Se connecter / S'enregistrer
Votre question

spyware qui ralentissent l'ouverture des page

Tags :
  • Windows
  • Sécurité
Dernière réponse : dans Sécurité et virus
31 Octobre 2008 14:43:12

bonjour voila tout est dans le titre , j'ai fait une analyse hijackthis et je precise que j'ai utiliser plusieur autre antispyware merci !

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PSIService.exe
C:\WINDOWS\system32\SLEE503.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Copernic Desktop Search 2 - {968631B6-4729-440D-9BF4-251F5593EC9A} - C:\Program Files\Copernic Desktop Search 2\DesktopSearchBand201013011.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by141fd.bay141.hotmail.msn.com/resources/MsnPUpl...
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) -
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Unknown owner - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE (file missing)
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: SiSoftware Database Agent Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\Win32\RpcDataSrv.exe
O23 - Service: SiSoftware Sandra Agent Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\RpcSandraSrv.exe
O23 - Service: Steganos Live Encryption Engine (Version 503) [Service] (SLEE_503_SERVICE) - Unknown owner - C:\WINDOWS\system32\SLEE503.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: StarOpen - Unknown owner - (no file)
O23 - Service: StarWind AE Service (StarWindServiceAE) -

Autres pages sur : spyware ralentissent ouverture page

31 Octobre 2008 15:14:04

Bonjour !

Télécharge random's system information tool (RSIT) (de random/random) et sauvegarde-le sur le Bureau.

  • Double-clique sur RSIT.exe afin de lancer RSIT    .
  • Clique Continue  à l'écran Disclaimer    .
  • Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
  • Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de  log.txt  (<<qui sera affiché)
    ainsi que de  nfo.txt  (<<qui sera réduit dans la Barre des Tâche
  • NB : Les rapports sont sauvegardés dans le dossier C:\rsit  
  • Veille bien à me poster l'intégralité des rapports, vérifie qu'ils soient complets une fois que tu les as postés.
    31 Octobre 2008 15:21:51

    Logfile of random's system information tool 1.04 (written by random/random)
    Run by vincent at 2008-10-31 15:18:17
    Microsoft Windows XP Édition familiale Service Pack 2
    System drive C: has 2 GB (5%) free of 40 GB
    Total RAM: 255 MB (12% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 15:18:42, on 2008-10-31
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\PnkBstrA.exe
    C:\WINDOWS\system32\PSIService.exe
    C:\WINDOWS\system32\SLEE503.exe
    C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\wuauclt.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    C:\Program Files\Windows Live\Messenger\usnsvc.exe
    C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Alwil Software\Avast4\setup\avast.setup
    C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\Bureau\RSIT.exe
    C:\Program Files\Trend Micro\HijackThis\vincent.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
    O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O3 - Toolbar: Copernic Desktop Search 2 - {968631B6-4729-440D-9BF4-251F5593EC9A} - C:\Program Files\Copernic Desktop Search 2\DesktopSearchBand201013011.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
    O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
    O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
    O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
    O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\WINDOWS\system32\shdocvw.dll
    O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\WINDOWS\system32\shdocvw.dll
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
    O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by141fd.bay141.hotmail.msn.com/resources/MsnPUpl...
    O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) -
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
    O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Unknown owner - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE (file missing)
    O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
    O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
    O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
    O23 - Service: SiSoftware Database Agent Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\Win32\RpcDataSrv.exe
    O23 - Service: SiSoftware Sandra Agent Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\RpcSandraSrv.exe
    O23 - Service: Steganos Live Encryption Engine (Version 503) [Service] (SLEE_503_SERVICE) - Unknown owner - C:\WINDOWS\system32\SLEE503.exe
    O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
    O23 - Service: StarOpen - Unknown owner - (no file)
    O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

    --
    End of file - 10422 bytes

    ======Scheduled tasks folder======

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    C:\WINDOWS\tasks\B7FD719190DEE5CD.job
    C:\WINDOWS\tasks\Maintenance en 1 clic.job
    C:\WINDOWS\tasks\Vérifier les mises à jour de Windows Live Toolbar.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
    Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-10-26 440384]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
    BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll [2007-12-05 464184]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
    Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-07-07 1562448]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
    SSVHelper Class - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll [2007-09-25 501136]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
    Google Toolbar Helper - c:\program files\google\googletoolbar2.dll [2007-12-30 2403392]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
    Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll [2008-10-31 652784]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}]
    Windows Live Toolbar Helper - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Windows Live Toolbar - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320]
    {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar avec bloqueur de fenêtres pop-up - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-10-26 440384]
    {968631B6-4729-440D-9BF4-251F5593EC9A} - Copernic Desktop Search 2 - C:\Program Files\Copernic Desktop Search 2\DesktopSearchBand201013011.dll [2007-08-01 1052192]
    {2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar2.dll [2007-12-30 2403392]
    {D0943516-5076-4020-A3B5-AEFAF26AB263} - Veoh Browser Plug-in - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll [2008-04-01 352256]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-10-22 7700480]
    "avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2008-07-19 78008]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2007-10-18 5724184]
    "SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2008-09-03 1576176]
    "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-03-19 68856]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\!AVG Anti-Spyware]
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe [2007-06-11 6731312]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
    C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Arovax AntiSpyware]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avast!]
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2008-07-19 78008]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
    C:\WINDOWS\system32\ctfmon.exe [2004-08-05 15360]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\fdpofhppoa]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hanobtuhcm]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igyac]
    c:\documents and settings\vincent.zoroo-a6ec98604.000\local settings\application data\igyac.exe igyac []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
    C:\Program Files\iTunes\iTunesHelper.exe [2007-12-11 267048]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoRepair]
    C:\Program Files\Logitech\Video\ISStart.exe [2005-06-08 458752]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoTray]
    C:\Program Files\Logitech\Video\LogiTray.exe [2005-06-08 217088]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LVCOMSX]
    C:\WINDOWS\system32\LVCOMSX.EXE []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\News Service]
    C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nForce Tray Options]
    sstray.exe /r []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
    C:\WINDOWS\system32\NvCpl.dll [2006-10-22 7700480]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
    C:\WINDOWS\system32\NvMcTray.dll [2006-10-22 86016]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NVMixerTray]
    C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe [2004-06-03 131072]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
    nwiz.exe /install []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PROGRAM 64 REGS THUNK]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
    C:\Program Files\QuickTime\qttask.exe [2007-12-11 286720]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SiSUSBRG]
    C:\WINDOWS\SiSUSBrg.exe [2002-07-12 106496]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite]
    C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2006-11-24 487424]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
    C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2008-07-07 2156368]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
    C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe [2007-09-25 132496]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SuperRam]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-03-19 68856]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Veoh]
    C:\Program Files\Veoh Networks\Veoh\VeohClient.exe [2008-04-01 3587120]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WINSOS VERIFY]
    []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Antivirus Firewall.lnk]
    C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\fspex.exe -startup []

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Launchy.lnk]
    C:\PROGRA~1\Launchy\Launchy.exe [2007-04-20 552960]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Outil de mise à jour Google.lnk]
    C:\PROGRA~1\Google\GOOGLE~2\GOOGLE~1.EXE [2008-10-31 161264]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
    C:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2008-07-23 352256]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
    C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WRNotifier]
    WRLogonNTF.dll []

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    "{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"=C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll [2007-05-30 79408]
    "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Driver]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Guard]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Driver]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Guard]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "DisableTaskMgr"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=145

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\Alwil Software\Avast4\ashAvast.exe"="C:\Program Files\Alwil Software\Avast4\ashAvast.exe:*:Enabled:avast! Antivirus"
    "C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
    "C:\Program Files\Shareaza\Shareaza.exe"="C:\Program Files\Shareaza\Shareaza.exe:*:Enabled:Shareaza"
    "C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\Win32\RpcDataSrv.exe"="C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\Win32\RpcDataSrv.exe:*:Enabled:SiSoftware Database Agent Service"
    "C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\RpcSandraSrv.exe"="C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\RpcSandraSrv.exe:*:Enabled:SiSoftware Sandra Agent Service"
    "C:\Program Files\Morpheus\Morpheus.exe"="C:\Program Files\Morpheus\Morpheus.exe:*:Enabled:Morpheus"
    "C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"
    "C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
    "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
    "C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
    "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe"="C:\Program Files\Veoh Networks\Veoh\VeohClient.exe:*:Enabled:Veoh Client"
    "C:\Program Files\SopCast\adv\SopAdver.exe"="C:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver"
    "C:\Program Files\SopCast\SopCast.exe"="C:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
    "C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{0dd90b97-20e8-11dd-b762-00138feea14f}]
    shell\AutoRun\command - K:\setupSNK.exe


    ======List of files/folders created in the last 1 months======

    2008-10-31 15:16:19 ----D---- C:\rsit
    2008-10-30 19:59:02 ----A---- C:\WINDOWS\system32\aswBoot.exe
    2008-10-28 15:05:50 ----D---- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
    2008-10-28 15:04:15 ----D---- C:\Program Files\SUPERAntiSpyware
    2008-10-28 15:04:14 ----D---- C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\Application Data\SUPERAntiSpyware.com
    2008-10-27 13:07:19 ----D---- C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\Application Data\Malwarebytes
    2008-10-27 13:07:03 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
    2008-10-27 13:07:02 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
    2008-10-26 14:53:36 ----D---- C:\Program Files\CUP
    2008-10-24 02:01:59 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
    2008-10-17 02:07:07 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
    2008-10-17 02:06:57 ----HDC---- C:\WINDOWS\$NtUninstallKB956391$
    2008-10-17 02:06:44 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
    2008-10-17 02:06:30 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
    2008-10-17 02:05:35 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
    2008-10-17 02:01:49 ----HDC---- C:\WINDOWS\$NtUninstallKB956390$
    2008-10-02 20:20:29 ----D---- C:\Program Files\K-Lite Codec Pack
    2008-10-02 20:17:15 ----A---- C:\WINDOWS\system32\regsvr32.exe.log

    ======List of files/folders modified in the last 1 months======

    2008-10-31 15:17:49 ----D---- C:\WINDOWS\Temp
    2008-10-31 15:16:39 ----D---- C:\WINDOWS\Prefetch
    2008-10-31 14:32:09 ----D---- C:\Program Files\Mozilla Firefox
    2008-10-31 12:17:11 ----D---- C:\Documents and Settings\All Users\Application Data\Google Updater
    2008-10-31 11:10:24 ----D---- C:\WINDOWS\system32\ias
    2008-10-31 00:39:40 ----A---- C:\WINDOWS\SchedLgU.Txt
    2008-10-30 19:59:34 ----D---- C:\WINDOWS\system32\drivers
    2008-10-30 19:59:29 ----D---- C:\WINDOWS\system32\config
    2008-10-30 19:59:29 ----D---- C:\WINDOWS\system32
    2008-10-29 08:59:10 ----RSD---- C:\WINDOWS\Fonts
    2008-10-28 17:01:12 ----SH---- C:\boot.ini
    2008-10-28 17:01:12 ----A---- C:\WINDOWS\win.ini
    2008-10-28 17:01:12 ----A---- C:\WINDOWS\system.ini
    2008-10-28 16:44:43 ----D---- C:\WINDOWS\system32\CatRoot2
    2008-10-28 15:05:21 ----SHD---- C:\WINDOWS\Installer
    2008-10-28 15:05:14 ----D---- C:\Config.Msi
    2008-10-28 15:04:15 ----D---- C:\Program Files
    2008-10-28 15:02:48 ----D---- C:\Program Files\Fichiers communs\Wise Installation Wizard
    2008-10-27 15:07:13 ----AC---- C:\WINDOWS\ntbtlog.txt
    2008-10-26 13:53:37 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
    2008-10-26 13:46:18 ----D---- C:\WINDOWS
    2008-10-26 13:46:17 ----AC---- C:\WINDOWS\WININIT.INI
    2008-10-26 12:18:09 ----D---- C:\Program Files\Spybot - Search & Destroy
    2008-10-26 05:24:21 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2008-10-25 18:52:15 ----D---- C:\Program Files\eMule
    2008-10-24 02:02:14 ----HD---- C:\WINDOWS\inf
    2008-10-24 02:02:04 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2008-10-24 02:01:25 ----HD---- C:\WINDOWS\$hf_mig$
    2008-10-17 02:07:12 ----A---- C:\WINDOWS\imsins.BAK
    2008-10-17 02:02:07 ----D---- C:\Program Files\Internet Explorer
    2008-10-16 14:39:23 ----D---- C:\WINDOWS\system32\CatRoot
    2008-10-15 17:59:28 ----A---- C:\WINDOWS\system32\netapi32.dll
    2008-10-07 20:19:40 ----A---- C:\WINDOWS\system32\MRT.exe
    2008-10-02 20:22:46 ----D---- C:\WINDOWS\system32\wbem
    2008-10-02 20:22:45 ----D---- C:\WINDOWS\Registration
    2008-10-02 20:21:57 ----D---- C:\Program Files\Hitman Pro

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2008-07-19 26944]
    R1 AmdK7;Pilote de processeur AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2004-08-05 41600]
    R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2008-07-19 78416]
    R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2008-07-19 42912]
    R1 AVG Anti-Spyware Driver;AVG Anti-Spyware Driver; \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys []
    R1 AvgAsCln;AVG Anti-Spyware Clean Driver; C:\WINDOWS\System32\DRIVERS\AvgAsCln.sys [2007-05-30 10872]
    R1 fwdrv;Firewall Driver; C:\WINDOWS\system32\drivers\fwdrv.sys [2007-03-16 302000]
    R1 khips;Kerio HIPS Driver; C:\WINDOWS\system32\drivers\khips.sys [2007-03-16 72496]
    R1 prodrv06;StarForce Protection Environment Driver v6; C:\WINDOWS\System32\drivers\prodrv06.sys [2003-09-06 51744]
    R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
    R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys []
    R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2008-07-19 20560]
    R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2008-07-19 94416]
    R2 irda;Protocole IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2004-08-03 87424]
    R2 SLEE_503_DRIVER;Steganos Live Encryption Engine (Version 503) [Driver]; \??\C:\WINDOWS\system32\drivers\SLEE503.sys []
    R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2008-07-19 23152]
    R3 cmuda;C-Media WDM Audio Interface; C:\WINDOWS\system32\drivers\cmuda.sys [2003-10-17 754560]
    R3 dtscsi;dtscsi; C:\WINDOWS\System32\Drivers\dtscsi.sys [2007-04-29 223128]
    R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2006-09-19 15664]
    R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-10-22 3994624]
    R3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
    R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-05 5888]
    R3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS []
    R3 SISNIC;Pilote de carte Fast Ethernet PCI SiS; C:\WINDOWS\system32\DRIVERS\sisnic.sys [2004-08-03 32768]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-05 26624]
    R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-05 57600]
    R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-05 17024]
    S1 avgio;avgio; \??\C:\Program Files\AntiVir PersonalEdition Classic\avgio.sys []
    S1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys []
    S1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
    S1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys []
    S1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys []
    S3 a146jbc3;a146jbc3; C:\WINDOWS\system32\drivers\a146jbc3.sys []
    S3 avgntflt;avgntflt; \??\C:\Program Files\AntiVir PersonalEdition Classic\avgntflt.sys []
    S3 bDMusicb;bDMusicb; \??\C:\DOCUME~1\VINCENT\LOCALS~1\Temp\bDMusicb.sys []
    S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
    S3 DSDrv4;DSDrv4; \??\C:\PROGRA~1\K!TV\Plugins\S_Bt8x8\DSDrv4.sys []
    S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2007-04-28 26056]
    S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
    S3 irsir;Pilote série infrarouge Microsoft; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
    S3 LVcKap;Logitech AEC Driver; C:\WINDOWS\system32\DRIVERS\LVcKap.sys [2007-02-06 1691808]
    S3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys [2007-02-06 1964064]
    S3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\lvusbsta.sys []
    S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
    S3 ms_mpu401;Pilote UART MIDI MPU-401 Microsoft; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
    S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
    S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
    S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCAMPR5.SYS []
    S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
    S3 PID_0928;Logitech QuickCam Express(PID_0928); C:\WINDOWS\system32\DRIVERS\LV561AV.SYS []
    S3 se45bus;Sony Ericsson Device 069 driver (WDM); C:\WINDOWS\system32\DRIVERS\se45bus.sys [2006-11-30 61536]
    S3 se45mdfl;Sony Ericsson Device 069 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\se45mdfl.sys [2006-11-30 9360]
    S3 se45mdm;Sony Ericsson Device 069 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\se45mdm.sys [2006-11-30 97088]
    S3 se45mgmt;Sony Ericsson Device 069 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\se45mgmt.sys [2006-11-30 88624]
    S3 se45nd5;Sony Ericsson Device 069 USB Ethernet Emulation SEMC45 (NDIS); C:\WINDOWS\system32\DRIVERS\se45nd5.sys [2006-11-30 18704]
    S3 se45obex;Sony Ericsson Device 069 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\se45obex.sys [2006-11-30 86432]
    S3 se45unic;Sony Ericsson Device 069 USB Ethernet Emulation SEMC45 (WDM); C:\WINDOWS\system32\DRIVERS\se45unic.sys [2006-11-30 90800]
    S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
    S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
    S3 usb_rndis;Broadcom USB Remote NDIS Device Driver; C:\WINDOWS\system32\DRIVERS\usb8023.sys [2004-08-05 12672]
    S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2007-10-31 30464]
    S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-03 59264]
    S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
    S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
    S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
    S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
    S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
    S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2007-10-31 110592]
    R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2008-07-19 16056]
    R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2008-07-19 147640]
    R2 AVG Anti-Spyware Guard;AVG Anti-Spyware Guard; C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe [2007-05-30 312880]
    R2 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-10-31 168432]
    R2 Irmon;Moniteur infrarouge; C:\WINDOWS\system32\svchost.exe [2004-08-05 14336]
    R2 KPF4;Sunbelt Kerio Personal Firewall 4; C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe [2007-03-16 1222192]
    R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-10-22 159810]
    R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2008-04-07 66872]
    R2 ProtexisLicensing;ProtexisLicensing; C:\WINDOWS\system32\PSIService.exe [2006-11-02 174656]
    R2 SLEE_503_SERVICE;Steganos Live Encryption Engine (Version 503) [Service]; C:\WINDOWS\system32\SLEE503.exe [2002-11-28 40960]
    R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
    R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2008-07-19 250040]
    R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2008-07-23 348344]
    R3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
    S2 BackWeb Plug-in - 6588780;Antivirus Firewall; C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE []
    S2 LVSrvLauncher;LVSrvLauncher; C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe [2007-02-06 105248]
    S2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2007-05-14 924672]
    S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
    S3 Boonty Games;Boonty Games; C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe [2006-10-12 69120]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
    S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
    S3 iPod Service;Service de l'iPod; C:\Program Files\iPod\bin\iPodService.exe [2007-12-11 504104]
    S3 SandraDataSrv;SiSoftware Database Agent Service; C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\Win32\RpcDataSrv.exe [2007-07-04 172216]
    S3 SandraTheSrv;SiSoftware Sandra Agent Service; C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\RpcSandraSrv.exe [2007-07-04 1224896]
    S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
    S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
    S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-05 14336]

    -----------------EOF-----------------


    Un seul rapport s'est ouvert ! merci !


    Contenus similaires
    31 Octobre 2008 15:26:15

    j'ai retrouvé l'autre !

