Bonjour j'ai telecharger random,s system et double cliqué et continu a l'ecran disclaimer
il me donne

Autolt Error
Line 1
Error:Subscript used with non-array variable

il me donne aucun rapport

Bonjour Voici rapport combofix

ComboFix 08-12-28.01 - Andrefi 2008-12-29 20:05:24.3 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.511.138 [GMT -5:00]
Lancé depuis: c:\documents and settings\Andrefi\Bureau\C-Fix.exe
AV: ESET NOD32 antivirus system 2.70 *On-access scanning disabled* (Outdated)
FW: Kerio Personal Firewall *disabled*
* Un nouveau point de restauration a été créé
* Resident AV is active


[COLOR=RED][B]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !!/B/COLOR
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\BM172d7dd3.txt
c:\windows\Downloaded Program Files\setup.inf

.
((((((((((((((((((((((((((((( Fichiers créés du 2008-11-28 au 2008-12-30 ))))))))))))))))))))))))))))))))))))
.

2008-12-29 15:13 . 2008-12-29 15:13 <REP> d-------- c:\documents and settings\NetworkService\Application Data\Acronis
2008-12-29 15:09 . 2008-12-29 15:09 <REP> d-------- c:\documents and settings\All Users\Application Data\Acronis
2008-12-29 15:09 . 2008-12-29 15:09 441,760 --a------ c:\windows\system32\drivers\timntr.sys
2008-12-29 15:09 . 2008-12-29 15:09 368,736 --a------ c:\windows\system32\drivers\tdrpman.sys
2008-12-29 15:09 . 2008-12-29 15:09 129,248 --a------ c:\windows\system32\drivers\snapman.sys
2008-12-29 15:09 . 2008-12-29 15:09 44,384 --a------ c:\windows\system32\drivers\tifsfilt.sys
2008-12-29 15:08 . 2008-12-29 15:08 <REP> d-------- c:\program files\Fichiers communs\Acronis
2008-12-29 15:08 . 2008-12-29 15:08 <REP> d-------- c:\program files\Acronis
2008-12-29 01:40 . 2008-12-29 01:40 <REP> d-------- C:\rsit
2008-12-27 14:29 . 2008-06-19 17:24 28,544 --a------ c:\windows\system32\drivers\pavboot.sys
2008-12-27 14:01 . 2008-12-27 14:01 <REP> d-------- c:\program files\Panda Security
2008-12-02 11:58 . 2008-12-02 12:00 <REP> d-------- C:\hegames
2008-11-20 10:57 . 2008-11-20 10:59 <REP> d-------- c:\windows\system32\NtmsData
2008-11-18 20:36 . 2008-11-18 20:36 268 --ah----- C:\sqmdata12.sqm
2008-11-18 20:36 . 2008-11-18 20:36 244 --ah----- C:\sqmnoopt12.sqm
2008-11-08 10:36 . 2008-11-08 10:36 268 --ah----- C:\sqmdata11.sqm
2008-11-08 10:36 . 2008-11-08 10:36 244 --ah----- C:\sqmnoopt11.sqm

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-12-30 00:59 --------- d---a-w c:\documents and settings\All Users\Application Data\TEMP
2008-12-29 08:32 --------- d-----w c:\documents and settings\Andrefi\Application Data\SlipStream
2008-12-27 21:48 --------- d-----w c:\program files\SpywareBlaster
2007-12-13 03:35 316 ----a-w c:\documents and settings\Andrefi\Application Data\wklnhst.dat
2007-07-15 06:03 87,608 ----a-w c:\documents and settings\Andrefi\Application Data\ezpinst.exe
2007-07-15 06:03 47,360 ----a-w c:\documents and settings\Andrefi\Application Data\pcouffin.sys
.

