High-Tech Santé Médecine Droit-Finances

Grippe A

Que dois-je faire ?

Rechercher : dans
Par :

HELP! virus .Exe n'est pas une appli w32

Dernière réponse le 9 jui 2009 à 21:54:59 jaysworld, le 1 jui 2009 à 23:35:45 
 Signaler ce message aux modérateurs

Bonjour,

j'ai un sérieux problème de virus, je remercie d'ailleurs celles et ceux par avance qui prendront de leur temps pour m'aider, voici les symptomes chers docteurs:

- dès l'ouverture de windows j'ai kaspersky qui m'annonce que j'ai un trojan
- déconnection internet au bout de 2 minutes
- dès la déco quand j'essaie d'ouvrir un programme j'ai une petite fenetre qui s'ouvre avec un message de type "ce programme n'est pas une application win32"
- quand je fais arreter via demarrer, le pc met une plombe à s'éteindre en restant sur l'image avec fond gris comme quoi il parametre avant l'extinction de l'ordinateur

que du bon, que du lourd pour vous, chers amis chasseurs de virus!

merci pour votre aide!

meilleures salutations,

Audrey

Posez votre question Répondre

1

jacques.gache, le 1 jui 2009 à 23:44:51

Bonjour, peux tu poster un RSIT , pour que l'on voit cela de plus près , Merci

• Télécharge Random's System Information Tool (RSIT) de Random/Random, et enregistre le sur ton Bureau.
• Double clique sur RSIT.exe pour lancer l'outil.
• Clique sur "Continue" à l'écran Disclaimer.
• Si l'outil HijackThis n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu s'il te le demande) et tu devras accepter la licence.
• Une fois le scan terminé, deux rapports vont apparaître : poste les dans deux messages séparés stp

ps:Les rapports se trouvent à cet endroit:

C:\rsit\info.txt

C:\rsit\log.txt


Tutoriel pour t'aider




Attention !! la surmultiplication de logiciels de sécurité ne 
protège pas mieux voire peut engendrer des conflits et
des plantages. " mais chacun reste maître de son PC "

   
Répondre à jacques.gache

2

jaysworld, le 2 jui 2009 à 08:28:00

Bonjour et merci

voici le rapport info.txt

info.txt logfile of random's system information tool 1.06 2009-05-20 23:30:39

======Uninstall list======

-->C:\Program Files\Nero\Nero8\\nero\uninstall\UNNERO.exe /UNINSTALL
-->C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL
-->C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL
-->C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL
-->C:\WINDOWS\UNNeroVision.exe /UNINSTALL
-->C:\WINDOWS\UNRecode.exe /UNINSTALL
-->MsiExec /X{DD1865F0-AD73-40FB-B23E-1822E02396FF}
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{32B4B536-4443-42F0-9676-98373BE9114F}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4D0803DB-8FC8-4C97-AE1F-1C3DCA357B01}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9194237B-7B58-40B4-A739-184AD59531A2}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A82F10CB-18B5-4EAC-AEF2-FA49CD565626}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C64409FA-42A7-49C6-837A-D2E5D813BD57}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E5ABA5FD-EE3D-4F15-895D-B32321E6C96B}\setup.exe" -l0x9
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
ACDSee Pro 2-->MsiExec.exe /I{4AAC95F4-A30E-4EE5-A086-6F79581D0D70}
Adobe Color Common Settings-->C:\Program Files\Fichiers communs\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\Setup.exe
Adobe Color Common Settings-->MsiExec.exe /I{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}
Adobe ExtendScript Toolkit 2-->C:\Program Files\Fichiers communs\Adobe\Installers\5bc0f8414ec36c555a3e7e5ec2e225e\Setup.exe
Adobe ExtendScript Toolkit 2-->MsiExec.exe /I{1BCEA516-B4C5-4B2D-BFA0-AB7910BAD862}
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 9 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A90000000001}
Adobe Setup-->MsiExec.exe /I{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}
Adobe Setup-->MsiExec.exe /I{D504303A-717D-414C-BA9F-FE01093E2EF8}
Aerosoft's - F-16 Fighting Falcon-->C:\Program Files\InstallShield Installation Information\{A663BED9-978C-4A04-82A3-3029245055BE}\setup.exe -runfromtemp -l0x040c -removeonly
AIDA32 v3.93-->"C:\Program Files\AIDA32 - Personal System Information\unins000.exe"
Airbus Collection pour FSX-->MsiExec.exe /X{F0E3D82B-BDE7-4D1F-90BC-CA03498D7991}
Analyseur et SDK MSXML 4.0 SP2-->MsiExec.exe /I{716E0306-8318-4364-8B8F-0CC4E9376BAC}
Apple Mobile Device Support-->MsiExec.exe /I{162B71B8-8464-4680-A086-601D555B331D}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
ASUS Gamer OSD-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{315ACD04-BCEB-478B-9B1D-5431D0E6CB11}\setup.exe" -l0x40c -removeonly
ASUS GamerOSD AP-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{E96BE1AC-D50C-4EE5-808F-95F25364F78B}
AtomixMP3 v2.2-->C:\PROGRA~1\ATOMIX~1\UNWISE.EXE C:\PROGRA~1\ATOMIX~1\INSTALL.LOG
Auctioneer AddOns-->C:\Program Files\World of Warcraft\Auctioneer Uninstaller.exe
Audacity 1.2.6-->"C:\Program Files\Audacity\unins000.exe"
AviSynth 2.5-->"C:\Program Files\AviSynth 2.5\Uninstall.exe"
BlueCat's StereoFlanger - VST-->MsiExec.exe /I{11DE037E-E545-4EDE-8EC4-16EA04B97D77}
Bob l'éponge-->E:\Program Files\Atari\RollerCoaster Tycoon 3\Style\Themed\Uninstal.exe
Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
Calculateurs pour Flight Simulator-->C:\WINDOWS\st6unst.exe -n "C:\Program Files\calc\ST6UNST.LOG"
Carenado C172N FSX-->C:\Program Files\Microsoft Games\Microsoft Flight SimulatorX\uninstall.exe
Chateau Magique RCT3 set 2-->E:\Program Files\Atari\RollerCoaster Tycoon 3\Style\Themed\Uninstal.exe
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Command & Conquer™ Alerte Rouge 3-->MsiExec.exe /X{296D8550-CB06-48E4-9A8B-E5034FB64715}
ConvertXtoDVD 2.2.3.258h-->"C:\Program Files\VSO\ConvertXtoDVD\unins000.exe"
ConvertXtoDVD 3.0.0.1-->"C:\Program Files\VSO\ConvertX\3\unins000.exe"
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Counter-Strike: Source-->"C:\Program Files\Steam\steam.exe" steam://uninstall/240
Creative WebCam Center-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E5ABA5FD-EE3D-4F15-895D-B32321E6C96B}\setup.exe" -l0x9 /remove
Creative WebCam Instant Driver (1.01.02.0729)-->C:\WINDOWS\CtDrvIns.exe -uninstall -script PD0620.uns -unsext NT -plugin P0620Pin.dll -pluginres P0620Pin.crl
Curse Client-->C:\Program Files\Curse\uninstall.exe
Decal Converter-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5BB207D6-0E1E-11D5-9B6A-00C04F7EC248}\Setup.exe"
Device Control-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9194237B-7B58-40B4-A739-184AD59531A2}\setup.exe" -l0x40c /remove
Empire: Total War-->"C:\Program Files\Steam\steam.exe" steam://uninstall/10500
eMule-->"C:\Program Files\eMule\Uninstall.exe"
Fable - The Lost Chapters-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\1050\INTEL3~1\IDriver.exe /M{C3C9EB3D-24FA-4462-B784-0EC6AAFCD2DD}
FlashFXP v3-->"C:\Program Files\FlashFXP\Uninstall.exe" "C:\Program Files\FlashFXP\install.log" -u
Flight One ATR 72-500-->C:\WINDOWS\iun6002.exe "C:\Program Files\Microsoft Games\Flight Simulator 9\ATR_72500.ini"
Football Manager 2009-->"E:\Program Files\Sports Interactive\Football Manager 2009\Uninstall_Football Manager 2009\Uninstall Football Manager 2009.exe"
Fraps (remove only)-->"C:\Fraps\uninstall.exe"
FS Repaint Twin Otter for FSX-->MsiExec.exe /X{DAB5774D-D049-412C-97AD-F39C1F087C7B}
FS2Crew: Wilco-Feelthere Airbus Special Edition-->C:\Program Files\Microsoft Games\Microsoft Flight SimulatorX\UnFS2CrewWilcoAirbusSpecialFSX.exe
FSRepaint V2.06-->MsiExec.exe /I{14282D93-6BD9-4681-8D7D-7677390A0425}
FSX Beechcraft 1900D-->C:\Program Files\Microsoft Games\Microsoft Flight Simulator X\Uninstal.exe
FunAccess-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1C1290DD-EB9D-4F92-A61B-53DDB77AD53B}\setup.exe" -l0x40c -removeonly
Galerie de photos Windows Live-->MsiExec.exe /X{44E54A81-9D91-4AA1-9417-80AFF134F5FF}
getPlus(R) for Adobe-->"C:\Program Files\NOS\bin\getPlus_HelperSvc.exe" /UninstallGet1
Gimp Pack Mode 2.4.2-->"C:\Program Files\Gimp Pack Mode\unins000.exe"
Google Earth Plugin-->MsiExec.exe /I{9491C880-1C35-11DE-97B2-005056806466}
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Google Earth-->MsiExec.exe /X{548EAC70-EE00-11DD-908C-005056806466}
Grand Theft Auto IV-->"C:\Program Files\InstallShield Installation Information\{579BA58C-F33D-4970-9953-B94B43768AC3}\setup.exe" -runfromtemp -l0x040c -removeonly
Ground Details FSX-->C:\WINDOWS\Ground Details FSX Uninstaller.exe
Grumman F-14D Tomcat FSX-->C:\Program Files\Microsoft Games\Microsoft Flight Simulator X\Uninstal.exe
GTA San Andreas-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}\setup.exe" -l0x40c -removeonly
GTAIV Patch Universe by knyz-->"E:\Program Files\Rockstar Games\Grand Theft Auto IV\unins000.exe"
gtaiv-screensaver-->C:\WINDOWS\system32\gtaiv-screensaver.scr /u
HijackThis 2.0.2-->"C:\Documents and Settings\Daudee\Bureau\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
IkAgora 1.0.1036-->"C:\Program Files\IkAgora\unins000.exe"
Image Convert 1.0-->"C:\Program Files\Image Convert 1.0\unins000.exe"
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
iTunes-->MsiExec.exe /I{C26B06A9-27BB-45B0-9873-9C623EC2BA38}
iWizz-->C:\Program Files\iWizz\uninstall.exe
Java(TM) 6 Update 11-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Java(TM) 6 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Junk Mail filter update-->MsiExec.exe /I{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}
Kaspersky Anti-Virus 2009-->MsiExec.exe /I{6580C5A3-2336-4EC5-85F1-3448C5F6208A}
Kaspersky Anti-Virus 2009-->MsiExec.exe /I{6580C5A3-2336-4EC5-85F1-3448C5F6208A}
Ma-Config.com-->MsiExec.exe /X{46E92609-C1BF-4D8F-A86F-F77E87C39366}
Magic MP3 Tagger 2.2.4f-->"C:\Program Files\Magic MP3 Tagger\unins000.exe"
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
MediaCoder 0.7.0-rc1-->C:\Program Files\MediaCoder\uninst.exe
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft .NET Framework 3.0 French Language Pack-->MsiExec.exe /X{E3C080B0-23F5-49AF-89F8-8E8DBC89E659}
Microsoft .NET Framework 3.0-->c:\WINDOWS\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0\setup.exe
Microsoft .NET Framework 3.0-->MsiExec.exe /X{15095BF3-A3D7-4DDF-B193-3A496881E003}
Microsoft Flight Simulator X Service Pack 1-->C:\WINDOWS\system32\msiexec.exe /qb /l*vx "%TEMP%\FlightSimPatchUninstall.log" /uninstall {EDE72ED9-E7FA-45A0-A92D-E4E6D72ECC10} /package {F535B2CF-C9BB-4162-B03A-02D6971F32CC}
Microsoft Flight Simulator X-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{F535B2CF-C9BB-4162-B03A-02D6971F32CC}
Microsoft Flight Simulator X-->MsiExec.exe /X{F535B2CF-C9BB-4162-B03A-02D6971F32CC}
Microsoft Games for Windows - LIVE -->MsiExec.exe /X{4D243BA7-9AC4-46D1-90E5-EEB88974F501}
Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{05B49229-22A2-4F88-842A-BBC2EBE1CCF6}
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office FrontPage 2003-->MsiExec.exe /I{90170409-6000-11D3-8CFE-0150048383C9}
Microsoft Office Outlook Connector-->MsiExec.exe /I{95120000-0120-040C-0000-0000000FF1CE}
Microsoft Office Professional Edition 2003-->MsiExec.exe /I{9011040C-6000-11D3-8CFE-0150048383C9}
Microsoft Silverlight-->MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Mise à jour de sécurité pour le Codeur Windows Media (KB954156)-->"C:\WINDOWS\$NtUninstallKB954156_WM9L$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB963027)-->"C:\WINDOWS\ie7updates\KB963027-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB961503)-->"C:\WINDOWS\$NtUninstallKB961503$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
MixVibes PRO 5 uninstall-->C:\Program Files\MixVibesPro5\uninstall.exe
MobileMe Control Panel-->MsiExec.exe /I{C7EEC93A-2A61-4B1E-B696-A264680A889D}
Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe
Module de prise en charge linguistique du français de Microsoft .NET Framework 3.0-->C:\WINDOWS\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0 French Language Pack\setup.exe
Mozilla Firefox (3.0.5)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 6.0 Parser (KB925673)-->MsiExec.exe /I{FE9126DB-5F84-495A-BB46-3C724F1C2D08}
Navilog1 3.7.5-->"C:\Program Files\Navilog1\unins000.exe"
Nero 8 Demo-->MsiExec.exe /X{5E6EC4DD-7B1F-4E10-82B9-EA1B90791036}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
NewsLeecher v3.9 Beta 16-->"C:\Program Files\NewsLeecher\unins000.exe"
NewsLeecher-->"C:\Program Files\NewsLeecher\uninstall.exe"
NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI
NVIDIA PhysX-->MsiExec.exe /X{DD1865F0-AD73-40FB-B23E-1822E02396FF}
OGM TO AVI CONVERTER version 3.1.1-->"C:\Program Files\OGMTOAVI\unins000.exe"
OpenAL-->"C:\Program Files\OpenAL\oalinst.exe" /U
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Pack Vista Inspirat 2 1.0-->C:\WINDOWS\BricoPacks\Vista Inspirat 2\Remove.exe
Paint.NET v3.10-->MsiExec.exe /X{5E749AEB-5A19-43BA-BB20-3CBB37539FE4}
Paramètres de haut-parleur Creative-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{32B4B536-4443-42F0-9676-98373BE9114F}\setup.exe" -l0x40c /remove
Paramètres EAX Creative-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C64409FA-42A7-49C6-837A-D2E5D813BD57}\setup.exe" -l0x40c /remove
Photo Viewer 2.25-->"C:\Program Files\Photo Viewer\uninstall.exe"
Pilatus Porter PC6-->C:\Program Files\Microsoft Games\Flight Simulator 9\Uninstal Pilatus Porter PC6.exe
Platinum Collection F-14D Super Tomcat for FSX-->MsiExec.exe /X{CB5786C3-F95D-4F47-A316-927E4DE870B8}
PS3 Video 9 2.25-->C:\Program Files\Red Kawa\Video Converter\uninstaller.exe
PS3 Video Converter-->C:\Program Files\MP4Converter\PS3 Video Converter 3\Uninstall.exe
PSP Video 9 4.06-->C:\Program Files\Red Kawa\Video Converter App\uninstaller.exe
PunkBuster Services-->C:\WINDOWS\system32\pbsvc.exe -u
QuickPar 0.9-->C:\Program Files\QuickPar\uninst.exe
QuickTime-->MsiExec.exe /I{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}
RCT3 Soaked-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EA926717-CE5A-4CB4-AB21-9E6E9565A458}\Setup.exe" -l0x40c
Relaxing Ocean V3 Screen Saver-->C:\WINDOWS\system32\Relaxing Ocean V3.scr /u
RivaTuner v2.23-->"C:\Program Files\RivaTuner v2.23\uninstall.exe"
Rock'n rollercoaster RCT3-->E:\Program Files\Atari\RollerCoaster Tycoon 3\Style\Themed\Uninstal.exe
Rockstar Games Social Club-->"C:\Program Files\InstallShield Installation Information\{08B3869E-D282-424C-9AFC-870E04A4BA14}\setup.exe" -runfromtemp -l0x040c -removeonly
RollerCoaster Tycoon 3-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{907B4640-266B-4A21-92FB-CD1A86CD0F63}\Setup.exe" -l0x40c
SAMSUNG CDMA Modem Driver Set-->C:\WINDOWS\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe
SAMSUNG Mobile Composite Device Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\6\SSBCUninstall.exe
Samsung Mobile phone USB driver Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\5\SSSDUninstall.exe
SAMSUNG Mobile USB Modem 1.0 Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe
SAMSUNG Mobile USB Modem Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe
Samsung PC Studio 3-->"C:\Program Files\InstallShield Installation Information\{C4A4722E-79F9-417C-BD72-8D359A090C97}\setup.exe" -runfromtemp -l0x040c -removeonly
SceneCaster-->C:\Program Files\SceneCaster\SceneCaster_Uninstall.exe
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
Sony Noise Reduction Plug-In 2.0h-->MsiExec.exe /X{06A1BE8A-4CA4-4A39-B9E4-E815AA8FE05C}
Source SDK Base-->"C:\Program Files\Steam\steam.exe" steam://uninstall/215
SpeedFan (remove only)-->"C:\Program Files\SpeedFan\uninstall.exe"
SprayR 1.0 RC7-->C:\Program Files\SprayR\uninst.exe
Sprunk Screen Saver-->C:\WINDOWS\system32\Sprunk.scr /u
Steam-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
System Requirements Lab-->C:\Program Files\SystemRequirementsLab\Uninstall.exe
TeamSpeak 2 RC2-->"C:\Program Files\Teamspeak2_RC2\unins000.exe"
TerraExplorer-->C:\Program Files\Skyline\TerraExplorer\Setup.exe [OP]/U
Total Recorder 7.1-->"C:\Program Files\HighCriteria\TotalRecorder\setup.exe" U
Total Recorder Professional-->"C:\WINDOWS\Total Recorder Professional\uninstall.exe" "/U:C:\Program Files\Total Recorder Professional\Uninstall\uninstall.xml"
Ultimate Traffic for FSX-->C:\WINDOWS\iun6002.exe "C:\Program Files\Microsoft Games\Microsoft Flight SimulatorX\UT15.ini"
Utilitaire Effets vidéos avancés-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4D0803DB-8FC8-4C97-AE1F-1C3DCA357B01}\setup.exe" -l0x40c /remove
VCRedistSetup-->MsiExec.exe /I{3921A67A-5AB1-4E48-9444-C71814CF3027}
VideoLAN VLC media player 0.8.6d-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Virtual DJ - Atomix Productions-->C:\PROGRA~1\VIRTUA~1\UNWISE.EXE C:\PROGRA~1\VIRTUA~1\INSTALL.LOG
Virtual Earth 3D (Bêta)-->MsiExec.exe /I{3CCB26F5-E2A7-4C91-8340-9149D7B7C2BE}
VirtualDubMOD 1.5.10.3 Fr-->"C:\Program Files\VirtualDubMOD\unins000.exe"
VST Bridge 1.1-->"C:\Program Files\Audacity\Plug-ins\VST Bridge\unins000.exe"
Winamp Remote-->"C:\Program Files\Winamp Remote\uninstall.exe"
Winamp Toolbar for Internet Explorer-->"C:\Program Files\Winamp Toolbar\uninstall.exe"
Winamp-->"C:\Program Files\Winamp\UninstWA.exe"
Windows Communication Foundation-->MsiExec.exe /X{491DD792-AD81-429C-9EB4-86DD3D22E333}
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Mail-->MsiExec.exe /I{63DC2DA0-2A6C-4C38-9249-B75395458657}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
Windows Live OneCare safety scanner-->RunDll32.exe "C:\Program Files\Windows Live Safety Center\wlscCore.dll",UninstallFunction WLSC_SCANNER_PRODUCT
Windows Live Sync-->MsiExec.exe /X{9C5EB781-0D37-44B8-9A58-77B3E4BF5F5E}
Windows Media Encoder 9 Series-->msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Windows Media Encoder 9 Series-->MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Presentation Foundation Language Pack (FRA)-->MsiExec.exe /X{6901DD22-527A-41EF-9059-E81FEDE9E494}
Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows Workflow Foundation FR Language Pack-->MsiExec.exe /I{B84C141C-9A13-44BE-9A69-301D7B11D836}
Windows Workflow Foundation-->MsiExec.exe /I{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
WinHTTrack Website Copier 3.42-->"C:\Program Files\WinHTTrack\unins000.exe"
World of Subways Vol.1-->C:\Program Files\InstallShield Installation Information\{891570B1-75CB-4281-8A00-742274F44973}\Setup.exe -runfromtemp -l0x0009 -removeonly
World of Warcraft-->C:\Program Files\Fichiers communs\Blizzard Entertainment\World of Warcraft (2)\Uninstall.exe
Wow Cartographe 1.09-->C:\Program Files\WowCartographe2\uninst.exe
Xilisoft DVD to MP4 Converter-->C:\Program Files\Xilisoft\DVD to MP4 Converter 4\Uninstall.exe
XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"
XviD MPEG-4 Video Codec-->C:\WINDOWS\system32\rundll32.exe setupapi,InstallHinfSection Remove_XviD 132 C:\WINDOWS\INF\xvid.inf
Yahoo! Install Manager-->C:\WINDOWS\system32\regsvr32 /u C:\PROGRA~1\Yahoo!\Common\YINSTH~1.DLL
Zattoo 3.3.3 Beta-->C:\Program Files\Zattoo\uninst.exe

