ROUCHEL

salut, Ca fait un moment que je n'ai pas donné de nouvelles. Alors voilà la BONNE nouvelle. Tout fonctionne. Après réinstallation de pas mal de drivers :package sony, vaio control center, recherche de pilotes, tentatives de combinaisons types de clavier/pilotes variées, le problème des touches Ctrl, Alt, et AltGr restait sans solution. Je suis finalement allé chez Sony avenue Georges V,où ils commencent par me dire qu'il faut changer le clavier et que c'est 150 euros. J'insiste, et ils me donnent une adresse de réparateurs. J'y vais et, en discutant avec les mecs (des vieux informaticiens blanchis sous le harnais), je dis "est-ce ça ne viendrait pas de la nappe du clavier??!!! Ils ouvrent la bête et, Ô JOIE, le clip de la nappe était fendu (sueurs froides, car alors il faut changer la carte mère). Finalement, il récupère un clip sur un autre ordi,le gratte,le rabote pour qu'il soit à la bonne dimension, l'installe, referme le tout. Reboot.........et ........ Tout est OK!!! c'est génial Ces types sont des sorciers du hard. Vous des sorciers du soft. Et moi ,je suis juste content de ne pas avoir lâché le morceau. Merci pour tout.

j'aimerais savoir si ces hkqquechose sont des services à démarrer. J'ai essayé de mettre les fichiers dans c:\Documents and Settings\christophe\Menu Démarrer\Programmes\Démarrage mais ça plante à tout va. Est-ce qu'il ne manque pas un pgm du genre HKcmds qui gère les autres? A+ Je dois partir dans une demi-heure; je pense que je te laisserai tranquille ce soir A+ Bon je viens de découvrir les emoticons( enfin pas completement quand même), il y en a des rigolotes.

je ne suis pas fou mais j'ai reçu ce mail de notification d'un message ROUCHEL, bleuet vous a envoyé une nouvelle conversation personnelle intitulée "touches clavier,etc.....". bleuet dit : ====================================================================== salut, La désinfection s'est bien passée. Concernant tes touches une note dans le 1er sujet concernant le logiciel de SONY. ====================================================================== VEUILLEZ NE PAS RÉPONDRE DIRECTEMENT À CE COURRIEL ! Vous pouvez répondre à cette conversation personnelle en suivant le lien ci-dessous : la confusion vient de là, le "etc..." A+

oui, j'ai fait les vérifications et nettoyages indiqués. je ne trouve pas le sujet "touches inactives etc" ???!!!! A+

il s'agit des touches de la ligne du bas du clavier de part et d'autre de SPACE à savoir Ctrl, Fn (touche violette fonction "média" où Fn + f3 = coupe le son Fn + f4 = augmente le son Fn + f5 = gère la luminosité Fn + f6 = permet de switcher entre 2 affichages , écran et rétroprojecteur par exemple). touche windows = OK barre space = OK AltGr = KO Touche menu contextuel en cours =OK Touche Ctrl = KO flèches directionnelles , gauche bas droite = OK

bonjour, le problème c'est que je n'ai pas le choix de plusieurs pilotes seulement standard 102 touches ( 2 fichiers de pilote : i8042prt.sys et kbdclass.sys dans system32\drivers)

salut, merci, je suis déjà aller télécharger les pilotes et utilities pour cette machine. mais ça n'a rien donné. Peut-être y a-t-il un ordre à respecter pour installer ? ou bien il manque un GRT9"autre chose" ? j'avais posté une grosse bafouille concernant l'état de mes cogitations/recherches de piste ( surchauffe ??), mais je ne vois pas ce post dans la conversation! .......bizarre. bref! des pgm Hkserv.exe j'en ai trouvé chez intel, nvidia , sony ... il en sort de partout. il n'y a pas mieux pour se marcher sur les pieds. J'ai copié : HKexec.exe HKexecLocale.dll HKRes.dll HKServ.exe HKWnd.exe HKWnd.exe.manifest dans system32 mais je n'arrive pas à faire démarrer ces process dans msconfig. A+ A+

bonjour, merci pour tout, vous êtes très efficaces et ça a été un plaisir de passer entre vos mains expertes. j'aurais sans doute l'occasion de revenir souvent sur ce site. en tout cas j'en ferai la publicité. je m'occupe des recommandations pour prendre soin de la machine. ainsi que de reprendre contact avec le sujet hard/soft A+ mes amitiés à bleuet

