Fonctionnement perturbé du PC

ambul -
Ambul - 2 juin 2009 à 09:46

Bonjour,

A l'ouverture du PC, le message d'erreur suivant s'affiche :
"Direct Access components a rencontré un problème et doit fermer".

Je n'ai plus de son, plus d'imprimante alors que le pilote est installé (j'ai essayé de réinstallé le pilote et j'ai le message logiciel pilote correctement installé ou l'équivalent), les clés USB ne sont plus détectées, je n'ai plus le gestionnaire Internet d'Orange.

Il y avait des signes de dysfonctionnement (lenteur, plantage, programme ne répondant plus) mais il me semble que cela a empiré lorsque, sur les conseils d'un conseiller Orange assistance, j'ai essayé de réinstaller la suite logicielle Orange sans pouvoir aller jusqu'à la fin (message "Core.com initialisation is incorrect, Error not waiting" ).

Le PC fonctionne tout de même, je peux aller sur Internet, je peux me servir de Word et d'Excel.

Quelqu'un pourrait-il me mettre sur une piste.

Merci d'avance.

Afficher la suite

A voir également:

Fonctionnement perturbé du PC
Reinitialiser pc - Guide
Test performance pc - Guide
Pc lent - Guide
Downloader for pc - Télécharger - Téléchargement & Transfert
Forcer demarrage pc - Guide

31 réponses

Réponse 21 / 31

ambul

Bonjour et merci de suivre mon problème,

J'ai fait le scan Combofix comme tu me l'as indiqué.
Peut-être est-il utile que je te signale qu'en cours de scan la fenêtre suivante s'est affichée
"Combofix a détecté que la Console de Récupération Windows n'existe pas sur ce PC.
Vous auriez tout intérêt à l'installer.
Voulez-vous le faire maintenant?"Ce que j'ai fait.

Je te joins le rapport.

Ambul

ComboFix 09-05-06.02 - Propriétaire 07/05/2009 8:14.1 - NTFSx86
Microsoft Windows XP Édition familiale 5.1.2600.3.1252.33.1036.18.255.40 [GMT 2:00]
Lancé depuis: c:\documents and settings\Propriétaire\Mes documents\Logiciels internet\ComboFixnettoyeurCCM.exe
* Un nouveau point de restauration a été créé
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\docume~1\PROPRI~1\LOCALS~1\Temp\IadHide3.dll
c:\documents and settings\Propriétaire\Local Settings\Temp\IadHide3.dll
c:\program files\\setup.exe
c:\program files\autorun.inf
c:\program files\QUAD Utilities
c:\program files\QUAD Utilities\QUAD Registry Cleaner\Vista Scheduler.dll

.
((((((((((((((((((((((((((((( Fichiers créés du 2009-04-07 au 2009-05-07 ))))))))))))))))))))))))))))))))))))
.

2009-05-06 12:33 . 2009-05-06 12:33 -------- d-----w c:\program files\Ad-remover
2009-04-26 11:12 . 2009-04-26 11:18 -------- d-----w c:\program files\IrfanView
2009-04-25 18:20 . 2009-04-25 18:20 -------- d-----w c:\program files\Lavalys
2009-04-23 15:18 . 2009-04-23 15:18 -------- d-----w c:\documents and settings\NetworkService\Bureau
2009-04-23 14:12 . 2009-04-23 14:12 -------- d-----w c:\program files\util
2009-04-23 14:11 . 2009-04-23 14:12 -------- d-----w c:\program files\Setup
2009-04-23 14:11 . 2009-04-23 14:11 -------- d-----w c:\program files\fra
2009-04-23 14:11 . 2009-04-23 14:11 -------- d-----w c:\program files\Drivers
2009-04-23 14:11 . 2009-04-23 14:11 -------- d-----w c:\program files\common
2009-04-21 09:29 . 2009-04-21 09:29 -------- d-----w c:\program files\Fichiers communs\France Telecom
2009-04-21 08:51 . 2009-04-21 09:29 -------- d-----w c:\program files\Fichiers communs\France Telecom(2)
2009-04-16 06:40 . 2009-02-06 10:10 227840 -c----w c:\windows\system32\dllcache\wmiprvse.exe
2009-04-16 06:39 . 2009-03-06 14:20 286720 -c----w c:\windows\system32\dllcache\pdh.dll
2009-04-16 06:39 . 2009-02-09 11:23 111104 -c----w c:\windows\system32\dllcache\services.exe
2009-04-16 06:39 . 2009-02-09 10:53 401408 -c----w c:\windows\system32\dllcache\rpcss.dll
2009-04-16 06:38 . 2009-02-09 10:53 473600 -c----w c:\windows\system32\dllcache\fastprox.dll
2009-04-16 06:38 . 2009-02-09 10:53 685568 -c----w c:\windows\system32\dllcache\advapi32.dll
2009-04-16 06:38 . 2009-02-09 10:53 735744 -c----w c:\windows\system32\dllcache\lsasrv.dll
2009-04-16 06:38 . 2009-02-09 10:53 453120 -c----w c:\windows\system32\dllcache\wmiprvsd.dll
2009-04-16 06:38 . 2009-02-09 10:53 739840 -c----w c:\windows\system32\dllcache\ntdll.dll
2009-04-15 18:43 . 2008-12-16 12:31 354304 -c----w c:\windows\system32\dllcache\winhttp.dll
2009-04-15 18:43 . 2008-04-21 21:15 219136 -c----w c:\windows\system32\dllcache\wordpad.exe
2009-04-15 11:31 . 2009-04-23 13:18 -------- d-----w c:\program files\Web Photo Album
2009-04-15 11:25 . 2009-04-23 13:17 -------- d-----w c:\program files\VCW VicMan's Photo Editor
2009-04-09 16:46 . 2009-04-09 16:46 -------- d-----w c:\program files\Apple Software Update
2009-04-09 16:46 . 2009-04-09 16:46 -------- d-----w c:\documents and settings\All Users\Application Data\Apple

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-04-26 11:13 . 2004-06-26 09:22 -------- d-----w c:\program files\Google
2009-04-18 08:36 . 2002-05-10 05:02 544346 ----a-w c:\windows\system32\perfh00C.dat
2009-04-18 08:36 . 2002-05-10 05:02 111168 ----a-w c:\windows\system32\perfc00C.dat
2009-04-09 16:52 . 2008-03-12 12:21 -------- d-----w c:\program files\QuickTime
2009-04-05 18:42 . 2002-05-21 23:42 -------- d-----w c:\program files\Hewlett-Packard
2009-03-31 08:04 . 2009-01-19 10:12 -------- d-----w c:\program files\Tweak-XP Pro 4
2009-03-27 10:38 . 2009-03-27 10:38 -------- d-----w c:\program files\Microsoft Silverlight
2009-03-06 14:20 . 2002-09-04 01:50 286720 ----a-w c:\windows\system32\pdh.dll
2009-03-03 00:13 . 2002-05-10 05:02 826368 ----a-w c:\windows\system32\wininet.dll
2009-02-24 12:09 . 2009-02-24 12:29 15688 ----a-w c:\windows\system32\lsdelete.exe
2009-02-20 17:10 . 2005-04-27 12:18 78336 ----a-w c:\windows\system32\ieencode.dll
2009-02-10 17:06 . 2001-08-24 00:12 2068096 ----a-w c:\windows\system32\ntkrnlpa.exe
2009-02-09 14:05 . 2009-02-09 14:05 1846912 ----a-w c:\windows\system32\win32k.sys
2009-02-09 11:24 . 2002-09-04 01:49 2191104 ----a-w c:\windows\system32\ntoskrnl.exe
2009-02-09 11:23 . 2002-09-04 01:50 111104 ----a-w c:\windows\system32\services.exe
2009-02-09 10:53 . 2002-05-10 05:02 735744 ----a-w c:\windows\system32\lsasrv.dll
2009-02-09 10:53 . 2002-09-04 01:50 401408 ----a-w c:\windows\system32\rpcss.dll
2009-02-09 10:53 . 2002-09-04 01:48 685568 ----a-w c:\windows\system32\advapi32.dll
2009-02-09 10:53 . 2002-05-10 05:02 739840 ----a-w c:\windows\system32\ntdll.dll
2009-02-06 10:39 . 2002-09-04 01:50 35328 ----a-w c:\windows\system32\sc.exe
2003-04-22 17:24 . 2003-04-22 17:24 2736128 ------w c:\program files\aiodrv.msi
2003-04-22 17:20 . 2003-04-22 17:20 2605056 ------w c:\program files\aiosw.msi
2003-04-22 17:01 . 2003-04-22 17:01 16606 ----a-w c:\program files\hpomdl01.dat
2003-04-22 17:01 . 2003-04-22 17:01 241 ----a-w c:\program files\readme.html
2003-04-09 16:19 . 2003-04-09 16:19 2848 ----a-w c:\program files\hpound08.inf
2003-04-09 16:19 . 2003-04-09 16:19 14157 ----a-w c:\program files\hpousc08.inf
2003-04-09 16:00 . 2003-04-09 16:00 2889 ----a-w c:\program files\hpousb08.inf
2003-04-09 16:00 . 2003-04-09 16:00 4715 ----a-w c:\program files\hpoglu08.inf
2003-03-20 14:20 . 2003-03-20 14:20 22523 ----a-w c:\program files\HPZius12.cat
2003-03-20 14:20 . 2003-03-20 14:20 22082 ----a-w c:\program files\hpzist12.cat
2003-03-20 14:20 . 2003-03-20 14:20 24728 ----a-w c:\program files\HPZipr12.cat
2003-03-20 14:20 . 2003-03-20 14:20 22082 ----a-w c:\program files\HPZid412.cat
2003-03-20 14:20 . 2003-03-20 14:20 21641 ----a-w c:\program files\HPOunp08.cat
2003-03-20 14:20 . 2003-03-20 14:20 24285 ----a-w c:\program files\hposcu08.cat
2003-03-20 14:20 . 2003-03-20 14:20 205503 ----a-w c:\program files\hpoprn08.cat
2003-03-09 19:30 . 2003-03-09 19:30 3667 ----a-w c:\program files\hpzist12.inf
2003-03-09 19:30 . 2003-03-09 19:30 184320 ----a-w c:\program files\hpzscr07.dll
2003-03-09 19:30 . 2003-03-09 19:30 16352 ----a-w c:\program files\HPZUCI12.DLL
2003-03-09 19:30 . 2003-03-09 19:30 14285 ----a-w c:\program files\hpzius12.inf
2003-03-09 19:30 . 2003-03-09 19:30 10325 ----a-w c:\program files\hpzipr12.inf
2003-03-09 19:30 . 2003-03-09 19:30 63562 ----a-w c:\program files\hposcu08.inf
2003-03-09 19:30 . 2003-03-09 19:30 51266 ----a-w c:\program files\hpoprn08.inf
2003-03-09 19:30 . 2003-03-09 19:30 3898 ----a-w c:\program files\hpounp08.inf
2003-03-09 19:30 . 2003-03-09 19:30 33952 ----a-w c:\program files\hpzid412.inf
2003-03-09 19:30 . 2003-03-09 19:30 274432 ----a-w c:\program files\hpzglu07.exe
2003-03-09 19:30 . 2003-03-09 19:30 237568 ----a-w c:\program files\hpzc3212.dll
2003-03-09 19:30 . 2003-03-09 19:30 23186 ----a-w c:\program files\hpzcin06.ex_
2002-09-09 16:48 . 2002-09-09 16:48 22608 ----a-w c:\program files\usbprint.sys
2002-09-09 16:48 . 2002-09-09 16:48 12288 ----a-w c:\program files\usbmon.dll
2002-09-09 16:48 . 2002-09-09 16:48 458752 ----a-w c:\program files\tls704d.dll
2002-09-09 16:47 . 2002-09-09 16:47 254005 ----a-w c:\program files\msvcrt.dll
2002-09-09 16:47 . 2002-09-09 16:47 70656 ----a-w c:\program files\msvcirt.dll
2002-09-09 16:47 . 2002-09-09 16:47 55155 ----a-w c:\program files\hpzusb00.sy_
2002-09-09 16:47 . 2002-09-09 16:47 5705 ----a-w c:\program files\hpzuci02.dl_
2002-09-09 16:47 . 2002-09-09 16:47 25639 ----a-w c:\program files\hpzpom04.dl_
2002-09-09 16:47 . 2002-09-09 16:47 212992 ----a-w c:\program files\hpzpnp07.dll
2002-09-09 16:46 . 2002-09-09 16:46 49212 ----a-w c:\program files\hpzjvp01.dll
2002-09-09 16:46 . 2002-09-09 16:46 249913 ----a-w c:\program files\hpzjut01.dll
2002-09-09 16:46 . 2002-09-09 16:46 417849 ----a-w c:\program files\hpzjpp01.dll
2002-09-09 16:46 . 2002-09-09 16:46 28722 ----a-w c:\program files\hpzjlog.dll
2002-09-09 16:46 . 2002-09-09 16:46 52552 ----a-w c:\program files\hpziou01.dl_
2002-09-09 16:46 . 2002-09-09 16:46 46017 ----a-w c:\program files\hpzion00.sy_
2002-09-06 08:54 . 2002-09-06 08:54 995383 ----a-w c:\program files\MFC42.DLL
1995-09-20 15:16 . 2005-11-08 16:38 35088 -csha-w c:\windows\system32\msjint32.dll
1995-09-20 15:13 . 2005-11-08 16:38 977680 -csha-w c:\windows\system32\msjt3032.dll
1995-09-20 15:16 . 2005-11-08 16:38 23824 -csha-w c:\windows\system32\msjter32.dll
.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-01-02 39408]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="NvQTwk" [X]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-02-05 81000]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-01-02 136600]
"Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2001-12-18 212992]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-01-05 413696]
"PS2"="c:\windows\system32\ps2.exe" [2001-07-03 81920]
"KBD"="c:\hp\KBD\KBD.EXE" [2001-07-06 61440]
"IgfxTray"="c:\windows\System32\igfxtray.exe" [2002-03-27 155648]
"hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 52736]
"HotKeysCmds"="c:\windows\System32\hkcmd.exe" [2002-03-27 106496]
"dla"="c:\windows\system32\dla\tfswctrl.exe" [2002-05-09 102455]
"Ad-Watch"="c:\program files\Lavasoft\Ad-Aware\AAWTray.exe" [2009-02-24 509784]
"Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2009-04-26 1838592]
"nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2002-03-09 364544]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Suite"="regedit -s" [X]

c:\documents and settings\PIERRE\Menu D‚marrer\Programmes\D‚marrage\
D‚marrage d'Office.lnk - c:\program files\Microsoft Office\Office\OSA.EXE [1997-1-15 51984]

c:\documents and settings\Propri‚taire\Menu D‚marrer\Programmes\D‚marrage\
OpenOffice.org 3.0.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2008-9-12 384000]

c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
hp center.lnk - c:\program files\hp center\137903\Program\BackWeb-137903.exe [2002-5-22 16384]
hp psc 1000 series.lnk - c:\program files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe [2003-4-9 147456]
hpoddt01.exe.lnk - c:\program files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe [2003-4-6 28672]
Lancement rapide d'Adobe Reader.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2004-12-14 29696]

HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32
"wave2"= serwvdrv.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"EoEngine"="c:\program files\EoRezo\EoEngine.exe"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\hp center\\137903\\Program\\BackWeb-137903.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Kodak\\Kodak EasyShare software\\bin\\EasyShare.exe"=

R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [23/02/2009 21:13 64160]
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [23/02/2009 19:14 114768]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [23/02/2009 19:14 20560]

