Bug général vista anti virus et MàJ desactivé

rastaflamme -
Utilisateur anonyme - 6 mai 2009 à 20:47

Bonjour,
j'ai vraiment un gros bug sur mon ordi je suis sur vista et il plante au démarrage le gestionnaire des taches est inaccessible mon anti virus et centres de sécurité windows sont désactivés.
J'ai visité pas mal de sujet sans succès avant de me decider à creer mon propre topic.
J'ai essayé de lancer hijackthis mais il cesse de fonctionner, j'ai fais une analyse avec spybot, rien non plus!
Please help!!!
Merci d'avance pour les réponses

Afficher la suite

A voir également:

Bug général vista anti virus et MàJ desactivé
Compte facebook désactivé - Guide
Pave tactile desactive - Guide
È maj - Guide
Malwarebytes anti-malware - Télécharger - Antivirus & Antimalwares
Virus mcafee - Accueil - Piratage

78 réponses

Réponse 61 / 78

rastaflamme

Logfile of random's system information tool 1.06 (written by random/random)
Run by adam at 2009-05-06 12:25:40
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1
System drive C: has 67 GB (48%) free of 140 GB
Total RAM: 3061 MB (84% free)

======Scheduled tasks folder======

C:\Windows\tasks\McDefragTask.job
C:\Windows\tasks\McQcTask.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{27B4851A-3207-45A2-B947-BE8AFE6163AB}]
McAfee Phishing Filter - c:\PROGRA~1\mcafee\msk\mskapbho.dll [2009-01-09 246800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2008-12-16 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll [2009-03-25 62784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2008-12-20 251504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll [2009-04-07 668656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll [2008-12-20 522224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CA6319C0-31B7-401E-A518-A07C3DB8F777}]
CBrowserHelperObject Object - C:\Program Files\Dell\BAE\BAE.dll [2006-11-09 98304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-09 35840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2008-12-20 251504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SigmatelSysTrayApp"=C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe [2007-11-12 405504]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-01-05 413696]
"Persistence"=C:\Windows\system32\igfxpers.exe [2008-03-06 133656]
"PCMService"=C:\Program Files\Dell\MediaDirect\PCMService.exe [2007-11-01 189736]
"OEM02Mon.exe"=C:\Windows\OEM02Mon.exe [2007-08-28 36864]
"mcagent_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2009-01-08 645328]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-04-02 342312]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2008-03-06 141848]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-02-11 186904]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2008-03-06 166424]
"Google IME Autoupdater"=C:\Program Files\Google\Google Pinyin\GooglePinyinDaemon.exe [2008-10-17 308720]
"Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-04-01 1838592]
"ECenter"=C:\Dell\E-Center\EULALauncher.exe [2008-01-18 17920]
"dscactivate"=C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe [2008-02-13 16384]
"DellSupportCenter"=C:\Program Files\Dell Support Center\bin\sprtcmd.exe [2008-08-14 206064]
"DELL Webcam Manager"=C:\Program Files\Dell\Dell Webcam Manager\DellWMgr.exe [2007-07-27 118784]
"Broadcom Wireless Manager UI"=C:\Windows\system32\WLTRAY.exe [2007-12-12 3444736]
"Apoint"=C:\Program Files\DellTPad\Apoint.exe [2007-09-07 159744]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-19 202240]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-04-01 68856]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
"MsnMsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2007-10-18 5724184]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2002-04-11 1458448]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Digital Line Detect.lnk - C:\Program Files\Digital Line Detect\DLG.exe
QuickSet.lnk - C:\Program Files\Dell\QuickSet\quickset.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2008-03-06 200704]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NofolderOptions"=
"NoFind"=
"NoRun"=
"NoDrives"=0
"NoViewContextMenu"=0
"NoWinKeys"=0
"NoDriveAutoRun"=FFFFFFFF
"NoDriveTypeAutoRun"=36

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=
"NoFolderOptions"=
"NoLogOff"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\uusee\UUSeePlayer.exe"="C:\Program Files\uusee\UUSeePlayer.exe:*:Enabled:UUPlayer"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======List of files/folders created in the last 2 months======

2009-05-06 12:09:38 ----D---- C:\rsit
2009-05-06 03:40:15 ----A---- C:\rapport_clean.txt
2009-05-06 02:41:55 ----D---- C:\ProgramData\TEMP
2009-05-06 02:41:49 ----A---- C:\Windows\system32\msxml.dll
2009-05-06 02:41:48 ----A---- C:\Windows\system32\STKIT432.DLL
2009-05-06 02:41:45 ----D---- C:\Program Files\Registry Mechanic
2009-05-06 02:24:07 ----D---- C:\Program Files\QUAD Utilities
2009-05-06 01:52:18 ----D---- C:\Windows\BDOSCAN8
2009-05-06 00:12:24 ----A---- C:\Windows\msnfix.txt
2009-05-05 23:11:28 ----SHD---- C:\found.002
2009-05-05 03:11:51 ----A---- C:\Windows\ntbtlog.txt
2009-05-05 01:42:42 ----A---- C:\TCleaner.txt
2009-05-05 00:00:32 ----D---- C:\Users\adam\AppData\Roaming\Malwarebytes
2009-05-05 00:00:28 ----D---- C:\ProgramData\Malwarebytes
2009-05-05 00:00:28 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-05-04 05:33:59 ----RASHD---- C:\autorun.inf
2009-05-04 03:35:17 ----A---- C:\rapport.txt
2009-05-04 03:34:35 ----A---- C:\Windows\system32\WS2Fix.exe
2009-05-04 03:34:35 ----A---- C:\Windows\system32\VCCLSID.exe
2009-05-04 03:34:35 ----A---- C:\Windows\system32\VACFix.exe
2009-05-04 03:34:35 ----A---- C:\Windows\system32\swxcacls.exe
2009-05-04 03:34:35 ----A---- C:\Windows\system32\swsc.exe
2009-05-04 03:34:35 ----A---- C:\Windows\system32\swreg.exe
2009-05-04 03:34:35 ----A---- C:\Windows\system32\SrchSTS.exe
2009-05-04 03:34:35 ----A---- C:\Windows\system32\o4Patch.exe
2009-05-04 03:34:35 ----A---- C:\Windows\system32\IEDFix.exe
2009-05-04 03:34:35 ----A---- C:\Windows\system32\IEDFix.C.exe
2009-05-04 03:34:35 ----A---- C:\Windows\system32\dumphive.exe
2009-05-04 03:34:35 ----A---- C:\Windows\system32\Agent.OMZ.Fix.exe
2009-05-04 03:34:35 ----A---- C:\Windows\system32\404Fix.exe
2009-05-04 02:17:00 ----D---- C:\Program Files\Enigma Software Group
2009-05-04 01:13:21 ----D---- C:\Windows\temp
2009-05-04 01:02:02 ----A---- C:\Windows\system32\MPFServiceFailureCount.txt
2009-05-04 00:54:47 ----A---- C:\Windows\zip.exe
2009-05-04 00:54:47 ----A---- C:\Windows\vFind.exe
2009-05-04 00:54:47 ----A---- C:\Windows\SWXCACLS.exe
2009-05-04 00:54:47 ----A---- C:\Windows\SWSC.exe
2009-05-04 00:54:47 ----A---- C:\Windows\SWREG.exe
2009-05-04 00:54:47 ----A---- C:\Windows\sed.exe
2009-05-04 00:54:47 ----A---- C:\Windows\NIRCMD.exe
2009-05-04 00:54:47 ----A---- C:\Windows\grep.exe
2009-05-04 00:54:27 ----D---- C:\Windows\ERDNT
2009-05-03 20:37:05 ----A---- C:\curr_ver.tmp
2009-05-03 19:53:43 ----A---- C:\resultat_clean.txt
2009-05-03 18:33:42 ----SHD---- C:\found.001
2009-05-02 01:04:23 ----D---- C:\Windows\pss
2009-05-02 00:23:03 ----D---- C:\fsaua.data
2009-05-01 23:57:30 ----D---- C:\Program Files\Common Files\Windows Live
2009-05-01 22:07:26 ----D---- C:\Program Files\Trend Micro
2009-05-01 13:33:23 ----D---- C:\Users\adam\AppData\Roaming\vlc
2009-04-30 16:57:48 ----SHD---- C:\found.000
2009-04-30 15:44:23 ----D---- C:\Windows\Sun
2009-04-30 14:54:30 ----D---- C:\ProgramData\Spybot - Search & Destroy
2009-04-30 14:54:30 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-04-30 12:45:32 ----D---- C:\669a40af23fd7d85b00864d1c255b4
2009-04-30 04:11:12 ----D---- C:\Users\adam\AppData\Roaming\InstallShield
2009-04-30 01:32:51 ----A---- C:\Windows\system32\difxapi.dll
2009-04-30 01:32:38 ----D---- C:\Intel
2009-04-26 20:41:16 ----D---- C:\Program Files\TVAnts
2009-04-20 04:13:01 ----D---- C:\Program Files\Apple Software Update
2009-04-20 04:11:46 ----A---- C:\Windows\system32\GEARAspi.dll
2009-04-20 04:11:05 ----D---- C:\Program Files\iPod
2009-04-20 04:10:56 ----D---- C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
2009-04-20 04:10:56 ----D---- C:\Program Files\iTunes
2009-04-20 04:08:32 ----D---- C:\Program Files\Bonjour
2009-04-20 04:06:40 ----D---- C:\Program Files\QuickTime
2009-04-16 08:24:36 ----A---- C:\Windows\system32\winhttp.dll
2009-04-16 08:24:31 ----A---- C:\Windows\system32\xolehlp.dll
2009-04-16 08:24:31 ----A---- C:\Windows\system32\msdtcprx.dll
2009-04-16 08:24:20 ----A---- C:\Windows\system32\rpcss.dll
2009-04-16 08:24:20 ----A---- C:\Windows\system32\ntkrnlpa.exe
2009-04-16 08:24:19 ----A---- C:\Windows\system32\ntoskrnl.exe
2009-04-16 08:24:18 ----A---- C:\Windows\system32\sdohlp.dll
2009-04-16 08:24:18 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2009-04-16 08:24:18 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2009-04-16 08:24:18 ----A---- C:\Windows\system32\iasrecst.dll
2009-04-16 08:24:18 ----A---- C:\Windows\system32\iasdatastore.dll
2009-04-16 08:24:17 ----A---- C:\Windows\system32\iashost.exe
2009-04-16 08:24:17 ----A---- C:\Windows\system32\iasads.dll
2009-04-16 08:24:11 ----A---- C:\Windows\system32\lsasrv.dll
2009-04-16 08:24:11 ----A---- C:\Windows\system32\kernel32.dll
2009-04-16 08:24:10 ----A---- C:\Windows\system32\secur32.dll
2009-04-16 08:24:10 ----A---- C:\Windows\system32\apilogen.dll
2009-04-16 08:24:10 ----A---- C:\Windows\system32\amxread.dll
2009-04-16 08:24:03 ----A---- C:\Windows\system32\mshtml.dll
2009-04-16 08:24:00 ----A---- C:\Windows\system32\ieframe.dll
2009-04-16 08:23:59 ----A---- C:\Windows\system32\urlmon.dll
2009-04-16 08:23:58 ----A---- C:\Windows\system32\wininet.dll
2009-04-16 08:23:58 ----A---- C:\Windows\system32\occache.dll
2009-04-16 08:23:58 ----A---- C:\Windows\system32\msfeeds.dll
2009-04-16 08:23:58 ----A---- C:\Windows\system32\iertutil.dll
2009-04-16 08:23:58 ----A---- C:\Windows\system32\iedkcs32.dll
2009-04-16 08:23:58 ----A---- C:\Windows\system32\ieaksie.dll
2009-04-16 08:23:57 ----A---- C:\Windows\system32\ieUnatt.exe
2009-04-16 08:23:57 ----A---- C:\Windows\system32\ieencode.dll
2009-04-16 08:23:56 ----A---- C:\Windows\system32\mstime.dll
2009-04-16 08:23:55 ----A---- C:\Windows\system32\jsproxy.dll
2009-04-03 05:23:53 ----D---- C:\Program Files\Guitar Pro 5
2009-03-11 10:56:55 ----A---- C:\Windows\system32\wmp.dll
2009-03-11 10:56:51 ----A---- C:\Windows\system32\spwmp.dll
2009-03-11 10:56:51 ----A---- C:\Windows\system32\dxmasf.dll
2009-03-11 10:56:50 ----A---- C:\Windows\system32\wmploc.DLL
2009-03-11 10:56:42 ----A---- C:\Windows\system32\schannel.dll

======List of files/folders modified in the last 2 months======

2009-05-06 12:24:44 ----D---- C:\Program Files\Mozilla Firefox
2009-05-06 12:22:27 ----D---- C:\Windows
2009-05-06 12:05:32 ----RD---- C:\Program Files
2009-05-06 04:03:37 ----D---- C:\Windows\system32\drivers
2009-05-06 03:08:48 ----D---- C:\Windows\System32
2009-05-06 02:41:55 ----HD---- C:\ProgramData
2009-05-06 01:52:20 ----SD---- C:\Windows\Downloaded Program Files
2009-05-05 03:45:09 ----D---- C:\Windows\Minidump
2009-05-05 03:33:58 ----D---- C:\Windows\Prefetch
2009-05-05 03:31:36 ----D---- C:\Program Files\McAfee
2009-05-05 02:18:05 ----D---- C:\Windows\Debug
2009-05-04 01:13:23 ----D---- C:\Windows\system32\fr-FR
2009-05-04 01:11:04 ----A---- C:\Windows\system.ini
2009-05-04 01:09:45 ----D---- C:\Windows\AppPatch
2009-05-04 01:09:44 ----D---- C:\Program Files\Common Files
2009-05-01 23:57:30 ----SD---- C:\ProgramData\Microsoft
2009-04-30 15:42:59 ----D---- C:\Windows\system32\catroot2
2009-04-30 04:12:05 ----D---- C:\Windows\system32\Tasks
2009-04-30 04:11:31 ----HD---- C:\Program Files\InstallShield Installation Information
2009-04-30 04:11:31 ----D---- C:\Program Files\Creative
2009-04-30 04:10:54 ----SHD---- C:\System Volume Information
2009-04-30 04:10:24 ----SHD---- C:\Windows\Installer
2009-04-30 04:10:20 ----D---- C:\Windows\winsxs
2009-04-29 16:31:00 ----D---- C:\Windows\system32\config
2009-04-29 16:30:52 ----D---- C:\Windows\Tasks
2009-04-29 16:30:52 ----D---- C:\Windows\system32\spool
2009-04-29 16:30:52 ----D---- C:\Windows\system32\Msdtc
2009-04-29 16:30:52 ----D---- C:\Windows\inf
2009-04-29 16:30:52 ----D---- C:\Users\adam\AppData\Roaming\Azureus
2009-04-29 16:30:50 ----D---- C:\Windows\system32\wbem
2009-04-29 16:30:50 ----D---- C:\Windows\registration
2009-04-29 15:04:59 ----D---- C:\Windows\system32\LogFiles
2009-04-23 21:51:52 ----D---- C:\Users\adam\AppData\Roaming\dvdcss
2009-04-20 04:11:47 ----D---- C:\Windows\system32\catroot
2009-04-20 04:11:45 ----DC---- C:\Windows\system32\DRVSTORE
2009-04-20 04:11:04 ----D---- C:\Program Files\Common Files\Apple
2009-04-20 04:10:56 ----D---- C:\ProgramData\Apple Computer
2009-04-17 04:22:42 ----D---- C:\Program Files\Windows Mail
2009-04-17 04:22:38 ----D---- C:\Windows\system32\manifeststore
2009-04-17 04:22:36 ----D---- C:\Program Files\Internet Explorer
2009-04-13 00:54:31 ----D---- C:\Program Files\Java
2009-04-12 14:38:41 ----D---- C:\Users\adam\AppData\Roaming\LimeWire
2009-04-11 09:31:28 ----D---- C:\Program Files\Azureus
2009-04-06 07:57:26 ----A---- C:\Windows\system32\mrt.exe
2009-04-04 04:45:39 ----A---- C:\Windows\system32\PerfStringBackup.INI
2009-04-03 05:23:55 ----RSD---- C:\Windows\Fonts
2009-03-15 11:50:18 ----D---- C:\ProgramData\McAfee
2009-03-12 04:09:22 ----D---- C:\Program Files\Windows Media Player