    info.txt logfile of random's system information tool 1.04 2008-10-31 15:17:46

    ======Uninstall list======

    -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
    µTorrent 1.6 (Build 474)-->C:\Program Files\utorrent\Uninstal.exe
    Adobe Flash Player Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
    Adobe Reader 8.1.2 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81200000003}
    Adobe Shockwave Player 11-->C:\WINDOWS\system32\adobe\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Adobe\SHOCKW~1\Install.log
    AIDA32 v3.93-->"C:\Program Files\AIDA32 - Personal System Information\unins000.exe"
    Anfy-->C:\PROGRA~1\AnfyTeam\UNWISE.EXE C:\PROGRA~1\AnfyTeam\INSTALL.LOG
    Apple Mobile Device Support-->MsiExec.exe /I{B5C209B1-8DDB-4642-A573-375B951514CB}
    Apple Software Update-->MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}
    Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
    Assistant de connexion Windows Live-->MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}
    Audacity 1.2.6-->"C:\Program Files\Audacity\unins000.exe"
    Audacity 1.3.3 (Unicode)-->"C:\Program Files\Audacity 1.3 Beta (Unicode)\unins000.exe"
    AusLogics Disk Defrag-->"C:\Program Files\Auslogics\AusLogics Disk Defrag\unins000.exe"
    AV MP3 Player-Morpher-->C:\Program Files\AV MP3 Player-Morpher\uninstall.exe
    avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
    AVG Anti-Spyware 7.5-->C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\Uninstall.exe
    Barre d'outils Outlook de Windows Live (Windows Live Toolbar)-->MsiExec.exe /X{6E15BEDF-7EB5-4010-998E-B430DB4EFE45}
    Bigben PC controller-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CFE1AA90-5B5E-4907-95E6-F55923555B16}\setup.exe" -l0x9 -removeonly
    Bloqueur de fenêtres pop-up (Windows Live Toolbar)-->MsiExec.exe /X{A425C250-A0E1-4D78-B1C1-A5CBC7385E7C}
    BootSkin-->C:\PROGRA~1\Stardock\WINCUS~1\BootSkin\UNWISE.EXE C:\PROGRA~1\Stardock\WINCUS~1\BootSkin\INSTALL.LOG
    burnatonce-->"C:\Program Files\burnatonce\unins000.exe"
    CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
    C-Media 3D Audio-->C:\WINDOWS\CMIUnInstall.exe
    Companion wizard-->C:\Program Files\Common Files\Companion Wizard\compwiz.exe -u
    Copernic Desktop Search 2-->C:\Program Files\Copernic Desktop Search 2\uninst.exe
    Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB914440)-->"C:\WINDOWS\$NtUninstallKB914440$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB935448)-->"C:\WINDOWS\$NtUninstallKB935448$\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
    Correctif Windows XP - KB873339-->C:\WINDOWS\$NtUninstallKB873339$\spuninst\spuninst.exe
    Correctif Windows XP - KB885835-->C:\WINDOWS\$NtUninstallKB885835$\spuninst\spuninst.exe
    Correctif Windows XP - KB885836-->C:\WINDOWS\$NtUninstallKB885836$\spuninst\spuninst.exe
    Correctif Windows XP - KB886185-->C:\WINDOWS\$NtUninstallKB886185$\spuninst\spuninst.exe
    Correctif Windows XP - KB887472-->C:\WINDOWS\$NtUninstallKB887472$\spuninst\spuninst.exe
    Correctif Windows XP - KB888302-->C:\WINDOWS\$NtUninstallKB888302$\spuninst\spuninst.exe
    Correctif Windows XP - KB890859-->"C:\WINDOWS\$NtUninstallKB890859$\spuninst\spuninst.exe"
    Correctif Windows XP - KB891781-->C:\WINDOWS\$NtUninstallKB891781$\spuninst\spuninst.exe
    DeepBurner Pro v1.8.0.225-->"C:\Program Files\Astonsoft\DeepBurner Pro\Uninstall.exe" "C:\Program Files\Astonsoft\DeepBurner Pro\install.log"
    Détecteur de flux Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{EFFCB0F1-CFEC-48D4-B793-EBFCAE852976}
    DivX Content Uploader-->C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER
    DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
    Easy CD-DA Extractor 10-->"C:\WINDOWS\Easy CD-DA Extractor\uninstall.exe" "/U:C:\Program Files\Easy CD-DA Extractor 10\irunin.xml"
    EasyCleaner-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F5346614-B7C4-4E94-826A-E2363155233D}\setup.exe" -l0x9 -removeonly
    eMule-->"C:\Program Files\eMule\Uninstall.exe"
    eMulev0.47c.-MorphXTv9.5-->"C:\Program Files\eMule\unins001.exe"
    Environnement d'exécution Java 2, Standard Edition v1.3.1_18-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{68249B78-B714-11D7-88E8-0050DA21757E}\Setup.exe" -uninst
    EVEREST Home Edition v2.20-->"C:\Program Files\Lavalys\EVEREST Home Edition\unins000.exe"
    Extension de Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{0CA6047C-D28B-4295-834A-07C52BA20C2D}
    Favorit-->"c:\documents and settings\vincent.zoroo-a6ec98604.000\local settings\application data\igyac.exe" -uninstall
    Favorit-->"c:\documents and settings\vincent.zoroo-a6ec98604.000\local settings\application data\swykm.exe" -uninstall
    Filetopia Client v3.04d-->C:\PROGRA~1\FILETO~1\UNWISE.EXE C:\PROGRA~1\FILETO~1\INSTALL.LOG
    Find'Em Trial-->C:\WINDOWS\uninst.exe -f"C:\Program Files\Find'Em Trial\DeIsL1.isu" -c"C:\Program Files\Find'Em Trial\_ISREG32.DLL"
    free-downloads.net Toolbar-->C:\PROGRA~1\FREE-D~1.NET\UNWISE.EXE C:\PROGRA~1\FREE-D~1.NET\INSTALL.LOG
    Galerie de photos Windows Live-->MsiExec.exe /X{A70FA218-6598-4AC9-813D-63597C5DD068}
    Google Desktop Search-->C:\Program Files\Google\Google Desktop Search\GoogleDesktopSearchSetup.exe -uninstall
    Google Toolbar for Firefox-->MsiExec.exe /X{2CCBABCB-6427-4A55-B091-49864623C43F}
    Google Toolbar for Internet Explorer-->MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}
    Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar2.dll"
    HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
    Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
    Hotfix for Windows XP (KB915865)-->"C:\WINDOWS\$NtUninstallKB915865$\spuninst\spuninst.exe"
    Hotfix for Windows XP (KB926239)-->"C:\WINDOWS\$NtUninstallKB926239$\spuninst\spuninst.exe"
    iSpeed for Windows-->"C:\Program Files\iSpeed\unins000.exe"
    iTunes-->MsiExec.exe /I{18388EF8-E0A3-442B-8BFE-E2F1B3D05C91}
    Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
    K-Lite Codec Pack 3.7.5 Full-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
    Launchy 1.25-->"C:\Program Files\Launchy\unins000.exe"
    Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
    Logiciel QuickCam de Logitech-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C43048A9-742C-4DAD-90D2-E3B53C9DB825}\setup.exe" -l0x40c
    Logitech Audio Echo Cancellation Component-->MsiExec.exe /X{BEF726DD-4037-4214-8C6A-E625C02D2870}
    Logitech Video Enumerator-->MsiExec.exe /X{EA516024-D84D-41F1-814F-83175A6188F2}
    Macromedia Flash Player 8-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\swflash.inf,DefaultUninstall,5
    MAIET entertainment - Gunz-->C:\Program Files\MAIET\Gunz\Uninstall.exe
    Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
    MegaUpload Toolbar-->C:\Program Files\MegauploadToolbar\uninstall.exe
    Menus intelligents (Windows Live Toolbar)-->MsiExec.exe /X{0CC70FEF-5068-4CD5-B4DE-86FFD98EC929}
    Messenger Plus! Live & Sponsor (CiD)-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
    Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
    Microsoft Bootvis-->MsiExec.exe /I{0F9196C6-58B4-445B-B56E-B1200FECC151}
    Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
    Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
    Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
    Microsoft Office PowerPoint Viewer 2003-->MsiExec.exe /X{90AF040C-6000-11D3-8CFE-0150048383C9}
    Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
    Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
    Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
    Mise à jour de sécurité pour Lecteur Windows Media (KB911564)-->"C:\WINDOWS\$NtUninstallKB911564$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)-->"C:\WINDOWS\$NtUninstallKB925398_WMP64$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 9 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP9$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB890046)-->"C:\WINDOWS\$NtUninstallKB890046$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB893756)-->"C:\WINDOWS\$NtUninstallKB893756$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896358)-->"C:\WINDOWS\$NtUninstallKB896358$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896423)-->"C:\WINDOWS\$NtUninstallKB896423$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896424)-->"C:\WINDOWS\$NtUninstallKB896424$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB896428)-->"C:\WINDOWS\$NtUninstallKB896428$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB899587)-->"C:\WINDOWS\$NtUninstallKB899587$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB899591)-->"C:\WINDOWS\$NtUninstallKB899591$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB900725)-->"C:\WINDOWS\$NtUninstallKB900725$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB901017)-->"C:\WINDOWS\$NtUninstallKB901017$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB901214)-->"C:\WINDOWS\$NtUninstallKB901214$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB902400)-->"C:\WINDOWS\$NtUninstallKB902400$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB904706)-->"C:\WINDOWS\$NtUninstallKB904706$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB905414)-->"C:\WINDOWS\$NtUninstallKB905414$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB905749)-->"C:\WINDOWS\$NtUninstallKB905749$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB908519)-->"C:\WINDOWS\$NtUninstallKB908519$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB911562)-->"C:\WINDOWS\$NtUninstallKB911562$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB911567)-->"C:\WINDOWS\$NtUninstallKB911567$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB911927)-->"C:\WINDOWS\$NtUninstallKB911927$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB912919)-->"C:\WINDOWS\$NtUninstallKB912919$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB913580)-->"C:\WINDOWS\$NtUninstallKB913580$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB914388)-->"C:\WINDOWS\$NtUninstallKB914388$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB914389)-->"C:\WINDOWS\$NtUninstallKB914389$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB917159)-->"C:\WINDOWS\$NtUninstallKB917159$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB917344)-->"C:\WINDOWS\$NtUninstallKB917344$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB917422)-->"C:\WINDOWS\$NtUninstallKB917422$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB917953)-->"C:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB918118)-->"C:\WINDOWS\$NtUninstallKB918118$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB918439)-->"C:\WINDOWS\$NtUninstallKB918439$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB918899)-->"C:\WINDOWS\$NtUninstallKB918899$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB919007)-->"C:\WINDOWS\$NtUninstallKB919007$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920213)-->"C:\WINDOWS\$NtUninstallKB920213$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920214)-->"C:\WINDOWS\$NtUninstallKB920214$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920670)-->"C:\WINDOWS\$NtUninstallKB920670$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920683)-->"C:\WINDOWS\$NtUninstallKB920683$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB920685)-->"C:\WINDOWS\$NtUninstallKB920685$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB921398)-->"C:\WINDOWS\$NtUninstallKB921398$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB921503)-->"C:\WINDOWS\$NtUninstallKB921503$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB921883)-->"C:\WINDOWS\$NtUninstallKB921883$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB922616)-->"C:\WINDOWS\$NtUninstallKB922616$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB922760)-->"C:\WINDOWS\$NtUninstallKB922760$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB922819)-->"C:\WINDOWS\$NtUninstallKB922819$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923191)-->"C:\WINDOWS\$NtUninstallKB923191$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923414)-->"C:\WINDOWS\$NtUninstallKB923414$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923694)-->"C:\WINDOWS\$NtUninstallKB923694$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923980)-->"C:\WINDOWS\$NtUninstallKB923980$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB924191)-->"C:\WINDOWS\$NtUninstallKB924191$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB924270)-->"C:\WINDOWS\$NtUninstallKB924270$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB924496)-->"C:\WINDOWS\$NtUninstallKB924496$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB924667)-->"C:\WINDOWS\$NtUninstallKB924667$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB925486)-->"C:\WINDOWS\$NtUninstallKB925486$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB925902)-->"C:\WINDOWS\$NtUninstallKB925902$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB926255)-->"C:\WINDOWS\$NtUninstallKB926255$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB926436)-->"C:\WINDOWS\$NtUninstallKB926436$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB927779)-->"C:\WINDOWS\$NtUninstallKB927779$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB927802)-->"C:\WINDOWS\$NtUninstallKB927802$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB928255)-->"C:\WINDOWS\$NtUninstallKB928255$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB928843)-->"C:\WINDOWS\$NtUninstallKB928843$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB929123)-->"C:\WINDOWS\$NtUninstallKB929123$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB929969)-->"C:\WINDOWS\$NtUninstallKB929969$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB930178)-->"C:\WINDOWS\$NtUninstallKB930178$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB931261)-->"C:\WINDOWS\$NtUninstallKB931261$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB931784)-->"C:\WINDOWS\$NtUninstallKB931784$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB932168)-->"C:\WINDOWS\$NtUninstallKB932168$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB933729)-->"C:\WINDOWS\$NtUninstallKB933729$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB935839)-->"C:\WINDOWS\$NtUninstallKB935839$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB935840)-->"C:\WINDOWS\$NtUninstallKB935840$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB936021)-->"C:\WINDOWS\$NtUninstallKB936021$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB938127)-->"C:\WINDOWS\$NtUninstallKB938127$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB938829)-->"C:\WINDOWS\$NtUninstallKB938829$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB941202)-->"C:\WINDOWS\$NtUninstallKB941202$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB941568)-->"C:\WINDOWS\$NtUninstallKB941568$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB941644)-->"C:\WINDOWS\$NtUninstallKB941644$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB941693)-->"C:\WINDOWS\$NtUninstallKB941693$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB942615)-->"C:\WINDOWS\$NtUninstallKB942615$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB943055)-->"C:\WINDOWS\$NtUninstallKB943055$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB943460)-->"C:\WINDOWS\$NtUninstallKB943460$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB943485)-->"C:\WINDOWS\$NtUninstallKB943485$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB944338)-->"C:\WINDOWS\$NtUninstallKB944338$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB944653)-->"C:\WINDOWS\$NtUninstallKB944653$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB945553)-->"C:\WINDOWS\$NtUninstallKB945553$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB946026)-->"C:\WINDOWS\$NtUninstallKB946026$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB947864)-->"C:\WINDOWS\$NtUninstallKB947864$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB948590)-->"C:\WINDOWS\$NtUninstallKB948590$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB948881)-->"C:\WINDOWS\$NtUninstallKB948881$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950749)-->"C:\WINDOWS\$NtUninstallKB950749$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950759)-->"C:\WINDOWS\$NtUninstallKB950759$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB953838)-->"C:\WINDOWS\$NtUninstallKB953838$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956390)-->"C:\WINDOWS\$NtUninstallKB956390$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB894391)-->"C:\WINDOWS\$NtUninstallKB894391$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB900485)-->"C:\WINDOWS\$NtUninstallKB900485$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB904942)-->"C:\WINDOWS\$NtUninstallKB904942$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB908531)-->"C:\WINDOWS\$NtUninstallKB908531$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB910437)-->"C:\WINDOWS\$NtUninstallKB910437$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB911280)-->"C:\WINDOWS\$NtUninstallKB911280$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB916595)-->"C:\WINDOWS\$NtUninstallKB916595$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB920872)-->"C:\WINDOWS\$NtUninstallKB920872$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB922582)-->"C:\WINDOWS\$NtUninstallKB922582$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB927891)-->"C:\WINDOWS\$NtUninstallKB927891$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB929338)-->"C:\WINDOWS\$NtUninstallKB929338$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB930916)-->"C:\WINDOWS\$NtUninstallKB930916$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB931836)-->"C:\WINDOWS\$NtUninstallKB931836$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB933360)-->"C:\WINDOWS\$NtUninstallKB933360$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB938828)-->"C:\WINDOWS\$NtUninstallKB938828$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB942763)-->"C:\WINDOWS\$NtUninstallKB942763$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB942840)-->"C:\WINDOWS\$NtUninstallKB942840$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB946627)-->"C:\WINDOWS\$NtUninstallKB946627$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
    More! 2 CD-ROM-->MsiExec.exe /I{7B4CE235-A1D4-48BA-86E4-3E3CE120166D}
    Morpheus Toolbar-->rundll32 C:\PROGRA~1\MORPHE~2\bar\1.bin\MorphBar.dll,O
    Mozilla (1.7.12) (fr)-->C:\WINDOWS\MozillaUninstall.exe /ua "1.7.12 (fr)"
    Mozilla Firefox (2.0.0.17)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
    MP3 Player Utilities 3.68-->MsiExec.exe /I{D98BFAD2-0C90-47F4-9D69-2EFF21631884}
    MSN Font Color Editor 4.2-->"C:\Program Files\MSN Font Color Editor\unins000.exe"
    MSNTweaker 1.0-->"C:\Program Files\MSNTweaker\unins000.exe"
    MSXML 4.0 SP2 (KB925672)-->MsiExec.exe /I{A9CF9052-F4A0-475D-A00F-A8388C62DD63}
    MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
    MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
    MSXML 4.0 SP2 Parser and SDK-->MsiExec.exe /I{716E0306-8318-4364-8B8F-0CC4E9376BAC}
    MVision-->MsiExec.exe /I{35725FBC-A136-4A46-9F29-091759D9BB93}
    My Pictures And Sounds 8.01-->C:\Program Files\SAGEM\My Pictures And Sounds\Uninstall.exe
    nCleaner second v2.3.1-->C:\Program Files\NKProds\nCleaner\uninstall.exe
    Netscape (7.1)-->C:\WINDOWS\NSUninst.exe /ua "7.1b1 (fr)"
    NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
    NvMixer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D7A6C517-11F2-419F-B5BB-27772B939698}\Setup.exe" -uninstall
    OneCare Advisor (Windows Live Toolbar)-->MsiExec.exe /X{6D7F8D4B-D1A4-402A-973E-31E90940E585}
    Outil de mise à jour Google-->"C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -uninstall
    Paintball2 Alpha build 021-->C:\Games\Paintball2\uninst.exe
    Panavue ImageAssembler 3.4.0 (Démo)-->MsiExec.exe /I{1049A829-CBED-41B6-AA1C-F7B71531C1A7}
    PasToucheXP-->"C:\Program Files\PasToucheXP\uninstall.exe"
    PCLink-->C:\WINDOWS\uninst.exe -f"C:\Program Files\PCLink\DeIsL1.isu" -c"C:\Program Files\PCLink\_ISREG32.DLL"
    Pixia 3.3b-->"C:\Program Files\Seagrand\Pixia\unins000.exe"
    Project64 1.6-->MsiExec.exe /X{9559F7CA-5E34-4237-A2D9-D856464AD727}
    PSG Live-->C:\Program Files\MSN Messenger\Uninstal.exe
    Quick Zip 4.60.017b-->"C:\Program Files\QuickZip4\unins000.exe"
    QuickTime-->MsiExec.exe /I{E0D51394-1D45-460A-B62D-383BC4F8B335}
    Ri4m v5.0.1d-->C:\Program Files\Ripp-it_AM\Ri4m_Uninstal.exe
    SAGEM Full USB v3.5.3.0 (WHQL)-->"C:\Program Files\SAGEM\FullUSB\Drivers\uninstall.exe" /ID=FullUSB_x86
    Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
    Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
    Shareaza version 2.2.5.0-->"C:\Program Files\Shareaza\Uninstall\unins000.exe"
    SiSoftware Sandra Lite XI.SP4a-->"C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\unins000.exe"
    Sony Ericsson PC Suite-->MsiExec.exe /I{FC906D5C-91F9-4DA4-A765-6DCBB669F317}
    SopCast 2.0.4-->C:\Program Files\SopCast\uninst.exe
    SpeedUpMyPC Trial-->MsiExec.exe /X{A9DFC08E-0256-4F90-A547-FA69A4CB1D3E}
    Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
    SpywareBlaster v3.5.1-->"C:\Program Files\SpywareBlaster\unins000.exe"
    Steganos Secure FileSharing 6.0.4-->MsiExec.exe /X{7FC79540-F8A0-4581-A82F-99C9F79BD64C}
    Sunbelt Kerio Personal Firewall-->MsiExec.exe /X{E659E0EE-10E6-49B7-8696-60F38D0EB174}
    SUPERAntiSpyware Free Edition-->MsiExec.exe /X{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}
    Swot 1.08-->C:\PROGRA~1\IMAGEA~1\Swot\UNWISE.EXE C:\PROGRA~1\IMAGEA~1\Swot\INSTALL.LOG
    TubeMaster-->"C:\Program Files\TubeMaster\uninstall.exe"
    TubeSucker-->MsiExec.exe /X{41B1A12A-80B3-46BB-80D1-C96001144610}
    TVAnts 1.0-->C:\PROGRA~1\TVAnts\UNWISE.EXE C:\PROGRA~1\TVAnts\INSTALL.LOG
    TVUPlayer 2.3.7.1-->C:\Program Files\TVUPlayer\uninst.exe
    Urban Terror 4.1-->"C:\Program Files\UrbanTerror\unins000.exe"
    VeohTV BETA-->C:\Program Files\InstallShield Installation Information\{0405E51E-9582-4207-8F38-AC44201D3808}\setup.exe -runfromtemp -l0x0409
    Viewpoint Media Player (Remove Only)-->C:\Program Files\Viewpoint\Viewpoint Media Player\mtsAxInstaller.exe /u
    Visionneuse Journal Windows Microsoft-->MsiExec.exe /X{43DCF766-6838-4F9A-8C91-D92DA586DFA8}
    Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
    Windows Installer 3.1 (KB893803)-->"C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"
    Windows Live Favorites pour Windows Live Toolbar-->MsiExec.exe /X{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}
    Windows Live installer-->MsiExec.exe /I{A90D10BA-1E82-44E1-87DE-56A22BA151DA}
    Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
    Windows Live Mail-->MsiExec.exe /I{C514C594-23AA-4F13-A070-DB8BDB27594F}
    Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
    Windows Live OneCare safety scanner-->RunDll32.exe "C:\Program Files\Windows Live Safety Center\wlscCore.dll",UninstallFunction WLSC_SCANNER_PRODUCT
    Windows Live Toolbar-->"C:\Program Files\Windows Live Toolbar\UnInstall.exe" {0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
    Windows Live Toolbar-->MsiExec.exe /X{0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
    Windows Live Writer-->MsiExec.exe /X{3DFF4274-EBB0-4356-9692-972965018954}
    Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
    Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
    Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
    WolfET_Fr_Alpha2-->C:\DOCUMENTS AND SETTINGS\VINCENT.ZOROO-A6EC98604.000\BUREAU\NOUVEAU DOSSIER (2)\Uninstal.exe
    Yahoo! Install Manager-->C:\WINDOWS\system32\regsvr32 /u C:\PROGRA~1\Yahoo!\Common\YINSTH~1.DLL
    Yahoo! Toolbar avec bloqueur de fenêtres pop-up-->C:\PROGRA~1\Yahoo!\Common\unyt.exe

    =====HijackThis Backups=====

    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: (no name) - SOFTWARE - (no file)
    O16 - DPF: {A13516A3-BE86-4517-813C-B5FF0C8ACDF3} (Toontown Installer ActiveX Control French) - http://downloadtoontown.goa.com/sv1.5.14.8/ttinst-frenc...
    O2 - BHO: (no name) - {C66AF7F0-2CF6-48cb-9F94-04EC2504B4FC} - (no file)
    O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll/206 (file missing)
    R3 - URLSearchHook: (no name) - {D73F49B6-B51B-4d32-A3B7-BD04B8342F53} - C:\Program Files\MorpheusBar\SrchAstt\1.bin\MBSRCAS.DLL
    O2 - BHO: (no name) - {0A87E45F-537A-40B4-B812-E2544C21A09F} - (no file)
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://search.imesh.com/sidebar.html?src=ssb
    O2 - BHO: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
    O4 - HKUS\S-1-5-21-1644491937-448539723-725345543-501\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Invité')
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O23 - Service: StarOpen - Unknown owner - (no file)
    O20 - AppInit_DLLs: perftssys.dll
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
    O2 - BHO: MorpheusToolbar BHO - {3F3714A1-89A4-46be-8AF3-D0C9D1FB03F9} - C:\Program Files\MorpheusBar\bar\1.bin\MORPHBAR.DLL
    O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
    O4 - Global Startup: Antivirus Firewall.lnk = C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
    O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
    O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
    O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - Unknown owner - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe (file missing)
    O3 - Toolbar: Morpheus Toolbar - {3F3714A9-89A4-46be-8AF3-D0C9D1FB03F9} - C:\Program Files\MorpheusBar\bar\1.bin\MORPHBAR.DLL
    O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
    O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
    O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - Unknown owner - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe (file missing)
    O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
    O3 - Toolbar: (no name) - {ecdee021-0d17-467f-a1ff-c7a115230949} - (no file)
    O2 - BHO: (no name) - {D73F49B1-B51B-4d32-A3B7-BD04B8342F53} - C:\Program Files\MorpheusBar\SrchAstt\1.bin\MBSRCAS.DLL (file missing)
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O23 - Service: StarOpen - Unknown owner - (no file)

    ======Hosts File======

    127.0.0.1 localhost
    127.0.0.1 www.007guard.com
    127.0.0.1 007guard.com
    127.0.0.1 008i.com
    127.0.0.1 www.008k.com
    127.0.0.1 008k.com
    127.0.0.1 www.00hq.com
    127.0.0.1 00hq.com
    127.0.0.1 010402.com
    127.0.0.1 www.032439.com

    ======Security center information======

    AV: avast! antivirus 4.8.1229 [VPS 081030-0]
    FW: Sunbelt Kerio Personal Firewall

    ======Environment variables======

    "ComSpec"=%SystemRoot%\system32\cmd.exe
    "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\;C:\Program Files\Fichiers communs\Teleca Shared
    "windir"=%SystemRoot%
    "FP_NO_HOST_CHECK"=NO
    "OS"=Windows_NT
    "PROCESSOR_ARCHITECTURE"=x86
    "PROCESSOR_LEVEL"=6
    "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 8 Stepping 1, AuthenticAMD
    "PROCESSOR_REVISION"=0801
    "NUMBER_OF_PROCESSORS"=1
    "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
    "TEMP"=%SystemRoot%\TEMP
    "TMP"=%SystemRoot%\TEMP
    "SAN_DIR"=C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a
    "CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_03\lib\ext\QTJava.zip
    "QTJAVA"=C:\Program Files\Java\jre1.6.0_03\lib\ext\QTJava.zip

    -----------------EOF-----------------
    31 Octobre 2008 15:26:32

    Re,

    Restaure tout ce que tu as décoché avec MsConfig stp, et poste moi un nouveau rapport HijackThis ;) 
    31 Octobre 2008 15:32:17

    voila ! ( jme demande comment vous fait pour savoir que j'ai utiliser msconfig lol)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 15:30:52, on 2008-10-31
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\PnkBstrA.exe
    C:\WINDOWS\system32\PSIService.exe
    C:\WINDOWS\system32\SLEE503.exe
    C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\wuauclt.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    C:\Program Files\Windows Live\Messenger\usnsvc.exe
    C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
    O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O3 - Toolbar: Copernic Desktop Search 2 - {968631B6-4729-440D-9BF4-251F5593EC9A} - C:\Program Files\Copernic Desktop Search 2\DesktopSearchBand201013011.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
    O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
    O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
    O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
    O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\WINDOWS\system32\shdocvw.dll
    O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\WINDOWS\system32\shdocvw.dll
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
    O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by141fd.bay141.hotmail.msn.com/resources/MsnPUpl...
    O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) -
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
    O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Unknown owner - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE (file missing)
    O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
    O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
    O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
    O23 - Service: SiSoftware Database Agent Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\Win32\RpcDataSrv.exe
    O23 - Service: SiSoftware Sandra Agent Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\RpcSandraSrv.exe
    O23 - Service: Steganos Live Encryption Engine (Version 503) [Service] (SLEE_503_SERVICE) - Unknown owner - C:\WINDOWS\system32\SLEE503.exe
    O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
    O23 - Service: StarOpen - Unknown owner - (no file)
    O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

    --
    End of file - 10011 bytes
    31 Octobre 2008 15:53:58

    y voit tu des intrus ?
    31 Octobre 2008 18:42:24

    Re,

    Il devrais y avoir plus de lignes 04, et il y en a moins .. Enfin bon, pas grave.

