Aller au contenu

BreizhFreak

Membres
  • Compteur de contenus

    12
  • Inscription

  • Dernière visite

BreizhFreak's Achievements

Junior Member

Junior Member (3/12)

0

Réputation sur la communauté

  1. Bonjour! ET bien maintenant je n'ai plus du tout de plantage (BSOD) ni de freeze, ni autres messages d'erreur mais maintenant, une fois démarré l'ordi ne répond plus du tout j'ai beau cliquer sur mozilla firefox par exemple rien ne se passe, j'ai eu une période ou il fonctionnait très bien, je lancais plusieurs installations en même temps et il aller assez vite même mais maintenant plus rien ^^' Au moins ca plante plus, mais je ne peux rien faire :/
  2. Bonjour Alors enfait Norton je l'ai jamais utiliser (pas très efficace, je ne sais pas comment il a atterri chez moi); Pc security test c'est juste pour voir si l'antivirus réagit, ce n'est nullement un AV Alors j'ai reussi du premier coup la correction qui au passage dès que j'ai cliquer sur correction à fait planter explorer.exe mais à continuer et a finit sa tache en redémarrant pour afficher le rapport ci dessous: All processes killed ========== OTL ========== Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\KernelFaultCheck deleted successfully. ADS C:\Documents and Settings\All Users\Application Data\TEMP:C31F31E6 deleted successfully. ========== SERVICES/DRIVERS ========== ========== REGISTRY ========== ========== FILES ========== C:\WINDOWS\tasks\COMODO System Cleaner Update.job moved successfully. C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully. C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully. File\Folder C:\Documents and Settings\All Users\Menu Démarrer\Programmes\PC Security Test 2010 not found. File\Folder C:\Program Files\AxBx not found. File\Folder C:\Documents and Settings\All Users\Application Data\Symantec not found. C:\Documents and Settings\All Users\Application Data\Norton folder moved successfully. C:\Documents and Settings\All Users\Application Data\NortonInstaller\Logs\12-27-2010-17h53m13s folder moved successfully. C:\Documents and Settings\All Users\Application Data\NortonInstaller\Logs\01-10-2011-21h02m35s folder moved successfully. C:\Documents and Settings\All Users\Application Data\NortonInstaller\Logs\01-10-2011-21h02m23s folder moved successfully. C:\Documents and Settings\All Users\Application Data\NortonInstaller\Logs folder moved successfully. C:\Documents and Settings\All Users\Application Data\NortonInstaller folder moved successfully. ========== COMMANDS ========== [EMPTYTEMP] User: Administrateur ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 116643 bytes User: All Users User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: LocalService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: Maison ->Temp folder emptied: 38355567 bytes ->Temporary Internet Files folder emptied: 865282 bytes ->Java cache emptied: 0 bytes ->FireFox cache emptied: 94440580 bytes ->Flash cache emptied: 2865 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 2218802 bytes %systemroot%\System32 .tmp files removed: 3072 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 36352 bytes Windows Temp folder emptied: 46574 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 93055900 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 165824 bytes RecycleBin emptied: 1958272 bytes Total Files Cleaned = 221,00 mb [EMPTYFLASH] User: Administrateur User: All Users User: Default User User: LocalService User: Maison ->Flash cache emptied: 0 bytes User: NetworkService Total Flash Files Cleaned = 0,00 mb C:\WINDOWS\System32\drivers\etc\Hosts moved successfully. HOSTS file reset successfully OTL by OldTimer - Version 3.2.20.4 log created on 01242011_172222 Files\Folders moved on Reboot... Registry entries deleted on Reboot...
  3. Ah bonne nouvelle J'ai reussi à terminer le scan et avoir les rapports d'OTL en mode sans échec, aucun problème... Le premier ! (OTL.txt) OTL logfile created on: 23/01/2011 21:40:37 - Run 1 OTL by OldTimer - Version 3.2.20.4 Folder = C:\Documents and Settings\Maison\Bureau Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 1 023,00 Mb Total Physical Memory | 843,00 Mb Available Physical Memory | 82,00% Memory free 1,00 Gb Paging File | 1,00 Gb Available in Paging File | 95,00% Paging File free Paging file location(s): C:\pagefile.sys 320 1536 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 25,70 Gb Total Space | 16,59 Gb Free Space | 64,55% Space Free | Partition Type: NTFS Drive E: | 48,83 Gb Total Space | 44,42 Gb Free Space | 90,97% Space Free | Partition Type: NTFS Computer Name: XPSP2-CC779FDA8 | User Name: Maison | Logged in as Administrator. Boot Mode: SafeMode | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2011/01/23 18:48:19 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Maison\Bureau\OTL.exe PRC - [2008/04/14 03:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe ========== Modules (SafeList) ========== MOD - [2011/01/23 18:48:19 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Maison\Bureau\OTL.exe MOD - [2010/12/29 01:42:04 | 000,285,480 | ---- | M] (COMODO) -- C:\WINDOWS\system32\guard32.dll ========== Win32 Services (SafeList) ========== SRV - File not found [Disabled | Stopped] -- -- (HidServ) SRV - [2011/01/21 15:45:35 | 001,803,224 | ---- | M] (COMODO) [Auto | Stopped] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent) SRV - [2011/01/09 13:52:48 | 000,310,640 | ---- | M] (CybelSoft) [On_Demand | Stopped] -- C:\Program Files\ma-config.com\maconfservice.exe -- (maconfservice) SRV - [2010/11/19 16:12:44 | 000,151,432 | ---- | M] (COMODO) [Disabled | Stopped] -- C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS.exe -- (CLPSLS) SRV - [2010/03/18 16:47:22 | 000,035,160 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe -- (aspnet_state) SRV - [2010/03/18 13:16:28 | 000,753,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400) SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2010/03/18 13:16:28 | 000,124,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetTcpPortSharing) SRV - [2008/04/09 21:42:00 | 000,492,896 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Acronis\Fomatik\TrueImageTryStartService.exe -- (TryAndDecideService) SRV - [2008/04/09 20:14:18 | 000,431,384 | ---- | M] (Acronis) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc) SRV - [2006/10/05 13:10:12 | 000,009,216 | ---- | M] (Agere Systems) [Disabled | Stopped] -- C:\WINDOWS\system32\agrsmsvc.exe -- (AgereModemAudio) ========== Driver Services (SafeList) ========== DRV - [2011/01/13 19:21:43 | 000,094,784 | ---- | M] (COMODO) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\inspect.sys -- (Inspect) DRV - [2011/01/13 19:21:42 | 000,027,576 | ---- | M] (COMODO) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\cmdhlp.sys -- (cmdHlp) DRV - [2011/01/13 19:21:41 | 000,239,368 | ---- | M] (COMODO) [File_System | System | Stopped] -- C:\WINDOWS\system32\drivers\cmdGuard.sys -- (cmdGuard) DRV - [2011/01/13 19:21:41 | 000,015,592 | ---- | M] (COMODO) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\cmderd.sys -- (cmderd) DRV - [2010/12/15 19:27:39 | 000,441,760 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\timntr.sys -- (timounter) DRV - [2010/12/15 19:27:39 | 000,044,384 | ---- | M] (Acronis) [File_System | Auto | Stopped] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter) DRV - [2010/12/15 19:27:34 | 000,132,224 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\snapman.sys -- (snapman) DRV - [2010/12/15 19:27:28 | 000,368,480 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\tdrpman.sys -- (tdrpman) DRV - [2010/10/22 07:23:22 | 009,623,680 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2010/08/30 11:19:54 | 000,014,336 | ---- | M] (CybelSoft) [Kernel | On_Demand | Stopped] -- C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys -- (driverhardwarev2) DRV - [2010/02/11 11:59:48 | 000,023,192 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\xfilt.sys -- (xfilt) DRV - [2010/02/11 11:59:18 | 000,013,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\videX32.sys -- (videX32) DRV - [2010/01/05 17:38:46 | 000,133,448 | ---- | M] (COMODO Security Solutions Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\cfrmd.sys -- (CFRMD) DRV - [2008/09/24 10:40:22 | 004,122,368 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2007/07/16 14:49:34 | 001,212,288 | ---- | M] (Agere Systems) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem) DRV - [2006/09/24 14:28:46 | 000,005,248 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan) DRV - [2002/09/16 18:07:24 | 000,004,228 | ---- | M] (PowerQuest Corporation) [Kernel | System | Stopped] -- C:\WINDOWS\System32\drivers\PQNTDRV.sys -- (PQNTDrv) DRV - [1996/04/03 20:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = Google Toolbar IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = Google IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.startup.homepage: "http://www.google.fr" FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 FF - prefs.js..extensions.enabledItems: [email protected]:1.0 FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.2 FF - prefs.js..extensions.enabledItems: {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}:0.9.7.2 FF - prefs.js..extensions.enabledItems: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}:20100908 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23 FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:1.6.6.20090220 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/12/20 16:12:13 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/01/05 15:01:12 | 000,000,000 | ---D | M] [2010/12/15 18:47:00 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Maison\Application Data\Mozilla\Extensions [2011/01/23 18:43:03 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Maison\Application Data\Mozilla\Firefox\Profiles\4abdmqtt.default\extensions [2010/12/27 16:18:17 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Maison\Application Data\Mozilla\Firefox\Profiles\4abdmqtt.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2010/12/19 22:46:30 | 000,000,000 | ---D | M] (WOT) -- C:\Documents and Settings\Maison\Application Data\Mozilla\Firefox\Profiles\4abdmqtt.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2010/12/15 19:34:56 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Maison\Application Data\Mozilla\Firefox\Profiles\4abdmqtt.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2010/12/19 22:45:26 | 000,000,000 | ---D | M] (Download Statusbar) -- C:\Documents and Settings\Maison\Application Data\Mozilla\Firefox\Profiles\4abdmqtt.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389} [2011/01/23 18:43:03 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2010/12/15 19:19:44 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [2010/12/27 16:18:04 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} [2010/12/15 19:07:29 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2011/01/05 20:01:05 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION [2010/11/12 18:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010/12/17 21:23:29 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml [2010/12/17 21:23:29 | 000,001,822 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml [2010/12/17 21:23:29 | 000,000,757 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml [2010/12/17 21:23:29 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml [2010/12/17 21:23:29 | 000,000,956 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml O1 HOSTS File: ([2001/08/24 13:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO) O4 - HKLM..\Run: [KernelFaultCheck] File not found O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: MemCheckBoxInRunDlg = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMBalloonTip = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWelcomeScreen = 1 O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1295622852015 (WUWebControl Class) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1 O18 - Protocol\Handler\cdo {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Folders\PKMCDO.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O20 - AppInit_DLLs: (C:\WINDOWS\system32\guard32.dll) - C:\WINDOWS\system32\guard32.dll (COMODO) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Ma page d'accueil) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Maison\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Maison\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O30 - LSA: Authentication Packages - (relog_ap) - C:\WINDOWS\System32\relog_ap.dll (Acronis) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010/12/15 18:27:44 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: HidServ - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation) Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.) Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.) Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.) Drivers32: vidc.i420 - C:\WINDOWS\System32\i420vfw.dll (www.helixcommunity.org) Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation) Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation) Drivers32: vidc.yv12 - C:\WINDOWS\System32\yv12vfw.dll (www.helixcommunity.org) Unable to start service SrService! ========== Files/Folders - Created Within 30 Days ========== [2011/01/23 21:19:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Maison\Application Data\VitySoft [2011/01/23 19:20:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Maison\Recent [2011/01/23 18:47:57 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Maison\Bureau\OTL.exe [2011/01/23 18:47:09 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Maison\PrivacIE [2011/01/23 11:20:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Maison\Local Settings\Application Data\PCHealth [2011/01/22 12:01:56 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe [2011/01/21 17:58:12 | 000,272,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys [2011/01/21 17:57:29 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys [2011/01/21 17:56:27 | 000,455,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys [2011/01/21 17:56:16 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll [2011/01/21 17:55:23 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll [2011/01/21 17:55:23 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll [2011/01/21 17:55:17 | 002,192,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe [2011/01/21 17:55:16 | 000,736,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll [2011/01/21 17:55:15 | 002,148,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe [2011/01/21 17:55:14 | 002,026,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe [2011/01/21 17:53:15 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys [2011/01/21 17:51:40 | 000,354,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winhttp.dll [2011/01/21 17:51:09 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll [2011/01/21 17:46:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2011/01/21 17:33:43 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2011/01/21 17:33:18 | 000,000,000 | ---D | C] -- C:\Program Files\msn [2011/01/21 17:33:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas [2011/01/21 17:33:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits [2011/01/21 17:29:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic [2011/01/21 17:24:02 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$ [2011/01/21 17:02:02 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Maison\IETldCache [2011/01/21 16:43:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2011/01/21 16:42:29 | 011,076,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll [2011/01/21 16:42:29 | 001,985,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll [2011/01/21 16:42:29 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll [2011/01/21 16:42:29 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll [2011/01/21 16:42:29 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll [2011/01/21 16:42:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2011/01/21 16:41:07 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2011/01/21 16:17:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage [2011/01/17 16:03:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Google [2011/01/17 16:02:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Maison\Application Data\Google [2011/01/17 16:01:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Google Earth [2011/01/17 15:58:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Maison\Local Settings\Application Data\Temp [2011/01/17 15:58:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Google [2011/01/17 15:58:21 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2011/01/17 15:58:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Maison\Local Settings\Application Data\Google [2011/01/13 22:35:06 | 000,000,000 | ---D | C] -- C:\symbols [2011/01/13 22:07:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Maison\Application Data\Auslogics [2011/01/13 22:03:20 | 000,000,000 | ---D | C] -- C:\Program Files\VIA [2011/01/13 22:03:04 | 000,023,192 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\drivers\xfilt.sys [2011/01/13 22:03:03 | 000,013,976 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\drivers\videX32.sys [2011/01/13 21:59:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2011/01/13 21:59:08 | 000,888,424 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispco32.dll [2011/01/13 21:59:08 | 000,813,672 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgenco32.dll [2011/01/13 21:37:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump [2011/01/13 21:04:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\fr-FR [2011/01/13 20:52:55 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2011/01/13 20:51:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Debugging Tools for Windows (x86) [2011/01/13 20:51:32 | 000,000,000 | ---D | C] -- C:\Program Files\Debugging Tools for Windows (x86) [2011/01/13 20:50:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Application Verifier [2011/01/13 20:50:47 | 000,000,000 | ---D | C] -- C:\Program Files\Application Verifier [2011/01/13 20:44:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft Windows SDK v7.1 [2011/01/13 20:44:41 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SDKs [2011/01/13 20:22:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ma-config.com [2011/01/13 20:22:26 | 000,000,000 | ---D | C] -- C:\Program Files\ma-config.com [2011/01/13 20:22:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ma-config.com [2011/01/13 19:29:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Maison\Local Settings\Application Data\COMODO [2011/01/13 19:18:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Maison\Menu Démarrer\Programmes\SpeedFan [2011/01/13 19:18:55 | 000,000,000 | ---D | C] -- C:\Program Files\SpeedFan [2011/01/11 01:27:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Maison\Bureau\Video maman [2011/01/11 01:27:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Maison\Bureau\Foto maman [2011/01/11 00:31:38 | 000,000,000 | ---D | C] -- C:\Program Files\MediaInfo [2011/01/11 00:31:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Maison\Menu Démarrer\Programmes\MediaInfo [2011/01/11 00:28:11 | 000,719,872 | ---- | C] (Abysmal Software) -- C:\WINDOWS\System32\devil.dll [2011/01/11 00:28:11 | 000,369,152 | ---- | C] (The Public) -- C:\WINDOWS\System32\avisynth.dll [2011/01/11 00:28:10 | 000,070,656 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\yv12vfw.dll [2011/01/11 00:28:10 | 000,070,656 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\i420vfw.dll [2011/01/11 00:28:09 | 000,000,000 | ---D | C] -- C:\Program Files\AviSynth 2.5 [2011/01/11 00:26:39 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll [2011/01/11 00:26:39 | 000,216,064 | RHS- | C] (MONOGRAM Multimedia, s.r.o.) -- C:\WINDOWS\System32\nbDX.dll [2011/01/11 00:26:39 | 000,186,880 | RHS- | C] (RadLight) -- C:\WINDOWS\System32\RLOgg.ax [2011/01/11 00:26:39 | 000,179,200 | RHS- | C] (Gabest) -- C:\WINDOWS\System32\DiracSplitter.ax [2011/01/11 00:26:39 | 000,169,472 | RHS- | C] (Gabest) -- C:\WINDOWS\System32\MatroskaDX.ax [2011/01/11 00:26:39 | 000,163,328 | RHS- | C] (Gabest) -- C:\WINDOWS\System32\flvDX.dll [2011/01/11 00:26:39 | 000,161,792 | RHS- | C] (Gabest) -- C:\WINDOWS\System32\RealMediaDX.ax [2011/01/11 00:26:39 | 000,123,904 | RHS- | C] (CoreCodec) -- C:\WINDOWS\System32\AVCDX.ax [2011/01/11 00:26:39 | 000,092,672 | RHS- | C] (RadLight) -- C:\WINDOWS\System32\RLVorbisDec.ax [2011/01/11 00:26:39 | 000,090,112 | RHS- | C] (-) -- C:\WINDOWS\System32\TTADSSplitter.ax [2011/01/11 00:26:39 | 000,090,112 | RHS- | C] (-) -- C:\WINDOWS\System32\TTADSDecoder.ax [2011/01/11 00:26:39 | 000,067,584 | RHS- | C] (RadLight, LLC) -- C:\WINDOWS\System32\RLTheoraDec.ax [2011/01/11 00:26:39 | 000,031,232 | RHS- | C] (Hans Mayerl) -- C:\WINDOWS\System32\msfDX.dll [2011/01/11 00:26:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\SUPER © Version 2010.bld.42 (Nov 7, 2010) [2011/01/11 00:26:33 | 000,000,000 | ---D | C] -- C:\Program Files\eRightSoft [2011/01/11 00:05:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\TrackZapper.com [2011/01/11 00:05:49 | 000,917,504 | ---- | C] (Macromedia, Inc.) -- C:\WINDOWS\System32\Flash.ocx [2011/01/11 00:05:49 | 000,188,416 | ---- | C] (SoftShape Development) -- C:\WINDOWS\System32\actsplash.ocx [2011/01/11 00:05:44 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\VB6STKIT.DLL [2011/01/11 00:05:44 | 000,000,000 | ---D | C] -- C:\Program Files\Connection Booster [2011/01/10 23:37:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\PC Security Test 2010 [2011/01/10 23:37:06 | 000,000,000 | ---D | C] -- C:\Program Files\AxBx [2011/01/10 22:50:12 | 000,000,000 | -H-D | C] -- C:\VritualRoot [2011/01/10 22:49:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\COMODO [2011/01/10 21:05:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Comodo [2011/01/10 20:36:37 | 000,974,848 | ---- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpost_p01b.dll [2011/01/10 20:36:37 | 000,737,280 | ---- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hposwia_p01b.dll [2011/01/10 20:36:37 | 000,372,736 | ---- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hppldcoi.dll [2011/01/10 20:36:37 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll [2011/01/10 20:36:37 | 000,307,200 | ---- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hposc_p01a.dll [2011/01/10 20:36:29 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\HP [2011/01/10 20:36:27 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard [2011/01/10 20:36:15 | 000,000,000 | -H-D | C] -- C:\Config.Msi [2011/01/05 15:00:44 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2011/01/05 14:57:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TEMP [2011/01/02 18:23:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Maison\Local Settings\Application Data\Identities [2011/01/02 15:34:13 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Symantec Shared [2010/12/29 01:42:04 | 000,285,480 | ---- | C] (COMODO) -- C:\WINDOWS\System32\guard32.dll [2010/12/29 01:41:28 | 000,094,784 | ---- | C] (COMODO) -- C:\WINDOWS\System32\drivers\inspect.sys [2010/12/29 01:41:28 | 000,027,576 | ---- | C] (COMODO) -- C:\WINDOWS\System32\drivers\cmdhlp.sys [2010/12/29 01:41:26 | 000,239,368 | ---- | C] (COMODO) -- C:\WINDOWS\System32\drivers\cmdGuard.sys [2010/12/29 01:41:26 | 000,015,592 | ---- | C] (COMODO) -- C:\WINDOWS\System32\drivers\cmderd.sys [2010/12/28 18:41:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt [2010/12/27 17:53:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Symantec [2010/12/27 17:53:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Norton [2010/12/27 17:53:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NortonInstaller [2010/12/27 16:44:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Maison\My Documents [2010/12/27 16:42:54 | 000,000,000 | ---D | C] -- C:\Program Files\WolfQuest [2010/12/26 16:56:59 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusd.dll [2010/12/26 16:56:59 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusb.dll [2010/12/25 05:21:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Maison\Local Settings\Application Data\Help [2010/12/25 05:21:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Maison\Application Data\Help [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2011/01/23 21:39:47 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011/01/23 21:22:46 | 000,001,050 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2011/01/23 21:22:32 | 000,464,864 | ---- | M] () -- C:\WINDOWS\System32\drivers\sfi.dat [2011/01/23 20:18:27 | 000,567,962 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat [2011/01/23 20:18:27 | 000,495,670 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2011/01/23 20:18:27 | 000,100,988 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat [2011/01/23 20:18:27 | 000,084,812 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2011/01/23 20:16:28 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011/01/23 20:03:00 | 000,001,054 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2011/01/23 18:48:19 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Maison\Bureau\OTL.exe [2011/01/23 11:16:02 | 000,130,888 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011/01/22 14:37:18 | 000,000,524 | ---- | M] () -- C:\Documents and Settings\Maison\Mes documents\conv stage derrien.jpg.lnk [2011/01/21 19:15:20 | 000,000,446 | ---- | M] () -- C:\WINDOWS\tasks\COMODO System Cleaner Update.job [2011/01/21 17:46:52 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2011/01/21 17:29:02 | 000,252,240 | RHS- | M] () -- C:\ntldr [2011/01/21 17:01:59 | 000,000,824 | ---- | M] () -- C:\Documents and Settings\Maison\Application Data\Microsoft\Internet Explorer\Quick Launch\Démarrer Internet Explorer.lnk [2011/01/21 15:26:31 | 000,879,047 | ---- | M] () -- C:\Documents and Settings\Maison\Bureau\SecurityCheck.exe [2011/01/20 17:43:31 | 000,020,337 | ---- | M] () -- C:\Documents and Settings\Maison\Bureau\2882465886_2_3.jpg [2011/01/13 22:59:01 | 000,000,212 | -HS- | M] () -- C:\boot.ini [2011/01/13 21:59:43 | 000,240,592 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin [2011/01/13 21:59:43 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin [2011/01/13 21:59:39 | 000,240,592 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin [2011/01/13 19:21:43 | 000,094,784 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\inspect.sys [2011/01/13 19:21:42 | 000,027,576 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\cmdhlp.sys [2011/01/13 19:21:41 | 000,239,368 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\cmdGuard.sys [2011/01/13 19:21:41 | 000,015,592 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\cmderd.sys [2011/01/13 19:18:56 | 000,000,691 | ---- | M] () -- C:\Documents and Settings\Maison\Bureau\SpeedFan.lnk [2011/01/13 19:18:55 | 000,000,045 | ---- | M] () -- C:\WINDOWS\System32\initdebug.nfo [2011/01/11 12:27:28 | 000,035,844 | ---- | M] () -- C:\Documents and Settings\Maison\Mes documents\enveloppe.xps [2011/01/11 12:25:30 | 000,002,559 | ---- | M] () -- C:\Documents and Settings\Maison\Bureau\Microsoft Word.lnk [2011/01/11 12:10:25 | 000,020,992 | ---- | M] () -- C:\Documents and Settings\Maison\Mes documents\demande RV.doc [2011/01/11 01:30:41 | 000,000,008 | ---- | M] () -- C:\WINDOWS\crpf.bin [2011/01/11 01:30:41 | 000,000,004 | ---- | M] () -- C:\WINDOWS\crpf_sdum.bin [2011/01/11 01:25:39 | 000,124,970 | ---- | M] () -- C:\WINDOWS\hpoins32.dat [2011/01/11 00:26:39 | 000,001,674 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\SUPER ©.lnk [2011/01/10 21:05:36 | 000,001,653 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\COMODO Internet Security.lnk [2011/01/10 21:05:05 | 000,000,936 | ---- | M] () -- C:\Documents and Settings\Maison\Application Data\Microsoft\Internet Explorer\Quick Launch\COMODO GeekBuddy.lnk [2011/01/10 20:36:10 | 000,124,827 | ---- | M] () -- C:\WINDOWS\hpoins32.dat.temp [2011/01/04 13:07:41 | 000,020,992 | ---- | M] () -- C:\Documents and Settings\Maison\Mes documents\CPAM modif carte Megan.doc [2010/12/29 01:42:04 | 000,285,480 | ---- | M] (COMODO) -- C:\WINDOWS\System32\guard32.dll [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files Created - No Company Name ========== [2011/01/22 14:37:40 | 000,000,524 | ---- | C] () -- C:\Documents and Settings\Maison\Mes documents\conv stage derrien.jpg.lnk [2011/01/22 12:23:44 | 000,007,860 | ---- | C] () -- C:\WINDOWS\_000000_.tmp.dll [2011/01/21 17:01:59 | 000,000,824 | ---- | C] () -- C:\Documents and Settings\Maison\Application Data\Microsoft\Internet Explorer\Quick Launch\Démarrer Internet Explorer.lnk [2011/01/21 15:26:11 | 000,879,047 | ---- | C] () -- C:\Documents and Settings\Maison\Bureau\SecurityCheck.exe [2011/01/20 17:37:09 | 000,020,337 | ---- | C] () -- C:\Documents and Settings\Maison\Bureau\2882465886_2_3.jpg [2011/01/17 15:58:31 | 000,001,054 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2011/01/17 15:58:31 | 000,001,050 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2011/01/13 19:18:56 | 000,000,691 | ---- | C] () -- C:\Documents and Settings\Maison\Bureau\SpeedFan.lnk [2011/01/13 19:18:54 | 000,000,045 | ---- | C] () -- C:\WINDOWS\System32\initdebug.nfo [2011/01/11 12:27:26 | 000,035,844 | ---- | C] () -- C:\Documents and Settings\Maison\Mes documents\enveloppe.xps [2011/01/11 12:05:21 | 000,020,992 | ---- | C] () -- C:\Documents and Settings\Maison\Mes documents\demande RV.doc [2011/01/11 01:30:41 | 000,000,008 | ---- | C] () -- C:\WINDOWS\crpf.bin [2011/01/11 01:30:41 | 000,000,004 | ---- | C] () -- C:\WINDOWS\crpf_sdum.bin [2011/01/11 00:28:10 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll [2011/01/11 00:26:39 | 000,227,328 | RHS- | C] () -- C:\WINDOWS\System32\ac3DX.ax [2011/01/11 00:26:39 | 000,175,104 | RHS- | C] () -- C:\WINDOWS\System32\CoreAAC.ax [2011/01/11 00:26:39 | 000,120,832 | RHS- | C] () -- C:\WINDOWS\System32\MPCDx.ax [2011/01/11 00:26:39 | 000,107,520 | RHS- | C] () -- C:\WINDOWS\System32\RLMPCDec.ax [2011/01/11 00:26:39 | 000,097,280 | RHS- | C] () -- C:\WINDOWS\System32\FLACDX.ax [2011/01/11 00:26:39 | 000,081,920 | RHS- | C] () -- C:\WINDOWS\System32\aac_parser.ax [2011/01/11 00:26:39 | 000,070,656 | RHS- | C] () -- C:\WINDOWS\System32\RLAPEDec.ax [2011/01/11 00:26:39 | 000,051,712 | RHS- | C] () -- C:\WINDOWS\System32\RLSpeexDec.ax [2011/01/11 00:26:39 | 000,001,674 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\SUPER ©.lnk [2011/01/11 00:05:49 | 000,389,120 | ---- | C] () -- C:\WINDOWS\System32\actskn43.ocx [2011/01/10 22:48:28 | 000,464,864 | ---- | C] () -- C:\WINDOWS\System32\drivers\sfi.dat [2011/01/10 21:05:36 | 000,001,653 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\COMODO Internet Security.lnk [2011/01/10 21:05:05 | 000,000,936 | ---- | C] () -- C:\Documents and Settings\Maison\Application Data\Microsoft\Internet Explorer\Quick Launch\COMODO GeekBuddy.lnk [2011/01/10 20:35:52 | 000,124,970 | ---- | C] () -- C:\WINDOWS\hpoins32.dat [2011/01/10 20:35:52 | 000,001,006 | ---- | C] () -- C:\WINDOWS\hpomdl32.dat [2011/01/05 15:01:12 | 000,002,347 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Adobe Reader 9.lnk [2011/01/04 12:58:11 | 000,020,992 | ---- | C] () -- C:\Documents and Settings\Maison\Mes documents\CPAM modif carte Megan.doc [2010/12/15 19:19:43 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2010/12/15 19:06:06 | 000,000,385 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2010/12/15 19:00:09 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll [2010/12/15 18:59:13 | 000,004,923 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log [2010/02/08 07:33:04 | 000,359,320 | ---- | C] () -- C:\WINDOWS\System32\vfprintpthelper.dll [1996/04/03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys ========== Custom Scans ========== < %SYSTEMDRIVE%\*.* > [2010/12/15 18:27:44 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2011/01/13 22:59:01 | 000,000,212 | -HS- | M] () -- C:\boot.ini [2001/08/24 13:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2010/12/15 18:27:44 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2011/01/10 21:03:19 | 000,037,638 | ---- | M] () -- C:\Install.log.txt [2010/12/15 18:27:44 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010/12/15 18:27:44 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2004/08/03 22:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2011/01/21 17:29:02 | 000,252,240 | RHS- | M] () -- C:\ntldr [2011/01/23 21:39:33 | 335,544,320 | -HS- | M] () -- C:\pagefile.sys < %systemroot%\*. /mp /s > < %systemroot%\system32\*.dll /lockedfiles > [1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ] < %systemroot%\Tasks\*.job /lockedfiles > < %systemroot%\System32\config\*.sav > [2010/12/15 19:17:59 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav [2010/12/15 19:17:59 | 000,663,552 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav [2010/12/15 19:17:59 | 000,434,176 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav < %systemroot%\system32\drivers\*.sys /90 > [2011/01/13 19:21:41 | 000,015,592 | ---- | M] (COMODO) -- C:\WINDOWS\system32\drivers\cmderd.sys [2011/01/13 19:21:41 | 000,239,368 | ---- | M] (COMODO) -- C:\WINDOWS\system32\drivers\cmdGuard.sys [2011/01/13 19:21:42 | 000,027,576 | ---- | M] (COMODO) -- C:\WINDOWS\system32\drivers\cmdhlp.sys [2011/01/13 19:21:43 | 000,094,784 | ---- | M] (COMODO) -- C:\WINDOWS\system32\drivers\inspect.sys [2010/12/20 18:08:40 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\system32\drivers\mbam.sys [2010/12/20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys [2010/12/15 19:27:34 | 000,132,224 | ---- | M] (Acronis) -- C:\WINDOWS\system32\drivers\snapman.sys [2010/12/15 19:27:28 | 000,368,480 | ---- | M] (Acronis) -- C:\WINDOWS\system32\drivers\tdrpman.sys [2010/12/15 19:27:39 | 000,044,384 | ---- | M] (Acronis) -- C:\WINDOWS\system32\drivers\tifsfilt.sys [2010/12/15 19:27:39 | 000,441,760 | ---- | M] (Acronis) -- C:\WINDOWS\system32\drivers\timntr.sys [1 C:\WINDOWS\system32\drivers\*.tmp files -> C:\WINDOWS\system32\drivers\*.tmp -> ] < HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU > < HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs > HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2011-01-22 16:53:53 ========== Alternate Data Streams ========== @Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C31F31E6 < End of report > Et Extras.txt : OTL Extras logfile created on: 23/01/2011 21:40:37 - Run 1 OTL by OldTimer - Version 3.2.20.4 Folder = C:\Documents and Settings\Maison\Bureau Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 1 023,00 Mb Total Physical Memory | 843,00 Mb Available Physical Memory | 82,00% Memory free 1,00 Gb Paging File | 1,00 Gb Available in Paging File | 95,00% Paging File free Paging file location(s): C:\pagefile.sys 320 1536 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 25,70 Gb Total Space | 16,59 Gb Free Space | 64,55% Space Free | Partition Type: NTFS Drive E: | 48,83 Gb Total Space | 44,42 Gb Free Space | 90,97% Space Free | Partition Type: NTFS Computer Name: XPSP2-CC779FDA8 | User Name: Maison | Logged in as Administrator. Boot Mode: SafeMode | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) ========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [cmd] -- cmd.exe /k "cd %L" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [Personnaliser ce dossier] -- IESHWIZ.EXE %1 (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusOverride" = 1 "FirewallOverride" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "DisablePagingExecutive" = 1 "LargeSystemCache" = 0 "SecondLevelDataCache" = 512 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] ========== System Restore Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 4 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 0 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 "DisableUnicastResponsesToMulticastBroadcast" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 0 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 "DisableUnicastResponsesToMulticastBroadcast" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "48113:TCP" = 48113:TCP:LocalSubNet:Enabled:maconfig_tcp "48113:UDP" = 48113:UDP:LocalSubNet:Enabled:maconfig_udp ========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe -- (Hewlett-Packard) "C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe -- (Hewlett-Packard) "C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard) "C:\Program Files\ma-config.com\maconfservice.exe" = C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice -- (CybelSoft) ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{043F86B7-EE12-3399-B2CA-D0B603D87963}" = Microsoft .NET Framework 4 Extended FRA Language Pack "{0812B697-3B0A-4392-B975-E415FC16C71E}" = HP Photosmart C5300 All-In-One Driver 12.0 Rel .4 "{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended "{0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}" = Microsoft .NET Framework 4 Client Profile FRA Language Pack "{0FA44E79-CD7D-4E8D-A2EE-26FE05F509B6}" = OpenOffice.org 3.1 "{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime "{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 "{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform "{26A24AE4-039D-4CA4-87B4-2F83216016F0}" = Java 6 Update 16 "{26A24AE4-039D-4CA4-87B4-2F83216018F0}" = Java 6 Update 18 "{26A24AE4-039D-4CA4-87B4-2F83216018FF}" = Java 6 Update 23 "{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{39556553-8C77-4C5E-8F30-4083274948A2}" = Application Verifier "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support "{47ECCB1F-2811-49C0-B6A7-26778639ABA0}" = 32 Bit HP CIO Components Installer "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{5D8A40E9-8E59-3761-98DE-2C9F7303FA17}" = Microsoft Windows SDK for Windows 7 Redistributable Components for Windows Debugging Tools (30514) "{633A06C3-B709-479A-AAB3-5EE94AD9EE4B}" = Acronis True Image Home "{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update "{699C970F-1E17-3CD8-A2EA-87AB9EDEDFF4}" = Microsoft Windows SDK for Windows 7 Samples (30514) "{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PartitionMagic "{7AFFE35D-047A-3D27-B204-1CD849933C02}" = Microsoft Windows SDK for Windows 7 Common Utilities (30514) "{83C4CC25-EEFA-4E9F-A428-E1764266442E}" = PS_AIO_04_C5300_Software_Min "{911B040C-6000-11D3-8CFE-0050048383C9}" = Microsoft Word 2002 "{928D2FB1-291A-362B-89A4-7075A9D904A4}" = Microsoft Windows SDK for Windows 7 (7.1) "{93665FB0-2A3D-47E1-AB9A-1925130924BB}" = Ma-Config.com "{9CCCFD9C-248F-47FE-9496-1680E3E5C163}" = Scan "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC13BA3A-336B-45a4-B3FE-2D3058A7B533}" = Toolbox "{AC76BA86-7AD7-1036-7B44-A94000000001}" = Adobe Reader 9.4.1 - Français "{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panneau de configuration NVIDIA 260.99 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Pilote graphique 260.99 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 135.36 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C7705C79-92DE-4B48-A64B-98C56E336191}" = COMODO System - Cleaner "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D09605BE-5587-4B0C-86C8-69B5092CB80F}" = Debugging Tools for Windows (x86) "{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = Auslogics Disk Defrag "{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio "{FB4F9000-04FC-11E0-85D2-001AA037B01E}" = Google Earth Plug-in "{FD8E178D-8B4E-42DA-B434-EFF270329B1C}" = COMODO Internet Security "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.5 "Agere Systems Soft Modem" = Agere Systems PCI Soft Modem "CCleaner" = CCleaner "COMODO GeekBuddy" = COMODO GeekBuddy "Connection Booster_is1" = Connection Booster 4.0.0.0 "HijackThis" = HijackThis 2.0.2 "ie8" = Windows Internet Explorer 8 "InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Gestionnaire de périphériques de plate-forme "InstallShield_{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PowerQuest PartitionMagic 8.0 Demo "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware "MediaInfo" = MediaInfo 0.7.39 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Client Profile FRA Language Pack" = Module linguistique Microsoft .NET Framework 4 Client Profile FRA "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended "Microsoft .NET Framework 4 Extended FRA Language Pack" = Module linguistique Microsoft .NET Framework 4 Extended FRA "Mozilla Firefox (3.6.13)" = Mozilla Firefox (3.6.13) "NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager "PC SECURITY TEST 2010_is1" = PC SECURITY TEST 2010 "Revo Uninstaller" = Revo Uninstaller 1.85 "SDKSetup_7.1.7600.0.30514" = Microsoft Windows SDK for Windows 7 (7.1) "SpeedFan" = SpeedFan (remove only) "SUPER ©" = SUPER © Version 2010.bld.42 (Nov 7, 2010) "VLC media player" = VLC media player 1.1.5 "WIC" = Windows Imaging Component "Windows XP Service" = Windows XP Service Pack 3 "WinRAR archiver" = Logiciel d'archivage WinRAR ========== Last 10 Event Log Errors ========== [ Application Events ] Error - 21/01/2011 10:49:20 | Computer Name = XPSP2-CC779FDA8 | Source = crypt32 | ID = 131080 Description = Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>'>http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>'>http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>'>http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>'>http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>'>http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>'>http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : Cette connexion réseau n'existe pas. Error - 21/01/2011 11:10:41 | Computer Name = XPSP2-CC779FDA8 | Source = crypt32 | ID = 131080 Description = Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : Le délai imparti à l'opération est dépassé Error - 21/01/2011 11:10:42 | Computer Name = XPSP2-CC779FDA8 | Source = crypt32 | ID = 131080 Description = Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : Cette connexion réseau n'existe pas. Error - 21/01/2011 11:10:45 | Computer Name = XPSP2-CC779FDA8 | Source = crypt32 | ID = 131080 Description = Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : Cette connexion réseau n'existe pas. Error - 21/01/2011 11:10:45 | Computer Name = XPSP2-CC779FDA8 | Source = crypt32 | ID = 131080 Description = Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : Cette connexion réseau n'existe pas. Error - 21/01/2011 12:02:54 | Computer Name = XPSP2-CC779FDA8 | Source = crypt32 | ID = 131080 Description = Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : Cette opération s'est terminée car le délai d'attente a expiré. Error - 21/01/2011 12:02:54 | Computer Name = XPSP2-CC779FDA8 | Source = crypt32 | ID = 131080 Description = Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : Cette connexion réseau n'existe pas. Error - 22/01/2011 12:52:10 | Computer Name = XPSP2-CC779FDA8 | Source = HotFixInstaller | ID = 5000 Description = EventType visualstudio8setup, P1 microsoft .net framework 2.0-kb983583, P2 1036, P3 1605, P4 msi, P5 f, P6 9.0.40215.0, P7 install, P8 x86, P9 xp, P10 0. Error - 23/01/2011 06:18:04 | Computer Name = XPSP2-CC779FDA8 | Source = .NET Runtime Optimization Service | ID = 1103 Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown Error - 23/01/2011 15:16:11 | Computer Name = XPSP2-CC779FDA8 | Source = MsiInstaller | ID = 11704 Description = Produit : Microsoft .NET Framework 4 Client Profile -- Erreur 1704. L'installation de Microsoft .NET Framework 4 Extended est suspendue. Vous devez annuler les modifications apportée par cette installation pour continuer. Voulez-vous annuler les modifications ? [ System Events ] Error - 23/01/2011 16:22:55 | Computer Name = XPSP2-CC779FDA8 | Source = SRService | ID = 104 Description = Le processus d'initialisation de la restauration du système a échoué. Error - 23/01/2011 16:22:55 | Computer Name = XPSP2-CC779FDA8 | Source = Service Control Manager | ID = 7023 Description = Le service Service de restauration système s'est arrêté avec l'erreur : %%2 Error - 23/01/2011 16:39:55 | Computer Name = XPSP2-CC779FDA8 | Source = SRService | ID = 104 Description = Le processus d'initialisation de la restauration du système a échoué. Error - 23/01/2011 16:40:13 | Computer Name = XPSP2-CC779FDA8 | Source = DCOM | ID = 10005 Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service netman avec les arguments "" pour démarrer le serveur : {BA126AE5-2166-11D1-B1D0-00805FC1270E} Error - 23/01/2011 16:40:24 | Computer Name = XPSP2-CC779FDA8 | Source = DCOM | ID = 10005 Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service EventSystem avec les arguments "" pour démarrer le serveur : {1BE1F766-5536-11D1-B726-00C04FB926AF} Error - 23/01/2011 16:41:02 | Computer Name = XPSP2-CC779FDA8 | Source = SRService | ID = 104 Description = Le processus d'initialisation de la restauration du système a échoué. Error - 23/01/2011 16:41:22 | Computer Name = XPSP2-CC779FDA8 | Source = Service Control Manager | ID = 7001 Description = Le service Client DHCP dépend du service NetBIOS sur TCP/IP qui n'a pas pu démarrer en raison de l'erreur : %%31 Error - 23/01/2011 16:41:22 | Computer Name = XPSP2-CC779FDA8 | Source = Service Control Manager | ID = 7001 Description = Le service Client DNS dépend du service Pilote du protocole TCP/IP qui n'a pas pu démarrer en raison de l'erreur : %%31 Error - 23/01/2011 16:41:22 | Computer Name = XPSP2-CC779FDA8 | Source = Service Control Manager | ID = 7023 Description = Le service Service de restauration système s'est arrêté avec l'erreur : %%2 Error - 23/01/2011 16:41:22 | Computer Name = XPSP2-CC779FDA8 | Source = Service Control Manager | ID = 7026 Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se charger : AFD AmdK7 cmdGuard cmdHlp Fips IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss Tcpip < End of report >
  4. Bonsoir, J'ai donc procédé comme convenu avec OTL.exe, il m'as scanné le PC quelques minutes, puis quand il affichait "scans complete" en bas a gauche de la fenetre, l'ordi s'est mis a ramer ( je suppose que c'est la création des rapports qui ai du à cela) et pour finir une petite fenetre rectangulaire s'est affiché indiquant : "L'exception unknown sofware exception (0xc00000fd) s'est produite dans l'application à l'emplacement 0x01006a23 Cliquez sur OK pour terminer le programme" Donc après celà j'ai cliquer sur Ok sans voir les rapports et explorer à crasher indiquant : "L'application n'a pas reussi à s'initialiser correctement (0xc000012d) " Et après l'ordinateur ne répondait plus du tout meme le gestionnaire des taches affichait un message du même type... J'ai reboot et tout refonctionner...
  5. Mais au final es ce que le fait que antivir met un peu plus de temps que comodo a faire ses mise à jours ne donne pas la première place à comodo ?
  6. Hum pour les mises à jour, je les ai désactiver parce que je ne voulais pas l'encombrer de tous les logiciels qu'il me propose style windows genius advantage truc du genre ^^'. J'ai installer le SP3 là, vous pensez que ca pourrais être la cause de mon problème? Ah ui, j'avais deux lignes bizarres dans msconfig un moment que j'ai reussi a retirer du registre car elles revenaient sans cesse, c'était des symboles bizarre genre carré, dans la clé load et run de windows... Voilà j'essayerais vos astuces dimanche soir Bon week-end à vous
  7. Bonjour Merci de me prendre en charge ! Bon voilà le rapport de SecurityCheck : Results of screen317's Security Check version 0.99.8 Windows XP Service Pack 2 Out of date service pack!! Internet Explorer 6 Out of date! `````````````````````````````` Antivirus/Firewall Check: Windows Security Center service is not running! This report may not be accurate! Antivirus up to date! (On Access scanning disabled!) ``````````````````````````````` Anti-malware/Other Utilities Check: Malwarebytes' Anti-Malware HijackThis 2.0.2 CCleaner COMODO System - Cleaner Java 6 Update 16 Java 6 Update 18 Java 6 Update 23 Out of date Java installed! Adobe Flash Player 10.0.45.2 Adobe Reader 9.4.1 - Français Out of date Adobe Reader installed! Mozilla Firefox (3.6.13) ```````````````````````````````` Process Check: objlist.exe by Laurent Comodo Firewall cmdagent.exe ``````````End of Log```````````` Et celui de MalwaresBytes : Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Version de la base de données: 5564 Windows 5.1.2600 Service Pack 2 Internet Explorer 6.0.2900.2180 21/01/2011 15:32:51 mbam-log-2011-01-21 (15-32-51).txt Type d'examen: Examen rapide Elément(s) analysé(s): 131924 Temps écoulé: 2 minute(s), 46 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté)
  8. Bonsoir:) Bon voilà j'ai une question qui me turlupine l'esprit! J'ai actuellement comodo internet security premium, et j'aimerais savoir ce qu'il vaut vraiment surtout niveau virus et compagnie... Avant j'avais antivir qui a une assez bonne réputation il me semble mais que j'ai délaissé parce qu'il ne faisait pas ses mises a jours ( ce qui est ennuyeux pour un antivirus^^') J'aimerais donc avoir vos différents avis sur ces deux logiciels de sécurité Merci!
  9. Toujours pas de nouvelles de cet antivirus? Je l'utilise et j'apprécie sa légèreté en tout cas Après antivir je ne l'utilise plus parce que la MAJ ne se faisait jamais... ^^'
  10. Bonsoir bonsoir Bon voilà j'ai un problème très désagréable depuis quelques semaines... Quand je lance une analyse antivirus, de sécurité en général, ou même une installation qui consomme peut être un peu trop, l'analyse ne se termine jamais et l'analyse se stop enfin du moins c'est ce que je pense car les fenêtres se "vident", il ne reste que les contours extérieur et intérieur et lorsque j'essaie de lancer le gestionnaire des taches, il me met des messages du type 'invalid argument' , 'processing error - read error', ' mémoire insuffisante ', "l'application n'a pas réussi à s'installer correctement")... Mon ordi devient quasiment inutilisable, le menu démarrer est incomplet, les programmes ne peuvent être lancés ("application win32 non valide"),Les icones disparaissent, les pages internet se 'vident' de leur texte et image... Parfois le PC se coupe net et affiche un écran bleu ( BSOD ) que j'ai analysé grâce a windbg mais qui me met que c'est à cause d'un driver de l'antivirus ou de l'application qui fait crasher l'ordi juste avant. Voilà en espérant que vous pourrez m'aider ^^'
  11. Bonjour bonjour Voilà mon sujet oublié : http://forum.zebulon.fr/analyses-de-securite-font-planter-mon-systeme-t175697.html&st=30 En esperant que vous pourrez m'aider ! ^^'
  12. Bonsoir, Après avoir surfé pendant des heures sur le net à la recherche d'une solution à mon problème je suis tombé sur ce topic, qui m'a fait espérer jusqu'à la dernière page Donc voilà j'ai exactement le même soucis! J'ai examiné ce que donné le message dans le BSOD avec winDbg, il me dit simplement que c'est à cause de mon antivirus au final, ou quoique je fasse avant le plantage il m'indiquera ce que je faisais juste avant mais pas l'origine réel du bug '-_- Sur deux disque indépendant ca me le fait même après plusieurs formatage... J'ai nettoyé toute mon unité, retirer la poussière, rajouter de la pâte thermique ( il n'y en avait plus beaucoup :/ ), mais rien n'y fait Aidez moi svp ^^' P.S: Je suis sur winXP SP2
×
×
  • Créer...