Sujet Précédent Sujet Suivant

Blocage récurente du PC

Fermé
Ramon1 Messages postés 333 Date d'inscription samedi 1 octobre 2005 Statut Membre Dernière intervention 16 juillet 2024 - 4 juin 2009 à 23:46
 Utilisateur anonyme - 23 juil. 2009 à 23:18
Bonjour,

Depuis qq jours je suis confronté à des bocages de mon PC, et je n'ai d'autres solution que de de rebooter ou redémarrer après une fermeture sauvage.
J'ai pourtant passé, spybot, ad adware, a2 squared et un scan en ligne avec bit defender.
J'ai avast comm anti virus et online armor comme parefeu.
Je transmet le log hijackthis.
Merci pour votre aide

Logfile of HijackThis v1.99.1
Scan saved at 23:34:37, on 04/06/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16827)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Tall Emu\Online Armor\OAcat.exe
C:\Program Files\Tall Emu\Online Armor\oasrv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
C:\Program Files\SPAMfighter\sfus.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
C:\WINDOWS\System32\regsvr32.exe
C:\Program Files\SPAMfighter\SFAgent.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Tall Emu\Online Armor\oaui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Tall Emu\Online Armor\OAhlp.exe
C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\WINDOWS\PCHealth\HelpCtr\Binaries\HelpHost.exe
C:\Hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://neufportail.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\eoRezo\EoAdv\EoRezoBHO.dll (file missing)
O2 - BHO: DealioBHO Class - {6A87B991-A31F-4130-AE72-6D0C294BF082} - C:\Program Files\Dealio\kb124\Dealio.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: snappyads browser enhancer - {9B886AE3-A663-03B1-8DD5-B6037C0ED1EE} - C:\WINDOWS\system32\vezvutkuwkotlxvd.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: BrowsingAdvisor - {F1E96EDC-E0C8-BE98-1F15-C29DBED83B53} - C:\Program Files\BrowsingAdvisor\BrowsingAdvisor-3.dll (file missing)
O3 - Toolbar: Dealio - {E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - C:\Program Files\Dealio\kb124\Dealio.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [au] C:\Program Files\Dealio\DealioAU.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SFR-PC] "C:\Program Files\SFR-PC\SFR-PC.exe" /check
O4 - HKLM\..\Run: [wtstpjmdzhx] C:\WINDOWS\System32\regsvr32.exe /s "C:\WINDOWS\system32\vezvutkuwkotlxvd.dll"
O4 - HKLM\..\Run: [SPAMfighter Agent] "C:\Program Files\SPAMfighter\SFAgent.exe" update delay 60
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [@OnlineArmor GUI] "C:\Program Files\Tall Emu\Online Armor\oaui.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O8 - Extra context menu item: Compare Prices with &Dealio - C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio\kb124\res\DealioSearch.html
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb124\Dealio.dll
O9 - Extra 'Tools' menuitem: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb124\Dealio.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - https://www.touslesdrivers.com/index.php?v_page=29
O16 - DPF: {88764F69-3831-4EC1-B40B-FF21D8381345} (AdVerifierADPCtrl Class) - https://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP-1.0.cab
O16 - DPF: {B79A53C0-1DAC-4636-BACE-FD086A7A79BF} (AdSignerLCContrl Class) - https://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP-1.1.cab
O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} (Driver Agent ActiveX Control) - https://driveragent.com/files/driveragent.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O20 - Winlogon Notify: dimsntfy - %SystemRoot%\System32\dimsntfy.dll (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: ewido security suite control - Unknown owner - C:\Program Files\ewido anti-malware\ewidoctrl.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: maconfservice - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Online Armor Helper Service (OAcat) - Tall Emu - C:\Program Files\Tall Emu\Online Armor\OAcat.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ScsiAccess - Unknown owner - C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
O23 - Service: SPAMfighter Update Service - SPAMfighter ApS - C:\Program Files\SPAMfighter\sfus.exe
O23 - Service: Online Armor (SvcOnlineArmor) - Tall Emu - C:\Program Files\Tall Emu\Online Armor\oasrv.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
A voir également:

184 réponses

Précédent
Réponse 21 / 184
Utilisateur anonyme
9 juin 2009 à 12:12
Zeb-Restore doit être installé en mode sans échec !

où est-ce écrit ??????
zeb-restore e s'installe pas il s execute

Quelle différence pour Antivir entre " Antivir_workstation_winu_fr_h " et " avira_antivir_personal_fr " ?

perso je n'en sais absolument rien vu que je n'ai jamais utilisé cet antivirus
certainement le meme installeur avec un nom different
0
Réponse 22 / 184
Ramon1 Messages postés 333 Date d'inscription samedi 1 octobre 2005 Statut Membre Dernière intervention 16 juillet 2024
9 juin 2009 à 12:55
Zeb-Restore doit être installé en mode sans échec !
où est-ce écrit ??????

Je n'ai pas dit que c'était écrit !
Excuses moi j'ai mal formulé ma question.
Je souhaitais seulement savoir s'il valait mieux démarrer le pc en mode sans échec pour exécuter ZB_restore, compte tenu des risques de blocage en mode normal !
0
Réponse 23 / 184
Utilisateur anonyme
9 juin 2009 à 13:05
compte tenu des risques de blocage en mode normal !