((((((((((((((((((((((((((((( snapshot@2008-03-11_12.47.23.00 )))))))))))))))))))))))))))))))))))))))))
.
+ 2006-07-14 15:52:22 121,856 ----a-w c:\windows\$hf_mig$\KB915865\SP2QFE\xmllite.dll
+ 2005-10-12 23:12:25 14,048 ----a-w c:\windows\$hf_mig$\KB915865\spmsg.dll
+ 2005-10-12 23:12:26 213,216 ----a-w c:\windows\$hf_mig$\KB915865\spuninst.exe
+ 2005-10-12 23:12:25 22,752 ----a-w c:\windows\$hf_mig$\KB915865\update\spcustom.dll
+ 2005-10-12 23:12:28 716,000 ----a-w c:\windows\$hf_mig$\KB915865\update\update.exe
+ 2005-10-12 23:12:33 371,424 ----a-w c:\windows\$hf_mig$\KB915865\update\updspapi.dll
+ 2005-10-12 23:12:26 213,216 -c----w c:\windows\$NtUninstallKB915865$\spuninst\spuninst.exe
+ 2005-10-12 23:12:33 371,424 -c----w c:\windows\$NtUninstallKB915865$\spuninst\updspapi.dll
+ 2008-03-12 21:53:50 45,056 ----a-w c:\windows\BDOSCAN8\avxdisk.dll
+ 2008-03-12 21:53:52 10,240 ----a-w c:\windows\BDOSCAN8\avxs.dll
+ 2008-03-12 21:53:56 27,136 ----a-w c:\windows\BDOSCAN8\avxt.dll
+ 2008-03-12 21:55:50 181,760 ----a-w c:\windows\BDOSCAN8\bdcore.dll
+ 2008-01-09 20:01:48 118,784 ----a-w c:\windows\BDOSCAN8\bdupd.dll
+ 2008-01-09 20:01:48 53,248 ----a-w c:\windows\BDOSCAN8\ipsupd.dll
+ 2008-03-12 21:56:22 142,848 ----a-w c:\windows\BDOSCAN8\libfn.dll
+ 2008-03-12 21:54:09 86,016 ----a-w c:\windows\BDOSCAN8\librtvr.dll
+ 2008-01-09 20:01:48 53,248 ----a-w c:\windows\bdoscandel.exe
+ 2008-01-09 20:01:48 118,784 ----a-w c:\windows\Downloaded Program Files\bdupd.dll
+ 2008-01-09 20:01:48 53,248 ----a-w c:\windows\Downloaded Program Files\ipsupd.dll
- 2000-08-31 13:00:00 163,328 ----a-w c:\windows\erdnt\Hiv-backup\ERDNT.EXE
+ 2005-10-21 01:02:28 163,328 ----a-w c:\windows\erdnt\Hiv-backup\ERDNT.EXE
- 2000-08-31 13:00:00 163,328 ----a-w c:\windows\erdnt\subs\ERDNT.EXE
+ 2005-10-21 01:02:28 163,328 ----a-w c:\windows\erdnt\subs\ERDNT.EXE
+ 2000-08-31 13:00:00 89,504 ----a-w c:\windows\fdsv.exe
+ 2000-08-31 13:00:00 80,412 ----a-w c:\windows\grep.exe
+ 2004-08-10 12:00:00 61,440 -c----w c:\windows\ie7\admparse.dll
+ 2004-08-10 12:00:00 101,888 -c----w c:\windows\ie7\advpack.dll
+ 2004-08-10 12:00:00 1,017,344 -c----w c:\windows\ie7\browseui.dll
+ 2004-08-10 12:00:00 35,328 -c----w c:\windows\ie7\corpol.dll
+ 2004-08-10 12:00:00 28,672 -c----w c:\windows\ie7\custsat.dll
+ 2004-08-10 12:00:00 357,888 -c----w c:\windows\ie7\dxtmsft.dll
+ 2004-08-10 12:00:00 201,728 -c----w c:\windows\ie7\dxtrans.dll
+ 2004-08-10 12:00:00 55,808 -c----w c:\windows\ie7\extmgr.dll
+ 2004-08-10 12:00:00 38,912 -c----w c:\windows\ie7\hmmapi.dll
+ 2004-08-10 12:00:00 34,304 -c----w c:\windows\ie7\ie4uinit.exe
+ 2004-08-10 12:00:00 139,264 -c----w c:\windows\ie7\ieakeng.dll
+ 2004-08-10 12:00:00 221,696 -c----w c:\windows\ie7\ieaksie.dll
+ 2004-08-10 12:00:00 245,760 -c----w c:\windows\ie7\ieakui.dll
+ 2004-08-10 12:00:00 323,584 -c----w c:\windows\ie7\iedkcs32.dll
+ 2004-08-10 12:00:00 18,432 -c----w c:\windows\ie7\iedw.exe
+ 2004-08-10 12:00:00 81,920 -c----w c:\windows\ie7\ieencode.dll
+ 2004-08-10 12:00:00 249,344 -c----w c:\windows\ie7\iepeers.dll
+ 2004-08-10 12:00:00 49,152 -c----w c:\windows\ie7\iernonce.dll
+ 2004-08-10 12:00:00 63,488 -c----w c:\windows\ie7\iesetup.dll
+ 2004-08-10 12:00:00 93,184 -c----w c:\windows\ie7\iexplore.exe
+ 2004-08-10 12:00:00 35,840 -c----w c:\windows\ie7\imgutil.dll
+ 2004-08-10 12:00:00 96,768 -c----w c:\windows\ie7\inseng.dll
+ 2004-08-10 12:00:00 450,560 -c----w c:\windows\ie7\jscript.dll
+ 2004-08-10 12:00:00 15,872 -c----w c:\windows\ie7\jsproxy.dll
+ 2004-08-10 12:00:00 22,528 -c----w c:\windows\ie7\licmgr10.dll
+ 2004-08-10 12:00:00 29,184 -c----w c:\windows\ie7\mshta.exe
+ 2004-08-10 12:00:00 3,003,392 -c----w c:\windows\ie7\mshtml.dll
+ 2004-08-10 12:00:00 448,512 -c----w c:\windows\ie7\mshtmled.dll
+ 2004-08-10 12:00:00 57,344 -c----w c:\windows\ie7\mshtmler.dll
+ 2004-08-10 12:00:00 146,432 -c----w c:\windows\ie7\msls31.dll
+ 2004-08-10 12:00:00 146,432 -c----w c:\windows\ie7\msrating.dll
+ 2004-08-10 12:00:00 530,432 -c----w c:\windows\ie7\mstime.dll
+ 2004-08-10 12:00:00 97,280 -c----w c:\windows\ie7\occache.dll
+ 2004-08-10 12:00:00 39,424 -c----w c:\windows\ie7\pngfilt.dll
+ 2004-08-10 12:00:00 1,483,776 -c----w c:\windows\ie7\shdocvw.dll
+ 2004-08-10 12:00:00 474,112 -c----w c:\windows\ie7\shlwapi.dll
+ 2008-03-15 12:42:00 238,400 -c----w c:\windows\ie7\spuninst\iecustom.dll
+ 2006-09-06 22:43:28 216,800 -c----w c:\windows\ie7\spuninst\spuninst.exe
+ 2006-09-06 22:43:30 394,976 -c----w c:\windows\ie7\spuninst\updspapi.dll
+ 2004-08-10 12:00:00 37,888 -c----w c:\windows\ie7\url.dll
+ 2004-08-10 12:00:00 603,136 -c----w c:\windows\ie7\urlmon.dll
+ 2004-08-10 12:00:00 417,792 -c----w c:\windows\ie7\vbscript.dll
+ 2004-08-10 12:00:00 848,384 -c----w c:\windows\ie7\vgx.dll
+ 2004-08-10 12:00:00 281,600 -c----w c:\windows\ie7\webcheck.dll
+ 2004-08-10 12:00:00 660,480 -c----w c:\windows\ie7\wininet.dll
+ 2007-07-15 22:33:34 2,862 ----a-r c:\windows\Installer\{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}\Readme_icon.exe
+ 2007-07-15 22:33:34 2,862 ----a-r c:\windows\Installer\{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}\Uninstall_icon.exe
- 2000-08-31 13:00:00 28,160 ----a-w c:\windows\Nircmd.exe
+ 2000-08-31 13:00:00 28,672 ----a-w c:\windows\Nircmd.exe
+ 2007-07-20 14:19:54 2,674 ----a-w c:\windows\pchealth\helpctr\PackageStore\SkuStore.bin
+ 2000-08-31 13:00:00 98,816 ----a-w c:\windows\sed.exe
+ 2000-08-31 13:00:00 161,792 ----a-w c:\windows\SWREG.exe
+ 2000-08-31 13:00:00 136,704 ----a-w c:\windows\SWSC.exe
+ 2000-08-31 13:00:00 212,480 ----a-w c:\windows\SWXCACLS.exe
+ 2004-08-10 12:00:00 2,000 ----a-w c:\windows\system\KEYBOARD.DRV
+ 2004-08-10 12:00:00 2,032 ----a-w c:\windows\system\MOUSE.DRV
+ 2004-08-10 12:00:00 1,744 ----a-w c:\windows\system\SOUND.DRV
+ 2004-08-10 12:00:00 2,176 ----a-w c:\windows\system\VGA.DRV
+ 2007-02-28 20:31:20 12,800 ----a-w c:\windows\system32\acrotls.dll
- 2004-08-10 12:00:00 61,440 ----a-w c:\windows\system32\admparse.dll
+ 2007-08-13 23:39:20 71,680 ----a-w c:\windows\system32\admparse.dll
- 2004-08-10 12:00:00 101,888 ----a-w c:\windows\system32\advpack.dll
+ 2007-08-13 23:39:00 123,904 ----a-w c:\windows\system32\advpack.dll
- 2004-08-10 12:00:00 1,017,344 ----a-w c:\windows\system32\browseui.dll
+ 2006-09-23 18:12:56 1,022,976 ----a-w c:\windows\system32\browseui.dll
- 2004-08-10 12:00:00 35,328 ----a-w c:\windows\system32\corpol.dll
+ 2007-08-13 23:42:54 17,408 ----a-w c:\windows\system32\corpol.dll
+ 2004-08-10 12:00:00 1,788 ----a-w c:\windows\system32\Dcache.bin
- 2004-08-10 12:00:00 61,440 -c--a-w c:\windows\system32\dllcache\admparse.dll
+ 2007-08-13 23:39:20 71,680 -c--a-w c:\windows\system32\dllcache\admparse.dll
- 2004-08-10 12:00:00 101,888 -c--a-w c:\windows\system32\dllcache\advpack.dll
+ 2007-08-13 23:39:00 123,904 -c--a-w c:\windows\system32\dllcache\advpack.dll
- 2004-08-10 12:00:00 1,017,344 -c--a-w c:\windows\system32\dllcache\browseui.dll
+ 2006-09-23 18:12:56 1,022,976 -c--a-w c:\windows\system32\dllcache\browseui.dll
- 2004-08-10 12:00:00 35,328 -c--a-w c:\windows\system32\dllcache\corpol.dll
+ 2007-08-13 23:42:54 17,408 -c--a-w c:\windows\system32\dllcache\corpol.dll
- 2004-08-10 12:00:00 28,672 -c--a-w c:\windows\system32\dllcache\custsat.dll
+ 2007-08-13 23:54:10 33,792 -c--a-w c:\windows\system32\dllcache\custsat.dll
+ 2004-08-04 03:07:58 2,944 -c--a-w c:\windows\system32\dllcache\drmkaud.sys
- 2004-08-10 12:00:00 357,888 -c--a-w c:\windows\system32\dllcache\dxtmsft.dll
+ 2007-08-13 23:35:46 346,624 -c--a-w c:\windows\system32\dllcache\dxtmsft.dll
- 2004-08-10 12:00:00 201,728 -c--a-w c:\windows\system32\dllcache\dxtrans.dll
+ 2007-08-13 23:35:38 214,528 -c--a-w c:\windows\system32\dllcache\dxtrans.dll
- 2004-08-10 12:00:00 55,808 -c--a-w c:\windows\system32\dllcache\extmgr.dll
+ 2007-08-13 23:54:10 131,584 -c--a-w c:\windows\system32\dllcache\extmgr.dll
- 2004-08-10 12:00:00 38,912 -c--a-w c:\windows\system32\dllcache\hmmapi.dll
+ 2007-08-13 23:18:02 60,416 -c--a-w c:\windows\system32\dllcache\hmmapi.dll
- 2004-08-10 12:00:00 34,304 -c--a-w c:\windows\system32\dllcache\ie4uinit.exe
+ 2007-08-13 23:39:06 54,784 -c--a-w c:\windows\system32\dllcache\ie4uinit.exe
- 2004-08-10 12:00:00 139,264 -c--a-w c:\windows\system32\dllcache\ieakeng.dll
+ 2007-08-13 23:39:26 152,064 -c--a-w c:\windows\system32\dllcache\ieakeng.dll
- 2004-08-10 12:00:00 221,696 -c--a-w c:\windows\system32\dllcache\ieaksie.dll
+ 2007-08-13 23:39:54 229,376 -c--a-w c:\windows\system32\dllcache\ieaksie.dll
- 2004-08-10 12:00:00 245,760 -c--a-w c:\windows\system32\dllcache\ieakui.dll
+ 2007-08-13 22:56:54 161,792 -c--a-w c:\windows\system32\dllcache\ieakui.dll
