoir été recopiées dans la zone blanche de DirLook.

  • Clique sur le bouton DirLook pour lancer la recherche. Lorsque l'outil a terminé cette recherche, le Bloc-notes s'ouvre.
    Note : Dans le Bloc-notes, vérifie dans le menu Format (en haut) que l'option "Retour automatique à la ligne" n'est pas cochée.

  • Enregistre le rapport sous le nom DirLook1.txt et ferme le Bloc-notes.
  • Ferme DirLook en cliquant sur le bouton Exit puis poste le rapport.
    25 Février 2009 15:41:18

    DirLook.exe v2.0 by jpshortstuff
    Log created at 15:40 on 25/02/2009
    ==================================
    Contents of "C:\DOCUME~1\JEANMA~1\APPLIC~1\amen help online"

    ---FOLDERS---

    (none found)

    ---FILES---

    (none found)

    ==================================
    Contents of "C:\DOCUME~1\JEANMA~1\APPLIC~1\Greyfirst"

    ---FOLDERS---

    Celtx (Created on 19/01/2009 at 15:38) d-----

    ---FILES---

    (none found)

    ==================================
    Contents of "C:\Program Files\amen help online"

    ---FOLDERS---

    (none found)

    ---FILES---

    (none found)
    a c 295 8 Sécurité
    25 Février 2009 15:43:56

    Ok, pourquoi tu n'as pas d'antivirus ?
    25 Février 2009 15:57:29

    J'avais avast mais je l'ai viré quand j ai démarrer combo fix. Quand je l ai lancé j ai eu un message d erreur me disant qu' il était préférable de le désactiver. J'ai fait de mémé pour kaspersky.
    a c 295 8 Sécurité
    25 Février 2009 16:09:15

    1/

  • Télécharge ToolsCleaner2 sur ton Bureau.
  • Double-clique sur ToolsCleaner2.exe pour le lancer.
  • Clique sur Recherche et laisse le scan agir.
  • Clique sur Suppression pour finaliser.
  • Tu peux, si tu le souhaites, te servir des Options Facultatives.
  • Clique sur Quitter pour obtenir le rapport.
  • Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).


    2/

  • Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.
  • Double-clique sur RSIT.exe afin de lancer le programme.
  • Clique sur Continue à l'écran Disclaimer.
  • Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
  • Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

    Note : les rapports sont sauvegardés dans le dossier C:\rsit\.
    25 Février 2009 16:28:37

    [ Rapport ToolsCleaner version 2.3.2 (par A.Rothstein & dj QUIOU) ]

    -->- Recherche:

    C:\Combofix.txt: trouvé !
    C:\lopR.txt: trouvé !
    C:\UsbFix.txt: trouvé !
    C:\FixWareOut: trouvé !
    C:\Combofix: trouvé !
    C:\Lop SD: trouvé !
    C:\Rsit: trouvé !
    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: trouvé !
    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: trouvé !
    C:\Documents and Settings\jean marc\Bureau\LopSD.exe: trouvé !
    C:\Documents and Settings\jean marc\Bureau\UsbFix.exe: trouvé !
    C:\Documents and Settings\jean marc\Bureau\UsbFix.txt: trouvé !
    C:\Documents and Settings\jean marc\Bureau\UsbFix.lnk: trouvé !
    C:\Documents and Settings\jean marc\Bureau\OTMoveIt3.exe: trouvé !
    C:\Documents and Settings\jean marc\Bureau\Rsit.exe: trouvé !
    C:\Documents and Settings\jean marc\Menu Démarrer\Programmes\UsbFix: trouvé !
    C:\Documents and Settings\jean marc\Menu Démarrer\Programmes\UsbFix\UsbFix.lnk: trouvé !
    C:\Program Files\UsbFix: trouvé !
    C:\Program Files\Trend Micro\HijackThis: trouvé !
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: trouvé !
    C:\Program Files\Trend Micro\HijackThis\hijackthis.log: trouvé !

    ---------------------------------
    -->- Suppression:

    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: supprimé !
    C:\Documents and Settings\jean marc\Bureau\LopSD.exe: supprimé !
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: supprimé !
    C:\Combofix.txt: supprimé !
    C:\lopR.txt: supprimé !
    C:\UsbFix.txt: supprimé !
    C:\Documents and Settings\jean marc\Bureau\UsbFix.exe: supprimé !
    C:\Documents and Settings\jean marc\Bureau\UsbFix.txt: supprimé !
    C:\Documents and Settings\jean marc\Bureau\UsbFix.lnk: supprimé !
    C:\Documents and Settings\jean marc\Bureau\OTMoveIt3.exe: supprimé !
    C:\Documents and Settings\jean marc\Bureau\Rsit.exe: supprimé !
    C:\Documents and Settings\jean marc\Menu Démarrer\Programmes\UsbFix\UsbFix.lnk: supprimé !
    C:\Program Files\Trend Micro\HijackThis\hijackthis.log: supprimé !
    C:\FixWareOut: supprimé !
    C:\Combofix: supprimé !
    C:\Lop SD: supprimé !
    C:\Rsit: supprimé !
    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: supprimé !
    C:\Documents and Settings\jean marc\Menu Démarrer\Programmes\UsbFix: supprimé !
    C:\Program Files\UsbFix: supprimé !
    C:\Program Files\Trend Micro\HijackThis: supprimé !



    Logfile of random's system information tool 1.05 (written by random/random)
    Run by jean marc at 2009-02-25 16:27:15
    Microsoft Windows XP Professionnel Service Pack 2
    System drive C: has 11 GB (36%) free of 31 GB
    Total RAM: 1535 MB (63% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 16:27:22, on 25/02/2009
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\wscntfy.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\WINDOWS\explorer.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\WINDOWS\system32\NOTEPAD.EXE
    C:\WINDOWS\system32\NOTEPAD.EXE
    C:\Documents and Settings\jean marc\Bureau\aMSN\bin\wish.exe
    C:\WINDOWS\system32\NOTEPAD.EXE
    C:\Documents and Settings\jean marc\Bureau\RSIT.exe
    C:\Program Files\trend micro\jean marc.exe

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\PCHEALTH\HELPCTR\System\panels\blank.htm
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\PCHEALTH\HELPCTR\System\panels\blank.htm
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.EXE /auto
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