======Security center information======

AV: Kaspersky Anti-Virus

======System event log======

Computer Name: DAUDEE-21ABA4FF
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Compatibilité avec le Changement rapide d'utilisateur.

Record Number: 36142
Source Name: Service Control Manager
Time Written: 20090412102053.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: DAUDEE-21ABA4FF
Event Code: 7036
Message: Le service Services Terminal Server est entré dans l'état : en cours d'exécution.

Record Number: 36141
Source Name: Service Control Manager
Time Written: 20090412102053.000000+120
Event Type: Informations
User:

Computer Name: DAUDEE-21ABA4FF
Event Code: 6005
Message: Le service d'Enregistrement d'événement a démarré.

Record Number: 36140
Source Name: EventLog
Time Written: 20090412102028.000000+120
Event Type: Informations
User:

Computer Name: DAUDEE-21ABA4FF
Event Code: 6009
Message: Microsoft (R) Windows (R) 5.01. 2600 Service Pack 3 Multiprocessor Free.

Record Number: 36139
Source Name: EventLog
Time Written: 20090412102028.000000+120
Event Type: Informations
User:

Computer Name: DAUDEE-21ABA4FF
Event Code: 6006
Message: Le service d'Enregistrement d'événement a été arrêté.

Record Number: 36138
Source Name: EventLog
Time Written: 20090411182422.000000+120
Event Type: Informations
User:

=====Application event log=====

Computer Name: DAUDEE-21ABA4FF
Event Code: 0
Message:
Record Number: 9460
Source Name: IDriverT
Time Written: 20090303204647.000000+060
Event Type: Informations
User:

Computer Name: DAUDEE-21ABA4FF
Event Code: 11707
Message: Product: InstallScriptMSIEngine -- Installation operation completed successfully.