ci joint le rapport OTL ******************************************** All processes killed ========== OTL ========== Prefs.js: "SweetIM Search" removed from browser.search.defaultenginename Prefs.js: "SweetIM Search" removed from browser.search.selectedEngine Prefs.js: "http://home.sweetim.com" removed from browser.startup.homepage Prefs.js: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2583879&q="*/ removed from keyword.URL Prefs.js: "" removed from sweetim.toolbar.previous.browser.search.defaultenginename Prefs.js: "" removed from sweetim.toolbar.previous.browser.search.defaulturl Prefs.js: "" removed from sweetim.toolbar.previous.browser.search.selectedEngine C:\Documents and Settings\christophe\Application Data\Mozilla\Firefox\Profiles\1989gdqa.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}\META-INF folder moved successfully. C:\Documents and Settings\christophe\Application Data\Mozilla\Firefox\Profiles\1989gdqa.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}\components folder moved successfully. C:\Documents and Settings\christophe\Application Data\Mozilla\Firefox\Profiles\1989gdqa.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}\chrome folder moved successfully. C:\Documents and Settings\christophe\Application Data\Mozilla\Firefox\Profiles\1989gdqa.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f} folder moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{465E08E7-F005-4389-980F-1D8764B3486C}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{465E08E7-F005-4389-980F-1D8764B3486C}\ not found. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{74F475FA-6C75-43BD-AAB9-ECDA6184F600}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{74F475FA-6C75-43BD-AAB9-ECDA6184F600}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9ECB9560-04F9-4bbc-943D-298DDF1699E1}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9ECB9560-04F9-4bbc-943D-298DDF1699E1}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\ deleted successfully. C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDF3E430-B101-42AD-A544-FADC6B084872}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BDF3E430-B101-42AD-A544-FADC6B084872}\ deleted successfully. Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found. Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully. Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully. ========== SERVICES/DRIVERS ========== ========== REGISTRY ========== ========== FILES ========== < ipconfig /flushdns /c > Configuration IP de Windows Cache de résolution DNS vidé. C:\Documents and Settings\christophe\Bureau\cmd.bat deleted successfully. C:\Documents and Settings\christophe\Bureau\cmd.txt deleted successfully. C:\WINDOWS\tasks\AppleSoftwareUpdate.job moved successfully. C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully. C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully. File\Folder C:\*.sqm not found. C:\WINDOWS\System32\ConduitEngine.tmp moved successfully. C:\WINDOWS\System32\CONFIG.TMP moved successfully. C:\WINDOWS\System32\SET37.tmp moved successfully. C:\WINDOWS\System32\SET39.tmp moved successfully. C:\WINDOWS\System32\SET3D.tmp moved successfully. C:\WINDOWS\System32\SET3E.tmp moved successfully. C:\WINDOWS\System32\SET45.tmp moved successfully. C:\WINDOWS\System32\SET47.tmp moved successfully. C:\WINDOWS\System32\SET4E.tmp moved successfully. C:\WINDOWS\System32\SET4F.tmp moved successfully. C:\WINDOWS\System32\SET50.tmp moved successfully. C:\WINDOWS\System32\SET53.tmp moved successfully. C:\WINDOWS\002356_.tmp moved successfully. C:\WINDOWS\005365_.tmp moved successfully. ========== COMMANDS ========== [EMPTYTEMP] User: admin ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Java cache emptied: 6616699 bytes ->FireFox cache emptied: 58598133 bytes ->Apple Safari cache emptied: 133921792 bytes ->Flash cache emptied: 35265 bytes User: All Users User: antonin ->Temp folder emptied: 4730 bytes ->Temporary Internet Files folder emptied: 91611105 bytes ->Java cache emptied: 41019315 bytes ->FireFox cache emptied: 24205562 bytes ->Google Chrome cache emptied: 42046909 bytes ->Apple Safari cache emptied: 54492160 bytes ->Flash cache emptied: 47261 bytes User: christophe ->Temp folder emptied: 59486395 bytes ->Temporary Internet Files folder emptied: 8124069 bytes ->Java cache emptied: 17914852 bytes ->FireFox cache emptied: 51947743 bytes ->Google Chrome cache emptied: 231199899 bytes ->Apple Safari cache emptied: 38709248 bytes ->Flash cache emptied: 2817637 bytes User: Default User ->Temporary Internet Files folder emptied: 33184 bytes User: francoise ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Java cache emptied: 34947442 bytes ->FireFox cache emptied: 27412310 bytes ->Apple Safari cache emptied: 79080448 bytes ->Flash cache emptied: 9578 bytes User: LocalService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 65670 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 32902 bytes User: ninon ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Java cache emptied: 22591900 bytes ->Apple Safari cache emptied: 12815360 bytes ->Flash cache emptied: 25606 bytes User: pauline ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Java cache emptied: 31926246 bytes ->FireFox cache emptied: 87614317 bytes ->Apple Safari cache emptied: 69668864 bytes ->Flash cache emptied: 28912 bytes %systemdrive% .tmp files removed: 4 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 114688 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 1422559 bytes RecycleBin emptied: 134 bytes Total Files Cleaned = 1 174,00 mb [EMPTYFLASH] User: admin ->Flash cache emptied: 0 bytes User: All Users User: antonin ->Flash cache emptied: 0 bytes User: christophe ->Flash cache emptied: 0 bytes User: Default User User: francoise ->Flash cache emptied: 0 bytes User: LocalService User: NetworkService User: ninon ->Flash cache emptied: 0 bytes User: pauline ->Flash cache emptied: 0 bytes Total Flash Files Cleaned = 0,00 mb OTL by OldTimer - Version 3.2.29.1 log created on 09272011_205743 Files\Folders moved on Reboot... File\Folder C:\Documents and Settings\christophe\Local Settings\Temp\~DF1F76.tmp not found! File\Folder C:\Documents and Settings\christophe\Local Settings\Temp\~DF2126.tmp not found! File\Folder C:\Documents and Settings\christophe\Local Settings\Temp\~DF8D5.tmp not found! File\Folder C:\Documents and Settings\christophe\Local Settings\Temp\~DFA65.tmp not found! C:\Documents and Settings\christophe\Local Settings\Temporary Internet Files\Content.IE5\VAYQR943\help-solutions[1].htm moved successfully. C:\Documents and Settings\christophe\Local Settings\Temporary Internet Files\AntiPhishing\2CEDBFBC-DBA8-43AA-B1FD-CC8E6316E3E2.dat moved successfully. C:\WINDOWS\temp\Perflib_Perfdata_1d4.dat moved successfully. Registry entries deleted on Reboot... ************************************* Pas vraiment d'amélioration par rapport au point précédent. Juste une précision, qui vient de me frapper; Quand je parle de touche fonction inactive, il ne s'agit pas de f1, f2, etc jusqu'à f12, mais d'une touche fn violette (propre à vaio????) qui active une fonction matérielle. C'est une valeur alternate, comme pour avoir dièse il faut faire AltGr + 3. exemple touche fn + f3 coupe le son touche fn + f4 augmente le son touche fn + f5 augmente la luminosité. sinon j'ai réussi à me procurer les drivers d'origine, je regarde comment les réinstaller. A +

voilà OTL à tourner LES liens vers cjoint sont: lien OTL.txt Lien CJoint.com AIBqAQ4vhtF *************** lien extras.txt Lien CJoint.com AIBqDWDPRNF A+