????je n'ai jamais vu zeb-restore bloquer quoi que ce soit
0
Réponse 24 / 184
Ramon1 Messages postés 333 Date d'inscription samedi 1 octobre 2005 Statut Membre Dernière intervention 16 juillet 2024
9 juin 2009 à 13:35
Oui mais avant de l'exécuter, il faut bien l'enregistrer sur le bureau, et pour cela que le PC soit ouvert jusqu'au bout, hors en mode normal j'ai été bloqué plusieurs fois avant que l'exécution de windows ne soit terminée !
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 184
Utilisateur anonyme
9 juin 2009 à 14:00
ah ok ... non tu peux le faire en mode sans echec
0
Réponse 26 / 184
Ramon1 Messages postés 333 Date d'inscription samedi 1 octobre 2005 Statut Membre Dernière intervention 16 juillet 2024
11 juin 2009 à 08:39
Re

J'ai un petit souci

-Clic droit Zeb-Restore.zip ==> Extraire tout choisis comme lieu d'enregistrement le bureau.
-Ouvre le dossier ZR_1.0.0.37 ==> double clic sur Zeb-Restore.exe
- Coche la case devant :sites de confiance
- Ne coche aucune autre case
-Clique sur Restaurer

J'ai bien extrait zeb-restore sur le bureau, ouvert zeb-restore.exe et cocher la case sites de confiance.
Mais après " Clique sur restaurer " : Sur mon PC perso, je ne visualise pas le bouton " Restaurer ", sans doute parce que je suis en mode sans échec ?
En même temps que je pose la question, je me dis qu'il faut sans doute changer la résolution de l'écran à partir du panneau de configuration / affichage ..
Est-ce bien cela ?
Ou comment remédier à ce pb ?
0
Réponse 27 / 184
Utilisateur anonyme
11 juin 2009 à 08:41
Hello passe outre nous y reviendrons si necessaire
0
Réponse 28 / 184
Ramon1 Messages postés 333 Date d'inscription samedi 1 octobre 2005 Statut Membre Dernière intervention 16 juillet 2024
11 juin 2009 à 08:54
Ok je m'y remet ce soir
0
Réponse 29 / 184
Utilisateur anonyme
11 juin 2009 à 08:59
:)
0
Réponse 30 / 184
Ramon1 Messages postés 333 Date d'inscription samedi 1 octobre 2005 Statut Membre Dernière intervention 16 juillet 2024
12 juin 2009 à 10:28
Re bonjour,

Comme je ne visualisais pas entièrement en mode sans échec,les fenêtres des programmes de Zeb-restore, ni de HospXpert, je me suis résolu à tenter l'exécution en mode normal.
Après plusieurs tentatives bloquées, j'y suis en fin parvenu.
J'ai eu également un 1er blocage avec OTM, un autre avec Toolbar lors du 2ème passage, un autre blocage en cours d'installation d' ANTIVIR, un autre à la fin de l'installation après l'ouverture du fichier readme.txt.
J'ai ensuite lancer le scan mais par erreur en mode normal, reblocage à 50.7%
J'ai donc paramètré ANTIVIR selon tes préconisations, et lancer le SCAN en mode sans échec ce matin avant de partir au boulot.
LA BÊTE N'EST DONC PAS MORTE !!!
Je te transmet donc tous les rapports que j'ai enregistrés, certains avec 2 passages.


1er rapport après OTM

========== PROCESSES ==========
Unable to kill process: explorer.exe
========== SERVICES/DRIVERS ==========

Service\Driver aspnet_state deleted successfully.

Service\Driver ewido security suite control deleted successfully.

Service\Driver ewido security suite guard deleted successfully.
========== FILES ==========
C:\WINDOWS\system32\vezvutkuwkotlxvd.dll unregistered successfully.
C:\WINDOWS\system32\vezvutkuwkotlxvd.dll moved successfully.
Folder move failed. C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio\kb124\temp scheduled to be moved on reboot.
C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio\kb124\rules moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio\kb124\res moved successfully.
Folder move failed. C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio\kb124 scheduled to be moved on reboot.
Folder move failed. C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio scheduled to be moved on reboot.
C:\Documents and Settings\PROPRIETAIRE\Application Data\EoRezo\EoWeather\images_station_meteo moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\EoRezo\EoWeather\images_classic moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\EoRezo\EoWeather\images moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\EoRezo\EoWeather moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\EoRezo\eoStats moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\EoRezo\eoDesktop moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\EoRezo\db moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\EoRezo moved successfully.
C:\Program Files\BrowsingAdvisor moved successfully.
C:\Program Files\FBrowserAdvisor moved successfully.
C:\Program Files\eoRezo\EoWeather moved successfully.
C:\Program Files\eoRezo\EoAdv\tmp moved successfully.
C:\Program Files\eoRezo\EoAdv moved successfully.
C:\Program Files\eoRezo moved successfully.
C:\Program Files\Dealio\kb124\temp moved successfully.
C:\Program Files\Dealio\kb124\rules moved successfully.
C:\Program Files\Dealio\kb124\res moved successfully.
C:\Program Files\Dealio\kb124 moved successfully.
C:\Program Files\Dealio moved successfully.
C:\Program Files\PlayMP3z moved successfully.
C:\Program Files\FBrowsingAdvisor moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio(4)\kb124(2)\temp(2) moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio(4)\kb124(2) moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio(4) moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio(3)\kb124(2)\temp(2) moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio(3)\kb124(2) moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio(3) moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio(2)\kb124(2)\temp(2) moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio(2)\kb124(2) moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio(2) moved successfully.
C:\sqmdata00.sqm moved successfully.
C:\sqmdata01.sqm moved successfully.
C:\sqmdata02.sqm moved successfully.
C:\sqmdata03.sqm moved successfully.
C:\sqmnoopt00.sqm moved successfully.
C:\sqmnoopt01.sqm moved successfully.
C:\sqmnoopt02.sqm moved successfully.
C:\sqmnoopt03.sqm moved successfully.
C:\WINDOWS\System32\sqlaptunpboyrblhi.exe moved successfully.
C:\Program Files\SPAMfighter(2)\Graphics(2)\Toolbar(2) moved successfully.
C:\Program Files\SPAMfighter(2)\Graphics(2)\SPAMCFG(2)\Wizard(2) moved successfully.
C:\Program Files\SPAMfighter(2)\Graphics(2)\SPAMCFG(2)\Flags(2) moved successfully.
C:\Program Files\SPAMfighter(2)\Graphics(2)\SPAMCFG(2) moved successfully.
C:\Program Files\SPAMfighter(2)\Graphics(2) moved successfully.
C:\Program Files\SPAMfighter(2)\Documents(2)\FAQ(2) moved successfully.
C:\Program Files\SPAMfighter(2)\Documents(2) moved successfully.
C:\Program Files\SPAMfighter(2) moved successfully.
DllUnregisterServer procedure not found in C:\WINDOWS\SlantAdj.dll
C:\WINDOWS\SlantAdj.dll NOT unregistered.
C:\WINDOWS\SlantAdj.dll moved successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9B886AE3-A663-03B1-8DD5-B6037C0ED1EE}\\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6A87B991-A31F-4130-AE72-6D0C294BF082}\\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}\\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F1E96EDC-E0C8-BE98-1F15-C29DBED83B53}\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\EoEngine deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\EoWeather deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\au deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\wtstpjmdzhx not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\MSMSGS deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\Perflib_Perfdata_f7c.dat scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\~DF1FB.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\~WRS0003.tmp scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\PROPRIETAIRE\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\PROPRIETAIRE\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat scheduled to be deleted on reboot.
User's Temporary Internet Files folder emptied.
Local Service Temp folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
Network Service Temp folder emptied.
Network Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_4b4.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_9ec.dat scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
Temp folders emptied.
Explorer started successfully