    1) Télécharge Navilog (de Il-Mafioso)

  • Enregistre-le sur ton Bureau.
  • Installe-le en double cliquant sur navilog.exe.
  • Une fois l'installation terminée, l'utilitaire s'exécutera automatiquement.
    (Si ce n'est pas le cas, double clique sur le raccourci présent sur le Bureau) [Clic droit -> "Exécuter en tant qu'administrateur". ( Pour Vista)]
  • Laisse-toi guider par l'utilitaire. Choisis l'option 1 puis valide.
    ! N'utilise pas l'option 2, 3 et 4 sans notre accord !
  • Patiente jusqu'à l'apparition de ce message :
    *** Analyse Termine le ..... ***
  • Appuie sur une touche comme demandé. Le Bloc-notes va s'ouvrir. Poste le rapport ici.
  • Poste le rapport généré.

    Le rapport se trouve ici : C:\fixnavi.txt

    2) Télécharge Lop S&D.exe (d’ Eric 71) sur ton Bureau.

  • Double-clique dessus pour lancer l'installation
  • Puis double-clique sur le raccourci Lop S&D présent sur ton bureau (Si tu es sous Vista, clique droit -> exécuter en tant qu'admin)
  • Séléctionne la langue souhaitée , puis choisis l'Option 1 (Recherche)
  • Patiente jusqu'à la fin du scan
  • Poste le rapport généré (C:\lopR.txt)

    Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
    Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "Nouvelle tâche (exécuter)"
    Tapes explorer et valide. Cela te fera apparaitre ton bureau
    31 Octobre 2008 21:42:43

    tu peux me dire c'est quoi les lignes de 4 stp ?

    PREMIER :
    Search Navipromo version 3.6.7 commencé le 2008-10-31 à 20:44:18,01

    !!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
    !!! Postez ce rapport sur le forum pour le faire analyser !!!
    !!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

    Outil exécuté depuis C:\Program Files\navilog1
    Session actuelle : "vincent"

    Mise à jour le 22.10.2008 à 20h00 par IL-MAFIOSO


    Microsoft Windows XP [version 5.1.2600]
    Internet Explorer : 6.0.2900.2180
    Système de fichiers : NTFS

    Recherche executé en mode normal

    *** Recherche Programmes installés ***

    Favorit
    Favorit

    *** Recherche dossiers dans "C:\WINDOWS" ***


    *** Recherche dossiers dans "C:\Program Files" ***


    *** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" ***


    *** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1" ***


    *** Recherche dossiers dans "c:\docume~1\alluse~1\applic~1" ***


    *** Recherche dossiers dans "C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\applic~1" ***


    *** Recherche dossiers dans "C:\DOCUME~1\INVIT~1\applic~1" ***


    *** Recherche dossiers dans "C:\DOCUME~1\MAMAN\applic~1" ***


    *** Recherche dossiers dans "C:\DOCUME~1\VINCENT\applic~1" ***

    ...\MessengerSkinner trouvé !

    *** Recherche dossiers dans "C:\DOCUME~1\VINCEN~1.ZOR\applic~1" ***


    *** Recherche dossiers dans "C:\DOCUME~1\VINCEN~3\applic~1" ***


    *** Recherche dossiers dans "C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\locals~1\applic~1" ***


    *** Recherche dossiers dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" ***


    *** Recherche dossiers dans "C:\DOCUME~1\MAMAN\locals~1\applic~1" ***


    *** Recherche dossiers dans "C:\DOCUME~1\VINCENT\locals~1\applic~1" ***


    *** Recherche dossiers dans "C:\DOCUME~1\VINCEN~1.ZOR\locals~1\applic~1" ***


    *** Recherche dossiers dans "C:\DOCUME~1\VINCEN~3\locals~1\applic~1" ***


    *** Recherche dossiers dans "C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\menudm~1\progra~1" ***


    *** Recherche dossiers dans "C:\DOCUME~1\INVIT~1\menudm~1\progra~1" ***


    *** Recherche dossiers dans "C:\DOCUME~1\MAMAN\menudm~1\progra~1" ***


    *** Recherche dossiers dans "C:\DOCUME~1\VINCENT\menudm~1\progra~1" ***

    ...\InternetGameBox trouvé !
    ...\MessengerSkinner trouvé !
    ...\WebMediaPlayer trouvé !

    *** Recherche dossiers dans "C:\DOCUME~1\VINCEN~1.ZOR\menudm~1\progra~1" ***

    ...\WebMediaPlayer trouvé !

    *** Recherche dossiers dans "C:\DOCUME~1\VINCEN~3\menudm~1\progra~1" ***

    ...\InternetGameBox trouvé !

    *** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
    pour + d'infos : http://www.gmer.net



    *** Recherche avec GenericNaviSearch ***
    !!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
    !!! A vérifier impérativement avant toute suppression manuelle !!!

    * Recherche dans "C:\WINDOWS\system32" *

    * Recherche dans "C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\locals~1\applic~1" *

    * Recherche dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" *

    * Recherche dans "C:\DOCUME~1\MAMAN\locals~1\applic~1" *

    * Recherche dans "C:\DOCUME~1\VINCENT\locals~1\applic~1" *

    * Recherche dans "C:\DOCUME~1\VINCEN~1.ZOR\locals~1\applic~1" *

    * Recherche dans "C:\DOCUME~1\VINCEN~3\locals~1\applic~1" *



    *** Recherche fichiers ***


    C:\WINDOWS\pack.epk trouvé !

    *** Recherche clés spécifiques dans le Registre ***

    HKEY_CURRENT_USER\Software\Lanconfig trouvé !

    *** Module de Recherche complémentaire ***
    (Recherche fichiers spécifiques)

    1)Recherche nouveaux fichiers Instant Access :


    2)Recherche Heuristique :

    * Dans "C:\WINDOWS\system32" :


    * Dans "C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\locals~1\applic~1" :


    * Dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" :


    * Dans "C:\DOCUME~1\MAMAN\locals~1\applic~1" :


    * Dans "C:\DOCUME~1\VINCENT\locals~1\applic~1" :


    * Dans "C:\DOCUME~1\VINCEN~1.ZOR\locals~1\applic~1" :


    * Dans "C:\DOCUME~1\VINCEN~3\locals~1\applic~1" :


    3)Recherche Certificats :

    Certificat Egroup trouvé !
    Certificat Electronic-Group trouvé !
    Certificat Montorgueil absent !
    Certificat OOO-Favorit trouvé !
    Certificat Sunny-Day-Design-Ltd absent !

    4)Recherche fichiers connus :



    *** Analyse terminée le 2008-10-31 à 21:24:22,81 ***

    DEUXIEME:

    les\DAP
    [2008-07-07|15:03] C:\Program Files\directx
    [2008-01-10|16:29] C:\Program Files\DivX
    [2007-09-26|20:00] C:\Program Files\Easy CD-DA Extractor 10
    [2007-09-29|19:10] C:\Program Files\eChanblard
    [2008-10-25|18:52] C:\Program Files\eMule
    [2007-08-19|00:46] C:\Program Files\eoRezo
    [2007-04-03|04:10] C:\Program Files\ePSXe
    [2007-01-30|04:34] C:\Program Files\Eurobarre
    [2008-05-15|07:47] C:\Program Files\Fichiers communs
    [2007-06-08|19:34] C:\Program Files\File Lock
    [2008-01-13|00:54] C:\Program Files\Filetopia3
    [2007-09-16|16:34] C:\Program Files\Find'Em Trial
    [2007-12-28|16:54] C:\Program Files\Free
    [2008-01-14|15:08] C:\Program Files\free-downloads.net
    [2007-09-02|19:17] C:\Program Files\GLD
    [2008-07-20|18:02] C:\Program Files\Google
    [2007-04-22|11:12] C:\Program Files\Goto
    [2008-01-11|21:55] C:\Program Files\Grisoft
    [2008-10-02|20:21] C:\Program Files\Hitman Pro
    [2007-01-30|04:33] C:\Program Files\Hotkey
    [2006-11-23|20:04] C:\Program Files\Image Applications
    [2007-07-15|21:12] C:\Program Files\iMesh Applications
    [2008-07-10|01:02] C:\Program Files\InstallShield Installation Information
    [2007-04-26|19:38] C:\Program Files\Internet Download Manager
    [2008-10-17|02:02] C:\Program Files\Internet Explorer
    [2006-10-07|04:23] C:\Program Files\Inventel
    [2008-01-17|19:43] C:\Program Files\iPod
    [2008-01-13|00:54] C:\Program Files\iSpeed
    [2008-01-17|19:43] C:\Program Files\iTunes
    [2008-01-10|17:55] C:\Program Files\Java
    [2007-04-22|20:13] C:\Program Files\JavaSoft
    [2007-03-19|10:06] C:\Program Files\Kazaa Lite
    [2008-01-13|00:54] C:\Program Files\KAZAA LITE TOOLS K++
    [2008-10-02|20:20] C:\Program Files\K-Lite Codec Pack
    [2007-09-30|10:06] C:\Program Files\Launchy
    [2006-10-04|23:55] C:\Program Files\Lavalys
    [2007-09-19|12:50] C:\Program Files\Lavasoft
    [2007-11-25|11:52] C:\Program Files\LimeWire
    [2006-12-05|19:35] C:\Program Files\LIUtilities
    [2007-03-19|18:34] C:\Program Files\Logitech
    [2007-01-30|04:33] C:\Program Files\Loonies
    [2008-05-23|20:44] C:\Program Files\MAIET
    [2008-10-27|13:07] C:\Program Files\Malwarebytes' Anti-Malware
    [2007-08-10|17:06] C:\Program Files\Mario Forever
    [2007-05-28|17:08] C:\Program Files\MegauploadToolbar
    [2008-08-14|02:05] C:\Program Files\Messenger
    [2008-01-03|15:30] C:\Program Files\Messenger Plus! Live
    [2007-01-31|20:36] C:\Program Files\MessengerPlus! 3
    [2006-12-04|23:57] C:\Program Files\Microsoft Bootvis
    [2007-05-09|02:07] C:\Program Files\Microsoft CAPICOM 2.1.0.2
    [2006-10-04|23:44] C:\Program Files\microsoft frontpage
    [2006-10-11|13:19] C:\Program Files\Microsoft Games
    [2006-10-06|19:11] C:\Program Files\Microsoft Office
    [2008-02-20|15:44] C:\Program Files\Microsoft SQL Server Compact Edition
    [2008-07-07|22:58] C:\Program Files\Mindscape
    [2008-02-17|21:31] C:\Program Files\Morgan
    [2008-05-27|06:40] C:\Program Files\Morpheus
    [2007-07-17|19:50] C:\Program Files\Morpheus Ultra
    [2007-01-30|04:33] C:\Program Files\MorpheusBar
    [2008-01-13|00:55] C:\Program Files\Movie Maker
    [2008-10-31|17:08] C:\Program Files\Mozilla Firefox
    [2007-11-25|18:06] C:\Program Files\mozilla.org
    [2007-08-15|16:59] C:\Program Files\MSN
    [2007-10-06|17:55] C:\Program Files\MSN Font Color Editor
    [2006-10-04|23:39] C:\Program Files\MSN Gaming Zone
    [2008-02-20|15:50] C:\Program Files\MSN Messenger
    [2007-10-06|17:53] C:\Program Files\MSNTweaker
    [2006-10-11|13:27] C:\Program Files\MSXML 4.0
    [2007-04-15|21:59] C:\Program Files\MyMPxPlayer.org
    [2008-10-31|20:44] C:\Program Files\Navilog1
    [2007-05-21|21:11] C:\Program Files\NetAnts
    [2006-10-04|23:41] C:\Program Files\NetMeeting
    [2007-09-26|21:55] C:\Program Files\Netscape
    [2007-05-21|21:15] C:\Program Files\NKProds
    [2007-09-16|16:35] C:\Program Files\Nombre MYSTERE
    [2007-05-31|20:18] C:\Program Files\Nuclear Coffee
    [2007-09-29|19:10] C:\Program Files\nutri
    [2006-10-05|00:03] C:\Program Files\NVIDIA Corporation
    [2006-12-09|01:02] C:\Program Files\Object Desktop
    [2006-10-04|23:40] C:\Program Files\Online Services
    [2006-10-12|16:13] C:\Program Files\OpenOffice.org 2.0
    [2008-01-12|21:16] C:\Program Files\Outlook Express
    [2007-03-30|20:42] C:\Program Files\PanaVue
    [2008-07-13|16:56] C:\Program Files\PasToucheXP
    [2008-02-24|16:03] C:\Program Files\PCLink
    [2007-01-30|04:32] C:\Program Files\Player Metaboli
    [2007-04-07|19:36] C:\Program Files\POPUPKILLER
    [2006-12-16|23:34] C:\Program Files\PQDVD
    [2008-03-04|16:31] C:\Program Files\Project64 1.6
    [2007-01-30|04:35] C:\Program Files\PSPWare
    [2008-07-21|19:43] C:\Program Files\psx emulation cheater
    [2008-01-17|19:41] C:\Program Files\QuickTime
    [2008-01-13|00:56] C:\Program Files\QuickZip4
    [2008-04-05|21:05] C:\Program Files\RegCleaner
    [2007-01-30|04:35] C:\Program Files\Ripp-it_AM
    [2008-07-27|21:21] C:\Program Files\Rockstar Games
    [2007-09-26|20:09] C:\Program Files\SAGEM
    [2007-10-31|13:41] C:\Program Files\Seagrand
    [2008-05-23|13:29] C:\Program Files\Services en ligne
    [2008-01-13|00:56] C:\Program Files\Shareaza
    [2007-07-10|10:54] C:\Program Files\SimonTools
    [2007-09-20|21:01] C:\Program Files\SiSoftware
    [2007-03-19|10:08] C:\Program Files\SlySoft
    [2008-05-15|07:47] C:\Program Files\Sony Ericsson
    [2008-08-16|20:02] C:\Program Files\SopCast
    [2007-04-30|20:50] C:\Program Files\Spn
    [2008-10-26|12:18] C:\Program Files\Spybot - Search & Destroy
    [2007-05-31|11:24] C:\Program Files\Spyware Terminator
    [2008-01-25|01:34] C:\Program Files\SpywareBlaster
    [2006-10-23|10:31] C:\Program Files\Star Downloader
    [2007-03-30|23:42] C:\Program Files\Stardock
    [2007-04-28|16:41] C:\Program Files\Steganos Secure FileSharing 6
    [2008-05-03|23:25] C:\Program Files\Sunbelt Software
    [2008-10-28|15:04] C:\Program Files\SUPERAntiSpyware
    [2007-06-04|16:52] C:\Program Files\themexp
    [2008-02-20|19:23] C:\Program Files\Titus
    [2007-09-29|18:55] C:\Program Files\ToniArts
    [2008-07-07|22:48] C:\Program Files\Tremulous
    [2007-11-05|00:19] C:\Program Files\Trend Micro
    [2007-08-19|04:00] C:\Program Files\Trojan Remover
    [2007-09-16|21:03] C:\Program Files\TubeMaster
    [2007-05-31|20:36] C:\Program Files\TubeSucker
    [2008-02-17|21:16] C:\Program Files\TVAnts
    [2008-08-16|20:11] C:\Program Files\TVUPlayer
    [2006-10-10|19:54] C:\Program Files\Ubisoft
    [2006-10-04|23:50] C:\Program Files\Uninstall Information
    [2008-02-20|18:55] C:\Program Files\Universal Interactive
    [2008-08-03|11:40] C:\Program Files\UrbanTerror
    [2008-01-12|18:47] C:\Program Files\uTorrent
    [2008-04-05|14:36] C:\Program Files\Veoh Networks
    [2007-03-20|23:30] C:\Program Files\Vga1User
    [2008-07-07|13:40] C:\Program Files\VID_0E8F&PID_3020
    [2008-08-09|15:58] C:\Program Files\VideoLAN
    [2007-09-26|21:57] C:\Program Files\Viewpoint
    [2008-01-13|12:20] C:\Program Files\VirtualDJ
    [2007-07-01|19:21] C:\Program Files\Wanadoo
    [2007-06-08|19:32] C:\Program Files\WinAVI MP4 Converter
    [2007-03-21|17:01] C:\Program Files\Windows Journal Viewer
    [2008-02-28|10:07] C:\Program Files\Windows Live
    [2007-11-29|20:27] C:\Program Files\Windows Live Favorites
    [2007-11-19|23:01] C:\Program Files\Windows Live Safety Center
    [2007-11-30|10:05] C:\Program Files\Windows Live Toolbar
    [2007-01-30|04:33] C:\Program Files\Windows Media Connect 2
    [2008-02-24|17:06] C:\Program Files\Windows Media Player
    [2006-10-04|23:39] C:\Program Files\Windows NT
    [2006-10-04|23:42] C:\Program Files\WindowsUpdate
    [2007-08-25|23:01] C:\Program Files\WinMX
    [2007-04-01|23:38] C:\Program Files\WinRAR
    [2007-04-28|22:47] C:\Program Files\WinZip
    [2008-04-08|18:19] C:\Program Files\Wolfenstein - Enemy Territory
    [2008-01-13|12:20] C:\Program Files\WorkoutLogger
    [2008-01-10|18:04] C:\Program Files\Wyzo
    [2006-10-04|23:44] C:\Program Files\xerox
    [2007-09-29|18:57] C:\Program Files\Yahoo!

    --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

    [2008-02-24|11:49] C:\Program Files\Fichiers communs\Adobe
    [2008-01-17|19:36] C:\Program Files\Fichiers communs\Apple
    [2007-09-14|19:26] C:\Program Files\Fichiers communs\AVSMedia
    [2006-10-12|15:59] C:\Program Files\Fichiers communs\BOONTY Shared
    [2006-11-11|13:54] C:\Program Files\Fichiers communs\DirectX
    [2007-03-20|15:18] C:\Program Files\Fichiers communs\InstallShield
    [2008-01-10|17:50] C:\Program Files\Fichiers communs\Java
    [2007-03-19|18:30] C:\Program Files\Fichiers communs\LogiShrd
    [2008-04-09|15:56] C:\Program Files\Fichiers communs\Logitech
    [2008-04-08|08:00] C:\Program Files\Fichiers communs\Microsoft Shared
    [2007-09-26|21:55] C:\Program Files\Fichiers communs\mozilla.org
    [2006-10-04|23:41] C:\Program Files\Fichiers communs\MSSoap
    [2006-10-05|00:03] C:\Program Files\Fichiers communs\NVIDIA Shared
    [2006-10-05|01:31] C:\Program Files\Fichiers communs\ODBC
    [2006-10-04|23:41] C:\Program Files\Fichiers communs\Services
    [2008-05-15|07:48] C:\Program Files\Fichiers communs\Sony Ericsson Shared
    [2006-10-05|01:31] C:\Program Files\Fichiers communs\SpeechEngines
    [2007-03-30|23:42] C:\Program Files\Fichiers communs\Stardock
    [2007-07-06|12:30] C:\Program Files\Fichiers communs\System
    [2008-05-15|07:48] C:\Program Files\Fichiers communs\Teleca Shared
    [2008-02-20|15:17] C:\Program Files\Fichiers communs\WindowsLiveInstaller
    [2008-10-28|15:02] C:\Program Files\Fichiers communs\Wise Installation Wizard

    --------------------\\ Process

    ( 42 Processes )

    ... OK !

    --------------------\\ Recherche avec S_Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Recherche de Fichiers / Dossiers Lop

    C:\DOCUME~1\INVIT~1\APPLIC~1\vga1user
    C:\Program Files\vga1user
    C:\DOCUME~1\VINCEN~1.000\LOCALS~1\Temp\nsf17.tmp
    C:\DOCUME~1\INVIT~1\APPLIC~1\Adverts
    C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@adin.bigpoint[2].txt
    C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@cotedazurpalace[2].txt
    C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@seafight[1].txt
    C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@www.seafight[1].txt
    C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@2xmoinscher[2].txt
    C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@www.2xmoinscher[1].txt
    C:\WINDOWS\Tasks\B7FD719190DEE5CD.job

    --------------------\\ Verification du Registre

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

    ..... OK !

    --------------------\\ Verification du fichier Hosts

    Fichier Hosts PROPRE


    --------------------\\ Recherche de fichiers avec Catchme

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-10-31 21:27:10
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 1

    --------------------\\ Recherche d'autres infections

    C:\WINDOWS\Pack.epk

    C:\WINDOWS\System32\fdpofhppoa.dat.ren
    C:\WINDOWS\System32\fdpofhppoa_nav.dat.ren
    C:\WINDOWS\System32\fdpofhppoa_navps.dat.ren
    ==> EGDACCESS <==



    [F:1270][D:99]-> C:\DOCUME~1\VINCEN~1.000\LOCALS~1\Temp
    [F:1534][D:0]-> C:\DOCUME~1\VINCEN~1.000\Cookies
    [F:11700][D:31]-> C:\DOCUME~1\VINCEN~1.000\LOCALS~1\TEMPOR~1\content.IE5

    1 - "C:\Lop SD\LopR_1.txt" - 2008-10-31|21:36 - Option : [1]

    --------------------\\ Fin du rapport a 21:36:03


    voila , jespere que je ne met pas en ligne des donnés personelles ...
    31 Octobre 2008 23:21:44

    Re,

  • Double clique sur le raccourci de Navilog.
  • Choisis l'option 2 puis valide. (Entrée)
  • Laisse toi guider.
  • Ton ordinateur va redémarrer, sinon fais le manuellement.
  • Ton bureau va disparaître.
  • Après un certain temps, le Bloc-notes va s'ouvrir.
  • Sauvegarde le rapport.
  • Referme le Bloc-notes. Ton bureau va maintenant réapparaître.

    Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
    Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "Nouvelle tâche (exécuter)"
    Tapes explorer et valide. Cela te fera apparaitre ton bureau


    Démarrer -> panneau de configuration -> options internet
    Clique sur l'onglet "Contenu" puis onglet "Certificats" et si tu trouves ceci, en particulier dans "éditeurs approuvés" :

    VIP

    Si tu les trouves, fais ceci :
    * Sélectionne chacun de ces certificats et clique sur exporter. Enregistre le/les sur ton bureau.
    * Supprime ensuite ceux présents dans l'onglet "certificats" des options de ton naviguateur.

    Ensuite pour chacun des certificats présents sur ton bureau :
    * Va sur le site Web :
    http://www.bleepingcomputer.com/submit-malware.php?chan...
    * Copie/colle ceci dans la case 'Link to Topic' :
    le nom du certificat (Montorgueil ,......)
    * Copie/colle ceci dans la case 'Browse to the File' :
    Le certificat correspondant que tu avais exportés vers ton bureau

    Si c'est fait, supprime enfin le certificat présent sur ton bureau.

    Les programmes suivants installent cette infection :

    * Go-astro
    * GoRecord
    * HotTVPlayer
    * Live Player
    * MailSkinner
    * Messenger Skinner
    * Instant Access
    * InternetGameBox
    * sudoplanet
    * Webmediaplayer : sauf celui provenant du site suivant > http://www.azertysite.new.fr/
    * Sur le site www.games-desktop.com (Ne pas aller dessus!)

  • Poste le rapport sauvegardé auparavant (C:\cleannavi.txt) ainsi qu'un nouveau rapport Hijackthis.

