Aller au contenu

dager

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    44

  • Inscription

  • Dernière visite

Profile Information

  • Sexe
    Male

Autres informations

  • Mes langues
    français

dager's Achievements

Member

Member (4/12)

0

Réputation sur la communauté

  1. dager
    OK Merci encore, je vais essayer de me débrouiller.
  2. dager
    bonjour Lance , j'ai quelques soucis ex : open office.org et adobe ne retrouvent pas le "chemin" lors de la réeinstallation conseillée par Sécunia , j'ai mozilla en anglais , etc, à la fin si tout s'arrange j'en aurais appris ! désolé de te mobiliser, merci.
  3. dager
    oui pc nettement plus rapide , vidéos OK , j'ai des cd réinstallation 5 au total , on en avait fait une copie lors de l achat. Il y avait eu un problème avec DVixcontrolpanel : suppression de fichiers anarchiques de notre part ! c'est peut etre de la que vient le souci du son ? Rapport de ZHPFix 1.12.3285 par Nicolas Coolman, Update du 22/05/2011 Fichier d'export Registre : Run by Propriétaire at 03/06/2011 14:56:22 Windows XP Home Edition Service Pack 3 (Build 2600) Web site : ZHPFix Fix de rapport ========== Clé(s) du Registre ========== O42 - Logiciel: Azureus - (.Pas de propri?taire.) [HKLM] -- Azureus => Désinstallation logicielle annulée par l'utilisateur ou désinstallation partielle! HKLM\Software\Install Pedia Limited => Clé supprimée avec succès HKCR\AppID\{1fc41815-fa4c-4f8b-b143-2c045c8ea2fc} => Clé supprimée avec succès HKLM\Software\Classes\AppID\{1fc41815-fa4c-4f8b-b143-2c045c8ea2fc} => Clé absente HKCR\AppID\{21493C1F-D071-496A-9C27-450578888291} => Clé supprimée avec succès HKLM\Software\Classes\AppID\{21493C1F-D071-496A-9C27-450578888291} => Clé absente HKCR\TypeLib\{252c2315-cce0-4446-8da7-c00292a690ba} => Clé supprimée avec succès HKLM\Software\Classes\TypeLib\{252c2315-cce0-4446-8da7-c00292a690ba} => Clé absente HKCR\AppID\{403A885F-CB00-40C1-BDC1-EB09053194F7} => Clé supprimée avec succès HKCR\TypeLib\{403A885F-CB00-40C1-BDC1-EB09053194F7} => Clé supprimée avec succès HKLM\Software\Classes\AppID\{403A885F-CB00-40C1-BDC1-EB09053194F7} => Clé absente HKLM\Software\Classes\TypeLib\{403A885F-CB00-40C1-BDC1-EB09053194F7} => Clé absente HKCR\TypeLib\{43B4B831-F41F-4F73-8F14-4FFF0BA75B1B} => Clé supprimée avec succès HKLM\Software\Classes\TypeLib\{43B4B831-F41F-4F73-8F14-4FFF0BA75B1B} => Clé absente HKCR\AppID\{55C1727F-5535-4C2A-9601-8C2458608B48} => Clé supprimée avec succès HKCR\TypeLib\{55C1727F-5535-4C2A-9601-8C2458608B48} => Clé supprimée avec succès HKLM\Software\Classes\AppID\{55C1727F-5535-4C2A-9601-8C2458608B48} => Clé absente HKLM\Software\Classes\TypeLib\{55C1727F-5535-4C2A-9601-8C2458608B48} => Clé absente HKLM\Software\Classes\AppID\{5e50ae1d-bc76-418b-94c4-efeac0cef80c} => Clé supprimée avec succès HKCR\AppID\{69E54DE2-C4ED-4BEC-8046-E3F9AC74B4B0} => Clé supprimée avec succès HKLM\Software\Classes\AppID\{69E54DE2-C4ED-4BEC-8046-E3F9AC74B4B0} => Clé absente HKCR\TypeLib\{6C9945B7-1D19-46CB-88C0-45A24DF6CD6E} => Clé supprimée avec succès HKLM\Software\Classes\TypeLib\{6C9945B7-1D19-46CB-88C0-45A24DF6CD6E} => Clé absente HKCR\TypeLib\{84B9B044-17C0-48FB-A300-C9747D5DF29C} => Clé supprimée avec succès HKLM\Software\Classes\TypeLib\{84B9B044-17C0-48FB-A300-C9747D5DF29C} => Clé absente HKCR\TypeLib\{85672EDB-2CC8-40B9-A9E8-77D3478F2EFB} => Clé supprimée avec succès HKLM\Software\Classes\TypeLib\{85672EDB-2CC8-40B9-A9E8-77D3478F2EFB} => Clé absente HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{872F3C0B-4462-424c-BB9F-74C6899B9F92} => Clé supprimée avec succès HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B6F8DA9F-2696-419e-A8A3-19BE41EF51BD} => Clé supprimée avec succès HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440} => Clé supprimée avec succès HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440} => Clé supprimée avec succès HKCR\AppID\{F54A0D21-6A53-460C-8301-C694EC9E1033} => Clé supprimée avec succès HKLM\Software\Classes\AppID\{F54A0D21-6A53-460C-8301-C694EC9E1033} => Clé absente HKCR\AppID\{F7BCCFD4-2FA6-477D-A1B0-EF7500B3C49E} => Clé supprimée avec succès HKLM\Software\Classes\AppID\{F7BCCFD4-2FA6-477D-A1B0-EF7500B3C49E} => Clé absente HKCR\Interface\{F7BEBBB1-7E6B-4561-9444-6F4866D60C7F} => Clé supprimée avec succès HKLM\Software\Classes\Interface\{F7BEBBB1-7E6B-4561-9444-6F4866D60C7F} => Clé absente HKCU\Software\Azureus => Clé supprimée avec succès HKLM\Software\FrostWire => Clé supprimée avec succès HKLM\Software\LimeWire Music => Clé supprimée avec succès ========== Elément(s) de donnée du Registre ========== [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: Modified => Donnée supprimée avec succès ========== Dossier(s) ========== C:\Program Files\Installer => Supprimé et mis en quarantaine C:\Documents and Settings\Propri?taire\Application Data\OpenCandy => Dossier absent C:\Documents and Settings\Propri?taire\Local Settings\Application Data\OpenCandy => Dossier absent C:\Program Files\Azureus => Supprimé et mis en quarantaine ========== Récapitulatif ========== 40 : Clé(s) du Registre 1 : Elément(s) de donnée du Registre 4 : Dossier(s) End of the scan
  4. dager
    Cijoint.fr - Service gratuit de dépôt de fichiers
  5. dager
    bonjour, mieux au niveau lecture vidéos youtube , reste le bouclier jaune , le son, et aussi le pc n'a plus de son d'alerte comme quand on ferme la session ou que l'on enlève une clé USB etc... Je peux fixer "fixmbr ? rapport : 2011/06/03 08:03:47.0562 2500 TDSS rootkit removing tool 2.5.3.0 May 25 2011 07:09:24 2011/06/03 08:03:49.0562 2500 ================================================================================ 2011/06/03 08:03:49.0562 2500 SystemInfo: 2011/06/03 08:03:49.0562 2500 2011/06/03 08:03:49.0562 2500 OS Version: 5.1.2600 ServicePack: 3.0 2011/06/03 08:03:49.0562 2500 Product type: Workstation 2011/06/03 08:03:49.0562 2500 ComputerName: NOM-OGL2XDJJQAE 2011/06/03 08:03:49.0562 2500 UserName: Propriétaire 2011/06/03 08:03:49.0562 2500 Windows directory: C:\WINDOWS 2011/06/03 08:03:49.0562 2500 System windows directory: C:\WINDOWS 2011/06/03 08:03:49.0562 2500 Processor architecture: Intel x86 2011/06/03 08:03:49.0562 2500 Number of processors: 1 2011/06/03 08:03:49.0562 2500 Page size: 0x1000 2011/06/03 08:03:49.0562 2500 Boot type: Normal boot 2011/06/03 08:03:49.0562 2500 ================================================================================ 2011/06/03 08:03:51.0046 2500 Initialize success 2011/06/03 09:40:32.0093 1820 ================================================================================ 2011/06/03 09:40:32.0109 1820 Scan started 2011/06/03 09:40:32.0109 1820 Mode: Manual; 2011/06/03 09:40:32.0109 1820 ================================================================================ 2011/06/03 09:40:33.0093 1820 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys 2011/06/03 09:40:33.0312 1820 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys 2011/06/03 09:40:33.0546 1820 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys 2011/06/03 09:40:33.0734 1820 AFD (7e775010ef291da96ad17ca4b17137d7) C:\WINDOWS\System32\drivers\afd.sys 2011/06/03 09:40:33.0890 1820 AFS2K (c719341a1cf6afd4fa0808ae3d23d6a3) C:\WINDOWS\system32\drivers\AFS2K.sys 2011/06/03 09:40:34.0031 1820 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys 2011/06/03 09:40:34.0484 1820 ALCXSENS (fbbcb95f677cbaa924140b6ea2d9a97b) C:\WINDOWS\system32\drivers\ALCXSENS.SYS 2011/06/03 09:40:34.0765 1820 ALCXWDM (8d6c30e515717248e0e52b85fd7ac466) C:\WINDOWS\system32\drivers\ALCXWDM.SYS 2011/06/03 09:40:35.0187 1820 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys 2011/06/03 09:40:35.0671 1820 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 2011/06/03 09:40:35.0812 1820 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys 2011/06/03 09:40:36.0015 1820 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 2011/06/03 09:40:36.0203 1820 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 2011/06/03 09:40:36.0343 1820 avgio (0b497c79824f8e1bf22fa6aacd3de3a0) C:\Program Files\Avira\AntiVir Desktop\avgio.sys 2011/06/03 09:40:36.0515 1820 avgntflt (47b879406246ffdced59e18d331a0e7d) C:\WINDOWS\system32\DRIVERS\avgntflt.sys 2011/06/03 09:40:36.0671 1820 avipbb (5fedef54757b34fb611b9ec8fb399364) C:\WINDOWS\system32\DRIVERS\avipbb.sys 2011/06/03 09:40:36.0843 1820 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys 2011/06/03 09:40:37.0140 1820 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 2011/06/03 09:40:37.0359 1820 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 2011/06/03 09:40:37.0515 1820 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys 2011/06/03 09:40:37.0671 1820 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys 2011/06/03 09:40:38.0140 1820 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys 2011/06/03 09:40:38.0328 1820 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys 2011/06/03 09:40:38.0515 1820 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys 2011/06/03 09:40:38.0671 1820 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 2011/06/03 09:40:38.0812 1820 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys 2011/06/03 09:40:39.0093 1820 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys 2011/06/03 09:40:39.0250 1820 EL90XBC (6e883bf518296a40959131c2304af714) C:\WINDOWS\system32\DRIVERS\el90xbc5.sys 2011/06/03 09:40:39.0453 1820 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys 2011/06/03 09:40:39.0687 1820 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys 2011/06/03 09:40:39.0984 1820 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys 2011/06/03 09:40:40.0281 1820 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys 2011/06/03 09:40:40.0437 1820 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys 2011/06/03 09:40:40.0625 1820 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 2011/06/03 09:40:40.0781 1820 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 2011/06/03 09:40:40.0968 1820 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys 2011/06/03 09:40:41.0140 1820 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys 2011/06/03 09:40:41.0343 1820 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys 2011/06/03 09:40:41.0625 1820 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys 2011/06/03 09:40:41.0937 1820 ialm (537efe2f9adcd01073f59e9d3d24164e) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys 2011/06/03 09:40:42.0250 1820 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys 2011/06/03 09:40:42.0812 1820 IntelIde (4b6da2f0a4095857a9e3f3697399d575) C:\WINDOWS\System32\DRIVERS\intelide.sys 2011/06/03 09:40:43.0046 1820 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys 2011/06/03 09:40:43.0359 1820 ip6fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys 2011/06/03 09:40:43.0859 1820 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 2011/06/03 09:40:44.0265 1820 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys 2011/06/03 09:40:44.0671 1820 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys 2011/06/03 09:40:44.0890 1820 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys 2011/06/03 09:40:45.0140 1820 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys 2011/06/03 09:40:45.0296 1820 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys 2011/06/03 09:40:45.0484 1820 ISWKL (6c614b6fd20194835c77346f6c34156e) C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys 2011/06/03 09:40:45.0953 1820 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 2011/06/03 09:40:46.0296 1820 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys 2011/06/03 09:40:46.0687 1820 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys 2011/06/03 09:40:47.0359 1820 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 2011/06/03 09:40:47.0640 1820 Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys 2011/06/03 09:40:47.0796 1820 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys 2011/06/03 09:40:47.0921 1820 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys 2011/06/03 09:40:48.0046 1820 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys 2011/06/03 09:40:48.0218 1820 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 2011/06/03 09:40:48.0359 1820 MRxSmb (f3aefb11abc521122b67095044169e98) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 2011/06/03 09:40:48.0531 1820 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys 2011/06/03 09:40:48.0671 1820 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys 2011/06/03 09:40:48.0812 1820 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 2011/06/03 09:40:48.0921 1820 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys 2011/06/03 09:40:49.0000 1820 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 2011/06/03 09:40:49.0250 1820 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys 2011/06/03 09:40:49.0656 1820 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys 2011/06/03 09:40:50.0421 1820 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 2011/06/03 09:40:51.0046 1820 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 2011/06/03 09:40:51.0609 1820 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 2011/06/03 09:40:52.0296 1820 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys 2011/06/03 09:40:52.0671 1820 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys 2011/06/03 09:40:53.0046 1820 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys 2011/06/03 09:40:53.0625 1820 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys 2011/06/03 09:40:54.0250 1820 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys 2011/06/03 09:40:54.0828 1820 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys 2011/06/03 09:40:55.0453 1820 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 2011/06/03 09:40:56.0140 1820 nv (694de491fbf0573625ffe6a8a474b7b5) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys 2011/06/03 09:40:57.0031 1820 nv_agp (01621905ae34bc24aaa2fddb93977299) C:\WINDOWS\system32\DRIVERS\nv_agp.sys 2011/06/03 09:40:57.0265 1820 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 2011/06/03 09:40:57.0546 1820 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 2011/06/03 09:40:57.0906 1820 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys 2011/06/03 09:40:58.0296 1820 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\DRIVERS\parport.sys 2011/06/03 09:40:58.0468 1820 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys 2011/06/03 09:40:58.0734 1820 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys 2011/06/03 09:40:59.0046 1820 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys 2011/06/03 09:40:59.0359 1820 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys 2011/06/03 09:40:59.0500 1820 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\drivers\Pcmcia.sys 2011/06/03 09:41:01.0578 1820 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys 2011/06/03 09:41:01.0906 1820 Processor (e19c9632ac828f6f214391e2bdda11cb) C:\WINDOWS\system32\DRIVERS\processr.sys 2011/06/03 09:41:02.0265 1820 Ps2 (9b793a1ffd480155fe9ee5261153f21b) C:\WINDOWS\system32\DRIVERS\PS2.sys 2011/06/03 09:41:02.0656 1820 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys 2011/06/03 09:41:03.0031 1820 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 2011/06/03 09:41:03.0359 1820 PxHelp20 (153d02480a0a2f45785522e814c634b6) C:\WINDOWS\system32\DRIVERS\PxHelp20.sys 2011/06/03 09:41:04.0671 1820 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 2011/06/03 09:41:04.0968 1820 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 2011/06/03 09:41:05.0250 1820 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 2011/06/03 09:41:05.0468 1820 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 2011/06/03 09:41:05.0765 1820 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys 2011/06/03 09:41:06.0046 1820 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 2011/06/03 09:41:06.0234 1820 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys 2011/06/03 09:41:06.0500 1820 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys 2011/06/03 09:41:06.0843 1820 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys 2011/06/03 09:41:07.0140 1820 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys 2011/06/03 09:41:07.0359 1820 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\DRIVERS\serial.sys 2011/06/03 09:41:07.0656 1820 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys 2011/06/03 09:41:08.0109 1820 SiS315 (7a363269d1b57526410fa23fc92cdfa1) C:\WINDOWS\system32\DRIVERS\sisgrp.sys 2011/06/03 09:41:08.0484 1820 SISAGP (61ca562def09a782d26b3e7edec5369a) C:\WINDOWS\system32\DRIVERS\SISAGPX.sys 2011/06/03 09:41:08.0703 1820 SiSkp (7ef8e5c266133638e7e06be03fcbeff3) C:\WINDOWS\system32\DRIVERS\srvkp.sys 2011/06/03 09:41:08.0937 1820 SISNIC (5529b51aacff16fbdde4b34ff0af2b76) C:\WINDOWS\system32\DRIVERS\sisnic.sys 2011/06/03 09:41:09.0484 1820 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys 2011/06/03 09:41:09.0906 1820 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys 2011/06/03 09:41:10.0359 1820 Srv (0f6aefad3641a657e18081f52d0c15af) C:\WINDOWS\system32\DRIVERS\srv.sys 2011/06/03 09:41:10.0640 1820 sscdbus (2d4027c46b4c6e45875e3c4ba3f67492) C:\WINDOWS\system32\DRIVERS\sscdbus.sys 2011/06/03 09:41:10.0859 1820 sscdmdfl (f548f1eba107bc19e91189e6a460bd0e) C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys 2011/06/03 09:41:11.0109 1820 sscdmdm (71d348d53597379dfe1de255d70af13c) C:\WINDOWS\system32\DRIVERS\sscdmdm.sys 2011/06/03 09:41:11.0375 1820 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys 2011/06/03 09:41:11.0531 1820 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys 2011/06/03 09:41:11.0734 1820 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys 2011/06/03 09:41:12.0593 1820 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys 2011/06/03 09:41:12.0843 1820 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys 2011/06/03 09:41:13.0109 1820 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys 2011/06/03 09:41:13.0281 1820 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys 2011/06/03 09:41:13.0453 1820 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys 2011/06/03 09:41:13.0984 1820 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys 2011/06/03 09:41:14.0453 1820 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys 2011/06/03 09:41:15.0140 1820 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys 2011/06/03 09:41:15.0343 1820 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys 2011/06/03 09:41:15.0812 1820 usbohci (0daecce65366ea32b162f85f07c6753b) C:\WINDOWS\system32\DRIVERS\usbohci.sys 2011/06/03 09:41:16.0078 1820 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys 2011/06/03 09:41:16.0328 1820 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 2011/06/03 09:41:16.0562 1820 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys 2011/06/03 09:41:16.0796 1820 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys 2011/06/03 09:41:16.0984 1820 viaagp1 (4b039bbd037b01f5db5a144c837f283a) C:\WINDOWS\system32\DRIVERS\viaagp1.sys 2011/06/03 09:41:17.0265 1820 viagfx (29d6a65fdc694cb1ef2cc6bbe5f79b3b) C:\WINDOWS\system32\DRIVERS\vtmini.sys 2011/06/03 09:41:17.0500 1820 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\System32\DRIVERS\viaide.sys 2011/06/03 09:41:17.0765 1820 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys 2011/06/03 09:41:18.0062 1820 vsdatant (765d208d688075d2b01d5a2e9eaa6ddc) C:\WINDOWS\system32\vsdatant.sys 2011/06/03 09:41:18.0562 1820 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys 2011/06/03 09:41:19.0109 1820 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys 2011/06/03 09:41:19.0359 1820 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys 2011/06/03 09:41:19.0546 1820 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys 2011/06/03 09:41:19.0703 1820 {6080A529-897E-4629-A488-ABA0C29B635E} (e6c22d34baef5196e1b23a4492c275b7) C:\WINDOWS\system32\drivers\ialmsbw.sys 2011/06/03 09:41:19.0875 1820 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} (6e53bd96b0ebad721cdd6320dbfc3f5f) C:\WINDOWS\system32\drivers\ialmkchw.sys 2011/06/03 09:41:19.0906 1820 MBR (0x1B8) (4f3a0ea76e7edbe2fc4a98f9de544751) \Device\Harddisk0\DR0 2011/06/03 09:41:20.0203 1820 ================================================================================ 2011/06/03 09:41:20.0203 1820 Scan finished 2011/06/03 09:41:20.0203 1820 ================================================================================ 2011/06/03 09:41:20.0234 0660 Detected object count: 0 2011/06/03 09:41:20.0234 0660 Actual detected object count: 0 ********************************************************************* Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Version de la base de données: 6758 Windows 5.1.2600 Service Pack 3 Internet Explorer 8.0.6001.18702 03/06/2011 09:47:23 mbam-log-2011-06-03 (09-47-23).txt Type d'examen: Examen rapide Elément(s) analysé(s): 164002 Temps écoulé: 4 minute(s), 46 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté)
  6. dager
    j'ai redémarré , j'ai refait un scan aswmbr cette fois la case "FIXMBR" est activée, je n'ai pas fixé pour l'instant , j’attends tes instructions, merci. En comparant les 2 scans sur le 1er: 10:51:03.640 Disk 0 malicious Win32:MBRoot code @ sector 61 ! sur le 2eme à la même ligne: 20:21:08.546 Disk 0 scanning sectors +234420480 aswMBR version 0.9.5.256 Copyright© 2011 AVAST Software Run date: 2011-06-02 20:21:00 ----------------------------- 20:21:00.812 OS Version: Windows 5.1.2600 Service Pack 3 20:21:00.812 Number of processors: 1 586 0x209 20:21:00.828 ComputerName: NOM-OGL2XDJJQAE UserName: Propriétaire 20:21:03.046 Initialize success 20:21:04.500 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 20:21:04.500 Disk 0 Vendor: ST3120022A 3.08 Size: 114473MB BusType: 3 20:21:06.531 Disk 0 MBR read successfully 20:21:06.531 Disk 0 MBR scan 20:21:06.531 Disk 0 unknown MBR code 20:21:08.546 Disk 0 scanning sectors +234420480 20:21:08.578 Disk 0 scanning C:\WINDOWS\system32\drivers 20:21:17.531 Service scanning 20:21:18.578 Disk 0 trace - called modules: 20:21:18.578 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS 20:21:18.593 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x82384ab8] 20:21:18.609 3 CLASSPNP.SYS[f8575fd7] -> nt!IofCallDriver -> \Device\00000058[0x823d7f18] 20:21:18.609 5 ACPI.sys[f84eb620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x823d8940] 20:21:18.609 Scan finished successfully 20:21:27.875 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Propriétaire\Bureau\MBR.dat" 20:21:27.875 The log file has been saved successfully to "C:\Documents and Settings\Propriétaire\Bureau\aswMBR.txt"
  7. dager
    dac, concernant deffoger je peux appuyer sur re-enable ? aswmbr : il n'y a que FIX - SAVE LOG- EXIT d'activé, j'appuie sur fix ou pas ?
  8. dager
    j'ai une impression écran de la recherche jotti comment te l'envoyer ? le fichier est introuvable, il est complet, je ne comprend pas... A tout hasard j'ai lancé une recherche sur C et D.... rien non plus.
  9. dager
    Bonjour , je joint les rapports et je vais réessayer le "jotti" defogger_disable by jpshortstuff (23.02.10.1) Log created at 09:09 on 02/06/2011 (Propriétaire) Checking for autostart values... HKCU\~\Run values retrieved. HKLM\~\Run values retrieved. Checking for services/drivers... -=E.O.F=- ******************************************* 2011/06/02 09:12:10.0875 14324 TDSS rootkit removing tool 2.5.3.0 May 25 2011 07:09:24 2011/06/02 09:12:11.0187 14324 ================================================================================ 2011/06/02 09:12:11.0203 14324 SystemInfo: 2011/06/02 09:12:11.0203 14324 2011/06/02 09:12:11.0203 14324 OS Version: 5.1.2600 ServicePack: 3.0 2011/06/02 09:12:11.0203 14324 Product type: Workstation 2011/06/02 09:12:11.0203 14324 ComputerName: NOM-OGL2XDJJQAE 2011/06/02 09:12:11.0203 14324 UserName: Propriétaire 2011/06/02 09:12:11.0203 14324 Windows directory: C:\WINDOWS 2011/06/02 09:12:11.0203 14324 System windows directory: C:\WINDOWS 2011/06/02 09:12:11.0203 14324 Processor architecture: Intel x86 2011/06/02 09:12:11.0203 14324 Number of processors: 1 2011/06/02 09:12:11.0203 14324 Page size: 0x1000 2011/06/02 09:12:11.0203 14324 Boot type: Normal boot 2011/06/02 09:12:11.0203 14324 ================================================================================ 2011/06/02 09:12:12.0140 14324 Initialize success 2011/06/02 09:16:59.0890 13404 ================================================================================ 2011/06/02 09:16:59.0890 13404 Scan started 2011/06/02 09:16:59.0890 13404 Mode: Manual; 2011/06/02 09:16:59.0890 13404 ================================================================================ 2011/06/02 09:17:01.0109 13404 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys 2011/06/02 09:17:01.0250 13404 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys 2011/06/02 09:17:01.0875 13404 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys 2011/06/02 09:17:02.0062 13404 AFD (7e775010ef291da96ad17ca4b17137d7) C:\WINDOWS\System32\drivers\afd.sys 2011/06/02 09:17:02.0187 13404 AFS2K (c719341a1cf6afd4fa0808ae3d23d6a3) C:\WINDOWS\system32\drivers\AFS2K.sys 2011/06/02 09:17:02.0328 13404 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys 2011/06/02 09:17:02.0687 13404 ALCXSENS (fbbcb95f677cbaa924140b6ea2d9a97b) C:\WINDOWS\system32\drivers\ALCXSENS.SYS 2011/06/02 09:17:02.0953 13404 ALCXWDM (8d6c30e515717248e0e52b85fd7ac466) C:\WINDOWS\system32\drivers\ALCXWDM.SYS 2011/06/02 09:17:03.0343 13404 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys 2011/06/02 09:17:03.0687 13404 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 2011/06/02 09:17:03.0812 13404 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys 2011/06/02 09:17:04.0000 13404 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 2011/06/02 09:17:04.0140 13404 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 2011/06/02 09:17:04.0250 13404 avgio (0b497c79824f8e1bf22fa6aacd3de3a0) C:\Program Files\Avira\AntiVir Desktop\avgio.sys 2011/06/02 09:17:04.0390 13404 avgntflt (47b879406246ffdced59e18d331a0e7d) C:\WINDOWS\system32\DRIVERS\avgntflt.sys 2011/06/02 09:17:04.0500 13404 avipbb (5fedef54757b34fb611b9ec8fb399364) C:\WINDOWS\system32\DRIVERS\avipbb.sys 2011/06/02 09:17:04.0609 13404 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys 2011/06/02 09:17:04.0890 13404 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 2011/06/02 09:17:05.0062 13404 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 2011/06/02 09:17:05.0218 13404 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys 2011/06/02 09:17:05.0343 13404 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys 2011/06/02 09:17:05.0937 13404 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys 2011/06/02 09:17:06.0109 13404 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys 2011/06/02 09:17:06.0296 13404 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys 2011/06/02 09:17:06.0421 13404 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 2011/06/02 09:17:06.0562 13404 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys 2011/06/02 09:17:06.0765 13404 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys 2011/06/02 09:17:06.0937 13404 EL90XBC (6e883bf518296a40959131c2304af714) C:\WINDOWS\system32\DRIVERS\el90xbc5.sys 2011/06/02 09:17:07.0093 13404 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys 2011/06/02 09:17:07.0250 13404 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys 2011/06/02 09:17:07.0406 13404 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys 2011/06/02 09:17:07.0562 13404 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys 2011/06/02 09:17:07.0703 13404 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys 2011/06/02 09:17:07.0859 13404 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 2011/06/02 09:17:08.0000 13404 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 2011/06/02 09:17:08.0156 13404 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys 2011/06/02 09:17:08.0296 13404 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys 2011/06/02 09:17:08.0546 13404 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys 2011/06/02 09:17:08.0812 13404 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys 2011/06/02 09:17:08.0953 13404 ialm (537efe2f9adcd01073f59e9d3d24164e) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys 2011/06/02 09:17:09.0125 13404 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys 2011/06/02 09:17:09.0593 13404 IntelIde (4b6da2f0a4095857a9e3f3697399d575) C:\WINDOWS\System32\DRIVERS\intelide.sys 2011/06/02 09:17:09.0906 13404 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys 2011/06/02 09:17:10.0156 13404 ip6fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys 2011/06/02 09:17:10.0453 13404 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 2011/06/02 09:17:10.0750 13404 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys 2011/06/02 09:17:11.0062 13404 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys 2011/06/02 09:17:11.0375 13404 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys 2011/06/02 09:17:11.0703 13404 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys 2011/06/02 09:17:12.0031 13404 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys 2011/06/02 09:17:12.0140 13404 ISWKL (6c614b6fd20194835c77346f6c34156e) C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys 2011/06/02 09:17:12.0359 13404 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 2011/06/02 09:17:12.0500 13404 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys 2011/06/02 09:17:12.0640 13404 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys 2011/06/02 09:17:12.0859 13404 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 2011/06/02 09:17:13.0015 13404 Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys 2011/06/02 09:17:13.0171 13404 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys 2011/06/02 09:17:13.0265 13404 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys 2011/06/02 09:17:13.0406 13404 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys 2011/06/02 09:17:13.0593 13404 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 2011/06/02 09:17:13.0734 13404 MRxSmb (f3aefb11abc521122b67095044169e98) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 2011/06/02 09:17:13.0921 13404 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys 2011/06/02 09:17:14.0078 13404 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys 2011/06/02 09:17:14.0218 13404 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 2011/06/02 09:17:14.0359 13404 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys 2011/06/02 09:17:14.0500 13404 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 2011/06/02 09:17:14.0640 13404 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys 2011/06/02 09:17:14.0796 13404 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys 2011/06/02 09:17:14.0937 13404 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 2011/06/02 09:17:15.0109 13404 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 2011/06/02 09:17:15.0265 13404 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 2011/06/02 09:17:15.0406 13404 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys 2011/06/02 09:17:15.0546 13404 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys 2011/06/02 09:17:15.0703 13404 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys 2011/06/02 09:17:15.0906 13404 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys 2011/06/02 09:17:16.0062 13404 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys 2011/06/02 09:17:16.0218 13404 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys 2011/06/02 09:17:16.0390 13404 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 2011/06/02 09:17:16.0531 13404 nv (694de491fbf0573625ffe6a8a474b7b5) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys 2011/06/02 09:17:16.0750 13404 nv_agp (01621905ae34bc24aaa2fddb93977299) C:\WINDOWS\system32\DRIVERS\nv_agp.sys 2011/06/02 09:17:16.0875 13404 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 2011/06/02 09:17:17.0015 13404 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 2011/06/02 09:17:17.0156 13404 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys 2011/06/02 09:17:17.0375 13404 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\DRIVERS\parport.sys 2011/06/02 09:17:17.0531 13404 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys 2011/06/02 09:17:17.0671 13404 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys 2011/06/02 09:17:17.0796 13404 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys 2011/06/02 09:17:17.0968 13404 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys 2011/06/02 09:17:18.0093 13404 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\drivers\Pcmcia.sys 2011/06/02 09:17:18.0750 13404 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys 2011/06/02 09:17:18.0890 13404 Processor (e19c9632ac828f6f214391e2bdda11cb) C:\WINDOWS\system32\DRIVERS\processr.sys 2011/06/02 09:17:19.0046 13404 Ps2 (9b793a1ffd480155fe9ee5261153f21b) C:\WINDOWS\system32\DRIVERS\PS2.sys 2011/06/02 09:17:19.0187 13404 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys 2011/06/02 09:17:19.0343 13404 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 2011/06/02 09:17:19.0468 13404 PxHelp20 (153d02480a0a2f45785522e814c634b6) C:\WINDOWS\system32\DRIVERS\PxHelp20.sys 2011/06/02 09:17:19.0921 13404 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 2011/06/02 09:17:20.0078 13404 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 2011/06/02 09:17:20.0250 13404 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 2011/06/02 09:17:20.0390 13404 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 2011/06/02 09:17:20.0546 13404 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys 2011/06/02 09:17:20.0687 13404 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 2011/06/02 09:17:20.0843 13404 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys 2011/06/02 09:17:20.0984 13404 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys 2011/06/02 09:17:21.0218 13404 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys 2011/06/02 09:17:21.0359 13404 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys 2011/06/02 09:17:21.0515 13404 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\DRIVERS\serial.sys 2011/06/02 09:17:21.0687 13404 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys 2011/06/02 09:17:21.0890 13404 SiS315 (7a363269d1b57526410fa23fc92cdfa1) C:\WINDOWS\system32\DRIVERS\sisgrp.sys 2011/06/02 09:17:22.0031 13404 SISAGP (61ca562def09a782d26b3e7edec5369a) C:\WINDOWS\system32\DRIVERS\SISAGPX.sys 2011/06/02 09:17:22.0171 13404 SiSkp (7ef8e5c266133638e7e06be03fcbeff3) C:\WINDOWS\system32\DRIVERS\srvkp.sys 2011/06/02 09:17:22.0312 13404 SISNIC (5529b51aacff16fbdde4b34ff0af2b76) C:\WINDOWS\system32\DRIVERS\sisnic.sys 2011/06/02 09:17:22.0500 13404 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys 2011/06/02 09:17:22.0656 13404 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys 2011/06/02 09:17:22.0812 13404 Srv (0f6aefad3641a657e18081f52d0c15af) C:\WINDOWS\system32\DRIVERS\srv.sys 2011/06/02 09:17:22.0953 13404 sscdbus (2d4027c46b4c6e45875e3c4ba3f67492) C:\WINDOWS\system32\DRIVERS\sscdbus.sys 2011/06/02 09:17:23.0093 13404 sscdmdfl (f548f1eba107bc19e91189e6a460bd0e) C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys 2011/06/02 09:17:23.0218 13404 sscdmdm (71d348d53597379dfe1de255d70af13c) C:\WINDOWS\system32\DRIVERS\sscdmdm.sys 2011/06/02 09:17:23.0390 13404 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys 2011/06/02 09:17:23.0546 13404 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys 2011/06/02 09:17:23.0687 13404 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys 2011/06/02 09:17:24.0046 13404 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys 2011/06/02 09:17:24.0234 13404 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys 2011/06/02 09:17:24.0421 13404 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys 2011/06/02 09:17:24.0578 13404 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys 2011/06/02 09:17:24.0703 13404 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys 2011/06/02 09:17:25.0375 13404 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys 2011/06/02 09:17:25.0609 13404 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys 2011/06/02 09:17:25.0875 13404 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys 2011/06/02 09:17:26.0015 13404 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys 2011/06/02 09:17:26.0218 13404 usbohci (0daecce65366ea32b162f85f07c6753b) C:\WINDOWS\system32\DRIVERS\usbohci.sys 2011/06/02 09:17:26.0343 13404 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys 2011/06/02 09:17:26.0468 13404 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 2011/06/02 09:17:26.0609 13404 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys 2011/06/02 09:17:26.0734 13404 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys 2011/06/02 09:17:26.0843 13404 viaagp1 (4b039bbd037b01f5db5a144c837f283a) C:\WINDOWS\system32\DRIVERS\viaagp1.sys 2011/06/02 09:17:26.0968 13404 viagfx (29d6a65fdc694cb1ef2cc6bbe5f79b3b) C:\WINDOWS\system32\DRIVERS\vtmini.sys 2011/06/02 09:17:27.0078 13404 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\System32\DRIVERS\viaide.sys 2011/06/02 09:17:27.0203 13404 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys 2011/06/02 09:17:27.0312 13404 vsdatant (765d208d688075d2b01d5a2e9eaa6ddc) C:\WINDOWS\system32\vsdatant.sys 2011/06/02 09:17:27.0500 13404 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys 2011/06/02 09:17:27.0718 13404 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys 2011/06/02 09:17:27.0937 13404 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys 2011/06/02 09:17:28.0062 13404 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys 2011/06/02 09:17:28.0265 13404 {6080A529-897E-4629-A488-ABA0C29B635E} (e6c22d34baef5196e1b23a4492c275b7) C:\WINDOWS\system32\drivers\ialmsbw.sys 2011/06/02 09:17:28.0406 13404 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} (6e53bd96b0ebad721cdd6320dbfc3f5f) C:\WINDOWS\system32\drivers\ialmkchw.sys 2011/06/02 09:17:28.0421 13404 MBR (0x1B8) (4f3a0ea76e7edbe2fc4a98f9de544751) \Device\Harddisk0\DR0 2011/06/02 09:17:28.0437 13404 ================================================================================ 2011/06/02 09:17:28.0437 13404 Scan finished 2011/06/02 09:17:28.0437 13404 ================================================================================ 2011/06/02 09:17:28.0468 12664 Detected object count: 0 2011/06/02 09:17:28.0468 12664 Actual detected object count: 0
  10. dager
    C:\Documents and Settings\Propriétaire\Bureau\MBR.dat --> "le fichier est introuvable" ********************************* Désactiver les drivers d'émulation CD = peux tu m'expliquer ce que c'est ? merci ********************************************** ATTENTION: Les lignes O15 (en bleu) concernent des sites dans la zone de confiance. Dans cette zone les sites ont des privilèges plus étendus par rapport aux autres. On peut introduire, soi-même, ces sites MAIS des âmes mal intentionnées peuvent s'y inviter aussi = je n'ai pas compris le risque encouru ? "s'y inviter aussi" ,merci. ******************************* puis je faire les manips suivantes quand même ?
  11. dager
    salut , j'ai pas tous les rapports , otl à redémarré le pc et je n'ai pas trouvé le rapport dans le bloc note ; désolé , permalink ? c'est jotti ? -->PhysicalMBR.bin - Le scanner antivirus de Jotti - ****************************************** aswMBR version 0.9.5.317 Copyright© 2011 AVAST Software Run date: 2011-06-01 15:47:51 ----------------------------- 15:47:51.859 OS Version: Windows 5.1.2600 Service Pack 3 15:47:51.859 Number of processors: 1 586 0x209 15:47:51.859 ComputerName: NOM-OGL2XDJJQAE UserName: Propriétaire 15:47:52.406 Initialize success 15:47:54.734 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 15:47:54.734 Disk 0 Vendor: ST3120022A 3.08 Size: 114473MB BusType: 3 15:47:56.750 Disk 0 MBR read successfully 15:47:56.750 Disk 0 MBR scan 15:47:56.750 Disk 0 unknown MBR code 15:47:58.750 Disk 0 malicious Win32:MBRoot code @ sector 61 ! 15:47:58.781 Disk 0 PE file @ sector 234420480 ! 15:47:58.781 Disk 0 scanning C:\WINDOWS\system32\drivers 15:48:03.906 Service scanning 15:48:05.000 Disk 0 trace - called modules: 15:48:05.015 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS 15:48:05.015 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x82384ab8] 15:48:05.015 3 CLASSPNP.SYS[f8575fd7] -> nt!IofCallDriver -> \Device\00000058[0x823d7f18] 15:48:05.031 5 ACPI.sys[f84eb620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x823d8940] 15:48:42.859 Unsigned kernel modules: 15:48:42.859 0xf8a3b000 System32\Drivers\hiber_WMILIB.SYS 15:48:43.406 Scan finished successfully 15:50:25.078 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Propriétaire\Bureau\MBR.dat" 15:50:25.078 The log file has been saved successfully to "C:\Documents and Settings\Propriétaire\Bureau\aswMBR.txt"
  12. dager
    pour compléter : le bouclier jaune Windows me demande de redémarrer en boucle, et à chaque redémarrage: il redemande ; etc , de plus le son est déconnecté, je dois faire : panneau-->son et audio-->matériel-->realtec --->désactiver--->réactiver-->volume--->ajouter icône bureau et : le son est OK ! voila ...
  13. dager
    OTL Extras logfile created on: 31/05/2011 17:54:49 - Run 1 OTL by OldTimer - Version 3.2.23.0 Folder = C:\Documents and Settings\Propriétaire\Bureau Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 511,48 Mb Total Physical Memory | 168,39 Mb Available Physical Memory | 32,92% Memory free 1,22 Gb Paging File | 0,86 Gb Available in Paging File | 70,74% Paging File free Paging file location(s): C:\pagefile.sys 0 0 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 108,27 Gb Total Space | 92,29 Gb Free Space | 85,24% Space Free | Partition Type: NTFS Drive D: | 3,50 Gb Total Space | 0,70 Gb Free Space | 19,94% Space Free | Partition Type: FAT32 Drive G: | 465,65 Gb Total Space | 419,77 Gb Free Space | 90,15% Space Free | Partition Type: FAT32 Drive H: | 1,89 Gb Total Space | 1,89 Gb Free Space | 99,95% Space Free | Partition Type: FAT32 Drive I: | 1,86 Gb Total Space | 0,37 Gb Free Space | 19,89% Space Free | Partition Type: FAT Computer Name: NOM-OGL2XDJJQAE | User Name: Propriétaire | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* .url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) ========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* htmlfile [edit] -- Reg Error: Key error. https [open] -- Reg Error: Key error. InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 1 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] "DisableMonitoring" = 1 ========== System Restore Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008 "48113:TCP" = 48113:TCP:LocalSubNet:Enabled:maconfig_tcp "48113:UDP" = 48113:UDP:LocalSubNet:Enabled:maconfig_udp ========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\SFR\Media Center\httpd\httpd.exe" = C:\Program Files\SFR\Media Center\httpd\httpd.exe:172.16.255.0/255.255.255.0,192.168.1.0/255.255.255.0:Enabled:Serveur de partage Media Center (Player SFR) -- (Apache Software Foundation) "C:\Program Files\Java\jre6\bin\javaw.exe" = C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java Platform SE binary -- (Sun Microsystems, Inc.) "C:\Program Files\FrostWire\FrostWire.exe" = C:\Program Files\FrostWire\FrostWire.exe:*:Enabled:FrostWire -- (FrostWire Group) "C:\Program Files\ma-config.com\maconfservice.exe" = C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 "{04DA096D-6236-4A5D-8FB6-3081E67009BA}" = CANAL+ CANALSAT A LA DEMANDE "{0613467F-A45E-4CB1-9ECE-1F3DD79FB927}" = Connexion Facile à Internet "{0861E87B-24D7-4E7C-B11B-54F86E5C5199}" = hpg8200 "{092eeeee-9fdd-4895-a568-0818c96beb6c}" = AiO_Scan "{09DA4F91-2A09-4232-AB8C-6BC740096DE3}" = Sonic Update Manager "{0FA44E79-CD7D-4E8D-A2EE-26FE05F509B6}" = OpenOffice.org 3.1 "{14B4E017-ACDF-4DB0-9D94-8988F5F0145A}" = hpg4600 "{15B9DC72-73F9-4d99-9E28-848D66DA8D99}" = Photo et imagerie HP 3.5 - HP Devices "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{1F7473D9-6C0B-4F5A-8FA4-AB8AD78CBE54}" = DocProc "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live "{20CF99FC-2CE7-4AA4-966E-A4B11C0662B4}" = hpg3970 "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT "{257EC58E-03FD-472B-A9B6-93F23A3C4CB0}" = Scan "{26A24AE4-039D-4CA4-87B4-2F83216023FF}" = Java 6 Update 25 "{29B39FB2-5ADF-4F94-BC82-13942871DD0D}" = CameraDrivers "{29B50D30-EAFC-4cea-9F76-3A0E3729E9B0}" = SkinsHP1 "{2A267BC6-F77F-4DD4-825F-7AEB1F68B4B1}" = HpSdpAppCoreApp "{2A5B009A-4072-46A8-9BF9-3AD10C22962F}" = Clié Favorites "{2E132061-C78A-48D4-A899-1D13B9D189FA}" = Memories Disc Creator 2.0 "{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java 6 Update 7 "{34957B51-9676-41CE-9E52-44AE91B73F1C}" = HP Software Update "{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{35D24072-C275-484B-B143-C7F45A5C2E2B}" = Samsung PC Studio "{3CF78481-FB7B-4B51-99A2-D5E0CD0B3AAF}" = HPSystemDiagnostics "{415B8A4E-0EA2-4C69-975C-EEE07B837FD7}" = Unload "{45B6180B-DCAB-4093-8EE8-6164457517F0}" = Photosmart 140,240,7200,7600,7700,7900 Series "{46ABBC54-1872-4AA3-95E2-F2C063A63F31}" = Installation Windows Live "{48242276-DB89-42e8-9678-BD4280D7B99A}" = Copy "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{54e854d5-d5d4-452d-9c75-b39f5625b5fb}" = Readme "{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime "{57C7C46A-D35D-492d-A328-4F8C9B5B4B52}" = PrintScreen "{5932A5C4-BB44-4CFB-AD66-1B826F4D788B}" = CDBurnerXP "{5DD76286-9BE7-4894-A990-E905E91AC818}" = Windows Live Mail "{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053 "{60758250-C8CF-47EB-8CB6-E0C3B84D8207}" = PSShortcutsP "{64D114CE-4234-45C2-B60A-2B07D5A48F72}" = Microsoft Works 7.0 "{6860B340-530D-46B3-91F8-1AE1F70F7C33}" = OpenOffice.org 3.0 "{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update "{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin "{7148F0A8-6813-11D6-A77B-00B0D0142030}" = Java 2 Runtime Environment, SE v1.4.2_03 "{723C033E-63EA-4227-BAB2-0AA8693C16EB}" = Director "{745A92AF-53B4-41A7-91C3-9B026B1D5897}" = InstantShare "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{770F1BEC-2871-4E70-B837-FB8525FFA3B1}" = Windows Live Messenger "{81DD5688-695A-4c1d-AE7D-368BF857725A}" = TrayApp "{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}" = Windows Live Call "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{8777AC6D-89F9-4793-8266-DE406F343E89}" = QFolder "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8A708DD8-A5E6-11D4-A706-000629E95E20}" = "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{9541FED0-327F-4DF0-8B96-EF57EF622F19}" = RecordNow! "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9A394342-4A68-4EBA-85A6-55B559F4E700}" = Microsoft .NET Framework 1.1 French Language Pack "{9B03C535-3AEA-4ef2-B326-0A01A2207034}" = CreativeProjects "{9F4EEA0C-7174-4BD3-89AF-7AB2F9F6AEDD}" = hpmdtab "{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI "{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{AC76BA86-7AD7-1033-7B44-AA0000000001}" = Adobe Reader X (10.0.1) "{AC76BA86-7AD7-1036-7B44-000000000001}" = Adobe Reader 6.0 - Français "{AD17BC8E-4A5D-4E59-8640-10DF36E9EB75}" = hpg5530 "{bb6cac2a-1fa0-471a-bc3c-ade699c39f3c}" = Fax "{BC339BFD-F550-471a-8D26-4D08126C62F7}" = SkinsHP2 "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{c330461f-c4a9-4fc7-af5d-c158e0b56aa7}" = AiOSoftware "{C4A4722E-79F9-417C-BD72-8D359A090C97}" = Samsung PC Studio "{C5EC81D0-3DED-435D-A46E-E3F60F7DC8AD}" = Palm Desktop pour CLIÉ "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CBE3E0AF-73BB-4c21-8B96-B09E003EDE7F}" = QuickProjects "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D416E000-D999-470A-BCAC-98E717CC1AFC}" = VirginMega.Fr Premium "{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}" = Assistant de connexion Windows Live "{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager "{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update "{E4C1DBF1-67D9-4973-9DEC-677E695E7CE0}" = AxCrypt 1.7.2126.0 "{E8BFBD0A-8002-4dc9-869C-E495FA9DCE7A}" = PhotoGallery "{E9E37358-E3E1-47BA-9E21-375EF3616BC9}" = Lecteur CANALPLAY 2.4 "{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}" = Samsung PC Studio 3 USB Driver Installer "{ec7d7a6a-31cb-4810-826f-74171bef44f1}" = AIOMinimal "{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform "{ED869D8B-6C7E-44C7-9F2F-BD5436849C61}" = hpg2436 "{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard "{F38FA38A-7E5A-4209-88ED-4DE21CD20EEF}" = HP PSC & OfficeJet 3.0 "{F419D20A-7719-4639-8E30-C073A040D878}" = HP Deskjet Preloaded Printer Drivers "{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio "{FBBF532A-47AC-457d-AC06-0D3163D8911E}" = WebReg "Adobe AIR" = Adobe AIR "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Ad-Remover" = Ad-Remover par C_XX "Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus "Azureus" = Azureus "CCleaner" = CCleaner "FrostWire" = FrostWire 4.21.5 "HP Photo & Imaging" = HP Image Zone 3.5 "ie8" = Windows Internet Explorer 8 "ieupdate" = Internet Explorer Q832894 "InstallShield_{0613467F-A45E-4CB1-9ECE-1F3DD79FB927}" = Connexion Facile à Internet "Juniper_Setup_Client Activex Control" = Juniper Networks Setup Client Activex Control "KLiteCodecPack_is1" = K-Lite Codec Pack 6.6.6 (Full) "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware "Messenger Plus! Live" = Messenger Plus! Live "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Mozilla Firefox 4.0.1 (x86 fr)" = Mozilla Firefox 4.0.1 (x86 fr) "NVIDIA Display Driver" = NVIDIA Display Driver "NVIDIA GART Driver" = NVIDIA GART Driver "oeupdate" = Outlook Express Update Q330994 "Python 2.2 combined Win32 extensions" = Python 2.2 combined Win32 extensions "Python 2.2.1" = Python 2.2.1 "Revo Uninstaller" = Revo Uninstaller 1.91 "SAMSUNG CDMA Modem" = SAMSUNG CDMA Modem Driver Set "SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software "SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software "SFR_Media Center" = SFR - Media Center "Unlocker" = Unlocker 1.9.0 "VLC media player" = VLC media player 1.1.5 "Windows Media Format Runtime" = Windows Media Format 11 runtime "Windows Media Player" = Lecteur Windows Media 11 "WinLiveSuite_Wave3" = Installation Windows Live "WinRAR archiver" = Archiveur WinRAR "ZHPFix_is1" = ZHPFix 1.12 "ZoneAlarm" = ZoneAlarm "ZoneAlarm Toolbar" = ZoneAlarm Toolbar ========== HKEY_CURRENT_USER Uninstall List ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Juniper_Setup_Client" = Juniper Networks Setup Client "Neoteris_Host_Checker" = Juniper Networks Host Checker "Piratrax" = Piratrax désinstallation ========== Last 10 Event Log Errors ========== [ Application Events ] Error - 25/05/2011 15:40:24 | Computer Name = NOM-OGL2XDJJQAE | Source = Application Hang | ID = 1002 Description = Application bloquée avcenter.exe, version 10.0.12.29, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. Error - 25/05/2011 16:06:23 | Computer Name = NOM-OGL2XDJJQAE | Source = Redownloader | ID = 0 Description = Service cannot be started. System.IO.FileNotFoundException: Could not load file or assembly 'Utils, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null' or one of its dependencies. Le fichier spécifié est introuvable. File name: 'Utils, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null' at service.service.reinstallBootstrap() at service.service.launch_update() at service.service.OnStart(String[] args) at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) WRN: Assembly binding logging is turned OFF. To enable assembly bind failure logging, set the registry value [HKLM\Software\Microsoft\Fusion!EnableLog] (DWORD) to 1. Note: There is some performance penalty associated with assembly bind failure logging. To turn this feature off, remove the registry value [HKLM\Software\Microsoft\Fusion!EnableLog]. Error - 26/05/2011 05:32:43 | Computer Name = NOM-OGL2XDJJQAE | Source = Redownloader | ID = 0 Description = Service cannot be started. System.IO.FileNotFoundException: Could not load file or assembly 'Utils, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null' or one of its dependencies. Le fichier spécifié est introuvable. File name: 'Utils, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null' at service.service.reinstallBootstrap() at service.service.launch_update() at service.service.OnStart(String[] args) at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) WRN: Assembly binding logging is turned OFF. To enable assembly bind failure logging, set the registry value [HKLM\Software\Microsoft\Fusion!EnableLog] (DWORD) to 1. Note: There is some performance penalty associated with assembly bind failure logging. To turn this feature off, remove the registry value [HKLM\Software\Microsoft\Fusion!EnableLog]. Error - 27/05/2011 02:37:29 | Computer Name = NOM-OGL2XDJJQAE | Source = Redownloader | ID = 0 Description = Service cannot be started. System.IO.FileNotFoundException: Could not load file or assembly 'Utils, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null' or one of its dependencies. Le fichier spécifié est introuvable. File name: 'Utils, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null' at service.service.reinstallBootstrap() at service.service.launch_update() at service.service.OnStart(String[] args) at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) WRN: Assembly binding logging is turned OFF. To enable assembly bind failure logging, set the registry value [HKLM\Software\Microsoft\Fusion!EnableLog] (DWORD) to 1. Note: There is some performance penalty associated with assembly bind failure logging. To turn this feature off, remove the registry value [HKLM\Software\Microsoft\Fusion!EnableLog]. Error - 27/05/2011 06:47:49 | Computer Name = NOM-OGL2XDJJQAE | Source = Redownloader | ID = 0 Description = Service cannot be started. System.IO.FileNotFoundException: Could not load file or assembly 'Utils, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null' or one of its dependencies. Le fichier spécifié est introuvable. File name: 'Utils, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null' at service.service.reinstallBootstrap() at service.service.launch_update() at service.service.OnStart(String[] args) at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) WRN: Assembly binding logging is turned OFF. To enable assembly bind failure logging, set the registry value [HKLM\Software\Microsoft\Fusion!EnableLog] (DWORD) to 1. Note: There is some performance penalty associated with assembly bind failure logging. To turn this feature off, remove the registry value [HKLM\Software\Microsoft\Fusion!EnableLog]. Error - 30/05/2011 09:02:57 | Computer Name = NOM-OGL2XDJJQAE | Source = Redownloader | ID = 0 Description = Service cannot be started. Le processus de service n'a pas pu se connecter au contrôleur de service Error - 30/05/2011 09:03:42 | Computer Name = NOM-OGL2XDJJQAE | Source = Redownloader | ID = 0 Description = Service cannot be started. Le processus de service n'a pas pu se connecter au contrôleur de service Error - 30/05/2011 09:47:42 | Computer Name = NOM-OGL2XDJJQAE | Source = .NET Runtime 2.0 Error Reporting | ID = 5000 Description = EventType clr20r3, P1 pref_updater.exe, P2 1.0.0.0, P3 4d0a383b, P4 pref_updater, P5 1.0.0.0, P6 4d0a383b, P7 1, P8 0, P9 system.io.filenotfoundexception, P10 NIL. Error - 30/05/2011 10:22:01 | Computer Name = NOM-OGL2XDJJQAE | Source = crypt32 | ID = 131080 Description = Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : A connection with the server could not be established Error - 31/05/2011 08:44:32 | Computer Name = NOM-OGL2XDJJQAE | Source = Application Hang | ID = 1002 Description = Application bloquée firefox.exe, version 2.0.1.4120, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. [ Canal+ Events ] Error - 27/11/2010 10:22:09 | Computer Name = NOM-OGL2XDJJQAE | Source = VideoOnDemand | ID = 0 Description = ServicesAdapter::ProcessRequest : Accès refusé Error - 01/12/2010 12:35:36 | Computer Name = NOM-OGL2XDJJQAE | Source = VideoOnDemand | ID = 0 Description = ServicesAdapter::ProcessRequest : Accès refusé Error - 08/12/2010 10:04:36 | Computer Name = NOM-OGL2XDJJQAE | Source = VideoOnDemand | ID = 0 Description = ServicesAdapter::ProcessRequest : Accès refusé Error - 19/01/2011 09:45:46 | Computer Name = NOM-OGL2XDJJQAE | Source = VideoOnDemand | ID = 0 Description = ServicesAdapter::ProcessRequest : Accès refusé Error - 19/01/2011 09:46:36 | Computer Name = NOM-OGL2XDJJQAE | Source = VideoOnDemand | ID = 0 Description = ServicesAdapter::ProcessRequest : Accès refusé Error - 18/04/2011 08:34:10 | Computer Name = NOM-OGL2XDJJQAE | Source = VideoOnDemand | ID = 0 Description = ContentsManager.Update : Un problème s'est produit au niveau du composant de la gestion des droits numériques (DRM). Contactez le Support technique pour cette application Error - 18/04/2011 08:34:10 | Computer Name = NOM-OGL2XDJJQAE | Source = VideoOnDemand | ID = 0 Description = ContentsManager.Update : Un problème s'est produit au niveau du composant de la gestion des droits numériques (DRM). Contactez le Support technique pour cette application Error - 18/04/2011 08:34:49 | Computer Name = NOM-OGL2XDJJQAE | Source = VideoOnDemand | ID = 0 Description = ContentsManager.Update : Un problème s'est produit au niveau du composant de la gestion des droits numériques (DRM). Contactez le Support technique pour cette application Error - 18/04/2011 08:34:49 | Computer Name = NOM-OGL2XDJJQAE | Source = VideoOnDemand | ID = 0 Description = ContentsManager.Update : Un problème s'est produit au niveau du composant de la gestion des droits numériques (DRM). Contactez le Support technique pour cette application Error - 26/04/2011 06:31:22 | Computer Name = NOM-OGL2XDJJQAE | Source = VideoOnDemand | ID = 0 Description = Object '/29d88d5f_883b_4c45_8310_dfda6b99a696/s0yct3nwfbpx8kgl0n90dj2n_5.rem' has been disconnected or does not exist at the server. : Object '/29d88d5f_883b_4c45_8310_dfda6b99a696/s0yct3nwfbpx8kgl0n90dj2n_5.rem' has been disconnected or does not exist at the server. [ System Events ] Error - 30/05/2011 13:04:16 | Computer Name = NOM-OGL2XDJJQAE | Source = W32Time | ID = 39452701 Description = Le fournisseur de temps NtpClient est configuré pour acquérir le temps à partir d'une ou plusieurs sources de temps, cependant aucune source n'est actuellement accessible. Aucune tentative pour en contacter une ne sera effectuée d'ici 15 minutes. NtpClient n'a pas de source de temps précis. Error - 30/05/2011 19:24:50 | Computer Name = NOM-OGL2XDJJQAE | Source = W32Time | ID = 39452689 Description = Fournisseur de temps NtpClient : une erreur s'est produite lors de la recherche DNS de l'homologue manuellement configuré 'time.windows.com,0x1'. NtpClient va essayer à nouveau la recherche DNS dans 15 minutes. L'erreur était : Une opération a été tentée sur un hôte impossible à atteindre. (0x80072751) Error - 30/05/2011 19:24:50 | Computer Name = NOM-OGL2XDJJQAE | Source = W32Time | ID = 39452701 Description = Le fournisseur de temps NtpClient est configuré pour acquérir le temps à partir d'une ou plusieurs sources de temps, cependant aucune source n'est actuellement accessible. Aucune tentative pour en contacter une ne sera effectuée d'ici 14 minutes. NtpClient n'a pas de source de temps précis. Error - 31/05/2011 07:00:41 | Computer Name = NOM-OGL2XDJJQAE | Source = atapi | ID = 262153 Description = Le périphérique \Device\Ide\IdePort0 n'a pas répondu dans le délai imparti. Error - 31/05/2011 07:01:48 | Computer Name = NOM-OGL2XDJJQAE | Source = atapi | ID = 262153 Description = Le périphérique \Device\Ide\IdePort0 n'a pas répondu dans le délai imparti. Error - 31/05/2011 11:45:30 | Computer Name = NOM-OGL2XDJJQAE | Source = Service Control Manager | ID = 7009 Description = Délai (30000 millisecondes) d'attente pour une connexion du service TrueVector Internet Monitor. Error - 31/05/2011 11:45:30 | Computer Name = NOM-OGL2XDJJQAE | Source = Service Control Manager | ID = 7000 Description = Le service TrueVector Internet Monitor n'a pas pu démarrer en raison de l'erreur : %%1053 Error - 31/05/2011 11:45:30 | Computer Name = NOM-OGL2XDJJQAE | Source = Service Control Manager | ID = 7000 Description = Le service Gestionnaire de téléchargement n'a pas pu démarrer en raison de l'erreur : %%1083 Error - 31/05/2011 11:46:44 | Computer Name = NOM-OGL2XDJJQAE | Source = Service Control Manager | ID = 7011 Description = Délai (30000 millisecondes) d'attente pour une réponse du service ALG à une transaction. Error - 31/05/2011 11:46:44 | Computer Name = NOM-OGL2XDJJQAE | Source = Service Control Manager | ID = 7000 Description = Le service Service de la passerelle de la couche Application n'a pas pu démarrer en raison de l'erreur : %%1053 [ TuneUp Events ] Error - 16/11/2010 21:35:45 | Computer Name = NOM-OGL2XDJJQAE | Source = TuneUp.UtilitiesSvc | ID = 300 Description = < End of report >
  14. dager
    voila les rapports : OTL logfile created on: 31/05/2011 17:54:49 - Run 1 OTL by OldTimer - Version 3.2.23.0 Folder = C:\Documents and Settings\Propriétaire\Bureau Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 511,48 Mb Total Physical Memory | 168,39 Mb Available Physical Memory | 32,92% Memory free 1,22 Gb Paging File | 0,86 Gb Available in Paging File | 70,74% Paging File free Paging file location(s): C:\pagefile.sys 0 0 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 108,27 Gb Total Space | 92,29 Gb Free Space | 85,24% Space Free | Partition Type: NTFS Drive D: | 3,50 Gb Total Space | 0,70 Gb Free Space | 19,94% Space Free | Partition Type: FAT32 Drive G: | 465,65 Gb Total Space | 419,77 Gb Free Space | 90,15% Space Free | Partition Type: FAT32 Drive H: | 1,89 Gb Total Space | 1,89 Gb Free Space | 99,95% Space Free | Partition Type: FAT32 Drive I: | 1,86 Gb Total Space | 0,37 Gb Free Space | 19,89% Space Free | Partition Type: FAT Computer Name: NOM-OGL2XDJJQAE | User Name: Propriétaire | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2011/05/31 17:52:28 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Propriétaire\Bureau\OTL.exe PRC - [2011/05/23 15:03:35 | 000,136,360 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe PRC - [2011/03/04 14:38:18 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe PRC - [2011/03/04 14:38:17 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe PRC - [2011/01/07 13:12:22 | 000,253,672 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe PRC - [2010/07/06 12:59:13 | 000,188,416 | ---- | M] (Canal+ Active) -- C:\Program Files\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe PRC - [2010/01/14 21:11:14 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe PRC - [2009/11/22 16:44:16 | 002,384,240 | ---- | M] (Check Point Software Technologies LTD) -- C:\WINDOWS\system32\ZoneLabs\vsmon.exe PRC - [2009/11/22 16:42:50 | 001,037,192 | ---- | M] (Check Point Software Technologies LTD) -- C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe PRC - [2009/10/14 15:30:26 | 000,476,528 | ---- | M] (Check Point Software Technologies) -- C:\Program Files\CheckPoint\ZAForceField\ISWSVC.exe PRC - [2009/10/14 15:30:06 | 000,730,480 | ---- | M] (Check Point Software Technologies) -- C:\Program Files\CheckPoint\ZAForceField\ForceField.exe PRC - [2008/04/13 19:34:04 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2003/08/21 04:16:50 | 000,483,328 | ---- | M] (Hewlett-Packard) -- C:\WINDOWS\system32\hphmon05.exe ========== Modules (SafeList) ========== MOD - [2011/05/31 17:52:28 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Propriétaire\Bureau\OTL.exe MOD - [2010/08/23 18:12:39 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll MOD - [2009/10/14 15:30:36 | 000,628,080 | ---- | M] (Check Point Software Technologies) -- C:\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll MOD - [2009/07/12 02:12:06 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcr80.dll MOD - [2009/07/12 02:09:20 | 000,554,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcp80.dll MOD - [2003/12/05 20:50:00 | 001,175,552 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nview.dll MOD - [2003/12/05 20:50:00 | 000,249,856 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvwrsfr.dll MOD - [2003/12/05 20:50:00 | 000,035,840 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvwddi.dll ========== Win32 Services (SafeList) ========== SRV - File not found [Disabled | Stopped] -- -- (HidServ) SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt) SRV - [2011/05/23 15:03:35 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2011/03/04 14:38:18 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2010/11/29 11:42:56 | 000,058,944 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper_3004.dll -- (nosGetPlusHelper) getPlus® SRV - [2010/07/06 12:59:13 | 000,188,416 | ---- | M] (Canal+ Active) [Auto | Running] -- C:\Program Files\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe -- (CanalPlus.VOD) SRV - [2009/11/22 16:44:16 | 002,384,240 | ---- | M] (Check Point Software Technologies LTD) [Auto | Running] -- C:\WINDOWS\System32\ZoneLabs\vsmon.exe -- (vsmon) SRV - [2009/10/14 15:30:26 | 000,476,528 | ---- | M] (Check Point Software Technologies) [Auto | Running] -- C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe -- (IswSvc) SRV - [2008/06/20 18:28:34 | 000,436,096 | ---- | M] (Canal+ Distribution) [On_Demand | Stopped] -- C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe -- (Service CANALPLAY) ========== Driver Services (SafeList) ========== DRV - [2011/03/04 16:11:12 | 000,137,656 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb) DRV - [2011/03/04 14:38:47 | 000,061,960 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt) DRV - [2010/06/17 14:28:02 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2010/06/17 14:27:52 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio) DRV - [2009/11/22 16:42:54 | 000,486,280 | ---- | M] (Check Point Software Technologies LTD) [Kernel | System | Running] -- C:\WINDOWS\system32\vsdatant.sys -- (vsdatant) DRV - [2009/10/14 15:30:02 | 000,025,208 | ---- | M] (Check Point Software Technologies) [Kernel | Auto | Running] -- C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys -- (ISWKL) DRV - [2005/12/22 12:24:52 | 000,137,884 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdm.sys -- (sscdmdm) DRV - [2005/12/22 12:24:52 | 000,010,864 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdfl.sys -- (sscdmdfl) DRV - [2005/12/22 12:24:50 | 000,080,272 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM) DRV - [2004/10/01 11:24:00 | 002,279,424 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2004/01/01 11:43:27 | 000,043,488 | ---- | M] (Oak Technology Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\AFS2K.SYS -- (AFS2K) DRV - [2003/12/12 07:54:14 | 000,391,424 | ---- | M] (Sensaura Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS -- (ALCXSENS) DRV - [2003/12/06 03:13:42 | 000,429,440 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sisgrp.sys -- (SiS315) DRV - [2003/12/05 17:25:54 | 000,011,392 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\srvkp.sys -- (SiSkp) DRV - [2003/09/03 00:51:00 | 000,021,120 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\nv_agp.sys -- (nv_agp) DRV - [2003/07/18 17:58:20 | 000,036,992 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\SISAGPX.sys -- (SISAGP) DRV - [2003/07/11 23:28:56 | 000,032,768 | ---- | M] (SiS Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sisnic.sys -- (SISNIC) DRV - [2003/07/02 12:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\viaagp1.sys -- (viaagp1) DRV - [2002/07/29 22:43:50 | 000,023,808 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\PS2.sys -- (Ps2) DRV - [2001/08/18 04:11:06 | 000,066,591 | ---- | M] (3Com Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\el90xbc5.sys -- (EL90XBC) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "Lphant Web Search" FF - prefs.js..browser.search.defaultthis.engineName: "Eazel-FR Customized Web Search" FF - prefs.js..browser.search.order.1: "Lphant Web Search" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..browser.startup.homepage: "http://www.google.fr/firefox?client=firefox-a&rls=org.mozilla:fr-FR:official" FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 FF - prefs.js..extensions.enabledItems: [email protected]:1.0 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23 FF - prefs.js..extensions.enabledItems: {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1.6.2.97 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24 FF - prefs.js..keyword.URL: "http://www.wibeez.com/annuaire?search&q=" FF - prefs.js..network.proxy.type: 4 FF - HKLM\software\mozilla\Firefox\extensions\\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}: C:\Program Files\CheckPoint\ZAForceField\TrustChecker [2011/02/08 08:18:18 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/05/06 16:41:31 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/05/06 16:41:31 | 000,000,000 | ---D | M] [2010/11/12 18:09:15 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Extensions [2011/05/21 20:41:56 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\z8sr0rwr.default\extensions [2010/08/21 08:39:43 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\z8sr0rwr.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010/11/13 14:09:22 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\z8sr0rwr.default\extensions\{655D219E-64ED-11DE-97C7-BB4856D89593}chrome [2011/01/24 22:32:06 | 000,000,000 | ---D | M] (Adobe DLM (powered by getPlus®)) -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\z8sr0rwr.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7} [2011/05/06 16:41:53 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\z8sr0rwr.default\extensions\nostmp [2009/10/25 14:48:54 | 000,001,775 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\z8sr0rwr.default\searchplugins\live-search.xml [2009/12/22 11:48:34 | 000,003,713 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\z8sr0rwr.default\searchplugins\Wibeez.xml [2011/05/25 21:49:58 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2010/05/07 21:28:33 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010/08/21 08:36:22 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2010/10/28 09:49:06 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [2010/12/26 00:36:07 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} [2011/02/28 10:01:25 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} [2011/05/25 21:49:59 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} File not found (No name found) -- [2010/12/26 00:35:49 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2011/05/06 16:41:18 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll [2011/04/14 05:08:00 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2011/05/06 16:41:22 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml [2011/05/06 16:41:22 | 000,002,252 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\bing.xml [2011/05/06 16:41:22 | 000,001,822 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml [2011/05/06 16:41:22 | 000,001,154 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml [2011/05/06 16:41:22 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml [2011/05/06 16:41:22 | 000,000,956 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml O1 HOSTS File: ([2011/03/08 20:59:46 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) O2 - BHO: (no name) - {326E768D-4182-46FD-9C16-1449A49795F4} - Reg Error: Value error. File not found O2 - BHO: (DivX HiQ) - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - Reg Error: Value error. File not found O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2 - BHO: (no name) - {BDF3E430-B101-42AD-A544-FADC6B084872} - No CLSID value found. O3 - HKLM\..\Toolbar: (Radio) - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\system32\msdxm.ocx (Microsoft Corporation) O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No CLSID value found. O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [HPHmon05] C:\WINDOWS\system32\hphmon05.exe (Hewlett-Packard) O4 - HKLM..\Run: [HPHUPD05] c:\Program Files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe (Hewlett-Packard) O4 - HKLM..\Run: [iSW] C:\Program Files\CheckPoint\ZAForceField\ForceField.exe (Check Point Software Technologies) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe (NVIDIA Corporation) O4 - HKLM..\Run: [Recguard] C:\WINDOWS\SMINST\Recguard.exe () O4 - HKLM..\Run: [regcmdcons] c:\hp\bin\cloaker.exe (Hewlett-Packard Co.) O4 - HKLM..\Run: [sunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.) O4 - HKLM..\Run: [updateManager] C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe (Sonic Solutions) O4 - HKLM..\Run: [ZoneAlarm Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe (Check Point Software Technologies LTD) O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Axon Data [2009/11/05 21:57:10 | 000,000,000 | ---D | M] O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O9 - Extra Button: @shdoclc.dll,-866 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - File not found O9 - Extra 'Tools' menuitem : @shdoclc.dll,-864 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - File not found O15 - HKLM\..Trusted Domains: canalplay.com ([]* in Trusted sites) O15 - HKLM\..Trusted Domains: canalplusactive.com ([]* in Trusted sites) O15 - HKCU\..Trusted Domains: ([]msn in My Computer) O15 - HKCU\..Trusted Domains: canalplay.com ([]* in Trusted sites) O15 - HKCU\..Trusted Domains: canalplusactive.com ([]* in Trusted sites) O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} http://gfx1.hotmail.com/mail/w3/resources/MSNPUpld.cab (MSN Photo Upload Tool) O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} http://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab (NVIDIA Smart Scan) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25) O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} Java Plug-in Technology (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25) O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://juniper.net/dana-cached/sc/JuniperSetupClient.cab (JuniperSetupClientControl Class) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\vnd.ms.radio {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - C:\WINDOWS\system32\msdxm.ocx (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\igfxcui: DllName - igfxsrvc.dll - C:\WINDOWS\System32\igfxsrvc.dll (Intel Corporation) O24 - Desktop Components:0 (Ma page d'accueil) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2004/01/01 09:55:48 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2010/11/05 19:20:59 | 000,000,000 | R--D | M] - C:\Autorun.inf -- [ NTFS ] O32 - AutoRun File - [2001/07/27 21:07:38 | 000,000,000 | ---- | M] () - D:\AUTOEXEC.BAT -- [ FAT32 ] O32 - AutoRun File - [2010/11/05 18:21:02 | 000,000,000 | R--D | M] - D:\Autorun.inf -- [ FAT32 ] O32 - AutoRun File - [2010/11/05 18:21:08 | 000,000,000 | RHSD | M] - G:\Autorun.inf -- [ FAT32 ] O32 - AutoRun File - [2010/11/05 18:21:10 | 000,000,000 | RHSD | M] - H:\Autorun.inf -- [ FAT32 ] O32 - AutoRun File - [2010/11/05 18:21:14 | 000,000,000 | RHSD | M] - I:\Autorun.inf -- [ FAT ] O34 - HKLM BootExecute: (autocheck autochk /r \??\H:) - File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O34 - HKLM BootExecute: (pgdfgsvc C 1) - C:\WINDOWS\System32\pgdfgsvc.exe (Sysinternals - www.sysinternals.com) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: AppMgmt - File not found NetSvcs: HidServ - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found Drivers32: msacm.ac3acm - C:\WINDOWS\System32\ac3acm.acm (fccHandler) Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation) Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.lameacm - C:\WINDOWS\System32\lameACM.acm (http://www.mp3dev.org/) Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.) Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.) Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.) Drivers32: VIDC.FFDS - C:\WINDOWS\System32\ff_vfw.dll () Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation) Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation) Drivers32: vidc.LEAD - C:\WINDOWS\System32\LCodcCMP.dll (LEAD Technologies, Inc.) Drivers32: VIDC.XVID - C:\WINDOWS\System32\xvidvfw.dll () Drivers32: VIDC.YV12 - C:\WINDOWS\System32\yv12vfw.dll (www.helixcommunity.org) CREATERESTOREPOINT Restore point Set: OTL Restore Point (59123300026023936) PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin ========== Files/Folders - Created Within 30 Days ========== [2011/05/31 17:52:27 | 000,580,096 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Propriétaire\Bureau\OTL.exe [2011/05/31 14:55:27 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Propriétaire\Recent [2011/05/25 21:50:47 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Java [2011/05/25 21:49:56 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2011/05/25 21:49:55 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2011/05/25 21:49:55 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2011/05/25 21:38:10 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Remover [2011/05/25 21:29:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ZHPFix 1.12 [2011/05/25 21:29:52 | 000,000,000 | ---D | C] -- C:\Program Files\ZHPFix [2011/05/25 16:21:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Avira [2011/05/24 20:46:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Application Data\Avira [2011/05/23 13:52:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Avira [2011/05/23 13:52:40 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys [2011/05/23 13:52:38 | 000,137,656 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys [2011/05/23 13:52:38 | 000,061,960 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys [2011/05/23 13:52:38 | 000,045,416 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntdd.sys [2011/05/23 13:52:38 | 000,022,360 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntmgr.sys [2011/05/23 13:52:37 | 000,000,000 | ---D | C] -- C:\Program Files\Avira [2011/05/23 13:52:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Avira ========== Files - Modified Within 30 Days ========== [2011/05/31 17:55:46 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin [2011/05/31 17:52:28 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Propriétaire\Bureau\OTL.exe [2011/05/31 17:44:37 | 000,000,249 | ---- | M] () -- C:\WINDOWS\System\hpsysdrv.dat [2011/05/31 17:44:26 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011/05/31 17:44:25 | 536,399,872 | -HS- | M] () -- C:\hiberfil.sys [2011/05/30 20:45:55 | 000,006,032 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Bureau\pub.rtf [2011/05/30 19:07:12 | 000,112,301 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Bureau\Memo_Voyage_billet.pdf [2011/05/28 14:41:25 | 000,139,776 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011/05/27 08:39:19 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2011/05/26 08:13:26 | 000,025,992 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\WINDOWS\System32\pgdfgsvc.exe [2011/05/25 19:46:29 | 000,512,630 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat [2011/05/25 19:46:29 | 000,442,466 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2011/05/25 19:46:29 | 000,085,692 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat [2011/05/25 19:46:29 | 000,071,732 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2011/05/25 19:46:28 | 000,511,496 | ---- | M] () -- C:\WINDOWS\System32\perfh040.dat [2011/05/25 19:46:28 | 000,085,248 | ---- | M] () -- C:\WINDOWS\System32\perfc040.dat [2011/05/21 18:59:12 | 000,000,512 | ---- | M] () -- C:\PhysicalDisk0_MBR.bin [2011/05/14 08:27:39 | 000,169,896 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011/05/10 12:45:50 | 000,000,036 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\housecall.guid.cache ========== Files Created - No Company Name ========== [2011/05/31 17:55:46 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin [2011/05/30 19:07:11 | 000,112,301 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Bureau\Memo_Voyage_billet.pdf [2011/05/27 08:45:49 | 000,006,032 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Bureau\pub.rtf [2011/05/23 13:54:30 | 536,399,872 | -HS- | C] () -- C:\hiberfil.sys [2011/05/10 12:45:50 | 000,000,036 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\housecall.guid.cache [2011/05/06 16:41:36 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk [2011/03/11 21:34:39 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll [2011/03/11 21:34:38 | 000,040,448 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe [2011/03/08 19:03:18 | 000,511,496 | ---- | C] () -- C:\WINDOWS\System32\perfh040.dat [2011/03/08 19:03:18 | 000,085,248 | ---- | C] () -- C:\WINDOWS\System32\perfc040.dat [2010/12/27 16:10:58 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2010/12/27 16:10:54 | 000,810,496 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2010/12/27 16:10:54 | 000,183,808 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2010/12/27 16:10:52 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2010/05/09 18:03:05 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2010/04/05 09:31:06 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2009/11/12 14:48:58 | 000,005,504 | ---- | C] () -- C:\WINDOWS\System32\StarOpen.sys [2009/07/03 08:49:48 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\LauncherAccess.dt [2009/06/24 10:49:07 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys [2009/05/10 16:48:08 | 000,000,379 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2009/05/02 11:33:37 | 000,000,058 | ---- | C] () -- C:\WINDOWS\System32\Favorites.ini [2009/05/01 23:29:58 | 000,004,212 | ---- | C] () -- C:\WINDOWS\System32\zllictbl.dat [2009/05/01 21:59:36 | 000,139,776 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009/05/01 21:49:17 | 000,001,172 | ---- | C] () -- C:\WINDOWS\mozver.dat [2009/05/01 21:11:52 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2004/08/02 14:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2004/01/03 05:33:58 | 000,322,810 | ---- | C] () -- C:\WINDOWS\System32\perfi00C.dat [2004/01/03 05:33:58 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2004/01/03 05:33:58 | 000,034,108 | ---- | C] () -- C:\WINDOWS\System32\perfd00C.dat [2004/01/03 05:33:58 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2004/01/03 05:33:56 | 000,004,490 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat [2004/01/03 05:33:52 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2004/01/03 05:33:47 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat [2004/01/03 05:33:31 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2004/01/03 05:33:31 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2004/01/03 05:32:33 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2004/01/03 05:32:05 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin [2004/01/01 17:44:17 | 000,000,639 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini [2004/01/01 17:44:07 | 000,512,630 | ---- | C] () -- C:\WINDOWS\System32\perfh00C.dat [2004/01/01 17:44:07 | 000,085,692 | ---- | C] () -- C:\WINDOWS\System32\perfc00C.dat [2004/01/01 17:43:51 | 000,442,466 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2004/01/01 17:43:51 | 000,071,732 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2004/01/01 12:43:45 | 000,000,135 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\fusioncache.dat [2004/01/01 12:40:53 | 000,167,936 | ---- | C] () -- C:\WINDOWS\System32\PCDrJNI_1_1.dll [2004/01/01 12:26:56 | 000,026,324 | ---- | C] () -- C:\WINDOWS\System32\CHODDI.SYS [2004/01/01 12:26:22 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\syscontr.dll [2004/01/01 12:25:50 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\hpreg.dll [2004/01/01 11:48:48 | 000,006,848 | ---- | C] () -- C:\WINDOWS\System32\hphmon05.dat [2004/01/01 11:48:35 | 000,018,341 | ---- | C] () -- C:\WINDOWS\HPHins01.dat [2004/01/01 11:48:35 | 000,004,308 | ---- | C] () -- C:\WINDOWS\hphmdl01.dat [2004/01/01 11:41:14 | 000,034,480 | ---- | C] () -- C:\WINDOWS\hpomdl03.dat [2004/01/01 11:41:14 | 000,028,889 | ---- | C] () -- C:\WINDOWS\hpoins03.dat [2004/01/01 11:31:18 | 000,016,306 | ---- | C] () -- C:\WINDOWS\hpqins01.dat [2004/01/01 11:31:17 | 000,002,673 | ---- | C] () -- C:\WINDOWS\hpimdl01.dat [2004/01/01 11:24:02 | 000,003,712 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini [2004/01/01 11:17:48 | 000,001,040 | ---- | C] () -- C:\WINDOWS\System32\drivers\alcxinit.dat [2004/01/01 11:14:04 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\sis760.bin [2004/01/01 11:14:04 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\sis741.bin [2004/01/01 11:14:04 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\sis660.bin [2004/01/01 11:14:04 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\sis740.bin [2004/01/01 11:14:04 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\sis650.bin [2004/01/01 10:52:05 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll [2004/01/01 10:41:53 | 000,299,073 | ---- | C] () -- C:\WINDOWS\System32\PythonCOM22.dll [2004/01/01 10:41:53 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\PyWinTypes22.dll [2004/01/01 10:41:24 | 000,016,896 | ---- | C] () -- C:\WINDOWS\System32\bcbmm.dll [2004/01/01 09:59:46 | 000,000,851 | ---- | C] () -- C:\WINDOWS\orun32.ini [2004/01/01 09:57:55 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2004/01/01 09:52:52 | 000,021,892 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2004/01/01 09:48:39 | 000,004,207 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2004/01/01 09:47:50 | 000,169,896 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2004/01/01 09:37:31 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini [2004/01/01 09:28:20 | 000,000,451 | ---- | C] () -- C:\WINDOWS\VGAsetup.ini [2004/01/01 09:28:20 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\VGAunistlog.ini [2003/09/23 02:20:08 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini [2003/05/15 22:15:18 | 000,225,209 | ---- | C] () -- C:\WINDOWS\System32\C9930A.bin [2003/03/06 23:53:18 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\hpnvr82.dll ========== Custom Scans ========== < %SYSTEMDRIVE%\*.* > [2011/05/25 21:43:52 | 000,008,331 | ---- | M] () -- C:\Ad-Report-SCAN[1].txt [2004/01/01 09:55:48 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2009/05/05 12:30:07 | 000,000,211 | ---- | M] () -- C:\Boot.bak [2011/03/13 21:55:08 | 000,000,327 | ---- | M] () -- C:\boot.ini [2003/09/21 04:08:00 | 000,004,952 | ---- | M] () -- C:\Bootfont.bin [2004/08/04 00:00:08 | 000,263,488 | ---- | M] () -- C:\cmldr [2004/01/01 09:55:48 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010/01/28 10:19:31 | 000,000,081 | ---- | M] () -- C:\CTX.DAT [2001/09/06 06:00:58 | 001,700,352 | ---- | M] (Microsoft Corporation) -- C:\gdiplus.dll [2011/05/31 17:44:25 | 536,399,872 | -HS- | M] () -- C:\hiberfil.sys [2004/01/01 09:55:48 | 000,000,000 | ---- | M] () -- C:\IO.SYS [2004/01/01 09:55:48 | 000,000,000 | ---- | M] () -- C:\MSDOS.SYS [2009/05/01 22:59:18 | 000,047,564 | ---- | M] () -- C:\NTDETECT.COM [2009/05/02 07:29:55 | 000,252,240 | ---- | M] () -- C:\ntldr [2011/05/31 17:44:24 | 804,495,360 | -HS- | M] () -- C:\pagefile.sys [2011/05/21 18:59:12 | 000,000,512 | ---- | M] () -- C:\PhysicalDisk0_MBR.bin [2011/05/31 17:55:46 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin [2009/11/06 09:34:30 | 000,000,129 | ---- | M] () -- C:\Raccourci vers Disquette 3½ (A).lnk [2011/05/25 21:31:03 | 000,002,744 | ---- | M] () -- C:\ZHPExportRegistry-25-05-2011-21-31-02.txt < %systemroot%\*. /mp /s > < %systemroot%\system32\*.dll /lockedfiles > < %systemroot%\Tasks\*.job /lockedfiles > < %systemroot%\System32\config\*.sav > [2004/01/01 10:47:07 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav [2004/01/01 10:47:07 | 000,606,208 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav [2004/01/01 10:47:07 | 000,385,024 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav < %systemroot%\system32\drivers\*.sys /90 > [2011/03/04 14:38:47 | 000,061,960 | ---- | M] (Avira GmbH) -- C:\WINDOWS\system32\drivers\avgntflt.sys [2011/03/04 16:11:12 | 000,137,656 | ---- | M] (Avira GmbH) -- C:\WINDOWS\system32\drivers\avipbb.sys < HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU > < HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs > HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2011-02-27 15:57:44 ========== Alternate Data Streams ========== @Alternate Data Stream - 104 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D1B5B4F1 < End of report >
  15. dager
    je signale comme indiqué que il y a une modification du comportement du pc : le déclenchement intempestif du ventilateur, merci.
×
×
  • Créer...