    --
    End of file - 2289 bytes

    ======Scheduled tasks folder======

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "MSConfig"=C:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.EXE [2004-08-19 160768]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
    C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AGEIA PhysX SysTray]
    C:\Program Files\AGEIA Technologies\bin\TrayIcon.exe [2007-01-05 357928]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CloneCDTray]
    C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe [2006-09-28 57344]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative Detector]
    C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe [2004-12-02 102400]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative MediaSource Go]
    C:\Program Files\Creative\MediaSource\Go\CTCMSGo.exe [2004-11-30 135168]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
    C:\WINDOWS\system32\ctfmon.exe [2004-08-19 15360]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTSysVol]
    C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe [2005-02-15 57344]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
    C:\Program Files\DAEMON Tools\daemon.exe [2006-11-12 157592]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DigidesignMMERefresh]
    C:\Program Files\Digidesign\Drivers\MMERefresh.exe [2006-12-09 61440]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EXPLORER.EXE]
    C:\WINDOWS\EXPLORER.EXE [2007-06-13 1037312]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igndlm.exe]
    e:\Program Files\Download Manager\DLM.exe [2007-03-05 1103480]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
    C:\Program Files\iTunes\iTunesHelper.exe [2006-09-12 229952]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\kis]
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe [2006-03-24 139367]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
    C:\Program Files\Messenger\msmsgs.exe [2004-10-13 1694208]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
    C:\Program Files\MSN Messenger\msnmsgr.exe [2007-01-19 5674352]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
    C:\WINDOWS\system32\NvCpl.dll [2009-02-09 13680640]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
    C:\WINDOWS\system32\NvMcTray.dll [2009-02-09 86016]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pando]
    C:\Program Files\Pando Networks\Pando\Pando.exe [2007-06-27 4044104]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PinnacleDriverCheck]
    C:\WINDOWS\system32\\PSDrvCheck.exe [2004-03-11 406016]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
    C:\Program Files\PowerISO\PWRISOVM.EXE [2006-01-31 180224]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
    C:\Program Files\QuickTime\QTTask.exe [2008-05-27 413696]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\rfagent]
    C:\Program Files\RFA\rfagent.exe [2007-12-04 916800]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
    E:\Program Files\Steam\Steam.exe [2008-10-23 1410296]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
    C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe [2006-12-15 75520]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SVCHOST.EXE]
    C:\WINDOWS\system32\svchost.exe [2004-08-19 14336]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
    C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2006-03-23 180269]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdReg]
    C:\WINDOWS\UpdReg.EXE [2000-05-11 90112]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
    C:\Program Files\Winamp\winampa.exe [2006-06-21 35328]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Gamma Loader.lnk]
    C:\PROGRA~1\FICHIE~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2000-08-24 110592]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Reader Speed Launch.lnk]
    C:\PROGRA~1\Adobe\READER~1.0\Reader\READER~1.EXE [2008-06-12 34672]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^Adobe Gamma.lnk]
    C:\PROGRA~1\FICHIE~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2000-08-24 110592]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jean marc^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 2.3.lnk]
    C:\PROGRA~1\OPENOF~1.3\program\QUICKS~1.EXE [2007-08-17 393216]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
    "FLEXnet Licensing Service"=3
    "Bonjour Service"=2
    "WebrootSpySweeperService"=2
    "usnjsvc"=3
    "ose"=3
    "LicCtrlService"=2
    "IDriverT"=3
    "DigiRefresh"=2
    "AVP"=2
    "AvidStartup"=2
    "AvidSDMService"=2

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WRNotifier]
    C:\WINDOWS\system32\WRLogonNTF.dll [2007-03-01 233024]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WebrootSpySweeperService]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WebrootSpySweeperService]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    ""=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=323
    "NoDriveAutoRun"=67108863
    "NoDrives"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveAutoRun"=
    "NoDriveTypeAutoRun"=
    "NoDrives"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\Pinnacle\Studio 10\programs\RM.exe"="C:\Program Files\Pinnacle\Studio 10\programs\RM.exe:*:Enabled:Render Manager"
    "C:\Program Files\Pinnacle\Studio 10\programs\Studio.exe"="C:\Program Files\Pinnacle\Studio 10\programs\Studio.exe:*:Enabled:Studio"
    "C:\Program Files\Pinnacle\Studio 10\programs\PMSRegisterFile.exe"="C:\Program Files\Pinnacle\Studio 10\programs\PMSRegisterFile.exe:*:Enabled:p MSRegisterFile"
    "C:\Program Files\Pinnacle\Studio 10\programs\umi.exe"="C:\Program Files\Pinnacle\Studio 10\programs\umi.exe:*:Enabled:umi"
    "C:\Program Files\Azureus\Azureus.exe"="C:\Program Files\Azureus\Azureus.exe:*:Enabled:Azureus"
    "C:\WINDOWS\system32\javaw.exe"="C:\WINDOWS\system32\javaw.exe:*:Enabled:Java(TM) 2 Platform Standard Edition binary"
    "C:\StubInstaller.exe"="C:\StubInstaller.exe:*:Enabled:LimeWire swarmed installer"
    "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
    "C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Mozilla Firefox"
    "C:\Program Files\Opera\Opera.exe"="C:\Program Files\Opera\Opera.exe:*:Enabled:o pera Internet Browser"
    "C:\Program Files\Freeplayer\vlc\vlc.exe"="C:\Program Files\Freeplayer\vlc\vlc.exe:*:Enabled:VLC media player"
    "C:\Program Files\aMSN\bin\wish.exe"="C:\Program Files\aMSN\bin\wish.exe:*:Enabled:Wish Application"
    "C:\Program Files\Pando Networks\Pando\pando.exe"="C:\Program Files\Pando Networks\Pando\pando.exe:*:Enabled:p ando"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
    "C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
    "E:\Program Files\Steam\Steam.exe"="E:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
    "E:\Program Files\Steam\steamapps\anungunrama227\team fortress 2\hl2.exe"="E:\Program Files\Steam\steamapps\anungunrama227\team fortress 2\hl2.exe:*:Enabled:hl2"
    "E:\Program Files\GameSpy Arcade\Aphex.exe"="E:\Program Files\GameSpy Arcade\Aphex.exe:*:Enabled:GameSpy Arcade"
    "C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