    -------

    Puis poste un nouveau rapport Lop S&D, option 1 (en entier)
    1 Novembre 2008 00:50:58

    Clean Navipromo version 3.6.7 commencé le 2008-11-01 à 0:29:45,82

    Outil exécuté depuis C:\Program Files\navilog1
    Session actuelle : "vincent"

    Mise à jour le 22.10.2008 à 20h00 par IL-MAFIOSO


    Microsoft Windows XP [version 5.1.2600]
    Internet Explorer : 6.0.2900.2180
    Système de fichiers : NTFS

    Mode suppression automatique
    avec prise en charge résultats Catchme et GNS


    Nettoyage exécuté au redémarrage de l'ordinateur


    *** fsbl1.txt non trouvé ***
    (Assurez-vous que Catchme n'avait rien trouvé lors de la recherche)


    *** Suppression avec sauvegardes résultats GenericNaviSearch ***

    * Suppression dans "C:\WINDOWS\System32" *


    * Suppression dans "C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\locals~1\applic~1" *


    * Suppression dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" *

    * Suppression dans "C:\DOCUME~1\MAMAN\locals~1\applic~1" *

    * Suppression dans "C:\DOCUME~1\VINCENT\locals~1\applic~1" *

    * Suppression dans "C:\DOCUME~1\VINCEN~1.ZOR\locals~1\applic~1" *

    * Suppression dans "C:\DOCUME~1\VINCEN~3\locals~1\applic~1" *


    *** Suppression dossiers dans "C:\WINDOWS" ***


    *** Suppression dossiers dans "C:\Program Files" ***


    *** Suppression dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" ***


    *** Suppression dossiers dans "C:\Documents and Settings\All Users\menudm~1" ***


    *** Suppression dossiers dans "c:\docume~1\alluse~1\applic~1" ***


    *** Suppression dossiers dans "C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\applic~1" ***


    *** Suppression dossiers dans "C:\DOCUME~1\INVIT~1\applic~1" ***


    *** Suppression dossiers dans "C:\DOCUME~1\MAMAN\applic~1" ***


    *** Suppression dossiers dans "C:\DOCUME~1\VINCENT\applic~1" ***

    ...\MessengerSkinner ...suppression...
    ...\MessengerSkinner supprimé !


    *** Suppression dossiers dans "C:\DOCUME~1\VINCEN~1.ZOR\applic~1" ***


    *** Suppression dossiers dans "C:\DOCUME~1\VINCEN~3\applic~1" ***


    *** Suppression dossiers dans "C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\locals~1\applic~1" ***


    *** Suppression dossiers dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" ***


    *** Suppression dossiers dans "C:\DOCUME~1\MAMAN\locals~1\applic~1" ***


    *** Suppression dossiers dans "C:\DOCUME~1\VINCENT\locals~1\applic~1" ***


    *** Suppression dossiers dans "C:\DOCUME~1\VINCEN~1.ZOR\locals~1\applic~1" ***


    *** Suppression dossiers dans "C:\DOCUME~1\VINCEN~3\locals~1\applic~1" ***


    *** Suppression dossiers dans "C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\menudm~1\progra~1" ***


    *** Suppression dossiers dans "C:\DOCUME~1\INVIT~1\menudm~1\progra~1" ***


    *** Suppression dossiers dans "C:\DOCUME~1\MAMAN\menudm~1\progra~1" ***


    *** Suppression dossiers dans "C:\DOCUME~1\VINCENT\menudm~1\progra~1" ***

    ...\InternetGamebox ...suppression...
    ...\InternetGamebox supprimé !

    ...\MessengerSkinner ...suppression...
    ...\MessengerSkinner supprimé !

    ...\WebMediaPlayer ...suppression...
    ...\WebMediaPlayer supprimé !


    *** Suppression dossiers dans "C:\DOCUME~1\VINCEN~1.ZOR\menudm~1\progra~1" ***

    ...\WebMediaPlayer ...suppression...
    ...\WebMediaPlayer supprimé !


    *** Suppression dossiers dans "C:\DOCUME~1\VINCEN~3\menudm~1\progra~1" ***

    ...\InternetGamebox ...suppression...
    ...\InternetGamebox supprimé !



    *** Suppression fichiers ***

    C:\WINDOWS\pack.epk supprimé !

    *** Suppression fichiers temporaires ***

    Nettoyage contenu C:\WINDOWS\Temp effectué !
    Nettoyage contenu C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\locals~1\Temp effectué !

    *** Traitement Recherche complémentaire ***
    (Recherche fichiers spécifiques)

    1)Suppression avec sauvegardes nouveaux fichiers Instant Access :

    2)Recherche, création sauvegardes et suppression Heuristique :


    * Dans "C:\WINDOWS\system32" *


    * Dans "C:\Documents and Settings\vincent.ZOROO-A6EC98604.000\locals~1\applic~1" *


    * Dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" *


    * Dans "C:\DOCUME~1\MAMAN\locals~1\applic~1" *


    * Dans "C:\DOCUME~1\VINCENT\locals~1\applic~1" *


    * Dans "C:\DOCUME~1\VINCEN~1.ZOR\locals~1\applic~1" *


    * Dans "C:\DOCUME~1\VINCEN~3\locals~1\applic~1" *


    *** Sauvegarde du Registre vers dossier Safebackup ***

    sauvegarde du Registre réalisée avec succès !

    *** Nettoyage Registre ***

    Nettoyage Registre Ok


    *** Certificats ***

    Certificat Egroup supprimé !
    Certificat Electronic-Group supprimé !
    Certificat Montorgueil absent !
    Certificat OOO-Favorit supprimé !
    Certificat Sunny-Day-Design-Ltdt absent !

    *** Nettoyage terminé le 2008-11-01 à 0:41:15,84 ***


    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 00:50:06, on 2008-11-01
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\PnkBstrA.exe
    C:\WINDOWS\system32\PSIService.exe
    C:\WINDOWS\system32\SLEE503.exe
    C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
    O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O3 - Toolbar: Copernic Desktop Search 2 - {968631B6-4729-440D-9BF4-251F5593EC9A} - C:\Program Files\Copernic Desktop Search 2\DesktopSearchBand201013011.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
    O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
    O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
    O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
    O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\WINDOWS\system32\shdocvw.dll
    O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\WINDOWS\system32\shdocvw.dll
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
    O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by141fd.bay141.hotmail.msn.com/resources/MsnPUpl...
    O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) -
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
    O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Unknown owner - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE (file missing)
    O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
    O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
    O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
    O23 - Service: SiSoftware Database Agent Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\Win32\RpcDataSrv.exe
    O23 - Service: SiSoftware Sandra Agent Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\RpcSandraSrv.exe
    O23 - Service: Steganos Live Encryption Engine (Version 503) [Service] (SLEE_503_SERVICE) - Unknown owner - C:\WINDOWS\system32\SLEE503.exe
    O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
    O23 - Service: StarOpen - Unknown owner - (no file)
    O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

    --
    End of file - 9850 bytes

    --------------------\\ Lop S&D 4.2.4-9 XP/Vista

    Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
    X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 1800+ )
    BIOS : Version 1.00
    USER : vincent ( Administrator )
    BOOT : Normal boot
    Antivirus : avast! antivirus 4.8.1229 [VPS 081031-1] 4.8.1229 (Activated)
    Firewall : Sunbelt Kerio Personal Firewall 4.3.744 T (Activated)
    A:\ (USB)
    C:\ (Local Disk) - NTFS - Total:39 Go (Free:1 Go)
    D:\ (Local Disk) - NTFS - Total:37 Go (Free:34 Go)
    E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
    F:\ (CD or DVD)
    G:\ (CD or DVD)
    H:\ (CD or DVD)
    I:\ (CD or DVD)
    J:\ (CD or DVD)

    "C:\Lop SD" ( MAJ : 30-10-2008|21:58 )
    Option : [1] ( 2008-11-01| 0:52 )

    --------------------\\ Listing des dossiers dans APPLIC~1


    [2006-10-06|19:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Acronis
    [2008-02-24|11:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [2007-09-16|10:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
    [2008-01-17|19:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
    [2007-09-27|16:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Arovax
    [2007-07-12|13:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
    [2007-09-14|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVS4YOU
    [2006-10-12|15:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
    [2007-10-31|15:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
    [2006-10-23|10:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Exetender
    [2006-10-09|17:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
    [2007-03-08|00:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [2008-10-31|12:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
    [2008-01-11|21:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
    [2008-01-11|23:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Locktime
    [2007-03-19|18:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
    [2008-10-27|13:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
    [2007-01-14|16:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
    [2007-05-14|16:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [2008-08-24|16:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA
    [2008-05-15|07:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
    [2008-10-26|13:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
    [2008-10-28|15:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SUPERAntiSpyware.com
    [2008-05-15|07:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca
    [2008-01-14|14:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
    [2007-09-19|17:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tenebril
    [2006-12-04|22:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
    [2008-08-16|20:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TVU Networks
    [2006-11-14|22:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ubisoft
    [2007-09-17|19:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\up 16 program 64
    [2006-10-22|16:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    [2007-03-08|04:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
    [2007-07-23|15:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
    [2008-02-20|15:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
    [2007-09-29|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion

    [2007-07-23|15:55] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

    [2008-08-20|20:41] C:\DOCUME~1\INVIT~1\APPLIC~1\Adobe
    [2007-08-10|17:06] C:\DOCUME~1\INVIT~1\APPLIC~1\Adverts
    [2007-12-30|17:43] C:\DOCUME~1\INVIT~1\APPLIC~1\BitTorrent
    [2008-07-01|14:53] C:\DOCUME~1\INVIT~1\APPLIC~1\DivX
    [2007-09-29|19:09] C:\DOCUME~1\INVIT~1\APPLIC~1\EoRezo
    [2007-01-13|21:22] C:\DOCUME~1\INVIT~1\APPLIC~1\Google
    [2008-01-12|20:24] C:\DOCUME~1\INVIT~1\APPLIC~1\Grisoft
    [2006-12-29|11:57] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
    [2006-12-29|11:58] C:\DOCUME~1\INVIT~1\APPLIC~1\ispnews
    [2008-07-28|19:25] C:\DOCUME~1\INVIT~1\APPLIC~1\Launchy
    [2007-09-05|02:09] C:\DOCUME~1\INVIT~1\APPLIC~1\Macromedia
    [2007-05-25|10:45] C:\DOCUME~1\INVIT~1\APPLIC~1\MEGAUPLOADTOOLBAR
    [2007-01-30|04:32] C:\DOCUME~1\INVIT~1\APPLIC~1\MessengerPlus! 3
    [2008-01-20|14:54] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
    [2007-01-02|13:32] C:\DOCUME~1\INVIT~1\APPLIC~1\Morpheus
    [2008-01-17|18:53] C:\DOCUME~1\INVIT~1\APPLIC~1\Mozilla
    [2008-05-20|16:17] C:\DOCUME~1\INVIT~1\APPLIC~1\Sony Ericsson
    [2007-05-25|06:28] C:\DOCUME~1\INVIT~1\APPLIC~1\Spyware Terminator
    [2008-01-11|12:40] C:\DOCUME~1\INVIT~1\APPLIC~1\Sun
    [2007-07-20|12:24] C:\DOCUME~1\INVIT~1\APPLIC~1\Talkback
    [2008-05-21|12:16] C:\DOCUME~1\INVIT~1\APPLIC~1\Teleca
    [2006-12-30|20:24] C:\DOCUME~1\INVIT~1\APPLIC~1\TuneUp Software
    [2007-08-10|15:31] C:\DOCUME~1\INVIT~1\APPLIC~1\Vga1User

    [2007-07-11|22:40] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
    [2007-07-12|13:29] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
    [2007-05-15|18:07] C:\DOCUME~1\LOCALS~1\APPLIC~1\Spyware Terminator

    [2006-10-08|17:51] C:\DOCUME~1\MAMAN\APPLIC~1\Adobe
    [2006-10-10|17:59] C:\DOCUME~1\MAMAN\APPLIC~1\F-Secure
    [2006-11-03|22:04] C:\DOCUME~1\MAMAN\APPLIC~1\Help
    [2006-10-08|12:29] C:\DOCUME~1\MAMAN\APPLIC~1\Identities
    [2006-10-10|17:17] C:\DOCUME~1\MAMAN\APPLIC~1\ispnews
    [2006-10-10|17:17] C:\DOCUME~1\MAMAN\APPLIC~1\Macromedia
    [2007-07-12|13:29] C:\DOCUME~1\MAMAN\APPLIC~1\Microsoft
    [2006-10-26|19:09] C:\DOCUME~1\MAMAN\APPLIC~1\Morpheus

    [2007-07-12|13:29] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    [2006-10-08|17:33] C:\DOCUME~1\VINCENT\APPLIC~1\Adobe
    [2006-10-08|17:33] C:\DOCUME~1\VINCENT\APPLIC~1\AdobeUM
    [2006-10-23|22:23] C:\DOCUME~1\VINCENT\APPLIC~1\Atari
    [2007-05-21|21:21] C:\DOCUME~1\VINCENT\APPLIC~1\BitTorrent
    [2007-02-01|00:28] C:\DOCUME~1\VINCENT\APPLIC~1\EoRezo
    [2006-10-09|18:17] C:\DOCUME~1\VINCENT\APPLIC~1\F-Secure
    [2006-10-07|23:56] C:\DOCUME~1\VINCENT\APPLIC~1\Identities
    [2006-10-09|17:50] C:\DOCUME~1\VINCENT\APPLIC~1\ispnews
    [2006-10-14|16:27] C:\DOCUME~1\VINCENT\APPLIC~1\Macromedia
    [2007-07-12|13:29] C:\DOCUME~1\VINCENT\APPLIC~1\Microsoft
    [2006-10-14|09:51] C:\DOCUME~1\VINCENT\APPLIC~1\Morpheus
    [2006-10-09|17:53] C:\DOCUME~1\VINCENT\APPLIC~1\PEX
    [2006-10-12|16:08] C:\DOCUME~1\VINCENT\APPLIC~1\SecuROM
    [2007-05-25|17:55] C:\DOCUME~1\VINCENT\APPLIC~1\Smart PC Solutions
    [2006-11-11|13:53] C:\DOCUME~1\VINCENT\APPLIC~1\THQ
    [2006-12-04|22:47] C:\DOCUME~1\VINCENT\APPLIC~1\TuneUp Software
    [2006-12-04|22:53] C:\DOCUME~1\VINCENT\APPLIC~1\uTorrent

    [2007-07-11|22:42] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\AVG7
    [2007-07-08|11:35] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\DivX
    [2007-07-11|10:14] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\dvdcss
    [2007-06-12|16:41] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Identities
    [2007-06-12|16:42] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\ispnews
    [2007-07-06|12:11] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Macromedia
    [2007-07-12|13:29] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Microsoft
    [2007-07-10|20:17] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Mozilla
    [2007-07-02|20:50] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Shareaza
    [2007-07-08|16:54] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Sun
    [2007-07-10|20:17] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Talkback
    [2007-06-14|20:53] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\vlc

    [2008-07-20|23:27] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Adobe
    [2008-01-25|14:32] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Apple Computer
    [2008-04-07|21:37] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Auslogics
    [2008-02-03|17:20] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\dvdcss
    [2008-04-28|20:22] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\fltk.org
    [2008-04-06|14:51] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Google
    [2008-01-25|00:40] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Grisoft
    [2008-01-25|00:39] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Identities
    [2008-07-07|13:43] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\InstallShield Installation Information
    [2008-08-05|01:27] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Launchy
    [2008-03-16|22:37] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Macromedia
    [2008-10-27|13:07] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Malwarebytes
    [2008-05-18|19:41] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Media Player Classic
    [2008-05-23|13:32] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Microsoft
    [2008-05-02|20:26] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Mozilla
    [2008-04-11|21:20] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\OpenArena
    [2008-05-15|07:51] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Sony Ericsson
    [2008-01-28|14:32] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Sun
    [2008-10-28|15:04] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\SUPERAntiSpyware.com
    [2008-05-15|10:08] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Teleca
    [2008-08-16|20:12] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\TVU Networks
    [2008-08-31|13:37] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\uTorrent
    [2008-06-18|23:59] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Viewpoint

    [2007-01-30|04:36] C:\DOCUME~1\VINCEN~1\APPLIC~1\ispnews
    [2007-01-28|18:38] C:\DOCUME~1\VINCEN~1\APPLIC~1\Macromedia
    [2007-01-30|04:36] C:\DOCUME~1\VINCEN~1\APPLIC~1\Microsoft

    [2007-09-20|21:52] C:\DOCUME~1\VINCEN~3\APPLIC~1\Adobe
    [2008-01-17|19:44] C:\DOCUME~1\VINCEN~3\APPLIC~1\Apple Computer
    [2007-09-14|19:25] C:\DOCUME~1\VINCEN~3\APPLIC~1\Audacity
    [2008-01-07|00:46] C:\DOCUME~1\VINCEN~3\APPLIC~1\BitTorrent
    [2007-11-28|20:09] C:\DOCUME~1\VINCEN~3\APPLIC~1\Corel
    [2007-07-18|19:09] C:\DOCUME~1\VINCEN~3\APPLIC~1\DivX
    [2007-12-12|21:07] C:\DOCUME~1\VINCEN~3\APPLIC~1\dvdcss
    [2007-08-19|00:46] C:\DOCUME~1\VINCEN~3\APPLIC~1\EoRezo
    [2007-09-04|21:12] C:\DOCUME~1\VINCEN~3\APPLIC~1\fltk.org
    [2007-12-31|00:48] C:\DOCUME~1\VINCEN~3\APPLIC~1\Google
    [2008-01-11|21:56] C:\DOCUME~1\VINCEN~3\APPLIC~1\Grisoft
    [2007-07-12|13:40] C:\DOCUME~1\VINCEN~3\APPLIC~1\Identities
    [2007-07-15|21:13] C:\DOCUME~1\VINCEN~3\APPLIC~1\iMesh
    [2007-07-12|13:40] C:\DOCUME~1\VINCEN~3\APPLIC~1\ispnews
    [2008-01-25|00:36] C:\DOCUME~1\VINCEN~3\APPLIC~1\Launchy
    [2008-01-12|00:39] C:\DOCUME~1\VINCEN~3\APPLIC~1\Locktime
    [2007-08-04|19:23] C:\DOCUME~1\VINCEN~3\APPLIC~1\Macromedia
    [2007-09-20|18:19] C:\DOCUME~1\VINCEN~3\APPLIC~1\Microsoft
    [2007-09-26|21:57] C:\DOCUME~1\VINCEN~3\APPLIC~1\Mozilla
    [2007-08-15|16:59] C:\DOCUME~1\VINCEN~3\APPLIC~1\MSNInstaller
    [2007-07-25|14:26] C:\DOCUME~1\VINCEN~3\APPLIC~1\Screenshot Sender
    [2007-07-14|22:15] C:\DOCUME~1\VINCEN~3\APPLIC~1\Shareaza
    [2007-08-19|03:54] C:\DOCUME~1\VINCEN~3\APPLIC~1\Simply Super Software
    [2008-01-10|20:35] C:\DOCUME~1\VINCEN~3\APPLIC~1\Sun
    [2007-07-14|02:15] C:\DOCUME~1\VINCEN~3\APPLIC~1\Talkback
    [2007-09-19|16:58] C:\DOCUME~1\VINCEN~3\APPLIC~1\Tenebril
    [2008-01-24|11:13] C:\DOCUME~1\VINCEN~3\APPLIC~1\uTorrent
    [2007-07-12|19:12] C:\DOCUME~1\VINCEN~3\APPLIC~1\vlc

    [2007-07-10|12:22] C:\DOCUME~1\VINCEN~2\APPLIC~1\ispnews
    [2007-07-10|12:22] C:\DOCUME~1\VINCEN~2\APPLIC~1\Microsoft


    --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

    [2008-10-28 22:37][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [2008-11-01 00:46][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
    [2008-11-01 00:00][--ah-----] C:\WINDOWS\tasks\B7FD719190DEE5CD.job
    [2008-10-31 17:15][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
    [2008-11-01 00:35][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [2004-08-05 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    ( B7FD719190DEE5CD.job )=( c:\docume~1\suprim~1\applic~1\vga1user\Stupiddoesinside.exe )

