Trojan-spy-win32.delf.mh

tilou73 -  
 tilou73 -
Bonjour a tous j'ai depuis ce matin un trojan-spy-win32.delf.mh que arovax antispyware ma trouver mais apres plusieur tantative de supp rien ne fais il est toujour la j'ai deja fais un a-squared avast malwarebytes'anti-malware mes ne trouve rien si vous vous avez des solutions pour moi sa serai simpat merci a vous
Configuration: Windows XP
Internet Explorer 7.0

30 réponses

  • 1
  • 2
Résumé de la discussion

Un utilisateur signale la présence d'un Trojan trojan-spy-win32.delf.mh détecté par Arovax AntiSpyware sur un PC Windows XP avec Internet Explorer 7, et les tentatives de suppression échouent. Plusieurs outils réputés — A-Squared, Avast et Malwarebytes — ont été passés en revue sans que l'infection soit éradiquée, ce qui pousse à envisager des méthodes plus approfondies. La discussion comprend une réponse recommandant RSIT (Random's System Information Tool) et la transmission des rapports log, puis une autre présentant un fichier HijackThis détaillé et des éléments de démarrage suspects. En parallèle, les fichiers et processes listés montrent une forte accumulation de modules et services tiers dans les démarrages et les BHOs, signifiant une infection complexe et nécessitant une analyse approfondie hors ligne.

Généré automatiquement par IA
sur la base des meilleures réponses
  1. gen-hackman
     
    bonjour :

    Télécharge Random's System Information Tool (RSIT) de random/random et enregistre l'exécutable sur ton Bureau.

    -> http://images.malwareremoval.com/random/RSIT.exe

    ! Déconnecte toi et ferme toutes tes applications en cours !

    Double-clique sur " RSIT.exe " pour le lancer .

    -> Une première fenêtre s'ouvre avec en titre : " Disclaimer of warranty " .

    * Devant l'option "List files/folders created ..." , tu choisis : 2 months

    * clique ensuite sur " Continue " pour lancer l'analyse ...

    -> laisse faire le scan et ne touche pas au PC ...

    Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront (probablement avec le bloc-note).

    Poste le contenu de " log.txt " (c'est celui qui apparait à l'écran), ainsi que de " info.txt " (que tu verras dans la barre des tâches), pour analyse et attends la suite ...

    Important : poste un rapport, puis l'autre dans la réponse suivante
    Si tu essaies de poster les deux en même temps, cela risque d'être trop long pour le forum

    ( Note : les rapports seront en outre sauvegardés dans ce dossier -> C:\rsit )

    2
    1. tilou73
       
      ###################### [ FindyKill V4.715 ]

      # User : poy - THIERRY
      # Executed from : C:\Program Files\FindyKill
      # Update on 29/01/09Nby Chiquitine29
      # Start at 16:12:36 the 05/02/2009
      # Windows XP - Internet Explorer 7.0.5730.13

      # [ FindyKill V4.715 - Deleting ] ###############

      \\\\\\\\\\\\\\\\\\ [ Active Processes ] ///////////////////


      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\csrss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
      C:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTServ.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\system32\logonui.exe
      C:\WINDOWS\system32\ZoneLabs\vsmon.exe
      C:\WINDOWS\system32\userinit.exe

      \\\\\\\\\\\\\\\\\\ [ Infected Files / Folders ] ///////////////////


      ################## [ C:\ ]


      ################## [ C:\WINDOWS ]


      ################## [ C:\WINDOWS\Prefetch ]

      Deleted ! - C:\WINDOWS\prefetch\ANTI TROJAN ELITE_4.X.X_PATCH-074C1A4D.pf
      Deleted ! - C:\WINDOWS\prefetch\ANTI TROJAN ELITE_4.X.X_PATCH-25F575F0.pf
      Deleted ! - C:\WINDOWS\prefetch\ANTI TROJAN ELITE_4.X.X_PATCH-2D06A6AB.pf
      Deleted ! - C:\WINDOWS\prefetch\MDELK.EXE-238AA5EF.pf

      ################## [ C:\WINDOWS\system32 ]


      ################## [ C:\WINDOWS\system32\drivers ]


      ################## [ C:\Documents and Settings\poy\Application Data ]


      ################## [ C:\DOCUME~1\poy\LOCALS~1\Temp ]

      Deleted ! - C:\DOCUME~1\poy\LOCALS~1\Temp\Rar$EX00.454\Crack
      Deleted ! - C:\DOCUME~1\poy\LOCALS~1\Temp\Rar$EX00.454\Crack\Anti Trojan Elite_4.x.x_Patch_Dr.XJ - Under SEH Team.exe
      Deleted ! - C:\DOCUME~1\poy\LOCALS~1\Temp\Rar$EX00.469\Crack
      Deleted ! - C:\DOCUME~1\poy\LOCALS~1\Temp\Rar$EX00.469\Crack\Anti Trojan Elite_4.x.x_Patch_Dr.XJ - Under SEH Team.exe
      Deleted ! - C:\DOCUME~1\poy\LOCALS~1\Temp\Rar$EX00.953\Crack
      Deleted ! - C:\DOCUME~1\poy\LOCALS~1\Temp\Rar$EX00.953\Crack\Anti Trojan Elite_4.x.x_Patch_Dr.XJ - Under SEH Team.exe

      ################## [ C:\Documents and Settings\poy\Local Settings\Temporary Internet Files\Content.IE5 ]


      \\\\\\\\\\\\\\\\\\ [ Registry / Infected keys ] ///////////////////


      \\\\\\\\\\\\\\\\\\ [ States / Restarting of services ] ///////////////////


      # Services : [ Auto=2 / Request=3 / Disable=4 ]

      Ndisuio - # Type of startup = 3

      EapHost - # Type of startup = 2

      Ip6Fw - # Type of startup = 2

      SharedAccess - # Type of startup = 2

      wuauserv - # Type of startup = 2

      wscsvc - # Type of startup = 2


      \\\\\\\\\\\\\\\\\\ [ Cleaning Removable drives ] ///////////////////

      # Informations :

      C: - Lecteur fixe


      # deleting files :


      \\\\\\\\\\\\\\\\\\ [ Registry / Mountpoint2 ] ///////////////////


      -> Not found !


      \\\\\\\\\\\\\\\\\\ [ Searching Other Infections ] ///////////////////

      Suspect ! - 66323e119912dee3347e13e7be29a0bf C:\Program Files\AVS4YOU\AVSRegistryCleaner\AVSRegistryCleaner.exe
      Suspect ! - 64527b0f63971478d1a24717d806e0d9 C:\Program Files\AVS4YOU\AVSSoftwareNavigator\AVS4YOUSoftwareNavigator.exe
      Suspect ! - a79453fcf45deccc80ba5e82b53a4dd8 C:\Program Files\AVS4YOU\Registration.exe

      \\\\\\\\\\\\\\\\\\ [ Searching Cracks / Keygen ] ///////////////////

      C:\Documents and Settings\poy\Mes documents\fichier rar\Crack
      C:\Documents and Settings\poy\Mes documents\fichier rar\ISecSoft.Anti-Trojan.Elite.v4.3.1.Incl-Crack.[emule-island.com].rar
      C:\Documents and Settings\poy\Mes documents\fichier rar\VSO.Software.DivX.to.DVD.v1.99.24.Cracked-F4CG.[emule-island.com].rar
      C:\Documents and Settings\poy\Mes documents\fichier rar\Crack\Anti Trojan Elite_4.x.x_Patch_Dr.XJ - Under SEH Team.exe
      C:\Program Files\logiciel nero win rar et autre\WinRAR.v3.80.FR.Incl-Crack.[emule-island.com].zip
      C:\Program Files\WarRock\Texture\FM003\Decal_crack01_FM003.dds
      C:\Program Files\WarRock\Texture\FM003\Decal_crack02_FM003.dds
      C:\Program Files\WarRock\Texture\FM003\Decal_crack03_FM003.dds
      C:\Program Files\WarRock\Texture\Santo\Decal_crack01_FM003.dds

      ################## [ ! End of report # ! ]
      0
  2. tilou73
     
    voici Logfile of random's system information tool 1.05 (written by random/random)
    Run by poy at 2009-02-04 14:06:27
    Microsoft Windows XP Édition familiale Service Pack 3
    System drive C: has 288 GB (60%) free of 477 GB
    Total RAM: 3071 MB (76% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 14:07:40, on 04/02/2009
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16762)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
    C:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTServ.exe
    C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\a-squared Free\a2service.exe
    C:\Program Files\Logitech\Easy Synchronization\servicestub.exe
    C:\Program Files\Logitech\Easy Synchronization\LogitechEasySync.exe
    C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\IoctlSvc.exe
    C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
    C:\PROGRA~1\SPEEDB~1\VideoAcceleratorService.exe
    C:\PROGRA~1\SPEEDB~1\VideoAcceleratorEngine.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    C:\Program Files\Unlocker\UnlockerAssistant.exe
    C:\WINDOWS\RTHDCPL.EXE
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Shareaza\Shareaza.exe
    C:\Program Files\Arovax AntiSpyware\arovaxantispyware.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    C:\Program Files\Logitech\SetPoint\SetPoint.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE
    C:\Program Files\Windows Live\Contacts\wlcomm.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\DAP\DAP.EXE
    C:\Documents and Settings\poy\Mes documents\My Completed Downloads\RSIT.exe
    C:\Program Files\trend micro\poy.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.be/?gws_rd=ssl
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://home.sweetim.com/
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll
    R3 - URLSearchHook: emule-divx Toolbar - {83762f80-a1a7-4481-9fae-c16fe38cddbb} - C:\Program Files\emule-divx\tbemul.dll
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O2 - BHO: emule-divx Toolbar - {83762f80-a1a7-4481-9fae-c16fe38cddbb} - C:\Program Files\emule-divx\tbemul.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
    O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
    O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll
    O3 - Toolbar: (no name) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - (no file)
    O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
    O3 - Toolbar: emule-divx Toolbar - {83762f80-a1a7-4481-9fae-c16fe38cddbb} - C:\Program Files\emule-divx\tbemul.dll
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
    O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
    O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe
    O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [Arovax AntiSpyware] C:\Program Files\Arovax AntiSpyware\arovaxantispyware.exe /s
    O4 - HKCU\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Global Startup: BTTray.lnk = ?
    O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
    O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
    O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
    O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
    O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
    O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com/common/asusTek_sys_ctrl.cab
    O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - https://www.nvidia.com/content/DriverDownload/srl/3.0.0.0/srl_bin/sysreqlab3.cab
    O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
    O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://www.pandasecurity.com/activescan/cabs/as2stubie.cab
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-BE/a-UNO1/GAME_UNO1.cab
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
    O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
    O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://wwwimages.adobe.com/www.adobe.com/products/acrobat/nos/gp.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file)
    O20 - AppInit_DLLs: avgrsstx.dll
    O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - Unknown owner - C:\PROGRA~1\AVG\AVG8\avgemc.exe (file missing)
    O23 - Service: AVG Free8 WatchDog (avg8wd) - Unknown owner - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe (file missing)
    O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
    O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - Unknown owner - C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe (file missing)
    O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTServ.exe
    O23 - Service: Logitech Easy Synchronization - Unknown owner - C:\Program Files\Logitech\Easy Synchronization\servicestub.exe
    O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
    O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
    O23 - Service: ScsiAccess - Unknown owner - C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
    O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe
    O23 - Service: VideoAcceleratorService - Speedbit Ltd. - C:\PROGRA~1\SPEEDB~1\VideoAcceleratorService.exe
    O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    1
  3. tilou73
     
    et voici et merci info.txt logfile of random's system information tool 1.05 2009-02-04 14:07:44