    ======List of files/folders created in the last 1 months======

    2009-02-25 16:27:15 ----D---- C:\rsit
    2009-02-25 16:25:36 ----A---- C:\TCleaner.txt
    2009-02-25 15:40:19 ----A---- C:\DirLook1.txt
    2009-02-25 15:39:56 ----SHD---- C:\RECYCLER
    2009-02-25 15:37:58 ----A---- C:\DirLook.txt
    2009-02-25 15:01:08 ----D---- C:\WINDOWS\temp
    2009-02-25 14:58:00 ----D---- C:\WINDOWS\LastGood
    2009-02-25 14:52:04 ----A---- C:\Boot.bak
    2009-02-25 14:51:58 ----RASHD---- C:\cmdcons
    2009-02-25 14:16:23 ----SHD---- C:\Config.Msi
    2009-02-25 14:15:16 ----D---- C:\WINDOWS\ERDNT
    2009-02-25 11:32:58 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
    2009-02-25 11:32:58 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
    2009-02-25 11:32:58 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
    2009-02-25 11:32:58 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
    2009-02-25 11:32:58 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
    2009-02-25 11:32:57 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
    2009-02-25 11:32:57 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
    2009-02-25 11:32:56 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
    2009-02-25 11:32:56 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
    2009-02-25 11:32:56 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
    2009-02-25 11:32:56 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
    2009-02-25 11:32:56 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
    2009-02-25 11:32:55 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
    2009-02-25 11:32:54 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
    2009-02-25 11:32:54 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
    2009-02-25 11:32:53 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
    2009-02-25 11:32:53 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
    2009-02-25 11:32:53 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
    2009-02-25 11:32:53 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
    2009-02-25 11:32:52 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
    2009-02-25 11:32:52 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
    2009-02-25 11:32:50 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
    2009-02-25 11:32:50 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
    2009-02-25 11:32:50 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
    2009-02-25 11:32:50 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
    2009-02-25 11:32:49 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
    2009-02-25 11:32:49 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
    2009-02-25 11:32:48 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
    2009-02-25 11:32:48 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
    2009-02-25 11:32:47 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
    2009-02-25 11:32:46 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
    2009-02-25 11:32:45 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
    2009-02-25 11:32:45 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
    2009-02-25 11:32:44 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
    2009-02-25 11:31:34 ----D---- C:\WINDOWS\Logs
    2009-02-25 10:27:15 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
    2009-02-25 10:16:24 ----D---- C:\Documents and Settings\All Users\Application Data\nView_Profiles
    2009-02-25 10:13:58 ----D---- C:\WINDOWS\nview
    2009-02-25 10:13:58 ----A---- C:\WINDOWS\system32\nvudisp.exe
    2009-02-25 09:53:11 ----D---- C:\WINDOWS\NV28163244.TMP
    2009-02-25 09:46:39 ----D---- C:\NVIDIA
    2009-02-25 09:33:16 ----D---- C:\Program Files\ma-config.com
    2009-02-25 09:33:16 ----D---- C:\Documents and Settings\All Users\Application Data\ma-config.com
    2009-02-25 09:30:41 ----A---- C:\WINDOWS\system32\nv4_disp.dll
    2009-02-25 09:20:26 ----D---- C:\Program Files\SystemRequirementsLab
    2009-02-25 09:20:23 ----D---- C:\Documents and Settings\jean marc\Application Data\SystemRequirementsLab
    2009-02-24 22:21:35 ----D---- C:\WINDOWS\NV37563572.TMP
    2009-02-24 22:18:38 ----D---- C:\Program Files\Uniblue
    2009-02-24 22:18:38 ----D---- C:\Documents and Settings\jean marc\Application Data\Uniblue
    2009-02-24 22:18:38 ----D---- C:\Documents and Settings\All Users\Application Data\DriverScanner
    2009-02-24 22:17:38 ----HDC---- C:\Documents and Settings\All Users\Application Data\{66E2F539-12B6-4870-A500-7689CDE75C5E}
    2009-02-24 19:13:39 ----D---- C:\Program Files\Alwil Software
    2009-02-24 18:59:53 ----HD---- C:\autorun.inf
    2009-02-24 16:59:06 ----D---- C:\Program Files\RFA
    2009-02-24 16:39:56 ----D---- C:\WINDOWS\NV28802884.TMP
    2009-02-15 08:05:09 ----D---- C:\WINDOWS\NV6441684.TMP
    2009-02-15 08:01:43 ----D---- C:\WINDOWS\NV784572.TMP
    2009-02-15 07:43:20 ----D---- C:\WINDOWS\NV13401936.TMP
    2009-02-15 07:37:49 ----D---- C:\WINDOWS\NV568584.TMP
    2009-02-15 07:30:58 ----D---- C:\WINDOWS\NV18561836.TMP
    2009-02-15 07:28:00 ----D---- C:\WINDOWS\NV8041080.TMP
    2009-02-15 07:26:19 ----D---- C:\Program Files\Driver Cleaner Pro
    2009-02-15 07:21:03 ----D---- C:\WINDOWS\NV18241820.TMP
    2009-02-15 07:20:52 ----A---- C:\WINDOWS\system32\OLD18.tmp
    2009-02-15 07:20:52 ----A---- C:\WINDOWS\system32\OLD17.tmp
    2009-02-15 07:20:51 ----A---- C:\WINDOWS\system32\OLD16.tmp
    2009-02-15 07:17:03 ----D---- C:\WINDOWS\NV35763580.TMP
    2009-02-15 07:16:57 ----A---- C:\WINDOWS\system32\SET9.tmp
    2009-02-15 07:02:27 ----D---- C:\WINDOWS\NV14361504.TMP
    2009-02-15 06:56:17 ----D---- C:\WINDOWS\NV11001288.TMP
    2009-02-15 06:37:13 ----D---- C:\WINDOWS\NV36403644.TMP
    2009-02-15 06:29:13 ----D---- C:\WINDOWS\NV12122992.TMP
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\SET62.tmp
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\SET38.tmp
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\SET31.tmp
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\SET2D.tmp
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwssr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwss.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsth.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvvitvsr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvvitvs.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsth.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvmoblsr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvmobls.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvmccssr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvmccss.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvmccsrs.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvmccs.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvgamesr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvgames.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvdispsr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvdisps.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvcuvid.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvcuda.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvcpluir.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvcplui.exe
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvapi.dll

    ======List of files/folders modified in the last 1 months======

    2009-02-25 16:27:22 ----D---- C:\Program Files\Trend Micro
    2009-02-25 16:25:19 ----RD---- C:\Program Files
    2009-02-25 16:18:18 ----D---- C:\WINDOWS\Prefetch
    2009-02-25 15:37:38 ----SHD---- C:\System Volume Information
    2009-02-25 15:37:06 ----D---- C:\WINDOWS
    2009-02-25 15:36:58 ----D---- C:\WINDOWS\system32
    2009-02-25 15:36:50 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-02-25 15:14:29 ----D---- C:\Program Files\Mozilla Firefox
    2009-02-25 15:13:17 ----D---- C:\WINDOWS\system32\CatRoot
    2009-02-25 15:11:27 ----D---- C:\WINDOWS\system32\CatRoot_bak
    2009-02-25 15:11:23 ----HD---- C:\WINDOWS\inf
    2009-02-25 15:08:47 ----HD---- C:\WINDOWS\$hf_mig$
    2009-02-25 15:01:10 ----D---- C:\WINDOWS\system32\drivers
    2009-02-25 15:00:46 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-02-25 14:58:13 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-02-25 14:58:12 ----A---- C:\WINDOWS\system.ini
    2009-02-25 14:58:06 ----D---- C:\WINDOWS\Help
    2009-02-25 14:54:59 ----D---- C:\WINDOWS\system32\config
    2009-02-25 14:54:10 ----D---- C:\WINDOWS\AppPatch
    2009-02-25 14:54:07 ----D---- C:\Program Files\Fichiers communs
    2009-02-25 14:53:34 ----RSHD---- C:\Recycled
    2009-02-25 14:52:04 ----RASH---- C:\boot.ini
    2009-02-25 14:51:17 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-02-25 14:16:55 ----SHD---- C:\WINDOWS\Installer
    2009-02-25 14:16:32 ----D---- C:\Program Files\Kaspersky Lab
    2009-02-25 12:24:59 ----D---- C:\Documents and Settings\jean marc\Application Data\Adobe
    2009-02-25 12:24:59 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
    2009-02-25 12:12:01 ----A---- C:\WINDOWS\win.ini
    2009-02-25 11:33:00 ----D---- C:\WINDOWS\system32\DirectX
    2009-02-25 10:27:56 ----D---- C:\WINDOWS\system32\ReinstallBackups
    2009-02-24 18:32:47 ----D---- C:\Documents and Settings\jean marc\Application Data\Azureus
    2009-02-24 03:14:53 ----D---- C:\Program Files\Celtx
    2009-02-09 14:21:58 ----D---- C:\Documents and Settings\jean marc\Application Data\Vso
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nwiz.exe
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrszht.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrszhc.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrstr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrssv.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrssl.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrssk.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsru.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsptb.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrspt.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrspl.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsno.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsnl.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsko.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsja.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsit.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrshu.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrshe.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsfr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsfi.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsesm.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrses.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrseng.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsel.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsde.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsda.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrscs.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwrsar.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwimg.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwdmcpl.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvwddi.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvsvc32.exe
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvshell.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrszht.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrszhc.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrstr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrssv.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrssl.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrssk.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsru.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsptb.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrspt.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrspl.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsno.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsnl.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsko.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsja.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsit.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrshu.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrshe.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsfr.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsfi.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsesm.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrses.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrseng.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsel.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsde.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsda.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrscs.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvrsar.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvoglnt.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvmctray.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nview.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvdspsch.exe
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvcpl.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvcolor.exe
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvcodins.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvcod.dll
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\nvappbar.exe
    2009-02-09 13:18:00 ----A---- C:\WINDOWS\system32\keystone.exe
    2009-01-27 13:53:25 ----D---- C:\Documents and Settings\jean marc\Application Data\OpenOffice.org2