- 2004-08-10 12:00:00 323,584 -c--a-w c:\windows\system32\dllcache\iedkcs32.dll
+ 2007-08-13 23:39:50 382,976 -c--a-w c:\windows\system32\dllcache\iedkcs32.dll
- 2004-08-10 12:00:00 18,432 -c--a-w c:\windows\system32\dllcache\iedw.exe
+ 2007-08-13 23:44:02 69,120 -c--a-w c:\windows\system32\dllcache\iedw.exe
- 2004-08-10 12:00:00 81,920 -c--a-w c:\windows\system32\dllcache\ieencode.dll
+ 2007-08-13 23:45:18 78,336 -c--a-w c:\windows\system32\dllcache\ieencode.dll
- 2004-08-10 12:00:00 249,344 -c--a-w c:\windows\system32\dllcache\iepeers.dll
+ 2007-08-13 23:54:10 191,488 -c--a-w c:\windows\system32\dllcache\iepeers.dll
- 2004-08-10 12:00:00 49,152 -c--a-w c:\windows\system32\dllcache\iernonce.dll
+ 2007-08-13 23:39:10 43,008 -c--a-w c:\windows\system32\dllcache\iernonce.dll
- 2004-08-10 12:00:00 63,488 -c--a-w c:\windows\system32\dllcache\iesetup.dll
+ 2007-08-13 23:39:12 55,296 -c--a-w c:\windows\system32\dllcache\iesetup.dll
- 2004-08-10 12:00:00 93,184 -c--a-w c:\windows\system32\dllcache\iexplore.exe
+ 2007-08-13 23:43:56 622,080 -c--a-w c:\windows\system32\dllcache\iexplore.exe
- 2004-08-10 12:00:00 35,840 -c--a-w c:\windows\system32\dllcache\imgutil.dll
+ 2007-08-13 23:36:06 36,352 -c--a-w c:\windows\system32\dllcache\imgutil.dll
- 2004-08-10 12:00:00 96,768 -c--a-w c:\windows\system32\dllcache\inseng.dll
+ 2007-08-13 23:39:02 92,672 -c--a-w c:\windows\system32\dllcache\inseng.dll
- 2004-08-10 12:00:00 450,560 -c--a-w c:\windows\system32\dllcache\jscript.dll
+ 2007-08-13 23:38:04 491,520 -c--a-w c:\windows\system32\dllcache\jscript.dll
- 2004-08-10 12:00:00 15,872 -c--a-w c:\windows\system32\dllcache\jsproxy.dll
+ 2007-08-13 23:54:10 27,136 -c--a-w c:\windows\system32\dllcache\jsproxy.dll
+ 2004-08-10 12:00:00 2,000 -c--a-w c:\windows\system32\dllcache\keyboard.drv
- 2004-08-10 12:00:00 22,528 -c--a-w c:\windows\system32\dllcache\licmgr10.dll
+ 2007-08-13 23:44:18 40,960 -c--a-w c:\windows\system32\dllcache\licmgr10.dll
+ 2004-08-10 12:00:00 2,560 -c--a-w c:\windows\system32\dllcache\lz32.dll
+ 2004-08-10 12:00:00 2,032 -c--a-w c:\windows\system32\dllcache\mouse.drv
- 2004-08-10 12:00:00 29,184 -c--a-w c:\windows\system32\dllcache\mshta.exe
+ 2007-08-13 23:32:30 45,568 -c--a-w c:\windows\system32\dllcache\mshta.exe
- 2004-08-10 12:00:00 3,003,392 -c--a-w c:\windows\system32\dllcache\mshtml.dll
+ 2007-08-13 23:54:12 3,578,368 -c--a-w c:\windows\system32\dllcache\mshtml.dll
- 2004-08-10 12:00:00 448,512 -c--a-w c:\windows\system32\dllcache\mshtmled.dll
+ 2007-08-13 23:54:10 475,648 -c--a-w c:\windows\system32\dllcache\mshtmled.dll
- 2004-08-10 12:00:00 57,344 -c--a-w c:\windows\system32\dllcache\mshtmler.dll
+ 2007-08-13 23:01:12 48,128 -c--a-w c:\windows\system32\dllcache\mshtmler.dll
- 2004-08-10 12:00:00 146,432 -c--a-w c:\windows\system32\dllcache\msls31.dll
+ 2007-08-13 23:54:10 156,160 -c--a-w c:\windows\system32\dllcache\msls31.dll
- 2004-08-10 12:00:00 146,432 -c--a-w c:\windows\system32\dllcache\msrating.dll
+ 2007-08-13 23:44:26 192,000 -c--a-w c:\windows\system32\dllcache\msrating.dll
- 2004-08-10 12:00:00 530,432 -c--a-w c:\windows\system32\dllcache\mstime.dll
+ 2007-08-13 23:54:10 670,720 -c--a-w c:\windows\system32\dllcache\mstime.dll
+ 2004-08-10 12:00:00 2,944 -c--a-w c:\windows\system32\dllcache\null.sys
- 2004-08-10 12:00:00 97,280 -c--a-w c:\windows\system32\dllcache\occache.dll
+ 2007-08-13 23:44:06 101,376 -c--a-w c:\windows\system32\dllcache\occache.dll
- 2004-08-10 12:00:00 39,424 -c--a-w c:\windows\system32\dllcache\pngfilt.dll
+ 2007-08-13 23:36:12 44,544 -c--a-w c:\windows\system32\dllcache\pngfilt.dll
- 2004-08-10 12:00:00 1,483,776 -c--a-w c:\windows\system32\dllcache\shdocvw.dll
+ 2006-09-23 18:12:56 1,497,088 -c--a-w c:\windows\system32\dllcache\shdocvw.dll
- 2004-08-10 12:00:00 474,112 -c--a-w c:\windows\system32\dllcache\shlwapi.dll
+ 2006-09-23 18:12:56 474,624 -c--a-w c:\windows\system32\dllcache\shlwapi.dll
+ 2004-08-10 12:00:00 1,744 -c--a-w c:\windows\system32\dllcache\sound.drv
- 2004-08-10 12:00:00 37,888 -c--a-w c:\windows\system32\dllcache\url.dll
+ 2007-08-13 23:44:30 105,984 -c--a-w c:\windows\system32\dllcache\url.dll
- 2004-08-10 12:00:00 603,136 -c--a-w c:\windows\system32\dllcache\urlmon.dll
+ 2007-08-13 23:54:10 1,162,240 -c--a-w c:\windows\system32\dllcache\urlmon.dll
- 2004-08-10 12:00:00 417,792 -c--a-w c:\windows\system32\dllcache\vbscript.dll
+ 2007-08-13 23:54:10 413,696 -c--a-w c:\windows\system32\dllcache\vbscript.dll
+ 2004-08-10 12:00:00 2,176 -c--a-w c:\windows\system32\dllcache\vga.drv
- 2004-08-10 12:00:00 848,384 -c--a-w c:\windows\system32\dllcache\vgx.dll
+ 2007-08-13 23:54:10 765,952 -c--a-w c:\windows\system32\dllcache\VGX.dll
- 2004-08-10 12:00:00 281,600 -c--a-w c:\windows\system32\dllcache\webcheck.dll
+ 2007-08-13 23:54:10 231,424 -c--a-w c:\windows\system32\dllcache\webcheck.dll
- 2004-08-10 12:00:00 660,480 -c--a-w c:\windows\system32\dllcache\wininet.dll
+ 2007-08-13 23:54:10 818,688 -c--a-w c:\windows\system32\dllcache\wininet.dll
+ 2004-08-10 12:00:00 2,864 -c--a-w c:\windows\system32\dllcache\winsock.dll
+ 2004-08-10 12:00:00 2,112 -c--a-w c:\windows\system32\dllcache\winspool.exe
+ 2004-08-10 12:00:00 2,736 -c--a-w c:\windows\system32\dllcache\wowdeb.exe
+ 2006-10-05 02:42:42 2,432 ------w c:\windows\system32\drivers\cdr4_xp.sys
+ 2006-10-05 02:42:42 2,560 ------w c:\windows\system32\drivers\cdralw2k.sys
+ 2004-08-04 03:07:58 2,944 ----a-w c:\windows\system32\drivers\drmkaud.sys
+ 2005-09-26 16:05:06 286,720 ----a-w c:\windows\system32\drivers\fwdrv.sys
+ 2005-09-26 16:05:06 81,920 ----a-w c:\windows\system32\drivers\khips.sys
+ 2004-08-10 12:00:00 2,944 ----a-w c:\windows\system32\drivers\null.sys
- 2004-08-10 12:00:00 357,888 ----a-w c:\windows\system32\dxtmsft.dll
+ 2007-08-13 23:35:46 346,624 ----a-w c:\windows\system32\dxtmsft.dll
- 2004-08-10 12:00:00 201,728 ----a-w c:\windows\system32\dxtrans.dll
+ 2007-08-13 23:35:38 214,528 ----a-w c:\windows\system32\dxtrans.dll
- 2004-08-10 12:00:00 55,808 ----a-w c:\windows\system32\extmgr.dll
+ 2007-08-13 23:54:10 131,584 ----a-w c:\windows\system32\extmgr.dll
+ 2007-08-13 23:36:26 61,952 ------w c:\windows\system32\icardie.dll
- 2004-08-10 12:00:00 34,304 ----a-w c:\windows\system32\ie4uinit.exe
+ 2007-08-13 23:39:06 54,784 ----a-w c:\windows\system32\ie4uinit.exe
- 2004-08-10 12:00:00 139,264 ----a-w c:\windows\system32\ieakeng.dll
+ 2007-08-13 23:39:26 152,064 ----a-w c:\windows\system32\ieakeng.dll
- 2004-08-10 12:00:00 221,696 ----a-w c:\windows\system32\ieaksie.dll
+ 2007-08-13 23:39:54 229,376 ----a-w c:\windows\system32\ieaksie.dll
- 2004-08-10 12:00:00 245,760 ----a-w c:\windows\system32\ieakui.dll
+ 2007-08-13 22:56:54 161,792 ----a-w c:\windows\system32\ieakui.dll
+ 2007-02-12 21:10:12 2,451,312 ------w c:\windows\system32\ieapfltr.dat
+ 2007-07-11 17:27:48 383,488 ------w c:\windows\system32\ieapfltr.dll
- 2004-08-10 12:00:00 323,584 ----a-w c:\windows\system32\iedkcs32.dll
+ 2007-08-13 23:39:50 382,976 ----a-w c:\windows\system32\iedkcs32.dll
- 2004-08-10 12:00:00 81,920 ----a-w c:\windows\system32\ieencode.dll
+ 2007-08-13 23:45:18 78,336 ----a-w c:\windows\system32\ieencode.dll
+ 2007-08-13 23:54:10 6,049,280 ------w c:\windows\system32\ieframe.dll
- 2004-08-10 12:00:00 249,344 ----a-w c:\windows\system32\iepeers.dll
+ 2007-08-13 23:54:10 191,488 ----a-w c:\windows\system32\iepeers.dll
- 2004-08-10 12:00:00 49,152 ----a-w c:\windows\system32\iernonce.dll
+ 2007-08-13 23:39:10 43,008 ----a-w c:\windows\system32\iernonce.dll
+ 2007-08-13 23:34:04 266,752 ------w c:\windows\system32\iertutil.dll
- 2004-08-10 12:00:00 63,488 ----a-w c:\windows\system32\iesetup.dll
+ 2007-08-13 23:39:12 55,296 ----a-w c:\windows\system32\iesetup.dll
+ 2007-08-13 23:39:10 13,312 ----a-w c:\windows\system32\ieudinit.exe
+ 2007-08-13 23:54:10 180,736 ------w c:\windows\system32\ieui.dll
- 2004-08-10 12:00:00 35,840 ----a-w c:\windows\system32\imgutil.dll
+ 2007-08-13 23:36:06 36,352 ----a-w c:\windows\system32\imgutil.dll
- 2004-08-10 12:00:00 96,768 ----a-w c:\windows\system32\inseng.dll
+ 2007-08-13 23:39:02 92,672 ----a-w c:\windows\system32\inseng.dll
- 2005-11-10 15:27:06 49,248 ----a-w c:\windows\system32\java.exe
+ 2008-06-10 05:21:01 135,168 ----a-w c:\windows\system32\java.exe
- 2005-11-10 15:27:16 49,250 ----a-w c:\windows\system32\javaw.exe
+ 2008-06-10 05:21:04 135,168 ----a-w c:\windows\system32\javaw.exe
- 2005-11-10 17:03:54 127,078 ----a-w c:\windows\system32\javaws.exe
+ 2008-06-10 06:32:34 139,264 ----a-w c:\windows\system32\javaws.exe
- 2004-08-10 12:00:00 450,560 ----a-w c:\windows\system32\jscript.dll
+ 2007-08-13 23:38:04 491,520 ----a-w c:\windows\system32\jscript.dll