    ======Uninstall list======

    -->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
    -->C:\Program Files\Nero\Nero8\\nero\uninstall\UNNERO.exe /UNINSTALL
    -->C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL
    -->C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL
    -->C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL
    -->C:\WINDOWS\UNNeroVision.exe /UNINSTALL
    -->C:\WINDOWS\UNRecode.exe /UNINSTALL
    -->MsiExec /X{A7E07C2B-2220-4415-87E3-784D5814BC93}
    -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
    Active WebCam-->"C:\Program Files\Active WebCam\PY_UNINSTAL.EXE" SOFTWARE\PySoft\Act_WebCam
    Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
    Adobe Reader 9 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A90000000001}
    Adobe® Photoshop® Album Edition Découverte 3.0-->MsiExec.exe /I{4BDFD2CE-6329-42E4-9801-9B3D1F10D79B}
    ALSong-->"C:\Program Files\ESTsoft\ALSong\unins000.exe"
    Amapi 3D-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\EOVIA\Amapi 3D\Uninst.isu"
    Analyseur et SDK MSXML 4.0 SP2-->MsiExec.exe /I{716E0306-8318-4364-8B8F-0CC4E9376BAC}
    Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
    Arovax AntiSpyware 2.1.143-->C:\Program Files\Arovax AntiSpyware\uninst.exe
    a-squared Free 4.0-->"C:\Program Files\a-squared Free\unins000.exe"
    Assistant de connexion Windows Live-->MsiExec.exe /I{D6E592B3-67DA-4BBB-9783-E1838FB253A2}
    Atheros Communications Inc.(R) L2 Fast Ethernet Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0A755762-EED8-47AB-A446-505766F93D43}\Setup.exe" -l0x9 -removeonly
    avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
    AVS Registry Cleaner version 1.1-->"C:\Program Files\AVS4YOU\AVSRegistryCleaner\unins000.exe"
    AVS4YOU Software Navigator 1.2-->"C:\Program Files\AVS4YOU\AVSSoftwareNavigator\unins000.exe"
    BurnAware Free 2.2.0-->"C:\Program Files\BurnAware Free\unins000.exe"
    CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
    CDDRV_Installer-->MsiExec.exe /I{0C826C5B-B131-423A-A229-C71B3CACCD6A}
    Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
    Code de la Route-->MsiExec.exe /X{A37A26D5-8444-4862-933B-478371D0299D}
    Compatibility Pack for the 2007 Office system-->MsiExec.exe /X{90120000-0020-040C-0000-0000000FF1CE}
    DAZ Studio-->C:\Program Files\DAZ\Studio\Remove-Studio.exe
    Dictionnaire Freelang (liste de mots)-->"C:\Documents and Settings\poy\Local Settings\Application Data\Dictionnaire Freelang\unins001.exe"
    Dictionnaire Freelang 3.74 beta-->"C:\Documents and Settings\poy\Local Settings\Application Data\Dictionnaire Freelang\unins000.exe"
    Digital Physiognomy (remove only)-->"C:\Program Files\Digital Physiognomy\uninstall.exe"
    DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
    DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
    DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
    DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
    Download Accelerator Plus (DAP)-->C:\PROGRA~1\DAP\DAPREMOVE.EXE
    DriverAgent by TouchStone Software-->RunDll32.exe advpack.dll,LaunchINFSection driveragent_exe.inf,TVICHW32Remove
    DVD Decrypter (Remove Only)-->"C:\Documents and Settings\poy\Mes documents\DVD Decrypter\uninstall.exe"
    DVD Shrink 3.2-->"C:\Program Files\DVD Shrink\unins000.exe"
    emule-divx Toolbar-->C:\PROGRA~1\EMULE-~1\UNWISE.EXE /U C:\PROGRA~1\EMULE-~1\INSTALL.LOG
    Galerie de photos Windows Live-->MsiExec.exe /X{43563ACB-371B-4C58-8979-B192B390424C}
    getPlus(R) for Adobe-->"C:\Program Files\NOS\bin\getPlus_HelperSvc.exe" /UninstallGet1
    Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_0531C63A913CC9D1.exe" /uninstall
    HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
    Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
    Installation Windows Live-->MsiExec.exe /I{3CCB732A-E472-4CF9-B1EE-F18365341FE0}
    IsoBuster 2.4-->"C:\Program Files\Smart Projects\IsoBuster\Uninst\unins000.exe"
    Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
    Junk Mail filter update-->MsiExec.exe /I{4AB8B41B-3AF1-46BE-99B0-0ACD3B300C0A}
    KhalInstallWrapper-->MsiExec.exe /I{3101CB58-3482-4D21-AF1A-7057FC935355}
    K-Lite Codec Pack 4.2.5 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
    Le corps humain 6.0-->C:\WINDOWS\bw6uinst.exe
    Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
    Logitech SetPoint-->"C:\Program Files\InstallShield Installation Information\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}\setup.exe" -runfromtemp -l0x040c -removeonly
    Macromedia Flash Player 8 Plugin-->MsiExec.exe /X{E686D1C1-78B5-4E1A-8269-A023B43C2D76}
    Macromedia Flash Player 8-->MsiExec.exe /X{8A7DC982-6A96-4C3C-BBE1-D5025CD85AF5}
    Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
    Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{72AD53CC-CCC0-3757-8480-9EE176866A7C}
    Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
    Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{0BD83598-C2EF-3343-847B-7D2E84599128}
    Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
    Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31}
    Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
    Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
    Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
    Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{FD052FB9-FE90-4438-B355-15EDC89D8FB1}
    Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
    Microsoft Kernel-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe"
    Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
    Microsoft Office Live Add-in 1.3-->MsiExec.exe /I{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}
    Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
    Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
    Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
    Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
    Microsoft Word 2002-->MsiExec.exe /I{911B040C-6000-11D3-8CFE-0050048383C9}
    Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127-v2)-->"C:\WINDOWS\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
    Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
    Mobile Phone Suite Easy Synchronization-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AC134D03-97F1-45B9-B32A-52E885AFA895}\setup.exe" -l0x40c
    Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->c:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe
    MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
    MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
    MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
    MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
    Mystery P.I.™ - The Vegas Heist-->C:\PROGRA~1\SHOCKW~1.COM\MYSTER~1.-TH\UNWISE.EXE C:\PROGRA~1\SHOCKW~1.COM\MYSTER~1.-TH\INSTALL.LOG
    Mystery Stories: Island of Hope-->C:\PROGRA~1\SHOCKW~1.COM\MYSTER~1\UNWISE.EXE C:\PROGRA~1\SHOCKW~1.COM\MYSTER~1\INSTALL.LOG
    Nero 8 Ultra Edition HD-->MsiExec.exe /X{9A5B876D-A900-4AAB-B557-DE827BE46E6C}
    neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
    NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI
    NVIDIA PhysX v8.09.04-->MsiExec.exe /X{A7E07C2B-2220-4415-87E3-784D5814BC93}
    OpenOffice.org 3.0-->MsiExec.exe /I{6860B340-530D-46B3-91F8-1AE1F70F7C33}
    Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
    Photodex Presenter-->C:\Program Files\Photodex Presenter\uninst.exe
    ProShow Gold-->C:\Program Files\Photodex\ProShowGold\proshow.exe . -u
    Quantum of Solace(TM)-->C:\Program Files\InstallShield Installation Information\{CDF29D6C-AA05-49F9-A55A-89C2F8F4F46E}\setup.exe -runfromtemp -l0x040c
    Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\setup.exe" -l0x40c -removeonly
    Recover My Files-->"C:\Program Files\GetData\Recover My Files\unins000.exe"
    Search Settings 1.2-->MsiExec.exe /X{D0C73318-7B4A-4D16-A0C4-3B83F075EA88}
    Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
    Shareaza 2.4.0.0-->"C:\Program Files\Shareaza\Uninstall\unins000.exe"
    Sony Ericsson PC Suite 1.20.224-->MsiExec.exe /I{7689CA7A-1270-425A-9959-EB4CB25EA29A}
    SpeedBit Video Accelerator-->C:\PROGRA~1\SPEEDB~1\UNWISE.EXE C:\PROGRA~1\SPEEDB~1\INSTALL.LOG
    Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
    SuDoku Pro 2.4-->C:\Program Files\SuDoku Pro\uninst.exe
    SweetIM for Messenger 2.6-->MsiExec.exe /X{21D74CEE-EEFC-4D72-9691-2F2BE1DF9FB2}
    System Requirements Lab-->C:\Program Files\SystemRequirementsLab\Uninstall.exe
    Text-To-Speech-Runtime-->MsiExec.exe /X{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}
    TuneUp Utilities 2008-->MsiExec.exe /I{5888428E-699C-4E71-BF71-94EE06B497DA}
    Unlocker 1.8.7-->C:\Program Files\Unlocker\uninst.exe
    VCRedistSetup-->MsiExec.exe /I{3921A67A-5AB1-4E48-9444-C71814CF3027}
    Virtual DJ - Atomix Productions-->C:\PROGRA~1\VIRTUA~2\UNWISE.EXE C:\PROGRA~1\VIRTUA~2\INSTALL.LOG
    WIDCOMM Bluetooth Software-->MsiExec.exe /X{84814E6B-2581-46EC-926A-823BD1C670F6}
    Windows Internet Explorer 7-->"C:\WINDOWS\ie7\spuninst\spuninst.exe"
    Windows Live Call-->MsiExec.exe /I{01523985-2098-43AF-9C97-12B07BE02A9B}
    Windows Live Communications Platform-->MsiExec.exe /I{F69E83CF-B440-43F8-89E6-6EA80712109B}
    Windows Live Contrôle parental-->MsiExec.exe /X{EB8BAA0D-11EF-4EDC-A960-2AB7CA8F53F0}
    Windows Live Mail-->MsiExec.exe /I{63DC2DA0-2A6C-4C38-9249-B75395458657}
    Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
    Windows Live OneCare safety scanner-->RunDll32.exe "C:\Program Files\Windows Live Safety Center\wlscCore.dll",UninstallFunction WLSC_SCANNER_PRODUCT
    Windows Live Sync-->MsiExec.exe /X{67D0313C-4F15-437D-9A2D-C1564088A26A}
    Windows Live Writer-->MsiExec.exe /X{2231CE39-B963-4B9D-823A-F412ECA637B1}
    Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
    Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
    Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
    Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
    XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"
    ZoneAlarm-->C:\Program Files\Zone Labs\ZoneAlarm\zauninst.exe

    ======Hosts File======

    127.0.0.1 www.007guard.com
    127.0.0.1 007guard.com
    127.0.0.1 008i.com
    127.0.0.1 www.008k.com
    127.0.0.1 008k.com
    127.0.0.1 www.00hq.com
    127.0.0.1 00hq.com
    127.0.0.1 010402.com
    127.0.0.1 www.032439.com
    127.0.0.1 032439.com

    ======Security center information======

    AV: AVG (disabled) (outdated)
    AV: avast! antivirus 4.8.1296 [VPS 090203-1]
    FW: ZoneAlarm Firewall

    System event log

    Computer Name: THIERRY
    Event Code: 1002
    Message: Le bail de l'adresse IP 192.168.100.11 pour la carte réseau dont l'adresse réseau est 001E8C80A752
    a été refusé par le serveur DHCP 192.168.100.1 (celui-ci a envoyé un message DHCPNACK).