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2004-08-19 40320]
    R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-19 14848]
    R1 PCLEPCI;PCLEPCI; \??\C:\WINDOWS\system32\drivers\pclepci.sys []
    R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2006-01-31 25900]
    R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
    R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-08-28 12032]
    R2 ACEDRV06;ACEDRV06; \??\C:\WINDOWS\system32\drivers\ACEDRV06.sys []
    R2 ACEDRV07;ACEDRV07; \??\C:\WINDOWS\system32\drivers\ACEDRV07.sys []
    R2 Aspi32;Aspi32; C:\WINDOWS\System32\drivers\aspi32.sys [1999-09-10 25244]
    R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2007-02-27 271360]
    R2 DigiNet;Digidesign Ethernet Support; C:\WINDOWS\system32\DRIVERS\diginet.sys [2006-12-08 11776]
    R2 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2006-12-26 15440]
    R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2007-02-27 18048]
    R2 Sentinel;Sentinel; C:\WINDOWS\System32\Drivers\SENTINEL.SYS [2006-03-14 90176]
    R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2004-08-03 60800]
    R3 ASAPIW2K;ASAPIW2K; C:\WINDOWS\System32\Drivers\ASAPIW2K.sys [2005-02-23 11264]
    R3 BENDER;Pinnacle DV/AV Capture; C:\WINDOWS\system32\drivers\bender.sys [2005-08-22 200320]
    R3 ctsfm2k;Creative SoundFont Management Device Driver; C:\WINDOWS\System32\DRIVERS\ctsfm2k.sys [2005-01-10 138752]
    R3 E1000;Intel(R) PRO/1000 Network Connection Driver; C:\WINDOWS\System32\DRIVERS\e1000325.sys [2004-11-22 176128]
    R3 ElbyCDFL;ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2006-12-26 34760]
    R3 ElbyDelay;ElbyDelay; C:\WINDOWS\System32\Drivers\ElbyDelay.sys [2006-12-14 11984]
    R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2006-07-14 14448]
    R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2001-08-28 9600]
    R3 MarvinBus;Pinnacle Marvin Bus; C:\WINDOWS\system32\DRIVERS\MarvinBus.sys [2005-06-02 171008]
    R3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\WINDOWS\system32\DRIVERS\mcdbus.sys [2006-09-22 92160]
    R3 NCHSSVAD;SoundTap Recorder; C:\WINDOWS\system32\drivers\nchssvad.sys [2008-05-07 26112]
    R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2004-08-03 61824]
    R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-02-09 6307328]
    R3 ossrv;Creative OS Services Driver; C:\WINDOWS\System32\DRIVERS\ctoss2k.sys [2005-01-10 106496]
    R3 P17;SB Live! 24-bit; C:\WINDOWS\system32\drivers\P17.sys [2007-06-15 1127936]
    R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2005-03-31 47360]
    R3 SSKBFD;Webroot Spy Sweeper Keylogger Shield Keyboard Filter; C:\WINDOWS\System32\Drivers\sskbfd.sys [2007-03-01 21056]
    R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2004-08-03 57600]
    R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2004-08-03 20480]
    S3 61883;Pilote d'unité 61883; C:\WINDOWS\system32\DRIVERS\61883.sys [2004-08-03 48128]
    S3 Avc;Périphérique AVC; C:\WINDOWS\system32\DRIVERS\avc.sys [2004-08-03 38912]
    S3 AVCSTRM;AVC Streaming Filter Driver; C:\WINDOWS\system32\DRIVERS\avcstrm.sys [2004-08-03 13696]
    S3 az4rsq98;az4rsq98; C:\WINDOWS\system32\drivers\az4rsq98.sys []
    S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
    S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
    S3 dtscsi;dtscsi; C:\WINDOWS\System32\Drivers\dtscsi.sys []
    S3 KLIF;KLIF; C:\WINDOWS\system32\drivers\KLIF.sys []
    S3 mouhid;Pilote HID de souris; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-23 12288]
    S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\system32\DRIVERS\msdv.sys [2004-08-03 51328]
    S3 MSTAPE;Microsoft AV/C Tape Subunit Device; C:\WINDOWS\system32\DRIVERS\mstape.sys [2004-08-03 49024]
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
    S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
    S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
    S3 Shrvddms;Shrvddms; C:\WINDOWS\system32\drivers\Shrvddms.sys []
    S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
    S3 ssm_bus;SAMSUNG Mobile USB Device II 1.0 driver (WDM); C:\WINDOWS\system32\DRIVERS\ssm_bus.sys [2005-08-30 58320]
    S3 ssm_mdfl;SAMSUNG Mobile USB Modem II 1.0 Filter; C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys [2005-08-30 8336]
    S3 ssm_mdm;SAMSUNG Mobile USB Modem II 1.0 Drivers; C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys [2005-08-30 94000]
    S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
    S3 SynasUSB;SynasUSB; C:\WINDOWS\system32\drivers\SynasUSB.sys [2007-10-24 23288]
    S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
    S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2004-08-03 25856]
    S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
    S3 vaxscsi;vaxscsi; C:\WINDOWS\System32\Drivers\vaxscsi.sys [2006-06-29 223128]
    S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2005-01-28 18944]
    S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
    S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-02-09 163908]
    R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
    S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2007-05-18 72704]
    S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
    S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2009-01-24 216232]
    S3 MSSQL$SONY_MEDIAMGR;MSSQL$SONY_MEDIAMGR; E:\Sony Vegas\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe [2002-12-17 7520337]
    S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2002-12-17 66112]
    S3 SQLAgent$SONY_MEDIAMGR;SQLAgent$SONY_MEDIAMGR; E:\Sony Vegas\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE [2002-12-17 311872]
    S4 AvidSDMService;Avid SDM Service; C:\WINDOWS\system32\AvidSDMService.exe [2007-06-15 49152]
    S4 AvidStartup;Avid Startup; C:\WINDOWS\system32\AvidStartup.exe [2007-06-15 1536000]
    S4 AVP;Kaspersky Internet Security 6.0; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe [2006-03-24 139367]
    S4 Creative Service for CDROM Access;Creative Service for CDROM Access; C:\WINDOWS\System32\CTsvcCDA.EXE [1999-12-13 44032]
    S4 DigiRefresh;Digidesign MME Refresh Service; C:\Program Files\Digidesign\Drivers\MMERefresh.exe [2006-12-09 61440]
    S4 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
    S4 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2006-09-12 451136]
    S4 LicCtrlService;LicCtrl Service; C:\WINDOWS\runservice.exe [2007-02-15 2560]
    S4 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
    S4 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2007-10-15 66872]
    S4 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
    S4 WebrootSpySweeperService;Moteur Webroot Spy Sweeper; C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe [2007-03-01 3379264]