- 2004-08-10 12:00:00 15,872 ----a-w c:\windows\system32\jsproxy.dll
+ 2007-08-13 23:54:10 27,136 ----a-w c:\windows\system32\jsproxy.dll
+ 2004-08-10 12:00:00 2,000 ----a-w c:\windows\system32\keyboard.drv
- 2004-08-10 12:00:00 22,528 ----a-w c:\windows\system32\licmgr10.dll
+ 2007-08-13 23:44:18 40,960 ----a-w c:\windows\system32\licmgr10.dll
+ 2004-08-10 12:00:00 2,560 ----a-w c:\windows\system32\lz32.dll
- 2007-05-02 16:32:04 182,512 ----a-w c:\windows\system32\Macromed\Director\swdir.dll
+ 2008-01-07 16:26:46 181,672 ----a-w c:\windows\system32\Macromed\Director\swdir.dll
- 2007-11-20 21:52:00 2,884,992 ----a-w c:\windows\system32\Macromed\Flash\NPSWF32.dll
+ 2008-03-25 03:21:18 2,889,088 ----a-w c:\windows\system32\Macromed\Flash\NPSWF32.dll
- 2007-11-20 21:52:00 218,496 ----a-w c:\windows\system32\Macromed\Flash\NPSWF32_FlashUtil.exe
+ 2008-03-25 03:21:20 218,496 ----a-w c:\windows\system32\Macromed\Flash\NPSWF32_FlashUtil.exe
+ 2008-05-31 10:31:57 70,264 ----a-w c:\windows\system32\Macromed\Flash\uninstall_plugin.exe
- 2007-04-30 21:11:28 585,728 ----a-w c:\windows\system32\Macromed\Shockwave 10\Control.dll
+ 2008-01-03 23:19:34 581,632 ----a-w c:\windows\system32\Macromed\Shockwave 10\Control.dll
- 2007-04-30 20:08:40 1,490,944 ----a-w c:\windows\system32\Macromed\Shockwave 10\dirapi.dll
+ 2008-01-03 23:01:46 1,490,944 ----a-w c:\windows\system32\Macromed\Shockwave 10\dirapi.dll
- 2007-04-30 20:30:38 24,576 ----a-w c:\windows\system32\Macromed\Shockwave 10\DynaPlayer.dll
+ 2008-01-03 23:20:14 24,576 ----a-w c:\windows\system32\Macromed\Shockwave 10\DynaPlayer.dll
- 2007-04-30 20:47:02 1,089,024 ----a-w c:\windows\system32\Macromed\Shockwave 10\gi.dll
+ 2008-01-03 23:39:06 1,113,600 ----a-w c:\windows\system32\Macromed\Shockwave 10\gi.dll
- 2007-04-30 19:47:42 52,288 ----a-w c:\windows\system32\Macromed\Shockwave 10\gtapi.dll
+ 2008-01-03 22:46:46 52,288 ----a-w c:\windows\system32\Macromed\Shockwave 10\gtapi.dll
- 2007-04-30 20:05:32 606,208 ----a-w c:\windows\system32\Macromed\Shockwave 10\iml32.dll
+ 2008-01-03 22:59:14 606,208 ----a-w c:\windows\system32\Macromed\Shockwave 10\iml32.dll
- 2007-04-30 21:11:22 339,968 ----a-w c:\windows\system32\Macromed\Shockwave 10\Plugin.dll
+ 2008-01-03 23:18:56 339,968 ----a-w c:\windows\system32\Macromed\Shockwave 10\Plugin.dll
- 2007-04-30 21:11:24 483,328 ----a-w c:\windows\system32\Macromed\Shockwave 10\PluginPing.dll
+ 2008-01-03 23:19:06 475,136 ----a-w c:\windows\system32\Macromed\Shockwave 10\PluginPing.dll
- 2007-04-30 21:11:30 180,224 ----a-w c:\windows\system32\Macromed\Shockwave 10\Proj.dll
+ 2008-01-03 23:11:48 180,224 ----a-w c:\windows\system32\Macromed\Shockwave 10\Proj.dll
+ 2008-01-07 16:26:28 390,568 ----a-w c:\windows\system32\Macromed\Shockwave 10\SwHelper_1030024.exe
- 2007-04-30 20:33:00 77,824 ----a-w c:\windows\system32\Macromed\Shockwave 10\SwInit.exe
+ 2008-01-03 23:22:06 77,824 ----a-w c:\windows\system32\Macromed\Shockwave 10\SwInit.exe
- 2007-04-30 20:29:00 86,016 ----a-w c:\windows\system32\Macromed\Shockwave 10\SwMenu.dll
+ 2008-01-03 23:18:50 86,016 ----a-w c:\windows\system32\Macromed\Shockwave 10\SwMenu.dll
- 2007-04-30 20:33:00 98,304 ----a-w c:\windows\system32\Macromed\Shockwave 10\SwOnce.dll
+ 2008-01-03 23:22:08 98,304 ----a-w c:\windows\system32\Macromed\Shockwave 10\SwOnce.dll
+ 2008-01-03 22:46:44 50,808 ----a-w c:\windows\system32\Macromed\Shockwave 10\SYMCCHECKER.DLL
- 1999-06-25 14:55:30 149,504 ----a-w c:\windows\system32\Macromed\Shockwave 10\UNWISE.EXE
+ 1999-06-25 15:55:30 149,504 ----a-w c:\windows\system32\Macromed\Shockwave 10\UNWISE.EXE
+ 2004-08-10 12:00:00 2,032 ----a-w c:\windows\system32\mouse.drv
+ 2007-08-13 23:54:10 458,752 ------w c:\windows\system32\msfeeds.dll
+ 2007-08-13 23:54:10 50,688 ------w c:\windows\system32\msfeedsbs.dll
+ 2007-08-13 23:36:40 12,288 ------w c:\windows\system32\msfeedssync.exe
- 2004-08-10 12:00:00 29,184 ----a-w c:\windows\system32\mshta.exe
+ 2007-08-13 23:32:30 45,568 ----a-w c:\windows\system32\mshta.exe
- 2004-08-10 12:00:00 3,003,392 ----a-w c:\windows\system32\mshtml.dll
+ 2007-08-13 23:54:12 3,578,368 ----a-w c:\windows\system32\mshtml.dll
- 2004-08-10 12:00:00 448,512 ----a-w c:\windows\system32\mshtmled.dll
+ 2007-08-13 23:54:10 475,648 ----a-w c:\windows\system32\mshtmled.dll
- 2004-08-10 12:00:00 57,344 ----a-w c:\windows\system32\mshtmler.dll
+ 2007-08-13 23:01:12 48,128 ----a-w c:\windows\system32\mshtmler.dll
- 2004-08-10 12:00:00 146,432 ----a-w c:\windows\system32\msls31.dll
+ 2007-08-13 23:54:10 156,160 ----a-w c:\windows\system32\msls31.dll
- 2004-08-10 12:00:00 146,432 ----a-w c:\windows\system32\msrating.dll
+ 2007-08-13 23:44:26 192,000 ----a-w c:\windows\system32\msrating.dll
- 2004-08-10 12:00:00 530,432 ----a-w c:\windows\system32\mstime.dll
+ 2007-08-13 23:54:10 670,720 ----a-w c:\windows\system32\mstime.dll
+ 2004-08-10 12:00:00 2,656 ----a-w c:\windows\system32\netware.drv
+ 2008-03-15 12:42:06 20,480 ----a-w c:\windows\system32\normaliz.dll
- 2004-08-10 12:00:00 97,280 ----a-w c:\windows\system32\occache.dll
+ 2007-08-13 23:44:06 101,376 ----a-w c:\windows\system32\occache.dll
- 2007-11-30 21:07:39 46,924 ----a-w c:\windows\system32\perfc009.dat
+ 2008-10-26 16:32:14 46,924 ----a-w c:\windows\system32\perfc009.dat
- 2007-11-30 21:07:39 56,490 ----a-w c:\windows\system32\perfc00C.dat
+ 2008-10-26 16:32:14 56,490 ----a-w c:\windows\system32\perfc00C.dat
- 2007-11-30 21:07:39 367,980 ----a-w c:\windows\system32\perfh009.dat
+ 2008-10-26 16:32:14 367,980 ----a-w c:\windows\system32\perfh009.dat
- 2007-11-30 21:07:39 430,582 ----a-w c:\windows\system32\perfh00C.dat
+ 2008-10-26 16:32:14 430,582 ----a-w c:\windows\system32\perfh00C.dat
- 2004-08-10 12:00:00 39,424 ----a-w c:\windows\system32\pngfilt.dll
+ 2007-08-13 23:36:12 44,544 ----a-w c:\windows\system32\pngfilt.dll
+ 2007-02-16 21:43:12 8,704 ----a-w c:\windows\system32\relog_ap.dll
- 2004-08-10 12:00:00 1,483,776 ----a-w c:\windows\system32\shdocvw.dll
+ 2006-09-23 18:12:56 1,497,088 ----a-w c:\windows\system32\shdocvw.dll
- 2004-08-10 12:00:00 474,112 ----a-w c:\windows\system32\shlwapi.dll
+ 2006-09-23 18:12:56 474,624 ----a-w c:\windows\system32\shlwapi.dll
+ 2007-12-06 03:23:52 222,488 ----a-w c:\windows\system32\snapapi.dll
+ 2004-08-10 12:00:00 1,744 ----a-w c:\windows\system32\sound.drv
- 2006-04-03 15:40:10 14,048 ------w c:\windows\system32\spmsg.dll
+ 2005-10-12 23:12:25 14,048 ------w c:\windows\system32\spmsg.dll
+ 2006-09-06 22:43:30 22,752 ----a-r c:\windows\system32\spupdsvc.exe
- 2004-08-10 12:00:00 37,888 ----a-w c:\windows\system32\url.dll
+ 2007-08-13 23:44:30 105,984 ----a-w c:\windows\system32\url.dll
- 2004-08-10 12:00:00 603,136 ----a-w c:\windows\system32\urlmon.dll
+ 2007-08-13 23:54:10 1,162,240 ----a-w c:\windows\system32\urlmon.dll
- 2004-08-10 12:00:00 417,792 ----a-w c:\windows\system32\vbscript.dll
+ 2007-08-13 23:54:10 413,696 ----a-w c:\windows\system32\vbscript.dll
+ 2004-08-10 12:00:00 2,176 ----a-w c:\windows\system32\vga.drv
- 2004-08-10 12:00:00 281,600 ----a-w c:\windows\system32\webcheck.dll
+ 2007-08-13 23:54:10 231,424 ----a-w c:\windows\system32\webcheck.dll
+ 2007-08-13 23:45:16 206,336 ------w c:\windows\system32\WinFXDocObj.exe
- 2004-08-10 12:00:00 660,480 ----a-w c:\windows\system32\wininet.dll
+ 2007-08-13 23:54:10 818,688 ----a-w c:\windows\system32\wininet.dll
+ 2004-08-10 12:00:00 2,864 ----a-w c:\windows\system32\winsock.dll
+ 2004-08-10 12:00:00 2,112 ----a-w c:\windows\system32\winspool.exe
+ 2004-08-10 12:00:00 2,736 ----a-w c:\windows\system32\wowdeb.exe
+ 2006-07-14 15:51:51 121,856 ------w c:\windows\system32\xmllite.dll
+ 2000-08-31 13:00:00 49,152 ----a-w c:\windows\VFIND.exe
+ 2000-08-31 13:00:00 68,096 ----a-w c:\windows\zip.exe
.
-- Instantané actualisé --
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe" [2007-12-13 1688872]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"nod32kui"="c:\program files\Eset\nod32kui.exe" [2008-01-24 949376]
"SlipStream"="c:\program files\Distributel Web Accelerator\slipcore.exe" [2006-12-11 253952]
"NeroFilterCheck"="c:\program files\Fichiers communs\Nero\Lib\NeroCheck.exe" [2007-03-01 153136]
"NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-12-03 2213160]
"SunJavaUpdateSched"="c:\program files\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 144784]
"TrueImageMonitor.exe"="c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe" [2007-12-06 2616288]
"AcronisTimounterMonitor"="c:\program files\Acronis\TrueImageHome\TimounterMonitor.exe" [2007-12-06 905000]
"Acronis Scheduler2 Service"="c:\program files\Fichiers communs\Acronis\Schedule2\schedhlp.exe" [2007-12-06 140568]