    Record Number: 62513
    Source Name: Dhcp
    Time Written: 20090110095349.000000+060
    Event Type: erreur
    User:

    Computer Name: THIERRY
    Event Code: 8033
    Message: L'explorateur a forcé une élection sur le réseau \Device\NetBT_Tcpip_{E50D31E1-16DB-4A90-BC70-AEB9755D3BA4} car un maître explorateur a été arrêté.

    Record Number: 62512
    Source Name: BROWSER
    Time Written: 20090110095338.000000+060
    Event Type: Informations
    User:

    Computer Name: THIERRY
    Event Code: 1002
    Message: Le bail de l'adresse IP 85.201.47.140 pour la carte réseau dont l'adresse réseau est 001E8C80A752
    a été refusé par le serveur DHCP 192.168.100.1 (celui-ci a envoyé un message DHCPNACK).

    Record Number: 62511
    Source Name: Dhcp
    Time Written: 20090110095338.000000+060
    Event Type: erreur
    User:

    Computer Name: THIERRY
    Event Code: 4201
    Message: Le système a détecté que la carte réseau \DEVICE\TCPIP_{E50D31E1-16DB-4A90-BC70-AEB9755D3BA4} était connectée au réseau,
    et a lancé une opération normale sur la carte réseau.

    Record Number: 62510
    Source Name: Tcpip
    Time Written: 20090110095334.000000+060
    Event Type: Informations
    User:

    Computer Name: THIERRY
    Event Code: 2504
    Message: Le serveur n'a pas pu se lier au transport \Device\NetBT_Tcpip_{E50D31E1-16DB-4A90-BC70-AEB9755D3BA4}.

    Record Number: 62509
    Source Name: Server
    Time Written: 20090110085603.000000+060
    Event Type: Avertissement
    User:

    Application event log

    Computer Name: THIERRY
    Event Code: 1001
    Message: Échec de détection du produit '{D0C73318-7B4A-4D16-A0C4-3B83F075EA88}', fonctionnalité 'SearchSettingBHO' lors de la demande du composant '{F6222920-2075-4D76-9553-A77F08515E43}'

    Record Number: 810
    Source Name: MsiInstaller
    Time Written: 20081226215824.000000+060
    Event Type: Avertissement
    User: THIERRY\poy

    Computer Name: THIERRY
    Event Code: 1004
    Message: Échec de détection du produit '{D0C73318-7B4A-4D16-A0C4-3B83F075EA88}', fonctionnalité 'SearchSettingBHO', composant '{DD8B164F-FF69-4AA5-A125-1DE4D1B7967C}. La ressource 'C:\Program Files\Search Settings\kb127\res\' n'existe pas

    Record Number: 809
    Source Name: MsiInstaller
    Time Written: 20081226215824.000000+060
    Event Type: Avertissement
    User: THIERRY\poy

    Computer Name: THIERRY
    Event Code: 11729
    Message: Product: Search Settings 1.2 -- Configuration failed.

    Record Number: 808
    Source Name: MsiInstaller
    Time Written: 20081226215811.000000+060
    Event Type: Informations
    User: THIERRY\poy

    Computer Name: THIERRY
    Event Code: 11706
    Message: Product: Search Settings 1.2 -- Error 1706.No valid source could be found for product Search Settings 1.2. The Windows Installer cannot continue.

    Record Number: 807
    Source Name: MsiInstaller
    Time Written: 20081226215811.000000+060
    Event Type: erreur
    User: THIERRY\poy

    Computer Name: THIERRY
    Event Code: 1001
    Message: Échec de détection du produit '{D0C73318-7B4A-4D16-A0C4-3B83F075EA88}', fonctionnalité 'SearchSettingBHO' lors de la demande du composant '{F6222920-2075-4D76-9553-A77F08515E43}'

    Record Number: 806
    Source Name: MsiInstaller
    Time Written: 20081226215753.000000+060
    Event Type: Avertissement
    User: THIERRY\poy

    ======Environment variables======

    "ComSpec"=%SystemRoot%\system32\cmd.exe
    "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Smart Projects\IsoBuster;C:\Program Files\Fichiers communs\Teleca Shared
    "windir"=%SystemRoot%
    "FP_NO_HOST_CHECK"=NO
    "OS"=Windows_NT
    "PROCESSOR_ARCHITECTURE"=x86
    "PROCESSOR_LEVEL"=6
    "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 13, GenuineIntel
    "PROCESSOR_REVISION"=0f0d
    "NUMBER_OF_PROCESSORS"=2
    "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
    "TEMP"=%SystemRoot%\TEMP
    "TMP"=%SystemRoot%\TEMP
    "tvdumpflags"=8

    -----------------EOF-----------------
    0
  4. gen-hackman
     
    Télécharge HostsXpert sur ton Bureau :
    http://www.funkytoad.com/download/HostsXpert.zip

    ---> Décompresse-le (Clic droit >> Extraire ici)

    ---> Double-clique sur HostsXpert pour le lancer

    ---> clique sur le bouton "Restore MS Hosts File" puis ferme le programme

    PS : Avant de cliquer sur le bouton "Restore MS Hosts File", vérifie que le cadenas en haut à gauche est ouvert sinon tu vas avoir un message d'erreur.

    ensuite :

    Télécharge ToolBar S&D ( de Eric_71/Team IDN ) sur ton bureau :
    https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2

    ( Tuto : https://sites.google.com/site/toolbarsd/aideenimages )

    !! Déconnecte toi et ferme toutes tes applications en cours le temps de la manipe !!

    * Double-clique sur ToolBar SD.exe pour lancer l'outil et laisse toi guider ...
    --> Tapes ( option " recherche " ) puis tape sur [Entrée].

    Un rapport sera généré à la fin du processus : poste son contenu dans ta prochaine réponse

    ( le rapport est en outre sauvegardé ici -> C:\TB.txt )
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. tilou73
     