    --------------------\\ Listing des dossiers dans C:\Program Files

    [2007-04-01|18:59] C:\Program Files\1964
    [2006-10-06|19:05] C:\Program Files\Acronis
    [2008-02-24|11:49] C:\Program Files\Adobe
    [2007-04-30|20:11] C:\Program Files\Ahead
    [2007-09-20|21:09] C:\Program Files\AIDA32 - Personal System Information
    [2008-01-14|15:07] C:\Program Files\Alcohol Soft
    [2006-11-30|17:30] C:\Program Files\Alwil Software
    [2007-07-10|12:23] C:\Program Files\AnfyTeam
    [2007-05-31|12:11] C:\Program Files\Antipub
    [2007-01-30|04:33] C:\Program Files\Any Video Converter
    [2008-01-17|19:37] C:\Program Files\Apple Software Update
    [2007-04-02|11:14] C:\Program Files\AresFlashDownloader
    [2007-08-10|14:56] C:\Program Files\Ashampoo
    [2007-04-22|10:52] C:\Program Files\Astonsoft
    [2007-08-22|23:12] C:\Program Files\Atari
    [2008-01-13|00:54] C:\Program Files\Audacity
    [2008-01-13|00:54] C:\Program Files\Audacity 1.3 Beta (Unicode)
    [2008-04-07|21:37] C:\Program Files\Auslogics
    [2008-04-01|16:40] C:\Program Files\AV MP3 Player-Morpher
    [2007-04-22|20:13] C:\Program Files\AvantClick
    [2007-01-29|04:48] C:\Program Files\AviSynth 2.5
    [2007-03-19|10:07] C:\Program Files\Azureus
    [2007-04-28|18:38] C:\Program Files\BearShare
    [2007-11-25|11:59] C:\Program Files\BearShare Applications
    [2006-12-04|20:29] C:\Program Files\BillardGL 1.75
    [2008-01-10|15:53] C:\Program Files\BitComet
    [2007-04-27|17:22] C:\Program Files\BitLord
    [2008-01-10|17:46] C:\Program Files\BitTorrent
    [2008-01-02|16:54] C:\Program Files\BitTyrant
    [2007-09-19|11:37] C:\Program Files\Boonty
    [2006-10-12|16:07] C:\Program Files\BoontyGames
    [2008-01-09|19:48] C:\Program Files\burnatonce
    [2006-10-22|14:25] C:\Program Files\Call of Duty Dawnville Demo
    [2006-10-11|16:18] C:\Program Files\Call of Duty Single Player Demo
    [2007-09-27|16:10] C:\Program Files\CCleaner
    [2008-07-20|17:59] C:\Program Files\Celestia
    [2008-07-07|15:29] C:\Program Files\CENEGA
    [2007-03-07|18:19] C:\Program Files\C-Media 3D Audio
    [2007-09-02|19:17] C:\Program Files\Common Files
    [2008-01-21|22:22] C:\Program Files\Compil Games
    [2006-10-04|23:40] C:\Program Files\ComPlus Applications
    [2008-01-13|01:01] C:\Program Files\Copernic Desktop Search 2
    [2008-01-09|13:50] C:\Program Files\Corel
    [2007-06-01|14:10] C:\Program Files\Crawler
    [2008-04-08|18:20] C:\Program Files\Cube
    [2008-10-26|14:53] C:\Program Files\CUP
    [2007-01-30|04:32] C:\Program Files\CursorXP
    [2007-04-29|20:13] C:\Program Files\DAEMON Tools
    [2007-04-29|19:56] C:\Program Files\DaemonTools_WhenUSave_Installer
    [2008-01-02|12:24] C:\Program Files\DAP
    [2008-07-07|15:03] C:\Program Files\directx
    [2008-01-10|16:29] C:\Program Files\DivX
    [2007-09-26|20:00] C:\Program Files\Easy CD-DA Extractor 10
    [2007-09-29|19:10] C:\Program Files\eChanblard
    [2008-10-25|18:52] C:\Program Files\eMule
    [2007-08-19|00:46] C:\Program Files\eoRezo
    [2007-04-03|04:10] C:\Program Files\ePSXe
    [2007-01-30|04:34] C:\Program Files\Eurobarre
    [2008-05-15|07:47] C:\Program Files\Fichiers communs
    [2007-06-08|19:34] C:\Program Files\File Lock
    [2008-01-13|00:54] C:\Program Files\Filetopia3
    [2007-09-16|16:34] C:\Program Files\Find'Em Trial
    [2007-12-28|16:54] C:\Program Files\Free
    [2008-01-14|15:08] C:\Program Files\free-downloads.net
    [2007-09-02|19:17] C:\Program Files\GLD
    [2008-07-20|18:02] C:\Program Files\Google
    [2007-04-22|11:12] C:\Program Files\Goto
    [2008-01-11|21:55] C:\Program Files\Grisoft
    [2008-10-02|20:21] C:\Program Files\Hitman Pro
    [2007-01-30|04:33] C:\Program Files\Hotkey
    [2006-11-23|20:04] C:\Program Files\Image Applications
    [2007-07-15|21:12] C:\Program Files\iMesh Applications
    [2008-07-10|01:02] C:\Program Files\InstallShield Installation Information
    [2007-04-26|19:38] C:\Program Files\Internet Download Manager
    [2008-10-17|02:02] C:\Program Files\Internet Explorer
    [2006-10-07|04:23] C:\Program Files\Inventel
    [2008-01-17|19:43] C:\Program Files\iPod
    [2008-01-13|00:54] C:\Program Files\iSpeed
    [2008-01-17|19:43] C:\Program Files\iTunes
    [2008-01-10|17:55] C:\Program Files\Java
    [2007-04-22|20:13] C:\Program Files\JavaSoft
    [2007-03-19|10:06] C:\Program Files\Kazaa Lite
    [2008-01-13|00:54] C:\Program Files\KAZAA LITE TOOLS K++
    [2008-10-02|20:20] C:\Program Files\K-Lite Codec Pack
    [2007-09-30|10:06] C:\Program Files\Launchy
    [2006-10-04|23:55] C:\Program Files\Lavalys
    [2007-09-19|12:50] C:\Program Files\Lavasoft
    [2007-11-25|11:52] C:\Program Files\LimeWire
    [2006-12-05|19:35] C:\Program Files\LIUtilities
    [2007-03-19|18:34] C:\Program Files\Logitech
    [2007-01-30|04:33] C:\Program Files\Loonies
    [2008-05-23|20:44] C:\Program Files\MAIET
    [2008-10-27|13:07] C:\Program Files\Malwarebytes' Anti-Malware
    [2007-08-10|17:06] C:\Program Files\Mario Forever
    [2007-05-28|17:08] C:\Program Files\MegauploadToolbar
    [2008-08-14|02:05] C:\Program Files\Messenger
    [2008-01-03|15:30] C:\Program Files\Messenger Plus! Live
    [2007-01-31|20:36] C:\Program Files\MessengerPlus! 3
    [2006-12-04|23:57] C:\Program Files\Microsoft Bootvis
    [2007-05-09|02:07] C:\Program Files\Microsoft CAPICOM 2.1.0.2
    [2006-10-04|23:44] C:\Program Files\microsoft frontpage
    [2006-10-11|13:19] C:\Program Files\Microsoft Games
    [2006-10-06|19:11] C:\Program Files\Microsoft Office
    [2008-02-20|15:44] C:\Program Files\Microsoft SQL Server Compact Edition
    [2008-07-07|22:58] C:\Program Files\Mindscape
    [2008-02-17|21:31] C:\Program Files\Morgan
    [2008-05-27|06:40] C:\Program Files\Morpheus
    [2007-07-17|19:50] C:\Program Files\Morpheus Ultra
    [2007-01-30|04:33] C:\Program Files\MorpheusBar
    [2008-01-13|00:55] C:\Program Files\Movie Maker
    [2008-11-01|00:43] C:\Program Files\Mozilla Firefox
    [2007-11-25|18:06] C:\Program Files\mozilla.org
    [2007-08-15|16:59] C:\Program Files\MSN
    [2007-10-06|17:55] C:\Program Files\MSN Font Color Editor
    [2006-10-04|23:39] C:\Program Files\MSN Gaming Zone
    [2008-02-20|15:50] C:\Program Files\MSN Messenger
    [2007-10-06|17:53] C:\Program Files\MSNTweaker
    [2006-10-11|13:27] C:\Program Files\MSXML 4.0
    [2007-04-15|21:59] C:\Program Files\MyMPxPlayer.org
    [2008-11-01|00:41] C:\Program Files\Navilog1
    [2007-05-21|21:11] C:\Program Files\NetAnts
    [2006-10-04|23:41] C:\Program Files\NetMeeting
    [2007-09-26|21:55] C:\Program Files\Netscape
    [2007-05-21|21:15] C:\Program Files\NKProds
    [2007-09-16|16:35] C:\Program Files\Nombre MYSTERE
    [2007-05-31|20:18] C:\Program Files\Nuclear Coffee
    [2007-09-29|19:10] C:\Program Files\nutri
    [2006-10-05|00:03] C:\Program Files\NVIDIA Corporation
    [2006-12-09|01:02] C:\Program Files\Object Desktop
    [2006-10-04|23:40] C:\Program Files\Online Services
    [2006-10-12|16:13] C:\Program Files\OpenOffice.org 2.0
    [2008-01-12|21:16] C:\Program Files\Outlook Express
    [2007-03-30|20:42] C:\Program Files\PanaVue
    [2008-07-13|16:56] C:\Program Files\PasToucheXP
    [2008-02-24|16:03] C:\Program Files\PCLink
    [2007-01-30|04:32] C:\Program Files\Player Metaboli
    [2007-04-07|19:36] C:\Program Files\POPUPKILLER
    [2006-12-16|23:34] C:\Program Files\PQDVD
    [2008-03-04|16:31] C:\Program Files\Project64 1.6
    [2007-01-30|04:35] C:\Program Files\PSPWare
    [2008-07-21|19:43] C:\Program Files\psx emulation cheater
    [2008-01-17|19:41] C:\Program Files\QuickTime
    [2008-01-13|00:56] C:\Program Files\QuickZip4
    [2008-04-05|21:05] C:\Program Files\RegCleaner
    [2007-01-30|04:35] C:\Program Files\Ripp-it_AM
    [2008-07-27|21:21] C:\Program Files\Rockstar Games
    [2007-09-26|20:09] C:\Program Files\SAGEM
    [2007-10-31|13:41] C:\Program Files\Seagrand
    [2008-05-23|13:29] C:\Program Files\Services en ligne
    [2008-01-13|00:56] C:\Program Files\Shareaza
    [2007-07-10|10:54] C:\Program Files\SimonTools
    [2007-09-20|21:01] C:\Program Files\SiSoftware
    [2007-03-19|10:08] C:\Program Files\SlySoft
    [2008-05-15|07:47] C:\Program Files\Sony Ericsson
    [2008-08-16|20:02] C:\Program Files\SopCast
    [2007-04-30|20:50] C:\Program Files\Spn
    [2008-10-26|12:18] C:\Program Files\Spybot - Search & Destroy
    [2007-05-31|11:24] C:\Program Files\Spyware Terminator
    [2008-01-25|01:34] C:\Program Files\SpywareBlaster
    [2006-10-23|10:31] C:\Program Files\Star Downloader
    [2007-03-30|23:42] C:\Program Files\Stardock
    [2007-04-28|16:41] C:\Program Files\Steganos Secure FileSharing 6
    [2008-05-03|23:25] C:\Program Files\Sunbelt Software
    [2008-10-28|15:04] C:\Program Files\SUPERAntiSpyware
    [2007-06-04|16:52] C:\Program Files\themexp
    [2008-02-20|19:23] C:\Program Files\Titus
    [2007-09-29|18:55] C:\Program Files\ToniArts
    [2008-07-07|22:48] C:\Program Files\Tremulous
    [2007-11-05|00:19] C:\Program Files\Trend Micro
    [2007-08-19|04:00] C:\Program Files\Trojan Remover
    [2007-09-16|21:03] C:\Program Files\TubeMaster
    [2007-05-31|20:36] C:\Program Files\TubeSucker
    [2008-02-17|21:16] C:\Program Files\TVAnts
    [2008-08-16|20:11] C:\Program Files\TVUPlayer
    [2006-10-10|19:54] C:\Program Files\Ubisoft
    [2006-10-04|23:50] C:\Program Files\Uninstall Information
    [2008-02-20|18:55] C:\Program Files\Universal Interactive
    [2008-08-03|11:40] C:\Program Files\UrbanTerror
    [2008-01-12|18:47] C:\Program Files\uTorrent
    [2008-04-05|14:36] C:\Program Files\Veoh Networks
    [2007-03-20|23:30] C:\Program Files\Vga1User
    [2008-07-07|13:40] C:\Program Files\VID_0E8F&PID_3020
    [2008-08-09|15:58] C:\Program Files\VideoLAN
    [2007-09-26|21:57] C:\Program Files\Viewpoint
    [2008-01-13|12:20] C:\Program Files\VirtualDJ
    [2007-07-01|19:21] C:\Program Files\Wanadoo
    [2007-06-08|19:32] C:\Program Files\WinAVI MP4 Converter
    [2007-03-21|17:01] C:\Program Files\Windows Journal Viewer
    [2008-02-28|10:07] C:\Program Files\Windows Live
    [2007-11-29|20:27] C:\Program Files\Windows Live Favorites
    [2007-11-19|23:01] C:\Program Files\Windows Live Safety Center
    [2007-11-30|10:05] C:\Program Files\Windows Live Toolbar
    [2007-01-30|04:33] C:\Program Files\Windows Media Connect 2
    [2008-02-24|17:06] C:\Program Files\Windows Media Player
    [2006-10-04|23:39] C:\Program Files\Windows NT
    [2006-10-04|23:42] C:\Program Files\WindowsUpdate
    [2007-08-25|23:01] C:\Program Files\WinMX
    [2007-04-01|23:38] C:\Program Files\WinRAR
    [2007-04-28|22:47] C:\Program Files\WinZip
    [2008-04-08|18:19] C:\Program Files\Wolfenstein - Enemy Territory
    [2008-01-13|12:20] C:\Program Files\WorkoutLogger
    [2008-01-10|18:04] C:\Program Files\Wyzo
    [2006-10-04|23:44] C:\Program Files\xerox
    [2007-09-29|18:57] C:\Program Files\Yahoo!

    --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

    [2008-02-24|11:49] C:\Program Files\Fichiers communs\Adobe
    [2008-01-17|19:36] C:\Program Files\Fichiers communs\Apple
    [2007-09-14|19:26] C:\Program Files\Fichiers communs\AVSMedia
    [2006-10-12|15:59] C:\Program Files\Fichiers communs\BOONTY Shared
    [2006-11-11|13:54] C:\Program Files\Fichiers communs\DirectX
    [2007-03-20|15:18] C:\Program Files\Fichiers communs\InstallShield
    [2008-01-10|17:50] C:\Program Files\Fichiers communs\Java
    [2007-03-19|18:30] C:\Program Files\Fichiers communs\LogiShrd
    [2008-04-09|15:56] C:\Program Files\Fichiers communs\Logitech
    [2008-04-08|08:00] C:\Program Files\Fichiers communs\Microsoft Shared
    [2007-09-26|21:55] C:\Program Files\Fichiers communs\mozilla.org
    [2006-10-04|23:41] C:\Program Files\Fichiers communs\MSSoap
    [2006-10-05|00:03] C:\Program Files\Fichiers communs\NVIDIA Shared
    [2006-10-05|01:31] C:\Program Files\Fichiers communs\ODBC
    [2006-10-04|23:41] C:\Program Files\Fichiers communs\Services
    [2008-05-15|07:48] C:\Program Files\Fichiers communs\Sony Ericsson Shared
    [2006-10-05|01:31] C:\Program Files\Fichiers communs\SpeechEngines
    [2007-03-30|23:42] C:\Program Files\Fichiers communs\Stardock
    [2007-07-06|12:30] C:\Program Files\Fichiers communs\System
    [2008-05-15|07:48] C:\Program Files\Fichiers communs\Teleca Shared
    [2008-02-20|15:17] C:\Program Files\Fichiers communs\WindowsLiveInstaller
    [2008-10-28|15:02] C:\Program Files\Fichiers communs\Wise Installation Wizard

    --------------------\\ Process

    ( 37 Processes )

    ... OK !

    --------------------\\ Recherche avec S_Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Recherche de Fichiers / Dossiers Lop

    C:\DOCUME~1\INVIT~1\APPLIC~1\vga1user
    C:\Program Files\vga1user
    C:\DOCUME~1\INVIT~1\APPLIC~1\Adverts
    C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@adin.bigpoint[2].txt
    C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@cotedazurpalace[2].txt
    C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@seafight[1].txt
    C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@www.seafight[1].txt
    C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@2xmoinscher[2].txt
    C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@www.2xmoinscher[1].txt
    C:\WINDOWS\Tasks\B7FD719190DEE5CD.job

    --------------------\\ Verification du Registre

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

    ..... OK !

    --------------------\\ Verification du fichier Hosts

    Fichier Hosts PROPRE


    --------------------\\ Recherche de fichiers avec Catchme

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-11-01 00:59:34
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 1

    --------------------\\ Recherche d'autres infections


    C:\WINDOWS\System32\fdpofhppoa.dat.ren
    C:\WINDOWS\System32\fdpofhppoa_nav.dat.ren
    C:\WINDOWS\System32\fdpofhppoa_navps.dat.ren
    ==> EGDACCESS <==



    [F:1534][D:0]-> C:\DOCUME~1\VINCEN~1.000\Cookies
    [F:11744][D:31]-> C:\DOCUME~1\VINCEN~1.000\LOCALS~1\TEMPOR~1\content.IE5

    1 - "C:\Lop SD\LopR_1.txt" - 2008-10-31|21:36 - Option : [1]
    2 - "C:\Lop SD\LopR_2.txt" - 2008-11-01| 1:07 - Option : [1]

    --------------------\\ Fin du rapport a 1:07:09
    1 Novembre 2008 12:15:31

    Il reste pas mal de choses.

    Avant de les traiter, fais ceci :

    Télécharge Toolbar-S&D (Team IDN) sur ton Bureau.

  • Lance l'installation du programme en exécutant le fichier téléchargé.
  • Double-clique maintenant sur le raccourci de Toolbar-S&D.
  • Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
  • Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
  • Poste le rapport généré. (C:\TB.txt)
    1 Novembre 2008 14:23:03


    -----------\\ ToolBar S&D 1.2.4 XP/Vista

    Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
    X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 1800+ )
    BIOS : Version 1.00
    USER : vincent ( Administrator )
    BOOT : Normal boot
    Antivirus : avast! antivirus 4.8.1229 [VPS 081031-1] 4.8.1229 (Activated)
    Firewall : Sunbelt Kerio Personal Firewall 4.3.744 T (Activated)
    A:\ (USB)
    C:\ (Local Disk) - NTFS - Total:39 Go (Free:1 Go)
    D:\ (Local Disk) - NTFS - Total:37 Go (Free:34 Go)
    E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
    F:\ (CD or DVD)
    G:\ (CD or DVD)
    H:\ (CD or DVD)
    I:\ (CD or DVD)
    J:\ (CD or DVD)

    "C:\ToolBar SD" ( MAJ : 27-10-2008|09:25 )
    Option : [1] ( 2008-11-01|14:04 )

    -----------\\ Recherche de Fichiers / Dossiers ...

    C:\Program Files\BitLord
    C:\Program Files\BitLord\BitLord.xml
    C:\Program Files\BitLord\Downloads
    C:\Program Files\BitLord\Downloads.xml
    C:\Program Files\BitLord\lang
    C:\Program Files\BitLord\rules
    C:\Program Files\BitLord\Torrents
    C:\Program Files\Crawler
    C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@live-online-tv[1].txt
    C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@mysearch[2].txt
    C:\WINDOWS\Fonts\acrsec.fon

    -----------\\ Extensions

    (Invit‚) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar

    (vincent.ZOROO-A6EC98604.000) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
    (vincent.ZOROO-A6EC98604.000) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper

    (Vincenthsc) - {19503e42-ca3c-4c27-b1e2-9cdb2170ee34} => flashgot
    (Vincenthsc) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar


    -----------\\ [..\Internet Explorer\Main]

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://www.google.fr/"
    "Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iese..."
    "Local Page"="C:\\windows\\system32\\blank.htm"
    "Search Page"="http://www.google.com"
    "Search Bar"="http://www.google.com/ie"

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
    "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
    "Default_Search_URL"="http://www.google.com/ie"
    "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
    "Start Page"="http://www.ustart.org"
    "Search Bar"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
    "CustomizeSearch"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iese..."
    "SearchAssistant"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iese..."


    --------------------\\ Recherche d'autres infections


    C:\WINDOWS\System32\fdpofhppoa.dat.ren
    C:\WINDOWS\System32\fdpofhppoa_nav.dat.ren
    C:\WINDOWS\System32\fdpofhppoa_navps.dat.ren
    ==> EGDACCESS <==




    1 - "C:\ToolBar SD\TB_1.txt" - 2008-11-01|14:22 - Option : [1]

    -----------\\ Fin du rapport a 14:22:01,56

    voila
    1 Novembre 2008 18:46:51

    Re,

    1 ) Relance Toolbar-S&D en double-cliquant sur le raccourci.

  • Choisis cette fois l'option 2 puis valide en appuyant sur Entrée.
    ! Ne ferme pas la fenêtre lors de la suppression ! [/#f]
  • Un rapport sera généré, poste son contenu ici, puis un nouveau rapport HijackThis.

    [#008040]Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
    Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "Nouvelle tâche (exécuter)"
    Tapes explorer et valide. Cela te fera apparaitre ton bureau


  • 2 ) Désinstalle via Ajout/Suppression de Programmes (si présents) :
  • BOONTY
  • BoontyGames
  • EoRezo
  • Viewpoint

    Clique sur le menu Demarrer /Panneau de configuration/Options des dossiers/ puis dans l'onglet Affichage
    - coche Afficher les fichiers et dossiers cachés
    - decoche Masquer les extensions des fichiers dont le type est connu
    - decoche Masquer les fichiers protégés du système d'exploitation (recommandé)
    clique sur Appliquer, puis OK.

    N'oublie pas de recacher à nouveau les fichiers cachés et protégés du système d'exploitation en fin de désinfection, c'est important

    Puis supprime les dossiers correspondants (si existants) :
  • Dans Programfiles
  • Dans Programfiles\Fichiers communs
  • Dans %userprofile%\application data
    ( XP -> C:\Documents and Settings\%username%\Application Data,
    Vista -> C:\Users\ton nom\appdata\roaming) **** Fais ceci pour toutes les sessions ***
  • Etc ... (Tu peux rechercher les dossiers à supprimer par une recherche Windows [Démarrer\rechercher])

    Télécharge Ccleaner sur ton Bureau.

  • Clique sur "download the latest version"
  • Installe-le en laissant seulement les options suivantes cochées :
    - Ajouter un raccourci sur le Bureau
    - Contrôler automatiquement les mises à jour de CCleaner
  • Lance le Nettoyage
  • Clique sur Chercher des erreurs et sauvegarde si tu le souhaites.

    Aide : Comment utiliser CCleaner.

    3) Sélectionne entièrement l'encadré ci-dessous , puis clique droit Copier

    C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
    C:\DOCUME~1\INVIT~1\APPLIC~1\Adverts
    C:\DOCUME~1\INVIT~1\APPLIC~1\EoRezo
    C:\DOCUME~1\VINCENT\APPLIC~1\EoRezo
    C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Viewpoint
    C:\DOCUME~1\VINCEN~3\APPLIC~1\EoRezo
    C:\WINDOWS\tasks\B7FD719190DEE5CD.job
    C:\DOCUME~1\INVIT~1\APPLIC~1\Vga1User
    C:\DOCUME~1\ALLUSE~1\APPLIC~1\up 16 program 64
    C:\Program Files\Boonty
    C:\Program Files\BoontyGames
    C:\Program Files\DaemonTools_WhenUSave_Installer
    C:\Program Files\eoRezo
    C:\Program Files\Viewpoint
    C:\Program Files\Fichiers communs\BOONTY Shared


    Relance Lop S&D.

  • Choisis cette fois ci l'Option 4 (LopScript)
  • Une page blanche va s'ouvrir , clique droit dessus et choisis Coller
  • Ferme la page , il te sera demandé de l'enregistrer , clique sur [Enregistrer]
  • Ne ferme pas la fenêtre lors de la suppression !
  • Poste le rapport généré (C:\lopR.txt)
    1 Novembre 2008 20:07:58


    --------------------\\ Lop S&D 4.2.4-9 XP/Vista

    Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
    X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 1800+ )
    BIOS : Version 1.00
    USER : vincent ( Administrator )
    BOOT : Normal boot
    Antivirus : avast! antivirus 4.8.1229 [VPS 081031-1] 4.8.1229 (Activated)
    Firewall : Sunbelt Kerio Personal Firewall 4.3.744 T (Activated)
    A:\ (USB)
    C:\ (Local Disk) - NTFS - Total:39 Go (Free:1 Go)
    D:\ (Local Disk) - NTFS - Total:37 Go (Free:34 Go)
    E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
    F:\ (CD or DVD)
    G:\ (CD or DVD)
    H:\ (CD or DVD)
    I:\ (CD or DVD)
    J:\ (CD or DVD)

    "C:\Lop SD" ( MAJ : 30-10-2008|21:58 )
    Option : [2] ( 2008-11-01|18:59 )


    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

    Supprime! - C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@adin.bigpoint[2].txt
    Supprime! - C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@cotedazurpalace[2].txt
    Supprime! - C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@seafight[1].txt
    Supprime! - C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@www.seafight[1].txt
    Supprime! - C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@2xmoinscher[2].txt
    Supprime! - C:\DOCUME~1\VINCEN~1.000\Cookies\vincent@www.2xmoinscher[1].txt
    Supprime! - C:\WINDOWS\Tasks\B7FD719190DEE5CD.job
    Supprime! - C:\DOCUME~1\INVIT~1\APPLIC~1\vga1user
    Supprime! - C:\Program Files\vga1user
    Supprime! - C:\DOCUME~1\INVIT~1\APPLIC~1\Adverts
    -
    [ Fichier Hosts ] .. Restaure!