    -----------------EOF-----------------


    info.txt logfile of random's system information tool 1.05 2009-02-25 16:27:24

    ======Uninstall list======

    -->"C:\Program Files\Creative\SBAudigy\Program\Setup.exe" /S /U /W /L:FRN
    -->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
    -->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
    -->MsiExec /X{E2BE1618-AF5F-4F7D-8484-42E080EDF609}
    -->MsiExec.exe /I{0CDCA5CD-C404-41FD-9216-9B4B3D24A7AA}
    -->MsiExec.exe /X{69495273-FCDC-4A86-BCB7-49B504D3FB0E}
    -->MsiExec.exe /X{7B4AB13C-1A5C-4BC5-ABA6-762F8198444C}
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0B095086-7205-4D48-90DF-DCD16613C6D4}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0B095086-7205-4D48-90DF-DCD16613C6D4}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{103BCDA0-E063-46AC-8028-64E78722ABA7}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{103BCDA0-E063-46AC-8028-64E78722ABA7}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2616B36E-38CE-4357-8AB5-8B3EE9B1C117}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2616B36E-38CE-4357-8AB5-8B3EE9B1C117}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{32B4B536-4443-42F0-9676-98373BE9114F}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{32B4B536-4443-42F0-9676-98373BE9114F}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{34EBD418-B8E6-4E86-89C4-33B72CF5663F}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{34EBD418-B8E6-4E86-89C4-33B72CF5663F}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{52338F65-A1C3-4CDC-B733-50051682B297}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{52338F65-A1C3-4CDC-B733-50051682B297}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{569A9538-86EC-44C3-8EE4-C68B165F2A75}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{569A9538-86EC-44C3-8EE4-C68B165F2A75}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5B17E626-7885-4FC3-A66A-73548A4F01FD}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5B17E626-7885-4FC3-A66A-73548A4F01FD}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{73919E2B-725C-4FAA-8473-45E063A3575F}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{73919E2B-725C-4FAA-8473-45E063A3575F}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7AFFF09F-386B-4F7A-B3E0-EC24C13893AA}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7AFFF09F-386B-4F7A-B3E0-EC24C13893AA}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{836612F0-1571-4C65-A4B7-58A39AA578EE}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{836612F0-1571-4C65-A4B7-58A39AA578EE}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{84F573D3-0F71-4768-978A-D35310E3FBA6}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{84F573D3-0F71-4768-978A-D35310E3FBA6}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8A3F2ADE-DEF2-4A50-866A-6B9357B5590F}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8A3F2ADE-DEF2-4A50-866A-6B9357B5590F}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9194237B-7B58-40B4-A739-184AD59531A2}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9194237B-7B58-40B4-A739-184AD59531A2}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A82F10CB-18B5-4EAC-AEF2-FA49CD565626}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BD6928A2-9F8F-4AA7-9A3A-FD4A271712EE}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BD6928A2-9F8F-4AA7-9A3A-FD4A271712EE}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CB99E420-8071-48F9-9567-4A53BE7569C4}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CB99E420-8071-48F9-9567-4A53BE7569C4}\setup.exe" -l0x40c /remove
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DE4A4C48-2232-4CCB-AD61-490ACD29BA85}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DE4A4C48-2232-4CCB-AD61-490ACD29BA85}\setup.exe" -l0x40c /remove
    -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
    Acrobat.com-->C:\Program Files\Fichiers communs\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe -uninstall com.adobe.mauby 4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
    Acrobat.com-->MsiExec.exe /I{77DCDCE3-2DED-62F3-8154-05E745472D07}
    Ad-Aware SE Personal-->C:\PROGRA~1\Lavasoft\AD-AWA~1\UNWISE.EXE C:\PROGRA~1\Lavasoft\AD-AWA~1\INSTALL.LOG
    Adobe AIR-->MsiExec.exe /I{00203668-8170-44A0-BE44-B632FA4D780F}
    Adobe Bridge 1.0-->MsiExec.exe /I{AE3D38A6-13B1-40B3-9423-D1FA9982FB6A}
    Adobe Common File Installer-->MsiExec.exe /I{8EDBA74D-0686-4C99-BFDD-F894678E5101}
    Adobe Flash Player Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
    Adobe Help Center 1.0-->MsiExec.exe /I{E9787678-119F-4D52-B551-6739B2B22101}
    Adobe Photoshop 7.0.1-->C:\WINDOWS\ISUN040C.EXE -f"C:\Program Files\Adobe\Photoshop 7.0\Uninst.isu" -c"C:\Program Files\Adobe\Photoshop 7.0\Uninst.dll"
    Adobe Photoshop CS-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EFB21DE7-8C19-4A88-BB28-A766E16493BC}\setup.exe" -l0x40c
    Adobe Photoshop CS2-->msiexec /I {236BB7C4-4419-42FD-040C-2E257A25E34D}
    Adobe Premiere Pro 2.0-->msiexec /I {FA17A726-B229-4116-B793-A2AB1A4EAE2E}
    Adobe Reader 9-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A90000000001}
    Adobe Stock Photos 1.0-->MsiExec.exe /I{786C5747-0C40-4930-9AFE-113BCE553101}
    AGEIA PhysX v7.01.12-->MsiExec.exe /X{E2BE1618-AF5F-4F7D-8484-42E080EDF609}
    Alive MP4 Converter (version 2.0.6.9)-->"e:\MP4 Converter\unins000.exe"
    aMSN 0.97.2-->C:\Documents and Settings\jean marc\Bureau\aMSN\uninstall.exe
    AnalogX DXMan-->C:\Program Files\AnalogX\DXMan\dxmanu.exe
    Apple Software Update-->MsiExec.exe /I{02DFF6B1-1654-411C-8D7B-FD6052EF016F}
    Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
    Area 51(R)-->MsiExec.exe /X{B0CBCAE2-0671-487F-931E-266780EA8445}
    Audacity 1.2.6-->"e:\Program Files\Audacity\unins000.exe"
    Audio Editor Gold v8.4.4-->"e:\Program Files\Audio Editor Gold\unins000.exe"
    Auto-Mate Pro 3.0-->MsiExec.exe /I{7EAE12F2-CCB0-41BB-8B4E-32684F8B7818}
    Avid Codecs LE-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7BDDC00E-F2F3-418E-A57F-245B7815EF20}\SETUP.exe" -l0x9 -removeonly
    Avid Core Runtime-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{94EACECB-3D7C-4F31-99FD-39B95B9BA158}\SETUP.exe" -l0x9 -removeonly
    Avid DIO Runtime-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6823E209-3E0C-45A6-9B6C-BCEC0B7AB145}\SETUP.exe" -l0x9 -removeonly
    Avid EDL Manager-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BFD4B470-4B04-4A7C-B4A5-910AC94D43E8}\setup.exe" -l0x9 -removeonly
    Avid FilmScribe-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DFC89B6D-9302-4E63-84E9-BCD47633C4C5}\setup.exe" -l0x9 -removeonly
    Avid Log Exchange-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EE31FBE6-219F-4ABE-B9AE-7E0F9220416E}\setup.exe" -l0x9 -removeonly
    Avid Xpress Pro-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6FBFE41B-D08F-4A84-ACB6-16E78D7D58ED}\setup.exe" -l0x9 -removeonly
    AviSynth 2.5-->"C:\Program Files\AviSynth 2.5\Uninstall.exe"
