[[resolu]USB proteger en ecriture]

AH........................... c'est tous bon ,merci angelique excuse le jeu de mots mais" trop bonne "encore merci car ça fonctionne de nouveau.

 

Si tu pouvait un petit topo du bléme que j'ai rencontré que j'y comprenne quelques choses .

 

A +

[[resolu]USB proteger en ecriture]

voilà un ,

 

 

Logfile of random's system information tool 1.06 (written by random/random)

Run by Administrateur at 2009-06-19 15:38:49

WIN_XP Service Pack 3

System drive E: has 6 GB (40%) free of 15 GB

Total RAM: 2047 MB (68% free)

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 15:39:06, on 19/06/2009

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

 

Running processes:

E:\WINDOWS\System32\smss.exe

E:\WINDOWS\system32\winlogon.exe

E:\WINDOWS\system32\services.exe

E:\WINDOWS\system32\lsass.exe

E:\WINDOWS\system32\Ati2evxx.exe

E:\WINDOWS\system32\svchost.exe

E:\WINDOWS\System32\svchost.exe

E:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

E:\WINDOWS\Explorer.EXE

E:\Program Files\Alwil Software\Avast4\ashServ.exe

E:\WINDOWS\system32\spoolsv.exe

E:\Program Files\Alwil Software\Avast4\ashDisp.exe

E:\Program Files\SPAMfighter\SFAgent.exe

E:\WINDOWS\system32\ctfmon.exe

E:\Program Files\Windows Live\Messenger\msnmsgr.exe

E:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe

E:\Program Files\Java\jre6\bin\jqs.exe

E:\Program Files\CDBurnerXP\NMSAccessU.exe

E:\Program Files\SPAMfighter\sfus.exe

E:\WINDOWS\system32\svchost.exe

E:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe

E:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe

E:\Program Files\Alwil Software\Avast4\ashWebSv.exe

E:\Program Files\Windows Live\Messenger\usnsvc.exe

E:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe

E:\Program Files\Softwin\BitDefender10\vsserv.exe

E:\Program Files\Internet Explorer\IEXPLORE.EXE

E:\Program Files\Internet Explorer\IEXPLORE.EXE

E:\Program Files\Internet Explorer\IEXPLORE.EXE

E:\Program Files\Internet Explorer\IEXPLORE.EXE

E:\Program Files\Outlook Express\msimn.exe

E:\Documents and Settings\Administrateur\Bureau\RSIT.exe

E:\Program Files\trend micro\Administrateur.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - E:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll

O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - E:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - E:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - E:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - e:\program files\google\googletoolbar1.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - E:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - E:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O2 - BHO: Cooliris Plug-In for Internet Explorer - {EAEE5C74-6D0D-4aca-9232-0DA4A7B866BA} - (no file)

O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - E:\PROGRA~1\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll

O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - E:\Program Files\Canon\Easy-WebPrint\Toolband.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - e:\program files\google\googletoolbar1.dll

O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - E:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll

O4 - HKLM\..\Run: [avast!] "E:\Program Files\Alwil Software\Avast4\ashDisp.exe"

O4 - HKLM\..\Run: [sPAMfighter Agent] "E:\Program Files\SPAMfighter\SFAgent.exe" update delay 60

O4 - HKCU\..\Run: [ctfmon.exe] E:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [msnmsgr] "E:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User '?')

O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User '?')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User '?')

O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User '?')

O4 - HKUS\S-1-5-21-1060284298-616249376-1801674531-500\..\Run: [ctfmon.exe] E:\WINDOWS\system32\ctfmon.exe (User '?')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User '?')

O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User '?')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')

O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://E:\WINDOWS\system32\GPhotos.scr/200

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://E:\PROGRA~1\Microsoft Office\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://E:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html

O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://E:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html

O8 - Extra context menu item: Easy-WebPrint Imprimer - res://E:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html

O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://E:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html

O9 - Extra button: Launch Cooliris - {3437D640-C91A-458f-89F5-B9095EA4C28B} - E:\WINDOWS\system32\shdocvw.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\PROGRA~1\Microsoft Office\Office12\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1237822682781

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-09.sun.com/s/ESD7/JSCDL/jdk...ows-i586-jc.cab

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - E:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - E:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: avast! Antivirus - ALWIL Software - E:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - ALWIL Software - E:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

O23 - Service: avast! Web Scanner - ALWIL Software - E:\Program Files\Alwil Software\Avast4\ashWebSv.exe

O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - E:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe

O23 - Service: Diskeeper - Diskeeper Corporation - E:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe

O23 - Service: Google Updater Service (gusvc) - Google - E:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - E:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - E:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe

O23 - Service: NMSAccessU - Unknown owner - E:\Program Files\CDBurnerXP\NMSAccessU.exe

O23 - Service: SPAMfighter Update Service - SPAMfighter ApS - E:\Program Files\SPAMfighter\sfus.exe

O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - E:\Program Files\Softwin\BitDefender10\vsserv.exe

O23 - Service: BitDefender Communicator (XCOMM) - SOFTWIN S.R.L - E:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe

 

--

End of file - 9116 bytes

 

======Scheduled tasks folder======

 

E:\WINDOWS\tasks\Spybot - Search & Destroy - Scheduled Task.job

 

======Registry dump======

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]

&Yahoo! Toolbar Helper - E:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll [2008-07-28 882416]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]

Adobe PDF Reader Link Helper - E:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-01-12 63128]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Programme d'aide de l'Assistant de connexion Windows Live - E:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

Google Toolbar Helper - e:\program files\google\googletoolbar1.dll [2009-03-20 2436160]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]

Google Toolbar Notifier BHO - E:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll [2009-03-23 737776]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - E:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-05-26 35840]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]

JQSIEStartDetectorImpl Class - E:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-05-26 73728]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EAEE5C74-6D0D-4aca-9232-0DA4A7B866BA}]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]

SingleInstance Class - E:\PROGRA~1\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll [2008-07-28 160496]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - E:\Program Files\Canon\Easy-WebPrint\Toolband.dll [2004-04-16 405504]

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - e:\program files\google\googletoolbar1.dll [2009-03-20 2436160]

{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - E:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll [2008-07-28 882416]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"avast!"=E:\Program Files\Alwil Software\Avast4\ashDisp.exe [2009-02-05 81000]

"SPAMfighter Agent"=E:\Program Files\SPAMfighter\SFAgent.exe [2009-03-12 326792]

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"ctfmon.exe"=E:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]

"msnmsgr"=E:\Program Files\Windows Live\Messenger\msnmsgr.exe [2007-10-18 5724184]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]

E:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2007-10-18 5724184]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spyware Doctor]

E:\Program Files\Spyware Doctor\swdoctor.exe /Q []

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - E:\WINDOWS\system32\WPDShServiceObj.dll [2008-06-04 133632]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=145

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"E:\Program Files\Yahoo!\Messenger\YahooMessenger.exe"="E:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger"

"E:\Program Files\eMule\emule.exe"="E:\Program Files\eMule\emule.exe:*:Enabled:eMuleMorphXT"

"E:\Program Files\Windows Live\Messenger\msnmsgr.exe"="E:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

"E:\Program Files\Windows Live\Messenger\livecall.exe"="E:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"E:\Program Files\Windows Live\Messenger\msnmsgr.exe"="E:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

"E:\Program Files\Windows Live\Messenger\livecall.exe"="E:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

 

======List of files/folders created in the last 1 months======

 

2009-06-19 15:38:49 ----D---- E:\rsit

2009-06-19 15:38:49 ----D---- E:\Program Files\trend micro

2009-06-18 17:49:05 ----D---- E:\_OTM

2009-06-18 13:35:02 ----D---- E:\Documents and Settings\Administrateur\Application Data\PC Tools

2009-06-17 17:13:03 ----A---- E:\WINDOWS\win.tmp

2009-06-17 17:13:03 ----A---- E:\WINDOWS\system.tmp

2009-06-16 13:26:46 ----A---- E:\WINDOWS\system32\KDSInterface.txt

2009-06-16 13:18:58 ----AD---- E:\Documents and Settings\All Users\Application Data\TEMP

2009-06-05 20:01:11 ----D---- E:\Program Files\Microsoft SQL Server Compact Edition

2009-06-05 19:58:29 ----SHDC---- E:\Program Files\Fichiers communs\WindowsLiveInstaller

2009-06-05 19:58:25 ----D---- E:\Program Files\Windows Live

2009-06-05 19:58:18 ----D---- E:\Documents and Settings\All Users\Application Data\WLInstaller

2009-06-05 19:45:34 ----SHD---- E:\Config.Msi

2009-06-05 18:42:41 ----DC---- E:\WINDOWS\system32\DRVSTORE

2009-06-05 18:41:33 ----A---- E:\WINDOWS\system32\d3dx9_32.dll

2009-06-05 17:55:53 ----D---- E:\Program Files\Microsoft

2009-06-05 17:55:39 ----D---- E:\Program Files\Windows Live SkyDrive

2009-06-05 17:51:10 ----D---- E:\Program Files\Fichiers communs\Windows Live

2009-05-27 17:33:27 ----D---- E:\Documents and Settings\Administrateur\Application Data\Vso

2009-05-27 17:33:27 ----A---- E:\Documents and Settings\Administrateur\Application Data\inst.exe

2009-05-27 17:30:26 ----D---- E:\Program Files\vso

2009-05-26 17:28:47 ----D---- E:\WINDOWS\Sun

2009-05-26 17:28:30 ----A---- E:\WINDOWS\system32\javaws.exe

2009-05-26 17:28:30 ----A---- E:\WINDOWS\system32\javaw.exe

2009-05-26 17:28:30 ----A---- E:\WINDOWS\system32\java.exe

2009-05-26 17:28:30 ----A---- E:\WINDOWS\system32\deploytk.dll

2009-05-26 17:28:19 ----D---- E:\Program Files\Java

2009-05-26 17:27:28 ----D---- E:\Documents and Settings\Administrateur\Application Data\Sun

2009-05-26 12:26:31 ----D---- E:\Documents and Settings\Administrateur\Application Data\Canneverbe_Limited

2009-05-26 12:26:19 ----D---- E:\Program Files\CDBurnerXP

2009-05-23 13:54:05 ----D---- E:\Documents and Settings\All Users\Application Data\AVS4YOU

2009-05-23 13:53:26 ----D---- E:\Documents and Settings\Administrateur\Application Data\AVS4YOU

2009-05-23 13:53:24 ----D---- E:\Program Files\Fichiers communs\AVSMedia

2009-05-23 13:53:24 ----D---- E:\Program Files\AVS4YOU

2009-05-23 13:53:24 ----A---- E:\WINDOWS\system32\msxml3a.dll

2009-05-23 12:48:18 ----D---- E:\Documents and Settings\Administrateur\Application Data\FastStone

 

======List of files/folders modified in the last 1 months======

 

2009-06-19 15:38:49 ----RD---- E:\Program Files

2009-06-19 15:38:42 ----D---- E:\WINDOWS\Prefetch

2009-06-19 15:08:54 ----D---- E:\WINDOWS\Temp

2009-06-19 12:54:35 ----D---- E:\Program Files\SPAMfighter

2009-06-18 21:40:02 ----A---- E:\WINDOWS\SchedLgU.Txt

2009-06-18 18:52:33 ----D---- E:\WINDOWS\system32

2009-06-18 17:43:07 ----D---- E:\WINDOWS\system32\CatRoot2

2009-06-18 17:42:14 ----D---- E:\WINDOWS\system32\drivers

2009-06-18 12:50:07 ----D---- E:\WINDOWS

2009-06-17 17:30:37 ----RSHDC---- E:\WINDOWS\system32\dllcache

2009-06-17 14:53:07 ----D---- E:\Program Files\Fichiers communs

2009-06-16 04:24:09 ----D---- E:\Program Files\eMule

2009-06-08 22:39:48 ----D---- E:\WINDOWS\security

2009-06-08 20:19:58 ----HD---- E:\WINDOWS\inf

2009-06-06 10:34:27 ----D---- E:\WINDOWS\SxsCaPendDel

2009-06-05 20:40:51 ----A---- E:\WINDOWS\win.ini

2009-06-05 20:04:04 ----D---- E:\WINDOWS\Microsoft.NET

2009-06-05 20:01:38 ----SHD---- E:\WINDOWS\Installer

2009-06-05 20:01:38 ----D---- E:\WINDOWS\system32\DirectX

2009-06-05 20:01:12 ----RSD---- E:\WINDOWS\assembly

2009-06-05 20:00:21 ----D---- E:\WINDOWS\WinSxS

2009-06-05 19:05:49 ----SD---- E:\Documents and Settings\Administrateur\Application Data\Microsoft

2009-06-05 18:42:00 ----SD---- E:\Documents and Settings\All Users\Application Data\Microsoft

2009-06-05 18:10:22 ----D---- E:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy

2009-06-05 18:08:58 ----D---- E:\Program Files\Yahoo!

2009-06-05 17:55:43 ----D---- E:\Program Files\Fichiers communs\Microsoft Shared

2009-06-02 15:54:24 ----D---- E:\Documents and Settings\Administrateur\Application Data\NeoDivX2008

2009-06-02 15:53:14 ----D---- E:\Program Files\PicLensIE

2009-05-26 17:28:46 ----SD---- E:\WINDOWS\Downloaded Program Files

2009-05-26 11:34:16 ----D---- E:\Program Files\Ahead

2009-05-26 07:27:40 ----D---- E:\Program Files\Fichiers communs\InstallShield

2009-05-26 07:27:24 ----HD---- E:\Program Files\InstallShield Installation Information

2009-05-25 11:40:09 ----A---- E:\WINDOWS\NeroDigital.ini

2009-05-23 13:53:29 ----RSD---- E:\WINDOWS\Fonts

 

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R1 Aavmker4;avast! Asynchronous Virus Monitor; E:\WINDOWS\system32\drivers\Aavmker4.sys [2009-02-05 26944]

R1 aswSP;avast! Self Protection; E:\WINDOWS\system32\drivers\aswSP.sys [2009-02-05 114768]

R1 aswTdi;avast! Network Shield Support; E:\WINDOWS\system32\drivers\aswTdi.sys [2009-02-05 51376]

R1 WmiAcpi;Interface de gestion Microsoft Windows pour ACPI; E:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]

R2 Aspi32;Aspi32; E:\WINDOWS\system32\drivers\Aspi32.sys [1999-09-10 25244]

R2 aswFsBlk;aswFsBlk; E:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]

R2 aswMon2;avast! Standard Shield Support; E:\WINDOWS\system32\drivers\aswMon2.sys [2009-02-05 94032]

R2 irda;Protocole IrDA; E:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]

R3 Arp1394;Protocole client ARP 1394; E:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]

R3 aswRdr;aswRdr; E:\WINDOWS\system32\drivers\aswRdr.sys [2009-02-05 23152]

R3 ati2mtag;ati2mtag; E:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-05-12 1198080]

R3 cmpci;Gamesurround Muse Lt; E:\WINDOWS\system32\drivers\cmaudio.sys [2001-12-11 357070]

R3 irsir;Pilote série infrarouge Microsoft; E:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]

R3 NIC1394;Pilote réseau 1394; E:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]

R3 NVENETFD;NVIDIA nForce Networking Controller Driver; E:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2007-03-06 58752]

R3 nvnetbus;NVIDIA Network Bus Enumerator; E:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2007-03-06 19968]

R3 nvsmu;nvsmu; E:\WINDOWS\system32\DRIVERS\nvsmu.sys [2007-02-16 12032]

R3 PAC207;Trust WB-1400T Webcam; E:\WINDOWS\system32\DRIVERS\PFC027.SYS [2007-05-14 508288]

R3 Rasirda;Miniport réseau étendu (IrDA); E:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]

R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; E:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]

R3 usbhub;Pilote de concentrateur standard USB Microsoft; E:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]

R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; E:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]

R3 usbscan;Pilote de scanneur USB; E:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]

S3 bdfdll;bdfdll; \??\E:\Program Files\Softwin\BitDefender10\bdfdll.sys []

S3 BDFsDrv;BDFsDrv; \??\E:\Program Files\Softwin\BitDefender10\bdfsdrv.sys []

S3 BDRsDrv;BDRsDrv; \??\E:\Program Files\Softwin\BitDefender10\bdrsdrv.sys []

S3 BthEnum;Pilote de bloc de demande Bluetooth; E:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]

S3 BthPan;Périphérique Bluetooth (réseau personnel); E:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]

S3 BTHPORT;Pilote de port Bluetooth; E:\WINDOWS\System32\Drivers\BTHport.sys [2008-04-13 273664]

S3 BTHUSB;Pilote USB radio Bluetooth; E:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]

S3 CCDECODE;Décodeur sous-titre fermé; E:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]

S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; E:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]

S3 NABTSFEC;Codec NABTS/FEC VBI; E:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]

S3 NdisIP;Connection TV/vidéo Microsoft; E:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]

S3 pcouffin;VSO Software pcouffin; E:\WINDOWS\System32\Drivers\pcouffin.sys [2009-05-27 47360]

S3 Profos;Profos; \??\E:\Program Files\Softwin\BitDefender10\profos.sys []

S3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); E:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]

S3 SLIP;Détrameur décalage BDA; E:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]

S3 streamip;BDA IPSink; E:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]

S3 Trufos;Trufos; \??\E:\Program Files\Softwin\BitDefender10\trufos.sys []

S3 usbprint;Classe d'imprimantes USB Microsoft; E:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]

S3 USBSTOR;Pilote de stockage de masse USB; E:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]

S3 WSTCODEC;Codec Teletext standard; E:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]

S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; E:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-06-04 77568]

S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; E:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-06-04 82944]

S4 IntelIde;IntelIde; E:\WINDOWS\system32\drivers\IntelIde.sys []

 

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R2 aswUpdSv;avast! iAVS4 Control Service; E:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-02-05 18752]

R2 Ati HotKey Poller;Ati HotKey Poller; E:\WINDOWS\system32\Ati2evxx.exe [2005-05-12 368640]

R2 avast! Antivirus;avast! Antivirus; E:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-02-05 138680]

R2 bdss;BitDefender Scan Server; E:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe [2007-01-19 81920]

R2 BthServ;Bluetooth Support Service; E:\WINDOWS\system32\svchost.exe [2008-04-13 14336]

R2 Diskeeper;Diskeeper; E:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe [2007-10-16 1094936]

R2 Irmon;Moniteur infrarouge; E:\WINDOWS\system32\svchost.exe [2008-04-13 14336]

R2 JavaQuickStarterService;Java Quick Starter; E:\Program Files\Java\jre6\bin\jqs.exe [2009-05-26 152984]

R2 LIVESRV;BitDefender Desktop Update Service; E:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe [2009-03-20 278528]

R2 NMSAccessU;NMSAccessU; E:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-10-20 71096]

R2 SPAMfighter Update Service;SPAMfighter Update Service; E:\Program Files\SPAMfighter\sfus.exe [2009-03-12 184968]

R2 VSSERV;BitDefender Virus Shield; E:\Program Files\Softwin\BitDefender10\vsserv.exe [2007-10-24 462848]

R2 XCOMM;BitDefender Communicator; E:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe [2006-11-09 86016]

R3 avast! Web Scanner;avast! Web Scanner; E:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-02-05 352920]

R3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; E:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]

S3 aspnet_state;ASP.NET State Service; E:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]

S3 avast! Mail Scanner;avast! Mail Scanner; E:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-02-05 254040]

S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; E:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]

S3 gusvc;Google Updater Service; E:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-20 138168]

S3 odserv;Microsoft Office Diagnostics Service; E:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]

S3 ose;Office Source Engine; E:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

S3 WLSetupSvc;Windows Live Setup Service; E:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]

S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; E:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-24 918016]

S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; E:\WINDOWS\system32\svchost.exe [2008-04-13 14336]

 

-----------------EOF-----------------

 

et voilà l'autre

 

 

info.txt logfile of random's system information tool 1.06 2009-06-19 15:39:07

 

======Uninstall list======

 

-->E:\PROGRA~1\Yahoo!\Common\unyt_wrap.exe

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 E:\WINDOWS\INF\PCHealth.inf

Adobe Flash Player 10 ActiveX-->E:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe

Adobe Flash Player 10 Plugin-->E:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe

Adobe Reader 7.0.8-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A70800000002}

Archiveur WinRAR-->E:\Program Files\WinRAR\uninstall.exe

Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}

ATI Display Driver-->rundll32 E:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean

avast! Antivirus-->E:\Program Files\Alwil Software\Avast4\aswRunDll.exe "E:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup

BitDefender Free Edition v10-->MsiExec.exe /I{CEFC581D-BEAE-4F75-989E-BD931970D8AD}

Canon PIXMA iP2000-->E:\WINDOWS\system32\CNMCP66.exe "-PRINTERNAMECanon PIXMA iP2000" "-HELPERDLLE:\BJPrinter\CNMWINDOWS\Canon PIXMA iP2000 Installer\Inst2\cnmis.dll" "-RCDLLE:\BJPrinter\CNMWINDOWS\Canon PIXMA iP2000 Installer\Inst2\cnmi040c.dll"

CCleaner (remove only)-->"E:\Program Files\CCleaner\uninst.exe"

CDBurnerXP-->"E:\Program Files\CDBurnerXP\unins000.exe"

Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}

Compel Adaptec WinASPI-->"E:\Program Files\WinASPI\unins000.exe"

Correctif pour Lecteur Windows Media 11 (KB939683)-->"E:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"

Diskeeper 2008 Pro Premier-->MsiExec.exe /X{4ECCF281-ED79-4EA7-AE89-5E39D3291C2A}

Easy-WebPrint-->E:\WINDOWS\IsUn040c.exe -f"E:\Program Files\Canon\Easy-WebPrint\Uninst.isu"

eMulev0.47c.-MorphXTv9.5-->"E:\Program Files\eMule\unins000.exe"

ffdshow [rev 2060] [2008-08-01]-->"E:\Program Files\ffdshow\unins000.exe"

Galerie de photos Windows Live-->MsiExec.exe /X{9D442283-88AD-4F49-8568-18CE6EAA15AF}

Google Toolbar for Internet Explorer-->MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}

Google Toolbar for Internet Explorer-->regsvr32 /u /s "e:\program files\google\googletoolbar1.dll"

HijackThis 2.0.2-->"E:\Program Files\trend micro\HijackThis.exe" /uninstall

Hotfix for Windows Media Format 11 SDK (KB929399)-->"E:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"

HP PrecisionScan LTX-->E:\WINDOWS\IsUn040c.exe -f"E:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan LTX\Uninst.isu" -c"E:\Program Files\Hewlett-Packard\HP PrecisionScan\PrecisionScan LTX\HPUninstallIs.dll"

Java 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF}

Lecteur Windows Media 11-->"E:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall

Microsoft .NET Framework 2.0-->E:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe

Microsoft Compression Client Pack 1.0 for Windows XP-->"E:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"

Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}

Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}

Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}

Microsoft Office Live Add-in 1.3-->MsiExec.exe /I{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}

Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}

Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}

Microsoft Office Professional Plus 2007-->"E:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL

Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE}

Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}

Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}

Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}

Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}

Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}

Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}

Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}

Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}

Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}

Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}

Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}

Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}

Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"E:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB951066)-->"E:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"

Mise à jour pour Windows Internet Explorer 8 (KB968220)-->"E:\WINDOWS\ie8updates\KB968220-IE8\spuninst\spuninst.exe"

Mise à jour pour Windows XP (KB898461)-->"E:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"

NVIDIA Drivers-->E:\WINDOWS\system32\nvunrm.exe UninstallGUI

Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}

PCI Audio Driver-->cmuninst.exe

Picasa 3-->"E:\Program Files\Google\Picasa3\Uninstall.exe"

PicLens for Internet Explorer-->MsiExec.exe /X{5B5B1BD4-1450-355C-92AF-2DA0C9DF1A7F}

Prism Video Converter-->E:\Program Files\NCH Software\Prism\uninst.exe

SPAMfighter-->"E:\Program Files\SPAMfighter\uninstall.exe" Remove

Trust WB-1400T Webcam-->E:\PROGRA~1\FICHIE~1\InstallShield\Driver\9\Intel 32\IDriver.exe /M{30837A37-8F9F-4817-8B52-C501B67DC3BE} /l1036

VDownloader 0.81-->"E:\Program Files\VDOWNLOADER\unins000.exe"

VLC media player 0.9.9-->E:\Program Files\VideoLAN\VLC\uninstall.exe

Winamp (remove only)-->"E:\Program Files\Winamp\UninstWA.exe"

Windows Internet Explorer 8-->"E:\WINDOWS\ie8\spuninst\spuninst.exe"

Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}

Windows Live Mail-->MsiExec.exe /I{C514C594-23AA-4F13-A070-DB8BDB27594F}

Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}

Windows Media Format 11 runtime-->"E:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll

Windows Media Format 11 runtime-->"E:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"

Windows Media Player 11-->"E:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"

Yahoo! Toolbar-->E:\PROGRA~1\Yahoo!\Common\unyt_wrap.exe

 

======Hosts File======

 

127.0.0.1 www.007guard.com

127.0.0.1 007guard.com

127.0.0.1 008i.com

127.0.0.1 www.008k.com

127.0.0.1 008k.com

127.0.0.1 www.00hq.com

127.0.0.1 00hq.com

127.0.0.1 010402.com

127.0.0.1 www.032439.com

127.0.0.1 032439.com

 

Securitycenter WMI appears to be broken

 

======Environment variables======

 

"ComSpec"=%SystemRoot%\system32\cmd.exe

"DEVMGR_SHOW_DETAILS"=1

"FP_NO_HOST_CHECK"=NO

"NUMBER_OF_PROCESSORS"=1

"OS"=Windows_NT

"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;E:\PROGRA~1\Diskeeper Corporation\Diskeeper\

"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH

"PROCESSOR_ARCHITECTURE"=x86

"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 47 Stepping 2, AuthenticAMD

"PROCESSOR_LEVEL"=15

"PROCESSOR_REVISION"=2f02

"TEMP"=%SystemRoot%\TEMP

"TMP"=%SystemRoot%\TEMP

"windir"=%SystemRoot%

 

-----------------EOF-----------------

[[resolu]USB proteger en ecriture]

voilà et merci de prendre du temps pour moi !!!!!

 

SystemLook v1.0 by jpshortstuff (22.05.09)

Log created at 13:39 on 19/06/2009 by Administrateur (Administrator - Elevation successful)

 

========== regfind ==========

 

Searching for "WriteProtect"

No data found.

 

-=End Of File=-

[[resolu]USB proteger en ecriture]

voilà.

SystemLook v1.0 by jpshortstuff (22.05.09)

Log created at 13:31 on 19/06/2009 by Administrateur (Administrator - Elevation successful)

 

========== dir ==========

 

E: - Parameters: "(none)"

 

---Files---

config.xml --a--- 6960 bytes [20:31 08/05/2009] [15:46 16/06/2009]

pagefile.sys --ahs- 2145386496 bytes [10:16 20/03/2009] [10:53 19/06/2009]

Thumbs.db --ahs- 5120 bytes [14:35 30/03/2009] [14:35 30/03/2009]

 

---Folders---

BJPrinter d--h-- [11:01 20/03/2009]

Config.Msi d--hs- [17:45 05/06/2009]

Diskeeper d--hs- [11:17 21/03/2009]

Documents and Settings d----- [10:20 20/03/2009]

Drivers d----- [10:19 20/03/2009]

MODIFS d----- [10:19 20/03/2009]

MSOCache dr-h-- [11:22 20/03/2009]

Program Files dr---- [10:21 20/03/2009]

RECYCLER d--hs- [09:41 20/03/2009]

System Volume Information d--hs- [10:20 20/03/2009]

WINDOWS d----- [10:16 20/03/2009]

_OTM d----- [15:49 18/06/2009]

 

========== reg ==========

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\StorageDevicePolicies]

(Unable to open key - key not found)

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet001\Control\StorageDevicePolicies]

(Unable to open key - key not found)

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet003\Control\StorageDevicePolicies]

(Unable to open key - key not found)

 

-=End Of File=-

[[resolu]USB proteger en ecriture]

effectivement ,passez 2 fois et non toujours bloquer en écriture !!

j'ai viré comme conseillé spyware docteur .

 

Y a t'il une autre piste a étudier ??

[[resolu]USB proteger en ecriture]

voilà angelique ci-joint le resultat de OTM. dit ce que tu en pense.

Merci

 

========== PROCESSES ==========

Process explorer.exe killed successfully.

========== REGISTRY ==========

Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\StorageDevicePolicies\\ not found.

Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\TrayNotify\\IconStreams not found.

Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\TrayNotify\\PastIconsStream not found.

========== COMMANDS ==========

File delete failed. E:\DOCUME~1\Administrateur\Local Settings\Temp\~DF986E.tmp scheduled to be deleted on reboot.

File delete failed. E:\DOCUME~1\Administrateur\Local Settings\Temp\~DF987C.tmp scheduled to be deleted on reboot.

File delete failed. E:\DOCUME~1\Administrateur\Local Settings\Temp\~DFFFD1.tmp scheduled to be deleted on reboot.

File delete failed. E:\DOCUME~1\Administrateur\Local Settings\Temp\~DFFFE1.tmp scheduled to be deleted on reboot.

User's Temp folder emptied.

User's Internet Explorer cache folder emptied.

File delete failed. E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\WHFIQL8C\ads[3].htm scheduled to be deleted on reboot.

File delete failed. E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\WHFIQL8C\ban_728x90[1].htm scheduled to be deleted on reboot.

File delete failed. E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\WHFIQL8C\hp[1].htm scheduled to be deleted on reboot.

File delete failed. E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\UE6EBSK0\eBayISAPI[1].htm scheduled to be deleted on reboot.

File delete failed. E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\UE6EBSK0\eBayISAPI[1].html scheduled to be deleted on reboot.

File delete failed. E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\UE6EBSK0\eBayISAPI[2].htm scheduled to be deleted on reboot.

File delete failed. E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\OMVOXNSD\AP_ADV_300x250[1].htm scheduled to be deleted on reboot.

File delete failed. E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\OMVOXNSD\eBayISAPI[1].html scheduled to be deleted on reboot.

File delete failed. E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\OMVOXNSD\iframe[1].htm scheduled to be deleted on reboot.

File delete failed. E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\OMVOXNSD\usb-proteger-en-ecriture-t164493[1].htm scheduled to be deleted on reboot.

File delete failed. E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\1QEM2297\ADSAdClient31[1].txt scheduled to be deleted on reboot.

File delete failed. E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\1QEM2297\ads[3].htm scheduled to be deleted on reboot.

File delete failed. E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\1QEM2297\MsgrConfig[1].asmx scheduled to be deleted on reboot.

File delete failed. E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\1QEM2297\usb-proteger-en-ecriture-t164493[1].htm scheduled to be deleted on reboot.

File delete failed. E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.

User's Temporary Internet Files folder emptied.

File delete failed. E:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.

File delete failed. E:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be deleted on reboot.

File delete failed. E:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.

Local Service Temp folder emptied.

File delete failed. E:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.

Local Service Temporary Internet Files folder emptied.

Network Service Temp folder emptied.

Network Service Temporary Internet Files folder emptied.

File delete failed. E:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.

File delete failed. E:\WINDOWS\temp\Perflib_Perfdata_1e4.dat scheduled to be deleted on reboot.

File delete failed. E:\WINDOWS\temp\Perflib_Perfdata_294.dat scheduled to be deleted on reboot.

File delete failed. E:\WINDOWS\temp\Perflib_Perfdata_658.dat scheduled to be deleted on reboot.

Windows Temp folder emptied.

Java cache emptied.

Temp folders emptied.

 

OTM by OldTimer - Version 2.1.0.1 log created on 06182009_204444

 

Files moved on Reboot...

File E:\DOCUME~1\Administrateur\Local Settings\Temp\~DF986E.tmp not found!

File E:\DOCUME~1\Administrateur\Local Settings\Temp\~DF987C.tmp not found!

File E:\DOCUME~1\Administrateur\Local Settings\Temp\~DFFFD1.tmp not found!

File E:\DOCUME~1\Administrateur\Local Settings\Temp\~DFFFE1.tmp not found!

E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\WHFIQL8C\ads[3].htm moved successfully.

E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\WHFIQL8C\ban_728x90[1].htm moved successfully.

E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\WHFIQL8C\hp[1].htm moved successfully.

E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\UE6EBSK0\eBayISAPI[1].htm moved successfully.

E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\UE6EBSK0\eBayISAPI[1].html moved successfully.

E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\UE6EBSK0\eBayISAPI[2].htm moved successfully.

E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\OMVOXNSD\AP_ADV_300x250[1].htm moved successfully.

E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\OMVOXNSD\eBayISAPI[1].html moved successfully.

E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\OMVOXNSD\iframe[1].htm moved successfully.

E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\OMVOXNSD\usb-proteger-en-ecriture-t164493[1].htm moved successfully.

E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\1QEM2297\ADSAdClient31[1].txt moved successfully.

E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\1QEM2297\ads[3].htm moved successfully.

E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\1QEM2297\MsgrConfig[1].asmx moved successfully.

E:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\1QEM2297\usb-proteger-en-ecriture-t164493[1].htm moved successfully.

File move failed. E:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be moved on reboot.

File E:\WINDOWS\temp\Perflib_Perfdata_1e4.dat not found!

File E:\WINDOWS\temp\Perflib_Perfdata_294.dat not found!

File move failed. E:\WINDOWS\temp\Perflib_Perfdata_658.dat scheduled to be moved on reboot.

 

Registry entries deleted on Reboot...

[[resolu]USB proteger en ecriture]

merci angelique,c'est fait voici le resulat.

 

SystemLook v1.0 by jpshortstuff (22.05.09)

Log created at 17:14 on 18/06/2009 by Administrateur (Administrator - Elevation successful)

 

========== dir ==========

 

E: - Parameters: "(none)"

 

---Files---

config.xml --a--- 6960 bytes [20:31 08/05/2009] [15:46 16/06/2009]

pagefile.sys --ahs- 2145386496 bytes [10:16 20/03/2009] [11:19 18/06/2009]

Thumbs.db --ahs- 5120 bytes [14:35 30/03/2009] [14:35 30/03/2009]

 

---Folders---

BJPrinter d--h-- [11:01 20/03/2009]

Config.Msi d--hs- [17:45 05/06/2009]

Diskeeper d--hs- [11:17 21/03/2009]

Documents and Settings d----- [10:20 20/03/2009]

Drivers d----- [10:19 20/03/2009]

MODIFS d----- [10:19 20/03/2009]

MSOCache dr-h-- [11:22 20/03/2009]

Program Files dr---- [10:21 20/03/2009]

RECYCLER d--hs- [09:41 20/03/2009]

System Volume Information d--hs- [10:20 20/03/2009]

WINDOWS d----- [10:16 20/03/2009]

 

========== reg ==========

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\StorageDevicePolicies]

"WriteProtect"= 0x0000000001 (1)

 

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet001\Control\StorageDevicePolicies]

(Unable to open key - key not found)

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet003\Control\StorageDevicePolicies]

(Unable to open key - key not found)

 

-=End Of File=-

[[resolu]USB proteger en ecriture]

•Télécharger SystemLook à partir d'un des liens ci dessous sur ton Bureau.

Download Mirror

Download Mirror #2

• Double-click SystemLook.exe pour le lançer.
  
• Clic droit|copier le contenu du cadre ci dessous ,et clic droit|coller dans le cadre blanc de SystemLook:
   
  

  :dir
  c:\
  
  :reg
  HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\StorageDevicePolicies
  HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet001\Control\StorageDevicePolicies
  HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet003\Control\StorageDevicePolicies

  
   
  

• Click le bouton Look pour commencer le scan.
  
• opie-colle dans ta prochaine réponse le rapport\contenu du fichier texte qui s'affiche
  

Note: Le rapport peut aussi être trouvé sur ton Bureau nommé SystemLook.txt

[[resolu]USB proteger en ecriture]

bonjour , tous est dans le titre ,depuis 8 jours pour tous support que je branche sur USB " clée USB,lecteur MP,disc externe" j'ai un message proteger en écriture et donc aucun moyen de transferer ou ajouter des donner !!

 

J'ai controler avec Avast , Bitfender,Spyware docteur,je ne sais plus quoi faire . La restauration systeme me dit que rien n'a changer depuis 1 mois ?

 

Merci de votre aide