--- Autres Services/Pilotes en mémoire ---

*Deregistered* - gusvc
*Deregistered* - helpsvc
*Deregistered* - Lavasoft Ad-Aware Service
*Deregistered* - RpcSs
*Deregistered* - SENS
*Deregistered* - Spooler
*Deregistered* - srservice
*Deregistered* - winmgmt
*Deregistered* - wscsvc
*Deregistered* - wuauserv

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c94c2bef-8c94-11dd-ad6a-f569618eb134}]
\Shell\AutoRun\command - G:\LaunchU3.exe
.
Contenu du dossier 'Tâches planifiées'

2009-03-30 c:\windows\Tasks\Ad-Aware Update (Weekly).job
- c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-01-18 12:08]

2009-04-09 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]

2009-05-07 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-02-15 16:09]

2009-04-19 c:\windows\Tasks\GoogleUpdateTaskMachine.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-02-21 17:36]

2009-03-28 c:\windows\Tasks\Nettoyage de disque.job
- c:\windows\system32\cleanmgr.exe [2002-09-04 02:33]

2002-05-22 c:\windows\Tasks\Symantec NetDetect.job
- c:\program files\Symantec\LiveUpdate\NDETECT.EXE [2002-05-22 16:22]
.
- - - - ORPHELINS SUPPRIMES - - - -

HKCU-Run-Microsoft Works Update Detection - c:\program files\Microsoft Works\WkDetect.exe
HKLM-Run-ORAHSSSessionManager - c:\program files\OrangeHSS\SessionManager\SessionManager.exe

.
------- Examen supplémentaire -------
.
uInternet Settings,ProxyOverride = localhost
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
Trusted Zone: labanquepostale.fr\www
Trusted Zone: mappy.com
Trusted Zone: orange.fr
Trusted Zone: voila.fr\rw.search.ke
Trusted Zone: weborama.fr\orange
Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - c:\program files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-07 08:27
Windows 5.1.2600 Service Pack 3 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************
.
--------------------- DLLs chargées dans les processus actifs ---------------------

- - - - - - - > 'winlogon.exe'(628)
c:\windows\system32\WINSPOOL.DRV

- - - - - - - > 'explorer.exe'(176)
c:\windows\system32\eappprxy.dll
.
------------------------ Autres processus actifs ------------------------
.
c:\program files\Alwil Software\Avast4\aswUpdSv.exe
c:\program files\Lavasoft\Ad-Aware\AAWService.exe
c:\program files\Alwil Software\Avast4\ashServ.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\OpenOffice.org 3\program\soffice.exe
c:\program files\OpenOffice.org 3\program\soffice.bin
c:\program files\Java\jre6\bin\jucheck.exe
.
**************************************************************************
.
Heure de fin: 2009-05-07 8:44 - La machine a redémarré
ComboFix-quarantined-files.txt 2009-05-07 06:44

Avant-CF: 33 783 443 456 octets libres
Après-CF: 33 814 740 992 octets libres

WindowsXP-KB310994-SP2-Home-BootDisk-FRA.exe
[boot loader]
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Home Edition" /fastdetect /NoExecute=OptIn

245 --- E O F --- 2009-04-16 18:52

Réponse 22 / 31

ambul

Bonjour Chiquitine29,

Je ne vois pas la réponse que j'ai faite à ton message du 6/5 22h11.
Peut-être ai-je fait une fausse manoeuvre, je le renouvelle donc et je joins le rapport Combofix.

ComboFix 09-05-06.02 - Propriétaire 07/05/2009 8:14.1 - NTFSx86
Microsoft Windows XP Édition familiale 5.1.2600.3.1252.33.1036.18.255.40 [GMT 2:00]
Lancé depuis: c:\documents and settings\Propriétaire\Mes documents\Logiciels internet\ComboFixnettoyeurCCM.exe
* Un nouveau point de restauration a été créé
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\docume~1\PROPRI~1\LOCALS~1\Temp\IadHide3.dll
c:\documents and settings\Propriétaire\Local Settings\Temp\IadHide3.dll
c:\program files\\setup.exe
c:\program files\autorun.inf
c:\program files\QUAD Utilities
c:\program files\QUAD Utilities\QUAD Registry Cleaner\Vista Scheduler.dll

.
((((((((((((((((((((((((((((( Fichiers créés du 2009-04-07 au 2009-05-07 ))))))))))))))))))))))))))))))))))))
.

2009-05-06 12:33 . 2009-05-06 12:33 -------- d-----w c:\program files\Ad-remover
2009-04-26 11:12 . 2009-04-26 11:18 -------- d-----w c:\program files\IrfanView
2009-04-25 18:20 . 2009-04-25 18:20 -------- d-----w c:\program files\Lavalys
2009-04-23 15:18 . 2009-04-23 15:18 -------- d-----w c:\documents and settings\NetworkService\Bureau
2009-04-23 14:12 . 2009-04-23 14:12 -------- d-----w c:\program files\util
2009-04-23 14:11 . 2009-04-23 14:12 -------- d-----w c:\program files\Setup
2009-04-23 14:11 . 2009-04-23 14:11 -------- d-----w c:\program files\fra
2009-04-23 14:11 . 2009-04-23 14:11 -------- d-----w c:\program files\Drivers
2009-04-23 14:11 . 2009-04-23 14:11 -------- d-----w c:\program files\common
2009-04-21 09:29 . 2009-04-21 09:29 -------- d-----w c:\program files\Fichiers communs\France Telecom
2009-04-21 08:51 . 2009-04-21 09:29 -------- d-----w c:\program files\Fichiers communs\France Telecom(2)
2009-04-16 06:40 . 2009-02-06 10:10 227840 -c----w c:\windows\system32\dllcache\wmiprvse.exe
2009-04-16 06:39 . 2009-03-06 14:20 286720 -c----w c:\windows\system32\dllcache\pdh.dll
2009-04-16 06:39 . 2009-02-09 11:23 111104 -c----w c:\windows\system32\dllcache\services.exe
2009-04-16 06:39 . 2009-02-09 10:53 401408 -c----w c:\windows\system32\dllcache\rpcss.dll
2009-04-16 06:38 . 2009-02-09 10:53 473600 -c----w c:\windows\system32\dllcache\fastprox.dll
2009-04-16 06:38 . 2009-02-09 10:53 685568 -c----w c:\windows\system32\dllcache\advapi32.dll
2009-04-16 06:38 . 2009-02-09 10:53 735744 -c----w c:\windows\system32\dllcache\lsasrv.dll
2009-04-16 06:38 . 2009-02-09 10:53 453120 -c----w c:\windows\system32\dllcache\wmiprvsd.dll
2009-04-16 06:38 . 2009-02-09 10:53 739840 -c----w c:\windows\system32\dllcache\ntdll.dll
2009-04-15 18:43 . 2008-12-16 12:31 354304 -c----w c:\windows\system32\dllcache\winhttp.dll
2009-04-15 18:43 . 2008-04-21 21:15 219136 -c----w c:\windows\system32\dllcache\wordpad.exe
2009-04-15 11:31 . 2009-04-23 13:18 -------- d-----w c:\program files\Web Photo Album
2009-04-15 11:25 . 2009-04-23 13:17 -------- d-----w c:\program files\VCW VicMan's Photo Editor
2009-04-09 16:46 . 2009-04-09 16:46 -------- d-----w c:\program files\Apple Software Update
2009-04-09 16:46 . 2009-04-09 16:46 -------- d-----w c:\documents and settings\All Users\Application Data\Apple

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-04-26 11:13 . 2004-06-26 09:22 -------- d-----w c:\program files\Google
2009-04-18 08:36 . 2002-05-10 05:02 544346 ----a-w c:\windows\system32\perfh00C.dat
2009-04-18 08:36 . 2002-05-10 05:02 111168 ----a-w c:\windows\system32\perfc00C.dat
2009-04-09 16:52 . 2008-03-12 12:21 -------- d-----w c:\program files\QuickTime
2009-04-05 18:42 . 2002-05-21 23:42 -------- d-----w c:\program files\Hewlett-Packard
2009-03-31 08:04 . 2009-01-19 10:12 -------- d-----w c:\program files\Tweak-XP Pro 4
2009-03-27 10:38 . 2009-03-27 10:38 -------- d-----w c:\program files\Microsoft Silverlight
2009-03-06 14:20 . 2002-09-04 01:50 286720 ----a-w c:\windows\system32\pdh.dll
2009-03-03 00:13 . 2002-05-10 05:02 826368 ----a-w c:\windows\system32\wininet.dll
2009-02-24 12:09 . 2009-02-24 12:29 15688 ----a-w c:\windows\system32\lsdelete.exe
2009-02-20 17:10 . 2005-04-27 12:18 78336 ----a-w c:\windows\system32\ieencode.dll
2009-02-10 17:06 . 2001-08-24 00:12 2068096 ----a-w c:\windows\system32\ntkrnlpa.exe
2009-02-09 14:05 . 2009-02-09 14:05 1846912 ----a-w c:\windows\system32\win32k.sys
2009-02-09 11:24 . 2002-09-04 01:49 2191104 ----a-w c:\windows\system32\ntoskrnl.exe
2009-02-09 11:23 . 2002-09-04 01:50 111104 ----a-w c:\windows\system32\services.exe
2009-02-09 10:53 . 2002-05-10 05:02 735744 ----a-w c:\windows\system32\lsasrv.dll
2009-02-09 10:53 . 2002-09-04 01:50 401408 ----a-w c:\windows\system32\rpcss.dll
2009-02-09 10:53 . 2002-09-04 01:48 685568 ----a-w c:\windows\system32\advapi32.dll
2009-02-09 10:53 . 2002-05-10 05:02 739840 ----a-w c:\windows\system32\ntdll.dll
2009-02-06 10:39 . 2002-09-04 01:50 35328 ----a-w c:\windows\system32\sc.exe
2003-04-22 17:24 . 2003-04-22 17:24 2736128 ------w c:\program files\aiodrv.msi
2003-04-22 17:20 . 2003-04-22 17:20 2605056 ------w c:\program files\aiosw.msi
2003-04-22 17:01 . 2003-04-22 17:01 16606 ----a-w c:\program files\hpomdl01.dat
2003-04-22 17:01 . 2003-04-22 17:01 241 ----a-w c:\program files\readme.html
2003-04-09 16:19 . 2003-04-09 16:19 2848 ----a-w c:\program files\hpound08.inf
2003-04-09 16:19 . 2003-04-09 16:19 14157 ----a-w c:\program files\hpousc08.inf
2003-04-09 16:00 . 2003-04-09 16:00 2889 ----a-w c:\program files\hpousb08.inf
2003-04-09 16:00 . 2003-04-09 16:00 4715 ----a-w c:\program files\hpoglu08.inf
2003-03-20 14:20 . 2003-03-20 14:20 22523 ----a-w c:\program files\HPZius12.cat
2003-03-20 14:20 . 2003-03-20 14:20 22082 ----a-w c:\program files\hpzist12.cat
2003-03-20 14:20 . 2003-03-20 14:20 24728 ----a-w c:\program files\HPZipr12.cat
2003-03-20 14:20 . 2003-03-20 14:20 22082 ----a-w c:\program files\HPZid412.cat
2003-03-20 14:20 . 2003-03-20 14:20 21641 ----a-w c:\program files\HPOunp08.cat
2003-03-20 14:20 . 2003-03-20 14:20 24285 ----a-w c:\program files\hposcu08.cat
2003-03-20 14:20 . 2003-03-20 14:20 205503 ----a-w c:\program files\hpoprn08.cat
2003-03-09 19:30 . 2003-03-09 19:30 3667 ----a-w c:\program files\hpzist12.inf
2003-03-09 19:30 . 2003-03-09 19:30 184320 ----a-w c:\program files\hpzscr07.dll
2003-03-09 19:30 . 2003-03-09 19:30 16352 ----a-w c:\program files\HPZUCI12.DLL
2003-03-09 19:30 . 2003-03-09 19:30 14285 ----a-w c:\program files\hpzius12.inf
2003-03-09 19:30 . 2003-03-09 19:30 10325 ----a-w c:\program files\hpzipr12.inf
2003-03-09 19:30 . 2003-03-09 19:30 63562 ----a-w c:\program files\hposcu08.inf
2003-03-09 19:30 . 2003-03-09 19:30 51266 ----a-w c:\program files\hpoprn08.inf
2003-03-09 19:30 . 2003-03-09 19:30 3898 ----a-w c:\program files\hpounp08.inf
2003-03-09 19:30 . 2003-03-09 19:30 33952 ----a-w c:\program files\hpzid412.inf
2003-03-09 19:30 . 2003-03-09 19:30 274432 ----a-w c:\program files\hpzglu07.exe
2003-03-09 19:30 . 2003-03-09 19:30 237568 ----a-w c:\program files\hpzc3212.dll
2003-03-09 19:30 . 2003-03-09 19:30 23186 ----a-w c:\program files\hpzcin06.ex_
2002-09-09 16:48 . 2002-09-09 16:48 22608 ----a-w c:\program files\usbprint.sys
2002-09-09 16:48 . 2002-09-09 16:48 12288 ----a-w c:\program files\usbmon.dll
2002-09-09 16:48 . 2002-09-09 16:48 458752 ----a-w c:\program files\tls704d.dll
2002-09-09 16:47 . 2002-09-09 16:47 254005 ----a-w c:\program files\msvcrt.dll
2002-09-09 16:47 . 2002-09-09 16:47 70656 ----a-w c:\program files\msvcirt.dll
2002-09-09 16:47 . 2002-09-09 16:47 55155 ----a-w c:\program files\hpzusb00.sy_
2002-09-09 16:47 . 2002-09-09 16:47 5705 ----a-w c:\program files\hpzuci02.dl_
2002-09-09 16:47 . 2002-09-09 16:47 25639 ----a-w c:\program files\hpzpom04.dl_
2002-09-09 16:47 . 2002-09-09 16:47 212992 ----a-w c:\program files\hpzpnp07.dll
2002-09-09 16:46 . 2002-09-09 16:46 49212 ----a-w c:\program files\hpzjvp01.dll
2002-09-09 16:46 . 2002-09-09 16:46 249913 ----a-w c:\program files\hpzjut01.dll
2002-09-09 16:46 . 2002-09-09 16:46 417849 ----a-w c:\program files\hpzjpp01.dll
2002-09-09 16:46 . 2002-09-09 16:46 28722 ----a-w c:\program files\hpzjlog.dll
2002-09-09 16:46 . 2002-09-09 16:46 52552 ----a-w c:\program files\hpziou01.dl_
2002-09-09 16:46 . 2002-09-09 16:46 46017 ----a-w c:\program files\hpzion00.sy_
2002-09-06 08:54 . 2002-09-06 08:54 995383 ----a-w c:\program files\MFC42.DLL
1995-09-20 15:16 . 2005-11-08 16:38 35088 -csha-w c:\windows\system32\msjint32.dll
1995-09-20 15:13 . 2005-11-08 16:38 977680 -csha-w c:\windows\system32\msjt3032.dll
1995-09-20 15:16 . 2005-11-08 16:38 23824 -csha-w c:\windows\system32\msjter32.dll
.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-01-02 39408]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="NvQTwk" [X]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-02-05 81000]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-01-02 136600]
"Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2001-12-18 212992]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-01-05 413696]
"PS2"="c:\windows\system32\ps2.exe" [2001-07-03 81920]
"KBD"="c:\hp\KBD\KBD.EXE" [2001-07-06 61440]
"IgfxTray"="c:\windows\System32\igfxtray.exe" [2002-03-27 155648]
"hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 52736]
"HotKeysCmds"="c:\windows\System32\hkcmd.exe" [2002-03-27 106496]
"dla"="c:\windows\system32\dla\tfswctrl.exe" [2002-05-09 102455]
"Ad-Watch"="c:\program files\Lavasoft\Ad-Aware\AAWTray.exe" [2009-02-24 509784]
"Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2009-04-26 1838592]
"nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2002-03-09 364544]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Suite"="regedit -s" [X]

c:\documents and settings\PIERRE\Menu D‚marrer\Programmes\D‚marrage\
D‚marrage d'Office.lnk - c:\program files\Microsoft Office\Office\OSA.EXE [1997-1-15 51984]

c:\documents and settings\Propri‚taire\Menu D‚marrer\Programmes\D‚marrage\
OpenOffice.org 3.0.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2008-9-12 384000]

c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
hp center.lnk - c:\program files\hp center\137903\Program\BackWeb-137903.exe [2002-5-22 16384]
hp psc 1000 series.lnk - c:\program files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe [2003-4-9 147456]
hpoddt01.exe.lnk - c:\program files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe [2003-4-6 28672]
Lancement rapide d'Adobe Reader.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2004-12-14 29696]

HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32
"wave2"= serwvdrv.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"EoEngine"="c:\program files\EoRezo\EoEngine.exe"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\hp center\\137903\\Program\\BackWeb-137903.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Kodak\\Kodak EasyShare software\\bin\\EasyShare.exe"=

R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [23/02/2009 21:13 64160]
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [23/02/2009 19:14 114768]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [23/02/2009 19:14 20560]

--- Autres Services/Pilotes en mémoire ---

*Deregistered* - gusvc
*Deregistered* - helpsvc
*Deregistered* - Lavasoft Ad-Aware Service
*Deregistered* - RpcSs
*Deregistered* - SENS
*Deregistered* - Spooler
*Deregistered* - srservice
*Deregistered* - winmgmt
*Deregistered* - wscsvc
*Deregistered* - wuauserv

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c94c2bef-8c94-11dd-ad6a-f569618eb134}]
\Shell\AutoRun\command - G:\LaunchU3.exe
.
Contenu du dossier 'Tâches planifiées'

2009-03-30 c:\windows\Tasks\Ad-Aware Update (Weekly).job
- c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-01-18 12:08]

2009-04-09 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]

2009-05-07 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-02-15 16:09]

2009-04-19 c:\windows\Tasks\GoogleUpdateTaskMachine.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-02-21 17:36]

2009-03-28 c:\windows\Tasks\Nettoyage de disque.job
- c:\windows\system32\cleanmgr.exe [2002-09-04 02:33]

2002-05-22 c:\windows\Tasks\Symantec NetDetect.job
- c:\program files\Symantec\LiveUpdate\NDETECT.EXE [2002-05-22 16:22]
.
- - - - ORPHELINS SUPPRIMES - - - -

HKCU-Run-Microsoft Works Update Detection - c:\program files\Microsoft Works\WkDetect.exe
HKLM-Run-ORAHSSSessionManager - c:\program files\OrangeHSS\SessionManager\SessionManager.exe

.
------- Examen supplémentaire -------
.
uInternet Settings,ProxyOverride = localhost
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
Trusted Zone: labanquepostale.fr\www
Trusted Zone: mappy.com
Trusted Zone: orange.fr
Trusted Zone: voila.fr\rw.search.ke
Trusted Zone: weborama.fr\orange
Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - c:\program files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-07 08:27
Windows 5.1.2600 Service Pack 3 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************
.
--------------------- DLLs chargées dans les processus actifs ---------------------

- - - - - - - > 'winlogon.exe'(628)
c:\windows\system32\WINSPOOL.DRV

- - - - - - - > 'explorer.exe'(176)
c:\windows\system32\eappprxy.dll
.
------------------------ Autres processus actifs ------------------------
.
c:\program files\Alwil Software\Avast4\aswUpdSv.exe
c:\program files\Lavasoft\Ad-Aware\AAWService.exe
c:\program files\Alwil Software\Avast4\ashServ.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\OpenOffice.org 3\program\soffice.exe
c:\program files\OpenOffice.org 3\program\soffice.bin
c:\program files\Java\jre6\bin\jucheck.exe
.
**************************************************************************
.
Heure de fin: 2009-05-07 8:44 - La machine a redémarré
ComboFix-quarantined-files.txt 2009-05-07 06:44

Avant-CF: 33 783 443 456 octets libres
Après-CF: 33 814 740 992 octets libres

WindowsXP-KB310994-SP2-Home-BootDisk-FRA.exe
[boot loader]
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Home Edition" /fastdetect /NoExecute=OptIn

245 --- E O F --- 2009-04-16 18:52

Réponse 23 / 31

ambul

Bonjour Chiquitine,

Voici le rapport Combofix demandé dans ton message du 6/5 22h11.

ComboFix 09-05-06.02 - Propriétaire 07/05/2009 8:14.1 - NTFSx86
Microsoft Windows XP Édition familiale 5.1.2600.3.1252.33.1036.18.255.40 [GMT 2:00]
Lancé depuis: c:\documents and settings\Propriétaire\Mes documents\Logiciels internet\ComboFixnettoyeurCCM.exe
* Un nouveau point de restauration a été créé
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\docume~1\PROPRI~1\LOCALS~1\Temp\IadHide3.dll
c:\documents and settings\Propriétaire\Local Settings\Temp\IadHide3.dll
c:\program files\\setup.exe
c:\program files\autorun.inf
c:\program files\QUAD Utilities
c:\program files\QUAD Utilities\QUAD Registry Cleaner\Vista Scheduler.dll

.
((((((((((((((((((((((((((((( Fichiers créés du 2009-04-07 au 2009-05-07 ))))))))))))))))))))))))))))))))))))
.

2009-05-06 12:33 . 2009-05-06 12:33 -------- d-----w c:\program files\Ad-remover
2009-04-26 11:12 . 2009-04-26 11:18 -------- d-----w c:\program files\IrfanView
2009-04-25 18:20 . 2009-04-25 18:20 -------- d-----w c:\program files\Lavalys
2009-04-23 15:18 . 2009-04-23 15:18 -------- d-----w c:\documents and settings\NetworkService\Bureau
2009-04-23 14:12 . 2009-04-23 14:12 -------- d-----w c:\program files\util
2009-04-23 14:11 . 2009-04-23 14:12 -------- d-----w c:\program files\Setup
2009-04-23 14:11 . 2009-04-23 14:11 -------- d-----w c:\program files\fra
2009-04-23 14:11 . 2009-04-23 14:11 -------- d-----w c:\program files\Drivers
2009-04-23 14:11 . 2009-04-23 14:11 -------- d-----w c:\program files\common
2009-04-21 09:29 . 2009-04-21 09:29 -------- d-----w c:\program files\Fichiers communs\France Telecom
2009-04-21 08:51 . 2009-04-21 09:29 -------- d-----w c:\program files\Fichiers communs\France Telecom(2)
2009-04-16 06:40 . 2009-02-06 10:10 227840 -c----w c:\windows\system32\dllcache\wmiprvse.exe
2009-04-16 06:39 . 2009-03-06 14:20 286720 -c----w c:\windows\system32\dllcache\pdh.dll
2009-04-16 06:39 . 2009-02-09 11:23 111104 -c----w c:\windows\system32\dllcache\services.exe
2009-04-16 06:39 . 2009-02-09 10:53 401408 -c----w c:\windows\system32\dllcache\rpcss.dll
2009-04-16 06:38 . 2009-02-09 10:53 473600 -c----w c:\windows\system32\dllcache\fastprox.dll
2009-04-16 06:38 . 2009-02-09 10:53 685568 -c----w c:\windows\system32\dllcache\advapi32.dll
2009-04-16 06:38 . 2009-02-09 10:53 735744 -c----w c:\windows\system32\dllcache\lsasrv.dll
2009-04-16 06:38 . 2009-02-09 10:53 453120 -c----w c:\windows\system32\dllcache\wmiprvsd.dll
2009-04-16 06:38 . 2009-02-09 10:53 739840 -c----w c:\windows\system32\dllcache\ntdll.dll
2009-04-15 18:43 . 2008-12-16 12:31 354304 -c----w c:\windows\system32\dllcache\winhttp.dll
2009-04-15 18:43 . 2008-04-21 21:15 219136 -c----w c:\windows\system32\dllcache\wordpad.exe
2009-04-15 11:31 . 2009-04-23 13:18 -------- d-----w c:\program files\Web Photo Album
2009-04-15 11:25 . 2009-04-23 13:17 -------- d-----w c:\program files\VCW VicMan's Photo Editor
2009-04-09 16:46 . 2009-04-09 16:46 -------- d-----w c:\program files\Apple Software Update
2009-04-09 16:46 . 2009-04-09 16:46 -------- d-----w c:\documents and settings\All Users\Application Data\Apple

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-04-26 11:13 . 2004-06-26 09:22 -------- d-----w c:\program files\Google
2009-04-18 08:36 . 2002-05-10 05:02 544346 ----a-w c:\windows\system32\perfh00C.dat
2009-04-18 08:36 . 2002-05-10 05:02 111168 ----a-w c:\windows\system32\perfc00C.dat
2009-04-09 16:52 . 2008-03-12 12:21 -------- d-----w c:\program files\QuickTime
2009-04-05 18:42 . 2002-05-21 23:42 -------- d-----w c:\program files\Hewlett-Packard
2009-03-31 08:04 . 2009-01-19 10:12 -------- d-----w c:\program files\Tweak-XP Pro 4
2009-03-27 10:38 . 2009-03-27 10:38 -------- d-----w c:\program files\Microsoft Silverlight
2009-03-06 14:20 . 2002-09-04 01:50 286720 ----a-w c:\windows\system32\pdh.dll
2009-03-03 00:13 . 2002-05-10 05:02 826368 ----a-w c:\windows\system32\wininet.dll
2009-02-24 12:09 . 2009-02-24 12:29 15688 ----a-w c:\windows\system32\lsdelete.exe
2009-02-20 17:10 . 2005-04-27 12:18 78336 ----a-w c:\windows\system32\ieencode.dll
2009-02-10 17:06 . 2001-08-24 00:12 2068096 ----a-w c:\windows\system32\ntkrnlpa.exe
2009-02-09 14:05 . 2009-02-09 14:05 1846912 ----a-w c:\windows\system32\win32k.sys
2009-02-09 11:24 . 2002-09-04 01:49 2191104 ----a-w c:\windows\system32\ntoskrnl.exe
2009-02-09 11:23 . 2002-09-04 01:50 111104 ----a-w c:\windows\system32\services.exe
2009-02-09 10:53 . 2002-05-10 05:02 735744 ----a-w c:\windows\system32\lsasrv.dll
2009-02-09 10:53 . 2002-09-04 01:50 401408 ----a-w c:\windows\system32\rpcss.dll
2009-02-09 10:53 . 2002-09-04 01:48 685568 ----a-w c:\windows\system32\advapi32.dll
2009-02-09 10:53 . 2002-05-10 05:02 739840 ----a-w c:\windows\system32\ntdll.dll
2009-02-06 10:39 . 2002-09-04 01:50 35328 ----a-w c:\windows\system32\sc.exe
2003-04-22 17:24 . 2003-04-22 17:24 2736128 ------w c:\program files\aiodrv.msi
2003-04-22 17:20 . 2003-04-22 17:20 2605056 ------w c:\program files\aiosw.msi
2003-04-22 17:01 . 2003-04-22 17:01 16606 ----a-w c:\program files\hpomdl01.dat
2003-04-22 17:01 . 2003-04-22 17:01 241 ----a-w c:\program files\readme.html
2003-04-09 16:19 . 2003-04-09 16:19 2848 ----a-w c:\program files\hpound08.inf
2003-04-09 16:19 . 2003-04-09 16:19 14157 ----a-w c:\program files\hpousc08.inf
2003-04-09 16:00 . 2003-04-09 16:00 2889 ----a-w c:\program files\hpousb08.inf
2003-04-09 16:00 . 2003-04-09 16:00 4715 ----a-w c:\program files\hpoglu08.inf
2003-03-20 14:20 . 2003-03-20 14:20 22523 ----a-w c:\program files\HPZius12.cat
2003-03-20 14:20 . 2003-03-20 14:20 22082 ----a-w c:\program files\hpzist12.cat
2003-03-20 14:20 . 2003-03-20 14:20 24728 ----a-w c:\program files\HPZipr12.cat
2003-03-20 14:20 . 2003-03-20 14:20 22082 ----a-w c:\program files\HPZid412.cat
2003-03-20 14:20 . 2003-03-20 14:20 21641 ----a-w c:\program files\HPOunp08.cat
2003-03-20 14:20 . 2003-03-20 14:20 24285 ----a-w c:\program files\hposcu08.cat
2003-03-20 14:20 . 2003-03-20 14:20 205503 ----a-w c:\program files\hpoprn08.cat
2003-03-09 19:30 . 2003-03-09 19:30 3667 ----a-w c:\program files\hpzist12.inf
2003-03-09 19:30 . 2003-03-09 19:30 184320 ----a-w c:\program files\hpzscr07.dll
2003-03-09 19:30 . 2003-03-09 19:30 16352 ----a-w c:\program files\HPZUCI12.DLL
2003-03-09 19:30 . 2003-03-09 19:30 14285 ----a-w c:\program files\hpzius12.inf
2003-03-09 19:30 . 2003-03-09 19:30 10325 ----a-w c:\program files\hpzipr12.inf
2003-03-09 19:30 . 2003-03-09 19:30 63562 ----a-w c:\program files\hposcu08.inf
2003-03-09 19:30 . 2003-03-09 19:30 51266 ----a-w c:\program files\hpoprn08.inf
2003-03-09 19:30 . 2003-03-09 19:30 3898 ----a-w c:\program files\hpounp08.inf
2003-03-09 19:30 . 2003-03-09 19:30 33952 ----a-w c:\program files\hpzid412.inf
2003-03-09 19:30 . 2003-03-09 19:30 274432 ----a-w c:\program files\hpzglu07.exe
2003-03-09 19:30 . 2003-03-09 19:30 237568 ----a-w c:\program files\hpzc3212.dll
2003-03-09 19:30 . 2003-03-09 19:30 23186 ----a-w c:\program files\hpzcin06.ex_
2002-09-09 16:48 . 2002-09-09 16:48 22608 ----a-w c:\program files\usbprint.sys
2002-09-09 16:48 . 2002-09-09 16:48 12288 ----a-w c:\program files\usbmon.dll
2002-09-09 16:48 . 2002-09-09 16:48 458752 ----a-w c:\program files\tls704d.dll
2002-09-09 16:47 . 2002-09-09 16:47 254005 ----a-w c:\program files\msvcrt.dll
2002-09-09 16:47 . 2002-09-09 16:47 70656 ----a-w c:\program files\msvcirt.dll
2002-09-09 16:47 . 2002-09-09 16:47 55155 ----a-w c:\program files\hpzusb00.sy_
2002-09-09 16:47 . 2002-09-09 16:47 5705 ----a-w c:\program files\hpzuci02.dl_
2002-09-09 16:47 . 2002-09-09 16:47 25639 ----a-w c:\program files\hpzpom04.dl_
2002-09-09 16:47 . 2002-09-09 16:47 212992 ----a-w c:\program files\hpzpnp07.dll
2002-09-09 16:46 . 2002-09-09 16:46 49212 ----a-w c:\program files\hpzjvp01.dll
2002-09-09 16:46 . 2002-09-09 16:46 249913 ----a-w c:\program files\hpzjut01.dll
2002-09-09 16:46 . 2002-09-09 16:46 417849 ----a-w c:\program files\hpzjpp01.dll
2002-09-09 16:46 . 2002-09-09 16:46 28722 ----a-w c:\program files\hpzjlog.dll
2002-09-09 16:46 . 2002-09-09 16:46 52552 ----a-w c:\program files\hpziou01.dl_
2002-09-09 16:46 . 2002-09-09 16:46 46017 ----a-w c:\program files\hpzion00.sy_
2002-09-06 08:54 . 2002-09-06 08:54 995383 ----a-w c:\program files\MFC42.DLL
1995-09-20 15:16 . 2005-11-08 16:38 35088 -csha-w c:\windows\system32\msjint32.dll
1995-09-20 15:13 . 2005-11-08 16:38 977680 -csha-w c:\windows\system32\msjt3032.dll
1995-09-20 15:16 . 2005-11-08 16:38 23824 -csha-w c:\windows\system32\msjter32.dll
.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-01-02 39408]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="NvQTwk" [X]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-02-05 81000]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-01-02 136600]
"Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2001-12-18 212992]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-01-05 413696]
"PS2"="c:\windows\system32\ps2.exe" [2001-07-03 81920]
"KBD"="c:\hp\KBD\KBD.EXE" [2001-07-06 61440]
"IgfxTray"="c:\windows\System32\igfxtray.exe" [2002-03-27 155648]
"hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 52736]
"HotKeysCmds"="c:\windows\System32\hkcmd.exe" [2002-03-27 106496]
"dla"="c:\windows\system32\dla\tfswctrl.exe" [2002-05-09 102455]
"Ad-Watch"="c:\program files\Lavasoft\Ad-Aware\AAWTray.exe" [2009-02-24 509784]
"Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2009-04-26 1838592]
"nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2002-03-09 364544]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Suite"="regedit -s" [X]

c:\documents and settings\PIERRE\Menu D‚marrer\Programmes\D‚marrage\
D‚marrage d'Office.lnk - c:\program files\Microsoft Office\Office\OSA.EXE [1997-1-15 51984]

c:\documents and settings\Propri‚taire\Menu D‚marrer\Programmes\D‚marrage\
OpenOffice.org 3.0.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2008-9-12 384000]

c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
hp center.lnk - c:\program files\hp center\137903\Program\BackWeb-137903.exe [2002-5-22 16384]
hp psc 1000 series.lnk - c:\program files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe [2003-4-9 147456]
hpoddt01.exe.lnk - c:\program files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe [2003-4-6 28672]
Lancement rapide d'Adobe Reader.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2004-12-14 29696]

HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32
"wave2"= serwvdrv.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"EoEngine"="c:\program files\EoRezo\EoEngine.exe"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\hp center\\137903\\Program\\BackWeb-137903.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Kodak\\Kodak EasyShare software\\bin\\EasyShare.exe"=

R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [23/02/2009 21:13 64160]
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [23/02/2009 19:14 114768]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [23/02/2009 19:14 20560]

--- Autres Services/Pilotes en mémoire ---

*Deregistered* - gusvc
*Deregistered* - helpsvc
*Deregistered* - Lavasoft Ad-Aware Service
*Deregistered* - RpcSs
*Deregistered* - SENS
*Deregistered* - Spooler
*Deregistered* - srservice
*Deregistered* - winmgmt
*Deregistered* - wscsvc
*Deregistered* - wuauserv

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c94c2bef-8c94-11dd-ad6a-f569618eb134}]
\Shell\AutoRun\command - G:\LaunchU3.exe
.
Contenu du dossier 'Tâches planifiées'

2009-03-30 c:\windows\Tasks\Ad-Aware Update (Weekly).job
- c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-01-18 12:08]

2009-04-09 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]

2009-05-07 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-02-15 16:09]

2009-04-19 c:\windows\Tasks\GoogleUpdateTaskMachine.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-02-21 17:36]

2009-03-28 c:\windows\Tasks\Nettoyage de disque.job
- c:\windows\system32\cleanmgr.exe [2002-09-04 02:33]

2002-05-22 c:\windows\Tasks\Symantec NetDetect.job
- c:\program files\Symantec\LiveUpdate\NDETECT.EXE [2002-05-22 16:22]
.
- - - - ORPHELINS SUPPRIMES - - - -

HKCU-Run-Microsoft Works Update Detection - c:\program files\Microsoft Works\WkDetect.exe
HKLM-Run-ORAHSSSessionManager - c:\program files\OrangeHSS\SessionManager\SessionManager.exe

.
------- Examen supplémentaire -------
.
uInternet Settings,ProxyOverride = localhost
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
Trusted Zone: labanquepostale.fr\www
Trusted Zone: mappy.com
Trusted Zone: orange.fr
Trusted Zone: voila.fr\rw.search.ke
Trusted Zone: weborama.fr\orange
Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - c:\program files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-07 08:27
Windows 5.1.2600 Service Pack 3 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************
.
--------------------- DLLs chargées dans les processus actifs ---------------------

- - - - - - - > 'winlogon.exe'(628)
c:\windows\system32\WINSPOOL.DRV

- - - - - - - > 'explorer.exe'(176)
c:\windows\system32\eappprxy.dll
.
------------------------ Autres processus actifs ------------------------
.
c:\program files\Alwil Software\Avast4\aswUpdSv.exe
c:\program files\Lavasoft\Ad-Aware\AAWService.exe
c:\program files\Alwil Software\Avast4\ashServ.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\OpenOffice.org 3\program\soffice.exe
c:\program files\OpenOffice.org 3\program\soffice.bin
c:\program files\Java\jre6\bin\jucheck.exe
.
**************************************************************************
.
Heure de fin: 2009-05-07 8:44 - La machine a redémarré
ComboFix-quarantined-files.txt 2009-05-07 06:44

Avant-CF: 33 783 443 456 octets libres
Après-CF: 33 814 740 992 octets libres

WindowsXP-KB310994-SP2-Home-BootDisk-FRA.exe
[boot loader]
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Home Edition" /fastdetect /NoExecute=OptIn

245 --- E O F --- 2009-04-16 18:52

Réponse 24 / 31

Utilisateur anonyme

Copie le texte ci-dessous :

Folder::
c:\program files\EoRezo
C:\Documents and Settings\Propriétaire\Application Data\EoRezo
c:\program files\Ad-remover

Registry::
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Suite"=-
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"EoEngine"=-
"Ad-Watch"=-

DirLook::
c:\program files\IrfanView
c:\program files\Lavalys
c:\documents and settings\NetworkService\Bureau
c:\program files\util
c:\program files\Setup
c:\program files\fra
c:\program files\Drivers
c:\program files\common
c:\program files\Fichiers communs\France Telecom
c:\program files\Fichiers communs\France Telecom(2)

Ouvre le Bloc-Notes puis colle le texte copié.
(Démarrer\Tous les programmes\Accessoires\Bloc notes.)
Sauvegarde ce fichier sous le nom de CFScript.txt

Glisse maintenant le fichier CFScript.txt dans Combofix.exe comme ceci :

Cela va relancer Combofix,

Une fenêtre bleue va apparaître: au message qui apparaît ( Type 1 to continue, or 2 to abort) , tape 1 puis valide.

Patiente le temps du scan.Le bureau va disparaître à plusieurs reprises: c'est normal!

Ne touche à rien tant que le scan n'est pas terminé.

Après redémarrage, poste le contenu du rapport Combofix.txt

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question

Réponse 25 / 31

ambul

Bonjour,

Je te joins le rapport Combofix demandé.
Je pense avoir exécuté correctement tout ce que tu m'as dit de faire.
3 petites précisions :
-je n'avais pas d'icône Combofix sur le bureau, je l'ai installée.
-lorsque j'ai fait glisser CFScript sur l'icône Combofix, une fenêtre s'est ouverte me demandant de cliquer sur "EXECUTER", ce que j'ai fait.
-Combofix a démarré et m'a proposé une mise à jour que j'ai acceptée.

Puis l'analyse s'est déroulée, je pense normalement.
Le compte-rendu est apparu après une durée assez longue (1 heure et demie).

Voici le rapport.

ComboFix 09-05-07.06 - Propriétaire 08/05/2009 9:29.2 - NTFSx86
Microsoft Windows XP Édition familiale 5.1.2600.3.1252.33.1036.18.255.64 [GMT 2:00]
Lancé depuis: c:\documents and settings\Propriétaire\Mes documents\Logiciels internet\ComboFixnettoyeurCCM.exe
Commutateurs utilisés :: c:\documents and settings\Propriétaire\Mes documents\Fonctionnement PC\CFScript.txt.txt
AV: avast! antivirus 4.8.1335 [VPS 090507-0] *On-access scanning disabled* (Updated)
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\docume~1\PROPRI~1\LOCALS~1\Temp\IadHide3.dll
c:\documents and settings\Propriétaire\Local Settings\Temp\IadHide3.dll
c:\program files\Ad-remover
c:\program files\Ad-remover\AD-remover.bat
c:\program files\Ad-remover\Icône.ico
c:\program files\Ad-remover\TOOLS\1\AdL.dat
c:\program files\Ad-remover\TOOLS\1\AdLB.dat
c:\program files\Ad-remover\TOOLS\1\AdLC.dat
c:\program files\Ad-remover\TOOLS\1\AdLP.dat
c:\program files\Ad-remover\TOOLS\1\CLSID.dat
c:\program files\Ad-remover\TOOLS\1\Data.dat
c:\program files\Ad-remover\TOOLS\1\HashMD5.dat
c:\program files\Ad-remover\TOOLS\1\List.dat
c:\program files\Ad-remover\TOOLS\2\AdL.dat
c:\program files\Ad-remover\TOOLS\2\AdLB.dat
c:\program files\Ad-remover\TOOLS\2\AdLC.dat
c:\program files\Ad-remover\TOOLS\2\AdLP.dat
c:\program files\Ad-remover\TOOLS\2\List.dat
c:\program files\Ad-remover\TOOLS\3\AdL.dat
c:\program files\Ad-remover\TOOLS\3\AdLB.dat
c:\program files\Ad-remover\TOOLS\3\AdLC.dat
c:\program files\Ad-remover\TOOLS\3\AdLP.dat
c:\program files\Ad-remover\TOOLS\3\List.dat
c:\program files\Ad-remover\TOOLS\4\AdL.dat
c:\program files\Ad-remover\TOOLS\4\AdLB.dat
c:\program files\Ad-remover\TOOLS\4\AdLC.dat
c:\program files\Ad-remover\TOOLS\4\AdLP.dat
c:\program files\Ad-remover\TOOLS\4\List.dat
c:\program files\Ad-remover\TOOLS\4\MD5.dat
c:\program files\Ad-remover\TOOLS\ADS.scr
c:\program files\Ad-remover\TOOLS\Advert.ncl
c:\program files\Ad-remover\TOOLS\BACKUP\Ad-Report-Scan-06.05.2009.log
c:\program files\Ad-remover\TOOLS\BACKUP\Registry 06-05-2009\default
c:\program files\Ad-remover\TOOLS\BACKUP\Registry 06-05-2009\ERDNT.CON
c:\program files\Ad-remover\TOOLS\BACKUP\Registry 06-05-2009\ERDNT.EXE
c:\program files\Ad-remover\TOOLS\BACKUP\Registry 06-05-2009\ERDNT.INF
c:\program files\Ad-remover\TOOLS\BACKUP\Registry 06-05-2009\ERDNTDOS.LOC
c:\program files\Ad-remover\TOOLS\BACKUP\Registry 06-05-2009\ERDNTWIN.LOC
c:\program files\Ad-remover\TOOLS\BACKUP\Registry 06-05-2009\SAM
c:\program files\Ad-remover\TOOLS\BACKUP\Registry 06-05-2009\SECURITY
c:\program files\Ad-remover\TOOLS\BACKUP\Registry 06-05-2009\software
c:\program files\Ad-remover\TOOLS\BACKUP\Registry 06-05-2009\system
c:\program files\Ad-remover\TOOLS\BACKUP\Registry 06-05-2009\Users\[u]0/u0000001\ntuser.dat
c:\program files\Ad-remover\TOOLS\BACKUP\Registry 06-05-2009\Users\[u]0/u0000002\UsrClass.dat
c:\program files\Ad-remover\TOOLS\delete.cmd
c:\program files\Ad-remover\TOOLS\DelValues.cmd
c:\program files\Ad-remover\TOOLS\EACH_OTHER.dat
c:\program files\Ad-remover\TOOLS\ERUNT\ERDNT.E_E
c:\program files\Ad-remover\TOOLS\ERUNT\ERDNTDOS.LOC
c:\program files\Ad-remover\TOOLS\ERUNT\ERDNTWIN.LOC
c:\program files\Ad-remover\TOOLS\ERUNT\ERUNT.EXE
c:\program files\Ad-remover\TOOLS\ERUNT\ERUNT.LOC
c:\program files\Ad-remover\TOOLS\find.exe
c:\program files\Ad-remover\TOOLS\findstr.exe
c:\program files\Ad-remover\TOOLS\found.cmd
c:\program files\Ad-remover\TOOLS\fsum.exe
c:\program files\Ad-remover\TOOLS\GREP.EXE
c:\program files\Ad-remover\TOOLS\isadmin.exe
c:\program files\Ad-remover\TOOLS\MD5SRCH.scr
c:\program files\Ad-remover\TOOLS\nircmd.exe
c:\program files\Ad-remover\TOOLS\Process.exe
c:\program files\Ad-remover\TOOLS\reg.exe
c:\program files\Ad-remover\TOOLS\SED.EXE
c:\program files\Ad-remover\TOOLS\swreg.exe
c:\program files\Ad-remover\TOOLS\SWSC.EXE
c:\program files\Ad-remover\TOOLS\UAC.vbe
c:\program files\Ad-remover\Uninstall ADR.exe

.
((((((((((((((((((((((((((((( Fichiers créés du 2009-04-08 au 2009-05-08 ))))))))))))))))))))))))))))))))))))
.

