Posez votre question Format imprimable Liste des forums Aidez-les Statistiques Rechercher Charte Forum Internet

WARNING: Your system and files may be damaged

Dernière réponse le 12 avr 2009 à 21:27:37 lima900, le 11 avr 2009 à 23:59:57

Signaler ce message aux modérateurs

Bonsoir, j'ai une fenetre qui s'affiche a chaque fois et je ne conprend pa pourquoi et qui dit
"WARNING: Your system and files may be damaged
Install a repairing solution to check and prevent crashes.WARNING YOUR SYSTEM MAY BE RUNNING WITH ERRORS
A reliable Fixing software is scanning your PC for errors
This Fixing Tool will locate errors and damaged files on your system
Now Performing A Typical System Scan"
et quand je telecharge cet outil et je veu l'installer j'ai une alerte
merci de votre attention

Configuration: Windows XP
Internet Explorer 6.0

Posez votre question Répondre

ITOKYOPEYA, le 12 avr 2009 à 01:10:49

A quelle momnent elle s'affiche ?

Répondre à ITOKYOPEYA

lima900, le 12 avr 2009 à 02:47:01

Quand j'allume le pc et je travaille un peu ça s'affiche

Répondre à lima900

ITOKYOPEYA, le 12 avr 2009 à 10:18:13

Pour plus de sureté exécutes 1 examen complet.
Installles Internet explorer 7, ou mieux Firefox, avec au moins ces modules complémentaires: NoScript, Ghostery, Google Toolbar For Firefox.

Répondre à ITOKYOPEYA

Destrio5, le 12 avr 2009 à 02:51:59

Salut,

Ton PC est infecté.

---> Télécharge Malwarebytes' Anti-Malware (MBAM) sur ton Bureau.
---> Double-clique sur le fichier téléchargé pour lancer le processus d'installation.
---> Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.
---> Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.
---> Sélectionne Exécuter un examen rapide.
---> Clique sur Rechercher. L'analyse démarre.

A la fin de l'analyse, un message s'affiche :

L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.

---> Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
---> Ferme tes navigateurs.
Si des malwares ont été détectés, clique sur Afficher les résultats.
---> Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.
---> MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.

Répondre à Destrio5

lima900, le 12 avr 2009 à 17:47:23

Slt Destrio5 voila le rapport:
Malwarebytes' Anti-Malware 1.36
Version de la base de données: 1970
Windows 5.1.2600 Service Pack 2

12/04/2009 17:45:16
mbam-log-2009-04-12 (17-45-16).txt

Type de recherche: Examen rapide
Eléments examinés: 68668
Temps écoulé: 6 minute(s), 5 second(s)

Processus mémoire infecté(s): 1
Module(s) mémoire infecté(s): 6
Clé(s) du Registre infectée(s): 149
Valeur(s) du Registre infectée(s): 8
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 17
Fichier(s) infecté(s): 90

Processus mémoire infecté(s):
C:\Program Files\MyWebSearch\bar\1.bin\MWSOEMON.EXE (Adware.MyWebSearch) -> Unloaded process successfully.

Module(s) mémoire infecté(s):
C:\Program Files\MyWebSearch\bar\1.bin\MWSSRCAS.DLL (Adware.MyWeb) -> Delete on reboot.
C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL (Adware.MyWeb) -> Delete on reboot.
C:\Program Files\MSN Messenger\msimg32.dll (Adware.MyWebSearch) -> Delete on reboot.
C:\Program Files\Internet Explorer\msimg32.dll (Adware.MyWebSearch) -> Delete on reboot.
C:\Program Files\MyWebSearch\bar\1.bin\F3HTMLMU.DLL (Adware.MyWebSearch) -> Delete on reboot.
C:\Program Files\MyWebSearch\bar\1.bin\F3REPROX.DLL (Adware.MyWebSearch) -> Delete on reboot.

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\CLSID\{00a6faf1-072e-44cf-8957-5838f569a31d} (Adware.MyWeb) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{00a6faf1-072e-44cf-8957-5838f569a31d} (Adware.MyWeb) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00a6faf1-072e-44cf-8957-5838f569a31d} (Adware.MyWeb) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{00a6faf6-072e-44cf-8957-5838f569a31d} (Adware.MyWeb) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{07b18ea0-a523-4961-b6bb-170de4475cca} (Adware.MyWeb) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{07b18eaa-a523-4961-b6bb-170de4475cca} (Adware.MyWeb) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{07b18eac-a523-4961-b6bb-170de4475cca} (Adware.MyWeb) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{f87d7fb5-9dc5-4c8c-b998-d8dfe02e2978} (Adware.MyWeb) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{07b18ea1-a523-4961-b6bb-170de4475cca} (Adware.MyWeb) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07b18ea1-a523-4961-b6bb-170de4475cca} (Adware.MyWeb) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{07b18ea1-a523-4961-b6bb-170de4475cca} (Adware.MyWeb) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{07b18ea9-a523-4961-b6bb-170de4475cca} (Adware.MyWeb) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{07b18eab-a523-4961-b6bb-170de4475cca} (Adware.MyWeb) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07b18eab-a523-4961-b6bb-170de4475cca} (Adware.MyWeb) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{07b18eab-a523-4961-b6bb-170de4475cca} (Adware.MyWeb) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{53ced2d0-5e9a-4761-9005-648404e6f7e5} (Adware.MyWeb) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.datacontrol (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{c8cecde3-1ae1-4c4a-ad82-6d5b00212144} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{17de5e5e-bfe3-4e83-8e1f-8755795359ec} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{1f52a5fa-a705-4415-b975-88503b291728} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{a626cdbd-3d13-4f78-b819-440a28d7e8fc} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{25560540-9571-4d7b-9389-0f166788785a} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{25560540-9571-4d7b-9389-0f166788785a} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.datacontrol.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.historykillerscheduler (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{8ca01f0e-987c-49c3-b852-2f1ac4a7094c} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{1093995a-ba37-41d2-836e-091067c4ad17} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{120927bf-1700-43bc-810f-fab92549b390} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{247a115f-06c2-4fb3-967d-2d62d3cf4f0a} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{3e53e2cb-86db-4a4a-8bd9-ffeb7a64df82} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{90449521-d834-4703-bb4e-d3aa44042ff8} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{991aac62-b100-47ce-8b75-253965244f69} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{bbabdc90-f3d5-4801-863a-ee6ae529862d} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{d6ff3684-ad3b-48eb-bbb4-b9e6c5a355c1} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{eb9e5c1c-b1f9-4c2b-be8a-27d6446fdaf8} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0f8ecf4f-3646-4c3a-8881-8e138ffcaf70} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b813095c-81c0-4e40-aa14-67520372b987} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c9d7be3e-141a-4c85-8cd6-32461f3df2c7} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{cff4ce82-3aa2-451f-9b77-7165605fb835} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.historykillerscheduler.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.historyswattercontrolbar (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.historyswattercontrolbar.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.htmlmenu (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{e47caee0-deea-464a-9326-3f2801535a4d} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{3e1656ed-f60e-4597-b6aa-b6a58e171495} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{741de825-a6f0-4497-9aa6-8023cf9b0fff} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3dc201fb-e9c9-499c-a11f-23c360d7c3f8} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{3dc201fb-e9c9-499c-a11f-23c360d7c3f8} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3dc201fb-e9c9-499c-a11f-23c360d7c3f8} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{98d9753d-d73b-42d5-8c85-4469cda897ab} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{98d9753d-d73b-42d5-8c85-4469cda897ab} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.htmlmenu.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.htmlmenu.2 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.iecookiesmanager (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.iecookiesmanager.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.killerobjmanager (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.killerobjmanager.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.popswatterbarbutton (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{8e6f1830-9607-4440-8530-13be7c4b1d14} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{63d0ed2b-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{63d0ed2d-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{63d0ed2c-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{63d0ed2c-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{63d0ed2c-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8e6f1832-9607-4440-8530-13be7c4b1d14} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a9571378-68a1-443d-b082-284f960c6d17} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.popswatterbarbutton.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.popswattersettingscontrol (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\funwebproducts.popswattersettingscontrol.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearch.chatsessionplugin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{e79dfbc0-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{72ee7f04-15bd-4845-a005-d6711144d86a} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{e79dfbc9-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{e79dfbcb-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e79dfbca-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{e79dfbca-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearch.chatsessionplugin.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearch.htmlpanel (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{3e720450-b472-4954-b7aa-33069eb53906} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{3e720451-b472-4954-b7aa-33069eb53906} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{3e720453-b472-4954-b7aa-33069eb53906} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3e720452-b472-4954-b7aa-33069eb53906} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3e720452-b472-4954-b7aa-33069eb53906} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearch.htmlpanel.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearch.outlookaddin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{adb01e81-3c79-4272-a0f1-7b2be7a782dc} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearch.outlookaddin.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearch.pseudotransparentplugin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{7473d290-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{7473d291-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{7473d293-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{7473d295-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{7473d297-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7473d292-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7473d294-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7473d294-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7473d296-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearch.pseudotransparentplugin.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearchtoolbar.settingsplugin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearchtoolbar.settingsplugin.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearchtoolbar.toolbarplugin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\mywebsearchtoolbar.toolbarplugin.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\screensavercontrol.screensaverinstaller (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{29d67d3c-509a-4544-903f-c8c1b8236554} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{2e3537fc-cf2f-4f56-af54-5a6a3dd375cc} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{2e9937fc-cf2f-4f56-af54-5a6a3dd375cc} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{938aa51a-996c-4884-98ce-80dd16a5c9da} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9ff05104-b030-46fc-94b8-81276e4e27df} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9ff05104-b030-46fc-94b8-81276e4e27df} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9ff05104-b030-46fc-94b8-81276e4e27df} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\screensavercontrol.screensaverinstaller.1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{6e74766c-4d93-4cc0-96d1-47b8e07ff9ca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{cf54be1c-9359-4395-8533-1657cf209cfe} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{de38c398-b328-4f4c-a3ad-1b5e4ed93477} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{e342af55-b78a-4cd0-a2bb-da7f52d9d25e} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{e342af55-b78a-4cd0-a2bb-da7f52d9d25f} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{147a976f-eee1-4377-8ea7-4716e4cdd239} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1E0DE227-5CE4-4ea3-AB0C-8B03E1AA76BC} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{84da4fdf-a1cf-4195-8688-3e961f505983} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a4730ebe-43a6-443e-9776-36915d323ad3} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d9fffb27-d62a-4d64-8cec-1ff006528805} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{0d26bc71-a633-4e71-ad31-eadc3a1b6a3a} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{d518921a-4a03-425e-9873-b9a71756821e} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{f42228fb-e84e-479e-b922-fbbd096e792c} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1d4db7d2-6ec9-47a3-bd87-1e41684e07bb} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256a51-b582-467e-b8d4-7786eda79ae0} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256a51-b582-467e-b8d4-7786eda79ae0} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59c7fc09-1c83-4648-b3e6-003d2bbc7481} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68af847f-6e91-45dd-9b68-d6a12c30e5d7} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9170b96c-28d4-4626-8358-27e6caeef907} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d1a71fa0-ff48-48dd-9b6d-7a13a3e42127} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ddb1968e-ead6-40fd-8dae-ff14757f60c7} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{f138d901-86f0-4383-99b6-9cdd406036da} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\mywebsearchservice (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\mywebsearchservice (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\mywebsearchservice (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\virusremover2009 (Rogue.VirusRemove) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\virusremover2009 (Rogue.VirusRemove) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (Adware.MyWay) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\MyWebSearch (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyWebSearch bar Uninstall (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\Outlook\Addins\MyWebSearch.OutlookAddin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\Word\Addins\MyWebSearch.OutlookAddin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\FunWebProducts (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Fun Web Products (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\MyWebSearch (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\FocusInteractive (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\fcn (Rogue.Residue) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\{00a6faf6-072e-44cf-8957-5838f569a31d} (Adware.MyWeb) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\my web search bar (Adware.MyWeb) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\mywebsearch email plugin (Adware.MyWeb) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\mywebsearch email plugin (Adware.MyWeb) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\mywebsearch plugin (Adware.MyWeb) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\MenuExt\&Search\ (Adware.Hotbar) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Media\WMSDK\Sources\f3PopularScreensavers (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform\FunWebProducts (Adware.MyWebSearch) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\Program Files\MyWebSearch (Adware.MyWebSearch) -> Delete on reboot.
C:\Program Files\MyWebSearch\bar (Adware.MyWebSearch) -> Delete on reboot.
C:\Program Files\MyWebSearch\bar\1.bin (Adware.MyWebSearch) -> Delete on reboot.
C:\Program Files\MyWebSearch\bar\Avatar (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Cache (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Game (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\History (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\icons (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Message (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Notifier (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Settings (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\FunWebProducts (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\FunWebProducts\ScreenSaver (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\FunWebProducts\ScreenSaver\Images (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\FunWebProducts\Shared (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\FunWebProducts\Shared\Cache (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\VirusRemover2009 (Rogue.VirusRemove) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Program Files\MyWebSearch\bar\1.bin\MWSOESTB.DLL (Adware.MyWeb) -> Delete on reboot.
C:\Program Files\MyWebSearch\bar\1.bin\MWSSRCAS.DLL (Adware.MyWeb) -> Delete on reboot.
C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL (Adware.MyWeb) -> Delete on reboot.
C:\Program Files\MyWebSearch\bar\1.bin\MWSOEMON.EXE (Adware.MyWeb) -> Quarantined and deleted successfully.
C:\Program Files\MSN Messenger\msimg32.dll (Adware.MyWebSearch) -> Delete on reboot.
C:\Program Files\Internet Explorer\msimg32.dll (Adware.MyWebSearch) -> Delete on reboot.
C:\Program Files\MyWebSearch\bar\1.bin\M3PLUGIN.DLL (Adware.MyWeb) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\F3DTACTL.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\F3HISTSW.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\F3HTMLMU.DLL (Adware.MyWebSearch) -> Delete on reboot.
C:\Program Files\MyWebSearch\bar\1.bin\F3POPSWT.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\M3MSG.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\M3HTML.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\M3OUTLCN.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\M3SKIN.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\F3SCRCTR.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\F3CJPEG.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\F3HTTPCT.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\F3REPROX.DLL (Adware.MyWebSearch) -> Delete on reboot.
C:\Program Files\MyWebSearch\bar\1.bin\MWSOEPLG.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\f3PSSavr.scr (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\F3BKGERR.JPG (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\F3IMSTUB.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\F3PSSAVR.SCR (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\F3RESTUB.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\F3SCHMON.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\F3SPACER.WMV (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\F3WALLPP.DAT (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\F3WPHOOK.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\FWPBUDDY.PNG (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\M3FFXTBR.JAR (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\M3FFXTBR.MANIFEST (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\M3HIGHIN.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\M3IDLE.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\M3IMPIPE.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\M3MEDINT.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\M3NTSTBR.JAR (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\M3NTSTBR.MANIFEST (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\M3SKPLAY.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\M3SLSRCH.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\M3SRCHMN.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\MWSSVC.EXE (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\1.bin\NPMYWEBS.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Avatar\COMMON.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Cache\0002C76D (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Cache\00038F31.bin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Cache\0003929C.bin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Cache\0003959A.bin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Cache\00039A6C.bin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Cache\000BB7C1 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Cache\000BE096 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Cache\000BE4FB.bin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Cache\000BE8D4.bin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Cache\000BEE52.bin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Cache\000BF3EF.bin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Cache\000BF8A2.bin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Cache\files.ini (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Game\CHECKERS.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Game\CHESS.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Game\REVERSI.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\History\search3 (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\icons\CM.ICO (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\icons\MFC.ICO (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\icons\PSS.ICO (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\icons\SMILEY.ICO (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\icons\WB.ICO (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\icons\ZWINKY.ICO (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Message\COMMON.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Notifier\COMMON.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Notifier\DOG.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Notifier\FISH.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Notifier\KUNGFU.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Notifier\LIFEGARD.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Notifier\MAID.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Notifier\MAILBOX.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Notifier\OPERA.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Notifier\ROBOT.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Notifier\SEDUCT.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Notifier\SURFER.F3S (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Settings\prevcfg2.htm (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Settings\setting2.htm (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Settings\settings.dat (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\MyWebSearch\bar\Settings\s_pid.dat (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\FunWebProducts\Shared\Cache\CursorManiaBtn.html (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\FunWebProducts\Shared\Cache\MyFunCardsIMBtn.html (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\FunWebProducts\Shared\Cache\SmileyCentralBtn.html (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\FunWebProducts\Shared\Cache\WebfettiBtn.html (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\VirusRemover2009\ExtSecurityCenter.ini (Rogue.VirusRemove) -> Quarantined and deleted successfully.
C:\Program Files\VirusRemover2009\ExtSecurityCenter.xml (Rogue.VirusRemove) -> Quarantined and deleted successfully.
C:\Program Files\VirusRemover2009\Uninstall.exe (Rogue.VirusRemove) -> Quarantined and deleted successfully.

