Sujet Précédent Sujet Suivant

Pc infecté par de multiples virus

Fermé
Nixou Messages postés 58 Date d'inscription mardi 11 décembre 2007 Statut Membre Dernière intervention 5 septembre 2009 - 25 janv. 2009 à 17:45
Nixou Messages postés 58 Date d'inscription mardi 11 décembre 2007 Statut Membre Dernière intervention 5 septembre 2009 - 25 janv. 2009 à 17:48
Bonjour,
je reviens sur ce forum pour vous demander de l'aide à nouveau pour supprimer des virus d'un pc portable.

J'ai suivi ce qu'on m'avait demandé de faire la dernière fois sur mon pc de bureau, j'ai fait un scan avec malware bytes et supprimer tout les fichiers puis j'ai lancé rsit : voici les rapports de malware bytes et de rsit :

Malwarebytes' Anti-Malware 1.33
Version de la base de données: 1691
Windows 6.0.6001 Service Pack 1

25/01/2009 17:26:47
mbam-log-2009-01-25 (17-26-47).txt

Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 120977
Temps écoulé: 49 minute(s), 34 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 4
Clé(s) du Registre infectée(s): 10
Valeur(s) du Registre infectée(s): 3
Elément(s) de données du Registre infecté(s): 2
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 83

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
C:\Windows\System32\hGVMgefg.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\Windows\System32\qywuaeqs.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\Windows\System32\wvuuuvsr.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\Windows\System32\byXPIbxV.dll (Trojan.Vundo) -> Delete on reboot.

Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{cbfe6c5a-8654-43d1-969d-7f970e5ceee2} (Trojan.Vundo.H) -> Delete on reboot.
HKEY_CLASSES_ROOT\CLSID\{cbfe6c5a-8654-43d1-969d-7f970e5ceee2} (Trojan.Vundo.H) -> Delete on reboot.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{cbfe6c5a-8654-43d1-969d-7f970e5ceee2} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{bd3c6f7c-6c8d-48f6-ac52-5e4071aeb257} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1a93c934-025b-4c3a-b38e-9654a7003239} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6f282b65-56bf-4bd1-a8b2-a4449a05863d} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\contim (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\rdfa (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\FCOVM (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RemoveRP (Trojan.Vundo) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\4c3a3009 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{bd3c6f7c-6c8d-48f6-ac52-5e4071aeb257} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\msserver (Trojan.Vundo) -> Delete on reboot.

Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Notification Packages (Trojan.Vundo.H) -> Data: c:\windows\system32\hgvmgefg -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Authentication Packages (Trojan.Vundo) -> Data: c:\windows\system32\hgvmgefg -> Quarantined and deleted successfully.

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\Windows\System32\hGVMgefg.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\Windows\System32\gfegMVGh.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\gfegMVGh.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\ddcDvTLb.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\bLTvDcdd.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\bLTvDcdd.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\ddCtRLbB.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\BbLRtCdd.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\BbLRtCdd.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\efcbXqQg.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\gQqXbcfe.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\gQqXbcfe.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\iifdAQkH.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\HkQAdfii.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\HkQAdfii.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\iiFvtTLB.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\BLTtvFii.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\BLTtvFii.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\jkkICtsp.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\pstCIkkj.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\pstCIkkj.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\jkkLEXPh.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\hPXELkkj.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\hPXELkkj.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\ljJDTlKB.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\BKlTDJjl.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\BKlTDJjl.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\mlJayAQh.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\hQAyaJlm.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\hQAyaJlm.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\nnnkHwWO.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\OWwHknnn.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\OWwHknnn.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\pmnNhGvV.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\VvGhNnmp.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\VvGhNnmp.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\qoMeBrqR.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\RqrBeMoq.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\RqrBeMoq.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\qoMgdcCr.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\rCcdgMoq.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\rCcdgMoq.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\qywuaeqs.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\Windows\System32\sqeauwyq.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\urqPJbXO.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\OXbJPqru.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\OXbJPqru.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\wvuuuvsr.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\Windows\System32\rsvuuuvw.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\rsvuuuvw.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\wvuvsRLe.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\eLRsvuvw.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\eLRsvuvw.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\yayAQGaX.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\XaGQAyay.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\XaGQAyay.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\byXPIbxV.dll (Trojan.Vundo) -> Delete on reboot.
C:\Users\Julie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5NBU0GPL\upd105320[1] (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5NBU0GPL\wmlog[1] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YMNQX3EM\wmlog[1] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YMNQX3EM\wmlog[2] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YMNQX3EM\wmlog[3] (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Temp\tmp00010c9d (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Temp\tmp0000ef5d (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Temp\tmp0000f381 (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Temp\tmp0000f64f (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Temp\tmp0000fd80 (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Temp\tmp000102cd (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Temp\tmp00010b46 (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Temp\tmp000116f9 (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Temp\tmp00011be8 (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Temp\tmp00011ca4 (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Temp\tmp00014365 (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Temp\tmp0001a3fb (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Temp\tmp0001bd36 (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Temp\tmp0001bedb (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Temp\tmp0001c080 (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Temp\tmp0001ce94 (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Temp\tmp0002d680 (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Temp\tmp0002f140 (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Temp\tmp00037751 (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Temp\tmp0004b5c7 (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Users\Julie\AppData\Local\Temp\tmp00106538 (Trojan.Vundo) -> Quarantined and deleted successfully.
A voir également:

3 réponses

Réponse 1 / 3
Nixou Messages postés 58 Date d'inscription mardi 11 décembre 2007 Statut Membre Dernière intervention 5 septembre 2009
25 janv. 2009 à 17:46
Logfile of random's system information tool 1.05 (written by random/random)
Run by Julie at 2009-01-25 17:34:08
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1
System drive C: has 33 GB (45%) free of 71 GB
Total RAM: 1790 MB (56% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:34:28, on 25/01/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\RtHDVCpl.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSLoader.exe
C:\Acer\Empowering Technology\eAudio\eAudio.exe
C:\Program Files\Launch Manager\LManager.exe
C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\XericDesign\EarthDesk\EarthDesk.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Apoint2K\ApMsgFwd.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Acer\Empowering Technology\ENET\ENMTRAY.EXE
C:\Users\Julie\AppData\Local\Temp\RtkBtMnt.exe
C:\Acer\Empowering Technology\EPOWER\EPOWER_DMC.EXE
C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Julie\Downloads\RSIT.exe
C:\Program Files\trend micro\Julie.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Windows\system32\ActiveToolBand.dll
O2 - BHO: (no name) - {F948CD35-AAE9-40DA-A459-DAAB5839FFDB} - C:\Windows\system32\byXrpPhf.dll (file missing)
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [ALaunch] C:\Acer\ALaunch\AlaunchClient.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [eAudio] "C:\Acer\Empowering Technology\eAudio\eAudio.exe"
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe"
O4 - HKLM\..\Run: [PLFSetL] C:\Windows\PLFSetL.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [SetPanel] C:\Acer\APanel\APanel.cmd
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [EarthDesk] "C:\Program Files\XericDesign\EarthDesk\EarthDesk.exe" /silentstart
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: Empowering Technology Launcher.lnk = C:\Acer\Empowering Technology\eAPLauncher.exe
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: ALaunch Service (ALaunchService) - Unknown owner - C:\Acer\ALaunch\ALaunchSvc.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eLock Service (eLockService) - Acer Inc. - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
O23 - Service: eNet Service - Acer Inc. - C:\Acer\Empowering Technology\eNet\eNet Service.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: ePower Service (WMIService) - acer - C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
0
Réponse 2 / 3
Nixou Messages postés 58 Date d'inscription mardi 11 décembre 2007 Statut Membre Dernière intervention 5 septembre 2009
25 janv. 2009 à 17:47
info.txt logfile of random's system information tool 1.05 2009-01-25 17:34:30

======Uninstall list======

-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{31403E22-2FDB-452F-AE9E-20854633226D}\Setup.exe" -uninst
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A450831D-25F6-4F42-9662-D000B25E0D82}\setup.exe" -uninstall
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AA4BF92B-2AAF-11DA-9D78-000129760D75}\setup.exe" -uninstall
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B145EC69-66F5-11D8-9D75-000129760D75}\setup.exe" -uninstall
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B804C424-B66D-447A-84BD-C6B88C392C3A}\setup.exe" -uninstall
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F79A208D-D929-11D9-9D77-000129760D75}\setup.exe" -uninstall
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {5A2F65A4-808F-4A1E-973E-92E17824982D}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C095BAB72C}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {B3F4DC34-7F60-4B7C-A79F-1C13012D99D4}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B91D7BF1}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-00A1-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}
Acer Arcade Deluxe-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EFBDC2B0-FAA8-4B78-8DE1-AEBE7958FA37}\setup.exe" -uninstall
Acer Crystal Eye Webcam Video Class Camera -->C:\Program Files\InstallShield Installation Information\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}\setup.exe -runfromtemp -l0x040c -removeonly -u
Acer Crystal Eye webcam-->C:\Program Files\InstallShield Installation Information\{AA047D7C-5E7C-4878-B75C-77589151B563}\setup.exe -runfromtemp -l0x0009 -removeonly
Acer eAudio Management-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{57265292-228A-41FA-9AEC-4620CBCC2739}\Setup.exe" -uninstall
Acer eDataSecurity Management-->C:\Acer\Empowering Technology\eDataSecurity\eDSnstHelper.exe -Operation UNINSTALL
Acer eLock Management-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{116FF17B-1A30-4FC2-9B01-5BC5BD46B0B3}\setup.exe" -l0x40c -removeonly
Acer Empowering Technology-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AB6097D9-D722-4987-BD9E-A076E2848EE2}\setup.exe" -l0x40c -removeonly
Acer eNet Management-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C06554A1-2C1E-4D20-B613-EE62C79927CC}\setup.exe" -l0x40c -removeonly
Acer ePower Management-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{58E5844B-7CE2-413D-83D1-99294BF6C74F}\setup.exe" -l0x40c -removeonly
Acer ePresentation Management-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BF839132-BD43-4056-ACBF-4377F4A88E2A}\setup.exe" -l0x40c -removeonly
Acer eSettings Management-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CE65A9A0-9686-45C6-9098-3C9543A412F0}\setup.exe" -l0x40c -removeonly
Acer GridVista-->C:\Windows\UnInst32.exe GridV.UNI
Acer Mobility Center Plug-In-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{11316260-6666-467B-AC34-183FCB5D4335}\setup.exe" -l0x40c -removeonly
Acer ScreenSaver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{79DD56FC-DB8B-47F5-9C80-78B62E05F9BC}\setup.exe" -l0x9 -removeonly
Acer Tour-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{94389919-B0AA-4882-9BE8-9F0B004ECA35}\setup.exe" -l0x40c -removeonly
Activation Assistant for the 2007 Microsoft Office suites-->"C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}\Microsoft Office Activation Assistant.exe" REMOVE=TRUE MODIFY=FALSE
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)-->MsiExec.exe /X{6846389C-BAC0-4374-808E-B120F86AF5D7}
Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 8.1.2-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A81200000003}
ALPS Touch Pad Driver-->C:\Program Files\Apoint2K\Uninstap.exe ADDREMOVE
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Big Kahuna Reef 2-->"C:\Program Files\Acer GameZone\Big Kahuna Reef 2\Uninstall.exe" "C:\Program Files\Acer GameZone\Big Kahuna Reef 2\install.log"
Cake Mania-->"C:\Program Files\Acer GameZone\Cake Mania\Uninstall.exe" "C:\Program Files\Acer GameZone\Cake Mania\install.log"
Dynasty-->"C:\Program Files\Acer GameZone\Dynasty\Uninstall.exe" "C:\Program Files\Acer GameZone\Dynasty\install.log"
EarthDesk-->C:\Program Files\XericDesign\EarthDesk\Uninstall.exe
eMule-->"C:\Program Files\eMule\Uninstall.exe"
Galapago-->"C:\Program Files\Acer GameZone\Galapago\Uninstall.exe" "C:\Program Files\Acer GameZone\Galapago\install.log"
HDAUDIO Soft Data Fax Modem with SmartCP-->C:\Program Files\CONEXANT\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFAOR2C06_118\UIU32m.exe -U -Ic:\Release\Foxconn\51338\AcrZUn32z.inf
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Launch Manager-->C:\Windows\UnInst32.exe LManager.UNI
LiveUpdate 3.2 (Symantec Corporation)-->"C:\Program Files\Symantec\LiveUpdate\LSETUP.EXE" /U
LiveUpdate Notice (Symantec Corporation)-->MsiExec.exe /X{DBA4DB9D-EE51-4944-A419-98AB1F1249C8}
Luxor 2-->"C:\Program Files\Acer GameZone\Luxor 2\Uninstall.exe" "C:\Program Files\Acer GameZone\Luxor 2\install.log"
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office Home and Student 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall HOMESTUDENTR /dll OSETUP.DLL
Microsoft Office Home and Student 2007-->MsiExec.exe /X{91120000-002F-0000-0000-0000000FF1CE}
Microsoft Office Language Pack 2007 Service Pack 1 (SP1)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {EC50B538-CBE1-42E6-B7FE-87AA540AADFB}
Microsoft Office OneNote MUI (French) 2007-->MsiExec.exe /X{90120000-00A1-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
Microsoft Office Professional Edition 2003-->MsiExec.exe /I{9011040C-6000-11D3-8CFE-0150048383C9}
Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Works-->MsiExec.exe /I{6B1CB38D-E2E4-4A30-933D-EFDEBA76AD9C}
Mozilla Firefox (3.0.5)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB941833)-->MsiExec.exe /I{C523D256-313D-4866-B36A-F3DE528246EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Mystery Case Files - Prime Suspects-->"C:\Program Files\Acer GameZone\Mystery Case Files - Prime Suspects\Uninstall.exe" "C:\Program Files\Acer GameZone\Mystery Case Files - Prime Suspects\install.log"
Mystery Case Files Ravenhearst-->"C:\Program Files\Acer GameZone\Mystery Case Files Ravenhearst\Uninstall.exe" "C:\Program Files\Acer GameZone\Mystery Case Files Ravenhearst\install.log"
NTI Backup NOW! 4.7-->"C:\Program Files\InstallShield Installation Information\{67ADE9AF-5CD9-4089-8825-55DE4B366799}\setup.exe" -removeonly
NTI CD & DVD-Maker-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2} /l1036 CDM7
NVIDIA Drivers-->C:\Windows\system32\NVUNINST.EXE UninstallGUI
PowerProducer 3.72-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B7A0CE06-068E-11D6-97FD-0050BACBF861}\Setup.EXE" -uninstall
Realtek High Definition Audio Driver-->RtlUpd.exe -r -m
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{59F6A514-9813-47A3-948C-8A155460CC2A}\setup.exe" -l0x40c anything
Security Update for 2007 Microsoft Office System (KB951550)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {B243E9A5-ED77-4F1B-B338-2486FD82DC85}
Security Update for 2007 Microsoft Office System (KB951944)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7}
Security Update for 2007 Microsoft Office System (KB958439)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {6491B8AA-D11C-4648-A461-6234B31EB7E2}
Security Update for Microsoft Office Excel 2007 (KB958437)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {648FC016-2D6B-4A16-8D87-404533642F4B}
Security Update for Microsoft Office OneNote 2007 (KB950130)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {F1B2401C-B610-4BF2-AA1C-52C55827A8F4}
Security Update for Microsoft Office PowerPoint 2007 (KB951338)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {558B709B-821B-4FC5-90FC-9A8890641E77}
Security Update for Microsoft Office system 2007 (KB954326)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {5F7F6FFF-395D-480E-8450-64F385D82C5F}
Security Update for Microsoft Office system 2007 (KB956828)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {885E081B-72BD-4E76-8E98-30B4BE468FAC}
Security Update for Microsoft Office Word 2007 (KB956358)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {4551666D-0FD6-4C69-8A81-1C6F2E64517C}
Star Defender 3-->"C:\Program Files\Gamenext\Star Defender 3\Uninstall.exe" "C:\Program Files\Gamenext\Star Defender 3\install.log"
Treasures of the Deep-->"C:\Program Files\Acer GameZone\Treasures of the Deep\Uninstall.exe" "C:\Program Files\Acer GameZone\Treasures of the Deep\install.log"
Update for Microsoft Office Excel 2007 Help (KB957242)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {49E314EE-81FA-4007-8F1A-8D39BDBB4498}
Update for Office 2007 (KB946691)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {A420F522-7395-4872-9882-C591B4B92278}
Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
Zuma Deluxe-->"C:\Program Files\Acer GameZone\Zuma Deluxe\Uninstall.exe" "C:\Program Files\Acer GameZone\Zuma Deluxe\install.log"

======Security center information======

AS: Windows Defender (disabled) (outdated)

System event log

Computer Name: PC-de-Julie
Event Code: 10029
Message: DCOM a démarré le service usnjsvc avec les arguments «  » de façon à exécuter le serveur :
{98AC5C33-EE18-4EC2-BE25-3B16EE8F75F1}
Record Number: 83019
Source Name: Microsoft-Windows-DistributedCOM
Time Written: 20090125163153.000000-000
Event Type: Information
User:

Computer Name: PC-de-Julie
Event Code: 7036
Message: Le service Service Messenger Sharing Folders USN Journal Reader est entré dans l'état : en cours d'exécution.
Record Number: 83020
Source Name: Service Control Manager
Time Written: 20090125163154.000000-000
Event Type: Information
User:

Computer Name: PC-de-Julie
Event Code: 10029
Message: DCOM a démarré le service LiveUpdate avec les arguments «  » de façon à exécuter le serveur :
{03E0E6C2-363B-11D3-B536-00902771A435}
Record Number: 83021
Source Name: Microsoft-Windows-DistributedCOM
Time Written: 20090125163352.000000-000
Event Type: Information
User:

Computer Name: PC-de-Julie
Event Code: 7036
Message: Le service LiveUpdate est entré dans l'état : en cours d'exécution.
Record Number: 83022
Source Name: Service Control Manager
Time Written: 20090125163352.000000-000
Event Type: Information
User:

Computer Name: PC-de-Julie
Event Code: 7036
Message: Le service LiveUpdate est entré dans l'état : arrêté.
Record Number: 83023
Source Name: Service Control Manager
Time Written: 20090125163407.000000-000
Event Type: Information
User:

Application event log

Computer Name: PC-de-Julie
Event Code: 1000
Message: Les compteurs de performances pour le service WmiApRpl (WmiApRpl) ont été chargés. Les données d'enregistrement dans la section des données contiennent les nouvelles valeurs d'index assignées à ce service.
Record Number: 21847
Source Name: Microsoft-Windows-LoadPerf
Time Written: 20090125163342.000000-000
Event Type: Information
User:

Computer Name: PC-de-Julie
Event Code: 101
Message: Niveau d'information : success

Le Planificateur a lancé LiveUpdate automatique.
Record Number: 21848
Source Name: Automatic LiveUpdate Scheduler
Time Written: 20090125163352.000000-000
Event Type: Information
User: AUTORITE NT\SYSTEM

Computer Name: PC-de-Julie
Event Code: 101
Message: Niveau d'information : success

LiveUpdate automatique a terminé.
Record Number: 21849
Source Name: Automatic LiveUpdate Scheduler
Time Written: 20090125163402.000000-000
Event Type: Information
User: AUTORITE NT\SYSTEM

Computer Name: PC-de-Julie
Event Code: 101
Message: Niveau d'information : success

L'exécution suivante a été planifiée pour intervenir approximativement à 9:04 PM.
Record Number: 21850
Source Name: Automatic LiveUpdate Scheduler
Time Written: 20090125163402.000000-000
Event Type: Information
User: AUTORITE NT\SYSTEM

Computer Name: PC-de-Julie
Event Code: 5
Message: Unsupported service control request (see data below)
Record Number: 21851
Source Name: LightScribeService
Time Written: 20090125163430.000000-000
Event Type: Information
User:

Security event log

Computer Name: PC-de-Julie
Event Code: 5038
Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

Nom du fichier : \Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys
Record Number: 19961
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090125163427.703962-000
Event Type: Échec de l'audit
User:

Computer Name: PC-de-Julie
Event Code: 5038
Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

Nom du fichier : \Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys
Record Number: 19962
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090125163427.828762-000
Event Type: Échec de l'audit
User:

Computer Name: PC-de-Julie
Event Code: 5038
Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

Nom du fichier : \Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys
Record Number: 19963
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090125163427.875562-000
Event Type: Échec de l'audit
User:

Computer Name: PC-de-Julie
Event Code: 5038
Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

Nom du fichier : \Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys
Record Number: 19964
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090125163427.922362-000
Event Type: Échec de l'audit
User:

Computer Name: PC-de-Julie
Event Code: 5038
Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

Nom du fichier : \Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys
Record Number: 19965
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090125163427.969162-000
Event Type: Échec de l'audit
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 124 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=7c02
"NUMBER_OF_PROCESSORS"=1

-----------------EOF-----------------
0
Réponse 3 / 3
Nixou Messages postés 58 Date d'inscription mardi 11 décembre 2007 Statut Membre Dernière intervention 5 septembre 2009
25 janv. 2009 à 17:48
Je crois qu'après je dois utiliser combo fix ? Pouvez vous me le confirmer ?

Merci d'avance.
0