bonjour ci-dessous le rapport ComboFix ******************************************** ComboFix 11-09-26.03 - christophe 27/09/2011 11:35:44.2.2 - x86 Microsoft Windows XP Édition familiale 5.1.2600.3.1252.33.1036.18.509.274 [GMT 2:00] Lancé depuis: c:\documents and settings\christophe\Bureau\ComboFix.exe Commutateurs utilisés :: c:\documents and settings\christophe\Bureau\CFScript.txt AV: AntiVir Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7} . . ((((((((((((((((((((((((((((( Fichiers créés du 2011-08-27 au 2011-09-27 )))))))))))))))))))))))))))))))))))) . . 2011-09-26 10:44 . 2011-09-26 10:47 -------- d-----w- c:\program files\IZArc 2011-09-25 09:34 . 2011-09-25 09:34 512 ----a-w- C:\PhysicalDisk0_MBR.bin 2011-09-25 09:28 . 2011-09-26 14:59 -------- d-----w- C:\ZHP 2011-09-25 08:30 . 2011-09-26 14:52 -------- d-----w- c:\program files\ZHPDiag 2011-09-25 03:29 . 2011-09-25 03:29 -------- d-----w- c:\documents and settings\christophe\Application Data\Canneverbe Limited 2011-09-25 03:29 . 2011-09-25 03:29 -------- d-----w- c:\documents and settings\All Users\Application Data\Canneverbe Limited 2011-09-25 03:29 . 2009-11-12 12:48 5504 ----a-w- c:\windows\system32\drivers\StarOpen.sys 2011-09-25 03:29 . 2011-09-25 11:48 -------- d-----w- c:\program files\CDBurnerXP 2011-09-24 05:18 . 2011-09-24 05:18 388096 ----a-r- c:\documents and settings\christophe\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2011-09-24 05:18 . 2011-09-24 05:18 -------- d-----w- c:\program files\Trend Micro 2011-09-23 07:42 . 2007-05-16 18:50 73728 ----a-w- c:\windows\system32\VESWinlogon.dll 2011-09-23 07:35 . 2005-09-07 16:00 86016 ----a-w- c:\windows\system32\VCCenter.cpl 2011-09-23 05:10 . 2011-09-23 05:10 -------- d--h--w- c:\windows\PIF 2011-09-21 10:44 . 2011-09-21 11:39 -------- d-----w- c:\program files\WinASPI 2011-09-21 10:44 . 2011-09-21 11:36 -------- d-----w- c:\program files\AviSynth 2.5 2011-09-21 10:42 . 2011-09-21 11:39 -------- d-----w- c:\documents and settings\christophe\NeoDivX Suite 2011-09-20 18:35 . 2011-09-20 19:34 -------- d-----w- c:\program files\MCK3 2011-09-20 05:49 . 2011-09-20 05:50 -------- d-----w- c:\program files\Photo Story 3 for Windows 2011-09-19 18:55 . 2011-09-19 18:55 -------- d-----w- c:\documents and settings\christophe\Application Data\Malwarebytes 2011-09-19 18:55 . 2011-09-19 18:55 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2011-09-19 18:55 . 2011-09-20 11:30 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2011-09-19 09:11 . 2011-09-19 09:11 -------- d-----w- c:\documents and settings\francoise\Local Settings\Application Data\PCTUTO 2011-09-18 16:25 . 2011-09-18 16:25 -------- d-----w- c:\documents and settings\francoise\Application Data\Avira 2011-09-18 16:24 . 2011-09-18 16:24 -------- d-----w- c:\documents and settings\francoise\Local Settings\Application Data\Western Digital 2011-09-17 16:09 . 2011-09-17 16:09 -------- d-----w- c:\documents and settings\ninon\Local Settings\Application Data\Western Digital 2011-09-17 12:12 . 2011-02-16 15:52 11520 ----a-w- c:\windows\system32\drivers\wdcsam.sys 2011-09-17 10:14 . 2011-09-17 12:28 -------- d-----w- c:\documents and settings\christophe\Local Settings\Application Data\Western_Digital 2011-09-17 09:43 . 2011-09-17 12:13 -------- d-----w- c:\documents and settings\All Users\Application Data\Western Digital 2011-09-17 09:43 . 2011-09-17 12:12 -------- dc----w- c:\windows\system32\DRVSTORE 2011-09-17 09:41 . 2011-09-17 12:11 -------- d-----w- c:\program files\Western Digital 2011-09-17 09:41 . 2011-09-17 09:41 -------- d-----w- c:\documents and settings\christophe\Local Settings\Application Data\Western Digital 2011-09-17 08:23 . 2011-09-17 08:23 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Apple 2011-09-17 08:07 . 2011-09-17 08:07 -------- d-----w- c:\documents and settings\ninon\Local Settings\Application Data\PCTUTO 2011-09-16 20:15 . 2011-09-16 20:30 -------- d-----w- c:\documents and settings\christophe\Application Data\vlc 2011-09-16 15:23 . 2009-12-05 17:41 50688 ----a-w- c:\windows\system32\ff_acm.acm 2011-09-15 07:20 . 2011-09-15 07:20 -------- d-----w- c:\documents and settings\christophe\Application Data\Leadertech 2011-09-15 06:46 . 2011-09-21 08:01 -------- d-----w- c:\program files\Fichiers communs\FotoWire 2011-09-14 12:30 . 2011-09-14 12:30 -------- d-----w- c:\documents and settings\All Users\Application Data\NVIDIA 2011-09-14 07:20 . 2011-09-14 07:20 -------- d-----w- c:\documents and settings\All Users\Application Data\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42} 2011-09-14 06:45 . 2011-09-14 06:45 -------- d-----w- c:\program files\Uniblue 2011-09-14 06:18 . 2011-09-14 06:18 -------- d-----w- c:\documents and settings\christophe\Application Data\DriverCure 2011-09-14 06:18 . 2011-09-14 06:18 -------- d-----w- c:\documents and settings\christophe\Application Data\ParetoLogic 2011-09-14 06:18 . 2011-09-19 16:42 -------- d-----w- c:\documents and settings\All Users\Application Data\ParetoLogic 2011-09-13 17:28 . 2004-11-28 18:54 1363968 ----a-w- c:\windows\system32\nview.dll 2011-09-13 17:20 . 2004-11-28 18:54 1363968 ----a-w- C:\nview.dll 2011-09-12 13:31 . 2008-04-14 02:05 14720 -c--a-w- c:\windows\system32\dllcache\kbdhid.sys 2011-09-12 13:31 . 2008-04-14 02:05 14720 ----a-w- c:\windows\system32\drivers\kbdhid.sys 2011-09-12 09:03 . 2011-09-12 09:03 -------- d-----w- c:\documents and settings\christophe\Local Settings\Application Data\Adobe 2011-09-12 08:39 . 2006-01-24 13:50 180224 ----a-w- c:\windows\system32\nvudisp.exe 2011-09-11 18:14 . 1996-07-29 10:11 733296 ----a-w- c:\program files\Mozilla Firefox\OPENGL32.DLL 2011-09-11 18:14 . 1996-07-29 10:09 139712 ----a-w- c:\program files\Mozilla Firefox\GLU32.DLL 2011-09-11 16:03 . 2011-09-11 16:22 -------- d-----w- c:\documents and settings\francoise\Local Settings\Application Data\freetvradio Air 2011-09-11 16:03 . 2011-09-11 16:03 -------- d-----w- c:\documents and settings\francoise\Local Settings\Application Data\Winamp Toolbar 2011-09-11 14:38 . 2011-09-11 19:57 -------- d-----w- c:\documents and settings\ninon\Local Settings\Application Data\freetvradio Air 2011-09-11 13:38 . 2011-09-11 13:38 -------- d-----w- c:\program files\SystemRequirementsLab 2011-09-11 13:38 . 2011-09-11 13:38 -------- d-----w- c:\documents and settings\christophe\Application Data\SystemRequirementsLab 2011-09-10 06:08 . 2011-09-12 08:40 -------- d-----w- c:\documents and settings\christophe\Local Settings\Application Data\freetvradio Air 2011-09-09 15:09 . 2011-09-09 15:09 -------- d-----w- C:\HotKey Utility 2011-09-09 11:59 . 2011-09-15 09:27 -------- d-----w- c:\program files\QuickTime 2011-09-09 11:52 . 2011-09-09 11:52 -------- d-----w- c:\program files\Apple Software Update 2011-09-07 13:11 . 2011-09-07 13:11 -------- d-----w- c:\documents and settings\christophe\Local Settings\Application Data\Downloaded Installations 2011-09-07 13:10 . 2011-09-09 18:58 -------- d-----w- c:\documents and settings\christophe\Application Data\Sony 2011-09-07 13:10 . 2011-09-07 13:10 -------- d-----w- c:\documents and settings\All Users\Application Data\Sony 2011-09-07 13:06 . 2011-09-09 18:58 -------- d-----w- c:\documents and settings\christophe\Local Settings\Application Data\Sony 2011-09-07 07:44 . 2001-10-24 14:00 524288 ----a-w- c:\windows\system32\TDI-SonyOMG.dll 2011-09-07 06:34 . 2011-09-13 18:37 -------- d-----w- C:\hotkeys fixing 2011-09-06 12:47 . 2008-04-14 02:33 21504 -c--a-w- c:\windows\system32\dllcache\hidserv.dll 2011-09-06 12:47 . 2008-04-14 02:33 21504 ----a-w- c:\windows\system32\hidserv.dll 2011-09-05 17:04 . 2011-09-05 17:04 183696 ----a-w- c:\program files\Mozilla Firefox\plugins\nppdf32.dll 2011-09-05 17:04 . 2011-09-05 17:04 183696 ----a-w- c:\program files\Internet Explorer\PLUGINS\nppdf32.dll 2011-09-04 06:14 . 2011-09-04 06:14 -------- d-----w- c:\documents and settings\All Users\Application Data\PC Drivers HeadQuarters 2011-09-03 20:58 . 2011-09-12 14:16 -------- d-----w- c:\documents and settings\christophe\Application Data\Uniblue 2011-09-03 20:58 . 2011-09-03 20:58 -------- d-----w- c:\documents and settings\christophe\Local Settings\Application Data\PackageAware 2011-09-03 19:08 . 2011-09-03 19:08 -------- d-----w- c:\documents and settings\ninon\Local Settings\Application Data\Winamp Toolbar 2011-09-03 18:19 . 2011-09-24 19:43 -------- d-----w- C:\3dc8af7b40d2d896f44232d65806 2011-09-03 13:13 . 2011-09-03 13:13 -------- d-----w- c:\windows\system32\XPSViewer 2011-09-03 13:12 . 2011-09-03 13:12 -------- d-----w- c:\program files\Reference Assemblies 2011-09-03 10:17 . 2011-09-09 09:12 606208 -c----w- c:\windows\system32\dllcache\crypt32.dll 2011-09-03 09:11 . 2011-09-03 09:11 -------- d-----w- c:\program files\Mediafour 2011-09-03 06:09 . 2003-04-24 12:00 5632 -c--a-w- c:\windows\system32\dllcache\smimsgif.dll 2011-09-03 06:09 . 2003-04-24 12:00 5632 -c--a-w- c:\windows\system32\dllcache\smierrsy.dll 2011-09-03 06:09 . 2003-04-24 12:00 5632 ----a-w- c:\windows\system32\wbem\snmp\smimsgif.dll 2011-09-03 06:09 . 2003-04-24 12:00 5632 ----a-w- c:\windows\system32\wbem\snmp\smierrsy.dll 2011-09-03 06:09 . 2003-04-24 12:00 15872 -c--a-w- c:\windows\system32\dllcache\smierrsm.dll 2011-09-03 06:09 . 2003-04-24 12:00 15872 ----a-w- c:\windows\system32\wbem\snmp\smierrsm.dll 2011-09-03 06:09 . 2003-04-24 12:00 10240 -c--a-w- c:\windows\system32\dllcache\snmpstup.dll 2011-09-03 06:09 . 2003-04-24 12:00 10240 ----a-w- c:\windows\system32\wbem\snmpstup.dll 2011-09-03 05:38 . 2011-09-03 05:38 -------- d-----w- c:\documents and settings\All Users\Application Data\Driver Whiz 2011-09-03 04:48 . 2009-09-04 15:29 1892184 ----a-w- c:\windows\system32\D3DX9_42.dll 2011-09-03 04:48 . 2006-09-28 14:05 2414360 ----a-w- c:\windows\system32\d3dx9_31.dll 2011-09-03 04:47 . 2011-09-03 04:47 -------- d-----w- c:\program files\Winamp Detect 2011-09-03 04:46 . 2011-09-03 04:46 -------- d-----w- c:\documents and settings\christophe\Application Data\Todae 2011-09-03 04:45 . 2011-03-04 19:44 9200 ------w- c:\windows\system32\drivers\cdralw2k.sys 2011-09-03 04:45 . 2011-03-04 19:44 9072 ------w- c:\windows\system32\drivers\cdr4_xp.sys 2011-09-03 04:45 . 2011-03-04 19:44 126448 ------w- c:\windows\system32\pxinsi64.exe 2011-09-03 04:45 . 2011-03-04 19:44 123888 ------w- c:\windows\system32\pxcpyi64.exe 2011-09-03 04:45 . 2011-03-04 19:44 59888 ------w- c:\windows\system32\pxwma.dll 2011-09-03 04:45 . 2011-03-04 19:44 133616 ------w- c:\windows\system32\pxafs.dll 2011-09-03 04:45 . 2011-09-25 18:44 -------- d-----w- c:\documents and settings\christophe\Application Data\Winamp 2011-09-03 04:45 . 2011-09-07 07:48 -------- d-----w- c:\program files\Winamp . . . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2011-09-09 12:11 . 2011-05-25 10:35 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-09-09 09:12 . 2003-11-19 08:51 606208 ----a-w- c:\windows\system32\crypt32.dll 2011-07-19 03:05 . 2010-05-03 04:19 472808 ----a-w- c:\windows\system32\deployJava1.dll 2011-07-19 00:40 . 2009-09-06 21:52 73728 ----a-w- c:\windows\system32\javacpl.cpl 2011-07-15 13:29 . 2003-11-19 07:27 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys 2011-07-08 14:02 . 2003-11-19 07:27 10496 ----a-w- c:\windows\system32\drivers\ndistapi.sys 2011-06-30 15:35 . 2010-09-15 14:37 66616 ----a-w- c:\windows\system32\drivers\avgntflt.sys 2011-06-30 15:35 . 2010-09-15 14:37 138192 ----a-w- c:\windows\system32\drivers\avipbb.sys 2011-09-06 19:48 . 2011-05-13 10:29 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((( SnapShot@2011-09-26_17.58.44 ))))))))))))))))))))))))))))))))))))))))) . + 2011-09-27 05:32 . 2011-09-27 05:32 16384 c:\windows\Temp\Perflib_Perfdata_7c4.dat + 2011-09-27 05:32 . 2011-09-27 05:32 16384 c:\windows\Temp\Perflib_Perfdata_498.dat . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OfficeSyncProcess"="c:\program files\Microsoft Office\Office14\MSOSYNC.EXE" [2010-03-16 718208] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2010-11-04 281768] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2004-04-13 3309568] "SunJavaUpdateSched"="c:\program files\Fichiers communs\Java\Java Update\jusched.exe" [2011-06-09 254696] "ezShieldProtector for Px"="c:\windows\System32\ezSP_Px.exe" [2002-08-20 40960] "SigmaTel StacMon"="c:\program files\SigmaTel\C-Major Audio\stacmon.exe" [2003-03-26 45056] "Mouse Suite 98 Daemon"="ICO.EXE" [2002-03-14 45056] "BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520] "Apoint"="c:\program files\Apoint\Apoint.exe" [2003-11-07 114688] "Adobe ARM"="c:\program files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360] . c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ Adobe Gamma Loader.lnk - c:\program files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe [2009-6-19 110592] Assistant d'Acrobat.lnk - c:\program files\Adobe\Acrobat 6.0\Distillr\acrotray.exe [2003-7-30 217195] Driver performer.lnk - c:\documents and settings\admin\Local Settings\Temp\7ZipSfx.000\dp.exe [N/A] PowerPanel.lnk - c:\program files\powerpanel\Program\PcfMgr.exe [2003-11-19 876544] WD Quick View.lnk - c:\program files\Western Digital\WD SmartWare\WDDMStatus.exe [2011-8-1 3983760] . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon] 2007-05-16 18:50 73728 ----a-w- c:\windows\system32\VESWinlogon.dll . [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "MSMSGS"="c:\program files\Messenger\msmsgs.exe" /background "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "nudaaho"="c:\documents and settings\christophe\local settings\application data\nudaaho.exe" nudaaho . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "MSConfig"=c:\windows\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\WINDOWS\\system32\\mmc.exe"= "c:\\Program Files\\Microsoft Office\\Office14\\GROOVE.EXE"= "c:\\Program Files\\Microsoft Office\\Office14\\ONENOTE.EXE"= "c:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE"= "c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"= . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "3587:TCP"= 3587:TCP:Groupement homologue Windows "3540:UDP"= 3540:UDP:Protocole PNRP (Peer Name Resolution Protocol) . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings] "AllowInboundEchoRequest"= 1 (0x1) . R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [15/09/2010 11:09 685816] R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [15/09/2010 16:37 136360] R2 AntiVirWebService;Avira AntiVir WebGuard;c:\program files\Avira\AntiVir Desktop\avwebgrd.exe [30/06/2011 17:39 428200] R2 Iprip;Écouteur RIP;c:\windows\System32\svchost.exe -k netsvcs [19/11/2003 09:27 14336] R2 WDDMService;WDDMService;c:\program files\Western Digital\WD SmartWare\WDDMService.exe [01/08/2011 10:11 263056] R2 WDFMEService;WDFMEService;c:\program files\Western Digital\WD SmartWare\WDFME.exe [01/08/2011 10:11 1592208] R2 WDRulesService;WDRulesService;c:\program files\Western Digital\WD SmartWare\WDRulesEngine.exe [01/08/2011 10:11 1091984] R3 HSFHWSIS;HSFHWSIS;c:\windows\system32\drivers\HSFHWSIS.sys [19/11/2003 10:17 187136] R3 SPI;Sony Programmable I/O Control Device;c:\windows\system32\drivers\SonyPI.sys [30/10/2002 16:10 71961] R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [17/09/2011 14:12 11520] S2 gupdate;Service Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [09/07/2011 19:18 136176] S3 cpuz135;cpuz135;\??\c:\windows\TEMP\cpuz135\cpuz135_x32.sys --> c:\windows\TEMP\cpuz135\cpuz135_x32.sys [?] S3 gupdatem;Service Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [09/07/2011 19:18 136176] S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys --> c:\windows\system32\drivers\mbamswissarmy.sys [?] S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [12/06/2011 11:15 31125880] S3 osppsvc;Office Software Protection Platform;c:\program files\Fichiers communs\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [09/01/2010 22:37 4640000] . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] p2psvc REG_MULTI_SZ p2psvc p2pimsvc p2pgasvc PNRPSvc . Contenu du dossier 'Tâches planifiées' . 2011-09-24 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 15:57] . 2011-09-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2011-07-09 17:17] . 2011-09-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2011-07-09 17:17] . . ------- Examen supplémentaire ------- . uStart Page = about:blank uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~4\Office14\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html IE: Se&nd to OneNote - c:\progra~1\MICROS~4\Office14\ONBttnIE.dll/105 IE: Tout télécharger avec Free Download Manager - file://c:\program files\Free Download Manager\dlall.htm IE: Télécharger avec Free Download Manager - file://c:\program files\Free Download Manager\dllink.htm IE: Télécharger la sélection avec Free Download Manager - file://c:\program files\Free Download Manager\dlselected.htm IE: Télécharger la vidéo avec Free Download Manager - file://c:\program files\Free Download Manager\dlfvideo.htm IE: {{A69A551A-1AAE-4B67-8C2E-52F8B8A19504} - {A69A551A-1AAE-4B67-8C2E-52F8B8A19504} - c:\program files\Superfish\Window Shopper\SuperfishIEAddon.dll LSP: c:\program files\Avira\AntiVir Desktop\avsda.dll TCP: DhcpNameServer = 192.168.1.1 FF - ProfilePath - c:\documents and settings\christophe\Application Data\Mozilla\Firefox\Profiles\1989gdqa.default\ FF - prefs.js: browser.search.defaulturl - FF - prefs.js: browser.search.selectedEngine - SweetIM Search FF - prefs.js: browser.startup.homepage - hxxp://home.sweetim.com /*FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2583879&q=*/ FF - user.js: network.protocol-handler.warn-external.dnupdate - false . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2011-09-27 11:51 Windows 5.1.2600 Service Pack 3 NTFS . Recherche de processus cachés ... . Recherche d'éléments en démarrage automatique cachés ... . Recherche de fichiers cachés ... . Scan terminé avec succès Fichiers cachés: 0 . ************************************************************************** . --------------------- CLES DE REGISTRE BLOQUEES --------------------- . [HKEY_USERS\S-1-5-21-275647763-3222187651-2107764986-1005\Software\Microsoft\SystemCertificates\AddressBook*] @Allowed: (Read) (RestrictedCode) @Allowed: (Read) (RestrictedCode) . --------------------- DLLs chargées dans les processus actifs --------------------- . - - - - - - - > 'winlogon.exe'(772) c:\windows\system32\VESWinlogon.dll . - - - - - - - > 'lsass.exe'(828) c:\program files\Avira\AntiVir Desktop\avsda.dll . - - - - - - - > 'explorer.exe'(2340) c:\progra~1\FICHIE~1\MICROS~1\OFFICE14\Cultures\office.odf c:\progra~1\MICROS~4\Office14\1033\GrooveIntlResource.dll c:\windows\system32\eappprxy.dll c:\windows\system32\webcheck.dll c:\windows\system32\WPDShServiceObj.dll c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll c:\program files\Avira\AntiVir Desktop\avsda.dll . Heure de fin: 2011-09-27 11:55:15 ComboFix-quarantined-files.txt 2011-09-27 09:55 ComboFix2.txt 2011-09-26 18:03 . Avant-CF: 6 300 258 304 octets libres Après-CF: 6 284 996 608 octets libres . - - End Of File - - 47C868964378BFEC02EDD94C40FD3FBF **************************************************** 1)Les utilitaires C:\HotKey Utility C:\hotkeys fixing Ce sont des fichiers téléchargés sur le site sony concernant les hotkeys et event controls. Ils ont servis à réinstaller les services/applications . 2)J'ai bien le cd d'installation de sony, mais lorsque je le lance j'ai une trouille bleue qu'il m'efface tout pour réinstaller. J'ai essayé mais j'ai abandonné en cours de route. Sinon j'ai posté ceci "xp detecte un clavier 102 touches A TORT" sur le site "tous les drivers.com" Il m'ont répondu :"Sur le site Sony il n'y a pas de pilote de clavier mais un pilote chipset carte mère il faut l'installer." A+

j'ai enfin un peu de temps pour te tenir au courant. ci-dessous le rapport ComboFix ComboFix 11-09-26.01 - christophe 26/09/2011 19:42:49.1.2 - x86 Microsoft Windows XP Édition familiale 5.1.2600.3.1252.33.1036.18.509.134 [GMT 2:00] Lancé depuis: c:\documents and settings\christophe\Mes documents\Downloads\ComboFix.exe AV: AntiVir Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7} . . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . . c:\documents and settings\admin\WINDOWS c:\documents and settings\antonin\WINDOWS c:\documents and settings\christophe\Recent\Thumbs.db c:\documents and settings\christophe\WINDOWS c:\documents and settings\Default User\WINDOWS c:\documents and settings\francoise\Application Data\OfferBox c:\documents and settings\francoise\Application Data\OfferBox\config.dat c:\documents and settings\francoise\Application Data\OfferBox\config.xml c:\documents and settings\francoise\Application Data\PriceGong c:\documents and settings\francoise\Application Data\PriceGong\Data\1.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\a.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\b.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\c.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\d.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\e.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\f.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\g.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\h.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\i.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\J.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\k.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\l.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\m.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\mru.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\n.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\o.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\p.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\q.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\r.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\s.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\t.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\u.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\v.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\w.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\x.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\y.xml c:\documents and settings\francoise\Application Data\PriceGong\Data\z.xml c:\documents and settings\francoise\WINDOWS c:\documents and settings\ninon\Application Data\OfferBox c:\documents and settings\ninon\Application Data\OfferBox\config.dat c:\documents and settings\ninon\Application Data\OfferBox\config.xml c:\documents and settings\ninon\Application Data\PriceGong c:\documents and settings\ninon\Application Data\PriceGong\Data\1.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\a.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\b.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\c.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\d.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\e.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\f.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\g.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\h.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\i.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\J.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\k.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\l.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\m.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\mru.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\n.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\o.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\p.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\q.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\r.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\s.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\t.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\u.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\v.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\w.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\x.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\y.xml c:\documents and settings\ninon\Application Data\PriceGong\Data\z.xml c:\documents and settings\ninon\Local Settings\Application Data\ApplicationHistory c:\documents and settings\ninon\Local Settings\Application Data\ApplicationHistory\ngen.exe.2c05686e.ini c:\documents and settings\ninon\WINDOWS c:\documents and settings\pauline\Application Data\OfferBox c:\documents and settings\pauline\Application Data\OfferBox\config.dat c:\documents and settings\pauline\Application Data\OfferBox\config.xml c:\documents and settings\pauline\Application Data\PriceGong c:\documents and settings\pauline\Application Data\PriceGong\Data\1.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\a.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\b.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\c.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\d.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\e.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\f.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\g.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\h.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\i.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\J.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\k.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\l.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\m.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\mru.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\n.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\o.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\p.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\q.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\r.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\s.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\t.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\u.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\v.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\w.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\x.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\y.xml c:\documents and settings\pauline\Application Data\PriceGong\Data\z.xml c:\documents and settings\pauline\WINDOWS c:\windows\system\Color c:\windows\system32\config\systemprofile\WINDOWS c:\windows\tsoc.log . . ((((((((((((((((((((((((((((( Fichiers créés du 2011-08-26 au 2011-09-26 )))))))))))))))))))))))))))))))))))) . . 2011-09-26 10:44 . 2011-09-26 10:47 -------- d-----w- c:\program files\IZArc 2011-09-25 09:34 . 2011-09-25 09:34 512 ----a-w- C:\PhysicalDisk0_MBR.bin 2011-09-25 09:28 . 2011-09-26 14:59 -------- d-----w- C:\ZHP 2011-09-25 08:30 . 2011-09-26 14:52 -------- d-----w- c:\program files\ZHPDiag 2011-09-25 03:29 . 2011-09-25 03:29 -------- d-----w- c:\documents and settings\christophe\Application Data\Canneverbe Limited 2011-09-25 03:29 . 2011-09-25 03:29 -------- d-----w- c:\documents and settings\All Users\Application Data\Canneverbe Limited 2011-09-25 03:29 . 2009-11-12 12:48 5504 ----a-w- c:\windows\system32\drivers\StarOpen.sys 2011-09-25 03:29 . 2011-09-25 11:48 -------- d-----w- c:\program files\CDBurnerXP 2011-09-24 05:18 . 2011-09-24 05:18 388096 ----a-r- c:\documents and settings\christophe\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2011-09-24 05:18 . 2011-09-24 05:18 -------- d-----w- c:\program files\Trend Micro 2011-09-23 07:42 . 2007-05-16 18:50 73728 ----a-w- c:\windows\system32\VESWinlogon.dll 2011-09-23 07:35 . 2005-09-07 16:00 86016 ----a-w- c:\windows\system32\VCCenter.cpl 2011-09-23 05:10 . 2011-09-23 05:10 -------- d--h--w- c:\windows\PIF 2011-09-21 10:44 . 2011-09-21 11:39 -------- d-----w- c:\program files\WinASPI 2011-09-21 10:44 . 2011-09-21 11:36 -------- d-----w- c:\program files\AviSynth 2.5 2011-09-21 10:42 . 2011-09-21 11:39 -------- d-----w- c:\documents and settings\christophe\NeoDivX Suite 2011-09-20 18:35 . 2011-09-20 19:34 -------- d-----w- c:\program files\MCK3 2011-09-20 05:49 . 2011-09-20 05:50 -------- d-----w- c:\program files\Photo Story 3 for Windows 2011-09-19 18:55 . 2011-09-19 18:55 -------- d-----w- c:\documents and settings\christophe\Application Data\Malwarebytes 2011-09-19 18:55 . 2011-09-19 18:55 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2011-09-19 18:55 . 2011-09-20 11:30 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2011-09-19 09:11 . 2011-09-19 09:11 -------- d-----w- c:\documents and settings\francoise\Local Settings\Application Data\PCTUTO 2011-09-18 16:25 . 2011-09-18 16:25 -------- d-----w- c:\documents and settings\francoise\Application Data\Avira 2011-09-18 16:24 . 2011-09-18 16:24 -------- d-----w- c:\documents and settings\francoise\Local Settings\Application Data\Western Digital 2011-09-17 16:09 . 2011-09-17 16:09 -------- d-----w- c:\documents and settings\ninon\Local Settings\Application Data\Western Digital 2011-09-17 12:12 . 2011-02-16 15:52 11520 ----a-w- c:\windows\system32\drivers\wdcsam.sys 2011-09-17 10:14 . 2011-09-17 12:28 -------- d-----w- c:\documents and settings\christophe\Local Settings\Application Data\Western_Digital 2011-09-17 09:43 . 2011-09-17 12:13 -------- d-----w- c:\documents and settings\All Users\Application Data\Western Digital 2011-09-17 09:43 . 2011-09-17 12:12 -------- dc----w- c:\windows\system32\DRVSTORE 2011-09-17 09:41 . 2011-09-17 12:11 -------- d-----w- c:\program files\Western Digital 2011-09-17 09:41 . 2011-09-17 09:41 -------- d-----w- c:\documents and settings\christophe\Local Settings\Application Data\Western Digital 2011-09-17 08:23 . 2011-09-17 08:23 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Apple 2011-09-17 08:07 . 2011-09-17 08:07 -------- d-----w- c:\documents and settings\ninon\Local Settings\Application Data\PCTUTO 2011-09-16 20:15 . 2011-09-16 20:30 -------- d-----w- c:\documents and settings\christophe\Application Data\vlc 2011-09-16 15:23 . 2009-12-05 17:41 50688 ----a-w- c:\windows\system32\ff_acm.acm 2011-09-15 07:20 . 2011-09-15 07:20 -------- d-----w- c:\documents and settings\christophe\Application Data\Leadertech 2011-09-15 06:46 . 2011-09-21 08:01 -------- d-----w- c:\program files\Fichiers communs\FotoWire 2011-09-14 12:30 . 2011-09-14 12:30 -------- d-----w- c:\documents and settings\All Users\Application Data\NVIDIA 2011-09-14 07:20 . 2011-09-14 07:20 -------- d-----w- c:\documents and settings\All Users\Application Data\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42} 2011-09-14 06:45 . 2011-09-14 06:45 -------- d-----w- c:\program files\Uniblue 2011-09-14 06:18 . 2011-09-14 06:18 -------- d-----w- c:\documents and settings\christophe\Application Data\DriverCure 2011-09-14 06:18 . 2011-09-14 06:18 -------- d-----w- c:\documents and settings\christophe\Application Data\ParetoLogic 2011-09-14 06:18 . 2011-09-19 16:42 -------- d-----w- c:\documents and settings\All Users\Application Data\ParetoLogic 2011-09-13 17:28 . 2004-11-28 18:54 1363968 ----a-w- c:\windows\system32\nview.dll 2011-09-13 17:20 . 2004-11-28 18:54 1363968 ----a-w- C:\nview.dll 2011-09-12 13:31 . 2008-04-14 02:05 14720 -c--a-w- c:\windows\system32\dllcache\kbdhid.sys 2011-09-12 13:31 . 2008-04-14 02:05 14720 ----a-w- c:\windows\system32\drivers\kbdhid.sys 2011-09-12 09:03 . 2011-09-12 09:03 -------- d-----w- c:\documents and settings\christophe\Local Settings\Application Data\Adobe 2011-09-12 08:39 . 2006-01-24 13:50 180224 ----a-w- c:\windows\system32\nvudisp.exe 2011-09-11 18:14 . 1996-07-29 10:11 733296 ----a-w- c:\program files\Mozilla Firefox\OPENGL32.DLL 2011-09-11 18:14 . 1996-07-29 10:09 139712 ----a-w- c:\program files\Mozilla Firefox\GLU32.DLL 2011-09-11 16:03 . 2011-09-11 16:22 -------- d-----w- c:\documents and settings\francoise\Local Settings\Application Data\freetvradio Air 2011-09-11 16:03 . 2011-09-11 16:03 -------- d-----w- c:\documents and settings\francoise\Local Settings\Application Data\Winamp Toolbar 2011-09-11 14:38 . 2011-09-11 19:57 -------- d-----w- c:\documents and settings\ninon\Local Settings\Application Data\freetvradio Air 2011-09-11 13:38 . 2011-09-11 13:38 -------- d-----w- c:\program files\SystemRequirementsLab 2011-09-11 13:38 . 2011-09-11 13:38 -------- d-----w- c:\documents and settings\christophe\Application Data\SystemRequirementsLab 2011-09-10 06:08 . 2011-09-12 08:40 -------- d-----w- c:\documents and settings\christophe\Local Settings\Application Data\freetvradio Air 2011-09-09 15:09 . 2011-09-09 15:09 -------- d-----w- C:\HotKey Utility 2011-09-09 11:59 . 2011-09-15 09:27 -------- d-----w- c:\program files\QuickTime 2011-09-09 11:52 . 2011-09-09 11:52 -------- d-----w- c:\program files\Apple Software Update 2011-09-07 13:11 . 2011-09-07 13:11 -------- d-----w- c:\documents and settings\christophe\Local Settings\Application Data\Downloaded Installations 2011-09-07 13:10 . 2011-09-09 18:58 -------- d-----w- c:\documents and settings\christophe\Application Data\Sony 2011-09-07 13:10 . 2011-09-07 13:10 -------- d-----w- c:\documents and settings\All Users\Application Data\Sony 2011-09-07 13:06 . 2011-09-09 18:58 -------- d-----w- c:\documents and settings\christophe\Local Settings\Application Data\Sony 2011-09-07 07:44 . 2001-10-24 14:00 524288 ----a-w- c:\windows\system32\TDI-SonyOMG.dll 2011-09-07 06:34 . 2011-09-13 18:37 -------- d-----w- C:\hotkeys fixing 2011-09-06 12:47 . 2008-04-14 02:33 21504 -c--a-w- c:\windows\system32\dllcache\hidserv.dll 2011-09-06 12:47 . 2008-04-14 02:33 21504 ----a-w- c:\windows\system32\hidserv.dll 2011-09-05 17:04 . 2011-09-05 17:04 183696 ----a-w- c:\program files\Mozilla Firefox\plugins\nppdf32.dll 2011-09-05 17:04 . 2011-09-05 17:04 183696 ----a-w- c:\program files\Internet Explorer\PLUGINS\nppdf32.dll 2011-09-04 06:14 . 2011-09-04 06:14 -------- d-----w- c:\documents and settings\All Users\Application Data\PC Drivers HeadQuarters 2011-09-03 20:58 . 2011-09-12 14:16 -------- d-----w- c:\documents and settings\christophe\Application Data\Uniblue 2011-09-03 20:58 . 2011-09-03 20:58 -------- d-----w- c:\documents and settings\christophe\Local Settings\Application Data\PackageAware 2011-09-03 19:08 . 2011-09-03 19:08 -------- d-----w- c:\documents and settings\ninon\Local Settings\Application Data\Winamp Toolbar 2011-09-03 18:19 . 2011-09-24 19:43 -------- d-----w- C:\3dc8af7b40d2d896f44232d65806 2011-09-03 13:13 . 2011-09-03 13:13 -------- d-----w- c:\windows\system32\XPSViewer 2011-09-03 13:12 . 2011-09-03 13:12 -------- d-----w- c:\program files\Reference Assemblies 2011-09-03 10:17 . 2011-09-09 09:12 606208 -c----w- c:\windows\system32\dllcache\crypt32.dll 2011-09-03 09:11 . 2011-09-03 09:11 -------- d-----w- c:\program files\Mediafour 2011-09-03 06:09 . 2003-04-24 12:00 5632 -c--a-w- c:\windows\system32\dllcache\smimsgif.dll 2011-09-03 06:09 . 2003-04-24 12:00 5632 -c--a-w- c:\windows\system32\dllcache\smierrsy.dll 2011-09-03 06:09 . 2003-04-24 12:00 5632 ----a-w- c:\windows\system32\wbem\snmp\smimsgif.dll 2011-09-03 06:09 . 2003-04-24 12:00 5632 ----a-w- c:\windows\system32\wbem\snmp\smierrsy.dll 2011-09-03 06:09 . 2003-04-24 12:00 15872 -c--a-w- c:\windows\system32\dllcache\smierrsm.dll 2011-09-03 06:09 . 2003-04-24 12:00 15872 ----a-w- c:\windows\system32\wbem\snmp\smierrsm.dll 2011-09-03 06:09 . 2003-04-24 12:00 10240 -c--a-w- c:\windows\system32\dllcache\snmpstup.dll 2011-09-03 06:09 . 2003-04-24 12:00 10240 ----a-w- c:\windows\system32\wbem\snmpstup.dll 2011-09-03 05:38 . 2011-09-03 05:38 -------- d-----w- c:\documents and settings\All Users\Application Data\Driver Whiz 2011-09-03 04:48 . 2009-09-04 15:29 1892184 ----a-w- c:\windows\system32\D3DX9_42.dll 2011-09-03 04:48 . 2006-09-28 14:05 2414360 ----a-w- c:\windows\system32\d3dx9_31.dll 2011-09-03 04:47 . 2011-09-03 04:47 -------- d-----w- c:\program files\Winamp Detect 2011-09-03 04:46 . 2011-09-03 04:46 -------- d-----w- c:\documents and settings\christophe\Application Data\Todae 2011-09-03 04:45 . 2011-03-04 19:44 9200 ------w- c:\windows\system32\drivers\cdralw2k.sys 2011-09-03 04:45 . 2011-03-04 19:44 9072 ------w- c:\windows\system32\drivers\cdr4_xp.sys 2011-09-03 04:45 . 2011-03-04 19:44 126448 ------w- c:\windows\system32\pxinsi64.exe 2011-09-03 04:45 . 2011-03-04 19:44 123888 ------w- c:\windows\system32\pxcpyi64.exe 2011-09-03 04:45 . 2011-03-04 19:44 59888 ------w- c:\windows\system32\pxwma.dll 2011-09-03 04:45 . 2011-03-04 19:44 133616 ------w- c:\windows\system32\pxafs.dll 2011-09-03 04:45 . 2011-09-25 18:44 -------- d-----w- c:\documents and settings\christophe\Application Data\Winamp 2011-09-03 04:45 . 2011-09-07 07:48 -------- d-----w- c:\program files\Winamp . . . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2011-09-09 12:11 . 2011-05-25 10:35 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-09-09 09:12 . 2003-11-19 08:51 606208 ----a-w- c:\windows\system32\crypt32.dll 2011-07-19 03:05 . 2010-05-03 04:19 472808 ----a-w- c:\windows\system32\deployJava1.dll 2011-07-19 00:40 . 2009-09-06 21:52 73728 ----a-w- c:\windows\system32\javacpl.cpl 2011-07-15 13:29 . 2003-11-19 07:27 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys 2011-07-08 14:02 . 2003-11-19 07:27 10496 ----a-w- c:\windows\system32\drivers\ndistapi.sys 2011-06-30 15:35 . 2010-09-15 14:37 66616 ----a-w- c:\windows\system32\drivers\avgntflt.sys 2011-06-30 15:35 . 2010-09-15 14:37 138192 ----a-w- c:\windows\system32\drivers\avipbb.sys 2011-09-06 19:48 . 2011-05-13 10:29 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OfficeSyncProcess"="c:\program files\Microsoft Office\Office14\MSOSYNC.EXE" [2010-03-16 718208] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2010-11-04 281768] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2004-04-13 3309568] "SunJavaUpdateSched"="c:\program files\Fichiers communs\Java\Java Update\jusched.exe" [2011-06-09 254696] "ezShieldProtector for Px"="c:\windows\System32\ezSP_Px.exe" [2002-08-20 40960] "SigmaTel StacMon"="c:\program files\SigmaTel\C-Major Audio\stacmon.exe" [2003-03-26 45056] "Mouse Suite 98 Daemon"="ICO.EXE" [2002-03-14 45056] "BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520] "Apoint"="c:\program files\Apoint\Apoint.exe" [2003-11-07 114688] "Adobe ARM"="c:\program files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360] . c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ Adobe Gamma Loader.lnk - c:\program files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe [2009-6-19 110592] Assistant d'Acrobat.lnk - c:\program files\Adobe\Acrobat 6.0\Distillr\acrotray.exe [2003-7-30 217195] Driver performer.lnk - c:\documents and settings\admin\Local Settings\Temp\7ZipSfx.000\dp.exe [N/A] PowerPanel.lnk - c:\program files\powerpanel\Program\PcfMgr.exe [2003-11-19 876544] WD Quick View.lnk - c:\program files\Western Digital\WD SmartWare\WDDMStatus.exe [2011-8-1 3983760] . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon] 2007-05-16 18:50 73728 ----a-w- c:\windows\system32\VESWinlogon.dll . [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "MSMSGS"="c:\program files\Messenger\msmsgs.exe" /background "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" "nudaaho"="c:\documents and settings\christophe\local settings\application data\nudaaho.exe" nudaaho . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "MSConfig"=c:\windows\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\WINDOWS\\system32\\mmc.exe"= "c:\\Program Files\\Microsoft Office\\Office14\\GROOVE.EXE"= "c:\\Program Files\\Microsoft Office\\Office14\\ONENOTE.EXE"= "c:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE"= "c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"= . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "3587:TCP"= 3587:TCP:Groupement homologue Windows "3540:UDP"= 3540:UDP:Protocole PNRP (Peer Name Resolution Protocol) . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings] "AllowInboundEchoRequest"= 1 (0x1) . R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [15/09/2010 11:09 685816] R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [15/09/2010 16:37 136360] R2 AntiVirWebService;Avira AntiVir WebGuard;c:\program files\Avira\AntiVir Desktop\avwebgrd.exe [30/06/2011 17:39 428200] R2 Iprip;Écouteur RIP;c:\windows\System32\svchost.exe -k netsvcs [19/11/2003 09:27 14336] R2 WDDMService;WDDMService;c:\program files\Western Digital\WD SmartWare\WDDMService.exe [01/08/2011 10:11 263056] R2 WDFMEService;WDFMEService;c:\program files\Western Digital\WD SmartWare\WDFME.exe [01/08/2011 10:11 1592208] R2 WDRulesService;WDRulesService;c:\program files\Western Digital\WD SmartWare\WDRulesEngine.exe [01/08/2011 10:11 1091984] R3 HSFHWSIS;HSFHWSIS;c:\windows\system32\drivers\HSFHWSIS.sys [19/11/2003 10:17 187136] R3 SPI;Sony Programmable I/O Control Device;c:\windows\system32\drivers\SonyPI.sys [30/10/2002 16:10 71961] R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [17/09/2011 14:12 11520] S2 gupdate;Service Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [09/07/2011 19:18 136176] S3 cpuz135;cpuz135;\??\c:\windows\TEMP\cpuz135\cpuz135_x32.sys --> c:\windows\TEMP\cpuz135\cpuz135_x32.sys [?] S3 gupdatem;Service Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [09/07/2011 19:18 136176] S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys --> c:\windows\system32\drivers\mbamswissarmy.sys [?] S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [12/06/2011 11:15 31125880] S3 osppsvc;Office Software Protection Platform;c:\program files\Fichiers communs\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [09/01/2010 22:37 4640000] . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] p2psvc REG_MULTI_SZ p2psvc p2pimsvc p2pgasvc PNRPSvc . Contenu du dossier 'Tâches planifiées' . 2011-09-24 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 15:57] . 2011-09-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2011-07-09 17:17] . 2011-09-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2011-07-09 17:17] . . ------- Examen supplémentaire ------- . uStart Page = about:blank uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~4\Office14\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html IE: Se&nd to OneNote - c:\progra~1\MICROS~4\Office14\ONBttnIE.dll/105 IE: Tout télécharger avec Free Download Manager - file://c:\program files\Free Download Manager\dlall.htm IE: Télécharger avec Free Download Manager - file://c:\program files\Free Download Manager\dllink.htm IE: Télécharger la sélection avec Free Download Manager - file://c:\program files\Free Download Manager\dlselected.htm IE: Télécharger la vidéo avec Free Download Manager - file://c:\program files\Free Download Manager\dlfvideo.htm IE: {{A69A551A-1AAE-4B67-8C2E-52F8B8A19504} - {A69A551A-1AAE-4B67-8C2E-52F8B8A19504} - c:\program files\Superfish\Window Shopper\SuperfishIEAddon.dll LSP: c:\program files\Avira\AntiVir Desktop\avsda.dll TCP: DhcpNameServer = 192.168.1.1 FF - ProfilePath - c:\documents and settings\christophe\Application Data\Mozilla\Firefox\Profiles\1989gdqa.default\ FF - prefs.js: browser.search.defaulturl - FF - prefs.js: browser.search.selectedEngine - SweetIM Search FF - prefs.js: browser.startup.homepage - hxxp://home.sweetim.com /*FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2583879&q=*/ FF - user.js: network.protocol-handler.warn-external.dnupdate - false . - - - - ORPHELINS SUPPRIMES - - - - . WebBrowser-{EEE6C35B-6118-11DC-9C72-001320C79847} - (no file) AddRemove-CNXT_MODEM_PCI_VEN_1039&DEV_7013&SUBSYS_814E104D - c:\program files\CONEXANT\CNXT_MODEM_PCI_VEN_1039&DEV_7013&SUBSYS_814E104D\HXFSETUP.EXE AddRemove-M2416447 - c:\windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe AddRemove-M979906 - c:\windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe AddRemove-{09FF4DB8-7DE9-4D47-B7DB-915DB7D9A8CA} - c:\documents and settings\All Users\Application Data\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42}\bm_installer.exe . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2011-09-26 19:58 Windows 5.1.2600 Service Pack 3 NTFS . Recherche de processus cachés ... . Recherche d'éléments en démarrage automatique cachés ... . Recherche de fichiers cachés ... . Scan terminé avec succès Fichiers cachés: 0 . ************************************************************************** . --------------------- CLES DE REGISTRE BLOQUEES --------------------- . [HKEY_USERS\S-1-5-21-275647763-3222187651-2107764986-1005\Software\Microsoft\SystemCertificates\AddressBook*] @Allowed: (Read) (RestrictedCode) @Allowed: (Read) (RestrictedCode) . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}] @Denied: (Full) (Everyone) "scansk"=hex(0):33,95,84,4d,90,7d,10,e0,a4,13,72,06,06,a2,6b,3e,a4,93,2f,ea,13, 91,0c,d9,a5,44,3e,6e,63,a6,d0,03,3c,e4,cb,7d,c9,fe,e2,2a,00,00,00,00,00,00,\ . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{d8ad8c10-1de0-4a79-8449-96eb80fba2c6}] @Denied: (Full) (Everyone) "Model"=dword:00000033 "Therad"=dword:00000023 "MData"=hex(0):2b,8f,78,29,5a,0c,ce,ec,48,d4,68,e5,9f,6a,96,3e,ab,de,c5,81,26, 38,95,44,85,b1,12,f9,90,dd,23,a1,49,8c,bf,1a,9d,fe,41,71,cb,3f,46,a4,7c,ab,\ . --------------------- DLLs chargées dans les processus actifs --------------------- . - - - - - - - > 'winlogon.exe'(768) c:\windows\system32\VESWinlogon.dll . - - - - - - - > 'lsass.exe'(824) c:\program files\Avira\AntiVir Desktop\avsda.dll . Heure de fin: 2011-09-26 20:03:13 ComboFix-quarantined-files.txt 2011-09-26 18:03 . Avant-CF: 5 243 932 672 octets libres Après-CF: 6 779 310 080 octets libres . WindowsXP-KB310994-SP2-Home-BootDisk-FRA.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons UnsupportedDebug="do not select this" /debug multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP dition familiale" /fastdetect /NoExecute=OptIn . - - End Of File - - A54ED3C781335BBC5488F5C911B4A3D4 Demie bonne nouvelle, la touche windows (accès au menu démarrer) fonctionne. Pour les autres, statu quo. Pour le reste 1.Windows était installé sur ce pc acheté à la FNAC, donc je pense qu'il est officiel( bizarre d'ailleurs qu'il n'apparaisse pas comme tel dans le rapport) 2.A ma connaissance, le clavier n'a pas reçu de liquide :ni café, ni coca, ni bière. 3.J'ai supprimé le clavier dans le gestionnaire de périphériques. Eteint et rallumé l'ordi pour voir la réinstallation.C'est toujours le clavier standard 102 touches qui est installé. A mon avis c'est par là qu'il va falloir creuser : trouver un gestionnaire de clavier de portable (87 touches)! A+

voilà, j'ai lancé ZHP Le rapport se trouve là : Lien CJoint.com AIArtVtIeNM A plus tard

mon windows est xp édition familiale sp3 je commence le traitement A+

pardon, mais je ne sais pas comment ajouter le lien avec la discussion précédente avec bleuet sur le sujet sofware! rectification !!! je pense que j'ai trouvé: c'est le dièse en haut à droite du message qu'on copie-colle dans le presse-papier j'essaie **************************************************************** http://forum.zebulon.fr/findpost-t188187-p1574487.html voilà! A+