Répondre à lima900

ITOKYOPEYA, le 12 avr 2009 à 17:53:07

Après reboot tout doit rentrer dans l'ordre.
Installes Firefox, avec au moins ces modules complémentaires: NoScript, Ghostery, Google Toolbar For Firefox.

Répondre à ITOKYOPEYA

Destrio5, le 12 avr 2009 à 17:54:18

Ton PC doit se sentir mieux ;)

--> Relance MBAM, va dans Quarantaine et supprime tout.

On va vérifier que c'est OK.

--> Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.

--> Double-clique sur RSIT.exe afin de lancer le programme.
(Sous Vista, il faut cliquer droit sur RSIT.exe et choisir Exécuter en tant qu'administrateur)

--> Clique sur Continue à l'écran Disclaimer.

--> Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

--> Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

Note : les rapports sont sauvegardés dans le dossier C:\rsit.

Répondre à Destrio5

lima900, le 12 avr 2009 à 19:31:31

voila le rapport de log.txt:
Logfile of random's system information tool 1.06 (written by random/random)
Run by Administrateur at 2009-04-12 19:18:34
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 19 GB (49%) free of 38 GB
Total RAM: 510 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:27:21, on 12/04/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\LG Electronics\LG EV-DO Rev.A USB Modem\Modem Software\REVAService.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\WINDOWS\system32\ctfmon.exe
C:\documents and settings\administrateur\local settings\application data\qqcemyo.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\LG Electronics\LG EV-DO Rev.A USB Modem\Modem Software\IEUM.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\AVG\AVG8\aAvgApi.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\Administrateur\Mes documents\Downloads\Programs\RSIT.exe
C:\Program Files\trend micro\Administrateur.exe
C:\WINDOWS\system32\wuauclt.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.wana.ma/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: PHPNukeEN Toolbar - {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - C:\Program Files\PHPNukeEN\tbPHPN.dll
R3 - URLSearchHook: Eazel-FR Toolbar - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} - C:\Program Files\Eazel-FR\tbEaz1.dll
R3 - URLSearchHook: PHPNukeFR Toolbar - {1c491116-c175-45e1-a570-6fb14fea8b7b} - C:\Program Files\PHPNukeFR\tbPHPN.dll
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: PHPNukeFR Toolbar - {1c491116-c175-45e1-a570-6fb14fea8b7b} - C:\Program Files\PHPNukeFR\tbPHPN.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O2 - BHO: Eazel-FR Toolbar - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} - C:\Program Files\Eazel-FR\tbEaz1.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (file missing)
O2 - BHO: PHPNukeEN Toolbar - {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - C:\Program Files\PHPNukeEN\tbPHPN.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O3 - Toolbar: PHPNukeEN Toolbar - {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - C:\Program Files\PHPNukeEN\tbPHPN.dll
O3 - Toolbar: Eazel-FR Toolbar - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} - C:\Program Files\Eazel-FR\tbEaz1.dll
O3 - Toolbar: PHPNukeFR Toolbar - {1c491116-c175-45e1-a570-6fb14fea8b7b} - C:\Program Files\PHPNukeFR\tbPHPN.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKCU\..\Run: [REVAService] C:\Program Files\LG Electronics\LG EV-DO Rev.A USB Modem\Modem Software\REVAService.exe
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2009] C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe /S
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [qqcemyo] "c:\documents and settings\administrateur\local settings\application data\qqcemyo.exe" qqcemyo
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?fdd51a70062a428ca08401482478103d
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?fdd51a70062a428ca08401482478103d
O8 - Extra context menu item: Télécharger avec IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Télécharger tous les liens avec IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O17 - HKLM\System\CCS\Services\Tcpip\..\{E8CD65EA-C645-44B5-9BA2-D50AF5F1FB2E}: NameServer = 192.168.50.55 196.12.209.5
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
End of file - 9658 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Vérifier les mises à jour de Windows Live Toolbar.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class - C:\Program Files\Internet Download Manager\IDMIECC.dll [2009-04-02 169392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1c491116-c175-45e1-a570-6fb14fea8b7b}]
PHPNukeFR Toolbar - C:\Program Files\PHPNukeFR\tbPHPN.dll [2009-02-16 1882136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2009-03-26 1078552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-08-31 322368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}]
AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2009-03-26 1968920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a8f9752d-e2b8-4e7a-86b5-499f4330e2fe}]
Eazel-FR Toolbar - C:\Program Files\Eazel-FR\tbEaz1.dll [2009-04-10 1883672]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar1.dll [2009-04-12 2436160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live Toolbar\msntb.dll [2006-09-27 544032]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{dd02a4eb-4afd-4d60-99d8-e67f964ca813}]
PHPNukeEN Toolbar - C:\Program Files\PHPNukeEN\tbPHPN.dll [2009-02-16 1882136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Windows Live Toolbar - C:\Program Files\Windows Live Toolbar\msntb.dll [2006-09-27 544032]
{A057A204-BACC-4D26-9990-79A187E2698E} - AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2009-03-26 1968920]
{dd02a4eb-4afd-4d60-99d8-e67f964ca813} - PHPNukeEN Toolbar - C:\Program Files\PHPNukeEN\tbPHPN.dll [2009-02-16 1882136]
{a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} - Eazel-FR Toolbar - C:\Program Files\Eazel-FR\tbEaz1.dll [2009-04-10 1883672]
{1c491116-c175-45e1-a570-6fb14fea8b7b} - PHPNukeFR Toolbar - C:\Program Files\PHPNukeFR\tbPHPN.dll [2009-02-16 1882136]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll [2009-04-12 2436160]
et voila le rapport de infos.txt:

