Internet explorer très lent alors que Mozilla est ok (tjs pas résolu,

[cdtv]

Bonjour,

quelqu'un saurait il me dire, si je suis infecté car quand j'ouvre internet explorer, il me faut un temps fou pour que ma page s'affiche et par contre avec Mozilla, je n'ai pas de problèmes et mon antivirus nod32 ne détecte rien, je suis sur windows XP.

 

Merci à vous

 

Voiçi le scan avec Hijackthis 2.02

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 18:38:57, on 26/08/2008

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\Program Files\NetLimiter 2 Pro\nlsvc.exe

C:\Program Files\Eset\nod32krn.exe

C:\Program Files\Norton Ghost\Agent\VProSvc.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\nvsvc32.exe

C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\NetLimiter 2 Pro\NLClient.exe

C:\WINDOWS\system32\dllhost.exe

C:\WINDOWS\system32\dllhost.exe

C:\Program Files\Winamp\winampa.exe

C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe

C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe

C:\Program Files\Real\RealPlayer\RealPlay.exe

C:\WINDOWS\system32\devldr32.exe

C:\Program Files\QuickTime\qttask.exe

c:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe

C:\Program Files\Norton Ghost\Agent\VProTray.exe

C:\Program Files\Eset\nod32kui.exe

C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE

C:\WINDOWS\system32\rundll32.exe

C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files\Macrogaming\SweetIM\SweetIM.exe

C:\Program Files\Skype\Phone\Skype.exe

C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe

C:\Program Files\Disk Cleaner\DiskCleaner.Exe

C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe

C:\Program Files\Sony Corporation\Picture Package\Picture Package Applications\Residence.exe

C:\Program Files\WinZip\WZQKPICK.EXE

C:\Program Files\MagicDisc\MagicDisc.exe

C:\Program Files\MSN Messenger\MsnMsgr.Exe

C:\Program Files\Norton Ghost\Shared\Drivers\SymSnapService.exe

C:\Program Files\Skype\Plugin Manager\skypePM.exe

C:\Program Files\MSN Messenger\usnsvc.exe

C:\Program Files\LogMeIn\x86\LogMeIn.exe

C:\Program Files\LogMeIn\x86\LMIGuardian.exe

C:\Program Files\LogMeIn\x86\LogMeInSystray.exe

C:\Program Files\LogMeIn\x86\LMIGuardian.exe

C:\Program Files\LogMeIn\x86\RaMaint.exe

C:\WINDOWS\system32\notepad.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\WINDOWS\system32\cmd.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll

O1 - Hosts: 91.121.80.161 www.lesdieuxdusat.info

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll

O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll

O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll

O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll

O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe

O4 - HKLM\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME\TomTomHOME.exe" -s

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"

O4 - HKLM\..\Run: [share-to-Web Namespace Daemon] c:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe

O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [Norton Ghost 14.0] "C:\Program Files\Norton Ghost\Agent\VProTray.exe"

O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE

O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe

O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE

O4 - HKLM\..\Run: [Host Process] C:\WINDOWS\Fonts\svchost.exe

O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe

O4 - HKLM\..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe

O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"

O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKCU\..\Run: [sweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe

O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized

O4 - HKCU\..\Run: [MsnMsgr] ~"C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background

O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE"

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [bitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized

O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"

O4 - HKCU\..\Run: [Registry Helper] "C:\Program Files\Registry Helper\RegistryHelper.Exe" /boot

O4 - HKCU\..\Run: [Disk Cleaner] "C:\Program Files\Disk Cleaner\DiskCleaner.Exe" /boot

O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_1_0 -reboot 1

O4 - HKUS\S-1-5-19\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-19\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE RÉSEAU')

O4 - HKUS\S-1-5-18\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'Default user')

O4 - Startup: MagicDisc.lnk = C:\Program Files\MagicDisc\MagicDisc.exe

O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

O4 - Global Startup: Picture Package Menu.lnk = ?

O4 - Global Startup: Picture Package VCD Maker.lnk = ?

O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE

O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O9 - Extra button: Créer un Favori de l'appareil mobile - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL

O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL

O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL

O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll

O15 - Trusted Zone: http://www.emule-paradise.com

O17 - HKLM\System\CCS\Services\Tcpip\..\{F511E601-A8BC-4C87-AA62-C4F866A594BC}: NameServer = 195.238.2.21,195.238.2.22

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL

O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe

O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE

O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\RaMaint.exe

O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LogMeIn.exe

O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe

O23 - Service: NetLimiter (nlsvc) - Locktime Software - C:\Program Files\NetLimiter 2 Pro\nlsvc.exe

O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe

O23 - Service: Norton Ghost - Symantec Corporation - C:\Program Files\Norton Ghost\Agent\VProSvc.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

O23 - Service: SymSnapService - Symantec - C:\Program Files\Norton Ghost\Shared\Drivers\SymSnapService.exe

 

--

End of file - 11367 bytes

Modifié le 19 décembre 2008 par cdtv

[Gof]

Bonsoir cdtv

 

Messages: 1

Bienvenue sur les forums de Zebulon.

 

Quelques liens pour t'aider à commencer :

• Comment participer à un forum
  
• retrouver ses messages et activer la notification par email
  

 

On va voir ensemble ce qui se passe sur ton PC ; comme tous les intervenants ici, nous aidons bénévolement en fonction de nos activités personnelles. On va essayer d'aller au plus vite, mais il faudra peut-être parfois être patient pour attendre une réponse, pas d'affolement

 

--------------

 

Ton Internet Explorer n'est pas à jour, nous sommes à la version 7 à présent. De plus l'accumulation de barre d'outils (toolbars) ne peut qu'occasionner que des ralentissements supplémentaires.

Ton rapport révèle la présence d'infections, et la présence d'un "rogue", un faux utilitaire.

Suis les consignes ci-dessous je te prie :

 

 

Télécharge SDFix (créé par AndyManchesta) et sauvegarde le sur ton Bureau.

 

Double clique sur SDFix.exe et choisis Install. L'outil sera extrait à la racine du lecteur système (généralement le C:\).

Redémarre ton ordinateur en mode sans échec en suivant la procédure que voici :

• Redémarre ton ordinateur
  
• Après avoir entendu l'ordinateur biper lors du démarrage, mais avant que l'icône Windows apparaisse, tapote la touche F8 (une pression par seconde).
  
• A la place du chargement normal de Windows, un menu avec différentes options devrait apparaître.
  
• Choisis la première option, pour exécuter Windows en mode sans échec, puis appuie sur "Entrée".
  
• Choisis ton compte.
  

Déroule la liste des instructions ci-dessous :

• Ouvre le dossier SDFix qui vient d'être créé dans le répertoire C:\ et double clique sur RunThis.bat pour lancer le script.
  
• Appuie sur Y pour commencer le processus de nettoyage.
  
• Il est possible que l'outil demande un redémarrage en mode Sans Échec en début de routine, si une infection particulière est détectée; valide et tapote la touche F8 au redémarrage pour accéder aux options de démarrage.
  
• Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
  
• Appuie sur une touche pour redémarrer le PC.
  
• Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
  
• Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
  
• Appuie sur une touche pour finir l'exécution du script et charger les icônes de ton Bureau.
  
• Les icônes du Bureau affichées, le rapport SDFix s'ouvrira à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
  
• Enfin, copie/colle le contenu du fichier Report.txt dans ta prochaine réponse sur le forum.
  

 

Télécharge Malwarebytes' Anti-Malware (MBAM)

 

• Double clique sur le fichier téléchargé pour lancer le processus d'installation.
  
• Dans l'onglet "Mise à jour", clique sur le bouton "Recherche de mise à jour": si le pare-feu demande l'autorisation à MBAM de se connecter, accepte.
  
• Une fois la mise à jour terminée, rends-toi dans l'onglet "Recherche".
  
• Sélectionne "Exécuter un examen rapide"
  
• Clique sur "Rechercher"
  
• L'analyse démarre, le scan est relativement long, c'est normal.
  
• A la fin de l'analyse, un message s'affiche :

  L'examen s'est terminé normalement. Clique sur 'Afficher les résultats' pour afficher tous les objets trouvés.

  Clique sur "Ok" pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
  
• Ferme tes navigateurs.
  
• Si des malwares ont été détectés, clique sur Afficher les résultats.
  Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.
  
• MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport et poste-le dans ta prochaine réponse.
  

 

Avec les rapports générés, joins un nouveau rapport HijackThis. A bientôt.

[cdtv]

Merci à toi Gof pour ton amabilité à me répondre.

J'ai fait tout ce que tu m'as dit et quand j'ai eu fini de supprimer les malware and co, mon pc m'a afficher une centaine de fenêtre me demandant d'insérer le cd de windows xp pack sp2, que j'ai du relancer le Pc.

Donc voici le rapport de sdfx.

 

 

SDFix: Version 1.219

Run by Admin on mer. 27/08/2008 at 19:08

 

Microsoft Windows XP [version 5.1.2600]

Running From: C:\SDFix

 

Checking Services :

 

 

Restoring Default Security Values

Restoring Default Hosts File

 

Rebooting

 

 

Checking Files :

 

Trojan Files Found:

 

C:\X.DAT - Deleted

C:\Z.DAT - Deleted

C:\n.bat - Deleted

C:\WINDOWS\17PHolmes1188.exe - Deleted

C:\Documents and Settings\Admin\services.exe - Deleted

C:\winlogon.exe - Deleted

C:\x.dat - Deleted

C:\z.dat - Deleted

 

 

 

Folder C:\WINDOWS\Fonts\' - Removed

 

 

Removing Temp Files

 

ADS Check :

 

 

 

Final Check :

 

catchme 0.3.1361.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2008-08-27 19:25:45

Windows 5.1.2600 Service Pack 2 NTFS

 

scanning hidden processes ...

 

scanning hidden services & system hive ...

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Vax347s\Config\jdgg40]

 

scanning hidden registry entries ...

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E9F81423-211E-46B6-9AE0-38568BC5CF6F}]

"DisplayName"="Alcohol 120%"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Prefetcher]

"TracesProcessed"=dword:0000006a

 

scanning hidden files ...

 

scan completed successfully

hidden processes: 0

hidden services: 0

hidden files: 0

 

 

Remaining Services :

 

 

 

 

Authorized Application Key Export:

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"C:\\Program Files\\eMule\\eMule.exe"="C:\\Program Files\\eMule\\eMule.exe:*:Enabled:eMule Plus"

"C:\\Program Files\\LimeWire\\LimeWire.exe"="C:\\Program Files\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire"

"C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"

"C:\\totalcmd\\TOTALCMD.EXE"="C:\\totalcmd\\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"

"C:\\Program Files\\TomTom HOME\\TomTomHOME.exe"="C:\\Program Files\\TomTom HOME\\TomTomHOME.exe:*:Enabled:TomTom HOME"

"C:\\WINDOWS\\system32\\mcoinstall.exe"="C:\\WINDOWS\\system32\\mcoinstall.exe:*:Enabled:mcoinstall"

"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"

"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

"C:\\Program Files\\Bonjour\\mDNSResponder.exe"="C:\\Program Files\\Bonjour\\mDNSResponder.exe:*:Enabled:Bonjour"

"C:\\Program Files\\OrgaBiz\\OrgaBiz.exe"="C:\\Program Files\\OrgaBiz\\OrgaBiz.exe:*:Enabled:Orgabiz, logiciel de gestion de clients et d'archivage"

"C:\\WINDOWS\\LMIADD.tmp\\rescue.exe"="C:\\WINDOWS\\LMIADD.tmp\\rescue.exe:*:Enabled:LogMeIn Rescue"

"C:\\Program Files\\Microsoft ActiveSync\\WCESCOMM.EXE"="C:\\Program Files\\Microsoft ActiveSync\\WCESCOMM.EXE:*:Enabled:Connection Manager"

"C:\\Program Files\\Microsoft ActiveSync\\WCESMGR.EXE"="C:\\Program Files\\Microsoft ActiveSync\\WCESMGR.EXE:*:Enabled:ActiveSync Application"

"C:\\Program Files\\Mozilla Firefox\\firefox.exe"="C:\\Program Files\\Mozilla Firefox\\firefox.exe:*:Enabled:Firefox"

"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"

"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"

"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

 

Remaining Files :

 

 

File Backups: - C:\SDFix\backups\backups.zip

 

Files with Hidden Attributes :

 

Thu 19 Aug 2004 60,416 A.SH. --- "C:\Program Files\Outlook Express\msimn.exe"

Wed 13 Feb 2008 6,219,320 A..H. --- "C:\Program Files\Picasa2\setup.exe"

Mon 27 Jun 2005 616,448 A.SHR --- "C:\Program Files\Replay Converter\cygwin1.dll"

Wed 22 Jun 2005 45,568 A.SHR --- "C:\Program Files\Replay Converter\cygz.dll"

Tue 10 Dec 2002 102,437 A..HR --- "C:\Program Files\Replay Converter\drv13260.dll"

Tue 10 Dec 2002 176,165 A..HR --- "C:\Program Files\Replay Converter\drv23260.dll"

Tue 10 Dec 2002 208,935 A..HR --- "C:\Program Files\Replay Converter\drv33260.dll"

Tue 10 Dec 2002 217,127 A..HR --- "C:\Program Files\Replay Converter\drv43260.dll"

Sun 9 Jun 2002 40,448 A..HR --- "C:\Program Files\Replay Converter\dspr3260.dll"

Sun 4 Nov 2001 225,280 A..HR --- "C:\Program Files\Replay Converter\ivvideo.dll"

Tue 10 Apr 2001 225,280 A..HR --- "C:\Program Files\Replay Converter\qtmlClient.dll"

Fri 20 Feb 2004 232,960 A..HR --- "C:\Program Files\Replay Converter\raac.dll"

Sun 9 Jun 2002 525,824 A..HR --- "C:\Program Files\Replay Converter\rnco3260.dll"

Tue 10 Dec 2002 245,805 A..HR --- "C:\Program Files\Replay Converter\rnlt3260.dll"

Tue 10 Dec 2002 45,093 A..HR --- "C:\Program Files\Replay Converter\rv103260.dll"

Tue 10 Dec 2002 98,341 A..HR --- "C:\Program Files\Replay Converter\rv203260.dll"

Tue 10 Dec 2002 94,247 A..HR --- "C:\Program Files\Replay Converter\rv303260.dll"

Tue 10 Dec 2002 90,151 A..HR --- "C:\Program Files\Replay Converter\rv403260.dll"

Sun 9 Jun 2002 49,152 A..HR --- "C:\Program Files\Replay Converter\tokr3260.dll"

Thu 19 Aug 2004 4,639 A.SH. --- "C:\Program Files\Windows Media Player\mplayer2.exe"

Thu 19 Aug 2004 73,728 A.SH. --- "C:\Program Files\Windows Media Player\wmplayer.exe"

Thu 19 Aug 2004 65,024 A.SH. --- "C:\WINDOWS\system32\asycfilt.dll"

Fri 9 Mar 2007 27,648 A.SH. --- "C:\WINDOWS\system32\AVSredirect.dll"

Fri 25 Aug 2006 617,472 A.SH. --- "C:\WINDOWS\system32\comctl32.dll"

Thu 19 Aug 2004 1,028,096 A.SH. --- "C:\WINDOWS\system32\mfc42.dll"

Tue 2 Oct 2001 57,344 A.SH. --- "C:\WINDOWS\system32\mfc42loc.dll"

Thu 19 Aug 2004 413,696 A.SH. --- "C:\WINDOWS\system32\msvcp60.dll"

Thu 19 Aug 2004 343,040 A.SH. --- "C:\WINDOWS\system32\msvcrt.dll"

Tue 2 Oct 2001 253,952 A.SH. --- "C:\WINDOWS\system32\msvcrt20.dll"

Thu 19 Aug 2004 553,472 A.SH. --- "C:\WINDOWS\system32\oleaut32.dll"

Thu 19 Aug 2004 83,456 A.SH. --- "C:\WINDOWS\system32\olepro32.dll"

Thu 19 Aug 2004 30,749 A.SH. --- "C:\WINDOWS\system32\vbajet32.dll"

Tue 30 Jun 1998 368,912 A.SH. --- "C:\WINDOWS\system32\vbar332.dll"

Sat 12 Aug 2006 4,348 A.SH. --- "C:\Documents and Settings\All Users\DRM\DRMv1.bak"

Wed 3 Jan 2007 0 A.SH. --- "C:\Documents and Settings\All Users\DRM\Cache\Indiv01.tmp"

Sat 13 Nov 2004 37,376 ...H. --- "C:\Program Files\Fichiers communs\Adobe\ESD\DLMCleanup.exe"

Wed 16 Jul 2008 475,136 ...H. --- "C:\Documents and Settings\Admin\Application Data\Microsoft\Word\~WRL1287.tmp"

Wed 16 Jul 2008 148,992 ...H. --- "C:\Documents and Settings\Admin\Application Data\Microsoft\Word\~WRL2636.tmp"

Thu 7 Dec 2006 3,096,576 A..H. --- "C:\Documents and Settings\Admin\Application Data\U3\temp\Launchpad Removal.exe"

 

Finished!