OTM by OldTimer - Version 2.1.0.0 log created on 06112009_210215

Files moved on Reboot...
C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio\kb124\temp moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio\kb124 moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio moved successfully.
File C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\Perflib_Perfdata_f7c.dat not found!
File C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\~DF1FB.tmp not found!
File C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\~WRS0003.tmp not found!
C:\Documents and Settings\PROPRIETAIRE\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat moved successfully.
File C:\WINDOWS\temp\_avast4_\Webshlock.txt not found!
File C:\WINDOWS\temp\Perflib_Perfdata_4b4.dat not found!
File C:\WINDOWS\temp\Perflib_Perfdata_9ec.dat not found!

Registry entries deleted on Reboot...
0
Réponse 31 / 184
Ramon1 Messages postés 333 Date d'inscription samedi 1 octobre 2005 Statut Membre Dernière intervention 16 juillet 2024
12 juin 2009 à 10:31
Re

2ème rapport

-----------\\ ToolBar S&D 1.2.8 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 1800+ )
BIOS : Version 1.00
USER : PROPRIETAIRE ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1335 [VPS 090605-0] 4.8.1335 (Not Activated)
Firewall : Pare-feu Online Armor 3.5.0.14 (Not Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:37 Go (Free:4 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)

"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [1] ( 11/06/2009|21:15 )

-----------\\ Recherche de Fichiers / Dossiers ...

C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Dealio
C:\DOCUME~1\PROPRI~1\MENUDM~1\PROGRA~1\PlayMP3z

-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="http://neufportail.fr/"
"Search Page"="https://www.google.com/?gws_rd=ssl"
"Default_Search_URL"="http://www.google.com/toolbar/ie8/sidebar.html"
"SearchMigratedDefaultURL"="https://www.google.com/webhp?gws_rd=ssl{searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8"
"Search Bar"="http://www.google.com/toolbar/ie8/sidebar.html"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="https://www.msn.com/fr-fr/?ocid=iehp"


--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !


1 - "C:\ToolBar SD\TB_1.txt" - 11/06/2009|21:17 - Option : [1]


3ème rapport

-----------\\ ToolBar S&D 1.2.8 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 1800+ )
BIOS : Version 1.00
USER : PROPRIETAIRE ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1335 [VPS 090605-0] 4.8.1335 (Not Activated)
Firewall : Pare-feu Online Armor 3.5.0.14 (Not Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:37 Go (Free:4 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)

"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [2] ( 11/06/2009|21:19 )

-----------\\ SUPPRESSION

Supprime! - C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Dealio
Supprime! - C:\DOCUME~1\PROPRI~1\MENUDM~1\PROGRA~1\PlayMP3z

-----------\\ Recherche de Fichiers / Dossiers ...


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="http://neufportail.fr/"
"Search Page"="https://www.google.com/?gws_rd=ssl"
"Default_Search_URL"="http://www.google.com/toolbar/ie8/sidebar.html"
"SearchMigratedDefaultURL"="https://www.google.com/webhp?gws_rd=ssl{searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8"
"Search Bar"="http://www.google.com/toolbar/ie8/sidebar.html"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="https://www.msn.com/fr-fr/"


--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !


1 - "C:\ToolBar SD\TB_1.txt" - 11/06/2009|21:17 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 11/06/2009|21:23 - Option : [2]


4è rapport

-----------\\ ToolBar S&D 1.2.8 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 1800+ )
BIOS : Version 1.00
USER : PROPRIETAIRE ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1335 [VPS 090605-0] 4.8.1335 (Not Activated)
Firewall : Pare-feu Online Armor 3.5.0.14 (Not Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:37 Go (Free:4 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)

"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [1] ( 11/06/2009|21:28 )

-----------\\ Recherche de Fichiers / Dossiers ...


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="http://neufportail.fr/"
"Search Page"="https://www.google.com/?gws_rd=ssl"
"Default_Search_URL"="http://www.google.com/toolbar/ie8/sidebar.html"
"SearchMigratedDefaultURL"="https://www.google.com/webhp?gws_rd=ssl{searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8"
"Search Bar"="http://www.google.com/toolbar/ie8/sidebar.html"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="https://www.msn.com/fr-fr/"


--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !


1 - "C:\ToolBar SD\TB_1.txt" - 11/06/2009|21:17 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 11/06/2009|21:23 - Option : [2]
3 - "C:\ToolBar SD\TB_3.txt" - 11/06/2009|21:30 - Option : [1]


5è rapport
-----------\\ ToolBar S&D 1.2.8 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 1800+ )
BIOS : Version 1.00
USER : PROPRIETAIRE ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1335 [VPS 090605-0] 4.8.1335 (Not Activated)
Firewall : Pare-feu Online Armor 3.5.0.14 (Not Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:37 Go (Free:4 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)

"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [2] ( 11/06/2009|21:30 )

-----------\\ Recherche de Fichiers / Dossiers ...


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="http://neufportail.fr/"
"Search Page"="https://www.google.com/?gws_rd=ssl"
"Default_Search_URL"="http://www.google.com/toolbar/ie8/sidebar.html"
"SearchMigratedDefaultURL"="https://www.google.com/webhp?gws_rd=ssl{searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8"
"Search Bar"="http://www.google.com/toolbar/ie8/sidebar.html"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="https://www.msn.com/fr-fr/"


--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !


1 - "C:\ToolBar SD\TB_1.txt" - 11/06/2009|21:17 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 11/06/2009|21:23 - Option : [2]
3 - "C:\ToolBar SD\TB_3.txt" - 11/06/2009|21:30 - Option : [1]
4 - "C:\ToolBar SD\TB_4.txt" - 11/06/2009|21:32 - Option : [2]
0
Réponse 32 / 184
Ramon1 Messages postés 333 Date d'inscription samedi 1 octobre 2005 Statut Membre Dernière intervention 16 juillet 2024
12 juin 2009 à 10:32
Re

6è rapport


-----------\\ ToolBar S&D 1.2.8 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 1800+ )
BIOS : Version 1.00
USER : PROPRIETAIRE ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1335 [VPS 090605-0] 4.8.1335 (Not Activated)
Firewall : Pare-feu Online Armor 3.5.0.14 (Not Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:37 Go (Free:4 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)

"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [2] ( 11/06/2009|21:30 )

-----------\\ Recherche de Fichiers / Dossiers ...


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="http://neufportail.fr/"
"Search Page"="https://www.google.com/?gws_rd=ssl"
"Default_Search_URL"="http://www.google.com/toolbar/ie8/sidebar.html"
"SearchMigratedDefaultURL"="https://www.google.com/webhp?gws_rd=ssl{searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8"
"Search Bar"="http://www.google.com/toolbar/ie8/sidebar.html"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="https://www.msn.com/fr-fr/"


--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !


1 - "C:\ToolBar SD\TB_1.txt" - 11/06/2009|21:17 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 11/06/2009|21:23 - Option : [2]
3 - "C:\ToolBar SD\TB_3.txt" - 11/06/2009|21:30 - Option : [1]
4 - "C:\ToolBar SD\TB_4.txt" - 11/06/2009|21:32 - Option : [2]

-----------\\ Fin du rapport a 21:32:01,73
0
Réponse 33 / 184
Utilisateur anonyme
12 juin 2009 à 14:03
salut relance un OTL par cijoint stp
0
Réponse 34 / 184
Ramon1 Messages postés 333 Date d'inscription samedi 1 octobre 2005 Statut Membre Dernière intervention 16 juillet 2024
12 juin 2009 à 14:43
Ok je le fais ce soir et j'espère pouvoir te l'envoyer aussitôt, sinon ce sera lundi matin
0
Réponse 35 / 184
Utilisateur anonyme
12 juin 2009 à 15:16
ok toute facons je serai absent jusqu'a dimanche soir certainement
0
Réponse 36 / 184
Ramon1 Messages postés 333 Date d'inscription samedi 1 octobre 2005 Statut Membre Dernière intervention 16 juillet 2024
15 juin 2009 à 10:08
Bonjour,

Ci-joint les 2 rapports à suivre " OTL logfile " et " OTL extra logfine "

1er rapport

OTL logfile created on: 14/06/2009 21:52:50 - Run 1
OTL by OldTimer - Version 2.1.1.0 Folder = F:\
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

1023,48 Mb Total Physical Memory | 601,21 Mb Available Physical Memory | 58,74% Memory free
2,41 Gb Paging File | 2,06 Gb Available in Paging File | 85,78% Paging File free
Paging file location(s): [Binary data over 100 bytes]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37,26 Gb Total Space | 5,38 Gb Free Space | 14,44% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
Drive F: | 1,95 Gb Total Space | 1,90 Gb Free Space | 97,14% Space Free | Partition Type: FAT
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: ROCHER-0B5F4F3D
Current User Name: PROPRIETAIRE
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Output = Standard
File Age = 30 Days
Company Name Whitelist: On