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IMJPMIG8.1"=C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [2004-08-04 208952]
"PHIME2002ASync"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-04 455168]
"PHIME2002A"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-04 455168]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2007-08-24 33648]
"igfxtray"=C:\WINDOWS\system32\igfxtray.exe [2005-09-20 94208]
"igfxhkcmd"=C:\WINDOWS\system32\hkcmd.exe [2005-09-20 77824]
"igfxpers"=C:\WINDOWS\system32\igfxpers.exe [2005-09-20 114688]
"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2009-03-26 1932568]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2009-04-06 401040]
"Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2009-04-06 1277584]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"REVAService"=C:\Program Files\LG Electronics\LG EV-DO Rev.A USB Modem\Modem Software\REVAService.exe [2008-12-02 23040]
"IDMan"=C:\Program Files\Internet Download Manager\IDMan.exe [2009-04-03 2794928]
"MsnMsgr"=C:\Program Files\MSN Messenger\MsnMsgr.Exe [2007-01-19 5674352]
"Uniblue RegistryBooster 2009"=C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe /S []
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2004-08-04 15360]
"qqcemyo"=c:\documents and settings\administrateur\local settings\application data\qqcemyo.exe [2009-04-07 278528]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe [2009-04-12 171448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
C:\WINDOWS\system32\avgrsstx.dll [2009-03-26 10520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2005-09-20 135168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-08-24 133120]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\AVG\AVG8\avgnsx.exe"="C:\Program Files\AVG\AVG8\avgnsx.exe:*:Enabled:avgnsx.exe"
"C:\Program Files\Internet Download Manager\IDMan.exe"="C:\Program Files\Internet Download Manager\IDMan.exe:*:Enabled:Internet Download Manager (IDM)"
"C:\Program Files\AVG\AVG8\avgupd.exe"="C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e6b4a4cc-19e3-11de-af8d-bd1fd87ebe76}]
shell\AutoRun\command - E:\SWLauncher.exe