Record Number: 9459
Source Name: MsiInstaller
Time Written: 20090303204558.000000+060
Event Type: Informations
User: DAUDEE-21ABA4FF\Daudee

Computer Name: DAUDEE-21ABA4FF
Event Code: 20
Message:
Record Number: 9458
Source Name: Google Update
Time Written: 20090303195521.000000+060
Event Type: erreur
User: DAUDEE-21ABA4FF\Daudee

Computer Name: DAUDEE-21ABA4FF
Event Code: 20
Message:
Record Number: 9457
Source Name: Google Update
Time Written: 20090303195501.000000+060
Event Type: erreur
User: AUTORITE NT\SYSTEM

Computer Name: DAUDEE-21ABA4FF
Event Code: 20
Message:
Record Number: 9456
Source Name: Google Update
Time Written: 20090303185530.000000+060
Event Type: erreur
User: AUTORITE NT\SYSTEM

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Program Files\Samsung\Samsung PC Studio 3;C:\Program Files\QuickTime\QTSystem;C:\Program Files\QuickTime\QTSystem\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 6, GenuineIntel
"PROCESSOR_REVISION"=0f06
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"RGSCLauncher"=E:\Program Files\Rockstar Games\Rockstar Games Social Club
"RGSC"=E:\Program Files\Rockstar Games\Rockstar Games Social Club\1_0_0_0
"CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip

-----------------EOF-----------------

   
Répondre à jaysworld

3

jaysworld, le 2 jui 2009 à 08:29:38

Et le log.txt

Logfile of random's system information tool 1.06 (written by random/random)
Run by Daudee at 2009-07-02 08:24:52
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 5 GB (4%) free of 105 GB
Total RAM: 2047 MB (72% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 08:25:00, on 02/07/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\ATKKBService.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ASUS\GamerOSD\GamerOSD.exe
C:\WINDOWS\system32\Rundll32.exe
C:\WINDOWS\system32\devldr32.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
C:\Documents and Settings\Daudee\Local Settings\Application Data\Google\Update\1.2.183.7\GoogleCrashHandler.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\svchost.exe
C:\Documents and Settings\Daudee\Bureau\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Daudee.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: TV Center Toolbar - {a7347e8c-1ca6-469b-951e-4a23c4437935} - C:\Program Files\TV_Center\tbTV_C.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: TV Center Toolbar - {a7347e8c-1ca6-469b-951e-4a23c4437935} - C:\Program Files\TV_Center\tbTV_C.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll
O3 - Toolbar: TV Center Toolbar - {a7347e8c-1ca6-469b-951e-4a23c4437935} - C:\Program Files\TV_Center\tbTV_C.dll
O4 - HKLM\..\Run: [GamerOSD] C:\Program Files\ASUS\GamerOSD\GamerOSD.exe
O4 - HKLM\..\Run: [P17Helper] Rundll32 P17.dll,P17Helper
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Daudee\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Statistiques de la protection du trafic Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\SCIEPlgn.dll
O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net/...
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://www.srtest.com/srl_bin/sysreqlab3.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/2.0.0.1/sysreqlab2.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://ma-config.com/activex/hardwaredetection_3_0_0_30.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} (NsvPlayX Control) - http://www.nullsoft.com/nsv/embed/nsvplayx_vp3_mp3.cab
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://wwwimages.adobe.com/www.adobe.com/products/acrobat/nos/gp.cab
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
O23 - Service: Google Update Service (gupdate1c91b4d744301f0) (gupdate1c91b4d744301f0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
End of file - 10477 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-299502267-562591055-682003330-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-299502267-562591055-682003330-1003UA.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{9F716744-576F-41A7-9F43-C72AA40D774B}.job
C:\WINDOWS\tasks\WGASetup.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2009-02-19 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a7347e8c-1ca6-469b-951e-4a23c4437935}]
TV Center Toolbar - C:\Program Files\TV_Center\tbTV_C.dll [2009-06-16 2206744]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-02-19 34816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E5A1691B-D188-4419-AD02-90002030B8EE}]
FlashFXP Helper for Internet Explorer - C:\PROGRA~1\FlashFXP\IEFlash.dll [2007-05-16 191096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-02-19 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - Winamp Toolbar - C:\Program Files\Winamp Toolbar\winamptb.dll [2007-12-13 1185120]
{a7347e8c-1ca6-469b-951e-4a23c4437935} - TV Center Toolbar - C:\Program Files\TV_Center\tbTV_C.dll [2009-06-16 2206744]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"GamerOSD"=C:\Program Files\ASUS\GamerOSD\GamerOSD.exe [2007-02-14 380928]
"P17Helper"=Rundll32 P17.dll,P17Helper []
"NeroFilterCheck"=C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe [2007-03-01 153136]
"NBKeyScan"=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2007-09-20 1836328]
"AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe [2009-02-05 206088]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-01-05 413696]
"AppleSyncNotifier"=C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2009-03-06 177472]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-03-12 342312]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-06-10 86016]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-06-10 13758464]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe [2007-09-20 202024]
"Google Update"=C:\Documents and Settings\Daudee\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2008-09-03 133104]
"RocketDock"=C:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]

C:\Documents and Settings\Daudee\Menu Démarrer\Programmes\Démarrage
RocketDock.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\WINDOWS\system32\klogon.dll [2008-07-29 218376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
WgaLogon.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Winamp Remote\bin\Orb.exe"="C:\Program Files\Winamp Remote\bin\Orb.exe:*:Enabled:Orb"
"C:\Program Files\Winamp Remote\bin\OrbTray.exe"="C:\Program Files\Winamp Remote\bin\OrbTray.exe:*:Enabled:OrbTray"
"C:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe"="C:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe:*:Enabled:Orb Stream Client"
"C:\Program Files\FlashFXP\FlashFXP.exe"="C:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3"
"C:\Program Files\Steam\steamapps\podzob68100\counter-strike source\hl2.exe"="C:\Program Files\Steam\steamapps\podzob68100\counter-strike source\hl2.exe:*:Enabled:hl2"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\Program Files\Nero\Nero8\Nero Home\NeroHome.exe"="C:\Program Files\Nero\Nero8\Nero Home\NeroHome.exe:*:Enabled:Nero Home"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\WINDOWS\system32\dpnsvr.exe"="C:\WINDOWS\system32\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8 Server"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled:DNA"
"C:\Program Files\World of Warcraft\BackgroundDownloader.exe"="C:\Program Files\World of Warcraft\BackgroundDownloader.exe:*:Enabled:Blizzard Downloader"
"C:\Program Files\Steam\steamapps\podzob68100\team fortress 2\hl2.exe"="C:\Program Files\Steam\steamapps\podzob68100\team fortress 2\hl2.exe:*:Enabled:hl2"
"C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"
"C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files\Kaspersky Anti-Virus 2009\French\setup.exe"="C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files\Kaspersky Anti-Virus 2009\French\setup.exe:*:Enabled:Programme d'installation de Kaspersky Anti-Virus 2009"
"C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files\Kaspersky Internet Security 2009\French\setup.exe"="C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files\Kaspersky Internet Security 2009\French\setup.exe:*:Enabled:Programme d'installation de Kaspersky Internet Security 2009"
"C:\kav\kav7.0\french\setup.exe"="C:\kav\kav7.0\french\setup.exe:*:Enabled:Programme d'installation de Kaspersky Anti-Virus 7.0"
"C:\Program Files\Steam\steamapps\podzob68100\day of defeat source\hl2.exe"="C:\Program Files\Steam\steamapps\podzob68100\day of defeat source\hl2.exe:*:Enabled:hl2"
"C:\Program Files\Fichiers communs\PocketSoft\RTPatch\AutoRTP\artpschd.exe"="C:\Program Files\Fichiers communs\PocketSoft\RTPatch\AutoRTP\artpschd.exe:*:Enabled:artpschd"
"C:\Program Files\VirtualDJ\virtualdj.exe"="C:\Program Files\VirtualDJ\virtualdj.exe:*:Disabled:VirtualDJ"
"C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe"="C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe:*:Enabled:avp"
"E:\Program Files\towsim\Tower.exe"="E:\Program Files\towsim\Tower.exe:*:Enabled:Tower"
"C:\Program Files\Curse\CurseClient.exe"="C:\Program Files\Curse\CurseClient.exe:*:Enabled:Curse Client"
"E:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe"="E:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club"
"C:\Documents and Settings\Daudee\Local Settings\temp\Blizzard Launcher Temporary - 30e34df8\Launcher.exe"="C:\Documents and Settings\Daudee\Local Settings\temp\Blizzard Launcher Temporary - 30e34df8\Launcher.exe:*:Enabled:Blizzard Launcher"
"C:\Documents and Settings\Daudee\Local Settings\temp\Blizzard Launcher Temporary - 101d1b58\Launcher.exe"="C:\Documents and Settings\Daudee\Local Settings\temp\Blizzard Launcher Temporary - 101d1b58\Launcher.exe:*:Enabled:Blizzard Launcher"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
"C:\Program Files\Zattoo\zattood.exe"="C:\Program Files\Zattoo\zattood.exe:*:Enabled:zattood"
"C:\Program Files\Zattoo\Zattoo2.exe"="C:\Program Files\Zattoo\Zattoo2.exe:*:Enabled: "
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Zattoo\Zattoo.exe"="C:\Program Files\Zattoo\Zattoo.exe:*:Enabled: "
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"E:\Program Files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe"="E:\Program Files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe:*:Enabled:Grand Theft Auto IV"
"C:\Program Files\World of Warcraft\Launcher.exe"="C:\Program Files\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher"
"C:\Program Files\World of Warcraft\WoW-3.1.0.9767-to-3.1.1.9806-frFR-downloader.exe"="C:\Program Files\World of Warcraft\WoW-3.1.0.9767-to-3.1.1.9806-frFR-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\Program Files\World of Warcraft\WoW-3.1.1.9806-to-3.1.1.9835-frFR-downloader.exe"="C:\Program Files\World of Warcraft\WoW-3.1.1.9806-to-3.1.1.9835-frFR-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\Program Files\World of Warcraft\WoW-3.1.1.9835-to-3.1.2.9901-frFR-downloader.exe"="C:\Program Files\World of Warcraft\WoW-3.1.1.9835-to-3.1.2.9901-frFR-downloader.exe:*:Enabled:Blizzard Downloader"
"E:\Program Files\Sports Interactive\Football Manager 2009\fm.exe"="E:\Program Files\Sports Interactive\Football Manager 2009\fm.exe:*:Disabled:Football Manager 2009"
"C:\Program Files\World of Warcraft\WoW-3.1.2.9901-to-3.1.3.9947-frFR-downloader.exe"="C:\Program Files\World of Warcraft\WoW-3.1.2.9901-to-3.1.3.9947-frFR-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\Program Files\Steam\steamapps\common\empire total war\Empire.exe"="C:\Program Files\Steam\steamapps\common\empire total war\Empire.exe:*:Enabled:Empire: Total War"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\FlashFXP\FlashFXP.exe"="C:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"

======File associations======

.reg - open - regedit.exe "%1" %*
.scr - open - "%1" %*

======List of files/folders created in the last 1 months======

2009-06-27 19:09:07 ----D---- C:\Documents and Settings\All Users\Application Data\Saitek
2009-06-27 03:43:21 ----D---- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
2009-06-27 03:43:18 ----D---- C:\Program Files\DAEMON Tools Toolbar
2009-06-27 02:18:03 ----D---- C:\Documents and Settings\Daudee\Application Data\DAEMON Tools Lite
2009-06-27 01:27:38 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2009-06-27 01:27:38 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2009-06-27 01:27:37 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2009-06-27 01:27:36 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2009-06-27 01:27:36 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2009-06-27 01:27:36 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2009-06-27 01:27:36 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2009-06-26 22:41:10 ----D---- C:\Program Files\Conduit
2009-06-26 22:41:07 ----D---- C:\Program Files\TV_Center
2009-06-23 12:29:54 ----D---- C:\WINDOWS\ie8updates
2009-06-23 12:26:58 ----HDC---- C:\WINDOWS\ie8
2009-06-20 22:16:16 ----D---- C:\MPS
2009-06-20 22:15:41 ----D---- C:\ttd
2009-06-20 20:20:17 ----D---- C:\Documents and Settings\Daudee\Application Data\Disposition
2009-06-19 12:09:43 ----D---- C:\WINDOWS\NV34084016.TMP
2009-06-10 21:04:15 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2009-06-10 21:04:10 ----HDC---- C:\WINDOWS\$NtUninstallKB969898$
2009-06-10 21:02:06 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2009-06-10 21:01:02 ----HDC---- C:\WINDOWS\$NtUninstallKB968537$
2009-06-10 18:33:00 ----A---- C:\WINDOWS\system32\nvcuvenc.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrszht.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrszhc.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrstr.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrsth.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrssv.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrssl.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrssk.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrsru.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrsptb.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrspt.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrspl.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrsno.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrsnl.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrsko.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrsja.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrsit.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrshu.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrshe.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrsfr.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrsfi.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrsesm.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrses.dll
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\nwiz.exe
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\nvwrseng.dll
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\nvwrsel.dll
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\nvwrsde.dll
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\nvwrsda.dll
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\nvwrscs.dll
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\nvwrsar.dll
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\nvwimg.dll
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\nvwdmcpl.dll
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\nvshell.dll
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\nvappbar.exe
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\keystone.exe
2009-06-10 08:29:32 ----A---- C:\WINDOWS\system32\nview.dll
2009-06-10 08:29:30 ----A---- C:\WINDOWS\system32\nvcpluir.dll
2009-06-10 08:29:30 ----A---- C:\WINDOWS\system32\nvcplui.exe
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrszht.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrszhc.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrstr.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsth.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrssv.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrssl.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrssk.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsru.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsptb.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrspt.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrspl.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsno.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsnl.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsko.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsja.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsit.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrshu.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrshe.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsfr.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsfi.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsesm.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrses.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrseng.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsel.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsde.dll
2009-06-10 08:29:20 ----A---- C:\WINDOWS\system32\nvwddi.dll
2009-06-10 08:29:20 ----A---- C:\WINDOWS\system32\nvrsda.dll
2009-06-10 08:29:20 ----A---- C:\WINDOWS\system32\nvrscs.dll
2009-06-10 08:29:20 ----A---- C:\WINDOWS\system32\nvrsar.dll
2009-06-10 08:29:16 ----A---- C:\WINDOWS\system32\nvwssr.dll
2009-06-10 08:29:12 ----A---- C:\WINDOWS\system32\nvwss.dll
2009-06-10 08:29:08 ----A---- C:\WINDOWS\system32\nvvitvsr.dll
2009-06-10 08:29:06 ----A---- C:\WINDOWS\system32\nvvitvs.dll
2009-06-10 08:29:02 ----A---- C:\WINDOWS\system32\nvmoblsr.dll
2009-06-10 08:29:02 ----A---- C:\WINDOWS\system32\nvmobls.dll
2009-06-10 08:29:00 ----A---- C:\WINDOWS\system32\nvmccssr.dll
2009-06-10 08:29:00 ----A---- C:\WINDOWS\system32\nvmccss.dll
2009-06-10 08:29:00 ----A---- C:\WINDOWS\system32\nvgamesr.dll
2009-06-10 08:28:58 ----A---- C:\WINDOWS\system32\nvgames.dll
2009-06-10 08:28:56 ----A---- C:\WINDOWS\system32\nvdispsr.dll
2009-06-10 08:28:52 ----A---- C:\WINDOWS\system32\nvdisps.dll
2009-06-10 08:28:50 ----A---- C:\WINDOWS\system32\nvsvc32.exe
2009-06-10 08:28:50 ----A---- C:\WINDOWS\system32\nvmctray.dll
2009-06-10 08:28:50 ----A---- C:\WINDOWS\system32\nvcpl.dll
2009-06-10 08:28:50 ----A---- C:\WINDOWS\system32\nvcolor.exe
2009-06-10 08:28:48 ----A---- C:\WINDOWS\system32\nvmccs.dll