2009-04-26 11:12 . 2009-04-26 11:18 -------- d-----w c:\program files\IrfanView
2009-04-25 18:20 . 2009-04-25 18:20 -------- d-----w c:\program files\Lavalys
2009-04-23 15:18 . 2009-04-23 15:18 -------- d-----w c:\documents and settings\NetworkService\Bureau
2009-04-23 14:12 . 2009-04-23 14:12 -------- d-----w c:\program files\util
2009-04-23 14:11 . 2009-04-23 14:12 -------- d-----w c:\program files\Setup
2009-04-23 14:11 . 2009-04-23 14:11 -------- d-----w c:\program files\fra
2009-04-23 14:11 . 2009-04-23 14:11 -------- d-----w c:\program files\Drivers
2009-04-23 14:11 . 2009-04-23 14:11 -------- d-----w c:\program files\common
2009-04-21 09:29 . 2009-04-21 09:29 -------- d-----w c:\program files\Fichiers communs\France Telecom
2009-04-21 08:51 . 2009-04-21 09:29 -------- d-----w c:\program files\Fichiers communs\France Telecom(2)
2009-04-16 06:40 . 2009-02-06 10:10 227840 -c----w c:\windows\system32\dllcache\wmiprvse.exe
2009-04-16 06:39 . 2009-03-06 14:20 286720 -c----w c:\windows\system32\dllcache\pdh.dll
2009-04-16 06:39 . 2009-02-09 11:23 111104 -c----w c:\windows\system32\dllcache\services.exe
2009-04-16 06:39 . 2009-02-09 10:53 401408 -c----w c:\windows\system32\dllcache\rpcss.dll
2009-04-16 06:38 . 2009-02-09 10:53 473600 -c----w c:\windows\system32\dllcache\fastprox.dll
2009-04-16 06:38 . 2009-02-09 10:53 685568 -c----w c:\windows\system32\dllcache\advapi32.dll
2009-04-16 06:38 . 2009-02-09 10:53 735744 -c----w c:\windows\system32\dllcache\lsasrv.dll
2009-04-16 06:38 . 2009-02-09 10:53 453120 -c----w c:\windows\system32\dllcache\wmiprvsd.dll
2009-04-16 06:38 . 2009-02-09 10:53 739840 -c----w c:\windows\system32\dllcache\ntdll.dll
2009-04-15 18:43 . 2008-12-16 12:31 354304 -c----w c:\windows\system32\dllcache\winhttp.dll
2009-04-15 18:43 . 2008-04-21 21:15 219136 -c----w c:\windows\system32\dllcache\wordpad.exe
2009-04-15 11:31 . 2009-04-23 13:18 -------- d-----w c:\program files\Web Photo Album
2009-04-15 11:25 . 2009-04-23 13:17 -------- d-----w c:\program files\VCW VicMan's Photo Editor
2009-04-09 16:46 . 2009-04-09 16:46 -------- d-----w c:\program files\Apple Software Update
2009-04-09 16:46 . 2009-04-09 16:46 -------- d-----w c:\documents and settings\All Users\Application Data\Apple

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-04-26 11:13 . 2004-06-26 09:22 -------- d-----w c:\program files\Google
2009-04-18 08:36 . 2002-05-10 05:02 544346 ----a-w c:\windows\system32\perfh00C.dat
2009-04-18 08:36 . 2002-05-10 05:02 111168 ----a-w c:\windows\system32\perfc00C.dat
2009-04-09 16:52 . 2008-03-12 12:21 -------- d-----w c:\program files\QuickTime
2009-04-05 18:42 . 2002-05-21 23:42 -------- d-----w c:\program files\Hewlett-Packard
2009-03-31 08:04 . 2009-01-19 10:12 -------- d-----w c:\program files\Tweak-XP Pro 4
2009-03-27 10:38 . 2009-03-27 10:38 -------- d-----w c:\program files\Microsoft Silverlight
2009-03-06 14:20 . 2002-09-04 01:50 286720 ----a-w c:\windows\system32\pdh.dll
2009-03-03 00:13 . 2002-05-10 05:02 826368 ----a-w c:\windows\system32\wininet.dll
2009-02-24 12:09 . 2009-02-24 12:29 15688 ----a-w c:\windows\system32\lsdelete.exe
2009-02-20 17:10 . 2005-04-27 12:18 78336 ----a-w c:\windows\system32\ieencode.dll
2009-02-10 17:06 . 2001-08-24 00:12 2068096 ----a-w c:\windows\system32\ntkrnlpa.exe
2009-02-09 14:05 . 2009-02-09 14:05 1846912 ----a-w c:\windows\system32\win32k.sys
2009-02-09 11:24 . 2002-09-04 01:49 2191104 ----a-w c:\windows\system32\ntoskrnl.exe
2009-02-09 11:23 . 2002-09-04 01:50 111104 ----a-w c:\windows\system32\services.exe
2009-02-09 10:53 . 2002-05-10 05:02 735744 ----a-w c:\windows\system32\lsasrv.dll
2009-02-09 10:53 . 2002-09-04 01:50 401408 ----a-w c:\windows\system32\rpcss.dll
2009-02-09 10:53 . 2002-09-04 01:48 685568 ----a-w c:\windows\system32\advapi32.dll
2009-02-09 10:53 . 2002-05-10 05:02 739840 ----a-w c:\windows\system32\ntdll.dll
2003-04-22 17:24 . 2003-04-22 17:24 2736128 ------w c:\program files\aiodrv.msi
2003-04-22 17:20 . 2003-04-22 17:20 2605056 ------w c:\program files\aiosw.msi
2003-04-22 17:01 . 2003-04-22 17:01 16606 ----a-w c:\program files\hpomdl01.dat
2003-04-22 17:01 . 2003-04-22 17:01 241 ----a-w c:\program files\readme.html
2003-04-09 16:19 . 2003-04-09 16:19 2848 ----a-w c:\program files\hpound08.inf
2003-04-09 16:19 . 2003-04-09 16:19 14157 ----a-w c:\program files\hpousc08.inf
2003-04-09 16:00 . 2003-04-09 16:00 2889 ----a-w c:\program files\hpousb08.inf
2003-04-09 16:00 . 2003-04-09 16:00 4715 ----a-w c:\program files\hpoglu08.inf
2003-03-20 14:20 . 2003-03-20 14:20 22523 ----a-w c:\program files\HPZius12.cat
2003-03-20 14:20 . 2003-03-20 14:20 22082 ----a-w c:\program files\hpzist12.cat
2003-03-20 14:20 . 2003-03-20 14:20 24728 ----a-w c:\program files\HPZipr12.cat
2003-03-20 14:20 . 2003-03-20 14:20 22082 ----a-w c:\program files\HPZid412.cat
2003-03-20 14:20 . 2003-03-20 14:20 21641 ----a-w c:\program files\HPOunp08.cat
2003-03-20 14:20 . 2003-03-20 14:20 24285 ----a-w c:\program files\hposcu08.cat
2003-03-20 14:20 . 2003-03-20 14:20 205503 ----a-w c:\program files\hpoprn08.cat
2003-03-09 19:30 . 2003-03-09 19:30 3667 ----a-w c:\program files\hpzist12.inf
2003-03-09 19:30 . 2003-03-09 19:30 184320 ----a-w c:\program files\hpzscr07.dll
2003-03-09 19:30 . 2003-03-09 19:30 16352 ----a-w c:\program files\HPZUCI12.DLL
2003-03-09 19:30 . 2003-03-09 19:30 14285 ----a-w c:\program files\hpzius12.inf
2003-03-09 19:30 . 2003-03-09 19:30 10325 ----a-w c:\program files\hpzipr12.inf
2003-03-09 19:30 . 2003-03-09 19:30 63562 ----a-w c:\program files\hposcu08.inf
2003-03-09 19:30 . 2003-03-09 19:30 51266 ----a-w c:\program files\hpoprn08.inf
2003-03-09 19:30 . 2003-03-09 19:30 3898 ----a-w c:\program files\hpounp08.inf
2003-03-09 19:30 . 2003-03-09 19:30 33952 ----a-w c:\program files\hpzid412.inf
2003-03-09 19:30 . 2003-03-09 19:30 274432 ----a-w c:\program files\hpzglu07.exe
2003-03-09 19:30 . 2003-03-09 19:30 237568 ----a-w c:\program files\hpzc3212.dll
2003-03-09 19:30 . 2003-03-09 19:30 23186 ----a-w c:\program files\hpzcin06.ex_
2002-09-09 16:48 . 2002-09-09 16:48 22608 ----a-w c:\program files\usbprint.sys
2002-09-09 16:48 . 2002-09-09 16:48 12288 ----a-w c:\program files\usbmon.dll
2002-09-09 16:48 . 2002-09-09 16:48 458752 ----a-w c:\program files\tls704d.dll
2002-09-09 16:47 . 2002-09-09 16:47 254005 ----a-w c:\program files\msvcrt.dll
2002-09-09 16:47 . 2002-09-09 16:47 70656 ----a-w c:\program files\msvcirt.dll
2002-09-09 16:47 . 2002-09-09 16:47 55155 ----a-w c:\program files\hpzusb00.sy_
2002-09-09 16:47 . 2002-09-09 16:47 5705 ----a-w c:\program files\hpzuci02.dl_
2002-09-09 16:47 . 2002-09-09 16:47 25639 ----a-w c:\program files\hpzpom04.dl_
2002-09-09 16:47 . 2002-09-09 16:47 212992 ----a-w c:\program files\hpzpnp07.dll
2002-09-09 16:46 . 2002-09-09 16:46 49212 ----a-w c:\program files\hpzjvp01.dll
2002-09-09 16:46 . 2002-09-09 16:46 249913 ----a-w c:\program files\hpzjut01.dll
2002-09-09 16:46 . 2002-09-09 16:46 417849 ----a-w c:\program files\hpzjpp01.dll
2002-09-09 16:46 . 2002-09-09 16:46 28722 ----a-w c:\program files\hpzjlog.dll
2002-09-09 16:46 . 2002-09-09 16:46 52552 ----a-w c:\program files\hpziou01.dl_
2002-09-09 16:46 . 2002-09-09 16:46 46017 ----a-w c:\program files\hpzion00.sy_
2002-09-06 08:54 . 2002-09-06 08:54 995383 ----a-w c:\program files\MFC42.DLL
1995-09-20 15:16 . 2005-11-08 16:38 35088 -csha-w c:\windows\system32\msjint32.dll
1995-09-20 15:13 . 2005-11-08 16:38 977680 -csha-w c:\windows\system32\msjt3032.dll
1995-09-20 15:16 . 2005-11-08 16:38 23824 -csha-w c:\windows\system32\msjter32.dll
.

(((((((((((((((((((((((((((((((((((((((((((( Look )))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.

---- Directory of c:\documents and settings\NetworkService\Bureau ----

---- Directory of c:\program files\common ----

2003-03-09 19:30 . 2003-03-09 19:30 98536 ----a-w c:\program files\common\drivers\com_os\hpzstw07.ex_
2003-03-09 19:30 . 2003-03-09 19:30 37042 ----a-w c:\program files\common\drivers\com_os\hpztbi07.dl_
2003-03-09 19:30 . 2003-03-09 19:30 115225 ----a-w c:\program files\common\drivers\com_os\hpztbu07.ex_
2003-03-09 19:30 . 2003-03-09 19:30 243466 ----a-w c:\program files\common\drivers\com_os\hpztbx07.ex_
2003-03-09 19:30 . 2003-03-09 19:30 91306 ----a-w c:\program files\common\drivers\com_os\hpzvip07.dl_
2003-03-09 19:30 . 2003-03-09 19:30 126180 ----a-w c:\program files\common\drivers\win2k_xp\hpz2ku07.dl_
2003-03-09 19:30 . 2003-03-09 19:30 102138 ----a-w c:\program files\common\drivers\win2k_xp\hpzcoi07.dl_
2003-03-09 19:30 . 2003-03-09 19:30 86115 ----a-w c:\program files\common\drivers\win2k_xp\hpzlnt07.dl_
2003-03-09 19:30 . 2003-03-09 19:30 158505 ----a-w c:\program files\common\drivers\win2k_xp\hpzntp07.dl_
2003-03-09 19:30 . 2003-03-09 19:30 86970 ----a-w c:\program files\common\drivers\win2k_xp\hpzsnt07.dl_
2003-03-09 19:30 . 2003-03-09 19:30 138758 ----a-w c:\program files\common\drivers\com_os\hpzcfg07.ex_
2003-03-09 19:30 . 2003-03-09 19:30 133414 ----a-w c:\program files\common\drivers\com_os\hpzcon07.dl_
2003-03-09 19:30 . 2003-03-09 19:30 601504 ----a-w c:\program files\common\drivers\com_os\hpzeng07.ex_
2003-03-09 19:30 . 2003-03-09 19:30 40979 ----a-w c:\program files\common\drivers\com_os\hpzflt07.dl_
2003-03-09 19:30 . 2003-03-09 19:30 538322 ----a-w c:\program files\common\drivers\com_os\hpzimc07.dl_
2003-03-09 19:30 . 2003-03-09 19:30 144089 ----a-w c:\program files\common\drivers\com_os\hpzime07.dl_
2003-03-09 19:30 . 2003-03-09 19:30 111381 ----a-w c:\program files\common\drivers\com_os\hpzjui07.dl_
2003-03-09 19:30 . 2003-03-09 19:30 62351 ----a-w c:\program files\common\drivers\com_os\hpzpcl07.dl_
2003-03-09 19:30 . 2003-03-09 19:30 192521 ----a-w c:\program files\common\drivers\com_os\hpzpre07.ex_
2003-03-09 19:30 . 2003-03-09 19:30 251369 ----a-w c:\program files\common\drivers\com_os\hpzres07.dl_
2003-03-09 19:30 . 2003-03-09 19:30 153493 ----a-w c:\program files\common\drivers\com_os\hpzslk07.dl_
2003-03-09 19:30 . 2003-03-09 19:30 203496 ----a-w c:\program files\common\drivers\com_os\hpzstc07.ex_
2002-12-02 12:43 . 2002-12-02 12:43 75555 ----a-w c:\program files\common\drivers\win9x_me\HPZ9XD07.dr_
2002-10-07 16:17 . 2002-10-07 16:17 111836 ----a-w c:\program files\common\drivers\win9x_me\hpz9xp07.dl_
2002-09-09 16:57 . 2002-09-09 16:57 56195 ----a-w c:\program files\common\drivers\win9x_me\hpzstsin.dl_
2002-09-09 16:57 . 2002-09-09 16:57 92522 ----a-w c:\program files\common\drivers\win9x_me\hpzsta9x.ex_
2002-09-09 16:57 . 2002-09-09 16:57 54766 ----a-w c:\program files\common\drivers\win9x_me\hpzs9x07.dl_
2002-09-09 16:56 . 2002-09-09 16:56 55062 ----a-w c:\program files\common\drivers\win9x_me\hpzl9x07.dl_
2002-09-09 16:56 . 2002-09-09 16:56 52552 ----a-w c:\program files\common\drivers\win9x_me\hpziou01.dl_
2002-09-09 16:56 . 2002-09-09 16:56 25654 ----a-w c:\program files\common\drivers\win9x_me\hpziop9x.vx_
2002-09-09 16:56 . 2002-09-09 16:56 25681 ----a-w c:\program files\common\drivers\win9x_me\hpziop98.vx_
2002-09-09 16:56 . 2002-09-09 16:56 33588 ----a-w c:\program files\common\drivers\win9x_me\hpzion9x.vx_
2002-09-09 16:56 . 2002-09-09 16:56 9501 ----a-w c:\program files\common\drivers\win9x_me\hpziol9x.vx_
2002-09-09 16:56 . 2002-09-09 16:56 125415 ----a-w c:\program files\common\drivers\win9x_me\hpzfac07.dl_
2002-09-09 16:53 . 2002-09-09 16:53 908784 ----a-w c:\program files\common\drivers\com_os\hpzimp07.dl_
2002-09-09 16:52 . 2002-09-09 16:52 477926 ----a-w c:\program files\common\drivers\com_os\hpzimb07.dl_