    voici la suite

    info.txt logfile of random's system information tool 1.05 2009-02-04 14:07:44

    ======Uninstall list======

    -->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
    -->C:\Program Files\Nero\Nero8\\nero\uninstall\UNNERO.exe /UNINSTALL
    -->C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL
    -->C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL
    -->C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL
    -->C:\WINDOWS\UNNeroVision.exe /UNINSTALL
    -->C:\WINDOWS\UNRecode.exe /UNINSTALL
    -->MsiExec /X{A7E07C2B-2220-4415-87E3-784D5814BC93}
    -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
    Active WebCam-->"C:\Program Files\Active WebCam\PY_UNINSTAL.EXE" SOFTWARE\PySoft\Act_WebCam
    Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
    Adobe Reader 9 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A90000000001}
    Adobe® Photoshop® Album Edition Découverte 3.0-->MsiExec.exe /I{4BDFD2CE-6329-42E4-9801-9B3D1F10D79B}
    ALSong-->"C:\Program Files\ESTsoft\ALSong\unins000.exe"
    Amapi 3D-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\EOVIA\Amapi 3D\Uninst.isu"
    Analyseur et SDK MSXML 4.0 SP2-->MsiExec.exe /I{716E0306-8318-4364-8B8F-0CC4E9376BAC}
    Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
    Arovax AntiSpyware 2.1.143-->C:\Program Files\Arovax AntiSpyware\uninst.exe
    a-squared Free 4.0-->"C:\Program Files\a-squared Free\unins000.exe"
    Assistant de connexion Windows Live-->MsiExec.exe /I{D6E592B3-67DA-4BBB-9783-E1838FB253A2}
    Atheros Communications Inc.(R) L2 Fast Ethernet Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0A755762-EED8-47AB-A446-505766F93D43}\Setup.exe" -l0x9 -removeonly
    avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
    AVS Registry Cleaner version 1.1-->"C:\Program Files\AVS4YOU\AVSRegistryCleaner\unins000.exe"
    AVS4YOU Software Navigator 1.2-->"C:\Program Files\AVS4YOU\AVSSoftwareNavigator\unins000.exe"
    BurnAware Free 2.2.0-->"C:\Program Files\BurnAware Free\unins000.exe"
    CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
    CDDRV_Installer-->MsiExec.exe /I{0C826C5B-B131-423A-A229-C71B3CACCD6A}
    Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
    Code de la Route-->MsiExec.exe /X{A37A26D5-8444-4862-933B-478371D0299D}
    Compatibility Pack for the 2007 Office system-->MsiExec.exe /X{90120000-0020-040C-0000-0000000FF1CE}
    DAZ Studio-->C:\Program Files\DAZ\Studio\Remove-Studio.exe
    Dictionnaire Freelang (liste de mots)-->"C:\Documents and Settings\poy\Local Settings\Application Data\Dictionnaire Freelang\unins001.exe"
    Dictionnaire Freelang 3.74 beta-->"C:\Documents and Settings\poy\Local Settings\Application Data\Dictionnaire Freelang\unins000.exe"
    Digital Physiognomy (remove only)-->"C:\Program Files\Digital Physiognomy\uninstall.exe"
    DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
    DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
    DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
    DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
    Download Accelerator Plus (DAP)-->C:\PROGRA~1\DAP\DAPREMOVE.EXE
    DriverAgent by TouchStone Software-->RunDll32.exe advpack.dll,LaunchINFSection driveragent_exe.inf,TVICHW32Remove
    DVD Decrypter (Remove Only)-->"C:\Documents and Settings\poy\Mes documents\DVD Decrypter\uninstall.exe"
    DVD Shrink 3.2-->"C:\Program Files\DVD Shrink\unins000.exe"
    emule-divx Toolbar-->C:\PROGRA~1\EMULE-~1\UNWISE.EXE /U C:\PROGRA~1\EMULE-~1\INSTALL.LOG
    Galerie de photos Windows Live-->MsiExec.exe /X{43563ACB-371B-4C58-8979-B192B390424C}
    getPlus(R) for Adobe-->"C:\Program Files\NOS\bin\getPlus_HelperSvc.exe" /UninstallGet1
    Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_0531C63A913CC9D1.exe" /uninstall
    HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
    Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
    Installation Windows Live-->MsiExec.exe /I{3CCB732A-E472-4CF9-B1EE-F18365341FE0}
    IsoBuster 2.4-->"C:\Program Files\Smart Projects\IsoBuster\Uninst\unins000.exe"
    Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
    Junk Mail filter update-->MsiExec.exe /I{4AB8B41B-3AF1-46BE-99B0-0ACD3B300C0A}
    KhalInstallWrapper-->MsiExec.exe /I{3101CB58-3482-4D21-AF1A-7057FC935355}
    K-Lite Codec Pack 4.2.5 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
    Le corps humain 6.0-->C:\WINDOWS\bw6uinst.exe
    Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
    Logitech SetPoint-->"C:\Program Files\InstallShield Installation Information\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}\setup.exe" -runfromtemp -l0x040c -removeonly
    Macromedia Flash Player 8 Plugin-->MsiExec.exe /X{E686D1C1-78B5-4E1A-8269-A023B43C2D76}
    Macromedia Flash Player 8-->MsiExec.exe /X{8A7DC982-6A96-4C3C-BBE1-D5025CD85AF5}
    Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
    Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{72AD53CC-CCC0-3757-8480-9EE176866A7C}
    Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
    Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{0BD83598-C2EF-3343-847B-7D2E84599128}
    Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
    Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31}
    Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
    Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
    Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
    Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{FD052FB9-FE90-4438-B355-15EDC89D8FB1}
    Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
    Microsoft Kernel-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe"
    Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
    Microsoft Office Live Add-in 1.3-->MsiExec.exe /I{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}
    Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
    Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
    Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
    Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
    Microsoft Word 2002-->MsiExec.exe /I{911B040C-6000-11D3-8CFE-0050048383C9}
    Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127-v2)-->"C:\WINDOWS\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
    Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
    Mobile Phone Suite Easy Synchronization-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AC134D03-97F1-45B9-B32A-52E885AFA895}\setup.exe" -l0x40c
    Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->c:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe
    MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
    MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
    MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
    MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
    Mystery P.I.™ - The Vegas Heist-->C:\PROGRA~1\SHOCKW~1.COM\MYSTER~1.-TH\UNWISE.EXE C:\PROGRA~1\SHOCKW~1.COM\MYSTER~1.-TH\INSTALL.LOG
    Mystery Stories: Island of Hope-->C:\PROGRA~1\SHOCKW~1.COM\MYSTER~1\UNWISE.EXE C:\PROGRA~1\SHOCKW~1.COM\MYSTER~1\INSTALL.LOG
    Nero 8 Ultra Edition HD-->MsiExec.exe /X{9A5B876D-A900-4AAB-B557-DE827BE46E6C}
    neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
    NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI
    NVIDIA PhysX v8.09.04-->MsiExec.exe /X{A7E07C2B-2220-4415-87E3-784D5814BC93}
    OpenOffice.org 3.0-->MsiExec.exe /I{6860B340-530D-46B3-91F8-1AE1F70F7C33}
    Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
    Photodex Presenter-->C:\Program Files\Photodex Presenter\uninst.exe
    ProShow Gold-->C:\Program Files\Photodex\ProShowGold\proshow.exe . -u
    Quantum of Solace(TM)-->C:\Program Files\InstallShield Installation Information\{CDF29D6C-AA05-49F9-A55A-89C2F8F4F46E}\setup.exe -runfromtemp -l0x040c
    Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\setup.exe" -l0x40c -removeonly
    Recover My Files-->"C:\Program Files\GetData\Recover My Files\unins000.exe"
    Search Settings 1.2-->MsiExec.exe /X{D0C73318-7B4A-4D16-A0C4-3B83F075EA88}
    Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
    Shareaza 2.4.0.0-->"C:\Program Files\Shareaza\Uninstall\unins000.exe"
    Sony Ericsson PC Suite 1.20.224-->MsiExec.exe /I{7689CA7A-1270-425A-9959-EB4CB25EA29A}
    SpeedBit Video Accelerator-->C:\PROGRA~1\SPEEDB~1\UNWISE.EXE C:\PROGRA~1\SPEEDB~1\INSTALL.LOG
    Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
    SuDoku Pro 2.4-->C:\Program Files\SuDoku Pro\uninst.exe
    SweetIM for Messenger 2.6-->MsiExec.exe /X{21D74CEE-EEFC-4D72-9691-2F2BE1DF9FB2}
    System Requirements Lab-->C:\Program Files\SystemRequirementsLab\Uninstall.exe
    Text-To-Speech-Runtime-->MsiExec.exe /X{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}
    TuneUp Utilities 2008-->MsiExec.exe /I{5888428E-699C-4E71-BF71-94EE06B497DA}
    Unlocker 1.8.7-->C:\Program Files\Unlocker\uninst.exe
    VCRedistSetup-->MsiExec.exe /I{3921A67A-5AB1-4E48-9444-C71814CF3027}
    Virtual DJ - Atomix Productions-->C:\PROGRA~1\VIRTUA~2\UNWISE.EXE C:\PROGRA~1\VIRTUA~2\INSTALL.LOG
    WIDCOMM Bluetooth Software-->MsiExec.exe /X{84814E6B-2581-46EC-926A-823BD1C670F6}
    Windows Internet Explorer 7-->"C:\WINDOWS\ie7\spuninst\spuninst.exe"
    Windows Live Call-->MsiExec.exe /I{01523985-2098-43AF-9C97-12B07BE02A9B}
    Windows Live Communications Platform-->MsiExec.exe /I{F69E83CF-B440-43F8-89E6-6EA80712109B}
    Windows Live Contrôle parental-->MsiExec.exe /X{EB8BAA0D-11EF-4EDC-A960-2AB7CA8F53F0}
    Windows Live Mail-->MsiExec.exe /I{63DC2DA0-2A6C-4C38-9249-B75395458657}
    Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
    Windows Live OneCare safety scanner-->RunDll32.exe "C:\Program Files\Windows Live Safety Center\wlscCore.dll",UninstallFunction WLSC_SCANNER_PRODUCT
    Windows Live Sync-->MsiExec.exe /X{67D0313C-4F15-437D-9A2D-C1564088A26A}
    Windows Live Writer-->MsiExec.exe /X{2231CE39-B963-4B9D-823A-F412ECA637B1}
    Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
    Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
    Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
    Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
    XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"
    ZoneAlarm-->C:\Program Files\Zone Labs\ZoneAlarm\zauninst.exe

    ======Hosts File======

    127.0.0.1 www.007guard.com
    127.0.0.1 007guard.com
    127.0.0.1 008i.com
    127.0.0.1 www.008k.com
    127.0.0.1 008k.com
    127.0.0.1 www.00hq.com
    127.0.0.1 00hq.com
    127.0.0.1 010402.com
    127.0.0.1 www.032439.com
    127.0.0.1 032439.com

    ======Security center information======

    AV: AVG (disabled) (outdated)
    AV: avast! antivirus 4.8.1296 [VPS 090203-1]
    FW: ZoneAlarm Firewall

    System event log

    Computer Name: THIERRY
    Event Code: 1002
    Message: Le bail de l'adresse IP 192.168.100.11 pour la carte réseau dont l'adresse réseau est 001E8C80A752
    a été refusé par le serveur DHCP 192.168.100.1 (celui-ci a envoyé un message DHCPNACK).

    Record Number: 62513
    Source Name: Dhcp
    Time Written: 20090110095349.000000+060
    Event Type: erreur
    User:

    Computer Name: THIERRY
    Event Code: 8033
    Message: L'explorateur a forcé une élection sur le réseau \Device\NetBT_Tcpip_{E50D31E1-16DB-4A90-BC70-AEB9755D3BA4} car un maître explorateur a été arrêté.

    Record Number: 62512
    Source Name: BROWSER
    Time Written: 20090110095338.000000+060
    Event Type: Informations
    User:

    Computer Name: THIERRY
    Event Code: 1002
    Message: Le bail de l'adresse IP 85.201.47.140 pour la carte réseau dont l'adresse réseau est 001E8C80A752
    a été refusé par le serveur DHCP 192.168.100.1 (celui-ci a envoyé un message DHCPNACK).

    Record Number: 62511
    Source Name: Dhcp
    Time Written: 20090110095338.000000+060
    Event Type: erreur
    User:

    Computer Name: THIERRY
    Event Code: 4201
    Message: Le système a détecté que la carte réseau \DEVICE\TCPIP_{E50D31E1-16DB-4A90-BC70-AEB9755D3BA4} était connectée au réseau,
    et a lancé une opération normale sur la carte réseau.

    Record Number: 62510
    Source Name: Tcpip
    Time Written: 20090110095334.000000+060
    Event Type: Informations
    User:

    Computer Name: THIERRY
    Event Code: 2504
    Message: Le serveur n'a pas pu se lier au transport \Device\NetBT_Tcpip_{E50D31E1-16DB-4A90-BC70-AEB9755D3BA4}.

    Record Number: 62509
    Source Name: Server
    Time Written: 20090110085603.000000+060
    Event Type: Avertissement
    User:

    Application event log

    Computer Name: THIERRY
    Event Code: 1001
    Message: Échec de détection du produit '{D0C73318-7B4A-4D16-A0C4-3B83F075EA88}', fonctionnalité 'SearchSettingBHO' lors de la demande du composant '{F6222920-2075-4D76-9553-A77F08515E43}'

    Record Number: 810
    Source Name: MsiInstaller
    Time Written: 20081226215824.000000+060
    Event Type: Avertissement
    User: THIERRY\poy

    Computer Name: THIERRY
    Event Code: 1004
    Message: Échec de détection du produit '{D0C73318-7B4A-4D16-A0C4-3B83F075EA88}', fonctionnalité 'SearchSettingBHO', composant '{DD8B164F-FF69-4AA5-A125-1DE4D1B7967C}. La ressource 'C:\Program Files\Search Settings\kb127\res\' n'existe pas

    Record Number: 809
    Source Name: MsiInstaller
    Time Written: 20081226215824.000000+060
    Event Type: Avertissement
    User: THIERRY\poy

    Computer Name: THIERRY
    Event Code: 11729
    Message: Product: Search Settings 1.2 -- Configuration failed.

    Record Number: 808
    Source Name: MsiInstaller
    Time Written: 20081226215811.000000+060
    Event Type: Informations
    User: THIERRY\poy

    Computer Name: THIERRY
    Event Code: 11706
    Message: Product: Search Settings 1.2 -- Error 1706.No valid source could be found for product Search Settings 1.2. The Windows Installer cannot continue.