======List of files/folders modified in the last 1 months======

2009-07-02 08:24:53 ----D---- C:\WINDOWS\Prefetch
2009-07-02 08:24:43 ----A---- C:\WINDOWS\NeroDigital.ini
2009-07-02 08:24:14 ----D---- C:\WINDOWS\temp
2009-07-02 08:24:01 ----D---- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2009-07-02 08:22:43 ----D---- C:\WINDOWS
2009-07-01 23:08:24 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-07-01 23:00:39 ----D---- C:\WINDOWS\system32\CatRoot2
2009-07-01 22:31:09 ----A---- C:\Relaxing Ocean V3Trace.txt
2009-07-01 22:19:40 ----D---- C:\WINDOWS\network diagnostic
2009-06-30 17:05:38 ----SD---- C:\WINDOWS\Tasks
2009-06-30 14:10:42 ----D---- C:\Documents and Settings\Daudee\Application Data\uTorrent
2009-06-30 12:12:00 ----SHD---- C:\WINDOWS\Installer
2009-06-28 16:46:08 ----D---- C:\Program Files\eMule
2009-06-28 16:43:13 ----D---- C:\Documents and Settings\All Users\Application Data\Tages
2009-06-28 13:04:40 ----D---- C:\WINDOWS\system32\DirectX
2009-06-28 13:04:38 ----HD---- C:\WINDOWS\inf
2009-06-28 13:04:07 ----RSD---- C:\WINDOWS\assembly
2009-06-28 12:51:52 ----SHD---- C:\Config.Msi
2009-06-28 12:51:43 ----HD---- C:\Program Files\InstallShield Installation Information
2009-06-27 19:08:05 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-06-27 19:08:00 ----D---- C:\WINDOWS\system32\drivers
2009-06-27 19:07:59 ----D---- C:\WINDOWS\system32
2009-06-27 19:07:55 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-06-27 03:45:27 ----D---- C:\Program Files\DAEMON Tools Lite
2009-06-27 03:44:11 ----D---- C:\Documents and Settings\Daudee\Application Data\DAEMON Tools
2009-06-27 03:43:18 ----RD---- C:\Program Files
2009-06-26 20:24:55 ----D---- C:\Program Files\FlashFXP
2009-06-26 19:11:38 ----D---- C:\Program Files\Windows Live Safety Center
2009-06-25 13:28:06 ----D---- C:\WINDOWS\system32\CatRoot
2009-06-24 21:58:08 ----D---- C:\Program Files\Google
2009-06-24 11:41:57 ----D---- C:\WINDOWS\system32\fr-fr
2009-06-24 11:41:54 ----D---- C:\WINDOWS\Media
2009-06-24 11:41:54 ----D---- C:\Program Files\Internet Explorer
2009-06-24 11:41:53 ----D---- C:\WINDOWS\Help
2009-06-23 12:58:28 ----D---- C:\Program Files\Mozilla Firefox
2009-06-23 12:30:04 ----HD---- C:\WINDOWS\$hf_mig$
2009-06-23 12:29:58 ----A---- C:\WINDOWS\imsins.BAK
2009-06-21 12:32:06 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-06-21 12:31:57 ----D---- C:\Documents and Settings\Daudee\Application Data\Adobe
2009-06-21 12:31:35 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2009-06-21 12:09:27 ----D---- C:\Fraps
2009-06-20 21:11:41 ----D---- C:\Program Files\Abacus
2009-06-20 21:10:04 ----A---- C:\WINDOWS\NAVIGMA.INI
2009-06-20 20:12:19 ----D---- C:\WINDOWS\WinSxS
2009-06-20 19:51:26 ----A---- C:\WINDOWS\iun6002.exe
2009-06-19 14:05:57 ----D---- C:\WINDOWS\system32\wbem
2009-06-19 14:05:57 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-06-19 14:05:19 ----D---- C:\Program Files\Steam
2009-06-19 12:41:48 ----D---- C:\Program Files\Fichiers communs\Wise Installation Wizard
2009-06-19 12:24:18 ----D---- C:\NVIDIA
2009-06-19 12:22:08 ----D---- C:\WINDOWS\nview
2009-06-10 21:04:45 ----A---- C:\WINDOWS\win.ini
2009-06-10 18:33:00 ----A---- C:\WINDOWS\system32\nvudisp.exe
2009-06-10 18:33:00 ----A---- C:\WINDOWS\system32\nvoglnt.dll
2009-06-10 18:33:00 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2009-06-10 18:33:00 ----A---- C:\WINDOWS\system32\nvcuda.dll
2009-06-10 18:33:00 ----A---- C:\WINDOWS\system32\nvcodins.dll
2009-06-10 18:33:00 ----A---- C:\WINDOWS\system32\nvcod.dll
2009-06-10 18:33:00 ----A---- C:\WINDOWS\system32\nvapi.dll
2009-06-10 18:33:00 ----A---- C:\WINDOWS\system32\nv4_disp.dll
2009-06-08 16:25:26 ----D---- C:\Program Files\Curse
2009-06-04 16:39:54 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
2009-06-04 08:41:55 ----D---- C:\Program Files\World of Warcraft
2009-06-03 21:32:10 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-06-03 21:32:03 ----D---- C:\Program Files\Virtual Earth 3D

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 asusgsb;ASUS Virtual Video Capture Device Driver; C:\WINDOWS\system32\drivers\asusgsb32.sys [2005-10-20 12416]
R1 asuskbnt;Enhanced Display Driver Helper Service; C:\WINDOWS\system32\drivers\atkkbnt.sys [2007-02-14 11136]
R1 EIO;EIO; \??\C:\WINDOWS\system32\drivers\EIO.sys []
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2009-02-05 213520]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R2 Aspi32;Aspi32; C:\WINDOWS\System32\drivers\aspi32.sys [2005-11-21 16512]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-06-28 281760]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-06-28 25888]
R3 ctljystk;Creative SBLive! Port de jeux; C:\WINDOWS\system32\DRIVERS\ctljystk.sys [2001-08-17 3712]
R3 ctsfm2k;Creative SoundFont Management Device Driver; C:\WINDOWS\system32\DRIVERS\ctsfm2k.sys [2005-01-10 138752]
R3 emu10k;Creative SB Live! (WDM); C:\WINDOWS\system32\drivers\emu10k1m.sys [2001-08-17 283904]
R3 emu10k1;Pilote du Gestionnaire d'interface Creative (WDM); C:\WINDOWS\system32\drivers\ctlfacem.sys [2001-08-17 6912]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2009-01-15 23848]
R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 klim5;Kaspersky Anti-Virus NDIS Filter; C:\WINDOWS\system32\DRIVERS\klim5.sys [2008-04-30 24592]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2002-09-07 12288]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-06-10 8087712]
R3 ossrv;Creative OS Services Driver; C:\WINDOWS\system32\DRIVERS\ctoss2k.sys [2005-01-10 106496]
R3 P17;SB Live! 24-bit; C:\WINDOWS\system32\drivers\P17.sys [2007-06-15 1127936]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2008-02-26 47360]
R3 PD0620VID;Creative WebCam Instant; C:\WINDOWS\system32\DRIVERS\P0620Vid.sys [2004-07-29 91577]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2006-07-27 83712]
R3 SaiH040B;SaiH040B; C:\WINDOWS\system32\DRIVERS\SaiH040B.sys [2007-05-01 132232]
R3 SaiU040B;SaiU040B; C:\WINDOWS\system32\DRIVERS\SaiU040B.sys [2007-05-01 28416]
R3 sfman;Pilote du Gestionnaire SoundFont Creative (WDM); C:\WINDOWS\system32\drivers\sfmanm.sys [2001-08-17 36480]
R3 TotRec7;Total Recorder WDM audio driver; C:\WINDOWS\system32\drivers\TotRec7.sys [2008-10-27 127496]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 Video3D;ASUS Video3D Service; C:\WINDOWS\System32\Drivers\Video3D32.sys [2006-09-29 10752]
S3 a4bscax9;a4bscax9; C:\WINDOWS\system32\drivers\a4bscax9.sys []
S3 awry8qte;awry8qte; C:\WINDOWS\system32\drivers\awry8qte.sys []
S3 catchme;catchme; \??\C:\DOCUME~1\Daudee\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files\MediaCoder\SysInfo.sys []
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt []
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NPF;Netgroup Packet Filter; C:\WINDOWS\system32\DRIVERS\aztech_npf32.sys [2008-06-26 42000]
S3 RivaTuner32;RivaTuner32; \??\C:\Program Files\RivaTuner v2.23\RivaTuner32.sys []
S3 RT2500USB;Thrustmaster FunAccess Driver; C:\WINDOWS\system32\DRIVERS\rt2500usb.sys [2006-04-14 162560]
S3 RT61;D-Link Wireless Driver; C:\WINDOWS\system32\DRIVERS\RT61.sys [2006-05-03 380928]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\WINDOWS\system32\DRIVERS\sscdbus.sys [2005-12-22 80272]
S3 sscdmdfl;SAMSUNG CDMA Modem Filter; C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys [2005-12-22 10864]
S3 sscdmdm;SAMSUNG CDMA Modem Drivers; C:\WINDOWS\system32\DRIVERS\sscdmdm.sys [2005-12-22 137884]
S3 ssm_bus;SAMSUNG Mobile USB Device II 1.0 driver (WDM); C:\WINDOWS\system32\DRIVERS\ssm_bus.sys [2005-08-30 58320]
S3 ssm_mdfl;SAMSUNG Mobile USB Modem II 1.0 Filter; C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys [2005-08-30 8336]
S3 ssm_mdm;SAMSUNG Mobile USB Modem II 1.0 Drivers; C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys [2005-08-30 94000]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-03-06 132424]
R2 ATKKeyboardService;ATK Keyboard Service; C:\WINDOWS\ATKKBService.exe [2006-11-15 258560]
R2 AVP;Kaspersky Anti-Virus; C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe [2009-02-05 206088]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-02-19 152984]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2007-09-20 853288]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-06-10 168004]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-03-12 656168]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe [2007-09-20 382248]
S2 gupdate1c91b4d744301f0;Google Update Service (gupdate1c91b4d744301f0); C:\Program Files\Google\Update\GoogleUpdate.exe [2008-09-20 133104]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 getPlus(R) Helper;getPlus(R) Helper; C:\Program Files\NOS\bin\getPlus_HelperSvc.exe [2008-12-01 33752]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2008-05-19 576680]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2008-04-10 66872]
S4 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2008-04-10 107832]

-----------------EOF-----------------


merci par avance!

audrey

   
Répondre à jaysworld

4

jaysworld, le 2 jui 2009 à 10:12:49

Qq'un a une suggestion à me proposer? ^^ merci xxxx

   
Répondre à jaysworld

5

jaysworld, le 2 jui 2009 à 12:50:01

Personne pour aider une pauvre internaute avec un pc malade?!

   
Répondre à jaysworld

6

jacques.gache, le 2 jui 2009 à 17:55:07

Bonjour, quand kaspersky te signale ton trojan il te le signale ou exactement si tu avais le chemin cela serait bien de me le poster, car sir ton RSIT rien qui explique cela tu as une toolbar néfaste , tu vas passer toolbar S&D option 1 et 2 , et puis tu feras findykill option 1 et 2 tu postes les rapports au fure et à mesure de leur création et puis tu désinstalleras findykill en faisant option 5

1) pour toolbar Télécharge ToolBar-S&D ( Merci à Eric_71, Angeldark, Sham_Rock et XmichouX )
http://eric.71.mespages.googlepages.com/ToolBarSD.exe

Lances l'installation du programme en exécutant le fichier téléchargé.
Double-clique maintenant sur le raccourci de Toolbar-S&D.
Sélectionnes la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
Postes le rapport généré. (C:\TB.txt)

Suppression option 2

Relance Toolbar-S&D en double-cliquant sur le raccourci. Tape sur "2" puis valide en appuyant sur "Entrée".
! Ne ferme pas la fenêtre lors de la suppression !
Un rapport sera généré, poste son contenu ici.