---- Directory of c:\program files\Drivers ----

2003-04-22 17:01 . 2003-04-22 17:01 16606 ----a-w c:\program files\Drivers\Uninst\fra\hpomdl01.dat
2003-03-09 19:31 . 2003-03-09 19:31 225280 ----a-w c:\program files\Drivers\Scanner\hpgtpusd.dll
2003-03-09 19:31 . 2003-03-09 19:31 274432 ----a-w c:\program files\Drivers\Scanner\hpgwiamd.dll
2003-03-09 19:31 . 2003-03-09 19:31 561152 ----a-w c:\program files\Drivers\Scanner\hpotscl.dll
2003-03-09 19:31 . 2003-03-09 19:31 81920 ----a-w c:\program files\Drivers\Scanner\hpovst08.dll
2003-03-09 19:31 . 2003-03-09 19:31 65536 ----a-w c:\program files\Drivers\Scanner\hpqgends.tmp
2003-03-09 19:31 . 2003-03-09 19:31 61699 ----a-w c:\program files\Drivers\dot4\Win2000\HPZinw12.exe
2003-03-09 19:31 . 2003-03-09 19:31 65795 ----a-w c:\program files\Drivers\dot4\Win2000\HPZipm12.exe
2003-03-09 19:31 . 2003-03-09 19:31 167936 ----a-w c:\program files\Drivers\dot4\Win2000\HPZipr12.dll
2003-03-09 19:31 . 2003-03-09 19:31 16080 ----a-w c:\program files\Drivers\dot4\Win2000\HPZipr12.sys
2003-03-09 19:31 . 2003-03-09 19:31 94208 ----a-w c:\program files\Drivers\dot4\Win2000\HPZipt12.dll
2003-03-09 19:31 . 2003-03-09 19:31 57344 ----a-w c:\program files\Drivers\dot4\Win2000\HPZisn12.dll
2003-03-09 19:31 . 2003-03-09 19:31 21456 ----a-w c:\program files\Drivers\dot4\Win2000\HPZius12.sys
2003-03-09 19:31 . 2003-03-09 19:31 50392 ----a-w c:\program files\Drivers\dot4\Win2000\HPZs2k12.sys
2003-03-09 19:31 . 2003-03-09 19:31 51024 ----a-w c:\program files\Drivers\dot4\Win2000\HPZid412.sys
2003-03-09 19:31 . 2003-03-09 19:31 233528 ----a-w c:\program files\Drivers\dot4\Win2000\HPZidr12.dll
2003-02-06 20:40 . 2003-02-06 20:40 43640 ----a-w c:\program files\Drivers\dot4\win98\HPZs9X12.sys
2003-02-06 20:39 . 2003-02-06 20:39 57344 ----a-w c:\program files\Drivers\dot4\win98\HPZisn12.dll
2003-02-06 20:39 . 2003-02-06 20:39 16080 ----a-w c:\program files\Drivers\dot4\win98\HPZipr12.sys
2003-02-06 20:39 . 2003-02-06 20:39 94208 ----a-w c:\program files\Drivers\dot4\win98\HPZipt12.dll
2003-02-06 20:38 . 2003-02-06 20:38 167936 ----a-w c:\program files\Drivers\dot4\win98\HPZipr12.dll
2003-02-06 20:38 . 2003-02-06 20:38 65795 ----a-w c:\program files\Drivers\dot4\win98\HPZipm12.exe
2003-02-06 20:38 . 2003-02-06 20:38 61699 ----a-w c:\program files\Drivers\dot4\win98\HPZinw12.exe
2003-02-06 20:38 . 2003-02-06 20:38 45056 ----a-w c:\program files\Drivers\dot4\win98\HPZimn12.dll
2003-02-06 20:38 . 2003-02-06 20:38 233528 ----a-w c:\program files\Drivers\dot4\win98\HPZidr12.dll
2003-02-06 20:38 . 2003-02-06 20:38 86444 ----a-w c:\program files\Drivers\dot4\win98\HPZid412.sys
2003-02-06 20:36 . 2003-02-06 20:36 18261 ----a-w c:\program files\Drivers\dot4\win98\HPZBRX12.PDR
2003-02-06 20:36 . 2003-02-06 20:36 21402 ----a-w c:\program files\Drivers\dot4\win98\HPZius12.sys
2002-03-06 15:10 . 2002-03-06 15:10 401462 ----a-w c:\program files\Drivers\Scanner\msvcp60.dll
2002-02-13 08:56 . 2002-02-13 08:56 7751 ----a-w c:\program files\Drivers\dot4\win98\usbmon.dl_
2001-12-12 18:34 . 2001-12-12 18:34 8944 ----a-w c:\program files\Drivers\Scanner\usbscan.sy_

---- Directory of c:\program files\Fichiers communs\France Telecom ----

2008-12-15 12:51 . 2007-12-11 19:09 73728 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\FTServiceProvider\[u]0/u\FTServiceProviderDLL.dll
2008-12-15 12:51 . 2007-12-11 19:17 45056 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\FTServiceProvider\[u]0/u\Uninstall\Autodetect.dll
2008-12-15 12:51 . 2007-12-11 19:18 28672 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\FTServiceProvider\[u]0/u\Uninstall\Shell.exe
2008-12-15 12:51 . 2007-12-11 19:18 999424 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\FTServiceProvider\[u]0/u\Uninstall\ShellDll.dll
2008-12-15 12:51 . 2007-12-11 19:17 45056 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\Autodial\[u]0/u\Uninstall\Autodetect.dll
2008-12-15 12:51 . 2007-12-11 19:22 65536 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\Autodial\[u]0/u\AutoDial2000.dll
2008-12-15 12:51 . 2007-12-11 19:18 28672 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\Autodial\[u]0/u\Uninstall\Shell.exe
2008-12-15 12:51 . 2007-12-11 19:18 999424 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\Autodial\[u]0/u\Uninstall\ShellDll.dll
2008-12-15 12:51 . 2007-12-11 19:17 35840 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\AlertModule\[u]0/u\AlertClient.dll
2008-12-15 12:51 . 2007-12-11 19:17 90112 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\AlertModule\[u]0/u\AlertModule.exe
2008-12-15 12:51 . 2007-12-11 19:17 2576 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\AlertModule\[u]0/u\AlertModule.tlb
2008-12-15 12:51 . 2007-12-11 19:17 45056 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\AlertModule\[u]0/u\Uninstall\Autodetect.dll
2008-12-15 12:51 . 2007-12-11 19:18 28672 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\AlertModule\[u]0/u\Uninstall\Shell.exe
2008-12-15 12:51 . 2007-12-11 19:18 999424 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\AlertModule\[u]0/u\Uninstall\ShellDll.dll
2008-12-15 12:51 . 2007-12-11 19:20 49152 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\FTCOMModule\[u]0/u\SyncSerialPort.dll
2008-12-15 12:51 . 2007-08-08 12:13 258048 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\FTCOMModule\[u]0/u\NwtGatewayDLL.dll
2008-12-15 12:51 . 2007-12-11 19:20 49152 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\FTCOMModule\[u]0/u\CustomMerlinU530.dll
2008-12-15 12:51 . 2007-12-11 19:19 65536 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\FTCOMModule\[u]0/u\FTCOMModule.exe
2008-12-15 12:51 . 2007-12-11 19:19 3804 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\FTCOMModule\[u]0/u\FTCOMModule.tlb
2008-12-15 12:51 . 2006-09-19 17:04 200704 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\FTCOMModule\[u]0/u\loader.dll
2008-12-15 12:51 . 2006-03-01 17:53 255 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\FTCOMModule\[u]0/u\NwtGatewayConfig.ini
2008-12-15 12:51 . 2007-12-11 19:17 45056 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\FTCOMModule\[u]0/u\Uninstall\Autodetect.dll
2008-12-15 12:51 . 2007-12-11 19:18 28672 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\FTCOMModule\[u]0/u\Uninstall\Shell.exe
2008-12-15 12:51 . 2007-12-11 19:18 999424 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\FTCOMModule\[u]0/u\Uninstall\ShellDll.dll
2008-12-15 12:51 . 2007-12-11 19:19 65536 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\FTRTSVC\[u]0/u\FTRTSVC.exe
2008-12-15 12:51 . 2007-12-11 19:19 26112 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\FTRTSVC\[u]0/u\IfHelper.dll
2008-12-15 12:51 . 2007-12-11 19:17 45056 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\FTRTSVC\[u]0/u\Uninstall\Autodetect.dll
2008-12-15 12:51 . 2007-12-11 19:18 28672 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\FTRTSVC\[u]0/u\Uninstall\Shell.exe
2008-12-15 12:51 . 2007-12-11 19:18 999424 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\FTRTSVC\[u]0/u\Uninstall\ShellDll.dll
2008-12-15 12:46 . 2007-12-11 19:09 77824 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\PTPCommunication\[u]0/u\PTPCommunication.dll
2008-12-15 12:46 . 2007-12-11 19:17 45056 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\PTPCommunication\[u]0/u\Uninstall\Autodetect.dll
2008-12-15 12:46 . 2007-12-11 19:18 28672 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\PTPCommunication\[u]0/u\Uninstall\Shell.exe
2008-12-15 12:46 . 2007-12-11 19:18 999424 ----a-w c:\program files\Fichiers communs\France Telecom\Shared Modules\PTPCommunication\[u]0/u\Uninstall\ShellDll.dll

---- Directory of c:\program files\Fichiers communs\France Telecom(2) ----

2009-04-21 08:56 . 2009-04-21 08:56 103 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\FTServiceProvider(2)\[u]0/u(2)\Uninstall(2)\FTServiceProvider.log
2009-04-21 08:56 . 2007-04-05 09:58 843 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\FTServiceProvider(2)\[u]0/u(2)\Uninstall(2)\libModule.shl
2009-04-21 08:56 . 2007-08-02 14:59 16689 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\FTServiceProvider(2)\[u]0/u(2)\Uninstall(2)\SharedModule.shl
2009-04-21 08:56 . 2006-12-27 10:57 43345 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\FTServiceProvider(2)\[u]0/u(2)\Uninstall(2)\tools.shl
2009-04-21 08:56 . 2007-08-02 09:09 3222 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\FTServiceProvider(2)\[u]0/u(2)\Uninstall(2)\uninstallSharedModule.shl
2009-04-21 08:56 . 2009-04-21 08:56 130 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\Autodial(2)\[u]0/u(2)\Uninstall(2)\Autodial.log
2009-04-21 08:56 . 2007-04-05 08:56 896 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\Autodial(2)\[u]0/u(2)\Uninstall(2)\libModule.shl
2009-04-21 08:56 . 2007-08-02 09:09 3222 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\Autodial(2)\[u]0/u(2)\Uninstall(2)\uninstallSharedModule.shl
2009-04-21 08:56 . 2007-08-02 14:59 16689 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\Autodial(2)\[u]0/u(2)\Uninstall(2)\SharedModule.shl
2009-04-21 08:56 . 2006-12-27 10:57 43345 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\Autodial(2)\[u]0/u(2)\Uninstall(2)\tools.shl
2009-04-21 08:56 . 2009-04-21 08:56 264 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\AlertModule(2)\[u]0/u(2)\Uninstall(2)\AlertModule.log
2009-04-21 08:56 . 2007-04-05 08:49 3475 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\AlertModule(2)\[u]0/u(2)\Uninstall(2)\libModule.shl
2009-04-21 08:56 . 2007-08-02 14:59 16689 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\AlertModule(2)\[u]0/u(2)\Uninstall(2)\SharedModule.shl
2009-04-21 08:56 . 2006-12-27 10:57 43345 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\AlertModule(2)\[u]0/u(2)\Uninstall(2)\tools.shl
2009-04-21 08:56 . 2007-08-02 09:09 3222 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\AlertModule(2)\[u]0/u(2)\Uninstall(2)\uninstallSharedModule.shl
2009-04-21 08:56 . 2009-04-21 08:56 719 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\FTCOMModule(2)\[u]0/u(2)\Uninstall(2)\FTCOMModule.log
2009-04-21 08:56 . 2007-04-05 09:57 6939 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\FTCOMModule(2)\[u]0/u(2)\Uninstall(2)\libModule.shl
2009-04-21 08:56 . 2007-08-02 09:09 3222 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\FTCOMModule(2)\[u]0/u(2)\Uninstall(2)\uninstallSharedModule.shl
2009-04-21 08:56 . 2007-08-02 14:59 16689 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\FTCOMModule(2)\[u]0/u(2)\Uninstall(2)\SharedModule.shl
2009-04-21 08:56 . 2006-12-27 10:57 43345 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\FTCOMModule(2)\[u]0/u(2)\Uninstall(2)\tools.shl
2009-04-21 08:56 . 2009-04-21 08:56 161 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\FTRTSVC(2)\[u]0/u(2)\Uninstall(2)\FTRTSVC.log
2009-04-21 08:56 . 2007-04-06 08:26 5749 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\FTRTSVC(2)\[u]0/u(2)\Uninstall(2)\libModule.shl
2009-04-21 08:56 . 2007-08-02 14:59 16689 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\FTRTSVC(2)\[u]0/u(2)\Uninstall(2)\SharedModule.shl
2009-04-21 08:56 . 2006-12-27 10:57 43345 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\FTRTSVC(2)\[u]0/u(2)\Uninstall(2)\tools.shl
2009-04-21 08:56 . 2007-08-02 09:09 3222 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\FTRTSVC(2)\[u]0/u(2)\Uninstall(2)\uninstallSharedModule.shl
2009-04-21 08:51 . 2007-10-02 11:48 1179 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\PTPCommunication(2)\[u]0/u(2)\Uninstall(2)\libModule.shl
2009-04-21 08:51 . 2009-04-21 08:51 113 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\PTPCommunication(2)\[u]0/u(2)\Uninstall(2)\PTPCommunication.log
2009-04-21 08:51 . 2007-08-02 09:09 3222 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\PTPCommunication(2)\[u]0/u(2)\Uninstall(2)\uninstallSharedModule.shl
2009-04-21 08:51 . 2007-08-02 14:59 16689 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\PTPCommunication(2)\[u]0/u(2)\Uninstall(2)\SharedModule.shl
2009-04-21 08:51 . 2006-12-27 10:57 43345 ----a-w c:\program files\Fichiers communs\France Telecom(2)\Shared Modules(2)\PTPCommunication(2)\[u]0/u(2)\Uninstall(2)\tools.shl

---- Directory of c:\program files\fra ----

2003-03-09 19:31 . 2003-03-09 19:31 4893212 ----a-w c:\program files\fra\drivers\com_lang\hpzr3207.dl_
2003-03-09 19:31 . 2003-03-09 19:31 254307 ----a-w c:\program files\fra\drivers\com_lang\hpzrp307.dl_
2003-03-09 19:31 . 2003-03-09 19:31 240653 ----a-w c:\program files\fra\drivers\com_lang\HPOCABPR.HLP
2003-03-09 19:31 . 2003-03-09 19:31 240374 ----a-w c:\program files\fra\drivers\com_lang\hpocahpr.hlp
2003-03-09 19:31 . 2003-03-09 19:31 240339 ----a-w c:\program files\fra\drivers\com_lang\hpocampr.hlp
2003-03-09 19:31 . 2003-03-09 19:31 241157 ----a-w c:\program files\fra\drivers\com_lang\hpocaspr.hlp
2003-03-09 19:31 . 2003-03-09 19:31 31547 ----a-w c:\program files\fra\drivers\com_lang\hpof4007.dat
2003-03-09 19:31 . 2003-03-09 19:31 31547 ----a-w c:\program files\fra\drivers\com_lang\hpof4107.dat
2003-03-09 19:31 . 2003-03-09 19:31 36864 ----a-w c:\program files\fra\drivers\com_lang\hpofax08.dll
2003-03-09 19:31 . 2003-03-09 19:31 31688 ----a-w c:\program files\fra\drivers\com_lang\hpop1007.dat
2003-03-09 19:31 . 2003-03-09 19:31 31630 ----a-w c:\program files\fra\drivers\com_lang\hpop1107.dat
2003-03-09 19:31 . 2003-03-09 19:31 38450 ----a-w c:\program files\fra\drivers\com_lang\hpop1207.dat
2003-03-09 19:31 . 2003-03-09 19:31 55973 ----a-w c:\program files\fra\drivers\com_lang\hpop2007.dat
2003-03-09 19:31 . 2003-03-09 19:31 55643 ----a-w c:\program files\fra\drivers\com_lang\hpop2107.dat
2003-03-09 19:31 . 2003-03-09 19:31 55998 ----a-w c:\program files\fra\drivers\com_lang\hpop2207.dat
2003-03-09 19:31 . 2003-03-09 19:31 31705 ----a-w c:\program files\fra\drivers\com_lang\hpop4007.dat
2003-03-09 19:31 . 2003-03-09 19:31 38537 ----a-w c:\program files\fra\drivers\com_lang\hpop4107.dat
2003-03-09 19:31 . 2003-03-09 19:31 56040 ----a-w c:\program files\fra\drivers\com_lang\hpop6107.dat
2003-03-09 19:31 . 2003-03-09 19:31 55979 ----a-w c:\program files\fra\drivers\com_lang\hpopd907.dat
2003-02-06 20:38 . 2003-02-06 20:38 45056 ----a-w c:\program files\fra\drivers\win9x_me\HPZimn12.dll
2002-10-15 14:20 . 2002-10-15 14:20 17407 ----a-w c:\program files\fra\drivers\win9x_me\hpoupdrx.inf
2002-09-09 17:07 . 2002-09-09 17:07 22608 ----a-w c:\program files\fra\drivers\win9x_me\usbprint.sys
2002-09-09 17:07 . 2002-09-09 17:07 12288 ----a-w c:\program files\fra\drivers\win9x_me\usbmon.dll
2002-09-09 17:07 . 2002-09-09 17:07 248314 ----a-w c:\program files\fra\drivers\win9x_me\hpzrp107.dl_