======List of files/folders created in the last 1 months======

2009-04-12 19:18:38 ----D---- C:\Program Files\trend micro
2009-04-12 19:18:34 ----D---- C:\rsit
2009-04-12 17:48:00 ----A---- C:\vafgnu.txt
2009-04-12 17:31:05 ----D---- C:\Documents and Settings\Administrateur\Application Data\Malwarebytes
2009-04-12 17:30:31 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-04-12 17:30:31 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-04-12 16:41:26 ----D---- C:\Program Files\WinAVI Video Converter
2009-04-12 12:08:04 ----D---- C:\Casino
2009-04-12 11:08:47 ----D---- C:\Documents and Settings\Administrateur\Application Data\Pixia
2009-04-12 11:07:40 ----D---- C:\Program Files\Pixia 4.3a FR
2009-04-12 01:32:16 ----D---- C:\Documents and Settings\Administrateur\Application Data\AVS4YOU
2009-04-12 01:31:58 ----D---- C:\Documents and Settings\All Users\Application Data\AVS4YOU
2009-04-12 01:25:27 ----D---- C:\Program Files\Fichiers communs\AVSMedia
2009-04-12 01:24:34 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2009-04-12 01:22:59 ----A---- C:\WINDOWS\system32\msvcp70.dll
2009-04-12 01:22:59 ----A---- C:\WINDOWS\system32\mfc70.dll
2009-04-12 01:22:58 ----D---- C:\Program Files\AVS4YOU
2009-04-12 01:22:58 ----A---- C:\WINDOWS\system32\msxml3a.dll
2009-04-12 01:22:58 ----A---- C:\WINDOWS\system32\msvcr70.dll
2009-04-12 01:22:58 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2009-04-10 18:38:56 ----D---- C:\Program Files\PHPNukeFR
2009-04-10 18:38:41 ----D---- C:\Program Files\Zeallsoft
2009-04-10 18:24:50 ----D---- C:\Program Files\Eazel-FR
2009-04-10 17:54:25 ----D---- C:\Documents and Settings\All Users\Application Data\FaceOnBody
2009-04-10 16:37:16 ----D---- C:\Program Files\Secret Maryo Chronicles
2009-04-10 16:28:16 ----D---- C:\MicroGaming
2009-04-10 16:28:16 ----D---- C:\Documents and Settings\All Users\Application Data\Microgaming
2009-04-10 16:28:16 ----D---- C:\Documents and Settings\All Users\Application Data\MGS
2009-04-10 13:46:56 ----DC---- C:\Documents and Settings\All Users\Application Data\{92E7A367-8E12-4830-AA70-29C32E331A81}
2009-04-10 13:31:44 ----D---- C:\WINDOWS\system32\appmgmt
2009-04-08 13:49:39 ----D---- C:\Downloads
2009-04-08 00:45:07 ----D---- C:\Program Files\Fichiers communs\Windows Live
2009-04-06 12:20:15 ----D---- C:\WINDOWS\Sun
2009-04-06 12:19:39 ----A---- C:\WINDOWS\system32\deploytk.dll
2009-04-06 12:14:31 ----D---- C:\Documents and Settings\Administrateur\Application Data\Sun
2009-04-03 15:24:14 ----A---- C:\WINDOWS\system32\idmmbc.dll
2009-04-03 00:09:53 ----HDC---- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
2009-04-03 00:09:32 ----HDC---- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
2009-04-03 00:08:59 ----HDC---- C:\WINDOWS\$NtUninstallKB915865$
2009-04-03 00:08:51 ----N---- C:\WINDOWS\system32\xmllite.dll
2009-04-03 00:07:01 ----D---- C:\WINDOWS\network diagnostic
2009-04-03 00:06:58 ----HDC---- C:\WINDOWS\$NtUninstallKB914440$
2009-04-03 00:06:39 ----HDC---- C:\WINDOWS\$NtUninstallKB904942$
2009-04-01 15:57:01 ----D---- C:\Program Files\MyWebSearch
2009-04-01 13:57:41 ----D---- C:\Documents and Settings\Administrateur\Application Data\Google
2009-03-31 15:08:17 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2009-03-30 11:46:52 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2009-03-30 11:45:50 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-03-30 11:45:50 ----D---- C:\Program Files\Adobe
2009-03-30 11:21:35 ----A---- C:\WINDOWS\system32\MRT.exe
2009-03-29 01:30:45 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2009-03-29 01:30:34 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2009-03-29 01:30:16 ----HDC---- C:\WINDOWS\$NtUninstallKB960714$
2009-03-28 20:08:15 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2009-03-28 20:08:08 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
2009-03-28 20:07:49 ----HDC---- C:\WINDOWS\$NtUninstallKB958215$
2009-03-28 20:07:35 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2009-03-28 20:07:28 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2009-03-28 20:07:21 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
2009-03-28 20:07:14 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2009-03-28 20:06:59 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2009-03-28 16:04:07 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2009-03-28 14:48:34 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2009-03-28 14:46:05 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
2009-03-28 14:44:49 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2009-03-27 22:42:54 ----D---- C:\Program Files\Microsoft Plus! Digital Media Edition
2009-03-27 21:37:53 ----D---- C:\WINDOWS\system32\CatRoot_bak
2009-03-27 21:03:31 ----HD---- C:\$AVG8.VAULT$
2009-03-27 11:33:04 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2009-03-27 11:32:58 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2009-03-27 11:32:52 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2009-03-27 11:32:36 ----HDC---- C:\WINDOWS\$NtUninstallKB925720$
2009-03-27 11:32:29 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2009-03-27 11:32:23 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2009-03-27 11:32:17 ----HDC---- C:\WINDOWS\$NtUninstallKB960715$
2009-03-27 11:32:12 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2009-03-27 11:32:06 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2009-03-27 11:32:01 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2009-03-27 11:31:47 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2009-03-27 11:31:32 ----HDC---- C:\WINDOWS\$NtUninstallKB901190$
2009-03-27 11:31:18 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2009-03-27 11:31:09 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2009-03-27 11:30:59 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2009-03-27 11:30:21 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$
2009-03-26 22:16:53 ----D---- C:\Documents and Settings\Administrateur\Application Data\Macromedia
2009-03-26 22:07:29 ----D---- C:\Documents and Settings\Administrateur\Application Data\Adobe
2009-03-26 22:04:58 ----D---- C:\WINDOWS\system32\PreInstall
2009-03-26 22:04:56 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2009-03-26 22:04:56 ----HD---- C:\WINDOWS\$hf_mig$
2009-03-26 19:24:46 ----D---- C:\Program Files\Conduit
2009-03-26 19:24:43 ----D---- C:\Program Files\PHPNukeEN
2009-03-26 19:21:02 ----D---- C:\Documents and Settings\Administrateur\Application Data\dvdcss
2009-03-26 14:21:44 ----D---- C:\Documents and Settings\Administrateur\Application Data\Uniblue
2009-03-26 14:19:55 ----A---- C:\WINDOWS\ModemLog_LGE EVDOM USB Modem #2.txt
2009-03-26 14:14:14 ----HDC---- C:\WINDOWS\$NtUninstallKB942288-v3$
2009-03-26 14:13:55 ----D---- C:\Program Files\Microsoft SQL Server
2009-03-26 14:13:48 ----D---- C:\Program Files\Microsoft Silverlight
2009-03-26 14:13:33 ----D---- C:\Program Files\Microsoft Synchronization Services
2009-03-26 14:13:31 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2009-03-26 14:10:37 ----D---- C:\Documents and Settings\All Users\Application Data\Google
2009-03-26 14:09:40 ----D---- C:\Program Files\Total Video Converter
2009-03-26 14:08:14 ----D---- C:\Program Files\Microsoft.NET
2009-03-26 14:08:14 ----D---- C:\Program Files\Microsoft Visual Studio 9.0
2009-03-26 14:07:32 ----D---- C:\Program Files\Microsoft SDKs
2009-03-26 14:05:50 ----N---- C:\WINDOWS\system32\spmsg2.dll
2009-03-26 14:05:45 ----HDC---- C:\WINDOWS\$NtUninstallXPSEPSCLP$
2009-03-26 14:05:26 ----D---- C:\WINDOWS\system32\fr-FR
2009-03-26 14:04:23 ----D---- C:\Program Files\Google
2009-03-26 14:02:45 ----D---- C:\WINDOWS\system32\XPSViewer
2009-03-26 14:02:40 ----D---- C:\WINDOWS\system32\en-US
2009-03-26 14:02:35 ----D---- C:\Program Files\Reference Assemblies
2009-03-26 14:01:52 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2009-03-26 14:01:52 ----N---- C:\WINDOWS\system32\prntvpt.dll
2009-03-26 14:01:51 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2009-03-26 14:01:50 ----D---- C:\3863ac69711f19ce56
2009-03-26 14:01:02 ----RSD---- C:\WINDOWS\assembly
2009-03-26 14:00:33 ----D---- C:\WINDOWS\Microsoft.NET
2009-03-26 13:59:24 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2009-03-26 13:59:22 ----HDC---- C:\WINDOWS\$NtUninstallWIC$
2009-03-26 13:59:17 ----D---- C:\Program Files\MSXML 6.0
2009-03-26 13:57:00 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
2009-03-26 13:52:23 ----A---- C:\WINDOWS\system32\avgrsstx.dll
2009-03-26 13:52:15 ----D---- C:\Documents and Settings\Administrateur\Application Data\AVGTOOLBAR
2009-03-26 13:52:07 ----D---- C:\Program Files\AVG
2009-03-26 13:52:06 ----D---- C:\Documents and Settings\All Users\Application Data\avg8
2009-03-26 13:50:26 ----D---- C:\Documents and Settings\Administrateur\Application Data\vlc
2009-03-26 13:49:53 ----D---- C:\Program Files\VideoLAN
2009-03-26 13:27:03 ----D---- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files
2009-03-26 13:05:19 ----A---- C:\WINDOWS\system32\muweb.dll
2009-03-26 13:05:19 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2009-03-26 13:05:19 ----A---- C:\WINDOWS\system32\mucltui.dll
2009-03-26 13:04:47 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2009-03-26 13:04:47 ----A---- C:\WINDOWS\system32\wups2.dll
2009-03-26 13:04:47 ----A---- C:\WINDOWS\system32\wucltui.dll.mui
2009-03-26 13:04:47 ----A---- C:\WINDOWS\system32\wuaueng.dll.mui
2009-03-26 13:04:46 ----A---- C:\WINDOWS\system32\wuapi.dll.mui
2009-03-26 13:01:42 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Live Toolbar
2009-03-26 12:59:26 ----D---- C:\Program Files\Windows Live Toolbar
2009-03-26 12:58:45 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-03-26 12:58:39 ----D---- C:\Program Files\MSN Messenger
2009-03-26 12:56:19 ----D---- C:\Documents and Settings\Administrateur\Application Data\WinRAR
2009-03-26 12:54:18 ----D---- C:\Documents and Settings\Administrateur\Application Data\IDM
2009-03-26 12:54:18 ----D---- C:\Documents and Settings\Administrateur\Application Data\DMCache
2009-03-26 12:54:15 ----D---- C:\Program Files\Internet Download Manager
2009-03-26 12:53:46 ----D---- C:\Documents and Settings\Administrateur\Application Data\MSNInstaller
2009-03-26 12:51:29 ----SHD---- C:\RECYCLER
2009-03-26 12:48:29 ----D---- C:\Program Files\WinRAR
2009-03-26 12:39:21 ----A---- C:\WINDOWS\system32\ksuser.dll
2009-03-26 12:39:16 ----D---- C:\Program Files\Analog Devices
2009-03-26 12:39:16 ----A---- C:\WINDOWS\system32\DSndUp.exe
2009-03-26 12:39:16 ----A---- C:\WINDOWS\system32\CleanUp.exe
2009-03-26 12:39:16 ----A---- C:\WINDOWS\system32\a3d.dll
2009-03-26 12:26:21 ----A---- C:\WINDOWS\system32\igfxres.dll
2009-03-26 12:23:07 ----D---- C:\drvrtmp
2009-03-26 12:23:07 ----A---- C:\WINDOWS\system32\Prounstl.exe
2009-03-26 12:23:07 ----A---- C:\WINDOWS\system32\IntelNic.dll
2009-03-26 12:23:07 ----A---- C:\WINDOWS\system32\e100bmsg.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\iglicd32.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\igldev32.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\igfxzoom.exe
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\igfxtray.exe
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\igfxsrvc.exe
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\igfxsrvc.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\igfxress.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\igfxpph.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\igfxpers.exe
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\igfxext.exe
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\igfxexps.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\igfxdo.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\igfxdev.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\igfxcfg.exe
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuTRK.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuTHA.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuSVE.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuRUS.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuPTG.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuPTB.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuPLK.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuNOR.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuNLD.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuKOR.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuJPN.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuITA.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuHUN.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuHEB.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuFRC.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuFRA.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuFIN.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuESP.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuENG.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuELL.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmudlg.exe
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuDEU.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuDAN.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuCSY.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuCHT.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuCHS.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuARB.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmuARA.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmrnt5.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmrem.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmdnt5.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmdev5.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\ialmdd5.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\iAlmCoIn_v4396.dll
2009-03-26 12:20:43 ----A---- C:\WINDOWS\system32\hkcmd.exe
2009-03-26 12:20:42 ----A---- C:\WINDOWS\system32\hccutils.dll
2009-03-26 12:15:07 ----D---- C:\Program Files\Intel
2009-03-26 12:14:46 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-03-26 12:14:24 ----D---- C:\dell
2009-03-26 11:12:13 ----A---- C:\WINDOWS\ModemLog_LGE EVDOM USB Modem.txt
2009-03-26 11:10:05 ----A---- C:\WINDOWS\system32\msonpmon.dll
2009-03-26 11:09:14 ----D---- C:\Program Files\Microsoft Works
2009-03-26 11:09:03 ----D---- C:\Program Files\MSBuild
2009-03-26 11:08:35 ----D---- C:\Program Files\Microsoft Visual Studio
2009-03-26 11:08:35 ----D---- C:\Program Files\Fichiers communs\DESIGNER
2009-03-26 11:08:08 ----HD---- C:\Program Files\InstallShield Installation Information
2009-03-26 11:08:08 ----D---- C:\Program Files\LG Electronics
2009-03-26 11:07:56 ----D---- C:\Program Files\Fichiers communs\InstallShield
2009-03-26 11:07:32 ----D---- C:\LG Electronics
2009-03-26 11:01:50 ----D---- C:\WINDOWS\SHELLNEW
2009-03-26 11:01:35 ----D---- C:\Program Files\Microsoft Office
2009-03-26 11:01:34 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2009-03-26 11:01:11 ----RHD---- C:\MSOCache
2009-03-26 10:55:53 ----D---- C:\Documents and Settings\Administrateur\Application Data\Identities
2009-03-26 10:55:52 ----HD---- C:\Program Files\Uninstall Information
2009-03-26 10:55:33 ----SD---- C:\Documents and Settings\Administrateur\Application Data\Microsoft
2009-03-26 10:55:33 ----ASH---- C:\Documents and Settings\Administrateur\Application Data\desktop.ini
2009-03-26 10:55:20 ----D---- C:\WINDOWS\SoftwareDistribution
2009-03-26 10:55:18 ----SD---- C:\WINDOWS\system32\Microsoft
2009-03-26 10:55:18 ----D---- C:\WINDOWS\Prefetch
2009-03-26 10:55:18 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-03-26 10:52:14 ----D---- C:\WINDOWS\system32\xircom
2009-03-26 10:52:14 ----D---- C:\Program Files\xerox
2009-03-26 10:52:14 ----D---- C:\Program Files\microsoft frontpage
2009-03-26 10:51:48 ----A---- C:\WINDOWS\control.ini
2009-03-26 10:51:48 ----A---- C:\AUTOEXEC.BAT
2009-03-26 10:51:33 ----A---- C:\WINDOWS\OEWABLog.txt
2009-03-26 10:51:28 ----A---- C:\WINDOWS\system32\mapi32.dll
2009-03-26 10:50:32 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-03-26 10:50:32 ----RD---- C:\WINDOWS\Offline Web Pages
2009-03-26 10:50:32 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2009-03-26 10:50:26 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2009-03-26 10:50:21 ----HD---- C:\Program Files\WindowsUpdate
2009-03-26 10:50:17 ----D---- C:\Program Files\Services en ligne
2009-03-26 10:50:04 ----D---- C:\WINDOWS\system32\DirectX
2009-03-26 10:49:50 ----A---- C:\WINDOWS\system32\atrace.dll
2009-03-26 10:49:48 ----A---- C:\WINDOWS\system32\desktop.ini
2009-03-26 10:49:48 ----A---- C:\WINDOWS\desktop.ini
2009-03-26 10:49:43 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2009-03-26 10:49:42 ----D---- C:\Program Files\Fichiers communs\Services
2009-03-26 10:49:42 ----A---- C:\WINDOWS\system32\acctres.dll
2009-03-26 10:49:40 ----SD---- C:\WINDOWS\Tasks
2009-03-26 10:49:40 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2009-03-26 10:49:39 ----D---- C:\Program Files\Fichiers communs\MSSoap
2009-03-26 10:49:37 ----D---- C:\WINDOWS\srchasst
2009-03-26 10:49:36 ----D---- C:\WINDOWS\system32\Macromed
2009-03-26 10:49:34 ----A---- C:\WINDOWS\system32\wuweb.dll
2009-03-26 10:49:34 ----A---- C:\WINDOWS\system32\wups.dll
2009-03-26 10:49:34 ----A---- C:\WINDOWS\system32\wucltui.dll
2009-03-26 10:49:34 ----A---- C:\WINDOWS\system32\wuauserv.dll
2009-03-26 10:49:34 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2009-03-26 10:49:34 ----A---- C:\WINDOWS\system32\wuaueng.dll
2009-03-26 10:49:33 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2009-03-26 10:49:33 ----A---- C:\WINDOWS\system32\wuauclt.exe
2009-03-26 10:49:33 ----A---- C:\WINDOWS\system32\wuapi.dll