    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

    Supprime! - C:\Program Files\Viewpoint
    Supprime! - C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Viewpoint

    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


    --------------------\\ Listing des dossiers dans APPLIC~1


    [2006-10-06|19:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Acronis
    [2008-02-24|11:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [2007-09-16|10:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
    [2008-01-17|19:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
    [2007-09-27|16:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Arovax
    [2007-07-12|13:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
    [2007-09-14|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVS4YOU
    [2006-10-12|15:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
    [2007-10-31|15:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
    [2006-10-23|10:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Exetender
    [2006-10-09|17:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
    [2007-03-08|00:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [2008-11-01|14:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
    [2008-01-11|21:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
    [2008-01-11|23:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Locktime
    [2007-03-19|18:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
    [2008-10-27|13:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
    [2007-01-14|16:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
    [2007-05-14|16:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [2008-08-24|16:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA
    [2008-05-15|07:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
    [2008-10-26|13:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
    [2008-10-28|15:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SUPERAntiSpyware.com
    [2008-05-15|07:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca
    [2008-01-14|14:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
    [2007-09-19|17:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tenebril
    [2006-12-04|22:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
    [2008-08-16|20:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TVU Networks
    [2006-11-14|22:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ubisoft
    [2007-09-17|19:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\up 16 program 64
    [2006-10-22|16:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    [2007-03-08|04:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
    [2007-07-23|15:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
    [2008-02-20|15:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
    [2007-09-29|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion

    [2007-07-23|15:55] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

    [2008-08-20|20:41] C:\DOCUME~1\INVIT~1\APPLIC~1\Adobe
    [2007-12-30|17:43] C:\DOCUME~1\INVIT~1\APPLIC~1\BitTorrent
    [2008-07-01|14:53] C:\DOCUME~1\INVIT~1\APPLIC~1\DivX
    [2007-09-29|19:09] C:\DOCUME~1\INVIT~1\APPLIC~1\EoRezo
    [2007-01-13|21:22] C:\DOCUME~1\INVIT~1\APPLIC~1\Google
    [2008-01-12|20:24] C:\DOCUME~1\INVIT~1\APPLIC~1\Grisoft
    [2006-12-29|11:57] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
    [2006-12-29|11:58] C:\DOCUME~1\INVIT~1\APPLIC~1\ispnews
    [2008-07-28|19:25] C:\DOCUME~1\INVIT~1\APPLIC~1\Launchy
    [2007-09-05|02:09] C:\DOCUME~1\INVIT~1\APPLIC~1\Macromedia
    [2007-05-25|10:45] C:\DOCUME~1\INVIT~1\APPLIC~1\MEGAUPLOADTOOLBAR
    [2007-01-30|04:32] C:\DOCUME~1\INVIT~1\APPLIC~1\MessengerPlus! 3
    [2008-01-20|14:54] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
    [2007-01-02|13:32] C:\DOCUME~1\INVIT~1\APPLIC~1\Morpheus
    [2008-01-17|18:53] C:\DOCUME~1\INVIT~1\APPLIC~1\Mozilla
    [2008-05-20|16:17] C:\DOCUME~1\INVIT~1\APPLIC~1\Sony Ericsson
    [2007-05-25|06:28] C:\DOCUME~1\INVIT~1\APPLIC~1\Spyware Terminator
    [2008-01-11|12:40] C:\DOCUME~1\INVIT~1\APPLIC~1\Sun
    [2007-07-20|12:24] C:\DOCUME~1\INVIT~1\APPLIC~1\Talkback
    [2008-05-21|12:16] C:\DOCUME~1\INVIT~1\APPLIC~1\Teleca
    [2006-12-30|20:24] C:\DOCUME~1\INVIT~1\APPLIC~1\TuneUp Software

    [2007-07-11|22:40] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
    [2007-07-12|13:29] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
    [2007-05-15|18:07] C:\DOCUME~1\LOCALS~1\APPLIC~1\Spyware Terminator

    [2006-10-08|17:51] C:\DOCUME~1\MAMAN\APPLIC~1\Adobe
    [2006-10-10|17:59] C:\DOCUME~1\MAMAN\APPLIC~1\F-Secure
    [2006-11-03|22:04] C:\DOCUME~1\MAMAN\APPLIC~1\Help
    [2006-10-08|12:29] C:\DOCUME~1\MAMAN\APPLIC~1\Identities
    [2006-10-10|17:17] C:\DOCUME~1\MAMAN\APPLIC~1\ispnews
    [2006-10-10|17:17] C:\DOCUME~1\MAMAN\APPLIC~1\Macromedia
    [2007-07-12|13:29] C:\DOCUME~1\MAMAN\APPLIC~1\Microsoft
    [2006-10-26|19:09] C:\DOCUME~1\MAMAN\APPLIC~1\Morpheus

    [2007-07-12|13:29] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    [2006-10-08|17:33] C:\DOCUME~1\VINCENT\APPLIC~1\Adobe
    [2006-10-08|17:33] C:\DOCUME~1\VINCENT\APPLIC~1\AdobeUM
    [2006-10-23|22:23] C:\DOCUME~1\VINCENT\APPLIC~1\Atari
    [2007-05-21|21:21] C:\DOCUME~1\VINCENT\APPLIC~1\BitTorrent
    [2007-02-01|00:28] C:\DOCUME~1\VINCENT\APPLIC~1\EoRezo
    [2006-10-09|18:17] C:\DOCUME~1\VINCENT\APPLIC~1\F-Secure
    [2006-10-07|23:56] C:\DOCUME~1\VINCENT\APPLIC~1\Identities
    [2006-10-09|17:50] C:\DOCUME~1\VINCENT\APPLIC~1\ispnews
    [2006-10-14|16:27] C:\DOCUME~1\VINCENT\APPLIC~1\Macromedia
    [2007-07-12|13:29] C:\DOCUME~1\VINCENT\APPLIC~1\Microsoft
    [2006-10-14|09:51] C:\DOCUME~1\VINCENT\APPLIC~1\Morpheus
    [2006-10-09|17:53] C:\DOCUME~1\VINCENT\APPLIC~1\PEX
    [2006-10-12|16:08] C:\DOCUME~1\VINCENT\APPLIC~1\SecuROM
    [2007-05-25|17:55] C:\DOCUME~1\VINCENT\APPLIC~1\Smart PC Solutions
    [2006-11-11|13:53] C:\DOCUME~1\VINCENT\APPLIC~1\THQ
    [2006-12-04|22:47] C:\DOCUME~1\VINCENT\APPLIC~1\TuneUp Software
    [2006-12-04|22:53] C:\DOCUME~1\VINCENT\APPLIC~1\uTorrent

    [2007-07-11|22:42] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\AVG7
    [2007-07-08|11:35] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\DivX
    [2007-07-11|10:14] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\dvdcss
    [2007-06-12|16:41] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Identities
    [2007-06-12|16:42] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\ispnews
    [2007-07-06|12:11] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Macromedia
    [2007-07-12|13:29] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Microsoft
    [2007-07-10|20:17] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Mozilla
    [2007-07-02|20:50] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Shareaza
    [2007-07-08|16:54] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Sun
    [2007-07-10|20:17] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Talkback
    [2007-06-14|20:53] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\vlc

    [2008-07-20|23:27] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Adobe
    [2008-01-25|14:32] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Apple Computer
    [2008-04-07|21:37] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Auslogics
    [2008-02-03|17:20] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\dvdcss
    [2008-04-28|20:22] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\fltk.org
    [2008-04-06|14:51] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Google
    [2008-01-25|00:40] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Grisoft
    [2008-01-25|00:39] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Identities
    [2008-07-07|13:43] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\InstallShield Installation Information
    [2008-08-05|01:27] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Launchy
    [2008-03-16|22:37] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Macromedia
    [2008-10-27|13:07] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Malwarebytes
    [2008-05-18|19:41] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Media Player Classic
    [2008-05-23|13:32] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Microsoft
    [2008-05-02|20:26] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Mozilla
    [2008-04-11|21:20] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\OpenArena
    [2008-05-15|07:51] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Sony Ericsson
    [2008-01-28|14:32] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Sun
    [2008-10-28|15:04] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\SUPERAntiSpyware.com
    [2008-05-15|10:08] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Teleca
    [2008-08-16|20:12] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\TVU Networks
    [2008-08-31|13:37] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\uTorrent

    [2007-01-30|04:36] C:\DOCUME~1\VINCEN~1\APPLIC~1\ispnews
    [2007-01-28|18:38] C:\DOCUME~1\VINCEN~1\APPLIC~1\Macromedia
    [2007-01-30|04:36] C:\DOCUME~1\VINCEN~1\APPLIC~1\Microsoft

    [2007-09-20|21:52] C:\DOCUME~1\VINCEN~3\APPLIC~1\Adobe
    [2008-01-17|19:44] C:\DOCUME~1\VINCEN~3\APPLIC~1\Apple Computer
    [2007-09-14|19:25] C:\DOCUME~1\VINCEN~3\APPLIC~1\Audacity
    [2008-01-07|00:46] C:\DOCUME~1\VINCEN~3\APPLIC~1\BitTorrent
    [2007-11-28|20:09] C:\DOCUME~1\VINCEN~3\APPLIC~1\Corel
    [2007-07-18|19:09] C:\DOCUME~1\VINCEN~3\APPLIC~1\DivX
    [2007-12-12|21:07] C:\DOCUME~1\VINCEN~3\APPLIC~1\dvdcss
    [2007-08-19|00:46] C:\DOCUME~1\VINCEN~3\APPLIC~1\EoRezo
    [2007-09-04|21:12] C:\DOCUME~1\VINCEN~3\APPLIC~1\fltk.org
    [2007-12-31|00:48] C:\DOCUME~1\VINCEN~3\APPLIC~1\Google
    [2008-01-11|21:56] C:\DOCUME~1\VINCEN~3\APPLIC~1\Grisoft
    [2007-07-12|13:40] C:\DOCUME~1\VINCEN~3\APPLIC~1\Identities
    [2007-07-15|21:13] C:\DOCUME~1\VINCEN~3\APPLIC~1\iMesh
    [2007-07-12|13:40] C:\DOCUME~1\VINCEN~3\APPLIC~1\ispnews
    [2008-01-25|00:36] C:\DOCUME~1\VINCEN~3\APPLIC~1\Launchy
    [2008-01-12|00:39] C:\DOCUME~1\VINCEN~3\APPLIC~1\Locktime
    [2007-08-04|19:23] C:\DOCUME~1\VINCEN~3\APPLIC~1\Macromedia
    [2007-09-20|18:19] C:\DOCUME~1\VINCEN~3\APPLIC~1\Microsoft
    [2007-09-26|21:57] C:\DOCUME~1\VINCEN~3\APPLIC~1\Mozilla
    [2007-08-15|16:59] C:\DOCUME~1\VINCEN~3\APPLIC~1\MSNInstaller
    [2007-07-25|14:26] C:\DOCUME~1\VINCEN~3\APPLIC~1\Screenshot Sender
    [2007-07-14|22:15] C:\DOCUME~1\VINCEN~3\APPLIC~1\Shareaza
    [2007-08-19|03:54] C:\DOCUME~1\VINCEN~3\APPLIC~1\Simply Super Software
    [2008-01-10|20:35] C:\DOCUME~1\VINCEN~3\APPLIC~1\Sun
    [2007-07-14|02:15] C:\DOCUME~1\VINCEN~3\APPLIC~1\Talkback
    [2007-09-19|16:58] C:\DOCUME~1\VINCEN~3\APPLIC~1\Tenebril
    [2008-01-24|11:13] C:\DOCUME~1\VINCEN~3\APPLIC~1\uTorrent
    [2007-07-12|19:12] C:\DOCUME~1\VINCEN~3\APPLIC~1\vlc

    [2007-07-10|12:22] C:\DOCUME~1\VINCEN~2\APPLIC~1\ispnews
    [2007-07-10|12:22] C:\DOCUME~1\VINCEN~2\APPLIC~1\Microsoft


    --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

    [2008-10-28 22:37][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [2008-11-01 18:46][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
    [2008-10-31 17:15][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
    [2008-11-01 13:54][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [2004-08-05 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    --------------------\\ Listing des dossiers dans C:\Program Files

    [2007-04-01|18:59] C:\Program Files\1964
    [2006-10-06|19:05] C:\Program Files\Acronis
    [2008-02-24|11:49] C:\Program Files\Adobe
    [2007-04-30|20:11] C:\Program Files\Ahead
    [2007-09-20|21:09] C:\Program Files\AIDA32 - Personal System Information
    [2008-01-14|15:07] C:\Program Files\Alcohol Soft
    [2006-11-30|17:30] C:\Program Files\Alwil Software
    [2007-07-10|12:23] C:\Program Files\AnfyTeam
    [2007-05-31|12:11] C:\Program Files\Antipub
    [2007-01-30|04:33] C:\Program Files\Any Video Converter
    [2008-01-17|19:37] C:\Program Files\Apple Software Update
    [2007-04-02|11:14] C:\Program Files\AresFlashDownloader
    [2007-08-10|14:56] C:\Program Files\Ashampoo
    [2007-04-22|10:52] C:\Program Files\Astonsoft
    [2007-08-22|23:12] C:\Program Files\Atari
    [2008-01-13|00:54] C:\Program Files\Audacity
    [2008-01-13|00:54] C:\Program Files\Audacity 1.3 Beta (Unicode)
    [2008-04-07|21:37] C:\Program Files\Auslogics
    [2008-04-01|16:40] C:\Program Files\AV MP3 Player-Morpher
    [2007-04-22|20:13] C:\Program Files\AvantClick
    [2007-01-29|04:48] C:\Program Files\AviSynth 2.5
    [2007-03-19|10:07] C:\Program Files\Azureus
    [2007-04-28|18:38] C:\Program Files\BearShare
    [2007-11-25|11:59] C:\Program Files\BearShare Applications
    [2006-12-04|20:29] C:\Program Files\BillardGL 1.75
    [2008-01-10|15:53] C:\Program Files\BitComet
    [2007-04-27|17:22] C:\Program Files\BitLord
    [2008-01-10|17:46] C:\Program Files\BitTorrent
    [2008-01-02|16:54] C:\Program Files\BitTyrant
    [2007-09-19|11:37] C:\Program Files\Boonty
    [2006-10-12|16:07] C:\Program Files\BoontyGames
    [2008-01-09|19:48] C:\Program Files\burnatonce
    [2006-10-22|14:25] C:\Program Files\Call of Duty Dawnville Demo
    [2006-10-11|16:18] C:\Program Files\Call of Duty Single Player Demo
    [2007-09-27|16:10] C:\Program Files\CCleaner
    [2008-07-20|17:59] C:\Program Files\Celestia
    [2008-07-07|15:29] C:\Program Files\CENEGA
    [2007-03-07|18:19] C:\Program Files\C-Media 3D Audio
    [2007-09-02|19:17] C:\Program Files\Common Files
    [2008-01-21|22:22] C:\Program Files\Compil Games
    [2006-10-04|23:40] C:\Program Files\ComPlus Applications
    [2008-01-13|01:01] C:\Program Files\Copernic Desktop Search 2
    [2008-01-09|13:50] C:\Program Files\Corel
    [2007-06-01|14:10] C:\Program Files\Crawler
    [2008-04-08|18:20] C:\Program Files\Cube
    [2008-10-26|14:53] C:\Program Files\CUP
    [2007-01-30|04:32] C:\Program Files\CursorXP
    [2007-04-29|20:13] C:\Program Files\DAEMON Tools
    [2007-04-29|19:56] C:\Program Files\DaemonTools_WhenUSave_Installer
    [2008-01-02|12:24] C:\Program Files\DAP
    [2008-07-07|15:03] C:\Program Files\directx
    [2008-01-10|16:29] C:\Program Files\DivX
    [2007-09-26|20:00] C:\Program Files\Easy CD-DA Extractor 10
    [2007-09-29|19:10] C:\Program Files\eChanblard
    [2008-10-25|18:52] C:\Program Files\eMule
    [2007-08-19|00:46] C:\Program Files\eoRezo
    [2007-04-03|04:10] C:\Program Files\ePSXe
    [2007-01-30|04:34] C:\Program Files\Eurobarre
    [2008-05-15|07:47] C:\Program Files\Fichiers communs
    [2007-06-08|19:34] C:\Program Files\File Lock
    [2008-01-13|00:54] C:\Program Files\Filetopia3
    [2007-09-16|16:34] C:\Program Files\Find'Em Trial
    [2007-12-28|16:54] C:\Program Files\Free
    [2008-01-14|15:08] C:\Program Files\free-downloads.net
    [2007-09-02|19:17] C:\Program Files\GLD
    [2008-07-20|18:02] C:\Program Files\Google
    [2007-04-22|11:12] C:\Program Files\Goto
    [2008-01-11|21:55] C:\Program Files\Grisoft
    [2008-10-02|20:21] C:\Program Files\Hitman Pro
    [2007-01-30|04:33] C:\Program Files\Hotkey
    [2006-11-23|20:04] C:\Program Files\Image Applications
    [2007-07-15|21:12] C:\Program Files\iMesh Applications
    [2008-07-10|01:02] C:\Program Files\InstallShield Installation Information
    [2007-04-26|19:38] C:\Program Files\Internet Download Manager
    [2008-10-17|02:02] C:\Program Files\Internet Explorer
    [2006-10-07|04:23] C:\Program Files\Inventel
    [2008-01-17|19:43] C:\Program Files\iPod
    [2008-01-13|00:54] C:\Program Files\iSpeed
    [2008-01-17|19:43] C:\Program Files\iTunes
    [2008-01-10|17:55] C:\Program Files\Java
    [2007-04-22|20:13] C:\Program Files\JavaSoft
    [2007-03-19|10:06] C:\Program Files\Kazaa Lite
    [2008-01-13|00:54] C:\Program Files\KAZAA LITE TOOLS K++
    [2008-10-02|20:20] C:\Program Files\K-Lite Codec Pack
    [2007-09-30|10:06] C:\Program Files\Launchy
    [2006-10-04|23:55] C:\Program Files\Lavalys
    [2007-09-19|12:50] C:\Program Files\Lavasoft
    [2007-11-25|11:52] C:\Program Files\LimeWire
    [2006-12-05|19:35] C:\Program Files\LIUtilities
    [2007-03-19|18:34] C:\Program Files\Logitech
    [2007-01-30|04:33] C:\Program Files\Loonies
    [2008-05-23|20:44] C:\Program Files\MAIET
    [2008-10-27|13:07] C:\Program Files\Malwarebytes' Anti-Malware
    [2007-08-10|17:06] C:\Program Files\Mario Forever
    [2007-05-28|17:08] C:\Program Files\MegauploadToolbar
    [2008-08-14|02:05] C:\Program Files\Messenger
    [2008-01-03|15:30] C:\Program Files\Messenger Plus! Live
    [2007-01-31|20:36] C:\Program Files\MessengerPlus! 3
    [2006-12-04|23:57] C:\Program Files\Microsoft Bootvis
    [2007-05-09|02:07] C:\Program Files\Microsoft CAPICOM 2.1.0.2
    [2006-10-04|23:44] C:\Program Files\microsoft frontpage
    [2006-10-11|13:19] C:\Program Files\Microsoft Games
    [2006-10-06|19:11] C:\Program Files\Microsoft Office
    [2008-02-20|15:44] C:\Program Files\Microsoft SQL Server Compact Edition
    [2008-07-07|22:58] C:\Program Files\Mindscape
    [2008-02-17|21:31] C:\Program Files\Morgan
    [2008-05-27|06:40] C:\Program Files\Morpheus
    [2007-07-17|19:50] C:\Program Files\Morpheus Ultra
    [2007-01-30|04:33] C:\Program Files\MorpheusBar
    [2008-01-13|00:55] C:\Program Files\Movie Maker
    [2008-11-01|16:19] C:\Program Files\Mozilla Firefox
    [2007-11-25|18:06] C:\Program Files\mozilla.org
    [2007-08-15|16:59] C:\Program Files\MSN
    [2007-10-06|17:55] C:\Program Files\MSN Font Color Editor
    [2006-10-04|23:39] C:\Program Files\MSN Gaming Zone
    [2008-02-20|15:50] C:\Program Files\MSN Messenger
    [2007-10-06|17:53] C:\Program Files\MSNTweaker
    [2006-10-11|13:27] C:\Program Files\MSXML 4.0
    [2007-04-15|21:59] C:\Program Files\MyMPxPlayer.org
    [2008-11-01|00:41] C:\Program Files\Navilog1
    [2007-05-21|21:11] C:\Program Files\NetAnts
    [2006-10-04|23:41] C:\Program Files\NetMeeting
    [2007-09-26|21:55] C:\Program Files\Netscape
    [2007-05-21|21:15] C:\Program Files\NKProds
    [2007-09-16|16:35] C:\Program Files\Nombre MYSTERE
    [2007-05-31|20:18] C:\Program Files\Nuclear Coffee
    [2007-09-29|19:10] C:\Program Files\nutri
    [2006-10-05|00:03] C:\Program Files\NVIDIA Corporation
    [2006-12-09|01:02] C:\Program Files\Object Desktop
    [2006-10-04|23:40] C:\Program Files\Online Services
    [2006-10-12|16:13] C:\Program Files\OpenOffice.org 2.0
    [2008-01-12|21:16] C:\Program Files\Outlook Express
    [2007-03-30|20:42] C:\Program Files\PanaVue
    [2008-07-13|16:56] C:\Program Files\PasToucheXP
    [2008-02-24|16:03] C:\Program Files\PCLink
    [2007-01-30|04:32] C:\Program Files\Player Metaboli
    [2007-04-07|19:36] C:\Program Files\POPUPKILLER
    [2006-12-16|23:34] C:\Program Files\PQDVD
    [2008-03-04|16:31] C:\Program Files\Project64 1.6
    [2007-01-30|04:35] C:\Program Files\PSPWare
    [2008-07-21|19:43] C:\Program Files\psx emulation cheater
    [2008-01-17|19:41] C:\Program Files\QuickTime
    [2008-01-13|00:56] C:\Program Files\QuickZip4
    [2008-04-05|21:05] C:\Program Files\RegCleaner
    [2007-01-30|04:35] C:\Program Files\Ripp-it_AM
    [2008-07-27|21:21] C:\Program Files\Rockstar Games
    [2007-09-26|20:09] C:\Program Files\SAGEM
    [2007-10-31|13:41] C:\Program Files\Seagrand
    [2008-05-23|13:29] C:\Program Files\Services en ligne
    [2008-01-13|00:56] C:\Program Files\Shareaza
    [2007-07-10|10:54] C:\Program Files\SimonTools
    [2007-09-20|21:01] C:\Program Files\SiSoftware
    [2007-03-19|10:08] C:\Program Files\SlySoft
    [2008-05-15|07:47] C:\Program Files\Sony Ericsson
    [2008-08-16|20:02] C:\Program Files\SopCast
    [2007-04-30|20:50] C:\Program Files\Spn
    [2008-10-26|12:18] C:\Program Files\Spybot - Search & Destroy
    [2007-05-31|11:24] C:\Program Files\Spyware Terminator
    [2008-01-25|01:34] C:\Program Files\SpywareBlaster
    [2006-10-23|10:31] C:\Program Files\Star Downloader
    [2007-03-30|23:42] C:\Program Files\Stardock
    [2007-04-28|16:41] C:\Program Files\Steganos Secure FileSharing 6
    [2008-05-03|23:25] C:\Program Files\Sunbelt Software
    [2008-10-28|15:04] C:\Program Files\SUPERAntiSpyware
    [2007-06-04|16:52] C:\Program Files\themexp
    [2008-02-20|19:23] C:\Program Files\Titus
    [2007-09-29|18:55] C:\Program Files\ToniArts
    [2008-07-07|22:48] C:\Program Files\Tremulous
    [2007-11-05|00:19] C:\Program Files\Trend Micro
    [2007-08-19|04:00] C:\Program Files\Trojan Remover
    [2007-09-16|21:03] C:\Program Files\TubeMaster
    [2007-05-31|20:36] C:\Program Files\TubeSucker
    [2008-02-17|21:16] C:\Program Files\TVAnts
    [2008-08-16|20:11] C:\Program Files\TVUPlayer
    [2006-10-10|19:54] C:\Program Files\Ubisoft
    [2006-10-04|23:50] C:\Program Files\Uninstall Information
    [2008-02-20|18:55] C:\Program Files\Universal Interactive
    [2008-08-03|11:40] C:\Program Files\UrbanTerror
    [2008-01-12|18:47] C:\Program Files\uTorrent
    [2008-04-05|14:36] C:\Program Files\Veoh Networks
    [2008-07-07|13:40] C:\Program Files\VID_0E8F&PID_3020
    [2008-08-09|15:58] C:\Program Files\VideoLAN
    [2008-01-13|12:20] C:\Program Files\VirtualDJ
    [2007-07-01|19:21] C:\Program Files\Wanadoo
    [2007-06-08|19:32] C:\Program Files\WinAVI MP4 Converter
    [2007-03-21|17:01] C:\Program Files\Windows Journal Viewer
    [2008-02-28|10:07] C:\Program Files\Windows Live
    [2007-11-29|20:27] C:\Program Files\Windows Live Favorites
    [2007-11-19|23:01] C:\Program Files\Windows Live Safety Center
    [2007-11-30|10:05] C:\Program Files\Windows Live Toolbar
    [2007-01-30|04:33] C:\Program Files\Windows Media Connect 2
    [2008-02-24|17:06] C:\Program Files\Windows Media Player
    [2006-10-04|23:39] C:\Program Files\Windows NT
    [2006-10-04|23:42] C:\Program Files\WindowsUpdate
    [2007-08-25|23:01] C:\Program Files\WinMX
    [2007-04-01|23:38] C:\Program Files\WinRAR
    [2007-04-28|22:47] C:\Program Files\WinZip
    [2008-04-08|18:19] C:\Program Files\Wolfenstein - Enemy Territory
    [2008-01-13|12:20] C:\Program Files\WorkoutLogger
    [2008-01-10|18:04] C:\Program Files\Wyzo
    [2006-10-04|23:44] C:\Program Files\xerox
    [2007-09-29|18:57] C:\Program Files\Yahoo!

