bonjour mon ordi a du mal(non résolu)

Sujet: bonjour mon ordi a du mal(non résolu) Dim 2 Nov 2008 - 23:48

mon antivirus (avast ) me détecte sa win32:crypt-czn mais reviens toujours
mon ordinateur rame au démarrage et sur les jeux en line j ai un ping de malades
je suis sous XP pro
si je peut avoir de l aide merci

Sujet: Re: bonjour mon ordi a du mal(non résolu) Lun 3 Nov 2008 - 0:28

salut fais ceci:
->désactives tes protections et fais ceci :
http://www.bibou0007.com/outils-specifiques-f78/tutorial-smitfraudfix-t115.htm

Bibou Nombre de messages : 25 Age : 40 Date d'inscription : 22/01/2008

SmitFraudFix v2.371

Rapport fait à 14:17:03.37, 2008-11-03
Executé à partir de C:\Documents and Settings\Propri‚taire\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode normal

»»»»»»»»»»»»»»»»»»»»»»»» Process

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\Program Files\Logitech\SetPoint\KEM.exe
C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe
C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE
C:\Program Files\Xfire\xfire.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Mozilla Firefox\SmitfraudFix\Policies.exe
C:\Documents and Settings\Propriétaire\Bureau\SmitfraudFix\Policies.exe
C:\WINDOWS\system32\cmd.exe

»»»»»»»»»»»»»»»»»»»»»»»» hosts

»»»»»»»»»»»»»»»»»»»»»»»» C:\

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles

»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Propri‚taire

»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp

»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Propri‚taire\Application Data

»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer

»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\PROPRI~1\Favoris

»»»»»»»»»»»»»»»»»»»»»»»» Bureau

»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files

»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues

»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Ma page d'accueil"

»»»»»»»»»»»»»»»»»»»»»»»» o4Patch
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

o4Patch
Credits: Malware Analysis & Diagnostic
Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» IEDFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

IEDFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» VACFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

VACFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» 404Fix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

404Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» AntiXPVSTFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

AntiXPVSTFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\PROGRA~1\\Google\\GOOGLE~3\\GOEC62~1.DLL"
"LoadAppInit_DLLs"=dword:00000001

»»»»»»»»»»»»»»»»»»»»»»»» Winlogon
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"
"System"=""

»»»»»»»»»»»»»»»»»»»»»»»» RK

»»»»»»»»»»»»»»»»»»»»»»»» DNS

Description: Carte réseau Fast Ethernet PCI Realtek RTL8139 Family - Miniport d'ordonnancement de paquets
DNS Server Search Order: 192.168.1.1

HKLM\SYSTEM\CCS\Services\Tcpip\..\{0312CFC4-2801-41C7-8F61-F7B90106DBFC}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\..\{0312CFC4-2801-41C7-8F61-F7B90106DBFC}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS2\Services\Tcpip\..\{0312CFC4-2801-41C7-8F61-F7B90106DBFC}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1

»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll

»»»»»»»»»»»»»»»»»»»»»»»» Fin

Sujet: Re: bonjour mon ordi a du mal(non résolu) Mar 4 Nov 2008 - 9:17

salut fais ceci stp:

http://www.bibou0007.com/outils-specifiques-f78/tutorial-genproc-t967.htm

et postes le rapport de la procédure

Bibou Nombre de messages : 25 Age : 40 Date d'inscription : 22/01/2008

Ton rapport GenProc, Propriétaire

Rapport GenProc 2.168 [1] le 2008-11-05 à 23:55:04.21 - Windows XP

Dans CCleaner, clique sur "Options", "Avancé" et décoche la case "Effacer uniquement les fichiers, du dossier Temp de Windows, plus vieux que 48 heures".
Par la suite, laisse-le avec ses réglages par défaut. C'est tout.

Etape 1/ Télécharge :

Toolbar-S&D (Team IDN) sur ton Bureau.
Installe simplement le programme en exécutant le fichier téléchargé.

MSNFix (!aur3n7) et décompresse-le sur le Bureau.

important Redémarre en mode sans échec comme indiqué ICI pour retrouver le rapport, clique sur le raccourci "GenProc"sur ton bureau.
Choisis ta session courante "Propriétaire"

Etape 2/

Relance Toolbar-S&D en double-cliquant sur son raccourci situé sur le Bureau.
- Tape sur "2" puis valide en appuyant sur "Entrée". Ne ferme pas la fenêtre lors de la suppression.

Etape 3/

Lance le fichier MSNFix.bat qui se trouve dans le dossier MSNfix, sur le bureau.
- Exécute l'option R.
- Si l'infection est détectée, exécute l'option N.
- Sauvegarde ce rapport sur ton bureau.

Etape 4/

Lance CCleaner : "Nettoyeur"/"lancer le nettoyage" et c'est tout.

Etape 5/

Redémarre normalement et poste, dans la même réponse :
Le contenu du rapport MSNfix situé sur le Bureau ;
Le contenu du rapport C:\TB.txt ;

Précise les difficultés que tu as eu (ce que tu n'as pas pu faire...) ainsi que l'évolution de la situation.

Sujet: Re: bonjour mon ordi a du mal(non résolu) Jeu 6 Nov 2008 - 0:05

slt lances la procédure proposé par "genproc "et postes tous les rapports (désactives tes protections pendant les procédures) bon courage et bonne nuité!

Bibou Nombre de messages : 25 Age : 40 Date d'inscription : 22/01/2008

[C:\WINDOWS\system32\winchat.exe] 2A99260794224489F29B628717B7947E
[C:\WINDOWS\system32\WinFXDocObj.exe] 660336AD0305C852122C5EEBBACE9BAF
[C:\WINDOWS\system32\winhlp32.exe] 577624F19D0441C9111F2AF26C81E04D
[C:\WINDOWS\system32\winlogon.exe] D2DE785AEAB0BB8CA4C14A8A199DBE4E
[C:\WINDOWS\system32\winmine.exe] EA682C022F7204CC8E8C9EF5DCE29356
[C:\WINDOWS\system32\winmsd.exe] 7EBF8A4B608AFB79C67F4E4A9C5885BB
[C:\WINDOWS\system32\winspool.exe] 0B4B94B78123E8035B84105BC024F9F8
[C:\WINDOWS\system32\winver.exe] CE30DCEF79B94D17A8B3BEC26FEF90A3

par contre la j ai trois truc je sais pas ces le quel le bon desoler

-----------\\ ToolBar S&D 1.2.4 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3800+ )
BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
USER : Propriétaire ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 081105-0] 4.8.1229 (Not Activated)
C:\ (Local Disk) - NTFS - Total:135 Go (Free:80 Go)
D:\ (Local Disk)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)

"C:\ToolBar SD" ( MAJ : 27-10-2008|09:25 )
Option : [1] ( 2008-11-06| 0:36 )

-----------\\ Recherche de Fichiers / Dossiers ...

C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-03-11-07-22-11
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-03-11-07-22-11.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-04-04-01-51-45
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-04-04-01-51-45.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-29-23-13-12
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-29-23-13-12.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-07-28-17-19-57
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-07-28-17-19-57.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-07-28-17-19-58
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-07-28-17-19-58.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-08-08-17-27-16
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-08-08-17-27-16.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-04-16-45-12
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-04-16-45-12.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-15-11-11-36
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-15-11-11-36.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-18-17-52-30
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-18-17-52-30.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-23-10-46-14
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-23-10-46-14.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-10-08-14-02-05
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-10-08-14-02-05.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-10-08-14-14-07
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-10-08-14-14-07.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-10-23-14-14-31
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-10-23-14-14-31.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\about.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\action.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\arcade.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\beach_party_craze16x16.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\big_city_adventure_sydney16x16.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\buy.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\cake_mania_316x16.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\cards.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\cooking_dash16x16.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\deals.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\download.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\dream_day_first_home16x16.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\feedback.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\ghost_hunters16x16.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\help.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\highlight.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\jewel_quest_316x16.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\jigsaw.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\kids.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\magic_encyclopedia16x16.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\mahjong.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\mygames.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\mystery_stories_island_of_hope16x16.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\newGames.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\oberonconfig.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\obSearchHistory.dat
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\partner.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\peril_at_end_house16x16.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\popup_off.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\popup_on.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\puzzle.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\search.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\sendafriend.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\sports.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\trial.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\uninstall.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\update.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\womens_murder_club_fr16x16.gif
C:\Program Files\GamesBar
C:\Program Files\GamesBar\Localization-French.ini
C:\Program Files\GamesBar\oberontb.dll
C:\Program Files\GamesBar\OBGet.exe
C:\Program Files\GamesBar\uninst.exe
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\GamesBar

-----------\\ Extensions

(All Users) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar

(Propri‚taire) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(Propri‚taire) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(Propri‚taire) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar

-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Search Page"="http://www.google.com"
"Search Bar"="http://www.google.com/ie"
"Start Page"="http://www.wanadoo.fr"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Default_Search_URL"="http://www.google.com/ie"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Start Page"="http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home"
"Search Bar"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"

--------------------\\ Recherche d'autres infections

--------------------\\ ROGUES ..