2009-03-26 10:49:33 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2009-03-26 10:49:33 ----A---- C:\WINDOWS\system32\qmgr.dll
2009-03-26 10:49:33 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2009-03-26 10:49:33 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2009-03-26 10:49:30 ----D---- C:\Program Files\Movie Maker
2009-03-26 10:49:27 ----A---- C:\WINDOWS\system32\safrslv.dll
2009-03-26 10:49:27 ----A---- C:\WINDOWS\system32\safrdm.dll
2009-03-26 10:49:27 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2009-03-26 10:49:27 ----A---- C:\WINDOWS\system32\racpldlg.dll
2009-03-26 10:49:25 ----D---- C:\WINDOWS\system32\Restore
2009-03-26 10:49:25 ----A---- C:\WINDOWS\system32\srsvc.dll
2009-03-26 10:49:25 ----A---- C:\WINDOWS\system32\srrstr.dll
2009-03-26 10:49:25 ----A---- C:\WINDOWS\system32\fltMc.exe
2009-03-26 10:49:25 ----A---- C:\WINDOWS\system32\fltlib.dll
2009-03-26 10:49:24 ----A---- C:\WINDOWS\system32\srclient.dll
2009-03-26 10:49:24 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2009-03-26 10:49:24 ----A---- C:\WINDOWS\system32\msconf.dll
2009-03-26 10:49:24 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2009-03-26 10:49:24 ----A---- C:\WINDOWS\system32\mnmdd.dll
2009-03-26 10:49:24 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2009-03-26 10:49:24 ----A---- C:\WINDOWS\system32\ils.dll
2009-03-26 10:49:22 ----D---- C:\Program Files\NetMeeting
2009-03-26 10:49:22 ----A---- C:\WINDOWS\system32\msoert2.dll
2009-03-26 10:49:22 ----A---- C:\WINDOWS\system32\msoeacct.dll
2009-03-26 10:49:21 ----A---- C:\WINDOWS\system32\inetres.dll
2009-03-26 10:49:20 ----A---- C:\WINDOWS\system32\inetcomm.dll
2009-03-26 10:49:19 ----D---- C:\Program Files\Outlook Express
2009-03-26 10:49:19 ----A---- C:\WINDOWS\system32\schedsvc.dll
2009-03-26 10:49:19 ----A---- C:\WINDOWS\system32\mstinit.exe
2009-03-26 10:49:19 ----A---- C:\WINDOWS\system32\mstask.dll
2009-03-26 10:49:19 ----A---- C:\WINDOWS\system32\isign32.dll
2009-03-26 10:49:19 ----A---- C:\WINDOWS\system32\inetcfg.dll
2009-03-26 10:49:19 ----A---- C:\WINDOWS\system32\icwphbk.dll
2009-03-26 10:49:19 ----A---- C:\WINDOWS\system32\icwdial.dll
2009-03-26 10:49:15 ----D---- C:\Program Files\Fichiers communs\System
2009-03-26 10:49:14 ----D---- C:\Program Files\Internet Explorer
2009-03-26 10:48:40 ----D---- C:\Program Files\ComPlus Applications
2009-03-26 10:48:38 ----A---- C:\WINDOWS\vbaddin.ini
2009-03-26 10:48:38 ----A---- C:\WINDOWS\vb.ini
2009-03-26 10:48:33 ----D---- C:\WINDOWS\Registration
2009-03-26 10:48:26 ----D---- C:\Program Files\Windows Media Player
2009-03-26 10:48:26 ----D---- C:\Program Files\Online Services
2009-03-26 10:48:20 ----D---- C:\Program Files\Messenger
2009-03-26 10:48:18 ----D---- C:\Program Files\MSN Gaming Zone
2009-03-26 10:48:18 ----A---- C:\WINDOWS\system32\write.exe
2009-03-26 10:48:11 ----A---- C:\WINDOWS\system32\sndvol32.exe
2009-03-26 10:48:11 ----A---- C:\WINDOWS\system32\hticons.dll
2009-03-26 10:48:11 ----A---- C:\WINDOWS\system32\avwav.dll
2009-03-26 10:48:11 ----A---- C:\WINDOWS\system32\avtapi.dll
2009-03-26 10:48:11 ----A---- C:\WINDOWS\system32\avmeter.dll
2009-03-26 10:48:10 ----A---- C:\WINDOWS\system32\winchat.exe
2009-03-26 10:48:06 ----A---- C:\WINDOWS\system32\getuname.dll
2009-03-26 10:48:06 ----A---- C:\WINDOWS\system32\charmap.exe
2009-03-26 10:48:06 ----A---- C:\WINDOWS\system32\calc.exe
2009-03-26 10:48:05 ----A---- C:\WINDOWS\system32\winmine.exe
2009-03-26 10:48:05 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2009-03-26 10:48:05 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2009-03-26 10:48:05 ----A---- C:\WINDOWS\system32\tslabels.ini
2009-03-26 10:48:05 ----A---- C:\WINDOWS\system32\tskill.exe
2009-03-26 10:48:05 ----A---- C:\WINDOWS\system32\sol.exe
2009-03-26 10:48:05 ----A---- C:\WINDOWS\system32\reset.exe
2009-03-26 10:48:05 ----A---- C:\WINDOWS\system32\mshearts.exe
2009-03-26 10:48:05 ----A---- C:\WINDOWS\system32\freecell.exe
2009-03-26 10:48:04 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2009-03-26 10:48:04 ----A---- C:\WINDOWS\system32\tscon.exe
2009-03-26 10:48:04 ----A---- C:\WINDOWS\system32\shadow.exe
2009-03-26 10:48:04 ----A---- C:\WINDOWS\system32\rwinsta.exe
2009-03-26 10:48:04 ----A---- C:\WINDOWS\system32\regini.exe
2009-03-26 10:48:04 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2009-03-26 10:48:04 ----A---- C:\WINDOWS\system32\qwinsta.exe
2009-03-26 10:48:04 ----A---- C:\WINDOWS\system32\qappsrv.exe
2009-03-26 10:48:04 ----A---- C:\WINDOWS\system32\msg.exe
2009-03-26 10:48:04 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2009-03-26 10:48:04 ----A---- C:\WINDOWS\system32\logoff.exe
2009-03-26 10:48:04 ----A---- C:\WINDOWS\system32\cdmodem.dll
2009-03-26 10:48:03 ----A---- C:\WINDOWS\system32\stclient.dll
2009-03-26 10:48:03 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2009-03-26 10:48:03 ----A---- C:\WINDOWS\system32\mtxex.dll
2009-03-26 10:48:03 ----A---- C:\WINDOWS\system32\mtxdm.dll
2009-03-26 10:48:03 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2009-03-26 10:48:03 ----A---- C:\WINDOWS\system32\comsnap.dll
2009-03-26 10:48:03 ----A---- C:\WINDOWS\system32\comrepl.dll
2009-03-26 10:48:03 ----A---- C:\WINDOWS\system32\comaddin.dll
2009-03-26 10:47:59 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2009-03-26 10:47:52 ----D---- C:\Program Files\MSN
2009-03-26 10:47:52 ----A---- C:\WINDOWS\system32\accwiz.exe
2009-03-26 10:47:51 ----D---- C:\Program Files\Windows NT
2009-03-26 10:47:51 ----A---- C:\WINDOWS\system32\spider.exe
2009-03-26 10:47:51 ----A---- C:\WINDOWS\system32\sndrec32.exe
2009-03-26 10:47:51 ----A---- C:\WINDOWS\system32\mspaint.exe
2009-03-26 10:47:51 ----A---- C:\WINDOWS\system32\mplay32.exe
2009-03-26 10:47:51 ----A---- C:\WINDOWS\system32\hypertrm.dll
2009-03-26 10:47:51 ----A---- C:\WINDOWS\system32\clipbrd.exe
2009-03-26 10:47:50 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2009-03-26 10:47:50 ----A---- C:\WINDOWS\system32\sessmgr.exe
2009-03-26 10:47:50 ----A---- C:\WINDOWS\system32\remotepg.dll
2009-03-26 10:47:50 ----A---- C:\WINDOWS\system32\rdshost.exe
2009-03-26 10:47:50 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2009-03-26 10:47:50 ----A---- C:\WINDOWS\system32\mstscax.dll
2009-03-26 10:47:50 ----A---- C:\WINDOWS\system32\mstsc.exe
2009-03-26 10:47:49 ----D---- C:\WINDOWS\system32\MsDtc
2009-03-26 10:47:49 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2009-03-26 10:47:49 ----A---- C:\WINDOWS\system32\termsrv.dll
2009-03-26 10:47:49 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2009-03-26 10:47:49 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2009-03-26 10:47:49 ----A---- C:\WINDOWS\system32\rdpclip.exe
2009-03-26 10:47:49 ----A---- C:\WINDOWS\system32\rdchost.dll
2009-03-26 10:47:49 ----A---- C:\WINDOWS\system32\qprocess.exe
2009-03-26 10:47:49 ----A---- C:\WINDOWS\system32\mtxoci.dll
2009-03-26 10:47:49 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2009-03-26 10:47:49 ----A---- C:\WINDOWS\system32\icaapi.dll
2009-03-26 10:47:49 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2009-03-26 10:47:48 ----A---- C:\WINDOWS\system32\xolehlp.dll
2009-03-26 10:47:48 ----A---- C:\WINDOWS\system32\msdtctm.dll
2009-03-26 10:47:48 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2009-03-26 10:47:48 ----A---- C:\WINDOWS\system32\msdtclog.dll
2009-03-26 10:47:48 ----A---- C:\WINDOWS\system32\msdtc.exe
2009-03-26 10:47:47 ----D---- C:\WINDOWS\system32\Com
2009-03-26 10:47:47 ----A---- C:\WINDOWS\system32\comsvcs.dll
2009-03-26 10:47:47 ----A---- C:\WINDOWS\system32\colbact.dll
2009-03-26 10:47:47 ----A---- C:\WINDOWS\system32\clbcatex.dll
2009-03-26 10:47:47 ----A---- C:\WINDOWS\system32\catsrvut.dll
2009-03-26 10:47:47 ----A---- C:\WINDOWS\system32\catsrvps.dll
2009-03-26 10:47:47 ----A---- C:\WINDOWS\system32\catsrv.dll
2009-03-26 10:47:46 ----A---- C:\WINDOWS\system32\comuid.dll
2009-03-26 10:47:46 ----A---- C:\WINDOWS\system32\clbcatq.dll
2009-03-26 10:47:42 ----A---- C:\WINDOWS\system32\servdeps.dll
2009-03-26 10:47:42 ----A---- C:\WINDOWS\system32\mmfutil.dll
2009-03-26 10:47:42 ----A---- C:\WINDOWS\system32\licwmi.dll
2009-03-26 10:47:41 ----A---- C:\WINDOWS\system32\cmprops.dll
2009-03-26 09:44:51 ----A---- C:\WINDOWS\system32\h323log.txt
2009-03-26 09:43:20 ----A---- C:\WINDOWS\system32\uniime.dll
2009-03-26 09:43:15 ----A---- C:\WINDOWS\system32\imjp81k.dll
2009-03-26 09:43:13 ----A---- C:\WINDOWS\system32\chtbrkr.dll
2009-03-26 09:43:13 ----A---- C:\WINDOWS\system32\chsbrkr.dll
2009-03-26 09:43:12 ----A---- C:\WINDOWS\system32\msir3jp.dll
2009-03-26 09:43:12 ----A---- C:\WINDOWS\system32\korwbrkr.dll
2009-03-26 09:42:59 ----A---- C:\WINDOWS\system32\c_g18030.dll
2009-03-26 09:42:58 ----A---- C:\WINDOWS\system32\kbd101a.dll
2009-03-26 09:42:50 ----A---- C:\WINDOWS\system32\kbdnecNT.dll
2009-03-26 09:42:50 ----A---- C:\WINDOWS\system32\kbdnecAT.dll
2009-03-26 09:42:50 ----A---- C:\WINDOWS\system32\kbdnec95.dll
2009-03-26 09:42:50 ----A---- C:\WINDOWS\system32\kbdlk41j.dll
2009-03-26 09:42:50 ----A---- C:\WINDOWS\system32\kbdlk41a.dll
2009-03-26 09:42:50 ----A---- C:\WINDOWS\system32\kbdibm02.dll
2009-03-26 09:42:50 ----A---- C:\WINDOWS\system32\kbdax2.dll
2009-03-26 09:42:50 ----A---- C:\WINDOWS\system32\kbd106n.dll
2009-03-26 09:42:50 ----A---- C:\WINDOWS\system32\kbd101.dll
2009-03-26 09:42:50 ----A---- C:\WINDOWS\system32\f3ahvoas.dll
2009-03-26 09:42:31 ----A---- C:\WINDOWS\system32\kbdkor.dll
2009-03-26 09:42:31 ----A---- C:\WINDOWS\system32\kbdjpn.dll
2009-03-26 09:42:31 ----A---- C:\WINDOWS\system32\kbd106.dll
2009-03-26 09:42:31 ----A---- C:\WINDOWS\system32\kbd103.dll
2009-03-26 09:42:31 ----A---- C:\WINDOWS\system32\kbd101c.dll
2009-03-26 09:42:31 ----A---- C:\WINDOWS\system32\kbd101b.dll
2009-03-26 09:42:31 ----A---- C:\WINDOWS\system32\c_is2022.dll
2009-03-26 09:40:04 ----A---- C:\WINDOWS\system32\usbui.dll
2009-03-26 09:39:06 ----A---- C:\WINDOWS\imsins.BAK
2009-03-26 09:39:03 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-03-26 09:39:02 ----SHD---- C:\WINDOWS\Installer
2009-03-26 09:39:02 ----D---- C:\Program Files\Fichiers communs\ODBC
2009-03-26 09:39:02 ----A---- C:\WINDOWS\ODBCINST.INI
2009-03-26 09:38:59 ----D---- C:\Program Files\Fichiers communs\SpeechEngines
2009-03-26 09:38:58 ----RD---- C:\Program Files
2009-03-26 09:38:58 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2009-03-26 09:38:58 ----D---- C:\Program Files\Fichiers communs
2009-03-26 09:38:56 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2009-03-26 09:38:56 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2009-03-26 09:38:56 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2009-03-26 09:38:54 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2009-03-26 09:38:54 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2009-03-26 09:38:54 ----RA---- C:\WINDOWS\system32\kbdur.dll
2009-03-26 09:38:54 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2009-03-26 09:38:54 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2009-03-26 09:38:54 ----RA---- C:\WINDOWS\system32\kbdru.dll
2009-03-26 09:38:54 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2009-03-26 09:38:54 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2009-03-26 09:38:54 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2009-03-26 09:38:54 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2009-03-26 09:38:54 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2009-03-26 09:38:54 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2009-03-26 09:38:53 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2009-03-26 09:38:53 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2009-03-26 09:38:53 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2009-03-26 09:38:53 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2009-03-26 09:38:53 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2009-03-26 09:38:53 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2009-03-26 09:38:52 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2009-03-26 09:38:51 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2009-03-26 09:38:51 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2009-03-26 09:38:51 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2009-03-26 09:38:51 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2009-03-26 09:38:51 ----RA---- C:\WINDOWS\system32\kbdest.dll
2009-03-26 09:38:50 ----RA---- C:\WINDOWS\system32\kbdycl.dll
2009-03-26 09:38:50 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
2009-03-26 09:38:50 ----RA---- C:\WINDOWS\system32\kbdsl.dll
2009-03-26 09:38:50 ----RA---- C:\WINDOWS\system32\kbdro.dll
2009-03-26 09:38:50 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
2009-03-26 09:38:50 ----RA---- C:\WINDOWS\system32\kbdpl.dll
2009-03-26 09:38:50 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
2009-03-26 09:38:50 ----RA---- C:\WINDOWS\system32\kbdhu.dll
2009-03-26 09:38:50 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
2009-03-26 09:38:50 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
2009-03-26 09:38:50 ----RA---- C:\WINDOWS\system32\kbdcz.dll
2009-03-26 09:38:50 ----RA---- C:\WINDOWS\system32\kbdcr.dll
2009-03-26 09:38:50 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
2009-03-26 09:38:48 ----A---- C:\WINDOWS\system32\irclass.dll
2009-03-26 09:38:48 ----A---- C:\WINDOWS\system32\dgsetup.dll
2009-03-26 09:38:48 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2009-03-26 09:38:47 ----A---- C:\WINDOWS\system32\spxcoins.dll
2009-03-26 09:38:47 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2009-03-26 09:38:46 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2009-03-26 09:38:46 ----A---- C:\WINDOWS\TASKMAN.EXE
2009-03-26 09:38:45 ----A---- C:\WINDOWS\system32\batt.dll
2009-03-26 09:38:44 ----A---- C:\WINDOWS\NOTEPAD.EXE
2009-03-26 09:38:43 ----A---- C:\WINDOWS\system32\storprop.dll
2009-03-26 09:38:35 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
2009-03-26 09:36:31 ----RA---- C:\WINDOWS\SET8.tmp
2009-03-26 09:36:29 ----RA---- C:\WINDOWS\SET4.tmp
2009-03-26 09:36:28 ----RA---- C:\WINDOWS\SET3.tmp
2009-03-26 09:36:23 ----D---- C:\WINDOWS\system32\CatRoot2
2009-03-26 09:36:23 ----D---- C:\WINDOWS\system32\CatRoot
2009-03-26 09:36:17 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-03-26 09:36:04 ----A---- C:\WINDOWS\setuplog.txt
2009-03-26 09:36:00 ----D---- C:\Documents and Settings
2009-03-26 09:35:59 ----SHD---- C:\System Volume Information
2009-03-26 09:35:10 ----SH---- C:\boot.ini
2009-03-26 09:30:40 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-03-26 09:30:40 ----RSD---- C:\WINDOWS\Fonts
2009-03-26 09:30:40 ----RD---- C:\WINDOWS\Web
2009-03-26 09:30:40 ----HD---- C:\WINDOWS\inf
2009-03-26 09:30:40 ----D---- C:\WINDOWS\WinSxS
2009-03-26 09:30:40 ----D---- C:\WINDOWS\twain_32
2009-03-26 09:30:40 ----D---- C:\WINDOWS\Temp
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\wins
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\wbem
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\usmt
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\spool
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\ShellExt
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\Setup
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\ras
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\oobe
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\npp
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\mui
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\inetsrv
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\IME
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\icsxml
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\ias
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\export
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\drivers
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\dhcp
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\config
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\3com_dmi
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\3076
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\2052
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\1054
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\1042
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\1041
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\1037
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\1036
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\1033
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\1031
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\1028
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32\1025
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system32
2009-03-26 09:30:40 ----D---- C:\WINDOWS\system
2009-03-26 09:30:40 ----D---- C:\WINDOWS\security
2009-03-26 09:30:40 ----D---- C:\WINDOWS\Resources
2009-03-26 09:30:40 ----D---- C:\WINDOWS\repair
2009-03-26 09:30:40 ----D---- C:\WINDOWS\Provisioning
2009-03-26 09:30:40 ----D---- C:\WINDOWS\PeerNet
2009-03-26 09:30:40 ----D---- C:\WINDOWS\pchealth
2009-03-26 09:30:40 ----D---- C:\WINDOWS\mui
2009-03-26 09:30:40 ----D---- C:\WINDOWS\msapps
2009-03-26 09:30:40 ----D---- C:\WINDOWS\msagent
2009-03-26 09:30:40 ----D---- C:\WINDOWS\Media
2009-03-26 09:30:40 ----D---- C:\WINDOWS\java
2009-03-26 09:30:40 ----D---- C:\WINDOWS\ime
2009-03-26 09:30:40 ----D---- C:\WINDOWS\Help
2009-03-26 09:30:40 ----D---- C:\WINDOWS\ehome
2009-03-26 09:30:40 ----D---- C:\WINDOWS\Driver Cache
2009-03-26 09:30:40 ----D---- C:\WINDOWS\Debug
2009-03-26 09:30:40 ----D---- C:\WINDOWS\Cursors
2009-03-26 09:30:40 ----D---- C:\WINDOWS\Connection Wizard
2009-03-26 09:30:40 ----D---- C:\WINDOWS\Config
2009-03-26 09:30:40 ----D---- C:\WINDOWS\AppPatch
2009-03-26 09:30:40 ----D---- C:\WINDOWS\addins
2009-03-26 09:30:40 ----D---- C:\WINDOWS