    --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

    [2008-02-24|11:49] C:\Program Files\Fichiers communs\Adobe
    [2008-01-17|19:36] C:\Program Files\Fichiers communs\Apple
    [2007-09-14|19:26] C:\Program Files\Fichiers communs\AVSMedia
    [2006-10-12|15:59] C:\Program Files\Fichiers communs\BOONTY Shared
    [2006-11-11|13:54] C:\Program Files\Fichiers communs\DirectX
    [2007-03-20|15:18] C:\Program Files\Fichiers communs\InstallShield
    [2008-01-10|17:50] C:\Program Files\Fichiers communs\Java
    [2007-03-19|18:30] C:\Program Files\Fichiers communs\LogiShrd
    [2008-04-09|15:56] C:\Program Files\Fichiers communs\Logitech
    [2008-04-08|08:00] C:\Program Files\Fichiers communs\Microsoft Shared
    [2007-09-26|21:55] C:\Program Files\Fichiers communs\mozilla.org
    [2006-10-04|23:41] C:\Program Files\Fichiers communs\MSSoap
    [2006-10-05|00:03] C:\Program Files\Fichiers communs\NVIDIA Shared
    [2006-10-05|01:31] C:\Program Files\Fichiers communs\ODBC
    [2006-10-04|23:41] C:\Program Files\Fichiers communs\Services
    [2008-05-15|07:48] C:\Program Files\Fichiers communs\Sony Ericsson Shared
    [2006-10-05|01:31] C:\Program Files\Fichiers communs\SpeechEngines
    [2007-03-30|23:42] C:\Program Files\Fichiers communs\Stardock
    [2007-07-06|12:30] C:\Program Files\Fichiers communs\System
    [2008-05-15|07:48] C:\Program Files\Fichiers communs\Teleca Shared
    [2008-02-20|15:17] C:\Program Files\Fichiers communs\WindowsLiveInstaller
    [2008-10-28|15:02] C:\Program Files\Fichiers communs\Wise Installation Wizard

    --------------------\\ Process

    ( 39 Processes )

    ... OK !

    --------------------\\ Recherche avec S_Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Recherche de Fichiers / Dossiers Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Verification du Registre

    ..... OK !

    --------------------\\ Verification du fichier Hosts

    Fichier Hosts PROPRE


    --------------------\\ Recherche de fichiers avec Catchme

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-11-01 19:08:50
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 1

    --------------------\\ Recherche d'autres infections


    C:\WINDOWS\System32\fdpofhppoa.dat.ren
    C:\WINDOWS\System32\fdpofhppoa_nav.dat.ren
    C:\WINDOWS\System32\fdpofhppoa_navps.dat.ren
    ==> EGDACCESS <==



    [F:70][D:7]-> C:\DOCUME~1\VINCEN~1.000\LOCALS~1\Temp
    [F:1533][D:0]-> C:\DOCUME~1\VINCEN~1.000\Cookies
    [F:12268][D:31]-> C:\DOCUME~1\VINCEN~1.000\LOCALS~1\TEMPOR~1\content.IE5

    1 - "C:\Lop SD\LopR_1.txt" - 2008-10-31|21:36 - Option : [1]
    2 - "C:\Lop SD\LopR_2.txt" - 2008-11-01| 1:07 - Option : [1]
    3 - "C:\Lop SD\LopR_3.txt" - 2008-11-01|19:21 - Option : [2]

    --------------------\\ Fin du rapport a 19:21:38





    --------------------\\ Lop S&D 4.2.4-9 XP/Vista

    Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
    X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 1800+ )
    BIOS : Version 1.00
    USER : vincent ( Administrator )
    BOOT : Normal boot
    Antivirus : avast! antivirus 4.8.1229 [VPS 081031-1] 4.8.1229 (Activated)
    Firewall : Sunbelt Kerio Personal Firewall 4.3.744 T (Activated)
    A:\ (USB)
    C:\ (Local Disk) - NTFS - Total:39 Go (Free:1 Go)
    D:\ (Local Disk) - NTFS - Total:37 Go (Free:34 Go)
    E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
    F:\ (CD or DVD)
    G:\ (CD or DVD)
    H:\ (CD or DVD)
    I:\ (CD or DVD)
    J:\ (CD or DVD)

    "C:\Lop SD" ( MAJ : 30-10-2008|21:58 )
    Option : [4] ( 2008-11-01|19:41 )

    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ Lop Script

    C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
    C:\DOCUME~1\INVIT~1\APPLIC~1\Adverts
    C:\DOCUME~1\INVIT~1\APPLIC~1\EoRezo
    C:\DOCUME~1\VINCENT\APPLIC~1\EoRezo
    C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Viewpoint
    C:\DOCUME~1\VINCEN~3\APPLIC~1\EoRezo
    C:\WINDOWS\tasks\B7FD719190DEE5CD.job
    C:\DOCUME~1\INVIT~1\APPLIC~1\Vga1User
    C:\DOCUME~1\ALLUSE~1\APPLIC~1\up 16 program 64
    C:\Program Files\Boonty
    C:\Program Files\BoontyGames
    C:\Program Files\DaemonTools_WhenUSave_Installer
    C:\Program Files\eoRezo
    C:\Program Files\Viewpoint
    C:\Program Files\Fichiers communs\BOONTY Shared


    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

    ... C:\WINDOWS\tasks\B7FD719190DEE5CD.job -> n'existe pas !
    Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
    ... C:\DOCUME~1\INVIT~1\APPLIC~1\Adverts -> n'existe pas !
    Supprime! - C:\DOCUME~1\INVIT~1\APPLIC~1\EoRezo
    Supprime! - C:\DOCUME~1\VINCENT\APPLIC~1\EoRezo
    ... C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Viewpoint -> n'existe pas !
    Supprime! - C:\DOCUME~1\VINCEN~3\APPLIC~1\EoRezo
    ... C:\DOCUME~1\INVIT~1\APPLIC~1\Vga1User -> n'existe pas !
    Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\up 16 program 64
    Supprime! - C:\Program Files\Boonty
    Supprime! - C:\Program Files\BoontyGames
    Supprime! - C:\Program Files\DaemonTools_WhenUSave_Installer
    Supprime! - C:\Program Files\eoRezo
    ... C:\Program Files\Viewpoint -> n'existe pas !
    Supprime! - C:\Program Files\Fichiers communs\BOONTY Shared

    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


    --------------------\\ Listing des dossiers dans APPLIC~1


    [2006-10-06|19:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Acronis
    [2008-02-24|11:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [2007-09-16|10:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
    [2008-01-17|19:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
    [2007-09-27|16:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Arovax
    [2007-07-12|13:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
    [2007-09-14|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVS4YOU
    [2007-10-31|15:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
    [2006-10-23|10:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Exetender
    [2006-10-09|17:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
    [2007-03-08|00:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
    [2008-11-01|14:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
    [2008-01-11|21:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
    [2008-01-11|23:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Locktime
    [2007-03-19|18:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
    [2008-10-27|13:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
    [2007-01-14|16:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
    [2007-05-14|16:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [2008-08-24|16:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA
    [2008-05-15|07:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
    [2008-11-01|19:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
    [2008-10-28|15:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SUPERAntiSpyware.com
    [2008-05-15|07:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca
    [2008-01-14|14:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
    [2007-09-19|17:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tenebril
    [2006-12-04|22:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
    [2008-08-16|20:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TVU Networks
    [2006-11-14|22:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ubisoft
    [2006-10-22|16:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    [2007-03-08|04:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
    [2007-07-23|15:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
    [2008-02-20|15:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
    [2007-09-29|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion

    [2007-07-23|15:55] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

    [2008-08-20|20:41] C:\DOCUME~1\INVIT~1\APPLIC~1\Adobe
    [2007-12-30|17:43] C:\DOCUME~1\INVIT~1\APPLIC~1\BitTorrent
    [2008-07-01|14:53] C:\DOCUME~1\INVIT~1\APPLIC~1\DivX
    [2007-01-13|21:22] C:\DOCUME~1\INVIT~1\APPLIC~1\Google
    [2008-01-12|20:24] C:\DOCUME~1\INVIT~1\APPLIC~1\Grisoft
    [2006-12-29|11:57] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
    [2006-12-29|11:58] C:\DOCUME~1\INVIT~1\APPLIC~1\ispnews
    [2008-07-28|19:25] C:\DOCUME~1\INVIT~1\APPLIC~1\Launchy
    [2007-09-05|02:09] C:\DOCUME~1\INVIT~1\APPLIC~1\Macromedia
    [2007-05-25|10:45] C:\DOCUME~1\INVIT~1\APPLIC~1\MEGAUPLOADTOOLBAR
    [2007-01-30|04:32] C:\DOCUME~1\INVIT~1\APPLIC~1\MessengerPlus! 3
    [2008-01-20|14:54] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
    [2007-01-02|13:32] C:\DOCUME~1\INVIT~1\APPLIC~1\Morpheus
    [2008-01-17|18:53] C:\DOCUME~1\INVIT~1\APPLIC~1\Mozilla
    [2008-05-20|16:17] C:\DOCUME~1\INVIT~1\APPLIC~1\Sony Ericsson
    [2007-05-25|06:28] C:\DOCUME~1\INVIT~1\APPLIC~1\Spyware Terminator
    [2008-01-11|12:40] C:\DOCUME~1\INVIT~1\APPLIC~1\Sun
    [2007-07-20|12:24] C:\DOCUME~1\INVIT~1\APPLIC~1\Talkback
    [2008-05-21|12:16] C:\DOCUME~1\INVIT~1\APPLIC~1\Teleca
    [2006-12-30|20:24] C:\DOCUME~1\INVIT~1\APPLIC~1\TuneUp Software

    [2007-07-11|22:40] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
    [2007-07-12|13:29] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
    [2007-05-15|18:07] C:\DOCUME~1\LOCALS~1\APPLIC~1\Spyware Terminator

    [2006-10-08|17:51] C:\DOCUME~1\MAMAN\APPLIC~1\Adobe
    [2006-10-10|17:59] C:\DOCUME~1\MAMAN\APPLIC~1\F-Secure
    [2006-11-03|22:04] C:\DOCUME~1\MAMAN\APPLIC~1\Help
    [2006-10-08|12:29] C:\DOCUME~1\MAMAN\APPLIC~1\Identities
    [2006-10-10|17:17] C:\DOCUME~1\MAMAN\APPLIC~1\ispnews
    [2006-10-10|17:17] C:\DOCUME~1\MAMAN\APPLIC~1\Macromedia
    [2007-07-12|13:29] C:\DOCUME~1\MAMAN\APPLIC~1\Microsoft
    [2006-10-26|19:09] C:\DOCUME~1\MAMAN\APPLIC~1\Morpheus

    [2007-07-12|13:29] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    [2006-10-08|17:33] C:\DOCUME~1\VINCENT\APPLIC~1\Adobe
    [2006-10-08|17:33] C:\DOCUME~1\VINCENT\APPLIC~1\AdobeUM
    [2006-10-23|22:23] C:\DOCUME~1\VINCENT\APPLIC~1\Atari
    [2007-05-21|21:21] C:\DOCUME~1\VINCENT\APPLIC~1\BitTorrent
    [2006-10-09|18:17] C:\DOCUME~1\VINCENT\APPLIC~1\F-Secure
    [2006-10-07|23:56] C:\DOCUME~1\VINCENT\APPLIC~1\Identities
    [2006-10-09|17:50] C:\DOCUME~1\VINCENT\APPLIC~1\ispnews
    [2006-10-14|16:27] C:\DOCUME~1\VINCENT\APPLIC~1\Macromedia
    [2007-07-12|13:29] C:\DOCUME~1\VINCENT\APPLIC~1\Microsoft
    [2006-10-14|09:51] C:\DOCUME~1\VINCENT\APPLIC~1\Morpheus
    [2006-10-09|17:53] C:\DOCUME~1\VINCENT\APPLIC~1\PEX
    [2006-10-12|16:08] C:\DOCUME~1\VINCENT\APPLIC~1\SecuROM
    [2007-05-25|17:55] C:\DOCUME~1\VINCENT\APPLIC~1\Smart PC Solutions
    [2006-11-11|13:53] C:\DOCUME~1\VINCENT\APPLIC~1\THQ
    [2006-12-04|22:47] C:\DOCUME~1\VINCENT\APPLIC~1\TuneUp Software
    [2006-12-04|22:53] C:\DOCUME~1\VINCENT\APPLIC~1\uTorrent

    [2007-07-11|22:42] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\AVG7
    [2007-07-08|11:35] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\DivX
    [2007-07-11|10:14] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\dvdcss
    [2007-06-12|16:41] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Identities
    [2007-06-12|16:42] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\ispnews
    [2007-07-06|12:11] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Macromedia
    [2007-07-12|13:29] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Microsoft
    [2007-07-10|20:17] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Mozilla
    [2007-07-02|20:50] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Shareaza
    [2007-07-08|16:54] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Sun
    [2007-07-10|20:17] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\Talkback
    [2007-06-14|20:53] C:\DOCUME~1\VINCEN~1.ZOR\APPLIC~1\vlc

    [2008-07-20|23:27] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Adobe
    [2008-01-25|14:32] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Apple Computer
    [2008-04-07|21:37] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Auslogics
    [2008-02-03|17:20] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\dvdcss
    [2008-04-28|20:22] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\fltk.org
    [2008-04-06|14:51] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Google
    [2008-01-25|00:40] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Grisoft
    [2008-01-25|00:39] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Identities
    [2008-07-07|13:43] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\InstallShield Installation Information
    [2008-08-05|01:27] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Launchy
    [2008-03-16|22:37] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Macromedia
    [2008-10-27|13:07] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Malwarebytes
    [2008-05-18|19:41] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Media Player Classic
    [2008-05-23|13:32] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Microsoft
    [2008-05-02|20:26] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Mozilla
    [2008-04-11|21:20] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\OpenArena
    [2008-05-15|07:51] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Sony Ericsson
    [2008-01-28|14:32] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Sun
    [2008-10-28|15:04] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\SUPERAntiSpyware.com
    [2008-05-15|10:08] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\Teleca
    [2008-08-16|20:12] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\TVU Networks
    [2008-08-31|13:37] C:\DOCUME~1\VINCEN~1.000\APPLIC~1\uTorrent

    [2007-01-30|04:36] C:\DOCUME~1\VINCEN~1\APPLIC~1\ispnews
    [2007-01-28|18:38] C:\DOCUME~1\VINCEN~1\APPLIC~1\Macromedia
    [2007-01-30|04:36] C:\DOCUME~1\VINCEN~1\APPLIC~1\Microsoft

    [2007-09-20|21:52] C:\DOCUME~1\VINCEN~3\APPLIC~1\Adobe
    [2008-01-17|19:44] C:\DOCUME~1\VINCEN~3\APPLIC~1\Apple Computer
    [2007-09-14|19:25] C:\DOCUME~1\VINCEN~3\APPLIC~1\Audacity
    [2008-01-07|00:46] C:\DOCUME~1\VINCEN~3\APPLIC~1\BitTorrent
    [2007-11-28|20:09] C:\DOCUME~1\VINCEN~3\APPLIC~1\Corel
    [2007-07-18|19:09] C:\DOCUME~1\VINCEN~3\APPLIC~1\DivX
    [2007-12-12|21:07] C:\DOCUME~1\VINCEN~3\APPLIC~1\dvdcss
    [2007-09-04|21:12] C:\DOCUME~1\VINCEN~3\APPLIC~1\fltk.org
    [2007-12-31|00:48] C:\DOCUME~1\VINCEN~3\APPLIC~1\Google
    [2008-01-11|21:56] C:\DOCUME~1\VINCEN~3\APPLIC~1\Grisoft
    [2007-07-12|13:40] C:\DOCUME~1\VINCEN~3\APPLIC~1\Identities
    [2007-07-15|21:13] C:\DOCUME~1\VINCEN~3\APPLIC~1\iMesh
    [2007-07-12|13:40] C:\DOCUME~1\VINCEN~3\APPLIC~1\ispnews
    [2008-01-25|00:36] C:\DOCUME~1\VINCEN~3\APPLIC~1\Launchy
    [2008-01-12|00:39] C:\DOCUME~1\VINCEN~3\APPLIC~1\Locktime
    [2007-08-04|19:23] C:\DOCUME~1\VINCEN~3\APPLIC~1\Macromedia
    [2007-09-20|18:19] C:\DOCUME~1\VINCEN~3\APPLIC~1\Microsoft
    [2007-09-26|21:57] C:\DOCUME~1\VINCEN~3\APPLIC~1\Mozilla
    [2007-08-15|16:59] C:\DOCUME~1\VINCEN~3\APPLIC~1\MSNInstaller
    [2007-07-25|14:26] C:\DOCUME~1\VINCEN~3\APPLIC~1\Screenshot Sender
    [2007-07-14|22:15] C:\DOCUME~1\VINCEN~3\APPLIC~1\Shareaza
    [2007-08-19|03:54] C:\DOCUME~1\VINCEN~3\APPLIC~1\Simply Super Software
    [2008-01-10|20:35] C:\DOCUME~1\VINCEN~3\APPLIC~1\Sun
    [2007-07-14|02:15] C:\DOCUME~1\VINCEN~3\APPLIC~1\Talkback
    [2007-09-19|16:58] C:\DOCUME~1\VINCEN~3\APPLIC~1\Tenebril
    [2008-01-24|11:13] C:\DOCUME~1\VINCEN~3\APPLIC~1\uTorrent
    [2007-07-12|19:12] C:\DOCUME~1\VINCEN~3\APPLIC~1\vlc

    [2007-07-10|12:22] C:\DOCUME~1\VINCEN~2\APPLIC~1\ispnews
    [2007-07-10|12:22] C:\DOCUME~1\VINCEN~2\APPLIC~1\Microsoft


    --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

    [2008-10-28 22:37][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [2008-11-01 19:46][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
    [2008-10-31 17:15][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
    [2008-11-01 13:54][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [2004-08-05 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    --------------------\\ Listing des dossiers dans C:\Program Files