C:\DOCUME~1\PROPRI~1\APPLIC~1\WinButler

1 - "C:\ToolBar SD\TB_1.txt" - 2008-11-06| 0:36 - Option : [1]

Bibou Nombre de messages : 25 Age : 40 Date d'inscription : 22/01/2008

-----------\\ ToolBar S&D 1.2.4 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3800+ )
BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
USER : Propriétaire ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 081105-0] 4.8.1229 (Not Activated)
C:\ (Local Disk) - NTFS - Total:135 Go (Free:80 Go)
D:\ (Local Disk)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)

"C:\ToolBar SD" ( MAJ : 27-10-2008|09:25 )
Option : [1] ( 2008-11-06| 0:38 )

-----------\\ Recherche de Fichiers / Dossiers ...

C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-03-11-07-22-11
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-03-11-07-22-11.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-04-04-01-51-45
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-04-04-01-51-45.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-29-23-13-12
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-29-23-13-12.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-07-28-17-19-57
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-07-28-17-19-57.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-07-28-17-19-58
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-07-28-17-19-58.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-08-08-17-27-16
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-08-08-17-27-16.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-04-16-45-12
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-04-16-45-12.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-15-11-11-36
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-15-11-11-36.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-18-17-52-30
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-18-17-52-30.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-23-10-46-14
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-23-10-46-14.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-10-08-14-02-05
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-10-08-14-02-05.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-10-08-14-14-07
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-10-08-14-14-07.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-10-23-14-14-31
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-10-23-14-14-31.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\about.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\action.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\arcade.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\beach_party_craze16x16.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\big_city_adventure_sydney16x16.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\buy.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\cake_mania_316x16.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\cards.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\cooking_dash16x16.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\deals.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\download.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\dream_day_first_home16x16.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\feedback.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\ghost_hunters16x16.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\help.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\highlight.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\jewel_quest_316x16.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\jigsaw.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\kids.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\magic_encyclopedia16x16.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\mahjong.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\mygames.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\mystery_stories_island_of_hope16x16.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\newGames.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\oberonconfig.xm_
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\obSearchHistory.dat
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\partner.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\peril_at_end_house16x16.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\popup_off.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\popup_on.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\puzzle.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\search.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\sendafriend.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\sports.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\trial.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\uninstall.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\update.gif
C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\womens_murder_club_fr16x16.gif
C:\Program Files\GamesBar
C:\Program Files\GamesBar\Localization-French.ini
C:\Program Files\GamesBar\oberontb.dll
C:\Program Files\GamesBar\OBGet.exe
C:\Program Files\GamesBar\uninst.exe
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\GamesBar

-----------\\ Extensions

(All Users) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar

(Propri‚taire) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(Propri‚taire) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(Propri‚taire) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar

-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Search Page"="http://www.google.com"
"Search Bar"="http://www.google.com/ie"
"Start Page"="http://www.wanadoo.fr"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Default_Search_URL"="http://www.google.com/ie"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Start Page"="http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home"
"Search Bar"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"

--------------------\\ Recherche d'autres infections

--------------------\\ ROGUES ..

C:\DOCUME~1\PROPRI~1\APPLIC~1\WinButler

1 - "C:\ToolBar SD\TB_1.txt" - 2008-11-06| 0:36 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 2008-11-06| 0:38 - Option : [1]

Bibou Nombre de messages : 25 Age : 40 Date d'inscription : 22/01/2008

et le troisième

-----------\\ ToolBar S&D 1.2.4 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3800+ )
BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
USER : Propriétaire ( Administrator )
BOOT : Fail-safe boot
Antivirus : avast! antivirus 4.8.1229 [VPS 081105-0] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total:135 Go (Free:80 Go)
D:\ (Local Disk)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)

"C:\ToolBar SD" ( MAJ : 27-10-2008|09:25 )
Option : [2] ( 2008-11-06| 1:04 )

-----------\\ SUPPRESSION

Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-03-11-07-22-11
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-03-11-07-22-11.xm_
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-04-04-01-51-45
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-04-04-01-51-45.xm_
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-29-23-13-12
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-29-23-13-12.xm_
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-07-28-17-19-57
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-07-28-17-19-57.xm_
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-07-28-17-19-58
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-07-28-17-19-58.xm_
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-08-08-17-27-16
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-08-08-17-27-16.xm_
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-04-16-45-12
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-04-16-45-12.xm_
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-15-11-11-36
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-15-11-11-36.xm_
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-18-17-52-30
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-18-17-52-30.xm_
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-23-10-46-14
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-09-23-10-46-14.xm_
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-10-08-14-02-05
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-10-08-14-02-05.xm_
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-10-08-14-14-07
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-10-08-14-14-07.xm_
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-10-23-14-14-31
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-10-23-14-14-31.xm_
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\about.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\action.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\arcade.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\beach_party_craze16x16.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\big_city_adventure_sydney16x16.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\buy.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\cake_mania_316x16.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\cards.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\cooking_dash16x16.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\deals.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\download.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\dream_day_first_home16x16.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\feedback.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\ghost_hunters16x16.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\help.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\highlight.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\jewel_quest_316x16.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\jigsaw.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\kids.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\magic_encyclopedia16x16.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\mahjong.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\mygames.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\mystery_stories_island_of_hope16x16.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\newGames.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\oberonconfig.xm_
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\obSearchHistory.dat
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\partner.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\peril_at_end_house16x16.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\popup_off.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\popup_on.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\puzzle.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\search.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\sendafriend.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\sports.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\trial.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\uninstall.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\update.gif
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\womens_murder_club_fr16x16.gif
Supprime! - C:\Program Files\GamesBar\Localization-French.ini
Supprime! - C:\Program Files\GamesBar\oberontb.dll
Supprime! - C:\Program Files\GamesBar\OBGet.exe
Supprime! - C:\Program Files\GamesBar\uninst.exe
Supprime! - C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\GamesBar
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar
Supprime! - C:\Program Files\GamesBar

-----------\\ Recherche de Fichiers / Dossiers ...

-----------\\ Extensions

(All Users) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar

(Propri‚taire) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(Propri‚taire) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(Propri‚taire) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar

-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Search Page"="http://www.google.com"
"Search Bar"="http://www.google.com/ie"
"Start Page"="http://www.wanadoo.fr"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Default_Search_URL"="http://www.google.com/ie"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Start Page"="http://www.msn.com/"
"Search Bar"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"

--------------------\\ Recherche d'autres infections

--------------------\\ ROGUES ..

C:\DOCUME~1\PROPRI~1\APPLIC~1\WinButler

1 - "C:\ToolBar SD\TB_1.txt" - 2008-11-06| 0:36 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 2008-11-06| 0:38 - Option : [1]
3 - "C:\ToolBar SD\TB_3.txt" - 2008-11-06| 1:06 - Option : [2]

Sujet: Re: bonjour mon ordi a du mal(non résolu) Jeu 6 Nov 2008 - 7:51

salut essayes de supprimé ceci dansc:/:

--------------------\\ Recherche d'autres infections

--------------------\\ ROGUES ..

C:\DOCUME~1\PROPRI~1\APPLIC~1\WinButler

ensuite

fais ceci(a mettre a jour + scan COMPLET )

http://www.bibou0007.com/antispywares-f77/malwarebytes-anti-malware-t952.htm

postes le rapport et dis moi comment va ton pc.