[color=orange]========== Processes (SafeList) ==========/color

PRC - [2009/04/28 05:43:04 | 00,361,672 | ---- | M] (Tall Emu) -- C:\Program Files\Tall Emu\Online Armor\OAcat.exe
PRC - [2009/04/28 05:43:00 | 03,052,744 | ---- | M] (Tall Emu) -- C:\Program Files\Tall Emu\Online Armor\oasrv.exe
PRC - [2009/04/01 15:46:04 | 00,108,289 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2008/04/14 04:34:03 | 01,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE
PRC - [2009/05/18 23:12:01 | 00,717,320 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\a-squared Free\a2service.exe
PRC - [2009/03/02 13:09:54 | 00,185,089 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2008/07/22 20:42:12 | 00,116,040 | ---- | M] (Apple Inc.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2007/07/24 15:17:08 | 00,229,376 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2006/05/10 22:14:11 | 00,039,936 | ---- | M] (C-Dilla Ltd) -- C:\WINDOWS\system32\drivers\CDAC11BA.EXE
PRC - [2003/05/07 21:56:22 | 00,188,416 | ---- | M] (HP) -- C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe
PRC - [2009/03/09 05:19:15 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2006/10/19 13:52:24 | 00,061,440 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
PRC - [2008/10/15 02:04:34 | 00,039,792 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
PRC - [2009/03/12 10:43:48 | 00,326,792 | ---- | M] (SPAMfighter ApS) -- C:\Program Files\SPAMfighter\SFAgent.exe
PRC - [2008/01/20 12:02:47 | 00,181,312 | ---- | M] () -- C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
PRC - [2009/03/09 05:19:17 | 00,148,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009/04/28 05:42:48 | 02,045,128 | ---- | M] (Tall Emu) -- C:\Program Files\Tall Emu\Online Armor\oaui.exe
PRC - [2009/03/12 10:44:32 | 00,184,968 | ---- | M] (SPAMfighter ApS) -- C:\Program Files\SPAMfighter\sfus.exe
PRC - [2009/03/02 13:08:11 | 00,209,153 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2008/01/17 21:01:29 | 00,068,856 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2009/03/18 02:03:02 | 00,251,240 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
PRC - [2009/03/18 02:03:02 | 00,092,008 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
PRC - [2003/07/08 11:22:00 | 00,962,663 | ---- | M] () -- C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
PRC - [2009/04/28 05:42:56 | 01,038,024 | ---- | M] (Tall Emu) -- C:\Program Files\Tall Emu\Online Armor\OAhlp.exe
PRC - [2009/02/06 12:10:02 | 00,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe
PRC - [2008/04/14 04:34:29 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe
PRC - [2009/04/17 10:02:31 | 00,405,249 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\update.exe
PRC - [2009/06/13 17:43:16 | 00,501,760 | ---- | M] (OldTimer Tools) -- F:\OTL.exe

[color=orange]========== Win32 Services (SafeList) ==========/color

SRV - [2009/05/18 23:12:01 | 00,717,320 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\a-squared Free\a2service.exe -- (a2free [Auto | Running])
SRV - File not found -- -- (aawservice [Auto | Stopped])
SRV - [2009/04/01 15:46:04 | 00,108,289 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService [Auto | Running])
SRV - [2009/03/02 13:09:54 | 00,185,089 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService [Auto | Running])
SRV - [2008/07/22 20:42:12 | 00,116,040 | ---- | M] (Apple Inc.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device [Auto | Running])
SRV - File not found -- -- (aspnet_state [On_Demand | Stopped])
SRV - [2007/07/24 15:17:08 | 00,229,376 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service [Auto | Running])
SRV - [2006/05/10 22:14:11 | 00,039,936 | ---- | M] (C-Dilla Ltd) -- C:\WINDOWS\system32\drivers\CDAC11BA.EXE -- (C-DillaCdaC11BA [Auto | Running])
SRV - File not found -- -- (ewido security suite control [Auto | Stopped])
SRV - File not found -- -- (ewido security suite guard [Disabled | Stopped])
SRV - [2009/01/20 21:46:38 | 00,137,200 | ---- | M] (Google) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [On_Demand | Stopped])
SRV - [2008/04/14 04:33:38 | 00,038,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running])
SRV - [2005/04/04 00:41:10 | 00,069,632 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT [On_Demand | Stopped])
SRV - [2009/03/09 05:19:15 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService [Auto | Running])
SRV - [2006/10/19 13:52:24 | 00,061,440 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe -- (LightScribeService [Auto | Running])
SRV - [2008/05/14 16:40:36 | 00,576,680 | ---- | M] (CybelSoft) -- C:\Program Files\ma-config.com\maconfservice.exe -- (maconfservice [On_Demand | Stopped])
SRV - [2009/04/28 05:43:04 | 00,361,672 | ---- | M] (Tall Emu) -- C:\Program Files\Tall Emu\Online Armor\OAcat.exe -- (OAcat [Auto | Running])
SRV - [2003/05/14 21:45:04 | 00,065,795 | R--- | M] (HP) -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12 [On_Demand | Stopped])
SRV - [2008/01/20 12:02:47 | 00,181,312 | ---- | M] () -- C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe -- (ScsiAccess [Auto | Running])
SRV - [2009/03/12 10:44:32 | 00,184,968 | ---- | M] (SPAMfighter ApS) -- C:\Program Files\SPAMfighter\sfus.exe -- (SPAMfighter Update Service [Auto | Running])
SRV - [2009/04/28 05:43:00 | 03,052,744 | ---- | M] (Tall Emu) -- C:\Program Files\Tall Emu\Online Armor\oasrv.exe -- (SvcOnlineArmor [Auto | Running])
SRV - [2009/03/18 02:03:02 | 00,092,008 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe -- (TomTomHOMEService [Auto | Running])
SRV - [2007/10/18 12:31:54 | 00,098,328 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\usnsvc.exe -- (usnjsvc [On_Demand | Stopped])
SRV - [2007/10/25 16:27:54 | 00,266,240 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\installer\WLSetupSvc.exe -- (WLSetupSvc [On_Demand | Stopped])
SRV - [2006/11/03 09:59:14 | 00,918,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\WMPNetwk.exe -- (WMPNetworkSvc [On_Demand | Stopped])