    [2007-04-01|18:59] C:\Program Files\1964
    [2006-10-06|19:05] C:\Program Files\Acronis
    [2008-02-24|11:49] C:\Program Files\Adobe
    [2007-04-30|20:11] C:\Program Files\Ahead
    [2007-09-20|21:09] C:\Program Files\AIDA32 - Personal System Information
    [2008-01-14|15:07] C:\Program Files\Alcohol Soft
    [2006-11-30|17:30] C:\Program Files\Alwil Software
    [2007-07-10|12:23] C:\Program Files\AnfyTeam
    [2007-05-31|12:11] C:\Program Files\Antipub
    [2007-01-30|04:33] C:\Program Files\Any Video Converter
    [2008-01-17|19:37] C:\Program Files\Apple Software Update
    [2007-04-02|11:14] C:\Program Files\AresFlashDownloader
    [2007-08-10|14:56] C:\Program Files\Ashampoo
    [2007-04-22|10:52] C:\Program Files\Astonsoft
    [2007-08-22|23:12] C:\Program Files\Atari
    [2008-01-13|00:54] C:\Program Files\Audacity
    [2008-01-13|00:54] C:\Program Files\Audacity 1.3 Beta (Unicode)
    [2008-04-07|21:37] C:\Program Files\Auslogics
    [2008-04-01|16:40] C:\Program Files\AV MP3 Player-Morpher
    [2007-04-22|20:13] C:\Program Files\AvantClick
    [2007-01-29|04:48] C:\Program Files\AviSynth 2.5
    [2007-03-19|10:07] C:\Program Files\Azureus
    [2007-04-28|18:38] C:\Program Files\BearShare
    [2007-11-25|11:59] C:\Program Files\BearShare Applications
    [2006-12-04|20:29] C:\Program Files\BillardGL 1.75
    [2008-01-10|15:53] C:\Program Files\BitComet
    [2007-04-27|17:22] C:\Program Files\BitLord
    [2008-01-10|17:46] C:\Program Files\BitTorrent
    [2008-01-02|16:54] C:\Program Files\BitTyrant
    [2008-01-09|19:48] C:\Program Files\burnatonce
    [2006-10-22|14:25] C:\Program Files\Call of Duty Dawnville Demo
    [2006-10-11|16:18] C:\Program Files\Call of Duty Single Player Demo
    [2007-09-27|16:10] C:\Program Files\CCleaner
    [2008-07-20|17:59] C:\Program Files\Celestia
    [2008-07-07|15:29] C:\Program Files\CENEGA
    [2007-03-07|18:19] C:\Program Files\C-Media 3D Audio
    [2007-09-02|19:17] C:\Program Files\Common Files
    [2008-01-21|22:22] C:\Program Files\Compil Games
    [2006-10-04|23:40] C:\Program Files\ComPlus Applications
    [2008-01-13|01:01] C:\Program Files\Copernic Desktop Search 2
    [2008-01-09|13:50] C:\Program Files\Corel
    [2007-06-01|14:10] C:\Program Files\Crawler
    [2008-04-08|18:20] C:\Program Files\Cube
    [2008-10-26|14:53] C:\Program Files\CUP
    [2007-01-30|04:32] C:\Program Files\CursorXP
    [2007-04-29|20:13] C:\Program Files\DAEMON Tools
    [2008-01-02|12:24] C:\Program Files\DAP
    [2008-07-07|15:03] C:\Program Files\directx
    [2008-01-10|16:29] C:\Program Files\DivX
    [2007-09-26|20:00] C:\Program Files\Easy CD-DA Extractor 10
    [2007-09-29|19:10] C:\Program Files\eChanblard
    [2008-10-25|18:52] C:\Program Files\eMule
    [2007-04-03|04:10] C:\Program Files\ePSXe
    [2007-01-30|04:34] C:\Program Files\Eurobarre
    [2008-11-01|19:52] C:\Program Files\Fichiers communs
    [2007-06-08|19:34] C:\Program Files\File Lock
    [2008-01-13|00:54] C:\Program Files\Filetopia3
    [2007-09-16|16:34] C:\Program Files\Find'Em Trial
    [2007-12-28|16:54] C:\Program Files\Free
    [2008-01-14|15:08] C:\Program Files\free-downloads.net
    [2007-09-02|19:17] C:\Program Files\GLD
    [2008-07-20|18:02] C:\Program Files\Google
    [2007-04-22|11:12] C:\Program Files\Goto
    [2008-01-11|21:55] C:\Program Files\Grisoft
    [2008-10-02|20:21] C:\Program Files\Hitman Pro
    [2007-01-30|04:33] C:\Program Files\Hotkey
    [2006-11-23|20:04] C:\Program Files\Image Applications
    [2007-07-15|21:12] C:\Program Files\iMesh Applications
    [2008-07-10|01:02] C:\Program Files\InstallShield Installation Information
    [2007-04-26|19:38] C:\Program Files\Internet Download Manager
    [2008-10-17|02:02] C:\Program Files\Internet Explorer
    [2006-10-07|04:23] C:\Program Files\Inventel
    [2008-01-17|19:43] C:\Program Files\iPod
    [2008-01-13|00:54] C:\Program Files\iSpeed
    [2008-01-17|19:43] C:\Program Files\iTunes
    [2008-01-10|17:55] C:\Program Files\Java
    [2007-04-22|20:13] C:\Program Files\JavaSoft
    [2007-03-19|10:06] C:\Program Files\Kazaa Lite
    [2008-01-13|00:54] C:\Program Files\KAZAA LITE TOOLS K++
    [2008-10-02|20:20] C:\Program Files\K-Lite Codec Pack
    [2007-09-30|10:06] C:\Program Files\Launchy
    [2006-10-04|23:55] C:\Program Files\Lavalys
    [2007-09-19|12:50] C:\Program Files\Lavasoft
    [2007-11-25|11:52] C:\Program Files\LimeWire
    [2006-12-05|19:35] C:\Program Files\LIUtilities
    [2007-03-19|18:34] C:\Program Files\Logitech
    [2007-01-30|04:33] C:\Program Files\Loonies
    [2008-05-23|20:44] C:\Program Files\MAIET
    [2008-10-27|13:07] C:\Program Files\Malwarebytes' Anti-Malware
    [2007-08-10|17:06] C:\Program Files\Mario Forever
    [2007-05-28|17:08] C:\Program Files\MegauploadToolbar
    [2008-08-14|02:05] C:\Program Files\Messenger
    [2008-01-03|15:30] C:\Program Files\Messenger Plus! Live
    [2007-01-31|20:36] C:\Program Files\MessengerPlus! 3
    [2006-12-04|23:57] C:\Program Files\Microsoft Bootvis
    [2007-05-09|02:07] C:\Program Files\Microsoft CAPICOM 2.1.0.2
    [2006-10-04|23:44] C:\Program Files\microsoft frontpage
    [2006-10-11|13:19] C:\Program Files\Microsoft Games
    [2006-10-06|19:11] C:\Program Files\Microsoft Office
    [2008-02-20|15:44] C:\Program Files\Microsoft SQL Server Compact Edition
    [2008-07-07|22:58] C:\Program Files\Mindscape
    [2008-02-17|21:31] C:\Program Files\Morgan
    [2008-05-27|06:40] C:\Program Files\Morpheus
    [2007-07-17|19:50] C:\Program Files\Morpheus Ultra
    [2007-01-30|04:33] C:\Program Files\MorpheusBar
    [2008-01-13|00:55] C:\Program Files\Movie Maker
    [2008-11-01|16:19] C:\Program Files\Mozilla Firefox
    [2007-11-25|18:06] C:\Program Files\mozilla.org
    [2007-08-15|16:59] C:\Program Files\MSN
    [2007-10-06|17:55] C:\Program Files\MSN Font Color Editor
    [2006-10-04|23:39] C:\Program Files\MSN Gaming Zone
    [2008-02-20|15:50] C:\Program Files\MSN Messenger
    [2007-10-06|17:53] C:\Program Files\MSNTweaker
    [2006-10-11|13:27] C:\Program Files\MSXML 4.0
    [2007-04-15|21:59] C:\Program Files\MyMPxPlayer.org
    [2008-11-01|00:41] C:\Program Files\Navilog1
    [2007-05-21|21:11] C:\Program Files\NetAnts
    [2006-10-04|23:41] C:\Program Files\NetMeeting
    [2007-09-26|21:55] C:\Program Files\Netscape
    [2007-05-21|21:15] C:\Program Files\NKProds
    [2007-09-16|16:35] C:\Program Files\Nombre MYSTERE
    [2007-05-31|20:18] C:\Program Files\Nuclear Coffee
    [2007-09-29|19:10] C:\Program Files\nutri
    [2006-10-05|00:03] C:\Program Files\NVIDIA Corporation
    [2006-12-09|01:02] C:\Program Files\Object Desktop
    [2006-10-04|23:40] C:\Program Files\Online Services
    [2006-10-12|16:13] C:\Program Files\OpenOffice.org 2.0
    [2008-01-12|21:16] C:\Program Files\Outlook Express
    [2007-03-30|20:42] C:\Program Files\PanaVue
    [2008-07-13|16:56] C:\Program Files\PasToucheXP
    [2008-02-24|16:03] C:\Program Files\PCLink
    [2007-01-30|04:32] C:\Program Files\Player Metaboli
    [2007-04-07|19:36] C:\Program Files\POPUPKILLER
    [2006-12-16|23:34] C:\Program Files\PQDVD
    [2008-03-04|16:31] C:\Program Files\Project64 1.6
    [2007-01-30|04:35] C:\Program Files\PSPWare
    [2008-07-21|19:43] C:\Program Files\psx emulation cheater
    [2008-01-17|19:41] C:\Program Files\QuickTime
    [2008-01-13|00:56] C:\Program Files\QuickZip4
    [2008-04-05|21:05] C:\Program Files\RegCleaner
    [2007-01-30|04:35] C:\Program Files\Ripp-it_AM
    [2008-07-27|21:21] C:\Program Files\Rockstar Games
    [2007-09-26|20:09] C:\Program Files\SAGEM
    [2007-10-31|13:41] C:\Program Files\Seagrand
    [2008-05-23|13:29] C:\Program Files\Services en ligne
    [2008-01-13|00:56] C:\Program Files\Shareaza
    [2007-07-10|10:54] C:\Program Files\SimonTools
    [2007-09-20|21:01] C:\Program Files\SiSoftware
    [2007-03-19|10:08] C:\Program Files\SlySoft
    [2008-05-15|07:47] C:\Program Files\Sony Ericsson
    [2008-08-16|20:02] C:\Program Files\SopCast
    [2007-04-30|20:50] C:\Program Files\Spn
    [2008-10-26|12:18] C:\Program Files\Spybot - Search & Destroy
    [2007-05-31|11:24] C:\Program Files\Spyware Terminator
    [2008-01-25|01:34] C:\Program Files\SpywareBlaster
    [2006-10-23|10:31] C:\Program Files\Star Downloader
    [2007-03-30|23:42] C:\Program Files\Stardock
    [2007-04-28|16:41] C:\Program Files\Steganos Secure FileSharing 6
    [2008-05-03|23:25] C:\Program Files\Sunbelt Software
    [2008-10-28|15:04] C:\Program Files\SUPERAntiSpyware
    [2007-06-04|16:52] C:\Program Files\themexp
    [2008-02-20|19:23] C:\Program Files\Titus
    [2007-09-29|18:55] C:\Program Files\ToniArts
    [2008-07-07|22:48] C:\Program Files\Tremulous
    [2007-11-05|00:19] C:\Program Files\Trend Micro
    [2007-08-19|04:00] C:\Program Files\Trojan Remover
    [2007-09-16|21:03] C:\Program Files\TubeMaster
    [2007-05-31|20:36] C:\Program Files\TubeSucker
    [2008-02-17|21:16] C:\Program Files\TVAnts
    [2008-08-16|20:11] C:\Program Files\TVUPlayer
    [2006-10-10|19:54] C:\Program Files\Ubisoft
    [2006-10-04|23:50] C:\Program Files\Uninstall Information
    [2008-02-20|18:55] C:\Program Files\Universal Interactive
    [2008-08-03|11:40] C:\Program Files\UrbanTerror
    [2008-01-12|18:47] C:\Program Files\uTorrent
    [2008-04-05|14:36] C:\Program Files\Veoh Networks
    [2008-07-07|13:40] C:\Program Files\VID_0E8F&PID_3020
    [2008-08-09|15:58] C:\Program Files\VideoLAN
    [2008-01-13|12:20] C:\Program Files\VirtualDJ
    [2007-07-01|19:21] C:\Program Files\Wanadoo
    [2007-06-08|19:32] C:\Program Files\WinAVI MP4 Converter
    [2007-03-21|17:01] C:\Program Files\Windows Journal Viewer
    [2008-02-28|10:07] C:\Program Files\Windows Live
    [2007-11-29|20:27] C:\Program Files\Windows Live Favorites
    [2007-11-19|23:01] C:\Program Files\Windows Live Safety Center
    [2007-11-30|10:05] C:\Program Files\Windows Live Toolbar
    [2007-01-30|04:33] C:\Program Files\Windows Media Connect 2
    [2008-02-24|17:06] C:\Program Files\Windows Media Player
    [2006-10-04|23:39] C:\Program Files\Windows NT
    [2006-10-04|23:42] C:\Program Files\WindowsUpdate
    [2007-08-25|23:01] C:\Program Files\WinMX
    [2007-04-01|23:38] C:\Program Files\WinRAR
    [2007-04-28|22:47] C:\Program Files\WinZip
    [2008-04-08|18:19] C:\Program Files\Wolfenstein - Enemy Territory
    [2008-01-13|12:20] C:\Program Files\WorkoutLogger
    [2008-01-10|18:04] C:\Program Files\Wyzo
    [2006-10-04|23:44] C:\Program Files\xerox
    [2007-09-29|18:57] C:\Program Files\Yahoo!

    --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

    [2008-02-24|11:49] C:\Program Files\Fichiers communs\Adobe
    [2008-01-17|19:36] C:\Program Files\Fichiers communs\Apple
    [2007-09-14|19:26] C:\Program Files\Fichiers communs\AVSMedia
    [2006-11-11|13:54] C:\Program Files\Fichiers communs\DirectX
    [2007-03-20|15:18] C:\Program Files\Fichiers communs\InstallShield
    [2008-01-10|17:50] C:\Program Files\Fichiers communs\Java
    [2007-03-19|18:30] C:\Program Files\Fichiers communs\LogiShrd
    [2008-04-09|15:56] C:\Program Files\Fichiers communs\Logitech
    [2008-04-08|08:00] C:\Program Files\Fichiers communs\Microsoft Shared
    [2007-09-26|21:55] C:\Program Files\Fichiers communs\mozilla.org
    [2006-10-04|23:41] C:\Program Files\Fichiers communs\MSSoap
    [2006-10-05|00:03] C:\Program Files\Fichiers communs\NVIDIA Shared
    [2006-10-05|01:31] C:\Program Files\Fichiers communs\ODBC
    [2006-10-04|23:41] C:\Program Files\Fichiers communs\Services
    [2008-05-15|07:48] C:\Program Files\Fichiers communs\Sony Ericsson Shared
    [2008-11-01|19:33] C:\Program Files\Fichiers communs\SpeechEngines
    [2007-03-30|23:42] C:\Program Files\Fichiers communs\Stardock
    [2007-07-06|12:30] C:\Program Files\Fichiers communs\System
    [2008-02-20|15:17] C:\Program Files\Fichiers communs\WindowsLiveInstaller
    [2008-10-28|15:02] C:\Program Files\Fichiers communs\Wise Installation Wizard

    --------------------\\ Process

    ( 38 Processes )

    ... OK !

    --------------------\\ Recherche avec S_Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Recherche de Fichiers / Dossiers Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Verification du Registre

    ..... OK !

    --------------------\\ Verification du fichier Hosts

    Fichier Hosts PROPRE


    --------------------\\ Recherche de fichiers avec Catchme

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-11-01 19:59:15
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 1

    --------------------\\ Recherche d'autres infections


    C:\WINDOWS\System32\fdpofhppoa.dat.ren
    C:\WINDOWS\System32\fdpofhppoa_nav.dat.ren
    C:\WINDOWS\System32\fdpofhppoa_navps.dat.ren
    ==> EGDACCESS <==



    [F:72][D:3]-> C:\DOCUME~1\VINCEN~1.000\LOCALS~1\Temp
    [F:2][D:0]-> C:\DOCUME~1\VINCEN~1.000\Cookies
    [F:79][D:10]-> C:\DOCUME~1\VINCEN~1.000\LOCALS~1\TEMPOR~1\content.IE5

    1 - "C:\Lop SD\LopR_1.txt" - 2008-10-31|21:36 - Option : [1]
    2 - "C:\Lop SD\LopR_2.txt" - 2008-11-01| 1:07 - Option : [1]
    3 - "C:\Lop SD\LopR_3.txt" - 2008-11-01|19:21 - Option : [2]
    4 - "C:\Lop SD\LopR_4.txt" - 2008-11-01|20:04 - Option : [4]

    --------------------\\ Fin du rapport a 20:04:44



    1 Novembre 2008 20:09:39

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 20:09:23, on 2008-11-01
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\PnkBstrA.exe
    C:\WINDOWS\system32\PSIService.exe
    C:\WINDOWS\system32\SLEE503.exe
    C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
    C:\WINDOWS\system32\svchost.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\Windows Live\Messenger\usnsvc.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
    O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O3 - Toolbar: Copernic Desktop Search 2 - {968631B6-4729-440D-9BF4-251F5593EC9A} - C:\Program Files\Copernic Desktop Search 2\DesktopSearchBand201013011.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
    O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
    O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
    O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
    O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\WINDOWS\system32\shdocvw.dll
    O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\WINDOWS\system32\shdocvw.dll
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
    O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by141fd.bay141.hotmail.msn.com/resources/MsnPUpl...
    O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) -
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
    O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Unknown owner - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE (file missing)
    O23 - Service: Boonty Games - Unknown owner - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe (file missing)
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
    O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
    O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
    O23 - Service: SiSoftware Database Agent Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\Win32\RpcDataSrv.exe
    O23 - Service: SiSoftware Sandra Agent Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\RpcSandraSrv.exe
    O23 - Service: Steganos Live Encryption Engine (Version 503) [Service] (SLEE_503_SERVICE) - Unknown owner - C:\WINDOWS\system32\SLEE503.exe
    O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
    O23 - Service: StarOpen - Unknown owner - (no file)
    O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

    --
    End of file - 10242 bytes
    1 Novembre 2008 20:30:59

    Tu t'es trompé en faisant Lop S&D option 2.
    C'est Toolbar S&D.
    Fais-le et poste moi le rapport :) 
    1 Novembre 2008 20:48:43

    J'AI NOTé UNE NETTE AMELIORATION


    -----------\\ ToolBar S&D 1.2.4 XP/Vista

    Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
    X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 1800+ )
    BIOS : Version 1.00
    USER : ***** ( Administrator )
    BOOT : Normal boot
    Antivirus : avast! antivirus 4.8.1229 [VPS 081031-1] 4.8.1229 (Activated)
    Firewall : Sunbelt Kerio Personal Firewall 4.3.744 T (Activated)
    A:\ (USB)
    C:\ (Local Disk) - NTFS - Total:39 Go (Free:1 Go)
    D:\ (Local Disk) - NTFS - Total:37 Go (Free:34 Go)
    E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
    F:\ (CD or DVD)
    G:\ (CD or DVD)
    H:\ (CD or DVD)
    I:\ (CD or DVD)
    J:\ (CD or DVD)

    "C:\ToolBar SD" ( MAJ : 27-10-2008|09:25 )
    Option : [2] ( 2008-11-01|20:35 )

    -----------\\ SUPPRESSION

    Supprime! - C:\Program Files\BitLord\BitLord.xml
    Supprime! - C:\Program Files\BitLord\Downloads
    Supprime! - C:\Program Files\BitLord\Downloads.xml
    Supprime! - C:\Program Files\BitLord\lang
    Supprime! - C:\Program Files\BitLord\rules
    Supprime! - C:\Program Files\BitLord\Torrents
    Supprime! - C:\WINDOWS\Fonts\acrsec.fon
    Supprime! - C:\Program Files\BitLord
    Supprime! - C:\Program Files\Crawler

    -----------\\ Recherche de Fichiers / Dossiers ...


    -----------\\ Extensions

    (Invit‚) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar

    (vincent.ZOROO-A6EC98604.000) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
    (vincent.ZOROO-A6EC98604.000) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper

    (Vincenthsc) - {19503e42-ca3c-4c27-b1e2-9cdb2170ee34} => flashgot
    (Vincenthsc) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar


    -----------\\ [..\Internet Explorer\Main]

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Start Page"="http://www.google.fr/"
    "Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iese..."
    "Local Page"="C:\\windows\\system32\\blank.htm"
    "Search Page"="http://www.google.com"
    "Search Bar"="http://www.google.com/ie"

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
    "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
    "Default_Search_URL"="http://www.google.com/ie"
    "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
    "Start Page"="http://www.msn.com/"
    "Search Bar"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"
    "CustomizeSearch"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iese..."
    "SearchAssistant"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iese..."


    --------------------\\ Recherche d'autres infections


    C:\WINDOWS\System32\fdpofhppoa.dat.ren
    C:\WINDOWS\System32\fdpofhppoa_nav.dat.ren
    C:\WINDOWS\System32\fdpofhppoa_navps.dat.ren
    ==> EGDACCESS <==




    1 - "C:\ToolBar SD\TB_1.txt" - 2008-11-01|14:22 - Option : [1]
    2 - "C:\ToolBar SD\TB_2.txt" - 2008-11-01|20:46 - Option : [2]

    -----------\\ Fin du rapport a 20:46:21,31
    1 Novembre 2008 21:36:44

    Re,

    Clique sur le menu Demarrer /Panneau de configuration/Options des dossiers/ puis dans l'onglet Affichage
    - Coche Afficher les fichiers et dossiers cachés
    - Décoche Masquer les extensions des fichiers dont le type est connu
    - Décoche Masquer les fichiers protégés du système d'exploitation (recommandé)
    clique sur Appliquer, puis OK.

    N'oublie pas de recacher à nouveau les fichiers cachés et protégés du système d'exploitation en fin de désinfection, c'est important

    Sélectionne l’intégralité du cadre ci-dessous :
    @echo off & cls
    cd %SystemRoot%\system32
    for /F %%A in ('dir /B /A fdpofhppoa*') do (
    del /A /F /Q "%%A"
    if exist "%%A" echo %%A !ERREUR SUPPRESSION!
    if not exist "%%A" echo %%A SUPPRIME !
    ) >> youpi.log
    youpi.log & del youpi.log
    exit

    Copie/colle le dans le Bloc-notes (Démarrer\Tous les programmes\Accessoires\Bloc-notes.)
    Enregistre le sur ton Bureau sous le nom de Correction.bat
    Double-clique dessus. Poste le rapport généré (si présent).
    1 Novembre 2008 23:34:16

    voila

    fdpofhppoa.dat.ren SUPPRIME !
    fdpofhppoa_nav.dat.ren SUPPRIME !
    fdpofhppoa_navps.dat.ren SUPPRIME !
    2 Novembre 2008 12:16:46

    Re,

    Télécharge MalwareByte's Anti-Malware sur ton Bureau.

  • Installe-le en double-cliquant sur le fichier Download_mbam-setup.exe.
    Une fois l'installation et la mise à jour effectuées :
  • Fais redémarrer ton ordinateur en mode sans échec
    - Au démarrage, après le chargement du bios, appuie successivement sur la touche F8 (ou F5) de ton clavier jusqu'à l'apparition d'un menu sur fond noir. Une fois arrivé à ce stade, sélectionne à l'aide du clavier Mode sans Echec.
    -- Dans ce mode, tu n'as pas accès à Internet, et tu te retrouves avec une configuration visuelle différente (pas de fond d'écran, icônes très grosses). Ne sois donc pas étonné.
    --- C'est pour ces différentes raisons que je t'invite à imprimer, noter, ou enregistrer dans un document texte les informations suivantes afin de ne pas être perdu.
    ---- ! Ne fais pas démarrer ton ordinateur en mode sans échec via MSConfig ! Pourquoi ? Certaines infections cassent les clefs du mode sans échec, ce qui ferait crasher ton ordinateur.

  • Exécute maintenant MalwareByte's Anti-Malware. Si cela n'est pas déjà fait, sélectionne "Exécuter un examen complet".
  • Afin de lancer la recherche, clic sur"Rechercher".
  • Une fois le scan terminé, une fenêtre s'ouvre, clic sur OK. Deux possibilités s'offrent à toi :

    ~ Si le programme n'a rien trouvé, appuie sur OK. Un rapport va apparaître, ferme-le.
    ~~ Si des infections sont présentes, clic sur "Afficher les résultats" puis sur "Supprimer la sélection". Enregistre le rapport sur ton Bureau.
    ~~~~ Fais redémarrer ton ordinateur normalement et poste le rapport dans ta prochaine réponse.

    REMARQUE : Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok.[/#f]

    Note : Si tu ne parviens à télécharger MBAM à part de MajorGeeks, tu peux le télécharger ici!

    [#FF0000]Aide
    :
  • Comment utiliser MBAM.
  • Comment faire démarrer son ordinateur en mode sans échec.
    2 Novembre 2008 12:44:51

    j'ai deja utiliser ce logiciel avant de venir poster ici
    2 Novembre 2008 12:46:41

    Ok,

    Poste un nouveau rapport HijackThis alors.
    2 Novembre 2008 13:29:28

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 13:28:17, on 2008-11-02
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\PnkBstrA.exe
    C:\WINDOWS\system32\PSIService.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\WINDOWS\system32\SLEE503.exe
    C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\Windows Live\Messenger\usnsvc.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.11.30.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
    O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O3 - Toolbar: Copernic Desktop Search 2 - {968631B6-4729-440D-9BF4-251F5593EC9A} - C:\Program Files\Copernic Desktop Search 2\DesktopSearchBand201013011.dll
    O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
    O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
    O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
    O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\WINDOWS\system32\shdocvw.dll
    O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\WINDOWS\system32\shdocvw.dll
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
    O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by141fd.bay141.hotmail.msn.com/resources/MsnPUpl...
    O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) -
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
    O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Unknown owner - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE (file missing)
    O23 - Service: Boonty Games - Unknown owner - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe (file missing)
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
    O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
    O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
    O23 - Service: SiSoftware Database Agent Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\Win32\RpcDataSrv.exe
    O23 - Service: SiSoftware Sandra Agent Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\RpcSandraSrv.exe
    O23 - Service: Steganos Live Encryption Engine (Version 503) [Service] (SLEE_503_SERVICE) - Unknown owner - C:\WINDOWS\system32\SLEE503.exe
    O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
    O23 - Service: StarOpen - Unknown owner - (no file)
    O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

    --
    End of file - 10045 bytes

    voila !
    2 Novembre 2008 14:58:34

    Re,

    1)Clique sur le menu Demarrer /Panneau de configuration/Options des dossiers/ puis dans l'onglet Affichage
    - Coche Afficher les fichiers et dossiers cachés
    - Décoche Masquer les extensions des fichiers dont le type est connu
    - Décoche Masquer les fichiers protégés du système d'exploitation (recommandé)
    clique sur Appliquer, puis OK.

    N'oublie pas de recacher à nouveau les fichiers cachés et protégés du système d'exploitation en fin de désinfection, c'est important

    Sélectionne l’intégralité du cadre ci-dessous :
    @echo off & cls
    sc stop StarOpen
    sc delete StarOpen
    sc stop "Boonty Games"
    sc delete "Boonty Games"
    exit

    Copie/colle le dans le Bloc-notes (Démarrer\Tous les programmes\Accessoires\Bloc-notes.)
    Enregistre le sur ton Bureau sous le nom de Correction.bat
    Double-clique dessus.
    Le programme va s'ouvrir et se fermer, ne t'étonne pas ! ;) 

    2) Désinstalle via Ajout/Suppression de Programmes (si présents) :
  • Avast!

    Télécharge et exécute le Désinstalleur d'Avast!.
    Ceci effacera la majorité des traces du produit Avast! d'Alwil Software.

    Télécharge Ccleaner sur ton Bureau.

  • Clique sur "download the latest version"
  • Installe-le en laissant seulement les options suivantes cochées :
    - Ajouter un raccourci sur le Bureau
    - Contrôler automatiquement les mises à jour de CCleaner
  • Lance le Nettoyage
  • Clique sur Chercher des erreurs et sauvegarde si tu le souhaites.

    Aide : Comment utiliser CCleaner.

    ***************

    Télécharge AntiVir sur ton Bureau.

  • Double clique sur l'exécutable téléchargé pour lancer l'installation.
  • A la fin de l'installation, clique sur Finish.
  • Ouvre Antivir, assure-toi qu’il soit bien à jour !
  • Dans l'onglet Local Protection, choisis Scanner.
  • Active la recherche de rootkits via le + de rootkit search, puis dans manual selection, coche tout (tes partitions de disque dur).
  • Clique sur la loupe du milieu pour lancer le scan en tant qu'Administrateur.
  • Poste moi le rapport généré : Pour cela, clique sur l'onglet Overview, puis choisis Reports, tu trouveras son rapport..

    Note : Pour une éradication des menaces plus efficace, lance le scan en mode sans échec.

    Pourquoi changer ? Avast vs Antivir.

    Aide : Comment installer et utiliser AntiVir.
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS