Aller au contenu

Sophie123

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    289

  • Inscription

  • Dernière visite

Tout ce qui a été posté par Sophie123

  1. Sophie123
    Bonsoir Apollo, comment tu vas ? Merci pour ces pages. Je vais aller regarder. Voici les noms de certaines infections trouvées il y a plusieurs jours : Dropper.Gen ; Dropper.MSIL.Gen ; APPL/InstallBrain.Gen ; Crypt.XPACK.Gen7 et APPL/InstallMate.Gen2. La grosse poisse depuis Pour le redémarrage intempestif, il est dû à une erreur de ma part. N'arrivant pas à accéder au mode sans échec j'ai opté pour une autre manoeuvre et suis allée sur BOOT.INI. Là j'ai coché SAFEBOOT, MINIMAL et redémarrer comme proposé sur Tech2Tech, page trouvée hier pour essayer de m'en sortir. Très mauvaise idée.
  2. Sophie123
    Bonsoir, après détection de nombreux problèmes par mon anti-virus et n'en venant pas à bout, j'ai essayé de passer en mode sans échec. Impossible. J'ai tenté d'y accéder par msconfig, mais n'ayant pas coché les bonnes options, j'ai maintenant un PC qui démarre et s'éteint en boucle. J'ai vraiment besoin d'aide ! Merci à l'informaticien qui me sortira de cette spirale infernale.
  3. Sophie123
    Bonsoir, Excusez-moi de vous déranger, mais je suis inquiète. Je n'ai plus aucune nouvelle de Pear suite à mon envoi du rapport ZHPDiag du 10 février. Voir : Demande d'aide pour analyse PC - Forums Zebulon.fr Je comprends fort bien que je ne suis pas la seule à requérir vos services et que vous êtes tous bénévoles, mais rester sans nouvelle me tracasse. Merci d'avance pour la réponse que vous pourrez m'apporter.
  4. Sophie123
    Bonjour, J'ai envoyé le rapport demandé ZHPDiag en tout début d'analyse, mais n'ai pas eu de retour, ce qui m'inquiète. Dois-je comprendre que le PC est ok ? Demande d'aide pour analyse PC - Forums Zebulon.fr Merci pour vos conseils.
  5. Sophie123
    Bonjour, Pas de réponse. Un problème dans la réception du rapport ? Rien à signaler ? Merci à l'avance et bonne journée
  6. Sophie123
    Bonsoir Pear, Merci pour votre réponse. Vous trouverez le rapport demandé sur : http://cjoint.com/?BBktjAOQNBp Bonne soirée
  7. Sophie123
    Bonjour, Mon PC m'a l'air "patraque". Il bloque souvent quand je suis sur le Net. Je vais régulièrement sur Facebook avec Google Chrome. Depuis hier l'affichage des caractères a changé, moins net. J'ai changé tout dernièrement l'écran donc il devrait être OK. Merci par avance pour votre aide.
  8. Sophie123
    Bonsoir Popup, Merci pour ton message, mais mes questions restent sans réponse. J'utilise depuis des mois Malwarebytes'Anti-Malware, mais me demande comment faire dès lors que l'essai est arrivé à expiration. C'était une version gratuite. Il y a certainement d'autres programmes plus récents qui sont tout autant performants pour une sécurisation efficace. Qui pourrait me conseiller ? Si je ne suis pas sur le bon forum, ce qui ne serait pas impossible, merci de m'indiquer où poser ce type de question pour que je n'encombre pas inutilement ici. Bonne soirée Sophie123
  9. Sophie123
    Bonsoir, Utilisatrice jusqu'alors de Malwarebytes'Anti-Malware, je me demande comment faire car l'essai est arrivé à expiration. Pareil pour un pare-feu dont je ne souviens plus le nom. J'ai toujours Online Armor et Avira Antivir Personal. Il y a certainement d'autres programmes plus récents qui sont tout autant performants pour une sécurisation efficace. Pourriez-vous me conseiller ? Merci par avance. Sophie123
  10. Sophie123
    Merci pour ce complément d'informations. Ne trouvant pas Copernic Desktop Search, j'ai désinstallé Copernic Agent. Et aussi enlevé le programme MSN Messenger. Ayant toujours TDSSKILLER sur mon bureau, ainsi que des résidus de ZHP, je peux les supprimer simplement en les jetant à la corbeille ?
  11. Sophie123
    1) [ Rapport ToolsCleaner version 2.3.11 (par A.Rothstein & dj QUIOU) ] --> Recherche: C:\Documents and Settings\Sophie\Bureau\hijackthis.log: trouvé ! C:\Documents and Settings\Sophie\Bureau\Analyse 1-12\phase 2\ComboFix.exe: trouvé ! C:\Program Files\ZHPDiag: trouvé ! C:\Program Files\trend micro\HijackThis.exe: trouvé ! C:\Program Files\trend micro\hijackthis.log: trouvé ! C:\Program Files\ZebHelpProcess\ZHPdiag.exe: trouvé ! C:\Program Files\ZHPDiag\ZHPdiag.exe: trouvé ! C:\Program Files\ZHPDiag\catchme.exe: trouvé ! C:\Program Files\ZHPDiag\mbr.log: trouvé ! C:\Program Files\ZHPDiag\mbr.exe: trouvé ! --------------------------------- --> Suppression: C:\Documents and Settings\Sophie\Bureau\Analyse 1-12\phase 2\ComboFix.exe: ERREUR DE SUPPRESSION !! C:\Program Files\trend micro\HijackThis.exe: supprimé ! C:\Program Files\ZebHelpProcess\ZHPdiag.exe: supprimé ! C:\Program Files\ZHPDiag\ZHPdiag.exe: supprimé ! C:\Program Files\ZHPDiag\catchme.exe: supprimé ! C:\Documents and Settings\Sophie\Bureau\hijackthis.log: supprimé ! C:\Program Files\trend micro\hijackthis.log: supprimé ! C:\Program Files\ZHPDiag\mbr.log: supprimé ! C:\Program Files\ZHPDiag\mbr.exe: supprimé ! C:\Program Files\ZHPDiag: supprimé ! Corbeille vidée! Fichiers temporaires nettoyés ! 2) Cijoint.fr - Service gratuit de dépôt de fichiers Pour info, la barre du programme Copernic et celle de Msn sont toujours présentes.
  12. Sophie123
    Merci pour ton analyse, Apollo et bravo pour avoir su m'éliminer des fichiers encombrants ! Que de mémoire récupérée ! Tu saurais m'indiquer la marche à suivre pour supprimer des barres d'outils qui m'encombrent plus qu'autre chose : celle de Copernic Agent, Bing, Msn ? Je ne m'en sers pas donc si ça peut permettre de gagner de la place sur le disque dur, autant en profiter pour l'enlever. Par ailleurs, pour les fichiers temporaires, tu conseilles de passer par TMC où c'est juste l'équipe informatique qui peut l'utiliser ? Une fois ces opérations terminées, il faut nettoyer les outils utilisés ou je peux les laisser ?
  13. Sophie123
    Malwarebytes' Anti-Malware 1.51.1.1800 www.malwarebytes.org Version de la base de données: 7337 Windows 5.1.2600 Service Pack 3 Internet Explorer 8.0.6001.18702 31/07/2011 16:34:13 mbam-log-2011-07-31 (16-34-13).txt Type d'examen: Examen complet (C:\|D:\|) Elément(s) analysé(s): 243231 Temps écoulé: 1 heure(s), 35 minute(s), 32 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté)
  14. Sophie123
    1) Rapport de ZHPFix 1.12.3345 par Nicolas Coolman, Update du 29/07/2011 Fichier d'export Registre : Run by Sophie at 31/07/2011 13:56:40 Windows XP Professional Service Pack 3 (Build 2600) Web site : ZHPFix Fix de rapport ========== Valeur(s) du Registre ========== SUPPRIME IFC: [FEATURE_BROWSER_EMULATION] svchost.exe ========== Elément(s) de donnée du Registre ========== REMPLACE Value AntiVirusOverride : Good (0) - Bad (1) ========== Dossier(s) ========== SUPPRIME Folder*: C:\Program Files\Fluendo SUPPRIME Folder*: C:\Documents and Settings\Sophie\Application Data\moovida-1 SUPPRIME Temporaires Windows: : 86 SUPPRIME Flash Cookies: 134 ========== Fichier(s) ========== ABSENT Folder/File: c:\program files\fluendo\moovida SUPPRIME Temporaires Windows: : 52 SUPPRIME Flash Cookies: 51 ========== Récapitulatif ========== 1 : Valeur(s) du Registre 1 : Elément(s) de donnée du Registre 4 : Dossier(s) 3 : Fichier(s) ========== Chemin du fichier rapport ========== C:\Program Files\ZHPDiag\ZHPFixReport.txt End of the scan in 01mn 06s 2) 2011/07/31 14:12:59.0468 1844 TDSS rootkit removing tool 2.5.13.0 Jul 29 2011 17:24:11 2011/07/31 14:12:59.0796 1844 ================================================================================ 2011/07/31 14:12:59.0796 1844 SystemInfo: 2011/07/31 14:12:59.0796 1844 2011/07/31 14:12:59.0796 1844 OS Version: 5.1.2600 ServicePack: 3.0 2011/07/31 14:12:59.0796 1844 Product type: Workstation 2011/07/31 14:12:59.0796 1844 ComputerName: SOPHIE 2011/07/31 14:12:59.0796 1844 UserName: Sophie 2011/07/31 14:12:59.0796 1844 Windows directory: C:\WINDOWS 2011/07/31 14:12:59.0796 1844 System windows directory: C:\WINDOWS 2011/07/31 14:12:59.0796 1844 Processor architecture: Intel x86 2011/07/31 14:12:59.0796 1844 Number of processors: 2 2011/07/31 14:12:59.0796 1844 Page size: 0x1000 2011/07/31 14:12:59.0796 1844 Boot type: Normal boot 2011/07/31 14:12:59.0796 1844 ================================================================================ 2011/07/31 14:13:01.0718 1844 Initialize success 2011/07/31 14:13:08.0281 2816 ================================================================================ 2011/07/31 14:13:08.0281 2816 Scan started 2011/07/31 14:13:08.0281 2816 Mode: Manual; 2011/07/31 14:13:08.0281 2816 ================================================================================ 2011/07/31 14:13:09.0015 2816 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys 2011/07/31 14:13:09.0125 2816 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys 2011/07/31 14:13:09.0281 2816 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys 2011/07/31 14:13:09.0390 2816 AFD (355556d9e580915118cd7ef736653a89) C:\WINDOWS\System32\drivers\afd.sys 2011/07/31 14:13:09.0609 2816 AFS2K (c719341a1cf6afd4fa0808ae3d23d6a3) C:\WINDOWS\system32\drivers\AFS2K.sys 2011/07/31 14:13:10.0328 2816 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 2011/07/31 14:13:10.0453 2816 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys 2011/07/31 14:13:10.0703 2816 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 2011/07/31 14:13:10.0921 2816 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 2011/07/31 14:13:11.0125 2816 avgio (0b497c79824f8e1bf22fa6aacd3de3a0) C:\Program Files\Avira\AntiVir Desktop\avgio.sys 2011/07/31 14:13:11.0312 2816 avgntflt (47b879406246ffdced59e18d331a0e7d) C:\WINDOWS\system32\DRIVERS\avgntflt.sys 2011/07/31 14:13:11.0625 2816 avipbb (5fedef54757b34fb611b9ec8fb399364) C:\WINDOWS\system32\DRIVERS\avipbb.sys 2011/07/31 14:13:11.0875 2816 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys 2011/07/31 14:13:12.0109 2816 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 2011/07/31 14:13:12.0453 2816 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 2011/07/31 14:13:12.0609 2816 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys 2011/07/31 14:13:12.0718 2816 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys 2011/07/31 14:13:13.0312 2816 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys 2011/07/31 14:13:13.0437 2816 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys 2011/07/31 14:13:13.0562 2816 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys 2011/07/31 14:13:13.0687 2816 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 2011/07/31 14:13:13.0812 2816 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys 2011/07/31 14:13:14.0000 2816 driverhardwarev2 (a694d8db6d360a3bbb0bd1517f1c1aee) C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys 2011/07/31 14:13:14.0093 2816 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys 2011/07/31 14:13:14.0218 2816 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys 2011/07/31 14:13:14.0343 2816 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys 2011/07/31 14:13:14.0500 2816 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys 2011/07/31 14:13:14.0656 2816 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys 2011/07/31 14:13:14.0765 2816 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys 2011/07/31 14:13:14.0875 2816 FNETTBOH (a9e2df40ed6ec9e8885da72b6e1818f3) C:\WINDOWS\system32\drivers\FNETTBOH.SYS 2011/07/31 14:13:14.0968 2816 FNETURPX (784ffba7ee5c5f3a396407e4712f72f0) C:\WINDOWS\system32\drivers\FNETURPX.SYS 2011/07/31 14:13:15.0031 2816 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 2011/07/31 14:13:15.0109 2816 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 2011/07/31 14:13:15.0203 2816 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys 2011/07/31 14:13:15.0296 2816 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys 2011/07/31 14:13:15.0437 2816 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys 2011/07/31 14:13:15.0656 2816 HPZid412 (287a63bd8509bd78e7978823b38afa81) C:\WINDOWS\system32\DRIVERS\HPZid412.sys 2011/07/31 14:13:15.0750 2816 HPZipr12 (0b4fda2657c3e0315eaa57f9c6d4fd1f) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys 2011/07/31 14:13:15.0859 2816 HPZius12 (29559db25258b60510a60c4e470fce32) C:\WINDOWS\system32\DRIVERS\HPZius12.sys 2011/07/31 14:13:15.0968 2816 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys 2011/07/31 14:13:16.0250 2816 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\drivers\i8042prt.sys 2011/07/31 14:13:16.0562 2816 ialm (48846b31be5a4fa662ccfde7a1ba86b9) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys 2011/07/31 14:13:16.0875 2816 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys 2011/07/31 14:13:17.0421 2816 IntcAzAudAddService (dbc702fbc70dc58d9122ce56eadbd659) C:\WINDOWS\system32\drivers\RtkHDAud.sys 2011/07/31 14:13:17.0968 2816 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys 2011/07/31 14:13:18.0062 2816 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys 2011/07/31 14:13:18.0156 2816 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 2011/07/31 14:13:18.0250 2816 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys 2011/07/31 14:13:18.0359 2816 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys 2011/07/31 14:13:18.0484 2816 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys 2011/07/31 14:13:18.0609 2816 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys 2011/07/31 14:13:18.0718 2816 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys 2011/07/31 14:13:18.0828 2816 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 2011/07/31 14:13:18.0906 2816 kbdhid (94c59cb884ba010c063687c3a50dce8e) C:\WINDOWS\system32\DRIVERS\kbdhid.sys 2011/07/31 14:13:19.0000 2816 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys 2011/07/31 14:13:19.0093 2816 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys 2011/07/31 14:13:19.0312 2816 MBAMProtector (eca00eed9ab95489007b0ef84c7149de) C:\WINDOWS\system32\drivers\mbam.sys 2011/07/31 14:13:19.0468 2816 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 2011/07/31 14:13:19.0562 2816 Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys 2011/07/31 14:13:19.0671 2816 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys 2011/07/31 14:13:19.0750 2816 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys 2011/07/31 14:13:19.0859 2816 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys 2011/07/31 14:13:20.0031 2816 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 2011/07/31 14:13:20.0125 2816 MRxSmb (0dc719e9b15e902346e87e9dcd5751fa) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 2011/07/31 14:13:20.0265 2816 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys 2011/07/31 14:13:20.0375 2816 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys 2011/07/31 14:13:20.0515 2816 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 2011/07/31 14:13:20.0640 2816 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys 2011/07/31 14:13:20.0734 2816 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 2011/07/31 14:13:21.0062 2816 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys 2011/07/31 14:13:21.0218 2816 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys 2011/07/31 14:13:21.0343 2816 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 2011/07/31 14:13:21.0453 2816 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 2011/07/31 14:13:21.0546 2816 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 2011/07/31 14:13:21.0671 2816 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys 2011/07/31 14:13:21.0781 2816 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys 2011/07/31 14:13:21.0890 2816 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys 2011/07/31 14:13:22.0093 2816 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys 2011/07/31 14:13:22.0218 2816 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys 2011/07/31 14:13:22.0359 2816 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 2011/07/31 14:13:22.0453 2816 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 2011/07/31 14:13:22.0546 2816 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 2011/07/31 14:13:22.0687 2816 OADevice (23b7f6e15bac00564def87be3d99c020) C:\WINDOWS\system32\drivers\OADriver.sys 2011/07/31 14:13:22.0796 2816 oahlpXX (9cc719b8a5ec37ca236e42f53d335e02) C:\WINDOWS\system32\drivers\oahlp32.sys 2011/07/31 14:13:22.0906 2816 OAmon (7892b33d20b73e336ad2eedc451b7673) C:\WINDOWS\system32\drivers\OAmon.sys 2011/07/31 14:13:23.0000 2816 OAnet (18eb23ec320af150a1a658457fe61124) C:\WINDOWS\system32\drivers\OAnet.sys 2011/07/31 14:13:23.0109 2816 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\DRIVERS\parport.sys 2011/07/31 14:13:23.0218 2816 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys 2011/07/31 14:13:23.0312 2816 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys 2011/07/31 14:13:23.0421 2816 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys 2011/07/31 14:13:23.0609 2816 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys 2011/07/31 14:13:23.0703 2816 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\drivers\Pcmcia.sys 2011/07/31 14:13:24.0265 2816 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys 2011/07/31 14:13:24.0375 2816 PSI (d24dfd16a1e2a76034df5aa18125c35d) C:\WINDOWS\system32\DRIVERS\psi_mf.sys 2011/07/31 14:13:24.0468 2816 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 2011/07/31 14:13:24.0562 2816 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys 2011/07/31 14:13:24.0968 2816 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 2011/07/31 14:13:25.0062 2816 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 2011/07/31 14:13:25.0171 2816 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 2011/07/31 14:13:25.0265 2816 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 2011/07/31 14:13:25.0375 2816 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys 2011/07/31 14:13:25.0468 2816 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 2011/07/31 14:13:25.0562 2816 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys 2011/07/31 14:13:25.0703 2816 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys 2011/07/31 14:13:25.0828 2816 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys 2011/07/31 14:13:25.0968 2816 RTLE8023xp (89619ef503f949fae09252a8b883ee11) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys 2011/07/31 14:13:26.0109 2816 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys 2011/07/31 14:13:26.0234 2816 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys 2011/07/31 14:13:26.0312 2816 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\DRIVERS\serial.sys 2011/07/31 14:13:26.0453 2816 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys 2011/07/31 14:13:26.0656 2816 SONYPVU1 (a1eceeaa5c5e74b2499eb51d38185b84) C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS 2011/07/31 14:13:26.0812 2816 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys 2011/07/31 14:13:26.0921 2816 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys 2011/07/31 14:13:27.0046 2816 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys 2011/07/31 14:13:27.0156 2816 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys 2011/07/31 14:13:27.0265 2816 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys 2011/07/31 14:13:27.0359 2816 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys 2011/07/31 14:13:27.0828 2816 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys 2011/07/31 14:13:27.0953 2816 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys 2011/07/31 14:13:28.0062 2816 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys 2011/07/31 14:13:28.0156 2816 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys 2011/07/31 14:13:28.0250 2816 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys 2011/07/31 14:13:28.0593 2816 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys 2011/07/31 14:13:28.0859 2816 UnlockerDriver5 (b2af2ba8a3205a8458b61f638fb431dd) C:\Program Files\Unlocker\UnlockerDriver5.sys 2011/07/31 14:13:29.0000 2816 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys 2011/07/31 14:13:29.0125 2816 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys 2011/07/31 14:13:29.0218 2816 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys 2011/07/31 14:13:29.0312 2816 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys 2011/07/31 14:13:29.0421 2816 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys 2011/07/31 14:13:29.0515 2816 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys 2011/07/31 14:13:29.0671 2816 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys 2011/07/31 14:13:29.0781 2816 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 2011/07/31 14:13:29.0859 2816 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys 2011/07/31 14:13:29.0953 2816 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys 2011/07/31 14:13:30.0125 2816 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys 2011/07/31 14:13:30.0250 2816 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys 2011/07/31 14:13:30.0421 2816 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys 2011/07/31 14:13:30.0531 2816 wDokan (f455c0358f8e4cc52ad53bf1971e21e9) C:\WINDOWS\system32\drivers\wdokan.sys 2011/07/31 14:13:30.0718 2816 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys 2011/07/31 14:13:30.0828 2816 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys 2011/07/31 14:13:30.0921 2816 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys 2011/07/31 14:13:30.0984 2816 MBR (0x1B8) (c99c3199cfaa4cbdcd91493f6d113a50) \Device\Harddisk0\DR0 2011/07/31 14:13:31.0125 2816 Boot (0x1200) (3fcc62a09bf27b3cda66d96b1f793b9d) \Device\Harddisk0\DR0\Partition0 2011/07/31 14:13:31.0156 2816 Boot (0x1200) (ac9e7e03c3157171754c20cdf06498ee) \Device\Harddisk0\DR0\Partition1 2011/07/31 14:13:31.0156 2816 ================================================================================ 2011/07/31 14:13:31.0156 2816 Scan finished 2011/07/31 14:13:31.0156 2816 ================================================================================ 2011/07/31 14:13:31.0171 2696 Detected object count: 0 2011/07/31 14:13:31.0171 2696 Actual detected object count: 0 2011/07/31 14:13:49.0703 0796 Deinitialize success
  15. Sophie123
    Le lien pour que tu puisses lire ce nouveau scan : Cijoint.fr - Service gratuit de dépôt de fichiers
  16. Sophie123
    1) ======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 ======= Mis à jour par TeamXscript le 12/04/11 Contact: AdRemover[DOT]contact[AT]gmail[DOT]com Site web: http://www.teamxscript.org C:\Program Files\Ad-Remover\main.exe (SCAN [2]) -> Lancé à 12:56:08 le 31/07/2011, Mode normal Microsoft Windows XP Professionnel Service Pack 3 (X86) Sophie@SOPHIE ( ) ============== RECHERCHE ============== Dossier trouvé: C:\Documents and Settings\Sophie\Local Settings\Application Data\Conduit Dossier trouvé: C:\Program Files\Conduit Dossier trouvé: C:\Documents and Settings\Sophie\Application Data\freeTVRadio Dossier trouvé: C:\Program Files\freeTVRadio Clé trouvée: HKLM\Software\Classes\CLSID\{2d110684-626c-41a5-b737-9fa4613d7398} Clé trouvée: HKLM\Software\Classes\CLSID\{3763ee44-612e-457d-8932-f3e2bde560d4} Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3763ee44-612e-457d-8932-f3e2bde560d4} Clé trouvée: HKLM\Software\Classes\CLSID\{7C36E7FF-9860-4437-A5FF-B1349A43835B} Clé trouvée: HKLM\Software\Classes\Interface\{7C36E7FF-9860-4437-A5FF-B1349A43835B} Clé trouvée: HKLM\Software\Classes\Interface\{1E5CEE40-211D-4FEF-B03F-6D784089A445} Clé trouvée: HKLM\Software\Classes\Interface\{596117CB-19F1-47B4-AA3A-CFF13970450A} Clé trouvée: HKLM\Software\Classes\Interface\{C20001AC-EA08-4185-A47F-423473FA96E6} Clé trouvée: HKLM\Software\Classes\Interface\{FA417304-519C-4278-9155-9B6562942C39} Clé trouvée: HKLM\Software\Classes\TypeLib\{F46EF622-9190-44FF-A3EF-FC1DDD82BC65} Clé trouvée: HKLM\Software\Classes\TypeLib\{F5419E28-D7D4-4B5E-89D4-008BC67B51B4} Clé trouvée: HKLM\Software\Classes\Freetvradio.Spointer Clé trouvée: HKLM\Software\Classes\Freetvradio.Spointer.4 Clé trouvée: HKLM\Software\Classes\Freetvradio.SpointerBanner Clé trouvée: HKLM\Software\Classes\Freetvradio.SpointerBanner.4 Clé trouvée: HKLM\Software\Classes\Freetvradio.SpointerCtrl Clé trouvée: HKLM\Software\Classes\Toolbar.CT2438727 Clé trouvée: HKLM\Software\Conduit Clé trouvée: HKCU\Software\Conduit Clé trouvée: HKCU\Software\freeTVRadio Clé trouvée: HKCU\Software\PopCap Clé trouvée: HKCU\Software\Toolbar Clé trouvée: HKLM\Software\Canneverbe Limited\OpenCandy Clé trouvée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} ============== SCAN ADDITIONNEL ============== **** Mozilla Firefox Version [3.6.18 (en-US)] **** Plugins\npFoxitReaderPlugin.dll (Foxit Software Company) HKLM_MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf (x) HKLM_MozillaPlugins\Adobe Reader (x) Searchplugins\amazondotcom.xml (hxxp://www.amazon.com/exec/obidos/external-search/) Searchplugins\answers.xml (hxxp://www.answers.com/main/ntquery) Searchplugins\creativecommons.xml (hxxp://search.creativecommons.org/) Searchplugins\eBay.xml (hxxp://rover.ebay.com/rover/1/711-47294-18009-3/4) Searchplugins\wikipedia.xml (hxxp://en.wikipedia.org/wiki/Special:Search) HKLM_Extensions|{23fcfd51-4958-4f00-80a3-ae97e717ed8b} - C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video HKLM_Extensions|{6904342A-8307-11DF-A508-4AE2DFD72085} - C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa -- C:\Documents and Settings\Sophie\Application Data\Mozilla\FireFox\Profiles\j4u8uowq.default -- Extensions\{EEE6C361-6118-11DC-9C72-001320C79847} (SweetIM Toolbar for Firefox) Searchplugins\sweetim.xml (?) Prefs.js - browser.startup.homepage, hxxp://go.microsoft.com/fwlink/?LinkId=69157 Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.18 Prefs.js - keyword.URL, hxxp://search.sweetim.com/search.asp?src=2&q= Prefs.js - sweetim.toolbar.previous.keyword.URL, chrome://browser-region/locale/region.properties ======================================== **** Internet Explorer Version [8.0.6001.18702] **** HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU_Main|Start Page - hxxp://go.microsoft.com/fwlink/?LinkId=69157 HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=69157 HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Start Page - hxxp://go.microsoft.com/fwlink/?LinkId=69157 HKCU_URLSearchHooks|{BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - "?" (C:\PROGRA~1\COPERN~1\COPERN~1.DLL) HKCU_URLSearchHooks|{7b13ec3e-999a-4b70-b9cb-2617b8323822} - "Zynga Toolbar" (C:\Program Files\Zynga\prxtbZyng.dll) HKCU_SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} - "?" (?) HKCU_SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} - "Zynga Customized Web Search" (hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT...) HKCU_Toolbar\WebBrowser|{F2E259E8-0FC8-438C-A6E0-342DD80FA53E} (C:\Program Files\Copernic Agent\CopernicAgentExt.dll) HKCU_Toolbar\WebBrowser|{EEE6C35B-6118-11DC-9C72-001320C79847} (x) HKCU_Toolbar\WebBrowser|{7B13EC3E-999A-4B70-B9CB-2617B8323822} (C:\Program Files\Zynga\prxtbZyng.dll) HKLM_Toolbar|{F2E259E8-0FC8-438C-A6E0-342DD80FA53E} (C:\Program Files\Copernic Agent\CopernicAgentExt.dll) HKLM_Toolbar|{7b13ec3e-999a-4b70-b9cb-2617b8323822} (C:\Program Files\Zynga\prxtbZyng.dll) HKLM_ElevationPolicy\{5F17E524-3447-4c7d-8E5F-4EFF31CDE3B7} - C:\Program Files\DivX\DivX Plus Web Player\DDMService.exe (DivX, LLC) HKLM_ElevationPolicy\{64903E32-AE0B-408D-909C-09A08791F28D} - C:\Program Files\DivX\DivX Plus Web Player\dwpBroker.exe (?) HKLM_ElevationPolicy\{AC24EDBE-8221-4208-A21F-81F5FEA3CC69} - C:\Documents and Settings\Sophie\Local Settings\Application Data\Conduit\CT2438727\ZyngaAutoUpdateHelper.exe (?) HKLM_ElevationPolicy\{D802E3EF-2513-4661-972E-BAD737EFBA88} - C:\Program Files\DivX\DivX OVS Helper\OVSHelperBroker.exe (DivX, LLC.) HKLM_ElevationPolicy\{E3306AC1-6663-4385-ACA7-13E0034E381B} - C:\Program Files\Zynga\ZyngaToolbarHelper.exe (?) HKLM_Extensions\{193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - "?" (?) HKLM_Extensions\{688DC797-DC11-46A7-9F1B-445F4F58CE6E} - "Copernic Agent" (C:\Program Files\Copernic Agent\Web\IEToolbarIcon.ico) HKLM_Extensions\{e2e2dd38-d088-4134-82b7-f2ba38496583} - "?" (?) BHO\{326E768D-4182-46FD-9C16-1449A49795F4} - "DivX Plus Web Player HTML5 <video>" (C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll) BHO\{593DDEC6-7468-4cdd-90E1-42DADAA222E9} - "DivX HiQ" (C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll) BHO\{7b13ec3e-999a-4b70-b9cb-2617b8323822} - "Zynga Toolbar" (C:\Program Files\Zynga\prxtbZyng.dll) ======================================== C:\Program Files\Ad-Remover\Quarantine: 131 Fichier(s) C:\Program Files\Ad-Remover\Backup: 18 Fichier(s) C:\Ad-Report-CLEAN[2].txt - 24/07/2010 21:07:40 (5862 Octet(s)) C:\Ad-Report-SCAN[1].txt - 23/07/2010 20:20:33 (5446 Octet(s)) C:\Ad-Report-SCAN[2].txt - 31/07/2011 12:56:15 (6630 Octet(s)) Fin à: 12:58:22, 31/07/2011 ============== E.O.F ============== 2) ======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 ======= Mis à jour par TeamXscript le 12/04/11 Contact: AdRemover[DOT]contact[AT]gmail[DOT]com Site web: http://www.teamxscript.org C:\Program Files\Ad-Remover\main.exe (CLEAN [3]) -> Lancé à 13:06:10 le 31/07/2011, Mode normal Microsoft Windows XP Professionnel Service Pack 3 (X86) Sophie@SOPHIE ( ) ============== ACTION(S) ============== Dossier supprimé: C:\Documents and Settings\Sophie\Local Settings\Application Data\Conduit Dossier supprimé: C:\Program Files\Conduit Dossier supprimé: C:\Documents and Settings\Sophie\Application Data\freeTVRadio Dossier supprimé: C:\Program Files\freeTVRadio (!) -- Fichiers temporaires supprimés. Clé supprimée: HKLM\Software\Classes\CLSID\{2d110684-626c-41a5-b737-9fa4613d7398} Clé supprimée: HKLM\Software\Classes\CLSID\{3763ee44-612e-457d-8932-f3e2bde560d4} Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3763ee44-612e-457d-8932-f3e2bde560d4} Clé supprimée: HKLM\Software\Classes\CLSID\{7C36E7FF-9860-4437-A5FF-B1349A43835B} Clé supprimée: HKLM\Software\Classes\Interface\{7C36E7FF-9860-4437-A5FF-B1349A43835B} Clé supprimée: HKLM\Software\Classes\Interface\{1E5CEE40-211D-4FEF-B03F-6D784089A445} Clé supprimée: HKLM\Software\Classes\Interface\{596117CB-19F1-47B4-AA3A-CFF13970450A} Clé supprimée: HKLM\Software\Classes\Interface\{C20001AC-EA08-4185-A47F-423473FA96E6} Clé supprimée: HKLM\Software\Classes\Interface\{FA417304-519C-4278-9155-9B6562942C39} Clé supprimée: HKLM\Software\Classes\TypeLib\{F46EF622-9190-44FF-A3EF-FC1DDD82BC65} Clé supprimée: HKLM\Software\Classes\TypeLib\{F5419E28-D7D4-4B5E-89D4-008BC67B51B4} Clé supprimée: HKLM\Software\Classes\Freetvradio.Spointer Clé supprimée: HKLM\Software\Classes\Freetvradio.Spointer.4 Clé supprimée: HKLM\Software\Classes\Freetvradio.SpointerBanner Clé supprimée: HKLM\Software\Classes\Freetvradio.SpointerBanner.4 Clé supprimée: HKLM\Software\Classes\Freetvradio.SpointerCtrl Clé supprimée: HKLM\Software\Classes\Toolbar.CT2438727 Clé supprimée: HKLM\Software\Conduit Clé supprimée: HKCU\Software\Conduit Clé supprimée: HKCU\Software\freeTVRadio Clé supprimée: HKCU\Software\PopCap Clé supprimée: HKCU\Software\Toolbar Clé supprimée: HKLM\Software\Canneverbe Limited\OpenCandy Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} ============== SCAN ADDITIONNEL ============== **** Mozilla Firefox Version [3.6.18 (en-US)] **** Plugins\npFoxitReaderPlugin.dll (Foxit Software Company) HKLM_MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf (x) HKLM_MozillaPlugins\Adobe Reader (x) Searchplugins\amazondotcom.xml (hxxp://www.amazon.com/exec/obidos/external-search/) Searchplugins\answers.xml (hxxp://www.answers.com/main/ntquery) Searchplugins\creativecommons.xml (hxxp://search.creativecommons.org/) Searchplugins\eBay.xml (hxxp://rover.ebay.com/rover/1/711-47294-18009-3/4) Searchplugins\wikipedia.xml (hxxp://en.wikipedia.org/wiki/Special:Search) HKLM_Extensions|{23fcfd51-4958-4f00-80a3-ae97e717ed8b} - C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video HKLM_Extensions|{6904342A-8307-11DF-A508-4AE2DFD72085} - C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa -- C:\Documents and Settings\Sophie\Application Data\Mozilla\FireFox\Profiles\j4u8uowq.default -- Extensions\{EEE6C361-6118-11DC-9C72-001320C79847} (SweetIM Toolbar for Firefox) Searchplugins\sweetim.xml (?) Prefs.js - browser.startup.homepage, hxxp://go.microsoft.com/fwlink/?LinkId=69157 Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.18 Prefs.js - keyword.URL, hxxp://search.sweetim.com/search.asp?src=2&q= Prefs.js - sweetim.toolbar.previous.keyword.URL, chrome://browser-region/locale/region.properties ======================================== **** Internet Explorer Version [8.0.6001.18702] **** HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896 HKCU_Main|Start Page - hxxp://fr.msn.com/ HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM_Main|Start Page - hxxp://fr.msn.com/ HKCU_URLSearchHooks|{BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - "?" (C:\PROGRA~1\COPERN~1\COPERN~1.DLL) HKCU_URLSearchHooks|{7b13ec3e-999a-4b70-b9cb-2617b8323822} - "Zynga Toolbar" (C:\Program Files\Zynga\prxtbZyng.dll) HKCU_SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} - "?" (?) HKCU_Toolbar\WebBrowser|{F2E259E8-0FC8-438C-A6E0-342DD80FA53E} (C:\Program Files\Copernic Agent\CopernicAgentExt.dll) HKCU_Toolbar\WebBrowser|{EEE6C35B-6118-11DC-9C72-001320C79847} (x) HKCU_Toolbar\WebBrowser|{7B13EC3E-999A-4B70-B9CB-2617B8323822} (C:\Program Files\Zynga\prxtbZyng.dll) HKLM_Toolbar|{F2E259E8-0FC8-438C-A6E0-342DD80FA53E} (C:\Program Files\Copernic Agent\CopernicAgentExt.dll) HKLM_Toolbar|{7b13ec3e-999a-4b70-b9cb-2617b8323822} (C:\Program Files\Zynga\prxtbZyng.dll) HKLM_ElevationPolicy\{5F17E524-3447-4c7d-8E5F-4EFF31CDE3B7} - C:\Program Files\DivX\DivX Plus Web Player\DDMService.exe (DivX, LLC) HKLM_ElevationPolicy\{64903E32-AE0B-408D-909C-09A08791F28D} - C:\Program Files\DivX\DivX Plus Web Player\dwpBroker.exe (?) HKLM_ElevationPolicy\{AC24EDBE-8221-4208-A21F-81F5FEA3CC69} - C:\Documents and Settings\Sophie\Local Settings\Application Data\Conduit\CT2438727\ZyngaAutoUpdateHelper.exe (x) HKLM_ElevationPolicy\{D802E3EF-2513-4661-972E-BAD737EFBA88} - C:\Program Files\DivX\DivX OVS Helper\OVSHelperBroker.exe (DivX, LLC.) HKLM_ElevationPolicy\{E3306AC1-6663-4385-ACA7-13E0034E381B} - C:\Program Files\Zynga\ZyngaToolbarHelper.exe (?) HKLM_Extensions\{193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - "?" (?) HKLM_Extensions\{688DC797-DC11-46A7-9F1B-445F4F58CE6E} - "Copernic Agent" (C:\Program Files\Copernic Agent\Web\IEToolbarIcon.ico) HKLM_Extensions\{e2e2dd38-d088-4134-82b7-f2ba38496583} - "?" (?) BHO\{326E768D-4182-46FD-9C16-1449A49795F4} - "DivX Plus Web Player HTML5 <video>" (C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll) BHO\{593DDEC6-7468-4cdd-90E1-42DADAA222E9} - "DivX HiQ" (C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll) BHO\{7b13ec3e-999a-4b70-b9cb-2617b8323822} - "Zynga Toolbar" (C:\Program Files\Zynga\prxtbZyng.dll) ======================================== C:\Program Files\Ad-Remover\Quarantine: 173 Fichier(s) C:\Program Files\Ad-Remover\Backup: 32 Fichier(s) C:\Ad-Report-CLEAN[2].txt - 24/07/2010 21:07:40 (5862 Octet(s)) C:\Ad-Report-CLEAN[3].txt - 31/07/2011 13:06:16 (2444 Octet(s)) C:\Ad-Report-SCAN[1].txt - 23/07/2010 20:20:33 (5446 Octet(s)) C:\Ad-Report-SCAN[2].txt - 31/07/2011 12:56:15 (7008 Octet(s)) Fin à: 13:09:49, 31/07/2011 ============== E.O.F ==============
  17. Sophie123
    Merci pour ta réponse. Voici le lien demandé : Cijoint.fr - Service gratuit de dépôt de fichiers
  18. Sophie123
    Bonjour, Mon ordinateur ne fonctionne pas comme d'habitude et je crains une infection quelque part. Il est lent, se bloque subitement par moment ou s'éteint sans prévenir. Merci par avance pour votre analyse. Sophie123
  19. Sophie123
    Voilà, Lance_Yien, j'ai tout fait comme tu m'as dit Avant de clôturer ce sujet, je tiens à te dire un tout grand merci pour l'aide régulière que tu m'as apportée après la lecture de mon SOS. Bravo pour ton efficacité et je retiens ton nom Bon succès et bonnes fêtes de fin et début d'année !
  20. Sophie123
    Bonsoir Lance_Yien, Voilà, j'ai lancé Uninstaller pour supprimer McAfee et en ai profité pour enlever aussi TuneUp Utilities et Ask Toolbar. Ci-dessous le rapport généré par OTL. Merci beaucoup pour le temps que tu consacres à me dépanner. Bonne fin de soirée OTL logfile created on: 11/12/2010 22:31:20 - Run 2 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\Sophie\Bureau Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 1 014,00 Mb Total Physical Memory | 531,00 Mb Available Physical Memory | 52,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 80,00% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 39,21 Gb Total Space | 9,98 Gb Free Space | 25,46% Space Free | Partition Type: NTFS Drive D: | 37,11 Gb Total Space | 3,23 Gb Free Space | 8,71% Space Free | Partition Type: NTFS Computer Name: SOPHIE | User Name: Sophie | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2010/12/11 10:58:38 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Sophie\Bureau\OTL.exe PRC - [2010/09/01 07:39:18 | 001,164,584 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe PRC - [2010/08/27 14:21:58 | 003,638,240 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\Tall Emu\Online Armor\oasrv.exe PRC - [2010/08/27 14:21:58 | 000,969,944 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\Tall Emu\Online Armor\oahlp.exe PRC - [2010/08/27 14:21:56 | 000,380,272 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\Tall Emu\Online Armor\oacat.exe PRC - [2010/08/17 13:39:03 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe PRC - [2010/08/17 13:38:55 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe PRC - [2010/08/17 13:38:55 | 000,267,944 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe PRC - [2010/05/28 12:04:52 | 000,911,920 | ---- | M] (Secunia) -- C:\Program Files\Secunia\PSI\psi.exe PRC - [2010/05/14 10:44:46 | 000,248,552 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe PRC - [2010/01/14 22:11:14 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe PRC - [2009/08/28 19:42:54 | 000,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe PRC - [2008/04/13 19:34:04 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2007/02/21 02:35:02 | 000,073,728 | ---- | M] (HP) -- C:\WINDOWS\system32\hpzipm12.exe PRC - [2006/09/07 18:19:27 | 000,015,872 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerAssistant.exe PRC - [2005/11/24 15:38:08 | 000,094,208 | ---- | M] (Nero AG) -- C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe PRC - [2005/10/28 14:12:04 | 000,155,648 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe PRC - [2004/08/06 03:50:00 | 000,237,623 | ---- | M] (Network Associates, Inc.) -- C:\Program Files\Network Associates\Common Framework\naPrdMgr.exe PRC - [2004/08/06 03:50:00 | 000,139,320 | ---- | M] (Network Associates, Inc.) -- C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe PRC - [2004/08/06 03:50:00 | 000,102,463 | ---- | M] (Network Associates, Inc.) -- C:\Program Files\Network Associates\Common Framework\FrameworkService.exe PRC - [2003/10/07 09:48:56 | 000,147,514 | ---- | M] (Network Associates, Inc.) -- C:\Program Files\Fichiers communs\Network Associates\TalkBack\TBMon.exe ========== Modules (SafeList) ========== MOD - [2010/12/11 10:58:38 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Sophie\Bureau\OTL.exe MOD - [2010/08/27 14:22:02 | 001,087,400 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\Tall Emu\Online Armor\oawatch.dll MOD - [2010/08/23 17:12:39 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll MOD - [2008/04/13 19:33:52 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wsock32.dll MOD - [2008/04/13 19:33:52 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wtsapi32.dll MOD - [2008/04/13 19:33:50 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winsta.dll MOD - [2008/04/13 19:33:28 | 000,095,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\iphlpapi.dll ========== Win32 Services (SafeList) ========== SRV - [2010/09/12 15:30:52 | 000,251,248 | ---- | M] (CybelSoft) [On_Demand | Stopped] -- C:\Program Files\ma-config.com\maconfservice.exe -- (maconfservice) SRV - [2010/08/27 14:21:58 | 003,638,240 | ---- | M] (Emsi Software GmbH) [Auto | Running] -- C:\Program Files\Tall Emu\Online Armor\oasrv.exe -- (SvcOnlineArmor) SRV - [2010/08/27 14:21:56 | 000,380,272 | ---- | M] (Emsi Software GmbH) [Auto | Running] -- C:\Program Files\Tall Emu\Online Armor\OAcat.exe -- (OAcat) SRV - [2010/08/17 13:39:03 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2010/08/17 13:38:55 | 000,267,944 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2009/08/28 19:42:54 | 000,144,672 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device) SRV - [2008/11/04 00:06:28 | 000,441,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv) SRV - [2007/02/21 02:35:02 | 000,073,728 | ---- | M] (HP) [Auto | Running] -- C:\WINDOWS\system32\hpzipm12.exe -- (Pml Driver HPZ12) SRV - [2006/10/26 14:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose) SRV - [2004/08/06 03:50:00 | 000,102,463 | ---- | M] (Network Associates, Inc.) [Auto | Running] -- C:\Program Files\Network Associates\Common Framework\FrameworkService.exe -- (McAfeeFramework) ========== Driver Services (SafeList) ========== DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\InCDRm.sys -- (InCDRm) DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\InCDPass.sys -- (InCDPass) DRV - File not found [File_System | Disabled | Stopped] -- C:\WINDOWS\System32\drivers\InCDFs.sys -- (InCDFs) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Sophie\LOCALS~1\Temp\catchme.sys -- (catchme) DRV - [2010/08/30 12:19:54 | 000,014,336 | ---- | M] (CybelSoft) [Kernel | On_Demand | Stopped] -- C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys -- (driverhardwarev2) DRV - [2010/08/27 14:22:36 | 000,038,856 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\oahlp32.sys -- (oahlpXX) DRV - [2010/08/27 14:22:16 | 000,029,272 | ---- | M] (Emsisoft) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\OAnet.sys -- (OAnet) DRV - [2010/08/27 14:22:16 | 000,025,000 | ---- | M] (Emsisoft) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\OAmon.sys -- (OAmon) DRV - [2010/08/27 14:22:14 | 000,201,168 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\system32\drivers\OADriver.sys -- (OADevice) DRV - [2010/08/17 13:39:11 | 000,126,856 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb) DRV - [2010/08/17 13:39:11 | 000,060,936 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt) DRV - [2010/06/17 15:28:02 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2010/06/17 15:27:52 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio) DRV - [2010/05/28 12:04:52 | 000,014,896 | ---- | M] (Secunia) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\psi_mf.sys -- (PSI) DRV - [2009/11/15 12:58:01 | 000,043,488 | ---- | M] (Oak Technology Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\AFS2K.SYS -- (AFS2K) DRV - [2008/04/17 02:05:52 | 005,854,752 | R--- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\igxpmp32.sys -- (ialm) DRV - [2008/04/17 02:05:42 | 000,105,856 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2008/04/17 02:05:38 | 004,652,544 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2008/04/13 11:45:14 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) Pilote USB audio (WDM) DRV - [2008/04/13 09:36:06 | 000,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus) DRV - [2004/09/22 20:00:00 | 000,108,256 | ---- | M] (Network Associates, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\naiavf5x.sys -- (NaiAvFilter1) DRV - [2004/09/22 20:00:00 | 000,058,048 | ---- | M] (Network Associates, Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\mvstdi5x.sys -- (NaiAvTdi1) DRV - [2004/09/22 20:00:00 | 000,008,320 | ---- | M] (Network Associates, Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EntDrv51.sys -- (EntDrv51) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN : Hotmail, Messenger, Bing, Actualité et Sport IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = C2 33 AD 2C FC 93 CB 01 [binary data] IE - HKCU\..\URLSearchHook: {BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.) IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.startup.homepage: "http://go.microsoft.com/fwlink/?LinkId=69157" FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 FF - prefs.js..network.proxy.no_proxies_on: "*.local" FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/11/06 12:00:48 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/12/06 19:33:31 | 000,000,000 | ---D | M] [2010/01/21 20:27:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sophie\Application Data\Mozilla\Extensions [2010/12/06 19:26:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sophie\Application Data\Mozilla\Firefox\Profiles\j4u8uowq.default\extensions [2010/11/14 21:38:08 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Sophie\Application Data\Mozilla\Firefox\Profiles\j4u8uowq.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010/12/05 12:19:37 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010/04/15 19:15:50 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010/10/21 20:12:40 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [2010/10/21 20:12:09 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010/06/04 10:06:20 | 000,075,208 | ---- | M] (Foxit Software Company) -- C:\Program Files\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll O1 HOSTS File: ([2010/12/04 11:31:38 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O3 - HKLM\..\Toolbar: (Copernic Agent) - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.) O3 - HKCU\..\Toolbar\WebBrowser: (Copernic Agent) - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.) O4 - HKLM..\Run: [@OnlineArmor GUI] C:\Program Files\Tall Emu\Online Armor\OAui.exe (Emsi Software GmbH) O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe (Apple Inc.) O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe () O4 - HKLM..\Run: [McAfeeUpdaterUI] C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe (Network Associates, Inc.) O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh) O4 - HKLM..\Run: [Network Associates Error Reporting Service] C:\Program Files\Fichiers communs\Network Associates\TalkBack\TBMon.exe (Network Associates, Inc.) O4 - HKLM..\Run: [sunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.) O4 - HKLM..\Run: [unlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe () O4 - HKCU..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe (Nero AG) O4 - Startup: C:\Documents and Settings\Sophie\Menu Démarrer\Programmes\Démarrage\Outil de détection de support de Cyber-shot Viewer.lnk = C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe (Sony Corporation) O4 - Startup: C:\Documents and Settings\Sophie\Menu Démarrer\Programmes\Démarrage\Secunia PSI.lnk = C:\Program Files\Secunia\PSI\psi.exe (Secunia) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8 - Extra context menu item: Chercher avec Copernic Agent - C:\Program Files\Copernic Agent\CopernicAgentExt.rdl (Copernic Technologies Inc.) O9 - Extra 'Tools' menuitem : Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\Program Files\Copernic Agent\CopernicAgent.exe (Copernic Technologies Inc.) O9 - Extra Button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\Program Files\Copernic Agent\CopernicAgent.exe (Copernic Technologies Inc.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll File not found O15 - HKCU\..Trusted Domains: internet ([]about in Trusted sites) O15 - HKCU\..Trusted Domains: mcafee.com ([]http in Trusted sites) O15 - HKCU\..Trusted Domains: mcafee.com ([]https in Trusted sites) O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Reg Error: Key error.) O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool) O16 - DPF: {32505657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/0/A/9/0A9F8B32-9F8C-4D74-A130-E4CAB36EB01F/wmvadvd.cab (Reg Error: Key error.) O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1270404491546 (MUWebControl Class) O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection2.cab (GMNRev Class) O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.) O16 - DPF: {82774781-8F4E-11D1-AB1C-0000F8773BF0} https://transfers.ds.microsoft.com/FTM/TransferSource/grTransferCtrl.cab (DLC Class) O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} http://fichiers.touslesdrivers.com/maconfig/MaConfig_4_6_0_1.cab ("Ma-Config.com control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {DB28CF23-0083-40B5-BF63-69925D672385} http://www.nero.com/doc/NeroVersionChecker.cab (CNeroSerialChecker Object) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\copernicagent {A979B6BD-E40B-4A07-ABDD-A62C64A4EBF6} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.) O18 - Protocol\Handler\copernicagentcache {AAC34CFD-274D-4A9D-B0DC-C74C05A67E1D} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.) O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation) O24 - Desktop Components:0 (Ma page d'accueil) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Colline verdoyante.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Colline verdoyante.bmp O28 - HKLM ShellExecuteHooks: {4F07DA45-8170-4859-9B5F-037EF2970034} - C:\Program Files\Tall Emu\Online Armor\oaevent.dll (Emsi Software GmbH) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009/11/04 18:26:06 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2010/12/11 21:13:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\5DF3D1BB894E4DCD8275159AC9829B43.TMP [2010/12/11 11:00:55 | 001,344,600 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Sophie\Bureau\TDSSKiller.exe [2010/12/11 10:58:36 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Sophie\Bureau\OTL.exe [2010/12/10 21:52:15 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys [2010/12/10 21:52:09 | 000,126,856 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys [2010/12/10 21:52:09 | 000,060,936 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys [2010/12/10 21:52:09 | 000,045,416 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntdd.sys [2010/12/10 21:52:09 | 000,022,360 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntmgr.sys [2010/12/10 21:52:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Avira [2010/12/10 21:39:41 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Sophie\Recent [2010/12/10 20:16:54 | 000,000,000 | ---D | C] -- C:\Program Files\VirginMega [2010/12/06 20:04:52 | 000,000,000 | ---D | C] -- C:\Program Files\Unlocker [2010/12/04 20:39:18 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010/12/01 17:23:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sophie\Bureau\Analyse 1-12 [2010/12/01 16:59:13 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010/12/01 16:59:08 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2010/12/01 16:59:08 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2010/12/01 16:50:36 | 007,622,112 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Sophie\Bureau\mbam-setup-1.50.0.0.exe [2010/12/01 12:45:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sophie\Local Settings\Application Data\Temp [2010/12/01 12:25:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe [2010/11/28 12:19:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\Downloaded Installations [2010/11/24 18:22:04 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Borland Shared [2010/11/24 18:16:47 | 000,000,000 | ---D | C] -- C:\Program Files\ZebHelpProcess [2010/11/23 22:53:29 | 000,000,000 | ---D | C] -- C:\b95e8e7f443d2cf36cfb [2010/11/20 13:12:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sophie\Application Data\Canneverbe Limited [2010/11/20 13:12:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited [2010/11/20 13:11:12 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP [2010/11/20 12:37:52 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_42.dll [2010/11/20 12:36:55 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_42.dll [2010/11/20 12:35:59 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_40.dll [2010/11/20 12:35:02 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_35.dll [2010/11/20 12:33:57 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_34.dll [2010/11/20 12:32:48 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll [2010/11/20 12:31:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2010/11/20 11:44:31 | 000,000,000 | ---D | C] -- C:\Program Files\ma-config.com [2010/11/20 11:44:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ma-config.com [2010/11/17 08:24:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Adobe [2010/11/15 16:56:26 | 000,000,000 | ---D | C] -- C:\quarantine [2010/11/14 14:59:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sophie\Application Data\vlc [2010/11/12 20:39:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\microsoft [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2010/12/11 22:00:54 | 000,000,314 | ---- | M] () -- C:\WINDOWS\tasks\GlaryInitialize.job [2010/12/11 22:00:54 | 000,000,236 | ---- | M] () -- C:\WINDOWS\tasks\OGALogon.job [2010/12/11 22:00:52 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job [2010/12/11 22:00:29 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010/12/11 21:20:04 | 000,506,984 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat [2010/12/11 21:20:04 | 000,438,164 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010/12/11 21:20:04 | 000,083,076 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat [2010/12/11 21:20:04 | 000,070,094 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010/12/11 19:55:30 | 000,000,434 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{72D175D7-C656-4237-B71C-8C637504E842}.job [2010/12/11 17:14:18 | 000,000,512 | ---- | M] () -- C:\WINDOWS\randseed.rnd [2010/12/11 16:46:47 | 001,373,616 | ---- | M] () -- C:\Documents and Settings\Sophie\Bureau\MCPR.exe [2010/12/11 10:58:38 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Sophie\Bureau\OTL.exe [2010/12/11 10:39:41 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2010/12/11 10:39:38 | 000,028,160 | ---- | M] () -- C:\Documents and Settings\Sophie\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010/12/10 21:52:41 | 000,001,707 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Avira AntiVir Control Center.lnk [2010/12/10 21:42:44 | 000,008,804 | ---- | M] () -- C:\Documents and Settings\Sophie\Mes documents\cc_20101210_214227.reg [2010/12/10 20:18:23 | 000,000,800 | ---- | M] () -- C:\Documents and Settings\Sophie\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk [2010/12/10 20:16:55 | 000,001,927 | ---- | M] () -- C:\Documents and Settings\Sophie\Bureau\VirginMega Premium.lnk [2010/12/10 20:15:06 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010/12/09 21:00:51 | 000,000,917 | ---- | M] () -- C:\Documents and Settings\Sophie\Bureau\Revo Uninstaller.lnk [2010/12/09 20:57:53 | 002,409,944 | ---- | M] () -- C:\Documents and Settings\Sophie\Bureau\revosetup.exe [2010/12/08 14:48:08 | 001,344,600 | ---- | M] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Sophie\Bureau\TDSSKiller.exe [2010/12/06 21:39:54 | 000,000,463 | ---- | M] () -- C:\Documents and Settings\Sophie\Bureau\hpsysdig.lnk [2010/12/06 20:03:56 | 000,195,645 | ---- | M] () -- C:\Documents and Settings\Sophie\Bureau\unlocker1.8.5.exe [2010/12/04 11:31:38 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts [2010/12/02 13:32:36 | 000,100,280 | ---- | M] () -- C:\Documents and Settings\Sophie\Mes documents\Arrêt maladie 29-11 au 3-12-10.pdf [2010/12/01 16:59:13 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk [2010/12/01 16:51:56 | 000,869,086 | ---- | M] () -- C:\Documents and Settings\Sophie\Bureau\SecurityCheck.exe [2010/12/01 16:50:53 | 007,622,112 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Sophie\Bureau\mbam-setup-1.50.0.0.exe [2010/11/29 17:42:18 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010/11/29 17:42:06 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2010/11/29 10:26:32 | 000,011,902 | ---- | M] () -- C:\Documents and Settings\Sophie\Mes documents\hijackthis 291110 [2010/11/28 21:16:04 | 000,028,726 | ---- | M] () -- C:\WINDOWS\hpoins03.dat [2010/11/28 12:03:24 | 000,010,442 | ---- | M] () -- C:\Documents and Settings\Sophie\Mes documents\recettes.docx [2010/11/25 23:21:00 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job [2010/11/24 22:50:43 | 000,013,030 | ---- | M] () -- C:\PDOXUSRS.NET [2010/11/21 11:26:01 | 000,001,456 | ---- | M] () -- C:\Documents and Settings\Sophie\Bureau\DivX Movies.lnk [2010/11/21 11:20:57 | 000,000,777 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\DivX Plus Player.lnk [2010/11/20 13:11:38 | 000,001,616 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\CDBurnerXP.lnk [2010/11/18 22:34:11 | 000,010,532 | ---- | M] () -- C:\Documents and Settings\Sophie\Mes documents\Etrange.docx [2010/11/16 01:20:16 | 000,010,266 | ---- | M] () -- C:\Documents and Settings\Sophie\Mes documents\Bonjour.docx [2010/11/14 16:07:13 | 000,002,345 | ---- | M] () -- C:\Documents and Settings\Sophie\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart.lnk [2010/11/14 16:07:13 | 000,002,327 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Nero StartSmart.lnk [2010/11/14 16:07:13 | 000,002,245 | ---- | M] () -- C:\Documents and Settings\Sophie\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero Home.lnk [2010/11/14 16:07:13 | 000,002,227 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Nero Home.lnk [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] ========== Files Created - No Company Name ========== [2010/12/11 16:46:46 | 001,373,616 | ---- | C] () -- C:\Documents and Settings\Sophie\Bureau\MCPR.exe [2010/12/10 21:52:41 | 000,001,707 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Avira AntiVir Control Center.lnk [2010/12/10 21:42:38 | 000,008,804 | ---- | C] () -- C:\Documents and Settings\Sophie\Mes documents\cc_20101210_214227.reg [2010/12/10 20:16:55 | 000,001,927 | ---- | C] () -- C:\Documents and Settings\Sophie\Bureau\VirginMega Premium.lnk [2010/12/09 21:00:51 | 000,000,917 | ---- | C] () -- C:\Documents and Settings\Sophie\Bureau\Revo Uninstaller.lnk [2010/12/09 20:57:19 | 002,409,944 | ---- | C] () -- C:\Documents and Settings\Sophie\Bureau\revosetup.exe [2010/12/06 20:03:48 | 000,195,645 | ---- | C] () -- C:\Documents and Settings\Sophie\Bureau\unlocker1.8.5.exe [2010/12/02 13:32:29 | 000,100,280 | ---- | C] () -- C:\Documents and Settings\Sophie\Mes documents\Arrêt maladie 29-11 au 3-12-10.pdf [2010/12/01 16:59:13 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk [2010/12/01 16:51:56 | 000,869,086 | ---- | C] () -- C:\Documents and Settings\Sophie\Bureau\SecurityCheck.exe [2010/11/29 10:26:32 | 000,011,902 | ---- | C] () -- C:\Documents and Settings\Sophie\Mes documents\hijackthis 291110 [2010/11/29 10:06:22 | 000,000,463 | ---- | C] () -- C:\Documents and Settings\Sophie\Bureau\hpsysdig.lnk [2010/11/28 12:03:24 | 000,010,442 | ---- | C] () -- C:\Documents and Settings\Sophie\Mes documents\recettes.docx [2010/11/24 18:24:34 | 000,013,030 | ---- | C] () -- C:\PDOXUSRS.NET [2010/11/24 18:22:06 | 000,183,808 | ---- | C] () -- C:\WINDOWS\System32\BDEADMIN.CPL [2010/11/21 11:20:57 | 000,000,777 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\DivX Plus Player.lnk [2010/11/20 13:11:38 | 000,001,616 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\CDBurnerXP.lnk [2010/11/18 22:34:10 | 000,010,532 | ---- | C] () -- C:\Documents and Settings\Sophie\Mes documents\Etrange.docx [2010/11/16 01:20:16 | 000,010,266 | ---- | C] () -- C:\Documents and Settings\Sophie\Mes documents\Bonjour.docx [2010/11/14 16:07:13 | 000,002,345 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart.lnk [2010/11/14 16:07:13 | 000,002,327 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Nero StartSmart.lnk [2010/11/14 16:07:13 | 000,002,245 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero Home.lnk [2010/11/14 16:07:13 | 000,002,227 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Nero Home.lnk [2010/10/31 19:46:08 | 000,000,180 | ---- | C] () -- C:\WINDOWS\sripper.ini [2010/10/31 19:46:08 | 000,000,050 | ---- | C] () -- C:\WINDOWS\StreamRipper32.INI [2010/10/23 15:24:13 | 000,011,802 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\temp12744.txt [2010/10/17 14:36:14 | 000,038,856 | ---- | C] () -- C:\WINDOWS\System32\drivers\oahlp32.sys [2010/08/15 12:34:33 | 000,000,040 | ---- | C] () -- C:\WINDOWS\NAVIGMA.INI [2010/03/06 16:19:34 | 000,003,654 | ---- | C] () -- C:\WINDOWS\System32\drivers\Sonyhcp.dll [2010/03/04 11:07:20 | 000,009,062 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\temp20527.txt [2010/03/04 09:54:40 | 000,013,858 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\temp6289.txt [2010/02/15 19:03:09 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI [2010/02/14 10:21:51 | 000,006,100 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\temp12026.txt [2010/02/05 16:33:58 | 000,007,866 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\temp3223.txt [2010/02/05 13:34:04 | 000,007,394 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\HPCOM_48BitScanUpdate.log [2010/02/05 13:34:04 | 000,000,214 | ---- | C] () -- C:\WINDOWS\HP_48BitScanUpdatePatch.ini [2010/01/29 08:21:47 | 000,201,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\OADriver.sys [2010/01/20 18:32:16 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\DirectCOM.dll [2010/01/20 18:32:12 | 000,309,248 | ---- | C] () -- C:\WINDOWS\System32\sqlite36_engine.dll [2010/01/12 15:35:06 | 000,013,882 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\temp3159.txt [2010/01/09 19:22:14 | 000,009,024 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\temp20425.txt [2010/01/09 11:07:29 | 000,011,920 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\temp21790.txt [2010/01/09 11:06:52 | 000,006,624 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\temp21669.txt [2009/11/23 20:32:37 | 000,010,718 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\temp11623.txt [2009/11/23 20:31:35 | 000,010,718 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\temp11421.txt [2009/11/15 13:29:48 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\Sophie\Local Settings\Application Data\fusioncache.dat [2009/11/15 12:50:53 | 000,003,450 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log [2009/11/04 19:39:34 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2009/11/04 19:39:29 | 000,028,160 | ---- | C] () -- C:\Documents and Settings\Sophie\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009/11/04 19:14:00 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2009/11/04 18:39:32 | 000,147,456 | R--- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4926.dll [2009/08/03 14:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll [2003/08/11 11:44:18 | 000,565,248 | ---- | C] () -- C:\WINDOWS\System32\hpotscl.dll < End of report >
  21. Sophie123
    Bonsoir Lance_Yien, Pour alléger mon système, j'ai suivi tes conseils pour désinstaller McAfee VirusScan. Après avoir lancé le programme MCPR.exe, une fenêtre noire s'est ouverte et un message est apparu : "Please exit the session". McAfee Enterprise Software detected. Cannot continue. Please contact McAfee Technical Support". J'ai donc tout fermé et redémarrer le PC. Avant de lancer OTL, je préfère te contacter pour savoir si ce message reçu est dans l'ordre des choses ou s'il faut procéder autrement pour désinstaller McAfee VirusScan. Pour ce qui est d'un exemple de message clignotant, j'en ai eu un encore tout à l'heure en allant sur le site dailymotion et quand ça apparaît, j'ai toujours la trouille que ce soit mauvais pour le PC.
  22. Sophie123
    En 3 messages et non 2 comme annoncé précédemment. Je vais par ailleurs regarder pour les annonces clignotantes de gains illusoires et te dirai quoi. 3) 2010/12/11 11:02:34.0453 TDSS rootkit removing tool 2.4.11.0 Dec 8 2010 14:46:40 2010/12/11 11:02:34.0453 ================================================================================ 2010/12/11 11:02:34.0453 SystemInfo: 2010/12/11 11:02:34.0453 2010/12/11 11:02:34.0453 OS Version: 5.1.2600 ServicePack: 3.0 2010/12/11 11:02:34.0453 Product type: Workstation 2010/12/11 11:02:34.0453 ComputerName: SOPHIE 2010/12/11 11:02:34.0453 UserName: Sophie 2010/12/11 11:02:34.0453 Windows directory: C:\WINDOWS 2010/12/11 11:02:34.0453 System windows directory: C:\WINDOWS 2010/12/11 11:02:34.0453 Processor architecture: Intel x86 2010/12/11 11:02:34.0453 Number of processors: 2 2010/12/11 11:02:34.0453 Page size: 0x1000 2010/12/11 11:02:34.0453 Boot type: Normal boot 2010/12/11 11:02:34.0453 ================================================================================ 2010/12/11 11:02:35.0000 Initialize success 2010/12/11 11:02:57.0937 ================================================================================ 2010/12/11 11:02:57.0937 Scan started 2010/12/11 11:02:57.0937 Mode: Manual; 2010/12/11 11:02:57.0937 ================================================================================ 2010/12/11 11:02:58.0765 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys 2010/12/11 11:02:58.0875 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys 2010/12/11 11:02:59.0062 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys 2010/12/11 11:02:59.0171 AFD (7e775010ef291da96ad17ca4b17137d7) C:\WINDOWS\System32\drivers\afd.sys 2010/12/11 11:02:59.0296 AFS2K (c719341a1cf6afd4fa0808ae3d23d6a3) C:\WINDOWS\system32\drivers\AFS2K.sys 2010/12/11 11:03:00.0031 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 2010/12/11 11:03:00.0125 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys 2010/12/11 11:03:00.0312 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 2010/12/11 11:03:00.0421 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 2010/12/11 11:03:00.0515 avgio (0b497c79824f8e1bf22fa6aacd3de3a0) C:\Program Files\Avira\AntiVir Desktop\avgio.sys 2010/12/11 11:03:00.0640 avgntflt (1eb7d72a82f94f7e9496d363fce00b68) C:\WINDOWS\system32\DRIVERS\avgntflt.sys 2010/12/11 11:03:00.0750 avipbb (f8c56231ed5ecf7d1b46b0330880ccef) C:\WINDOWS\system32\DRIVERS\avipbb.sys 2010/12/11 11:03:00.0828 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys 2010/12/11 11:03:01.0062 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 2010/12/11 11:03:01.0218 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 2010/12/11 11:03:01.0296 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys 2010/12/11 11:03:01.0390 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys 2010/12/11 11:03:01.0921 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys 2010/12/11 11:03:02.0062 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys 2010/12/11 11:03:02.0187 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys 2010/12/11 11:03:02.0281 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 2010/12/11 11:03:02.0390 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys 2010/12/11 11:03:02.0593 driverhardwarev2 (a694d8db6d360a3bbb0bd1517f1c1aee) C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys 2010/12/11 11:03:02.0703 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys 2010/12/11 11:03:02.0812 EntDrv51 (f45717d58b785b18c60c97aa1e9dbafa) C:\WINDOWS\system32\drivers\EntDrv51.sys 2010/12/11 11:03:02.0937 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys 2010/12/11 11:03:03.0046 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys 2010/12/11 11:03:03.0156 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys 2010/12/11 11:03:03.0250 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys 2010/12/11 11:03:03.0359 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys 2010/12/11 11:03:03.0437 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 2010/12/11 11:03:03.0531 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 2010/12/11 11:03:03.0656 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys 2010/12/11 11:03:03.0750 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys 2010/12/11 11:03:03.0875 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys 2010/12/11 11:03:04.0062 HPZid412 (287a63bd8509bd78e7978823b38afa81) C:\WINDOWS\system32\DRIVERS\HPZid412.sys 2010/12/11 11:03:04.0156 HPZipr12 (0b4fda2657c3e0315eaa57f9c6d4fd1f) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys 2010/12/11 11:03:04.0265 HPZius12 (29559db25258b60510a60c4e470fce32) C:\WINDOWS\system32\DRIVERS\HPZius12.sys 2010/12/11 11:03:04.0375 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys 2010/12/11 11:03:04.0656 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\drivers\i8042prt.sys 2010/12/11 11:03:04.0953 ialm (48846b31be5a4fa662ccfde7a1ba86b9) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys 2010/12/11 11:03:05.0250 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys 2010/12/11 11:03:05.0843 IntcAzAudAddService (dbc702fbc70dc58d9122ce56eadbd659) C:\WINDOWS\system32\drivers\RtkHDAud.sys 2010/12/11 11:03:06.0156 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys 2010/12/11 11:03:06.0250 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys 2010/12/11 11:03:06.0359 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 2010/12/11 11:03:06.0437 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys 2010/12/11 11:03:06.0546 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys 2010/12/11 11:03:06.0703 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys 2010/12/11 11:03:06.0796 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys 2010/12/11 11:03:06.0906 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys 2010/12/11 11:03:07.0015 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 2010/12/11 11:03:07.0109 kbdhid (94c59cb884ba010c063687c3a50dce8e) C:\WINDOWS\system32\DRIVERS\kbdhid.sys 2010/12/11 11:03:07.0218 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys 2010/12/11 11:03:07.0343 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys 2010/12/11 11:03:07.0640 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 2010/12/11 11:03:07.0750 Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys 2010/12/11 11:03:07.0843 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys 2010/12/11 11:03:07.0953 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys 2010/12/11 11:03:08.0062 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys 2010/12/11 11:03:08.0250 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 2010/12/11 11:03:08.0375 MRxSmb (f3aefb11abc521122b67095044169e98) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 2010/12/11 11:03:08.0500 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys 2010/12/11 11:03:08.0671 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys 2010/12/11 11:03:08.0765 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 2010/12/11 11:03:08.0859 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys 2010/12/11 11:03:08.0968 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 2010/12/11 11:03:09.0062 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys 2010/12/11 11:03:09.0171 NaiAvFilter1 (b7334eee4ad6d63daea7ce109a0dc7ae) C:\WINDOWS\system32\drivers\naiavf5x.sys 2010/12/11 11:03:09.0281 NaiAvTdi1 (091fe5ecd720eacd54a1d9abec2a0505) C:\WINDOWS\system32\drivers\mvstdi5x.sys 2010/12/11 11:03:09.0390 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys 2010/12/11 11:03:09.0500 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 2010/12/11 11:03:09.0609 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 2010/12/11 11:03:09.0718 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 2010/12/11 11:03:09.0828 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys 2010/12/11 11:03:09.0921 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys 2010/12/11 11:03:10.0031 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys 2010/12/11 11:03:10.0187 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys 2010/12/11 11:03:10.0328 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys 2010/12/11 11:03:10.0453 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 2010/12/11 11:03:10.0546 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 2010/12/11 11:03:10.0640 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 2010/12/11 11:03:10.0750 OADevice (23b7f6e15bac00564def87be3d99c020) C:\WINDOWS\system32\drivers\OADriver.sys 2010/12/11 11:03:10.0875 oahlpXX (9cc719b8a5ec37ca236e42f53d335e02) C:\WINDOWS\system32\drivers\oahlp32.sys 2010/12/11 11:03:10.0968 OAmon (7892b33d20b73e336ad2eedc451b7673) C:\WINDOWS\system32\drivers\OAmon.sys 2010/12/11 11:03:11.0062 OAnet (18eb23ec320af150a1a658457fe61124) C:\WINDOWS\system32\drivers\OAnet.sys 2010/12/11 11:03:11.0187 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\DRIVERS\parport.sys 2010/12/11 11:03:11.0281 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys 2010/12/11 11:03:11.0390 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys 2010/12/11 11:03:11.0484 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys 2010/12/11 11:03:11.0687 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys 2010/12/11 11:03:11.0765 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\drivers\Pcmcia.sys 2010/12/11 11:03:12.0390 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys 2010/12/11 11:03:12.0484 PSI (14e6fb92f1788982e2bbc81d915b1f02) C:\WINDOWS\system32\DRIVERS\psi_mf.sys 2010/12/11 11:03:12.0625 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 2010/12/11 11:03:12.0718 PxHelp20 (153d02480a0a2f45785522e814c634b6) C:\WINDOWS\system32\Drivers\PxHelp20.sys 2010/12/11 11:03:13.0203 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 2010/12/11 11:03:13.0296 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 2010/12/11 11:03:13.0390 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 2010/12/11 11:03:13.0515 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 2010/12/11 11:03:13.0640 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys 2010/12/11 11:03:13.0718 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 2010/12/11 11:03:13.0843 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys 2010/12/11 11:03:13.0953 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys 2010/12/11 11:03:14.0093 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys 2010/12/11 11:03:14.0234 RTLE8023xp (89619ef503f949fae09252a8b883ee11) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys 2010/12/11 11:03:14.0359 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys 2010/12/11 11:03:14.0484 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys 2010/12/11 11:03:14.0593 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\DRIVERS\serial.sys 2010/12/11 11:03:14.0718 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys 2010/12/11 11:03:14.0890 SONYPVU1 (a1eceeaa5c5e74b2499eb51d38185b84) C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS 2010/12/11 11:03:15.0062 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys 2010/12/11 11:03:15.0171 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys 2010/12/11 11:03:15.0296 Srv (0f6aefad3641a657e18081f52d0c15af) C:\WINDOWS\system32\DRIVERS\srv.sys 2010/12/11 11:03:15.0406 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys 2010/12/11 11:03:15.0515 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys 2010/12/11 11:03:15.0640 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys 2010/12/11 11:03:16.0062 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys 2010/12/11 11:03:16.0187 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys 2010/12/11 11:03:16.0312 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys 2010/12/11 11:03:16.0406 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys 2010/12/11 11:03:16.0515 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys 2010/12/11 11:03:16.0765 TuneUpUtilitiesDrv (f2107c9d85ec0df116939ccce06ae697) C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys 2010/12/11 11:03:16.0875 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys 2010/12/11 11:03:17.0031 UnlockerDriver5 (b2af2ba8a3205a8458b61f638fb431dd) C:\Program Files\Unlocker\UnlockerDriver5.sys 2010/12/11 11:03:17.0140 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys 2010/12/11 11:03:17.0281 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys 2010/12/11 11:03:17.0390 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys 2010/12/11 11:03:17.0500 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys 2010/12/11 11:03:17.0609 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys 2010/12/11 11:03:17.0718 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys 2010/12/11 11:03:17.0828 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys 2010/12/11 11:03:17.0921 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 2010/12/11 11:03:18.0031 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys 2010/12/11 11:03:18.0140 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys 2010/12/11 11:03:18.0281 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys 2010/12/11 11:03:18.0406 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys 2010/12/11 11:03:18.0531 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys 2010/12/11 11:03:18.0718 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys 2010/12/11 11:03:18.0828 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys 2010/12/11 11:03:18.0937 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys 2010/12/11 11:03:19.0109 ================================================================================ 2010/12/11 11:03:19.0109 Scan finished 2010/12/11 11:03:19.0109 ================================================================================ 2010/12/11 11:04:35.0609 Deinitialize success
  23. Sophie123
    Je te précise aussi que la période d'essai d'Avira Premium Security Suite ayant expiré, j'ai téléchargé hier la version gratuite d'Avira Antivir Personal. TuneUp Utilities a pris fin il y a quelques jours. 2) OTL Extras logfile created on: 11/12/2010 11:08:04 - Run 1 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\Sophie\Bureau Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 1 014,00 Mb Total Physical Memory | 454,00 Mb Available Physical Memory | 45,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 77,00% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 39,21 Gb Total Space | 12,12 Gb Free Space | 30,91% Space Free | Partition Type: NTFS Drive D: | 37,11 Gb Total Space | 3,23 Gb Free Space | 8,71% Space Free | Partition Type: NTFS Computer Name: SOPHIE | User Name: Sophie | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = htmlfile] -- Reg Error: Key error. File not found ========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusOverride" = 0 "FirewallOverride" = 0 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] ========== System Restore Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List] "139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004 "445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005 "137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001 "138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 0 "DoNotAllowExceptions" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008 "139:TCP" = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004 "445:TCP" = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005 "137:UDP" = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001 "138:UDP" = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002 "48113:TCP" = 48113:TCP:LocalSubNet:Enabled:maconfig_tcp "48113:UDP" = 48113:UDP:LocalSubNet:Enabled:maconfig_udp ========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "C:\Program Files\MSN Messenger\msncall.exe" = C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone) -- File not found [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\ma-config.com\maconfservice.exe" = C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice -- (CybelSoft) ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{092eeeee-9fdd-4895-a568-0818c96beb6c}" = AiO_Scan "{0e4a0db5-801d-489e-85c0-6c3f96335d20}" = 1300Trb "{133742BA-6F46-4D3E-85AF-78631D9AD8B8}" = Installation Windows Live "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT "{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}" = TuneUp Utilities 2011 "{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java 6 Update 22 "{2E132061-C78A-48D4-A899-1D13B9D189FA}" = Memories Disc Creator 2.0 "{2F1FD032-67D1-4569-923F-47EAF132BF0F}" = DocProc "{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform "{33899F97-411C-4759-BDAA-26ECAE715B9C}" = TuneUp Utilities Language Pack (fr-FR) "{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{3AC54383-31D1-4907-961B-B12CBB1D0AE8}" = MobileMe Control Panel "{3CF78481-FB7B-4B51-99A2-D5E0CD0B3AAF}" = HPSystemDiagnostics "{445B183D-F4F1-45C8-B9DB-F11355CA657B}" = Windows Live Messenger "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4FB6F304-A91D-4919-98E5-D96E074EA9E5}" = SkinsHP1 "{549197A2-8484-426C-814F-81A6535A24D6}" = Foxit Reader "{54e854d5-d5d4-452d-9c75-b39f5625b5fb}" = Readme "{5ADF6293-D60F-4425-AFA7-CEB820DB872B}" = QuickProjects "{5C29CB8B-AC1E-4114-8D68-9CD080140D4A}" = Sony USB Driver "{5DD76286-9BE7-4894-A990-E905E91AC818}" = Windows Live Mail "{5DF3D1BB-894E-4DCD-8275-159AC9829B43}" = McAfee VirusScan Enterprise "{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053 "{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update "{6dc18d50-8cc3-4dea-a666-ea6f01907663}" = 1300 "{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK "{745A92AF-53B4-41A7-91C3-9B026B1D5897}" = InstantShare "{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP "{829698DE-9EAC-475E-9A05-B7BA807CA1EF}" = Director "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{8777AC6D-89F9-4793-8266-DE406F343E89}" = QFolder "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update "{90120000-0010-040C-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (French) 12 "{90120000-0015-040C-0000-0000000FF1CE}" = Microsoft Office Access MUI (French) 2007 "{90120000-0015-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0016-040C-0000-0000000FF1CE}" = Microsoft Office Excel MUI (French) 2007 "{90120000-0016-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0018-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007 "{90120000-0018-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0019-040C-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (French) 2007 "{90120000-0019-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001A-040C-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (French) 2007 "{90120000-001A-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001B-040C-0000-0000000FF1CE}" = Microsoft Office Word MUI (French) 2007 "{90120000-001B-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2007 "{90120000-001F-0401-0000-0000000FF1CE}_ENTERPRISE_{14809F99-C601-4D4A-9391-F1E8FAA964C5}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007 "{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007 "{90120000-001F-0413-0000-0000000FF1CE}_ENTERPRISE_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007 "{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2007 "{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007 "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581) "{90120000-0044-040C-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (French) 2007 "{90120000-0044-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2007 "{90120000-006E-040C-0000-0000000FF1CE}_ENTERPRISE_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-00A1-040C-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (French) 2007 "{90120000-00A1-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-00BA-040C-0000-0000000FF1CE}" = Microsoft Office Groove MUI (French) 2007 "{90120000-00BA-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{939227BD-19D8-4684-8A04-31AC9F6A564C}" = Scan "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{95120000-0122-040C-0000-0000000FF1CE}" = Microsoft Office Outlook Connector "{96EB95A2-5245-4EA2-B6EA-B8BA2FBF64C4}" = Ma-Config.com "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9A394342-4A68-4EBA-85A6-55B559F4E700}" = Microsoft .NET Framework 1.1 French Language Pack "{9DAA3F6E-0B56-A762-02CF-F9D80D8F1036}" = Nero 7 Premium "{9F4EEA0C-7174-4BD3-89AF-7AB2F9F6AEDD}" = hpmdtab "{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A363B66C-1547-47bf-90F0-3834E70A841A}" = CreativeProjects "{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support "{b17cf867-a4e5-41ba-a646-50f237810eca}" = 1300_Help "{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0 "{B3B487E7-6171-4376-9074-B28082CEB504}" = Windows Live Call "{bb6cac2a-1fa0-471a-bc3c-ade699c39f3c}" = Fax "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{c330461f-c4a9-4fc7-af5d-c158e0b56aa7}" = AiOSoftware "{C38BC5B7-62D3-4880-82DD-A4803FD81921}" = PhotoGallery "{c46485b1-6527-4937-9dc0-29bb5d5613fe}" = 1300Tour "{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver "{CAE7D1D9-3794-4169-B4DD-964ADBC534EE}" = HP Product Detection "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CC0A24CB-87C9-4F1C-A1F2-F87D8D4DDCAF}" = HP Software Update "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{CE4F8FFB-4063-4247-9F14-ECE61AFEFA25}" = TrayApp "{CFD1B282-555D-494d-8231-4175C2AF08C2}" = PrintScreen "{D1D8C9C4-89BE-4f37-9EC4-B80E3C239C41}" = Copy "{D416E000-D999-470A-BCAC-98E717CC1AFC}" = VirginMega.Fr Premium "{D5068583-D569-468B-9755-5FBF5848F46F}" = Sony Picture Utility "{D545BB81-DEB0-49f7-BE26-197BC31AAF57}" = SkinsHP2 "{DAEAFD68-BB4A-4507-A241-C8804D2EA66D}" = Apple Application Support "{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}" = Assistant de connexion Windows Live "{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = Auslogics Disk Defrag "{E4ABB302-9D82-4D18-83D5-AD1DFE786AA8}" = Unload "{E7004147-2CCA-431C-AA05-2AB166B9785D}" = QuickTime "{ec7d7a6a-31cb-4810-826f-74171bef44f1}" = AIOMinimal "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F38FA38A-7E5A-4209-88ED-4DE21CD20EEF}" = HP PSC & OfficeJet 3.0 "{FBBF532A-47AC-457d-AC06-0D3163D8911E}" = WebReg "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Ad-Remover" = Ad-Remover By C_XX "Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus "CCleaner" = CCleaner "CDisplay_is1" = CDisplay 1.8 "Copernic Agent Basic" = Copernic Agent Basic "DivX Setup.divx.com" = Configuration DivX "ENTERPRISE" = Microsoft Office Enterprise 2007 "Glary Utilities_is1" = Glary Utilities 2.29.0.1032 "GrabIt_is1" = GrabIt 1.7.2 Beta 4 (build 997) "HDMI" = Intel® Graphics Media Accelerator Driver "HP Photo & Imaging" = Photo et imagerie HP 3.1 "ie8" = Windows Internet Explorer 8 "KC Softwares VideoInspector_is1" = KC Softwares VideoInspector "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Mozilla Firefox (3.6.12)" = Mozilla Firefox (3.6.12) "Object Fix Zip" = Object Fix Zip 1.5 "OnlineArmor_is1" = Online Armor 4.5 "Revo Uninstaller" = Revo Uninstaller 1.90 "Secunia PSI" = Secunia PSI "TuneUp Utilities 2011" = TuneUp Utilities 2011 "Unlocker" = Unlocker 1.8.5 "Windows Media Format Runtime" = Windows Media Format 11 runtime "Windows Media Player" = Lecteur Windows Media 11 "WinLiveSuite_Wave3" = Installation Windows Live "WinRAR archiver" = Archiveur WinRAR ========== Last 10 Event Log Errors ========== [ Application Events ] Error - 05/12/2010 17:37:23 | Computer Name = SOPHIE | Source = MsiInstaller | ID = 11711 Description = Produit : Microsoft .NET Framework 2.0 Service Pack 2 -- Error 1711.Une erreur s’est produite lors de l’écriture des informations concernant l’installation sur le disque. Vérifiez que l’espace disponible sur le disque est suffisant et cliquez sur Recommencer, ou cliquez sur Annuler pour mettre fin à l’installation. Error - 05/12/2010 17:37:26 | Computer Name = SOPHIE | Source = MsiInstaller | ID = 11711 Description = Produit : Microsoft .NET Framework 2.0 Service Pack 2 -- Error 1711.Une erreur s’est produite lors de l’écriture des informations concernant l’installation sur le disque. Vérifiez que l’espace disponible sur le disque est suffisant et cliquez sur Recommencer, ou cliquez sur Annuler pour mettre fin à l’installation. Error - 05/12/2010 17:37:30 | Computer Name = SOPHIE | Source = MsiInstaller | ID = 11711 Description = Produit : Microsoft .NET Framework 2.0 Service Pack 2 -- Error 1711.Une erreur s’est produite lors de l’écriture des informations concernant l’installation sur le disque. Vérifiez que l’espace disponible sur le disque est suffisant et cliquez sur Recommencer, ou cliquez sur Annuler pour mettre fin à l’installation. Error - 05/12/2010 17:37:33 | Computer Name = SOPHIE | Source = MsiInstaller | ID = 11711 Description = Produit : Microsoft .NET Framework 2.0 Service Pack 2 -- Error 1711.Une erreur s’est produite lors de l’écriture des informations concernant l’installation sur le disque. Vérifiez que l’espace disponible sur le disque est suffisant et cliquez sur Recommencer, ou cliquez sur Annuler pour mettre fin à l’installation. Error - 05/12/2010 17:37:36 | Computer Name = SOPHIE | Source = MsiInstaller | ID = 11711 Description = Produit : Microsoft .NET Framework 2.0 Service Pack 2 -- Error 1711.Une erreur s’est produite lors de l’écriture des informations concernant l’installation sur le disque. Vérifiez que l’espace disponible sur le disque est suffisant et cliquez sur Recommencer, ou cliquez sur Annuler pour mettre fin à l’installation. Error - 05/12/2010 17:37:40 | Computer Name = SOPHIE | Source = MsiInstaller | ID = 11711 Description = Produit : Microsoft .NET Framework 2.0 Service Pack 2 -- Error 1711.Une erreur s’est produite lors de l’écriture des informations concernant l’installation sur le disque. Vérifiez que l’espace disponible sur le disque est suffisant et cliquez sur Recommencer, ou cliquez sur Annuler pour mettre fin à l’installation. Error - 05/12/2010 17:39:49 | Computer Name = SOPHIE | Source = MsiInstaller | ID = 11711 Description = Produit : Microsoft .NET Framework 2.0 Service Pack 2 -- Error 1711.Une erreur s’est produite lors de l’écriture des informations concernant l’installation sur le disque. Vérifiez que l’espace disponible sur le disque est suffisant et cliquez sur Recommencer, ou cliquez sur Annuler pour mettre fin à l’installation. Error - 09/12/2010 11:10:27 | Computer Name = SOPHIE | Source = Alert Manager Event Interface | ID = 257 Description = VirusScan Enterprise: The update failed; see event log.(from SOPHIE IP 192.168.1.4 user SYSTEM running VirusScan Ent. 8.0.0 UPD) Error - 09/12/2010 11:10:27 | Computer Name = SOPHIE | Source = EventSystem | ID = 4612 Description = Le système d'événements de COM+ a manqué de mémoire lors de son traitement interne, à la ligne 44 de d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cp Error - 09/12/2010 12:48:21 | Computer Name = SOPHIE | Source = Alert Manager Event Interface | ID = 257 Description = VirusScan Enterprise: The update failed; see event log.(from SOPHIE IP 192.168.1.4 user SYSTEM running VirusScan Ent. 8.0.0 UPD) [ System Events ] Error - 10/12/2010 14:36:16 | Computer Name = SOPHIE | Source = DCOM | ID = 10010 Description = Le serveur {121BC3CF-7F8A-4CFF-80DB-3853231BE619} ne s'est pas enregistré sur DCOM avant la fin du temps imparti. Error - 10/12/2010 15:15:36 | Computer Name = SOPHIE | Source = DCOM | ID = 10010 Description = Le serveur {121BC3CF-7F8A-4CFF-80DB-3853231BE619} ne s'est pas enregistré sur DCOM avant la fin du temps imparti. Error - 10/12/2010 15:16:06 | Computer Name = SOPHIE | Source = DCOM | ID = 10010 Description = Le serveur {121BC3CF-7F8A-4CFF-80DB-3853231BE619} ne s'est pas enregistré sur DCOM avant la fin du temps imparti. Error - 10/12/2010 15:16:36 | Computer Name = SOPHIE | Source = DCOM | ID = 10010 Description = Le serveur {121BC3CF-7F8A-4CFF-80DB-3853231BE619} ne s'est pas enregistré sur DCOM avant la fin du temps imparti. Error - 11/12/2010 05:27:16 | Computer Name = SOPHIE | Source = Service Control Manager | ID = 7009 Description = Délai (30000 millisecondes) d'attente pour une connexion du service Network Associates Task Manager. Error - 11/12/2010 05:27:16 | Computer Name = SOPHIE | Source = Service Control Manager | ID = 7000 Description = Le service Network Associates Task Manager n'a pas pu démarrer en raison de l'erreur : %%1053 Error - 11/12/2010 05:28:05 | Computer Name = SOPHIE | Source = DCOM | ID = 10000 Description = Le démarrage d'un serveur DCOM : {1F87137D-0E7C-44D5-8C73-4EFFB68962F2} n'est pas possible. L'erreur : "%5" s'est produite lors du démarrage de la commande : C:\WINDOWS\system32\wbem\wmiprvse.exe -secured -Embedding Error - 11/12/2010 05:28:08 | Computer Name = SOPHIE | Source = DCOM | ID = 10000 Description = Le démarrage d'un serveur DCOM : {1F87137D-0E7C-44D5-8C73-4EFFB68962F2} n'est pas possible. L'erreur : "%5" s'est produite lors du démarrage de la commande : C:\WINDOWS\system32\wbem\wmiprvse.exe -secured -Embedding Error - 11/12/2010 05:28:11 | Computer Name = SOPHIE | Source = DCOM | ID = 10000 Description = Le démarrage d'un serveur DCOM : {1F87137D-0E7C-44D5-8C73-4EFFB68962F2} n'est pas possible. L'erreur : "%5" s'est produite lors du démarrage de la commande : C:\WINDOWS\system32\wbem\wmiprvse.exe -secured -Embedding Error - 11/12/2010 05:52:54 | Computer Name = SOPHIE | Source = Service Control Manager | ID = 7034 Description = Le service Online Armor s'est terminé de façon inattendue pour la 1ème fois. [ TuneUp Events ] Error - 05/12/2010 14:37:43 | Computer Name = SOPHIE | Source = TuneUp.UtilitiesSvc | ID = 300 Description = Error - 05/12/2010 16:13:41 | Computer Name = SOPHIE | Source = TuneUp.UtilitiesSvc | ID = 300 Description = Error - 05/12/2010 16:13:41 | Computer Name = SOPHIE | Source = TuneUp.UtilitiesSvc | ID = 300 Description = Error - 05/12/2010 16:13:41 | Computer Name = SOPHIE | Source = TuneUp.UtilitiesSvc | ID = 300 Description = < End of report >
  24. Sophie123
    Bonjour Lance_Yien, Merci pour ton message et les outils tests. Ce matin, à ma grande surprise, le son était revenu dans les baffles du PC et les paramètres sons, non visibles hier, étaient de nouveau apparents ce matin. La mise à jour de Windows hier + l'utilisation de CCleaner (avec sauvegarde du registre ont-elles pu aider... ? Enfin, le principal, le son est de nouveau là Je t'envoie dans deux messages les rapports demandés pour ne pas risquer de tout bloquer ici. Merci pour ton interprétation. Le rapport OTL.Txt : OTL logfile created on: 11/12/2010 11:08:04 - Run 1 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\Sophie\Bureau Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 1 014,00 Mb Total Physical Memory | 454,00 Mb Available Physical Memory | 45,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 77,00% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 39,21 Gb Total Space | 12,12 Gb Free Space | 30,91% Space Free | Partition Type: NTFS Drive D: | 37,11 Gb Total Space | 3,23 Gb Free Space | 8,71% Space Free | Partition Type: NTFS Computer Name: SOPHIE | User Name: Sophie | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2010/12/11 10:58:38 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Sophie\Bureau\OTL.exe PRC - [2010/10/28 14:32:34 | 000,645,952 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe PRC - [2010/10/28 14:31:10 | 001,483,072 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe PRC - [2010/09/01 07:39:18 | 001,164,584 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe PRC - [2010/08/27 14:21:56 | 000,380,272 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\Tall Emu\Online Armor\oacat.exe PRC - [2010/08/17 13:39:03 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe PRC - [2010/08/17 13:38:55 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe PRC - [2010/08/17 13:38:55 | 000,267,944 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe PRC - [2010/05/28 12:04:52 | 000,911,920 | ---- | M] (Secunia) -- C:\Program Files\Secunia\PSI\psi.exe PRC - [2010/05/14 10:44:46 | 000,248,552 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe PRC - [2010/01/14 22:11:14 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe PRC - [2009/08/28 19:42:54 | 000,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe PRC - [2008/04/13 19:34:04 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2007/02/21 02:35:02 | 000,073,728 | ---- | M] (HP) -- C:\WINDOWS\system32\hpzipm12.exe PRC - [2006/09/07 18:19:27 | 000,015,872 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerAssistant.exe PRC - [2005/11/24 15:38:08 | 000,094,208 | ---- | M] (Nero AG) -- C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe PRC - [2005/10/28 14:12:04 | 000,155,648 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe PRC - [2004/09/22 19:00:00 | 000,221,191 | ---- | M] (Network Associates, Inc.) -- C:\Program Files\Network Associates\VirusScan\Mcshield.exe PRC - [2004/09/22 19:00:00 | 000,094,208 | ---- | M] (Network Associates, Inc.) -- C:\Program Files\Network Associates\VirusScan\shstat.exe PRC - [2004/08/06 03:50:00 | 000,237,623 | ---- | M] (Network Associates, Inc.) -- C:\Program Files\Network Associates\Common Framework\naPrdMgr.exe PRC - [2004/08/06 03:50:00 | 000,139,320 | ---- | M] (Network Associates, Inc.) -- C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe PRC - [2004/08/06 03:50:00 | 000,102,463 | ---- | M] (Network Associates, Inc.) -- C:\Program Files\Network Associates\Common Framework\FrameworkService.exe PRC - [2003/10/07 09:48:56 | 000,147,514 | ---- | M] (Network Associates, Inc.) -- C:\Program Files\Fichiers communs\Network Associates\TalkBack\TBMon.exe ========== Modules (SafeList) ========== MOD - [2010/12/11 10:58:38 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Sophie\Bureau\OTL.exe MOD - [2010/08/27 14:22:02 | 001,087,400 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\Tall Emu\Online Armor\oawatch.dll MOD - [2010/08/23 17:12:39 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll MOD - [2008/04/13 19:33:52 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wsock32.dll MOD - [2008/04/13 19:33:52 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wtsapi32.dll MOD - [2008/04/13 19:33:50 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winsta.dll MOD - [2008/04/13 19:33:28 | 000,095,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\iphlpapi.dll ========== Win32 Services (SafeList) ========== SRV - [2010/10/28 14:31:10 | 001,483,072 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc) SRV - [2010/10/28 14:29:08 | 000,029,504 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp) SRV - [2010/09/12 15:30:52 | 000,251,248 | ---- | M] (CybelSoft) [On_Demand | Stopped] -- C:\Program Files\ma-config.com\maconfservice.exe -- (maconfservice) SRV - [2010/08/27 14:21:58 | 003,638,240 | ---- | M] (Emsi Software GmbH) [Auto | Stopped] -- C:\Program Files\Tall Emu\Online Armor\oasrv.exe -- (SvcOnlineArmor) SRV - [2010/08/27 14:21:56 | 000,380,272 | ---- | M] (Emsi Software GmbH) [Auto | Running] -- C:\Program Files\Tall Emu\Online Armor\OAcat.exe -- (OAcat) SRV - [2010/08/17 13:39:03 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2010/08/17 13:38:55 | 000,267,944 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2009/08/28 19:42:54 | 000,144,672 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device) SRV - [2008/11/04 00:06:28 | 000,441,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv) SRV - [2007/02/21 02:35:02 | 000,073,728 | ---- | M] (HP) [Auto | Running] -- C:\WINDOWS\system32\hpzipm12.exe -- (Pml Driver HPZ12) SRV - [2006/10/26 14:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose) SRV - [2004/09/22 19:00:00 | 000,221,191 | ---- | M] (Network Associates, Inc.) [Auto | Paused] -- C:\Program Files\Network Associates\VirusScan\Mcshield.exe -- (McShield) SRV - [2004/09/22 19:00:00 | 000,028,672 | ---- | M] (Network Associates, Inc.) [Auto | Stopped] -- C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe -- (McTaskManager) SRV - [2004/08/06 03:50:00 | 000,102,463 | ---- | M] (Network Associates, Inc.) [Auto | Running] -- C:\Program Files\Network Associates\Common Framework\FrameworkService.exe -- (McAfeeFramework) ========== Driver Services (SafeList) ========== DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\InCDRm.sys -- (InCDRm) DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\InCDPass.sys -- (InCDPass) DRV - File not found [File_System | Disabled | Stopped] -- C:\WINDOWS\System32\drivers\InCDFs.sys -- (InCDFs) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Sophie\LOCALS~1\Temp\catchme.sys -- (catchme) DRV - [2010/10/07 13:34:32 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv) DRV - [2010/08/30 12:19:54 | 000,014,336 | ---- | M] (CybelSoft) [Kernel | On_Demand | Stopped] -- C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys -- (driverhardwarev2) DRV - [2010/08/27 14:22:36 | 000,038,856 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\oahlp32.sys -- (oahlpXX) DRV - [2010/08/27 14:22:16 | 000,029,272 | ---- | M] (Emsisoft) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\OAnet.sys -- (OAnet) DRV - [2010/08/27 14:22:16 | 000,025,000 | ---- | M] (Emsisoft) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\OAmon.sys -- (OAmon) DRV - [2010/08/27 14:22:14 | 000,201,168 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\system32\drivers\OADriver.sys -- (OADevice) DRV - [2010/08/17 13:39:11 | 000,126,856 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb) DRV - [2010/08/17 13:39:11 | 000,060,936 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt) DRV - [2010/06/17 15:28:02 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2010/06/17 15:27:52 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio) DRV - [2010/05/28 12:04:52 | 000,014,896 | ---- | M] (Secunia) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\psi_mf.sys -- (PSI) DRV - [2009/11/15 12:58:01 | 000,043,488 | ---- | M] (Oak Technology Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\AFS2K.SYS -- (AFS2K) DRV - [2008/04/17 02:05:52 | 005,854,752 | R--- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\igxpmp32.sys -- (ialm) DRV - [2008/04/17 02:05:42 | 000,105,856 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2008/04/17 02:05:38 | 004,652,544 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2008/04/13 11:45:14 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) Pilote USB audio (WDM) DRV - [2008/04/13 09:36:06 | 000,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus) DRV - [2004/09/22 20:00:00 | 000,108,256 | ---- | M] (Network Associates, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\naiavf5x.sys -- (NaiAvFilter1) DRV - [2004/09/22 20:00:00 | 000,058,048 | ---- | M] (Network Associates, Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\mvstdi5x.sys -- (NaiAvTdi1) DRV - [2004/09/22 20:00:00 | 000,008,320 | ---- | M] (Network Associates, Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EntDrv51.sys -- (EntDrv51) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN : Hotmail, Messenger, Bing, Actualité et Sport IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = C2 33 AD 2C FC 93 CB 01 [binary data] IE - HKCU\..\URLSearchHook: {BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.) IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.startup.homepage: "http://go.microsoft.com/fwlink/?LinkId=69157" FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 FF - prefs.js..network.proxy.no_proxies_on: "*.local" FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/11/06 12:00:48 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/12/06 19:33:31 | 000,000,000 | ---D | M] [2010/01/21 20:27:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sophie\Application Data\Mozilla\Extensions [2010/12/06 19:26:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sophie\Application Data\Mozilla\Firefox\Profiles\j4u8uowq.default\extensions [2010/11/14 21:38:08 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Sophie\Application Data\Mozilla\Firefox\Profiles\j4u8uowq.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010/12/05 12:19:37 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010/04/15 19:15:50 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010/10/21 20:12:40 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [2010/10/21 20:12:09 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010/06/04 10:06:20 | 000,075,208 | ---- | M] (Foxit Software Company) -- C:\Program Files\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll O1 HOSTS File: ([2010/12/04 11:31:38 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O3 - HKLM\..\Toolbar: (Copernic Agent) - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.) O3 - HKCU\..\Toolbar\WebBrowser: (Copernic Agent) - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.) O4 - HKLM..\Run: [@OnlineArmor GUI] C:\Program Files\Tall Emu\Online Armor\OAui.exe (Emsi Software GmbH) O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe (Apple Inc.) O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe () O4 - HKLM..\Run: [McAfeeUpdaterUI] C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe (Network Associates, Inc.) O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh) O4 - HKLM..\Run: [Network Associates Error Reporting Service] C:\Program Files\Fichiers communs\Network Associates\TalkBack\TBMon.exe (Network Associates, Inc.) O4 - HKLM..\Run: [shStatEXE] C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE (Network Associates, Inc.) O4 - HKLM..\Run: [sunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.) O4 - HKLM..\Run: [unlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe () O4 - HKCU..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe (Nero AG) O4 - Startup: C:\Documents and Settings\Sophie\Menu Démarrer\Programmes\Démarrage\Outil de détection de support de Cyber-shot Viewer.lnk = C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe (Sony Corporation) O4 - Startup: C:\Documents and Settings\Sophie\Menu Démarrer\Programmes\Démarrage\Secunia PSI.lnk = C:\Program Files\Secunia\PSI\psi.exe (Secunia) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8 - Extra context menu item: Chercher avec Copernic Agent - C:\Program Files\Copernic Agent\CopernicAgentExt.rdl (Copernic Technologies Inc.) O9 - Extra 'Tools' menuitem : Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\Program Files\Copernic Agent\CopernicAgent.exe (Copernic Technologies Inc.) O9 - Extra Button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\Program Files\Copernic Agent\CopernicAgent.exe (Copernic Technologies Inc.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll File not found O15 - HKCU\..Trusted Domains: internet ([]about in Trusted sites) O15 - HKCU\..Trusted Domains: mcafee.com ([]http in Trusted sites) O15 - HKCU\..Trusted Domains: mcafee.com ([]https in Trusted sites) O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Reg Error: Key error.) O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool) O16 - DPF: {32505657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/0/A/9/0A9F8B32-9F8C-4D74-A130-E4CAB36EB01F/wmvadvd.cab (Reg Error: Key error.) O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1270404491546 (MUWebControl Class) O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection2.cab (GMNRev Class) O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.) O16 - DPF: {82774781-8F4E-11D1-AB1C-0000F8773BF0} https://transfers.ds.microsoft.com/FTM/TransferSource/grTransferCtrl.cab (DLC Class) O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} http://fichiers.touslesdrivers.com/maconfig/MaConfig_4_6_0_1.cab ("Ma-Config.com control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {DB28CF23-0083-40B5-BF63-69925D672385} http://www.nero.com/doc/NeroVersionChecker.cab (CNeroSerialChecker Object) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\copernicagent {A979B6BD-E40B-4A07-ABDD-A62C64A4EBF6} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.) O18 - Protocol\Handler\copernicagentcache {AAC34CFD-274D-4A9D-B0DC-C74C05A67E1D} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll (Copernic Technologies Inc.) O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation) O24 - Desktop Components:0 (Ma page d'accueil) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Colline verdoyante.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Colline verdoyante.bmp O28 - HKLM ShellExecuteHooks: {4F07DA45-8170-4859-9B5F-037EF2970034} - C:\Program Files\Tall Emu\Online Armor\oaevent.dll (Emsi Software GmbH) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009/11/04 18:26:06 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: UxTuneUp - C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software) NetSvcs: WmdmPmSp - File not found Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation) Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.) Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.) Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.) Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.) Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation) Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation) Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.) CREATERESTOREPOINT Restore point Set: OTL Restore Point (62782530557837312) ========== Files/Folders - Created Within 30 Days ========== [2010/12/11 11:00:55 | 001,344,600 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Sophie\Bureau\TDSSKiller.exe [2010/12/11 10:58:36 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Sophie\Bureau\OTL.exe [2010/12/10 21:52:15 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys [2010/12/10 21:52:09 | 000,126,856 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys [2010/12/10 21:52:09 | 000,060,936 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys [2010/12/10 21:52:09 | 000,045,416 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntdd.sys [2010/12/10 21:52:09 | 000,022,360 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntmgr.sys [2010/12/10 21:52:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Avira [2010/12/10 21:39:41 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Sophie\Recent [2010/12/10 20:16:54 | 000,000,000 | ---D | C] -- C:\Program Files\VirginMega [2010/12/06 20:04:52 | 000,000,000 | ---D | C] -- C:\Program Files\Unlocker [2010/12/04 20:39:18 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010/12/01 17:23:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sophie\Bureau\Analyse 1-12 [2010/12/01 16:59:13 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010/12/01 16:59:08 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2010/12/01 16:59:08 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2010/12/01 16:50:36 | 007,622,112 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Sophie\Bureau\mbam-setup-1.50.0.0.exe [2010/12/01 12:45:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sophie\Local Settings\Application Data\Temp [2010/12/01 12:25:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe [2010/11/28 12:19:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\Downloaded Installations [2010/11/24 18:22:04 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Borland Shared [2010/11/24 18:16:47 | 000,000,000 | ---D | C] -- C:\Program Files\ZebHelpProcess [2010/11/23 22:53:29 | 000,000,000 | ---D | C] -- C:\b95e8e7f443d2cf36cfb [2010/11/20 13:12:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sophie\Application Data\Canneverbe Limited [2010/11/20 13:12:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited [2010/11/20 13:11:12 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP [2010/11/20 12:37:52 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_42.dll [2010/11/20 12:36:55 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_42.dll [2010/11/20 12:35:59 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_40.dll [2010/11/20 12:35:02 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_35.dll [2010/11/20 12:33:57 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_34.dll [2010/11/20 12:32:48 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll [2010/11/20 12:31:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2010/11/20 11:44:31 | 000,000,000 | ---D | C] -- C:\Program Files\ma-config.com [2010/11/20 11:44:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ma-config.com [2010/11/17 08:24:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Adobe [2010/11/15 16:56:26 | 000,000,000 | ---D | C] -- C:\quarantine [2010/11/14 14:59:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sophie\Application Data\vlc [2010/11/12 20:39:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\microsoft [2010/11/11 17:01:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Disk Cleaner [2010/11/11 16:56:36 | 000,000,000 | ---D | C] -- C:\Program Files\Disk Cleaner [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2010/12/11 10:58:38 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Sophie\Bureau\OTL.exe [2010/12/11 10:39:41 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2010/12/11 10:39:38 | 000,028,160 | ---- | M] () -- C:\Documents and Settings\Sophie\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010/12/11 10:26:26 | 000,000,314 | ---- | M] () -- C:\WINDOWS\tasks\GlaryInitialize.job [2010/12/11 10:26:26 | 000,000,236 | ---- | M] () -- C:\WINDOWS\tasks\OGALogon.job [2010/12/11 10:26:24 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job [2010/12/11 10:25:56 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010/12/11 00:13:25 | 000,506,984 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat [2010/12/11 00:13:25 | 000,438,164 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010/12/11 00:13:25 | 000,083,076 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat [2010/12/11 00:13:25 | 000,070,094 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010/12/10 21:52:41 | 000,001,707 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Avira AntiVir Control Center.lnk [2010/12/10 21:42:44 | 000,008,804 | ---- | M] () -- C:\Documents and Settings\Sophie\Mes documents\cc_20101210_214227.reg [2010/12/10 20:18:23 | 000,000,800 | ---- | M] () -- C:\Documents and Settings\Sophie\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk [2010/12/10 20:16:55 | 000,001,927 | ---- | M] () -- C:\Documents and Settings\Sophie\Bureau\VirginMega Premium.lnk [2010/12/10 20:15:06 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010/12/10 18:33:21 | 000,000,434 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{72D175D7-C656-4237-B71C-8C637504E842}.job [2010/12/10 17:19:10 | 000,000,512 | ---- | M] () -- C:\WINDOWS\randseed.rnd [2010/12/09 21:00:51 | 000,000,917 | ---- | M] () -- C:\Documents and Settings\Sophie\Bureau\Revo Uninstaller.lnk [2010/12/09 20:57:53 | 002,409,944 | ---- | M] () -- C:\Documents and Settings\Sophie\Bureau\revosetup.exe [2010/12/08 14:48:08 | 001,344,600 | ---- | M] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Sophie\Bureau\TDSSKiller.exe [2010/12/06 21:39:54 | 000,000,463 | ---- | M] () -- C:\Documents and Settings\Sophie\Bureau\hpsysdig.lnk [2010/12/06 20:03:56 | 000,195,645 | ---- | M] () -- C:\Documents and Settings\Sophie\Bureau\unlocker1.8.5.exe [2010/12/04 11:31:38 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts [2010/12/02 13:32:36 | 000,100,280 | ---- | M] () -- C:\Documents and Settings\Sophie\Mes documents\Arrêt maladie 29-11 au 3-12-10.pdf [2010/12/01 16:59:13 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk [2010/12/01 16:51:56 | 000,869,086 | ---- | M] () -- C:\Documents and Settings\Sophie\Bureau\SecurityCheck.exe [2010/12/01 16:50:53 | 007,622,112 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Sophie\Bureau\mbam-setup-1.50.0.0.exe [2010/11/29 17:42:18 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010/11/29 17:42:06 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2010/11/29 10:26:32 | 000,011,902 | ---- | M] () -- C:\Documents and Settings\Sophie\Mes documents\hijackthis 291110 [2010/11/28 21:16:04 | 000,028,726 | ---- | M] () -- C:\WINDOWS\hpoins03.dat [2010/11/28 12:03:24 | 000,010,442 | ---- | M] () -- C:\Documents and Settings\Sophie\Mes documents\recettes.docx [2010/11/25 23:21:00 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job [2010/11/24 22:50:43 | 000,013,030 | ---- | M] () -- C:\PDOXUSRS.NET [2010/11/21 11:26:01 | 000,001,456 | ---- | M] () -- C:\Documents and Settings\Sophie\Bureau\DivX Movies.lnk [2010/11/21 11:20:57 | 000,000,777 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\DivX Plus Player.lnk [2010/11/20 13:11:38 | 000,001,616 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\CDBurnerXP.lnk [2010/11/18 22:34:11 | 000,010,532 | ---- | M] () -- C:\Documents and Settings\Sophie\Mes documents\Etrange.docx [2010/11/16 01:20:16 | 000,010,266 | ---- | M] () -- C:\Documents and Settings\Sophie\Mes documents\Bonjour.docx [2010/11/14 16:07:13 | 000,002,345 | ---- | M] () -- C:\Documents and Settings\Sophie\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart.lnk [2010/11/14 16:07:13 | 000,002,327 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Nero StartSmart.lnk [2010/11/14 16:07:13 | 000,002,245 | ---- | M] () -- C:\Documents and Settings\Sophie\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero Home.lnk [2010/11/14 16:07:13 | 000,002,227 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Nero Home.lnk [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files Created - No Company Name ========== [2010/12/10 21:52:41 | 000,001,707 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Avira AntiVir Control Center.lnk [2010/12/10 21:42:38 | 000,008,804 | ---- | C] () -- C:\Documents and Settings\Sophie\Mes documents\cc_20101210_214227.reg [2010/12/10 20:16:55 | 000,001,927 | ---- | C] () -- C:\Documents and Settings\Sophie\Bureau\VirginMega Premium.lnk [2010/12/09 21:00:51 | 000,000,917 | ---- | C] () -- C:\Documents and Settings\Sophie\Bureau\Revo Uninstaller.lnk [2010/12/09 20:57:19 | 002,409,944 | ---- | C] () -- C:\Documents and Settings\Sophie\Bureau\revosetup.exe [2010/12/06 20:03:48 | 000,195,645 | ---- | C] () -- C:\Documents and Settings\Sophie\Bureau\unlocker1.8.5.exe [2010/12/02 13:32:29 | 000,100,280 | ---- | C] () -- C:\Documents and Settings\Sophie\Mes documents\Arrêt maladie 29-11 au 3-12-10.pdf [2010/12/01 16:59:13 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk [2010/12/01 16:51:56 | 000,869,086 | ---- | C] () -- C:\Documents and Settings\Sophie\Bureau\SecurityCheck.exe [2010/11/29 10:26:32 | 000,011,902 | ---- | C] () -- C:\Documents and Settings\Sophie\Mes documents\hijackthis 291110 [2010/11/29 10:06:22 | 000,000,463 | ---- | C] () -- C:\Documents and Settings\Sophie\Bureau\hpsysdig.lnk [2010/11/28 12:03:24 | 000,010,442 | ---- | C] () -- C:\Documents and Settings\Sophie\Mes documents\recettes.docx [2010/11/24 18:24:34 | 000,013,030 | ---- | C] () -- C:\PDOXUSRS.NET [2010/11/24 18:22:06 | 000,183,808 | ---- | C] () -- C:\WINDOWS\System32\BDEADMIN.CPL [2010/11/21 11:20:57 | 000,000,777 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\DivX Plus Player.lnk [2010/11/20 13:11:38 | 000,001,616 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\CDBurnerXP.lnk [2010/11/18 22:34:10 | 000,010,532 | ---- | C] () -- C:\Documents and Settings\Sophie\Mes documents\Etrange.docx [2010/11/16 01:20:16 | 000,010,266 | ---- | C] () -- C:\Documents and Settings\Sophie\Mes documents\Bonjour.docx [2010/11/14 16:07:13 | 000,002,345 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart.lnk [2010/11/14 16:07:13 | 000,002,327 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Nero StartSmart.lnk [2010/11/14 16:07:13 | 000,002,245 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\Microsoft\Internet Explorer\Quick Launch\Nero Home.lnk [2010/11/14 16:07:13 | 000,002,227 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Nero Home.lnk [2010/10/31 19:46:08 | 000,000,180 | ---- | C] () -- C:\WINDOWS\sripper.ini [2010/10/31 19:46:08 | 000,000,050 | ---- | C] () -- C:\WINDOWS\StreamRipper32.INI [2010/10/23 15:24:13 | 000,011,802 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\temp12744.txt [2010/10/17 14:36:14 | 000,038,856 | ---- | C] () -- C:\WINDOWS\System32\drivers\oahlp32.sys [2010/08/15 12:34:33 | 000,000,040 | ---- | C] () -- C:\WINDOWS\NAVIGMA.INI [2010/03/06 16:19:34 | 000,003,654 | ---- | C] () -- C:\WINDOWS\System32\drivers\Sonyhcp.dll [2010/03/04 11:07:20 | 000,009,062 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\temp20527.txt [2010/03/04 09:54:40 | 000,013,858 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\temp6289.txt [2010/02/15 19:03:09 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI [2010/02/14 10:21:51 | 000,006,100 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\temp12026.txt [2010/02/05 16:33:58 | 000,007,866 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\temp3223.txt [2010/02/05 13:34:04 | 000,007,394 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\HPCOM_48BitScanUpdate.log [2010/02/05 13:34:04 | 000,000,214 | ---- | C] () -- C:\WINDOWS\HP_48BitScanUpdatePatch.ini [2010/01/29 08:21:47 | 000,201,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\OADriver.sys [2010/01/20 18:32:16 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\DirectCOM.dll [2010/01/20 18:32:12 | 000,309,248 | ---- | C] () -- C:\WINDOWS\System32\sqlite36_engine.dll [2010/01/12 15:35:06 | 000,013,882 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\temp3159.txt [2010/01/09 19:22:14 | 000,009,024 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\temp20425.txt [2010/01/09 11:07:29 | 000,011,920 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\temp21790.txt [2010/01/09 11:06:52 | 000,006,624 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\temp21669.txt [2009/11/23 20:32:37 | 000,010,718 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\temp11623.txt [2009/11/23 20:31:35 | 000,010,718 | ---- | C] () -- C:\Documents and Settings\Sophie\Application Data\temp11421.txt [2009/11/15 13:29:48 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\Sophie\Local Settings\Application Data\fusioncache.dat [2009/11/15 12:50:53 | 000,003,450 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log [2009/11/04 19:39:34 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2009/11/04 19:39:29 | 000,028,160 | ---- | C] () -- C:\Documents and Settings\Sophie\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009/11/04 19:14:00 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2009/11/04 18:39:32 | 000,147,456 | R--- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4926.dll [2009/08/03 14:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll [2003/08/11 11:44:18 | 000,565,248 | ---- | C] () -- C:\WINDOWS\System32\hpotscl.dll ========== Custom Scans ========== < %SYSTEMDRIVE%\*.* > [2010/07/24 20:24:24 | 000,005,862 | ---- | M] () -- C:\Ad-Report-CLEAN[2].txt [2010/07/24 07:12:13 | 000,005,446 | ---- | M] () -- C:\Ad-Report-SCAN[1].txt [2009/11/04 18:26:06 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2009/11/04 18:19:10 | 000,000,212 | ---- | M] () -- C:\Boot.bak [2010/10/05 22:05:53 | 000,000,282 | RHS- | M] () -- C:\boot.ini [2001/08/28 11:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2004/08/03 23:00:08 | 000,263,488 | ---- | M] () -- C:\cmldr [2009/11/04 18:26:06 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2009/11/04 18:26:06 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2009/11/04 18:26:06 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2004/08/03 21:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2010/01/24 18:08:00 | 000,252,240 | RHS- | M] () -- C:\ntldr [2010/05/02 15:27:20 | 005,305,102 | ---- | M] () -- C:\output.avi [2010/12/11 10:25:53 | 1598,029,824 | -HS- | M] () -- C:\pagefile.sys [2010/11/24 22:50:43 | 000,013,030 | ---- | M] () -- C:\PDOXUSRS.NET [2010/06/28 22:00:48 | 000,000,232 | -H-- | M] () -- C:\sqmdata00.sqm [2010/07/02 22:45:34 | 000,000,232 | -H-- | M] () -- C:\sqmdata01.sqm [2010/07/05 20:57:50 | 000,000,232 | -H-- | M] () -- C:\sqmdata02.sqm [2010/07/17 21:58:05 | 000,000,232 | -H-- | M] () -- C:\sqmdata03.sqm [2010/07/23 06:08:30 | 000,000,232 | -H-- | M] () -- C:\sqmdata04.sqm [2010/07/25 21:09:13 | 000,000,232 | -H-- | M] () -- C:\sqmdata05.sqm [2010/07/29 21:16:04 | 000,000,232 | -H-- | M] () -- C:\sqmdata06.sqm [2010/07/30 19:56:50 | 000,000,232 | -H-- | M] () -- C:\sqmdata07.sqm [2010/07/31 20:45:07 | 000,000,232 | -H-- | M] () -- C:\sqmdata08.sqm [2010/08/01 12:27:34 | 000,000,232 | -H-- | M] () -- C:\sqmdata09.sqm [2010/08/04 23:27:51 | 000,000,232 | -H-- | M] () -- C:\sqmdata10.sqm [2010/08/10 21:46:10 | 000,000,232 | -H-- | M] () -- C:\sqmdata11.sqm [2010/08/17 21:58:59 | 000,000,232 | -H-- | M] () -- C:\sqmdata12.sqm [2010/08/24 20:53:03 | 000,000,232 | -H-- | M] () -- C:\sqmdata13.sqm [2010/08/28 21:31:45 | 000,000,232 | -H-- | M] () -- C:\sqmdata14.sqm [2010/08/31 21:19:33 | 000,000,232 | -H-- | M] () -- C:\sqmdata15.sqm [2010/09/02 19:33:20 | 000,000,232 | -H-- | M] () -- C:\sqmdata16.sqm [2010/06/19 19:27:36 | 000,000,232 | -H-- | M] () -- C:\sqmdata17.sqm [2010/06/21 21:07:31 | 000,000,232 | -H-- | M] () -- C:\sqmdata18.sqm [2010/06/22 17:04:00 | 000,000,232 | -H-- | M] () -- C:\sqmdata19.sqm [2010/06/28 22:00:48 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt00.sqm [2010/07/02 22:45:34 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt01.sqm [2010/07/05 20:57:49 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt02.sqm [2010/07/17 21:58:05 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt03.sqm [2010/07/23 06:08:30 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt04.sqm [2010/07/25 21:09:13 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt05.sqm [2010/07/29 21:16:04 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt06.sqm [2010/07/30 19:56:49 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt07.sqm [2010/07/31 20:45:07 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt08.sqm [2010/08/01 12:27:34 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt09.sqm [2010/08/04 23:27:51 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt10.sqm [2010/08/10 21:46:10 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt11.sqm [2010/08/17 21:58:59 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt12.sqm [2010/08/24 20:53:02 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt13.sqm [2010/08/28 21:31:45 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt14.sqm [2010/08/31 21:19:33 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt15.sqm [2010/09/02 19:33:19 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt16.sqm [2010/06/19 19:27:36 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt17.sqm [2010/06/21 21:07:31 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt18.sqm [2010/06/22 17:04:00 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt19.sqm [2010/04/05 09:24:15 | 000,000,746 | ---- | M] () -- C:\TCleaner.txt [2010/12/11 11:04:35 | 000,035,964 | ---- | M] () -- C:\TDSSKiller.2.4.11.0_11.12.2010_11.02.34_log.txt < %systemroot%\*. /mp /s > < %systemroot%\system32\*.dll /lockedfiles > [2009/03/08 04:31:44 | 000,348,160 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\dxtmsft.dll [2009/03/08 04:31:38 | 000,216,064 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\dxtrans.dll [2010/09/10 06:50:13 | 000,184,320 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\iepeers.dll [1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ] < %systemroot%\Tasks\*.job /lockedfiles > < %systemroot%\System32\config\*.sav > [2009/11/04 19:11:48 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav [2009/11/04 19:11:48 | 000,663,552 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav [2009/11/04 19:11:48 | 000,430,080 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav < %systemroot%\system32\drivers\*.sys /90 > [2010/11/29 17:42:06 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\system32\drivers\mbam.sys [2010/11/29 17:42:18 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys < > < End of report >
  25. Sophie123
    Bonsoir Lance_Yien, Merci pour ton tuyau sur "Revo uninstaller". Je l'ai de suite installé. Mon ordi est encore lent au démarrage et autre chose que j'ai découvert ce soir quand j'ai voulu allumer les amplis pour lire une bande annonce sur le web, plus de son. L'image y était, mais aucun son. Le seul son que j'ai eu, c'est un bruit lorsque je suis passée dans la configuration audio. Pareil pour la musique, aucun son. J'ai aussi testé en mettant le casque : rien ne sort. Quid ? J'ai eu à nouveau il y a quelques jours sur un site des messages qui clignotent pour m'indiquer que j'étais justement la unième gagnante d'un jeu auquel je n'ai bien sûr pas participé. Tu vois ce que c'est ? Si oui, comment on supprime ça ? Merci.
×
×
  • Créer...