[color=orange]========== Driver Services (SafeList) ==========/color

DRV - [2003/07/17 16:48:44 | 00,046,167 | ---- | M] (Analog Deivces) -- C:\WINDOWS\System32\Drivers\adildr.sys -- (ADILOADER [Auto | Stopped])
DRV - [2003/03/27 13:38:44 | 00,127,145 | ---- | M] (Analog Devices Inc.) -- C:\WINDOWS\system32\DRIVERS\adiusbaw.sys -- (adiusbaw [On_Demand | Stopped])
DRV - [2006/04/13 23:17:39 | 00,082,380 | ---- | M] (Oak Technology Inc.) -- C:\WINDOWS\System32\drivers\AFS2K.SYS -- (AFS2K [System | Running])
DRV - [2009/02/13 12:34:33 | 00,011,608 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio [System | Running])
DRV - [2009/03/24 16:07:58 | 00,055,640 | ---- | M] (Avira GmbH) -- C:\WINDOWS\system32\DRIVERS\avgntflt.sys -- (avgntflt [Auto | Running])
DRV - [2009/03/30 10:32:47 | 00,096,104 | ---- | M] (Avira GmbH) -- C:\WINDOWS\system32\DRIVERS\avipbb.sys -- (avipbb [System | Running])
DRV - [2006/05/10 22:28:36 | 00,008,864 | ---- | M] () -- C:\WINDOWS\system32\drivers\CDAC15BA.SYS -- (CdaC15BA [Auto | Running])
DRV - [2006/06/09 22:58:22 | 01,373,120 | ---- | M] (C-Media Inc) -- C:\WINDOWS\system32\drivers\cmuda.sys -- (cmuda [On_Demand | Running])
DRV - [2007/11/27 23:41:42 | 00,008,704 | ---- | M] (Ma-Config.com) -- C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys -- (driverhardwarev2 [On_Demand | Stopped])
DRV - [2008/04/13 20:45:29 | 00,010,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\DRIVERS\gameenum.sys -- (gameenum [On_Demand | Running])
DRV - [2003/05/14 21:19:52 | 00,051,056 | R--- | M] (HP) -- C:\WINDOWS\system32\DRIVERS\HPZid412.sys -- (HPZid412 [On_Demand | Stopped])
DRV - [2003/05/14 21:19:54 | 00,016,496 | R--- | M] (HP) -- C:\WINDOWS\system32\DRIVERS\HPZipr12.sys -- (HPZipr12 [On_Demand | Stopped])
DRV - [2003/05/14 21:17:54 | 00,021,488 | R--- | M] (HP) -- C:\WINDOWS\system32\DRIVERS\HPZius12.sys -- (HPZius12 [On_Demand | Stopped])
DRV - [2004/08/04 00:41:48 | 00,220,032 | ---- | M] (Conexant Systems, Inc.) -- C:\WINDOWS\system32\DRIVERS\HSFBS2S2.sys -- (HSFHWBS2 [On_Demand | Running])
DRV - [2004/08/04 00:41:56 | 01,041,536 | ---- | M] (Conexant Systems, Inc.) -- C:\WINDOWS\system32\DRIVERS\HSFDPSP2.sys -- (HSF_DP [On_Demand | Running])
DRV - [2004/08/04 00:41:56 | 00,011,868 | ---- | M] (Conexant) -- C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys -- (mdmxsdk [Auto | Running])
DRV - [2001/08/18 00:00:04 | 00,002,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401 [On_Demand | Stopped])
DRV - [2004/08/04 00:29:56 | 01,897,408 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\DRIVERS\nv4_mini.sys -- (nv [On_Demand | Running])
DRV - [2009/04/28 05:01:48 | 00,198,224 | ---- | M] (Tall Emu) -- C:\WINDOWS\system32\drivers\OADriver.sys -- (OADevice [System | Running])
DRV - [2009/04/28 05:02:02 | 00,031,824 | ---- | M] (Tall Emu) -- C:\WINDOWS\system32\drivers\OAmon.sys -- (OAmon [System | Running])
DRV - [2009/04/28 05:43:40 | 00,029,776 | ---- | M] (Tall Emu Pty Ltd) -- C:\WINDOWS\system32\drivers\OAnet.sys -- (OAnet [System | Running])
DRV - [2003/09/19 16:45:48 | 00,021,248 | ---- | M] (Padus, Inc.) -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc [On_Demand | Running])
DRV - [2001/08/28 12:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\system32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])
DRV - [2008/02/23 04:38:33 | 00,043,872 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20 [Boot | Running])
DRV - [2007/11/13 12:25:54 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\system32\DRIVERS\secdrv.sys -- (Secdrv [On_Demand | Stopped])
DRV - [2003/07/18 03:58:20 | 00,036,992 | R--- | M] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\system32\DRIVERS\SISAGPX.sys -- (SISAGP [Boot | Running])
DRV - [2002/07/10 17:39:34 | 00,032,256 | R--- | M] (SiS Corporation) -- C:\WINDOWS\system32\DRIVERS\sisnic.sys -- (SISNIC [On_Demand | Running])
DRV - [2009/02/13 12:49:30 | 00,028,376 | ---- | M] (Avira GmbH) -- C:\WINDOWS\system32\DRIVERS\ssmdrv.sys -- (ssmdrv [System | Running])
DRV - [2007/11/01 23:50:16 | 00,023,600 | ---- | M] (EnTech Taiwan) -- C:\WINDOWS\system32\DRIVERS\TVICHW32.SYS -- (TVICHW32 [On_Demand | Stopped])
DRV - [2008/07/22 20:32:44 | 00,032,000 | ---- | M] (Apple, Inc.) -- C:\WINDOWS\System32\Drivers\usbaapl.sys -- (USBAAPL [On_Demand | Stopped])
DRV - [2008/04/13 20:45:12 | 00,060,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio [On_Demand | Stopped])
DRV - [2008/04/13 20:45:36 | 00,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\DRIVERS\usbser.sys -- (usbser [On_Demand | Stopped])
DRV - [2004/08/04 00:41:50 | 00,685,056 | ---- | M] (Conexant Systems, Inc.) -- C:\WINDOWS\system32\DRIVERS\HSFCXTS2.sys -- (winachsf [On_Demand | Running])