    AVS DVDMenu Editor 1.2.1.19-->"C:\Program Files\Fichiers communs\AVSMedia\AVS DVDMenu Editor\unins000.exe"
    AVS TV Box 1.5.1-->"C:\Program Files\AVS4YOU\AVSTVBox\unins000.exe"
    AVS Video ReMaker 2.3-->"C:\Program Files\AVS4YOU\AVSVideoReMaker\unins000.exe"
    Azureus-->C:\Program Files\Azureus\Uninstall.exe
    Barre d'outils MSN-->C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\mtbs.exe c
    Bink and Smacker-->C:\PROGRA~1\RADVideo\UNWISE.EXE C:\PROGRA~1\RADVideo\INSTALL.LOG
    BS.Player FREE powered by AdVantage-->"C:\Program Files\Webteh\BSplayer\uninstall.exe"
    BSplayer-->"C:\Program Files\Webteh\BSplayer\uninstall.exe"
    Burn4Free CD and DVD-->"e:\Program Files\Burn4Free\uninstall.exe"
    Burn4Free Toolbar-->"C:\WINDOWS\Burn4Free_Toolbar_Uninstaller_6140.exe" _?=C:\Program Files\Burn4Free Toolbar
    CCleaner (remove only)-->"e:\Program Files\CCleaner\uninst.exe"
    CDBurnerXP Pro 3-->MsiExec.exe /I{896D642C-7125-44F0-AC49-A23ABF82209C}
    CDRIPMP3-->E:\CDRIPMP3\UNWISE.EXE E:\CDRIPMP3\INSTALL.LOG
    Celtx (1.0)-->C:\Program Files\Celtx\uninstall\helper.exe
    CloneCD-->"C:\Program Files\SlySoft\CloneCD\ccd-uninst.exe" /D="C:\Program Files\SlySoft\CloneCD"
    CloneDVD2-->"C:\Program Files\Elaborate Bytes\CloneDVD2\CloneDVD2-uninst.exe" /D="C:\Program Files\Elaborate Bytes\CloneDVD2"
    Combined Community Codec Pack 2008-01-24-->"e:\Program Files\Combined Community Codec Pack\unins000.exe"
    Compel Adaptec WinASPI-->"e:\Program Files\WinASPI\unins000.exe"
    ControlMK 0.232-->C:\Program Files\ControlMK\uninst.exe
    ConvertXtoDVD 3.3.4.107-->"e:\convertX\3\unins000.exe"
    Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
    Correctif Windows XP - KB873339-->C:\WINDOWS\$NtUninstallKB873339$\spuninst\spuninst.exe
    Correctif Windows XP - KB885250-->C:\WINDOWS\$NtUninstallKB885250$\spuninst\spuninst.exe
    Correctif Windows XP - KB885835-->C:\WINDOWS\$NtUninstallKB885835$\spuninst\spuninst.exe
    Correctif Windows XP - KB885836-->C:\WINDOWS\$NtUninstallKB885836$\spuninst\spuninst.exe
    Correctif Windows XP - KB886185-->C:\WINDOWS\$NtUninstallKB886185$\spuninst\spuninst.exe
    Correctif Windows XP - KB887472-->C:\WINDOWS\$NtUninstallKB887472$\spuninst\spuninst.exe
    Correctif Windows XP - KB887742-->C:\WINDOWS\$NtUninstallKB887742$\spuninst\spuninst.exe
    Correctif Windows XP - KB888113-->C:\WINDOWS\$NtUninstallKB888113$\spuninst\spuninst.exe
    Correctif Windows XP - KB888302-->C:\WINDOWS\$NtUninstallKB888302$\spuninst\spuninst.exe
    Correctif Windows XP - KB890859-->"C:\WINDOWS\$NtUninstallKB890859$\spuninst\spuninst.exe"
    Correctif Windows XP - KB891781-->C:\WINDOWS\$NtUninstallKB891781$\spuninst\spuninst.exe
    Creative MediaSource-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2E0C1913-886B-4C5C-8DAF-D1E649CE5FCC}\SETUP.EXE" -l0x40c /remove
    DH Driver Cleaner Professional Edition-->C:\Program Files\Driver Cleaner Pro\Uninstall.exe
    Digidesign Audio Drivers 7.3.1-->C:\Program Files\InstallShield Installation Information\{9F1D8E17-2AE6-4608-901D-42146D7D9C68}\setup.exe -runfromtemp -l0x0009 -removeonly
    DiscAPI (Studio 10)-->MsiExec.exe /X{A77F3C2D-50CC-4A29-A1FB-1E018BE4DCA2}
    DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
    DivX Content Uploader-->C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER
    DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
    DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
    DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
    Download Manager 2.3.6-->e:\Program Files\Download Manager\uninst.exe
    DVD Audio Extractor 4.2.2-->"e:\Program Files\DVD Audio Extractor\unins000.exe"
    DVD de bonus Studio 10-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6A012D9C-2E2E-405A-B87C-E909F5297C3F}\Setup.exe" -l0x40c UNINSTALL
    DVD Shrink 3.2-->"e:\Program Files\DVD Shrink\unins000.exe"
    DVDCoach Express 0.9.2-->"C:\Program Files\Kibisoft\DVDCoach Express\unins000.exe"
    DVDInfoPro-->MsiExec.exe /I{13B0919D-9115-428F-9B96-9D65C504559F}
    dvdSanta 4.00-->"E:\VSO\unins000.exe"
    Easy CD-DA Extractor 6-->C:\WINDOWS\iun6002.exe "C:\Easy CD-DA Extractor 6\irunin.ini"
    EAX4 Unified Redist-->MsiExec.exe /X{89661B04-C646-4412-B6D3-5E19F02F1F37}
    Enemy Territory: QUAKE Wars-->"E:\Program Files\Steam\steam.exe" steam://uninstall/10000
    Express Burn-->C:\Program Files\NCH Swift Sound\ExpressBurn\uninst.exe
    ffdshow-->"e:\Program Files\Matroska Pack\ffdshow\uninstall.exe"
    FileZilla (remove only)-->"C:\Program Files\FileZilla\uninstall.exe"
    Final Draft 7-->MsiExec.exe /I{78D62D17-D970-42DA-B8CF-5E5576293B33}
    FlashGet(JetCar)-->C:\PROGRA~1\FlashGet\UNWISE.EXE C:\PROGRA~1\FlashGet\INSTALL.LOG
    Free Mp3 Wma Converter V 1.6.2-->"C:\Program Files\Free Audio Pack\unins000.exe"
    Freeplayer-->C:\Program Files\Freeplayer\Uninstall.exe
    GameSpy Arcade-->E:\PROGRA~1\GAMESP~1\UNWISE.EXE E:\PROGRA~1\GAMESP~1\INSTALL.LOG
    Ghost Recon Advanced Warfighter-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EFC97089-04D6-42CE-A707-A343B4A7D2CD}\setup.exe" -l0x40c
    Google Video Uploader-->"e:\Program Files\Google Video\Uninstall.exe"
    Haali Media Splitter-->"e:\Program Files\Matroska Pack\haali\uninstall.exe"
    Half-Life 2: Episode One-->"E:\Program Files\Steam\steam.exe" steam://uninstall/380
    Half-Life 2: Episode Two-->"E:\Program Files\Steam\steam.exe" steam://uninstall/420
    Half-Life 2: Lost Coast-->"E:\Program Files\Steam\steam.exe" steam://uninstall/340
    Half-Life 2-->"E:\Program Files\Steam\steam.exe" steam://uninstall/220
    HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
    Hitman Pro-->"C:\Program Files\Hitman Pro\unins000.exe"
    InstaFinderK-->C:\Program Files\INSTAFINK\Uninstall.exe
    Intel(R) PROSafe for Wired Connections-->MsiExec.exe /I{36BD0774-6CD6-4FF9-A148-83CA09AC123E}
    Intel(R) PROSafe for Wired Connections-->MsiExec.exe /I{403EF592-953B-4794-BCEF-ECAB835C2095}
    IsoBuster 2.0-->"C:\Program Files\Smart Projects\IsoBuster\Uninst\unins000.exe"
    iTunes-->MsiExec.exe /I{885894A5-BA0A-460E-AB4C-96C5C9B2C5E2}
    J2SE Runtime Environment 5.0 Update 11-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150110}
    J2SE Runtime Environment 5.0 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}
    Kaspersky Online Scanner-->C:\WINDOWS\system32\KASPER~1\KASPER~1\kavuninstall.exe
    Kazaa 3.2.4-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{064CA01C-E84A-4B0A-B577-6792717A2F04}\Setup.exe" -l0x9 --AddRemove
    K-Lite Codec Pack 3.6.5 Full-->"e:\Program Files\K-Lite Codec Pack\unins000.exe"
    Knights of the Force 2.0-->e:\KotF Jedi Academy Expansion Pack\..\uninstall.exe
    Lame ACM MP3 Codec-->C:\WINDOWS\system32\rundll32.exe setupapi,InstallHinfSection Remove_LameMP3 132 C:\WINDOWS\INF\LameACM.inf
    Language pack for Ad-Aware SE-->C:\PROGRA~1\Lavasoft\AD-AWA~1\Plugins\Langs\UNWISE.EXE C:\PROGRA~1\Lavasoft\AD-AWA~1\Plugins\Langs\INSTALL.LOG