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 MPFP;MPFP; C:\Windows\System32\Drivers\Mpfp.sys [2008-10-23 130424]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-09-06 39936]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-09-06 42496]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-09-06 37376]
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows 2000/XP/Vista; C:\Windows\system32\DRIVERS\Apfiltr.sys [2007-09-07 155136]
R3 BCM43XX;Pilote de la carte réseau local sans fil Wireless de Dell; C:\Windows\system32\DRIVERS\bcmwl6.sys [2007-12-12 1044984]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\System32\Drivers\GEARAspiWDM.sys [2009-03-19 23400]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-19 11264]
R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2007-09-29 278528]
S1 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2009-03-25 214024]
S2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]
S2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2006-08-05 8192]
S3 BCM42RLY;BCM42RLY; C:\Windows\system32\drivers\BCM42RLY.sys []
S3 catchme;catchme; \??\C:\Users\adam\AppData\Local\Temp\catchme.sys []
S3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-19 14208]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 e1express;Pilote de la connexion réseau Intel(R) PRO/1000 PCI Express; C:\Windows\system32\DRIVERS\e1e6032.sys [2006-11-02 200704]
S3 fbxusb;Carte réseau virtuelle FreeBox USB; C:\Windows\system32\DRIVERS\fbxusb32.sys [2004-10-20 21344]
S3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2006-11-03 986624]
S3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2006-11-03 206848]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2008-03-06 2016256]
S3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI Service; C:\Windows\system32\drivers\IntcHdmi.sys [2008-03-06 111616]
S3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2009-03-25 79880]
S3 mfebopk;McAfee Inc. mfebopk; C:\Windows\system32\drivers\mfebopk.sys [2009-03-25 35272]
S3 mferkdk;McAfee Inc. mferkdk; C:\Windows\system32\drivers\mferkdk.sys [2009-03-25 34216]
S3 mfesmfk;McAfee Inc. mfesmfk; C:\Windows\system32\drivers\mfesmfk.sys [2009-03-25 40552]
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 OEM02Dev;Creative Camera OEM002 Driver; C:\Windows\system32\DRIVERS\OEM02Dev.sys [2007-08-28 235520]
S3 OEM02Vfx;Creative Camera OEM002 Video VFX Driver; C:\Windows\system32\DRIVERS\OEM02Vfx.sys [2007-08-28 7424]
S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2006-11-02 2028032]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-19 88576]
S3 STHDA;SigmaTel High Definition Audio CODEC; C:\Windows\system32\drivers\stwrt.sys [2007-11-12 330240]
S3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2006-11-03 659968]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-19 39936]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 mcmscsvc;McAfee Services; C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe [2009-01-08 797864]
R2 MpfService;McAfee Personal Firewall Service; C:\Program Files\McAfee\MPF\MPFSrv.exe [2009-03-19 884360]
S2 AESTFilters;Andrea ST Filters Service; C:\Windows\system32\aestsrv.exe [2007-11-12 73728]
S2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-03-26 132424]
S2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
S2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe [2009-02-11 354840]
S2 McNASvc;McAfee Network Agent; c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe [2009-01-09 2482848]
S2 McProxy;McAfee Proxy Service; c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe [2009-01-09 359952]
S2 McShield;McAfee Real-time Scanner; C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe [2009-03-25 144704]
S2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\McAfee\MSK\MskSrver.exe [2009-01-09 26640]
S2 SBSDWSCService;SBSD Security Center Service; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
S2 sprtsvc_dellsupportcenter;SupportSoft Sprocket Service (dellsupportcenter); C:\Program Files\Dell Support Center\bin\sprtsvc.exe [2008-08-14 201968]
S2 STacSV;SigmaTel Audio Service; C:\Windows\system32\STacSV.exe [2007-11-12 102400]
S2 wltrysvc;Dell Wireless WLAN Tray Service; C:\Windows\System32\WLTRYSVC.EXE [2007-12-12 24064]
S2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2006-08-05 386560]
S3 GoogleDesktopManager;GoogleDesktopManager; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-04-01 1838592]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-12-20 137200]
S3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-04-02 656168]
S3 McODS;McAfee Scanner; C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe [2009-04-01 365072]
S3 McSysmon;McAfee SystemGuards; C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe [2009-03-24 606736]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2007-12-02 74384]
S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]

-----------------EOF-----------------

Réponse 62 / 78

rastaflamme

info.txt logfile of random's system information tool 1.06 2009-05-06 12:26:18

======Uninstall list======

-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88564CEF-20A5-4EF2-A05F-309F2EBA9B06}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A1A5BA3E-9ABF-4037-820B-6151022B8ACB}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A82F10CB-18B5-4EAC-AEF2-FA49CD565626}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D5BA7C09-E523-478C-9C37-A1D86C76383E}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F6366726-BA44-4D6A-8ECE-476E2E616AD1}\setup.exe" -l0x40c
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)-->MsiExec.exe /X{6846389C-BAC0-4374-808E-B120F86AF5D7}
Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 8.1.2 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81200000003}
Advanced Audio FX Engine-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88564CEF-20A5-4EF2-A05F-309F2EBA9B06}\setup.exe" -l0x40c /remove
Advanced Video FX Engine-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D5BA7C09-E523-478C-9C37-A1D86C76383E}\setup.exe" -l0x40c /remove
Apple Mobile Device Support-->MsiExec.exe /I{AFA20D47-69C3-4030-8DF8-D37466E70F13}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Assistant de connexion Windows Live-->MsiExec.exe /I{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}
Azureus Vuze-->C:\Program Files\Azureus\uninstall.exe
Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
Browser Address Error Redirector-->MsiExec.exe /I{62230596-37E5-4618-A329-0D21F529A86F}
Carte réseau local sans fil Wireless de Dell-->"C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwlu00.exe" verbose /rootkey="Software\Broadcom\802.11\UninstallInfo" /rootdir="C:\Program Files\Dell\Dell Wireless WLAN Card"
Cisco EAP-FAST Module-->MsiExec.exe /I{BF53252E-4AB2-4C7F-A0FD-6100755745E3}
Cisco LEAP Module-->MsiExec.exe /I{76F9CF97-FC4B-4E20-B363-D127C888448F}
Cisco PEAP Module-->MsiExec.exe /I{4E5386F5-C0F6-4532-A54A-374865AEAB71}
Combined Community Codec Pack 2008-09-21 16:18-->"C:\Program Files\Combined Community Codec Pack\unins000.exe"
Dell Support Center (Support Software)-->MsiExec.exe /X{E3BFEE55-39E2-4BE0-B966-89FE583822C1}
Dell Touchpad-->C:\Program Files\DellTPad\Uninstap.exe ADDREMOVE
Dell Webcam Center-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A1A5BA3E-9ABF-4037-820B-6151022B8ACB}\setup.exe" -l0x40c /remove
Dell Webcam Manager-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F6366726-BA44-4D6A-8ECE-476E2E616AD1}\setup.exe" -l0x40c /remove
Digital Line Detect-->C:\Program Files\InstallShield Installation Information\{E646DCF0-5A68-11D5-B229-002078017FBF}\setup.exe -runfromtemp -l0x040c -removeonly
DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
DivX Plus DirectShow Filters-->C:\Program Files\DivX\DivXDSFiltersUninstall.exe /DSFILTERS
DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
EmoDio-->"C:\Program Files\InstallShield Installation Information\{C20CE592-B0F8-4D20-BF31-0151CA6331A6}\setup.exe" -runfromtemp -l0x040c -removeonly
EmoDio-->MsiExec.exe /X{C20CE592-B0F8-4D20-BF31-0151CA6331A6}
eMule-->"C:\Program Files\eMule\Uninstall.exe"
Favorit-->c:\users\adam\appdata\local\orzdefoq.bat
Freeplayer-->C:\Program Files\Freeplayer\Uninstall.exe
Google Desktop-->C:\Program Files\Google\Google Desktop Search\GoogleDesktopSetup.exe -uninstall
Google Pinyin IME-->"C:\Program Files\Google\Google Pinyin\Uninstall.exe"
Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_0531C63A913CC9D1.exe" /uninstall
Guide de l'utilisateur-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5CD29180-A95E-11D3-A4EB-00C04F7BDB2C}\setup.exe"
Guide de mise en route Dell-->MsiExec.exe /I{9954484F-6EE4-4040-94E3-4B380646F867}
Guitar Pro 5.2-->"C:\Program Files\Guitar Pro 5\unins000.exe"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Intel® Matrix Storage Manager-->C:\Program Files\Intel\Intel Matrix Storage Manager\Uninstall\imsmudlg.exe -uninstall
iTunes-->MsiExec.exe /I{5EFCBB42-36AB-4FF9-B90C-E78C7B9EE7B3}
Java(TM) 6 Update 11-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Java(TM) SE Runtime Environment 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160000}
Lame ACM MP3 Codec-->"C:\Windows\IFinst26.exe" -UC:\Program Files\Lame MP3 Codec\IFU33DA.inf
Laptop Integrated Webcam Driver (1.03.02.0719) -->C:\Windows\CtDrvIns.exe -uninstall -script OEM002.uns -plugin OEM02Pin.dll -pluginres OEM02Pin.crl -nodisconprompt -langid 0x040C
LimeWire PRO 4.18.8-->"C:\Program Files\LimeWire\uninstall.exe"
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
McAfee SecurityCenter-->C:\Program Files\McAfee\MSC\mcuninst.exe
MediaDirect-->C:\Program Files\InstallShield Installation Information\{9C6978E8-B6D0-4AB7-A7A0-D81A74FBF745}\setup.exe -runfromtemp -l0x040c -cluninstall
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Works-->MsiExec.exe /I{3B160861-7250-451E-B5EE-8B92BF30A710}
Module de compatibilité pour Microsoft Office System 2007-->MsiExec.exe /X{90120000-0020-040C-0000-0000000FF1CE}
Mozilla Firefox (3.0.9)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
NetWaiting-->C:\Program Files\InstallShield Installation Information\{3F92ABBB-6BBF-11D5-B229-002078017FBF}\setup.exe -runfromtemp -l0x040c -removeonly
OpenOffice.org Installer 1.0-->MsiExec.exe /X{3A2AF807-9F9F-43C9-A24A-17B617238B74}
Outil de diagnostic de modem-->MsiExec.exe /I{F63A3748-B93D-4360-9AD4-B064481A5C7B}
OutlookAddinSetup-->MsiExec.exe /I{9BDEF074-020E-458D-ADC5-8FF68E0C9B56}
QuickSet-->MsiExec.exe /I{4B6AD248-D3BF-426A-8D64-847288154F13}
QuickTime-->MsiExec.exe /I{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}
Registry Mechanic 8.0-->"C:\Program Files\Registry Mechanic\unins000.exe" /Log
Roxio Creator Audio-->MsiExec.exe /I{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}
Roxio Creator Copy-->MsiExec.exe /I{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}
Roxio Creator Data-->MsiExec.exe /I{08E81ABD-79F7-49C2-881F-FD6CB0975693}
Roxio Creator DE-->C:\ProgramData\Uninstall\{09760D42-E223-42AD-8C3E-55B47D0DDAC3}\setup.exe /x {09760D42-E223-42AD-8C3E-55B47D0DDAC3}
Roxio Creator DE-->MsiExec.exe /I{ED439A64-F018-4DD4-8BA5-328D85AB09AB}
Roxio Creator Tools-->MsiExec.exe /I{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}
Roxio Express Labeler 3-->MsiExec.exe /I{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
Roxio Update Manager-->MsiExec.exe /I{30465B6C-B53F-49A1-9EBA-A3F187AD502E}
Safari-->MsiExec.exe /I{C9D96682-5A4D-45FA-BA3E-DDCB2B0CB868}
SopCast 3.0.3-->C:\Program Files\SopCast\uninst.exe
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
VC80CRTRedist - 8.0.50727.762-->MsiExec.exe /I{767CC44C-9BBC-438D-BAD3-FD4595DD148B}
VLC media player 0.9.9-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
XviD MPEG-4 Video Codec-->"C:\Program Files\XviD\unins000.exe"

======Hosts File======

::1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com

======Security center information======

AS: Spybot - Search and Destroy (disabled)

======System event log======

Computer Name: PC-adam
Event Code: 4
Message: Le spouleur d’impression n’a pas pu rouvrir une connexion d’imprimante existante car il n’a pas pu lire les informations de configuration dans la clé de Registre S-1-5-18\Printers\Connections. Le spouleur d’impression n’a pas pu ouvrir la clé de Registre. Ceci peut se produire si la clé de Registre est endommagée ou absente, ou si le Registre est momentanément indisponible.
Record Number: 30212
Source Name: Microsoft-Windows-SpoolerWin32SPL
Time Written: 20080710013653.000000-000
Event Type: Avertissement
User:

Computer Name: PC-adam
Event Code: 4
Message: Le spouleur d’impression n’a pas pu rouvrir une connexion d’imprimante existante car il n’a pas pu lire les informations de configuration dans la clé de Registre S-1-5-18\Printers\Connections. Le spouleur d’impression n’a pas pu ouvrir la clé de Registre. Ceci peut se produire si la clé de Registre est endommagée ou absente, ou si le Registre est momentanément indisponible.
Record Number: 30213
Source Name: Microsoft-Windows-SpoolerWin32SPL
Time Written: 20080710013653.000000-000
Event Type: Avertissement
User:

Computer Name: PC-adam
Event Code: 10002
Message: Le module d’extensibilité WLAN s’est arrêté.

