Lyra_Uly

Bonjour, J'ai repris les instructions comme indiqué dans votre message. Malheureusement, MalwareBytes s'est encore arrêté et le pc a redémarré tout seul. Maintenant, en mode normal, le système est bloqué sur la fenêtre "Chargement de vos paramètres personnels" ! Cordialement,

Bonjour, Voici le fichier obtenu après Runfix : -------------- ========== OTL ========== Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully. ========== SERVICES/DRIVERS ========== Registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\winvnc deleted successfully. Registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\HidServ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\PDRFRAME deleted successfully. Registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\PDRELI deleted successfully. Registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\PDFRAME deleted successfully. Service\Driver key DCOMP not found. Registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\PCIDump deleted successfully. Registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\catchme deleted successfully. ========== REGISTRY ========== ========== FILES ========== OTLPE by OldTimer - Version 3.1.46.0 log created on 06102011_142342 -------------- Je reprends les instructions de votre premier post. Cordialement,

Bonjour, Voici le fichier Otl.txt demandé : ------------------- OTL logfile created on: 6/10/2011 9:20:28 AM - Run OTLPE by OldTimer - Version 3.1.46.0 Folder = X:\Programs\OTLPE Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM Internet Explorer (Version = 7.0.5730.11) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 502.00 Mb Total Physical Memory | 275.00 Mb Available Physical Memory | 55.00% Memory free 454.00 Mb Paging File | 332.00 Mb Available in Paging File | 73.00% Paging File free Paging file location(s): C:\pagefile.sys 756 1512 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 26.01 Gb Total Space | 12.04 Gb Free Space | 46.30% Space Free | Partition Type: NTFS Drive D: | 11.24 Gb Total Space | 11.16 Gb Free Space | 99.28% Space Free | Partition Type: NTFS Drive X: | 284.12 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS Computer Name: REATOGO | User Name: SYSTEM Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days Using ControlSet: ControlSet003 ========== Win32 Services (SafeList) ========== SRV - File not found [Auto] -- -- (winvnc) SRV - File not found [Disabled] -- -- (HidServ) SRV - [2011/02/23 10:04:19 | 000,042,184 | ---- | M] (AVAST Software) [Auto] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus) SRV - [2011/02/02 05:57:54 | 000,052,288 | ---- | M] (NOS Microsystems Ltd.) [On_Demand] -- C:\Program Files\NOS\bin\getPlus_Helper_3004.dll -- (nosGetPlusHelper) getPlus® SRV - [2008/12/01 05:59:52 | 000,033,752 | ---- | M] (NOS Microsystems Ltd.) [On_Demand] -- C:\Program Files\NOS\bin\getPlus_HelperSvc.exe -- (getPlus® Helper) getPlus® SRV - [2008/11/03 19:06:28 | 000,441,712 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv) SRV - [2007/08/09 03:27:52 | 000,073,728 | ---- | M] (HP) [Auto] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12) SRV - [2007/01/24 21:52:26 | 000,065,536 | ---- | M] () [Auto] -- C:\Program Files\Fichiers communs\NMSAccessU.exe -- (NMSAccessU) SRV - [2006/10/26 08:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose) ========== Driver Services (SafeList) ========== DRV - File not found [Kernel | On_Demand] -- -- (WDICA) DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP) DRV - File not found [Kernel | System] -- -- (PCIDump) DRV - File not found [Kernel | On_Demand] -- -- (PCAMPR5) DRV - File not found [Kernel | System] -- -- (lbrtfdc) DRV - File not found [Kernel | On_Demand] -- -- (Lavasoft Kernexplorer) DRV - File not found [Kernel | System] -- -- (Changer) DRV - File not found [Kernel | On_Demand] -- -- (catchme) DRV - File not found [Kernel | On_Demand] -- -- (.rasl2tp) DRV - [2011/06/05 10:08:24 | 000,024,416 | ---- | M] (Greatis Software) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\regguard.sys -- (RegGuard) DRV - [2011/05/29 03:11:30 | 000,039,984 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy) DRV - [2011/02/23 09:56:55 | 000,371,544 | ---- | M] (AVAST Software) [File_System | System] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx) DRV - [2011/02/23 09:56:45 | 000,301,528 | ---- | M] (AVAST Software) [Kernel | System] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP) DRV - [2011/02/23 09:55:49 | 000,049,240 | ---- | M] (AVAST Software) [Kernel | System] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi) DRV - [2011/02/23 09:55:47 | 000,102,232 | ---- | M] (AVAST Software) [File_System | Auto] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2) DRV - [2011/02/23 09:55:10 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr) DRV - [2011/02/23 09:54:57 | 000,030,680 | ---- | M] (AVAST Software) [Kernel | System] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4) DRV - [2011/02/23 09:54:55 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2009/02/13 06:02:52 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\wdcsam.sys -- (WDC_SAM) DRV - [2008/04/13 14:56:49 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\usb8023.sys -- (USB_RNDIS) DRV - [2008/04/13 14:56:06 | 000,088,320 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx) DRV - [2008/04/13 14:53:09 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm) DRV - [2005/11/18 21:13:18 | 000,020,096 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\PCASp50.sys -- (PCASp50) DRV - [2004/11/22 12:36:15 | 000,017,134 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand] -- C:\WINDOWS\system32\PCANDIS5.sys -- (PCANDIS5) DRV - [2003/04/04 13:19:48 | 000,535,301 | ---- | M] (OpenInterface INC.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\OIIBTUSB.sys -- (OIIBTUSB) DRV - [2003/04/04 13:02:32 | 000,023,296 | ---- | M] (Fujitsu Limited.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\FjBtSco.sys -- (FjBtSco) DRV - [2003/03/07 06:11:44 | 002,390,528 | ---- | M] (Intel® Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\w70n51.sys -- (w70n51) Pilote Intel® DRV - [2003/01/17 01:01:52 | 000,202,480 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\STAC97.sys -- (STAC97) Audio Driver (WDM) DRV - [2002/11/22 06:21:18 | 001,157,856 | ---- | M] (Agere Systems) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem) DRV - [2002/11/20 10:52:36 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\gv3.sys -- (gv3) DRV - [2002/10/03 22:04:10 | 000,046,976 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\R8139n51.sys -- (rtl8139) DRV - [2002/08/30 08:00:00 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb) DRV - [2002/08/30 08:00:00 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx) DRV - [2002/08/14 10:03:36 | 000,017,005 | ---- | M] (Adaptec) [Kernel | Auto] -- C:\WINDOWS\System32\drivers\ASPI32.SYS -- (Aspi32) DRV - [2002/07/31 05:20:06 | 000,014,976 | ---- | M] (Fujitsu Limited.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\FjBtHS.sys -- (FjBtHS_simple) Fujitsu Bluetooth Audio (SCO) DRV - [2002/07/09 15:32:20 | 000,008,864 | ---- | M] (OpenInterface Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\oiind2ku.sys -- (OiiNd2kU) DRV - [2002/01/17 08:53:32 | 000,056,573 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\Apfiltr.sys -- (ApfiltrService) DRV - [2001/11/05 03:23:52 | 000,299,923 | ---- | M] (Sony Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\sonyhcs.sys -- (sonyhcs) DRV - [2001/11/05 03:23:14 | 000,006,097 | ---- | M] (Sony Corporation) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\sonyhcb.sys -- (sonyhcb) DRV - [2001/09/07 04:01:34 | 000,006,000 | ---- | M] (Fujitsu Limited) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\FUJ02E1.sys -- (FUJ02E1) DRV - [2001/08/23 12:21:42 | 000,036,937 | ---- | M] (SMC) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\smcirda.sys -- (SMCIRDA) DRV - [2001/08/02 01:00:22 | 000,005,248 | ---- | M] (FUJITSU LIMITED) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\fuj02b1.sys -- (FUJ02B1) DRV - [2000/10/24 00:39:00 | 000,073,216 | ---- | M] () [Kernel | Auto] -- C:\WINDOWS\System32\Drivers\SENTINEL.SYS -- (Sentinel) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\Administrateur_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\GERMAIN_ON_C\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Yahoo! Search IE - HKU\GERMAIN_ON_C\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = {searchTerms} - Yahoo! Search Results IE - HKU\GERMAIN_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = Google IE - HKU\GERMAIN_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\LocalService_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\NetworkService_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011/01/30 15:34:55 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2011/06/05 09:17:48 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/06/09 10:14:39 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/06/09 03:28:10 | 000,000,000 | ---D | M] [2011/06/09 10:14:38 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2011/04/14 12:47:17 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll [2010/01/01 04:00:00 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml [2010/01/01 04:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\bing.xml [2010/01/01 04:00:00 | 000,001,822 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml [2010/01/01 04:00:00 | 000,001,154 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml [2010/01/01 04:00:00 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml [2010/01/01 04:00:00 | 000,000,956 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml O1 HOSTS File: ([2011/06/08 14:25:18 | 000,434,233 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\HOSTS O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: 127.0.0.1 www.007guard.com O1 - Hosts: 127.0.0.1 007guard.com O1 - Hosts: 127.0.0.1 008i.com O1 - Hosts: 127.0.0.1 www.008k.com O1 - Hosts: 127.0.0.1 008k.com O1 - Hosts: 127.0.0.1 www.00hq.com O1 - Hosts: 127.0.0.1 00hq.com O1 - Hosts: 127.0.0.1 010402.com O1 - Hosts: 127.0.0.1 www.032439.com O1 - Hosts: 127.0.0.1 032439.com O1 - Hosts: 127.0.0.1 www.0scan.com O1 - Hosts: 127.0.0.1 0scan.com O1 - Hosts: 127.0.0.1 1000gratisproben.com O1 - Hosts: 127.0.0.1 www.1000gratisproben.com O1 - Hosts: 127.0.0.1 1001namen.com O1 - Hosts: 127.0.0.1 www.1001namen.com O1 - Hosts: 127.0.0.1 100888290cs.com O1 - Hosts: 127.0.0.1 www.100888290cs.com O1 - Hosts: 127.0.0.1 www.100sexlinks.com O1 - Hosts: 127.0.0.1 100sexlinks.com O1 - Hosts: 127.0.0.1 10sek.com O1 - Hosts: 127.0.0.1 www.10sek.com O1 - Hosts: 127.0.0.1 www.1-2005-search.com O1 - Hosts: 127.0.0.1 1-2005-search.com O1 - Hosts: 14971 more lines... O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll () O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.) O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll () O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.) O3 - HKU\GERMAIN_ON_C\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.) O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [TkBellExe] C:\program files\real\realplayer\update\realsched.exe (RealNetworks, Inc.) O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe (Hewlett-Packard Co.) O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe () O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\Administrateur_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\GERMAIN_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\GERMAIN_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\GERMAIN_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation) O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft.com/fwlink/?linkid=39204 (Windows Genuine Advantage Validation Tool) O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1231435882404 (MUWebControl Class) O16 - DPF: {88764F69-3831-4EC1-B40B-FF21D8381345} https://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP-1.1.cab (AdVerifierADPCtrl Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} http://game12.zylom.com/activex/zylomgamesplayer.cab (Zylom Games Player) O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} http://wwwimages.adobe.com/www.adobe.com/products/acrobat/nos/gp.cab (Reg Error: Key error.) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/get/flashplayer/current/swflash.cab (Shockwave Flash Object) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.) O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.) O18 - Protocol\Handler\cetihpz {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll (Hewlett-Packard Company) O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\igfxcui: DllName - igfxsrvc.dll - C:\WINDOWS\System32\igfxsrvc.dll (Intel Corporation) O24 - Desktop Components:0 (Ma page d'accueil) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\FSC_BACK.BMP O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\FSC_BACK.BMP O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2002/09/20 06:36:59 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2006/03/24 07:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== File not found -- C:\Documents and Settings\GERMAIN\Bureau\Masters_ergo-V[1][1].1contribFDarses. [2011/06/09 10:54:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Malwarebytes' Anti-Malware [2011/06/09 10:54:08 | 000,039,984 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2011/06/09 10:54:03 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2011/06/09 10:54:02 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malwarebis [2011/06/09 10:41:41 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\GERMAIN\Recent [2011/06/09 10:35:53 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Remover [2011/06/09 03:32:01 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2011/06/08 14:22:06 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2011/06/08 11:31:26 | 000,000,000 | -HSD | C] -- C:\WINDOWS\system32\config\systemprofile\Cookies [2011/06/08 11:24:57 | 000,000,000 | ---D | C] -- C:\Program Files\MSSOAP [2011/06/08 11:24:02 | 000,000,000 | ---D | C] -- C:\Program Files\Webroot [2011/06/08 09:34:58 | 000,000,000 | ---D | C] -- C:\_OTL [2011/06/08 08:39:20 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2011/06/08 07:40:13 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\LocalService\Cookies [2011/06/08 07:27:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp [2011/06/07 14:48:02 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2011/06/07 09:30:46 | 000,000,000 | RHSD | C] -- C:\cmdcons [2011/06/07 09:17:58 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe [2011/06/07 09:17:58 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe [2011/06/07 09:17:58 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe [2011/06/07 09:17:58 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe [2011/06/07 09:17:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT [2011/06/07 09:15:43 | 000,000,000 | ---D | C] -- C:\Qoobox [2011/06/07 09:15:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\GERMAIN\Mes documents\Mes vidéos [2011/06/07 08:21:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Adobe [2011/06/06 05:29:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Spybot - Search & Destroy [2011/06/06 05:29:42 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy [2011/06/06 01:31:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\GERMAIN\Application Data\Malwarebytes [2011/06/06 01:30:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes [2011/06/05 13:40:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Bureau [2011/06/05 12:40:23 | 000,098,392 | ---- | C] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys [2011/06/05 12:30:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\GERMAIN\Local Settings\Application Data\Sunbelt Software [2011/06/05 12:26:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft [2011/06/05 12:02:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Macromedia [2011/06/05 12:01:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Adobe [2011/06/05 09:59:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\RegRunInfo [2011/06/05 09:51:31 | 000,024,416 | ---- | C] (Greatis Software) -- C:\WINDOWS\System32\drivers\regguard.sys [2011/06/05 09:43:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\GERMAIN\Mes documents\RegRun2 [2011/06/05 09:29:24 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC [2011/06/05 09:18:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\avast! Free Antivirus [2011/06/05 09:18:27 | 000,019,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys [2011/06/05 09:18:26 | 000,301,528 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys [2011/06/05 09:18:21 | 000,049,240 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys [2011/06/05 09:18:21 | 000,025,432 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys [2011/06/05 09:18:20 | 000,371,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys [2011/06/05 09:18:19 | 000,102,232 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys [2011/06/05 09:18:19 | 000,096,344 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys [2011/06/05 09:18:15 | 000,030,680 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys [2011/06/05 09:17:45 | 000,040,648 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr [2011/06/05 09:17:43 | 000,190,016 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe [2011/06/05 09:17:10 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software [2011/06/05 09:17:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVAST Software [2011/06/03 15:49:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\GERMAIN\Application Data\Raedp [2011/06/03 15:49:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\GERMAIN\Application Data\Liryin [2011/05/22 12:41:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\GERMAIN\Mes documents\SOUTENANCE [2011/05/15 12:43:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\GERMAIN\Mes documents\film [2011/05/14 06:49:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\GERMAIN\Mes documents\rapport [2011/05/11 12:06:32 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft CAPICOM 2.1.0.2 [1 C:\Documents and Settings\GERMAIN\Application Data\*.tmp files -> C:\Documents and Settings\GERMAIN\Application Data\*.tmp -> ] [1 C:\Documents and Settings\GERMAIN\*.tmp files -> C:\Documents and Settings\GERMAIN\*.tmp -> ] ========== Files - Modified Within 30 Days ========== File not found -- C:\Documents and Settings\GERMAIN\Bureau\Masters_ergo-V[1][1].1contribFDarses. [2060/08/18 14:02:32 | 002,023,424 | ---- | M] (Inprise Corporation) -- C:\WINDOWS\System32\Vcl50.bpl [2060/08/18 14:02:22 | 001,496,064 | ---- | M] (Inprise Corporation) -- C:\WINDOWS\System32\Cc3250mt.dll [2060/08/18 14:02:12 | 000,248,832 | ---- | M] (Inprise Corporation) -- C:\WINDOWS\System32\Vclx50.bpl [2060/08/18 13:40:44 | 000,909,824 | ---- | M] (Inprise Corporation) -- C:\WINDOWS\System32\Cp3245mt.dll [2060/08/18 13:40:44 | 000,024,064 | ---- | M] (Inprise Corporation) -- C:\WINDOWS\System32\Borlndmm.dll [2011/06/10 02:12:43 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011/06/10 02:11:08 | 000,000,438 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.ics [2011/06/10 02:10:58 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011/06/10 02:10:34 | 000,000,282 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-907890485-756560522-790119582-1004.job [2011/06/09 15:25:52 | 000,000,290 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-907890485-756560522-790119582-1004.job [2011/06/09 15:24:00 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2011/06/09 15:11:48 | 000,879,099 | ---- | M] () -- C:\Documents and Settings\GERMAIN\Bureau\SecurityCheck.exe [2011/06/09 10:56:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Malwarebytes' Anti-Malware [2011/06/09 10:54:09 | 000,000,811 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk [2011/06/09 10:35:54 | 000,001,560 | ---- | M] () -- C:\Documents and Settings\GERMAIN\Bureau\AD-R.lnk [2011/06/09 10:14:46 | 000,000,748 | ---- | M] () -- C:\Documents and Settings\GERMAIN\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk [2011/06/09 10:14:46 | 000,000,736 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk [2011/06/09 10:14:46 | 000,000,730 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Mozilla Firefox.lnk [2011/06/08 15:28:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Reflex'English [2011/06/08 15:28:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Lifebook Application Panel [2011/06/08 14:25:18 | 000,434,233 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\HOSTS [2011/06/08 14:22:58 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20110608-202518.backup [2011/06/08 11:37:00 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20110608-201904.backup [2011/06/08 11:23:12 | 000,000,164 | ---- | M] () -- C:\WINDOWS\install.dat [2011/06/08 11:06:25 | 001,007,120 | ---- | M] () -- C:\Documents and Settings\GERMAIN\Bureau\rkill.com [2011/06/07 14:48:02 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2011/06/07 12:53:16 | 000,000,000 | R--D | M] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage [2011/06/07 09:30:57 | 000,000,328 | RHS- | M] () -- C:\boot.ini [2011/06/06 05:29:58 | 000,000,939 | ---- | M] () -- C:\Documents and Settings\GERMAIN\Bureau\Spybot - Search & Destroy.lnk [2011/06/06 05:29:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Spybot - Search & Destroy [2011/06/05 12:40:19 | 000,098,392 | ---- | M] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys [2011/06/05 10:08:24 | 000,024,416 | ---- | M] (Greatis Software) -- C:\WINDOWS\System32\drivers\regguard.sys [2011/06/05 09:57:18 | 000,013,574 | -HS- | M] () -- C:\Documents and Settings\GERMAIN\Local Settings\Application Data\44j0236824c3v150c3873gnlwu800h0f15vxj3il82eua [2011/06/05 09:57:18 | 000,013,574 | -HS- | M] () -- C:\Documents and Settings\All Users\Application Data\44j0236824c3v150c3873gnlwu800h0f15vxj3il82eua [2011/06/05 09:43:34 | 000,003,120 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2011/06/05 09:43:34 | 000,002,012 | ---- | M] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2011/06/05 09:43:34 | 000,000,002 | RHS- | M] () -- C:\WINDOWS\winstart.bat [2011/06/05 09:18:28 | 000,001,695 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\avast! Free Antivirus.lnk [2011/06/05 09:18:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\avast! Free Antivirus [2011/06/03 15:49:41 | 000,000,000 | -HS- | M] () -- C:\Documents and Settings\GERMAIN\Application Data\_time [2011/05/29 14:37:44 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn [2011/05/29 03:11:30 | 000,039,984 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2011/05/29 03:11:20 | 000,022,712 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2011/05/23 03:42:08 | 000,118,468 | ---- | M] () -- C:\logfile [2011/05/22 14:13:05 | 000,017,619 | ---- | M] () -- C:\Documents and Settings\GERMAIN\Mes documents\Photos d'identité.pdf [2011/05/22 14:01:22 | 000,648,888 | ---- | M] () -- C:\Documents and Settings\GERMAIN\Mes documents\BAFA Pratique.pdf [2011/05/22 14:00:39 | 000,550,821 | ---- | M] () -- C:\Documents and Settings\GERMAIN\Mes documents\_BAFA.pdf [2011/05/15 06:20:27 | 000,703,488 | R--- | M] () -- C:\Documents and Settings\All Users\Documents\ESBK.mb [2011/05/15 06:20:25 | 001,321,984 | R--- | M] () -- C:\Documents and Settings\All Users\Documents\ESBK.mbb [2011/05/15 06:15:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft Office [2011/05/14 07:51:45 | 000,356,952 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [1 C:\Documents and Settings\GERMAIN\Application Data\*.tmp files -> C:\Documents and Settings\GERMAIN\Application Data\*.tmp -> ] [1 C:\Documents and Settings\GERMAIN\*.tmp files -> C:\Documents and Settings\GERMAIN\*.tmp -> ] ========== Files Created - No Company Name ========== [2011/06/09 15:12:22 | 001,007,120 | ---- | C] () -- C:\Documents and Settings\GERMAIN\Bureau\rkill.com [2011/06/09 15:12:22 | 000,879,099 | ---- | C] () -- C:\Documents and Settings\GERMAIN\Bureau\SecurityCheck.exe [2011/06/09 10:54:09 | 000,000,811 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk [2011/06/09 10:35:53 | 000,001,560 | ---- | C] () -- C:\Documents and Settings\GERMAIN\Bureau\AD-R.lnk [2011/06/09 10:14:46 | 000,000,748 | ---- | C] () -- C:\Documents and Settings\GERMAIN\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk [2011/06/09 10:14:46 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Mozilla Firefox.lnk [2011/06/09 10:14:45 | 000,000,736 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk [2011/06/08 11:23:09 | 000,000,164 | ---- | C] () -- C:\WINDOWS\install.dat [2011/06/07 09:30:57 | 000,000,212 | ---- | C] () -- C:\Boot.bak [2011/06/07 09:30:53 | 000,263,488 | RHS- | C] () -- C:\cmldr [2011/06/07 09:17:58 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe [2011/06/07 09:17:58 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe [2011/06/07 09:17:58 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2011/06/07 09:17:58 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2011/06/07 09:17:58 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2011/06/06 05:29:58 | 000,000,939 | ---- | C] () -- C:\Documents and Settings\GERMAIN\Bureau\Spybot - Search & Destroy.lnk [2011/06/05 12:23:55 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2011/06/05 09:43:34 | 000,000,002 | RHS- | C] () -- C:\WINDOWS\winstart.bat [2011/06/05 09:18:28 | 000,001,695 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\avast! Free Antivirus.lnk [2011/06/03 15:49:41 | 000,000,000 | -HS- | C] () -- C:\Documents and Settings\GERMAIN\Application Data\_time [2011/06/03 15:47:53 | 000,013,574 | -HS- | C] () -- C:\Documents and Settings\GERMAIN\Local Settings\Application Data\44j0236824c3v150c3873gnlwu800h0f15vxj3il82eua [2011/06/03 15:47:53 | 000,013,574 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\44j0236824c3v150c3873gnlwu800h0f15vxj3il82eua [2011/05/22 14:13:04 | 000,017,619 | ---- | C] () -- C:\Documents and Settings\GERMAIN\Mes documents\Photos d'identité.pdf [2011/05/22 14:01:21 | 000,648,888 | ---- | C] () -- C:\Documents and Settings\GERMAIN\Mes documents\BAFA Pratique.pdf [2011/05/22 14:00:35 | 000,550,821 | ---- | C] () -- C:\Documents and Settings\GERMAIN\Mes documents\_BAFA.pdf [2009/10/07 03:49:24 | 000,001,356 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache [2008/12/09 14:16:47 | 000,008,680 | ---- | C] () -- C:\Documents and Settings\GERMAIN\.recently-used.xbel [2008/11/06 12:37:32 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll [2008/11/06 12:33:02 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll [2008/09/09 11:33:58 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2008/06/05 12:24:37 | 000,000,052 | ---- | C] () -- C:\WINDOWS\Relax.ini [2008/03/23 09:44:00 | 000,149,504 | ---- | C] () -- C:\WINDOWS\UNWISE.EXE [2008/03/23 09:44:00 | 000,005,885 | ---- | C] () -- C:\WINDOWS\UNWISE.INI [2007/11/04 06:07:26 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll [2007/04/05 14:25:57 | 000,008,192 | -HS- | C] () -- C:\WINDOWS\o2cLicStore.bin [2007/04/05 14:25:56 | 000,000,503 | ---- | C] () -- C:\WINDOWS\FeMakro.ini [2007/04/05 14:25:56 | 000,000,497 | ---- | C] () -- C:\WINDOWS\FeAnim.ini [2007/01/24 21:52:26 | 000,065,536 | ---- | C] () -- C:\Program Files\Fichiers communs\NMSAccessU.exe [2006/05/10 01:56:20 | 000,000,206 | ---- | C] () -- C:\WINDOWS\HPGdiPlus.ini [2005/12/15 10:33:10 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\CloseWiz32.exe [2005/11/08 09:44:23 | 000,104,658 | ---- | C] () -- C:\WINDOWS\hpoins04.dat [2005/11/08 09:44:23 | 000,017,176 | ---- | C] () -- C:\WINDOWS\hpomdl04.dat [2005/11/08 08:38:38 | 000,104,326 | ---- | C] () -- C:\WINDOWS\hpoins04.dat.temp [2005/10/16 11:07:02 | 000,895,488 | ---- | C] () -- C:\Program Files\iview397.exe [2005/04/16 06:21:29 | 000,100,724 | ---- | C] () -- C:\WINDOWS\cpeins04.dat [2005/04/16 06:21:29 | 000,017,176 | ---- | C] () -- C:\WINDOWS\hpomdl04.dat.temp [2005/03/30 10:40:38 | 000,000,681 | ---- | C] () -- C:\WINDOWS\cdplayer.ini [2005/02/01 05:27:00 | 000,000,000 | ---- | C] () -- C:\WINDOWS\audio.INI [2005/02/01 05:17:59 | 000,000,221 | ---- | C] () -- C:\WINDOWS\PowerReg.dat [2005/02/01 05:17:49 | 000,000,173 | ---- | C] () -- C:\WINDOWS\srlink.ini [2005/02/01 05:17:49 | 000,000,040 | ---- | C] () -- C:\WINDOWS\System32\sx96.ini [2005/02/01 05:17:30 | 000,021,504 | ---- | C] () -- C:\WINDOWS\System32\docobj.dll [2004/12/14 09:09:34 | 000,000,804 | ---- | C] () -- C:\Documents and Settings\GERMAIN\Eudora.lnk [2004/11/12 04:05:23 | 000,278,528 | ---- | C] () -- C:\Program Files\Fichiers communs\FDEUnInstaller.exe [2004/10/22 01:30:55 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2004/06/22 08:46:56 | 000,005,600 | ---- | C] () -- C:\WINDOWS\System32\STCI.DLL [2004/06/01 05:47:44 | 000,003,654 | ---- | C] () -- C:\WINDOWS\System32\drivers\Sonyhcp.dll [2004/05/18 03:09:49 | 000,000,520 | ---- | C] () -- C:\WINDOWS\netdet.ini [2004/05/18 03:09:03 | 000,000,639 | ---- | C] () -- C:\WINDOWS\M3JPEG.INI [2004/05/18 02:58:01 | 000,082,432 | ---- | C] () -- C:\Documents and Settings\GERMAIN\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2004/05/09 08:11:32 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2004/05/09 06:31:44 | 000,679,936 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2004/05/04 07:22:57 | 000,006,550 | ---- | C] () -- C:\WINDOWS\jautoexp.dat [2004/03/02 05:13:23 | 000,000,379 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2004/03/02 05:13:23 | 000,000,063 | ---- | C] () -- C:\WINDOWS\mdm.ini [2004/03/02 05:13:13 | 000,000,000 | ---- | C] () -- C:\WINDOWS\NSREX.INI [2004/02/06 09:15:50 | 000,000,130 | ---- | C] () -- C:\Documents and Settings\GERMAIN\Local Settings\Application Data\fusioncache.dat [2004/01/12 15:43:36 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini [2003/01/10 07:35:03 | 000,000,821 | ---- | C] () -- C:\WINDOWS\orun32.ini [2002/12/16 10:49:28 | 000,004,499 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat [2002/12/16 10:49:25 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2002/09/20 14:37:23 | 000,510,980 | ---- | C] () -- C:\WINDOWS\System32\perfh00C.dat [2002/09/20 14:37:23 | 000,322,810 | ---- | C] () -- C:\WINDOWS\System32\perfi00C.dat [2002/09/20 14:37:23 | 000,084,964 | ---- | C] () -- C:\WINDOWS\System32\perfc00C.dat [2002/09/20 14:37:23 | 000,034,108 | ---- | C] () -- C:\WINDOWS\System32\perfd00C.dat [2002/09/20 14:36:29 | 000,441,458 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2002/09/20 14:36:29 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2002/09/20 14:36:28 | 000,071,394 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2002/09/20 14:36:28 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2002/09/20 14:36:18 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat [2002/09/20 14:36:03 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2002/09/20 14:36:02 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2002/09/20 14:35:34 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2002/09/20 14:35:19 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin [2002/09/20 07:24:26 | 000,004,207 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2002/09/20 07:22:56 | 000,356,952 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2002/09/20 07:02:11 | 000,000,137 | ---- | C] () -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\fusioncache.dat [2002/09/20 06:41:32 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2002/09/20 06:32:05 | 000,021,892 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2000/10/24 00:39:00 | 000,073,216 | ---- | C] () -- C:\WINDOWS\System32\drivers\sentinel.sys [2000/10/24 00:39:00 | 000,017,920 | ---- | C] () -- C:\WINDOWS\System32\rnbovdd.dll ========== LOP Check ========== [2004/01/12 15:36:43 | 000,000,000 | ---D | M] -- C:\WINDOWS\system32\config\systemprofile\Application Data\InterTrust [2005/12/07 10:20:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GERMAIN\Application Data\AVG7 [2006/04/10 06:27:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GERMAIN\Application Data\eConf [2008/04/20 08:55:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GERMAIN\Application Data\FMZilla [2008/12/09 14:18:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GERMAIN\Application Data\gtk-2.0 [2004/01/12 15:36:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GERMAIN\Application Data\InterTrust [2004/03/04 08:33:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GERMAIN\Application Data\InterVideo [2005/06/17 02:48:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GERMAIN\Application Data\Leadertech [2011/06/04 13:24:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GERMAIN\Application Data\Liryin [2004/12/14 09:09:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GERMAIN\Application Data\Qualcomm [2011/06/05 10:01:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GERMAIN\Application Data\Raedp [2010/11/15 04:45:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\GERMAIN\Application Data\Western Digital [2005/12/07 10:20:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\AVG7 [2011/01/19 08:01:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software [2011/06/05 09:17:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVAST Software [2007/03/23 04:03:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG7 [2004/11/12 08:38:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Prism [2008/11/09 12:06:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Zylom ========== Purity Check ========== < End of report > ------------------- Cordialement,

Bonsoir, J'ai effectué les étapes jusqu'au lancement de MalwareBytes. J'ai eu une erreur Rundll, mais MalwareBytes s'est quand même lancé ! Malheureusement, au bout de quelques minutes de travail (environ 48000 fichiers étudiés), le pc a redémarré tout seul, alors que la recherche n'était pas encore terminée. Et au retour sur le bureau, j'ai une erreur Rundll sur le chargement du fichier 01dbc1e.cpl. Cordialement,

Bonsoir, Merci pour vos informations. Je vous tiens au courant.

Bonjour, Je viens de récupérer un portable Fujitsu installé avec XP Professionnel SP3. Il n'avait pas d'antivirus, j'ai installé avast qui a détecté 79 problèmes et les a tous corrigés. J'ai ensuite installé CCleaner, puis AdAware qui a détecté des programmes malveillants mais qui ne s'est pas terminé correctement, puisqu'au bout de 15 minutes de balayage un écran bleu est apparu et le pc a rebooté tout seul. J'ai également essayé MalwareBytes en désinstallant auparavant AdAware, mais même résultat, aussi bien en mode sans échec qu'en mode normal. J'ai installé Spybot, qui a détecté et corrigé des erreurs. J'ai découvert par ailleurs qu'il m'était impossible de conserver ma page d'accueil sous Mozilla ou IE : à chaque ouverture du logiciel, il me remet une page sur "Western Union" ! Enfin, les mises à jour Windows ne se font pas : je ne peux même pas accéder au site Windows Update, le message "adresse introuvable apparaît". Si quelqu'un a une idée, merci.