======List of files/folders modified in the last 1 months======

2009-04-02 23:07:39 ----A---- C:\WINDOWS\win.ini
2009-03-26 09:38:57 ----A---- C:\WINDOWS\system.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2009-03-26 325640]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2009-03-26 27656]
R1 AvgTdiX;AVG Free8 Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys [2009-03-27 108552]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-04 40320]
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2002-04-01 4816]
R3 E100B;Intel(R) PRO Adapter Driver; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2003-03-04 145408]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2005-09-20 1302332]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-05-06 580992]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-04 26624]
R3 UsbEvdomAtc;LGE EVDOM USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgevdomatc.sys [2008-08-26 19840]
R3 usbevdombus;LGE EVDOM Composite USB Device; C:\WINDOWS\system32\DRIVERS\lgevdombus.sys [2008-08-26 13696]
R3 UsbEvdomDiag;LGE EVDOM USB Serial DM Port; C:\WINDOWS\system32\DRIVERS\lgevdomdiag.sys [2008-08-26 19840]
R3 USBEVDOmModem;LGE EVDOM USB Modem; C:\WINDOWS\system32\DRIVERS\lgevdommodem.sys [2008-08-26 21632]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-04 57600]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-04 20480]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 26496]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avg8wd;AVG Free8 WatchDog; C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2009-03-26 298264]
R3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-04-12 138168]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2007-08-24 68464]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Répondre à lima900

lima900, le 12 avr 2009 à 19:34:33

et voila le rapport de infos.txt:
info.txt logfile of random's system information tool 1.06 2009-04-12 19:27:26