c:\documents and settings\Andrefi\Menu D‚marrer\Programmes\D‚marrage\
Rainlendar.lnk - c:\utilitaires\Rainlendar\Rainlendar.exe [2005-10-23 118784]

c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
Accelerateur Web Distributel.lnk - c:\program files\Distributel Web Accelerator\slipgui.exe [2008-01-24 167936]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoSMMyPictures"= 0 (0x0)
"NoStartMenuMyMusic"= 0 (0x0)
"NoRecentDocsNetHood"= 0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSMMyPictures"= 0 (0x0)
"NoStartMenuMyMusic"= 0 (0x0)
"NoRecentDocsNetHood"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"msacm.dvacm"= dvacm.acm
"VIDC.VDOM"= vdowave.drv
"VIDC.TR20"= tr2032.dll
"vidc.vivo"= ivvideo.dll

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Internet\\LimeWire\\LimeWire.exe"=
"c:\\Jeux\\TrackMania Nations ESWC\\TmNationsESWC.exe"=
"c:\\Program Files\\Hewlett-Packard\\HP Share-to-Web\\hpgs2wnf.exe"=
"c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"c:\\Program Files\\MSN Messenger\\livecall.exe"=
"c:\\Program Files\\Microsoft Games\\Halo\\halo.exe"=
"c:\\Program Files\\Fichiers communs\\Nero\\Nero Web\\SetupX.exe"=
"c:\\Program Files\\Nero\\Nero8\\Nero BackItUp\\BackItUp.exe"=
"c:\\Internet\\Kerio par feu\\Personal Firewall 4\\kpf4gui.exe"=

R0 pavboot;pavboot;c:\windows\system32\drivers\pavboot.sys [2008-12-27 28544]
R1 Asapi;Asapi;c:\windows\system32\drivers\Asapi.sys [2007-07-15 11264]
R1 fwdrv;Firewall Driver;c:\windows\system32\drivers\fwdrv.sys [2005-09-26 286720]
R1 khips;Kerio HIPS Driver;c:\windows\system32\drivers\khips.sys [2005-09-26 81920]
R1 nod32drv;nod32drv;c:\windows\system32\drivers\nod32drv.sys [2008-01-24 15424]
S2 IcRecUsb;IC Recorder Driver;c:\windows\system32\Drivers\IcRecUsb.sys [2007-07-15 17432]
.
Contenu du dossier 'Tâches planifiées'

2008-12-29 c:\windows\Tasks\ErrorSmart Scheduled Scan.job
- c:\program files\ErrorSmart\ErrorSmart.exe []

2008-12-29 c:\windows\Tasks\ErrorSmart Scheduled Scan.job
- c:\program files\ErrorSmart []
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.ca/
uInternet Connection Wizard,ShellNext = iexplore
IE: E&xporter vers Microsoft Excel - c:\texte\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: Voice Editing Launcher - c:\audio\Voice Editing\VEd1_IEMenu.html
IE: {{B4E30F61-16D9-11D3-85D1-005004229569} - {85E0B172-04FA-11D1-B7DA-00A0C90348D6} - c:\texte\lotus\org6\organize\bandobjs.dll
LSP: c:\windows\system32\imon.dll
FF - ProfilePath - c:\documents and settings\Andrefi\Application Data\Mozilla\Firefox\Profiles\uvjj7zkp.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.ca/firefox?client=firefox-a&rls=org.mozilla:fr:official
FF - plugin: c:\documents and settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll
FF - plugin: c:\documents and settings\Andrefi\Application Data\Mozilla\plugins\npPxPlay.dll
FF - plugin: c:\internet\Real Alternative\browser\plugins\nppl3260.dll
FF - plugin: c:\internet\Real Alternative\browser\plugins\nprpjplug.dll
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-29 20:14:10
Windows 5.1.2600 Service Pack 2 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************
.
--------------------- DLLs chargées dans les processus actifs ---------------------

- - - - - - - > 'winlogon.exe'(608)
c:\windows\system32\Ati2evxx.dll

- - - - - - - > 'lsass.exe'(664)
c:\windows\system32\relog_ap.dll
c:\windows\system32\imon.dll
c:\program files\Eset\pr_imon.dll
.
------------------------ Autres processus actifs ------------------------
.
c:\windows\system32\ati2evxx.exe
c:\windows\system32\ati2evxx.exe
c:\program files\Fichiers communs\Acronis\Schedule2\schedul2.exe
c:\windows\ehome\ehRecvr.exe
c:\windows\ehome\ehSched.exe
c:\internet\Kerio par feu\Personal Firewall 4\kpf4ss.exe
c:\program files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\program files\Nero\Nero8\Nero BackItUp\NBService.exe
c:\program files\ESET\nod32krn.exe
c:\internet\Kerio par feu\Personal Firewall 4\kpf4gui.exe
c:\windows\system32\locator.exe
c:\graveur\ProShowProducer\scsiaccess.exe
c:\windows\system32\tlntsvr.exe
c:\program files\Fichiers communs\Acronis\Fomatik\TrueImageTryStartService.exe
c:\windows\system32\dllhost.exe
c:\windows\system32\wscntfy.exe
c:\internet\Kerio par feu\Personal Firewall 4\kpf4gui.exe
c:\program files\Fichiers communs\Nero\Lib\NMIndexingService.exe
.
**************************************************************************
.
Heure de fin: 2008-12-29 20:17:25 - La machine a redémarré
ComboFix-quarantined-files.txt 2008-12-30 01:17:17
ComboFix2.txt 2008-03-11 17:47:37

Avant-CF: 73 924 415 488 octets libres
Après-CF: 73,869,705,216 octets libres

509

Bojour

Voici mon log OTMovelt

Process explorer.exe killed successfully.
========== FILES ==========
File/Folder c:\program files\errorsmart\errorsmart.exe not found.
========== COMMANDS ==========
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
Windows Temp folder emptied.
Java cache emptied.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully

OTMoveIt3 by OldTimer - Version 1.0.7.2 log created on 12292008_222806

Bonjours

il ne veut pas faire de scan
il me donne

Line 1

Error Subscript used with non-array variable

Bonjour

Jai essayer en sans echec

et il me donne toujours

Line 1

Error Subscript used with non-array variable

Bonjour Voila le rapport ZHP DIAG

Rapport de ZHPDiag v1.16 par Nicolas Coolman
Enregistré le 2008-12-30 00:22:58
Platform : Microsoft Windows XP (5.1.2600) Service Pack 2
MSIE: Internet Explorer v7.0.5730.13
MFIE: Mozilla Firefox (3.0.5)

---\\ Processus lancés
C:\Program Files\Distributel Web Accelerator\slipcore.exe
C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\fxssvc.exe
C:\Internet\Kerio par feu\Personal Firewall 4\kpf4ss.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\locator.exe
C:\Graveur\ProShowProducer\ScsiAccess.exe
slserv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\tlntsvr.exe
C:\Program Files\Fichiers communs\Acronis\Fomatik\TrueImageTryStartService.exe

---\\ Pages de démarrage d'Internet Explorer (R0)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

---\\ Pages de recherche d'Internet Explorer (R1)
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: PBlockHelper Class - {4115122B-85FF-4DD3-9515-F075BEDE5EB5} - C:\Program Files\Distributel Web Accelerator\PBHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: NOW!Imaging - {9AA2F14F-E956-44B8-8694-A5B615CDF341} - C:\Program Files\Distributel Web Accelerator\components\NOWImaging.dll

---\\ Applications démarrées automatiquement par le registre (O4)
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [SlipStream] "C:\Program Files\Distributel Web Accelerator\slipcore.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe"
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKLM\..\policies\Explorer: [NoRecentDocsMenu] Data="0"
O4 - HKLM\..\policies\Explorer: [NoFavoritesMenu] Data="0"
O4 - HKLM\..\policies\Explorer: [NoSMMyDocs] Data="0"
O4 - HKLM\..\policies\Explorer: [NoSMMyPictures] Data="0"
O4 - HKLM\..\policies\Explorer: [NoStartMenuMyMusic] Data="0"
O4 - HKLM\..\policies\Explorer: [NoRecentDocsHistory] Data="0"
O4 - HKLM\..\policies\Explorer: [NoRecentDocsNetHood] Data="0"
O4 - HKLM\..\policies\Explorer: [NoInstrumentation] Data="0"
O4 - HKLM\..\policies\Explorer: [NoDriveAutoRun] Data="67108863"
O4 - HKLM\..\policies\Explorer: [NoDriveTypeAutoRun] Data="323"
O4 - HKLM\..\policies\Explorer: [NoDrives] Data="0"
O4 - Global Startup: Accelerateur Web Distributel.lnk - C:\Program Files\Distributel Web Accelerator\slipgui.exe

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\Texte\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Voice Editing Launcher - C:\Audio\Voice Editing\VEd1_IEMenu.html

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra 'Tools' menuitem: Web Entry - {B4E30F61-16D9-11D3-85D1-005004229569} - C:\Texte\lotus\org6\organize\orgie5save.ico
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Texte\MICROS~1\OFFICE11\REFBARH.ICO
O9 - Extra button: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Texte\MICROS~1\OFFICE11\REFBARH.ICO
O9 - Extra button: Web Entry - {B4E30F61-16D9-11D3-85D1-005004229569} - C:\Texte\lotus\org6\organize\orgie5save.ico

---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} () - http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab

---\\ Protocole additionnel et piratage de protocole (O18)
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

---\\ Valeur de registre AppInit_DLLs et sous-clés Winlogon Notify (O20)
O20 - Winlogon Notify: AtiStartupEvent - C:\WINDOWS\System32\Ati2evxx.dll
O20 - Winlogon Notify: WLEventStartup - C:\WINDOWS\System32\WgaLogon.dll

---\\ Services NT non Microsoft et non désactivés (O23)
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe
O23 - Service: (Ati HotKey Poller) - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Media Center Receiver Service (ehRecvr) - C:\WINDOWS\eHome\ehRecvr.exe
O23 - Service: Service de planification Media Center (ehSched) - C:\WINDOWS\eHome\ehSched.exe
O23 - Service: Fax (Fax) - C:\WINDOWS\system32\fxssvc.exe
O23 - Service: Kerio Personal Firewall 4 (KPF4) - C:\Internet\Kerio par feu\Personal Firewall 4\kpf4ss.exe
O23 - Service: Machine Debug Manager (MDM) - C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
O23 - Service: Nero BackItUp Scheduler 3 (Nero BackItUp Scheduler 3) - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - C:\Program Files\Eset\nod32krn.exe
O23 - Service: ScsiAccess (ScsiAccess) - C:\Graveur\ProShowProducer\ScsiAccess.exe
O23 - Service: SmartLinkService (SLService) - slserv.exe
O23 - Service: Spouleur d'impression (Spooler) - C:\WINDOWS\system32\spoolsv.exe
O23 - Service: Acronis Try And Decide Service (TryAndDecideService) - C:\Program Files\Fichiers communs\Acronis\Fomatik\TrueImageTryStartService.exe


End of the scan:

Bonjour mon rapport

de Malwarebyte's

Malwarebytes' Anti-Malware 1.08
Version de la base de données: 480

Type de recherche: Examen complet (A:\|C:\|H:\|)
Eléments examinés: 101027
Temps écoulé: 27 minute(s), 39 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)

Bonjour

Voici le rapport OTMoveIt3

========== PROCESSES ==========
Process explorer.exe killed successfully.
========== FILES ==========
File/Folder c:\program files\errorsmart\errorsmart.exe not found.
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\Andrefi\LOCALS~1\Temp\IH1A1.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\Andrefi\LOCALS~1\Temp\IH1A3.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\Andrefi\LOCALS~1\Temp\IH1A4.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\Andrefi\LOCALS~1\Temp\IH1A5.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\Andrefi\LOCALS~1\Temp\IH1A6.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\Andrefi\LOCALS~1\Temp\IH1A7.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\Andrefi\LOCALS~1\Temp\IH1A8.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\Andrefi\LOCALS~1\Temp\IH1A9.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\Andrefi\LOCALS~1\Temp\IH1AA.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\Andrefi\LOCALS~1\Temp\IH1AB.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\Andrefi\LOCALS~1\Temp\IHF.tmp scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
Windows Temp folder emptied.
Java cache emptied.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully

OTMoveIt3 by OldTimer - Version 1.0.7.2 log created on 12302008_014552

Bonjour j ai essayer RSIT
ca ne marche pas
j ai telecharger Lopxp
et double cliquer dessus il me propose
de choisir le programme pour l ouvrir
allors je ne sais quel choisir

Bonjour

voici le log Lop S&D
--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.80GHz )
BIOS : Default System BIOS
USER : Andrefi ( Administrator )
BOOT : Normal boot
Antivirus : ESET NOD32 antivirus system 2.70 2.70 (Activated)
Firewall : Kerio Personal Firewall 4.2.2 T (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:100 Go (Free:68 Go)
F:\ (CD or DVD)
G:\ (CD or DVD)
H:\ (Local Disk) - NTFS - Total:48 Go (Free:37 Go)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 2008-12-30|13:28 )

--------------------\\ Listing des dossiers dans APPLIC~1

[2008-12-29|23:19] C:\DOCUME~1\ADMINI~1\APPLIC~1\Dossier de téléchargement Share-to-Web
[2008-05-19|13:04] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

[2008-12-29|15:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Acronis
[2007-07-14|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[2007-07-14|20:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[2008-07-22|08:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[2008-03-12|03:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[2007-10-13|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[2008-02-07|10:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[2008-09-04|23:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NtiDvdCopy
[2007-07-28|19:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[2007-07-14|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[2008-12-29|20:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[2007-07-13|11:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[2008-01-28|20:28] C:\DOCUME~1\Andrefi\APPLIC~1\Adobe
[2008-01-28|23:58] C:\DOCUME~1\Andrefi\APPLIC~1\AdobeUM
[2008-09-04|23:25] C:\DOCUME~1\Andrefi\APPLIC~1\ArcSoft
[2007-07-20|10:38] C:\DOCUME~1\Andrefi\APPLIC~1\CyberLink
[2007-07-15|17:20] C:\DOCUME~1\Andrefi\APPLIC~1\Dossier de téléchargement Share-to-Web
[2008-02-07|10:15] C:\DOCUME~1\Andrefi\APPLIC~1\DVD Shrink
[2008-01-20|15:12] C:\DOCUME~1\Andrefi\APPLIC~1\ErrorSmart
[2007-07-14|19:06] C:\DOCUME~1\Andrefi\APPLIC~1\Google
[2008-02-08|12:26] C:\DOCUME~1\Andrefi\APPLIC~1\Help
[2008-04-18|20:17] C:\DOCUME~1\Andrefi\APPLIC~1\LimeWire
[2007-07-14|22:00] C:\DOCUME~1\Andrefi\APPLIC~1\Macromedia
[2008-03-12|03:11] C:\DOCUME~1\Andrefi\APPLIC~1\Malwarebytes
[2007-08-05|23:21] C:\DOCUME~1\Andrefi\APPLIC~1\Media Player Classic
[2008-09-07|20:19] C:\DOCUME~1\Andrefi\APPLIC~1\Microsoft
[2008-12-26|10:01] C:\DOCUME~1\Andrefi\APPLIC~1\Mozilla
[2008-02-07|10:27] C:\DOCUME~1\Andrefi\APPLIC~1\Nero
[2007-07-14|19:03] C:\DOCUME~1\Andrefi\APPLIC~1\Netscape
[2008-02-14|11:34] C:\DOCUME~1\Andrefi\APPLIC~1\Photodex
[2008-01-25|01:39] C:\DOCUME~1\Andrefi\APPLIC~1\Publish Providers
[2007-07-31|20:05] C:\DOCUME~1\Andrefi\APPLIC~1\Rainlendar
[2008-02-07|15:38] C:\DOCUME~1\Andrefi\APPLIC~1\Real
[2008-12-30|13:06] C:\DOCUME~1\Andrefi\APPLIC~1\SlipStream
[2007-07-14|20:43] C:\DOCUME~1\Andrefi\APPLIC~1\SlySoft
[2007-07-15|17:43] C:\DOCUME~1\Andrefi\APPLIC~1\Sony
[2007-07-15|01:36] C:\DOCUME~1\Andrefi\APPLIC~1\Steinberg
[2007-07-27|22:00] C:\DOCUME~1\Andrefi\APPLIC~1\Sun
[2008-01-31|16:11] C:\DOCUME~1\Andrefi\APPLIC~1\Vso

[2007-07-13|10:57] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[2008-03-16|22:14] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[2008-12-29|15:13] C:\DOCUME~1\NETWOR~1\APPLIC~1\Acronis
[2007-07-13|11:00] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[2008-12-30 03:30][--a------] C:\WINDOWS\tasks\ErrorSmart Scheduled Scan.job
[2008-12-30 12:32][--ah-----] C:\WINDOWS\tasks\SA.DAT
[2004-08-10 07:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[2008-12-29|15:08] C:\Program Files\Acronis
[2007-07-15|17:33] C:\Program Files\Canon
[2008-03-13|23:02] C:\Program Files\CCleaner
[2008-03-13|22:34] C:\Program Files\CleanUp!
[2007-07-13|10:51] C:\Program Files\ComPlus Applications
[2007-07-14|20:56] C:\Program Files\CyberLink
[2007-10-13|08:30] C:\Program Files\Disney Interactive
[2008-01-24|19:48] C:\Program Files\Distributel Web Accelerator
[2008-02-04|19:16] C:\Program Files\DVDFab HD Decrypter 4
[2008-03-10|23:14] C:\Program Files\ESET
[2008-12-29|20:08] C:\Program Files\Fichiers communs
[2008-08-20|21:42] C:\Program Files\Foxit Software
[2007-12-18|14:03] C:\Program Files\GameHouse
[2007-07-13|11:31] C:\Program Files\Google
[2007-07-15|17:20] C:\Program Files\Hewlett-Packard
[2007-08-06|19:59] C:\Program Files\HOTLLAMA Media
[2007-10-13|08:30] C:\Program Files\InstallShield Installation Information
[2008-03-15|15:55] C:\Program Files\Internet Explorer
[2008-07-20|08:47] C:\Program Files\Java
[2007-07-14|20:52] C:\Program Files\Ligos
[2008-03-12|03:11] C:\Program Files\Malwarebytes' Anti-Malware
[2007-07-14|20:59] C:\Program Files\Media Player Classic
[2008-01-08|23:23] C:\Program Files\Messenger
[2007-07-13|10:57] C:\Program Files\microsoft frontpage
[2008-01-06|19:24] C:\Program Files\Microsoft Games
[2007-07-14|21:25] C:\Program Files\Microsoft Office
[2007-07-14|21:03] C:\Program Files\Microsoft Visual Studio
[2007-07-14|21:03] C:\Program Files\Microsoft Works
[2007-07-14|21:04] C:\Program Files\Microsoft.NET
[2007-07-13|10:53] C:\Program Files\Movie Maker
[2008-12-30|12:35] C:\Program Files\Mozilla Firefox
[2007-07-13|10:41] C:\Program Files\MSN
[2007-07-13|10:41] C:\Program Files\MSN Gaming Zone
[2007-09-13|21:48] C:\Program Files\MSN Messenger
[2008-01-06|19:26] C:\Program Files\MSXML 4.0
[2008-02-07|10:24] C:\Program Files\Nero
[2007-07-13|10:54] C:\Program Files\NetMeeting
[2007-07-15|17:57] C:\Program Files\NetShow Services
[2007-07-13|11:43] C:\Program Files\NewTech Infosystems
[2007-07-13|10:50] C:\Program Files\Online Services
[2007-07-14|20:51] C:\Program Files\OrgUpgrade
[2007-07-13|10:53] C:\Program Files\Outlook Express
[2007-07-15|17:16] C:\Program Files\Panasonic
[2008-12-27|14:01] C:\Program Files\Panda Security
[2007-07-14|19:03] C:\Program Files\Photodex Presenter
[2007-12-01|17:36] C:\Program Files\ReflexiveArcade
[2007-12-07|00:20] C:\Program Files\Ricochet Xtreme
[2007-07-13|10:54] C:\Program Files\Services en ligne
[2008-12-29|20:27] C:\Program Files\SpywareBlaster
[2007-07-15|01:13] C:\Program Files\Syncrosoft
[2007-10-27|11:39] C:\Program Files\THQ
[2008-01-18|01:49] C:\Program Files\Trend Micro
[2007-07-13|11:02] C:\Program Files\Uninstall Information
[2007-07-15|17:49] C:\Program Files\VOB
[2008-01-24|16:56] C:\Program Files\VuPassword
[2007-07-13|10:57] C:\Program Files\Windows Media Player
[2007-07-13|10:41] C:\Program Files\Windows NT
[2007-07-13|10:50] C:\Program Files\Windows Plus
[2007-07-13|10:54] C:\Program Files\WindowsUpdate
[2007-07-13|10:57] C:\Program Files\xerox

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[2008-12-29|15:08] C:\Program Files\Fichiers communs\Acronis
[2008-01-17|10:26] C:\Program Files\Fichiers communs\BitDefender
[2007-07-14|21:03] C:\Program Files\Fichiers communs\DESIGNER
[2007-07-15|17:20] C:\Program Files\Fichiers communs\Hewlett-Packard
[2007-07-14|20:55] C:\Program Files\Fichiers communs\InstallShield
[2008-03-17|16:00] C:\Program Files\Fichiers communs\Java
[2008-02-07|10:21] C:\Program Files\Fichiers communs\Microsoft Shared
[2007-07-13|10:53] C:\Program Files\Fichiers communs\MSSoap
[2007-07-13|11:42] C:\Program Files\Fichiers communs\muvee Technologies
[2008-02-07|10:26] C:\Program Files\Fichiers communs\Nero
[2007-07-13|11:42] C:\Program Files\Fichiers communs\NewTech Infosystems
[2007-07-13|06:15] C:\Program Files\Fichiers communs\ODBC
[2007-07-14|20:51] C:\Program Files\Fichiers communs\RandSync
[2007-07-13|10:54] C:\Program Files\Fichiers communs\Services
[2007-07-13|06:15] C:\Program Files\Fichiers communs\SpeechEngines
[2007-07-14|21:03] C:\Program Files\Fichiers communs\System

--------------------\\ Process

( 47 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-30 13:33:20
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:22][D:0]-> C:\DOCUME~1\Andrefi\LOCALS~1\Temp
[F:6][D:0]-> C:\DOCUME~1\Andrefi\Cookies
[F:71][D:4]-> C:\DOCUME~1\Andrefi\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 2008-12-30| 3:26 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 2008-12-30|13:35 - Option : [1]

--------------------\\ Fin du rapport a 13:35:32

Re


--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.80GHz )
BIOS : Default System BIOS
USER : Andrefi ( Administrator )
BOOT : Normal boot
Antivirus : ESET NOD32 antivirus system 2.70 2.70 (Activated)
Firewall : Kerio Personal Firewall 4.2.2 T (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:100 Go (Free:69 Go)
F:\ (CD or DVD)
G:\ (CD or DVD)
H:\ (Local Disk) - NTFS - Total:48 Go (Free:37 Go)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 2008-12-30|16:58 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[2008-12-29|23:19] C:\DOCUME~1\ADMINI~1\APPLIC~1\Dossier de téléchargement Share-to-Web
[2008-05-19|13:04] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

[2008-12-29|15:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Acronis
[2007-07-14|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[2007-07-14|20:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[2008-07-22|08:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[2008-03-12|03:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[2007-10-13|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[2008-02-07|10:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[2008-09-04|23:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NtiDvdCopy
[2007-07-28|19:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[2007-07-14|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[2008-12-29|20:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[2007-07-13|11:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[2008-01-28|20:28] C:\DOCUME~1\Andrefi\APPLIC~1\Adobe
[2008-01-28|23:58] C:\DOCUME~1\Andrefi\APPLIC~1\AdobeUM
[2008-09-04|23:25] C:\DOCUME~1\Andrefi\APPLIC~1\ArcSoft
[2007-07-20|10:38] C:\DOCUME~1\Andrefi\APPLIC~1\CyberLink
[2007-07-15|17:20] C:\DOCUME~1\Andrefi\APPLIC~1\Dossier de téléchargement Share-to-Web
[2008-02-07|10:15] C:\DOCUME~1\Andrefi\APPLIC~1\DVD Shrink
[2008-01-20|15:12] C:\DOCUME~1\Andrefi\APPLIC~1\ErrorSmart
[2007-07-14|19:06] C:\DOCUME~1\Andrefi\APPLIC~1\Google
[2008-02-08|12:26] C:\DOCUME~1\Andrefi\APPLIC~1\Help
[2008-04-18|20:17] C:\DOCUME~1\Andrefi\APPLIC~1\LimeWire
[2007-07-14|22:00] C:\DOCUME~1\Andrefi\APPLIC~1\Macromedia
[2008-03-12|03:11] C:\DOCUME~1\Andrefi\APPLIC~1\Malwarebytes
[2007-08-05|23:21] C:\DOCUME~1\Andrefi\APPLIC~1\Media Player Classic
[2008-09-07|20:19] C:\DOCUME~1\Andrefi\APPLIC~1\Microsoft
[2008-12-26|10:01] C:\DOCUME~1\Andrefi\APPLIC~1\Mozilla
[2008-02-07|10:27] C:\DOCUME~1\Andrefi\APPLIC~1\Nero
[2007-07-14|19:03] C:\DOCUME~1\Andrefi\APPLIC~1\Netscape
[2008-02-14|11:34] C:\DOCUME~1\Andrefi\APPLIC~1\Photodex
[2008-01-25|01:39] C:\DOCUME~1\Andrefi\APPLIC~1\Publish Providers
[2007-07-31|20:05] C:\DOCUME~1\Andrefi\APPLIC~1\Rainlendar
[2008-02-07|15:38] C:\DOCUME~1\Andrefi\APPLIC~1\Real
[2008-12-30|16:49] C:\DOCUME~1\Andrefi\APPLIC~1\SlipStream
[2007-07-14|20:43] C:\DOCUME~1\Andrefi\APPLIC~1\SlySoft
[2007-07-15|17:43] C:\DOCUME~1\Andrefi\APPLIC~1\Sony
[2007-07-15|01:36] C:\DOCUME~1\Andrefi\APPLIC~1\Steinberg
[2007-07-27|22:00] C:\DOCUME~1\Andrefi\APPLIC~1\Sun
[2008-01-31|16:11] C:\DOCUME~1\Andrefi\APPLIC~1\Vso