    Le Centre de Contrôle de Licences de Syncrosoft-->C:\PROGRA~1\SYNCRO~1\UNWISE.EXE C:\PROGRA~1\SYNCRO~1\INSTALL.LOG
    Lecteur Windows Media 10-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
    Liquidator-->C:/WINDOWS/TMUninst.exe "-xe:/Liquidator/uninstal.dat"
    Logiciel des cartes réseau Intel(R) PRO v9.2.4.9-->C:\Program Files\Intel\DMIX\uninst\DxSetup.exe /x /qr /le C:\DOCUME~1\JEANMA~1\LOCALS~1\Temp\PROSetDX\DMIX\\DxUninst.log
    Ma-Config.com-->MsiExec.exe /X{8AFB8FC4-3EBA-4C67-943F-CF43DB2180F1}
    Magic ISO Maker v5.4 (build 0247)-->E:\MagicISO\UNWISE.EXE E:\MagicISO\INSTALL.LOG
    Malwarebytes' Anti-Malware-->"e:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
    Matroska Pack-->e:\Program Files\Matroska Pack\uninstall.exe
    Max Payne 2-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EFE1AB94-5466-4B6E-BE31-FF4C115FD25D}\Setup.exe" -l0x9
    Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
    Microsoft Office Professional Edition 2003-->MsiExec.exe /I{9011040C-6000-11D3-8CFE-0150048383C9}
    Microsoft Office Word Viewer 2003-->MsiExec.exe /I{9085040C-6000-11D3-8CFE-0150048383C9}
    Microsoft SQL Server Desktop Engine (SONY_MEDIAMGR)-->MsiExec.exe /X{E09B48B5-E141-427A-AB0C-D3605127224A}
    Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
    Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
    Mise à jour de sécurité pour Lecteur Windows Media (KB911564)-->"C:\WINDOWS\$NtUninstallKB911564$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)-->"C:\WINDOWS\$NtUninstallKB925398_WMP64$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB890046)-->"C:\WINDOWS\$NtUninstallKB890046$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB893756)-->"C:\WINDOWS\$NtUninstallKB893756$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896358)-->"C:\WINDOWS\$NtUninstallKB896358$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896422)-->"C:\WINDOWS\$NtUninstallKB896422$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896423)-->"C:\WINDOWS\$NtUninstallKB896423$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896424)-->"C:\WINDOWS\$NtUninstallKB896424$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896428)-->"C:\WINDOWS\$NtUninstallKB896428$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB899587)-->"C:\WINDOWS\$NtUninstallKB899587$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB899589)-->"C:\WINDOWS\$NtUninstallKB899589$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB899591)-->"C:\WINDOWS\$NtUninstallKB899591$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB900725)-->"C:\WINDOWS\$NtUninstallKB900725$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB901017)-->"C:\WINDOWS\$NtUninstallKB901017$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB901214)-->"C:\WINDOWS\$NtUninstallKB901214$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB902400)-->"C:\WINDOWS\$NtUninstallKB902400$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB904706)-->"C:\WINDOWS\$NtUninstallKB904706$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB905414)-->"C:\WINDOWS\$NtUninstallKB905414$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB905749)-->"C:\WINDOWS\$NtUninstallKB905749$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB905915)-->"C:\WINDOWS\$NtUninstallKB905915$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB908519)-->"C:\WINDOWS\$NtUninstallKB908519$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB908531)-->"C:\WINDOWS\$NtUninstallKB908531$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB911280)-->"C:\WINDOWS\$NtUninstallKB911280$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB911562)-->"C:\WINDOWS\$NtUninstallKB911562$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB911567)-->"C:\WINDOWS\$NtUninstallKB911567$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB911927)-->"C:\WINDOWS\$NtUninstallKB911927$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB912812)-->"C:\WINDOWS\$NtUninstallKB912812$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB912919)-->"C:\WINDOWS\$NtUninstallKB912919$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB913446)-->"C:\WINDOWS\$NtUninstallKB913446$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB913580)-->"C:\WINDOWS\$NtUninstallKB913580$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB914388)-->"C:\WINDOWS\$NtUninstallKB914388$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB914389)-->"C:\WINDOWS\$NtUninstallKB914389$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB916281)-->"C:\WINDOWS\$NtUninstallKB916281$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB917159)-->"C:\WINDOWS\$NtUninstallKB917159$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB917344)-->"C:\WINDOWS\$NtUninstallKB917344$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB917422)-->"C:\WINDOWS\$NtUninstallKB917422$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB917953)-->"C:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB918118)-->"C:\WINDOWS\$NtUninstallKB918118$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB918439)-->"C:\WINDOWS\$NtUninstallKB918439$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB918899)-->"C:\WINDOWS\$NtUninstallKB918899$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB919007)-->"C:\WINDOWS\$NtUninstallKB919007$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920213)-->"C:\WINDOWS\$NtUninstallKB920213$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920214)-->"C:\WINDOWS\$NtUninstallKB920214$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920670)-->"C:\WINDOWS\$NtUninstallKB920670$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920683)-->"C:\WINDOWS\$NtUninstallKB920683$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920685)-->"C:\WINDOWS\$NtUninstallKB920685$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB921398)-->"C:\WINDOWS\$NtUninstallKB921398$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB921503)-->"C:\WINDOWS\$NtUninstallKB921503$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB921883)-->"C:\WINDOWS\$NtUninstallKB921883$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB922616)-->"C:\WINDOWS\$NtUninstallKB922616$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB922760)-->"C:\WINDOWS\$NtUninstallKB922760$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB922819)-->"C:\WINDOWS\$NtUninstallKB922819$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923191)-->"C:\WINDOWS\$NtUninstallKB923191$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923414)-->"C:\WINDOWS\$NtUninstallKB923414$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923689)-->"C:\WINDOWS\$NtUninstallKB923689$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923694)-->"C:\WINDOWS\$NtUninstallKB923694$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923980)-->"C:\WINDOWS\$NtUninstallKB923980$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB924191)-->"C:\WINDOWS\$NtUninstallKB924191$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour W
    a c 295 8 Sécurité
    25 Février 2009 16:35:31