Chemin d’accès du module : C:\Windows\System32\bcmihvsrv.dll

Record Number: 30226
Source Name: Microsoft-Windows-WLAN-AutoConfig
Time Written: 20080710130916.790800-000
Event Type: Avertissement
User: AUTORITE NT\SYSTEM

Computer Name: PC-adam
Event Code: 4001
Message: Le Service d’autoconfiguration WLAN s’est arrêté correctement.

Record Number: 30227
Source Name: Microsoft-Windows-WLAN-AutoConfig
Time Written: 20080710130916.822000-000
Event Type: Avertissement
User: AUTORITE NT\SYSTEM

Computer Name: PC-adam
Event Code: 15016
Message: Impossible d’initialiser le package de sécurité Kerberos pour l’authentification côté serveur. Le champ de données contient le numéro de l’erreur.
Record Number: 30239
Source Name: Microsoft-Windows-HttpEvent
Time Written: 20080710131024.474605-000
Event Type: Erreur
User:

=====Application event log=====

Computer Name: PC-adam
Event Code: 1015
Message: La connexion au serveur est impossible. Erreur : 0x8007043C
Record Number: 27983
Source Name: MsiInstaller
Time Written: 20090506020955.000000-000
Event Type: Avertissement
User: PC-adam\adam

Computer Name: PC-adam
Event Code: 6000
Message: L’abonné aux notifications Winlogon <GPClient> n’était pas disponible pour traiter un événement de notification.
Record Number: 27990
Source Name: Microsoft-Windows-Winlogon
Time Written: 20090506102330.000000-000
Event Type: Avertissement
User:

Computer Name: PC-adam
Event Code: 4609
Message: Le système d'événements de COM+ a détecté un code de renvoi erroné lors de son traitement interne. Le HRESULT est 8007043c à partir de la ligne 45 de d:\vistasp1_gdr\com\complus\src\events\tier1\eventsystemobj.cpp. Contactez les services de support technique Microsoft pour signaler cette erreur.
Record Number: 27992
Source Name: Microsoft-Windows-EventSystem
Time Written: 20090506102345.000000-000
Event Type: Erreur
User:

Computer Name: PC-adam
Event Code: 1000
Message: Application défaillante adam.exe, version 2.0.0.2, horodatage 0x466838c1, module défaillant OLEAUT32.dll, version 6.0.6001.18000, horodatage 0x4791a74f, code d’exception 0xc0000006, décalage d’erreur 0x0004de5e, ID du processus 0x708, heure de début de l’application 0x01c9ce3501e962ff.
Record Number: 27993
Source Name: Application Error
Time Written: 20090506102609.000000-000
Event Type: Erreur
User:

Computer Name: PC-adam
Event Code: 1005
Message: Windows ne peut pas accéder au fichier C:\Windows\System32\oleaut32.dll pour une des raisons suivantes : un problème s’est produit avec la connexion réseau, le disque sur lequel le fichier est enregistré, ou les pilotes de stockage installés sur cet ordinateur, ou le disque est manquant. Windows a fermé le programme HijackThis en raison de cette erreur.

Programme : HijackThis
Fichier : C:\Windows\System32\oleaut32.dll

La valeur de l’erreur est affichée dans la section Données supplémentaires.
Action utilisateur
1. Ouvrez à nouveau le fichier. Cette situation peut résulter d’un problème temporaire qui se corrigera de lui-même à la prochaine exécution du programme.
2. Si le fichier est toujours inaccessible et
- Il se trouve sur le réseau : votre administrateur réseau devrait vérifier qu’il n’y a aucun problème avec le réseau et que le serveur peut être contacté.
- Il se trouve sur un disque amovible, par exemple une disquette ou un CD-ROM : vérifiez que le disque est inséré correctement dans l’ordinateur.
3. Vérifiez et réparez le système de fichiers en exécutant CHKDSK. Pour exécuter CHKDSK, cliquez sur Démarrer, Exécuter, entrez CMD puis cliquez sur OK. À l’invite de commandes, entrez CHKDSK /F et appuyez sur Entrée.
4. Si le problème persiste, restaurez le fichier à partir d’une copie de sauvegarde.
5. Déterminez si d’autres fichiers du même disque peuvent être ouverts. Si ce n’est pas le cas, le disque est peut-être endommagé. S’il s’agit d’un disque dur, contactez votre administrateur ou le distributeur de votre ordinateur pour obtenir une assistance supplémentaire.

Données supplémentaires
Valeur de l’erreur : C0000185
Type du disque : 3
Record Number: 27994
Source Name: Application Error
Time Written: 20090506102609.000000-000
Event Type: Erreur
User:

=====Security event log=====

Computer Name: PC-adam
Event Code: 4902
Message: La table de stratégie d’audit par utilisateur a été créée.

Nombre d’éléments : 0
ID de la stratégie : 0x10052
Record Number: 26107
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090127130938.802104-000
Event Type: Succès de l'audit
User:

Computer Name: PC-adam
Event Code: 4648
Message: Tentative d’ouverture de session en utilisant des informations d’identification explicites.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : PC-ADAM$
Domaine du compte : WORKGROUP
ID d’ouverture de session : 0x3e7
GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000}

Compte dont les informations d’identification ont été utilisées :
Nom du compte : SYSTEM
Domaine du compte : AUTORITE NT
GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000}

Serveur cible :
Nom du serveur cible : localhost
Informations supplémentaires : localhost

Informations sur le processus :
ID du processus : 0x29c
Nom du processus : C:\Windows\System32\services.exe

Informations sur le réseau :
Adresse du réseau : -
Port : -

Cet événement est généré lorsqu’un processus tente d’ouvrir une session pour un compte en spécifiant explicitement les informations d’identification de ce compte. Ceci se produit le plus souvent dans les configurations par lot comme les tâches planifiées, ou avec l’utilisation de la commande RUNAS.
Record Number: 26108
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090127130939.004905-000
Event Type: Succès de l'audit
User:

Computer Name: PC-adam
Event Code: 4624
Message: L’ouverture de session d’un compte s’est correctement déroulée.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : PC-ADAM$
Domaine du compte : WORKGROUP
ID d’ouverture de session : 0x3e7

Type d’ouverture de session : 5

Nouvelle ouverture de session :
ID de sécurité : S-1-5-18
Nom du compte : SYSTEM
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0x3e7
GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000}

Informations sur le processus :
ID du processus : 0x29c
Nom du processus : C:\Windows\System32\services.exe

Informations sur le réseau :
Nom de la station de travail :
Adresse du réseau source : -
Port source : -

Informations détaillées sur l’authentification :
Processus d’ouverture de session : Advapi
Package d’authentification : Negotiate
Services en transit : -
Nom du package (NTLM uniquement) : -
Longueur de la clé : 0

Cet événement est généré lors de la création d’une ouverture de session. Il est généré sur l’ordinateur sur lequel l’ouverture de session a été effectuée.

Le champ Objet indique le compte sur le système local qui a demandé l’ouverture de session. Il s’agit le plus souvent d’un service, comme le service Serveur, ou un processus local tel que Winlogon.exe ou Services.exe.

Le champ Type d’ouverture de session indique le type d’ouverture de session qui s’est produit. Les types les plus courants sont 2 (interactif) et 3 (réseau).

Le champ Nouvelle ouverture de session indique le compte pour lequel la nouvelle ouverture de session a été créée, par exemple, le compte qui s’est connecté.

Les champs relatifs au réseau indiquent la provenance d’une demande d’ouverture de session à distance. Le nom de la station de travail n’étant pas toujours disponible, peut être laissé vide dans certains cas.

Les champs relatifs aux informations d’authentification fournissent des détails sur cette demande d’ouverture de session spécifique.
- Le GUID d’ouverture de session est un identificateur unique pouvant servir à associer cet événement à un événement KDC .
- Les services en transit indiquent les services intermédiaires qui ont participé à cette demande d’ouverture de session.
- Nom du package indique quel est le sous-protocole qui a été utilisé parmi les protocoles NTLM.
- La longueur de la clé indique la longueur de la clé de session générée. Elle a la valeur 0 si aucune clé de session n’a été demandée.
Record Number: 26109
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090127130939.004905-000
Event Type: Succès de l'audit
User:

Computer Name: PC-adam
Event Code: 4672
Message: Privilèges spéciaux attribués à la nouvelle ouverture de session.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : SYSTEM
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0x3e7

Privilèges : SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 26110
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090127130939.004905-000
Event Type: Succès de l'audit
User:

Computer Name: PC-adam
Event Code: 4624
Message: L’ouverture de session d’un compte s’est correctement déroulée.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : PC-ADAM$
Domaine du compte : WORKGROUP
ID d’ouverture de session : 0x3e7

Type d’ouverture de session : 5

Nouvelle ouverture de session :
ID de sécurité : S-1-5-20
Nom du compte : SERVICE RÉSEAU
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0x3e4
GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000}

Informations sur le processus :
ID du processus : 0x29c
Nom du processus : C:\Windows\System32\services.exe

Informations sur le réseau :
Nom de la station de travail :
Adresse du réseau source : -
Port source : -

Informations détaillées sur l’authentification :
Processus d’ouverture de session : Advapi
Package d’authentification : Negotiate
Services en transit : -
Nom du package (NTLM uniquement) : -
Longueur de la clé : 0

Cet événement est généré lors de la création d’une ouverture de session. Il est généré sur l’ordinateur sur lequel l’ouverture de session a été effectuée.

Le champ Objet indique le compte sur le système local qui a demandé l’ouverture de session. Il s’agit le plus souvent d’un service, comme le service Serveur, ou un processus local tel que Winlogon.exe ou Services.exe.

Le champ Type d’ouverture de session indique le type d’ouverture de session qui s’est produit. Les types les plus courants sont 2 (interactif) et 3 (réseau).

Le champ Nouvelle ouverture de session indique le compte pour lequel la nouvelle ouverture de session a été créée, par exemple, le compte qui s’est connecté.

Les champs relatifs au réseau indiquent la provenance d’une demande d’ouverture de session à distance. Le nom de la station de travail n’étant pas toujours disponible, peut être laissé vide dans certains cas.

Les champs relatifs aux informations d’authentification fournissent des détails sur cette demande d’ouverture de session spécifique.
- Le GUID d’ouverture de session est un identificateur unique pouvant servir à associer cet événement à un événement KDC .
- Les services en transit indiquent les services intermédiaires qui ont participé à cette demande d’ouverture de session.
- Nom du package indique quel est le sous-protocole qui a été utilisé parmi les protocoles NTLM.
- La longueur de la clé indique la longueur de la clé de session générée. Elle a la valeur 0 si aucune clé de session n’a été demandée.
Record Number: 26111
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090127130939.223307-000
Event Type: Succès de l'audit
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\10.0\DLLShared\;C:\Windows\Microsoft.NET\Framework\v2.0.50727;C:\Program Files\QuickTime\QTSystem\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 13, GenuineIntel
"PROCESSOR_REVISION"=0f0d
"NUMBER_OF_PROCESSORS"=2
"RoxioCentral"=C:\Program Files\Common Files\Roxio Shared\10.0\Roxio Central36\
"CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip
"SAFEBOOT_OPTION"=NETWORK

-----------------EOF-----------------

Réponse 63 / 78

Utilisateur anonyme

tu avais bien supprimé infoSat.txt lorsque je te l ai demandé ?

Réponse 64 / 78

rastaflamme

oui je l'avais fait par l'invite de commande, il est revenu??
J'ai fait une analyse sur trend micro et il a détecté mal_otorun5, mais je sais pas s'il l'a desinfecté ça a buggé après.

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question

Réponse 65 / 78

Utilisateur anonyme

Télécharge HostXpert sur ton Bureau :

---> Décompresse-le (Clic droit >> Extraire ici)

---> Double-clique sur HostsXpert pour le lancer

---> clique sur le bouton "Restore MS Hosts File" puis ferme le programme

PS : Avant de cliquer sur le bouton "Restore MS Hosts File", vérifie que le cadenas en haut à gauche est ouvert sinon tu vas avoir un message d'erreur.

s'il est fermé , clique dessus :)

ensuite :

Télécharge OTListIt2 de OLDTimer

http://oldtimer.geekstogo.com/OTListIt2.exe

et enregistre le sur ton Bureau.

Double clic sur OTListIt2.exe pour le lancer.

Coche les 2 cases Lop et Purity

Coche la case devant "scan all users"

Clic sur Run Scan.

A la fin du scan, le Bloc-Notes va s'ouvrir avec le rapport.

Réponse 66 / 78

rastaflamme

OTListIt Extras logfile created on: 06/05/2009 14:41:05 - Run 1
OTListIt2 by OldTimer - Version 2.0.15.3 Folder = C:\Users\adam\Downloads
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 100,00% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 100,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 136,46 Gb Total Space | 65,41 Gb Free Space | 47,94% Space Free | Partition Type: NTFS
Drive D: | 10,00 Gb Total Space | 5,86 Gb Free Space | 58,58% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PC-ADAM
Current User Name: adam
Logged in as Administrator.