---- Directory of c:\program files\IrfanView ----

2009-04-26 11:12 . 2009-04-26 11:12 29696 ----a-w c:\program files\IrfanView\iv_uninstall.exe

---- Directory of c:\program files\Lavalys ----

2009-04-25 18:33 . 2009-04-25 18:33 1553 ----a-w c:\program files\Lavalys\EVEREST Home Edition\everest.rpf
2009-04-25 18:20 . 2009-04-25 18:20 48 ----a-w c:\program files\Lavalys\EVEREST Home Edition\everest.url
2009-04-25 18:20 . 2009-04-25 18:20 6645 ----a-w c:\program files\Lavalys\EVEREST Home Edition\unins000.dat
2005-08-17 22:00 . 2005-08-17 22:00 93570 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_aa.txt
2005-08-17 22:00 . 2005-08-17 22:00 105741 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_al.txt
2005-08-17 22:00 . 2005-08-17 22:00 104342 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_bg.txt
2005-08-17 22:00 . 2005-08-17 22:00 110462 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_ca.txt
2005-08-17 22:00 . 2005-08-17 22:00 84130 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_cn.txt
2005-08-17 22:00 . 2005-08-17 22:00 99753 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_cz.txt
2005-08-17 22:00 . 2005-08-17 22:00 103871 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_de.txt
2005-08-17 22:00 . 2005-08-17 22:00 98156 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_dk.txt
2005-08-17 22:00 . 2005-08-17 22:00 110484 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_es.txt
2005-08-17 22:00 . 2005-08-17 22:00 96393 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_fi.txt
2005-08-17 22:00 . 2005-08-17 22:00 109525 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_fr.txt
2005-08-17 22:00 . 2005-08-17 22:00 103057 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_hr.txt
2005-08-17 22:00 . 2005-08-17 22:00 101967 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_hu.txt
2005-08-17 22:00 . 2005-08-17 22:00 108168 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_it.txt
2005-08-17 22:00 . 2005-08-17 22:00 99018 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_jp.txt
2005-08-17 22:00 . 2005-08-17 22:00 88828 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_kr.txt
2005-08-17 22:00 . 2005-08-17 22:00 105908 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_lt.txt
2005-08-17 22:00 . 2005-08-17 22:00 101897 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_lv.txt
2005-08-17 22:00 . 2005-08-17 22:00 107604 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_mk.txt
2005-08-17 22:00 . 2005-08-17 22:00 101770 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_nl.txt
2005-08-17 22:00 . 2005-08-17 22:00 98452 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_no.txt
2005-08-17 22:00 . 2005-08-17 22:00 109144 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_pl.txt
2005-08-17 22:00 . 2005-08-17 22:00 107995 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_pt.txt
2005-08-17 22:00 . 2005-08-17 22:00 103979 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_ro.txt
2005-08-17 22:00 . 2005-08-17 22:00 101309 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_ru.txt
2005-08-17 22:00 . 2005-08-17 22:00 99725 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_se.txt
2005-08-17 22:00 . 2005-08-17 22:00 101689 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_si.txt
2005-08-17 22:00 . 2005-08-17 22:00 99539 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_sk.txt
2005-08-17 22:00 . 2005-08-17 22:00 99925 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_tr.txt
2005-08-17 22:00 . 2005-08-17 22:00 81739 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_tw.txt
2005-08-17 22:00 . 2005-08-17 22:00 101538 ----a-w c:\program files\Lavalys\EVEREST Home Edition\Language\lang_ua.txt
2005-08-17 22:00 . 2005-08-17 22:00 1434112 ----a-w c:\program files\Lavalys\EVEREST Home Edition\everest.bin
2005-08-17 22:00 . 2005-08-17 22:00 1067681 ----a-w c:\program files\Lavalys\EVEREST Home Edition\everest.chm
2005-08-17 22:00 . 2005-08-17 22:00 408066 ----a-w c:\program files\Lavalys\EVEREST Home Edition\everest.dat
2005-08-17 22:00 . 2005-08-17 22:00 39936 ----a-w c:\program files\Lavalys\EVEREST Home Edition\everest.exe
2005-08-17 22:00 . 2005-08-17 22:00 2502 ----a-w c:\program files\Lavalys\EVEREST Home Edition\everest.mem
2005-08-17 22:00 . 2005-08-17 22:00 5220 ----a-w c:\program files\Lavalys\EVEREST Home Edition\everest.web
2005-08-17 22:00 . 2005-08-17 22:00 187904 ----a-w c:\program files\Lavalys\EVEREST Home Edition\everest_cpl.cpl
2005-08-17 22:00 . 2005-08-17 22:00 122368 ----a-w c:\program files\Lavalys\EVEREST Home Edition\everest_icons.dll
2005-08-17 22:00 . 2005-08-17 22:00 23040 ----a-w c:\program files\Lavalys\EVEREST Home Edition\everest_memlat.dll
2005-08-17 22:00 . 2005-08-17 22:00 177152 ----a-w c:\program files\Lavalys\EVEREST Home Edition\everest_xpicons.dll
2005-08-17 22:00 . 2005-08-17 22:00 48128 ----a-w c:\program files\Lavalys\EVEREST Home Edition\everest_zipdll.dll
2005-08-17 22:00 . 2005-08-17 22:00 9728 ----a-w c:\program files\Lavalys\EVEREST Home Edition\kerneld.amd64
2005-08-17 22:00 . 2005-08-17 22:00 16384 ----a-w c:\program files\Lavalys\EVEREST Home Edition\kerneld.ia64
2005-08-17 22:00 . 2005-08-17 22:00 11324 ----a-w c:\program files\Lavalys\EVEREST Home Edition\kerneld.w9x
2005-08-17 22:00 . 2005-08-17 22:00 7168 ----a-w c:\program files\Lavalys\EVEREST Home Edition\kerneld.wnt
2005-08-17 22:00 . 2005-08-17 22:00 29181 ----a-w c:\program files\Lavalys\EVEREST Home Edition\license.txt
2004-06-27 00:00 . 2004-06-27 00:00 77257 ----a-w c:\program files\Lavalys\EVEREST Home Edition\unins000.exe

---- Directory of c:\program files\Setup ----

2003-04-22 17:44 . 2003-04-22 17:44 8674304 ------w c:\program files\Setup\product\4105.msi
2003-04-22 17:42 . 2003-04-22 17:42 8674304 ------w c:\program files\Setup\product\4100.msi
2003-04-22 17:39 . 2003-04-22 17:39 9599488 ------w c:\program files\Setup\product\6100.msi
2003-04-22 17:37 . 2003-04-22 17:37 5471744 ------w c:\program files\Setup\product\1100.msi
2003-04-22 17:35 . 2003-04-22 17:35 5471232 ------w c:\program files\Setup\product\1000.msi
2003-04-22 17:34 . 2003-04-22 17:34 5471232 ------w c:\program files\Setup\product\1200.msi
2003-04-22 17:32 . 2003-04-22 17:32 5945856 ------w c:\program files\Setup\product\2170.msi
2003-04-22 17:30 . 2003-04-22 17:30 2778624 ------w c:\program files\Setup\product\2150.msi
2003-04-22 17:29 . 2003-04-22 17:29 5310976 ------w c:\program files\Setup\product\2100.msi
2003-04-22 17:27 . 2003-04-22 17:27 8940544 ------w c:\program files\Setup\product\2200.msi
2003-04-22 17:25 . 2003-04-22 17:25 61905 ------w c:\program files\Setup\MM7.Cab
2003-04-22 17:25 . 2003-04-22 17:25 1402378 ------w c:\program files\Setup\MM8.Cab
2003-04-22 17:25 . 2003-04-22 17:25 8180 ------w c:\program files\Setup\MM9.Cab
2003-04-22 17:25 . 2003-04-22 17:25 5740378 ------w c:\program files\Setup\MM22.Cab
2003-04-22 17:25 . 2003-04-22 17:25 3901609 ------w c:\program files\Setup\MM23.Cab
2003-04-22 17:25 . 2003-04-22 17:25 387221 ------w c:\program files\Setup\MM24.Cab
2003-04-22 17:25 . 2003-04-22 17:25 1133886 ------w c:\program files\Setup\MM27.Cab
2003-04-22 17:25 . 2003-04-22 17:25 109141 ------w c:\program files\Setup\MM3.Cab
2003-04-22 17:25 . 2003-04-22 17:25 58532 ------w c:\program files\Setup\MM4.Cab
2003-04-22 17:25 . 2003-04-22 17:25 253205 ------w c:\program files\Setup\MM5.Cab
2003-04-22 17:25 . 2003-04-22 17:25 211378 ------w c:\program files\Setup\MM6.Cab
2003-04-22 17:24 . 2003-04-22 17:24 168 ------w c:\program files\Setup\MM1.Cab
2003-04-22 17:24 . 2003-04-22 17:24 139296 ------w c:\program files\Setup\MM10.Cab
2003-04-22 17:24 . 2003-04-22 17:24 459212 ------w c:\program files\Setup\MM11.Cab
2003-04-22 17:24 . 2003-04-22 17:24 464627 ------w c:\program files\Setup\MM12.Cab
2003-04-22 17:24 . 2003-04-22 17:24 23245 ------w c:\program files\Setup\MM13.Cab
2003-04-22 17:24 . 2003-04-22 17:24 114713 ------w c:\program files\Setup\MM14.Cab
2003-04-22 17:24 . 2003-04-22 17:24 560427 ------w c:\program files\Setup\MM15.Cab
2003-04-22 17:24 . 2003-04-22 17:24 275155 ------w c:\program files\Setup\MM16.Cab
2003-04-22 17:24 . 2003-04-22 17:24 70319 ------w c:\program files\Setup\MM17.Cab
2003-04-22 17:24 . 2003-04-22 17:24 33120 ------w c:\program files\Setup\MM18.Cab
2003-04-22 17:24 . 2003-04-22 17:24 95223 ------w c:\program files\Setup\MM19.Cab
2003-04-22 17:24 . 2003-04-22 17:24 137058 ------w c:\program files\Setup\MM20.Cab
2003-04-22 17:24 . 2003-04-22 17:24 155722 ------w c:\program files\Setup\MM21.Cab
2003-04-22 17:20 . 2003-04-22 17:20 72399705 ------w c:\program files\Setup\Data.Cab
2003-04-22 17:01 . 2003-04-22 17:01 16606 ----a-w c:\program files\Setup\hpomdl01.dat
2003-04-22 17:01 . 2003-04-22 17:01 12942 ----a-w c:\program files\Setup\hposcr02.dat
2003-04-09 16:59 . 2003-04-09 16:59 184320 ----a-w c:\program files\Setup\hpoblk01.exe
2003-04-09 16:22 . 2003-04-09 16:22 204800 ----a-w c:\program files\Setup\HPOlex01.exe
2003-04-09 16:20 . 2003-04-09 16:20 397312 ----a-w c:\program files\Setup\HPOwrp01.exe
2003-04-09 11:13 . 2003-04-09 11:13 372736 ----a-w c:\program files\Setup\HPZchk01.exe
2003-04-09 11:13 . 2003-04-09 11:13 856064 ----a-w c:\program files\Setup\HPZscr01.exe
2003-04-09 11:13 . 2003-04-09 11:13 790528 ----a-w c:\program files\Setup\HPZrein01.exe
2003-04-09 11:13 . 2003-04-09 11:13 204800 ----a-w c:\program files\Setup\HPZarp01.exe
2003-04-09 11:13 . 2003-04-09 11:13 356352 ----a-w c:\program files\Setup\HPZpnp01.exe
2003-04-09 11:13 . 2003-04-09 11:13 212992 ----a-w c:\program files\Setup\HPZwis01.exe
2003-02-10 13:35 . 2003-02-10 13:35 45083 ----a-w c:\program files\Setup\fra\Lisezmoi.html
2003-01-10 09:21 . 2003-01-10 09:21 11985 ----a-w c:\program files\Setup\hposcr01.dat
2002-10-17 08:01 . 2002-10-17 08:01 147456 ----a-w c:\program files\Setup\product\1036.mst
2001-11-12 13:14 . 2001-11-12 13:14 1707856 ----a-w c:\program files\Setup\Wis\Win9x\instmsi.exe
2001-11-12 13:14 . 2001-11-12 13:14 1821008 ----a-w c:\program files\Setup\Wis\Win2K_XP\instmsi.exe
1999-12-22 13:55 . 1999-12-22 13:55 545280 ----a-w c:\program files\Setup\usbready.exe

