76lilly76

Bonjour ! L'analyse est terminée ? Si oui, merci et toute dernière petite question ; Comment supprimer les programmes de désinfection installés ? Adw, sft, zhpdiag (qui s'est bien désinstallé mais laisse derrière lui zhpdiag2)? Bonne journée !

Bonsoir ! Impossible d'héberger le rapport de cure it sur cijoint...Il fait quand même 53Mo, c'est peut-être pour cela...S'il y a une autre astuce, je suis preneuse. Toujours est-il que tout paraît ok sauf : 4a9d7bbd.qua C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED Win32.HLLW.Autoruner.8325 Supprimé. Bonne soirée et merci again...

Bonsoir Apollo, Les vérifs sont faites...Voilà le rapport avira tel quel parce que quand j'essaie de l'enregistrer sur le bureau (idem dand "mes documents"), il me dit : "...fait référence à un emplacement non disponible... Bref, je ne peux pas l'enregistrer et ne peux donc pas l'héberger sur ci-joint... Avira Free Antivirus Date de création du fichier de rapport : dimanche 8 juillet 2012 07:45 La recherche porte sur 3844912 souches de virus. Le programme fonctionne en version intégrale illimitée. Les services en ligne sont disponibles. Détenteur de la licence : Avira AntiVir Personal - Free Antivirus Numéro de série : 0000149996-ADJIE-0000001 Plateforme : Windows 7 x64 Version de Windows : (Service Pack 1) [6.1.7601] Mode Boot : Démarré normalement Identifiant : Système Nom de l'ordinateur : LILLY-S-ORDI Informations de version : BUILD.DAT : 12.0.0.207 41963 Bytes 20/02/2012 15:58:00 AVSCAN.EXE : 12.1.0.20 492496 Bytes 18/02/2012 19:37:14 AVSCAN.DLL : 12.1.0.19 64976 Bytes 25/02/2012 18:33:28 LUKE.DLL : 12.1.0.19 68304 Bytes 18/02/2012 19:37:14 AVSCPLR.DLL : 12.3.0.14 97032 Bytes 08/05/2012 18:04:08 AVREG.DLL : 12.3.0.17 232200 Bytes 10/05/2012 18:04:12 VBASE000.VDF : 7.10.0.0 19875328 Bytes 06/11/2009 18:18:34 VBASE001.VDF : 7.11.0.0 13342208 Bytes 14/12/2010 09:07:39 VBASE002.VDF : 7.11.19.170 14374912 Bytes 20/12/2011 07:46:32 VBASE003.VDF : 7.11.21.238 4472832 Bytes 01/02/2012 08:09:27 VBASE004.VDF : 7.11.26.44 4329472 Bytes 28/03/2012 07:26:18 VBASE005.VDF : 7.11.34.116 4034048 Bytes 29/06/2012 21:44:36 VBASE006.VDF : 7.11.34.117 2048 Bytes 29/06/2012 21:44:36 VBASE007.VDF : 7.11.34.118 2048 Bytes 29/06/2012 21:44:37 VBASE008.VDF : 7.11.34.119 2048 Bytes 29/06/2012 21:44:37 VBASE009.VDF : 7.11.34.120 2048 Bytes 29/06/2012 21:44:37 VBASE010.VDF : 7.11.34.121 2048 Bytes 29/06/2012 21:44:37 VBASE011.VDF : 7.11.34.122 2048 Bytes 29/06/2012 21:44:37 VBASE012.VDF : 7.11.34.123 2048 Bytes 29/06/2012 21:44:37 VBASE013.VDF : 7.11.34.124 2048 Bytes 29/06/2012 21:44:37 VBASE014.VDF : 7.11.34.201 169472 Bytes 02/07/2012 06:47:10 VBASE015.VDF : 7.11.35.19 122368 Bytes 04/07/2012 06:40:34 VBASE016.VDF : 7.11.35.87 146944 Bytes 06/07/2012 06:40:36 VBASE017.VDF : 7.11.35.88 2048 Bytes 06/07/2012 06:40:36 VBASE018.VDF : 7.11.35.89 2048 Bytes 06/07/2012 06:40:36 VBASE019.VDF : 7.11.35.90 2048 Bytes 06/07/2012 06:40:36 VBASE020.VDF : 7.11.35.91 2048 Bytes 06/07/2012 06:40:36 VBASE021.VDF : 7.11.35.92 2048 Bytes 06/07/2012 06:40:36 VBASE022.VDF : 7.11.35.93 2048 Bytes 06/07/2012 06:40:36 VBASE023.VDF : 7.11.35.94 2048 Bytes 06/07/2012 06:40:36 VBASE024.VDF : 7.11.35.95 2048 Bytes 06/07/2012 06:40:36 VBASE025.VDF : 7.11.35.96 2048 Bytes 06/07/2012 06:40:36 VBASE026.VDF : 7.11.35.97 2048 Bytes 06/07/2012 06:40:36 VBASE027.VDF : 7.11.35.98 2048 Bytes 06/07/2012 06:40:36 VBASE028.VDF : 7.11.35.99 2048 Bytes 06/07/2012 06:40:36 VBASE029.VDF : 7.11.35.100 2048 Bytes 06/07/2012 06:40:36 VBASE030.VDF : 7.11.35.101 2048 Bytes 06/07/2012 06:40:36 VBASE031.VDF : 7.11.35.108 5120 Bytes 06/07/2012 06:40:37 Version du moteur : 8.2.10.106 AEVDF.DLL : 8.1.2.8 106867 Bytes 01/06/2012 19:08:01 AESCRIPT.DLL : 8.1.4.32 455034 Bytes 06/07/2012 06:40:39 AESCN.DLL : 8.1.8.2 131444 Bytes 27/01/2012 17:56:49 AESBX.DLL : 8.2.5.12 606578 Bytes 15/06/2012 07:24:32 AERDL.DLL : 8.1.9.15 639348 Bytes 08/09/2011 21:16:06 AEPACK.DLL : 8.2.16.22 807288 Bytes 21/06/2012 22:48:41 AEOFFICE.DLL : 8.1.2.40 201082 Bytes 29/06/2012 21:44:40 AEHEUR.DLL : 8.1.4.64 5009782 Bytes 06/07/2012 06:40:38 AEHELP.DLL : 8.1.23.2 258422 Bytes 29/06/2012 21:44:38 AEGEN.DLL : 8.1.5.32 434548 Bytes 07/07/2012 06:40:37 AEEXP.DLL : 8.1.0.60 86388 Bytes 06/07/2012 06:40:39 AEEMU.DLL : 8.1.3.0 393589 Bytes 01/09/2011 21:46:01 AECORE.DLL : 8.1.25.10 201080 Bytes 31/05/2012 19:08:59 AEBB.DLL : 8.1.1.0 53618 Bytes 01/09/2011 21:46:01 AVWINLL.DLL : 12.1.0.17 27344 Bytes 01/12/2011 16:55:08 AVPREF.DLL : 12.1.0.17 51920 Bytes 01/12/2011 16:55:05 AVREP.DLL : 12.3.0.15 179208 Bytes 08/05/2012 18:04:08 AVARKT.DLL : 12.1.0.23 209360 Bytes 18/02/2012 19:37:14 AVEVTLOG.DLL : 12.1.0.17 169168 Bytes 01/12/2011 16:55:04 SQLITE3.DLL : 3.7.0.0 398288 Bytes 01/12/2011 16:55:18 AVSMTP.DLL : 12.1.0.17 63440 Bytes 01/12/2011 16:55:07 NETNT.DLL : 12.1.0.17 17104 Bytes 01/12/2011 16:55:15 RCIMAGE.DLL : 12.1.0.13 4449488 Bytes 20/09/2011 00:36:03 RCTEXT.DLL : 12.1.0.16 99792 Bytes 27/09/2011 09:22:58 Configuration pour la recherche actuelle : Nom de la tâche...............................: Contrôle intégral du système Fichier de configuration......................: C:\program files (x86)\avira\antivir desktop\sysscan.avp Documentation.................................: par défaut Action principale.............................: interactif Action secondaire.............................: ignorer Recherche sur les secteurs d'amorçage maître..: marche Recherche sur les secteurs d'amorçage.........: marche Secteurs d'amorçage...........................: C:, D:, G:, H:, Q:, Recherche dans les programmes actifs..........: marche Programmes en cours étendus...................: marche Recherche en cours sur l'enregistrement.......: marche Recherche de Rootkits.........................: marche Contrôle d'intégrité de fichiers système......: marche Fichier mode de recherche.....................: Tous les fichiers Recherche sur les archives....................: marche Limiter la profondeur de récursivité..........: 20 Archive Smart Extensions......................: marche Heuristique de macrovirus.....................: marche Heuristique fichier...........................: avancé Début de la recherche : dimanche 8 juillet 2012 07:45 La recherche sur les secteurs d'amorçage maître commence : Secteur d'amorçage maître HD0 [iNFO] Aucun virus trouvé ! Secteur d'amorçage maître HD1 [iNFO] Aucun virus trouvé ! Secteur d'amorçage maître HD2 [iNFO] Aucun virus trouvé ! La recherche sur les secteurs d'amorçage commence : Secteur d'amorçage 'C:\' [iNFO] Aucun virus trouvé ! Secteur d'amorçage 'D:\' [iNFO] Aucun virus trouvé ! Secteur d'amorçage 'G:\' [iNFO] Aucun virus trouvé ! Secteur d'amorçage 'H:\' [iNFO] Aucun virus trouvé ! Secteur d'amorçage 'Q:\' [iNFO] Aucun virus trouvé ! [iNFO] Veuillez relancer la recherche avec les droits d'administrateur La recherche d'objets cachés commence. Erreur dans la bibliothèque ARK Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché Fil caché La recherche sur les processus démarrés commence : Processus de recherche 'IELowutil.exe' - '30' module(s) sont contrôlés Processus de recherche 'hpCMSrv.exe' - '49' module(s) sont contrôlés Processus de recherche 'avscan.exe' - '79' module(s) sont contrôlés Processus de recherche 'avcenter.exe' - '77' module(s) sont contrôlés Processus de recherche 'sua.exe' - '19' module(s) sont contrôlés Processus de recherche 'hpqWmiEx.exe' - '45' module(s) sont contrôlés Processus de recherche 'CVHSVC.EXE' - '60' module(s) sont contrôlés Processus de recherche 'iTunesHelper.exe' - '69' module(s) sont contrôlés Processus de recherche 'avgnt.exe' - '76' module(s) sont contrôlés Processus de recherche 'HPOSD.exe' - '46' module(s) sont contrôlés Processus de recherche 'HPMSGSVC.exe' - '54' module(s) sont contrôlés Processus de recherche 'psi_tray.exe' - '39' module(s) sont contrôlés Processus de recherche 'OrangeInside.exe' - '41' module(s) sont contrôlés Processus de recherche 'sftlist.exe' - '63' module(s) sont contrôlés Processus de recherche 'sftvsa.exe' - '28' module(s) sont contrôlés Processus de recherche 'PSIA.exe' - '81' module(s) sont contrôlés Processus de recherche 'HPDrvMntSvc.exe' - '19' module(s) sont contrôlés Processus de recherche 'ezSharedSvcHost.exe' - '28' module(s) sont contrôlés Processus de recherche 'AppleMobileDeviceService.exe' - '64' module(s) sont contrôlés Processus de recherche 'avguard.exe' - '69' module(s) sont contrôlés Processus de recherche 'armsvc.exe' - '24' module(s) sont contrôlés Processus de recherche 'sched.exe' - '42' module(s) sont contrôlés Début du contrôle des fichiers système : Signé -> 'C:\Windows\system32\svchost.exe' Signé -> 'C:\Windows\system32\winlogon.exe' Signé -> 'C:\Windows\explorer.exe' Signé -> 'C:\Windows\system32\smss.exe' Signé -> 'C:\Windows\system32\wininet.DLL' Signé -> 'C:\Windows\system32\wsock32.DLL' Signé -> 'C:\Windows\system32\ws2_32.DLL' Signé -> 'C:\Windows\system32\services.exe' Signé -> 'C:\Windows\system32\lsass.exe' Signé -> 'C:\Windows\system32\csrss.exe' Signé -> 'C:\Windows\system32\drivers\kbdclass.sys' Signé -> 'C:\Windows\system32\spoolsv.exe' Signé -> 'C:\Windows\system32\alg.exe' Signé -> 'C:\Windows\system32\wuauclt.exe' Signé -> 'C:\Windows\system32\advapi32.DLL' Signé -> 'C:\Windows\system32\user32.DLL' Signé -> 'C:\Windows\system32\gdi32.DLL' Signé -> 'C:\Windows\system32\kernel32.DLL' Signé -> 'C:\Windows\system32\ntdll.DLL' Signé -> 'C:\Windows\system32\ntoskrnl.exe' Signé -> 'C:\Windows\system32\ctfmon.exe' Les fichiers système ont été contrôlés ('21' fichiers) La recherche sur les renvois aux fichiers exécutables (registre) commence : Le registre a été contrôlé ( '6557' fichiers). La recherche sur les fichiers sélectionnés commence : Recherche débutant dans 'C:\' Recherche débutant dans 'D:\' <RECOVERY> Recherche débutant dans 'G:\' <HP_TOOLS> Recherche débutant dans 'H:\' <Iomega HDD> H:\LILLY-S-ORDI\Backup Set 2011-11-26 081131\Backup Files 2011-11-26 081131\Backup files 1.zip [0] Type d'archive: ZIP --> C/Users/Aurlie/AppData/Local/Microsoft/Windows Live/Installer/BIT2279.tmp [1] Type d'archive: CAB (Microsoft) --> Messenger.7z [AVERTISSEMENT] Impossible d'écrire le fichier ! --> Messenger.7z [AVERTISSEMENT] Impossible de lire le fichier ! H:\LILLY-S-ORDI\Backup Set 2011-12-21 101755\Backup Files 2011-12-21 101755\Backup files 1.zip [0] Type d'archive: ZIP --> C/Users/Aurlie/AppData/Local/Microsoft/Windows Live/Installer/BIT2279.tmp [1] Type d'archive: CAB (Microsoft) --> Messenger.7z [AVERTISSEMENT] Impossible d'écrire le fichier ! --> Messenger.7z [AVERTISSEMENT] Impossible de lire le fichier ! Recherche débutant dans 'Q:\' Impossible d'ouvrir le chemin à scanner Q:\ ! Erreur système [5]: Accès refusé. Fin de la recherche : dimanche 8 juillet 2012 09:48 Temps nécessaire: 2:03:23 Heure(s) La recherche a été effectuée intégralement 38114 Les répertoires ont été contrôlés 669690 Des fichiers ont été contrôlés 0 Des virus ou programmes indésirables ont été trouvés 0 Des fichiers ont été classés comme suspects 0 Des fichiers ont été supprimés 0 Des virus ou programmes indésirables ont été réparés 0 Les fichiers ont été déplacés dans la quarantaine 0 Les fichiers ont été renommés 0 Impossible de scanner des fichiers 669690 Fichiers non infectés 3976 Les archives ont été contrôlées 4 Avertissements 0 Consignes 154881 Des objets ont été contrôlés lors du Rootkitscan 64 Des objets cachés ont été trouvés

Bonsoir ! Voilà les rapports demandés : Lien CJoint.com BGgufC8EfLK Malwarebytes Anti-Malware 1.61.0.1400 www.malwarebytes.org Version de la base de données: v2012.07.06.06 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 Aurélie :: LILLY-S-ORDI [administrateur] 06/07/2012 15:49:14 mbam-log-2012-07-06 (15-49-14).txt Type d'examen: Examen complet Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM Options d'examen désactivées: P2P Elément(s) analysé(s): 451220 Temps écoulé: 2 heure(s), 16 minute(s), 34 seconde(s) Processus mémoire détecté(s): 0 (Aucun élément nuisible détecté) Module(s) mémoire détecté(s): 0 (Aucun élément nuisible détecté) Clé(s) du Registre détectée(s): 0 (Aucun élément nuisible détecté) Valeur(s) du Registre détectée(s): 0 (Aucun élément nuisible détecté) Elément(s) de données du Registre détecté(s): 0 (Aucun élément nuisible détecté) Dossier(s) détecté(s): 0 (Aucun élément nuisible détecté) Fichier(s) détecté(s): 0 (Aucun élément nuisible détecté) (fin) Bonne soirée !

Bonsoir ! Voilà le rapport demandé... Entre temps, ça n'a rien à voir mais mon raccourci IE a disparu de la barre des tâches... Il arrive aussi régulièrement qu'Avira ne s'active pas automatiquement au démarrage et c'est le centre de maintenance qui m'en informe... Bonne soirée ! # AdwCleaner v1.701 - Rapport créé le 05/07/2012 à 19:39:15 # Mis à jour le 02/07/2012 par Xplode # Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits) # Nom d'utilisateur : Aurélie - LILLY-S-ORDI # Exécuté depuis : C:\Users\Aurélie\Desktop\adwcleaner.exe # Option [suppression] ***** [services] ***** ***** [Fichiers / Dossiers] ***** Dossier Supprimé : C:\Users\Aurélie\AppData\Roaming\pdfforge ***** [Registre] ***** Clé Supprimée : HKLM\SOFTWARE\Classes\SearchBar.Client ***** [Registre - GUID] ***** Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827} [x64] Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827} ***** [Navigateurs] ***** -\\ Internet Explorer v9.0.8112.16421 [OK] Le registre ne contient aucune entrée illégitime. ************************* AdwCleaner[s1].txt - [1056 octets] - [05/07/2012 19:39:15] ########## EOF - C:\AdwCleaner[s1].txt - [1184 octets] ##########

Bonsoir Apollo et merci pour ton aide ! Voil) le lien vers le rapport de ZHPdiag : Lien CJoint.com BGevr6rVVUT Bonne soirée !

Bonjour à toutes et à tous, Voilà hier en lancant un scan, avira m'a indiqué qu'il y avait 65 fichiers cachés et que je devais graver et booter avec le cd avira rescue et lancer un scann. Un virus à effectivement été repéré (Je n'ai malheureusement pas noté le nom et pas sauvegardé le log) ; Je crois que ça ressemblait à "appkill" ou à quelque chose comme ça. A la fin du scann et après redémarrage, j'ai relancé un contrôl intégral de mon système avec avira. Le même message est apparu concernant les fichiers cachés et avira rescue, comme si je n'avais rien fait. Plus de trace nom plus du fichier infecté en question qui normalement à été renommé nom ? Bref, j'ai peur que cela n'ai pas correctement fonctionné et que le virus soit toujours là. J'ai lancé un scann en ligne ce matin (eset) et il ne m'a trouvé qu'un "toolbar". Comment savoir si tu es clean ? D'avance un grand merci et bonne journée !! A.

Re bonjour lance_yien, Je vais suivre le reste de tes conseils. Que mon histoire ressemble ou non à celle de millier d'autres personnes ne me rend pas coupable pour autant. Je ne vois pas quel intérêt j'aurais eu à ne pas garder ma version valide de windows ! Je peux même préciser que j'avais XP home Edition qui me convenait parfaitement et me suis retrouvé avec le professionnel...J'ai fait réparer le PC il y a de ça 5 ou 6 ans et le dépanneur a trouvé les pièces ! Je paie pour sa malhonnêteté (Il a fermé d'ailleurs depuis) alors ne veux pas en plus passer pour suspecte ! La seule chose que je pourrais me reprocher est de ne pas avoir trouvé louche, étant donné le prix de XP, le prix qu'il m'a fait payer. Je le saurai pour la prochaine fois voilà tout. Dans tous les cas, n'ayant pas les moyens de valider ma version ou de m'offrir un autre PC, je te remercie de bien avoir voulu me laisser le bénéfice du doute et de m'avoir donné un coup de main. Bonne continuation à toi. Les gens honnêtes malgré certaines apparences auront toujours besoin de gens comme vous...

========== OTL ========== Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found. Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully. Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\com.tw\asia.msi\ deleted successfully. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\com.tw\global.msi\ deleted successfully. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\com.tw\www.msi\ deleted successfully. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\kuaiche.com\software\ deleted successfully. C:\WINDOWS\system32\secushr.dat moved successfully. C:\WINDOWS\system32\secustat.dat moved successfully. ADS C:\Documents and Settings\All Users\Application Data\TEMP:8CE646EE deleted successfully. ========== SERVICES/DRIVERS ========== ========== REGISTRY ========== Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\\eMule not found. ========== FILES ========== < ipconfig /flushdns /c > Configuration IP de Windows Impossible de vider la cache de résolution DNS : La fonction a échoué lors de l'exécution. C:\Documents and Settings\Mme legall\Bureau\cmd.bat deleted successfully. C:\Documents and Settings\Mme legall\Bureau\cmd.txt deleted successfully. C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job moved successfully. C:\WINDOWS\tasks\AppleSoftwareUpdate.job moved successfully. C:\WINDOWS\tasks\Google Software Updater.job moved successfully. C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully. C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully. C:\WINDOWS\tasks\OGALogon.job moved successfully. C:\sqmdata00.sqm moved successfully. C:\sqmdata01.sqm moved successfully. C:\sqmdata02.sqm moved successfully. C:\sqmdata03.sqm moved successfully. C:\sqmdata04.sqm moved successfully. C:\sqmdata05.sqm moved successfully. C:\sqmdata06.sqm moved successfully. C:\sqmdata07.sqm moved successfully. C:\sqmdata08.sqm moved successfully. C:\sqmdata09.sqm moved successfully. C:\sqmdata10.sqm moved successfully. C:\sqmdata11.sqm moved successfully. C:\sqmdata12.sqm moved successfully. C:\sqmdata13.sqm moved successfully. C:\sqmdata14.sqm moved successfully. C:\sqmdata15.sqm moved successfully. C:\sqmdata16.sqm moved successfully. C:\sqmdata17.sqm moved successfully. C:\sqmdata18.sqm moved successfully. C:\sqmdata19.sqm moved successfully. C:\sqmnoopt00.sqm moved successfully. C:\sqmnoopt01.sqm moved successfully. C:\sqmnoopt02.sqm moved successfully. C:\sqmnoopt03.sqm moved successfully. C:\sqmnoopt04.sqm moved successfully. C:\sqmnoopt05.sqm moved successfully. C:\sqmnoopt06.sqm moved successfully. C:\sqmnoopt07.sqm moved successfully. C:\sqmnoopt08.sqm moved successfully. C:\sqmnoopt09.sqm moved successfully. C:\sqmnoopt10.sqm moved successfully. C:\sqmnoopt11.sqm moved successfully. C:\sqmnoopt12.sqm moved successfully. C:\sqmnoopt13.sqm moved successfully. C:\sqmnoopt14.sqm moved successfully. C:\sqmnoopt15.sqm moved successfully. C:\sqmnoopt16.sqm moved successfully. C:\sqmnoopt17.sqm moved successfully. C:\sqmnoopt18.sqm moved successfully. C:\sqmnoopt19.sqm moved successfully. C:\WINDOWS\System32\CONFIG.TMP moved successfully. C:\WINDOWS\System32\SET5C.tmp moved successfully. C:\WINDOWS\System32\SET5E.tmp moved successfully. C:\WINDOWS\System32\SET5F.tmp moved successfully. C:\WINDOWS\System32\SET65.tmp moved successfully. C:\WINDOWS\System32\SET66.tmp moved successfully. C:\WINDOWS\System32\SET67.tmp moved successfully. C:\WINDOWS\System32\SET6B.tmp moved successfully. C:\WINDOWS\System32\SET6D.tmp moved successfully. C:\WINDOWS\System32\SET6F.tmp moved successfully. C:\WINDOWS\System32\SET74.tmp moved successfully. C:\WINDOWS\002853_.tmp moved successfully. C:\WINDOWS\S32CD18B4.tmp moved successfully. C:\WINDOWS\SET3.tmp moved successfully. C:\WINDOWS\SET4.tmp moved successfully. C:\WINDOWS\SET8.tmp moved successfully. ========== COMMANDS ========== [EMPTYFLASH] User: All Users User: Default User ->Flash cache emptied: 41 bytes User: LocalService User: Mme legall ->Flash cache emptied: 978 bytes User: Mme Legall_2 ->Flash cache emptied: 405 bytes User: NetworkService Total Flash Files Cleaned = 0,00 mb C:\WINDOWS\System32\drivers\etc\Hosts moved successfully. HOSTS file reset successfully OTL by OldTimer - Version 3.2.26.1 log created on 08032011_064510

Bonjour lance_yien, J'ai supprimé Eset. Il ne me l'avait pas proposé à la fin du scann. Les mises à jour sont activées mais non, ma version de windows n'est pas bonne. Il y a quelques années mon PC a lâché. Je l'ai emmené chez un dépanneur qui m'a dit que le disque dur avait cramé et que c'était fréquent avec les tours Packard Bell ; Que la ventilation était mauvaise. Il n'a rien pu récupérer de mes données. Par contre il a omis de dire qu'il avait remis dessus une version windows invalide. Je suis partie bosser en Espagne et là seulement, au cours d'une mise à jour j'imagine, j'ai eu le message disant que ma version était mauvaise. J'ai contacté Microsoft qui m'a dit que la seule chose à faire était soit de payer soit d'aller voir les personnes qui m'avaient vendu l'ordi...Mais bon, mon PC à près de 10 ans alors j'imagine que ces messieurs de Carrefour n'auraient certainement pas résolu mon problème. Alors voilà, j'ai bien le numéro de ma version d'origine sur ma tour mais il ne correspond plus avec celle d'installée maintenant. Je fais le scann OTL et vous l'envoie.

...Et le second... OTL Extras logfile created on: 02/08/2011 13:05:17 - Run 1 OTL by OldTimer - Version 3.2.26.1 Folder = C:\Documents and Settings\Mme legall\Bureau Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 1,44 Gb Total Physical Memory | 0,99 Gb Available Physical Memory | 69,13% Memory free 2,73 Gb Paging File | 2,41 Gb Available in Paging File | 88,43% Paging File free Paging file location(s): C:\pagefile.sys 0 0 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 156,75 Gb Total Space | 33,47 Gb Free Space | 21,35% Space Free | Partition Type: NTFS Drive E: | 149,01 Gb Total Space | 64,66 Gb Free Space | 43,40% Space Free | Partition Type: FAT32 Drive J: | 931,51 Gb Total Space | 821,97 Gb Free Space | 88,24% Space Free | Partition Type: NTFS Computer Name: UNICORNI-373E20 | User Name: Mme legall | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) .url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) ========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* http [open] -- Reg Error: Key error. https [open] -- Reg Error: Key error. InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] "DisableMonitoring" = 1 ========== System Restore Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008 "139:TCP" = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004 "445:TCP" = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005 "137:UDP" = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001 "138:UDP" = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002 "3703:TCP" = 3703:TCP:*:Enabled:Adobe Version Cue CS3 Server "3704:TCP" = 3704:TCP:*:Enabled:Adobe Version Cue CS3 Server "50900:TCP" = 50900:TCP:*:Enabled:Adobe Version Cue CS3 Server "50901:TCP" = 50901:TCP:*:Enabled:Adobe Version Cue CS3 Server ========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "C:\Program Files\MSN Messenger\livecall.exe" = C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\WINDOWS\system32\dpnsvr.exe" = C:\WINDOWS\system32\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8 Server -- (Microsoft Corporation) "C:\Program Files\Sitecom\IVT BlueSoleil\BlueSoleil.exe" = C:\Program Files\Sitecom\IVT BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil -- (IVT Corporation) "C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe" = C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3 "C:\WINDOWS\system32\ZoneLabs\vsmon.exe" = C:\WINDOWS\system32\ZoneLabs\vsmon.exe:*:Enabled:vsmon -- (Check Point Software Technologies LTD) "C:\Program Files\Fichiers communs\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe" = C:\Program Files\Fichiers communs\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe:*:Enabled:Adobe Version Cue CS3 Server -- (Adobe Systems Incorporated) "C:\Program Files\Skype\Plugin Manager\skypePM.exe" = C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager "C:\Program Files\Spotify\spotify.exe" = C:\Program Files\Spotify\spotify.exe:*:Enabled:Spotify ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator "{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 "{0224CACC-994D-45F8-B973-D65056EA9C2F}" = Adobe XMP DVA Panels CS3 "{02E89EFC-7B07-4D5A-AA03-9EC0902914EE}" = VC 9.0 Runtime "{0327FA9D-975C-448C-A086-577D57BB25B8}" = Adobe Soundbooth CS3 Codecs "{03B8AA32-F23C-4178-B8E6-09ECD07EAA47}" = Epson Event Manager "{05653DE1-6567-40C6-B930-39D399B64369}" = OpenOffice.org 3.3 "{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting "{0BD83598-C2EF-3343-847B-7D2E84599128}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA "{1628F6BD-5ED1-4FD1-B90F-C106AF4E00F0}" = Adobe Setup "{178832DE-9DE0-4C87-9F82-9315A9B03985}" = Windows Live Writer "{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin "{193EAFD0-1BAF-4FB4-B18F-79D5D6A4B285}" = Adobe After Effects CS3 Presets "{1B0BCA28-1F11-4D60-8A2F-DEBE04B5341E}" = Adobe Flash Video Encoder "{1D58229F-C505-45CA-8223-F35F3A34B963}" = Adobe Version Cue CS3 Server {ko_KR} "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live "{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform "{21C4D775-368A-46C4-8DC3-4207165B7115}" = Adobe Fireworks CS3 "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT "{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}" = Adobe ExtendScript Toolkit 2 "{26A24AE4-039D-4CA4-87B4-2F83216022F0}" = Java 6 Update 22 "{26A24AE4-039D-4CA4-87B4-2F83216024FF}" = Java 6 Update 26 "{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3 "{2ABD5914-4F3F-4A34-A313-A7182901733E}" = HardwareDetection "{2B43252C-A1E3-4C47-927C-9F2C276D3515}" = S3GSetup "{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform "{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{39F58DDB-B2B8-4B86-AF20-4706A80EB30D}" = Epson Easy Photo Print 2 "{3E31400D-274E-4647-916C-2CACC3741799}" = EpsonNet Print "{3E31821C-7917-367E-938E-E65FC413EA31}" = Microsoft .NET Framework 3.5 Language Pack SP1 - fra "{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant "{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis "{474F25F5-BDC9-40E5-B1B6-F6BF23FC106F}" = Windows Live Essentials "{485ACF57-F364-440A-8496-E1E81C8FA1AA}" = Adobe Premiere Pro CS3 Third Party Content "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4BDB76C6-902E-41D5-9064-68768E02886B}" = Adobe Dreamweaver CS3 "{50F102CA-4BE2-41A9-9810-5BB05EB91B9A}" = Adobe Premiere Pro CS3 Functional Content "{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3 "{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime "{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3 "{5D2398DF-3022-4820-93BA-F1175FBEA9CA}" = Adobe Creative Suite 3 Master Collection "{6068A42A-C1CF-45F2-9859-5DB16287FE5D}" = msvcrt_installer "{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM "{633A27AE-C1C4-48E7-85D4-3C34994B5331}" = Yooda Map "{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}" = Adobe Setup "{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin "{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All "{6B708481-748A-4EB4-97C1-CD386244FF77}" = Adobe MotionPicture Color Files "{6BBAA81D-6A7E-43AD-8889-2F002DCAAFDD}" = AHV content for Acrobat and Flash "{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}" = Adobe Color Common Settings "{6E08CE13-C2AB-4749-9335-5900B958929E}" = Adobe Illustrator CS3 "{6ECB39BD-73C2-44DD-B1A0-898207C58D8B}" = Photo et imagerie HP 2.0 - All-in-One Pilote "{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3 "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{72AD53CC-CCC0-3757-8480-9EE176866A7C}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA "{73B5D990-04EA-4751-B10F-5534770B91F2}" = Adobe Color EU Recommended Settings "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update "{7ACFB90E-8FD0-4397-AD3A-5195412623A3}" = Adobe Help Viewer CS3 "{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP "{7E6066E6-8B5B-4100-B0FA-1D9E9B663CBA}" = iTunes "{80FD3971-8482-49C8-BA8C-B6464A15882F}" = Adobe Flash CS3 "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{845A8DB9-8802-4FD3-9FE3-938A6C46A2EC}" = Adobe Video Profiles "{85AC0FFA-643D-3103-9310-7086ECB0C36C}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - ESN "{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 "{87441A59-5E64-4096-A170-14EFE67200C3}" = Picture Control Utility "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8BD35570-F24B-4763-B8CD-42F93543D1E7}" = BlueSoleil 2.3.2.3 Release "{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3 "{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support "{90120000-0020-040C-0000-0000000FF1CE}" = Module de compatibilité pour Microsoft Office System 2007 "{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3 "{90280409-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional with FrontPage "{945AC98B-3DC8-45BE-BAE0-22CEEE37A103}" = Logitech QuickCam "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{9867A917-5D17-40DE-83BA-BEA5293194B1}" = Photo et imagerie HP 2.0 - All-in-One "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3 "{A040AC77-C1AA-4CC9-8931-9F648AF178F6}" = VC 9.0 Runtime "{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI "{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps "{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AB8DD4C1-6237-455E-AF09-86296B3E3EE0}" = Ciel Auto-entrepreneur Facile 1.30 "{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings "{AC76BA86-1033-F400-7760-000000000003}" = Adobe Acrobat 8 Professional - English, Français, Deutsch "{AC76BA86-7AD7-1036-7B44-AA1000000001}" = Adobe Reader X (10.1.0) - Français "{B0513493-04B9-4F21-B4AB-83E750D54256}" = Adobe Photoshop Lightroom 2.7 "{B10914FD-8812-47A4-85A1-50FCDE7F1F33}" = Windows Live Sync "{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter "{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0 "{B2D55EB8-32C5-4B43-9006-9E97DECBA178}" = Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) "{B3575D00-27EF-49C2-B9E0-14B3D954E992}" = Apple Application Support "{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0 "{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}" = Adobe Setup "{B57EAFF2-D6EE-4C6C-9175-ED9F17BFC1BC}" = Windows Live Messenger "{B671CBFD-4109-4D35-9252-3062D3CCB7B2}" = Adobe SING CS3 "{B73CFB12-C814-4638-AFFD-7E3AAFAF0B4E}" = Adobe BridgeTalk Plugin CS3 "{B8B7A4D8-80E1-4DAE-BD33-7FD535BA3931}" = Adobe Encore CS3 Codecs "{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3 "{BDEDB104-4067-3D5E-81F0-DBEBFE856B45}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - ESN "{BE5F3842-8309-4754-92D5-83E02E6077A3}" = Adobe Extension Manager CS3 "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C1FA4B3B-1625-4922-9C9D-780E8FCE161A}" = Adobe Photoshop CS3 "{C23CD6DA-1958-43A5-ADD0-59396572E02E}" = Apple Mobile Device Support "{C2E4B5BD-32DB-4817-A060-341AB17C3F90}" = Bonjour "{C5BD220A-EFE8-48A5-B70E-9503D535FACE}" = Adobe WAS CS3 "{C9D8A041-2963-4B31-8FFC-1500F3DB9293}" = EpsonNet Setup 3.2 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client "{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files "{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}" = Nikon Message Center "{D3EE034D-5B92-4A55-AA02-2E6D0A6A96EE}" = Windows Resource Kit Tools - SubInAcl.exe "{D5A31AB1-345D-47C7-A87B-036A669F6DF1}" = Adobe XMP Panels CS3 "{D972C4DC-0E76-4698-A2B4-ABEFA25FFB9E}" = Navman F20 Service Pack "{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings "{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager "{E6158D07-2637-4ECF-B576-37C489669174}" = Windows Live Call "{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3 "{E9757890-7EC5-46C8-99AB-B00F07B6525C}" = Nikon Transfer "{EA7B3CC4-366D-4CF6-8350-FD7A7034116E}" = Adobe InDesign CS3 Icon Handler "{EE39FFBD-544E-49E4-A999-6819828EAE91}" = Windows Live Photo Gallery "{F007CBCE-D714-4C0B-8CE9-9B0D78116468}" = ViewNX "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU] "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard "{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729) "{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01 "{F84ADE4E-9220-4324-994D-801EDD9DD251}" = Adobe Contribute CS3 "{F9000000-0018-0000-0000-074957833700}" = ABBYY FineReader 9.0 Sprint "{FE8327F9-3AC1-4586-8C7E-3DEE2BC92441}" = Adobe InDesign CS3 "{FF29A7E2-FF40-4D07-B7E4-2093DE59E10A}" = Adobe Color NA Extra Settings "ABBYY FineReader 9.0 Sprint" = ABBYY FineReader 9.0 Sprint "Adobe Acrobat 8 Professional - English, Français, Deutsch" = Adobe Acrobat 8.3.0 Professional "Adobe Acrobat 8 Professional - English, Français, Deutsch_830" = Adobe Acrobat 8.3.0 - CPSID_83708 "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.6 "Adobe_3e054d2218e7aa282c2369d939e58ff" = Adobe ExtendScript Toolkit 2 "Adobe_6c8e2cb4fd241c55406016127a6ab2e" = Adobe Color Common Settings "Adobe_b5d5789539ea1f004a4defceea74312" = Ajouter ou supprimer Adobe Creative Suite 3 Master Collection "Atlantis Quest_is1" = Atlantis Quest "Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus "Capture NX" = Capture NX "CCleaner" = CCleaner "eMule" = eMule "EPSON Scanner" = EPSON Scan "EPSON SX420W Series" = EPSON SX420W Series Printer Uninstall "EPSON SX420W Series Manual" = EPSON SX420W Series Manuel "EPSON SX420W Series Network Guide" = Guide réseau pour EPSON SX420W Series "ESET Online Scanner" = ESET Online Scanner v3 "FileZilla Client" = FileZilla Client 3.5.0 "Free Mp3 Wma Converter_is1" = Free Mp3 Wma Converter V 1.94 "Freecorder5" = Freecorder 5 "Google Updater" = Outil de mise à jour Google "hpHosts_is1" = hpHosts "IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs "ie7" = Windows Internet Explorer 7 "ie8" = Windows Internet Explorer 8 "InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Administrador de dispositivos de plataforma "Internet Digital Radio Tuner_is1" = Internet Digital Radio Tuner 3.1.0 "KUSO EXIF Viewer" = KUSO EXIF Viewer "La boite a couleurs_is1" = La boite a couleurs version 1.6.15 "Le corps humain 6.0" = Le corps humain 6.0 "Luxor" = Luxor "lvdrivers_11.50" = Paquete de controladores de Logitech QuickCam "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware version 1.51.1.1800 "Microsoft .NET Framework 3.5 Language Pack SP1 - fra" = Module linguistique Microsoft .NET Framework 3.5 SP1- fra "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "monAlbumPhoto_is1" = monAlbumPhoto "Mozilla Firefox 5.0 (x86 fr)" = Mozilla Firefox 5.0 (x86 fr) "MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP "MSNINST" = MSN "NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs "PhotomatixPro3x32_is1" = Photomatix Pro version 3.2.7 "QuickTime32" = QuickTime for Windows (32-bit) "S3" = VIA/S3G Display Driver "Secunia PSI" = Secunia PSI (2.0.0.3001) "Tumblebugs" = Tumblebugs "Vertrix 2" = Vertrix 2 "VIA/S3G UniChrome Family Win2K/XP Display" = VIA/S3G Display Driver "VLC media player" = VLC media player 1.1.10 "VTDisplay" = S3 S3Display "VTGamma2" = S3 S3Gamma2 "VTInfo2" = S3 S3Info2 "VTOverlay" = S3 S3Overlay "Winamp" = Winamp "Windows Media Format Runtime" = Windows Media Format 11 runtime "Windows Media Player" = Lecteur Windows Media 11 "Windows XP Service" = Windows XP Service Pack 3 "WinLiveSuite_Wave3" = Windows Live Essentials "WinPcapInst" = WinPcap 4.1.2 "WinRAR archiver" = WinRAR 4.00 (32-bit) "WMFDist11" = Windows Media Format 11 runtime "wmp11" = Windows Media Player 11 "Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0 "XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0 "ZoneAlarm" = ZoneAlarm "Zuma Deluxe" = Zuma Deluxe ========== HKEY_CURRENT_USER Uninstall List ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Winamp Detect" = Détection de l'application Winamp ========== Last 10 Event Log Errors ========== [ Application Events ] Error - 03/07/2011 06:00:21 | Computer Name = UNICORNI-373E20 | Source = VSS | ID = 8193 Description = Erreur du service de cliché instantané des volumes : erreur lors de l'appel de la routine CoCreateInstance. hr = 0x80070422. Error - 03/07/2011 06:10:06 | Computer Name = UNICORNI-373E20 | Source = VSS | ID = 8193 Description = Erreur du service de cliché instantané des volumes : erreur lors de l'appel de la routine CoCreateInstance. hr = 0x80070422. Error - 03/07/2011 06:13:04 | Computer Name = UNICORNI-373E20 | Source = VSS | ID = 8193 Description = Erreur du service de cliché instantané des volumes : erreur lors de l'appel de la routine CoCreateInstance. hr = 0x80070422. Error - 03/07/2011 06:14:33 | Computer Name = UNICORNI-373E20 | Source = VSS | ID = 8193 Description = Erreur du service de cliché instantané des volumes : erreur lors de l'appel de la routine CoCreateInstance. hr = 0x80070422. Error - 03/07/2011 06:20:38 | Computer Name = UNICORNI-373E20 | Source = VSS | ID = 8193 Description = Erreur du service de cliché instantané des volumes : erreur lors de l'appel de la routine CoCreateInstance. hr = 0x80070422. Error - 03/07/2011 08:15:58 | Computer Name = UNICORNI-373E20 | Source = VSS | ID = 8193 Description = Erreur du service de cliché instantané des volumes : erreur lors de l'appel de la routine CoCreateInstance. hr = 0x80070422. Error - 04/07/2011 04:55:04 | Computer Name = UNICORNI-373E20 | Source = crypt32 | ID = 131080 Description = Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>'>http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>'>http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : Cette opération s'est terminée car le délai d'attente a expiré. Error - 04/07/2011 14:51:54 | Computer Name = UNICORNI-373E20 | Source = crypt32 | ID = 131080 Description = Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : The server name or address could not be resolved Error - 04/07/2011 15:55:05 | Computer Name = UNICORNI-373E20 | Source = Application Hang | ID = 1002 Description = Application bloquée firefox.exe, version 5.0.0.4183, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. Error - 05/07/2011 09:01:48 | Computer Name = UNICORNI-373E20 | Source = crypt32 | ID = 131080 Description = Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : Cette opération s'est terminée car le délai d'attente a expiré. [ System Events ] Error - 01/08/2011 07:26:02 | Computer Name = UNICORNI-373E20 | Source = Service Control Manager | ID = 7026 Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se charger : AVG Anti-Rootkit Error - 01/08/2011 07:26:24 | Computer Name = UNICORNI-373E20 | Source = DCOM | ID = 10010 Description = Le serveur {4EB61BAC-A3B6-4760-9581-655041EF4D69} ne s'est pas enregistré sur DCOM avant la fin du temps imparti. Error - 01/08/2011 16:12:30 | Computer Name = UNICORNI-373E20 | Source = Service Control Manager | ID = 7023 Description = Le service Automatic Updates s'est arrêté avec l'erreur : %%126 Error - 01/08/2011 16:12:30 | Computer Name = UNICORNI-373E20 | Source = Service Control Manager | ID = 7026 Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se charger : AVG Anti-Rootkit Error - 02/08/2011 01:15:37 | Computer Name = UNICORNI-373E20 | Source = Service Control Manager | ID = 7023 Description = Le service Automatic Updates s'est arrêté avec l'erreur : %%126 Error - 02/08/2011 01:15:37 | Computer Name = UNICORNI-373E20 | Source = Service Control Manager | ID = 7026 Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se charger : AVG Anti-Rootkit Error - 02/08/2011 01:28:32 | Computer Name = UNICORNI-373E20 | Source = Service Control Manager | ID = 7023 Description = Le service Automatic Updates s'est arrêté avec l'erreur : %%126 Error - 02/08/2011 01:28:32 | Computer Name = UNICORNI-373E20 | Source = Service Control Manager | ID = 7026 Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se charger : AVG Anti-Rootkit Error - 02/08/2011 03:00:40 | Computer Name = UNICORNI-373E20 | Source = Service Control Manager | ID = 7023 Description = Le service Automatic Updates s'est arrêté avec l'erreur : %%126 Error - 02/08/2011 03:00:40 | Computer Name = UNICORNI-373E20 | Source = Service Control Manager | ID = 7026 Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se charger : AVG Anti-Rootkit [ TuneUp Events ] Error - 03/03/2009 12:06:45 | Computer Name = UNICORNI-373E20 | Source = TuneUp Program Statistics | ID = 131840 Description = Error - 03/03/2009 12:08:31 | Computer Name = UNICORNI-373E20 | Source = TuneUp Program Statistics | ID = 131840 Description = Error - 03/03/2009 12:08:36 | Computer Name = UNICORNI-373E20 | Source = TuneUp Program Statistics | ID = 131840 Description = Error - 03/03/2009 12:08:51 | Computer Name = UNICORNI-373E20 | Source = TuneUp Program Statistics | ID = 131840 Description = Error - 03/03/2009 12:09:32 | Computer Name = UNICORNI-373E20 | Source = TuneUp Program Statistics | ID = 131840 Description = Error - 03/03/2009 12:09:37 | Computer Name = UNICORNI-373E20 | Source = TuneUp Program Statistics | ID = 131840 Description = Error - 03/03/2009 12:09:52 | Computer Name = UNICORNI-373E20 | Source = TuneUp Program Statistics | ID = 131840 Description = < End of report >

Bonjour lance_yien, Voilà le premier rapport d'OTL : OTL logfile created on: 02/08/2011 13:05:17 - Run 1 OTL by OldTimer - Version 3.2.26.1 Folder = C:\Documents and Settings\Mme legall\Bureau Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 1,44 Gb Total Physical Memory | 0,99 Gb Available Physical Memory | 69,13% Memory free 2,73 Gb Paging File | 2,41 Gb Available in Paging File | 88,43% Paging File free Paging file location(s): C:\pagefile.sys 0 0 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 156,75 Gb Total Space | 33,47 Gb Free Space | 21,35% Space Free | Partition Type: NTFS Drive E: | 149,01 Gb Total Space | 64,66 Gb Free Space | 43,40% Space Free | Partition Type: FAT32 Drive J: | 931,51 Gb Total Space | 821,97 Gb Free Space | 88,24% Space Free | Partition Type: NTFS Computer Name: UNICORNI-373E20 | User Name: Mme legall | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2011/08/01 09:01:04 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mme legall\Bureau\OTL.exe PRC - [2011/07/06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe PRC - [2011/04/27 22:46:34 | 000,136,360 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe PRC - [2011/04/08 12:59:52 | 000,254,696 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe PRC - [2011/04/02 08:44:05 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe PRC - [2011/03/24 08:11:25 | 000,167,936 | ---- | M] (Applian Technologies, Inc.) -- C:\Program Files\Freecorder\FLVSrvc.exe PRC - [2011/02/18 17:37:16 | 000,037,664 | ---- | M] (Apple Inc.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe PRC - [2011/01/10 16:24:20 | 000,399,416 | ---- | M] (Secunia) -- C:\Program Files\Secunia\PSI\sua.exe PRC - [2010/08/17 14:38:55 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe PRC - [2010/03/04 23:38:00 | 000,071,096 | ---- | M] () -- C:\Program Files\CDBurnerXP\NMSAccessU.exe PRC - [2010/01/14 23:11:14 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe PRC - [2009/12/03 10:12:12 | 000,976,320 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files\Epson Software\Event Manager\EEventManager.exe PRC - [2009/05/14 17:07:14 | 000,759,048 | ---- | M] (ABBYY) -- C:\Program Files\Fichiers communs\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe PRC - [2008/09/06 00:30:04 | 000,952,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WgaTray.exe PRC - [2008/04/14 04:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2007/10/25 16:33:22 | 000,563,984 | ---- | M] () -- C:\Program Files\Fichiers communs\logishrd\LComMgr\Communications_Helper.exe PRC - [2007/10/19 13:17:28 | 000,186,904 | ---- | M] (Logitech Inc.) -- C:\Program Files\Fichiers communs\logishrd\LVCOMSER\LVComSer.exe PRC - [2007/06/05 14:20:32 | 000,177,704 | ---- | M] () -- C:\WINDOWS\system32\PSIService.exe PRC - [2004/10/22 11:53:06 | 000,053,248 | ---- | M] (S3 Graphics, Inc.) -- C:\WINDOWS\system32\VTTimer.exe ========== Modules (SafeList) ========== MOD - [2011/08/02 09:00:01 | 000,018,432 | ---- | M] (Applian Technologies, Inc.) -- C:\Documents and Settings\Mme legall\Local Settings\Application Data\FLVService\lib\FLVSrvLib.dll MOD - [2011/08/01 09:01:04 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mme legall\Bureau\OTL.exe MOD - [2011/04/18 22:51:18 | 000,653,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcr90.dll MOD - [2010/08/23 18:12:39 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll ========== Win32 Services (SafeList) ========== SRV - File not found [Auto | Stopped] -- -- (wuauserv) SRV - File not found [Auto | Stopped] -- -- (PEVSystemStart) SRV - [2011/07/06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService) SRV - [2011/04/27 22:46:34 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2011/04/02 08:44:05 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2011/02/18 17:37:16 | 000,037,664 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device) SRV - [2011/01/10 16:24:20 | 000,993,848 | ---- | M] (Secunia) [On_Demand | Stopped] -- C:\Program Files\Secunia\PSI\PSIA.exe -- (Secunia PSI Agent) SRV - [2011/01/10 16:24:20 | 000,399,416 | ---- | M] (Secunia) [Auto | Running] -- C:\Program Files\Secunia\PSI\sua.exe -- (Secunia Update Agent) SRV - [2010/11/29 11:42:56 | 000,058,944 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper_3004.dll -- (nosGetPlusHelper) getPlus® SRV - [2010/10/09 18:07:31 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2010/06/25 19:07:20 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental) SRV - [2010/06/23 13:52:56 | 002,435,592 | ---- | M] (Check Point Software Technologies LTD) [Auto | Stopped] -- C:\WINDOWS\System32\ZoneLabs\vsmon.exe -- (vsmon) SRV - [2010/03/04 23:38:00 | 000,071,096 | ---- | M] () [Auto | Running] -- C:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccess) SRV - [2009/05/14 17:07:14 | 000,759,048 | ---- | M] (ABBYY) [Auto | Running] -- C:\Program Files\Fichiers communs\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Sprint.9.0) SRV - [2008/07/26 08:27:42 | 000,141,848 | ---- | M] (Logitech Inc.) [Auto | Stopped] -- C:\Program Files\Fichiers communs\logishrd\SrvLnch\SrvLnch.exe -- (LVSrvLauncher) SRV - [2007/10/19 13:19:22 | 000,141,848 | ---- | M] (Logitech Inc.) [Auto | Stopped] -- C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv) SRV - [2007/10/19 13:17:28 | 000,186,904 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe -- (LVCOMSer) SRV - [2007/08/23 15:32:00 | 000,261,120 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Windows Live\installer\WLSetupSvc.exe -- (WLSetupSvc) SRV - [2007/06/05 14:20:32 | 000,177,704 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\PSIService.exe -- (ProtexisLicensing) SRV - [2007/03/20 16:41:24 | 000,153,792 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe -- (Adobe Version Cue CS3) SRV - [2005/11/14 02:06:04 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT) SRV - [2005/04/06 17:03:28 | 000,110,592 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Sitecom\IVT BlueSoleil\BTNtService.exe -- (BlueSoleil Hid Service) ========== Driver Services (SafeList) ========== DRV - [2011/07/06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector) DRV - [2011/04/02 08:44:06 | 000,137,656 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb) DRV - [2010/12/13 21:30:48 | 000,061,960 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt) DRV - [2010/09/01 10:30:58 | 000,015,544 | ---- | M] (Secunia) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\psi_mf.sys -- (PSI) DRV - [2010/06/25 19:07:14 | 000,035,088 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF) DRV - [2010/06/17 16:28:02 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2010/06/17 16:27:52 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio) DRV - [2010/05/13 10:02:32 | 000,532,224 | ---- | M] (Check Point Software Technologies LTD) [Kernel | System | Running] -- C:\WINDOWS\system32\vsdatant.sys -- (vsdatant) DRV - [2009/11/12 13:48:56 | 000,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen) DRV - [2009/09/26 09:36:14 | 000,721,904 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2008/07/26 17:26:20 | 000,041,752 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta) DRV - [2008/07/01 19:33:33 | 000,101,376 | ---- | M] (Protect Software GmbH) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\ACEDRV07.sys -- (ACEDRV07) DRV - [2008/04/13 20:53:09 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm) DRV - [2008/02/01 11:43:00 | 000,489,624 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LV561AV.SYS -- (PID_0928) Logitech QuickCam Express(PID_0928) DRV - [2007/10/19 13:16:30 | 002,109,976 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Lvckap.sys -- (LVcKap) DRV - [2007/10/11 18:59:02 | 002,142,488 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVMVdrv.sys -- (LVMVDrv) DRV - [2006/11/24 19:04:18 | 000,007,168 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\HardwareDetection\driverhardwarev2.sys -- (driverhardwarev2) DRV - [2006/10/17 20:22:26 | 000,009,216 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\videX32.sys -- (videX32) DRV - [2006/09/18 13:48:22 | 000,030,329 | ---- | M] (NAVMAN) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Navcar.sys -- (Navcar) DRV - [2006/07/16 17:06:16 | 000,023,040 | ---- | M] (IVT Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btcusb.sys -- (Btcsrusb) DRV - [2006/06/29 12:35:04 | 002,410,076 | R--- | M] (Agere Systems) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem) DRV - [2006/06/23 17:00:26 | 000,031,488 | ---- | M] (IVT Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\blueletaudio.sys -- (BlueletAudio) DRV - [2006/02/28 17:57:22 | 000,084,836 | ---- | M] (IVT Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VcommMgr.sys -- (VcommMgr) DRV - [2006/01/19 14:31:34 | 000,010,068 | ---- | M] (IVT Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\BtNetDrv.sys -- (BT) DRV - [2005/08/31 11:34:52 | 000,020,480 | ---- | M] (IVT Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BlueletSCOAudio.sys -- (BlueletSCOAudio) DRV - [2005/07/29 17:21:32 | 000,011,988 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\vbtenum.sys -- (BTHidEnum) DRV - [2005/05/12 16:24:48 | 000,260,608 | ---- | M] (ZyDAS Technology Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WlanUZXP.sys -- (SG760_XP) DRV - [2005/04/30 15:50:10 | 000,028,271 | ---- | M] (IVT Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\BTHidMgr.sys -- (BTHidMgr) DRV - [2004/10/19 14:37:38 | 000,061,312 | ---- | M] (IVT Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VComm.sys -- (VComm) DRV - [2004/08/03 22:41:46 | 000,095,424 | ---- | M] (Smart Link) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\slnthal.sys -- (SlNtHal) DRV - [2004/08/03 22:41:46 | 000,013,240 | ---- | M] (Smart Link) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\slwdmsup.sys -- (SlWdmSup) DRV - [2004/08/03 22:41:44 | 000,404,990 | ---- | M] (Smart Link) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\slntamr.sys -- (Slntamr) DRV - [2004/08/03 22:41:40 | 000,180,360 | ---- | M] (Smart Link) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ntmtlfax.sys -- (NtMtlFax) DRV - [2004/08/03 22:41:40 | 000,126,686 | ---- | M] (Smart Link) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mtlmnt5.sys -- (Mtlmnt5) DRV - [2004/08/03 22:41:40 | 000,013,776 | ---- | M] (Smart Link) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\RecAgent.sys -- (RecAgent) DRV - [2004/08/03 22:41:38 | 001,309,184 | ---- | M] (Smart Link) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mtlstrm.sys -- (Mtlstrm) DRV - [2004/02/27 01:50:38 | 000,611,820 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2004/02/24 12:08:52 | 000,400,384 | ---- | M] (Sensaura) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS -- (ALCXSENS) DRV - [2003/08/04 15:22:44 | 000,016,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\PCANDIS5.SYS -- (PCANDIS5) DRV - [2003/06/16 11:05:40 | 000,369,920 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\viaudios.sys -- (VIAudio) VIA AC'97 Audio Controller (WDM) DRV - [2003/05/27 16:45:06 | 000,003,351 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vsp.sys -- (Vsp) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search bar = Le Complément de recherche d'Internet Explorer 6 n'est plus pris en charge. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "Yahoo" FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=867034" FF - prefs.js..browser.search.selectedEngine: "Yahoo" FF - prefs.js..browser.startup.homepage: "http://www.google.com/" FF - prefs.js..extensions.enabledItems: {DB9127A2-3381-41ec-82B3-1B6ED4C6F29A}:1.0 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1.6.2.97 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24 FF - prefs.js..extensions.enabledItems: {11483926-db67-4190-91b1-ef20fcec5f33}:0.4.3 FF - prefs.js..keyword.URL: "http://fr.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&type=867034&p=" FF - prefs.js..network.proxy.http: "127.0.0.1" FF - prefs.js..network.proxy.http_port: 7180 FF - prefs.js..network.proxy.no_proxies_on: "*.local" FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@checkpoint.com/FFApi: C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll File not found FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=13: C:\Program Files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll (Google) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=1.1.10: C:\Program Files\VideoLAN\VLC\npvlc.dll (the VideoLAN Team) FF - HKLM\Software\MozillaPlugins\@zylom.com/ZylomGamesPlayer: C:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll (Zylom) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/06/21 20:37:55 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/06/19 12:19:48 | 000,000,000 | ---D | M] [2008/08/29 12:33:49 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Mme legall\Application Data\Mozilla\Extensions [2011/07/31 12:40:47 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Mme legall\Application Data\Mozilla\Firefox\Profiles\65johz6b.default\extensions [2011/03/06 21:22:17 | 000,000,000 | ---D | M] ("FxIF") -- C:\Documents and Settings\Mme legall\Application Data\Mozilla\Firefox\Profiles\65johz6b.default\extensions\{11483926-db67-4190-91b1-ef20fcec5f33} [2011/06/21 20:38:59 | 000,000,000 | ---D | M] (Freecorder Community Toolbar) -- C:\Documents and Settings\Mme legall\Application Data\Mozilla\Firefox\Profiles\65johz6b.default\extensions\{1392b8d2-5c05-419f-a8f6-b9f15a596612} [2010/12/10 12:01:41 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Mme legall\Application Data\Mozilla\Firefox\Profiles\65johz6b.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2011/07/31 12:40:47 | 000,000,000 | ---D | M] (BitDefender QuickScan) -- C:\Documents and Settings\Mme legall\Application Data\Mozilla\Firefox\Profiles\65johz6b.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360} [2011/01/27 13:21:55 | 000,000,000 | ---D | M] (Adobe DLM (powered by getPlus®)) -- C:\Documents and Settings\Mme legall\Application Data\Mozilla\Firefox\Profiles\65johz6b.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7} [2011/04/30 16:09:39 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Mme legall\Application Data\Mozilla\Firefox\Profiles\65johz6b.default\extensions\nostmp [2011/06/21 18:34:48 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2011/05/02 12:20:31 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [2011/06/20 21:13:27 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} [2011/06/21 18:34:49 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} [2010/03/17 11:08:31 | 000,000,000 | ---D | M] (flashget3 Extension) -- C:\Program Files\Mozilla Firefox\extensions\{DB9127A2-3381-41ec-82B3-1B6ED4C6F29A} File not found (No name found) -- () (No name found) -- C:\DOCUMENTS AND SETTINGS\MME LEGALL\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\65JOHZ6B.DEFAULT\EXTENSIONS\SECURELOGIN@BLUEIMP.NET.XPI () (No name found) -- C:\DOCUMENTS AND SETTINGS\MME LEGALL\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\65JOHZ6B.DEFAULT\EXTENSIONS\YTVDW@PGPORT.COM.XPI [2011/06/20 21:13:03 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2011/06/21 20:37:51 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2011/05/04 04:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2011/03/17 21:57:30 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll [2006/09/26 13:03:14 | 000,098,304 | ---- | M] (Zylom) -- C:\Program Files\mozilla firefox\plugins\npzylomgamesplayer.dll [2010/01/01 10:00:00 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml [2010/01/01 10:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml [2010/01/01 10:00:00 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml [2010/01/01 10:00:00 | 000,001,154 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml [2010/01/01 10:00:00 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml [2010/01/01 10:00:00 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml O1 HOSTS File: ([2011/05/05 18:58:02 | 003,983,251 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\HOSTS O1 - Hosts: 127.0.0.1 localhost #IPv4 O1 - Hosts: ::1 localhost # IPv6 O1 - Hosts: 127.0.0.1 -air-talkie-walkie.ddlcorner.com O1 - Hosts: 127.0.0.1 0-29.com O1 - Hosts: 127.0.0.1 0-pdf.com O1 - Hosts: 127.0.0.1 0.gravatar.com O1 - Hosts: 127.0.0.1 0.gvt0.com O1 - Hosts: 127.0.0.1 00.eatgoogle.345.pl O1 - Hosts: 127.0.0.1 00.eatgoogle.bee.pl O1 - Hosts: 127.0.0.1 00.eatgoogle.bij.pl O1 - Hosts: 127.0.0.1 00.eatgoogle.orge.pl O1 - Hosts: 127.0.0.1 00.eatgoogle.osa.pl O1 - Hosts: 127.0.0.1 00.googleeat.345.pl O1 - Hosts: 127.0.0.1 00.googleeat.bee.pl O1 - Hosts: 127.0.0.1 00.googleeat.bij.pl O1 - Hosts: 127.0.0.1 00.googleeat.orge.pl O1 - Hosts: 127.0.0.1 00.googleeat.osa.pl O1 - Hosts: 127.0.0.1 00.moregoogle.345.pl O1 - Hosts: 127.0.0.1 00.moregoogle.bee.pl O1 - Hosts: 127.0.0.1 00.moregoogle.bij.pl O1 - Hosts: 127.0.0.1 00.moregoogle.osa.pl O1 - Hosts: 127.0.0.1 000-101.org O1 - Hosts: 127.0.0.1 0000.in O1 - Hosts: 127.0.0.1 0000a-fast-proxy.de O1 - Hosts: 127.0.0.1 00161dcc.linkbucks.com O1 - Hosts: 124382 more lines... O2 - BHO: (Aide pour le lien d'Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll () O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.6209.1142\swg.dll (Google Inc.) O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll () O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [EEventManager] C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [Freecorder FLV Service] C:\Program Files\Freecorder\FLVSrvc.exe (Applian Technologies, Inc.) O4 - HKLM..\Run: [LogitechCommunicationsManager] C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe () O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) O4 - HKLM..\Run: [sunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.) O4 - HKLM..\Run: [VTTimer] C:\WINDOWS\System32\VTTimer.exe (S3 Graphics, Inc.) O4 - HKLM..\Run: [ZoneAlarm Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe (Check Point Software Technologies LTD) O4 - HKCU..\Run: [EPSON SX420W Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIGCE.EXE (SEIKO EPSON CORPORATION) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 0 O8 - Extra context menu item: Ajouter au fichier PDF existant - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convertir en Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convertir la cible du lien en Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convertir la cible du lien en un fichier PDF existant - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convertir la sélection en Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convertir la sélection en un fichier PDF existant - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convertir les liens sélectionnés en un fichier PDF existant - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Open with KUSO EXIF Viewer - C:\Program Files\KUSO EXIF Viewer\EXIF.htm () O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O15 - HKCU\..Trusted Domains: com.tw ([asia.msi] http in Sites de confiance) O15 - HKCU\..Trusted Domains: com.tw ([global.msi] http in Sites de confiance) O15 - HKCU\..Trusted Domains: com.tw ([www.msi] http in Sites de confiance) O15 - HKCU\..Trusted Domains: kuaiche.com ([software] http in Sites de confiance) O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/e/4/9/e494c802-dd90-4c6b-a074-469358f075a6/OGAControl.cab (Office Genuine Advantage Validation Tool) O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab (Facebook Photo Uploader 5 Control) O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/C/0/C/C0CBBA88-A6F2-48D9-9B0E-1719D1177202/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool) O16 - DPF: {1E3F1348-4370-4BBE-A67A-CC7ED824CA85} http://download.microsoft.com/download/7/4/9/749b0dc5-2175-4d5b-a6dd-9c4bc923683e/Selfhelpcontrol.cab (Microsoft Genuine Advantage Self Support Tool) O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab (Checkers Class) O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab (MSN Photo Upload Tool) O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab (Solitaire Showdown Class) O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab (UnoCtrl Class) O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1192264014062 (MUWebControl Class) O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} http://copainsdavant.linternaute.com/html_include_bibliotheque/objimageuploader/ImageUploader4.cab (Reg Error: Key error.) O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control) O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} http://titebullamoi.spaces.live.com/PhotoUpload/MsnPUpld.cab (Windows Live Photo Upload Control) O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab (Facebook Photo Uploader 5 Control) O16 - DPF: {8167C273-DF59-4416-B647-C8BB2C7EE83E} http://liveupdate.msi.com.tw/autobios/LOnline/install.cab (WebSDev Control) O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} http://www.touslesdrivers.com/fichiers/hardwaredetection/hardwaredetection.cab?version= (HardwareDetection Control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.) O16 - DPF: {BA162249-F2C5-4851-8ADC-FC58CB424243} http://copainsdavant.linternaute.com/html_include_bibliotheque/objimageuploader/5.1.1.0/ImageUploader5.cab (Reg Error: Key error.) O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class) O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} Reg Error: Value error. (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} http://gfx2.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cab (Windows Live Hotmail Photo Upload Tool) O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} http://driveragent.com/files/driveragent.cab (Driver Agent ActiveX Control) O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Ma page d'accueil) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Mme legall\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Mme legall\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2007/01/23 21:08:57 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2011/01/02 18:14:55 | 000,000,000 | R--D | M] - C:\Autorun.inf -- [ NTFS ] O32 - AutoRun File - [2011/01/02 17:14:56 | 000,000,000 | R--D | M] - E:\Autorun.inf -- [ FAT32 ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found NetSvcs: wuauserv - File not found Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation) Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.) Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.) Drivers32: MSVideo - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation) Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation) Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.) Drivers32: VIDC.I420 - C:\WINDOWS\System32\LVCodec2.dll (Logitech Inc.) Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation) Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation) Drivers32: vidc.tscc - C:\WINDOWS\System32\tsccvid.dll (TechSmith Corporation) Drivers32: wave3 - C:\WINDOWS\System32\serwvdrv.dll (Microsoft Corporation) Drivers32: wave4 - C:\WINDOWS\System32\serwvdrv.dll (Microsoft Corporation) CREATERESTOREPOINT Restore point Set: OTL Restore Point PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin ========== Files/Folders - Created Within 30 Days ========== [2011/08/01 13:28:56 | 000,000,000 | --SD | C] -- C:\ComboFix [2011/08/01 09:01:00 | 000,579,584 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Mme legall\Bureau\OTL.exe [2011/08/01 09:00:51 | 004,159,367 | R--- | C] (Swearware) -- C:\Documents and Settings\Mme legall\Bureau\ComboFix.exe [2011/08/01 08:29:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mme legall\Mes documents\monAlbumPhoto [2011/08/01 08:03:24 | 000,415,072 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Leadtools.Windows.Media.Effects.dll [2011/08/01 08:03:24 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ATL80.dll [2011/08/01 08:03:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\monAlbumPhoto [2011/07/29 15:30:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mme legall\Bureau\Chloé juillet 2011 [2011/07/13 18:18:51 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Mme legall\Recent [2011/07/10 14:11:47 | 000,000,000 | ---D | C] -- C:\Program Files\BHODemon 2 [2011/07/10 13:21:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\PhotomatixPro3 [2011/07/10 11:55:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mme legall\Bureau\Essais2 [2011/07/10 10:54:16 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro [2011/07/10 10:54:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mme legall\Menu Démarrer\Programmes\HiJackThis [2011/07/09 07:30:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft [2011/07/08 19:38:28 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update [2011/07/05 20:56:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mme legall\Application Data\vlc [2008/11/05 10:54:59 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Mme legall\Application Data\pcouffin.sys [1998/06/29 10:03:36 | 000,099,840 | ---- | C] ( ) -- C:\WINDOWS\System32\Zipdll.dll [1998/06/29 10:03:36 | 000,094,208 | ---- | C] ( ) -- C:\WINDOWS\System32\Unzdll.dll [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [11 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2011/08/02 13:06:16 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin [2011/08/02 12:25:00 | 000,001,056 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2011/08/02 09:15:39 | 000,004,212 | -H-- | M] () -- C:\WINDOWS\System32\zllictbl.dat [2011/08/02 09:00:52 | 000,000,004 | ---- | M] () -- C:\WINDOWS\Twain001.Mtx [2011/08/02 09:00:50 | 000,421,537 | ---- | M] () -- C:\WINDOWS\System32\vsconfig.xml [2011/08/02 09:00:39 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011/08/02 09:00:05 | 000,000,156 | ---- | M] () -- C:\WINDOWS\Twunk001.MTX [2011/08/02 08:59:48 | 000,001,000 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job [2011/08/02 08:59:45 | 000,000,236 | ---- | M] () -- C:\WINDOWS\tasks\OGALogon.job [2011/08/02 08:59:43 | 000,001,052 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2011/08/02 08:58:57 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011/08/02 08:58:56 | 1543,036,928 | -HS- | M] () -- C:\hiberfil.sys [2011/08/02 07:58:21 | 000,033,486 | ---- | M] () -- C:\Documents and Settings\Mme legall\Bureau\noir.jpg [2011/08/01 13:18:59 | 001,476,408 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011/08/01 09:01:12 | 004,159,367 | R--- | M] (Swearware) -- C:\Documents and Settings\Mme legall\Bureau\ComboFix.exe [2011/08/01 09:01:04 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mme legall\Bureau\OTL.exe [2011/08/01 08:03:27 | 000,000,680 | ---- | M] () -- C:\Documents and Settings\Mme legall\Bureau\monAlbumPhoto.lnk [2011/08/01 06:52:26 | 000,879,225 | ---- | M] () -- C:\Documents and Settings\Mme legall\Bureau\SecurityCheck.exe [2011/07/29 15:38:07 | 000,000,233 | ---- | M] () -- C:\WINDOWS\ViewNX.INI [2011/07/29 15:32:39 | 000,000,020 | -H-- | M] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLdw.DAT [2011/07/29 15:30:40 | 000,000,020 | -H-- | M] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLdu.DAT [2011/07/10 10:42:53 | 000,000,292 | ---- | M] () -- C:\boot.ini [2011/07/09 07:32:21 | 000,000,492 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job [2011/07/09 07:32:05 | 000,101,720 | ---- | M] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys [2011/07/08 19:38:46 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job [2011/07/06 19:52:42 | 000,041,272 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2011/07/06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [11 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ] ========== Files Created - No Company Name ========== [2011/08/02 13:06:15 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin [2011/08/02 07:58:17 | 000,033,486 | ---- | C] () -- C:\Documents and Settings\Mme legall\Bureau\noir.jpg [2011/08/01 08:03:27 | 000,000,680 | ---- | C] () -- C:\Documents and Settings\Mme legall\Bureau\monAlbumPhoto.lnk [2011/08/01 06:52:24 | 000,879,225 | ---- | C] () -- C:\Documents and Settings\Mme legall\Bureau\SecurityCheck.exe [2011/07/08 19:38:46 | 000,000,284 | ---- | C] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job [2011/07/08 19:38:41 | 000,001,830 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk [2011/06/27 11:19:53 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll [2011/06/18 00:13:51 | 000,000,000 | ---- | C] () -- C:\WINDOWS\EEventManager.INI [2011/05/13 19:53:57 | 000,001,477 | ---- | C] () -- C:\WINDOWS\System32\secushr.dat [2011/04/20 15:35:11 | 000,002,015 | -H-- | C] () -- C:\Documents and Settings\Mme legall\Application Data\hpothb07.tif [2011/04/20 15:35:11 | 000,001,494 | -H-- | C] () -- C:\Documents and Settings\Mme legall\Application Data\hpothb07.dat [2011/04/10 20:19:01 | 000,019,452 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat [2011/03/19 12:49:42 | 000,484,352 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll [2011/03/09 08:08:49 | 000,000,036 | ---- | C] () -- C:\Documents and Settings\Mme legall\Local Settings\Application Data\housecall.guid.cache [2011/01/12 10:36:28 | 000,007,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys [2011/01/07 14:33:07 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe [2011/01/07 14:33:07 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe [2011/01/07 14:33:07 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2011/01/07 14:33:07 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2011/01/07 14:33:07 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2011/01/02 10:38:13 | 000,000,424 | ---- | C] () -- C:\WINDOWS\System32\secustat.dat [2010/11/09 10:21:16 | 000,002,516 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys [2010/11/09 10:21:16 | 000,000,088 | RHS- | C] () -- C:\WINDOWS\System32\C7846D1AD0.sys [2010/10/09 19:30:32 | 000,000,132 | ---- | C] () -- C:\WINDOWS\picture-shark.INI [2010/06/25 19:03:12 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll [2010/03/17 11:08:23 | 000,000,025 | ---- | C] () -- C:\WINDOWS\libem.INI [2010/02/05 12:35:44 | 000,000,136 | -H-- | C] () -- C:\Documents and Settings\Mme legall\Application Data\lakerda1967.sys [2010/02/05 12:34:49 | 000,010,584 | ---- | C] () -- C:\Documents and Settings\Mme legall\Application Data\docXConverter (3).ini [2009/10/08 12:47:54 | 000,000,041 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\.zreglib [2009/10/08 11:44:39 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\UnAudioNT.dll [2009/10/08 11:44:38 | 000,003,351 | ---- | C] () -- C:\WINDOWS\System32\drivers\vsp.sys [2009/10/07 14:38:05 | 000,000,161 | ---- | C] () -- C:\WINDOWS\MyDrivers.ini [2009/10/07 09:51:52 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini [2009/10/06 15:59:00 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\Mme legall\Application Data\PnkBstrK.sys [2009/09/26 10:19:49 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll [2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll [2009/08/03 15:07:42 | 000,230,768 | ---- | C] () -- C:\WINDOWS\System32\OGAEXEC.exe [2009/06/18 12:14:22 | 000,000,042 | ---- | C] () -- C:\WINDOWS\tm.ini [2009/04/20 09:32:17 | 000,000,227 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\Microsoft.SqlServer.Compact.351.32.bc [2009/03/16 13:13:19 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLbz.DAT [2009/01/12 21:13:29 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\ColorSync [2009/01/12 21:13:29 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\Mme legall\Application Data\Classical [2009/01/12 21:13:29 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLck.DAT [2009/01/12 21:13:29 | 000,000,012 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\Hybrid Basic [2009/01/12 21:13:27 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\ColorTable [2009/01/12 21:13:27 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\Mme legall\Application Data\Clean Electric Guitar [2009/01/12 21:13:27 | 000,000,012 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\Hybrid Morph [2009/01/12 21:09:55 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLbx.DAT [2009/01/06 21:48:14 | 000,000,233 | ---- | C] () -- C:\WINDOWS\ViewNX.INI [2009/01/06 21:17:09 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\Tuner [2009/01/06 21:17:09 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\Mme legall\Application Data\Treble Reduction [2009/01/06 21:17:09 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLdw.DAT [2009/01/06 21:14:50 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\Tribal Masks [2009/01/06 21:14:50 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\Mme legall\Application Data\Trance Pad [2009/01/06 21:14:50 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLdu.DAT [2008/11/05 11:00:13 | 000,000,668 | ---- | C] () -- C:\Documents and Settings\Mme legall\Application Data\vso_ts_preview.xml [2008/11/05 10:54:59 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Mme legall\Application Data\pcouffin.cat [2008/11/05 10:54:59 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Mme legall\Application Data\pcouffin.inf [2008/10/27 16:33:17 | 000,000,010 | ---- | C] () -- C:\WINDOWS\popcinfo.dat [2008/09/25 12:35:45 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2008/07/29 20:55:15 | 000,074,703 | ---- | C] () -- C:\WINDOWS\System32\mfc45.dll [2008/03/23 08:55:10 | 000,004,212 | -H-- | C] () -- C:\WINDOWS\System32\zllictbl.dat [2008/03/23 08:55:00 | 000,021,904 | ---- | C] () -- C:\WINDOWS\System32\imsinstall_loc040c.dll [2008/03/23 08:55:00 | 000,017,808 | ---- | C] () -- C:\WINDOWS\System32\imslsp_install_loc040c.dll [2008/03/23 08:54:12 | 000,796,048 | ---- | C] () -- C:\WINDOWS\System32\libeay32_0.9.6l.dll [2008/03/21 21:38:00 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2008/03/20 18:20:02 | 000,000,305 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\addr_file.html [2008/03/13 04:02:48 | 000,001,276 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI [2008/03/06 16:37:00 | 000,004,096 | ---- | C] () -- C:\WINDOWS\d3dx.dat [2008/02/10 19:56:53 | 000,001,065 | ---- | C] () -- C:\WINDOWS\winamp.ini [2008/02/01 08:18:14 | 000,009,216 | ---- | C] () -- C:\WINDOWS\System32\drivers\FlashSys.sys [2007/10/12 14:11:03 | 000,000,379 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2007/10/11 18:59:24 | 000,025,624 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPr2Mon.sys [2007/10/05 11:41:31 | 000,000,306 | ---- | C] () -- C:\WINDOWS\QTW.INI [2007/10/03 09:46:15 | 000,127,616 | ---- | C] () -- C:\WINDOWS\bw6uinst.exe [2007/06/05 14:20:32 | 000,177,704 | ---- | C] () -- C:\WINDOWS\System32\PSIService.exe [2007/06/02 14:02:43 | 000,000,133 | ---- | C] () -- C:\Documents and Settings\Mme legall\Local Settings\Application Data\fusioncache.dat [2007/05/22 18:09:32 | 000,000,035 | ---- | C] () -- C:\WINDOWS\System32\netwbix32.dll [2007/02/17 17:38:19 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\WLANUTL.dll [2007/02/14 12:57:31 | 000,052,736 | ---- | C] () -- C:\Documents and Settings\Mme legall\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2007/02/14 12:51:56 | 000,066,482 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini [2007/02/14 12:49:44 | 000,053,248 | R--- | C] () -- C:\WINDOWS\System32\InstMed.exe [2007/02/14 12:36:23 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll [2007/01/23 22:01:16 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2007/01/23 21:58:28 | 001,476,408 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2007/01/23 21:11:44 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2007/01/23 21:05:51 | 000,021,892 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2006/10/27 16:26:56 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\vuins32.dll [2006/06/29 12:35:02 | 001,111,429 | R--- | C] () -- C:\WINDOWS\uninstallMOH.exe [2006/04/14 10:14:12 | 000,014,312 | ---- | C] () -- C:\WINDOWS\System32\drivers\BTNetFilter.sys [2005/07/29 17:21:32 | 000,011,988 | ---- | C] () -- C:\WINDOWS\System32\drivers\vbtenum.sys [2004/08/04 01:08:26 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin [2004/08/02 14:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2004/02/09 16:18:18 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll [2003/02/12 11:18:04 | 000,285,696 | ---- | C] () -- C:\WINDOWS\System32\Cncs232.dll [2001/08/24 14:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2001/08/24 14:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2001/08/24 14:00:00 | 000,501,286 | ---- | C] () -- C:\WINDOWS\System32\perfh00C.dat [2001/08/24 14:00:00 | 000,433,218 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2001/08/24 14:00:00 | 000,322,810 | ---- | C] () -- C:\WINDOWS\System32\perfi00C.dat [2001/08/24 14:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2001/08/24 14:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2001/08/24 14:00:00 | 000,080,468 | ---- | C] () -- C:\WINDOWS\System32\perfc00C.dat [2001/08/24 14:00:00 | 000,067,792 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2001/08/24 14:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2001/08/24 14:00:00 | 000,034,108 | ---- | C] () -- C:\WINDOWS\System32\perfd00C.dat [2001/08/24 14:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2001/08/24 14:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat [2001/08/24 14:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat [1999/01/27 14:39:06 | 000,065,024 | ---- | C] () -- C:\WINDOWS\System32\indounin.dll [1997/06/13 08:56:08 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll [1996/04/03 21:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys ========== Custom Scans ========== < %SYSTEMDRIVE%\*.* > [2011/04/23 06:19:49 | 000,013,550 | ---- | M] () -- C:\aaw7boot.log [2007/01/23 21:08:57 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2008/03/16 14:50:43 | 000,000,212 | ---- | M] () -- C:\Boot.bak [2011/07/10 10:42:53 | 000,000,292 | ---- | M] () -- C:\boot.ini [2001/08/24 14:00:00 | 000,004,952 | ---- | M] () -- C:\Bootfont.bin [2004/08/04 00:00:08 | 000,263,488 | ---- | M] () -- C:\cmldr [2011/05/22 15:07:49 | 000,001,099 | ---- | M] () -- C:\colorbox.log [2007/01/23 21:08:57 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2008/08/27 22:55:28 | 000,021,916 | ---- | M] () -- C:\DeviceLink.log [2011/08/02 08:58:56 | 1543,036,928 | -HS- | M] () -- C:\hiberfil.sys [2011/06/15 11:34:41 | 000,000,488 | ---- | M] () -- C:\hpfr5550.xml [2009/07/22 16:29:29 | 000,002,136 | ---- | M] () -- C:\hpothb07.dat [2009/07/22 16:29:29 | 000,003,989 | ---- | M] () -- C:\hpothb07.tif [2007/01/23 21:08:57 | 000,000,000 | ---- | M] () -- C:\IO.SYS [2007/01/23 21:08:57 | 000,000,000 | ---- | M] () -- C:\MSDOS.SYS [2004/08/03 22:38:34 | 000,047,564 | ---- | M] () -- C:\NTDETECT.COM [2008/08/23 09:06:55 | 000,252,240 | ---- | M] () -- C:\ntldr [2011/08/02 08:58:55 | 1542,967,296 | -HS- | M] () -- C:\pagefile.sys [2011/08/02 13:06:16 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin [2008/03/21 11:13:08 | 090,936,630 | ---- | M] () -- C:\Sauv.reg [2009/09/14 16:07:28 | 000,000,232 | ---- | M] () -- C:\sqmdata00.sqm [2009/09/14 18:06:31 | 000,000,232 | ---- | M] () -- C:\sqmdata01.sqm [2009/09/15 08:30:04 | 000,000,232 | ---- | M] () -- C:\sqmdata02.sqm [2009/09/10 11:29:28 | 000,000,232 | ---- | M] () -- C:\sqmdata03.sqm [2009/09/10 11:30:33 | 000,000,232 | ---- | M] () -- C:\sqmdata04.sqm [2009/09/10 11:40:15 | 000,000,232 | ---- | M] () -- C:\sqmdata05.sqm [2009/09/10 11:40:32 | 000,000,232 | ---- | M] () -- C:\sqmdata06.sqm [2009/09/10 12:49:30 | 000,000,232 | ---- | M] () -- C:\sqmdata07.sqm [2009/09/10 12:59:13 | 000,000,232 | ---- | M] () -- C:\sqmdata08.sqm [2009/09/10 13:09:43 | 000,000,232 | ---- | M] () -- C:\sqmdata09.sqm [2009/09/10 19:38:33 | 000,000,232 | ---- | M] () -- C:\sqmdata10.sqm [2009/09/11 08:13:54 | 000,000,232 | ---- | M] () -- C:\sqmdata11.sqm [2009/09/12 11:55:31 | 000,000,232 | ---- | M] () -- C:\sqmdata12.sqm [2009/09/12 12:44:57 | 000,000,232 | ---- | M] () -- C:\sqmdata13.sqm [2009/09/13 10:03:47 | 000,000,232 | ---- | M] () -- C:\sqmdata14.sqm [2009/09/13 10:12:38 | 000,000,232 | ---- | M] () -- C:\sqmdata15.sqm [2009/09/14 08:20:22 | 000,000,232 | ---- | M] () -- C:\sqmdata16.sqm [2009/09/14 08:26:24 | 000,000,232 | ---- | M] () -- C:\sqmdata17.sqm [2009/09/14 08:52:26 | 000,000,232 | ---- | M] () -- C:\sqmdata18.sqm [2009/09/14 09:15:07 | 000,000,232 | ---- | M] () -- C:\sqmdata19.sqm [2009/09/14 16:07:28 | 000,000,244 | ---- | M] () -- C:\sqmnoopt00.sqm [2009/09/14 18:06:31 | 000,000,244 | ---- | M] () -- C:\sqmnoopt01.sqm [2009/09/15 08:30:04 | 000,000,244 | ---- | M] () -- C:\sqmnoopt02.sqm [2009/09/10 11:29:28 | 000,000,244 | ---- | M] () -- C:\sqmnoopt03.sqm [2009/09/10 11:30:33 | 000,000,244 | ---- | M] () -- C:\sqmnoopt04.sqm [2009/09/10 11:40:15 | 000,000,244 | ---- | M] () -- C:\sqmnoopt05.sqm [2009/09/10 11:40:32 | 000,000,244 | ---- | M] () -- C:\sqmnoopt06.sqm [2009/09/10 12:49:30 | 000,000,244 | ---- | M] () -- C:\sqmnoopt07.sqm [2009/09/10 12:59:13 | 000,000,244 | ---- | M] () -- C:\sqmnoopt08.sqm [2009/09/10 13:09:43 | 000,000,244 | ---- | M] () -- C:\sqmnoopt09.sqm [2009/09/10 19:38:32 | 000,000,244 | ---- | M] () -- C:\sqmnoopt10.sqm [2009/09/11 08:13:54 | 000,000,244 | ---- | M] () -- C:\sqmnoopt11.sqm [2009/09/12 11:55:30 | 000,000,244 | ---- | M] () -- C:\sqmnoopt12.sqm [2009/09/12 12:44:57 | 000,000,244 | ---- | M] () -- C:\sqmnoopt13.sqm [2009/09/13 10:03:47 | 000,000,244 | ---- | M] () -- C:\sqmnoopt14.sqm [2009/09/13 10:12:38 | 000,000,244 | ---- | M] () -- C:\sqmnoopt15.sqm [2009/09/14 08:20:22 | 000,000,244 | ---- | M] () -- C:\sqmnoopt16.sqm [2009/09/14 08:26:24 | 000,000,244 | ---- | M] () -- C:\sqmnoopt17.sqm [2009/09/14 08:52:26 | 000,000,244 | ---- | M] () -- C:\sqmnoopt18.sqm [2009/09/14 09:15:07 | 000,000,244 | ---- | M] () -- C:\sqmnoopt19.sqm [2008/05/01 00:32:00 | 000,107,596 | ---- | M] () -- C:\toolkit_widget.gif [2007/12/07 17:15:11 | 000,000,011 | ---- | M] () -- C:\trace.ini [2008/02/03 18:25:52 | 000,000,110 | ---- | M] () -- C:\wl.err < %systemroot%\*. /mp /s > < %systemroot%\system32\*.dll /lockedfiles > [11 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ] < %systemroot%\Tasks\*.job /lockedfiles > < %systemroot%\System32\config\*.sav > [2007/01/23 21:57:46 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav [2007/01/23 21:57:46 | 000,663,552 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav [2007/01/23 21:57:46 | 000,430,080 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav < %systemroot%\system32\drivers\*.sys /90 > [2011/07/06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\system32\drivers\mbam.sys [2011/07/06 19:52:42 | 000,041,272 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys [2011/07/09 07:32:05 | 000,101,720 | ---- | M] (Sunbelt Software) -- C:\WINDOWS\system32\drivers\SBREDrv.sys [2011/05/10 08:06:08 | 000,042,496 | ---- | M] (Apple, Inc.) -- C:\WINDOWS\system32\drivers\usbaapl.sys < HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU > < HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpd > < ate\Auto Update\Results\Install|LastSuccessTime /rs > ========== Alternate Data Streams ========== @Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8CE646EE < End of report >

Bonjour, Bien, il y a eu un soucis avec Combofix qui n'avait toujours pas terminé les scanne après près de 9 heures (J'avais bien désactivé pare-feu/antivirus comme demandé). (Normalement 10 minutes dit-il, "can easily double" en cas de machine très infectée mais là, ça me paraît très long quand même). L'heure de l'horloge c'était bloquée à 13h30 alors qu'il était 22h13. Ça n'a peut-être aucune coïncidence mais je préfère le préciser. Au redémarrage, extrême lenteur, connexion internet désactivée. Je n'ai pas voulu démarrer OTL, dois-je lancer quand même ? D'avance merci ! A.

Bonjour lance_yien et un grand merci pour votre aide. Voilà les rapports que vous avez demandés ; (Pas de rapport d'Eset qui n'a détecté aucune menace). Malwarebytes' Anti-Malware 1.51.1.1800 www.malwarebytes.org Version de la base de données: 7324 Windows 5.1.2600 Service Pack 3 Internet Explorer 8.0.6001.18702 30/07/2011 13:56:22 mbam-log-2011-07-30 (13-56-22).txt Type d'examen: Examen rapide Elément(s) analysé(s): 187649 Temps écoulé: 6 minute(s), 21 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté) Results of screen317's Security Check version 0.99.18 Windows XP Service Pack 3 Internet Explorer 8 `````````````````````````````` Antivirus/Firewall Check: Windows Security Center service is not running! This report may not be accurate! Avira AntiVir Personal - Free Antivirus ESET Online Scanner v3 Adobe After Effects CS3 Presets ZoneAlarm Antivirus up to date! ``````````````````````````````` Anti-malware/Other Utilities Check: Malwarebytes' Anti-Malware CCleaner Java 6 Update 22 Java 6 Update 26 Out of date Java installed! Adobe Flash Player 10.3.181.34 Adobe Reader X (10.1.0) ```````````````````````````````` Process Check: objlist.exe by Laurent Malwarebytes' Anti-Malware mbamservice.exe Avira Antivir avgnt.exe Avira Antivir avguard.exe Zone Labs ZoneAlarm zlclient.exe ``````````End of Log```````````` Bonne journée. A.

Bonjour, Je crois que l'on m'a oublié et mon ordi redémarre toujours tout seul... S'il vous plait, un petit coups de main ! http://forum.zebulon.fr/mon-ordi-redemarre-tout-seul-t186498.html

Bonjour à toutes et à tous, Voilà le soucis ; Mon ordinateur, en plus d'être en ce moment très "mou", redémarre tout seul sans crier gare. Il me l'a fait à l'instant alors que je venais tout juste de l'allumer (Je pense donc que ce n'est pas un problème de surchauffe). Y aurait-il une bonne âme pour me donner quelques conseils afin de résoudre ce petit problème ? D'avance un grand merci et bonne journée à tous... A. PS : J'avais oublié le rapport Hijackthis, le voilà : Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 10:55:19, on 10/07/2011 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\Avira\AntiVir Desktop\avshadow.exe C:\WINDOWS\system32\WgaTray.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\WINDOWS\system32\VTTimer.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Epson Software\Event Manager\EEventManager.exe C:\Program Files\Freecorder\FLVSrvc.exe C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe C:\Program Files\Logitech\QuickCam\Quickcam.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Fichiers communs\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\Program Files\CDBurnerXP\NMSAccessU.exe C:\WINDOWS\system32\PSIService.exe C:\Program Files\Secunia\PSI\sua.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\taskmgr.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\WINDOWS\system32\msiexec.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O1 - Hosts: ::1 localhost # IPv6 O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.6209.1142\swg.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [VTTimer] VTTimer.exe O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [EEventManager] "C:\Program Files\Epson Software\Event Manager\EEventManager.exe" O4 - HKLM\..\Run: [Freecorder FLV Service] "C:\Program Files\Freecorder\FLVSrvc.exe" /run O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe" O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.EXE /auto O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [EPSON SX420W Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIGCE.EXE /FU "C:\WINDOWS\TEMP\E_S9A.tmp" /EF "HKCU" O8 - Extra context menu item: Ajouter au fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir la cible du lien en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir la cible du lien en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir la sélection en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir la sélection en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convertir les liens sélectionnés en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html O8 - Extra context menu item: Open with KUSO EXIF Viewer - C:\Program Files\KUSO EXIF Viewer\EXIF.htm O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.files-ftp.com/~unicorni/phpBB2/index.php O15 - Trusted Zone: http://asia.msi.com.tw O15 - Trusted Zone: MSI Global - Computer, Laptop, Notebook, Desktop, Mainboard, Graphics and more O15 - Trusted Zone: MSI Global - Computer, Laptop, Notebook, Desktop, Mainboard, Graphics and more O15 - Trusted Zone: http://software.kuaiche.com O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1192264014062 O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} - http://copainsdavant.linternaute.com/html_include_bibliotheque/objimageuploader/ImageUploader4.cab O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://titebullamoi.spaces.live.com/PhotoUpload/MsnPUpld.cab O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab O16 - DPF: {8167C273-DF59-4416-B647-C8BB2C7EE83E} (WebSDev Control) - http://liveupdate.msi.com.tw/autobios/LOnline/install.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://www.touslesdrivers.com/fichiers/hardwaredetection/hardwaredetection.cab?version= O16 - DPF: {BA162249-F2C5-4851-8ADC-FC58CB424243} - http://copainsdavant.linternaute.com/html_include_bibliotheque/objimageuploader/5.1.1.0/ImageUploader5.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} (Java Plug-in 1.6.0_16) - O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx2.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cab O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} (Driver Agent ActiveX Control) - http://driveragent.com/files/driveragent.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files\Fichiers communs\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe O23 - Service: Adobe Version Cue CS3 {fr_FR} (Adobe Version Cue CS3) - Adobe Systems Incorporated - C:\Program Files\Fichiers communs\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\Sitecom\IVT BlueSoleil\BTNtService.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Servicio Google Update (gupdate1c9ae443b0ea256) (gupdate1c9ae443b0ea256) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Service Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: NMSAccess - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files\WinPcap\rpcapd.exe O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe O23 - Service: Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\WINDOWS\system32\ZoneLabs\vsmon.exe O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe -- End of file - 15540 bytes

Bonjour à tous, Voilà, c est très simple; Qui peut me conseiller un système de gestion de contenu simple d'utilisation et...gratuit ? D'avance merci! A.