    Record Number: 807
    Source Name: MsiInstaller
    Time Written: 20081226215811.000000+060
    Event Type: erreur
    User: THIERRY\poy

    Computer Name: THIERRY
    Event Code: 1001
    Message: Échec de détection du produit '{D0C73318-7B4A-4D16-A0C4-3B83F075EA88}', fonctionnalité 'SearchSettingBHO' lors de la demande du composant '{F6222920-2075-4D76-9553-A77F08515E43}'

    Record Number: 806
    Source Name: MsiInstaller
    Time Written: 20081226215753.000000+060
    Event Type: Avertissement
    User: THIERRY\poy

    ======Environment variables======

    "ComSpec"=%SystemRoot%\system32\cmd.exe
    "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Smart Projects\IsoBuster;C:\Program Files\Fichiers communs\Teleca Shared
    "windir"=%SystemRoot%
    "FP_NO_HOST_CHECK"=NO
    "OS"=Windows_NT
    "PROCESSOR_ARCHITECTURE"=x86
    "PROCESSOR_LEVEL"=6
    "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 13, GenuineIntel
    "PROCESSOR_REVISION"=0f0d
    "NUMBER_OF_PROCESSORS"=2
    "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
    "TEMP"=%SystemRoot%\TEMP
    "TMP"=%SystemRoot%\TEMP
    "tvdumpflags"=8

    -----------------EOF-----------------
    0
  7. gen-hackman
     
    ok je t ai donné des directives au post 4 :)
    0
  8. tilou73
     
    je peux faire quoi pour le retirer exactement ?
    0
  9. gen-hackman
     
    je peux faire quoi pour le retirer exactement ?

    lis le post 4
    0
  10. tilou73
     
    -----------\\ ToolBar S&D 1.2.8 XP/Vista

    Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
    X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU E4500 @ 2.20GHz )
    BIOS : BIOS Date: 08/01/07 10:11:11 Ver: 08.00.10
    USER : poy ( Administrator )
    BOOT : Normal boot
    Antivirus : avast! antivirus 4.8.1296 [VPS 090203-1] 4.8.1296 (Activated)
    Firewall : ZoneAlarm Firewall 7.0.483.000 (Activated)
    C:\ (Local Disk) - NTFS - Total:465 Go (Free:281 Go)
    D:\ (CD or DVD)

    "C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
    Option : [1] ( 04/02/2009|15:13 )

    -----------\\ Recherche de Fichiers / Dossiers ...

    C:\DOCUME~1\poy\APPLIC~1\Search Settings
    C:\DOCUME~1\poy\APPLIC~1\Search Settings\kb127
    C:\DOCUME~1\poy\APPLIC~1\Search Settings\kb127\res
    C:\DOCUME~1\poy\APPLIC~1\Search Settings\kb127\temp
    C:\DOCUME~1\poy\APPLIC~1\Search Settings\kb127\temp\ws-14276.log
    C:\DOCUME~1\poy\APPLIC~1\Search Settings\kb127\temp\ws-14278.log
    C:\DOCUME~1\poy\APPLIC~1\Search Settings\kb127\temp\ws-14279.log
    C:\Program Files\Search Settings
    C:\Program Files\Search Settings\kb127
    C:\Program Files\Search Settings\SearchSettings.exe
    C:\Program Files\Search Settings\kb127\res
    C:\Program Files\Search Settings\kb127\SearchSettings.dll
    C:\Program Files\Search Settings\kb127\SearchSettingsRes409.dll
    C:\Program Files\Search Settings\kb127\temp

    -----------\\ [..\Internet Explorer\Main]

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Local Page"="C:\\WINDOWS\\system32\\blank.htm"
    "Start Page"="https://www.google.be/?gws_rd=ssl"
    "Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
    "Default_Search_URL"="https://www.msn.com/fr-fr/?redirfallthru=http%3a%2f%2fhome.microsoft.com%2fsearch%2flobby%2fsearch.asp%3f"

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
    "Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
    "Default_Search_URL"="https://www.msn.com/fr-fr/?redirfallthru=http%3a%2f%2fhome.microsoft.com%2fsearch%2flobby%2fsearch.asp%3f"
    "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
    "Local Page"="C:\\WINDOWS\\system32\\blank.htm"
    "Start Page"="https://home.sweetim.com/"
    "Search Bar"="https://www.msn.com/fr-fr/?redirfallthru=http%3a%2f%2fhome.microsoft.com%2fsearch%2flobby%2fsearch.asp%3f"

    --------------------\\ Recherche d'autres infections

    --------------------\\ Cracks & Keygens ..

    C:\DOCUME~1\poy\Application Data\LimeWire\.AppSpecialShare\NERO 8.3.6.0+KEYGEN.torrent
    C:\DOCUME~1\poy\Cookies\poy@crackserialkeygen[1].txt
    C:\DOCUME~1\poy\Mes documents\fichier rar\Avast.Antivirus.Pro.v4.8.1282.FR.Incl-Keygen.rar.[emule-island.com].rar
    C:\DOCUME~1\poy\Mes documents\fichier rar\KC.Softwares.AudioGrail.v6.8.1.133.Multilingual.WinALL.Incl.Keygen-BRD.zip
    C:\DOCUME~1\poy\Mes documents\fichier rar\Nero.8.Ultra.Edition.v8.3.6.0.FR.Incl-Keygen.[emule-island.com].rar
    C:\DOCUME~1\poy\Mes documents\fichier rar\Nero.9.v9.2.6.0.FR.Incl-Keygen.[eMule-DivX.com].rar
    C:\DOCUME~1\poy\Mes documents\fichier rar\Nero_8_Ultra_Edition_(HD)_8.3.6.0___keygen.4334500.TPB.torrent
    C:\DOCUME~1\poy\Mes documents\fichier rar\Product.Key.Explorer.v2.1.2.Incl-Crack.[eMule-DivX.com].rar
    C:\DOCUME~1\poy\Mes documents\fichier rar\SlySoft.AnyDVD.HD.v6.5.2.2.Multilangages.Incl-Crack.[eMule-DivX.com].rar

    1 - "C:\ToolBar SD\TB_1.txt" - 04/02/2009|14:45 - Option : [1]
    2 - "C:\ToolBar SD\TB_2.txt" - 04/02/2009|15:14 - Option : [1]

    -----------\\ Fin du rapport a 15:14:17,46
    0
  11. gen-hackman
     
    ---> Désactive ton antivirus le temps de la manipulation car OTMoveIt3 est détecté comme une infection à tort.

    ---> Télécharge OTMoveIt3 (OldTimer) sur ton Bureau :
    http://oldtimer.geekstogo.com/OTMoveIt3.exe

    ---> Double-clique sur OTMoveIt3.exe afin de le lancer.

    ---> Copie (Ctrl+C) le texte suivant ci-dessous :


    :processes
    explorer.exe

    :files
    C:\DOCUME~1\poy\Application Data\LimeWire\.AppSpecialShare\NERO 8.3.6.0+KEYGEN.torrent
    C:\DOCUME~1\poy\Cookies\poy@crackserialkeygen[1].txt
    C:\DOCUME~1\poy\Mes documents\fichier rar\Avast.Antivirus.Pro.v4.8.1282.FR.Incl-Keygen.rar.[emule-island.com].rar
    C:\DOCUME~1\poy\Mes documents\fichier rar\KC.Softwares.AudioGrail.v6.8.1.133.Multilingual.WinALL.Incl.Keygen-BRD.zip
    C:\DOCUME~1\poy\Mes documents\fichier rar\Nero.8.Ultra.Edition.v8.3.6.0.FR.Incl-Keygen.[emule-island.com].rar
    C:\DOCUME~1\poy\Mes documents\fichier rar\Nero.9.v9.2.6.0.FR.Incl-Keygen.[eMule-DivX.com].rar
    C:\DOCUME~1\poy\Mes documents\fichier rar\Nero_8_Ultra_Edition_(HD)_8.3.6.0___keygen.4334500.TPB.torrent
    C:\DOCUME~1\poy\Mes documents\fichier rar\Product.Key.Explorer.v2.1.2.Incl-Crack.[eMule-DivX.com].rar
    C:\DOCUME~1\poy\Mes documents\fichier rar\SlySoft.AnyDVD.HD.v6.5.2.2.Multilangages.Incl-Crack.[eMule-DivX.com].rar

    :reg
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "AppInit_DLLS"=""
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Windows\CurrentVersion\Run]
    "Adobe Reader Speed Launcher"=-
    "QuickTime Task"=-

    :commands
    [purity]
    [emptytemp]
    [start explorer]
    [reboot]


    --> Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.

    ---> Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.

    Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
    Accepte en cliquant sur YES.

    ---> Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
    Le nom du rapport correspond au moment de sa création : date_heure.log

    ensuite :

    Relance Toolbar-S&D en double-cliquant sur le raccourci
    .
    Ø Tape sur "2" puis valide en appuyant sur "Entrée".

    ! Ne ferme pas la fenêtre lors de la suppression !

    Un rapport sera généré, poste son contenu ici.

    NOTE : Si ton Bureau ne réapparait pas, appuie simultanément sur Ctrl+Alt+Suppr pour ouvrir le Gestionnaire des tâches.
    Rends-toi sur l'onglet "Processus". Clique en haut à gauche sur Fichier et choisis "Exécuter..."
    Tape explorer puis valide.

    ensuite :

    Telecharge maintenant FindyKill sur ton bureau :

    http://sd-1.archive-host.com/membres/up/116615172019703188/FindyKill.exe

    --> Lance l installation avec les parametres par default

    --> Au menu principal,choisi l option 1 (Recherche)

    --> Post le rapport FindyKill.txt

    Note : le rapport FindyKill.txt est sauvegardé a la racine du disque
    0
    1. tilou73
       
      re voici la suite
      ###################### [ FindyKill V4.715 ]

      # User : poy - THIERRY
      # Emplacement : C:\Program Files\FindyKill
      # Outils Mis a jours 29/01/09 par Chiquitine29
      # Recherche effectuée à 17:20:47 le 04/02/2009
      # Windows XP - Internet Explorer 7.0.5730.13

      # [ FindyKill V4.715 - Scan ] ##############

      \\\\\\\\\\\\\\\\\\\\ [ Processus actifs ] ///////////////////


      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\csrss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
      C:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTServ.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\system32\ZoneLabs\vsmon.exe
      C:\WINDOWS\Explorer.EXE
      C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      C:\Program Files\Alwil Software\Avast4\ashServ.exe
      C:\WINDOWS\system32\spoolsv.exe
      C:\Program Files\a-squared Free\a2service.exe
      C:\Program Files\Logitech\Easy Synchronization\servicestub.exe
      C:\Program Files\Logitech\Easy Synchronization\LogitechEasySync.exe
      C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
      C:\WINDOWS\system32\nvsvc32.exe
      C:\WINDOWS\system32\IoctlSvc.exe
      C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
      C:\PROGRA~1\SPEEDB~1\VideoAcceleratorService.exe
      C:\PROGRA~1\SPEEDB~1\VideoAcceleratorEngine.exe
      C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
      C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
      C:\WINDOWS\System32\alg.exe
      C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
      C:\Program Files\Unlocker\UnlockerAssistant.exe
      C:\WINDOWS\RTHDCPL.EXE
      C:\WINDOWS\system32\ctfmon.exe
      C:\Program Files\Messenger\msmsgs.exe
      C:\Program Files\Windows Live\Messenger\msnmsgr.exe
      C:\Program Files\Arovax AntiSpyware\arovaxantispyware.exe
      C:\Program Files\DAP\DAP.EXE
      0
  12. gen-hackman
     
    il me manque les deux autres rapports stp
    0
  13. tilou73
     
    -----------\\ ToolBar S&D 1.2.8 XP/Vista

    Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
    X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU E4500 @ 2.20GHz )
    BIOS : BIOS Date: 08/01/07 10:11:11 Ver: 08.00.10
    USER : poy ( Administrator )
    BOOT : Normal boot
    Antivirus : avast! antivirus 4.8.1296 [VPS 090203-1] 4.8.1296 (Activated)
    Firewall : ZoneAlarm Firewall 7.0.483.000 (Activated)
    C:\ (Local Disk) - NTFS - Total:465 Go (Free:281 Go)
    D:\ (CD or DVD)

    "C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
    Option : [1] ( 04/02/2009|17:42 )

    -----------\\ Recherche de Fichiers / Dossiers ...