Current Boot Mode: SafeMode with Networking
Scan Mode: All users
Output = Standard
File Age = 30 Days
Company Name Whitelist: On

[color=orange]========== File Associations ==========/color

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[HKEY_USERS\S-1-5-21-3059027711-3390833181-208690561-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[color=orange]========== Security Center Settings ==========/color

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 1
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
File not found -- Reg Error: Unknown registry data type

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile
"DisableNotifications" = 0
"EnableFirewall" = 1

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
"DisableNotifications" = 0
"EnableFirewall" = 1
"DoNotAllowExceptions" = 1

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile
"DisableNotifications" = 0
"EnableFirewall" = 1

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile\GloballyOpenPorts\List

[color=orange]========== Authorized Applications List ==========/color

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
File not found -- C:\Program Files\uusee\UUSeePlayer.exe:*:Enabled:UUPlayer

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile\AuthorizedApplications\List]

[color=orange]========== Vista Active Open Ports Exception List ==========/color

{11E9BACC-1CEB-4393-BB90-7B0D30FC3A17} = LPORT=2869 | PROTOCOL=6 | DIR=IN | ACTION=ALLOW | NAME=WINDOWS LIVE MESSENGER (UPNP-IN) | APP=SYSTEM |
{1EC4F047-8C3C-460D-A868-02BF6E41552F} = LPORT=1900 | PROTOCOL=17 | DIR=IN | ACTION=ALLOW | NAME=WINDOWS LIVE MESSENGER (SSDP-IN) | APP=SVCHOST.EXE | SVC=SSDPSRV |

[color=orange]========== Vista Active Application Exception List ==========/color

{0CC6E109-8C26-4F6D-AA36-6EEA8D986B76} = PROFILE=PUBLIC | PROTOCOL=17 | DIR=IN | ACTION=ALLOW | NAME=MUZ AOD APP PLAYER | APP=C:\WINDOWS\SYSTEM32\MUZAPP.EXE |
{1E203DC6-CBE7-4013-855F-32446740CD7A} = PROFILE=PRIVATE | PROTOCOL=6 | DIR=IN | ACTION=ALLOW | NAME=MUZ AOD APP PLAYER | APP=C:\WINDOWS\SYSTEM32\MUZAPP.EXE |
{291B51E6-5F63-4116-8E15-8C09D54412F1} = PROFILE=PRIVATE | PROTOCOL=17 | DIR=IN | ACTION=ALLOW | NAME=ITUNES | APP=C:\PROGRAM FILES\ITUNES\ITUNES.EXE |
{3568CDEA-C8AE-4FDC-87FA-053F1B5554CA} = DIR=IN | ACTION=ALLOW | NAME=DELL MEDIADIRECT | APP=C:\PROGRAM FILES\DELL\MEDIADIRECT\MEDIADIRECT.EXE |
{389C2642-BA51-4CEF-B711-CF173D536DAB} = PROFILE=PRIVATE | PROTOCOL=6 | DIR=IN | ACTION=ALLOW | NAME=VEOH WEB PLAYER | APP=C:\PROGRAM FILES\VEOH NETWORKS\VEOHWEBPLAYER\VEOHWEBPLAYER.EXE |
{47B97F65-6ACD-4C95-9DE8-A3259D7F9F8F} = DIR=IN | ACTION=ALLOW | NAME=CYBERLINK MEDIA SERVER | APP=C:\PROGRAM FILES\DELL\MEDIADIRECT\KERNEL\DMS\CLMSSERVICE.EXE |
{48DA4EF9-B673-4E6A-BD4A-D0CBFC23238E} = PROFILE=PUBLIC | PROTOCOL=6 | DIR=IN | ACTION=ALLOW | NAME=MUZ AOD APP PLAYER | APP=C:\WINDOWS\SYSTEM32\MUZAPP.EXE |
{4E2E4799-5A4A-46EE-8B63-48BDF60C4C4D} = PROFILE=DOMAIN | DIR=IN | ACTION=ALLOW | NAME=MCAFEE NETWORK AGENT | APP=C:\PROGRAM FILES\COMMON FILES\MCAFEE\MNA\MCNASVC.EXE |
{58875E2C-E150-46CC-A39E-411D1C2B6B38} = PROFILE=PRIVATE | PROTOCOL=6 | DIR=IN | ACTION=ALLOW | NAME=BONJOUR | APP=C:\PROGRAM FILES\BONJOUR\MDNSRESPONDER.EXE |
{6E7455AA-A598-4BC3-872B-7499F91C5A70} = DIR=IN | ACTION=ALLOW | NAME=WINDOWS LIVE MESSENGER | APP=C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE |
{72BE568B-443F-4237-B190-EF2A71B451C3} = PROFILE=PRIVATE | PROTOCOL=17 | DIR=IN | ACTION=ALLOW | NAME=VEOH WEB PLAYER | APP=C:\PROGRAM FILES\VEOH NETWORKS\VEOHWEBPLAYER\VEOHWEBPLAYER.EXE |
{7BF99182-5AC3-41FF-B8F7-1D122D7DEEE6} = PROTOCOL=58 | DIR=OUT | ACTION=ALLOW | NAME=@IPHLPSVC.DLL,-203 |
{8521782B-5D2B-462C-AD0B-6588920A8DED} = PROTOCOL=58 | DIR=IN | ACTION=ALLOW | NAME=@IPHLPSVC.DLL,-202 | APP=SYSTEM |
{9AFAB3D5-550B-4C9C-8914-D0C886B5C0C0} = PROFILE=PUBLIC | PROTOCOL=17 | DIR=IN | ACTION=ALLOW | NAME=LIMEWIRE | APP=C:\PROGRAM FILES\LIMEWIRE\LIMEWIRE.EXE |
{A70B76C4-ECF5-4033-8E48-C1703E2FCAED} = PROFILE=PUBLIC | PROTOCOL=6 | DIR=IN | ACTION=ALLOW | NAME=LIMEWIRE | APP=C:\PROGRAM FILES\LIMEWIRE\LIMEWIRE.EXE |
{B4B6C8AA-B9A6-430C-9127-63B566C9F959} = DIR=IN | ACTION=ALLOW | NAME=WINDOWS LIVE MESSENGER (PHONE) | APP=C:\PROGRAM FILES\WINDOWS LIVE\MESSENGER\LIVECALL.EXE |
{BDC9002C-32B4-4193-9316-851B7C26B3A9} = DIR=IN | ACTION=ALLOW | NAME=CYBERLINK MEDIA SERVER BROWSER ENGINE | APP=C:\PROGRAM FILES\DELL\MEDIADIRECT\KERNEL\DMP\CLBROWSERENGINE.EXE |
{C0896FB3-39E0-47B4-BB5D-321108A340F3} = DIR=IN | ACTION=ALLOW | NAME=CYBERLINK POWERCINEMA RESIDENT PROGRAM | APP=C:\PROGRAM FILES\DELL\MEDIADIRECT\PCMSERVICE.EXE |
{DBA1F9FF-8D99-406F-B791-3C5F8AA1E34E} = PROFILE=PRIVATE | PROTOCOL=17 | DIR=IN | ACTION=ALLOW | NAME=BONJOUR | APP=C:\PROGRAM FILES\BONJOUR\MDNSRESPONDER.EXE |
{DE1DF76A-058A-4409-8B61-E109EBEDE0E9} = PROFILE=PRIVATE | PROTOCOL=17 | DIR=IN | ACTION=ALLOW | NAME=MUZ AOD APP PLAYER | APP=C:\WINDOWS\SYSTEM32\MUZAPP.EXE |
{F36D2E26-5AC0-4D41-B3B6-145F385C1F0F} = PROFILE=PRIVATE | PROTOCOL=6 | DIR=IN | ACTION=ALLOW | NAME=ITUNES | APP=C:\PROGRAM FILES\ITUNES\ITUNES.EXE |
TCP Query User{1C1B01B0-1999-4839-BEC0-F92DFD325A8C}C:\program files\itunes\itunes.exe = PROFILE=PUBLIC | PROTOCOL=6 | DIR=IN | ACTION=ALLOW | NAME=ITUNES | APP=C:\PROGRAM FILES\ITUNES\ITUNES.EXE |
TCP Query User{1E5E2F5A-F9FD-4AE4-AD9B-9B7911CE0E2C}C:\program files\freeplayer\vlc\vlc.exe = PROFILE=PRIVATE | PROTOCOL=6 | DIR=IN | ACTION=ALLOW | NAME=VLC MEDIA PLAYER | APP=C:\PROGRAM FILES\FREEPLAYER\VLC\VLC.EXE |
TCP Query User{1EADF103-E406-4618-882B-71E0046B6CE4}C:\program files\mozilla firefox\firefox.exe = PROFILE=PRIVATE | PROTOCOL=6 | DIR=IN | ACTION=ALLOW | NAME=FIREFOX | APP=C:\PROGRAM FILES\MOZILLA FIREFOX\FIREFOX.EXE |
TCP Query User{5979629B-7A35-426B-8353-0893B6222F96}C:\program files\emule\emule.exe = PROFILE=PRIVATE | PROTOCOL=6 | DIR=IN | ACTION=ALLOW | NAME=EMULE | APP=C:\PROGRAM FILES\EMULE\EMULE.EXE |
TCP Query User{6B287E79-880C-4AF5-960E-85CC4E6B0D08}C:\program files\sopcast\adv\sopadver.exe = PROFILE=PRIVATE | PROTOCOL=6 | DIR=IN | ACTION=ALLOW | NAME=SOPCAST ADVER | APP=C:\PROGRAM FILES\SOPCAST\ADV\SOPADVER.EXE |
TCP Query User{7FB8271C-4624-4EFF-8E2A-C7D807EEB5E6}C:\program files\sopcast\sopcast.exe = PROFILE=PRIVATE | PROTOCOL=6 | DIR=IN | ACTION=ALLOW | NAME=SOPCAST MAIN APPLICATION | APP=C:\PROGRAM FILES\SOPCAST\SOPCAST.EXE |
TCP Query User{A0444661-09F5-4E4B-B0B1-E10EE4B94D6D}C:\program files\limewire\limewire.exe = PROFILE=PRIVATE | PROTOCOL=6 | DIR=IN | ACTION=ALLOW | NAME=LIMEWIRE | APP=C:\PROGRAM FILES\LIMEWIRE\LIMEWIRE.EXE |
TCP Query User{ABD7EF57-49C9-4C69-B647-C5BD459EAC70}C:\program files\veoh networks\veoh\veohclient.exe = PROFILE=PUBLIC | PROTOCOL=6 | DIR=IN | ACTION=BLOCK | NAME=VEOH CLIENT | APP=C:\PROGRAM FILES\VEOH NETWORKS\VEOH\VEOHCLIENT.EXE |
TCP Query User{B43BB32C-3061-457C-935B-D5481D9D78CF}C:\program files\azureus\azureus.exe = PROFILE=PRIVATE | PROTOCOL=6 | DIR=IN | ACTION=ALLOW | NAME=AZUREUS | APP=C:\PROGRAM FILES\AZUREUS\AZUREUS.EXE |
TCP Query User{B9C9DA87-6E7D-4134-80FE-8ABD0C604DA3}C:\program files\freeplayer\vlc\vlc.exe = PROFILE=PUBLIC | PROTOCOL=6 | DIR=IN | ACTION=ALLOW | NAME=VLC MEDIA PLAYER | APP=C:\PROGRAM FILES\FREEPLAYER\VLC\VLC.EXE |
TCP Query User{BA41BC5F-D20C-4E78-9BA6-3AEA40F081B6}C:\program files\veoh networks\veohwebplayer\veohwebplayer.exe = PROFILE=PUBLIC | PROTOCOL=6 | DIR=IN | ACTION=BLOCK | NAME=VEOH WEB PLAYER BETA | APP=C:\PROGRAM FILES\VEOH NETWORKS\VEOHWEBPLAYER\VEOHWEBPLAYER.EXE |
TCP Query User{C0C9326A-C176-4E11-8ADA-3F44C4499DC7}C:\program files\veoh networks\veoh\veohclient.exe = PROFILE=PRIVATE | PROTOCOL=6 | DIR=IN | ACTION=BLOCK | NAME=VEOH CLIENT | APP=C:\PROGRAM FILES\VEOH NETWORKS\VEOH\VEOHCLIENT.EXE |
TCP Query User{DB4B5746-667B-41BD-B72D-4F8974CE84FF}C:\program files\azureus\azureus.exe = PROFILE=PUBLIC | PROTOCOL=6 | DIR=IN | ACTION=BLOCK | NAME=AZUREUS | APP=C:\PROGRAM FILES\AZUREUS\AZUREUS.EXE |
TCP Query User{DC1A1FDC-175E-4618-8A47-A68EB7D6DB31}C:\program files\tvuplayer\tvuplayer.exe = PROFILE=PRIVATE | PROTOCOL=6 | DIR=IN | ACTION=ALLOW | NAME=TVUPLAYER COMPONENT | APP=C:\PROGRAM FILES\TVUPLAYER\TVUPLAYER.EXE |
UDP Query User{0EBD4E2D-74B3-4B05-A183-DA72335CB2ED}C:\program files\limewire\limewire.exe = PROFILE=PRIVATE | PROTOCOL=17 | DIR=IN | ACTION=ALLOW | NAME=LIMEWIRE | APP=C:\PROGRAM FILES\LIMEWIRE\LIMEWIRE.EXE |
UDP Query User{149ACCC8-BFE3-4B5B-B402-51E092DE9733}C:\program files\azureus\azureus.exe = PROFILE=PRIVATE | PROTOCOL=17 | DIR=IN | ACTION=ALLOW | NAME=AZUREUS | APP=C:\PROGRAM FILES\AZUREUS\AZUREUS.EXE |
UDP Query User{1E2D4C1B-2231-4B23-8D25-F038526579B8}C:\program files\veoh networks\veohwebplayer\veohwebplayer.exe = PROFILE=PUBLIC | PROTOCOL=17 | DIR=IN | ACTION=BLOCK | NAME=VEOH WEB PLAYER BETA | APP=C:\PROGRAM FILES\VEOH NETWORKS\VEOHWEBPLAYER\VEOHWEBPLAYER.EXE |
UDP Query User{2F825E0E-E9C5-4EA3-A1DC-1D96711802BA}C:\program files\tvuplayer\tvuplayer.exe = PROFILE=PRIVATE | PROTOCOL=17 | DIR=IN | ACTION=ALLOW | NAME=TVUPLAYER COMPONENT | APP=C:\PROGRAM FILES\TVUPLAYER\TVUPLAYER.EXE |
UDP Query User{37D4EDAC-DA56-4F9E-8555-8F0FAC7C174A}C:\program files\sopcast\adv\sopadver.exe = PROFILE=PRIVATE | PROTOCOL=17 | DIR=IN | ACTION=ALLOW | NAME=SOPCAST ADVER | APP=C:\PROGRAM FILES\SOPCAST\ADV\SOPADVER.EXE |
UDP Query User{620EF642-4A85-492B-8B43-CD50090FD249}C:\program files\veoh networks\veoh\veohclient.exe = PROFILE=PUBLIC | PROTOCOL=17 | DIR=IN | ACTION=BLOCK | NAME=VEOH CLIENT | APP=C:\PROGRAM FILES\VEOH NETWORKS\VEOH\VEOHCLIENT.EXE |
UDP Query User{7674816A-9024-4FD5-A412-462A9FC5BBCB}C:\program files\itunes\itunes.exe = PROFILE=PUBLIC | PROTOCOL=17 | DIR=IN | ACTION=ALLOW | NAME=ITUNES | APP=C:\PROGRAM FILES\ITUNES\ITUNES.EXE |
UDP Query User{7A0CD7B8-33CF-4C66-A274-9199965A00A6}C:\program files\freeplayer\vlc\vlc.exe = PROFILE=PUBLIC | PROTOCOL=17 | DIR=IN | ACTION=ALLOW | NAME=VLC MEDIA PLAYER | APP=C:\PROGRAM FILES\FREEPLAYER\VLC\VLC.EXE |
UDP Query User{9FF1627C-ACCC-4FEC-B735-5273619063F8}C:\program files\sopcast\sopcast.exe = PROFILE=PRIVATE | PROTOCOL=17 | DIR=IN | ACTION=ALLOW | NAME=SOPCAST MAIN APPLICATION | APP=C:\PROGRAM FILES\SOPCAST\SOPCAST.EXE |
UDP Query User{A667A89F-9555-41D9-92A5-B2C12B7E4D56}C:\program files\veoh networks\veoh\veohclient.exe = PROFILE=PRIVATE | PROTOCOL=17 | DIR=IN | ACTION=BLOCK | NAME=VEOH CLIENT | APP=C:\PROGRAM FILES\VEOH NETWORKS\VEOH\VEOHCLIENT.EXE |
UDP Query User{DF994632-004C-419F-A460-ABE0EC149D8D}C:\program files\azureus\azureus.exe = PROFILE=PUBLIC | PROTOCOL=17 | DIR=IN | ACTION=BLOCK | NAME=AZUREUS | APP=C:\PROGRAM FILES\AZUREUS\AZUREUS.EXE |
UDP Query User{F5049545-9850-4C27-8823-9D898DDCBF52}C:\program files\freeplayer\vlc\vlc.exe = PROFILE=PRIVATE | PROTOCOL=17 | DIR=IN | ACTION=ALLOW | NAME=VLC MEDIA PLAYER | APP=C:\PROGRAM FILES\FREEPLAYER\VLC\VLC.EXE |
UDP Query User{F5386299-AD97-4E71-A79C-B9782A8BEA3C}C:\program files\emule\emule.exe = PROFILE=PRIVATE | PROTOCOL=17 | DIR=IN | ACTION=ALLOW | NAME=EMULE | APP=C:\PROGRAM FILES\EMULE\EMULE.EXE |
UDP Query User{F7B536DF-84F0-463D-B4C9-E4B1BCE3749F}C:\program files\mozilla firefox\firefox.exe = PROFILE=PRIVATE | PROTOCOL=17 | DIR=IN | ACTION=ALLOW | NAME=FIREFOX | APP=C:\PROGRAM FILES\MOZILLA FIREFOX\FIREFOX.EXE |

[color=orange]========== HKEY_LOCAL_MACHINE Uninstall List ==========/color

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{08E81ABD-79F7-49C2-881F-FD6CB0975693}" = Roxio Creator Data
"{09760D42-E223-42AD-8C3E-55B47D0DDAC3}" = Roxio Creator DE
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}" = Roxio Creator Tools
"{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}" = QuickTime
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java(TM) 6 Update 11
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Roxio Update Manager
"{3248F0A8-6813-11D6-A77B-00B0D0160000}" = Java(TM) SE Runtime Environment 6
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7
"{3A2AF807-9F9F-43C9-A24A-17B617238B74}" = OpenOffice.org Installer 1.0
"{3B160861-7250-451E-B5EE-8B92BF30A710}" = Microsoft Works
"{3F92ABBB-6BBF-11D5-B229-002078017FBF}" = NetWaiting
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{4B6AD248-D3BF-426A-8D64-847288154F13}" = QuickSet
"{4E5386F5-C0F6-4532-A54A-374865AEAB71}" = Cisco PEAP Module
"{5CD29180-A95E-11D3-A4EB-00C04F7BDB2C}" = Guide de l'utilisateur
"{5EFCBB42-36AB-4FF9-B90C-E78C7B9EE7B3}" = iTunes
"{62230596-37E5-4618-A329-0D21F529A86F}" = Browser Address Error Redirector
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}" = Roxio Creator Audio
"{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762
"{76F9CF97-FC4B-4E20-B363-D127C888448F}" = Cisco LEAP Module
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{90120000-0020-040C-0000-0000000FF1CE}" = Module de compatibilité pour Microsoft Office System 2007
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
"{9954484F-6EE4-4040-94E3-4B380646F867}" = Guide de mise en route Dell
"{9BDEF074-020E-458D-ADC5-8FF68E0C9B56}" = OutlookAddinSetup
"{9C6978E8-B6D0-4AB7-A7A0-D81A74FBF745}" = MediaDirect
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = Dell Touchpad
"{A96E97134CA649888820BCDE5E300BBD}" = H.264 Decoder
"{AAC389499AEF40428987B3D30CFC76C9}" = MKV Splitter
"{AC76BA86-7AD7-1036-7B44-A81200000003}" = Adobe Reader 8.1.2 - Français
"{AEF9DC35ADDF4825B049ACBFD1C6EB37}" = AAC Decoder
"{AFA20D47-69C3-4030-8DF8-D37466E70F13}" = Apple Mobile Device Support
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}" = Roxio Creator Copy
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{BADF6744-3787-48F6-B8C9-4C4995401D65}" = Windows Live Messenger
"{BF53252E-4AB2-4C7F-A0FD-6100755745E3}" = Cisco EAP-FAST Module
"{C19BE821-89B1-4A96-AC7C-873810C0CB5F}" = ContentSAFER for Wizmax
"{C20CE592-B0F8-4D20-BF31-0151CA6331A6}" = EmoDio
"{C9D96682-5A4D-45FA-BA3E-DDCB2B0CB868}" = Safari
"{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}" = Assistant de connexion Windows Live
"{E3BFEE55-39E2-4BE0-B966-89FE583822C1}" = Dell Support Center (Support Software)
"{E646DCF0-5A68-11D5-B229-002078017FBF}" = Digital Line Detect
"{ED439A64-F018-4DD4-8BA5-328D85AB09AB}" = Roxio Creator DE
"{F63A3748-B93D-4360-9AD4-B064481A5C7B}" = Outil de diagnostic de modem
"{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}" = Windows Live installer
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Advanced Audio FX Engine" = Advanced Audio FX Engine
"Advanced Video FX Engine" = Advanced Video FX Engine
"Azureus Vuze" = Azureus Vuze
"Broadcom 802.11b Network Adapter" = Carte réseau local sans fil Wireless de Dell
"Combined Community Codec Pack_is1" = Combined Community Codec Pack 2008-09-21 16:18
"Creative OEM002" = Laptop Integrated Webcam Driver (1.03.02.0719)
"Dell Webcam Center" = Dell Webcam Center
"Dell Webcam Manager" = Dell Webcam Manager
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"eMule" = eMule
"Freeplayer" = Freeplayer
"Google Desktop" = Google Desktop
"GooglePinyin" = Google Pinyin IME
"Guitar Pro 5_is1" = Guitar Pro 5.2
"HijackThis" = HijackThis 2.0.2
"InstallShield_{C20CE592-B0F8-4D20-BF31-0151CA6331A6}" = EmoDio
"Lame MP3 Codec (for the ACM)" = Lame ACM MP3 Codec
"LimeWire" = LimeWire PRO 4.18.8
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox (3.0.9)" = Mozilla Firefox (3.0.9)
"MSC" = McAfee SecurityCenter
"orzdefoq" = Favorit
"Registry Mechanic_is1" = Registry Mechanic 8.0
"SopCast" = SopCast 3.0.3
"VLC media player" = VLC media player 0.9.9
"WinRAR archiver" = Archiveur WinRAR
"XviD_is1" = XviD MPEG-4 Video Codec

[color=orange]========== Last 10 Event Log Errors ==========/color

[ Application Events ]
Error - 03/05/2009 23:31:26 | Computer Name = PC-adam | Source = Windows Search Service | ID = 3031
Description =

Error - 03/05/2009 23:31:26 | Computer Name = PC-adam | Source = Windows Search Service | ID = 3031
Description =

Error - 03/05/2009 23:31:26 | Computer Name = PC-adam | Source = Windows Search Service | ID = 3031
Description =

Error - 03/05/2009 23:31:26 | Computer Name = PC-adam | Source = Windows Search Service | ID = 3031
Description =

Error - 03/05/2009 23:31:26 | Computer Name = PC-adam | Source = Windows Search Service | ID = 3031
Description =

Error - 03/05/2009 23:31:26 | Computer Name = PC-adam | Source = Windows Search Service | ID = 3031
Description =

Error - 03/05/2009 23:31:26 | Computer Name = PC-adam | Source = Windows Search Service | ID = 3031
Description =

Error - 03/05/2009 23:44:04 | Computer Name = PC-adam | Source = EventSystem | ID = 4609
Description =

Error - 04/05/2009 00:28:43 | Computer Name = PC-adam | Source = Application Error | ID = 1000
Description = Application défaillante findstr.exe, version 6.0.6001.18000, horodatage
0x47918ac0, module défaillant findstr.exe, version 6.0.6001.18000, horodatage 0x47918ac0,
code d’exception 0xc0000005, décalage d’erreur 0x0000465d, ID du processus 0x6e4,
heure de début de l’application 0x01c9cc6fd9755239.

Error - 04/05/2009 07:25:48 | Computer Name = PC-adam | Source = Application Error | ID = 1000
Description = Application défaillante findstr.exe, version 6.0.6001.18000, horodatage
0x47918ac0, module défaillant findstr.exe, version 6.0.6001.18000, horodatage 0x47918ac0,
code d’exception 0xc0000005, décalage d’erreur 0x0000465d, ID du processus 0x2cc,
heure de début de l’application 0x01c9ccaa1be5f099.

[ Broadcom Wireless LAN Events ]
Error - 18/03/2009 02:00:10 | Computer Name = PC-adam | Source = WLAN-Tray | ID = 0
Description = 07:00:09, Wed, Mar 18, 09 Error - Unable to gain access to user store

Error - 18/03/2009 02:05:52 | Computer Name = PC-adam | Source = WLAN-Tray | ID = 0
Description = 07:05:52, Wed, Mar 18, 09 Error - Unable to gain access to user store

Error - 18/03/2009 03:33:25 | Computer Name = PC-adam | Source = WLAN-Tray | ID = 0
Description = 08:33:24, Wed, Mar 18, 09 Error - Unable to gain access to user store

Error - 18/03/2009 03:39:08 | Computer Name = PC-adam | Source = WLAN-Tray | ID = 0
Description = 08:39:08, Wed, Mar 18, 09 Error - Unable to gain access to user store

Error - 18/03/2009 04:34:49 | Computer Name = PC-adam | Source = WLAN-Tray | ID = 0
Description = 09:34:49, Wed, Mar 18, 09 Error - Unable to gain access to user store

Error - 18/03/2009 05:37:46 | Computer Name = PC-adam | Source = WLAN-Tray | ID = 0
Description = 10:37:46, Wed, Mar 18, 09 Error - Unable to gain access to user store

Error - 18/03/2009 05:43:29 | Computer Name = PC-adam | Source = WLAN-Tray | ID = 0
Description = 10:43:29, Wed, Mar 18, 09 Error - Unable to gain access to user store

Error - 18/04/2009 11:46:37 | Computer Name = PC-adam | Source = WLAN-Tray | ID = 0
Description = 17:46:36, Sat, Apr 18, 09 Error - Unable to gain access to user store

Error - 29/04/2009 08:20:40 | Computer Name = PC-adam | Source = WLAN-Tray | ID = 0
Description = 14:20:38, Wed, Apr 29, 09 Error - Unable to gain access to user store

Error - 29/04/2009 18:46:55 | Computer Name = PC-adam | Source = WLAN-Tray | ID = 0
Description = 00:46:54, Thu, Apr 30, 09 Error - Unable to gain access to user store

[ Media Center Events ]
Error - 16/04/2008 18:19:43 | Computer Name = PC-adam | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete : échec du téléchargement du package
MCESpotlight.

[ System Events ]
Error - 02/07/2008 15:40:10 | Computer Name = PC-adam | Source = Service Control Manager | ID = 7000
Description =

Error - 02/07/2008 16:16:54 | Computer Name = PC-adam | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description =

Error - 02/07/2008 21:35:36 | Computer Name = PC-adam | Source = Service Control Manager | ID = 7043
Description =

Error - 02/07/2008 21:38:25 | Computer Name = PC-adam | Source = Service Control Manager | ID = 7000
Description =

Error - 02/07/2008 21:38:25 | Computer Name = PC-adam | Source = Service Control Manager | ID = 7000
Description =

Error - 02/07/2008 21:38:25 | Computer Name = PC-adam | Source = Service Control Manager | ID = 7000
Description =

Error - 02/07/2008 21:38:25 | Computer Name = PC-adam | Source = Service Control Manager | ID = 7000
Description =

Error - 02/07/2008 21:38:25 | Computer Name = PC-adam | Source = Service Control Manager | ID = 7000
Description =

Error - 02/07/2008 21:38:25 | Computer Name = PC-adam | Source = Service Control Manager | ID = 7000
Description =

Error - 02/07/2008 21:38:25 | Computer Name = PC-adam | Source = Service Control Manager | ID = 7000
Description =

< End of report >

Réponse 67 / 78

rastaflamme

voilà:

OTListIt logfile created on: 06/05/2009 14:41:05 - Run 1
OTListIt2 by OldTimer - Version 2.0.15.3 Folder = C:\Users\adam\Downloads
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 100,00% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 100,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 136,46 Gb Total Space | 65,41 Gb Free Space | 47,94% Space Free | Partition Type: NTFS
Drive D: | 10,00 Gb Total Space | 5,86 Gb Free Space | 58,58% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PC-ADAM
Current User Name: adam
Logged in as Administrator.

Current Boot Mode: SafeMode with Networking
Scan Mode: All users
Output = Standard
File Age = 30 Days
Company Name Whitelist: On

[color=orange]========== Processes (SafeList) ==========[/color]

PRC - [2009/03/19 11:42:02 | 00,884,360 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MPF\MPFSrv.exe
PRC - [2008/10/29 08:29:41 | 02,927,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\Explorer.EXE
PRC - [2008/01/19 09:33:39 | 00,202,240 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnscfg.exe
PRC - [2008/01/19 09:33:33 | 00,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wbem\unsecapp.exe
PRC - [2009/03/03 04:16:04 | 00,247,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wbem\wmiprvse.exe
PRC - [2009/05/01 19:42:52 | 00,307,704 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009/01/08 21:30:26 | 00,797,864 | ---- | M] (McAfee, Inc.) -- C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
PRC - [2009/01/08 21:30:26 | 00,645,328 | ---- | M] (McAfee, Inc.) -- c:\PROGRA~1\mcafee.com\agent\mcagent.exe
PRC - [2007/10/18 11:34:04 | 05,724,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
PRC - [2009/05/06 14:40:10 | 00,501,248 | ---- | M] (OldTimer Tools) -- C:\Users\adam\Downloads\OTListIt2.exe

[color=orange]========== Win32 Services (SafeList) ==========[/color]

SRV - [2007/11/12 13:07:16 | 00,073,728 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\system32\aestsrv.exe -- (AESTFilters [Auto | Stopped])
SRV - [2009/03/26 15:31:20 | 00,132,424 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device [Auto | Stopped])
SRV - [2008/12/12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service [Auto | Stopped])
SRV - [2008/01/05 13:26:41 | 00,070,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
SRV - [2008/01/19 09:33:09 | 00,292,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehRecvr.exe -- (ehRecvr [On_Demand | Stopped])
SRV - [2006/11/02 14:35:29 | 00,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehsched.exe -- (ehSched [On_Demand | Stopped])
SRV - [2006/11/02 14:35:29 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehstart.dll -- (ehstart [Auto | Stopped])
SRV - [2008/01/05 13:21:53 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
SRV - [2008/04/01 13:46:11 | 01,838,592 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe -- (GoogleDesktopManager [On_Demand | Stopped])
SRV - [2008/12/20 08:13:23 | 00,137,200 | ---- | M] (Google) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [On_Demand | Stopped])
SRV - [2009/02/11 17:38:40 | 00,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe -- (IAANTMON [Auto | Stopped])
SRV - [2008/01/05 13:21:39 | 00,864,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped])
SRV - [2009/04/02 16:10:56 | 00,656,168 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service [On_Demand | Stopped])
SRV - File not found -- -- (mcmscsvc [Auto | Running])
SRV - File not found -- -- (McNASvc [Auto | Stopped])
SRV - File not found -- -- (McODS [On_Demand | Stopped])
SRV - File not found -- -- (McProxy [Auto | Stopped])
SRV - File not found -- -- (McShield [Unknown | Stopped])
SRV - File not found -- -- (McSysmon [On_Demand | Stopped])
SRV - [2009/03/19 11:42:02 | 00,884,360 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MPF\MPFSrv.exe -- (MpfService [Auto | Running])
SRV - [2009/01/09 10:22:10 | 00,026,640 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MSK\MskSrver.exe -- (MSK80Service [Auto | Stopped])
SRV - [2008/01/05 13:21:39 | 00,122,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
SRV - [2009/01/26 15:31:10 | 01,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService [Auto | Stopped])
SRV - [2008/08/14 00:04:44 | 00,201,968 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_dellsupportcenter [Auto | Stopped])
SRV - [2007/11/12 13:07:20 | 00,102,400 | ---- | M] (IDT, Inc.) -- C:\Windows\system32\STacSV.exe -- (STacSV [Auto | Stopped])
SRV - [2007/12/02 19:34:30 | 00,074,384 | R--- | M] (MicroVision Development, Inc.) -- C:\Program Files\Common Files\SureThing Shared\stllssvr.exe -- (stllssvr [On_Demand | Stopped])
SRV - [2007/10/18 11:31:54 | 00,098,328 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\usnsvc.exe -- (usnjsvc [On_Demand | Stopped])
SRV - [2008/01/19 09:38:24 | 00,272,952 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend [Auto | Stopped])
SRV - [2007/10/25 15:27:54 | 00,266,240 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\installer\WLSetupSvc.exe -- (WLSetupSvc [On_Demand | Stopped])
SRV - [2007/12/12 09:03:34 | 00,024,064 | ---- | M] () -- C:\Windows\System32\WLTRYSVC.EXE -- (wltrysvc [Auto | Stopped])
SRV - [2008/01/19 09:33:39 | 00,896,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc [On_Demand | Stopped])
SRV - [2006/08/05 02:39:20 | 00,386,560 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\system32\DRIVERS\xaudio.exe -- (XAudioService [Auto | Stopped])

[color=orange]========== Driver Services (SafeList) ==========[/color]

DRV - [2006/11/02 11:51:38 | 00,420,968 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx [Disabled | Stopped])
DRV - [2006/11/02 11:51:32 | 00,297,576 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci [Disabled | Stopped])
DRV - [2006/11/02 11:50:35 | 00,098,408 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m [Disabled | Stopped])
DRV - [2006/11/02 11:51:00 | 00,147,048 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320 [Disabled | Stopped])
DRV - [2006/11/02 11:50:11 | 00,071,272 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx [Disabled | Stopped])
DRV - [2008/04/01 21:18:04 | 00,017,592 | ---- | M] (Acer Laboratories Inc.) -- C:\Windows\system32\drivers\aliide.sys -- (aliide [Disabled | Stopped])
DRV - [2007/09/07 08:49:56 | 00,155,136 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Windows\system32\DRIVERS\Apfiltr.sys -- (ApfiltrService [On_Demand | Running])
DRV - [2006/11/02 11:50:09 | 00,067,688 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\arc.sys -- (arc [Disabled | Stopped])
DRV - [2006/11/02 11:50:10 | 00,067,688 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas [Disabled | Stopped])
DRV - [2007/12/12 09:03:12 | 01,044,984 | ---- | M] (Broadcom Corp.) -- C:\Windows\system32\DRIVERS\bcmwl6.sys -- (BCM43XX [On_Demand | Running])
DRV - [2006/11/02 10:24:45 | 00,013,568 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo [On_Demand | Stopped])
DRV - [2006/11/02 10:24:46 | 00,005,248 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp [On_Demand | Stopped])
DRV - [2006/11/02 10:25:24 | 00,071,808 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brserid.sys -- (Brserid [Disabled | Stopped])
DRV - [2006/11/02 10:24:44 | 00,062,336 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm [Disabled | Stopped])
DRV - [2006/11/02 10:24:44 | 00,012,160 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm [Disabled | Stopped])
DRV - [2006/11/02 10:24:47 | 00,011,904 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer [On_Demand | Stopped])
DRV - [2008/04/01 21:18:03 | 00,019,128 | ---- | M] (CMD Technology, Inc.) -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide [Disabled | Stopped])
DRV - [2006/11/02 09:30:55 | 00,200,704 | ---- | M] (Intel Corporation) -- C:\Windows\system32\DRIVERS\e1e6032.sys -- (e1express [On_Demand | Stopped])
DRV - [2006/11/02 09:30:54 | 00,117,760 | ---- | M] (Intel Corporation) -- C:\Windows\system32\DRIVERS\E1G60I32.sys -- (E1G60 [On_Demand | Stopped])
DRV - [2006/11/02 11:51:34 | 00,316,520 | ---- | M] (Emulex) -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor [Disabled | Stopped])
DRV - [2004/10/20 17:23:34 | 00,021,344 | ---- | M] (FreeBox SA) -- C:\Windows\system32\DRIVERS\fbxusb32.sys -- (fbxusb [On_Demand | Stopped])
DRV - [2009/03/19 16:32:48 | 00,023,400 | ---- | M] (GEAR Software Inc.) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys -- (GEARAspiWDM [On_Demand | Running])
DRV - [2006/11/02 11:50:10 | 00,037,480 | ---- | M] (Hewlett-Packard Company) -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs [Disabled | Stopped])
DRV - [2006/11/03 04:43:30 | 00,986,624 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\system32\DRIVERS\HSX_DPV.sys -- (HSF_DPV [On_Demand | Stopped])
DRV - [2006/11/03 04:42:18 | 00,206,848 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\system32\DRIVERS\HSXHWAZL.sys -- (HSXHWAZL [On_Demand | Stopped])
DRV - [2007/09/06 18:43:26 | 00,304,920 | ---- | M] (Intel Corporation) -- C:\Windows\system32\drivers\iastor.sys -- (iaStor [Boot | Running])
DRV - [2006/11/02 11:51:25 | 00,232,040 | ---- | M] (Intel Corporation) -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV [Disabled | Stopped])
DRV - [2008/03/06 09:58:12 | 02,016,256 | ---- | M] (Intel Corporation) -- C:\Windows\system32\DRIVERS\igdkmd32.sys -- (igfx [On_Demand | Stopped])
DRV - [2006/11/02 11:50:17 | 00,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp [Disabled | Stopped])
DRV - [2008/03/06 09:58:44 | 00,111,616 | ---- | M] (Intel(R) Corporation) -- C:\Windows\system32\drivers\IntcHdmi.sys -- (IntcHdmiAddService [On_Demand | Stopped])
DRV - [2006/11/02 11:50:07 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi [Disabled | Stopped])
DRV - [2006/11/02 11:50:09 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid [Disabled | Stopped])
DRV - [2006/11/02 11:50:04 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC [Disabled | Stopped])
DRV - [2006/11/02 11:50:05 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS [Disabled | Stopped])
DRV - [2006/11/02 11:50:10 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI [Disabled | Stopped])
DRV - [2006/06/19 23:26:58 | 00,012,672 | ---- | M] (Conexant) -- C:\Windows\system32\DRIVERS\mdmxsdk.sys -- (mdmxsdk [Auto | Stopped])
DRV - [2006/11/02 11:49:53 | 00,028,776 | ---- | M] (LSI Logic Corporation) -- C:\Windows\system32\drivers\megasas.sys -- (megasas [Disabled | Stopped])
DRV - [2009/03/25 11:06:28 | 00,079,880 | ---- | M] (McAfee, Inc.) -- C:\Windows\system32\drivers\mfeavfk.sys -- (mfeavfk [On_Demand | Stopped])
DRV - [2009/03/25 11:06:28 | 00,035,272 | ---- | M] (McAfee, Inc.) -- C:\Windows\system32\drivers\mfebopk.sys -- (mfebopk [On_Demand | Stopped])
DRV - [2009/03/25 11:06:28 | 00,214,024 | ---- | M] (McAfee, Inc.) -- C:\Windows\system32\drivers\mfehidk.sys -- (mfehidk [System | Stopped])
DRV - [2009/03/25 11:05:54 | 00,034,216 | ---- | M] (McAfee, Inc.) -- C:\Windows\system32\drivers\mferkdk.sys -- (mferkdk [On_Demand | Stopped])
DRV - [2009/03/25 11:06:30 | 00,040,552 | ---- | M] (McAfee, Inc.) -- C:\Windows\system32\drivers\mfesmfk.sys -- (mfesmfk [On_Demand | Stopped])
DRV - [2008/10/23 14:08:54 | 00,130,424 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\Drivers\Mpfp.sys -- (MPFP [System | Running])
DRV - [2006/11/02 11:49:59 | 00,033,384 | ---- | M] (LSI Logic Corporation) -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x [Disabled | Stopped])
DRV - [2006/11/02 11:50:19 | 00,045,160 | ---- | M] (IBM Corporation) -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960 [Disabled | Stopped])
DRV - [2006/11/02 09:36:50 | 00,020,608 | ---- | M] (N-trig Innovative Technologies) -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi [Disabled | Stopped])
DRV - [2006/11/02 11:50:24 | 00,088,680 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid [Disabled | Stopped])
DRV - [2006/11/02 11:50:13 | 00,040,040 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor [Disabled | Stopped])
DRV - [2007/08/28 07:51:40 | 00,235,520 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\system32\DRIVERS\OEM02Dev.sys -- (OEM02Dev [On_Demand | Stopped])
DRV - [2007/08/28 07:51:44 | 00,007,424 | ---- | M] (EyePower Games Pte. Ltd.) -- C:\Windows\system32\DRIVERS\OEM02Vfx.sys -- (OEM02Vfx [On_Demand | Stopped])
DRV - [2007/11/14 04:00:00 | 00,043,840 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\Drivers\PxHelp20.sys -- (PxHelp20 [Boot | Running])
DRV - [2006/11/02 11:51:45 | 00,900,712 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300 [Disabled | Stopped])
DRV - [2006/11/02 11:50:35 | 00,106,088 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx [Disabled | Stopped])
DRV - [2006/11/02 09:36:43 | 02,028,032 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\system32\DRIVERS\atikmdag.sys -- (R300 [On_Demand | Stopped])
DRV - [2007/09/06 18:35:14 | 00,039,936 | ---- | M] (REDC) -- C:\Windows\system32\DRIVERS\rimmptsk.sys -- (rimmptsk [Auto | Running])
DRV - [2007/09/06 18:35:12 | 00,042,496 | ---- | M] (REDC) -- C:\Windows\system32\DRIVERS\rimsptsk.sys -- (rimsptsk [Auto | Running])
DRV - [2007/09/06 18:35:16 | 00,037,376 | ---- | M] (REDC) -- C:\Windows\system32\DRIVERS\rixdptsk.sys -- (rismxdp [Auto | Running])
DRV - [2006/11/02 08:37:21 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv [Auto | Stopped])
DRV - [2006/11/02 11:50:10 | 00,038,504 | ---- | M] (Silicon Integrated Systems Corp.) -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2 [Disabled | Stopped])
DRV - [2006/11/02 11:50:16 | 00,071,784 | ---- | M] (Silicon Integrated Systems) -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4 [Disabled | Stopped])
DRV - [2007/11/12 13:07:28 | 00,330,240 | ---- | M] (IDT, Inc.) -- C:\Windows\system32\drivers\stwrt.sys -- (STHDA [On_Demand | Stopped])
DRV - [2006/11/02 11:50:05 | 00,035,944 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx [Disabled | Stopped])
DRV - [2006/11/02 11:49:56 | 00,031,848 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi [Disabled | Stopped])
DRV - [2006/11/02 11:50:03 | 00,034,920 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3 [Disabled | Stopped])
DRV - [2006/11/02 11:51:25 | 00,235,112 | ---- | M] (ULi Electronics Inc.) -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci [Disabled | Stopped])
DRV - [2006/11/02 11:50:35 | 00,098,408 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata [Disabled | Stopped])
DRV - [2006/11/02 11:50:45 | 00,115,816 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2 [Disabled | Stopped])
DRV - [2008/04/01 21:18:04 | 00,020,152 | ---- | M] (VIA Technologies, Inc.) -- C:\Windows\system32\drivers\viaide.sys -- (viaide [Disabled | Stopped])
DRV - [2006/11/02 11:50:41 | 00,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid [Disabled | Stopped])
DRV - [2006/11/03 04:42:08 | 00,659,968 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\system32\DRIVERS\HSX_CNXT.sys -- (winachsf [On_Demand | Stopped])
DRV - [2006/08/05 02:39:10 | 00,008,192 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\system32\DRIVERS\xaudio.sys -- (XAudio [Auto | Stopped])
DRV - [2007/09/29 07:31:54 | 00,278,528 | ---- | M] (Marvell) -- C:\Windows\system32\DRIVERS\yk60x86.sys -- (yukonwlh [On_Demand | Running])

[color=orange]========== Standard Registry (SafeList) ==========[/color]

[color=orange]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm

IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

IE - HKU\S-1-5-21-3059027711-3390833181-208690561-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKU\S-1-5-21-3059027711-3390833181-208690561-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKU\S-1-5-21-3059027711-3390833181-208690561-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
IE - HKU\S-1-5-21-3059027711-3390833181-208690561-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-3059027711-3390833181-208690561-1000\S-1-5-21-3059027711-3390833181-208690561-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3059027711-3390833181-208690561-1000\S-1-5-21-3059027711-3390833181-208690561-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

[color=orange]========== FireFox ==========[/color]

FF - prefs.js..browser.search.defaultenginename: "Yahoo"
FF - prefs.js..browser.search.defaulturl: "https://fr.search.yahoo.com/web?fr=ytff-sunm"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "https://www.google.fr/?gws_rd=ssl"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}:6.0.07
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.10
FF - prefs.js..keyword.URL: "https://fr.search.yahoo.com/web?fr=ytff-veoh"

FF - HKLM\software\mozilla\Mozilla Firefox 3.0.9\extensions\\Components: C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS [2009/05/01 19:54:25 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.9\extensions\\Plugins: C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS [2009/05/01 19:43:05 | 00,000,000 | ---D | M]

[2008/08/27 00:18:03 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\mozilla\Extensions
[2008/08/27 00:18:03 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/05/02 02:19:05 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\mozilla\Firefox\Profiles\jxm2o77g.default\extensions
[2008/12/16 22:22:10 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\mozilla\Firefox\Profiles\jxm2o77g.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2008/11/26 15:06:11 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\mozilla\Firefox\Profiles\jxm2o77g.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2008/12/02 15:49:34 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\mozilla\Firefox\Profiles\jxm2o77g.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2008/11/18 02:29:12 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\mozilla\Firefox\Profiles\jxm2o77g.default\extensions\{eba85b99-fcd5-036b-059d-fa63334fc314}
[2008/11/03 05:59:41 | 00,002,447 | ---- | M] () -- C:\Users\adam\AppData\Roaming\Mozilla\FireFox\Profiles\jxm2o77g.default\searchplugins\bsplayer-search.xml
[2009/05/01 02:14:58 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009/05/01 19:42:52 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2008/09/04 11:47:03 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
[2008/12/16 17:40:59 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
[2009/05/01 19:42:48 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009/05/01 19:42:49 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2009/05/01 19:43:00 | 00,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2009/05/01 19:43:00 | 00,000,757 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2009/05/01 19:43:00 | 00,001,706 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2009/05/01 19:43:00 | 00,000,748 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\MediaDICO-fr.xml
[2009/05/01 19:43:00 | 00,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2009/05/01 19:43:00 | 00,000,652 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml

Réponse 68 / 78

rastaflamme

suite:

O1 HOSTS File: (698 bytes) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Aide pour le lien d'Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\Programmes\McAfee\MSK\mskapbho.dll File not found
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Programmes\Spybot - Search & Destroy\SDHelper.dll File not found
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\Programmes\McAfee\VirusScan\scriptsn.dll File not found
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - Reg Error: Key error. File not found
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll (Google Inc.)
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll (Google Inc.)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll (Dell Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (&Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O3 - HKU\S-1-5-21-3059027711-3390833181-208690561-1000\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O3 - HKU\S-1-5-21-3059027711-3390833181-208690561-1000\..\Toolbar\WebBrowser: (no name) - {2C688203-7EB3-4327-9995-1CB417BA23F9} - Reg Error: Key error. File not found
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4 - HKLM..\Run: [Broadcom Wireless Manager UI] C:\Windows\system32\WLTRAY.exe (Dell Inc.)
O4 - HKLM..\Run: [DELL Webcam Manager] "C:\Program Files\Dell\Dell Webcam Manager\DellWMgr.exe" /s (Creative Technology Ltd.)
O4 - HKLM..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter (SupportSoft, Inc.)
O4 - HKLM..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe" ( )
O4 - HKLM..\Run: [ECenter] C:\Dell\E-Center\EULALauncher.exe ( )
O4 - HKLM..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup (Google)
O4 - HKLM..\Run: [Google IME Autoupdater] "C:\Program Files\Google\Google Pinyin\GooglePinyinDaemon.exe" (Google Inc.)
O4 - HKLM..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe (Intel Corporation)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation)
O4 - HKLM..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe (Intel Corporation)
O4 - HKLM..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" (Apple Inc.)
O4 - HKLM..\Run: [mcagent_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey (McAfee, Inc.)
O4 - HKLM..\Run: [OEM02Mon.exe] C:\Windows\OEM02Mon.exe (Creative Technology Ltd.)
O4 - HKLM..\Run: [PCMService] "C:\Program Files\Dell\MediaDirect\PCMService.exe" (CyberLink Corp.)
O4 - HKLM..\Run: [Persistence] C:\Windows\system32\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime (Apple Inc.)
O4 - HKLM..\Run: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe (IDT, Inc.)
O4 - HKU\S-1-5-21-3059027711-3390833181-208690561-1000..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3059027711-3390833181-208690561-1000..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background (Microsoft Corporation)
O4 - HKU\S-1-5-21-3059027711-3390833181-208690561-1000..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (Microsoft Corporation)
O4 - HKU\S-1-5-21-3059027711-3390833181-208690561-1000..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - HKU\S-1-5-21-3059027711-3390833181-208690561-1000..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKU\S-1-5-21-3059027711-3390833181-208690561-1000..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe (Microsoft Corporation)
O4 - Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe (Avanquest Software )
O4 - Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickSet.lnk = C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFolderOptions = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogOff = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3059027711-3390833181-208690561-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3059027711-3390833181-208690561-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NofolderOptions =
O7 - HKU\S-1-5-21-3059027711-3390833181-208690561-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind =
O7 - HKU\S-1-5-21-3059027711-3390833181-208690561-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRun =
O7 - HKU\S-1-5-21-3059027711-3390833181-208690561-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-3059027711-3390833181-208690561-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewContextMenu = 0
O7 - HKU\S-1-5-21-3059027711-3390833181-208690561-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWinKeys = 0
O7 - HKU\S-1-5-21-3059027711-3390833181-208690561-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = FF FF FF FF [binary data]
O7 - HKU\S-1-5-21-3059027711-3390833181-208690561-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 36
O7 - HKU\S-1-5-21-3059027711-3390833181-208690561-1000_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe File not found
O9 - Extra 'Tools' menuitem : Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe ()
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Programmes\Spybot - Search & Destroy\SDHelper.dll File not found
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [@%SystemRoot%\system32\nlasvc.dll,-1000] - C:\Windows\system32\NLAapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [@%SystemRoot%\system32\napinsp.dll,-1000] - C:\Windows\system32\napinsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [@%SystemRoot%\system32\pnrpnsp.dll,-1000] - C:\Windows\system32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [@%SystemRoot%\system32\pnrpnsp.dll,-1001] - C:\Windows\system32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [mdnsNSP] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKLM\..Trusted Domains: 48 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\.DEFAULT\..Trusted Domains: 48 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\S-1-5-18\..Trusted Domains: 48 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\S-1-5-21-3059027711-3390833181-208690561-1000\..Trusted Domains: 48 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\S-1-5-21-3059027711-3390833181-208690561-1000\..Trusted Ranges: GD ([http] in Local intranet)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://www.zebulon.fr/scan8/oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11)
O16 - DPF: {B9F79165-A264-4C4A-A211-133A5E8D647F} http://support.f-secure.com/enu/home/onlineservices/fshc/fscax.cab (F-Secure Health Check 1.1)
O16 - DPF: {C237A80A-4C55-4C68-BAA9-CBE4408D12B2} http://download.sp.f-secure.com/ols/f-secure-rtm/resources/fslauncher.cab (F-Secure Online Scanner 4.0 Launcher)
O16 - DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab (Java Plug-in 1.6.0)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Reg Error: Key error.)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programmes\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll File not found
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programmes\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll File not found
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL) - C:\Programmes\Google\Google Desktop Search\GoogleDesktopNetwork3.dll File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\Windows\system32\igfxdev.dll (Intel Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 23:43:36 | 00,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2009/05/04 05:33:59 | 00,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2009/05/04 05:33:59 | 00,000,000 | RHSD | M] - D:\autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\Windows\system32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found

[color=orange]========== Files/Folders - Created Within 30 Days ==========/color

[1 C:\*.tmp files]
[2009/05/06 14:37:47 | 00,000,000 | ---D | C] -- C:\Users\adam\Desktop\HostsXpert
[2009/05/06 13:53:16 | 00,102,664 | ---- | C] (Trend Micro Inc.) -- C:\Windows\System32\drivers\tmcomm.sys
[2009/05/06 12:09:38 | 00,000,000 | ---D | C] -- C:\rsit
[2009/05/06 03:40:45 | 17,927,358 | ---- | C] () -- C:\upload_moi_PC-adam.tar.gz
[2009/05/06 03:08:48 | 02,335,270 | ---- | C] () -- C:\Windows\System32\589FDBE.mht
[2009/05/06 02:41:55 | 00,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2009/05/06 02:41:49 | 00,506,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml.dll
[2009/05/06 02:41:49 | 00,000,862 | ---- | C] () -- C:\Users\Public\Desktop\Registry Mechanic.lnk
[2009/05/06 02:41:48 | 01,081,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSCOMCTL.OCX
[2009/05/06 02:41:48 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\STKIT432.DLL
[2009/05/06 02:41:45 | 00,000,000 | ---D | C] -- C:\Program Files\Registry Mechanic
[2009/05/06 02:24:07 | 00,000,000 | ---D | C] -- C:\Program Files\QUAD Utilities
[2009/05/06 01:52:18 | 00,000,000 | ---D | C] -- C:\Windows\BDOSCAN8
[2009/05/06 01:00:47 | 02,335,270 | ---- | C] () -- C:\Windows\System32\9ff2398.mht
[2009/05/06 01:00:01 | 01,774,432 | ---- | C] (McAfee, Inc.) -- C:\Users\adam\Desktop\Rootkit_Detective.exe
[2009/05/06 00:48:11 | 00,000,180 | ---- | C] () -- C:\Users\adam\Desktop\TaskMgr.reg
[2009/05/06 00:41:27 | 00,003,654 | ---- | C] () -- C:\Users\adam\Desktop\Security_Center_Back.reg
[2009/05/06 00:11:07 | 00,000,000 | ---D | C] -- C:\Users\adam\Desktop\MSNFix
[2009/05/05 23:11:28 | 00,000,000 | -HSD | C] -- C:\found.002
[2009/05/05 03:12:04 | 22,021,3226 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2009/05/05 02:20:08 | 00,000,168 | ---- | C] () -- C:\Users\adam\Documents\cc_20090505_022007.reg
[2009/05/05 02:19:56 | 00,002,548 | ---- | C] () -- C:\Users\adam\Documents\cc_20090505_021954.reg
[2009/05/05 02:18:54 | 00,047,222 | ---- | C] () -- C:\Users\adam\Documents\cc_20090505_021849.reg
[2009/05/05 00:00:32 | 00,000,000 | ---D | C] -- C:\Users\adam\AppData\Roaming\Malwarebytes
[2009/05/05 00:00:31 | 00,015,504 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2009/05/05 00:00:31 | 00,000,820 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/05/05 00:00:29 | 00,038,496 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2009/05/05 00:00:28 | 00,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2009/05/05 00:00:28 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009/05/04 05:33:59 | 00,000,000 | RHSD | C] -- C:\autorun.inf
[2009/05/04 03:34:35 | 00,289,144 | ---- | C] (S!Ri) -- C:\Windows\System32\VCCLSID.exe
[2009/05/04 03:34:35 | 00,288,417 | ---- | C] (S!Ri) -- C:\Windows\System32\SrchSTS.exe
[2009/05/04 03:34:35 | 00,135,168 | ---- | C] (SteelWerX) -- C:\Windows\System32\swreg.exe
[2009/05/04 03:34:35 | 00,087,552 | ---- | C] (S!Ri.URZ) -- C:\Windows\System32\VACFix.exe
[2009/05/04 03:34:35 | 00,082,944 | ---- | C] (S!Ri.URZ) -- C:\Windows\System32\IEDFix.exe
[2009/05/04 03:34:35 | 00,082,944 | ---- | C] (S!Ri.URZ) -- C:\Windows\System32\IEDFix.C.exe
[2009/05/04 03:34:35 | 00,082,432 | ---- | C] (S!Ri.URZ) -- C:\Windows\System32\404Fix.exe
[2009/05/04 03:34:35 | 00,080,384 | ---- | C] (S!Ri.URZ) -- C:\Windows\System32\o4Patch.exe
[2009/05/04 03:34:35 | 00,079,360 | ---- | C] (SteelWerX) -- C:\Windows\System32\swxcacls.exe
[2009/05/04 03:34:35 | 00,078,336 | ---- | C] (S!Ri.URZ) -- C:\Windows\System32\Agent.OMZ.Fix.exe
[2009/05/04 03:34:35 | 00,075,776 | ---- | C] () -- C:\Windows\System32\WS2Fix.exe
[2009/05/04 03:34:35 | 00,051,200 | ---- | C] () -- C:\Windows\System32\dumphive.exe
[2009/05/04 03:34:35 | 00,040,960 | ---- | C] () -- C:\Windows\System32\swsc.exe
[2009/05/04 02:17:00 | 00,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group
[2009/05/04 01:13:21 | 00,000,000 | ---D | C] -- C:\Windows\temp
[2009/05/04 00:54:47 | 00,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[2009/05/04 00:54:47 | 00,161,792 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2009/05/04 00:54:47 | 00,136,704 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2009/05/04 00:54:47 | 00,117,248 | ---- | C] () -- C:\Windows\vFind.exe
[2009/05/04 00:54:47 | 00,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2009/05/04 00:54:47 | 00,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2009/05/04 00:54:47 | 00,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2009/05/04 00:54:47 | 00,029,696 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2009/05/04 00:54:27 | 00,000,000 | ---D | C] -- C:\Windows\ERDNT
[2009/05/03 20:36:22 | 02,406,400 | ---- | C] (EVOSLA) -- C:\Users\adam\Desktop\rav.exe
[2009/05/03 19:50:06 | 00,000,000 | ---D | C] -- C:\Users\adam\Desktop\clean
[2009/05/03 19:29:24 | 03,473,848 | ---- | C] (AxBx ) -- C:\Users\adam\Desktop\setup.exe
[2009/05/03 18:48:51 | 00,001,929 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickSet.lnk
[2009/05/03 18:48:51 | 00,001,748 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Digital Line Detect.lnk
[2009/05/03 18:33:42 | 00,000,000 | -HSD | C] -- C:\found.001
[2009/05/02 01:04:23 | 00,000,000 | ---D | C] -- C:\Windows\pss
[2009/05/02 01:01:12 | 00,072,722 | ---- | C] () -- C:\Users\adam\Desktop\startup-control-panel_startup_control_panel_v2.8_anglais_40593.exe
[2009/05/02 00:58:39 | 00,081,920 | ---- | C] () -- C:\Windows\System32\Startup.cpl
[2009/05/02 00:23:03 | 00,000,000 | ---D | C] -- C:\fsaua.data
[2009/05/01 23:57:30 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live
[2009/05/01 22:07:26 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2009/05/01 13:33:23 | 00,000,000 | ---D | C] -- C:\Users\adam\AppData\Roaming\vlc
[2009/05/01 13:33:13 | 00,000,861 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2009/04/30 16:57:48 | 00,000,000 | -HSD | C] -- C:\found.000
[2009/04/30 15:44:23 | 00,000,000 | ---D | C] -- C:\Windows\Sun
[2009/04/30 14:54:42 | 00,001,057 | ---- | C] () -- C:\Users\adam\Desktop\Spybot - Search & Destroy.lnk
[2009/04/30 14:54:30 | 00,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2009/04/30 14:54:30 | 00,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2009/04/30 12:45:32 | 00,000,000 | ---D | C] -- C:\669a40af23fd7d85b00864d1c255b4
[2009/04/30 04:11:12 | 00,000,000 | ---D | C] -- C:\Users\adam\AppData\Roaming\InstallShield
[2009/04/30 01:32:51 | 00,319,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\difxapi.dll
[2009/04/30 01:32:38 | 00,000,000 | ---D | C] -- C:\Intel
[2009/04/26 20:41:16 | 00,000,000 | ---D | C] -- C:\Program Files\TVAnts
[2009/04/25 10:34:31 | 00,000,000 | ---D | C] -- C:\Users\adam\Desktop\Bleach
[2009/04/20 04:13:01 | 00,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2009/04/20 04:11:56 | 00,001,804 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2009/04/20 04:11:05 | 00,000,000 | ---D | C] -- C:\Program Files\iPod
[2009/04/20 04:10:56 | 00,000,000 | ---D | C] -- C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2009/04/20 04:10:56 | 00,000,000 | ---D | C] -- C:\Program Files\iTunes
[2009/04/20 04:08:32 | 00,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2009/04/20 04:06:40 | 00,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2009/04/19 15:08:00 | 00,036,663 | ---- | C] () -- C:\Users\adam\Documents\Tableaux_floraseries_fr.pdf
[2009/04/16 08:24:36 | 00,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winhttp.dll
[2009/04/16 08:24:31 | 00,562,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll
[2009/04/16 08:24:31 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xolehlp.dll
[2009/04/16 08:24:20 | 03,599,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2009/04/16 08:24:20 | 00,551,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rpcss.dll
[2009/04/16 08:24:19 | 03,547,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2009/04/16 08:24:18 | 00,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2009/04/16 08:24:18 | 00,183,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdohlp.dll
[2009/04/16 08:24:18 | 00,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrecst.dll
[2009/04/16 08:24:18 | 00,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasdatastore.dll
[2009/04/16 08:24:18 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2009/04/16 08:24:17 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasads.dll
[2009/04/16 08:24:17 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iashost.exe
[2009/04/16 08:24:11 | 01,255,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll
[2009/04/16 08:24:11 | 00,888,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kernel32.dll
[2009/04/16 08:24:10 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secur32.dll
[2009/04/16 08:24:10 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amxread.dll
[2009/04/16 08:24:10 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apilogen.dll
[2009/04/16 08:24:03 | 03,580,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.dll
[2009/04/16 08:24:00 | 06,068,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieframe.dll
[2009/04/16 08:23:59 | 01,166,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\urlmon.dll
[2009/04/16 08:23:58 | 00,827,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wininet.dll
[2009/04/16 08:23:58 | 00,458,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2009/04/16 08:23:58 | 00,389,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2009/04/16 08:23:58 | 00,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iertutil.dll
[2009/04/16 08:23:58 | 00,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll
[2009/04/16 08:23:58 | 00,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\occache.dll
[2009/04/16 08:23:57 | 00,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2009/04/16 08:23:57 | 00,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2009/04/16 08:23:57 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2009/04/16 08:23:56 | 00,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2009/04/16 08:23:55 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2009/04/16 08:23:54 | 01,383,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2009/04/14 00:43:52 | 00,000,000 | ---D | C] -- C:\Users\adam\Desktop\Tablatures
[2008/11/06 18:34:00 | 00,000,416 | ---- | C] () -- C:\Windows\System32\dtu100.dll.manifest
[2008/11/06 18:34:00 | 00,000,416 | ---- | C] () -- C:\Windows\System32\dpl100.dll.manifest
[2008/11/06 18:33:02 | 00,012,288 | ---- | C] () -- C:\Windows\System32\DivXWMPExtType.dll
[2008/05/26 20:14:00 | 00,921,600 | ---- | C] () -- C:\Windows\System32\vorbisenc.dll
[2008/05/26 20:14:00 | 00,237,568 | ---- | C] () -- C:\Windows\System32\OggDS.dll
[2008/05/26 20:14:00 | 00,188,416 | ---- | C] () -- C:\Windows\System32\vorbis.dll
[2008/05/26 20:14:00 | 00,045,056 | ---- | C] () -- C:\Windows\System32\Ogg.dll
[2008/05/23 00:22:18 | 03,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2008/04/15 15:23:42 | 00,299,008 | ---- | C] () -- C:\Windows\System32\LAME_MP3.dll
[2008/04/01 21:18:40 | 01,953,696 | ---- | C] () -- C:\Windows\System32\igklg400.dll
[2008/04/01 21:18:40 | 01,533,360 | ---- | C] () -- C:\Windows\System32\igklg450.dll
[2008/04/01 21:18:40 | 00,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1409.dll
[2008/04/01 21:18:40 | 00,104,636 | ---- | C] () -- C:\Windows\System32\igmedcompkrn.dll
[2008/04/01 21:18:40 | 00,004,608 | ---- | C] () -- C:\Windows\System32\HdmiCoin.dll
[2008/04/01 21:18:37 | 00,016,480 | ---- | C] () -- C:\Windows\System32\rixdicon.dll
[2008/04/01 13:43:42 | 00,054,784 | ---- | C] () -- C:\Windows\System32\bcmwlrmt.dll
[2007/08/16 06:23:28 | 00,040,960 | ---- | C] () -- C:\Windows\System32\gpyapi.dll
[2006/11/02 14:35:32 | 00,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 12:25:44 | 00,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2006/11/02 12:23:31 | 00,000,215 | ---- | C] () -- C:\Windows\system.ini
[2006/11/02 12:23:31 | 00,000,144 | ---- | C] () -- C:\Windows\win.ini
[2006/11/02 09:40:29 | 00,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/09/13 13:06:10 | 00,045,056 | ---- | C] () -- C:\Windows\System32\gtapi.dll
[2005/03/14 14:38:28 | 00,000,469 | ---- | C] () -- C:\Windows\bdoscandellang.ini
[2004/12/20 11:08:28 | 00,155,648 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2004/12/20 11:03:26 | 00,679,936 | ---- | C] () -- C:\Windows\System32\xvidcore.dll

[color=orange]========== Files - Modified Within 30 Days ==========/color

[1 C:\*.tmp files]
[2009/05/06 14:39:51 | 00,000,698 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2009/05/06 13:52:49 | 00,102,664 | ---- | M] (Trend Micro Inc.) -- C:\Windows\System32\drivers\tmcomm.sys
[2009/05/06 13:26:43 | 00,018,921 | ---- | M] () -- C:\Windows\System32\Config.MPF
[2009/05/06 12:22:51 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009/05/06 03:40:44 | 17,927,358 | ---- | M] () -- C:\upload_moi_PC-adam.tar.gz
[2009/05/06 03:08:49 | 02,335,270 | ---- | M] () -- C:\Windows\System32\589FDBE.mht
[2009/05/06 02:41:49 | 00,000,862 | ---- | M] () -- C:\Users\Public\Desktop\Registry Mechanic.lnk
[2009/05/06 01:30:19 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009/05/06 01:30:18 | 00,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009/05/06 01:30:18 | 00,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009/05/06 01:00:47 | 02,335,270 | ---- | M] () -- C:\Windows\System32\9ff2398.mht
[2009/05/05 23:15:33 | 22,021,3226 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2009/05/05 02:20:10 | 00,000,168 | ---- | M] () -- C:\Users\adam\Documents\cc_20090505_022007.reg
[2009/05/05 02:19:58 | 00,002,548 | ---- | M] () -- C:\Users\adam\Documents\cc_20090505_021954.reg
[2009/05/05 02:19:02 | 00,047,222 | ---- | M] () -- C:\Users\adam\Documents\cc_20090505_021849.reg
[2009/05/05 00:00:31 | 00,000,820 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/05/04 01:11:04 | 00,000,215 | ---- | M] () -- C:\Windows\system.ini
[2009/05/02 01:01:15 | 00,072,722 | ---- | M] () -- C:\Users\adam\Desktop\startup-control-panel_startup_control_panel_v2.8_anglais_40593.exe
[2009/05/01 15:36:46 | 00,117,248 | ---- | M] () -- C:\Windows\vFind.exe
[2009/05/01 13:33:13 | 00,000,861 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2009/04/30 15:28:24 | 00,000,516 | ---- | M] () -- C:\Users\adam\Documents\Mes dossiers de partage.lnk
[2009/04/30 14:54:42 | 00,001,057 | ---- | M] () -- C:\Users\adam\Desktop\Spybot - Search & Destroy.lnk
[2009/04/30 04:06:00 | 00,273,024 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/04/30 01:36:37 | 00,075,776 | ---- | M] () -- C:\Windows\System32\WS2Fix.exe
[2009/04/30 00:57:39 | 00,039,936 | ---- | M] () -- C:\Windows\System32\umstartup.etl
[2009/04/26 16:56:51 | 00,000,796 | ---- | M] () -- C:\Users\adam\AppData\Roaming\wklnhst.dat
[2009/04/20 04:11:56 | 00,001,804 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2009/04/19 15:08:07 | 00,036,663 | ---- | M] () -- C:\Users\adam\Documents\Tableaux_floraseries_fr.pdf
[2009/04/16 11:06:38 | 03,473,848 | ---- | M] (AxBx ) -- C:\Users\adam\Desktop\setup.exe
[2009/04/15 01:00:00 | 00,000,370 | ---- | M] () -- C:\Windows\tasks\McDefragTask.job
[2009/04/06 15:32:54 | 00,038,496 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2009/04/06 15:32:46 | 00,015,504 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys

[color=orange]========== LOP Check ==========/color

[2009/05/06 02:41:29 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming
[2008/04/08 16:03:57 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\Adobe
[2008/11/24 15:43:47 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\Apple Computer
[2009/04/29 16:30:52 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\Azureus
[2008/11/17 00:30:41 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\BSplayer
[2008/11/03 05:59:27 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\BSplayer Pro
[2008/11/11 21:24:57 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\CyberLink
[2008/04/21 16:54:38 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\DataCast
[2009/01/14 02:10:24 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\DivX
[2009/04/23 21:51:52 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\dvdcss
[2008/05/03 21:36:01 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\eMule
[2009/01/24 03:39:00 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\Google
[2008/04/08 15:27:47 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\Identities
[2009/04/30 04:11:12 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\InstallShield
[2009/04/12 14:38:41 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\LimeWire
[2008/04/08 16:05:45 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\Macromedia
[2009/05/05 00:00:32 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\Malwarebytes
[2006/11/02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\Media Center Programs
[2009/02/24 05:13:07 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\Media Player Classic
[2009/02/09 03:32:48 | 00,000,000 | --SD | M] -- C:\Users\adam\AppData\Roaming\Microsoft
[2008/08/27 00:18:03 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\Mozilla
[2008/12/30 01:35:55 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\MSN6
[2008/04/11 14:08:49 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\Roxio
[2008/12/12 04:06:03 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\skypePM
[2008/07/10 22:11:32 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\Template
[2009/05/01 14:15:20 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\vlc
[2008/04/14 17:57:51 | 00,000,000 | ---D | M] -- C:\Users\adam\AppData\Roaming\WinRAR
[2006/11/02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming
[2006/11/02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\Media Center Programs
[2006/11/02 13:18:34 | 00,000,000 | --SD | M] -- C:\Users\Default\AppData\Roaming\Microsoft
[2006/11/02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming
[2006/11/02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\Media Center Programs
[2006/11/02 13:18:34 | 00,000,000 | --SD | M] -- C:\Users\Default User\AppData\Roaming\Microsoft
[2009/04/15 01:00:00 | 00,000,370 | ---- | M] () -- C:\Windows\Tasks\McDefragTask.job
[2009/04/01 01:00:00 | 00,000,350 | ---- | M] () -- C:\Windows\Tasks\McQcTask.job
[2009/05/06 01:30:19 | 00,000,006 | -H-- | M] () -- C:\Windows\Tasks\SA.DAT
[2009/05/05 12:57:39 | 00,032,546 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

[color=orange]========== Purity Check ==========/color

< End of report >

Réponse 69 / 78

Utilisateur anonyme

c'est quoi ce setup.exe sur ton bureau ?

Réponse 70 / 78

rastaflamme

c'est clean virus msn

Réponse 71 / 78

Utilisateur anonyme

je vois plus de soucis dans ce log..

Réponse 72 / 78

rastaflamme

je vais essayer de redemarrer en mode normal! je croise les doigts!!

Réponse 73 / 78

rastaflamme

Alors j'ai redémarrer mon ordi en mode normal mais il de nouveau buggé, j'ai essayé de redémarrer en mode sans echec mais ça à pas marché, impossible de redemarrer quelque soit le mode choisit et l'utilitaire de réparation du démarrage windows n'a pas réussi à le réparer.
A contre coeur j'ai du reformater mon ordi, sauf qu'un quart d'heure plus tard j'ai eu de nouveau un écran bleu avec ecrit bad pool header, j'ai fais quelques recherches sur le net et il parait que c'est un virus! Est-ce possible que malgrès le reformatage il y ait encore un virus??

Réponse 74 / 78

Utilisateur anonyme

tu peux l ouvrir ta tour ou elle est encore sous garantie ?

explique moi de quelle maniere tu as "formaté"

Réponse 75 / 78

rastaflamme

Alors j'ai un portable la garantie c'est terminée fin mars donc je me suis bien fait avoir!!!
pour le formatage dans le menu options de démarrage avancé y a "réparer mon ordi" je suis allé dessus et il y avait restaurer les paramètres d'usines...

Réponse 76 / 78

Utilisateur anonyme

oui mais par contre je sais si tu risques pas de tout perdre....(docs...etc)

Réponse 77 / 78

rastaflamme

Je sais j'ai tout perdu mais y avait rien à faire impossible de démarrer!! :(
Mais j'espère au moins m'etre débarassé des virus!

Réponse 78 / 78

Utilisateur anonyme

je l'espere aussi :)

Discussions similaires

Iptv beug

Softonic,est-ce un virus ?

Bug général vista anti virus et MàJ desactivé

78 réponses

Votre réponse

Discussions similaires

Newsletters