NOTE : Si ton Bureau ne réapparait pas, appuie simultanément sur Ctrl+Alt+Suppr pour ouvrir le Gestionnaire des tâches.
Rends-toi sur l'onglet "Processus". Clique en haut à gauche sur Fichier et choisis "Exécuter..."
Tape explorer puis valide.



Aide en images: http://toolbarsd.googlepages.com/aideenimages




2) pour findykill le mieux serais de déactiver la protection de kaspersky pour pas qu'il s' affolle


########### [ Option 1 ( Recherche ) ]

• Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.


• Télécharge et install FindyKill http://sd-1.archive-host.com/membres/up/127028005715545653/FindyKill.exe

(!) Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptible d'avoir été infectées sans les ouvrir

• Double clic sur le raccourci FindyKill présent sur ton bureau .

• Choisis l'option 1 ( Recherche )

• Laisse travailler l'outil.

• Ensuite post le rapport FindyKill.txt qui apparaitra.

• Note : Le rapport FindyKill.txt est sauvegardé a la racine du disque. ( C:\FindyKill.txt )

( CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )



• Tuto : http://pagesperso-orange.fr/NosTools/index.html


##################### [ Option 2 ( Suppression ) ]



(!) Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptible d avoir été infectés sans les ouvrir

• Double clic sur le raccourci FindyKill présent sur ton bureau

• choisis l'option 2 ( Suppression )

• Ton bureau disparaitra et le pc redémarrera .

• Au redémarrage , FindyKill scannera ton pc , laisse travailler l'outil.

• Ensuite post le rapport UsbFix.txt qui apparaitra avec le bureau .

• Note : Le rapport FindyKill.txt est sauvegardé a la racine du disque.( C:\FindyKill.txt )

( CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )




##################### | Désinstallation |



• Double clic sur le raccourci FindyKill présent sur ton bureau

• Choisis l'option 5 ( Désinstaller ) ....



Attention !! la surmultiplication de logiciels de sécurité ne 
protège pas mieux voire peut engendrer des conflits et
des plantages. " mais chacun reste maître de son PC "

   
Répondre à jacques.gache

7

jaysworld, le 3 jui 2009 à 08:33:23

Voici le rapport tb.txt


-----------\\ ToolBar S&D 1.2.8 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 CPU 6420 @ 2.13GHz )
BIOS : BIOS Date: 06/26/07 16:11:44 Ver: 08.00.12
USER : Daudee ( Administrator )
BOOT : Normal boot
Antivirus : Kaspersky Anti-Virus 8.0.0.454 (Activated)
C:\ (Local Disk) - NTFS - Total:102 Go (Free:4 Go)
D:\ (CD or DVD) - UDF - Total:7 Go (Free:0 Go)
E:\ (Local Disk) - NTFS - Total:195 Go (Free:1 Go)
F:\ (CD or DVD)
G:\ (CD or DVD)

"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [1] ( 03/07/2009| 8:23 )

-----------\\ Recherche de Fichiers / Dossiers ...

C:\DOCUME~1\Daudee\Cookies\daudee@tabcrawler[1].txt
C:\DOCUME~1\Daudee\Cookies\daudee@www.tabcrawler[1].txt
C:\Program Files\DAEMON Tools Toolbar
C:\DOCUME~1\Daudee\Cookies\daudee@rockstarwarehouse.stores.yahoo[2].txt
C:\WINDOWS\iun6002.exe

-----------\\ Extensions

(Daudee) - {e4a8a97b-f2ed-450b-b12d-ee082ba24781} => greasemonkey


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="http://www.google.fr/"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"


--------------------\\ Recherche d'autres infections

C:\Program Files\Live-Player
C:\Program Files\Live-Player\data
C:\Program Files\Live-Player\img
C:\Program Files\Live-Player\live-player.exe
C:\Program Files\Live-Player\live-player.log
C:\Program Files\Live-Player\SkinCrafterDll.dll
C:\Program Files\Live-Player\skins
C:\Program Files\Live-Player\sqlite3.dll
C:\Program Files\Live-Player\uninst.exe
C:\DOCUME~1\Daudee\APPLIC~1\live-player
C:\DOCUME~1\Daudee\APPLIC~1\live-player\liveplayer.s3db
C:\DOCUME~1\Daudee\APPLIC~1\live-player\flv.swf
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Live-Player
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Live-Player\Conditions g‚n‚rales.url
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Live-Player\Confidentialit‚.url
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Live-Player\D‚sinstaller.lnk
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Live-Player\Live-Player.lnk
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Live-Player\Website.url
[b]==> EGDACCESS <==/b



1 - "C:\ToolBar SD\TB_1.txt" - 03/07/2009| 8:25 - Option : [1]

-----------\\ Fin du rapport a 8:25:57,64

   
Répondre à jaysworld

8

jaysworld, le 3 jui 2009 à 08:38:55

-----------\\ ToolBar S&D 1.2.8 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 CPU 6420 @ 2.13GHz )
BIOS : BIOS Date: 06/26/07 16:11:44 Ver: 08.00.12
USER : Daudee ( Administrator )
BOOT : Normal boot
Antivirus : Kaspersky Anti-Virus 8.0.0.454 (Activated)
C:\ (Local Disk) - NTFS - Total:102 Go (Free:4 Go)
D:\ (CD or DVD) - UDF - Total:7 Go (Free:0 Go)
E:\ (Local Disk) - NTFS - Total:195 Go (Free:1 Go)
F:\ (CD or DVD)
G:\ (CD or DVD)

"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [2] ( 03/07/2009| 8:35 )

-----------\\ SUPPRESSION

Supprime! - C:\DOCUME~1\Daudee\Cookies\daudee@tabcrawler[1].txt
Supprime! - C:\DOCUME~1\Daudee\Cookies\daudee@www.tabcrawler[1].txt
Supprime! - C:\DOCUME~1\Daudee\Cookies\daudee@rockstarwarehouse.stores.yahoo[2].txt
Supprime! - C:\WINDOWS\iun6002.exe
Supprime! - C:\Program Files\DAEMON Tools Toolbar

-----------\\ Recherche de Fichiers / Dossiers ...


-----------\\ Extensions

(Daudee) - {e4a8a97b-f2ed-450b-b12d-ee082ba24781} => greasemonkey


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="http://www.google.fr/"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="http://www.msn.com/"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"


--------------------\\ Recherche d'autres infections

C:\Program Files\Live-Player
C:\Program Files\Live-Player\data
C:\Program Files\Live-Player\img
C:\Program Files\Live-Player\live-player.exe
C:\Program Files\Live-Player\live-player.log
C:\Program Files\Live-Player\SkinCrafterDll.dll
C:\Program Files\Live-Player\skins
C:\Program Files\Live-Player\sqlite3.dll
C:\Program Files\Live-Player\uninst.exe
C:\DOCUME~1\Daudee\APPLIC~1\live-player
C:\DOCUME~1\Daudee\APPLIC~1\live-player\liveplayer.s3db
C:\DOCUME~1\Daudee\APPLIC~1\live-player\flv.swf
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Live-Player
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Live-Player\Conditions g‚n‚rales.url
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Live-Player\Confidentialit‚.url
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Live-Player\D‚sinstaller.lnk
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Live-Player\Live-Player.lnk
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Live-Player\Website.url
[b]==> EGDACCESS <==/b


1 - "C:\ToolBar SD\TB_1.txt" - 03/07/2009| 8:25 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 03/07/2009| 8:37 - Option : [2]

-----------\\ Fin du rapport a 8:37:39,57

   
Répondre à jaysworld

9

jaysworld, le 3 jui 2009 à 08:45:19

############################## | FindyKill V6.001 |

# User : Daudee (Administrateurs) # DAUDEE-21ABA4FF
# Update on 30/06/09 by Chiquitine29 & C_XX
# Start at: 08:41:28 | 03/07/2009
# Website : http://pagesperso-orange.fr/NosTools/index.html

# Intel(R) Core(TM)2 CPU 6420 @ 2.13GHz
# Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 8.0.6001.18702
# Windows Firewall Status : Enabled
# AV : Kaspersky Anti-Virus 8.0.0.454 [ Enabled | Updated ]

# C:\ # Disque fixe local # 102,54 Go (4,32 Go free) # NTFS
# D:\ # Disque CD-ROM # 7,68 Go (0 Mo free) [ARMA2] # UDF
# E:\ # Disque fixe local # 195,54 Go (1,84 Go free) [Données] # NTFS
# F:\ # Disque CD-ROM
# G:\ # Disque CD-ROM

############################## | Processus actifs |

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\devldr32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\ATKKBService.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\ASUS\GamerOSD\GamerOSD.exe
C:\WINDOWS\system32\Rundll32.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe
C:\Documents and Settings\Daudee\Local Settings\Application Data\Google\Update\1.2.183.7\GoogleCrashHandler.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

################## | Registre Startup |

HKCU_Main: "Local Page"="C:\\WINDOWS\\system32\\blank.htm"
HKCU_Main: "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
HKCU_Main: "Start Page"="http://www.google.fr/"
HKLM_logon: "Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"
HKLM_logon: "DefaultUserName"="Daudee"
HKLM_logon: "AltDefaultUserName"="Daudee"
HKLM_logon: "LegalNoticeCaption"=""
HKLM_logon: "LegalNoticeText"=""
HKLM_Run: GamerOSD=C:\Program Files\ASUS\GamerOSD\GamerOSD.exe
HKLM_Run: P17Helper=Rundll32 P17.dll,P17Helper
HKLM_Run: NeroFilterCheck=C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe
HKLM_Run: NBKeyScan="C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
HKLM_Run: AVP="C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe"
HKLM_Run: Adobe Reader Speed Launcher="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
HKLM_Run: QuickTime Task="C:\Program Files\QuickTime\qttask.exe" -atboottime
HKLM_Run: AppleSyncNotifier=C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
HKLM_Run: iTunesHelper="C:\Program Files\iTunes\iTunesHelper.exe"
HKLM_Run: nwiz=nwiz.exe /install
HKLM_Run: NvMediaCenter=RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
HKLM_Run: NvCplDaemon=RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM_Run: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
HKCU_Run: CTFMON.EXE=C:\WINDOWS\system32\ctfmon.exe
HKCU_Run: BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}="C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe"
HKCU_Run: Google Update="C:\Documents and Settings\Daudee\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
HKCU_Run: RocketDock="C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe"

################## | Fichiers # Dossiers infectieux |

Présent ! C:\Qoobox\Quarantine\C\Documents and Settings\Daudee\Application Data\Macromedia\Flash Player\#SharedObjects
Présent ! C:\Qoobox\Quarantine\C\Documents and Settings\Daudee\Application Data\Macromedia\Flash Player\#SharedObjects\PA935GUY
Présent ! C:\Qoobox\Quarantine\C\Documents and Settings\Daudee\Application Data\Macromedia\Flash Player\#SharedObjects\PA935GUY\interclick.com
Présent ! C:\Qoobox\Quarantine\C\Documents and Settings\Daudee\Application Data\Macromedia\Flash Player\#SharedObjects\PA935GUY\interclick.com\ud.sol.vir

################## | C:\Documents and Settings\Daudee\Temporary Internet Files |

Présent ! C:\Documents and Settings\Daudee\Cookies\daudee@crackle[2].txt
Présent ! C:\Documents and Settings\Daudee\Cookies\daudee@crackserialkeygen[1].txt
Présent ! C:\Documents and Settings\Daudee\Cookies\daudee@www.serialmaster[2].txt

################## | All Drives ... |

Présent ! D:\Setup.exe
Présent ! D:\autorun.inf

################## | Registre # Clés Run infectieuses |

Présent ! HKU\S-1-5-21-299502267-562591055-682003330-1003\Software\Ubisoft
Présent ! HKLM\software\microsoft\security center "AntiVirusOverride" ( 0x1 )

################## | Registre # Mountpoints2 |


################## | Etat / Services / Informations |

# Affichage des fichiers cachés : OK

# Mode sans echec : OK

# Ndisuio -> Start = 3 ( Good = 3 | Bad = 4 )
# EapHost -> Start = 3 ( Good = 2 | Bad = 4 )
# Ip6Fw -> Start = 3 ( Good = 2 | Bad = 4 )
# SharedAccess -> Start = 2 ( Good = 2 | Bad = 4 )
# wuauserv -> Start = 2 ( Good = 2 | Bad = 4 )
# wscsvc -> Start = 2 ( Good = 2 | Bad = 4 )

################## | Cracks / Keygens / Serials |


################## | ! Fin du rapport # FindyKill V6.001 ! |

   
Répondre à jaysworld

10

jaysworld, le 3 jui 2009 à 09:44:21

############################## | FindyKill V6.001 |

# User : Daudee (Administrateurs) # DAUDEE-21ABA4FF
# Update on 30/06/09 by Chiquitine29 & C_XX
# Start at: 08:51:53 | 03/07/2009
# Website : http://pagesperso-orange.fr/NosTools/index.html

# Intel(R) Core(TM)2 CPU 6420 @ 2.13GHz
# Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 8.0.6001.18702
# Windows Firewall Status : Enabled
# AV : Kaspersky Anti-Virus 8.0.0.454 [ (!) Disabled | Updated ]

# C:\ # Disque fixe local # 102,54 Go (4,35 Go free) # NTFS
# D:\ # Disque CD-ROM # 7,68 Go (0 Mo free) [ARMA2] # UDF
# E:\ # Disque fixe local # 195,54 Go (1,84 Go free) [Données] # NTFS
# F:\ # Disque CD-ROM
# G:\ # Disque CD-ROM

############################## | Processus actifs |

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\logonui.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\KB905474\wgasetup.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\KB905474\wgasetup.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\ATKKBService.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe

################## | Fichiers # Dossiers infectieux |


################## | C:\Documents and Settings\Daudee\Temporary Internet Files |

Supprimé ! C:\Documents and Settings\Daudee\Cookies\daudee@crackle[2].txt
Supprimé ! C:\Documents and Settings\Daudee\Cookies\daudee@crackserialkeygen[1].txt
Supprimé ! C:\Documents and Settings\Daudee\Cookies\daudee@www.serialmaster[2].txt

################## | All Drives ... |

(!) Non supprimé ! D:\Setup.exe
(!) Non supprimé ! D:\autorun.inf

################## | Autres ... |


################## | Registre # Clés Run infectieuses |

Supprimé ! HKU\S-1-5-21-299502267-562591055-682003330-1003\Software\Ubisoft
# HKLM\software\microsoft\security center "AntiVirusOverride" # -> Reset sucessfully !