    -----------\\ [..\Internet Explorer\Main]

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Local Page"="C:\\WINDOWS\\system32\\blank.htm"
    "Start Page"="https://www.google.be/?gws_rd=ssl"
    "Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
    "Default_Search_URL"="https://www.msn.com/fr-fr/?redirfallthru=http%3a%2f%2fhome.microsoft.com%2fsearch%2flobby%2fsearch.asp%3f"

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
    "Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
    "Default_Search_URL"="https://www.msn.com/fr-fr/?redirfallthru=http%3a%2f%2fhome.microsoft.com%2fsearch%2flobby%2fsearch.asp%3f"
    "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
    "Local Page"="C:\\WINDOWS\\system32\\blank.htm"
    "Start Page"="https://www.msn.com/fr-fr/"
    "Search Bar"="https://www.msn.com/fr-fr/?redirfallthru=http%3a%2f%2fhome.microsoft.com%2fsearch%2flobby%2fsearch.asp%3f"

    --------------------\\ Recherche d'autres infections

    Aucune autre infection trouvée !

    1 - "C:\ToolBar SD\TB_1.txt" - 04/02/2009|14:45 - Option : [1]
    2 - "C:\ToolBar SD\TB_2.txt" - 04/02/2009|15:14 - Option : [1]
    3 - "C:\ToolBar SD\TB_3.txt" - 04/02/2009|15:53 - Option : [1]
    4 - "C:\ToolBar SD\TB_4.txt" - 04/02/2009|17:07 - Option : [2]
    5 - "C:\ToolBar SD\TB_5.txt" - 04/02/2009|17:43 - Option : [1]

    -----------\\ Fin du rapport a 17:43:33,00
    0
  14. gen-hackman
     
    c est posssible d avoir le rapport de :

    C:\_OTMoveIt\MovedFiles\
    Le nom du rapport correspond au moment de sa création : date_heure.log

    et celui de findykill en entier ?
    0
  15. tilou73
     
    suite
    -----------\\ ToolBar S&D 1.2.8 XP/Vista

    Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
    X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU E4500 @ 2.20GHz )
    BIOS : BIOS Date: 08/01/07 10:11:11 Ver: 08.00.10
    USER : poy ( Administrator )
    BOOT : Normal boot
    Antivirus : avast! antivirus 4.8.1296 [VPS 090203-1] 4.8.1296 (Activated)
    Firewall : ZoneAlarm Firewall 7.0.483.000 (Activated)
    C:\ (Local Disk) - NTFS - Total:465 Go (Free:281 Go)
    D:\ (CD or DVD)

    "C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
    Option : [1] ( 04/02/2009|17:42 )

    -----------\\ Recherche de Fichiers / Dossiers ...

    -----------\\ [..\Internet Explorer\Main]

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Local Page"="C:\\WINDOWS\\system32\\blank.htm"
    "Start Page"="https://www.google.be/?gws_rd=ssl"
    "Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
    "Default_Search_URL"="https://www.msn.com/fr-fr/?redirfallthru=http%3a%2f%2fhome.microsoft.com%2fsearch%2flobby%2fsearch.asp%3f"

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
    "Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
    "Default_Search_URL"="https://www.msn.com/fr-fr/?redirfallthru=http%3a%2f%2fhome.microsoft.com%2fsearch%2flobby%2fsearch.asp%3f"
    "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
    "Local Page"="C:\\WINDOWS\\system32\\blank.htm"
    "Start Page"="https://www.msn.com/fr-fr/"
    "Search Bar"="https://www.msn.com/fr-fr/?redirfallthru=http%3a%2f%2fhome.microsoft.com%2fsearch%2flobby%2fsearch.asp%3f"

    --------------------\\ Recherche d'autres infections

    Aucune autre infection trouvée !

    1 - "C:\ToolBar SD\TB_1.txt" - 04/02/2009|14:45 - Option : [1]
    2 - "C:\ToolBar SD\TB_2.txt" - 04/02/2009|15:14 - Option : [1]
    3 - "C:\ToolBar SD\TB_3.txt" - 04/02/2009|15:53 - Option : [1]
    4 - "C:\ToolBar SD\TB_4.txt" - 04/02/2009|17:07 - Option : [2]
    5 - "C:\ToolBar SD\TB_5.txt" - 04/02/2009|17:43 - Option : [1]

    -----------\\ Fin du rapport a 17:43:33,00
    0
  16. tilou73
     
    re suite
    registered standard show C:\Program Files\Photodex\ProShowGold\about.px
    -- HANDLE OPEN (start) --
    created with build: 2042
    -- HANDLE OPEN (start) --
    created with build: 2042
    PlayUnInit
    new memory debugger statistics for player

    current nr of blocks allocated = 81
    current total size allocated = 1010974 ( 0.964 MB)
    peak nr of blocks allocated = 984
    peak size allocated = 7398531 ( 7.056 MB)
    summed allocated size = 221574720 ( 211.310 MB)
    info for memory pool : LOCAL
    current nr of blocks allocated = 12
    current total size allocated = 384 ( 0.000 MB)
    peak nr of blocks allocated = 377
    peak size allocated = 20472 ( 0.020 MB)
    summed allocated size = 38856 ( 0.037 MB)
    info for memory pool : NORMAL
    current nr of blocks allocated = 69
    current total size allocated = 1010590 ( 0.964 MB)
    peak nr of blocks allocated = 608
    peak size allocated = 7378283 ( 7.036 MB)
    summed allocated size = 221535864 ( 211.273 MB)

    all NOT FREED types; number of types = 32
    type[ 0], name = "[TileRasterizer.c,line 699] "NONOTFREEDCHECK:TempBufferAlignedBufferCreate""
    current nr of blocks allocated = 2
    current total size allocated = 524544 ( 0.500 MB)
    peak nr of blocks allocated = 2
    peak size allocated = 524544 ( 0.500 MB)
    summed allocated size = 524544 ( 0.500 MB)
    type[ 1], name = "[TileRasterizer.c,line 1413] "NONOTFREEDCHECK:tileRasterizerTheGlobalData""
    current nr of blocks allocated = 1
    current total size allocated = 36 ( 0.000 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 36 ( 0.000 MB)
    summed allocated size = 36 ( 0.000 MB)
    type[ 2], name = "[TileRasterizer.c,line 1589] "NONOTFREEDCHECK:newBlocks""
    current nr of blocks allocated = 1
    current total size allocated = 8 ( 0.000 MB)
    peak nr of blocks allocated = 2
    peak size allocated = 12 ( 0.000 MB)
    summed allocated size = 12 ( 0.000 MB)
    type[ 3], name = "[TileRasterizer.c,line 1597] "NONOTFREEDCHECK:newBlock""
    current nr of blocks allocated = 2
    current total size allocated = 40 ( 0.000 MB)
    peak nr of blocks allocated = 2
    peak size allocated = 40 ( 0.000 MB)
    summed allocated size = 40 ( 0.000 MB)
    type[ 4], name = "[TileRasterizer.c,line 1601] "NONOTFREEDCHECK:newBlockEntries""
    current nr of blocks allocated = 2
    current total size allocated = 6144 ( 0.006 MB)
    peak nr of blocks allocated = 2
    peak size allocated = 6144 ( 0.006 MB)
    summed allocated size = 6144 ( 0.006 MB)
    type[ 5], name = "[TileRasterizerPolygon.c,line 1069] "NONOTFREEDCHECK:allocateddata""
    current nr of blocks allocated = 15
    current total size allocated = 96192 ( 0.092 MB)
    peak nr of blocks allocated = 15
    peak size allocated = 96192 ( 0.092 MB)
    summed allocated size = 96192 ( 0.092 MB)
    type[ 6], name = "[TileRasterizerPolygon.c,line 1099] "NONOTFREEDCHECK:tables""
    current nr of blocks allocated = 1
    current total size allocated = 12 ( 0.000 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 12 ( 0.000 MB)
    summed allocated size = 12 ( 0.000 MB)
    type[ 7], name = "[TileRasterizerPolygon.c,line 1104] "NONOTFREEDCHECK:tables[AAVbits]""
    current nr of blocks allocated = 3
    current total size allocated = 120 ( 0.000 MB)
    peak nr of blocks allocated = 3
    peak size allocated = 120 ( 0.000 MB)
    summed allocated size = 120 ( 0.000 MB)
    type[ 8], name = "[TileRasterizerPolygon.c,line 8024] "NONOTFREEDCHECK:outlineinfomanager""
    current nr of blocks allocated = 1
    current total size allocated = 16 ( 0.000 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 16 ( 0.000 MB)
    summed allocated size = 16 ( 0.000 MB)
    type[ 9], name = "[TileRasterizerPolygon.c,line 8028] "manager->infoEntries""
    current nr of blocks allocated = 1
    current total size allocated = 16384 ( 0.016 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 16384 ( 0.016 MB)
    summed allocated size = 16384 ( 0.016 MB)
    type[ 10], name = "[TileRasterizerPolygon.c,line 8462] "NONOTFREEDCHECK:manager""
    current nr of blocks allocated = 1
    current total size allocated = 16 ( 0.000 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 16 ( 0.000 MB)
    summed allocated size = 16 ( 0.000 MB)
    type[ 11], name = "[TileRasterizerPolygon.c,line 8466] "NONOTFREEDCHECK:horizontalblurInfo""
    current nr of blocks allocated = 1
    current total size allocated = 20 ( 0.000 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 20 ( 0.000 MB)
    summed allocated size = 20 ( 0.000 MB)
    type[ 12], name = "[TileRasterizerPolygon.c,line 8471] "NONOTFREEDCHECK:horizontalAAblurInfo""
    current nr of blocks allocated = 5
    current total size allocated = 10260 ( 0.010 MB)
    peak nr of blocks allocated = 5
    peak size allocated = 10260 ( 0.010 MB)
    summed allocated size = 10260 ( 0.010 MB)
    type[ 13], name = "[TileRasterizerPolygon.c,line 8476] "NONOTFREEDCHECK:verticalblurInfo""
    current nr of blocks allocated = 1
    current total size allocated = 12 ( 0.000 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 12 ( 0.000 MB)
    summed allocated size = 12 ( 0.000 MB)
    type[ 14], name = "[TileRasterizerPolygon.c,line 8481] "NONOTFREEDCHECK:verticalAAblurInfo""
    current nr of blocks allocated = 3
    current total size allocated = 6156 ( 0.006 MB)
    peak nr of blocks allocated = 3
    peak size allocated = 6156 ( 0.006 MB)
    summed allocated size = 6156 ( 0.006 MB)
    type[ 15], name = "[TileRasterizerRotate.c,line 1710] "table2DLanczos2Data""
    current nr of blocks allocated = 1
    current total size allocated = 65568 ( 0.063 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 65568 ( 0.063 MB)
    summed allocated size = 65568 ( 0.063 MB)
    type[ 16], name = "[TileRasterizerRotate.c,line 1714] "table2DLanczos3Data""
    current nr of blocks allocated = 1
    current total size allocated = 147488 ( 0.141 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 147488 ( 0.141 MB)
    summed allocated size = 147488 ( 0.141 MB)
    type[ 17], name = "[debugtracing.c,line 186] "manager->threadData""
    current nr of blocks allocated = 1
    current total size allocated = 256 ( 0.000 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 256 ( 0.000 MB)
    summed allocated size = 256 ( 0.000 MB)
    type[ 18], name = "[debugtracing.c,line 202] "newThreadData""
    current nr of blocks allocated = 1
    current total size allocated = 65828 ( 0.063 MB)
    peak nr of blocks allocated = 7
    peak size allocated = 460796 ( 0.439 MB)
    summed allocated size = 658280 ( 0.628 MB)
    type[ 19], name = "[debugtracing.c,line 212] "newThreadData->stack""
    current nr of blocks allocated = 1
    current total size allocated = 34952 ( 0.033 MB)
    peak nr of blocks allocated = 7
    peak size allocated = 244664 ( 0.233 MB)
    summed allocated size = 349520 ( 0.333 MB)
    type[ 20], name = "[efctmgr.c,line 14] "NONOTFREEDCHECK:effectmanagerentries""
    current nr of blocks allocated = 1
    current total size allocated = 15600 ( 0.015 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 15600 ( 0.015 MB)
    summed allocated size = 15600 ( 0.015 MB)
    type[ 21], name = "[efctmgr.c,line 18] "NONOTFREEDCHECK:slideshowCategories""
    current nr of blocks allocated = 1
    current total size allocated = 400 ( 0.000 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 400 ( 0.000 MB)
    summed allocated size = 400 ( 0.000 MB)
    type[ 22], name = "[playeffect.c,line 17] "NONOTFREEDCHECK:TPlayEffectClassTable""
    current nr of blocks allocated = 1
    current total size allocated = 12 ( 0.000 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 12 ( 0.000 MB)
    summed allocated size = 12 ( 0.000 MB)
    type[ 23], name = "[playeffect.c,line 36] "NONOTFREEDCHECK:effect classes""
    current nr of blocks allocated = 1
    current total size allocated = 2048 ( 0.002 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 2048 ( 0.002 MB)
    summed allocated size = 3968 ( 0.004 MB)
    type[ 24], name = "[playevent.c,line 22] "play event""
    current nr of blocks allocated = 12
    current total size allocated = 384 ( 0.000 MB)
    peak nr of blocks allocated = 357
    peak size allocated = 11424 ( 0.011 MB)
    summed allocated size = 22688 ( 0.022 MB)
    type[ 25], name = "[playevent.c,line 52] "eventstring""
    current nr of blocks allocated = 12
    current total size allocated = 118 ( 0.000 MB)
    peak nr of blocks allocated = 13
    peak size allocated = 137 ( 0.000 MB)
    summed allocated size = 156 ( 0.000 MB)
    type[ 26], name = "[playmisc.c,line 101] "Smart Mutex""
    current nr of blocks allocated = 2
    current total size allocated = 56 ( 0.000 MB)
    peak nr of blocks allocated = 29
    peak size allocated = 812 ( 0.001 MB)
    summed allocated size = 1932 ( 0.002 MB)
    type[ 27], name = "[playobject.c,line 24] "NONOTFREEDCHECK:TPlayObjectClassTable""
    current nr of blocks allocated = 1
    current total size allocated = 12 ( 0.000 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 12 ( 0.000 MB)
    summed allocated size = 12 ( 0.000 MB)
    type[ 28], name = "[playobject.c,line 43] "NONOTFREEDCHECK:Play Object Types""
    current nr of blocks allocated = 1
    current total size allocated = 128 ( 0.000 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 128 ( 0.000 MB)
    summed allocated size = 192 ( 0.000 MB)
    type[ 29], name = "[playserver.c,line 1136] "TPlayShowParms""
    current nr of blocks allocated = 2
    current total size allocated = 1648 ( 0.002 MB)
    peak nr of blocks allocated = 2
    peak size allocated = 1648 ( 0.002 MB)
    summed allocated size = 1648 ( 0.002 MB)
    type[ 30], name = "[rasterizerCommon.c,line 226] "NONOTFREEDCHECK:allocatedFixedTable""
    current nr of blocks allocated = 1
    current total size allocated = 8258 ( 0.008 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 8258 ( 0.008 MB)
    summed allocated size = 8258 ( 0.008 MB)
    type[ 31], name = "[scalernew.c,line 281] "NONOTFREEDCHECK:allocatedFixedTable""
    current nr of blocks allocated = 1
    current total size allocated = 8258 ( 0.008 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 8258 ( 0.008 MB)
    summed allocated size = 8258 ( 0.008 MB)
    end of all NOT FREED types

    end of new memory debugger statistics
    registered standard show C:\Program Files\Photodex\ProShowGold\about.px
    -- HANDLE OPEN (start) --
    created with build: 2042
    -- HANDLE OPEN (start) --
    created with build: 2042
    PlayUnInit
    new memory debugger statistics for player

    current nr of blocks allocated = 81
    current total size allocated = 1010974 ( 0.964 MB)
    peak nr of blocks allocated = 2086
    peak size allocated = 9290647 ( 8.860 MB)
    summed allocated size = 231676987 ( 220.944 MB)
    info for memory pool : LOCAL
    current nr of blocks allocated = 12
    current total size allocated = 384 ( 0.000 MB)
    peak nr of blocks allocated = 1502
    peak size allocated = 395552 ( 0.377 MB)
    summed allocated size = 780248 ( 0.744 MB)
    info for memory pool : NORMAL
    current nr of blocks allocated = 69
    current total size allocated = 1010590 ( 0.964 MB)
    peak nr of blocks allocated = 784
    peak size allocated = 9265343 ( 8.836 MB)
    summed allocated size = 230896739 ( 220.200 MB)