 

Ensuite ce lui de MBAM

 

Malwarebytes' Anti-Malware 1.25

Version de la base de données: 1089

Windows 5.1.2600 Service Pack 2

 

19:39:07 27/08/2008

mbam-log-08-27-2008 (19-39-07).txt

 

Type de recherche: Examen rapide

Eléments examinés: 50434

Temps écoulé: 4 minute(s), 28 second(s)

 

Processus mémoire infecté(s): 0

Module(s) mémoire infecté(s): 0

Clé(s) du Registre infectée(s): 46

Valeur(s) du Registre infectée(s): 0

Elément(s) de données du Registre infecté(s): 0

Dossier(s) infecté(s): 0

Fichier(s) infecté(s): 2

 

Processus mémoire infecté(s):

(Aucun élément nuisible détecté)

 

Module(s) mémoire infecté(s):

(Aucun élément nuisible détecté)

 

Clé(s) du Registre infectée(s):

HKEY_CLASSES_ROOT\CLSID\{8ae72190-f8a5-b7c8-9572-98c79cdf00af} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\TypeLib\{78530b68-61f9-11d2-8cad-00a024580902} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface\{3255de56-38fb-4901-b980-94b438010d7b} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface\{4ee9ead9-da4d-43d0-9383-06b90c08b12b} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface\{bb44391e-6abd-422f-9e2e-385c9dff51fc} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface\{de75d011-7a65-11d2-8cea-00a0c9441e20} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{036a9790-c153-11d2-9ef7-006008039e37} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{0cfdd070-581a-11d2-9ee6-006008039e37} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{18c628ee-962a-11d2-8d08-00a0c9441e20} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{1b544c24-fd0b-11ce-8c63-00aa0044b520} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{1c621200-67b2-11d2-9eeb-006008039e37} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{2a6f3a80-5976-11d2-9524-0060081840bc} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{3f35f070-99d6-11d2-8d10-00a0c9441e20} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{498b0949-bbe9-4072-98be-6ccaeb79dc6f} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{506d89ae-909a-44f7-9444-abd575896e35} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{64d8a8e0-80a2-11d2-8cf3-00a0c9441e20} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{65bd0711-24d2-4ff7-9324-ed2e5d3abafa} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{67f07e00-ccef-11d2-9ef9-006008039e37} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{693644b0-6858-11d2-9eeb-006008039e37} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{6b362280-6915-11d2-951f-0060081840bc} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{784215b4-0d2e-11d3-920a-00c0df10d434} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{78530b75-61f9-11d2-8cad-00a024580902} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{7df62b50-6843-11d2-9eeb-006008039e37} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{93714ed0-53f0-11d2-9ee6-006008039e37} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{9ed96b20-73aa-11d2-952c-0060081840bc} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{9ed96b21-73aa-11d2-952c-0060081840bc} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{9ed96b22-73aa-11d2-952c-0060081840bc} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{adf95821-ded7-11d2-acbe-0080c75e246e} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{ae9472bf-b0c3-11d2-8d24-00a0c9441e20} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{bb44391d-6abd-422f-9e2e-385c9dff51fc} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{bdf23680-c1e5-11d2-9ef7-006008039e37} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{be8e0170-72dc-11d2-952a-0060081840bc} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{c1f400a0-3f08-11d3-9f0b-006008039e37} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{c1f400a4-3f08-11d3-9f0b-006008039e37} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{c4d81942-0607-11d2-a392-00e0291f3959} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{c4d81943-0607-11d2-a392-00e0291f3959} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{c5b19592-145e-11d3-9f04-006008039e37} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{cc1101f2-79dc-11d2-8ce6-00a0c9441e20} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{cc58e281-8aa1-11d1-b3f1-00aa003761c5} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{cc7bfb42-f175-11d1-a392-00e0291f3959} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{cc7bfb43-f175-11d1-a392-00e0291f3959} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{de75d012-7a65-11d2-8cea-00a0c9441e20} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{e137b0d0-7a93-11d2-8cea-00a0c9441e20} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{f97b8a60-31ad-11cf-b2de-00dd01101b85} (Trojan.Agent) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\FCOVM (Trojan.Vundo) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RemoveRP (Trojan.Vundo) -> Quarantined and deleted successfully.

 

Valeur(s) du Registre infectée(s):

(Aucun élément nuisible détecté)

 

Elément(s) de données du Registre infecté(s):

(Aucun élément nuisible détecté)

 

Dossier(s) infecté(s):

(Aucun élément nuisible détecté)

 

Fichier(s) infecté(s):

C:\WINDOWS\system32\qedit.dll (Trojan.Agent) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\mcrh.tmp (Malware.Trace) -> Quarantined and deleted successfully.

 

Et pour finir

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 20:09:22, on 27/08/2008

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\LogMeIn\x86\RaMaint.exe

C:\Program Files\LogMeIn\x86\LogMeIn.exe

C:\Program Files\LogMeIn\x86\LMIGuardian.exe

C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\Program Files\NetLimiter 2 Pro\nlsvc.exe

C:\Program Files\Eset\nod32krn.exe

C:\Program Files\Norton Ghost\Agent\VProSvc.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\dllhost.exe

C:\WINDOWS\system32\dllhost.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\wscntfy.exe

C:\Program Files\NetLimiter 2 Pro\NLClient.exe

C:\Program Files\Winamp\winampa.exe

C:\Program Files\TomTom HOME\TomTomHOME.exe

C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe

C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe

C:\WINDOWS\system32\devldr32.exe

C:\Program Files\Real\RealPlayer\RealPlay.exe

C:\Program Files\QuickTime\qttask.exe

c:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe

C:\Program Files\Norton Ghost\Agent\VProTray.exe

C:\Program Files\Eset\nod32kui.exe

C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE

C:\WINDOWS\system32\rundll32.exe

C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe

C:\Program Files\LogMeIn\x86\LogMeInSystray.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files\Macrogaming\SweetIM\SweetIM.exe

C:\Program Files\Skype\Phone\Skype.exe

C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe

C:\Program Files\Disk Cleaner\DiskCleaner.Exe

C:\Program Files\LogMeIn\x86\LMIGuardian.exe

C:\Program Files\Norton Ghost\Shared\Drivers\SymSnapService.exe

C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe

C:\Program Files\MSN Messenger\MsnMsgr.Exe

C:\Program Files\Sony Corporation\Picture Package\Picture Package Applications\Residence.exe

C:\Program Files\WinZip\WZQKPICK.EXE

C:\Program Files\MagicDisc\MagicDisc.exe

C:\Program Files\Skype\Plugin Manager\skypePM.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\NOTEPAD.EXE

C:\WINDOWS\system32\NOTEPAD.EXE

C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe

C:\WINDOWS\system32\NOTEPAD.EXE

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll

O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll

O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll

O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll

O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe

O4 - HKLM\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME\TomTomHOME.exe" -s

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"

O4 - HKLM\..\Run: [share-to-Web Namespace Daemon] c:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe

O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [Norton Ghost 14.0] "C:\Program Files\Norton Ghost\Agent\VProTray.exe"

O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE

O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe

O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE

O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe

O4 - HKLM\..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe

O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"

O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKCU\..\Run: [sweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe

O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized

O4 - HKCU\..\Run: [MsnMsgr] ~"C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background

O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE"

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"

O4 - HKCU\..\Run: [Registry Helper] "C:\Program Files\Registry Helper\RegistryHelper.Exe" /boot

O4 - HKCU\..\Run: [Disk Cleaner] "C:\Program Files\Disk Cleaner\DiskCleaner.Exe" /boot

O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_1_0 -reboot 1

O4 - HKUS\S-1-5-19\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-19\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE RÉSEAU')

O4 - HKUS\S-1-5-18\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'Default user')

O4 - Startup: MagicDisc.lnk = C:\Program Files\MagicDisc\MagicDisc.exe

O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

O4 - Global Startup: Picture Package Menu.lnk = ?

O4 - Global Startup: Picture Package VCD Maker.lnk = ?

O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE

O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O9 - Extra button: Créer un Favori de l'appareil mobile - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL

O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL

O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INETREPL.DLL

O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll

O15 - Trusted Zone: http://www.emule-paradise.com

O17 - HKLM\System\CCS\Services\Tcpip\..\{F511E601-A8BC-4C87-AA62-C4F866A594BC}: NameServer = 195.238.2.21,195.238.2.22

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL

O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe

O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE

O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\RaMaint.exe

O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LogMeIn.exe

O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe

O23 - Service: NetLimiter (nlsvc) - Locktime Software - C:\Program Files\NetLimiter 2 Pro\nlsvc.exe

O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe

O23 - Service: Norton Ghost - Symantec Corporation - C:\Program Files\Norton Ghost\Agent\VProSvc.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

O23 - Service: SymSnapService - Symantec - C:\Program Files\Norton Ghost\Shared\Drivers\SymSnapService.exe

 

--

End of file - 11405 bytes

 

Voilà le tout.

 

Mais explorer encore aussi lent.

 

Encore merci pour tout.

Modifié le 28 août 2008 par cdtv

[Gof]

Bonsoir cdtv

 

Navré du délai.

 

J'ai fait tout ce que tu m'as dit et quand j'ai eu fini de supprimer les malware and co, mon pc m'a afficher une centaine de fenêtre me demandant d'insérer le cd de windows xp pack sp2, que j'ai du relancer le Pc.

Je n'ai pas bien compris. Peux tu me réexpliquer ce qui s'est passé ? Cela n'est arrivé qu'une fois, suite au redémarrage après SDFIX ?

 

Qu'as tu fait ensuite ? Eteint et redémarré le PC ?

[cdtv]

Bonsoir cdtv

 

Navré du délai.

 

Je n'ai pas bien compris. Peux tu me réexpliquer ce qui s'est passé ? Cela n'est arrivé qu'une fois, suite au redémarrage après SDFIX ?

 

Qu'as tu fait ensuite ? Eteint et redémarré le PC ?

 

Salut Gof, j'ai fait tout ce que tu m'a demandé :

1 installé sdfix, il a fait son scan et puis à redémarré le pc convenablement.

2 Fait le scan avec MBAM, j'ai selectionné tous les malware et j'ai fait supprimer la sélection. et la ensuite j'ai eu des centaines de fenêtres qui se sont affichées me mettant sécurité windows des fichier ont été supprimer, veuillez introduire le cd windows avec le pack sp2 dans le lecteur d.....

J'ai mis le cd dand mon lecteur mais rien à faire, tjs cette fenêtre intempestive alors j'ai relancé le pc et quand il a redémarré plus rien comme si rien ne s'était passé. Va comprendre ?

 

J'ai fais le scan avec hijackthis.

 

Enfin j'ai copié collé tous les rapports de mes scan que j'ai posté.

 

Et après tout ça bien mon foutu explorer rame toujours.

 

Voilà grossomodo, ce qui s'est passé.

[Gof]

Bonjour cdtv

 

Rends toi dans ton Panneau de configuration>Ajout/Suppression de programmes et désinstalle le programme suivant : Registry Helper

Il est possible qu'il n'apparaisse pas exactement sous ce nom.

 

Ensuite, supprime le répertoire suivant : C:\Program Files\Registry Helper.

 

Si tu n'arrives pas à le supprimer, fais ceci :

 

Télécharge OTMoveIt2 par OldTimer.

• Enregistre ce fichier sur le Bureau.
  
• Fais un double clic sur OTMoveIt2.exe pour lancer l'exécution de l'outil.
  
• Copie-colle la ligne de la zone "Code" ci-dessous dans dans la zone "Paste List of Files/Folders to Move"
  

  C:\Program Files\Registry Helper

  
  

• Cliquer sur le bouton rouge Moveit!.
  
• Copie-colle tout ce qui se trouve dans la zone Results en réponse sur le forum.
  
• Fermer OTMoveIt2
  

Note: Si un fichier ou un dossier ne peut pas être déplacé immédiatement, un redémarrage sera peut-être nécessaire afin de terminer le processus de déplacement. Si le redémarrage de la machine est demandé, choisir Oui/Yes. Dans ce cas, après le redémarrage, ouvrir le Bloc-notes (Démarrer->Tous les programmes->Accessoires->Bloc-notes), cliquer sur Fichier->Ouvrir, dans la zone "Nom du fichier" taper *.log et appuyer sur la touche Entrée, naviguer jusqu'au dossier C:\_OTMoveIt\MovedFiles, puis ouvrir le fichier .log le plus récent; ensuite faire un copier/coller du contenu de ce document en réponse sur le forum.

 

Relance un scan HijackThis

• Clique sur Do a system scan only et coche les lignes ci-dessous si présentes :
  

• O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing
  O4 - HKCU\..\Run: [Registry Helper] "C:\Program Files\Registry Helper\RegistryHelper.Exe" /boot
  

• Ferme toutes les fenêtres sauf HijackThis et Fix Checked.
  

 

Redémarre ton PC. Génère ensuite un rapport comme ceci :

 

Télécharge random's system information tool (RSIT) par random/random et sauvegarde-le sur le Bureau.

• Double-clique sur RSIT.exe afin de lancer RSIT.
  
• Clique Continue à l'écran Disclaimer.
  
• Si l'outil HIjackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera et tu devras accepter la licence.
  
• Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (<<qui sera affiché)
  ainsi que de info.txt (<<qui sera réduit dans la Barre des Tâches).
  

 

Profites en pour me donner des nouvelles du PC.

[cdtv]

Bonjour Gof,

 

Je n'ai pas le programme Registry Helper dans mon C:\Program Files\Registry Helper\RegistryHelper.Exe mais je l'ai trouvé dans la corbeille et j'e l'ai vidée.

 

Ensuite j'ai fait le scan avec RSIT mais, j'ai comme un problème, il démarre le scan jusqu'à huit graduation ete puis plus rien, il reste à cet endroit,il n'y a plus de progression, après une heure, j'ai voulu le fermer mais j'avais beau cliquer sur la croix il était bloqué => je l'ai arrêté avec le gestionnaire des tâches. et refait le test plusieurs fois et t oujours la même chose.

 

J'ai refait un scan avec HijackThis et j'ai fait ce que tu m'as dit avec :

 

O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing

O4 - HKCU\..\Run: [Registry Helper] "C:\Program Files\Registry Helper\RegistryHelper.Exe" /boot

 

Voila en gros ce que j'ai su faire, mais Explorer rame encore.

 

Merci de ton aide.

[Gof]

Re

 

Télécharge OTViewIt de OldTimer sur ton Bureau.

• Ferme toutes les fenêtres de programme, puis lance-le
  
• Clique sur le bouton Run Scan et laissez le programme tourner sans l'interrompre
  
• Il va produire deux rapports (logs), l'un d'eux nommé OTViewIt.txt va s'ouvrir dans le Bloc-notes, l'autre nommé Extras sera enregistré sur le Bureau. Envoie ces deux logs en réponse.
  
• Il faudra peut-être que tu utilises deux messages pour envoyer ces deux logs sur le forum.
  

[cdtv]

Re

 

Voilà les deux rapports.

 

OTViewIt logfile created on: 30/08/2008 14:08:24 - Run 1

OTViewIt by OldTimer - Version 1.0.1.5 Folder = C:\Documents and Settings\Admin\Bureau

Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 6.0.2900.2180)

Locale: 0000080C | Country: Belgique | Language: FRB | Date Format: d/MM/yyyy

 

1023,17 Mb Total Physical Memory | 543,51 Mb Available Physical Memory | 53,12% Memory free

1,65 Gb Paging File | 1,23 Gb Available in Paging File | 74,21% Paging File free

Paging file location(s): C:\pagefile.sys 768 768;

 

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 122,07 Gb Total Space | 37,74 Gb Free Space | 30,92% Space Free | Partition Type: NTFS

Drive D: | 501,88 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

E: Drive not present or media not loaded

Drive F: | 111,69 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: NTFS

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

 

Computer Name: XPSP2-FF96C02A2

Current User Name: Admin

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: Current user

Whitelist: On

 

===== Processes - Non-Microsoft Only =====

 

[02/28/2006 12:42 PM | 00,229,376 | ---- | M] (Apple Computer, Inc.) - C:\Program Files\Bonjour\mDNSResponder.exe

[05/28/2008 12:32 PM | 00,116,032 | ---- | M] (LogMeIn, Inc.) - C:\Program Files\LogMeIn\x86\ramaint.exe

[02/28/2008 03:31 PM | 00,063,040 | ---- | M] (LogMeIn, Inc.) - C:\Program Files\LogMeIn\x86\LogMeIn.exe

[05/28/2008 12:32 PM | 00,087,360 | ---- | M] (LogMeIn, Inc.) - C:\Program Files\LogMeIn\x86\LMIGuardian.exe

[03/21/2007 08:57 PM | 00,516,096 | ---- | M] (Locktime Software) - C:\Program Files\NetLimiter 2 Pro\nlsvc.exe

[08/08/2006 06:53 PM | 00,495,616 | ---- | M] (Eset ) - C:\Program Files\ESET\nod32krn.exe

[04/02/2005 02:51 AM | 00,217,600 | ---- | M] (Rocket Division Software) - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

[04/23/2007 01:04 PM | 00,159,744 | ---- | M] (Locktime Software) - C:\Program Files\NetLimiter 2 Pro\NLClient.exe

[12/20/2007 06:13 PM | 01,553,896 | ---- | M] (Symantec) - C:\Program Files\Norton Ghost\Shared\Drivers\SymSnapService.exe

[05/15/2007 12:22 AM | 00,035,328 | ---- | M] () - C:\Program Files\Winamp\winampa.exe

[08/25/2006 08:44 PM | 00,282,624 | ---- | M] (Apple Computer, Inc.) - C:\Program Files\QuickTime\qttask.exe

[07/26/2005 01:43 PM | 00,024,064 | ---- | M] (Creative Technology Ltd.) - C:\WINDOWS\system32\devldr32.exe

[08/08/2006 06:53 PM | 00,917,504 | ---- | M] (Eset ) - C:\Program Files\ESET\nod32kui.exe

[04/17/2002 10:49 AM | 00,077,824 | ---- | M] () - c:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe

[09/24/2001 09:39 AM | 00,098,304 | ---- | M] (Logitech Inc.) - C:\Program Files\Fichiers communs\Logitech\QCDriver\LVComS.exe

[02/25/2006 12:17 AM | 00,462,848 | ---- | M] (SlySoft, Inc.) - C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe

[02/28/2008 03:31 PM | 00,063,048 | ---- | M] (LogMeIn, Inc.) - C:\Program Files\LogMeIn\x86\LogMeInSystray.exe

[12/01/2006 06:09 PM | 02,056,875 | ---- | M] () - C:\Program Files\LocalCooling\localcooling.exe

[07/25/2007 04:35 PM | 00,102,512 | R--- | M] (MacroGaming LTD.) - C:\Program Files\Macrogaming\SweetIM\SweetIM.exe

[09/13/2007 01:31 PM | 22,880,040 | R--- | M] (Skype Technologies S.A.) - C:\Program Files\Skype\Phone\Skype.exe

[04/03/2008 05:30 PM | 03,310,880 | ---- | M] (SafeApp Software, LLC) - C:\Program Files\Disk Cleaner\DiskCleaner.exe

[05/28/2008 12:32 PM | 00,087,360 | ---- | M] (LogMeIn, Inc.) - C:\Program Files\LogMeIn\x86\LMIGuardian.exe

[06/06/2007 12:10 PM | 00,394,856 | R--- | M] (WinZip Computing, S.L.) - C:\Program Files\WinZip\WZQKPICK.EXE

[02/18/2008 06:32 PM | 00,546,816 | ---- | M] (MagicISO, Inc.) - C:\Program Files\MagicDisc\MagicDisc.exe

[09/13/2007 01:31 PM | 02,040,776 | R--- | M] (Skype Technologies) - C:\Program Files\Skype\Plugin Manager\skypePM.exe

 

===== Win32 Services - Non-Microsoft Only =====

 

(Adobe LM Service) Adobe LM Service [On_Demand | Stopped]

[09/14/2007 12:05 AM | 00,072,704 | ---- | M] (Adobe Systems) - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe

 

(Bonjour Service) ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## [Auto | Running]

[02/28/2006 12:42 PM | 00,229,376 | ---- | M] (Apple Computer, Inc.) - C:\Program Files\Bonjour\mDNSResponder.exe

 

(FLEXnet Licensing Service) FLEXnet Licensing Service [On_Demand | Stopped]

[08/08/2007 06:12 PM | 00,654,848 | ---- | M] (Macrovision Europe Ltd.) - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

 

(LMIMaint) LogMeIn Maintenance Service [Auto | Running]

[05/28/2008 12:32 PM | 00,116,032 | ---- | M] (LogMeIn, Inc.) - C:\Program Files\LogMeIn\x86\ramaint.exe

 

(LogMeIn) LogMeIn [Auto | Running]

[02/28/2008 03:31 PM | 00,063,040 | ---- | M] (LogMeIn, Inc.) - C:\Program Files\LogMeIn\x86\LogMeIn.exe

 

(nlsvc) NetLimiter [Auto | Running]

[03/21/2007 08:57 PM | 00,516,096 | ---- | M] (Locktime Software) - C:\Program Files\NetLimiter 2 Pro\nlsvc.exe

 

(NOD32krn) NOD32 Kernel Service [Auto | Running]

[08/08/2006 06:53 PM | 00,495,616 | ---- | M] (Eset ) - C:\Program Files\ESET\nod32krn.exe

 

(StarWindService) StarWind iSCSI Service [Auto | Running]

[04/02/2005 02:51 AM | 00,217,600 | ---- | M] (Rocket Division Software) - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

 

(SymSnapService) SymSnapService [On_Demand | Running]

[12/20/2007 06:13 PM | 01,553,896 | ---- | M] (Symantec) - C:\Program Files\Norton Ghost\Shared\Drivers\SymSnapService.exe

 

===== Driver Services - Non-Microsoft Only =====

 

(AMON) AMON [Auto | Running]

[08/08/2006 06:53 PM | 00,502,208 | ---- | M] (Eset ) - C:\WINDOWS\system32\drivers\amon.sys

 

(AnyDVD) AnyDVD [On_Demand | Running]

[02/25/2006 12:04 AM | 00,019,200 | ---- | M] (SlySoft, Inc.) - C:\WINDOWS\system32\drivers\AnyDVD.sys

 

(ATMEL FVNETusbASKEY (AR)®) ATMEL FVNETusbASKEY (AR)® Service for SANTIS WLAN USB Adapter [On_Demand | Stopped]

File not found - C:\WINDOWS\System32\DRIVERS\vnetusbk.sys

 

(ATMEL WinXP PCMCIAFVNETR (2ARC)®) ATMEL WinXP PCMCIAFVNETR (2ARC)® Service for SANTIS WLAN PC Card [On_Demand | Stopped]

File not found - C:\WINDOWS\System32\DRIVERS\fvnetr51.sys

 

(catchme) catchme [On_Demand | Stopped]

File not found - C:\DOCUME~1\Admin\LOCALS~1\Temp\catchme.sys

 

(cdrbsdrv) cdrbsdrv [system | Running]

[03/08/2004 01:55 PM | 00,013,567 | ---- | M] (B.H.A Corporation) - C:\WINDOWS\System32\drivers\CDRBSDRV.SYS

 

(ctljystk) Creative SBLive! Port de jeux [On_Demand | Running]

[07/26/2005 01:43 PM | 00,003,712 | ---- | M] (Creative Technology Ltd.) - C:\WINDOWS\system32\drivers\ctljystk.sys

 

(ElbyCDIO) ElbyCDIO Driver [Auto | Running]

[04/21/2005 01:40 PM | 00,010,624 | ---- | M] (Elaborate Bytes AG) - C:\WINDOWS\system32\drivers\ElbyCDIO.sys

 

(emu10k) Creative SB Live! (WDM) [On_Demand | Running]

[07/26/2005 01:43 PM | 00,283,904 | ---- | M] (Creative Technology Ltd.) - C:\WINDOWS\system32\drivers\emu10k1m.sys

 

(emu10k1) Pilote du Gestionnaire d'interface Creative (WDM) [On_Demand | Running]

[07/26/2005 01:43 PM | 00,006,912 | ---- | M] (Creative Technology Ltd.) - C:\WINDOWS\system32\drivers\ctlfacem.sys

 

(LMIInfo) LogMeIn Kernel Information Provider [Auto | Running]

[02/28/2008 03:31 PM | 00,012,856 | ---- | M] (LogMeIn, Inc.) - C:\Program Files\LogMeIn\x86\rainfo.sys

 

(lmimirr) lmimirr [On_Demand | Running]

[02/28/2008 03:31 PM | 00,010,144 | ---- | M] (LogMeIn, Inc.) - C:\WINDOWS\system32\drivers\lmimirr.sys

 

(LMIRfsDriver) LogMeIn Remote File System Driver [Auto | Running]

[03/07/2008 01:39 PM | 00,045,848 | ---- | M] (LogMeIn, Inc.) - C:\WINDOWS\system32\drivers\LMIRfsDriver.sys

 

(LVBulk) LVBulk Service [On_Demand | Running]

[09/24/2001 09:39 AM | 00,010,261 | ---- | M] (Logitech Inc.) - C:\WINDOWS\system32\drivers\LVBULK.sys

 

(mcdbus) Driver for MagicISO SCSI Host Controller [On_Demand | Running]

[02/18/2008 06:29 PM | 00,096,256 | ---- | M] (MagicISO, Inc.) - C:\WINDOWS\system32\drivers\mcdbus.sys

 

(MTsensor) ATK0110 ACPI UTILITY [On_Demand | Running]

[08/14/2004 08:56 PM | 00,005,810 | R--- | M] () - C:\WINDOWS\system32\drivers\ASACPI.sys

 

(nltdi) nltdi [system | Running]

[04/23/2007 01:03 PM | 00,082,200 | ---- | M] (Locktime Software) - C:\WINDOWS\system32\drivers\nltdi.sys

 

(PCANDIS5) PCANDIS5 NDIS Protocol Driver [On_Demand | Stopped]

File not found - C:\WINDOWS\system32\PCANDIS5.SYS

 

(pctvvbi) pctvvbi [On_Demand | Running]

[04/02/2002 03:05 PM | 00,006,369 | ---- | M] (Pinnacle Systems) - C:\WINDOWS\system32\drivers\pctvvbi.sys

 

(PID_0900_V) Logitech ClickSmart 310(PID_0900_V) [On_Demand | Running]

[09/24/2001 09:42 AM | 00,217,271 | ---- | M] (Logitech Inc.) - C:\WINDOWS\system32\drivers\LV551AV.sys

 

(PLCMPR5) PLCMPR5 NDIS Protocol Driver [On_Demand | Stopped]

[04/26/2004 05:13 PM | 00,018,432 | R--- | M] (Intellon, Inc.) - C:\WINDOWS\system32\PLCMPR5.SYS

 

(PLCNDIS5) PLCNDIS5 NDIS Protocol Driver [On_Demand | Stopped]

[04/26/2004 05:11 PM | 00,017,280 | R--- | M] (Intellon, Inc.) - C:\WINDOWS\system32\PLCNDIS5.SYS

 

(Pnp680r) Silicon Image SiI 0680 Medley Raid Controller [boot | Running]

[05/31/2002 05:35 PM | 00,076,976 | ---- | M] (Silicon Image, Inc) - C:\WINDOWS\system32\drivers\pnp680r.sys

 

(PQNTDrv) PQNTDrv [system | Running]

[09/16/2002 06:07 PM | 00,004,228 | ---- | M] (PowerQuest Corporation) - C:\WINDOWS\System32\drivers\PQNTDRV.sys

 

(RGFILERW) RGFILERW [Auto | Running]

[10/15/2005 01:08 PM | 00,003,984 | ---- | M] () - C:\WINDOWS\system32\drivers\RGFILERW.SYS

 

(RT73) D-Link USB Wireless LAN Card Driver [On_Demand | Stopped]

[11/03/2005 08:39 PM | 00,245,504 | ---- | M] (Ralink Technology, Corp.) - C:\WINDOWS\system32\drivers\Dr71WU.sys

 

(RTL8023xp) Realtek 10/100/1000 NIC Family all in one NDIS XP Driver [On_Demand | Running]

[09/28/2005 04:51 AM | 00,078,080 | ---- | M] (Realtek Semiconductor Corporation ) - C:\WINDOWS\system32\drivers\Rtenicxp.sys

 

(Secdrv) Secdrv [On_Demand | Stopped]

[07/17/2004 11:36 AM | 00,027,440 | ---- | M] () - C:\WINDOWS\system32\drivers\secdrv.sys

 

(sfman) Pilote du Gestionnaire SoundFont Creative (WDM) [On_Demand | Running]

[07/26/2005 01:43 PM | 00,036,480 | ---- | M] (Creative Technology Ltd.) - C:\WINDOWS\system32\drivers\sfmanm.sys

 

(symsnap) Symantec Volume Snap Shot Driver [boot | Running]

[12/20/2007 06:13 PM | 00,136,416 | ---- | M] (StorageCraft) - C:\WINDOWS\system32\drivers\symsnap.sys

 

(usb2vcom) USB to Serial Bridge Controller [On_Demand | Stopped]

[09/02/2005 06:49 PM | 00,028,928 | ---- | M] () - C:\WINDOWS\system32\drivers\usb2vcom.sys

 

(Vax347b) Vax347b [boot | Running]

[04/25/2005 11:43 AM | 00,159,616 | ---- | M] ( ) - C:\WINDOWS\system32\drivers\Vax347b.sys

 

(Vax347s) Vax347s [boot | Running]

[04/30/2004 10:33 AM | 00,005,248 | ---- | M] ( ) - C:\WINDOWS\system32\drivers\Vax347s.sys

 

========== Run Keys ==========

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"AnyDVD" = C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe [02/25/2006 12:17 AM | 00,462,848 | ---- | M] (SlySoft, Inc.)

"EoEngine" = File not found

"EoNet" = File not found

"EoSudoku" = File not found

"High Definition Audio Property Page Shortcut" = HDAShCut.exe [10/27/2004 03:21 PM | 00,061,952 | ---- | M] (Windows ® Server 2003 DDK provider)

"LocalCooling" = "C:\Program Files\LocalCooling\localcooling.exe" -s [12/01/2006 06:09 PM | 02,056,875 | ---- | M] ()

"LogMeIn GUI" = "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe" [02/28/2008 03:31 PM | 00,063,048 | ---- | M] (LogMeIn, Inc.)

"LVCOMS" = C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE [09/24/2001 09:39 AM | 00,098,304 | ---- | M] (Logitech Inc.)

"NeroFilterCheck" = C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe [01/12/2006 04:40 PM | 00,155,648 | ---- | M] (Nero AG)

"nod32kui" = "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE [08/08/2006 06:53 PM | 00,917,504 | ---- | M] (Eset )

"Norton Ghost 14.0" = "C:\Program Files\Norton Ghost\Agent\VProTray.exe" [01/19/2008 09:01 PM | 02,245,984 | ---- | M] (Symantec Corporation)

"NvCplDaemon" = RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup [12/14/2005 08:51 AM | 07,323,648 | ---- | M] (NVIDIA Corporation)

"NvMediaCenter" = RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit [12/14/2005 08:51 AM | 00,086,016 | ---- | M] (NVIDIA Corporation)

"nwiz" = nwiz.exe /install [12/14/2005 08:51 AM | 01,519,616 | ---- | M] ()

"QuickTime Task" = "C:\Program Files\QuickTime\qttask.exe" -atboottime [08/25/2006 08:44 PM | 00,282,624 | ---- | M] (Apple Computer, Inc.)

"RealTray" = C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER [08/03/2007 11:27 PM | 00,020,480 | ---- | M] (RealNetworks, Inc.)

"Share-to-Web Namespace Daemon" = c:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe [04/17/2002 10:42 AM | 00,069,632 | ---- | M] (Hewlett-Packard)

"SunJavaUpdateSched" = "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [02/22/2008 04:25 AM | 00,144,784 | ---- | M] (Sun Microsystems, Inc.)

"TomTomHOME.exe" = "C:\Program Files\TomTom HOME\TomTomHOME.exe" -s [01/29/2007 01:07 PM | 03,718,312 | ---- | M] (TomTom)

"WinampAgent" = C:\Program Files\Winamp\winampa.exe [05/15/2007 12:22 AM | 00,035,328 | ---- | M] ()

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"load" = Reg Error: Value load does not exist or could not be read.

"run" = Reg Error: Value run does not exist or could not be read.

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}" = "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" [06/01/2006 01:32 PM | 00,094,208 | ---- | M] (Nero AG)

"BitTorrent" = "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized File not found

"Disk Cleaner" = "C:\Program Files\Disk Cleaner\DiskCleaner.Exe" /boot [04/03/2008 05:30 PM | 03,310,880 | ---- | M] (SafeApp Software, LLC)

"Skype" = "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized [09/13/2007 01:31 PM | 22,880,040 | R--- | M] (Skype Technologies S.A.)

"SweetIM" = C:\Program Files\Macrogaming\SweetIM\SweetIM.exe [07/25/2007 04:35 PM | 00,102,512 | R--- | M] (MacroGaming LTD.)

"swg" = C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [08/07/2007 10:09 AM | 00,068,856 | ---- | M] (Google Inc.)

"updateMgr" = "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_1_0 -reboot 1 [03/30/2006 04:45 PM | 00,313,472 | R--- | M] (Adobe Systems Incorporated)

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"load" =

"run" = Reg Error: Value run does not exist or could not be read.

 

========== Startup Folders ==========

 

[Admin Startup Folder - C:\Documents and Settings\Admin\Menu Démarrer\Programmes\Démarrage]

[02/18/2008 06:32 PM | 00,546,816 | ---- | M] (MagicISO, Inc.) - C:\Documents and Settings\Admin\Menu Démarrer\Programmes\Démarrage\MagicDisc.lnk = C:\Program Files\MagicDisc\MagicDisc.exe

 

[All Users Startup Folder - C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage]

[04/23/2008 03:38 AM | 00,029,696 | ---- | M] (Adobe Systems Incorporated) - C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

[11/21/2003 10:02 PM | 00,151,552 | ---- | M] (Sony Corporation) - C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Picture Package Menu.lnk = C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe

[07/08/2004 05:13 PM | 00,106,496 | ---- | M] (Sony Corporation.) - C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Picture Package VCD Maker.lnk = C:\Program Files\Sony Corporation\Picture Package\Picture Package Applications\Residence.exe

[06/06/2007 12:10 PM | 00,394,856 | R--- | M] (WinZip Computing, S.L.) - C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE

 

========== BHO's ==========

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]

HKLM CLSID: (Adobe PDF Reader Link Helper) - [12/18/2006 04:16 AM | 00,059,032 | ---- | M] (Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A}]

HKLM CLSID: (SWEETIE Class) - [11/05/2006 04:44 PM | 00,548,992 | R--- | M] (Macrogaming) C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]

HKLM CLSID: () - [05/31/2005 01:04 AM | 00,853,672 | ---- | M] (Safer Networking Limited) C:\Program Files\Spybot - Search & Destroy\SDHelper.dll

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

HKLM CLSID: (SSVHelper Class) - [02/22/2008 04:25 AM | 00,509,328 | ---- | M] (Sun Microsystems, Inc.) C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

HKLM CLSID: (Reg Error: Key does not exist or could not be opened.) - File not found Reg Error: Key does not exist or could not be opened.

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

HKLM CLSID: (Google Toolbar Helper) - [01/20/2007 12:56 AM | 02,436,160 | R--- | M] (Google Inc.) c:\Program Files\Google\GoogleToolbar4.dll

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]

HKLM CLSID: (Google Toolbar Notifier BHO) - [08/07/2007 10:09 AM | 00,325,048 | ---- | M] (Google Inc.) C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll

 

========== Toolbars ==========

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar]

"{2318C2B1-4965-11d4-9B18-009027A5CD4F}"

HKLM CLSID: (&Google) - [01/20/2007 12:56 AM | 02,436,160 | R--- | M] (Google Inc.) c:\Program Files\Google\GoogleToolbar4.dll

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar]

"{BC4FFE41-DE9F-46fa-B455-AAD49B9F9938}"

HKLM CLSID: (SweetIM For Internet Explorer) - [11/05/2006 04:44 PM | 00,548,992 | R--- | M] (Macrogaming) C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll

 

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser]

 

"{2318C2B1-4965-11D4-9B18-009027A5CD4F}"

HKLM CLSID: (&Google) - [01/20/2007 12:56 AM | 02,436,160 | R--- | M] (Google Inc.) c:\Program Files\Google\GoogleToolbar4.dll

 

"{BC4FFE41-DE9F-46FA-B455-AAD49B9F9938}"

HKLM CLSID: (SweetIM For Internet Explorer) - [11/05/2006 04:44 PM | 00,548,992 | R--- | M] (Macrogaming) C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll

 

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]

 

"{2318C2B1-4965-11D4-9B18-009027A5CD4F}"

HKLM CLSID: (&Google) - [01/20/2007 12:56 AM | 02,436,160 | R--- | M] (Google Inc.) c:\Program Files\Google\GoogleToolbar4.dll

 

"{BC4FFE41-DE9F-46FA-B455-AAD49B9F9938}"

HKLM CLSID: (SweetIM For Internet Explorer) - [11/05/2006 04:44 PM | 00,548,992 | R--- | M] (Macrogaming) C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll

 

========== AppInit_Dlls ==========

 

========== Shell Execute Hooks ==========

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

"{01CD0B31-9154-45F2-9414-F5D64B74EAF6}" =

HKLM CLSID: (Reg Error: Key does not exist or could not be opened.) - File not found Reg Error: Key does not exist or could not be opened.

 

========== HKLM Security Providers ==========

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\\SecurityProviders]

"msapsspc.dll schannel.dll digest.dll msnsspc.dll" - File not found

 

========== HKLM Winlogon Settings ==========

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell]

"Explorer.exe" - [07/26/2005 03:01 PM | 01,036,288 | ---- | M] (Microsoft Corporation) C:\WINDOWS\explorer.exe

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UserInit]

"C:\WINDOWS\system32\userinit.exe" - [08/19/2004 04:10 PM | 00,025,088 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\userinit.exe

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UIHost]

"logonui.exe" - [08/19/2004 04:09 PM | 00,515,584 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\logonui.exe

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet]

"rundll32 shell32" - [12/19/2006 11:49 PM | 08,509,952 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll

"Control_RunDLL "sysdm.cpl"" - [08/19/2004 04:10 PM | 00,305,152 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\sysdm.cpl

 

========== User's Winlogon Settings ==========

 

========== Winlogon Notify Settings ==========

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LMIinit]

"DllName" = C:\WINDOWS\system32\LMIinit.dll [05/28/2008 12:32 PM | 00,087,352 | ---- | M] (LogMeIn, Inc.)

 

========== Policies ==========

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]

"NoCDBurning" = 1

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]

"dontdisplaylastusername" = 0

"legalnoticecaption" =

"legalnoticetext" =

"shutdownwithoutlogon" = 1

"undockwithoutlogon" = 1

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]

"NoDriveTypeAutoRun" = 145

"NoRecentDocsMenu" = 1

"NoCDBurning" = 1

"NoLowDiskSpaceChecks" = 1

"NoStartBanner" = 01 00 00 00 [binary data]

"NoSMHelp" = 1

"MemCheckBoxInRunDlg" = 1

"NoSMBalloonTip" = 1

"NoDesktopCleanupWizard" = 1

"NoWelcomeScreen" = 1

"NoAutoUpdate" = 1

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]

 

========== Lsa Authentication Packages ==========

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\Authentication Packages]

"C:\WINDOWS\system32\pmkhi.dll" - File not found C:\WINDOWS\system32\pmkhi.dll

 

========== Lsa Security Packages ==========

 

========== Desktop Components ==========

 

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]

"FriendlyName" = "Ma page d'accueil"

"Source" = "About:Home"

"SubscribedURL" = "About:Home"

 

========== Safeboot Options ==========

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot]

"AlternateShell" = cmd.exe

 

========== Disabled MsConfig Items ==========

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\services]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\state]

"system.ini" = 0

"win.ini" = 0

"bootini" = 0

"services" = 0

"startup" = 0

 

========== CDRom AutoRun Settings ==========

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom]

"AutoRun" = 1

 

========== Autorun Files on Drives ==========

 

AUTOEXEC.BAT [PATH=%PATH%;C:\PROGRA~1\FICHIE~1\MUVEET~1\030625 | ]

[01/15/2007 09:13 PM | 00,000,050 | ---- | M] () C:\AUTOEXEC.BAT [ NTFS ]

 

AUTORUN.INF [[AutoRun] | open=setup.exe | icon=setup.exe,0 | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | ]

[08/28/2001 02:00 PM | 00,000,112 | R--- | M] () D:\AUTORUN.INF [ CDFS ]

 

========== MountPoints2 ==========

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1216a5fa-638a-11dd-ac2f-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1a1d5d52-d4a7-11dc-a0a8-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1a1d5d53-d4a7-11dc-a0a8-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1a1d5d54-d4a7-11dc-a0a8-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1a1d5d55-d4a7-11dc-a0a8-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{22504152-5310-11dd-851b-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{22504153-5310-11dd-851b-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{28c44e46-380a-11db-94ae-0015e946e3b0}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2deeaec0-61ee-11dc-955e-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{326ae85a-7f00-11db-94f1-0015e946e3b0}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{36b2cdf3-5806-11dd-9e93-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3aa49f98-de04-11dc-a0b4-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6d731d48-346a-11db-94a8-0015e946e3b0}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6ef90a4a-26e0-11db-9486-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{788998ea-793c-11db-94ec-0015e946e3b0}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{873373d3-4807-11dd-922c-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8854cb56-53d9-11dd-833b-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9a8ceae8-a8b2-11dc-a082-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a26863fb-6911-11dd-af35-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ade81d02-8484-11db-94f6-0015e946e3b0}\Shell]

"" = Open

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b84d890b-b854-11dc-a090-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c0fec7f8-4f2b-11dd-9496-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c0fec7f9-4f2b-11dd-9496-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c0fec7fa-4f2b-11dd-9496-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c196ebd3-3149-11dd-af99-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c71dc3fe-b903-11db-9523-0015e946e3b0}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{eb6e0a7e-b3d8-11dc-a08c-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ee6a28fc-61ec-11dd-b3c8-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ee6a291a-61ec-11dd-b3c8-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ee6a291c-61ec-11dd-b3c8-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ee6a291e-61ec-11dd-b3c8-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ee6a2922-61ec-11dd-b3c8-0017319b0c58}\Shell]

"" = None

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ee6a2928-61ec-11dd-b3c8-0017319b0c58}\Shell]

"" = None

 

========== DNS Name Servers ==========

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\{3E9107B9-8D35-44F0-8522-84C97F3C8C11}]

Servers: | Description:

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\{4FB3AB84-4CA9-4A24-92E0-A050D36EBF89}]

Servers: | Description: SANTIS WLAN USB Adapter

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\{F511E601-A8BC-4C87-AA62-C4F866A594BC}]

Servers: 195.238.2.21,195.238.2.22 | Description: Realtek RTL8168/8111 PCI-E Gigabit Ethernet NIC

 

========== Hosts File ==========

 

HOSTS File = (686 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts

First 25 entries...

127.0.0.1 localhost

 

 

 

========== Files/Folders - Created Within 30 days ==========

 

[08/21/2008 01:26 PM | 00,001,463 | ---- | C] () - C:\reseau_maison.cfg

[08/26/2008 04:46 PM | 00,001,024 | ---- | C] () - C:\.rnd

[08/27/2008 06:56 PM | ---D | C] - C:\SDFix

[08/28/2008 12:31 PM | 10,729,43104 | -HS- | C] () - C:\hiberfil.sys

[08/30/2008 11:47 AM | ---D | C] - C:\_OTMoveIt

[08/30/2008 11:55 AM | ---D | C] - C:\rsit

[08/26/2008 04:46 PM | 00,045,848 | ---- | C] (LogMeIn, Inc.) - C:\WINDOWS\System32\drivers\LMIRfsDriver.sys

[08/26/2008 04:46 PM | 00,024,608 | ---- | C] (LogMeIn, Inc.) - C:\WINDOWS\System32\LMIport.dll

[08/26/2008 04:46 PM | 00,083,288 | ---- | C] (LogMeIn, Inc.) - C:\WINDOWS\System32\LMIRfsClientNP.dll

[08/26/2008 04:46 PM | 00,087,352 | ---- | C] (LogMeIn, Inc.) - C:\WINDOWS\System32\LMIinit.dll

[4 C:\WINDOWS\*.tmp files]

[08/17/2008 08:21 PM | 00,001,409 | ---- | C] () - C:\WINDOWS\QTFont.for

[08/17/2008 08:21 PM | 00,054,156 | -H-- | C] () - C:\WINDOWS\QTFont.qfn

[08/21/2008 01:22 PM | 00,000,053 | ---- | C] () - C:\WINDOWS\IP.bat

[08/27/2008 07:04 PM | ---D | C] - C:\WINDOWS\ERUNT

[08/26/2008 04:47 PM | ---D | C] - C:\Documents and Settings\All Users\Application Data\LogMeIn

[08/27/2008 07:29 PM | ---D | C] - C:\Documents and Settings\All Users\Application Data\Malwarebytes

[08/27/2008 07:29 PM | ---D | C] - C:\Documents and Settings\Admin\Application Data\Malwarebytes

[08/26/2008 04:47 PM | ---D | C] - C:\Documents and Settings\Admin\Local Settings\Application Data\LogMeIn

[08/13/2008 01:10 PM | ---D | C] - C:\Documents and Settings\Admin\Mes documents\CLERENALDE

[08/22/2008 06:33 PM | 00,001,166 | -H-- | C] () - C:\Documents and Settings\Admin\Mes documents\Default.rdp

[08/26/2008 06:45 PM | ---D | C] - C:\Documents and Settings\Admin\Mes documents\SOS PC CLIENTS

[08/28/2008 03:50 PM | R--D | C] - C:\Documents and Settings\Admin\Mes documents\  

[08/01/2008 06:57 PM | 00,838,071 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\sw_v1.3.7_120708_tps all update.rar

[08/02/2008 11:44 AM | 03,932,214 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\EB096872302CN.bmp

[08/03/2008 11:30 AM | 00,553,470 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\MAX_S_1.3.1_07092006.zip

[08/03/2008 11:46 AM | 01,821,392 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\Jtag_FTE_V1.1.0.zip

[08/04/2008 08:32 PM | 00,004,858 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\PowerQuest PartitionMagic 8.01

[08/13/2008 03:26 PM | 00,000,752 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\windows original.rar

[08/13/2008 03:45 PM | 00,013,824 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\removewga_removewga_1.2_anglais_21437.exe

[08/13/2008 04:01 PM | 72,870,5024 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\bt3-final.iso

[08/13/2008 12:46 PM | 04,829,531 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\aircrack-ng-1.0-rc1-win.zip

[08/14/2008 04:37 PM | 00,016,025 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\Nero 8.3.6.0.zip

[08/14/2008 08:55 PM | 00,109,929 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\8600-D.jpg

[08/14/2008 08:56 PM | 00,032,318 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\G888.jpg

[08/14/2008 08:58 PM | 00,000,000 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\Gucci G600(2).JPG

[08/14/2008 08:58 PM | 00,075,738 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\Gucci G600(2).JPG.part

[08/16/2008 08:55 AM | 00,107,673 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\N8800-S.JPG

[08/16/2008 08:59 AM | 00,029,824 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\solutionfr.zip

[08/17/2008 08:21 PM | ---D | C] - C:\Documents and Settings\Admin\Bureau\Matisse

[08/18/2008 09:15 PM | ---D | C] - C:\Documents and Settings\Admin\Bureau\supportdecoursword2000

[08/21/2008 03:11 PM | ---D | C] - C:\Documents and Settings\Admin\Bureau\aircrack-ng-1.0-rc1-win

[08/22/2008 05:14 PM | 06,477,993 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\Patrick_Bruel_Place_des_grands_hommes_(Instrumental)_9909.mp3

[08/22/2008 05:15 PM | 05,460,471 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\Elsa_T_en_va_pas_(Instrumental)_22873.mp3

[08/25/2008 12:37 AM | 00,000,673 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\Tipienbiss2408.zip

[08/26/2008 06:07 PM | 00,170,702 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\TcpView.zip

[08/27/2008 06:55 PM | 01,417,602 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\SDFix.exe

[08/28/2008 03:52 PM | 00,000,326 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\blank.ico

[08/28/2008 12:23 PM | 02,700,296 | ---- | C] (Uniblue Labs ) - C:\Documents and Settings\Admin\Bureau\localcooling-1.04.exe

[08/30/2008 01:43 PM | 00,706,437 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\R_solution_probleme_ON_et_UP9_pour_Fte_et_clone_SERIE_B.rar

[08/30/2008 01:58 PM | 00,987,260 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\sw_V1.3.7_04.02.08.rar

[08/30/2008 11:44 AM | 00,304,189 | ---- | C] () - C:\Documents and Settings\Admin\Bureau\RSIT.exe

[08/01/2008 06:31 PM | ---D | C] - C:\Program Files\PokerStars.NET

[08/04/2008 10:59 PM | ---D | C] - C:\Program Files\PowerQuest

[08/26/2008 04:46 PM | ---D | C] - C:\Program Files\LogMeIn

[08/27/2008 07:29 PM | ---D | C] - C:\Program Files\Malwarebytes' Anti-Malware

[08/28/2008 12:25 PM | ---D | C] - C:\Program Files\LocalCooling

 

========== Files/Folders - Modified Within 30 days ==========

 

[08/04/2008 11:20 PM | 00,000,212 | -HS- | M] () - C:\boot.ini

[08/21/2008 01:26 PM | 00,001,463 | ---- | M] () - C:\reseau_maison.cfg

[08/26/2008 04:46 PM | 00,001,024 | ---- | M] () - C:\.rnd

[08/27/2008 07:20 PM | 00,004,096 | -HS- | M] () - C:\VSNAP.IDX

[08/30/2008 12:40 PM | 10,729,43104 | -HS- | M] () - C:\hiberfil.sys

[08/27/2008 07:08 PM | 00,000,686 | ---- | M] () - C:\WINDOWS\System32\drivers\etc\HOSTS

[5 C:\WINDOWS\System32\*.tmp files]

[08/25/2008 11:40 AM | 00,002,206 | ---- | M] () - C:\WINDOWS\System32\wpa.dbl

[08/30/2008 12:41 PM | 00,061,465 | ---- | M] () - C:\WINDOWS\System32\nvapps.xml

[4 C:\WINDOWS\*.tmp files]

[08/17/2008 08:21 PM | 00,001,409 | ---- | M] () - C:\WINDOWS\QTFont.for

[08/17/2008 08:21 PM | 00,054,156 | -H-- | M] () - C:\WINDOWS\QTFont.qfn

[08/21/2008 01:22 PM | 00,000,053 | ---- | M] () - C:\WINDOWS\IP.bat

[08/23/2008 03:25 PM | 00,000,116 | ---- | M] () - C:\WINDOWS\NeroDigital.ini

[08/30/2008 12:40 PM | 00,002,048 | --S- | M] () - C:\WINDOWS\bootstat.dat

[08/30/2008 01:33 PM | 00,000,254 | ---- | M] () - C:\WINDOWS\tasks\Vérifier les mises à jour de Windows Live Toolbar.job

[08/30/2008 12:40 PM | 00,000,006 | -H-- | M] () - C:\WINDOWS\tasks\SA.DAT

[08/30/2008 12:38 PM | 11,783,996 | -H-- | M] () - C:\Documents and Settings\Admin\Local Settings\Application Data\IconCache.db

[08/23/2008 05:39 PM | 00,001,166 | -H-- | M] () - C:\Documents and Settings\Admin\Mes documents\Default.rdp

[08/30/2008 12:43 PM | 00,000,568 | ---- | M] () - C:\Documents and Settings\Admin\Mes documents\Mes dossiers de partage.lnk

[08/04/2008 06:59 PM | 00,002,519 | ---- | M] () - C:\Documents and Settings\All Users\Bureau\Jasc Paint Shop Pro 8.lnk

[08/23/2008 05:30 PM | 00,002,257 | ---- | M] () - C:\Documents and Settings\All Users\Bureau\Skype.lnk

[08/01/2008 06:57 PM | 00,838,071 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\sw_v1.3.7_120708_tps all update.rar

[08/02/2008 11:44 AM | 03,932,214 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\EB096872302CN.bmp

[08/03/2008 11:29 AM | 00,553,470 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\MAX_S_1.3.1_07092006.zip

[08/03/2008 11:46 AM | 01,821,392 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\Jtag_FTE_V1.1.0.zip

[08/04/2008 08:32 PM | 00,004,858 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\PowerQuest PartitionMagic 8.01.zip

[08/13/2008 03:26 PM | 00,000,752 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\windows original.rar

[08/13/2008 03:45 PM | 00,013,824 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\removewga_removewga_1.2_anglais_21437.exe

[08/13/2008 05:22 PM | 72,870,5024 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\bt3-final.iso

[08/13/2008 12:47 PM | 04,829,531 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\aircrack-ng-1.0-rc1-win.zip

[08/14/2008 04:37 PM | 00,016,025 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\Nero 8.3.6.0.zip

[08/14/2008 08:56 PM | 00,032,318 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\G888.jpg

[08/14/2008 08:56 PM | 00,109,929 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\8600-D.jpg

[08/14/2008 08:58 PM | 00,000,000 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\Gucci G600(2).JPG

[08/14/2008 09:00 PM | 00,075,738 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\Gucci G600(2).JPG.part

[08/16/2008 08:55 AM | 00,107,673 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\N8800-S.JPG

[08/16/2008 08:59 AM | 00,029,824 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\solutionfr.zip

[08/22/2008 05:16 PM | 06,477,993 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\Patrick_Bruel_Place_des_grands_hommes_(Instrumental)_9909.mp3

[08/23/2008 05:47 PM | 05,460,471 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\Elsa_T_en_va_pas_(Instrumental)_22873.mp3

[08/25/2008 12:37 AM | 00,000,673 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\Tipienbiss2408.zip

[08/26/2008 06:07 PM | 00,170,702 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\TcpView.zip

[08/27/2008 06:55 PM | 01,417,602 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\SDFix.exe

[08/28/2008 03:52 PM | 00,000,326 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\blank.ico

[08/28/2008 12:25 PM | 02,700,296 | ---- | M] (Uniblue Labs ) - C:\Documents and Settings\Admin\Bureau\localcooling-1.04.exe

[08/30/2008 01:43 PM | 00,706,437 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\R_solution_probleme_ON_et_UP9_pour_Fte_et_clone_SERIE_B.rar

[08/30/2008 01:58 PM | 00,987,260 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\sw_V1.3.7_04.02.08.rar

[08/30/2008 11:44 AM | 00,304,189 | ---- | M] () - C:\Documents and Settings\Admin\Bureau\RSIT.exe

 

< End of report >

OTViewIt Extras logfile created on: 30/08/2008 14:08:24 - Run 1

OTViewIt by OldTimer - Version 1.0.1.5 Folder = C:\Documents and Settings\Admin\Bureau

Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 6.0.2900.2180)

Locale: 0000080C | Country: Belgique | Language: FRB | Date Format: d/MM/yyyy

 

1023,17 Mb Total Physical Memory | 543,51 Mb Available Physical Memory | 53,12% Memory free

1,65 Gb Paging File | 1,23 Gb Available in Paging File | 74,21% Paging File free

Paging file location(s): C:\pagefile.sys 768 768;

 

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 122,07 Gb Total Space | 37,74 Gb Free Space | 30,92% Space Free | Partition Type: NTFS

Drive D: | 501,88 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

E: Drive not present or media not loaded

Drive F: | 111,69 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: NTFS

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

 

========== Security Center Settings ==========

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

"FirstRunDisabled" = 1

"AntiVirusOverride" = 0

"FirewallOverride" = 0

"AntiVirusDisableNotify" = 1

"FirewallDisableNotify" = 1

"UpdatesDisableNotify" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

 

========== Authorized Applications List ==========

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

 

"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019

[08/19/2004 04:10 PM | 00,142,336 | ---- | M] (Microsoft Corporation)

 

"C:\Program Files\MSN Messenger\msncall.exe" = C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)

File not found

 

"C:\Program Files\MSN Messenger\msnmsgr.exe" = C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1

[01/19/2007 12:55 PM | 05,674,352 | ---- | M] (Microsoft Corporation)

 

"C:\Program Files\MSN Messenger\livecall.exe" = C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)

[01/04/2007 04:10 PM | 00,297,752 | ---- | M] (Microsoft Corporation)

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

 

"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019

[08/19/2004 04:10 PM | 00,142,336 | ---- | M] (Microsoft Corporation)

 

"C:\Program Files\eMule\eMule.exe" = C:\Program Files\eMule\eMule.exe:*:Enabled:eMule Plus

[09/01/2007 01:57 PM | 05,808,128 | ---- | M] (http://emuleplus.info)

 

"C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire

File not found

 

"C:\Program Files\MSN Messenger\msncall.exe" = C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)

File not found

 

"C:\totalcmd\TOTALCMD.EXE" = C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows

[07/26/2006 06:55 AM | 00,851,664 | ---- | M] (C. Ghisler & Co.)

 

"C:\Program Files\TomTom HOME\TomTomHOME.exe" = C:\Program Files\TomTom HOME\TomTomHOME.exe:*:Enabled:TomTom HOME

[01/29/2007 01:07 PM | 03,718,312 | ---- | M] (TomTom)

 

"C:\WINDOWS\system32\mcoinstall.exe" = C:\WINDOWS\system32\mcoinstall.exe:*:Enabled:mcoinstall

[04/11/2005 11:53 AM | 00,028,672 | ---- | M] (Aapie.Net)

 

"C:\Program Files\MSN Messenger\msnmsgr.exe" = C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1

[01/19/2007 12:55 PM | 05,674,352 | ---- | M] (Microsoft Corporation)

 

"C:\Program Files\MSN Messenger\livecall.exe" = C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)

[01/04/2007 04:10 PM | 00,297,752 | ---- | M] (Microsoft Corporation)

 

"C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour

[02/28/2006 12:42 PM | 00,229,376 | ---- | M] (Apple Computer, Inc.)

 

"C:\Program Files\OrgaBiz\OrgaBiz.exe" = C:\Program Files\OrgaBiz\OrgaBiz.exe:*:Enabled:Orgabiz, logiciel de gestion de clients et d'archivage

[08/08/2007 06:45 PM | 17,328,780 | ---- | M] (OrgaBiz)

 

"C:\WINDOWS\LMIADD.tmp\rescue.exe" = C:\WINDOWS\LMIADD.tmp\rescue.exe:*:Enabled:LogMeIn Rescue

File not found

 

"G:\Program Files\LimeWire\LimeWire.exe" = G:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire

File not found

 

"C:\Program Files\BitTorrent\bittorrent.exe" = C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent

File not found

 

"C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE" = C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE:*:Enabled:Connection Manager

[04/23/2003 01:09 AM | 00,417,871 | ---- | M] (Microsoft Corporation)

 

"C:\Program Files\Microsoft ActiveSync\WCESMGR.EXE" = C:\Program Files\Microsoft ActiveSync\WCESMGR.EXE:*:Enabled:ActiveSync Application

[04/23/2003 01:09 AM | 00,958,542 | ---- | M] (Microsoft Corporation)

 

 

"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox

[08/26/2008 12:14 PM | 00,307,712 | ---- | M] (Mozilla Corporation)

 

"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype

[09/13/2007 01:31 PM | 22,880,040 | R--- | M] (Skype Technologies S.A.)

 

========== File Associations ==========

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

.bat [@ = batfile] - File not found -

.cmd [@ = cmdfile] - File not found -

.com [@ = comfile] - File not found -

.exe [@ = exefile] - File not found -

.html [@ = FirefoxHTML] - [08/26/2008 12:14 PM | 00,307,712 | ---- | M] (Mozilla Corporation) - C:\Program Files\Mozilla Firefox\firefox.exe

.pif [@ = piffile] - File not found -

.scr [@ = scrfile] - File not found -

 

========== Winsock2 Catalogs ==========

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\]

NameSpace_Catalog5\Catalog_Entries\000000000004 [mdnsNSP] - [02/28/2006 12:42 PM | 00,094,208 | ---- | M] (Apple Computer, Inc.) C:\Program Files\Bonjour\mdnsNSP.dll

Protocol_Catalog9\Catalog_Entries\000000000001 - File not found

Protocol_Catalog9\Catalog_Entries\000000000002 - File not found

Protocol_Catalog9\Catalog_Entries\000000000003 - File not found

Protocol_Catalog9\Catalog_Entries\000000000004 - File not found

Protocol_Catalog9\Catalog_Entries\000000000005 - File not found

Protocol_Catalog9\Catalog_Entries\000000000006 - File not found

Protocol_Catalog9\Catalog_Entries\000000000007 - File not found

Protocol_Catalog9\Catalog_Entries\000000000008 - File not found

Protocol_Catalog9\Catalog_Entries\000000000009 - File not found

Protocol_Catalog9\Catalog_Entries\000000000010 - File not found

Protocol_Catalog9\Catalog_Entries\000000000011 - File not found

Protocol_Catalog9\Catalog_Entries\000000000012 - File not found

Protocol_Catalog9\Catalog_Entries\000000000013 - File not found

Protocol_Catalog9\Catalog_Entries\000000000014 - File not found

Protocol_Catalog9\Catalog_Entries\000000000015 - File not found

Protocol_Catalog9\Catalog_Entries\000000000016 - File not found

Protocol_Catalog9\Catalog_Entries\000000000017 - File not found

Protocol_Catalog9\Catalog_Entries\000000000018 - File not found

Protocol_Catalog9\Catalog_Entries\000000000019 - File not found

Protocol_Catalog9\Catalog_Entries\000000000020 - File not found

Protocol_Catalog9\Catalog_Entries\000000000021 - File not found

 

========== HKEY_LOCAL_MACHINE Protocol Defaults ==========

 

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults - Default Protocols

about - 4 = Sites sensibles (Not a Default Protocol)

about: - 4 = Sites sensibles (Not a Default Protocol)

 

========== HKEY_CURRENT_USER Protocol Defaults ==========

 

 

========== Protocol Handlers ==========

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\]

ipp: [HKLM - No CLSID value]

msdaipp: [HKLM - No CLSID value]

 

skype4com:{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} [HKLM - IEProtocolHandler Class]

[09/13/2007 01:31 PM | 01,828,176 | R--- | M] (Skype Technologies) C:\Program Files\Fichiers communs\Skype\Skype4COM.dll

 

========== Protocol Filters ==========

 

========== HKEY_LOCAL_MACHINE Uninstall List ==========

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3

"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting

"{0A8C97AD-DEED-4894-B446-3ABA95A77D0D}" = Windows Live Toolbar

"{17E2F183-BAC4-4D01-BD7A-59F781E17EFA}" = REALTEK PCIE NIC Driver

"{1805BD6D-C441-4A1C-802D-AFF0232DAACD}" = A-Men Technologies USB-to-Serial

"{183E58A5-A6F5-4FDD-8B37-5F483B6CCDDC}" = NETGEAR XE104 Powerline Encryption Utility

"{1E2F8AE3-3437-44E6-BB75-E95751D6B83F}" = Picture Package

"{2274624C-5B38-41AD-AD27-CEC0924EB628}" = Adobe Setup

"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer

"{236BB7C4-4419-42FD-0409-1E257A25E34D}" = Adobe Photoshop CS2

"{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}" = Adobe ExtendScript Toolkit 2

"{27DB0F69-452E-4EB9-850C-972CB47D1036}" = Nero 7 Ultra Edition

"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3

"{3248F0A8-6813-11D6-A77B-00B0D0150030}" = J2SE Runtime Environment 5.0 Update 3

"{3248F0A8-6813-11D6-A77B-00B0D0150060}" = J2SE Runtime Environment 5.0 Update 6

"{3248F0A8-6813-11D6-A77B-00B0D0150090}" = J2SE Runtime Environment 5.0 Update 9

"{3248F0A8-6813-11D6-A77B-00B0D0150100}" = J2SE Runtime Environment 5.0 Update 10

"{3248F0A8-6813-11D6-A77B-00B0D0160020}" = Java 6 Update 2

"{3248F0A8-6813-11D6-A77B-00B0D0160030}" = Java 6 Update 3

"{3248F0A8-6813-11D6-A77B-00B0D0160050}" = Java 6 Update 5

"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP

"{3C02ED4F-46B0-4E9E-87F7-47AEBA4031C8}" = PCTV

"{3DE5E7D4-7B88-403C-A3FD-2017A8240C5B}" = Google Earth

"{4BDB76C6-902E-41D5-9064-68768E02886B}" = Adobe Dreamweaver CS3

"{5C29CB8B-AC1E-4114-8D68-9CD080140D4A}" = Sony USB Driver

"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.5

"{5EC786D5-C0CA-42E0-AF88-5379EF9D91EC}" = First Step Guide

"{63569CE9-FA00-469C-AF5C-E5D4D93ACF91}" = Windows Genuine Advantage v1.3.0254.0

"{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PartitionMagic

"{6CC93102-135E-49E2-99A4-C431E671C12A}" = HP Photo and Imaging 2.0 - Scanners

"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3

"{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0

"{74E2CD0C-D4A2-11D3-95A6-0000E86CFDE5}" = SSH Secure Shell

"{75ADEFA2-D4FF-4B37-9E93-4306E6AC176B}_is1" = ImgBurn 2.3.2.0 Fr

"{77E70C3C-DBB9-4C47-8663-1E1F81FEC623}" = Logitech QuickCam

"{81A34902-9D0B-4920-A25C-4CDC5D14B328}" = Jasc Paint Shop Pro 8

"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3

"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support

"{9011040C-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003

"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3

"{9313E9A6-03DF-11D5-88F8-005004361016}" = Pinnacle TRex

"{9A2AEB56-F18F-457D-9D23-373EA3301280}" = Ciel Compta 14.0

"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3

"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps

"{AC76BA86-7AD7-1036-7B44-A71000000002}" = Adobe Reader 7.1.0 - Français

"{B0255743-165B-4BD5-8DA8-37DFB9930014}" = Norton Ghost

"{B376402D-58EA-45EA-BD50-DD924EB67A70}" = Disque de souvenirs HP

"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0

"{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}" = Adobe Setup

"{B74D4E10-1033-0000-0000-000000000001}" = Adobe Bridge 1.0

"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3

"{BE5F3842-8309-4754-92D5-83E02E6077A3}" = Adobe Extension Manager CS3

"{C21D5524-A970-42FA-AC8A-59B8C7CDCA31}" = QuickTime

"{CD95F661-A5C4-44F5-A6AA-ECDD91C240B5}" = WinZip 11.1

"{CE325D55-FCAF-4273-BB79-069BB8747270}" = TomTom HOME

"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client

"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files

"{D2E18162-47FB-4216-8AB3-F420C1AF75A4}" = Adobe Setup

"{D9FC1645-9D32-4F08-84FA-CB9DDDF02EC8}" = Microsoft Visual C++ 2005 Express Edition - FRA

"{DBC3FDEC-D5F4-439C-9A18-EF454A74E3DE}_is1" = NOD32 FiX v1.9

"{DD362256-A7A2-4524-9457-213DDC2AFC2A}" = Adobe After Effects 7.0

"{E1ACEF2E-C3C0-43F5-A815-5F0BB968DA70}" = GSM SIM Utility 9.0

"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3

"{E7237B6D-E484-43F7-870E-BCE060FC01E2}" = Google AdWords Editor

"{E9F81423-211E-46B6-9AE0-38568BC5CF6F}" =

"{ED0042CA-CBEA-4ADF-B262-FE0518AF2221}" = LogMeIn

"{F06FCDEC-5AB3-4927-A3E7-36AF98A8E05C}" = Huge Pine USB to UART Driver

"{F196AC50-7C95-42E1-9947-BDAB18BF3C8C}" = Microsoft .NET Framework 2.0 Language Pack - FRA

"{F6326B60-1B1D-4ABF-BFCD-7B7404F44411}" = Windows Live Messenger

"{F6D63A65-BD23-46F3-B9A3-87F442423481}" = SweetIM For Internet Explorer 3.0b

"{F8C6BABF-0837-4EA0-AD6C-8E5A392A7538}" = ImageMixer VCD2

"{FA6E99E2-E516-4E8B-B104-178F6219CE1D}" = Macrogaming SweetIM 2.1

"446894_R1" = Micro Application - Architecte 3D 2001

"7-Zip" = 7-Zip 4.57

"Adobe After Effects 7.0" = Adobe After Effects 7.0

"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX

"Adobe Flash Player Plugin" = Adobe Flash Player Plugin

"Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}" = Adobe Photoshop CS2

"Adobe Shockwave Player" = Adobe Shockwave Player

"Adobe_3e054d2218e7aa282c2369d939e58ff" = Adobe ExtendScript Toolkit 2

"Adobe_ad19d2ae8332572b119cf35fd0a30d8" = Adobe Dreamweaver CS3

"Adobe_cbb2ea61da9c780bd7e47a5230a9ed7" = Adobe Stock Photos CS3

"AdobeESD" = Adobe Download Manager 2.0 (Supprimer uniquement)

"Advanced IP Scanner v1.5" = Advanced IP Scanner v1.5

"AnyDVD" = AnyDVD

"Applian FLV Player2.0.23" = Applian FLV Player

"Azureus Vuze" = Azureus Vuze

"BitTorrent" = BitTorrent 5.0.9

"CCleaner" = CCleaner (remove only)

"CFWebAdvancedU_BOBTV.FR" = CamfrogWEB Advanced ActiveX Plugin (www.bobtv.fr)

"Dev-C++" = Dev-C++ 5 beta 9 release (4.9.9.2)

"Disk Cleaner" = Disk Cleaner

"DVD Decrypter 3.5.4.0 Fr" = DVD Decrypter 3.5.4.0 Fr

"DVD Shrink_is1" = DVD Shrink 3.2

"DVDFab 0.17.1 Fr" = DVDFab 0.17.1 Fr

"eMule Plus_is1" = eMule Plus 1.2c

"eMusic Promotion" = eMusic - 50 Free MP3 offer

"EPSON Printer and Utilities" = EPSON Logiciel imprimante

"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20

"FrontPageExpress" = Microsoft FrontPage Express

"HijackThis" = HijackThis 2.0.2

"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs

"InstallShield_{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PowerQuest PartitionMagic 8.0

"InstallShield_{C21D5524-A970-42FA-AC8A-59B8C7CDCA31}" = QuickTime

"iTrad Démo v2.5" = iTrad Démo v2.5

"KB888111WXPSP2" = High Definition Audio Driver Package - KB888111

"KB896424" = Mise à jour de sécurité pour Windows XP (KB896424)

"KB898461" = Mise à jour pour Windows XP (KB898461)

"KB900485" = Mise à jour pour Windows XP (KB900485)

"KB908519" = Mise à jour de sécurité pour Windows XP (KB908519)

"KB908531" = Mise à jour pour Windows XP (KB908531)

"KB910437" = Mise à jour pour Windows XP (KB910437)

"KB911280" = Mise à jour pour Windows XP (KB911280)

"KB911562" = Mise à jour de sécurité pour Windows XP (KB911562)

"KB911564" = Mise à jour de sécurité pour Lecteur Windows Media (KB911564)

"KB911567" = Mise à jour de sécurité pour Windows XP (KB911567)

"KB911927" = Mise à jour de sécurité pour Windows XP (KB911927)

"KB912919" = Mise à jour de sécurité pour Windows XP (KB912919)

"KB913433" = Mise à jour de sécurité pour Windows XP (KB913433)

"KB913580" = Mise à jour de sécurité pour Windows XP (KB913580)

"KB914388" = Mise à jour de sécurité pour Windows XP (KB914388)

"KB914389" = Mise à jour de sécurité pour Windows XP (KB914389)

"KB915865" = Hotfix for Windows XP (KB915865)

"KB916281" = Mise à jour de sécurité pour Windows XP (KB916281)

"KB916595" = Mise à jour pour Windows XP (KB916595)

"KB917159" = Mise à jour de sécurité pour Windows XP (KB917159)

"KB917283.T1_1ToU93_1" = Security Update pour Microsoft .NET Framework 2.0 (KB917283)

"KB917344" = Mise à jour de sécurité pour Windows XP (KB917344)

"KB917422" = Mise à jour de sécurité pour Windows XP (KB917422)

"KB917734_WMP9" = Mise à jour de sécurité pour Lecteur Windows Media 9 (KB917734)

"KB917953" = Mise à jour de sécurité pour Windows XP (KB917953)

"KB918118" = Mise à jour de sécurité pour Windows XP (KB918118)

"KB918439" = Mise à jour de sécurité pour Windows XP (KB918439)

"KB919007" = Mise à jour de sécurité pour Windows XP (KB919007)

"KB920213" = Mise à jour de sécurité pour Windows XP (KB920213)

"KB920670" = Mise à jour de sécurité pour Windows XP (KB920670)

"KB920683" = Mise à jour de sécurité pour Windows XP (KB920683)

"KB920685" = Mise à jour de sécurité pour Windows XP (KB920685)

"KB920872" = Mise à jour pour Windows XP (KB920872)

"KB921398" = Mise à jour de sécurité pour Windows XP (KB921398)

"KB922582" = Mise à jour pour Windows XP (KB922582)

"KB922616" = Mise à jour de sécurité pour Windows XP (KB922616)

"KB922770.T1_1ToU168_1" = Security Update for Microsoft .NET Framework 2.0 (KB922770)

"KB922819" = Mise à jour de sécurité pour Windows XP (KB922819)

"KB923191" = Mise à jour de sécurité pour Windows XP (KB923191)

"KB923414" = Mise à jour de sécurité pour Windows XP (KB923414)

"KB923689" = Mise à jour de sécurité pour Windows XP (KB923689)

"KB923694" = Mise à jour de sécurité pour Windows XP (KB923694)

"KB923980" = Mise à jour de sécurité pour Windows XP (KB923980)

"KB924191" = Mise à jour de sécurité pour Windows XP (KB924191)

"KB924270" = Mise à jour de sécurité pour Windows XP (KB924270)

"KB924496" = Mise à jour de sécurité pour Windows XP (KB924496)

"KB924667" = Mise à jour de sécurité pour Windows XP (KB924667)

"KB925398_WMP64" = Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)

"KB925454" = Mise à jour de sécurité pour Windows XP (KB925454)

"KB925486" = Mise à jour de sécurité pour Windows XP (KB925486)

"KB926255" = Mise à jour de sécurité pour Windows XP (KB926255)

"KB926436" = Mise à jour de sécurité pour Windows XP (KB926436)

"KB927779" = Mise à jour de sécurité pour Windows XP (KB927779)

"KB927802" = Mise à jour de sécurité pour Windows XP (KB927802)

"KB928090" = Mise à jour de sécurité pour Windows XP (KB928090)

"KB928255" = Mise à jour de sécurité pour Windows XP (KB928255)

"KB928843" = Mise à jour de sécurité pour Windows XP (KB928843)

"KB929969" = Mise à jour de sécurité pour Windows XP (KB929969)

"KB931836" = Mise à jour pour Windows XP (KB931836)

"LiveUpdate" = LiveUpdate 3.2 (Symantec Corporation)

"LocalCooling_is1" = LocalCooling 1.04

"Magic ISO Maker v5.4 (build 0256)" = Magic ISO Maker v5.4 (build 0256)

"MagicDisc 2.6.93" = MagicDisc 2.6.93

"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware

"Messenger Plus! Live" = Messenger Plus! Live

"Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0

"Microsoft .NET Framework 2.0 Language Pack - FRA" = Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA

"Microsoft Visual C++ 2005 Express Edition - FRA" = Microsoft Visual C++ 2005 Express - FRA

"Mozilla Firefox (3.0.1)" = Mozilla Firefox (3.0.1)

"NASA World Wind 1.4" = NASA World Wind 1.4

"NetLimiter 2 Pro" = NetLimiter 2 Pro (remove only)

"nLite_is1" = nLite 1.0.1

"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs

"NOD32" = NOD32 Antivirus System

"NVIDIA Drivers" = NVIDIA Drivers

"OnSpec Regen" = OnSpec Regen

"Picasa2" = Picasa 2

"QuickSFV" = QuickSFV (Remove only)

"RealPlayer 6.0" = RealPlayer 7 Basic

"Replay Media Catcher2.10" = Replay Media Catcher

"Replay_Converter_1" = Replay Converter 2.8

"Services Off-line de Home'Bank" = Services Off-line de Home'Bank

"Services Off-line de Home'Bank_is1" = Services Off-line de Home'Bank 4.51

"Spybot - Search & Destroy_is1" = Spybot - Search & Destroy 1.4

"TestLAB 2006 Evaluation_is1" = TestLAB 2006 Evaluation

"Totalcmd" = Total Commander (Remove or Repair)

"Virtual DJ Home Edition - Atomix Productions" = Virtual DJ Home Edition - Atomix Productions

"WGA" = Windows Genuine Advantage Validation Tool (KB892130)

"WgaNotify" = Windows Genuine Advantage Notifications (KB905474)

"WinAce Archiver" = WinAce Archiver

"Winamp" = Winamp (remove only)

"Windows CE Services" = Microsoft ActiveSync 3.7

"Windows Live Toolbar" = Windows Live Toolbar

"Windows Media Format Runtime" = Windows Media Format Runtime

"WinRAR archiver" = WinRAR archiver

"ZAHypo-Expert" = ZA Hypo-Expert

 

========== HKEY_CURRENT_USER Uninstall List ==========

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"ORGABIZ" = OrgaBiz

 

========== Event Log Errors ==========

 

[ Application Events ]

 

Error - 7/07/2008 16:58:37 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 8/07/2008 16:31:00 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 9/07/2008 16:30:53 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 9/07/2008 21:09:10 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 10/07/2008 16:30:58 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 14/07/2008 16:30:45 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 15/07/2008 16:30:43 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 15/07/2008 21:29:48 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 16/07/2008 16:06:46 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 17/07/2008 16:31:03 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 18/07/2008 16:31:07 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 18/07/2008 17:18:44 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 19/07/2008 16:30:56 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 20/07/2008 7:31:53 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 21/07/2008 10:18:57 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 21/07/2008 18:32:20 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 22/07/2008 16:30:49 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 23/07/2008 16:30:58 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 24/07/2008 16:31:08 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 25/07/2008 16:31:17 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 25/07/2008 21:26:41 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 26/07/2008 16:31:01 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 28/07/2008 16:30:48 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 29/07/2008 14:18:35 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 29/07/2008 14:18:35 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 29/07/2008 14:18:35 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 29/07/2008 14:18:35 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 29/07/2008 14:18:35 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 29/07/2008 14:18:35 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 29/07/2008 14:18:35 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 29/07/2008 14:18:35 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 29/07/2008 14:18:38 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 29/07/2008 14:18:40 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 30/07/2008 16:30:45 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 30/07/2008 22:40:41 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 2/08/2008 10:15:06 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 3/08/2008 16:31:05 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 4/08/2008 16:30:59 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 4/08/2008 21:07:49 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1780: Cannot successfully reconcile changes since last session.

Error EC8F1771: Cannot enumerate the current drives on this system. Error E0BB0117:

Failed to initialize because another storage management product is currently running.

Details:

0xE0BB0117

Source: Norton Ghost

 

Error - 4/08/2008 21:16:54 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1780: Cannot successfully reconcile changes since last session.

Error EC8F1771: Cannot enumerate the current drives on this system. Error E0BB0117:

Failed to initialize because another storage management product is currently running.

Details:

0xE0BB0117

Source: Norton Ghost

 

Error - 4/08/2008 21:17:12 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1780: Cannot successfully reconcile changes since last session.

Error EC8F1771: Cannot enumerate the current drives on this system. Error E0BB0117:

Failed to initialize because another storage management product is currently running.

Details:

0xE0BB0117

Source: Norton Ghost

 

Error - 4/08/2008 21:17:25 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1780: Cannot successfully reconcile changes since last session.

Error EC8F1771: Cannot enumerate the current drives on this system. Error E0BB0117:

Failed to initialize because another storage management product is currently running.

Details:

0xE0BB0117

Source: Norton Ghost

 

Error - 4/08/2008 21:18:33 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1780: Cannot successfully reconcile changes since last session.

Error EC8F1771: Cannot enumerate the current drives on this system. Error E0BB0117:

Failed to initialize because another storage management product is currently running.

Details:

0xE0BB0117

Source: Norton Ghost

 

Error - 4/08/2008 21:19:36 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1780: Cannot successfully reconcile changes since last session.

Error EC8F1771: Cannot enumerate the current drives on this system. Error E0BB0117:

Failed to initialize because another storage management product is currently running.

Details:

0xE0BB0117

Source: Norton Ghost

 

Error - 4/08/2008 21:20:21 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1780: Cannot successfully reconcile changes since last session.

Error EC8F1771: Cannot enumerate the current drives on this system. Error E0BB0117:

Failed to initialize because another storage management product is currently running.

Details:

0xE0BB0117

Source: Norton Ghost

 

Error - 5/08/2008 16:30:45 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 5/08/2008 22:32:09 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 6/08/2008 16:31:07 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 8/08/2008 16:30:42 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 9/08/2008 16:30:42 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = VSS

Description = Erreur du service de cliché instantané des volumes : les écritures

E/S ne peuvent pas être conservées pendant la création de cliché instantané sur

le volume \\?\Volume{ea53f830-2707-11db-a902-806d6172696f}\.

L'index de volume

dans le jeu de clichés instantanés est 0. Détails de l'erreur : Vidage[0x00000000],

Libération[0x8000ffff], À l'exécution[0x00000000].

 

Error - 9/08/2008 16:31:15 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 9/08/2008 23:29:52 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 10/08/2008 16:30:42 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 10/08/2008 18:37:29 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 11/08/2008 16:30:43 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 12/08/2008 16:30:43 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 13/08/2008 16:31:04 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 13/08/2008 18:51:34 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 14/08/2008 16:31:10 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 15/08/2008 16:30:42 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 16/08/2008 16:30:43 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 16/08/2008 21:57:49 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 18/08/2008 16:30:42 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 19/08/2008 16:31:01 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 19/08/2008 19:12:42 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 20/08/2008 16:30:43 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 20/08/2008 22:25:34 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 21/08/2008 16:30:44 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 21/08/2008 18:17:13 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 22/08/2008 16:30:59 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 23/08/2008 16:31:10 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001D: Unable to open 'F:/Norton Backups/File Backup Data/fbfFiles_8e4/1c9053c5588e4cd.fbf'.

Error EBAB03F1: Espace insuffisant sur le disque. Error E4BC0007: Could not create

a segment of the backup file. Error E4BC0004: Unable to backup file C:/Documents

and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details: 0xEBAB0005

Source:

Norton Ghost

 

Error - 24/08/2008 16:31:00 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 24/08/2008 22:39:42 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 25/08/2008 16:31:00 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001F: Unable to write to file. Error E7D1003C: There is not enough space.

Error E4BC0004: Unable to backup file C:/Documents and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details:

0xEBAB0005

Source: Norton Ghost

 

Error - 28/08/2008 14:22:57 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 29/08/2008 16:31:06 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description = Error EC8F1C50: Cannot create file backup for job: My Documents Backup.

Error E7D1001D: Unable to open 'F:/Norton Backups/File Backup Data/fbfFiles_10c/1c909f489f10c51.fbf'.

Error EBAB03F1: Espace insuffisant sur le disque. Error E4BC0007: Could not create

a segment of the backup file. Error E4BC0004: Unable to backup file C:/Documents

and Settings/Admin/Mes documents/WIN2K&XP/DATA1.CAB.

Details: 0xEBAB0005

Source:

Norton Ghost

 

Error - 29/08/2008 17:34:54 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 29/08/2008 18:45:06 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

[ System Events ]

 

Error - 11/07/2008 9:30:40 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = W32Time

Description = Fournisseur de temps NtpClient : une erreur s'est produite lors de

la recherche DNS de

l'homologue manuellement configuré 'time.nist.gov,0x1'. NtpClient

va essayer à nouveau

la recherche DNS dans 15 minutes.

L'erreur était : Une opération

a été tentée sur un hôte impossible à atteindre. (0x80072751)

 

Error - 11/07/2008 9:30:40 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = W32Time

Description = Le fournisseur de temps NtpClient est configuré pour acquérir le temps

à partir d'une

ou plusieurs sources de temps, cependant aucune source n'est actuellement

accessible.

Aucune tentative pour en contacter une ne sera effectuée d'ici 14

minutes.

NtpClient n'a pas de source de temps précis.

 

Error - 11/07/2008 9:30:45 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = W32Time

Description = Fournisseur de temps NtpClient : une erreur s'est produite lors de

la recherche DNS de

l'homologue manuellement configuré 'time.nist.gov,0x1'. NtpClient

va essayer à nouveau

la recherche DNS dans 15 minutes.

L'erreur était : Une opération

a été tentée sur un hôte impossible à atteindre. (0x80072751)

 

Error - 11/07/2008 9:30:45 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = W32Time

Description = Le fournisseur de temps NtpClient est configuré pour acquérir le temps

à partir d'une

ou plusieurs sources de temps, cependant aucune source n'est actuellement

accessible.

Aucune tentative pour en contacter une ne sera effectuée d'ici 14

minutes.

NtpClient n'a pas de source de temps précis.

 

Error - 17/07/2008 16:30:31 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Service de stockage amovible

Description = Le Stockage amovible n'a pas pu charger le média du lecteur Lecteur

0 de la bibliothèque USB 2.0 SD/MMC Reader USB Device.

 

Error - 17/07/2008 16:30:33 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Service de stockage amovible

Description = Le Stockage amovible n'a pas pu charger le média du lecteur Lecteur

0 de la bibliothèque USB 2.0 SD/MMC Reader USB Device.

 

Error - 20/07/2008 18:34:12 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Service Control Manager

Description = Le service NVIDIA Display Driver Service s'est terminé de façon inattendue

pour la 1ème fois.

 

Error - 22/07/2008 7:59:35 - Computer Name = XPSP2-FF96C02A2 - User Name = XPSP2-FF96C02A2\Admin - Source = Print

Description = Impossible d'imprimer le document Télécharger document Triangles,

Triangles appartenant à Admin sur l'imprimante HP DeskJet 815C. Type de données

: NT EMF 1.008. Taille du fichier spoule en octets : 7929856. Nombre d'octets imprimés

: 7640996. Nombre de pages dans le document : 4. Nombre de pages imprimées : 1.

Ordinateur client : \\XPSP2-FF96C02A2. Le code d'erreur Win32 renvoyé par le processeur

d'impression était : 0 (0x0).

 

Error - 22/07/2008 8:04:09 - Computer Name = XPSP2-FF96C02A2 - User Name = XPSP2-FF96C02A2\Admin - Source = Print

Description = Impossible d'imprimer le document Flash appartenant à Admin sur l'imprimante

HP DeskJet 815C. Type de données : NT EMF 1.008. Taille du fichier spoule en octets

: 6946816. Nombre d'octets imprimés : 6878432. Nombre de pages dans le document

: 1. Nombre de pages imprimées : 1. Ordinateur client : \\XPSP2-FF96C02A2. Le code

d'erreur Win32 renvoyé par le processeur d'impression était : 0 (0x0).

 

Error - 22/07/2008 15:54:09 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = W32Time

Description = Fournisseur de temps NtpClient : une erreur s'est produite lors de

la recherche DNS de

l'homologue manuellement configuré 'time.nist.gov,0x1'. NtpClient

va essayer à nouveau

la recherche DNS dans 15 minutes.

L'erreur était : Une opération

a été tentée sur un hôte impossible à atteindre. (0x80072751)

 

Error - 22/07/2008 15:54:09 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = W32Time

Description = Le fournisseur de temps NtpClient est configuré pour acquérir le temps

à partir d'une

ou plusieurs sources de temps, cependant aucune source n'est actuellement

accessible.

Aucune tentative pour en contacter une ne sera effectuée d'ici 14

minutes.

NtpClient n'a pas de source de temps précis.

 

Error - 22/07/2008 15:54:12 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = W32Time

Description = Fournisseur de temps NtpClient : une erreur s'est produite lors de

la recherche DNS de

l'homologue manuellement configuré 'time.nist.gov,0x1'. NtpClient

va essayer à nouveau

la recherche DNS dans 15 minutes.

L'erreur était : Une opération

a été tentée sur un hôte impossible à atteindre. (0x80072751)

 

Error - 22/07/2008 15:54:12 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = W32Time

Description = Le fournisseur de temps NtpClient est configuré pour acquérir le temps

à partir d'une

ou plusieurs sources de temps, cependant aucune source n'est actuellement

accessible.

Aucune tentative pour en contacter une ne sera effectuée d'ici 14

minutes.

NtpClient n'a pas de source de temps précis.

 

Error - 22/07/2008 16:01:52 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Dhcp

Description = Le bail de l'adresse IP 192.168.1.2 pour la carte réseau dont l'adresse

réseau est 0017319B0C58

a été refusé par le serveur DHCP 192.168.1.1 (celui-ci

a envoyé un message DHCPNACK).

 

Error - 24/07/2008 6:30:29 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = W32Time

Description = Fournisseur de temps NtpClient : une erreur s'est produite lors de

la recherche DNS de

l'homologue manuellement configuré 'time.nist.gov,0x1'. NtpClient

va essayer à nouveau

la recherche DNS dans 15 minutes.

L'erreur était : Une opération

a été tentée sur un hôte impossible à atteindre. (0x80072751)

 

Error - 24/07/2008 6:30:29 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = W32Time

Description = Le fournisseur de temps NtpClient est configuré pour acquérir le temps

à partir d'une

ou plusieurs sources de temps, cependant aucune source n'est actuellement

accessible.

Aucune tentative pour en contacter une ne sera effectuée d'ici 14

minutes.

NtpClient n'a pas de source de temps précis.

 

Error - 24/07/2008 6:30:47 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = W32Time

Description = Fournisseur de temps NtpClient : une erreur s'est produite lors de

la recherche DNS de

l'homologue manuellement configuré 'time.nist.gov,0x1'. NtpClient

va essayer à nouveau

la recherche DNS dans 15 minutes.

L'erreur était : Une opération

a été tentée sur un hôte impossible à atteindre. (0x80072751)

 

Error - 24/07/2008 6:30:47 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = W32Time

Description = Le fournisseur de temps NtpClient est configuré pour acquérir le temps

à partir d'une

ou plusieurs sources de temps, cependant aucune source n'est actuellement

accessible.

Aucune tentative pour en contacter une ne sera effectuée d'ici 14

minutes.

NtpClient n'a pas de source de temps précis.

 

Error - 25/07/2008 5:52:27 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = W32Time

Description = Fournisseur de temps NtpClient : une erreur s'est produite lors de

la recherche DNS de

l'homologue manuellement configuré 'time.nist.gov,0x1'. NtpClient

va essayer à nouveau

la recherche DNS dans 15 minutes.

L'erreur était : Une opération

a été tentée sur un hôte impossible à atteindre. (0x80072751)

 

Error - 25/07/2008 5:52:27 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = W32Time

Description = Le fournisseur de temps NtpClient est configuré pour acquérir le temps

à partir d'une

ou plusieurs sources de temps, cependant aucune source n'est actuellement

accessible.

Aucune tentative pour en contacter une ne sera effectuée d'ici 14

minutes.

NtpClient n'a pas de source de temps précis.

 

Error - 25/07/2008 5:52:45 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = W32Time

Description = Fournisseur de temps NtpClient : une erreur s'est produite lors de

la recherche DNS de

l'homologue manuellement configuré 'time.nist.gov,0x1'. NtpClient

va essayer à nouveau

la recherche DNS dans 15 minutes.

L'erreur était : Une opération

a été tentée sur un hôte impossible à atteindre. (0x80072751)

 

Error - 25/07/2008 5:52:45 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = W32Time

Description = Le fournisseur de temps NtpClient est configuré pour acquérir le temps

à partir d'une

ou plusieurs sources de temps, cependant aucune source n'est actuellement

accessible.

Aucune tentative pour en contacter une ne sera effectuée d'ici 14

minutes.

NtpClient n'a pas de source de temps précis.

 

Error - 9/08/2008 16:30:42 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = VolSnap

Description = Le délai de l'opération de vidange et de conservation des écritures

sur le volume C: a expiré lors de l'attente de la libération d'une commande d'écriture.

 

Error - 12/08/2008 11:31:47 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Dhcp

Description = Le bail de l'adresse IP 192.168.1.2 pour la carte réseau dont l'adresse

réseau est 0017319B0C58

a été refusé par le serveur DHCP 192.168.1.1 (celui-ci

a envoyé un message DHCPNACK).

 

Error - 12/08/2008 18:05:59 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = SideBySide

Description = L'assemblage dépendant Microsoft.VC80.MFCLOC ne peut pas être trouvé.

La dernière erreur était L'assemblage référencé n'est pas installé sur votre système.

 

 

Error - 12/08/2008 18:05:59 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = SideBySide

Description = Resolve Partial Assembly a échoué pour Microsoft.VC80.MFCLOC.

Message

d'erreur de référence : L'assemblage référencé n'est pas installé sur votre système.

.

 

Error - 12/08/2008 18:05:59 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = SideBySide

Description = Generate Activation Context a échoué pour C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_39049d00\MFC80U.DLL.

Message

d'erreur de référence : Opération réussie.

.

 

Error - 12/08/2008 18:06:01 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = SideBySide

Description = L'assemblage dépendant Microsoft.VC80.MFCLOC ne peut pas être trouvé.

La dernière erreur était L'assemblage référencé n'est pas installé sur votre système.

 

 

Error - 12/08/2008 18:06:01 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = SideBySide

Description = Resolve Partial Assembly a échoué pour Microsoft.VC80.MFCLOC.

Message

d'erreur de référence : L'assemblage référencé n'est pas installé sur votre système.

.

 

Error - 12/08/2008 18:06:01 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = SideBySide

Description = Generate Activation Context a échoué pour C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_39049d00\MFC80U.DLL.

Message

d'erreur de référence : Opération réussie.

.

 

Error - 12/08/2008 18:13:25 - Computer Name = XPSP2-FF96C02A2 - User Name = XPSP2-FF96C02A2\Admin - Source = DCOM

Description = Le serveur {4CD40054-9865-47B2-A16C-1BD17DA4AAD9} ne s'est pas enregistré

sur DCOM avant la fin du temps imparti.

 

Error - 21/08/2008 13:12:58 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Service Control Manager

Description = Le service WEP/WPA-PMK key recovery service s'est terminé de façon

inattendue pour la 1ème fois.

 

Error - 21/08/2008 13:14:05 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Service Control Manager

Description = Le service WEP/WPA-PMK key recovery service s'est terminé de façon

inattendue pour la 1ème fois.

 

Error - 22/08/2008 16:50:25 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = TermServDevices

Description = Le pilote KODAK EasyShare printer dock requis pour l'imprimante KODAK

EasyShare printer dock est inconnu. Contactez l'administrateur pour installer le

pilote avant de vous reconnecter.

 

Error - 22/08/2008 16:53:08 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = TermServDevices

Description = Le pilote KODAK EasyShare printer dock requis pour l'imprimante KODAK

EasyShare printer dock est inconnu. Contactez l'administrateur pour installer le

pilote avant de vous reconnecter.

 

Error - 23/08/2008 15:37:49 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = TermServDevices

Description = Le pilote KODAK EasyShare printer dock requis pour l'imprimante KODAK

EasyShare printer dock est inconnu. Contactez l'administrateur pour installer le

pilote avant de vous reconnecter.

 

Error - 26/08/2008 16:13:18 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Service Control Manager

Description = Le service Service de la passerelle de la couche Application s'est

terminé de façon inattendue pour la 1ème fois.

 

Error - 27/08/2008 17:03:19 - Computer Name = XPSP2-FF96C02A2 - User Name = XPSP2-FF96C02A2\Admin - Source = DCOM

Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service netman

avec les arguments ""

pour démarrer le serveur :

{BA126AE5-2166-11D1-B1D0-00805FC1270E}

 

Error - 27/08/2008 17:03:22 - Computer Name = XPSP2-FF96C02A2 - User Name = AUTORITE NT\SYSTEM - Source = DCOM

Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service EventSystem

avec les arguments ""

pour démarrer le serveur :

{1BE1F766-5536-11D1-B726-00C04FB926AF}

 

Error - 27/08/2008 17:03:40 - Computer Name = XPSP2-FF96C02A2 - User Name = XPSP2-FF96C02A2\Admin - Source = DCOM

Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service StiSvc

avec les arguments ""

pour démarrer le serveur :

{A1F4E726-8CF1-11D1-BF92-0060081ED811}

 

Error - 27/08/2008 17:03:57 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Service Control Manager

Description = Le service Client DHCP dépend du service NetBIOS sur TCP/IP qui n'a

pas pu démarrer en raison de l'erreur :

%%31

 

Error - 27/08/2008 17:03:57 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Service Control Manager

Description = Le service ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## dépend

du service Pilote du protocole TCP/IP qui n'a pas pu démarrer en raison de l'erreur :

 

%%31

 

Error - 27/08/2008 17:03:57 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Service Control Manager

Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se

charger :

AFD

Fips

intelppm

IPSec

MRxSmb

NetBIOS

NetBT

nltdi

RasAcd

Rdbss

Tcpip

WS2IFSL

 

Error - 27/08/2008 17:20:36 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Cdrom

Description = Le périphérique \Device\CdRom2 n'est pas encore prêt à être accédé.

 

Error - 29/08/2008 7:44:10 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Schannel

Description = Le certificat reçu à partir du serveur distant a échoué. La requête

de connexion

SSL a échoué. Les données attachées contiennent le certificat serveur.

 

Error - 29/08/2008 12:33:41 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Dhcp

Description = Votre ordinateur a perdu le bail de son adresse IP 192.168.1.2 sur

la

carte réseau d'adresse réseau 0017319B0C58.

 

Error - 29/08/2008 14:40:29 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Schannel

Description = Le certificat reçu à partir du serveur distant a échoué. La requête

de connexion

SSL a échoué. Les données attachées contiennent le certificat serveur.

 

[ Security Events ]

 

[ Anti-Virus Events ]

 

Error - 7/07/2008 16:58:37 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 8/07/2008 16:31:00 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 9/07/2008 16:30:53 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 9/07/2008 21:09:10 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 10/07/2008 16:30:58 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 14/07/2008 16:30:45 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 15/07/2008 16:30:43 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 15/07/2008 21:29:48 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 16/07/2008 16:06:46 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 17/07/2008 16:31:03 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 18/07/2008 16:31:07 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 18/07/2008 17:18:44 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 19/07/2008 16:30:56 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 20/07/2008 7:31:53 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 21/07/2008 10:18:57 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 21/07/2008 18:32:20 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 22/07/2008 16:30:49 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 23/07/2008 16:30:58 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 24/07/2008 16:31:08 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 25/07/2008 16:31:17 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 25/07/2008 21:26:41 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 26/07/2008 16:31:01 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 28/07/2008 16:30:48 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 29/07/2008 14:18:35 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 29/07/2008 14:18:35 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 29/07/2008 14:18:35 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 29/07/2008 14:18:35 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 29/07/2008 14:18:35 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 29/07/2008 14:18:35 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 29/07/2008 14:18:35 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 29/07/2008 14:18:35 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 29/07/2008 14:18:38 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 29/07/2008 14:18:40 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 30/07/2008 16:30:45 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 30/07/2008 22:40:41 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 2/08/2008 10:15:06 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 3/08/2008 16:31:05 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 4/08/2008 16:30:59 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 4/08/2008 21:07:49 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 4/08/2008 21:16:54 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 4/08/2008 21:17:12 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 4/08/2008 21:17:25 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 4/08/2008 21:18:33 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 4/08/2008 21:19:36 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 4/08/2008 21:20:21 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 5/08/2008 16:30:45 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 5/08/2008 22:32:09 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 6/08/2008 16:31:07 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 8/08/2008 16:30:42 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 9/08/2008 16:30:42 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = VSS

Description =

 

Error - 9/08/2008 16:31:15 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 9/08/2008 23:29:52 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 10/08/2008 16:30:42 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 10/08/2008 18:37:29 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 11/08/2008 16:30:43 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 12/08/2008 16:30:43 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 13/08/2008 16:31:04 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 13/08/2008 18:51:34 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 14/08/2008 16:31:10 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 15/08/2008 16:30:42 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 16/08/2008 16:30:43 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 16/08/2008 21:57:49 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 18/08/2008 16:30:42 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 19/08/2008 16:31:01 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 19/08/2008 19:12:42 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 20/08/2008 16:30:43 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 20/08/2008 22:25:34 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 21/08/2008 16:30:44 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 21/08/2008 18:17:13 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 22/08/2008 16:30:59 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 23/08/2008 16:31:10 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 24/08/2008 16:31:00 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 24/08/2008 22:39:42 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 25/08/2008 16:31:00 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 28/08/2008 14:22:57 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 29/08/2008 16:31:06 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = Norton Ghost

Description =

 

Error - 29/08/2008 17:34:54 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

Error - 29/08/2008 18:45:06 - Computer Name = XPSP2-FF96C02A2 - User Name = User SID not found - Source = nview_info

Description =

 

 

< End of report >

 

Encore merci à toi Gof

[Gof]

Re

 

Beaucoup des erreurs semblent liées à Norton Ghost. Un reste infectieux non actif, on verra ça.

 

Parcours ce sujet pour te convaincre de mettre à jour ton navigateur : IE6 VS IE 7 : Pourquoi maintenir son navigateur à jour ?

 

Télécharge IE7 et installe le. Dis moi si les soucis persistent.