################## | Registre # Mountpoints2 |


################## | Listing des fichiers présent |

[26/03/2009 12:22|--a------|4289] - C:\10ROCAQEE5XUCA0WEGZ8CATSSKPQCAQ4RT9RCAK8PHP4CAKLA50TCACFDRGWCAIQ44CICAQJJ0I8CAOGHWSACA3Z58JBCAP2ZFCXCABL683PCAN2GBQICAV2J3GCCAE238G4CAUDZIZNCARGWNDKCAPC23H7.jpg
[03/12/2007 16:09|--a------|3884] - C:\9354-avatarevc.jpg
[31/10/2007 21:42|--a------|0] - C:\AUTOEXEC.BAT
[22/03/2008 17:01|--a------|31716] - C:\awp copie.gif
[31/10/2007 21:39|---hs----|212] - C:\boot.ini
[07/09/2002 02:00|-rahs----|4952] - C:\Bootfont.bin
[24/03/2009 14:29|--a------|22022] - C:\caverne.jpg
[04/03/2009 09:18|--a------|2810] - C:\cleannavi.txt
[02/07/2009 13:17|--a------|23602] - C:\ComboFix.txt
[31/10/2007 21:42|--a------|0] - C:\CONFIG.SYS
[09/08/2008 22:54|--a------|7528] - C:\e007lk4.gif
[03/07/2009 09:34|--a------|3719] - C:\FindyKill.txt
[04/03/2009 01:04|--a------|3226] - C:\fixnavi.txt
[02/04/2008 18:56|--a------|34839] - C:\humour-drole-4.jpg
[31/10/2007 21:42|-rahs----|0] - C:\IO.SYS
[26/03/2009 12:23|--a------|22414] - C:\jesus_owned-264x300.jpg
[13/08/2008 12:24|--a------|111276] - C:\lma_log.html
[12/11/2008 10:19|--a------|29194] - C:\log.html
[18/04/2009 09:26|--a------|36837] - C:\MP4debug.log
[31/10/2007 21:42|-rahs----|0] - C:\MSDOS.SYS
[28/03/2009 12:33|--a------|8415] - C:\n776767505_120.jpg
[04/08/2004 04:38|-rahs----|47564] - C:\NTDETECT.COM
[07/09/2008 10:06|-rahs----|252240] - C:\ntldr
[||] - C:\pagefile.sys
[14/08/2008 14:19|--a------|260692] - C:\rapport.txt
[02/07/2009 10:56|--a------|126542] - C:\Relaxing Ocean V3Trace.txt
[26/03/2009 12:22|--a------|30023] - C:\Smell_My_Boot_Owned.jpg
[01/11/2007 03:55|--ah-----|232] - C:\sqmdata00.sqm
[18/12/2007 20:39|--ah-----|232] - C:\sqmdata01.sqm
[01/11/2007 03:55|--ah-----|244] - C:\sqmnoopt00.sqm
[18/12/2007 20:39|--ah-----|244] - C:\sqmnoopt01.sqm
[03/07/2009 08:51|--a------|608] - C:\sti.log
[03/07/2009 08:37|--a------|3710] - C:\TB.txt
[13/12/2008 20:05|--a------|248454] - C:\untitled.bmp
[01/12/2007 18:03|--a------|177] - C:\X-Plane Installer.prf
[29/05/2009 04:44|-r-------|1075256] - D:\AutoRun.bmp
[29/05/2009 04:44|-r-------|1830] - D:\Autorun.csv
[29/05/2009 04:44|-r-------|488] - D:\AutoRun.dat
[26/03/2009 10:20|-r-------|704512] - D:\AutoRun.exe
[29/05/2009 04:44|-r-------|48] - D:\Autorun.inf
[29/05/2009 04:44|-r-------|263138] - D:\autorun.wav
[29/05/2009 04:44|-r-------|2662] - D:\readme.txt
[29/05/2009 04:44|-r-------|239480] - D:\setup.bmp
[01/06/2009 04:23|-r-------|4456] - D:\setup.crc
[29/05/2009 04:44|-r-------|24754] - D:\Setup.csv
[29/05/2009 04:44|-r-------|1075] - D:\setup.dat
[21/05/2009 14:54|-r-------|983040] - D:\Setup.exe
[29/05/2009 04:44|-r-------|1930] - D:\Uninstall.csv
[26/03/2009 10:21|-r-------|573440] - D:\UnInstall.exe
[22/03/2008 17:04|--a------|720056] - E:\awp.bmp
[22/03/2008 17:02|--a------|31716] - E:\awp.gif
[22/03/2008 16:42|--a------|18828] - E:\awp.jpg
[11/07/2008 02:04|--a------|262162] - E:\awp.tga
[03/04/2008 16:13|--a------|126878] - E:\lapin.jpg
[20/03/2009 15:19|--ahs----|13312] - E:\Thumbs.db
[13/09/2008 19:11|--a------|15947] - E:\VirtualDJ Local Database v5.xml

################## | Vaccination |

# C:\autorun.inf ( # Not infected ) -> Folder created by FindyKill.
# E:\autorun.inf ( # Not infected ) -> Folder created by FindyKill.

################## | Etat / Services / Informations |

# Mode sans echec : OK


# Affichage des fichiers cachés : OK

# Ndisuio -> Start = 3 ( Good = 3 | Bad = 4 )
# EapHost -> Start = 2 ( Good = 2 | Bad = 4 )
# Ip6Fw -> Start = 2 ( Good = 2 | Bad = 4 )
# SharedAccess -> Start = 2 ( Good = 2 | Bad = 4 )
# wuauserv -> Start = 2 ( Good = 2 | Bad = 4 )
# wscsvc -> Start = 2 ( Good = 2 | Bad = 4 )

################## | PEH ... |


################## | ! Fin du rapport # FindyKill V6.001 ! |

   
Répondre à jaysworld

11

jacques.gache, le 3 jui 2009 à 11:47:56

Bonjour, ok peux tu passer navilog option 1 poster le rapport, et puis un nouveau RSIT tu n'aura qu'un rapport ce coup la , Merci

Faire un clic droit sur ce lien : http://perso.orange.fr/il.mafioso/Navifix/Navilog1.zip
enregistres le sur le bureau.
Faire un clic droit sur navilog1.zip et choisir "tout extraire"
Double-cliquez sur navilog1.exe
Arriver au menu principal, choisir l'option 1 et valider.
suivre les expliquations et consignes demandées
Patientez jusqu'au message : Analyse Termine le ...
Le rapport sera en outre sauvegardé à la racine du disque C:(cleannavi.txt)

pour comprendre: http://www.malekal.com/Adware.Magic_Control.php Attention !! la surmultiplication de logiciels de sécurité ne 
protège pas mieux voire peut engendrer des conflits et
des plantages. " mais chacun reste maître de son PC "

   
Répondre à jacques.gache

12

jaysworld, le 3 jui 2009 à 19:31:30

Bonjour jacques,

voici le rapport cleannavi.txt

Fix Navipromo version 4.0.0 commencé le 03/07/2009 à 19:02:41,01

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!

Outil exécuté depuis C:\Program Files\navilog1

Mise à jour le 19.06.2009 à 20h00 par IL-MAFIOSO

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 CPU 6420 @ 2.13GHz )
BIOS : BIOS Date: 06/26/07 16:11:44 Ver: 08.00.12
USER : Daudee ( Administrator )
BOOT : Normal boot

Antivirus : Kaspersky Anti-Virus 8.0.0.454 (Not Activated)


C:\ (Local Disk) - NTFS - Total:102 Go (Free:4 Go)
D:\ (CD or DVD) - UDF - Total:7 Go (Free:0 Go)
E:\ (Local Disk) - NTFS - Total:195 Go (Free:1 Go)
F:\ (CD or DVD)
G:\ (CD or DVD)


Recherche exécutée en mode normal

Nettoyage exécuté au redémarrage de l'ordinateur


C:\Program Files\Live-Player supprimé !
C:\Documents and Settings\All Users\menudm~1\progra~1\Live-Player supprimé !
C:\Documents and Settings\Daudee\applic~1\Live-Player supprimé !
c:\docume~1\alluse~1\bureau\Live-Player.lnk supprimé !


Nettoyage contenu C:\WINDOWS\Temp effectué !
Nettoyage contenu C:\Documents and Settings\Daudee\locals~1\Temp effectué !


*** Sauvegarde du Registre vers dossier Safebackup ***

sauvegarde du Registre réalisée avec succès !

*** Nettoyage Registre ***

Nettoyage Registre Ok




*** Scan terminé le 03/07/2009 à 19:28:38,60 ***


merci

   
Répondre à jaysworld

13

jaysworld, le 3 jui 2009 à 19:32:44

Et le log.txt que j'ai eu avec rsit

Logfile of random's system information tool 1.06 (written by random/random)
Run by Daudee at 2009-07-03 19:31:39
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 4 GB (4%) free of 105 GB
Total RAM: 2047 MB (68% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:31:46, on 03/07/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\ATKKBService.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\notepad.exe
C:\Program Files\ASUS\GamerOSD\GamerOSD.exe
C:\WINDOWS\system32\Rundll32.exe
C:\WINDOWS\system32\devldr32.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
C:\Documents and Settings\Daudee\Local Settings\Application Data\Google\Update\1.2.183.7\GoogleCrashHandler.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Documents and Settings\Daudee\Bureau\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Daudee.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: TV Center Toolbar - {a7347e8c-1ca6-469b-951e-4a23c4437935} - C:\Program Files\TV_Center\tbTV_C.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: TV Center Toolbar - {a7347e8c-1ca6-469b-951e-4a23c4437935} - C:\Program Files\TV_Center\tbTV_C.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll
O3 - Toolbar: TV Center Toolbar - {a7347e8c-1ca6-469b-951e-4a23c4437935} - C:\Program Files\TV_Center\tbTV_C.dll
O4 - HKLM\..\Run: [GamerOSD] C:\Program Files\ASUS\GamerOSD\GamerOSD.exe
O4 - HKLM\..\Run: [P17Helper] Rundll32 P17.dll,P17Helper
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Daudee\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [RocketDock] "C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe"
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Statistiques de la protection du trafic Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\SCIEPlgn.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net/...
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://www.srtest.com/srl_bin/sysreqlab3.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/2.0.0.1/sysreqlab2.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://ma-config.com/activex/hardwaredetection_3_0_0_30.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} (NsvPlayX Control) - http://www.nullsoft.com/nsv/embed/nsvplayx_vp3_mp3.cab
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://wwwimages.adobe.com/www.adobe.com/products/acrobat/nos/gp.cab
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
O23 - Service: Google Update Service (gupdate1c91b4d744301f0) (gupdate1c91b4d744301f0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
End of file - 10307 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-299502267-562591055-682003330-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-299502267-562591055-682003330-1003UA.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{9F716744-576F-41A7-9F43-C72AA40D774B}.job
C:\WINDOWS\tasks\WGASetup.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2009-02-19 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a7347e8c-1ca6-469b-951e-4a23c4437935}]
TV Center Toolbar - C:\Program Files\TV_Center\tbTV_C.dll [2009-06-16 2206744]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-02-19 34816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E5A1691B-D188-4419-AD02-90002030B8EE}]
FlashFXP Helper for Internet Explorer - C:\PROGRA~1\FlashFXP\IEFlash.dll [2007-05-16 191096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-02-19 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - Winamp Toolbar - C:\Program Files\Winamp Toolbar\winamptb.dll [2007-12-13 1185120]
{a7347e8c-1ca6-469b-951e-4a23c4437935} - TV Center Toolbar - C:\Program Files\TV_Center\tbTV_C.dll [2009-06-16 2206744]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"GamerOSD"=C:\Program Files\ASUS\GamerOSD\GamerOSD.exe [2007-02-14 380928]
"P17Helper"=Rundll32 P17.dll,P17Helper []
"NeroFilterCheck"=C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe [2007-03-01 153136]
"NBKeyScan"=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2007-09-20 1836328]
"AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe [2009-02-05 206088]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-01-05 413696]
"AppleSyncNotifier"=C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2009-03-06 177472]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-03-12 342312]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-06-10 86016]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-06-10 13758464]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe [2007-09-20 202024]
"Google Update"=C:\Documents and Settings\Daudee\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2008-09-03 133104]
"RocketDock"=C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe [2007-03-19 630784]

