Aller au contenu

MehDiZz

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    15

  • Inscription

  • Dernière visite

Autres informations

  • Mes langues
    francais , anglais

MehDiZz's Achievements

Junior Member

Junior Member (3/12)

0

Réputation sur la communauté

  1. MehDiZz
    Bonjour Pour erunt je ne comprend pas trop
  2. MehDiZz
    D'accord merci , je m'en occupe mardi je n'aurai pas le temps se weekend merci encore
  3. MehDiZz
    bonjour J'ai installer PSI j'ai scanner mais pour mettre a jour les logiciels c'est pas comme sur l'image du lien
  4. MehDiZz
    aucun probleme dans les mises a jours merci
  5. MehDiZz
    Bonjour , Pour la version Java je prend la 32 ou 64 ?? pour Internet exporer je l'utilise jamais je suis sur mozilla mais je vais quand meme le mettre a jour
  6. MehDiZz
    All processes killed ========== OTL ========== Service HidServ stopped successfully! Service HidServ deleted successfully! Service AppMgmt stopped successfully! Service AppMgmt deleted successfully! HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully! Prefs.js: "Ask.com" removed from browser.search.defaultengine Prefs.js: "Ask.com" removed from browser.search.defaultenginename Prefs.js: "Ask.com" removed from browser.search.order.1 Prefs.js: "http://fr.ask.com?o=14200&l=dis" removed from browser.startup.homepage C:\Documents and Settings\mehdi B\Application Data\Mozilla\Firefox\Profiles\3a0i905a.default\searchplugins\askcom.xml moved successfully. C:\Documents and Settings\mehdi B\Application Data\Mozilla\Firefox\Profiles\3a0i905a.default\searchplugins\bigseekpro.xml moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}\ deleted successfully. C:\Program Files\AutocompletePro\AutocompletePro.dll moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\KernelFaultCheck deleted successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NPSStartup deleted successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\UserFaultCheck deleted successfully. Registry key HKEY_CURRENT_USER\\Software\Microsoft\Windows\CurrentVersion\Run not found. C:\Documents and Settings\All Users\Application Data\Badoo\Badoo Desktop\1.3.12.904\Badoo.Desktop.exe moved successfully. ========== SERVICES/DRIVERS ========== ========== REGISTRY ========== Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\\AutocompletePro3_is1 not found. Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\LimeWire\LimeWire.exe deleted successfully. Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\FrostWire\FrostWire.exe deleted successfully. Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\FrostWire not found. Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\LimeWire not found. ========== FILES ========== C:\WINDOWS\tasks\AppleSoftwareUpdate.job moved successfully. C:\WINDOWS\tasks\expressburnShakeIcon.job moved successfully. File\Folder C:\*.sqm not found. C:\Program Files\AutocompletePro\support@predictad.com\defaults\preferences folder moved successfully. C:\Program Files\AutocompletePro\support@predictad.com\defaults folder moved successfully. C:\Program Files\AutocompletePro\support@predictad.com\chrome\content folder moved successfully. C:\Program Files\AutocompletePro\support@predictad.com\chrome folder moved successfully. C:\Program Files\AutocompletePro\support@predictad.com folder moved successfully. C:\Program Files\AutocompletePro\chrome folder moved successfully. C:\Program Files\AutocompletePro folder moved successfully. C:\Documents and Settings\All Users\Application Data\Badoo\Badoo Desktop\1.3.12.904 folder moved successfully. C:\Documents and Settings\All Users\Application Data\Badoo\Badoo Desktop folder moved successfully. C:\Documents and Settings\All Users\Application Data\Badoo folder moved successfully. C:\Program Files\LimeWire\root\magnet10 folder moved successfully. C:\Program Files\LimeWire\root folder moved successfully. C:\Program Files\LimeWire\lib\avg folder moved successfully. C:\Program Files\LimeWire\lib folder moved successfully. C:\Program Files\LimeWire\.NetworkShare folder moved successfully. C:\Program Files\LimeWire folder moved successfully. C:\Program Files\FrostWire\plugins folder moved successfully. C:\Program Files\FrostWire folder moved successfully. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Default User ->Temp folder emptied: 0 bytes ->Flash cache emptied: 56502 bytes User: LocalService ->Temp folder emptied: 65984 bytes ->Flash cache emptied: 1359 bytes User: mehdi B ->Temp folder emptied: 101173 bytes ->Temporary Internet Files folder emptied: 122512751 bytes ->Java cache emptied: 10526811 bytes ->FireFox cache emptied: 94019785 bytes ->Flash cache emptied: 213267 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 1577007 bytes ->Flash cache emptied: 3692 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 1283040 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 0 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 65428300 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 282,00 mb [EMPTYFLASH] User: All Users User: Default User ->Flash cache emptied: 0 bytes User: LocalService ->Flash cache emptied: 0 bytes User: mehdi B ->Flash cache emptied: 0 bytes User: NetworkService ->Flash cache emptied: 0 bytes Total Flash Files Cleaned = 0,00 mb HOSTS file reset successfully OTL by OldTimer - Version 3.2.22.3 log created on 04192011_212525 Files\Folders moved on Reboot... Registry entries deleted on Reboot... euh non j'ai pas d'autres symptome enfin pas visible lol , non je suis de lyon pk?
  7. MehDiZz
    Voici le rapport Extrats OTL Extras logfile created on: 19/04/2011 13:07:42 - Run 1 OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\mehdi B\Bureau Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 1 022,00 Mb Total Physical Memory | 738,00 Mb Available Physical Memory | 72,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 87,00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 84,90 Gb Total Space | 44,51 Gb Free Space | 52,43% Space Free | Partition Type: NTFS Drive D: | 7,24 Gb Total Space | 1,34 Gb Free Space | 18,46% Space Free | Partition Type: FAT32 Computer Name: MEHDI | User Name: mehdi B | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* .url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) ========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] ========== System Restore Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] ========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\AOL 9.0\waol.exe" = C:\Program Files\AOL 9.0\waol.exe:*:Enabled:AOL France "C:\Program Files\Hercules\Deluxe Optical Glass\XtrCtrl.exe" = C:\Program Files\Hercules\Deluxe Optical Glass\XtrCtrl.exe:*:Enabled:Hercules Xtra Controller Main Application -- (Guillemot Corporation S.A.) "C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server -- (PeeringPortal) "C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server -- (PeeringPortal) "C:\Program Files\Hercules\Webcam Station Evolution SE\StationEvSE.exe" = C:\Program Files\Hercules\Webcam Station Evolution SE\StationEvSE.exe:*:Enabled:Hercules Webcam Station Evolution SE -- (Guillemot Corporation S.A.) "C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- (Lime Wire, LLC) "C:\Program Files\FrostWire\FrostWire.exe" = C:\Program Files\FrostWire\FrostWire.exe:*:Enabled:FrostWire -- (FrostWire Group) ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{075473F5-846A-448B-BCB3-104AA1760205}" = Sonic Data Module "{0C0670E5-2D51-42C6-ACFF-CBCB65B7DCDB}" = SplitCam "{133742BA-6F46-4D3E-85AF-78631D9AD8B8}" = Installation Windows Live "{1CB34CE9-0E6B-493F-BB66-3425E5DF76E5}" = CP_CalendarTemplates1 "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live "{21657574-BD54-48A2-9450-EB03B2C7FC29}" = Sonic MyDVD Plus "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT "{23012310-3E05-46A5-88A9-C6CBCABCAC79}" = Amélioration de nos services "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer "{23B35809-5E4A-4F14-8332-1CDEDDFAC089}" = CP_Package_Variety2 "{24BEBF2E-73F3-4599-840B-EDC612CCDD0D}" = Destinations "{266517E6-D866-439D-919C-B8B1A52E6080}" = OpenOffice.org 3.2 "{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java 6 Update 20 "{2A548002-9042-4083-A270-B67473DE1073}" = SkinsHP1 "{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Sonic Update Manager "{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform "{3248F0A8-6813-11D6-A77B-00B0D0150060}" = J2SE Runtime Environment 5.0 Update 6 "{34D2AB40-150D-475D-AE32-BD23FB5EE355}" = HP Quick Launch Buttons 6.00 E2 "{34F3FCF1-817B-4D61-B6AF-19D9486AFEA0}" = Unload "{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{36D620AD-EEBA-4973-BA86-0C9AE6396620}" = OptionalContentQFolder "{3F92ABBB-6BBF-11D5-B229-002078017FBF}" = NetWaiting "{3FE0CFAB-584A-4AA5-B8CD-C32284CFA308}" = RandMap "{4041C245-7099-4C96-9738-5EBC23827B3C}" = BufferChm "{4302B2DD-D958-40E3-BAF3-B07FFE1978CE}" = HP Wireless Assistant 2.00 E1 "{445B183D-F4F1-45C8-B9DB-F11355CA657B}" = Windows Live Messenger "{45D707E9-F3C4-11D9-A373-0050BAE317E1}" = HP QuickPlay 2.1 "{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}" = Adobe AIR "{494D17B5-3369-4905-8C4B-80C972C5E0FF}" = CP_Panorama1Config "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4DA4012B-39AF-48c2-B23B-A4D570D233A6}" = cp_LightScribeConfig "{522D1D79-9C0A-4361-91F8-2AFF8EC6C2E1}" = CP_Package_Variety1 "{53EE9E42-CECB-4C92-BF76-9CA65DAF8F1C}" = FullDPAppQFolder "{54F0998F-73C8-4b51-8286-FE903C231BED}" = cp_PosterPrintConfig "{60BA9B0D-FEF3-1A41-08AB-8083E5905C81}" = Winamax Poker "{645D6B69-6456-442D-94D6-85F0636ED258}" = Badoo Desktop "{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Sonic Express Labeler "{6815FCDD-401D-481E-BA88-31B4754C2B46}" = Macromedia Flash Player 8 "{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update "{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin "{766633B3-1AFA-44B6-A3FC-1DE991CD9C52}" = CP_Package_Basic1 "{79F8E1D4-36C1-439C-95FA-F695050B5B07}" = Sonic_PrimoSDK "{7B6CF9EB-CB2B-4A1A-81A9-BE1A9044690A}" = TIPCI "{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver "{80AE27BA-B0ED-4288-A8B9-D8194BCF4115}" = cp_UpdateProjectsConfig "{8105684D-8CA6-440D-8F58-7E5FD67A499D}" = Connexion Facile à Internet "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{869C3062-4745-4949-B6C9-98AF24D89030}" = PhotoGallery "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{90120000-0010-040C-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (French) 12 "{90120000-0016-040C-0000-0000000FF1CE}" = Microsoft Office Excel MUI (French) 2007 "{90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0018-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007 "{90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001B-040C-0000-0000000FF1CE}" = Microsoft Office Word MUI (French) 2007 "{90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2007 "{90120000-001F-0401-0000-0000000FF1CE}_HOMESTUDENTR_{14809F99-C601-4D4A-9391-F1E8FAA964C5}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007 "{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007 "{90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007 "{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2007 "{90120000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2007 "{90120000-006E-040C-0000-0000000FF1CE}_HOMESTUDENTR_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-00A1-040C-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (French) 2007 "{90120000-00A1-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007 "{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2) "{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581) "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9A394342-4A68-4EBA-85A6-55B559F4E700}" = Microsoft .NET Framework 1.1 French Language Pack "{9D4ABB0C-F60B-44A6-956C-A4A63D5495C9}" = CueTour "{A059DE09-1B49-4450-B340-7AE097EC3F04}" = Microsoft Works "{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI "{A250D351-A07F-4D5D-AB6C-693C69B9BFAF}" = Hercules Webcam "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A93C4E94-1005-489D-BEAA-B873C1AA6CFC}" = HP Help and Support "{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder "{AB708C9B-97C8-4AC9-899B-DBF226AC9382}" = Sonic Audio Module "{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution "{AC76BA86-7AD7-1036-7B44-A00000000001}" = Adobe Reader 6.0.1 - Français "{AEF7A12C-CD9B-4773-8AD1-6916138CA7EA}" = SmartAudio "{B11E71BA-498C-42D4-9F1A-9D7A89D9DA61}" = CP_AtenaShokunin1Config "{B12665F4-4E93-4AB4-B7FC-37053B524629}" = Sonic Copy Module "{B3B487E7-6171-4376-9074-B28082CEB504}" = Windows Live Call "{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy "{B57F2FF0-5A25-4332-B503-4592B370C02F}" = CP_Package_Variety3 "{BB85ED9C-AFC9-43BD-B8DC-258C3C7DF72E}" = HP Software Update "{BBD3BF67-5B89-4CBB-BA58-5818ED5F3290}" = cp_OnlineProjectsConfig "{BC96BBA7-C634-460E-AD18-A0A994213F80}" = HP User Guides--System Recovery "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C3C44248-B8F7-4B20-A5C7-994870B60F55}" = Hercules Webcam Station Evolution SE "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D755C7A3-C03E-4460-8C00-AC6E55505FB5}" = LightScribe 1.4.74.1 "{D8CE69B0-9274-4b8c-BA49-0FF6A20A3C65}" = SAMSUNG SYMBIAN USB Download Driver "{DAEAFD68-BB4A-4507-A241-C8804D2EA66D}" = Apple Application Support "{DB518BA6-CB74-4EB6-9ABD-880B6D6E1F38}" = HpSdpAppCoreApp "{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}" = Assistant de connexion Windows Live "{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.1 "{E6F043EB-FEF5-4C34-95AF-99B3EB68F7D9}" = Hercules Deluxe Optical Glass "{E7004147-2CCA-431C-AA05-2AB166B9785D}" = QuickTime "{E74E3D81-773B-4DCF-B706-50236F80BD81}" = HP User Guides 0019 "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard "{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio "{FC8D25A7-FF1B-41BB-BB3B-9A06C0A60AE0}" = InstantShareDevices "{FD4FE0F7-91FC-43A2-9C3A-187553991FFF}" = Hercules Classic Link Webcam "3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F" = Package de pilotes Windows - Nokia pccsmcfd (10/12/2007 6.85.4.0) "6194C28A8F62DD817EA1B918E6E46E806A21B452" = Package de pilotes Windows - MobileTop (sshpmdm) Modem (02/23/2007 2.5.0.0) "65B6FE5418CE28F4D72543FB2D964C3CEC83F161" = Package de pilotes Windows - MobileTop (sshpusb) USB (02/23/2007 2.5.0.0) "Adobe AIR" = Adobe AIR "Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "AutocompletePro3_is1" = AutocompletePro "avast!" = avast! Antivirus "CNXT_HDAUDIO" = Conexant HD Audio "CNXT_MODEM_HDAUDIO_CPL30A5m" = HDAUDIO Soft Data Fax Modem with SmartCP "ExpressBurn" = Express Burn Disc Burning Software "FrostWire" = FrostWire 4.20.9 "HOMESTUDENTR" = Microsoft Office Home and Student 2007 "HP Imaging Device Functions" = HP Imaging Device Functions 6.0 "HP Photo & Imaging" = HP Photosmart Premier Software 6.0 "InstallShield_{23012310-3E05-46A5-88A9-C6CBCABCAC79}" = Amélioration de nos services "InstallShield_{7B6CF9EB-CB2B-4A1A-81A9-BE1A9044690A}" = Texas Instruments PCIxx21/x515/xx12 drivers. "InstallShield_{8105684D-8CA6-440D-8F58-7E5FD67A499D}" = Connexion Facile à Internet "InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio "KLiteCodecPack_is1" = K-Lite Codec Pack 6.3.0 (Full) "Lexmark X1100 Series" = Lexmark X1100 Series "LimeWire" = LimeWire 5.5.16 "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware "Messenger Plus! Live" = Messenger Plus! Live "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Mozilla Firefox (3.6.16)" = Mozilla Firefox (3.6.16) "NVIDIA Drivers" = NVIDIA Drivers "PROSet" = Intel® PRO Network Connections Drivers "SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software "SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set "Samsung Mobile Modem Device" = Samsung Mobile Modem Device Software "Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software "SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software "SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software "SAMSUNG USB Mobile Device" = SAMSUNG USB Mobile Device Software "SynTPDeinstKey" = Synaptics Pointing Device Driver "VLC media player" = VLC media player 1.1.5 "wam.04351C371E530C3762CBA45FA283ED972DCDEFB6.1" = Winamax Poker "WIC" = Windows Imaging Component "Windows Media Format Runtime" = Windows Media Format Runtime "Windows Media Player" = Lecteur Windows Media 10 "WinLiveSuite_Wave3" = Installation Windows Live "WinRAR archiver" = Logiciel d'archivage WinRAR ========== Last 10 Event Log Errors ========== [ Antivirus Events ] Error - 18/04/2011 05:02:41 | Computer Name = MEHDI | Source = avast! | ID = 33554522 Description = Error in aswChestC: chestOpenList Error 1753. Error - 18/04/2011 05:02:41 | Computer Name = MEHDI | Source = avast! | ID = 33554522 Description = aswChestInterface - Program error description: CChestListView::LoadFiles() chestOpenList() failed: 2147422219. Error - 18/04/2011 14:36:48 | Computer Name = MEHDI | Source = avast! | ID = 33554522 Description = aswChestInterface - Program error description: CChestListView::OnCreate() !m_strErrorWnd.IsEmpty(). Error - 19/04/2011 04:17:49 | Computer Name = MEHDI | Source = avast! | ID = 33554522 Description = Error in aswChestC: chestOpenList Error 1753. Error - 19/04/2011 04:17:49 | Computer Name = MEHDI | Source = avast! | ID = 33554522 Description = aswChestInterface - Program error description: CChestListView::LoadFiles() chestOpenList() failed: 2147422219. [ Application Events ] Error - 17/04/2011 09:07:06 | Computer Name = MEHDI | Source = crypt32 | ID = 131080 Description = Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>'>http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>'>http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>'>http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>'>http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>'>http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>'>http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>'>http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>'>http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : Cette connexion réseau n'existe pas. Error - 17/04/2011 12:30:38 | Computer Name = MEHDI | Source = crypt32 | ID = 131080 Description = Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : La connexion avec le serveur a été interrompue anormalement Error - 17/04/2011 12:30:38 | Computer Name = MEHDI | Source = crypt32 | ID = 131080 Description = Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : Cette connexion réseau n'existe pas. Error - 18/04/2011 04:58:19 | Computer Name = MEHDI | Source = PerfNet | ID = 2004 Description = Impossible d'ouvrir le Service serveur. Les données de performance du serveur ne seront pas renvoyées. Le code d'erreur renvoyé est la donnée DWORD 0. Error - 18/04/2011 07:04:39 | Computer Name = MEHDI | Source = crypt32 | ID = 131080 Description = Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : La connexion avec le serveur a été interrompue anormalement Error - 18/04/2011 07:04:40 | Computer Name = MEHDI | Source = crypt32 | ID = 131080 Description = Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : Cette connexion réseau n'existe pas. Error - 18/04/2011 14:45:18 | Computer Name = MEHDI | Source = crypt32 | ID = 131080 Description = Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : La connexion avec le serveur a été interrompue anormalement Error - 18/04/2011 14:45:19 | Computer Name = MEHDI | Source = crypt32 | ID = 131080 Description = Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : Cette connexion réseau n'existe pas. Error - 18/04/2011 15:54:47 | Computer Name = MEHDI | Source = crypt32 | ID = 131080 Description = Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : La connexion avec le serveur a été interrompue anormalement Error - 18/04/2011 15:54:48 | Computer Name = MEHDI | Source = crypt32 | ID = 131080 Description = Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : Cette connexion réseau n'existe pas. [ System Events ] Error - 15/04/2011 07:25:22 | Computer Name = MEHDI | Source = Dhcp | ID = 1002 Description = Le bail de l'adresse IP 192.168.1.3 pour la carte réseau dont l'adresse réseau est 00130265B02A a été refusé par le serveur DHCP 78.251.127.254 (celui-ci a envoyé un message DHCPNACK). Error - 15/04/2011 07:25:26 | Computer Name = MEHDI | Source = Dhcp | ID = 1001 Description = Le réseau n'a attribué aucune adresse à votre ordinateur (par le serveur DHCP) pour la carte réseau avec l'adresse réseau 00130265B02A. Il s'est produit l'erreur suivante : %%1223. Votre ordinateur va continuer à essayer d'obtenir sa propre adresse auprès du serveur d'adresse réseau (DHCP). Error - 15/04/2011 15:53:44 | Computer Name = MEHDI | Source = Dhcp | ID = 1002 Description = Le bail de l'adresse IP 192.168.1.3 pour la carte réseau dont l'adresse réseau est 00130265B02A a été refusé par le serveur DHCP 78.251.127.254 (celui-ci a envoyé un message DHCPNACK). Error - 15/04/2011 15:56:05 | Computer Name = MEHDI | Source = Service Control Manager | ID = 7022 Description = Le service Mises à jour automatiques est en attente de démarrage. Error - 16/04/2011 11:49:25 | Computer Name = MEHDI | Source = Windows Update Agent | ID = 16 Description = Connexion impossible : Windows ne parvient pas à se connecter au service Mises à jour automatiques et ne peut donc pas procéder au téléchargement et à l'installation des mises à jour définies par la planification. Windows continuera d'essayer d'établir la connexion. Error - 17/04/2011 05:29:45 | Computer Name = MEHDI | Source = Service Control Manager | ID = 7006 Description = L'appel ScRegSetValueExW a échoué pour Type avec l'erreur : %%5 Error - 17/04/2011 05:29:45 | Computer Name = MEHDI | Source = Service Control Manager | ID = 7006 Description = L'appel ScRegSetValueExW a échoué pour Type avec l'erreur : %%5 Error - 17/04/2011 05:29:45 | Computer Name = MEHDI | Source = Service Control Manager | ID = 7006 Description = L'appel ScRegSetValueExW a échoué pour Type avec l'erreur : %%5 Error - 17/04/2011 07:52:04 | Computer Name = MEHDI | Source = Service Control Manager | ID = 7026 Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se charger : AliIde PCIIde ViaIde Error - 18/04/2011 14:41:22 | Computer Name = MEHDI | Source = Windows Update Agent | ID = 16 Description = Connexion impossible : Windows ne parvient pas à se connecter au service Mises à jour automatiques et ne peut donc pas procéder au téléchargement et à l'installation des mises à jour définies par la planification. Windows continuera d'essayer d'établir la connexion. < End of report > Je dois aller travailler je vous répondrais se soir .Merci encore
  8. MehDiZz
    Voici le rapport OTL OTL logfile created on: 19/04/2011 13:07:42 - Run 1 OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\mehdi B\Bureau Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 1 022,00 Mb Total Physical Memory | 738,00 Mb Available Physical Memory | 72,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 87,00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 84,90 Gb Total Space | 44,51 Gb Free Space | 52,43% Space Free | Partition Type: NTFS Drive D: | 7,24 Gb Total Space | 1,34 Gb Free Space | 18,46% Space Free | Partition Type: FAT32 Computer Name: MEHDI | User Name: mehdi B | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2011/04/19 13:02:29 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\mehdi B\Bureau\OTL.exe PRC - [2010/05/26 19:28:14 | 002,913,576 | ---- | M] (Guillemot Corporation S.A.) -- C:\Program Files\Hercules\Deluxe Optical Glass\XtrCtrl.exe PRC - [2010/05/21 00:58:48 | 011,312,128 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin PRC - [2010/05/21 00:58:46 | 011,318,784 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe PRC - [2009/09/15 12:56:48 | 000,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe PRC - [2009/04/07 09:39:44 | 000,233,472 | ---- | M] (Teruten) -- C:\WINDOWS\system32\FsUsbExService.Exe PRC - [2006/02/17 15:26:32 | 000,073,728 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe PRC - [2005/09/24 08:42:32 | 000,475,136 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hp\Digital Imaging\bin\hpqimzone.exe PRC - [2004/08/05 23:00:00 | 001,036,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe ========== Modules (SafeList) ========== MOD - [2011/04/19 13:02:29 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\mehdi B\Bureau\OTL.exe MOD - [2006/05/03 22:53:54 | 000,174,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\framedyn.dll MOD - [2004/08/05 23:00:00 | 001,050,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll ========== Win32 Services (SafeList) ========== SRV - File not found [Disabled | Stopped] -- -- (HidServ) SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt) SRV - [2009/04/07 09:39:44 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService) SRV - [2008/11/04 01:06:28 | 000,441,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv) SRV - [2008/04/07 09:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Stopped] -- c:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2006/10/26 14:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose) SRV - [2006/02/17 15:26:32 | 000,073,728 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe -- (LightScribeService) SRV - [2004/10/22 03:24:18 | 000,073,728 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- c:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT) ========== Driver Services (SafeList) ========== DRV - [2010/08/25 11:36:34 | 000,013,824 | ---- | M] (LoteSoft Co.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\splitcam.sys -- (SPLITCAM) DRV - [2009/04/22 15:46:42 | 003,482,112 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\snp2uvc.sys -- (SNP2UVC) DRV - [2009/04/07 09:39:44 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk) DRV - [2009/02/09 00:42:42 | 000,099,968 | ---- | M] (Guillemot Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hxctlflt.sys -- (hxctlflt) DRV - [2007/09/17 15:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2007/07/03 16:58:20 | 000,106,792 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdm.sys -- (sscdmdm) DRV - [2007/07/03 16:57:24 | 000,011,944 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdfl.sys -- (sscdmdfl) DRV - [2007/07/03 16:54:24 | 000,080,552 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM) DRV - [2006/07/24 16:05:00 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen) DRV - [2006/04/18 13:29:06 | 000,569,856 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CHDAud.sys -- (HdAudAddService) DRV - [2006/03/14 20:02:54 | 001,428,480 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\w39n51.sys -- (w39n51) Intel® DRV - [2006/03/02 13:03:32 | 000,057,096 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB) DRV - [2005/09/20 12:30:56 | 000,162,432 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tifm21.sys -- (tifm21) DRV - [2005/09/19 13:24:20 | 000,005,760 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EabUsb.sys -- (eabusb) DRV - [2005/09/19 13:24:10 | 000,009,344 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CPQBttn.sys -- (HBtnKey) DRV - [2005/09/19 13:23:52 | 000,007,808 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\eabfiltr.sys -- (eabfiltr) DRV - [2005/08/22 17:07:00 | 001,035,008 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV) DRV - [2005/08/22 17:06:16 | 000,201,600 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys -- (HSFHWAZL) DRV - [2005/08/22 17:06:10 | 000,718,464 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf) DRV - [2004/08/04 08:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Homepage IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Ask.com France - L'autre moteur de recherche IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.defaultengine: "Ask.com" FF - prefs.js..browser.search.defaultenginename: "Ask.com" FF - prefs.js..browser.search.order.1: "Ask.com" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://fr.ask.com?o=14200&l=dis" FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:5.0.0.6906 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/03/24 09:36:52 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/03/24 09:36:52 | 000,000,000 | ---D | M] [2010/09/11 12:41:56 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\mehdi B\Application Data\Mozilla\Extensions [2010/09/11 12:41:56 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\mehdi B\Application Data\Mozilla\Extensions\mozswing@mozswing.org [2011/04/19 10:26:16 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\mehdi B\Application Data\Mozilla\Firefox\Profiles\3a0i905a.default\extensions [2011/01/17 19:34:43 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\mehdi B\Application Data\Mozilla\Firefox\Profiles\3a0i905a.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010/11/18 13:36:00 | 000,002,394 | ---- | M] () -- C:\Documents and Settings\mehdi B\Application Data\Mozilla\Firefox\Profiles\3a0i905a.default\searchplugins\askcom.xml [2010/08/25 11:37:02 | 000,002,340 | ---- | M] () -- C:\Documents and Settings\mehdi B\Application Data\Mozilla\Firefox\Profiles\3a0i905a.default\searchplugins\bigseekpro.xml [2011/04/19 10:26:16 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2011/01/08 15:05:15 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1} [2010/08/23 13:56:26 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010/08/23 13:56:13 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2010/08/23 13:56:12 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010/09/14 23:32:19 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml [2010/09/14 23:32:19 | 000,001,822 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml [2010/09/14 23:32:19 | 000,000,757 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml [2010/09/14 23:32:19 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml [2010/09/14 23:32:19 | 000,000,956 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml Hosts file not found O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (AC-Pro) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Program Files\AutocompletePro\AutocompletePro.dll (SimplyGen) O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.) O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.) O3 - HKCU\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.) O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software) O4 - HKLM..\Run: [CamserviceOG] C:\Program Files\Hercules\Deluxe Optical Glass\XtrCtrl.exe (Guillemot Corporation S.A.) O4 - HKLM..\Run: [High Definition Audio Property Page Shortcut] C:\WINDOWS\System32\CHDAudPropShortcut.exe (Windows ® Server 2003 DDK provider) O4 - HKLM..\Run: [KernelFaultCheck] File not found O4 - HKLM..\Run: [Lexmark X1100 Series] C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe (Lexmark International, Inc.) O4 - HKLM..\Run: [NPSStartup] File not found O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [RecGuard] C:\WINDOWS\SMINST\Recguard.exe () O4 - HKLM..\Run: [userFaultCheck] File not found O4 - HKCU..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.) O4 - HKCU..\Run: [badoo Desktop] C:\Documents and Settings\All Users\Application Data\Badoo\Badoo Desktop\1.3.12.904\Badoo.Desktop.exe (Badoo) O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\Hp\Digital Imaging\bin\hpqthb08.exe (Hewlett-Packard Development Company, L.P.) O4 - Startup: C:\Documents and Settings\mehdi B\Menu Démarrer\Programmes\Démarrage\OpenOffice.org 3.2.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O8 - Extra context menu item: &Traduire à partir de l'anglais - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.) O8 - Extra context menu item: Pages liées - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.) O8 - Extra context menu item: Pages similaires - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.) O8 - Extra context menu item: Recherche &Google - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.) O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.) O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} http://messenger.zone.msn.com/MessengerGamesContent/GameContent/fr/uno1/GAME_UNO1.cab (UnoCtrl Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class) O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab (Java Plug-in 1.5.0_06) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Ma page d'accueil) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Wave.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Wave.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2001/07/27 11:07:38 | 000,000,000 | -HS- | M] () - D:\AUTOEXEC.BAT -- [ FAT32 ] O32 - AutoRun File - [2004/04/30 03:01:14 | 000,000,053 | -HS- | M] () - D:\Autorun.inf -- [ FAT32 ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: AppMgmt - File not found NetSvcs: HidServ - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found Drivers32: msacm.ac3acm - C:\WINDOWS\System32\ac3acm.acm (fccHandler) Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation) Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.lameacm - C:\WINDOWS\System32\lameACM.acm (http://www.mp3dev.org/) Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.) Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.) Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation) Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.) Drivers32: VIDC.FFDS - C:\WINDOWS\System32\ff_vfw.dll () Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation) Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation) Drivers32: VIDC.XVID - C:\WINDOWS\System32\xvidvfw.dll () CREATERESTOREPOINT Restore point Set: OTL Restore Point (54619756233228288) PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin ========== Files/Folders - Created Within 30 Days ========== [2011/04/19 13:02:28 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\mehdi B\Bureau\OTL.exe [2011/04/19 12:33:21 | 000,000,000 | --SD | C] -- C:\ComboFix [2011/04/19 11:15:14 | 000,000,000 | RHSD | C] -- C:\cmdcons [2011/04/19 11:12:49 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe [2011/04/19 11:12:49 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe [2011/04/19 11:12:49 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe [2011/04/19 11:12:49 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe [2011/04/19 11:12:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT [2011/04/19 11:12:15 | 000,000,000 | ---D | C] -- C:\Qoobox [2011/04/19 09:37:40 | 001,377,112 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\mehdi B\Bureau\TDSSKiller.exe [2011/04/19 09:34:53 | 007,734,240 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\mehdi B\Bureau\mbam-setup.exe [2011/04/17 12:56:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\mehdi B\Application Data\Malwarebytes [2011/04/17 12:56:12 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2011/04/17 12:56:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Malwarebytes' Anti-Malware [2011/04/17 12:56:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes [2011/04/17 12:56:08 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2011/04/17 12:56:08 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2011/04/17 11:31:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump [2011/04/17 11:29:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\avast! Antivirus [2011/04/17 11:29:35 | 000,097,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr [2011/04/11 14:34:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Macromedia [2011/04/11 14:34:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Adobe [2011/04/11 13:54:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Macromedia [2011/04/11 13:54:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Adobe [2011/04/09 19:47:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Badoo [2011/04/05 19:52:37 | 000,000,000 | ---D | C] -- C:\Program Files\Winamax Poker [2010/08/24 22:58:46 | 000,184,320 | ---- | C] ( ) -- C:\WINDOWS\System32\rsnp2uvc.dll [2010/08/24 22:58:46 | 000,176,128 | ---- | C] ( ) -- C:\WINDOWS\System32\csnp2uvc.dll [2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2011/04/19 13:08:58 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin [2011/04/19 13:02:29 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\mehdi B\Bureau\OTL.exe [2011/04/19 12:40:16 | 000,050,868 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2011/04/19 12:40:13 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011/04/19 12:40:09 | 1071,763,456 | -HS- | M] () -- C:\hiberfil.sys [2011/04/19 11:15:20 | 000,000,332 | RHS- | M] () -- C:\boot.ini [2011/04/19 11:08:30 | 000,050,477 | ---- | M] () -- C:\Documents and Settings\mehdi B\Bureau\Defogger.exe [2011/04/19 11:08:27 | 004,324,342 | R--- | M] () -- C:\Documents and Settings\mehdi B\Bureau\ComboFix.exe [2011/04/19 11:07:41 | 000,024,271 | ---- | M] () -- C:\Documents and Settings\mehdi B\Bureau\Sans nom 2.odt [2011/04/19 11:07:40 | 000,000,122 | -H-- | M] () -- C:\Documents and Settings\mehdi B\Bureau\.~lock.Sans nom 2.odt# [2011/04/19 09:54:47 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk [2011/04/19 09:36:05 | 000,879,081 | ---- | M] () -- C:\Documents and Settings\mehdi B\Bureau\SecurityCheck.exe [2011/04/19 09:35:12 | 007,734,240 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\mehdi B\Bureau\mbam-setup.exe [2011/04/19 09:33:27 | 000,027,176 | ---- | M] () -- C:\Documents and Settings\mehdi B\Bureau\Sans nom 1.odt [2011/04/18 22:30:08 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job [2011/04/17 11:35:20 | 000,003,072 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2011/04/17 11:29:19 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\mehdi B\Application Data\chrtmp [2011/04/17 09:47:32 | 000,037,213 | ---- | M] () -- C:\Documents and Settings\mehdi B\Bureau\3.jpg [2011/04/17 09:47:25 | 000,069,937 | ---- | M] () -- C:\Documents and Settings\mehdi B\Bureau\2.jpg [2011/04/17 09:47:17 | 000,051,268 | ---- | M] () -- C:\Documents and Settings\mehdi B\Bureau\1.jpg [2011/04/16 21:09:46 | 000,176,640 | ---- | M] () -- C:\Documents and Settings\mehdi B\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011/04/13 17:29:05 | 000,000,271 | ---- | M] () -- C:\WINDOWS\lexstat.ini [2011/04/11 19:53:55 | 002,334,460 | ---- | M] () -- C:\Documents and Settings\mehdi B\Bureau\DSC02927.JPG [2011/04/11 16:42:50 | 000,015,312 | ---- | M] () -- C:\Documents and Settings\mehdi B\Bureau\lm ambulance.odt [2011/04/06 17:31:45 | 000,010,637 | ---- | M] () -- C:\Documents and Settings\mehdi B\Bureau\croque.jpg [2011/04/05 19:52:38 | 000,000,680 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Winamax Poker.lnk [2011/04/05 17:28:22 | 000,179,986 | ---- | M] () -- C:\Documents and Settings\mehdi B\Mes documents\Unidialog_3770069B_1302017246748.pdf [2011/03/31 09:47:39 | 000,179,673 | ---- | M] () -- C:\Documents and Settings\mehdi B\Mes documents\Unidialog_2520101R_1301557626105.pdf [2011/03/30 10:35:52 | 000,000,580 | ---- | M] () -- C:\Documents and Settings\mehdi B\Application Data\wklnhst.dat [2011/03/27 09:47:16 | 000,510,980 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat [2011/03/27 09:47:16 | 000,441,458 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2011/03/27 09:47:16 | 000,084,964 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat [2011/03/27 09:47:16 | 000,071,394 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files Created - No Company Name ========== [2011/04/19 13:08:58 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin [2011/04/19 11:15:20 | 000,000,216 | ---- | C] () -- C:\Boot.bak [2011/04/19 11:15:16 | 000,263,488 | RHS- | C] () -- C:\cmldr [2011/04/19 11:12:49 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe [2011/04/19 11:12:49 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2011/04/19 11:12:49 | 000,089,088 | ---- | C] () -- C:\WINDOWS\MBR.exe [2011/04/19 11:12:49 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2011/04/19 11:12:49 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2011/04/19 11:09:02 | 004,324,342 | R--- | C] () -- C:\Documents and Settings\mehdi B\Bureau\ComboFix.exe [2011/04/19 11:09:02 | 000,050,477 | ---- | C] () -- C:\Documents and Settings\mehdi B\Bureau\Defogger.exe [2011/04/19 11:07:40 | 000,024,271 | ---- | C] () -- C:\Documents and Settings\mehdi B\Bureau\Sans nom 2.odt [2011/04/19 11:07:40 | 000,000,122 | -H-- | C] () -- C:\Documents and Settings\mehdi B\Bureau\.~lock.Sans nom 2.odt# [2011/04/19 09:36:05 | 000,879,081 | ---- | C] () -- C:\Documents and Settings\mehdi B\Bureau\SecurityCheck.exe [2011/04/19 09:33:25 | 000,027,176 | ---- | C] () -- C:\Documents and Settings\mehdi B\Bureau\Sans nom 1.odt [2011/04/17 12:56:13 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk [2011/04/17 11:29:19 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\mehdi B\Application Data\chrtmp [2011/04/17 11:29:03 | 000,380,928 | ---- | C] () -- C:\WINDOWS\System32\actskin4.ocx [2011/04/17 09:47:31 | 000,037,213 | ---- | C] () -- C:\Documents and Settings\mehdi B\Bureau\3.jpg [2011/04/17 09:47:25 | 000,069,937 | ---- | C] () -- C:\Documents and Settings\mehdi B\Bureau\2.jpg [2011/04/17 09:47:15 | 000,051,268 | ---- | C] () -- C:\Documents and Settings\mehdi B\Bureau\1.jpg [2011/04/11 19:51:17 | 002,334,460 | ---- | C] () -- C:\Documents and Settings\mehdi B\Bureau\DSC02927.JPG [2011/04/11 16:42:49 | 000,015,312 | ---- | C] () -- C:\Documents and Settings\mehdi B\Bureau\lm ambulance.odt [2011/04/06 17:31:42 | 000,010,637 | ---- | C] () -- C:\Documents and Settings\mehdi B\Bureau\croque.jpg [2011/04/05 17:28:22 | 000,179,986 | ---- | C] () -- C:\Documents and Settings\mehdi B\Mes documents\Unidialog_3770069B_1302017246748.pdf [2011/03/31 09:47:39 | 000,179,673 | ---- | C] () -- C:\Documents and Settings\mehdi B\Mes documents\Unidialog_2520101R_1301557626105.pdf [2010/11/04 16:01:49 | 000,000,580 | ---- | C] () -- C:\Documents and Settings\mehdi B\Application Data\wklnhst.dat [2010/10/10 17:09:37 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2010/10/07 16:47:25 | 000,000,271 | ---- | C] () -- C:\WINDOWS\lexstat.ini [2010/10/07 16:46:56 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\LXBKIH.EXE [2010/10/07 16:46:56 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\LXBKLCNP.DLL [2010/10/07 16:46:56 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxbkvs.dll [2010/10/07 16:46:56 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\INSTMON.EXE [2010/10/07 16:46:09 | 000,000,266 | ---- | C] () -- C:\WINDOWS\System32\lxbkcoin.ini [2010/08/28 12:01:16 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll [2010/08/28 12:01:16 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys [2010/08/28 12:00:57 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\mehdi B\Application Data\$_hpcst$.hpc [2010/08/24 22:58:46 | 003,482,112 | ---- | C] () -- C:\WINDOWS\System32\drivers\snp2uvc.sys [2010/08/24 22:58:46 | 000,027,264 | ---- | C] () -- C:\WINDOWS\System32\drivers\sncduvc.sys [2010/08/24 22:58:46 | 000,015,497 | ---- | C] () -- C:\WINDOWS\snp2uvc.ini [2010/08/24 22:58:10 | 000,015,144 | ---- | C] () -- C:\WINDOWS\System32\HWLMSET2PS.dll [2010/08/24 22:29:46 | 003,600,384 | ---- | C] () -- C:\WINDOWS\ffmpeg.exe [2010/08/24 10:55:26 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\LauncherAccess.dt [2010/08/24 10:54:24 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys [2010/08/23 13:16:10 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2010/08/23 13:16:09 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2010/08/23 13:16:02 | 000,790,528 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2010/08/23 13:16:02 | 000,134,144 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2010/08/23 13:16:01 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2010/08/23 13:00:57 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2010/08/22 20:43:42 | 000,176,640 | ---- | C] () -- C:\Documents and Settings\mehdi B\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010/08/22 19:52:08 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2010/08/22 19:45:22 | 000,000,130 | ---- | C] () -- C:\Documents and Settings\mehdi B\Local Settings\Application Data\fusioncache.dat [2006/05/11 10:36:05 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2006/05/11 10:36:05 | 001,519,616 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe [2006/05/11 10:36:05 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2006/05/11 10:36:04 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2006/05/11 10:36:03 | 001,466,368 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2006/05/11 10:36:03 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe [2006/05/11 10:36:02 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe [2006/05/11 10:36:02 | 000,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe [2006/05/11 10:36:02 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll [2006/05/11 02:54:24 | 000,030,194 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini [2006/03/27 08:57:04 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2006/03/27 08:56:54 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini [2006/03/27 08:23:20 | 000,088,020 | ---- | C] () -- C:\WINDOWS\hpqins69.dat [2006/03/27 08:18:54 | 000,000,059 | ---- | C] () -- C:\WINDOWS\WININIT.INI [2006/03/27 08:15:36 | 000,000,829 | ---- | C] () -- C:\WINDOWS\orun32.ini [2006/03/27 08:06:04 | 000,510,980 | ---- | C] () -- C:\WINDOWS\System32\perfh00C.dat [2006/03/27 08:06:04 | 000,441,458 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2006/03/27 08:06:04 | 000,084,964 | ---- | C] () -- C:\WINDOWS\System32\perfc00C.dat [2006/03/27 08:06:04 | 000,071,394 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2006/03/27 08:01:58 | 000,239,144 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2006/03/27 07:57:58 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2006/03/27 07:55:28 | 000,021,892 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2005/12/02 20:09:10 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini [2004/08/05 23:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2004/08/05 23:00:00 | 000,322,810 | ---- | C] () -- C:\WINDOWS\System32\perfi00C.dat [2004/08/05 23:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2004/08/05 23:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2004/08/05 23:00:00 | 000,056,880 | ---- | C] () -- C:\WINDOWS\System32\scvideo.dll [2004/08/05 23:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2004/08/05 23:00:00 | 000,034,108 | ---- | C] () -- C:\WINDOWS\System32\perfd00C.dat [2004/08/05 23:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2004/08/05 23:00:00 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys [2004/08/05 23:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2004/08/05 23:00:00 | 000,001,788 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin [2004/08/05 23:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat [2002/05/28 23:55:42 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2002/05/28 23:54:40 | 000,004,605 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat ========== Custom Scans ========== < %SYSTEMDRIVE%\*.* > [2010/08/23 14:11:03 | 000,000,216 | ---- | M] () -- C:\Boot.bak [2011/04/19 11:15:20 | 000,000,332 | RHS- | M] () -- C:\boot.ini [2004/08/05 23:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2004/08/03 23:00:08 | 000,263,488 | RHS- | M] () -- C:\cmldr [2011/04/19 12:40:09 | 1071,763,456 | -HS- | M] () -- C:\hiberfil.sys [2010/08/22 20:28:44 | 000,000,849 | ---- | M] () -- C:\hpqp.ini [2010/10/07 16:42:34 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010/10/07 16:42:34 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2004/08/05 23:00:00 | 000,047,564 | RHS- | M] () -- C:\ntdetect.com [2004/08/05 23:00:00 | 000,251,712 | RHS- | M] () -- C:\ntldr [2011/04/19 12:40:08 | 1610,612,736 | -HS- | M] () -- C:\pagefile.sys [2011/04/19 13:08:58 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin [2011/04/19 09:43:22 | 000,052,084 | ---- | M] () -- C:\TDSSKiller.2.4.21.0_19.04.2011_09.39.09_log.txt [2010/08/22 20:28:30 | 000,000,044 | ---- | M] () -- C:\XP_TV.ini < %systemroot%\*. /mp /s > < %systemroot%\system32\*.dll /lockedfiles > [2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ] < %systemroot%\Tasks\*.job /lockedfiles > < %systemroot%\System32\config\*.sav > [2006/03/27 09:47:42 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav [2006/03/27 09:47:42 | 000,638,976 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav < %systemroot%\system32\drivers\*.sys /90 > < HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU > < HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs > HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2011-03-18 05:54:43 < End of report >
  9. MehDiZz
    re , J'ai refais et toujours pareil , a la 50eme etape il y a l'ecran bleu comme quoi windows a rencontré un probleme , redemarage du pc ... Merci de prendre de ton temps pour moi
  10. MehDiZz
    oui je l'ai lancé depuis le bureau , je ne trouve pas le rapport , c'était a l'étape 50 je crois sa ne bougeait plus , je me suis levé faire autre chose rapidement et quand je suis revenu il redémarait ( il y avait l'ecran windows noire )
  11. MehDiZz
    Les changements que j'ai remarqué c'est par que par rapport a se matin les lien youtube ne me redirigent pas vers ebay sinon je viens d'utilisé combofix et j'ai fais ce que tu m'as dis mais je ne sais pas pourquoi mon pc a redémaré tout seul , que dois-je faire?
  12. MehDiZz
    voici le rapport de securitycheck Results of screen317's Security Check version 0.99.10 Windows XP Service Pack 2 Out of date service pack!! Internet Explorer 6 Out of date! `````````````````````````````` Antivirus/Firewall Check: avast! Antivirus ``````````````````````````````` Anti-malware/Other Utilities Check: Malwarebytes' Anti-Malware Java 6 Update 20 Out of date Java installed! Adobe Flash Player 10.2.153.1 Adobe Reader 6.0.1 - Français Out of date Adobe Reader installed! ```````````````````````````````` Process Check: objlist.exe by Laurent Alwil Software Avast4 ashDisp.exe ``````````End of Log```````````` Voila tu as toute les données
  13. MehDiZz
    Malwarebytes n'a trouvé aucun fichier infecté ni rien car avant hier je l'avais utilisé , je te poste donc le rapport que j'ai eu la derniere fois vu que sur celui ci il n'y a rien Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Version de la base de données: 6383 Windows 5.1.2600 Service Pack 2 Internet Explorer 6.0.2900.2180 17/04/2011 13:45:29 mbam-log-2011-04-17 (13-45-29).txt Type d'examen: Examen complet (C:\|D:\|) Elément(s) analysé(s): 216486 Temps écoulé: 47 minute(s), 3 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 1 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 1 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\StartMenuLogoff (PUM.Hijack.StartMenu) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully. Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): c:\system volume information\_restore{b0d22be2-a227-4068-a48a-e6b79217b4ba}\RP201\A0023970.exe (Backdoor.Agent) -> Quarantined and deleted successfully. je continu la procédure
  14. MehDiZz
    Bonjour Merci pour vos réponses et votre aide je viens d'utiliser TDSSKILLER voici le rapport 2011/04/19 09:39:09.0734 2512 TDSS rootkit removing tool 2.4.21.0 Mar 10 2011 12:26:28 2011/04/19 09:39:11.0109 2512 ================================================================================ 2011/04/19 09:39:11.0109 2512 SystemInfo: 2011/04/19 09:39:11.0109 2512 2011/04/19 09:39:11.0109 2512 OS Version: 5.1.2600 ServicePack: 2.0 2011/04/19 09:39:11.0109 2512 Product type: Workstation 2011/04/19 09:39:11.0109 2512 ComputerName: MEHDI 2011/04/19 09:39:11.0109 2512 UserName: mehdi B 2011/04/19 09:39:11.0109 2512 Windows directory: C:\WINDOWS 2011/04/19 09:39:11.0109 2512 System windows directory: C:\WINDOWS 2011/04/19 09:39:11.0109 2512 Processor architecture: Intel x86 2011/04/19 09:39:11.0109 2512 Number of processors: 2 2011/04/19 09:39:11.0109 2512 Page size: 0x1000 2011/04/19 09:39:11.0109 2512 Boot type: Normal boot 2011/04/19 09:39:11.0109 2512 ================================================================================ 2011/04/19 09:39:22.0437 2512 Initialize success 2011/04/19 09:40:09.0734 1580 ================================================================================ 2011/04/19 09:40:09.0734 1580 Scan started 2011/04/19 09:40:09.0734 1580 Mode: Manual; 2011/04/19 09:40:09.0734 1580 ================================================================================ 2011/04/19 09:40:33.0781 1580 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS 2011/04/19 09:40:34.0968 1580 ACPI (0bd94fbfc14ea3606cd6ca4c0255baa3) C:\WINDOWS\system32\DRIVERS\ACPI.sys 2011/04/19 09:40:36.0218 1580 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys 2011/04/19 09:40:37.0484 1580 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys 2011/04/19 09:40:38.0890 1580 aec (841f385c6cfaf66b58fbd898722bb4f0) C:\WINDOWS\system32\drivers\aec.sys 2011/04/19 09:40:40.0500 1580 AFD (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys 2011/04/19 09:40:41.0531 1580 agp440 (2c428fa0c3e3a01ed93c9b2a27d8d4bb) C:\WINDOWS\system32\DRIVERS\agp440.sys 2011/04/19 09:40:42.0781 1580 agpCPQ (67288b07d6aba6c1267b626e67bc56fd) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys 2011/04/19 09:40:44.0062 1580 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys 2011/04/19 09:40:45.0156 1580 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys 2011/04/19 09:40:46.0203 1580 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys 2011/04/19 09:40:47.0250 1580 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys 2011/04/19 09:40:48.0515 1580 alim1541 (f312b7cef21eff52fa23056b9d815fad) C:\WINDOWS\system32\DRIVERS\alim1541.sys 2011/04/19 09:40:49.0625 1580 amdagp (675c16a3c1f8482f85ee4a97fc0dde3d) C:\WINDOWS\system32\DRIVERS\amdagp.sys 2011/04/19 09:40:50.0546 1580 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys 2011/04/19 09:40:51.0265 1580 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) C:\WINDOWS\system32\DRIVERS\arp1394.sys 2011/04/19 09:40:52.0109 1580 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys 2011/04/19 09:40:53.0000 1580 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys 2011/04/19 09:40:53.0796 1580 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys 2011/04/19 09:40:54.0968 1580 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 2011/04/19 09:40:56.0000 1580 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys 2011/04/19 09:40:57.0703 1580 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 2011/04/19 09:40:58.0671 1580 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 2011/04/19 09:40:59.0843 1580 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys 2011/04/19 09:41:00.0640 1580 BTWUSB (7024e11dab9410b31a37547575249dd7) C:\WINDOWS\system32\Drivers\btwusb.sys 2011/04/19 09:41:01.0875 1580 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys 2011/04/19 09:41:03.0187 1580 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 2011/04/19 09:41:04.0359 1580 CCDECODE (6163ed60b684bab19d3352ab22fc48b2) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys 2011/04/19 09:41:05.0500 1580 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys 2011/04/19 09:41:06.0406 1580 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 2011/04/19 09:41:07.0406 1580 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys 2011/04/19 09:41:09.0359 1580 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys 2011/04/19 09:41:11.0531 1580 CmBatt (4266be808f85826aedf3c64c1e240203) C:\WINDOWS\system32\DRIVERS\CmBatt.sys 2011/04/19 09:41:12.0296 1580 CmdIde (e3726ad522d0bdae090671048c991ab3) C:\WINDOWS\system32\DRIVERS\cmdide.sys 2011/04/19 09:41:13.0156 1580 Compbatt (df1b1a24bf52d0ebc01ed4ece8979f50) C:\WINDOWS\system32\DRIVERS\compbatt.sys 2011/04/19 09:41:14.0046 1580 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys 2011/04/19 09:41:15.0015 1580 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys 2011/04/19 09:41:16.0062 1580 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys 2011/04/19 09:41:16.0937 1580 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys 2011/04/19 09:41:18.0062 1580 dmboot (e2d3b7620310fe56685f9b15a6b404b3) C:\WINDOWS\system32\drivers\dmboot.sys 2011/04/19 09:41:19.0781 1580 dmio (c77f5c20aa70197a69aa84baa9de43c8) C:\WINDOWS\system32\drivers\dmio.sys 2011/04/19 09:41:20.0890 1580 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 2011/04/19 09:41:21.0625 1580 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys 2011/04/19 09:41:22.0359 1580 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys 2011/04/19 09:41:23.0187 1580 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys 2011/04/19 09:41:23.0906 1580 E100B (6ca101f9aa3d845ba31f6e13c01301a8) C:\WINDOWS\system32\DRIVERS\e100b325.sys 2011/04/19 09:41:24.0890 1580 eabfiltr (b5cb3084046146fd2587d8c9b219feb4) C:\WINDOWS\system32\DRIVERS\eabfiltr.sys 2011/04/19 09:41:25.0125 1580 eabusb (231f4547ae1e4b3e60eca66c3a96d218) C:\WINDOWS\system32\DRIVERS\eabusb.sys 2011/04/19 09:41:25.0796 1580 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys 2011/04/19 09:41:26.0390 1580 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\drivers\Fdc.sys 2011/04/19 09:41:26.0687 1580 Fips (8b121ff880683607ab2aef0340721718) C:\WINDOWS\system32\drivers\Fips.sys 2011/04/19 09:41:27.0234 1580 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\drivers\Flpydisk.sys 2011/04/19 09:41:27.0734 1580 FltMgr (157754f0df355a9e0a6f54721914f9c6) C:\WINDOWS\system32\DRIVERS\fltMgr.sys 2011/04/19 09:41:28.0484 1580 FsUsbExDisk (790a4ca68f44be35967b3df61f3e4675) C:\WINDOWS\system32\FsUsbExDisk.SYS 2011/04/19 09:41:28.0781 1580 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 2011/04/19 09:41:29.0296 1580 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 2011/04/19 09:41:29.0875 1580 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys 2011/04/19 09:41:30.0875 1580 HBtnKey (4d4d97671c63c3af869b3518e6054204) C:\WINDOWS\system32\DRIVERS\cpqbttn.sys 2011/04/19 09:41:31.0984 1580 HdAudAddService (bb42bb78bbbc1e83292ef26973598daf) C:\WINDOWS\system32\drivers\CHDAud.sys 2011/04/19 09:41:33.0593 1580 HDAudBus (3fcc124b6e08ee0e9351f717dd136939) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys 2011/04/19 09:41:34.0578 1580 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys 2011/04/19 09:41:35.0265 1580 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys 2011/04/19 09:41:36.0078 1580 HSFHWAZL (89e256c5f5346be265d9f86ac8625d4f) C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys 2011/04/19 09:41:37.0078 1580 HSF_DPV (0e44af3828111d4c3e73c33ac95226d8) C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys 2011/04/19 09:41:37.0812 1580 HTTP (9f8b0f4276f618964fd118be4289b7cd) C:\WINDOWS\system32\Drivers\HTTP.sys 2011/04/19 09:41:38.0250 1580 hxctlflt (f02ea43ae8f936124debf5b87f12c795) C:\WINDOWS\system32\Drivers\hxctlflt.sys 2011/04/19 09:41:39.0218 1580 i2omgmt (8f09f91b5c91363b77bcd15599570f2c) C:\WINDOWS\system32\drivers\i2omgmt.sys 2011/04/19 09:41:40.0156 1580 i2omp (ed6bf9e441fdea13292a6d30a64a24c3) C:\WINDOWS\system32\DRIVERS\i2omp.sys 2011/04/19 09:41:40.0718 1580 i8042prt (d1efcbd693b5ba21314d06368c471070) C:\WINDOWS\system32\DRIVERS\i8042prt.sys 2011/04/19 09:41:41.0656 1580 iaStor (309c4d86d989fb1fcf64bd30dc81c51b) C:\WINDOWS\system32\DRIVERS\iaStor.sys 2011/04/19 09:41:42.0375 1580 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys 2011/04/19 09:41:42.0546 1580 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys 2011/04/19 09:41:42.0734 1580 IntelIde (1367812f8a974e0c13a4888fa5e7ede6) C:\WINDOWS\system32\DRIVERS\intelide.sys 2011/04/19 09:41:42.0890 1580 intelppm (6652cd490cbf72d0a234b827262834ab) C:\WINDOWS\system32\DRIVERS\intelppm.sys 2011/04/19 09:41:42.0953 1580 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys 2011/04/19 09:41:43.0140 1580 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 2011/04/19 09:41:43.0359 1580 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys 2011/04/19 09:41:43.0640 1580 IpNat (e2168cbc7098ffe963c6f23f472a3593) C:\WINDOWS\system32\DRIVERS\ipnat.sys 2011/04/19 09:41:43.0812 1580 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys 2011/04/19 09:41:44.0296 1580 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys 2011/04/19 09:41:44.0937 1580 isapnp (54632f1a7de61dc3615d756f2a90fa72) C:\WINDOWS\system32\DRIVERS\isapnp.sys 2011/04/19 09:41:45.0343 1580 Kbdclass (e798705e8dc7fab596ef6bfdf167e007) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 2011/04/19 09:41:45.0515 1580 kbdhid (62dd5eefcec4ef4163f1168d4262a9e4) C:\WINDOWS\system32\DRIVERS\kbdhid.sys 2011/04/19 09:41:45.0734 1580 kmixer (d93cad07c5683db066b0b2d2d3790ead) C:\WINDOWS\system32\drivers\kmixer.sys 2011/04/19 09:41:45.0843 1580 KSecDD (1be7cc2535d760ae4d481576eb789f24) C:\WINDOWS\system32\drivers\KSecDD.sys 2011/04/19 09:41:46.0609 1580 mdmxsdk (74f4372af97a587ecec527ec34955712) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys 2011/04/19 09:41:47.0015 1580 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 2011/04/19 09:41:47.0421 1580 Modem (5ac7e16f5b40a6da14b5f2b3ada4693e) C:\WINDOWS\system32\drivers\Modem.sys 2011/04/19 09:41:47.0781 1580 Mouclass (7d4f19411bd941e1d432a99e24230386) C:\WINDOWS\system32\DRIVERS\mouclass.sys 2011/04/19 09:41:48.0171 1580 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys 2011/04/19 09:41:48.0859 1580 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys 2011/04/19 09:41:49.0609 1580 MRxDAV (46edcc8f2db2f322c24f48785cb46366) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 2011/04/19 09:41:50.0218 1580 MRxSmb (fb6c89bb3ce282b08bdb1e3c179e1c39) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 2011/04/19 09:41:50.0828 1580 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys 2011/04/19 09:41:51.0343 1580 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys 2011/04/19 09:41:51.0906 1580 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 2011/04/19 09:41:52.0093 1580 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys 2011/04/19 09:41:52.0359 1580 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 2011/04/19 09:41:52.0687 1580 MSTEE (bf13612142995096ab084f2db7f40f77) C:\WINDOWS\system32\drivers\MSTEE.sys 2011/04/19 09:41:53.0203 1580 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys 2011/04/19 09:41:53.0484 1580 NABTSFEC (5c8dc6429c43dc6177c1fa5b76290d1a) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys 2011/04/19 09:41:54.0343 1580 NDIS (aa898f84d2b59129fb92e143a2c73434) C:\WINDOWS\system32\drivers\NDIS.sys 2011/04/19 09:41:55.0203 1580 NdisIP (520ce427a8b298f54112857bcf6bde15) C:\WINDOWS\system32\DRIVERS\NdisIP.sys 2011/04/19 09:41:55.0515 1580 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 2011/04/19 09:41:56.0250 1580 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 2011/04/19 09:41:56.0859 1580 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 2011/04/19 09:41:57.0890 1580 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys 2011/04/19 09:41:59.0031 1580 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys 2011/04/19 09:41:59.0750 1580 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys 2011/04/19 09:42:00.0812 1580 NIC1394 (5c5c53db4fef16cf87b9911c7e8c6fbc) C:\WINDOWS\system32\DRIVERS\nic1394.sys 2011/04/19 09:42:01.0359 1580 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys 2011/04/19 09:42:01.0937 1580 Ntfs (b78be402c3f63dd55521f73876951cdd) C:\WINDOWS\system32\drivers\Ntfs.sys 2011/04/19 09:42:02.0187 1580 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 2011/04/19 09:42:03.0328 1580 nv (88d8f8d4c3243e0bb0ed57496868e52e) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys 2011/04/19 09:42:06.0562 1580 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 2011/04/19 09:42:07.0109 1580 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 2011/04/19 09:42:07.0609 1580 ohci1394 (197ddf60b254a84d8656850397b5f923) C:\WINDOWS\system32\DRIVERS\ohci1394.sys 2011/04/19 09:42:08.0015 1580 Parport (318696359ac7df48d1e51974ec527dd2) C:\WINDOWS\system32\drivers\Parport.sys 2011/04/19 09:42:08.0125 1580 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys 2011/04/19 09:42:08.0265 1580 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys 2011/04/19 09:42:08.0437 1580 pccsmcfd (175cc28dcf819f78caa3fbd44ad9e52a) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys 2011/04/19 09:42:08.0828 1580 PCI (7c5da5c1ed801ad8b0309d5514f0b75e) C:\WINDOWS\system32\DRIVERS\pci.sys 2011/04/19 09:42:09.0375 1580 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys 2011/04/19 09:42:09.0906 1580 Pcmcia (641da274e163617ea7a33506bc6da8e3) C:\WINDOWS\system32\DRIVERS\pcmcia.sys 2011/04/19 09:42:10.0937 1580 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys 2011/04/19 09:42:11.0296 1580 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys 2011/04/19 09:42:11.0593 1580 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys 2011/04/19 09:42:12.0234 1580 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys 2011/04/19 09:42:12.0500 1580 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 2011/04/19 09:42:12.0593 1580 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys 2011/04/19 09:42:12.0640 1580 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys 2011/04/19 09:42:12.0656 1580 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys 2011/04/19 09:42:12.0671 1580 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys 2011/04/19 09:42:12.0687 1580 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys 2011/04/19 09:42:12.0703 1580 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys 2011/04/19 09:42:12.0734 1580 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 2011/04/19 09:42:12.0765 1580 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 2011/04/19 09:42:12.0781 1580 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 2011/04/19 09:42:12.0796 1580 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 2011/04/19 09:42:12.0828 1580 Rdbss (29d66245adba878fff574cd66abd2884) C:\WINDOWS\system32\DRIVERS\rdbss.sys 2011/04/19 09:42:12.0843 1580 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 2011/04/19 09:42:12.0875 1580 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys 2011/04/19 09:42:12.0906 1580 RDPWD (d4f5643d7714ef499ae9527fdcd50894) C:\WINDOWS\system32\drivers\RDPWD.sys 2011/04/19 09:42:12.0953 1580 redbook (7d0f90f235c4b3054d9d02717cc76234) C:\WINDOWS\system32\DRIVERS\redbook.sys 2011/04/19 09:42:13.0046 1580 rtl8139 (d507c1400284176573224903819ffda3) C:\WINDOWS\system32\DRIVERS\RTL8139.SYS 2011/04/19 09:42:13.0218 1580 sdbus (02fc71b020ec8700ee8a46c58bc6f276) C:\WINDOWS\system32\DRIVERS\sdbus.sys 2011/04/19 09:42:13.0343 1580 Secdrv (d26e26ea516450af9d072635c60387f4) C:\WINDOWS\system32\DRIVERS\secdrv.sys 2011/04/19 09:42:13.0390 1580 Serial (653201755ca96ab4aaa4131daf6da356) C:\WINDOWS\system32\drivers\Serial.sys 2011/04/19 09:42:13.0484 1580 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys 2011/04/19 09:42:13.0578 1580 sisagp (732d859b286da692119f286b21a2a114) C:\WINDOWS\system32\DRIVERS\sisagp.sys 2011/04/19 09:42:13.0640 1580 SLIP (5caeed86821fa2c6139e32e9e05ccdc9) C:\WINDOWS\system32\DRIVERS\SLIP.sys 2011/04/19 09:42:13.0921 1580 SNP2UVC (a70f178299812dce4cc0e802d403be9b) C:\WINDOWS\system32\DRIVERS\snp2uvc.sys 2011/04/19 09:42:14.0296 1580 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys 2011/04/19 09:42:14.0359 1580 SPLITCAM (c7c361a04742ab187e10583bbf4fa975) C:\WINDOWS\system32\DRIVERS\splitcam.sys 2011/04/19 09:42:14.0390 1580 splitter (8e186b8f23295d1e42c573b82b80d548) C:\WINDOWS\system32\drivers\splitter.sys 2011/04/19 09:42:14.0421 1580 sr (b52181023b827acda36c1b76751ebffd) C:\WINDOWS\system32\DRIVERS\sr.sys 2011/04/19 09:42:14.0500 1580 Srv (7a4f147cc6b133f905f6e65e2f8669fb) C:\WINDOWS\system32\DRIVERS\srv.sys 2011/04/19 09:42:14.0562 1580 sscdbus (d6870895fe46a464a19141440eb6cc1e) C:\WINDOWS\system32\DRIVERS\sscdbus.sys 2011/04/19 09:42:14.0593 1580 sscdmdfl (0fe167362e4689b716cdc8d93adedda8) C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys 2011/04/19 09:42:14.0671 1580 sscdmdm (55a15707e32b6709242ad127e62ca55a) C:\WINDOWS\system32\DRIVERS\sscdmdm.sys 2011/04/19 09:42:14.0781 1580 StarOpen (306521935042fc0a6988d528643619b3) C:\WINDOWS\system32\drivers\StarOpen.sys 2011/04/19 09:42:14.0859 1580 streamip (284c57df5dc7abca656bc2b96a667afb) C:\WINDOWS\system32\DRIVERS\StreamIP.sys 2011/04/19 09:42:14.0906 1580 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys 2011/04/19 09:42:14.0953 1580 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys 2011/04/19 09:42:15.0000 1580 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys 2011/04/19 09:42:15.0062 1580 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys 2011/04/19 09:42:15.0093 1580 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys 2011/04/19 09:42:15.0125 1580 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys 2011/04/19 09:42:15.0187 1580 SynTP (c9a1785cc0d7a040dd0fdbfeaa8be135) C:\WINDOWS\system32\DRIVERS\SynTP.sys 2011/04/19 09:42:15.0218 1580 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys 2011/04/19 09:42:15.0281 1580 Tcpip (2a5554fc5b1e04e131230e3ce035c3f9) C:\WINDOWS\system32\DRIVERS\tcpip.sys 2011/04/19 09:42:15.0390 1580 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys 2011/04/19 09:42:15.0437 1580 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys 2011/04/19 09:42:15.0468 1580 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys 2011/04/19 09:42:15.0515 1580 tifm21 (9179e07503630d6fb2e4162ff0196191) C:\WINDOWS\system32\drivers\tifm21.sys 2011/04/19 09:42:15.0562 1580 TosIde (b411668322c3bf4e690888706b999679) C:\WINDOWS\system32\DRIVERS\toside.sys 2011/04/19 09:42:15.0593 1580 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys 2011/04/19 09:42:15.0609 1580 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys 2011/04/19 09:42:15.0671 1580 Update (aff2e5045961bbc0a602bb6f95eb1345) C:\WINDOWS\system32\DRIVERS\update.sys 2011/04/19 09:42:15.0812 1580 usbaudio (45a0d14b26c35497ad93bce7e15c9941) C:\WINDOWS\system32\drivers\usbaudio.sys 2011/04/19 09:42:15.0828 1580 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys 2011/04/19 09:42:15.0875 1580 usbehci (15e993ba2f6946b2bfbbfcd30398621e) C:\WINDOWS\system32\DRIVERS\usbehci.sys 2011/04/19 09:42:15.0906 1580 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys 2011/04/19 09:42:15.0984 1580 usbprint (a42369b7cd8886cd7c70f33da6fcbcf5) C:\WINDOWS\system32\DRIVERS\usbprint.sys 2011/04/19 09:42:16.0203 1580 usbscan (a6bc71402f4f7dd5b77fd7f4a8ddba85) C:\WINDOWS\system32\DRIVERS\usbscan.sys 2011/04/19 09:42:16.0281 1580 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 2011/04/19 09:42:16.0328 1580 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys 2011/04/19 09:42:16.0359 1580 usbvideo (8968ff3973a883c49e8b564200f565b9) C:\WINDOWS\system32\Drivers\usbvideo.sys 2011/04/19 09:42:16.0390 1580 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys 2011/04/19 09:42:16.0437 1580 viaagp (d92e7c8a30cfd14d8e15b5f7f032151b) C:\WINDOWS\system32\DRIVERS\viaagp.sys 2011/04/19 09:42:16.0468 1580 ViaIde (59cb1338ad3654417bea49636457f65d) C:\WINDOWS\system32\DRIVERS\viaide.sys 2011/04/19 09:42:16.0484 1580 VolSnap (313b1a0d5db26dfe1c34a6c13b2ce0a7) C:\WINDOWS\system32\drivers\VolSnap.sys 2011/04/19 09:42:16.0593 1580 w39n51 (4e7b07653f4f9937cf62ad2869fba520) C:\WINDOWS\system32\DRIVERS\w39n51.sys 2011/04/19 09:42:16.0718 1580 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys 2011/04/19 09:42:16.0781 1580 wdmaud (2797f33ebf50466020c430ee4f037933) C:\WINDOWS\system32\drivers\wdmaud.sys 2011/04/19 09:42:16.0828 1580 winachsf (214bc3ad84907ad6ad655ac5465f449a) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys 2011/04/19 09:42:16.0890 1580 WmiAcpi (ae2c8544e747c20062db27456ea2d67a) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys 2011/04/19 09:42:17.0109 1580 WSTCODEC (d5842484f05e12121c511aa93f6439ec) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS 2011/04/19 09:42:17.0171 1580 \HardDisk0 - detected Rootkit.Win32.TDSS.tdl4 (0) 2011/04/19 09:42:17.0187 1580 ================================================================================ 2011/04/19 09:42:17.0187 1580 Scan finished 2011/04/19 09:42:17.0187 1580 ================================================================================ 2011/04/19 09:42:17.0203 1744 Detected object count: 1 2011/04/19 09:42:41.0593 1744 \HardDisk0 (Rootkit.Win32.TDSS.tdl4) - will be cured after reboot 2011/04/19 09:42:41.0593 1744 \HardDisk0 - ok 2011/04/19 09:42:41.0593 1744 Rootkit.Win32.TDSS.tdl4(\HardDisk0) - User select action: Cure 2011/04/19 09:43:22.0359 2648 Deinitialize success je continu la procédure
  15. MehDiZz
    bonjour Voila depuis quelques jours, quand je fait une recherche par google et que je souhaite ouvrir la page, il m'envoie directement sur une page qui n'a rien a voir, je tombe très souvent sur sois disant un moteur de recherche gomeo j'ai utilisé malwarebytes hier et aujourd'hui je suis redirigé vers des pages ebay . Help me SVP Merci
×
×
  • Créer...