======Uninstall list======

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {5A2F65A4-808F-4A1E-973E-92E17824982D}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C095BAB72C}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {B3F4DC34-7F60-4B7C-A79F-1C13012D99D4}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B91D7BF1}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0044-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-00A1-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-00BA-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 9.1 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
AVG 8.5-->C:\Program Files\AVG\AVG8\setup.exe /UNINSTALL
Barre d'outils Outlook de Windows Live (Windows Live Toolbar)-->MsiExec.exe /X{4002F73D-EBB3-4EA1-A2FF-DBCB4529759E}
Bloqueur de fenêtres pop-up (Windows Live Toolbar)-->MsiExec.exe /X{51F366F4-C2E4-429A-866A-59C885ED42FD}
Carnaval Casino-->"C:\Casino\Carnaval Casino\_SetupCasino.exe" /uninstall
Correctif pour Microsoft Visual Basic 2008 Express SP1 - Français (KB945282)-->C:\WINDOWS\system32\msiexec.exe /package {EAF461BE-79BE-340B-AEBA-82D1230EC024} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual Basic 2008 Express SP1 - Français (KB946040)-->C:\WINDOWS\system32\msiexec.exe /package {EAF461BE-79BE-340B-AEBA-82D1230EC024} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual Basic 2008 Express SP1 - Français (KB946308)-->C:\WINDOWS\system32\msiexec.exe /package {EAF461BE-79BE-340B-AEBA-82D1230EC024} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual Basic 2008 Express SP1 - Français (KB946344)-->C:\WINDOWS\system32\msiexec.exe /package {EAF461BE-79BE-340B-AEBA-82D1230EC024} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual Basic 2008 Express SP1 - Français (KB947540)-->C:\WINDOWS\system32\msiexec.exe /package {EAF461BE-79BE-340B-AEBA-82D1230EC024} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual Basic 2008 Express SP1 - Français (KB947789)-->C:\WINDOWS\system32\msiexec.exe /package {EAF461BE-79BE-340B-AEBA-82D1230EC024} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual Basic 2008 Express SP1 - Français (KB948127)-->C:\WINDOWS\system32\msiexec.exe /package {EAF461BE-79BE-340B-AEBA-82D1230EC024} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual Basic 2008 Express SP1 - Français (KB951708)-->C:\WINDOWS\system32\msiexec.exe /package {EAF461BE-79BE-340B-AEBA-82D1230EC024} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Windows XP (KB914440)-->"C:\WINDOWS\$NtUninstallKB914440$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB942288-v3)-->"C:\WINDOWS\$NtUninstallKB942288-v3$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
Détecteur de flux Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{175B7C4A-CAF8-437A-B597-73E0D2D970FE}
Eazel-FR Toolbar-->C:\PROGRA~1\Eazel-FR\UNWISE.EXE /U C:\PROGRA~1\Eazel-FR\INSTALL.LOG
Extension de Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{D518AD32-C710-4616-BA0D-D4B1FA5F82E8}
Favorit-->"c:\documents and settings\administrateur\local settings\application data\qqcemyo.exe" -uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}
Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar1.dll"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Windows XP (KB915865)-->"C:\WINDOWS\$NtUninstallKB915865$\spuninst\spuninst.exe"
Intel(R) Extreme Graphics 2 Driver-->RUNDLL32.EXE C:\WINDOWS\system32\ialmrem.dll,UninstallW2KIGfx PCI\VEN_8086&DEV_2572
Intel(R) PRO Network Adapters and Drivers-->Prounstl.exe
Internet Download Manager-->C:\Program Files\Internet Download Manager\Uninstall.exe
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{72AD53CC-CCC0-3757-8480-9EE176866A7C}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{0BD83598-C2EF-3343-847B-7D2E84599128}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
Microsoft Office Enterprise 2007-->"C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office Groove MUI (French) 2007-->MsiExec.exe /X{90120000-00BA-040C-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}
Microsoft Office Language Pack 2007 Service Pack 1 (SP1)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {EC50B538-CBE1-42E6-B7FE-87AA540AADFB}
Microsoft Office OneNote MUI (French) 2007-->MsiExec.exe /X{90120000-00A1-040C-0000-0000000FF1CE}
Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2008 Management Objects-->MsiExec.exe /I{F5E87B12-3C27-452F-8E78-21D42164FD83}
Microsoft SQL Server Compact 3.5 SP1 - Français-->MsiExec.exe /I{58FD9176-17BF-4D9A-8773-5ECA2947D391}
Microsoft Visual Basic 2008 Express Edition with SP1 - FRA-->MsiExec.exe /X{EAF461BE-79BE-340B-AEBA-82D1230EC024}
Microsoft Visual Basic 2008 Express SP1 - Français-->C:\Program Files\Microsoft Visual Studio 9.0\Microsoft Visual Basic 2008 Express Edition with SP1 - FRA\setup.exe
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729-->MsiExec.exe /X{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}
Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for .NET Framework - fra-->MsiExec.exe /X{484AB636-ADBC-3A85-AB82-41873BDD1083}
Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for Win32-->MsiExec.exe /X{044F9133-B8D7-4d11-BF39-803FA20F5C8B}
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB901190)-->"C:\WINDOWS\$NtUninstallKB901190$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB944338-v2)-->"C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958215)-->"C:\WINDOWS\$NtUninstallKB958215$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960714)-->"C:\WINDOWS\$NtUninstallKB960714$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB904942)-->"C:\WINDOWS\$NtUninstallKB904942$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB925720)-->"C:\WINDOWS\$NtUninstallKB925720$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Modem LG LDU-1900D-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{43DB077F-C85F-42CC-8302-17CBEE4A6BC6}\setup.exe" -l0x40c -removeonly
Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->c:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe
MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
MSXML 6 Service Pack 2 (KB954459)-->MsiExec.exe /I{1A528690-6A2D-4BC5-B143-8C4AE8D19D96}
Navigation par onglets (Windows Live Toolbar)-->MsiExec.exe /X{E74559C2-BB47-45AD-83DD-0D66B67E7811}
Outils de conception SQL Server Compact 3.5 SP1 - Français-->MsiExec.exe /X{A5D20C78-D226-4B41-A553-EEEBEB824853}
PHPNukeEN Toolbar-->C:\PROGRA~1\PHPNUK~1\UNWISE.EXE /U C:\PROGRA~1\PHPNUK~1\INSTALL.LOG
PHPNukeFR Toolbar-->C:\PROGRA~1\PHPNUK~2\UNWISE.EXE /U C:\PROGRA~1\PHPNUK~2\INSTALL.LOG
Security Update for 2007 Microsoft Office System (KB951550)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {B243E9A5-ED77-4F1B-B338-2486FD82DC85}
Security Update for 2007 Microsoft Office System (KB951944)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7}
Security Update for 2007 Microsoft Office System (KB958439)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {6491B8AA-D11C-4648-A461-6234B31EB7E2}
Security Update for Microsoft Office Excel 2007 (KB958437)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {648FC016-2D6B-4A16-8D87-404533642F4B}
Security Update for Microsoft Office OneNote 2007 (KB950130)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {F1B2401C-B610-4BF2-AA1C-52C55827A8F4}
Security Update for Microsoft Office PowerPoint 2007 (KB951338)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {558B709B-821B-4FC5-90FC-9A8890641E77}
Security Update for Microsoft Office Publisher 2007 (KB950114)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {F9C3CDBA-1F00-4D4D-959D-75C9D3ACDD85}
Security Update for Microsoft Office system 2007 (KB954326)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {5F7F6FFF-395D-480E-8450-64F385D82C5F}
Security Update for Microsoft Office system 2007 (KB956828)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {885E081B-72BD-4E76-8E98-30B4BE468FAC}
Security Update for Microsoft Office Word 2007 (KB956358)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {4551666D-0FD6-4C69-8A81-1C6F2E64517C}
SoundMAX-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\setup.exe"
SQL Server System CLR Types-->MsiExec.exe /I{342D4AD7-EC4C-4EC8-AEA6-E70F5905A490}
Update for Microsoft Office Outlook 2007 (KB952142)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {4AD3A076-427C-491F-A5B7-7D1DE788A756}
Update for Office 2007 (KB946691)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {A420F522-7395-4872-9882-C591B4B92278}
Update for Outlook 2007 Junk Email Filter (kb962871)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {297857BF-4011-449B-BD74-DB64D182821C}
VLC media player 0.9.8a-->C:\Program Files\VideoLAN\VLC\uninstall.exe
WinAVI Video Converter-->"C:\Program Files\WinAVI Video Converter\unins000.exe"
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Installer 3.1 (KB893803)-->"C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"
Windows Live Messenger-->MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411}
Windows Live Sign-in Assistant-->MsiExec.exe /I{49672EC2-171B-47B4-8CE7-50D7806360D7}
Windows Live Toolbar-->"C:\Program Files\Windows Live Toolbar\UnInstall.exe" {05AE605F-3146-46ED-BC52-0A14EBF57962}
Windows Live Toolbar-->MsiExec.exe /X{05AE605F-3146-46ED-BC52-0A14EBF57962}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"

======Security center information======

AV: AVG Anti-Virus Free

======System event log======

Computer Name: ISGI-98B4B8D924
Event Code: 7036
Message: Le service Explorateur d'ordinateur est entré dans l'état : arrêté.