C:\Documents and Settings\Daudee\Menu Démarrer\Programmes\Démarrage
RocketDock.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\WINDOWS\system32\klogon.dll [2008-07-29 218376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
WgaLogon.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableRegedit"=0
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableRegedit"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDrives"=0
"NoDriveAutoRun"=67108863
"NoFind"=0
"NoFolderOptions"=0
"NoRun"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Winamp Remote\bin\Orb.exe"="C:\Program Files\Winamp Remote\bin\Orb.exe:*:Enabled:Orb"
"C:\Program Files\Winamp Remote\bin\OrbTray.exe"="C:\Program Files\Winamp Remote\bin\OrbTray.exe:*:Enabled:OrbTray"
"C:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe"="C:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe:*:Enabled:Orb Stream Client"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"C:\Program Files\FlashFXP\FlashFXP.exe"="C:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3"
"C:\Program Files\Steam\steamapps\podzob68100\counter-strike source\hl2.exe"="C:\Program Files\Steam\steamapps\podzob68100\counter-strike source\hl2.exe:*:Enabled:hl2"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\Program Files\Nero\Nero8\Nero Home\NeroHome.exe"="C:\Program Files\Nero\Nero8\Nero Home\NeroHome.exe:*:Enabled:Nero Home"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\WINDOWS\system32\dpnsvr.exe"="C:\WINDOWS\system32\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8 Server"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\Steam\steamapps\podzob68100\source sdk base\hl2.exe"="C:\Program Files\Steam\steamapps\podzob68100\source sdk base\hl2.exe:*:Enabled:hl2"
"C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled:DNA"
"C:\Program Files\World of Warcraft\BackgroundDownloader.exe"="C:\Program Files\World of Warcraft\BackgroundDownloader.exe:*:Enabled:Blizzard Downloader"
"C:\Program Files\Steam\steamapps\podzob68100\team fortress 2\hl2.exe"="C:\Program Files\Steam\steamapps\podzob68100\team fortress 2\hl2.exe:*:Enabled:hl2"
"C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"
"C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files\Kaspersky Anti-Virus 2009\French\setup.exe"="C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files\Kaspersky Anti-Virus 2009\French\setup.exe:*:Enabled:Programme d'installation de Kaspersky Anti-Virus 2009"
"C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files\Kaspersky Internet Security 2009\French\setup.exe"="C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files\Kaspersky Internet Security 2009\French\setup.exe:*:Enabled:Programme d'installation de Kaspersky Internet Security 2009"
"C:\kav\kav7.0\french\setup.exe"="C:\kav\kav7.0\french\setup.exe:*:Enabled:Programme d'installation de Kaspersky Anti-Virus 7.0"
"C:\Program Files\Steam\steamapps\podzob68100\day of defeat source\hl2.exe"="C:\Program Files\Steam\steamapps\podzob68100\day of defeat source\hl2.exe:*:Enabled:hl2"
"C:\Program Files\Fichiers communs\PocketSoft\RTPatch\AutoRTP\artpschd.exe"="C:\Program Files\Fichiers communs\PocketSoft\RTPatch\AutoRTP\artpschd.exe:*:Enabled:artpschd"
"C:\Program Files\VirtualDJ\virtualdj.exe"="C:\Program Files\VirtualDJ\virtualdj.exe:*:Disabled:VirtualDJ"
"C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe"="C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe:*:Enabled:avp"
"C:\Program Files\Curse\CurseClient.exe"="C:\Program Files\Curse\CurseClient.exe:*:Enabled:Curse Client"
"E:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe"="E:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club"
"C:\Program Files\Steam\steamapps\podzob68\counter-strike source\hl2.exe"="C:\Program Files\Steam\steamapps\podzob68\counter-strike source\hl2.exe:*:Enabled:hl2"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
"C:\Program Files\Zattoo\zattood.exe"="C:\Program Files\Zattoo\zattood.exe:*:Enabled:zattood"
"C:\Program Files\Zattoo\Zattoo2.exe"="C:\Program Files\Zattoo\Zattoo2.exe:*:Enabled: "
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Zattoo\Zattoo.exe"="C:\Program Files\Zattoo\Zattoo.exe:*:Enabled: "
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"E:\Program Files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe"="E:\Program Files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe:*:Enabled:Grand Theft Auto IV"
"C:\Program Files\World of Warcraft\Launcher.exe"="C:\Program Files\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher"
"C:\Program Files\World of Warcraft\WoW-3.1.0.9767-to-3.1.1.9806-frFR-downloader.exe"="C:\Program Files\World of Warcraft\WoW-3.1.0.9767-to-3.1.1.9806-frFR-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\Program Files\World of Warcraft\WoW-3.1.1.9806-to-3.1.1.9835-frFR-downloader.exe"="C:\Program Files\World of Warcraft\WoW-3.1.1.9806-to-3.1.1.9835-frFR-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\Program Files\World of Warcraft\WoW-3.1.1.9835-to-3.1.2.9901-frFR-downloader.exe"="C:\Program Files\World of Warcraft\WoW-3.1.1.9835-to-3.1.2.9901-frFR-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\Program Files\World of Warcraft\WoW-3.1.2.9901-to-3.1.3.9947-frFR-downloader.exe"="C:\Program Files\World of Warcraft\WoW-3.1.2.9901-to-3.1.3.9947-frFR-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\Program Files\Steam\steamapps\common\empire total war\Empire.exe"="C:\Program Files\Steam\steamapps\common\empire total war\Empire.exe:*:Enabled:Empire: Total War"
"E:\Program Files\Ubisoft\Far Cry 2\bin\FarCry2.exe"="E:\Program Files\Ubisoft\Far Cry 2\bin\FarCry2.exe:*:Enabled:Far Cry 2"
"E:\Program Files\Ubisoft\Far Cry 2\bin\FC2Launcher.exe"="E:\Program Files\Ubisoft\Far Cry 2\bin\FC2Launcher.exe:*:Enabled:Far Cry 2 Updater"
"E:\Program Files\Ubisoft\Far Cry 2\bin\FC2Editor.exe"="E:\Program Files\Ubisoft\Far Cry 2\bin\FC2Editor.exe:*:Enabled:Editeur"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\FlashFXP\FlashFXP.exe"="C:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"

======List of files/folders created in the last 1 months======

2009-07-03 09:34:52 ----RASHD---- C:\autorun.inf
2009-07-03 09:34:51 ----A---- C:\UsbFix.txt
2009-07-03 08:51:41 ----A---- C:\FindyKill.txt
2009-07-03 08:40:51 ----D---- C:\FindyKill
2009-07-03 08:23:42 ----A---- C:\TB.txt
2009-07-03 08:23:12 ----D---- C:\ToolBar SD
2009-07-02 13:17:02 ----A---- C:\ComboFix.txt
2009-07-02 13:11:57 ----SHD---- C:\RECYCLER
2009-07-02 12:59:53 ----A---- C:\WINDOWS\PEV.exe
2009-06-27 19:09:07 ----D---- C:\Documents and Settings\All Users\Application Data\Saitek
2009-06-27 03:43:21 ----D---- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
2009-06-27 02:18:03 ----D---- C:\Documents and Settings\Daudee\Application Data\DAEMON Tools Lite
2009-06-27 01:27:38 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2009-06-27 01:27:38 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2009-06-27 01:27:37 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2009-06-27 01:27:36 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2009-06-27 01:27:36 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2009-06-27 01:27:36 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2009-06-27 01:27:36 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2009-06-26 22:41:10 ----D---- C:\Program Files\Conduit
2009-06-26 22:41:07 ----D---- C:\Program Files\TV_Center
2009-06-23 12:29:54 ----D---- C:\WINDOWS\ie8updates
2009-06-23 12:26:58 ----HDC---- C:\WINDOWS\ie8
2009-06-20 22:16:16 ----D---- C:\MPS
2009-06-20 22:15:41 ----D---- C:\ttd
2009-06-20 20:20:17 ----D---- C:\Documents and Settings\Daudee\Application Data\Disposition
2009-06-19 12:09:43 ----D---- C:\WINDOWS\NV34084016.TMP
2009-06-10 21:04:15 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2009-06-10 21:04:10 ----HDC---- C:\WINDOWS\$NtUninstallKB969898$
2009-06-10 21:02:06 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2009-06-10 21:01:02 ----HDC---- C:\WINDOWS\$NtUninstallKB968537$
2009-06-10 18:33:00 ----A---- C:\WINDOWS\system32\nvcuvenc.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrszht.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrszhc.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrstr.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrsth.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrssv.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrssl.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrssk.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrsru.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrsptb.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrspt.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrspl.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrsno.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrsnl.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrsko.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrsja.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrsit.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrshu.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrshe.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrsfr.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrsfi.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrsesm.dll
2009-06-10 08:29:36 ----A---- C:\WINDOWS\system32\nvwrses.dll
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\nwiz.exe
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\nvwrseng.dll
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\nvwrsel.dll
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\nvwrsde.dll
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\nvwrsda.dll
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\nvwrscs.dll
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\nvwrsar.dll
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\nvwimg.dll
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\nvwdmcpl.dll
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\nvshell.dll
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\nvappbar.exe
2009-06-10 08:29:34 ----A---- C:\WINDOWS\system32\keystone.exe
2009-06-10 08:29:32 ----A---- C:\WINDOWS\system32\nview.dll
2009-06-10 08:29:30 ----A---- C:\WINDOWS\system32\nvcpluir.dll
2009-06-10 08:29:30 ----A---- C:\WINDOWS\system32\nvcplui.exe
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrszht.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrszhc.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrstr.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsth.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrssv.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrssl.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrssk.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsru.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsptb.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrspt.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrspl.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsno.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsnl.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsko.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsja.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsit.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrshu.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrshe.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsfr.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsfi.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsesm.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrses.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrseng.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsel.dll
2009-06-10 08:29:22 ----A---- C:\WINDOWS\system32\nvrsde.dll
2009-06-10 08:29:20 ----A---- C:\WINDOWS\system32\nvwddi.dll
2009-06-10 08:29:20 ----A---- C:\WINDOWS\system32\nvrsda.dll
2009-06-10 08:29:20 ----A---- C:\WINDOWS\system32\nvrscs.dll
2009-06-10 08:29:20 ----A---- C:\WINDOWS\system32\nvrsar.dll
2009-06-10 08:29:16 ----A---- C:\WINDOWS\system32\nvwssr.dll
2009-06-10 08:29:12 ----A---- C:\WINDOWS\system32\nvwss.dll
2009-06-10 08:29:08 ----A---- C:\WINDOWS\system32\nvvitvsr.dll
2009-06-10 08:29:06 ----A---- C:\WINDOWS\system32\nvvitvs.dll
2009-06-10 08:29:02 ----A---- C:\WINDOWS\system32\nvmoblsr.dll
2009-06-10 08:29:02 ----A---- C:\WINDOWS\system32\nvmobls.dll
2009-06-10 08:29:00 ----A---- C:\WINDOWS\system32\nvmccssr.dll
2009-06-10 08:29:00 ----A---- C:\WINDOWS\system32\nvmccss.dll
2009-06-10 08:29:00 ----A---- C:\WINDOWS\system32\nvgamesr.dll
2009-06-10 08:28:58 ----A---- C:\WINDOWS\system32\nvgames.dll
2009-06-10 08:28:56 ----A---- C:\WINDOWS\system32\nvdispsr.dll
2009-06-10 08:28:52 ----A---- C:\WINDOWS\system32\nvdisps.dll
2009-06-10 08:28:50 ----A---- C:\WINDOWS\system32\nvsvc32.exe
2009-06-10 08:28:50 ----A---- C:\WINDOWS\system32\nvmctray.dll
2009-06-10 08:28:50 ----A---- C:\WINDOWS\system32\nvcpl.dll
2009-06-10 08:28:50 ----A---- C:\WINDOWS\system32\nvcolor.exe
2009-06-10 08:28:48 ----A---- C:\WINDOWS\system32\nvmccs.dll