[color=orange]========== Standard Registry (SafeList) ==========/color


[color=orange]========== Internet Explorer ==========/color

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm


IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2000478354-1275210071-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/toolbar/ie8/sidebar.html
IE - HKU\S-1-5-21-2000478354-1275210071-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKU\S-1-5-21-2000478354-1275210071-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKU\S-1-5-21-2000478354-1275210071-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
IE - HKU\S-1-5-21-2000478354-1275210071-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKU\S-1-5-21-2000478354-1275210071-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = https://www.google.com/webhp?gws_rd=ssl{searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKU\S-1-5-21-2000478354-1275210071-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = https://www.rtl.fr/ [binary data]
IE - HKU\S-1-5-21-2000478354-1275210071-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://neufportail.fr/
IE - HKU\S-1-5-21-2000478354-1275210071-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/toolbar/ie8/sidebar.html
IE - HKU\S-1-5-21-2000478354-1275210071-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/toolbar/ie8/sidebar.html
IE - HKU\S-1-5-21-2000478354-1275210071-725345543-1004\S-1-5-21-2000478354-1275210071-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2000478354-1275210071-725345543-1004\S-1-5-21-2000478354-1275210071-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2008/12/07 20:31:01 | 00,000,000 | ---D | M]

[2009/03/02 22:13:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\mozilla\Extensions
[2009/03/02 22:13:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\mozilla\Extensions\home2@tomtom.com

O1 HOSTS File: (306060 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 10539 more lines...
O2 - BHO: (Aide pour le lien d'Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - Reg Error: Key error. File not found
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll (Google Inc.)
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKU\S-1-5-21-2000478354-1275210071-725345543-1004\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O3 - HKU\S-1-5-21-2000478354-1275210071-725345543-1004\..\Toolbar\WebBrowser: (no name) - {E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - Reg Error: Key error. File not found
O3 - HKU\S-1-5-21-2000478354-1275210071-725345543-1004\..\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key error. File not found
O4 - HKLM..\Run: [@OnlineArmor GUI] "C:\Program Files\Tall Emu\Online Armor\oaui.exe" (Tall Emu)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min (Avira GmbH)
O4 - HKLM..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd File not found
O4 - HKLM..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe (HP)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [SFR-PC] "C:\Program Files\SFR-PC\SFR-PC.exe" /check (Glowria)
O4 - HKLM..\Run: [SPAMfighter Agent] "C:\Program Files\SPAMfighter\SFAgent.exe" update delay 60 (SPAMfighter ApS)
O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" (Sun Microsystems, Inc.)
O4 - HKU\.DEFAULT..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (Google Inc.)
O4 - HKU\S-1-5-18..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (Google Inc.)
O4 - HKU\S-1-5-21-2000478354-1275210071-725345543-1004..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKU\S-1-5-21-2000478354-1275210071-725345543-1004..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" (TomTom)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2000478354-1275210071-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2000478354-1275210071-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O9 - Extra 'Tools' menuitem : Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe ()
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [mdnsNSP] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKLM\..Trusted Domains: 48 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\.DEFAULT\..Trusted Domains: 50 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\S-1-5-18\..Trusted Domains: 50 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\S-1-5-19\..Trusted Domains: 34 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\S-1-5-20\..Trusted Domains: 34 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\S-1-5-21-2000478354-1275210071-725345543-1004\..Trusted Domains: ([]msn in My Computer)
O15 - HKU\S-1-5-21-2000478354-1275210071-725345543-1004\..Trusted Domains: neuf.fr ([vod] http in Intranet local)
O15 - HKU\S-1-5-21-2000478354-1275210071-725345543-1004\..Trusted Domains: neuf.fr ([vod] https in Sites de confiance)
O15 - HKU\S-1-5-21-2000478354-1275210071-725345543-1004\..Trusted Domains: 51 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resources/scan8/oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.microsoft.com/... (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/... (MUWebControl Class)
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} https://www.touslesdrivers.com/index.php?v_page=29 (HardwareDetection Control)
O16 - DPF: {88764F69-3831-4EC1-B40B-FF21D8381345} https://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP-1.0.cab (AdVerifierADPCtrl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {B79A53C0-1DAC-4636-BACE-FD086A7A79BF} https://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP-1.1.cab (AdSignerLCContrl Class)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} https://driveragent.com/files/driveragent.cab (Driver Agent ActiveX Control)
O18 - Protocol\Handler\cetihpz {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll (Hewlett-Packard Company)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O28 - HKLM ShellExecuteHooks: {4F07DA45-8170-4859-9B5F-037EF2970034} - C:\Program Files\Tall Emu\Online Armor\oaevent.dll (Tall Emu)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/04/11 14:22:17 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{6762ca74-0765-11de-a13b-4d6564696130}\Shell\AutoRun\command - "" = G:\InstallTomTomHOME.exe -- File not found
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - * ()
O34 - HKLM BootExecute: (lsdelete) - File not found