Record Number: 596
Source Name: Service Control Manager
Time Written: 20090327200454.000000+060
Event Type: Informations
User:

Computer Name: ISGI-98B4B8D924
Event Code: 7036
Message: Le service Gestionnaire de connexions d'accès distant est entré dans l'état : en cours d'exécution.

Record Number: 595
Source Name: Service Control Manager
Time Written: 20090327200453.000000+060
Event Type: Informations
User:

Computer Name: ISGI-98B4B8D924
Event Code: 7036
Message: Le service Service de la passerelle de la couche Application est entré dans l'état : en cours d'exécution.

Record Number: 594
Source Name: Service Control Manager
Time Written: 20090327200449.000000+060
Event Type: Informations
User:

Computer Name: ISGI-98B4B8D924
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Gestionnaire de connexions d'accès distant.

Record Number: 593
Source Name: Service Control Manager
Time Written: 20090327200449.000000+060
Event Type: Informations
User: ISGI-98B4B8D924\Administrateur

Computer Name: ISGI-98B4B8D924
Event Code: 7036
Message: Le service Téléphonie est entré dans l'état : en cours d'exécution.

Record Number: 592
Source Name: Service Control Manager
Time Written: 20090327200449.000000+060
Event Type: Informations
User:

=====Application event log=====

Computer Name: ISGI-98B4B8D924
Event Code: 1040
Message: Commencement d'une transaction Windows Installer : {90120000-0030-0000-0000-0000000FF1CE}. Id de processus client : 2748.

Record Number: 327
Source Name: MsiInstaller
Time Written: 20090328134910.000000+060
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: ISGI-98B4B8D924
Event Code: 1042
Message: Fin d'une transaction Windows Installer {90120000-0030-0000-0000-0000000FF1CE}. Id de processus client : 2748.

Record Number: 326
Source Name: MsiInstaller
Time Written: 20090328134907.000000+060
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: ISGI-98B4B8D924
Event Code: 1035
Message: Windows Installer a reconfiguré le produit. Nom du produit : Microsoft Office Enterprise 2007. Version du produit : 12.0.4518.1014. Langue du produit : 0. Réussite de la reconfiguration ou état d’erreur : 0.

Record Number: 325
Source Name: MsiInstaller
Time Written: 20090328134907.000000+060
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: ISGI-98B4B8D924
Event Code: 11728
Message: Produit : Microsoft Office Enterprise 2007 -- Configuration effectuée.

Record Number: 324
Source Name: MsiInstaller
Time Written: 20090328134907.000000+060
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: ISGI-98B4B8D924
Event Code: 1036
Message: Windows Installer a installé une mise à jour. Nom du produit : Microsoft Office Enterprise 2007. Version du produit : 12.0.4518.1014. Langue du produit : 0. Nom de la mise à jour : Security Update for Microsoft Office Word 2007 (KB956358). Réussite de l’installation ou état d’erreur : 0.

Record Number: 323
Source Name: MsiInstaller
Time Written: 20090328134907.000000+060
Event Type: Informations
User: AUTORITE NT\SYSTEM

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 4 Stepping 1, GenuineIntel
"PROCESSOR_REVISION"=0401
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP

-----------------EOF-----------------

Répondre à lima900

Destrio5, le 12 avr 2009 à 20:01:24

- Télécharge Navilog1 (de IL-MAFIOSO) et enregistre-le sur le Bureau.

- Double-clique sur Navilog1.exe afin de lancer l'installation.

- Si le fix ne se lance pas automatiquement après son installation, double-clique sur Navilog1 présent sur le Bureau.

- Appuie sur F ou f puis valide par Entrée.

- Appuie sur une touche de ton clavier à chaque fois que cela est demandé, tu arriveras au menu des options.

- Choisis l'option 1 et appuie sur la touche Entrée pour valider ton choix.

- Patiente jusqu'au message : *** Analyse terminée le ..... ***

- Le scan fini, le Bloc-notes contenant le rapport sera affiché, poste le contenu de ce rapport dans ta prochaine réponse.

- Si le résultat du scan ne s'affiche pas, tu le trouveras dans C:\fixnavi.txt

N'utilise pas l'option 2, 3 et 4 sans notre accord, des fichiers légitimes peuvent être inclus dans ce scan.

Répondre à Destrio5

lima900, le 12 avr 2009 à 20:48:40

Voila le rapport:
Search Navipromo version 3.7.6 commencé le 12/04/2009 à 20:14:19,56

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

Outil exécuté depuis C:\Program Files\navilog1

Mise à jour le 14.03.2009 à 18h00 par IL-MAFIOSO

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 3.00GHz )
BIOS : Phoenix ROM BIOS PLUS Version 1.10 A07
USER : Administrateur ( Administrator )
BOOT : Normal boot

Antivirus : AVG Anti-Virus Free 8.5 (Activated)

A:\ (USB)
C:\ (Local Disk) - NTFS - Total:37 Go (Free:18 Go)
D:\ (CD or DVD)

Recherche executé en mode normal

*** Recherche dossiers dans "C:\WINDOWS" ***

*** Recherche dossiers dans "C:\Program Files" ***

*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" ***

*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1" ***

*** Recherche dossiers dans "c:\docume~1\alluse~1\applic~1" ***

*** Recherche dossiers dans "C:\Documents and Settings\Administrateur\applic~1" ***

*** Recherche dossiers dans "C:\Documents and Settings\Administrateur\locals~1\applic~1" ***

*** Recherche dossiers dans "C:\Documents and Settings\Administrateur\menudm~1\progra~1" ***

*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net

*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!

* Recherche dans "C:\WINDOWS\system32" *

* Recherche dans "C:\Documents and Settings\Administrateur\locals~1\applic~1" *

*** Recherche fichiers ***

*** Recherche clés spécifiques dans le Registre ***
!! Les clés trouvées ne sont pas forcément infectées !!

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"qqcemyo"="\"c:\\documents and settings\\administrateur\\local settings\\application data\\qqcemyo.exe\" qqcemyo"

*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche nouveaux fichiers Instant Access :

2)Recherche Heuristique :

* Dans "C:\WINDOWS\system32" :

* Dans "C:\Documents and Settings\Administrateur\locals~1\applic~1" :

qqcemyo.exe trouvé !
qqcemyo.dat trouvé !
qqcemyo_nav.dat trouvé !
qqcemyo_navps.dat trouvé !

3)Recherche Certificats :

Certificat Egroup absent !
Certificat Electronic-Group absent !
Certificat Montorgueil absent !
Certificat OOO-Favorit absent !
Certificat Sunny-Day-Design-Ltd absent !

4)Recherche autres dossiers et fichiers connus :

*** Analyse terminée le 12/04/2009 à 20:45:34,45 ***

Répondre à lima900

Destrio5, le 12 avr 2009 à 21:06:16

---> Relance Navilog1, fais l'option 2 et poste le rapport cleananvi.

Répondre à Destrio5

lima900, le 12 avr 2009 à 21:25:10

Clean Navipromo version 3.7.6 commencé le 12/04/2009 à 21:09:40,71

Outil exécuté depuis C:\Program Files\navilog1

Mise à jour le 14.03.2009 à 18h00 par IL-MAFIOSO

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 3.00GHz )
BIOS : Phoenix ROM BIOS PLUS Version 1.10 A07
USER : Administrateur ( Administrator )
BOOT : Normal boot

Antivirus : AVG Anti-Virus Free 8.5 (Activated)

A:\ (USB)
C:\ (Local Disk) - NTFS - Total:37 Go (Free:18 Go)
D:\ (CD or DVD)

Mode suppression automatique
avec prise en charge résultats Catchme et GNS

Nettoyage exécuté au redémarrage de l'ordinateur

*** fsbl1.txt non trouvé ***
(Assurez-vous que Catchme n'avait rien trouvé lors de la recherche)

*** Suppression avec sauvegardes résultats GenericNaviSearch ***

* Suppression dans "C:\WINDOWS\System32" *

* Suppression dans "C:\Documents and Settings\Administrateur\locals~1\applic~1" *

*** Suppression dossiers dans "C:\WINDOWS" ***

*** Suppression dossiers dans "C:\Program Files" ***

*** Suppression dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" ***

*** Suppression dossiers dans "C:\Documents and Settings\All Users\menudm~1" ***

*** Suppression dossiers dans "c:\docume~1\alluse~1\applic~1" ***

*** Suppression dossiers dans "C:\Documents and Settings\Administrateur\applic~1" ***

*** Suppression dossiers dans "C:\Documents and Settings\Administrateur\locals~1\applic~1" ***

*** Suppression dossiers dans "C:\Documents and Settings\Administrateur\menudm~1\progra~1" ***

*** Suppression fichiers ***

*** Suppression fichiers temporaires ***

Nettoyage contenu C:\WINDOWS\Temp effectué !
Nettoyage contenu C:\Documents and Settings\Administrateur\locals~1\Temp effectué !

*** Traitement Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Suppression avec sauvegardes nouveaux fichiers Instant Access :

2)Recherche, création sauvegardes et suppression Heuristique :

* Dans "C:\WINDOWS\system32" *

* Dans "C:\Documents and Settings\Administrateur\locals~1\applic~1" *

qqcemyo.exe trouvé !
Copie qqcemyo.exe réalisée avec succès !
qqcemyo.exe supprimé !

qqcemyo.dat trouvé !
Copie qqcemyo.dat réalisée avec succès !
qqcemyo.dat supprimé !

qqcemyo_nav.dat trouvé !
Copie qqcemyo_nav.dat réalisée avec succès !
qqcemyo_nav.dat supprimé !

qqcemyo_navps.dat trouvé !
Copie qqcemyo_navps.dat réalisée avec succès !
qqcemyo_navps.dat supprimé !

*** Sauvegarde du Registre vers dossier Safebackup ***

sauvegarde du Registre réalisée avec succès !

*** Nettoyage Registre ***

Nettoyage Registre Ok

*** Certificats ***

Certificat Egroup absent !
Certificat Electronic-Group absent !
Certificat Montorgueil absent !
Certificat OOO-Favorit absent !
Certificat Sunny-Day-Design-Ltdt absent !

*** Recherche autres dossiers et fichiers connus ***

*** Nettoyage terminé le 12/04/2009 à 21:20:11,43 ***

Répondre à lima900

Destrio5, le 12 avr 2009 à 21:27:37

---> Désinstalle Navilog1.

Ton PC va bien ?

---> Fais un scan complet avec AVG.

Répondre à Destrio5

Posez votre question Répondre