Bibou Nombre de messages : 25 Age : 40 Date d'inscription : 22/01/2008

Malwarebytes' Anti-Malware 1.30
Version de la base de données: 1370
Windows 5.1.2600 Service Pack 2

2008-11-06 20:01:27
mbam-log-2008-11-06 (20-01-27).txt

Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 119600
Temps écoulé: 3 hour(s), 21 minute(s), 9 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 4
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 1

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1a93c934-025b-4c3a-b38e-9654a7003239} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6f282b65-56bf-4bd1-a8b2-a4449a05863d} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\kernelexe (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Dot1XCfg (Trojan.Downloader) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\Program Files\Dot1XCfg (Trojan.Downloader) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Program Files\Dot1XCfg\Corbeille.lnk (Trojan.Downloader) -> Quarantined and deleted successfully.

Bibou Nombre de messages : 25 Age : 40 Date d'inscription : 22/01/2008

mon ordi a beaucoup moins de mal au démarrage
merci de ton aide me reste t il quel que choses a faire ?

Sujet: Re: bonjour mon ordi a du mal(non résolu) Ven 7 Nov 2008 - 9:31

as tu supprimer ce que malwares bytes t'as trouvé?as tu réussi a supprimé le rogue cité plus haut?

fais ceci:

http://www.bibou0007.com/outils-specifiques-f78/tutorial-toolscleaner-2-t375.htm

ensuite avast c'est dépassé!

désinstalle le comme cela

http://www.avast.com/fre/avast-uninstall-utility.html

ensuite passe un coup de ccleaner et ensuite mets du performant dans ton pc avec ceci au choix Wink

http://www.bibou0007.com/antivirus-avec-protection-en-temps-reel-f89/avira-antivir-t964.htm

ou

http://www.bibou0007.com/antivirus-avec-protection-en-temps-reel-f89/tutorial-avg-8-anti-virus-free-edition-t1795.htm

(scan complet + mise a jour bien sur Wink

)

Bibou Nombre de messages : 25 Age : 40 Date d'inscription : 22/01/2008

bonjour
j ai supprimer se que ma trouver malwares bytes
j ai pas reussi a retrouver le rogue
et dans le lien du tuto pour toolsclearner sa ne fonctionne pas ( sa me mes serveurs introuvable ) Embarassed

Bibou Nombre de messages : 25 Age : 40 Date d'inscription : 22/01/2008

[ Rapport ToolsCleaner version 2.2.6 (par A.Rothstein & dj QUIOU) ]

-->- Recherche:

C:\cleannavi.txt: trouvé !
C:\TB.txt: trouvé !
C:\Combofix: trouvé !
C:\Toolbar SD: trouvé !
C:\ComboFix\Combofix.txt: trouvé !
C:\Documents and Settings\Propriétaire\Bureau\Msnfix.zip: trouvé !
C:\Documents and Settings\Propriétaire\Bureau\GenProc.zip: trouvé !
C:\Documents and Settings\Propriétaire\Bureau\SmitFraudFix.exe: trouvé !
C:\Documents and Settings\Propriétaire\Bureau\ToolBarSD.exe: trouvé !
C:\Documents and Settings\Propriétaire\Bureau\MsnFix: trouvé !
C:\Documents and Settings\Propriétaire\Bureau\SmitFraudfix: trouvé !
C:\Documents and Settings\Propriétaire\Bureau\GenProc: trouvé !
C:\Documents and Settings\Propriétaire\Recent\MSNFix.lnk: trouvé !
C:\Program Files\Mozilla Firefox\SmitFraudfix: trouvé !
C:\WINDOWS\msnfix.txt: trouvé !
C:\WINDOWS\system32\*.msnfix: trouvé !

---------------------------------
-->- Suppression:

C:\Documents and Settings\Propriétaire\Bureau\Msnfix.zip: supprimé !
C:\Documents and Settings\Propriétaire\Bureau\GenProc.zip: supprimé !
C:\Documents and Settings\Propriétaire\Bureau\SmitFraudFix.exe: supprimé !
C:\Documents and Settings\Propriétaire\Bureau\ToolBarSD.exe: supprimé !
C:\Documents and Settings\Propriétaire\Recent\MSNFix.lnk: supprimé !
C:\cleannavi.txt: supprimé !
C:\TB.txt: supprimé !
C:\ComboFix\Combofix.txt: supprimé !
C:\WINDOWS\msnfix.txt: supprimé !
C:\WINDOWS\system32\*.msnfix: ERREUR DE SUPPRESSION !!
C:\Combofix: supprimé !
C:\Toolbar SD: supprimé !
C:\Documents and Settings\Propriétaire\Bureau\MsnFix: supprimé !
C:\Documents and Settings\Propriétaire\Bureau\SmitFraudfix: supprimé !
C:\Documents and Settings\Propriétaire\Bureau\GenProc: supprimé !
C:\Program Files\Mozilla Firefox\SmitFraudfix: supprimé !

Sujet: Re: bonjour mon ordi a du mal(non résolu) Sam 8 Nov 2008 - 1:17

salut si tu as installé antivir ou avg mets le rapport stp bon week end

Bibou Nombre de messages : 25 Age : 40 Date d'inscription : 22/01/2008

Avira AntiVir Personal
Report file date: 2008-11-08 10:58

Scanning for 1019829 virus strains and unwanted programs.

Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 2) [5.1.2600]
Boot mode: Normally booted
Username: SYSTEM
Computer name: COMPUTER

Version information:
BUILD.DAT : 8.2.0.334 16933 Bytes 2008-10-16 14:55:00
AVSCAN.EXE : 8.1.4.7 315649 Bytes 2008-06-26 09:57:53
AVSCAN.DLL : 8.1.4.0 40705 Bytes 2008-05-26 08:56:40
LUKE.DLL : 8.1.4.5 164097 Bytes 2008-06-12 13:44:19
LUKERES.DLL : 8.1.4.0 12033 Bytes 2008-05-26 08:58:52
ANTIVIR0.VDF : 7.1.0.0 15603712 Bytes 2008-10-27 00:13:45
ANTIVIR1.VDF : 7.1.0.21 130560 Bytes 2008-10-31 00:13:45
ANTIVIR2.VDF : 7.1.0.44 139264 Bytes 2008-11-06 00:13:46
ANTIVIR3.VDF : 7.1.0.55 139776 Bytes 2008-11-07 00:13:46
Engineversion : 8.2.0.29
AEVDF.DLL : 8.1.0.6 102772 Bytes 2008-10-14 11:05:56
AESCRIPT.DLL : 8.1.1.13 332156 Bytes 2008-11-08 00:13:53
AESCN.DLL : 8.1.1.5 123251 Bytes 2008-11-08 00:13:53
AERDL.DLL : 8.1.1.3 438645 Bytes 2008-11-08 00:13:52
AEPACK.DLL : 8.1.3.3 393591 Bytes 2008-11-08 00:13:51
AEOFFICE.DLL : 8.1.0.30 196986 Bytes 2008-11-08 00:13:51
AEHEUR.DLL : 8.1.0.71 1487222 Bytes 2008-11-08 00:13:50
AEHELP.DLL : 8.1.1.3 119157 Bytes 2008-11-08 00:13:48
AEGEN.DLL : 8.1.1.0 319859 Bytes 2008-11-08 00:13:48
AEEMU.DLL : 8.1.0.9 393588 Bytes 2008-10-14 11:05:56
AECORE.DLL : 8.1.4.1 172405 Bytes 2008-11-08 00:13:47
AEBB.DLL : 8.1.0.3 53618 Bytes 2008-10-14 11:05:56
AVWINLL.DLL : 1.0.0.12 15105 Bytes 2008-07-09 09:40:05
AVPREF.DLL : 8.0.2.0 38657 Bytes 2008-05-16 10:28:01
AVREP.DLL : 8.0.0.2 98344 Bytes 2008-11-08 00:13:47
AVREG.DLL : 8.0.0.1 33537 Bytes 2008-05-09 12:26:40
AVARKT.DLL : 1.0.0.23 307457 Bytes 2008-02-12 09:29:23
AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 2008-06-12 13:27:49
SQLITE3.DLL : 3.3.17.1 339968 Bytes 2008-01-22 18:28:02
SMTPLIB.DLL : 1.2.0.23 28929 Bytes 2008-06-12 13:49:40
NETNT.DLL : 8.0.0.1 7937 Bytes 2008-01-25 13:05:10
RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 2008-06-12 14:48:07
RCTEXT.DLL : 8.0.52.0 86273 Bytes 2008-06-27 14:34:37

Configuration settings for the scan:
Jobname..........................: Complete system scan
Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: on
Scan boot sector.................: on
Boot sectors.....................: C:, D:,
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: All files
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Deviating archive types..........: +BSD Mailbox, +Netscape/Mozilla Mailbox, +Eudora Mailbox, +Squid cache, +Pegasus Mailbox, +MS Outlook Mailbox,
Macro heuristic..................: on
File heuristic...................: medium
Deviating risk categories........: +GAME,+JOKE,+PCK,+SPR,

Start of the scan: 2008-11-08 10:58

The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'wuauclt.exe' - '1' Module(s) have been scanned
Scan process 'usnsvc.exe' - '1' Module(s) have been scanned
Scan process 'wuauclt.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'iPodService.exe' - '1' Module(s) have been scanned
Scan process 'KHALMNPR.exe' - '1' Module(s) have been scanned
Scan process 'xfire.exe' - '1' Module(s) have been scanned
Scan process 'KEM.exe' - '1' Module(s) have been scanned
Scan process 'backWeb-8876480.exe' - '1' Module(s) have been scanned
Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'Panel.exe' - '1' Module(s) have been scanned
Scan process 'iTunesHelper.exe' - '1' Module(s) have been scanned
Scan process 'reader_sl.exe' - '1' Module(s) have been scanned
Scan process 'mmtask.exe' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'wmiprvse.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'PnkBstrA.exe' - '1' Module(s) have been scanned
Scan process 'nvsvc32.exe' - '1' Module(s) have been scanned
Scan process 'MDM.EXE' - '1' Module(s) have been scanned
Scan process 'GoogleUpdaterService.exe' - '1' Module(s) have been scanned
Scan process 'mDNSResponder.exe' - '1' Module(s) have been scanned
Scan process 'AppleMobileDeviceService.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'LEXPPS.EXE' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'LEXBCES.EXE' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
43 processes with 43 modules were scanned

Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!

Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Boot sector 'D:\'
[INFO] No virus was found!

Starting to scan the registry.
The registry was scanned ( '59' files ).

Starting the file scan:

Begin scan in 'C:\'
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\Documents and Settings\Propriétaire\Mes documents\SigurdClientPublicBeta0.4.zip
[0] Archive type: ZIP
--> SigurdClientPublicBeta0.4.exe
[1] Archive type: NSIS
--> ProgramFilesDir/SigurdUpdate.exe
[DETECTION] This file has been compressed using unusual runtime compression (PCK/YodaProt). Please verify the origin of this file.
[NOTE] The file was moved to '497c641d.qua'!
C:\Program Files\NovaLogic\Delta Force Black Hawk Down\ServerUpdate.exe
[DETECTION] This file has been compressed using unusual runtime compression (PCK/YodaProt). Please verify the origin of this file.
[NOTE] The file was moved to '498772ba.qua'!
C:\Program Files\Shareaza Applications\Shareaza\DiscoveryHelper.dll
[DETECTION] Contains recognition pattern of the SPR/Spy.M program
[NOTE] The file was moved to '4988737e.qua'!
C:\System Volume Information\_restore{EED1CA72-8711-46F8-B411-462AE24A9613}\RP397\A0048072.exe
[DETECTION] This file has been compressed using unusual runtime compression (PCK/Armadillo). Please verify the origin of this file.
[NOTE] The file was moved to '494574c4.qua'!
C:\System Volume Information\_restore{EED1CA72-8711-46F8-B411-462AE24A9613}\RP433\A0050070.exe
[DETECTION] This file has been compressed using unusual runtime compression (PCK/YodaProt). Please verify the origin of this file.
[NOTE] The file was moved to '49457522.qua'!
C:\System Volume Information\_restore{EED1CA72-8711-46F8-B411-462AE24A9613}\RP433\A0050073.exe
[DETECTION] This file has been compressed using unusual runtime compression (PCK/YodaProt). Please verify the origin of this file.
[NOTE] The file was moved to '494575a4.qua'!
C:\System Volume Information\_restore{EED1CA72-8711-46F8-B411-462AE24A9613}\RP437\A0050166.exe
[DETECTION] This file has been compressed using unusual runtime compression (PCK/YodaProt). Please verify the origin of this file.
[NOTE] The file was moved to '494575b7.qua'!
C:\System Volume Information\_restore{EED1CA72-8711-46F8-B411-462AE24A9613}\RP439\A0052591.exe
[DETECTION] This file has been compressed using unusual runtime compression (PCK/YodaProt). Please verify the origin of this file.
[NOTE] The file was moved to '4945769b.qua'!
C:\System Volume Information\_restore{EED1CA72-8711-46F8-B411-462AE24A9613}\RP501\A0066657.exe
[DETECTION] Contains recognition pattern of the SPR/Tool.Reboot.F program
[NOTE] The file was moved to '49457918.qua'!
C:\System Volume Information\_restore{EED1CA72-8711-46F8-B411-462AE24A9613}\RP501\A0066658.exe
[DETECTION] Contains recognition pattern of the SPR/Tool.Hardoff.A program
[NOTE] The file was moved to '4945791c.qua'!
C:\System Volume Information\_restore{EED1CA72-8711-46F8-B411-462AE24A9613}\RP501\A0066695.exe
[DETECTION] Contains recognition pattern of the SPR/Tool.Reboot.F program
[NOTE] The file was moved to '49457920.qua'!
C:\System Volume Information\_restore{EED1CA72-8711-46F8-B411-462AE24A9613}\RP501\A0066696.exe
[DETECTION] Contains recognition pattern of the SPR/Tool.Hardoff.A program
[NOTE] The file was moved to '49457924.qua'!
C:\System Volume Information\_restore{EED1CA72-8711-46F8-B411-462AE24A9613}\RP502\A0066851.exe
[DETECTION] This file has been compressed using unusual runtime compression (PCK/YodaProt). Please verify the origin of this file.
[NOTE] The file was moved to '49457932.qua'!
C:\System Volume Information\_restore{EED1CA72-8711-46F8-B411-462AE24A9613}\RP502\A0066852.dll
[DETECTION] Contains recognition pattern of the SPR/Spy.M program
[NOTE] The file was moved to '49457936.qua'!
Begin scan in 'D:\'
Search path D:\ could not be opened!
System error [1005]: Le volume ne contient pas de système de fichiers connu. Vérifiez si tous les pilotes de système

End of the scan: 2008-11-08 12:58
Used time: 1:59:46 Hour(s)

The scan has been done completely.

7306 Scanning directories
412257 Files were scanned
14 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
0 files were deleted
0 files were repaired
14 files were moved to quarantine
0 files were renamed
1 Files cannot be scanned
412242 Files not concerned
1848 Archives were scanned
1 Warnings
14 Notes

Bibou Nombre de messages : 25 Age : 40 Date d'inscription : 22/01/2008

yop j ai encore un soucis avec mon ordi
mais port USB ne son plus reconnut je suis obliger de débrancher ma souris et la rebrancher
a chaque démarrage du système
si tu peut m aider pour sa aussi

Sujet: Re: bonjour mon ordi a du mal(non résolu) Dim 9 Nov 2008 - 19:36

salut! vides ta quarantaine ,pour tes ports usb,je suis pas spécialisé dans ce domaine!lol!

Bibou Nombre de messages : 25 Age : 40 Date d'inscription : 22/01/2008

la quarantaine ces fait , j ai refait un scan aucune detection
je pense que ces bon mis a part mes usb mais merci bien de ton aide et ta patience Laughing

Sujet: Re: bonjour mon ordi a du mal(non résolu) Mar 11 Nov 2008 - 6:10

salut

Télécharge random's system information tool (RSIT) par random/random et sauvegarde le sur ton Bureau

RSIT.exe

Continue

log.txt et info.txt (c:rsit)

et fais un scan kaspersky

http://www.bibou0007.com/scans-en-ligne-f75/tutorial-kaspersky-online-t394.htm

mets le rapport d'analyse

Bibou Nombre de messages : 25 Age : 40 Date d'inscription : 22/01/2008

Logfile of random's system information tool 1.04 (written by random/random)
Run by Propriétaire at 2008-11-11 13:47:35
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 82 GB (59%) free of 138 GB
Total RAM: 1022 MB (47% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:47:36, on 2008-11-11
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Mouse\Laser Gamer Mouse\Panel.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Microsoft LifeChat\LifeChat.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Logitech\SetPoint\KEM.exe
C:\Program Files\Xfire\xfire.exe
C:\Program Files\Windows Live\Messenger\Device Manager\msgrdvmn.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Windows Live\Messenger\livecall.exe
C:\Documents and Settings\Propriétaire\Bureau\RSIT.exe
C:\Program Files\trend micro\Propriétaire.exe

Bibou Nombre de messages : 25 Age : 40 Date d'inscription : 22/01/2008

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost;*.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [mmtask] "C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe"
O4 - HKLM\..\Run: [Lexmark X1100 Series] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Laser Gamer Mouse] "C:\Program Files\Mouse\Laser Gamer Mouse\Panel.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [LifeChat] "C:\Program Files\Microsoft LifeChat\LifeChat.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: GigaTribe.lnk = C:\Program Files\GigaTribe\gigatribe.exe
O4 - Startup: Xfire.lnk = C:\Program Files\Xfire\xfire.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe
O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} - http://www.eset.eu/buxus/docs/OnlineScanner.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2005111401/housecall.trendmicro.com/housecall/xscan53.cab
O16 - DPF: {C4925E65-7A1E-11D2-8BB4-00A0C9CC72C3} (Virtools WebPlayer Class) - http://a532.g.akamai.net/f/532/6712/5m/virtools.download.akamai.com/6712/player/install3.5/installer.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Google Desktop Manager 5.7.802.22438 (GoogleDesktopManager-022208-143751) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe

--
End of file - 11038 bytes

Bibou Nombre de messages : 25 Age : 40 Date d'inscription : 22/01/2008

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Vérifier les mises à jour de Windows Live Toolbar.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-10-26 440384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar1.dll [2007-10-04 2436160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll [2008-10-15 652784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Windows Live Toolbar - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar avec bloqueur de fenêtres pop-up - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-10-26 440384]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-10-22 7700480]
"nwiz"=nwiz.exe /install []
"Adobe Photo Downloader"=C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe [2007-03-16 63712]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2006-10-22 86016]
"Logitech Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2004-06-08 29696]
"MMTray"=C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe [2006-01-17 135168]
"Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-04-26 29744]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]
"mmtask"=C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe [2006-01-17 53248]
"Lexmark X1100 Series"=C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe [2003-08-19 57344]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-09-06 413696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-09-10 289576]
"Laser Gamer Mouse"=C:\Program Files\Mouse\Laser Gamer Mouse\Panel.exe [2007-08-10 671328]
"avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497]
"LifeChat"=C:\Program Files\Microsoft LifeChat\LifeChat.exe [2008-08-21 267296]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"LDM"=C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe [2008-01-25 20480]
"WOOKIT"=C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM= []
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2007-10-18 5724184]

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\KEM.exe
Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk - C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe

C:\Documents and Settings\Propriétaire\Menu Démarrer\Programmes\Démarrage
GigaTribe.lnk - C:\Program Files\GigaTribe\gigatribe.exe
Xfire.lnk - C:\Program Files\Xfire\xfire.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2008-09-05 267304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{E60A0B68-353A-81DD-ED09-2A8101A1DFB1}"=C:\WINDOWS\system32\krnp32drv.dll []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
nwprovau

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdauxservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdcoreservice]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\Xfire\xfire.exe"="C:\Program Files\Xfire\xfire.exe:*:Enabled:Xfire"
"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\backWeb-8876480.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\backWeb-8876480.exe:*:Enabled:Logitech Desktop Messenger"
"C:\Team17\Worms2\Frontend.exe"="C:\Team17\Worms2\Frontend.exe:*:Enabled:Worms 2 Frontend"
"C:\WINDOWS\system32\dllcache\spoolms.exe"="C:\WINDOWS\system32\dllcache\spoolms.exe:*:Enabled:Windows Sharing"
"C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\Rar$DI00.984\img091307-www.photoshop.com"="C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\Rar$DI00.984\img091307-www.photoshop.com:*:Enabled:Windows Sharing"
"C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\Rar$DI00.843\img091307-www.photoshop.com"="C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\Rar$DI00.843\img091307-www.photoshop.com:*:Enabled:Windows Sharing"
"C:\Program Files\Shareaza Applications\Shareaza\Shareaza.exe"="C:\Program Files\Shareaza Applications\Shareaza\Shareaza.exe:*:Enabled:Shareaza"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"C:\Program Files\GigaTribe\gigatribe.exe"="C:\Program Files\GigaTribe\gigatribe.exe:*:Enabled:gigatribe"
"C:\Program Files\NovaLogic\Delta Force Black Hawk Down\dfbhd.exe"="C:\Program Files\NovaLogic\Delta Force Black Hawk Down\dfbhd.exe:*:Enabled:DFBHD"
"C:\WINDOWS\system32\LEXPPS.EXE"="C:\WINDOWS\system32\LEXPPS.EXE:*:Disabled:LEXPPS.EXE"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe"="C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) "
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Exécuter une DLL en tant qu'application"
"C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"

Bibou Nombre de messages : 25 Age : 40 Date d'inscription : 22/01/2008

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{7f0f5776-f4f0-11dc-9c3c-00142a9ca25f}]
shell\AutoRun\command - F:\LaunchU3.exe -a

======File associations======

.ini - open - C:\WINDOWS\SYSTEM32\NOTEPAD.EXE %1
.txt - open - C:\WINDOWS\SYSTEM32\NOTEPAD.EXE %1

======List of files/folders created in the last 1 months======

2008-11-11 13:46:41 ----D---- C:\rsit
2008-11-10 20:12:58 ----HD---- C:\WINDOWS\system32\GroupPolicy
2008-11-10 20:12:16 ----D---- C:\WINDOWS\system32\fr
2008-11-10 20:12:16 ----D---- C:\WINDOWS\system32\bits
2008-11-10 17:28:07 ----D---- C:\Program Files\Microsoft LifeChat
2008-11-09 23:03:27 ----D---- C:\Program Files\AIDA32 - Enterprise System Information
2008-11-08 17:26:31 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2008-11-08 16:10:06 ----D---- C:\WINDOWS\Prefetch
2008-11-08 13:26:13 ----A---- C:\WINDOWS\OEWABLog.txt
2008-11-08 13:10:42 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2008-11-08 13:10:34 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
2008-11-08 13:10:22 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2008-11-08 13:10:12 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2008-11-08 13:10:02 ----HDC---- C:\WINDOWS\$NtUninstallKB956390$
2008-11-08 13:09:51 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
2008-11-08 13:09:41 ----HDC---- C:\WINDOWS\$NtUninstallKB953838$
2008-11-08 13:09:34 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2008-11-08 13:09:25 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2008-11-08 13:09:17 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2008-11-08 13:09:06 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2008-11-08 13:08:59 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2008-11-08 13:08:51 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2008-11-08 13:08:37 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2008-11-08 13:08:25 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2008-11-08 13:08:13 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2008-11-08 13:08:05 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$
2008-11-08 13:05:16 ----A---- C:\WINDOWS\setuplog.txt
2008-11-08 13:04:10 ----D---- C:\WINDOWS\l2schemas
2008-11-08 13:04:10 ----D---- C:\Program Files\msn
2008-11-08 12:57:22 ----D---- C:\WINDOWS\ServicePackFiles
2008-11-08 12:48:20 ----A---- C:\WINDOWS\imsins.BAK
2008-11-08 12:41:04 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2008-11-08 01:12:42 ----D---- C:\Program Files\Avira
2008-11-07 20:01:32 ----D---- C:\Program Files\Mouse
2008-11-07 20:01:32 ----A---- C:\WINDOWS\system32\XWheel.dll
2008-11-07 20:01:32 ----A---- C:\WINDOWS\system32\MousePage.dll
2008-11-07 20:01:32 ----A---- C:\WINDOWS\system32\Hook.dll
2008-11-06 16:32:33 ----D---- C:\Documents and Settings\Propriétaire\Application Data\Malwarebytes
2008-11-06 16:32:28 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-11-06 16:32:28 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-11-06 01:16:01 ----A---- C:\WINDOWS\SchedLgU.Txt
2008-11-06 01:14:46 ----A---- C:\WINDOWS\ntbtlog.txt
2008-11-03 19:10:03 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2008-11-03 19:10:03 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2008-11-03 19:10:02 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2008-11-03 19:10:02 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2008-11-03 19:10:02 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2008-11-03 19:10:01 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2008-11-03 19:10:01 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2008-11-03 19:10:01 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2008-11-03 19:10:00 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2008-11-03 19:10:00 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2008-11-03 19:10:00 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2008-11-03 19:10:00 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2008-11-03 19:09:59 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2008-11-03 19:09:59 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2008-11-03 19:09:58 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2008-11-03 19:09:57 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2008-11-03 19:09:55 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2008-11-03 19:09:55 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2008-11-03 19:09:19 ----D---- C:\WINDOWS\Logs
2008-11-03 18:54:38 ----A---- C:\WINDOWS\system32\d3dx9_37.dll
2008-11-03 14:17:03 ----A---- C:\rapport.txt
2008-11-03 14:15:34 ----A---- C:\WINDOWS\system32\WS2Fix.exe
2008-11-03 14:15:34 ----A---- C:\WINDOWS\system32\VCCLSID.exe
2008-11-03 14:15:34 ----A---- C:\WINDOWS\system32\VACFix.exe
2008-11-03 14:15:34 ----A---- C:\WINDOWS\system32\SrchSTS.exe
2008-11-03 14:15:34 ----A---- C:\WINDOWS\system32\Process.exe
2008-11-03 14:15:34 ----A---- C:\WINDOWS\system32\o4Patch.exe
2008-11-03 14:15:34 ----A---- C:\WINDOWS\system32\IEDFix.exe
2008-11-03 14:15:34 ----A---- C:\WINDOWS\system32\IEDFix.C.exe
2008-11-03 14:15:34 ----A---- C:\WINDOWS\system32\dumphive.exe
2008-11-03 14:15:34 ----A---- C:\WINDOWS\system32\AntiXPVSTFix.exe
2008-11-03 14:15:34 ----A---- C:\WINDOWS\system32\404Fix.exe
2008-11-02 23:11:08 ----A---- C:\WINDOWS\system32\pbsvc.exe
2008-10-30 02:24:22 ----A---- C:\WINDOWS\system32\xfcodec.dll
2008-10-29 17:02:10 ----D---- C:\Documents and Settings\Propriétaire\Application Data\Friday's games
2008-10-27 17:02:52 ----D---- C:\Program Files\Virtools

======List of files/folders modified in the last 1 months======

2008-11-11 13:47:36 ----D---- C:\Program Files\Trend Micro
2008-11-11 13:44:59 ----D---- C:\Program Files\Mozilla Firefox
2008-11-11 13:44:37 ----D---- C:\WINDOWS\Temp
2008-11-10 23:27:45 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2008-11-10 23:19:54 ----D---- C:\WINDOWS\system32\CatRoot2
2008-11-10 20:13:05 ----D---- C:\WINDOWS
2008-11-10 20:12:59 ----D---- C:\Config.Msi
2008-11-10 20:12:58 ----RSHDC---- C:\WINDOWS\system32\dllcache
2008-11-10 20:12:55 ----SHD---- C:\WINDOWS\Installer
2008-11-10 20:12:54 ----D---- C:\Documents and Settings\Propriétaire\Application Data\Xfire
2008-11-10 20:12:51 ----D---- C:\WINDOWS\system32
2008-11-10 20:12:48 ----HD---- C:\WINDOWS\inf
2008-11-10 20:12:48 ----D---- C:\WINDOWS\AppPatch
2008-11-10 20:12:46 ----RSD---- C:\WINDOWS\Fonts
2008-11-10 20:12:46 ----D---- C:\WINDOWS\system32\wbem
2008-11-10 20:12:41 ----D---- C:\WINDOWS\system32\drivers
2008-11-10 20:12:25 ----D---- C:\WINDOWS\system32\Setup
2008-11-10 20:10:48 ----D---- C:\WINDOWS\system32\npp
2008-11-10 20:10:14 ----D---- C:\WINDOWS\system32\ReinstallBackups
2008-11-10 20:10:14 ----D---- C:\WINDOWS\ehome
2008-11-10 20:08:09 ----D---- C:\WINDOWS\system32\usmt
2008-11-10 20:08:09 ----D---- C:\WINDOWS\system
2008-11-10 20:08:08 ----D---- C:\WINDOWS\system32\oobe
2008-11-10 20:07:59 ----D---- C:\WINDOWS\Help
2008-11-10 20:07:59 ----D---- C:\Program Files\Windows NT
2008-11-10 20:07:59 ----D---- C:\Program Files\Windows Media Player
2008-11-10 20:07:59 ----D---- C:\Program Files\Outlook Express
2008-11-10 20:07:59 ----D---- C:\Program Files\Fichiers communs\System
2008-11-10 20:07:58 ----D---- C:\WINDOWS\system32\Com
2008-11-10 20:07:58 ----D---- C:\Program Files\NetMeeting
2008-11-10 20:07:57 ----D---- C:\WINDOWS\srchasst
2008-11-10 20:07:57 ----D---- C:\WINDOWS\ime
2008-11-10 20:07:56 ----D---- C:\WINDOWS\msagent
2008-11-10 20:07:54 ----D---- C:\WINDOWS\system32\Restore
2008-11-10 20:07:54 ----D---- C:\Program Files\Movie Maker
2008-11-10 20:07:54 ----D---- C:\Program Files\Internet Explorer
2008-11-10 20:07:15 ----D---- C:\WINDOWS\PeerNet
2008-11-10 20:07:07 ----D---- C:\WINDOWS\system32\inetsrv
2008-11-10 20:07:05 ----D---- C:\Program Files\Messenger
2008-11-10 20:06:48 ----D---- C:\tribal web telechargement
2008-11-10 20:06:02 ----DC---- C:\WINDOWS\system32\DRVSTORE
2008-11-10 20:05:57 ----D---- C:\Program Files\ma-config.com
2008-11-10 19:43:58 ----D---- C:\WINDOWS\security
2008-11-10 19:01:58 ----D---- C:\Documents and Settings\All Users\Application Data\ma-config.com
2008-11-10 18:55:16 ----D---- C:\Documents and Settings\Propriétaire\Application Data\teamspeak2
2008-11-10 18:02:22 ----SD---- C:\Documents and Settings\Propriétaire\Application Data\Microsoft
2008-11-10 17:31:40 ----D---- C:\Documents and Settings\All Users\Application Data\Google Updater
2008-11-10 17:28:09 ----SD---- C:\WINDOWS\Tasks
2008-11-10 17:28:07 ----RD---- C:\Program Files
2008-11-08 16:14:28 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2008-11-08 16:11:22 ----D---- C:\WINDOWS\Debug
2008-11-08 15:47:31 ----D---- C:\Documents and Settings\Propriétaire\Application Data\GigaTribe
2008-11-08 15:38:53 ----A---- C:\WINDOWS\lexstat.ini
2008-11-08 13:16:01 ----HD---- C:\WINDOWS\$hf_mig$
2008-11-08 13:12:43 ----D---- C:\WINDOWS\system32\CatRoot
2008-11-08 13:04:41 ----D---- C:\WINDOWS\WinSxS
2008-11-08 13:04:33 ----D---- C:\WINDOWS\network diagnostic
2008-11-08 13:04:12 ----D---- C:\WINDOWS\system32\fr-fr
2008-11-08 01:12:42 ----D---- C:\Documents and Settings\All Users\Application Data\Avira
2008-11-08 01:02:26 ----D---- C:\Program Files\Alwil Software
2008-11-08 00:57:38 ----A---- C:\TCleaner.txt
2008-11-07 20:01:32 ----HD---- C:\Program Files\InstallShield Installation Information
2008-11-06 20:04:55 ----D---- C:\Program Files\Xfire
2008-11-06 01:16:37 ----D---- C:\WINDOWS\system32\LogFiles
2008-11-06 01:14:40 ----D---- C:\Program Files\CCleaner
2008-11-05 14:34:10 ----D---- C:\Program Files\Lexmark X1100 Series
2008-11-03 19:10:04 ----D---- C:\WINDOWS\system32\DirectX
2008-11-03 19:09:50 ----HD---- C:\WINDOWS\msdownld.tmp
2008-11-02 23:36:30 ----D---- C:\Documents and Settings\Propriétaire\Application Data\Mozilla
2008-11-02 23:05:56 ----D---- C:\Program Files\Activision
2008-10-29 17:46:43 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2008-10-29 17:01:04 ----D---- C:\Program Files\Oberon Media
2008-10-17 14:20:27 ----A---- C:\WINDOWS\system32\CmdLineExt.dll
2008-10-16 16:16:51 ----A---- C:\WINDOWS\system32\PnkBstrA.exe
2008-10-16 15:54:17 ----RSD---- C:\WINDOWS\assembly
2008-10-16 02:02:43 ----A---- C:\WINDOWS\win.ini
2008-10-15 17:35:43 ----A---- C:\WINDOWS\system32\netapi32.dll

Bibou Nombre de messages : 25 Age : 40 Date d'inscription : 22/01/2008

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2008-06-27 75072]
R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
R1 pctfw2;pctfw2; \??\C:\WINDOWS\system32\drivers\pctfw2.sys []
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-03-01 28352]
R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-05 12032]
R2 NwlnkIpx;Protocole de transport compatible NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2008-04-13 88320]
R2 NwlnkNb;NetBIOS NWLink; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2004-08-05 63232]
R2 NwlnkSpx;Protocole NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2004-08-05 55936]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2007-01-25 4027456]
R3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys []
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2008-04-17 15464]
R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 L8042mou;Logitech SetPoint PS/2 Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\L8042mou.Sys [2004-06-08 54817]
R3 LHidKe;Logitech SetPoint HID Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidKE.Sys [2004-06-08 24637]
R3 LHidUsbK;Logitech SetPoint USB Receiver Device Driver; C:\WINDOWS\System32\Drivers\LHidUsbK.Sys [2004-06-08 38081]
R3 LMouKE;Logitech SetPoint Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouKE.Sys [2004-06-08 71533]
R3 LUsbKbd;Logitech SetPoint USB Keyboard Filter; C:\WINDOWS\System32\Drivers\LUsbKbd.Sys [2004-06-08 14975]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-10-22 3994624]
R3 NWRDR;NetWare Rdr; C:\WINDOWS\system32\DRIVERS\nwrdr.sys [2008-04-13 163584]
R3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 usbstor;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 ZDPNDIS5;ZDPNDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\ZDPNDIS5.SYS []
S3 catchme;catchme; \??\C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\catchme.sys []
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
S3 GMSIPCI;GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS []
S3 IKFileSec;File Security Driver; C:\WINDOWS\system32\drivers\ikfilesec.sys [2007-12-10 41864]
S3 IKSysFlt;System Filter Driver; C:\WINDOWS\system32\drivers\iksysflt.sys [2007-12-10 66952]
S3 IKSysSec;System Security Driver; C:\WINDOWS\system32\drivers\iksyssec.sys [2007-12-10 81288]
S3 PCANDIS5;PCANDIS5 Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
S3 SG760_XP;SAGEM 802.11g XG760 1211 Driver; C:\WINDOWS\system32\DRIVERS\WlanUZXP.sys [2005-07-13 260608]
S3 USB_RNDIS;ADI Remote NDIS Network Device Driver; C:\WINDOWS\system32\DRIVERS\usb8023.sys [2008-04-13 12800]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S3 ZDCndis5;ZDCndis5 Protocol Driver; \??\C:\WINDOWS\system32\ZDCndis5.SYS []
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirScheduler;Avira AntiVir Personal - Free Antivirus Scheduler; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-10-15 68865]
R2 AntiVirService;Avira AntiVir Personal - Free Antivirus Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-10-15 151297]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-09-10 116040]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
R2 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-10-15 168432]
R2 LexBceS;LexBce Server; C:\WINDOWS\system32\LEXBCES.EXE [2003-08-18 303104]
R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 NWCWorkstation;Service client pour NetWare; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2008-10-16 66872]
R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-09-10 536872]
R3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-10-22 159810]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-04-13 33632]
S3 Boonty Games;Boonty Games; C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe [2008-02-05 69120]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-04-13 68952]
S3 GoogleDesktopManager-022208-143751;Google Desktop Manager 5.7.802.22438; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-04-26 29744]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2008-11-02 195752]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 sdAuxService;PC Tools Auxiliary Service; C:\Program Files\Spyware Doctor\pctsAuxs.exe [2007-12-10 747912]
S3 sdCoreService;PC Tools Security Service; C:\Program Files\Spyware Doctor\pctsSvc.exe [2007-12-10 946568]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

-----------------EOF-----------------
voila pour le premier je les découper car trop long pour mettre en réponse

Bibou Nombre de messages : 25 Age : 40 Date d'inscription : 22/01/2008

info.txt logfile of random's system information tool 1.04 2008-11-11 13:46:59

======Uninstall list======

-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
3DVIA player 4.1-->MsiExec.exe /X{4E868D3D-6EEB-4273-926C-2287236B5B79}
ABBYY FineReader 5.0 Sprint-->MsiExec.exe /X{D1696920-9794-4BBC-8A30-7A88763DE5A2}
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)-->MsiExec.exe /X{6846389C-BAC0-4374-808E-B120F86AF5D7}
Adobe Reader 8.1.2 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81200000003}
Adobe® Photoshop® Album Edition Découverte 3.2-->MsiExec.exe /I{A654A805-41D9-40C7-AA46-4AF04F044D61}
AGEIA PhysX v2.3.3-->"C:\Program Files\AGEIA Technologies\uninstall.exe"
AIDA32 v3.93-->"C:\Program Files\AIDA32 - Enterprise System Information\unins000.exe"
Apple Mobile Device Support-->MsiExec.exe /I{AA9768AA-FF0B-4C66-A085-31E934F77841}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Around the World in 80 Days-->"C:\Program Files\orange\jeux\Around the World in 80 Days\Uninstall.exe" "C:\Program Files\orange\jeux\Around the World in 80 Days\install.log"
Assistant de connexion Windows Live-->MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}
ATI - Software Uninstall Utility-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE
Barre d'outils Outlook de Windows Live (Windows Live Toolbar)-->MsiExec.exe /X{6E15BEDF-7EB5-4010-998E-B430DB4EFE45}
BeTrapped!-->"C:\Program Files\orange\jeux\BeTrapped!\Uninstall.exe" "C:\Program Files\orange\jeux\BeTrapped!\install.log"
Bloqueur de fenêtres pop-up (Windows Live Toolbar)-->MsiExec.exe /X{A425C250-A0E1-4D78-B1C1-A5CBC7385E7C}
Bonjour-->MsiExec.exe /I{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}
BoontyBox 2.3-->"C:\Program Files\Boonty\BoontyBox\unins000.exe"
Call of Duty(R) - World at War(TM) Beta-->C:\Program Files\InstallShield Installation Information\{B7698C49-18E2-458F-87A0-65570B8E02DA}\setup.exe -runfromtemp -l0x0409
Call of Duty(R) 4 - Modern Warfare(TM) 1.4 Patch-->C:\Program Files\InstallShield Installation Information\{3BD633E0-4BF8-4499-9149-88F0767D449C}\setup.exe -runfromtemp -l0x0409
Call of Duty(R) 4 - Modern Warfare(TM) 1.5 Multiplayer Patch-->C:\Program Files\InstallShield Installation Information\{8503C901-85D7-4262-88D2-8D8B2A7B08B8}\setup.exe -runfromtemp -l0x0409
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch-->C:\Program Files\InstallShield Installation Information\{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}\setup.exe -runfromtemp -l0x0409
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch-->C:\Program Files\InstallShield Installation Information\{931C37FC-594D-43A9-B10F-A2F2B1F03498}\setup.exe -runfromtemp -l0x0409
Call of Duty(R) 4 - Modern Warfare(TM)-->C:\Program Files\InstallShield Installation Information\{E48469CC-635E-4FD5-A122-1497C286D217}\setup.exe -runfromtemp -l0x040c
Carrie the Caregiver-->"C:\Program Files\orange\jeux\Carrie the Caregiver\Uninstall.exe" "C:\Program Files\orange\jeux\Carrie the Caregiver\install.log"
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Delta Force - Black Hawk Down-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8FE54D21-8254-4CCF-AEE0-066496AE43F4}\setup.exe" -l0x40c -uninst
Détecteur de flux Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{EFFCB0F1-CFEC-48D4-B793-EBFCAE852976}
DFBHD(TS) JoinTool-->C:\Program Files\BHD Jointool\uninstall.exe
DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
eMule-->"C:\Program Files\eMule\Uninstall.exe"
Extension de Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{0CA6047C-D28B-4295-834A-07C52BA20C2D}
FaxTools-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F45298E5-0083-426F-A668-1A2C5F04B8A0}\setup.exe" -l0x40c ControlPanel
Fort Boyard - le Jeu-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CD4C3C09-6EE6-4BFB-A0CA-AD80CE71A6D7}\setup.exe" -l0x40c -removeonly
Ghost Recon Advanced Warfighter-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EFC97089-04D6-42CE-A707-A343B4A7D2CD}\setup.exe" -l0x40c
GigaTribe 2.46-->"C:\Program Files\GigaTribe\unins000.exe"
Google Desktop-->C:\Program Files\Google\Google Desktop Search\GoogleDesktopSetup.exe -uninstall
Google Earth-->MsiExec.exe /I{1D14373E-7970-4F2F-A467-ACA4F0EA21E3}
Google Toolbar for Internet Explorer-->MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}
Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar1.dll"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
iTunes-->MsiExec.exe /I{41B9E2CF-0B3F-442A-B5B3-592A4A355634}
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Java(TM) 6 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Jigs@w Platinum Edition-->"C:\Program Files\orange\jeux\Jigs@w Platinum Edition\Uninstall.exe" "C:\Program Files\orange\jeux\Jigs@w Platinum Edition\install.log"
Jigsaw Puzzle 2 Mix-->"C:\Program Files\orange\jeux\Jigsaw Puzzle 2 Mix\Uninstall.exe" "C:\Program Files\orange\jeux\Jigsaw Puzzle 2 Mix\install.log"
Laser Gamer Mouse-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{235C3A50-559F-4CAA-BAC3-4CC9ABF51976}\setup.exe" -l0x9 -removeonly
Les Sims Deluxe-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{10798AE3-DCBB-43C3-9C93-C23512427E25}\setup.exe" -l040c
Lexmark X1100 Series-->C:\WINDOWS\system32\spool\drivers\w32x86\3\LXBKUN5C.EXE -dLexmark X1100 Series
Livebox-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FC7DDAAE-7F2B-4270-9BFD-5A130B667E9E}\Setup.exe" -l0x40c
Logitech Desktop Messenger-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\SETUP.EXE" -l0x40c UNINSTALL
Logitech SetPoint-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}\setup.exe" -l0x40c
Ma-Config.com-->MsiExec.exe /X{DD987A54-122B-4CFD-A8C5-5577027A6B78}
Mahjongg - Ancient Mayas-->"C:\Program Files\orange\jeux\Mahjongg - Ancient Mayas\Uninstall.exe" "C:\Program Files\orange\jeux\Mahjongg - Ancient Mayas\install.log"
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
MediaLife -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{362BFFCD-8274-11D8-97C8-000129760CBE}\setup.exe" -uninstall
Menus intelligents (Windows Live Toolbar)-->MsiExec.exe /X{0CC70FEF-5068-4CD5-B4DE-86FFD98EC929}
Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft LifeChat-->MsiExec.exe /X{66039B36-96AE-40D1-8A32-071F7A61B738}
Microsoft Office Professional Edition 2003-->MsiExec.exe /I{9111040C-6000-11D3-8CFE-0150048383C9}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953838)-->"C:\WINDOWS\$NtUninstallKB953838$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956390)-->"C:\WINDOWS\$NtUninstallKB956390$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mozilla Firefox (3.0.3)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Musicmatch® Jukebox-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8EF1122E-E90C-4EE9-AB0C-7FDE2BA42C26}\setup.exe" -l0x40c -uninst
NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
OneCare Advisor (Windows Live Toolbar)-->MsiExec.exe /X{6D7F8D4B-D1A4-402A-973E-31E90940E585}
OpenOffice.org Installer 1.0-->MsiExec.exe /X{3A2AF807-9F9F-43C9-A24A-17B617238B74}
Outil de mise à jour Google-->"C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -uninstall
Picasa 2-->"C:\Program Files\Picasa2\Uninstall.exe"
PunkBuster Services-->C:\WINDOWS\system32\pbsvc.exe -u
QuickTime-->MsiExec.exe /I{8DC42D05-680B-41B0-8878-6C14D24602DB}
Realtek AC'97 Audio-->Alcrmv.exe -r -m
SAGEM Wi-Fi 11g USB adapter (Driver)-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E2AA331E-E10E-438C-B1C0-24B2FFD3D9C4}\setup.exe" -l0x40c
SAGEM Wi-Fi 11g USB adapter (Tool)-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6266AB37-350F-483C-88D2-C530ACA42645}\Setup.exe" -l0x40c
Security Update pour Microsoft .NET Framework 2.0 (KB928365)-->C:\WINDOWS\system32\msiexec.exe /promptrestart /uninstall {8056AC9E-49C5-4375-9ADE-B2F862C9DF51} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
Shareaza-->C:\Program Files\Shareaza Applications\Shareaza\UninstallSurvey.exe C:\PROGRA~1\SHAREA~1\Shareaza\UNWISE.EXE C:\PROGRA~1\SHAREA~1\Shareaza\INSTALL.LOG
Spyware Doctor 5.5-->C:\Program Files\Spyware Doctor\unins000.exe /LOG
TeamSpeak 2 RC2-->"C:\Program Files\Teamspeak2_RC2\unins000.exe"
VideoLAN VLC media player 0.8.6e-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Wanadoo Messager-->C:\PROGRA~1\WANADO~1\UNWISE.EXE C:\PROGRA~1\WANADO~1\INSTALL.LOG
Windows Live Favorites pour Windows Live Toolbar-->MsiExec.exe /X{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}
Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
Windows Live Mail-->MsiExec.exe /I{C514C594-23AA-4F13-A070-DB8BDB27594F}
Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
Windows Live Toolbar-->"C:\Program Files\Windows Live Toolbar\UnInstall.exe" {0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows Live Toolbar-->MsiExec.exe /X{0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows Live Writer-->MsiExec.exe /X{3DFF4274-EBB0-4356-9692-972965018954}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
Worms2-->C:\WINDOWS\IsUninst.exe -fC:\Team17\Worms2\Uninst.isu
Xfire (remove only)-->"C:\Program Files\Xfire\uninst.exe"
Yahoo! Install Manager-->C:\WINDOWS\system32\regsvr32 /u C:\PROGRA~1\Yahoo!\Common\YINSTH~1.DLL
Yahoo! Toolbar avec bloqueur de fenêtres pop-up-->C:\PROGRA~1\Yahoo!\Common\unyt.exe

Hosts File Missing

Bibou Nombre de messages : 25 Age : 40 Date d'inscription : 22/01/2008

LE scan kaspersky a été fait et a rien détecter mais je sais pas comment avoir le rapport Embarassed

Sujet: Re: bonjour mon ordi a du mal(non résolu) Jeu 13 Nov 2008 - 8:08

salut regardes ce lien ça peut t'aider:

http://forum.telecharger.01net.com/telecharger/univers_micro/pilotes/topic__probleme_dusb__venez_jeter_un_oeil-399318/messages-1.html

» mon ordi s'eteint sur internet (résolu)
» [résolu]espionnage sur mon ordi?
» [Résolu] Ordi qui rame
» bonjour mon ordi rame
» [Résolu] besoin d'aide pour désinfecter mon ordi