[2007-07-13|10:57] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[2008-03-16|22:14] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[2008-12-29|15:13] C:\DOCUME~1\NETWOR~1\APPLIC~1\Acronis
[2007-07-13|11:00] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[2008-12-30 03:30][--a------] C:\WINDOWS\tasks\ErrorSmart Scheduled Scan.job
[2008-12-30 16:47][--ah-----] C:\WINDOWS\tasks\SA.DAT
[2004-08-10 07:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[2008-12-29|15:08] C:\Program Files\Acronis
[2007-07-15|17:33] C:\Program Files\Canon
[2008-03-13|23:02] C:\Program Files\CCleaner
[2008-03-13|22:34] C:\Program Files\CleanUp!
[2007-07-13|10:51] C:\Program Files\ComPlus Applications
[2007-07-14|20:56] C:\Program Files\CyberLink
[2007-10-13|08:30] C:\Program Files\Disney Interactive
[2008-01-24|19:48] C:\Program Files\Distributel Web Accelerator
[2008-02-04|19:16] C:\Program Files\DVDFab HD Decrypter 4
[2008-03-10|23:14] C:\Program Files\ESET
[2008-12-29|20:08] C:\Program Files\Fichiers communs
[2008-08-20|21:42] C:\Program Files\Foxit Software
[2007-12-18|14:03] C:\Program Files\GameHouse
[2007-07-13|11:31] C:\Program Files\Google
[2007-07-15|17:20] C:\Program Files\Hewlett-Packard
[2007-08-06|19:59] C:\Program Files\HOTLLAMA Media
[2007-10-13|08:30] C:\Program Files\InstallShield Installation Information
[2008-03-15|15:55] C:\Program Files\Internet Explorer
[2008-07-20|08:47] C:\Program Files\Java
[2007-07-14|20:52] C:\Program Files\Ligos
[2008-03-12|03:11] C:\Program Files\Malwarebytes' Anti-Malware
[2007-07-14|20:59] C:\Program Files\Media Player Classic
[2008-01-08|23:23] C:\Program Files\Messenger
[2007-07-13|10:57] C:\Program Files\microsoft frontpage
[2008-01-06|19:24] C:\Program Files\Microsoft Games
[2007-07-14|21:25] C:\Program Files\Microsoft Office
[2007-07-14|21:03] C:\Program Files\Microsoft Visual Studio
[2007-07-14|21:03] C:\Program Files\Microsoft Works
[2007-07-14|21:04] C:\Program Files\Microsoft.NET
[2007-07-13|10:53] C:\Program Files\Movie Maker
[2008-12-30|16:52] C:\Program Files\Mozilla Firefox
[2007-07-13|10:41] C:\Program Files\MSN
[2007-07-13|10:41] C:\Program Files\MSN Gaming Zone
[2007-09-13|21:48] C:\Program Files\MSN Messenger
[2008-01-06|19:26] C:\Program Files\MSXML 4.0
[2008-02-07|10:24] C:\Program Files\Nero
[2007-07-13|10:54] C:\Program Files\NetMeeting
[2007-07-15|17:57] C:\Program Files\NetShow Services
[2007-07-13|11:43] C:\Program Files\NewTech Infosystems
[2007-07-13|10:50] C:\Program Files\Online Services
[2007-07-14|20:51] C:\Program Files\OrgUpgrade
[2007-07-13|10:53] C:\Program Files\Outlook Express
[2007-07-15|17:16] C:\Program Files\Panasonic
[2008-12-27|14:01] C:\Program Files\Panda Security
[2007-07-14|19:03] C:\Program Files\Photodex Presenter
[2007-12-01|17:36] C:\Program Files\ReflexiveArcade
[2007-12-07|00:20] C:\Program Files\Ricochet Xtreme
[2007-07-13|10:54] C:\Program Files\Services en ligne
[2008-12-29|20:27] C:\Program Files\SpywareBlaster
[2007-07-15|01:13] C:\Program Files\Syncrosoft
[2007-10-27|11:39] C:\Program Files\THQ
[2008-01-18|01:49] C:\Program Files\Trend Micro
[2007-07-13|11:02] C:\Program Files\Uninstall Information
[2007-07-15|17:49] C:\Program Files\VOB
[2008-01-24|16:56] C:\Program Files\VuPassword
[2007-07-13|10:57] C:\Program Files\Windows Media Player
[2007-07-13|10:41] C:\Program Files\Windows NT
[2007-07-13|10:50] C:\Program Files\Windows Plus
[2007-07-13|10:54] C:\Program Files\WindowsUpdate
[2007-07-13|10:57] C:\Program Files\xerox

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[2008-12-29|15:08] C:\Program Files\Fichiers communs\Acronis
[2008-01-17|10:26] C:\Program Files\Fichiers communs\BitDefender
[2007-07-14|21:03] C:\Program Files\Fichiers communs\DESIGNER
[2007-07-15|17:20] C:\Program Files\Fichiers communs\Hewlett-Packard
[2007-07-14|20:55] C:\Program Files\Fichiers communs\InstallShield
[2008-03-17|16:00] C:\Program Files\Fichiers communs\Java
[2008-02-07|10:21] C:\Program Files\Fichiers communs\Microsoft Shared
[2007-07-13|10:53] C:\Program Files\Fichiers communs\MSSoap
[2007-07-13|11:42] C:\Program Files\Fichiers communs\muvee Technologies
[2008-02-07|10:26] C:\Program Files\Fichiers communs\Nero
[2007-07-13|11:42] C:\Program Files\Fichiers communs\NewTech Infosystems
[2007-07-13|06:15] C:\Program Files\Fichiers communs\ODBC
[2007-07-14|20:51] C:\Program Files\Fichiers communs\RandSync
[2007-07-13|10:54] C:\Program Files\Fichiers communs\Services
[2007-07-13|06:15] C:\Program Files\Fichiers communs\SpeechEngines
[2007-07-14|21:03] C:\Program Files\Fichiers communs\System

--------------------\\ Process

( 48 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-30 17:06:06
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:23][D:0]-> C:\DOCUME~1\Andrefi\LOCALS~1\Temp
[F:6][D:0]-> C:\DOCUME~1\Andrefi\Cookies
[F:71][D:4]-> C:\DOCUME~1\Andrefi\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 2008-12-30| 3:26 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 2008-12-30|13:35 - Option : [1]
3 - "C:\Lop SD\LopR_3.txt" - 2008-12-30|17:07 - Option : [2]

--------------------\\ Fin du rapport a 17:07:46

Bonjour

il me donne toujours

Line 1

Error Subscript used with non-array variable

Re

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 00:41:12, on 2008-12-31
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Internet\Kerio par feu\Personal Firewall 4\kpf4ss.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\Program Files\Eset\nod32krn.exe
C:\Internet\Kerio par feu\Personal Firewall 4\kpf4gui.exe
C:\Graveur\ProShowProducer\ScsiAccess.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\tlntsvr.exe
C:\Program Files\Fichiers communs\Acronis\Fomatik\TrueImageTryStartService.exe
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\Distributel Web Accelerator\slipcore.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe
C:\Program Files\Distributel Web Accelerator\slipgui.exe
C:\Utilitaires\Rainlendar\Rainlendar.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Internet\Kerio par feu\Personal Firewall 4\kpf4gui.exe
C:\WINDOWS\slrundll.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:5400
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: PBlockHelper Class - {4115122B-85FF-4DD3-9515-F075BEDE5EB5} - C:\Program Files\Distributel Web Accelerator\PBHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: NOW!Imaging - {9AA2F14F-E956-44B8-8694-A5B615CDF341} - C:\Program Files\Distributel Web Accelerator\components\NOWImaging.dll
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [SlipStream] "C:\Program Files\Distributel Web Accelerator\slipcore.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe"
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - Startup: Rainlendar.lnk = C:\Utilitaires\Rainlendar\Rainlendar.exe
O4 - Global Startup: Accelerateur Web Distributel.lnk = C:\Program Files\Distributel Web Accelerator\slipgui.exe
O8 - Extra context menu item: Afficher l'image originale. - res://C:\Program Files\Distributel Web Accelerator\gui_resource.dll/328
O8 - Extra context menu item: Afficher toutes les images originales. - res://C:\Program Files\Distributel Web Accelerator\gui_resource.dll/327
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\Texte\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Voice Editing Launcher - C:\Audio\Voice Editing\VEd1_IEMenu.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Texte\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Web Entry - {B4E30F61-16D9-11D3-85D1-005004229569} - C:\Texte\lotus\org6\organize\bandobjs.dll
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{29F23442-BAFC-4AE4-97FB-3246DEAB70AB}: NameServer = 206.80.254.4 206.80.254.68
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Kerio Personal Firewall 4 (KPF4) - Kerio Technologies - C:\Internet\Kerio par feu\Personal Firewall 4\kpf4ss.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: ScsiAccess - Unknown owner - C:\Graveur\ProShowProducer\ScsiAccess.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Acronis Try And Decide Service (TryAndDecideService) - Unknown owner - C:\Program Files\Fichiers communs\Acronis\Fomatik\TrueImageTryStartService.exe
End of file - 6959 bytes

Re

je ne comprend pas

ce que tu veut dire

Connait cette ligne l'IP :