---- Directory of c:\program files\util ----

2003-04-22 17:44 . 2003-04-22 17:44 2138040 ------w c:\program files\util\HpAiOScrubber.exe
2003-04-09 16:35 . 2003-04-09 16:35 24576 ----a-w c:\program files\util\AiO\HPOprl01.exe
2003-04-09 16:20 . 2003-04-09 16:20 311296 ----a-w c:\program files\util\AiO\hpopdi05.exe
2003-04-09 16:20 . 2003-04-09 16:20 172032 ----a-w c:\program files\util\AiO\hpopin05.exe
2003-04-09 11:13 . 2003-04-09 11:13 856064 ----a-w c:\program files\util\CCC\bin\HPZscr01.exe
2002-12-02 11:11 . 2002-12-02 11:11 5535 ----a-w c:\program files\util\CCC\bin\hpzscr12.1000.dat
2002-11-19 15:47 . 2002-11-19 15:47 41 ----a-w c:\program files\util\CCC\cleanup\hposcrlr.bat
2002-11-19 15:44 . 2002-11-19 15:44 43 ----a-w c:\program files\util\CCC\hpzscr4100.bat
2002-11-19 15:44 . 2002-11-19 15:44 43 ----a-w c:\program files\util\CCC\hpzscr4105.bat
2002-11-19 15:44 . 2002-11-19 15:44 43 ----a-w c:\program files\util\CCC\hpzscr6100.bat
2002-11-19 15:44 . 2002-11-19 15:44 43 ----a-w c:\program files\util\CCC\hpzscr2170.bat
2002-11-19 15:44 . 2002-11-19 15:44 43 ----a-w c:\program files\util\CCC\hpzscr2200.bat
2002-11-19 15:44 . 2002-11-19 15:44 43 ----a-w c:\program files\util\CCC\hpzscr1200.bat
2002-11-19 15:44 . 2002-11-19 15:44 43 ----a-w c:\program files\util\CCC\hpzscr2100.bat
2002-11-19 15:44 . 2002-11-19 15:44 43 ----a-w c:\program files\util\CCC\hpzscr2150.bat
2002-11-19 15:44 . 2002-11-19 15:44 43 ----a-w c:\program files\util\CCC\hpzscr1000.bat
2002-11-19 15:44 . 2002-11-19 15:44 43 ----a-w c:\program files\util\CCC\hpzscr1100.bat
2002-11-19 15:44 . 2002-11-19 15:44 41 ----a-w c:\program files\util\CCC\cleanup\cleanall.bat
2002-11-19 15:42 . 2002-11-19 15:42 12894 ----a-w c:\program files\util\CCC\bin\hposcr08.dat
2002-11-19 15:36 . 2002-11-19 15:36 14298 ----a-w c:\program files\util\CCC\bin\hposcr12.dat
2002-11-14 14:08 . 2002-11-14 14:08 5917 ----a-w c:\program files\util\CCC\bin\hpzscr12.4105.dat
2002-11-14 14:08 . 2002-11-14 14:08 5549 ----a-w c:\program files\util\CCC\bin\hpzscr12.6100.dat
2002-11-14 14:08 . 2002-11-14 14:08 5891 ----a-w c:\program files\util\CCC\bin\hpzscr12.4100.dat
2002-11-14 14:08 . 2002-11-14 14:08 5523 ----a-w c:\program files\util\CCC\bin\hpzscr12.2170.dat
2002-11-14 14:08 . 2002-11-14 14:08 5519 ----a-w c:\program files\util\CCC\bin\hpzscr12.2200.dat
2002-11-14 14:08 . 2002-11-14 14:08 5523 ----a-w c:\program files\util\CCC\bin\hpzscr12.2100.dat
2002-11-14 14:08 . 2002-11-14 14:08 5521 ----a-w c:\program files\util\CCC\bin\hpzscr12.2150.dat
2002-11-14 14:08 . 2002-11-14 14:08 5511 ----a-w c:\program files\util\CCC\bin\hpzscr12.1200.dat
2002-11-14 14:08 . 2002-11-14 14:08 5521 ----a-w c:\program files\util\CCC\bin\hpzscr12.1100.dat
2002-09-10 13:07 . 2002-09-10 13:07 192512 ----a-w c:\program files\util\common\hpzghl07.exe
2002-09-09 17:25 . 2002-09-09 17:25 180224 ----a-w c:\program files\util\common\hpzpin07.exe
2002-09-09 17:25 . 2002-09-09 17:25 327072 ----a-w c:\program files\util\setupapi.dll
2002-09-09 17:25 . 2002-09-09 17:25 23552 ----a-w c:\program files\util\cfgmgr32.dll
2002-05-07 14:05 . 2002-05-07 14:05 135584 ----a-w c:\program files\util\CCC\fra\Q283787_w2k_sp3_x86.EXE
2002-02-08 07:51 . 2002-02-08 07:51 164432 ----a-w c:\program files\util\CCC\Q256858_W2K_SP1_x86.EXE
2002-02-08 07:51 . 2002-02-08 07:51 162304 ----a-w c:\program files\util\CCC\240075.exe
2002-02-08 07:51 . 2002-02-08 07:51 149656 ----a-w c:\program files\util\CCC\270615USAM.EXE

((((((((((((((((((((((((((((( SnapShot@2009-05-07_06.28.26 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-05-08 07:38 . 2009-05-08 07:38 16384 c:\windows\Temp\Perflib_Perfdata_50c.dat
+ 2009-05-08 05:42 . 2009-05-08 05:42 16384 c:\windows\Temp\Perflib_Perfdata_500.dat
- 2009-04-21 15:53 . 2009-04-21 15:53 16384 c:\windows\Temp\Perflib_Perfdata_500.dat
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-01-02 39408]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="NvQTwk" [X]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-02-05 81000]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-01-02 136600]
"Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2001-12-18 212992]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-01-05 413696]
"PS2"="c:\windows\system32\ps2.exe" [2001-07-03 81920]
"KBD"="c:\hp\KBD\KBD.EXE" [2001-07-06 61440]
"IgfxTray"="c:\windows\System32\igfxtray.exe" [2002-03-27 155648]
"hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 52736]
"HotKeysCmds"="c:\windows\System32\hkcmd.exe" [2002-03-27 106496]
"dla"="c:\windows\system32\dla\tfswctrl.exe" [2002-05-09 102455]
"Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2009-04-26 1838592]
"nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2002-03-09 364544]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\PIERRE\Menu D‚marrer\Programmes\D‚marrage\
D‚marrage d'Office.lnk - c:\program files\Microsoft Office\Office\OSA.EXE [1997-1-15 51984]

c:\documents and settings\Propri‚taire\Menu D‚marrer\Programmes\D‚marrage\
OpenOffice.org 3.0.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2008-9-12 384000]

c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
hp center.lnk - c:\program files\hp center\137903\Program\BackWeb-137903.exe [2002-5-22 16384]
hp psc 1000 series.lnk - c:\program files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe [2003-4-9 147456]
hpoddt01.exe.lnk - c:\program files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe [2003-4-6 28672]
Lancement rapide d'Adobe Reader.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2004-12-14 29696]

HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32
"wave2"= serwvdrv.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"EoEngine"="c:\program files\EoRezo\EoEngine.exe"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\hp center\\137903\\Program\\BackWeb-137903.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Kodak\\Kodak EasyShare software\\bin\\EasyShare.exe"=

R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [23/02/2009 21:13 64160]
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [23/02/2009 19:14 114768]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [23/02/2009 19:14 20560]

--- Autres Services/Pilotes en mémoire ---

*Deregistered* - aswUpdSv
*Deregistered* - avast! Antivirus
*Deregistered* - avast! Mail Scanner
*Deregistered* - avast! Web Scanner
*Deregistered* - BITS
*Deregistered* - CryptSvc
*Deregistered* - DcomLaunch
*Deregistered* - Dhcp
*Deregistered* - Dnscache
*Deregistered* - ERSvc
*Deregistered* - EventSystem
*Deregistered* - gusvc
*Deregistered* - helpsvc
*Deregistered* - Lavasoft Ad-Aware Service
*Deregistered* - RpcSs
*Deregistered* - SENS
*Deregistered* - Spooler
*Deregistered* - srservice
*Deregistered* - winmgmt
*Deregistered* - wscsvc
*Deregistered* - wuauserv

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c94c2bef-8c94-11dd-ad6a-f569618eb134}]
\Shell\AutoRun\command - G:\LaunchU3.exe
.
Contenu du dossier 'Tâches planifiées'

2009-03-30 c:\windows\Tasks\Ad-Aware Update (Weekly).job
- c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-01-18 12:08]

2009-04-09 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]

2009-05-08 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-02-15 16:09]

2009-04-19 c:\windows\Tasks\GoogleUpdateTaskMachine.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-02-21 17:36]

2009-03-28 c:\windows\Tasks\Nettoyage de disque.job
- c:\windows\system32\cleanmgr.exe [2002-09-04 02:33]

2002-05-22 c:\windows\Tasks\Symantec NetDetect.job
- c:\program files\Symantec\LiveUpdate\NDETECT.EXE [2002-05-22 16:22]
.
.
------- Examen supplémentaire -------
.
uInternet Settings,ProxyOverride = localhost
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
Trusted Zone: labanquepostale.fr\www
Trusted Zone: mappy.com
Trusted Zone: orange.fr
Trusted Zone: voila.fr\rw.search.ke
Trusted Zone: weborama.fr\orange
Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - c:\program files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-08 09:43
Windows 5.1.2600 Service Pack 3 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************
.
--------------------- DLLs chargées dans les processus actifs ---------------------

- - - - - - - > 'explorer.exe'(408)
c:\windows\system32\eappprxy.dll
.
------------------------ Autres processus actifs ------------------------
.
c:\program files\Alwil Software\Avast4\aswUpdSv.exe
c:\program files\Lavasoft\Ad-Aware\AAWService.exe
c:\program files\Alwil Software\Avast4\ashServ.exe
c:\program files\Alwil Software\Avast4\ashMaiSv.exe
c:\program files\Alwil Software\Avast4\ashWebSv.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\OpenOffice.org 3\program\soffice.exe
c:\program files\Lavasoft\Ad-Aware\AAWTray.exe
c:\program files\OpenOffice.org 3\program\soffice.bin
.
**************************************************************************
.
Heure de fin: 2009-05-08 11:01 - La machine a redémarré
ComboFix-quarantined-files.txt 2009-05-08 09:01
ComboFix2.txt 2009-05-07 06:44

Avant-CF: 33 776 214 016 octets libres
Après-CF: 33 775 476 736 octets libres

618 --- E O F --- 2009-04-16 18:52

Réponse 26 / 31

Utilisateur anonyme

Telecharge malwarebytes
https://www.malwarebytes.com/

Tu l´instale; le programme va se mettre automatiquement a jour.

Une fois a jour, le programme va se lancer; click sur l´onglet parametre, et coche la case : "Arreter internet explorer pendant la suppression".

Click maintenant sur l´onglet recherche et coche la case : "executer un examen rapide".

Puis click sur "rechercher".

Laisse le scanner le pc...

Si des elements on ete trouvés > click sur supprimer la selection.

si il t´es demandé de redemarrer > click sur "yes".

A la fin un rapport va s´ouvrir; sauvegarde le de maniere a le retrouver en vu de le poster sur le forum.

Copie et colle le rapport stp.

PS : les rapport sont aussi rangé dans l onglet rapport/log

Réponse 27 / 31

ambul

Bonjour et merci encore,

Je t'envoie le rapport Malwarebytes demandé.

Malwarebytes' Anti-Malware 1.36
Version de la base de données: 2093
Windows 5.1.2600 Service Pack 3

08/05/2009 16:57:17
mbam-log-2009-05-08 (16-57-17).txt

Type de recherche: Examen rapide
Eléments examinés: 120120
Temps écoulé: 49 minute(s), 56 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 2

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\Program Files\HPZUCI12.DLL (Spyware.OnlineGames) -> Quarantined and deleted successfully.
C:\Program Files\tls704d.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.

Je te rappelle les principaux problèmes problèmes pour lesquels j'ai posté au départ.
- plus de son
- les prises USB non reconnues
- l'imprimante non détectée, impossible de la réinstaller
- plus d'accès au gestionnaire de périphériques, fenêtre blanche
- pare-feu Windows désactivée . Fenêtre "Windows ne peut démarrer le service pare-feu Windows/Partage de connexion Internet"
Au lieu d'éléments infectés, n'y aurait-il pas des éléments manquants?
Question subsidiaire: pourquoi les messages n'apparaissent plus dans le post?

Ambul

Réponse 28 / 31

Utilisateur anonyme

re , tu as certainements des soucis dans la base de registre mais j ai besoin de different scan poour cibler la cause etc :

• Télécharge et install UsbFix

(!) Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptible d'avoir été infectées sans les ouvrir

• Double clic sur le raccourci UsbFix présent sur ton bureau .

• Choisis l'option 1 ( Recherche )

• Laisse travailler l'outil.

• Ensuite post le rapport UsbFix.txt qui apparaitra.

• Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque. ( C:\UsbFix.txt )

( CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )

• Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.

• Tuto : http://pagesperso-orange.fr/NosTools/usbfix.html

Réponse 29 / 31

ambul

Bravo pour la rapidité de la réponse.

Voici le scan UsbFix.

############################## [ UsbFix V3.017 # Scan ]

# User : Propriétaire () # PIERREIRÈNE
# Update on 06/05/09 by Chiquitine29, C_XX & Chimay8
# WebSite : http://pagesperso-orange.fr/NosTools/usbfix.html
# Start at: 00:09:01 | 09/05/2009

# Intel(R) Pentium(R) 4 CPU 2.00GHz
# Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 7.0.5730.13
# Windows Firewall Status : Disabled
# AV : avast! antivirus 4.8.1335 [VPS 090508-0] 4.8.1335 [ (!) Disabled | Updated ]

# A:\ # Lecteur de disquettes 3 ½ pouces
# C:\ # Disque fixe local # 52,8 Go (31,43 Go free) [HP_PAVILION] # NTFS
# D:\ # Disque fixe local # 4,43 Go (1,4 Go free) [HP_RECOVERY] # FAT32
# E:\ # Disque CD-ROM
# F:\ # Disque CD-ROM
# G:\ # Disque amovible # 3,79 Go (3,75 Go free) [UDISK] # FAT32

############################## [ Processus actifs ]

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\wbem\unsecapp.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\hp center\137903\Program\BackWeb-137903.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

################## [ Registre # Startup ]

HKCU_Main: "Local Page"="C:\\WINDOWS\\system32\\blank.htm"
HKCU_Main: "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
HKCU_Main: "Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
HKLM_logon: "Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"
HKLM_logon: "DefaultUserName"="Propriétaire"
HKLM_logon: "AltDefaultUserName"="Propriétaire"
HKLM_logon: "LegalNoticeCaption"=""
HKLM_logon: "LegalNoticeText"=""
HKLM_Run: avast!=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
HKLM_Run: SunJavaUpdateSched="C:\Program Files\Java\jre6\bin\jusched.exe"
HKLM_Run: Recguard=C:\WINDOWS\SMINST\RECGUARD.EXE
HKLM_Run: QuickTime Task="C:\Program Files\QuickTime\qttask.exe" -atboottime
HKLM_Run: PS2=C:\WINDOWS\system32\ps2.exe
HKLM_Run: nwiz=nwiz.exe /install
HKLM_Run: NvCplDaemon=RUNDLL32.EXE NvQTwk,NvCplDaemon initialize
HKLM_Run: KBD=C:\HP\KBD\KBD.EXE
HKLM_Run: IgfxTray=C:\WINDOWS\System32\igfxtray.exe
HKLM_Run: hpsysdrv=c:\windows\system\hpsysdrv.exe
HKLM_Run: HotKeysCmds=C:\WINDOWS\System32\hkcmd.exe
HKLM_Run: dla=C:\WINDOWS\system32\dla\tfswctrl.exe
HKLM_Run: Google Desktop Search="C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
HKLM_Run: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
HKCU_Run: swg=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
HKCU_Run: ctfmon.exe=C:\WINDOWS\system32\ctfmon.exe

################## [ Informations ]

################## [ Fichiers # Dossiers infectieux ]

################## [ Registre # Clés Run infectieuses ]

################## [ Registre # Mountpoints2 ]

HKCU\Software\Microsoft\....\MountPoints2\{c94c2bef-8c94-11dd-ad6a-f569618eb134}\Shell\AutoRun\command

################## [ ! Fin du rapport # UsbFix V3.017 ! ]

Ambul

Réponse 30 / 31

ambul

Bonjour Chiquitine29,

Le fonctionnement de mon PC est toujours perturbé.
Une petite différence, l"imprimante apparait dans le panneau de configuration, mais elle reste hors connexion. Je précise qu'elle est branchée sur une prise USB. Toujours pas d'affichage dans le gestionnaire de périphériques.

Je dois m'absenter pendant 3 semaines jusqu'au 31 mai.
Je serais heureux de reprendre contact pour règler mes problèmes, si toutefois tu le veux bien.

Merci pour tout ce que tu as fait pour moi.
Et à +.

Ambul

Réponse 31 / 31

Ambul

Bonjour Chiquitine,

Je suis rentré à la maison.
Pas de changement dans le fonctionnement du PC.
Je serais bien sûr très heureux si tu voulais bien continuer à me donner des conseils.
Il existe sur mon PC, dans les outils HP, un utilitaire "Réinstallation du système".
Ne pourrait-il corriger les erreurs qu'il peut-y avoir dans la base de registre?
Cela correspondrait-il à un formatage du disque dur? Je ne possède pas de disque d'installation.
Et dans ce cas, faudrait-il réinstaller toutes les mises à jour et logiciels installés depuis la mise en route, y compris configuration de la live-box?
Toutes mes excuses si je dis des "conneries".
Tu me parles de Access.exe, y a-t'il un rapport avec la fenêtre qui s'affiche "Direct Access Component a rencontré un problème et doit fermer"?

Ambul

Votre réponse