    all NOT FREED types; number of types = 32
    type[ 0], name = "[TileRasterizer.c,line 699] "NONOTFREEDCHECK:TempBufferAlignedBufferCreate""
    current nr of blocks allocated = 2
    current total size allocated = 524544 ( 0.500 MB)
    peak nr of blocks allocated = 2
    peak size allocated = 524544 ( 0.500 MB)
    summed allocated size = 524544 ( 0.500 MB)
    type[ 1], name = "[TileRasterizer.c,line 1413] "NONOTFREEDCHECK:tileRasterizerTheGlobalData""
    current nr of blocks allocated = 1
    current total size allocated = 36 ( 0.000 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 36 ( 0.000 MB)
    summed allocated size = 36 ( 0.000 MB)
    type[ 2], name = "[TileRasterizer.c,line 1589] "NONOTFREEDCHECK:newBlocks""
    current nr of blocks allocated = 1
    current total size allocated = 8 ( 0.000 MB)
    peak nr of blocks allocated = 2
    peak size allocated = 12 ( 0.000 MB)
    summed allocated size = 12 ( 0.000 MB)
    type[ 3], name = "[TileRasterizer.c,line 1597] "NONOTFREEDCHECK:newBlock""
    current nr of blocks allocated = 2
    current total size allocated = 40 ( 0.000 MB)
    peak nr of blocks allocated = 2
    peak size allocated = 40 ( 0.000 MB)
    summed allocated size = 40 ( 0.000 MB)
    type[ 4], name = "[TileRasterizer.c,line 1601] "NONOTFREEDCHECK:newBlockEntries""
    current nr of blocks allocated = 2
    current total size allocated = 6144 ( 0.006 MB)
    peak nr of blocks allocated = 2
    peak size allocated = 6144 ( 0.006 MB)
    summed allocated size = 6144 ( 0.006 MB)
    type[ 5], name = "[TileRasterizerPolygon.c,line 1069] "NONOTFREEDCHECK:allocateddata""
    current nr of blocks allocated = 15
    current total size allocated = 96192 ( 0.092 MB)
    peak nr of blocks allocated = 15
    peak size allocated = 96192 ( 0.092 MB)
    summed allocated size = 96192 ( 0.092 MB)
    type[ 6], name = "[TileRasterizerPolygon.c,line 1099] "NONOTFREEDCHECK:tables""
    current nr of blocks allocated = 1
    current total size allocated = 12 ( 0.000 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 12 ( 0.000 MB)
    summed allocated size = 12 ( 0.000 MB)
    type[ 7], name = "[TileRasterizerPolygon.c,line 1104] "NONOTFREEDCHECK:tables[AAVbits]""
    current nr of blocks allocated = 3
    current total size allocated = 120 ( 0.000 MB)
    peak nr of blocks allocated = 3
    peak size allocated = 120 ( 0.000 MB)
    summed allocated size = 120 ( 0.000 MB)
    type[ 8], name = "[TileRasterizerPolygon.c,line 8024] "NONOTFREEDCHECK:outlineinfomanager""
    current nr of blocks allocated = 1
    current total size allocated = 16 ( 0.000 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 16 ( 0.000 MB)
    summed allocated size = 16 ( 0.000 MB)
    type[ 9], name = "[TileRasterizerPolygon.c,line 8028] "manager->infoEntries""
    current nr of blocks allocated = 1
    current total size allocated = 16384 ( 0.016 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 16384 ( 0.016 MB)
    summed allocated size = 16384 ( 0.016 MB)
    type[ 10], name = "[TileRasterizerPolygon.c,line 8462] "NONOTFREEDCHECK:manager""
    current nr of blocks allocated = 1
    current total size allocated = 16 ( 0.000 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 16 ( 0.000 MB)
    summed allocated size = 16 ( 0.000 MB)
    type[ 11], name = "[TileRasterizerPolygon.c,line 8466] "NONOTFREEDCHECK:horizontalblurInfo""
    current nr of blocks allocated = 1
    current total size allocated = 20 ( 0.000 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 20 ( 0.000 MB)
    summed allocated size = 20 ( 0.000 MB)
    type[ 12], name = "[TileRasterizerPolygon.c,line 8471] "NONOTFREEDCHECK:horizontalAAblurInfo""
    current nr of blocks allocated = 5
    current total size allocated = 10260 ( 0.010 MB)
    peak nr of blocks allocated = 5
    peak size allocated = 10260 ( 0.010 MB)
    summed allocated size = 10260 ( 0.010 MB)
    type[ 13], name = "[TileRasterizerPolygon.c,line 8476] "NONOTFREEDCHECK:verticalblurInfo""
    current nr of blocks allocated = 1
    current total size allocated = 12 ( 0.000 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 12 ( 0.000 MB)
    summed allocated size = 12 ( 0.000 MB)
    type[ 14], name = "[TileRasterizerPolygon.c,line 8481] "NONOTFREEDCHECK:verticalAAblurInfo""
    current nr of blocks allocated = 3
    current total size allocated = 6156 ( 0.006 MB)
    peak nr of blocks allocated = 3
    peak size allocated = 6156 ( 0.006 MB)
    summed allocated size = 6156 ( 0.006 MB)
    type[ 15], name = "[TileRasterizerRotate.c,line 1710] "table2DLanczos2Data""
    current nr of blocks allocated = 1
    current total size allocated = 65568 ( 0.063 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 65568 ( 0.063 MB)
    summed allocated size = 65568 ( 0.063 MB)
    type[ 16], name = "[TileRasterizerRotate.c,line 1714] "table2DLanczos3Data""
    current nr of blocks allocated = 1
    current total size allocated = 147488 ( 0.141 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 147488 ( 0.141 MB)
    summed allocated size = 147488 ( 0.141 MB)
    type[ 17], name = "[debugtracing.c,line 186] "manager->threadData""
    current nr of blocks allocated = 1
    current total size allocated = 256 ( 0.000 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 256 ( 0.000 MB)
    summed allocated size = 256 ( 0.000 MB)
    type[ 18], name = "[debugtracing.c,line 202] "newThreadData""
    current nr of blocks allocated = 1
    current total size allocated = 65828 ( 0.063 MB)
    peak nr of blocks allocated = 7
    peak size allocated = 460796 ( 0.439 MB)
    summed allocated size = 658280 ( 0.628 MB)
    type[ 19], name = "[debugtracing.c,line 212] "newThreadData->stack""
    current nr of blocks allocated = 1
    current total size allocated = 34952 ( 0.033 MB)
    peak nr of blocks allocated = 7
    peak size allocated = 244664 ( 0.233 MB)
    summed allocated size = 349520 ( 0.333 MB)
    type[ 20], name = "[efctmgr.c,line 14] "NONOTFREEDCHECK:effectmanagerentries""
    current nr of blocks allocated = 1
    current total size allocated = 15600 ( 0.015 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 15600 ( 0.015 MB)
    summed allocated size = 15600 ( 0.015 MB)
    type[ 21], name = "[efctmgr.c,line 18] "NONOTFREEDCHECK:slideshowCategories""
    current nr of blocks allocated = 1
    current total size allocated = 400 ( 0.000 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 400 ( 0.000 MB)
    summed allocated size = 400 ( 0.000 MB)
    type[ 22], name = "[playeffect.c,line 17] "NONOTFREEDCHECK:TPlayEffectClassTable""
    current nr of blocks allocated = 1
    current total size allocated = 12 ( 0.000 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 12 ( 0.000 MB)
    summed allocated size = 12 ( 0.000 MB)
    type[ 23], name = "[playeffect.c,line 36] "NONOTFREEDCHECK:effect classes""
    current nr of blocks allocated = 1
    current total size allocated = 2048 ( 0.002 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 2048 ( 0.002 MB)
    summed allocated size = 3968 ( 0.004 MB)
    type[ 24], name = "[playevent.c,line 22] "play event""
    current nr of blocks allocated = 12
    current total size allocated = 384 ( 0.000 MB)
    peak nr of blocks allocated = 790
    peak size allocated = 25280 ( 0.024 MB)
    summed allocated size = 41632 ( 0.040 MB)
    type[ 25], name = "[playevent.c,line 52] "eventstring""
    current nr of blocks allocated = 12
    current total size allocated = 118 ( 0.000 MB)
    peak nr of blocks allocated = 13
    peak size allocated = 137 ( 0.000 MB)
    summed allocated size = 156 ( 0.000 MB)
    type[ 26], name = "[playmisc.c,line 101] "Smart Mutex""
    current nr of blocks allocated = 2
    current total size allocated = 56 ( 0.000 MB)
    peak nr of blocks allocated = 30
    peak size allocated = 840 ( 0.001 MB)
    summed allocated size = 2156 ( 0.002 MB)
    type[ 27], name = "[playobject.c,line 24] "NONOTFREEDCHECK:TPlayObjectClassTable""
    current nr of blocks allocated = 1
    current total size allocated = 12 ( 0.000 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 12 ( 0.000 MB)
    summed allocated size = 12 ( 0.000 MB)
    type[ 28], name = "[playobject.c,line 43] "NONOTFREEDCHECK:Play Object Types""
    current nr of blocks allocated = 1
    current total size allocated = 128 ( 0.000 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 128 ( 0.000 MB)
    summed allocated size = 192 ( 0.000 MB)
    type[ 29], name = "[playserver.c,line 1136] "TPlayShowParms""
    current nr of blocks allocated = 2
    current total size allocated = 1648 ( 0.002 MB)
    peak nr of blocks allocated = 2
    peak size allocated = 1648 ( 0.002 MB)
    summed allocated size = 1648 ( 0.002 MB)
    type[ 30], name = "[rasterizerCommon.c,line 226] "NONOTFREEDCHECK:allocatedFixedTable""
    current nr of blocks allocated = 1
    current total size allocated = 8258 ( 0.008 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 8258 ( 0.008 MB)
    summed allocated size = 8258 ( 0.008 MB)
    type[ 31], name = "[scalernew.c,line 281] "NONOTFREEDCHECK:allocatedFixedTable""
    current nr of blocks allocated = 1
    current total size allocated = 8258 ( 0.008 MB)
    peak nr of blocks allocated = 1
    peak size allocated = 8258 ( 0.008 MB)
    summed allocated size = 8258 ( 0.008 MB)
    end of all NOT FREED types

    end of new memory debugger statistics
    0
  17. tilou73
     
    je vous est bien donné les bonne notes ?
    0
  18. gen-hackman
     
    non tu as les adresses au dessus
    0
    1. tilou73
       
      bonjour pouvons nous continué la désinfection de mon pc je vous est envoyé le derrnier scan hier merci beaucoup
      0
    2. tilou73
       
      c tout ce qui ma donné
      0
    3. tilou73
       
      re pour otmoveit sa va pas que dois-je faire exactement suis désolé mais suis pas expert de l'informatique
      0
    4. tilou73
       
      slt a toi ami réparateur lol voila g a j'ai un spyware.spy arsenallog trouver par avorax il ne veux pas le supprimé ni le mettre en quarantaine j'ai passer aussi avec spybot lui triuve rien j'ai fais avec malwarebyte's lui trouve rien non plus quel son les démarches a suivre pour sa suppression merci d'avance
      0
  19. tilou73
     
    je ne trouve pas le c:\-otmovelt\movedfiles/ ou est t'il
    0
  20. tilou73
     
    ###################### [ FindyKill V4.715 ]

    # User : poy - THIERRY
    # Emplacement : C:\Program Files\FindyKill
    # Outils Mis a jours 29/01/09 par Chiquitine29
    # Recherche effectuée à 17:20:47 le 04/02/2009
    # Windows XP - Internet Explorer 7.0.5730.13

    # [ FindyKill V4.715 - Scan ] ##############

    \\\\\\\\\\\\\\\\\\\\ [ Processus actifs ] ///////////////////

    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\csrss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
    C:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTServ.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\a-squared Free\a2service.exe
    C:\Program Files\Logitech\Easy Synchronization\servicestub.exe
    C:\Program Files\Logitech\Easy Synchronization\LogitechEasySync.exe
    C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\IoctlSvc.exe
    C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
    C:\PROGRA~1\SPEEDB~1\VideoAcceleratorService.exe
    C:\PROGRA~1\SPEEDB~1\VideoAcceleratorEngine.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\WINDOWS\System32\alg.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    C:\Program Files\Unlocker\UnlockerAssistant.exe
    C:\WINDOWS\RTHDCPL.EXE
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Arovax AntiSpyware\arovaxantispyware.exe
    C:\Program Files\DAP\DAP.EXE
    C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    C:\Program Files\Logitech\SetPoint\SetPoint.exe
    C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE
    C:\Program Files\Windows Live\Contacts\wlcomm.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE

    \\\\\\\\\\\\\\\\\\ [ Fichiers/Dossiers infectieux ] ///////////////////

    ################## [ C:\ ]

    ################## [ C:\WINDOWS ]

    ################## [ C:\WINDOWS\Prefetch ]

    ################## [ C:\WINDOWS\system32 ]

    ################## [ C:\WINDOWS\system32\drivers ]

    ################## [ C:\Documents and Settings\poy\Application Data ]

    ################## [ C:\DOCUME~1\poy\LOCALS~1\Temp ]

    \\\\\\\\\\\\\\\\\\ [ Registre / Startup ] ///////////////////

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
    ctfmon.exe=C:\WINDOWS\system32\ctfmon.exe
    swg=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    MSMSGS="C:\Program Files\Messenger\msmsgs.exe" /background
    msnmsgr="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    Arovax AntiSpyware=C:\Program Files\Arovax AntiSpyware\arovaxantispyware.exe /s
    DownloadAccelerator="C:\Program Files\DAP\DAP.EXE" /STARTUP

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
    avast!=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    ZoneAlarm Client="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
    UnlockerAssistant="C:\Program Files\Unlocker\UnlockerAssistant.exe"
    SkyTel=SkyTel.EXE
    RTHDCPL=RTHDCPL.EXE
    nwiz=nwiz.exe /install
    Alcmtr=ALCMTR.EXE
    Adobe Reader Speed Launcher="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    NeroFilterCheck=C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe
    Kernel and Hardware Abstraction Layer=KHALMNPR.EXE
    NvCplDaemon=RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
    <NO NAME>=
    HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL=
    Installed=1
    <NO NAME>=
    HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI=
    Installed=1
    NoChange=1
    <NO NAME>=
    HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS=
    Installed=1
    <NO NAME>=

    \\\\\\\\\\\\\\\\\\ [ Registre / Clés infectieuses ] ///////////////////

    \\\\\\\\\\\\\\\\\\ [ Etat / Services ] ///////////////////

    # Services : [ Auto=2 / Demande=3 / Désactivé=4 ]

    Ndisuio - # Type de démarrage = 3

    EapHost - # Type de démarrage = 3

    Ip6Fw - # Type de démarrage = 3

    SharedAccess - # Type de démarrage = 2

    wuauserv - # Type de démarrage = 2

    wscsvc - # Type de démarrage = 2

    \\\\\\\\\\\\\\\\\\ [ Recherche dans supports amovibles] ///////////////////

    # Informations :

    C: - Lecteur fixe

    # presence des fichiers :

    \\\\\\\\\\\\\\\\\\ [ Registre / Mountpoint2 ] ///////////////////

    -> Not found !

    ################## [ ! Fin du rapport # FindyKill V4.715 ! ]
    0
  • 1
  • 2