    C'est beaucoup qu'au début, on arrive à la fin de la désinfection.


    1/

  • Désinstalle InstaFinderK.

  • Télécharge OTMoveIt3 (OldTimer) sur ton Bureau.
  • Double-clique sur OTMoveIt3.exe afin de le lancer.
  • Copie (Ctrl+C) le texte suivant ci-dessous :

    :processes
    explorer.exe

    :services
    Shrvddms

    :files
    C:\WINDOWS\system32\drivers\Shrvddms.sys

    :commands
    [purity]
    [emptytemp]
    [reboot]


  • Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
  • Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.

    ---> Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
    Accepte en cliquant sur YES.

  • Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
    ---> Le nom du rapport correspond au moment de sa création : date_heure.log


    2/

    ---> Télécharge JavaRa.zip (de Paul 'Prm753' McLain et Fred de Vries) sur ton Bureau.
    (Sur le site, il faut cliquer sur Download Windows Binary (.zip file))
  • Décompresse le fichier sur le Bureau (Clic droit > Extraire tout).
  • Double-clique sur le répertoire JavaRa.
  • Puis double-clique sur le fichier JavaRa.exe (le exe peut ne pas s'afficher).
  • Choisis Français puis clique sur Select.
  • Clique sur Recherche de mises à jour.
  • Sélectionne Mettre à jour via jucheck.exe puis clique sur Rechercher.
  • Autorise le processus à se connecter s'il le demande, clique sur Installer et suis les instructions d'installation qui prennent quelques minutes.
  • L'installation est terminée, reviens à l'écran de JavaRa et clique sur Effacer les anciennes versions.
  • Clique sur Oui pour confirmer. Laisse travailler et clique ensuite sur OK, puis une deuxième fois sur OK.
  • Un rapport va s'ouvrir. Poste-le dans ta prochaine réponse.
  • Ferme l'application.

    Note : le rapport se trouve aussi dans C:\ sous le nom JavaRa.log.


    3/

  • Installe Antivir et mets-le à jour.
  • Double-clique sur l'icône d'Antivir (Parapluie) dans la barre des tâches.
  • Dans Antivir, choisis Outils puis Configuration.
  • Coche Mode Expert et coche Rech. Rootkit au dém. de la recherche à droite dans Autres réglages.
  • Fais un scan complet et poste le rapport.
    25 Février 2009 18:04:39

    ========== PROCESSES ==========
    Process explorer.exe killed successfully.
    ========== SERVICES/DRIVERS ==========
    Service Shrvddms stopped successfully.
    Service Shrvddms deleted successfully.
    ========== FILES ==========
    File/Folder C:\WINDOWS\system32\drivers\Shrvddms.sys not found.
    ========== COMMANDS ==========
    File delete failed. C:\DOCUME~1\JEANMA~1\LOCALS~1\Temp\etilqs_jso0hO3jiVlO8xSymOtu scheduled to be deleted on reboot.
    User's Temp folder emptied.
    User's Temporary Internet Files folder emptied.
    User's Internet Explorer cache folder emptied.
    Local Service Temp folder emptied.
    File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
    Local Service Temporary Internet Files folder emptied.
    Windows Temp folder emptied.
    Java cache emptied.
    File delete failed. C:\Documents and Settings\jean marc\Local Settings\Application Data\Mozilla\Firefox\Profiles\pxafflw7.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\jean marc\Local Settings\Application Data\Mozilla\Firefox\Profiles\pxafflw7.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\jean marc\Local Settings\Application Data\Mozilla\Firefox\Profiles\pxafflw7.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\jean marc\Local Settings\Application Data\Mozilla\Firefox\Profiles\pxafflw7.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\jean marc\Local Settings\Application Data\Mozilla\Firefox\Profiles\pxafflw7.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
    File delete failed. C:\Documents and Settings\jean marc\Local Settings\Application Data\Mozilla\Firefox\Profiles\pxafflw7.default\XUL.mfl scheduled to be deleted on reboot.
    FireFox cache emptied.
    Opera cache emptied.
    Temp folders emptied.

    OTMoveIt3 by OldTimer - Version 1.0.8.0 log created on 02252009_175044







    JavaRa 1.13 Removal Log.

    Report follows after line.

    ------------------------------------

    The JavaRa removal process was started on Wed Feb 25 18:02:09 2009

    Found and removed: C:\Program Files\Java\jre1.5.0_06

    Found and removed: C:\Program Files\Java\jre1.5.0_11

    Found and removed: Software\JavaSoft\Java2D\1.5.0_06

    Found and removed: Software\JavaSoft\Java2D\1.5.0_11

    Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}

    Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}

    Found and removed: SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D510006

    Found and removed: SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D511001

    Found and removed: SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D510006

    Found and removed: SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D511001

    Found and removed: SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D510006

    Found and removed: SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D511001

    Found and removed: SOFTWARE\Classes\JavaPlugin.150_06

    Found and removed: SOFTWARE\Classes\JavaWebStart.isInstalled.1.5.0.0

    Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.5.0_06

    Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.5.0_11

    Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.5

    Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_06

    Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_11

    Found and removed: SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}

    Found and removed: SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D510006

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D511001

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D510006

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D511001

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0150060}

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0150110}

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.5.0_06

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.5.0_11

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_02

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_03

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_04

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2

    Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2.0_01

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBB}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBA}

    Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBB}

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.5.0_06\

    Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.5.0_11\

    ------------------------------------

    Finished reporting.




    a c 295 8 Sécurité
    25 Février 2009 18:11:10

    Tu peux supprimer JavaRa et OTMoveIt et passer au scan avec Antivir (Mets en quarantaine les fichiers détectés).
    25 Février 2009 18:15:25

    Vous me conseillez de télécharger Antivir sur quel site ?
    a c 295 8 Sécurité
    25 Février 2009 18:21:10

    Je t'ai donné un lien, il ne te convient pas ?
    25 Février 2009 18:24:02

    Oups ! Désolez je n'avais pas vu le lien du précédent message.
    a c 295 8 Sécurité
    25 Février 2009 18:29:44

    :D 
    25 Février 2009 19:09:58

    Si antivir trouve des virus et des programme indésirable je les met en quarantaine ou je lé supprime ?
        • 1 / 2
        • 2
        • Dernier
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS