Plantage, impossible ouvrir options des dossiers etc [Résolu]

Bonjour,
Au départ impossible ouvrir options des dossiers dans panneau de configuration. Idem sur le fichier me dit pas les droits.
Je ne vois pas également les fichiers AppData sur Jérémy.
Maintenant Windows plante au démarrage ( écran blanc )

Merci de votre aide, je suis perdu

Ci-dessous analyse faite.

Logfile of random's system information tool 1.08 (written by random/random)
Run by Jérémy at 2010-11-15 19:03:51
Microsoft® Windows Vista™ Édition Familiale Basique Service Pack 2
System drive C: has 10 GB (17%) free of 57 GB
Total RAM: 2037 MB (44% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:04:06, on 15/11/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.7930.16406)
Boot mode: Safe mode with network support

Running processes:
C:\Windows\Explorer.EXE
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Windows Mail\WinMail.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\ESET\ESET Online Scanner\OnlineScannerApp.exe
C:\Program Files\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe
C:\Users\Jérémy\Desktop\RSIT.exe
C:\Users\Jérémy\Desktop\RSIT.exe
C:\Program Files\trend micro\Jérémy.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [MSSE] "C:\Program Files\Microsoft Security Essentials\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user')
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: PokerStars.fr - {90EAE591-7E7E-434a-8E28-ECFD00071806} - C:\Program Files\PokerStars.FR\PokerStarsUpdate.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Service de la passerelle de la couche Application (ALG) - Unknown owner - C:\Windows\System32\alg.exe
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Service de transfert intelligent en arrière-plan (BITS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: CanalPlus.VOD - Canal+ Active - C:\Program Files\Canal\Canal Widget\VOD\CanalPlus.VOD.exe
O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe
O23 - Service: @%SystemRoot%\system32\dhcpcsvc.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Configuration automatique de réseau câblé (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Service de stratégie de diagnostic (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Protocole EAP (Extensible Authentication Protocol) (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (Eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: hpqcxs08 - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Service HP CUE DeviceDiscovery (hpqddsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: HP Network Devices Support (HPSLPSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: HsfXAudioService - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Modules de génération de clés IKE et AuthIP (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Énumérateur de bus IP PnP-X (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Assistance IP (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe
O23 - Service: Service KtmRm pour Distributed Transaction Coordinator (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Assistance NetBIOS sur TCP/IP (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: Agent de protection d’accès réseau (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Net Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe
O23 - Service: Connexions réseau (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprof.dll,-246 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Groupement de mise en réseau de pairs (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Service de l’Assistant Compatibilité des programmes (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Pml Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Agent de stratégie IPsec (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Emplacement protégé (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe
O23 - Service: Connectivité de l'appareil Windows Mobile (RapiMgr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Gestionnaire de connexion automatique d'accès distant (RasAuto) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Gestionnaire de connexions d'accès distant (RasMan) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Routage et accès distant (RemoteAccess) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Service CANALPLAY - Canal+ Distribution - C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
O23 - Service: Configuration des services Terminal Server (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Partage de connexion Internet (ICS) (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe
O23 - Service: @%SystemRoot%\system32\SLUINotify.dll,-103 (SLUINotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe
O23 - Service: Découverte SSDP (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Acquisition d'image Windows (WIA) (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Téléphonie (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Services de base de module de plateforme sécurisée (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - c:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA SMART Log Service - TOSHIBA Corporation - c:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe
O23 - Service: wampapache - Unknown owner - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe (file missing)
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Hôte système de diagnostics (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Prise en charge de l’application Rapports et solutions aux problèmes du Panneau de configuration (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Service de découverte automatique de Proxy Web pour les services HTTP Windows (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: WinTaskAdmin - Unknown owner - C:\Program Files\WinTask\Bin\TaskAdmin.exe (file missing)
O23 - Service: Service de configuration automatique WLAN (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe
O23 - Service: @C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100 (WPFFontCache_v0400) - Unknown owner - C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
O23 - Service: Centre de sécurité (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Windows Update (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Windows Driver Foundation - Infrastructure de pilote mode-utilisateur (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe

--
End of file - 16624 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-09-22 191792]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-08-14 1348904]
"MSSE"=C:\Program Files\Microsoft Security Essentials\msseces.exe [2010-09-15 1094224]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-01-29 4911104]
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2010-04-29 437584]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2010-08-17 281768]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\9Giga Synchro]
C:\Program Files\SFR\9Giga Synchro\9Giga_Synchro.exe [2008-12-19 6931848]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-21 932288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Connexion SFR 9props.exe]
C:\Program Files\Neuf\Kit\9props.exe [2008-01-15 1103088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\E09FXLRD_1160007]
C:\Program Files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE [2008-05-28 351000]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\E09FXLRD_12907195]
C:\Program Files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE [2008-05-28 351000]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\E09FXLRD_17239249]
C:\Program Files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE [2008-05-28 351000]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\E09FXLRD_1727867]
C:\Program Files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE [2008-05-28 351000]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\E09FXLRD_24566709]
C:\Program Files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE [2008-05-28 351000]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\E09FXLRD_3768734]
C:\Program Files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE [2008-05-28 351000]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\E09FXLRD_50209046]
C:\Program Files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE [2008-05-28 351000]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\E09FXLRD_6746356]
C:\Program Files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE [2008-05-28 351000]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Quick Search Box]
C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe [2009-10-09 122880]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
C:\Program Files\PowerISO\PWRISOVM.EXE [2010-04-12 180224]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2009-09-05 417792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\rfagent]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SFR]
C:\Program Files\SFR\SFR.exe [2009-09-25 954456]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Shockwave Updater]
C:\Windows\system32\Adobe\Shockwave 11\SwHelper_1150600.exe [2009-06-05 468408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skytel]
C:\Windows\Skytel.exe [2007-11-20 1826816]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Program Files\uTorrent\uTorrent.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WahOO]
C:\Users\Jérémy\AppData\Local\WahOO\WahOO.exe [2010-10-11 2238464]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe [2010-01-12 37888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AutoUpdate Monitor.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Jérémy^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^syspck32.exe]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Jérémy^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^TRDCReminder.lnk]
C:\PROGRA~1\TOSHIBA\TRDCRE~1\TRDCRE~1.EXE [2007-07-27 389120]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHoo ks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDrive r]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoWinKeys"=1
"NoSMMyDocs"=1
"NoFavoritesMenu"=1
"NoDrives"=0
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewall policy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewall policy\domainprofile\authorizedapplications\list]

======File associations======

.ini - open - C:\WINDOWS\SYSTEM32\NOTEPAD.EXE %1
.js - edit - C:\Windows\System32\Notepad.exe %1
.txt - open - C:\WINDOWS\SYSTEM32\NOTEPAD.EXE %1

======List of files/folders created in the last 1 months======

2010-11-15 18:47:56 ----D---- C:\Program Files\ESET
2010-11-15 14:31:48 ----A---- C:\Windows\ntbtlog.txt
2010-11-14 17:24:32 ----D---- C:\Users\Jérémy\AppData\Roaming\Avira
2010-11-14 17:21:29 ----A---- C:\Windows\system32\drivers\ssmdrv.sys
2010-11-14 17:21:23 ----A---- C:\Windows\system32\drivers\avipbb.sys
2010-11-14 17:21:22 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2010-11-14 17:21:18 ----D---- C:\ProgramData\Avira
2010-11-14 17:21:18 ----D---- C:\Program Files\Avira
2010-11-14 13:18:17 ----D---- C:\Program Files\trend micro
2010-11-14 13:18:15 ----D---- C:\rsit
2010-11-11 13:50:43 ----D---- C:\Program Files\AutomateBuilder
2010-11-07 20:44:45 ----D---- C:\Program Files\PowerISO
2010-11-06 12:47:26 ----D---- C:\Users\Jérémy\AppData\Roaming\Mipony
2010-11-05 09:03:29 ----D---- C:\Users\Jérémy\AppData\Roaming\Management-Ware Solutions Inc
2010-11-05 09:03:08 ----HDC---- C:\ProgramData\{0B060988-B414-420C-BAAC-D4320DF97431}
2010-10-27 00:22:01 ----A---- C:\Windows\system32\gameux.dll
2010-10-27 00:21:58 ----A---- C:\Windows\system32\Apphlpdm.dll
2010-10-27 00:21:57 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2010-10-26 10:51:02 ----D---- C:\Program Files\TrendMicro
2010-10-25 18:02:42 ----A---- C:\Windows\system32\javaws.exe
2010-10-25 18:02:42 ----A---- C:\Windows\system32\javaw.exe
2010-10-25 18:02:42 ----A---- C:\Windows\system32\java.exe
2010-10-22 17:00:42 ----D---- C:\Windows\fr
2010-10-22 17:00:17 ----A---- C:\Windows\system32\drivers\fssfltr.sys
2010-10-22 16:55:39 ----A---- C:\Windows\system32\XAudio2_5.dll
2010-10-22 16:55:39 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2010-10-22 16:55:39 ----A---- C:\Windows\system32\d3dx10_42.dll
2010-10-21 12:52:04 ----A---- C:\Windows\system32\webservices.dll
2010-10-19 13:54:30 ----D---- C:\Windows\UltraDefrag

======List of files/folders modified in the last 1 months======

2010-11-15 19:03:02 ----D---- C:\Boot1
2010-11-15 18:47:56 ----D---- C:\Program Files
2010-11-15 18:47:49 ----D---- C:\Windows\Temp
2010-11-15 18:39:41 ----D---- C:\Program Files\Mozilla Firefox
2010-11-15 18:11:08 ----D---- C:\Windows\inf
2010-11-15 18:11:08 ----AD---- C:\Windows\System32
2010-11-15 18:11:08 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-11-15 18:00:08 ----D---- C:\Windows
2010-11-15 17:38:30 ----D---- C:\Windows\system32\drivers
2010-11-15 16:35:22 ----SD---- C:\Windows\Downloaded Program Files
2010-11-15 15:38:52 ----D---- C:\ProgramData
2010-11-15 15:00:09 ----DC---- C:\Windows\system32\DRVSTORE
2010-11-15 14:54:17 ----D---- C:\Windows\Debug
2010-11-15 14:02:13 ----D---- C:\Windows\Minidump
2010-11-15 13:17:36 ----D---- C:\Windows\Prefetch
2010-11-15 12:48:05 ----SHD---- C:\System Volume Information
2010-11-15 07:22:34 ----D---- C:\Program Files\ZHPDiag
2010-11-15 07:14:38 ----D---- C:\Program Files\ZebHelpProcess
2010-11-14 23:34:27 ----D---- C:\Program Files\uTorrent
2010-11-14 23:31:52 ----HD---- C:\Program Files\InstallShield Installation Information
2010-11-14 19:49:47 ----SHD---- C:\ProgramData\SysWoW32
2010-11-14 13:45:26 ----D---- C:\Windows\pss
2010-11-14 12:00:28 ----SHD---- C:\Windows\Installer
2010-11-12 19:52:31 ----D---- C:\Windows\system32\Msdtc
2010-11-12 19:52:25 ----D---- C:\Windows\system32\wbem
2010-11-12 19:50:46 ----D---- C:\Windows\system32\config
2010-11-12 19:49:59 ----D---- C:\Windows\Tasks
2010-11-12 19:49:59 ----D---- C:\Windows\system32\spool
2010-11-12 19:49:58 ----D---- C:\Windows\system32\CodeIntegrity
2010-11-12 19:49:58 ----D---- C:\Windows\system32\catroot2
2010-11-12 19:49:57 ----D---- C:\Users\Jérémy\AppData\Roaming\Winamp
2010-11-12 19:49:57 ----D---- C:\Users\Jérémy\AppData\Roaming\vlc
2010-11-12 19:49:57 ----D---- C:\Users\Jérémy\AppData\Roaming\ToutMail
2010-11-12 19:49:57 ----D---- C:\Users\Jérémy\AppData\Roaming\Skype
2010-11-12 19:49:57 ----D---- C:\Users\Jérémy\AppData\Roaming\Returnil
2010-11-12 19:49:56 ----D---- C:\Users\Jérémy\AppData\Roaming\Notepad++
2010-11-12 19:49:51 ----D---- C:\Users\Jérémy\AppData\Roaming\gtk-2.0
2010-11-12 19:49:51 ----D---- C:\Users\Jérémy\AppData\Roaming\GetRightToGo
2010-11-12 19:49:51 ----D---- C:\Users\Jérémy\AppData\Roaming\FreeFLVConverter
2010-11-12 19:49:51 ----D---- C:\Users\Jérémy\AppData\Roaming\dvdcss
2010-11-12 19:49:02 ----D---- C:\Windows\registration
2010-11-12 17:36:36 ----D---- C:\Windows\system32\catroot
2010-11-11 06:31:42 ----D---- C:\Windows\winsxs
2010-11-11 06:25:38 ----D---- C:\Program Files\Windows Mail
2010-11-11 06:22:33 ----A---- C:\Windows\system32\mrt.exe
2010-11-06 13:41:22 ----A---- C:\Windows\win.ini
2010-11-04 15:58:26 ----D---- C:\Windows\system32\Tasks
2010-10-27 00:25:44 ----D---- C:\Windows\AppPatch
2010-10-25 18:02:39 ----D---- C:\Program Files\Java
2010-10-23 09:42:37 ----D---- C:\Windows\Microsoft.NET
2010-10-23 09:40:07 ----RSD---- C:\Windows\assembly
2010-10-22 16:59:14 ----D---- C:\Program Files\Windows Live
2010-10-22 16:57:40 ----SD---- C:\ProgramData\Microsoft
2010-10-22 16:57:38 ----RSD---- C:\Windows\Fonts
2010-10-22 07:56:32 ----D---- C:\Windows\rescache
2010-10-21 12:52:31 ----D---- C:\Windows\system32\fr-FR
2010-10-19 21:51:33 ----N---- C:\Windows\system32\MpSigStub.exe
2010-10-16 13:21:44 ----D---- C:\Users\Jérémy\AppData\Roaming\temp
2010-10-16 13:18:34 ----D---- C:\Program Files\Common Files\Adobe AIR

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2007-09-29 308248]
R0 tos_sps32;TOSHIBA tos_sps32 Service; C:\Windows\system32\DRIVERS\tos_sps32.sys [2008-01-21 285184]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ_O.SYS [2007-11-09 23640]
R1 RtlProt;Realtke RtlProt WLAN Utility Protocol Driver; C:\Windows\system32\DRIVERS\rtlprot.sys [2007-04-23 25896]
R3 FwLnk;FwLnk Driver; C:\Windows\system32\DRIVERS\FwLnk.sys [2006-11-20 7168]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17 15464]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-12-28 104448]
R3 RTL8187B;Adaptateur réseau USB 2.0 54Mbps, 802.11b/g sans fil Realtek RTL8187B; C:\Windows\system32\DRIVERS\RTL8187B.sys [2007-12-26 290304]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2008-08-14 203312]
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys [2006-10-18 16128]
S0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys []
S1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2010-08-17 126856]
S1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2010-03-25 151216]
S1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2010-04-12 59388]
S1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2010-06-17 28520]
S2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2010-08-17 60936]
S2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-18 12672]
S2 XAudio;XAudio; C:\Windows\system32\DRIVERS\XAudio32.sys [2008-11-04 8704]
S3 abaqbysv;abaqbysv; C:\Windows\system32\drivers\abaqbysv.sys []
S3 ASPI;Advanced SCSI Programming Interface Driver; \??\C:\Windows\System32\DRIVERS\ASPI32.sys [2002-07-17 84832]
S3 athr;Pilote de périphérique LAN sans fil extensible Atheros; C:\Windows\system32\DRIVERS\athr.sys [2006-11-02 467456]
S3 Dot4;Pilote MS IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-21 131584]
S3 Dot4Print;Pilote de classe Imprimante pour IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-21 16384]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-21 36864]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-22 39272]
S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 HexTunnelDevice;Hexago Multi-Virtual Tunnel Adapter; C:\Windows\system32\DRIVERS\hextun.sys [2009-02-24 22176]
S3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2008-10-15 980992]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2008-01-21 200704]
S3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2008-10-15 207360]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2007-09-13 1925632]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-01-30 2058528]
S3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI Service; C:\Windows\system32\drivers\IntcHdmi.sys [2007-06-06 111616]
S3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver; C:\Windows\system32\DRIVERS\ManyCam.sys []
S3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2010-04-29 20952]
S3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys [2010-03-25 42368]
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 RTSTOR;Realtek USB 2.0 Card Reader; C:\Windows\system32\drivers\RTSTOR.SYS [2008-02-20 60416]
S3 StillCam;Pilote d'appareil photo numérique série; C:\Windows\system32\DRIVERS\serscan.sys [2008-01-21 9216]
S3 tbhsd;Tunebite High-Speed Dubbing; C:\Windows\system32\drivers\tbhsd.sys [2007-12-11 26784]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [2010-02-24 10064]
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgusbbus.sys []
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgusbdiag.sys []
S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgusbmodem.sys []
S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-21 35328]
S3 usbvideo;Chicony USB 2.0 Camera; C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 UVCFTR;UVCFTR; C:\Windows\System32\Drivers\UVCFTR_S.SYS [2007-12-17 18432]
S3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2008-10-15 661504]
S3 winusb;WinUSB Service; C:\Windows\system32\DRIVERS\winusb.sys [2009-04-11 31616]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WsAudio_DeviceS(1);WsAudio_DeviceS(1); C:\Windows\system32\drivers\WsAudio_DeviceS(1).sys [2009-04-23 16640]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Essentials\MsMpEng.exe [2010-03-25 17904]
S2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2010-08-17 135336]
S2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2010-08-17 267944]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Service Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-02-25 135664]
S2 hpqddsvc;Service HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2010-04-29 304464]
S2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-09-22 249136]
S2 TNaviSrv;TOSHIBA Navi Support Service; C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe [2008-01-21 83312]
S2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2007-11-21 129632]
S2 TosCoSrv;TOSHIBA Power Saver; c:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe [2008-01-17 431456]
S2 TOSHIBA SMART Log Service;TOSHIBA SMART Log Service; c:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe [2007-12-03 126976]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2010-05-07 1051976]
S2 WinTaskAdmin;WinTaskAdmin; C:\Program Files\WinTask\Bin\TaskAdmin.exe []
S2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
S3 CanalPlus.VOD;CanalPlus.VOD; C:\Program Files\Canal\Canal Widget\VOD\CanalPlus.VOD.exe [2010-07-06 188416]
S3 ConfigFree Service;ConfigFree Service; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [2007-12-25 40960]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-09-22 1493352]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-24 183280]
S3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 HsfXAudioService;HsfXAudioService; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 RapiMgr;Connectivité de l'appareil Windows Mobile; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 Service CANALPLAY;Service CANALPLAY; C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe [2008-06-20 436096]
S3 wampapache;wampapache; c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe -k runservice []
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-07-09 144712]
S4 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [2010-09-04 435016]
S4 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2006-08-23 49152]
S4 UxTuneUp;TuneUp Extension de thème; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S4 wampmysqld;wampmysqld; c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe wampmysqld []
S4 WcesComm;Connectivité de l'appareil Windows Mobile 2003; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S4 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2007-10-17 386560]

-----------------EOF-----------------

Ensuite fais ceci:
Télécharge Malwarebytes' Anti-Malware (MBAM)

[*] Double clique sur le fichier téléchargé pour lancer le processus d'installation.
[*] Dans l'onglet "Mise à jour", clique sur le bouton "Recherche de mise à jour": si le pare-feu demande l'autorisation à MBAM de se connecter, accepte.
[*] Une fois la mise à jour terminée, rends-toi dans l'onglet "Recherche".
[*] Sélectionne "Exécuter un examen rapide"
[*] Clique sur "Rechercher"
[*] L'analyse démarre, le scan est relativement long, c'est normal.
[*] A la fin de l'analyse, un message s'affiche :


Citation

L'examen s'est terminé normalement. Clique sur 'Afficher les résultats' pour afficher tous les objets trouvés.


Clique sur "Ok" pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
[*] Ferme tes navigateurs.
[*] Si des malwares ont été détectés, clique sur Afficher les résultats.
Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.
[*] MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport et poste-le dans ta prochaine réponse.

ps:
--->aide visuelle sur Mbam ici

Ci-dessous le rapport

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Version de la base de données: 5121

Windows 6.0.6002 Service Pack 2 (Safe Mode)
Internet Explorer 9.0.7930.16406

15/11/2010 19:52:09
mbam-log-2010-11-15 (19-52-09).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 154601
Temps écoulé: 12 minute(s), 47 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 4
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 16

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\AppID\{0d82acd6-a652-4496-a298-2bde705f4227} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{7025e484-d4b0-441a-9f0b-69063bd679ce} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{8258b35c-05b8-4c0e-9525-9bccc70f8f2d} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{a89256ad-ec17-4a83-bef5-4b8bc4f39306} (Adware.ClickPotato) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform\srs_it_e879027eb07659523eae97 (Malware.Trace) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\Users\Jérémy\AppData\Roaming\02000000fea2eaf71003C.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\Users\Jérémy\AppData\Roaming\02000000fea2eaf71003O.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\Users\Jérémy\AppData\Roaming\02000000fea2eaf71003P.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\Users\Jérémy\AppData\Roaming\02000000fea2eaf71003S.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\Users\Jérémy\AppData\Roaming\02000000fea2eaf7669C.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\Users\Jérémy\AppData\Roaming\02000000fea2eaf7669O.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\Users\Jérémy\AppData\Roaming\02000000fea2eaf7669P.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\Users\Jérémy\AppData\Roaming\02000000fea2eaf7669S.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\Users\Jérémy\AppData\Roaming\02000000fea2eaf7670C.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\Users\Jérémy\AppData\Roaming\02000000fea2eaf7670O.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\Users\Jérémy\AppData\Roaming\02000000fea2eaf7670P.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\Users\Jérémy\AppData\Roaming\02000000fea2eaf7670S.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\Users\Jérémy\AppData\Roaming\02000000fea2eaf7684C.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\Users\Jérémy\AppData\Roaming\02000000fea2eaf7684O.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\Users\Jérémy\AppData\Roaming\02000000fea2eaf7684P.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\Users\Jérémy\AppData\Roaming\02000000fea2eaf7684S.manifest (Malware.Trace) -> Quarantined and deleted successfully.

Je joins également rapport gmer.

GMER 1.0.15.15530 - http://www.gmer.net
Rootkit scan 2010-11-15 22:54:40
Windows 6.0.6002 Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0 TOSHIBA_ rev.LV01
Running: qncl7srw.exe; Driver: C:\Users\JRMY~1\AppData\Local\Temp\kwryiaob.sys


---- Kernel code sections - GMER 1.0.15 ----

.text C:\Windows\system32\DRIVERS\tos_sps32.sys section is writeable [0x8855D000, 0x4036D, 0xE8000020]
.dsrt C:\Windows\system32\DRIVERS\tos_sps32.sys unknown last section [0x885A6000, 0x510, 0x40000040]

---- User IAT/EAT - GMER 1.0.15 ----

IAT C:\Windows\Explorer.EXE[1436] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusShutdown] [73F37817] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1436] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCloneImage] [73F8A86D] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1436] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDrawImageRectI] [73F3BB22] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1436] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetInterpolationMode] [73F2F695] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1436] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusStartup] [73F375E9] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1436] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateFromHDC] [73F2E7CA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1436] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStreamICM] [73F68395] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1436] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStream] [73F3DA60] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1436] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageHeight] [73F2FFFA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1436] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageWidth] [73F2FF61] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1436] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDisposeImage] [73F271CF] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1436] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFileICM] [73FBCAE2] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1436] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFile] [73F5C8D8] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1436] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDeleteGraphics] [73F2D968] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1436] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipFree] [73F26853] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1436] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipAlloc] [73F2687E] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1436] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetCompositingMode] [73F32AD1] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

---- Devices - GMER 1.0.15 ----

AttachedDevice \Driver\kbdclass \Device\KeyboardClass0 Wdf01000.sys (WDF dynamique/Microsoft Corporation)
AttachedDevice \Driver\kbdclass \Device\KeyboardClass1 Wdf01000.sys (WDF dynamique/Microsoft Corporation)

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0xE6 0x82 0xBE 0xB3 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0x53 0x76 0x7E 0x5F ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0xA0 0x9E 0x59 0x7B ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0x44 0x8A 0xDA 0xEA ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 1
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0xE6 0x82 0xBE 0xB3 ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0x53 0x76 0x7E 0x5F ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0xA0 0x9E 0x59 0x7B ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0x44 0x8A 0xDA 0xEA ...
Reg HKLM\SOFTWARE\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32@cd042efbbd7f7af1647644e76e06692b 0xE2 0x63 0x26 0xF1 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32@bca643cdc5c2726b20d2ecedcc62c59b 0x71 0x3B 0x04 0x66 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32@2c81e34222e8052573023a60d06dd016 0xFF 0x7C 0x85 0xE0 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32@2582ae41fb52324423be06337561aa48 0x6B 0x65 0x49 0x6A ...
Reg HKLM\SOFTWARE\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32@caaeda5fd7a9ed7697d9686d4b818472 0xCD 0x44 0xCD 0xB9 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32@a4a1bcf2cc2b8bc3716b74b2b4522f5d 0xB0 0x18 0xED 0xA7 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32@4d370831d2c43cd13623e232fed27b7b 0x97 0x20 0x4E 0x9A ...
Reg HKLM\SOFTWARE\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32@1d68fe701cdea33e477eb204b76f993d 0x01 0x3A 0x48 0xFC ...
Reg HKLM\SOFTWARE\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32@1fac81b91d8e3c5aa4b0a51804d844a3 0x51 0xFA 0x6E 0x91 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32@f5f62a6129303efb32fbe080bb27835b 0xB1 0xCD 0x45 0x5A ...
Reg HKLM\SOFTWARE\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32@fd4e2e1a3940b94dceb5a6a021f2e3c6 0xE3 0x0E 0x66 0xD5 ...
Reg HKLM\SOFTWARE\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32
Reg HKLM\SOFTWARE\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32@ThreadingModel Apartment
Reg HKLM\SOFTWARE\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32@ C:\Windows\system32\OLE32.DLL
Reg HKLM\SOFTWARE\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32@8a8aec57dd6508a385616fbc86791ec2 0x6C 0x43 0x2D 0x1E ...
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{D5D51130-7B5C-66E8-DC27-5A3DBE59AA64}
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{D5D51130-7B5C-66E8-DC27-5A3DBE59AA64}@iapkkjgcinohngdbpa 0x6B 0x61 0x64 0x70 ...
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{D5D51130-7B5C-66E8-DC27-5A3DBE59AA64}@jajkmipfnfgfgnklngin 0x6B 0x61 0x64 0x70 ...

---- EOF - GMER 1.0.15 ----

Le rapport Combofix. En espérant vous aider, je ne touche à rien en attendant.

ComboFix 10-11-15.05 - Jérémy 16/11/2010 9:26.2.1 - x86
Microsoft® Windows Vista™ Édition Familiale Basique 6.0.6002.2.1252.33.1036.18.2037.916 [GMT 1:00]
Lancé depuis: c:\users\Jérémy\Desktop\ComboFix.exe
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\programdata\SysWoW32
c:\programdata\SysWoW32\_u705745702v0
c:\programdata\SysWoW32\mu705745702v4.kwd
c:\programdata\SysWoW32\mu705745702v5.kwd
c:\programdata\SysWoW32\mu705745702v6.kwd
c:\programdata\SysWoW32\mu705745702v7.kwd
c:\programdata\SysWoW32\wu705745702v0
c:\programdata\SysWoW32\wu705745702v0.kwd
c:\programdata\SysWoW32\wu705745702v1.kwd
c:\programdata\SysWoW32\wu705745702v2.kwd
c:\programdata\SysWoW32\wu705745702v3.kwd
c:\programdata\unrar.exe

.
((((((((((((((((((((((((((((( Fichiers créés du 2010-10-16 au 2010-11-16 ))))))))))))))))))))))))))))))))))))
.

2010-11-16 08:41 . 2010-11-16 08:42 -------- d-----w- c:\users\Jérémy\AppData\Local\temp
2010-11-16 08:41 . 2010-11-16 08:41 -------- d-----w- c:\users\Public\AppData\Local\temp
2010-11-16 08:41 . 2010-11-16 08:41 -------- d-----w- c:\users\Invité\AppData\Local\temp
2010-11-16 08:41 . 2010-11-16 08:41 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-11-15 11:42 . 2010-10-07 15:21 6146896 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{473E56D9-AD86-400A-8984-E33DBF0699E7}\mpengine.dll
2010-11-14 16:24 . 2010-11-14 16:24 -------- d-----w- c:\users\Jérémy\AppData\Roaming\Avira
2010-11-14 16:21 . 2010-08-17 12:39 126856 ----a-w- c:\windows\system32\drivers\avipbb.sys
2010-11-14 16:21 . 2010-08-17 12:39 60936 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2010-11-14 16:21 . 2010-11-14 16:21 -------- d-----w- c:\programdata\Avira
2010-11-14 16:21 . 2010-11-14 16:21 -------- d-----w- c:\program files\Avira
2010-11-14 12:18 . 2010-11-15 18:03 -------- d-----w- c:\program files\trend micro
2010-11-14 12:18 . 2010-11-15 17:56 -------- d-----w- C:\rsit
2010-11-11 12:50 . 2010-11-12 18:49 -------- d-----w- c:\program files\AutomateBuilder
2010-11-10 21:43 . 2010-10-07 11:37 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat
2010-11-07 19:44 . 2010-11-07 19:44 -------- d-----w- c:\program files\PowerISO
2010-11-06 11:47 . 2010-11-14 22:32 -------- d-----w- c:\users\Jérémy\AppData\Roaming\Mipony
2010-11-05 08:03 . 2010-11-05 08:03 -------- d-----w- c:\users\Jérémy\AppData\Roaming\Management-Ware Solutions Inc
2010-11-05 08:03 . 2010-11-05 08:03 -------- dc-h--w- c:\programdata\{0B060988-B414-420C-BAAC-D4320DF97431}
2010-10-26 23:22 . 2010-08-26 16:34 1696256 ----a-w- c:\windows\system32\gameux.dll
2010-10-26 23:21 . 2010-08-26 16:33 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2010-10-26 23:21 . 2010-08-26 14:23 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2010-10-26 09:51 . 2010-10-26 09:51 388096 ----a-w- c:\users\Jérémy\AppData\Roaming\Microsoft\Installer\{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}\HiJackThis.exe
2010-10-26 09:51 . 2010-10-26 09:51 -------- d-----w- c:\program files\TrendMicro
2010-10-22 16:00 . 2010-10-22 16:00 -------- d-----w- c:\windows\fr
2010-10-22 16:00 . 2010-09-22 22:21 39272 ----a-w- c:\windows\system32\drivers\fssfltr.sys
2010-10-22 15:55 . 2009-09-04 15:44 69464 ----a-w- c:\windows\system32\XAPOFX1_3.dll
2010-10-22 15:55 . 2009-09-04 15:44 515416 ----a-w- c:\windows\system32\XAudio2_5.dll
2010-10-22 15:55 . 2009-09-04 15:29 453456 ----a-w- c:\windows\system32\d3dx10_42.dll
2010-10-21 12:01 . 2010-10-21 12:01 469256 ----a-w- c:\program files\Common Files\Windows Live\.cache\9ee0c0381cb71172b\InstallManager_WLE_WLE.exe
2010-10-21 11:58 . 2010-10-21 11:58 15712 ----a-w- c:\program files\Common Files\Windows Live\.cache\49b9e4681cb71171f\MeshBetaRemover.exe
2010-10-21 11:56 . 2010-10-21 11:56 525656 ----a-w- c:\program files\Common Files\Windows Live\.cache\d87e3781cb711718\DXSETUP.exe
2010-10-21 11:56 . 2010-10-21 11:56 1691480 ----a-w- c:\program files\Common Files\Windows Live\.cache\d87e3781cb711718\dsetup32.dll
2010-10-21 11:56 . 2010-10-21 11:56 94040 ----a-w- c:\program files\Common Files\Windows Live\.cache\d87e3781cb711718\DSETUP.dll
2010-10-21 11:56 . 2010-10-21 11:56 94040 ----a-w- c:\program files\Common Files\Windows Live\.cache\6d409a81cb711717\DSETUP.dll
2010-10-21 11:56 . 2010-10-21 11:56 525656 ----a-w- c:\program files\Common Files\Windows Live\.cache\6d409a81cb711717\DXSETUP.exe
2010-10-21 11:56 . 2010-10-21 11:56 1691480 ----a-w- c:\program files\Common Files\Windows Live\.cache\6d409a81cb711717\dsetup32.dll
2010-10-21 11:53 . 2010-11-16 00:23 -------- d-----w- c:\users\Jérémy\AppData\Local\Windows Live
2010-10-21 11:52 . 2009-08-04 08:02 754688 ----a-w- c:\windows\system32\webservices.dll
2010-10-19 12:54 . 2010-10-19 12:54 -------- d-----w- c:\windows\UltraDefrag

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-10-26 09:51 . 2010-10-26 09:51 388096 ----a-w- c:\users\Jérémy\AppData\Roaming\Microsoft\Installer\{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}\HiJackThis.exe
2010-10-26 09:51 . 2010-10-26 09:51 388096 ----a-w- c:\users\Jérémy\AppData\Roaming\Microsoft\Installer\{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}\HiJackThis.exe
2010-10-19 20:51 . 2009-10-03 03:48 222080 ------w- c:\windows\system32\MpSigStub.exe
2010-10-07 15:21 . 2009-11-04 12:48 6146896 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2010-09-24 07:49 . 2010-09-24 07:49 8704 ----a-w- c:\windows\system32\bootexctrl.exe
2010-09-24 07:49 . 2010-09-24 07:49 11776 ----a-w- c:\windows\system32\wgx.dll
2010-09-24 07:49 . 2010-09-24 07:49 24576 ----a-w- c:\windows\system32\udefrag.exe
2010-09-24 07:49 . 2010-09-24 07:49 14848 ----a-w- c:\windows\system32\lua5.1a_gui.exe
2010-09-24 07:49 . 2010-09-24 07:49 10752 ----a-w- c:\windows\system32\lua5.1a.exe
2010-09-24 07:48 . 2010-09-24 07:48 92160 ----a-w- c:\windows\system32\lua5.1a.dll
2010-09-24 07:48 . 2010-09-24 07:48 8192 ----a-w- c:\windows\system32\udefrag.dll
2010-09-24 07:48 . 2010-09-24 07:48 6144 ----a-w- c:\windows\system32\hibernate4win.exe
2010-09-24 07:48 . 2010-09-24 07:48 48640 ----a-w- c:\windows\system32\udefrag-kernel.dll
2010-09-24 07:48 . 2010-09-24 07:48 47104 ----a-w- c:\windows\system32\zenwinx.dll
2010-09-24 07:48 . 2010-09-24 07:48 88064 ----a-w- c:\windows\system32\defrag_native.exe
2010-09-22 22:47 . 2010-09-22 22:47 49016 ----a-w- c:\windows\system32\sirenacm.dll
2010-09-22 22:32 . 2010-09-22 22:32 301936 ----a-w- c:\windows\WLXPGSS.SCR
2010-09-15 02:50 . 2010-05-10 08:26 472808 ----a-w- c:\windows\system32\deployJava1.dll
2010-09-13 13:56 . 2010-10-14 10:12 8147456 ----a-w- c:\windows\system32\wmploc.DLL
2010-09-10 07:33 . 2010-10-13 16:10 13256 ----a-w- c:\users\Jérémy\cc_20100910_073352.reg
2010-09-10 07:33 . 2010-10-13 16:10 13256 ----a-w- c:\users\Jérémy\cc_20100910_073352.reg
2010-09-06 16:20 . 2010-10-14 10:12 125952 ----a-w- c:\windows\system32\srvsvc.dll
2010-09-06 16:19 . 2010-10-14 10:12 17920 ----a-w- c:\windows\system32\netevent.dll
2010-09-06 13:45 . 2010-10-14 10:12 304128 ----a-w- c:\windows\system32\drivers\srv.sys
2010-09-06 13:45 . 2010-10-14 10:12 145408 ----a-w- c:\windows\system32\drivers\srv2.sys
2010-09-06 13:45 . 2010-10-14 10:12 102400 ----a-w- c:\windows\system32\drivers\srvnet.sys
2010-08-31 22:46 . 2010-10-11 20:34 1355264 ----a-w- c:\windows\system32\jscript9.dll
2010-08-31 22:44 . 2010-10-11 20:34 367104 ----a-w- c:\windows\system32\html.iec
2010-08-31 22:44 . 2010-10-11 20:34 1448448 ----a-w- c:\windows\system32\inetcpl.cpl
2010-08-31 22:44 . 2010-10-11 20:34 1122304 ----a-w- c:\windows\system32\wininet.dll
2010-08-31 22:44 . 2010-10-11 20:34 424960 ----a-w- c:\windows\system32\vbscript.dll
2010-08-31 22:43 . 2010-10-11 20:34 23552 ----a-w- c:\windows\system32\licmgr10.dll
2010-08-31 22:43 . 2010-10-11 20:34 72704 ----a-w- c:\windows\system32\SetDepNx.exe
2010-08-31 22:43 . 2010-10-11 20:34 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2010-08-31 22:43 . 2010-10-11 20:34 114176 ----a-w- c:\windows\system32\iesysprep.dll
2010-08-31 22:43 . 2010-10-11 20:34 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2010-08-31 22:43 . 2010-10-11 20:34 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2010-08-31 22:42 . 2010-10-11 20:34 51200 ----a-w- c:\windows\system32\admparse.dll
2010-08-31 22:42 . 2010-10-11 20:34 75264 ----a-w- c:\windows\system32\iesetup.dll
2010-08-31 22:42 . 2010-10-11 20:34 110592 ----a-w- c:\windows\system32\IEAdvpack.dll
2010-08-31 22:42 . 2010-10-11 20:34 150016 ----a-w- c:\windows\system32\iexpress.exe
2010-08-31 22:42 . 2010-10-11 20:34 149504 ----a-w- c:\windows\system32\wextract.exe
2010-08-31 22:42 . 2010-10-11 20:34 33280 ----a-w- c:\windows\system32\imgutil.dll
2010-08-31 22:42 . 2010-10-11 20:34 48640 ----a-w- c:\windows\system32\mshtmler.dll
2010-08-31 22:42 . 2010-10-11 20:34 11264 ----a-w- c:\windows\system32\mshta.exe
2010-08-31 22:42 . 2010-10-11 20:34 2381824 ----a-w- c:\windows\system32\mshtml.tlb
2010-08-31 22:42 . 2010-10-11 20:34 63488 ----a-w- c:\windows\system32\tdc.ocx
2010-08-31 22:41 . 2010-10-11 20:34 160768 ----a-w- c:\windows\system32\msls31.dll
2010-08-31 15:46 . 2010-10-14 10:10 954752 ----a-w- c:\windows\system32\mfc40.dll
2010-08-31 15:46 . 2010-10-14 10:10 954288 ----a-w- c:\windows\system32\mfc40u.dll
2010-08-31 15:44 . 2010-10-14 10:13 531968 ----a-w- c:\windows\system32\comctl32.dll
2010-08-31 13:27 . 2010-10-14 10:09 2038272 ----a-w- c:\windows\system32\win32k.sys
2010-08-26 16:37 . 2010-10-14 10:10 157184 ----a-w- c:\windows\system32\t2embed.dll
2010-08-26 16:33 . 2010-10-26 23:21 173056 ----a-w- c:\windows\apppatch\AcXtrnal.dll
2010-08-26 16:33 . 2010-10-26 23:21 458752 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2010-08-26 16:33 . 2010-10-26 23:21 2159616 ----a-w- c:\windows\apppatch\AcGenral.dll
2010-08-26 16:33 . 2010-10-26 23:21 542720 ----a-w- c:\windows\apppatch\AcLayers.dll
2010-08-20 16:05 . 2010-10-14 10:09 867328 ----a-w- c:\windows\system32\wmpmde.dll
.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WahOO"="c:\users\Jérémy\AppData\Local\WahOO\WahOO.exe" [2010-10-11 2238464]
"E09FXLRD_6746356"="c:\program files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE" [2008-05-28 351000]
"E09FXLRD_50209046"="c:\program files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE" [2008-05-28 351000]
"E09FXLRD_3768734"="c:\program files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE" [2008-05-28 351000]
"E09FXLRD_24566709"="c:\program files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE" [2008-05-28 351000]
"E09FXLRD_1727867"="c:\program files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE" [2008-05-28 351000]
"E09FXLRD_17239249"="c:\program files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE" [2008-05-28 351000]
"E09FXLRD_12907195"="c:\program files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE" [2008-05-28 351000]
"E09FXLRD_1160007"="c:\program files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE" [2008-05-28 351000]
"Connexion SFR 9props.exe"="c:\program files\Neuf\Kit\9props.exe" [2008-01-15 1103088]
"9Giga Synchro"="c:\program files\SFR\9Giga Synchro\9Giga_Synchro.exe" [2008-12-19 6931848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-08-14 1348904]
"MSSE"="c:\program files\Microsoft Security Essentials\msseces.exe" [2010-09-15 1094224]
"RtHDVCpl"="RtHDVCpl.exe" [2008-01-29 4911104]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2010-04-29 437584]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2010-08-17 281768]
"Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2010-04-29 1090952]
"SFR"="c:\program files\SFR\SFR.exe" [2009-09-25 954456]
"WinampAgent"="c:\program files\Winamp\winampa.exe" [2010-01-12 37888]
"Skytel"="Skytel.exe" [2007-11-20 1826816]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-09-04 417792]
"PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2010-04-12 180224]
"Google Quick Search Box"="c:\program files\Google\Quick Search Box\GoogleQuickSearchBox.exe" [2009-10-09 122880]

c:\users\J‚r‚my\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
TRDCReminder.lnk - c:\program files\TOSHIBA\TRDCReminder\TRDCReminder.exe [2007-7-27 389120]

c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
TRDCReminder.lnk - c:\program files\TOSHIBA\TRDCReminder\TRDCReminder.exe [2007-7-27 389120]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoWinKeys"= 1 (0x1)
"NoSMMyDocs"= 1 (0x1)
"NoFavoritesMenu"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer5"=wdmaud.drv

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AutoUpdate Monitor.lnk]
backup=c:\windows\pss\AutoUpdate Monitor.lnk.CommonStartup
backupExtension=.CommonStartup

[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
backup=c:\windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
backupExtension=.CommonStartup

[HKLM\~\startupfolder\C:^Users^Jérémy^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^syspck32.exe]
backup=c:\windows\pss\syspck32.exe.Startup
backupExtension=.Startup
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\rfagent

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"WMPNSCFG"=c:\program files\Windows Media Player\WMPNSCFG.exe
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"E09FXLRD_7108357"="c:\program files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE" -m
"Connexion SFR 9props.exe"="c:\program files\Neuf\Kit\9props.exe" /trayicon
"BrowserChoice"="c:\windows\System32\browserchoice.exe" /run
"Skype"="c:\program files\Skype\Phone\Skype.exe" /nosplash /minimized
"E09FXLRD_5707156"="c:\program files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE" -m
"E09FXLRD_54684294"="c:\program files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE" -m
"E09FXLRD_17597427"="c:\program files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE" -m
"E09FXLRD_16002005"="c:\program files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE" -m
"E09FXLRD_11305501"="c:\program files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE" -m

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Camera Assistant Software"="c:\program files\Camera Assistant Software for Toshiba\traybar.exe" /start
"fssui"="c:\program files\Windows Live\Family Safety\fsui.exe" -autorun
"topi"=c:\program files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup
"Desktop SMS"=c:\program files\IDM\Desktop SMS\DesktopSMS.exe /auto
"HSON"=%ProgramFiles%\TOSHIBA\TBS\HSON.exe
"HotKeysCmds"=c:\windows\system32\hkcmd.exe
"IgfxTray"=c:\windows\system32\igfxtray.exe
"Persistence"=c:\windows\system32\igfxpers.exe
"SmoothView"=%ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
"00TCrdMain"=%ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
"TPwrMain"=%ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
"Google Quick Search Box"="c:\program files\Google\Quick Search Box\GoogleQuickSearchBox.exe" /autorun
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring"=dword:00000001

R0 dqxuasr;dqxuasr;c:\windows\System32\drivers\ixnbvwbd.sys [x]
R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate;Service Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-02-25 135664]
R2 WinTaskAdmin;WinTaskAdmin;c:\program files\WinTask\Bin\TaskAdmin.exe [x]
R3 ASPI;Advanced SCSI Programming Interface Driver;c:\windows\System32\DRIVERS\ASPI32.sys [2002-07-17 84832]
R3 CanalPlus.VOD;CanalPlus.VOD;c:\program files\Canal\Canal Widget\VOD\CanalPlus.VOD.exe [2010-07-06 188416]
R3 ConfigFree Service;ConfigFree Service;c:\program files\TOSHIBA\ConfigFree\CFSvcs.exe [2007-12-25 40960]
R3 HexTunnelDevice;Hexago Multi-Virtual Tunnel Adapter;c:\windows\system32\DRIVERS\hextun.sys [2009-02-24 22176]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI Service;c:\windows\system32\drivers\IntcHdmi.sys [2007-06-06 111616]
R3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;c:\windows\system32\DRIVERS\ManyCam.sys [x]
R3 Service CANALPLAY;Service CANALPLAY;c:\program files\Lecteur CANALPLAY\CanalPlayService.exe [2008-06-20 436096]
R3 WPFFontCache_v0400;Cache de police de Windows Presentation Foundation 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
R3 WsAudio_DeviceS(1);WsAudio_DeviceS(1);c:\windows\system32\drivers\WsAudio_DeviceS(1).sys [2009-04-23 16640]
S1 RtlProt;Realtke RtlProt WLAN Utility Protocol Driver;c:\windows\system32\DRIVERS\rtlprot.sys [2007-04-23 25896]
S2 AntiVirSchedulerService;Avira AntiVir Planificateur;c:\program files\Avira\AntiVir Desktop\sched.exe [2010-08-17 135336]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2010-04-29 304464]
S2 TOSHIBA SMART Log Service;TOSHIBA SMART Log Service;c:\program files\TOSHIBA\SMARTLogService\TosIPCSrv.exe [2007-12-03 126976]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2010-05-07 1051976]
S3 FwLnk;FwLnk Driver;c:\windows\system32\DRIVERS\FwLnk.sys [2006-11-20 7168]
S3 HsfXAudioService;HsfXAudioService;c:\windows\system32\svchost.exe [2008-01-21 21504]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2010-04-29 20952]
S3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [2010-03-25 42368]
S3 RTL8187B;Adaptateur réseau USB 2.0 54Mbps, 802.11b/g sans fil Realtek RTL8187B;c:\windows\system32\DRIVERS\RTL8187B.sys [2007-12-26 290304]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [2010-02-24 10064]


--- Autres Services/Pilotes en mémoire ---

*NewlyCreated* - APPINFO
*NewlyCreated* - PLUGPLAY

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc
HsfXAudioService REG_MULTI_SZ HsfXAudioService
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
HPService REG_MULTI_SZ HPSLPSVC
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
WindowsMobile REG_MULTI_SZ wcescomm rapimgr
LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Contenu du dossier 'Tâches planifiées'

2010-11-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-25 17:31]

2010-11-16 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-25 17:31]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://google.fr/
uSearchMigratedDefaultURL = hxxp://google.cherche.us/Result.php?client=pub-0420647136319153&cof=GIMP%3A009900%3BT%3A000000%3BALC%3A551a8b%3BGFNT%3AB7B7B7%3BLC%3A2200cc%3BBGC%3AFFFFFF%3BVLC%3A551a8b%3BGALT%3A008B45%3BFORID%3A11%3BDIV%3A%23FFFFF0%3B&ie=ISO-8859-1&q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
mWindow Title =
Trusted Zone: sfr.fr\vod-pc
FF - ProfilePath - c:\users\Jérémy\AppData\Roaming\Mozilla\Firefox\Profiles\t8u3kjpa.default\
FF - prefs.js: browser.search.defaulturl - hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50-ff-shoutcast-chromesbox-en-us&query=
FF - prefs.js: browser.search.selectedEngine - Winamp Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.fr/
FF - prefs.js: keyword.URL - hxxp://redirecterror.sfr.fr/?q=
FF - plugin: c:\program files\Canal\Canal Widget\VOD\npCpVod.dll
FF - plugin: c:\program files\Common Files\Glowria\npFireVMGate.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\NPCARDS.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npPandoWebInst.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- PARAMETRES FIREFOX ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
FF - user.js: browser.sessionstore.resume_from_crash - false
FF - user.js: keyword.URL - hxxp://redirecterror.sfr.fr/?q=
.
- - - - ORPHELINS SUPPRIMES - - - -

AddRemove-uTorrent - c:\program files\uTorrent\uTorrent.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-11-16 09:42
Windows 6.0.6002 Service Pack 2 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------

[HKEY_USERS\S-1-5-21-105076205-141631563-4271315066-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{D5D51130-7B5C-66E8-DC27-5A3DBE59AA64}*]
"iapkkjgcinohngdbpa"=hex:6b,61,64,70,66,6a,6f,66,68,6a,70,6e,70,6a,66,6a,70,64,
67,65,65,64,00,00
"jajkmipfnfgfgnklngin"=hex:6b,61,64,70,66,6a,6f,66,68,6a,70,6e,70,6a,66,6a,70,
64,67,65,65,64,00,00

[HKEY_USERS\S-1-5-21-105076205-141631563-4271315066-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
"??"=hex:07,55,b2,d6,fa,ef,73,93,af,d7,6c,d6,60,4d,4a,ad,5c,dc,a2,6e,32,ae,5e,
86,0c,cc,53,56,a6,28,04,0a,10,34,31,f3,d1,a2,9a,82,89,c5,5e,06,46,45,5b,47,\
"??"=hex:64,a0,df,fc,0c,d3,06,83,b8,46,86,b9,3b,92,66,12

[HKEY_USERS\S-1-5-21-105076205-141631563-4271315066-1000\Software\SecuROM\License information*]
"datasecu"=hex:c4,f3,ab,f0,7f,24,8c,17,98,d2,18,82,88,50,69,e4,85,81,99,4f,7f,
08,5c,78,fa,6d,3d,65,2b,7a,bc,8d,fb,4a,40,fc,20,70,c1,26,b8,83,bb,f3,30,ce,\
"rkeysecu"=hex:df,9e,6f,40,b2,9a,56,38,03,40,dd,79,fb,61,a0,fe

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Heure de fin: 2010-11-16 09:56:23
ComboFix-quarantined-files.txt 2010-11-16 08:56

Avant-CF: 7 713 378 304 octets libres
Après-CF: 7 566 766 080 octets libres

- - End Of File - - 552FFE305EAB7239D7EBD0CEEFF9872C

re,

houlala.....




tu as utilisé des outils interdits sans en avoir été invité par un Helpeur
lire ceci absolument



Combofix + Gmer
Ne jamais faire de tels initiatives sur un Forum d'aide à la décontamination...le mal est fait certe, mais je voudrais que tu prennes conscience que c'est interdit, c'est outil demande une invitation....
Bon maintenant le mal est fait...euhhh, comme se porte ton PC à ce point ?

Bonjour,

Merci de la réponse, pour moi je n'avais utilisé que des outils d'analyse suite aux réponses que j'ai vu ici sur les différents posts. Je pensais faire gagner un peu de temps, et suis sincèrement désolé d'avoir utilisé des outils interdits.
Mon PC ne bloque plus, il semble etre correct mais je n'ai toujours pas acces à options des dossiers,et si sur un dossier je clique sur organiser/option des dossiers et recherche cela me dit "annulé en raison des restrictions ... "
Avec mes excuses, merci de m'aider

re,

Télécharge Lop S&D de Angeldark et Eric71 sur ton bureau.
ici le lien

* Double-clic sur le fichier d'install que tu viens de télécharger
* L'install se lance, Accepte la licence et clic sur suivant,
* Un raccourci va être créé sur le bureau en fin d'install.

* Double-clic sur ce raccourcis.
* Une fenêtre bleue s'ouvre, tape "F" pour accepter Français.
* Une nouvelle fenêtre va s'ouvrir avec un menu à choix multiple.
* Tape 1 pour Rechercher et valide ton choix par la touche Entrée.
* Laisse l'outil travailler, il va générer un rapport, poste le à la suite.

Bonjour,

Ci-dessous le rapport.

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Basique ( v6.0.6002 ) Service Pack 2
X86-based PC ( Multiprocessor Free : Intel(R) Celeron(R) CPU 560 @ 2.13GHz )
BIOS : Default System BIOS
USER : Jérémy ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:55 Go (Free:6 Go)
E:\ (Local Disk) - NTFS - Total:54 Go (Free:9 Go)
F:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 17/11/2010|10:36 )

[ UAC => 1 ]

--------------------\\ Listing des dossiers dans Local

[07/10/2009|07:41] C:\Users\JRMY~1\AppData\Local\7F68A003.il
[14/07/2010|15:26] C:\Users\JRMY~1\AppData\Local\Adobe
[07/08/2009|14:45] C:\Users\JRMY~1\AppData\Local\Apple
[11/08/2009|21:26] C:\Users\JRMY~1\AppData\Local\Apple Computer
[21/11/2008|15:16] C:\Users\JRMY~1\AppData\Local\Application Data
[13/07/2009|17:53] C:\Users\JRMY~1\AppData\Local\Ares
[15/10/2009|12:15] C:\Users\JRMY~1\AppData\Local\ashampoo
[16/11/2010|12:14] C:\Users\JRMY~1\AppData\Local\CometNetwork
[31/10/2009|20:34] C:\Users\JRMY~1\AppData\Local\Deployment
[22/11/2009|19:42] C:\Users\JRMY~1\AppData\Local\DFX
[11/11/2010|17:20] C:\Users\JRMY~1\AppData\Local\Downloaded Installations
[21/04/2009|16:23] C:\Users\JRMY~1\AppData\Local\FullTiltPoker
[12/11/2010|12:59] C:\Users\JRMY~1\AppData\Local\GDIPFONTCACHEV1.DAT
[12/11/2010|19:49] C:\Users\JRMY~1\AppData\Local\Glowria
[01/04/2010|04:48] C:\Users\JRMY~1\AppData\Local\Google
[21/11/2008|15:16] C:\Users\JRMY~1\AppData\Local\Historique
[15/09/2009|14:32] C:\Users\JRMY~1\AppData\Local\HP
[17/11/2010|08:44] C:\Users\JRMY~1\AppData\Local\IconCache.db
[07/10/2009|07:41] C:\Users\JRMY~1\AppData\Local\IndexIE_7F68A003.il
[26/03/2010|10:17] C:\Users\JRMY~1\AppData\Local\MediaMonkey
[01/11/2010|22:20] C:\Users\JRMY~1\AppData\Local\Microsoft
[20/06/2009|19:07] C:\Users\JRMY~1\AppData\Local\Microsoft Games
[12/11/2010|19:49] C:\Users\JRMY~1\AppData\Local\Microsoft Help
[05/11/2009|18:21] C:\Users\JRMY~1\AppData\Local\Mozilla
[29/11/2008|14:27] C:\Users\JRMY~1\AppData\Local\Neuf
[12/11/2010|19:49] C:\Users\JRMY~1\AppData\Local\PokerStars
[12/11/2010|19:49] C:\Users\JRMY~1\AppData\Local\PokerStars.FR
[27/01/2009|20:58] C:\Users\JRMY~1\AppData\Local\Seven Zip
[29/12/2008|11:19] C:\Users\JRMY~1\AppData\Local\SFR
[17/11/2010|10:35] C:\Users\JRMY~1\AppData\Local\temp
[21/11/2008|15:16] C:\Users\JRMY~1\AppData\Local\Temporary Internet Files
[21/11/2008|15:25] C:\Users\JRMY~1\AppData\Local\Toshiba
[12/10/2009|11:39] C:\Users\JRMY~1\AppData\Local\VirtualStore
[12/11/2010|19:49] C:\Users\JRMY~1\AppData\Local\WahOO
[16/11/2010|01:23] C:\Users\JRMY~1\AppData\Local\Windows Live
[15/05/2009|15:32] C:\Users\JRMY~1\AppData\Local\Windows Live Writer
[22/11/2009|14:43] C:\Users\JRMY~1\AppData\Local\WinZip

--------------------\\ Tâches planifiées dans C:\Windows\tasks

[17/11/2010 10:01][--a------] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[17/11/2010 08:51][--a------] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[17/11/2010 08:51][--ah-----] C:\Windows\tasks\SA.DAT
[17/11/2010 08:44][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing des dossiers dans C:\ProgramData

[05/11/2010|09:03] C:\ProgramData\{0B060988-B414-420C-BAAC-D4320DF97431}
[20/03/2009|18:38] C:\ProgramData\{55A29068-F2CE-456C-9148-C869879E2357}
[07/08/2009|14:57] C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[04/02/2010|21:16] C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[27/02/2009|18:25] C:\ProgramData\0320
[20/03/2009|12:45] C:\ProgramData\1053
[07/03/2009|19:04] C:\ProgramData\27E9
[07/03/2009|09:18] C:\ProgramData\2B2ED
[27/02/2009|22:59] C:\ProgramData\3418C
[10/09/2010|12:50] C:\ProgramData\538630444
[10/03/2009|20:25] C:\ProgramData\6186
[27/03/2009|20:11] C:\ProgramData\Acronis
[06/06/2010|16:02] C:\ProgramData\Adobe
[07/08/2009|14:44] C:\ProgramData\Apple
[17/10/2009|12:09] C:\ProgramData\Apple Computer
[02/11/2006|13:59] C:\ProgramData\Application Data
[15/10/2009|12:15] C:\ProgramData\ashampoo
[14/11/2010|17:21] C:\ProgramData\Avira
[16/02/2009|18:34] C:\ProgramData\Blizzard
[13/04/2010|11:34] C:\ProgramData\boost_interprocess
[21/11/2008|15:12] C:\ProgramData\Bureau
[02/11/2006|13:59] C:\ProgramData\Desktop
[22/11/2009|19:43] C:\ProgramData\DFX
[02/11/2006|13:59] C:\ProgramData\Documents
[25/03/2010|10:33] C:\ProgramData\Downloaded Installations
[04/03/2009|23:00] C:\ProgramData\E2CB
[14/07/2010|15:30] C:\ProgramData\EA Core
[14/07/2010|15:30] C:\ProgramData\Electronic Arts
[14/09/2009|11:46] C:\ProgramData\EmailNotifier
[21/11/2008|23:21] C:\ProgramData\ezsidmv.dat
[21/11/2008|15:12] C:\ProgramData\Favoris
[02/11/2006|13:59] C:\ProgramData\Favorites
[13/09/2009|17:32] C:\ProgramData\Fighters
[11/09/2010|18:31] C:\ProgramData\FileOpen
[01/06/2010|20:18] C:\ProgramData\Google
[16/09/2009|11:10] C:\ProgramData\HP
[16/09/2009|11:10] C:\ProgramData\HP Product Assistant
[05/08/2010|13:55] C:\ProgramData\hpzinstall.log
[20/12/2008|22:25] C:\ProgramData\IsolatedStorage
[11/11/2009|14:29] C:\ProgramData\Malwarebytes
[21/11/2008|15:12] C:\ProgramData\Menu D‚marrer
[22/10/2010|16:57] C:\ProgramData\Microsoft
[27/03/2009|19:13] C:\ProgramData\Microsoft Help
[21/11/2008|15:12] C:\ProgramData\ModŠles
[16/11/2010|15:27] C:\ProgramData\ntuser.pol
[30/11/2009|15:27] C:\ProgramData\Pinnacle
[01/06/2010|20:18] C:\ProgramData\Real
[29/12/2008|11:19] C:\ProgramData\SFR
[03/03/2010|14:56] C:\ProgramData\Skype
[02/11/2006|13:59] C:\ProgramData\Start Menu
[10/05/2010|09:28] C:\ProgramData\Sun
[24/03/2010|09:38] C:\ProgramData\Symantec
[02/11/2006|13:59] C:\ProgramData\Templates
[01/06/2010|20:18] C:\ProgramData\TOSHIBA
[21/11/2008|15:16] C:\ProgramData\ToshibaEurope
[04/02/2010|21:16] C:\ProgramData\TuneUp Software
[15/02/2008|15:13] C:\ProgramData\Ulead Systems
[16/09/2009|11:16] C:\ProgramData\WEBREG
[12/11/2009|22:59] C:\ProgramData\Windows Genuine Advantage
[23/11/2009|10:11] C:\ProgramData\WinZip
[28/12/2008|13:55] C:\ProgramData\WLInstaller

--------------------\\ Listing des dossiers dans C:\Program Files

[14/07/2010|15:27] C:\Program Files\Adobe
[19/01/2010|09:53] C:\Program Files\adslTV
[19/10/2009|07:32] C:\Program Files\AhnLab
[07/08/2009|18:04] C:\Program Files\AnglaisFacile.com
[07/08/2009|14:45] C:\Program Files\Apple Software Update
[12/11/2010|19:49] C:\Program Files\AutomateBuilder
[14/11/2010|17:21] C:\Program Files\Avira
[17/11/2010|08:42] C:\Program Files\Camera Assistant Software for Toshiba
[05/10/2010|23:05] C:\Program Files\Camfrog
[07/02/2009|15:24] C:\Program Files\Canal
[20/08/2010|08:40] C:\Program Files\CCleaner
[16/11/2010|09:34] C:\Program Files\Common Files
[09/09/2010|08:14] C:\Program Files\DIFX
[13/07/2009|17:51] C:\Program Files\DNA
[14/07/2010|15:20] C:\Program Files\Electronic Arts
[21/03/2009|21:39] C:\Program Files\ELIXIS
[11/10/2010|21:32] C:\Program Files\Feedback Tool
[21/11/2008|15:12] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[03/09/2010|09:39] C:\Program Files\FileOpen
[14/10/2010|16:50] C:\Program Files\Google
[05/08/2010|13:55] C:\Program Files\HP
[16/09/2009|19:51] C:\Program Files\HTML Help Workshop
[15/02/2008|15:29] C:\Program Files\IDM
[28/09/2009|16:04] C:\Program Files\IEPro
[16/11/2010|01:32] C:\Program Files\InstallShield Installation Information
[21/11/2008|15:04] C:\Program Files\Intel
[11/10/2010|21:37] C:\Program Files\Internet Explorer
[15/02/2008|15:14] C:\Program Files\InterVideo
[25/10/2010|18:02] C:\Program Files\Java
[16/11/2010|15:30] C:\Program Files\jv16 PowerTools
[22/10/2009|19:28] C:\Program Files\Lecteur CANALPLAY
[17/01/2009|00:34] C:\Program Files\LG Electronics
[20/05/2010|16:50] C:\Program Files\Malwarebytes' Anti-Malware
[07/04/2010|12:58] C:\Program Files\Messenger Plus! Live
[27/03/2009|19:38] C:\Program Files\Microsoft
[02/05/2010|05:05] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[12/10/2009|12:39] C:\Program Files\Microsoft Encarta
[02/11/2006|13:35] C:\Program Files\Microsoft Games
[14/10/2010|11:19] C:\Program Files\Microsoft Security Essentials
[03/10/2010|07:09] C:\Program Files\Microsoft Silverlight
[10/04/2009|23:03] C:\Program Files\Microsoft SQL Server Compact Edition
[14/09/2010|02:02] C:\Program Files\Microsoft.NET
[26/05/2009|20:19] C:\Program Files\Moniteur neufbox
[12/08/2010|04:47] C:\Program Files\Movie Maker
[16/11/2010|10:11] C:\Program Files\Mozilla Firefox
[02/11/2006|13:35] C:\Program Files\MSBuild
[12/07/2009|19:03] C:\Program Files\MSECache
[09/05/2009|10:34] C:\Program Files\Neuf
[09/06/2010|13:19] C:\Program Files\Notepad++
[15/09/2009|17:23] C:\Program Files\OpenOffice.org 3
[12/07/2009|19:05] C:\Program Files\Photo Story 3 for Windows
[01/07/2010|15:45] C:\Program Files\PokerStars.FR
[28/09/2009|15:58] C:\Program Files\Power IE
[07/11/2010|20:44] C:\Program Files\PowerISO
[01/06/2010|20:18] C:\Program Files\QuickTime
[31/03/2010|14:27] C:\Program Files\Real
[21/11/2008|15:21] C:\Program Files\Realtek
[21/11/2008|15:19] C:\Program Files\REALTEK RTL8187B Wireless LAN Driver
[02/11/2006|13:35] C:\Program Files\Reference Assemblies
[26/10/2009|14:34] C:\Program Files\ScanSoft
[04/12/2009|03:11] C:\Program Files\SFR
[03/03/2010|14:57] C:\Program Files\Skype
[12/07/2009|16:04] C:\Program Files\Sports Interactive
[20/10/2009|12:22] C:\Program Files\SUPERAntiSpyware
[15/02/2008|14:54] C:\Program Files\Synaptics
[15/10/2009|13:59] C:\Program Files\TOSHIBA
[20/12/2008|22:25] C:\Program Files\Toshiba TEMPRO
[15/11/2010|19:03] C:\Program Files\trend micro
[26/10/2010|10:51] C:\Program Files\TrendMicro
[04/09/2010|18:11] C:\Program Files\TuneUp Utilities 2010
[15/02/2008|15:10] C:\Program Files\Ulead Systems
[02/11/2006|13:58] C:\Program Files\Uninstall Information
[14/11/2010|23:34] C:\Program Files\uTorrent
[26/11/2009|19:47] C:\Program Files\VideoLAN
[18/10/2009|17:34] C:\Program Files\Webcam 1200
[04/04/2010|17:58] C:\Program Files\Winamp
[16/09/2009|20:00] C:\Program Files\Windows Calendar
[16/09/2009|20:00] C:\Program Files\Windows Collaboration
[16/09/2009|20:00] C:\Program Files\Windows Defender
[22/10/2010|16:59] C:\Program Files\Windows Live
[26/08/2009|23:10] C:\Program Files\Windows Live Safety Center
[11/11/2010|06:25] C:\Program Files\Windows Mail
[15/10/2010|07:04] C:\Program Files\Windows Media Player
[21/11/2008|15:12] C:\Program Files\Windows NT
[16/09/2009|20:00] C:\Program Files\Windows Photo Gallery
[30/10/2009|11:56] C:\Program Files\Windows Portable Devices
[16/09/2009|20:00] C:\Program Files\Windows Sidebar
[22/05/2010|14:15] C:\Program Files\WinRAR
[13/08/2009|10:15] C:\Program Files\Xvid
[15/11/2010|07:14] C:\Program Files\ZebHelpProcess
[15/11/2010|07:22] C:\Program Files\ZHPDiag

--------------------\\ Listing des dossiers dans C:\Program Files\Common Files

[18/01/2010|10:28] C:\Program Files\Common Files\Adobe
[16/10/2010|13:18] C:\Program Files\Common Files\Adobe AIR
[19/10/2009|07:50] C:\Program Files\Common Files\AhnLab
[17/10/2009|12:01] C:\Program Files\Common Files\Apple
[01/02/2010|13:10] C:\Program Files\Common Files\AVSMedia
[05/05/2010|10:03] C:\Program Files\Common Files\Borland Shared
[29/09/2009|11:46] C:\Program Files\Common Files\Cisco Systems
[22/11/2009|19:41] C:\Program Files\Common Files\DFX
[22/10/2009|19:08] C:\Program Files\Common Files\Glowria
[15/09/2009|13:41] C:\Program Files\Common Files\Hewlett-Packard
[16/09/2009|11:04] C:\Program Files\Common Files\HP
[26/10/2009|14:34] C:\Program Files\Common Files\InstallShield
[22/07/2010|05:06] C:\Program Files\Common Files\Java
[07/04/2010|12:59] C:\Program Files\Common Files\microsoft shared
[22/01/2010|10:34] C:\Program Files\Common Files\NSV
[08/12/2008|23:24] C:\Program Files\Common Files\PX Storage Engine
[23/08/2010|12:48] C:\Program Files\Common Files\Real
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[03/03/2010|14:57] C:\Program Files\Common Files\Skype
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[16/09/2009|20:00] C:\Program Files\Common Files\System
[15/02/2008|15:16] C:\Program Files\Common Files\Toshiba Shared
[15/02/2008|15:14] C:\Program Files\Common Files\Ulead Systems
[27/01/2009|00:26] C:\Program Files\Common Files\Windows Live
[24/11/2008|19:30] C:\Program Files\Common Files\WindowsLiveInstaller
[06/02/2010|15:34] C:\Program Files\Common Files\Wise Installation Wizard

--------------------\\ Process

( 64 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\Users\JRMY~1\AppData\Roaming\MICROS~1\Windows\Cookies\jérémy@advertstream[2].txt
C:\Users\JRMY~1\AppData\Roaming\MICROS~1\Windows\Cookies\jérémy@advertstream[3].txt

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-11-17 10:36:42
Windows 6.0.6002 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
C:\Users\JRMY~1\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DYGQMN0C\wbk66C4.tmp
scan completed successfully
hidden processes: 0
hidden files: 1

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\Users\JRMY~1\Favorites\PC\FranceCrack .. Forum  Page d'index.url


[F:6][D:9]-> C:\Users\JRMY~1\AppData\Local\Temp
[F:64][D:1]-> C:\Users\JRMY~1\AppData\Roaming\MICROS~1\Windows\Cookies
[F:946][D:4]-> C:\Users\JRMY~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:1][D:1]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 17/11/2010|10:41 - Option : [1]

--------------------\\ Fin du rapport a 10:41:28
[ UAC => 1 ]

re, de petits restes:

Relance Lop S&D de Angeldark et Eric71
Cette fois-ci, choisis l'option 2, suppression+Host.
Poste le rapport.

Bonjour,

Ci-dessous le rapport

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Basique ( v6.0.6002 ) Service Pack 2
X86-based PC ( Multiprocessor Free : Intel(R) Celeron(R) CPU 560 @ 2.13GHz )
BIOS : Default System BIOS
USER : Jérémy ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:55 Go (Free:11 Go)
E:\ (Local Disk) - NTFS - Total:54 Go (Free:9 Go)
F:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 19/11/2010|10:37 )

[ UAC => 1 ]


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans Local

[07/10/2009|07:41] C:\Users\JRMY~1\AppData\Local\7F68A003.il
[14/07/2010|15:26] C:\Users\JRMY~1\AppData\Local\Adobe
[07/08/2009|14:45] C:\Users\JRMY~1\AppData\Local\Apple
[11/08/2009|21:26] C:\Users\JRMY~1\AppData\Local\Apple Computer
[21/11/2008|15:16] C:\Users\JRMY~1\AppData\Local\Application Data
[13/07/2009|17:53] C:\Users\JRMY~1\AppData\Local\Ares
[15/10/2009|12:15] C:\Users\JRMY~1\AppData\Local\ashampoo
[16/11/2010|12:14] C:\Users\JRMY~1\AppData\Local\CometNetwork
[31/10/2009|20:34] C:\Users\JRMY~1\AppData\Local\Deployment
[22/11/2009|19:42] C:\Users\JRMY~1\AppData\Local\DFX
[11/11/2010|17:20] C:\Users\JRMY~1\AppData\Local\Downloaded Installations
[21/04/2009|16:23] C:\Users\JRMY~1\AppData\Local\FullTiltPoker
[12/11/2010|12:59] C:\Users\JRMY~1\AppData\Local\GDIPFONTCACHEV1.DAT
[12/11/2010|19:49] C:\Users\JRMY~1\AppData\Local\Glowria
[01/04/2010|04:48] C:\Users\JRMY~1\AppData\Local\Google
[21/11/2008|15:16] C:\Users\JRMY~1\AppData\Local\Historique
[15/09/2009|14:32] C:\Users\JRMY~1\AppData\Local\HP
[07/10/2009|07:41] C:\Users\JRMY~1\AppData\Local\IndexIE_7F68A003.il
[26/03/2010|10:17] C:\Users\JRMY~1\AppData\Local\MediaMonkey
[01/11/2010|22:20] C:\Users\JRMY~1\AppData\Local\Microsoft
[20/06/2009|19:07] C:\Users\JRMY~1\AppData\Local\Microsoft Games
[12/11/2010|19:49] C:\Users\JRMY~1\AppData\Local\Microsoft Help
[05/11/2009|18:21] C:\Users\JRMY~1\AppData\Local\Mozilla
[29/11/2008|14:27] C:\Users\JRMY~1\AppData\Local\Neuf
[12/11/2010|19:49] C:\Users\JRMY~1\AppData\Local\PokerStars
[12/11/2010|19:49] C:\Users\JRMY~1\AppData\Local\PokerStars.FR
[27/01/2009|20:58] C:\Users\JRMY~1\AppData\Local\Seven Zip
[29/12/2008|11:19] C:\Users\JRMY~1\AppData\Local\SFR
[19/11/2010|10:37] C:\Users\JRMY~1\AppData\Local\temp
[21/11/2008|15:16] C:\Users\JRMY~1\AppData\Local\Temporary Internet Files
[21/11/2008|15:25] C:\Users\JRMY~1\AppData\Local\Toshiba
[12/10/2009|11:39] C:\Users\JRMY~1\AppData\Local\VirtualStore
[12/11/2010|19:49] C:\Users\JRMY~1\AppData\Local\WahOO
[19/11/2010|08:37] C:\Users\JRMY~1\AppData\Local\Windows Live
[15/05/2009|15:32] C:\Users\JRMY~1\AppData\Local\Windows Live Writer
[22/11/2009|14:43] C:\Users\JRMY~1\AppData\Local\WinZip

--------------------\\ Tâches planifiées dans C:\Windows\tasks

[19/11/2010 10:01][--a------] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[19/11/2010 10:01][--a------] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[19/11/2010 10:00][--ah-----] C:\Windows\tasks\SA.DAT
[19/11/2010 09:44][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing des dossiers dans C:\ProgramData

[05/11/2010|09:03] C:\ProgramData\{0B060988-B414-420C-BAAC-D4320DF97431}
[20/03/2009|18:38] C:\ProgramData\{55A29068-F2CE-456C-9148-C869879E2357}
[07/08/2009|14:57] C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[04/02/2010|21:16] C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[27/02/2009|18:25] C:\ProgramData\0320
[20/03/2009|12:45] C:\ProgramData\1053
[07/03/2009|19:04] C:\ProgramData\27E9
[07/03/2009|09:18] C:\ProgramData\2B2ED
[27/02/2009|22:59] C:\ProgramData\3418C
[10/09/2010|12:50] C:\ProgramData\538630444
[10/03/2009|20:25] C:\ProgramData\6186
[27/03/2009|20:11] C:\ProgramData\Acronis
[06/06/2010|16:02] C:\ProgramData\Adobe
[07/08/2009|14:44] C:\ProgramData\Apple
[17/10/2009|12:09] C:\ProgramData\Apple Computer
[02/11/2006|13:59] C:\ProgramData\Application Data
[15/10/2009|12:15] C:\ProgramData\ashampoo
[14/11/2010|17:21] C:\ProgramData\Avira
[16/02/2009|18:34] C:\ProgramData\Blizzard
[13/04/2010|11:34] C:\ProgramData\boost_interprocess
[21/11/2008|15:12] C:\ProgramData\Bureau
[02/11/2006|13:59] C:\ProgramData\Desktop
[22/11/2009|19:43] C:\ProgramData\DFX
[02/11/2006|13:59] C:\ProgramData\Documents
[25/03/2010|10:33] C:\ProgramData\Downloaded Installations
[04/03/2009|23:00] C:\ProgramData\E2CB
[14/07/2010|15:30] C:\ProgramData\EA Core
[14/07/2010|15:30] C:\ProgramData\Electronic Arts
[14/09/2009|11:46] C:\ProgramData\EmailNotifier
[21/11/2008|23:21] C:\ProgramData\ezsidmv.dat
[21/11/2008|15:12] C:\ProgramData\Favoris
[02/11/2006|13:59] C:\ProgramData\Favorites
[13/09/2009|17:32] C:\ProgramData\Fighters
[11/09/2010|18:31] C:\ProgramData\FileOpen
[01/06/2010|20:18] C:\ProgramData\Google
[16/09/2009|11:10] C:\ProgramData\HP
[16/09/2009|11:10] C:\ProgramData\HP Product Assistant
[05/08/2010|13:55] C:\ProgramData\hpzinstall.log
[20/12/2008|22:25] C:\ProgramData\IsolatedStorage
[11/11/2009|14:29] C:\ProgramData\Malwarebytes
[21/11/2008|15:12] C:\ProgramData\Menu D‚marrer
[22/10/2010|16:57] C:\ProgramData\Microsoft
[27/03/2009|19:13] C:\ProgramData\Microsoft Help
[21/11/2008|15:12] C:\ProgramData\ModŠles
[16/11/2010|15:27] C:\ProgramData\ntuser.pol
[30/11/2009|15:27] C:\ProgramData\Pinnacle
[01/06/2010|20:18] C:\ProgramData\Real
[29/12/2008|11:19] C:\ProgramData\SFR
[03/03/2010|14:56] C:\ProgramData\Skype
[02/11/2006|13:59] C:\ProgramData\Start Menu
[10/05/2010|09:28] C:\ProgramData\Sun
[24/03/2010|09:38] C:\ProgramData\Symantec
[02/11/2006|13:59] C:\ProgramData\Templates
[01/06/2010|20:18] C:\ProgramData\TOSHIBA
[21/11/2008|15:16] C:\ProgramData\ToshibaEurope
[04/02/2010|21:16] C:\ProgramData\TuneUp Software
[15/02/2008|15:13] C:\ProgramData\Ulead Systems
[16/09/2009|11:16] C:\ProgramData\WEBREG
[12/11/2009|22:59] C:\ProgramData\Windows Genuine Advantage
[23/11/2009|10:11] C:\ProgramData\WinZip
[28/12/2008|13:55] C:\ProgramData\WLInstaller

--------------------\\ Listing des dossiers dans C:\Program Files

[14/07/2010|15:27] C:\Program Files\Adobe
[19/01/2010|09:53] C:\Program Files\adslTV
[19/10/2009|07:32] C:\Program Files\AhnLab
[07/08/2009|18:04] C:\Program Files\AnglaisFacile.com
[07/08/2009|14:45] C:\Program Files\Apple Software Update
[12/11/2010|19:49] C:\Program Files\AutomateBuilder
[14/11/2010|17:21] C:\Program Files\Avira
[17/11/2010|08:42] C:\Program Files\Camera Assistant Software for Toshiba
[05/10/2010|23:05] C:\Program Files\Camfrog
[07/02/2009|15:24] C:\Program Files\Canal
[20/08/2010|08:40] C:\Program Files\CCleaner
[18/11/2010|19:29] C:\Program Files\Common Files
[09/09/2010|08:14] C:\Program Files\DIFX
[13/07/2009|17:51] C:\Program Files\DNA
[14/07/2010|15:20] C:\Program Files\Electronic Arts
[21/03/2009|21:39] C:\Program Files\ELIXIS
[17/11/2010|15:35] C:\Program Files\ESET
[11/10/2010|21:32] C:\Program Files\Feedback Tool
[21/11/2008|15:12] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[03/09/2010|09:39] C:\Program Files\FileOpen
[14/10/2010|16:50] C:\Program Files\Google
[05/08/2010|13:55] C:\Program Files\HP
[16/09/2009|19:51] C:\Program Files\HTML Help Workshop
[15/02/2008|15:29] C:\Program Files\IDM
[28/09/2009|16:04] C:\Program Files\IEPro
[16/11/2010|01:32] C:\Program Files\InstallShield Installation Information
[21/11/2008|15:04] C:\Program Files\Intel
[17/11/2010|13:07] C:\Program Files\Internet Explorer
[15/02/2008|15:14] C:\Program Files\InterVideo
[25/10/2010|18:02] C:\Program Files\Java
[16/11/2010|15:30] C:\Program Files\jv16 PowerTools
[22/10/2009|19:28] C:\Program Files\Lecteur CANALPLAY
[17/01/2009|00:34] C:\Program Files\LG Electronics
[20/05/2010|16:50] C:\Program Files\Malwarebytes' Anti-Malware
[07/04/2010|12:58] C:\Program Files\Messenger Plus! Live
[27/03/2009|19:38] C:\Program Files\Microsoft
[02/05/2010|05:05] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[12/10/2009|12:39] C:\Program Files\Microsoft Encarta
[02/11/2006|13:35] C:\Program Files\Microsoft Games
[14/10/2010|11:19] C:\Program Files\Microsoft Security Essentials
[03/10/2010|07:09] C:\Program Files\Microsoft Silverlight
[10/04/2009|23:03] C:\Program Files\Microsoft SQL Server Compact Edition
[14/09/2010|02:02] C:\Program Files\Microsoft.NET
[26/05/2009|20:19] C:\Program Files\Moniteur neufbox
[12/08/2010|04:47] C:\Program Files\Movie Maker
[18/11/2010|21:56] C:\Program Files\Mozilla Firefox
[02/11/2006|13:35] C:\Program Files\MSBuild
[12/07/2009|19:03] C:\Program Files\MSECache
[09/05/2009|10:34] C:\Program Files\Neuf
[09/06/2010|13:19] C:\Program Files\Notepad++
[15/09/2009|17:23] C:\Program Files\OpenOffice.org 3
[12/07/2009|19:05] C:\Program Files\Photo Story 3 for Windows
[01/07/2010|15:45] C:\Program Files\PokerStars.FR
[28/09/2009|15:58] C:\Program Files\Power IE
[07/11/2010|20:44] C:\Program Files\PowerISO
[01/06/2010|20:18] C:\Program Files\QuickTime
[31/03/2010|14:27] C:\Program Files\Real
[21/11/2008|15:21] C:\Program Files\Realtek
[21/11/2008|15:19] C:\Program Files\REALTEK RTL8187B Wireless LAN Driver
[02/11/2006|13:35] C:\Program Files\Reference Assemblies
[26/10/2009|14:34] C:\Program Files\ScanSoft
[04/12/2009|03:11] C:\Program Files\SFR
[03/03/2010|14:57] C:\Program Files\Skype
[12/07/2009|16:04] C:\Program Files\Sports Interactive
[20/10/2009|12:22] C:\Program Files\SUPERAntiSpyware
[15/02/2008|14:54] C:\Program Files\Synaptics
[15/10/2009|13:59] C:\Program Files\TOSHIBA
[20/12/2008|22:25] C:\Program Files\Toshiba TEMPRO
[19/11/2010|07:37] C:\Program Files\trend micro
[19/11/2010|07:37] C:\Program Files\TrendMicro
[15/02/2008|15:10] C:\Program Files\Ulead Systems
[02/11/2006|13:58] C:\Program Files\Uninstall Information
[14/11/2010|23:34] C:\Program Files\uTorrent
[26/11/2009|19:47] C:\Program Files\VideoLAN
[18/10/2009|17:34] C:\Program Files\Webcam 1200
[04/04/2010|17:58] C:\Program Files\Winamp
[16/09/2009|20:00] C:\Program Files\Windows Calendar
[16/09/2009|20:00] C:\Program Files\Windows Collaboration
[16/09/2009|20:00] C:\Program Files\Windows Defender
[22/10/2010|16:59] C:\Program Files\Windows Live
[26/08/2009|23:10] C:\Program Files\Windows Live Safety Center
[11/11/2010|06:25] C:\Program Files\Windows Mail
[15/10/2010|07:04] C:\Program Files\Windows Media Player
[21/11/2008|15:12] C:\Program Files\Windows NT
[16/09/2009|20:00] C:\Program Files\Windows Photo Gallery
[30/10/2009|11:56] C:\Program Files\Windows Portable Devices
[16/09/2009|20:00] C:\Program Files\Windows Sidebar
[22/05/2010|14:15] C:\Program Files\WinRAR
[13/08/2009|10:15] C:\Program Files\Xvid
[19/11/2010|07:37] C:\Program Files\ZebHelpProcess

--------------------\\ Listing des dossiers dans C:\Program Files\Common Files

[18/01/2010|10:28] C:\Program Files\Common Files\Adobe
[16/10/2010|13:18] C:\Program Files\Common Files\Adobe AIR
[19/10/2009|07:50] C:\Program Files\Common Files\AhnLab
[17/10/2009|12:01] C:\Program Files\Common Files\Apple
[01/02/2010|13:10] C:\Program Files\Common Files\AVSMedia
[05/05/2010|10:03] C:\Program Files\Common Files\Borland Shared
[29/09/2009|11:46] C:\Program Files\Common Files\Cisco Systems
[22/11/2009|19:41] C:\Program Files\Common Files\DFX
[22/10/2009|19:08] C:\Program Files\Common Files\Glowria
[15/09/2009|13:41] C:\Program Files\Common Files\Hewlett-Packard
[16/09/2009|11:04] C:\Program Files\Common Files\HP
[26/10/2009|14:34] C:\Program Files\Common Files\InstallShield
[22/07/2010|05:06] C:\Program Files\Common Files\Java
[07/04/2010|12:59] C:\Program Files\Common Files\microsoft shared
[22/01/2010|10:34] C:\Program Files\Common Files\NSV
[08/12/2008|23:24] C:\Program Files\Common Files\PX Storage Engine
[23/08/2010|12:48] C:\Program Files\Common Files\Real
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[03/03/2010|14:57] C:\Program Files\Common Files\Skype
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[16/09/2009|20:00] C:\Program Files\Common Files\System
[15/02/2008|15:16] C:\Program Files\Common Files\Toshiba Shared
[15/02/2008|15:14] C:\Program Files\Common Files\Ulead Systems
[27/01/2009|00:26] C:\Program Files\Common Files\Windows Live
[24/11/2008|19:30] C:\Program Files\Common Files\WindowsLiveInstaller
[06/02/2010|15:34] C:\Program Files\Common Files\Wise Installation Wizard

--------------------\\ Process

( 59 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-11-19 10:37:50
Windows 6.0.6002 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\Users\JRMY~1\Favorites\PC\FranceCrack .. Forum  Page d'index.url


[F:13][D:4]-> C:\Users\JRMY~1\AppData\Local\Temp
[F:4][D:1]-> C:\Users\JRMY~1\AppData\Roaming\MICROS~1\Windows\Cookies
[F:39][D:4]-> C:\Users\JRMY~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:1][D:1]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 19/11/2010|10:44 - Option : [2]

--------------------\\ Fin du rapport a 10:44:06
[ UAC => 1 ]

re-bonjour,


attention à ce site : FranceCrack .. Forum


il y a des dossier que j'aime pas trop:

C:\Users\JRMY~1\AppData\Local\7F68A003.il
ça c'est pour un programme du nom de Leecher, je ne conseille pas du tout...


ainsi que ceci:

C:\Users\JRMY~1\AppData\Local\FullTiltPoker


il y en a d'autres, mais ces applications sont elles vitales pour toi ?

Re-bonjour,

Je voudrais bien supprimer ces fichiers mais je ne les vois pas. Si ce sont des fichiers cachés, je ne peux pas les afficher ne pouvant pas ouvrir options des dossiers ni options des dossiers et recherche dans la barre d'outil organiser. Je ne peux pas faire de ménage dans le répertoite AppData.

Merci de continuer à m'aider

re,

tu n'as pas installé Leecher toi même ?

Re,

Leecher ne me dit rien. En tout cas pas installé récemment.