======List of files/folders modified in the last 1 months======

2009-07-03 19:31:45 ----D---- C:\WINDOWS\Prefetch
2009-07-03 19:31:34 ----D---- C:\WINDOWS\temp
2009-07-03 19:29:08 ----D---- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2009-07-03 19:28:47 ----D---- C:\WINDOWS\system32
2009-07-03 19:28:47 ----D---- C:\Program Files\Navilog1
2009-07-03 19:28:38 ----A---- C:\cleannavi.txt
2009-07-03 19:26:44 ----RD---- C:\Program Files
2009-07-03 19:25:24 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-07-03 09:38:55 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-07-03 08:35:36 ----D---- C:\WINDOWS
2009-07-03 02:39:02 ----D---- C:\Program Files\FlashFXP
2009-07-03 01:09:51 ----D---- C:\Documents and Settings\Daudee\Application Data\uTorrent
2009-07-03 00:55:55 ----A---- C:\WINDOWS\NeroDigital.ini
2009-07-02 18:57:14 ----HD---- C:\Program Files\InstallShield Installation Information
2009-07-02 18:08:33 ----SHD---- C:\WINDOWS\Installer
2009-07-02 18:08:07 ----D---- C:\WINDOWS\system32\DirectX
2009-07-02 18:08:06 ----HD---- C:\WINDOWS\inf
2009-07-02 18:07:42 ----RSD---- C:\WINDOWS\assembly
2009-07-02 18:06:24 ----SHD---- C:\Config.Msi
2009-07-02 18:05:39 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2009-07-02 18:05:26 ----A---- C:\WINDOWS\system32\PnkBstrA.exe
2009-07-02 18:05:26 ----A---- C:\WINDOWS\system32\pbsvc.exe
2009-07-02 13:17:05 ----D---- C:\WINDOWS\system32\drivers
2009-07-02 13:17:05 ----D---- C:\QooBox
2009-07-02 13:15:36 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-07-02 13:15:33 ----D---- C:\WINDOWS\system32\CatRoot2
2009-07-02 13:12:01 ----A---- C:\WINDOWS\system.ini
2009-07-02 13:05:34 ----D---- C:\WINDOWS\system32\config
2009-07-02 13:05:24 ----D---- C:\WINDOWS\erdnt
2009-07-02 13:03:51 ----D---- C:\WINDOWS\AppPatch
2009-07-02 13:03:46 ----D---- C:\Program Files\Fichiers communs
2009-07-02 10:56:51 ----A---- C:\Relaxing Ocean V3Trace.txt
2009-07-01 22:19:40 ----D---- C:\WINDOWS\network diagnostic
2009-06-30 17:05:38 ----SD---- C:\WINDOWS\Tasks
2009-06-28 16:46:08 ----D---- C:\Program Files\eMule
2009-06-28 16:43:13 ----D---- C:\Documents and Settings\All Users\Application Data\Tages
2009-06-27 19:07:55 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-06-27 03:45:27 ----D---- C:\Program Files\DAEMON Tools Lite
2009-06-27 03:44:11 ----D---- C:\Documents and Settings\Daudee\Application Data\DAEMON Tools
2009-06-26 19:11:38 ----D---- C:\Program Files\Windows Live Safety Center
2009-06-25 13:28:06 ----D---- C:\WINDOWS\system32\CatRoot
2009-06-24 21:58:08 ----D---- C:\Program Files\Google
2009-06-24 11:41:57 ----D---- C:\WINDOWS\system32\fr-fr
2009-06-24 11:41:54 ----D---- C:\WINDOWS\Media
2009-06-24 11:41:54 ----D---- C:\Program Files\Internet Explorer
2009-06-24 11:41:53 ----D---- C:\WINDOWS\Help
2009-06-23 12:58:28 ----D---- C:\Program Files\Mozilla Firefox
2009-06-23 12:30:04 ----HD---- C:\WINDOWS\$hf_mig$
2009-06-23 12:29:58 ----A---- C:\WINDOWS\imsins.BAK
2009-06-21 12:32:06 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-06-21 12:31:57 ----D---- C:\Documents and Settings\Daudee\Application Data\Adobe
2009-06-21 12:31:35 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2009-06-21 12:09:27 ----D---- C:\Fraps
2009-06-20 21:11:41 ----D---- C:\Program Files\Abacus
2009-06-20 21:10:04 ----A---- C:\WINDOWS\NAVIGMA.INI
2009-06-20 20:12:19 ----D---- C:\WINDOWS\WinSxS
2009-06-19 14:05:57 ----D---- C:\WINDOWS\system32\wbem
2009-06-19 14:05:19 ----D---- C:\Program Files\Steam
2009-06-19 12:41:48 ----D---- C:\Program Files\Fichiers communs\Wise Installation Wizard
2009-06-19 12:24:18 ----D---- C:\NVIDIA
2009-06-19 12:22:08 ----D---- C:\WINDOWS\nview
2009-06-10 21:04:45 ----A---- C:\WINDOWS\win.ini
2009-06-10 18:33:00 ----A---- C:\WINDOWS\system32\nvudisp.exe
2009-06-10 18:33:00 ----A---- C:\WINDOWS\system32\nvoglnt.dll
2009-06-10 18:33:00 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2009-06-10 18:33:00 ----A---- C:\WINDOWS\system32\nvcuda.dll
2009-06-10 18:33:00 ----A---- C:\WINDOWS\system32\nvcodins.dll
2009-06-10 18:33:00 ----A---- C:\WINDOWS\system32\nvcod.dll
2009-06-10 18:33:00 ----A---- C:\WINDOWS\system32\nvapi.dll
2009-06-10 18:33:00 ----A---- C:\WINDOWS\system32\nv4_disp.dll
2009-06-08 16:25:26 ----D---- C:\Program Files\Curse
2009-06-04 16:39:54 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
2009-06-04 08:41:55 ----D---- C:\Program Files\World of Warcraft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 asusgsb;ASUS Virtual Video Capture Device Driver; C:\WINDOWS\system32\drivers\asusgsb32.sys [2005-10-20 12416]
R1 asuskbnt;Enhanced Display Driver Helper Service; C:\WINDOWS\system32\drivers\atkkbnt.sys [2007-02-14 11136]
R1 EIO;EIO; \??\C:\WINDOWS\system32\drivers\EIO.sys []
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2009-02-05 213520]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R2 Aspi32;Aspi32; C:\WINDOWS\System32\drivers\aspi32.sys [2005-11-21 16512]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-06-28 281760]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-06-28 25888]
R3 ctljystk;Creative SBLive! Port de jeux; C:\WINDOWS\system32\DRIVERS\ctljystk.sys [2001-08-17 3712]
R3 ctsfm2k;Creative SoundFont Management Device Driver; C:\WINDOWS\system32\DRIVERS\ctsfm2k.sys [2005-01-10 138752]
R3 emu10k;Creative SB Live! (WDM); C:\WINDOWS\system32\drivers\emu10k1m.sys [2001-08-17 283904]
R3 emu10k1;Pilote du Gestionnaire d'interface Creative (WDM); C:\WINDOWS\system32\drivers\ctlfacem.sys [2001-08-17 6912]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2009-01-15 23848]
R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 klim5;Kaspersky Anti-Virus NDIS Filter; C:\WINDOWS\system32\DRIVERS\klim5.sys [2008-04-30 24592]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2002-09-07 12288]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-06-10 8087712]
R3 ossrv;Creative OS Services Driver; C:\WINDOWS\system32\DRIVERS\ctoss2k.sys [2005-01-10 106496]
R3 P17;SB Live! 24-bit; C:\WINDOWS\system32\drivers\P17.sys [2007-06-15 1127936]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2008-02-26 47360]
R3 PD0620VID;Creative WebCam Instant; C:\WINDOWS\system32\DRIVERS\P0620Vid.sys [2004-07-29 91577]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2006-07-27 83712]
R3 SaiH040B;SaiH040B; C:\WINDOWS\system32\DRIVERS\SaiH040B.sys [2007-05-01 132232]
R3 SaiU040B;SaiU040B; C:\WINDOWS\system32\DRIVERS\SaiU040B.sys [2007-05-01 28416]
R3 sfman;Pilote du Gestionnaire SoundFont Creative (WDM); C:\WINDOWS\system32\drivers\sfmanm.sys [2001-08-17 36480]
R3 TotRec7;Total Recorder WDM audio driver; C:\WINDOWS\system32\drivers\TotRec7.sys [2008-10-27 127496]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 Video3D;ASUS Video3D Service; C:\WINDOWS\System32\Drivers\Video3D32.sys [2006-09-29 10752]
S3 a1n5p078;a1n5p078; C:\WINDOWS\system32\drivers\a1n5p078.sys []
S3 a6ji3l8n;a6ji3l8n; C:\WINDOWS\system32\drivers\a6ji3l8n.sys []
S3 catchme;catchme; \??\C:\DOCUME~1\Daudee\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files\MediaCoder\SysInfo.sys []
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt []
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 RivaTuner32;RivaTuner32; \??\C:\Program Files\RivaTuner v2.23\RivaTuner32.sys []
S3 RT2500USB;Thrustmaster FunAccess Driver; C:\WINDOWS\system32\DRIVERS\rt2500usb.sys [2006-04-14 162560]
S3 RT61;D-Link Wireless Driver; C:\WINDOWS\system32\DRIVERS\RT61.sys [2006-05-03 380928]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\WINDOWS\system32\DRIVERS\sscdbus.sys [2005-12-22 80272]
S3 sscdmdfl;SAMSUNG CDMA Modem Filter; C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys [2005-12-22 10864]
S3 sscdmdm;SAMSUNG CDMA Modem Drivers; C:\WINDOWS\system32\DRIVERS\sscdmdm.sys [2005-12-22 137884]
S3 ssm_bus;SAMSUNG Mobile USB Device II 1.0 driver (WDM); C:\WINDOWS\system32\DRIVERS\ssm_bus.sys [2005-08-30 58320]
S3 ssm_mdfl;SAMSUNG Mobile USB Modem II 1.0 Filter; C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys [2005-08-30 8336]
S3 ssm_mdm;SAMSUNG Mobile USB Modem II 1.0 Drivers; C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys [2005-08-30 94000]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-03-06 132424]
R2 ATKKeyboardService;ATK Keyboard Service; C:\WINDOWS\ATKKBService.exe [2006-11-15 258560]
R2 AVP;Kaspersky Anti-Virus; C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe [2009-02-05 206088]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-02-19 152984]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2007-09-20 853288]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-06-10 168004]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-07-02 66872]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2009-07-02 107832]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-03-12 656168]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe [2007-09-20 382248]
S2 gupdate1c91b4d744301f0;Google Update Service (gupdate1c91b4d744301f0); C:\Program Files\Google\Update\GoogleUpdate.exe [2008-09-20 133104]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 getPlus(R) Helper;getPlus(R) Helper; C:\Program Files\NOS\bin\getPlus_HelperSvc.exe [2008-12-01 33752]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2008-05-19 576680]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

-----------------EOF-----------------


merci encore pour ton aide jacques :=)

   
Répondre à jaysworld

14

jacques.gache, le 3 jui 2009 à 19:36:06

Ok il a supprimé ce que je voulais tu postes un nouveau RSIT tu le lance et tu poste le rapport il n'y en aura qu'un Attention !! la surmultiplication de logiciels de sécurité n­e 
protège pas mieux voire peut engendrer des conflits et
des plantages. " mais chacun reste maître de son PC "

   
Répondre à jacques.gache

15

jaysworld, le 3 jui 2009 à 19:40:54

Hello jacques,

en fait je l'ai posté à la suite, dois je le refaire? ^^

merci

audrey

   
Répondre à jaysworld

16

jacques.gache, le 3 jui 2009 à 19:41:50

Désolé j'ai zappé je le regarde Attention !! la surmultiplication de logiciels de sécurité n­e 
protège pas mieux voire peut engendrer des conflits et
des plantages. " mais chacun reste maître de son PC "

   
Répondre à jacques.gache

17

jaysworld, le 3 jui 2009 à 19:50:09

Merci!

   
Répondre à jaysworld

18

jacques.gache, le 3 jui 2009 à 19:56:11

Ok côté infection cela me semble bon, comment va le pc et tes problème qui ton amené ici !!

je mange et si tu me dis que tu as toujours des problème tu essais d'être le plus précis possible pour que je puisse cibler la chose sinon on finalisera le nettoyage avec quelque manipes , je me prends 1 petite heure Attention !! la surmultiplication de logiciels de sécurité n­e 
protège pas mieux voire peut engendrer des conflits et
des plantages. " mais chacun reste maître de son PC "

   
Répondre à jacques.gache

19

jaysworld, le 3 jui 2009 à 20:04:39

Pas de soucis jacques, bon ap!

chose étrange, avant de faire navilog et le dernier rsit, j'avais laissé l'ordinateur allumé toute la journée, ce soir j'avais un message de microsoft comme quoi la mémoire virtuelle était faible

   
Répondre à jaysworld
26 réponses 12 Suivant
Posez votre question Répondre
Ils ont besoin de votre aide