[color=orange]========== Files/Folders - Created Within 30 Days ==========/color

[1 C:\WINDOWS\*.tmp files]
[2009/06/14 21:53:17 | 00,000,000 | ---D | C] -- C:\0806e903deb93609a9
[2009/06/12 18:45:14 | 00,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2009/06/11 22:28:08 | 00,001,707 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Avira AntiVir Control Center.lnk
[2009/06/11 22:26:48 | 00,096,104 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys
[2009/06/11 22:26:48 | 00,055,640 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys
[2009/06/11 22:26:48 | 00,045,416 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntdd.sys
[2009/06/11 22:26:48 | 00,022,360 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntmgr.sys
[2009/06/11 22:26:47 | 00,028,376 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys
[2009/06/11 22:26:35 | 00,000,000 | ---D | C] -- C:\Program Files\Avira
[2009/06/11 22:26:35 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Avira
[2009/06/11 22:19:14 | 00,000,000 | ---D | C] -- C:\Documents and Settings\PROPRIETAIRE\Bureau\Dépannage
[2009/06/11 22:09:07 | 30,143,928 | ---- | C] () -- C:\Documents and Settings\PROPRIETAIRE\Bureau\avira_antivir_personal_fr.exe
[2009/06/11 22:04:20 | 00,001,548 | ---- | C] () -- C:\Documents and Settings\PROPRIETAIRE\Bureau\CCleaner.lnk
[2009/06/11 22:04:18 | 00,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2009/06/11 21:15:06 | 00,000,000 | ---D | C] -- C:\ToolBar SD
[2009/06/11 21:02:15 | 00,000,000 | ---D | C] -- C:\_OTM
[2009/06/11 01:17:30 | 00,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel
[2009/06/10 20:41:39 | 00,005,518 | ---- | C] () -- C:\A coller.doc
[2009/06/10 19:59:44 | 00,000,000 | ---D | C] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio(6)
[2009/06/08 21:20:47 | 00,000,000 | ---D | C] -- C:\rsit
[2009/06/08 20:14:30 | 00,000,000 | ---D | C] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio(5)
[2009/06/05 23:55:16 | 00,000,284 | ---- | C] () -- C:\Documents and Settings\PROPRIETAIRE\Mes documents\cc_20090605_235515.reg
[2009/06/05 23:54:57 | 00,014,216 | ---- | C] () -- C:\Documents and Settings\PROPRIETAIRE\Mes documents\cc_20090605_235456.reg
[2009/06/05 23:53:59 | 00,956,012 | ---- | C] () -- C:\Documents and Settings\PROPRIETAIRE\Mes documents\cc_20090605_235356.reg
[2009/06/05 00:34:07 | 00,000,000 | ---D | C] -- C:\Program Files\Ad-remover
[2009/06/05 00:28:26 | 00,000,000 | ---D | C] -- C:\Documents and Settings\PROPRIETAIRE\Mes documents\Ad-remover
[2009/06/05 00:05:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\PROPRIETAIRE\Mes documents\Ccleaner
[2009/06/04 23:58:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\PROPRIETAIRE\Mes documents\GenProc
[2009/06/03 23:28:16 | 00,000,000 | ---D | C] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\AdSigner
[2009/05/18 23:22:05 | 00,000,000 | ---D | C] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\OnlineArmor
[2009/05/18 23:22:05 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\OnlineArmor
[2009/05/18 23:21:47 | 00,198,224 | ---- | C] (Tall Emu) -- C:\WINDOWS\System32\drivers\OADriver.sys
[2009/05/18 23:21:47 | 00,031,824 | ---- | C] (Tall Emu) -- C:\WINDOWS\System32\drivers\OAmon.sys
[2009/05/18 23:21:47 | 00,029,776 | ---- | C] (Tall Emu Pty Ltd) -- C:\WINDOWS\System32\drivers\OAnet.sys
[2009/05/18 23:21:40 | 00,000,000 | ---D | C] -- C:\Program Files\Tall Emu
[2009/05/18 23:15:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft
[2009/05/17 12:50:09 | 00,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2009/05/17 12:48:52 | 00,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET
[2009/05/17 10:50:25 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Application
[2009/05/17 10:49:12 | 00,000,000 | ---D | C] -- C:\Program Files\SPAMfighter
[2009/05/17 10:47:54 | 00,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprvse.exe
[2009/05/17 10:47:46 | 00,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pdh.dll
[2009/05/17 10:47:45 | 00,401,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcss.dll
[2009/05/17 10:47:45 | 00,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\services.exe
[2009/05/17 10:47:43 | 00,473,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fastprox.dll
[2009/05/17 10:47:42 | 00,685,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\advapi32.dll
[2009/05/17 10:47:40 | 00,735,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll
[2009/05/17 10:47:40 | 00,453,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprvsd.dll
[2009/05/17 10:47:39 | 00,739,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntdll.dll
[2009/05/17 10:41:14 | 01,203,922 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sysmain.sdb
[2009/05/17 10:41:14 | 00,219,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wordpad.exe
[2009/05/17 10:35:33 | 00,354,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winhttp.dll
[2009/05/17 10:08:18 | 00,000,000 | ---D | C] -- C:\Program Files\TomTom International B.V
[2009/05/17 10:07:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\PROPRIETAIRE\Bureau\Outils
[2008/09/16 02:14:24 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2008/09/16 02:12:02 | 00,000,416 | ---- | C] () -- C:\WINDOWS\System32\dtu100.dll.manifest
[2008/09/16 02:12:02 | 00,000,416 | ---- | C] () -- C:\WINDOWS\System32\dpl100.dll.manifest
[2008/09/16 02:11:10 | 00,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll
[2007/08/15 12:26:13 | 00,000,154 | ---- | C] () -- C:\WINDOWS\adidsl.ini
[2007/08/15 12:26:13 | 00,000,021 | ---- | C] () -- C:\WINDOWS\Fast800.ini
[2007/08/15 12:26:08 | 00,000,342 | ---- | C] () -- C:\WINDOWS\adiras.ini
[2007/08/15 12:26:04 | 00,126,976 | ---- | C] () -- C:\WINDOWS\System32\coclassfast.dll
[2007/08/15 12:26:03 | 00,046,892 | ---- | C] () -- C:\WINDOWS\System32\adadix16.dll
[2006/12/14 20:27:48 | 00,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI
[2006/12/14 20:18:56 | 00,001,968 | ---- | C] () -- C:\WINDOWS\Media9Ut.INI
[2006/12/14 20:18:05 | 00,000,040 | ---- | C] () -- C:\WINDOWS\NAVIGMA.INI
[2006/08/30 18:36:40 | 00,001,943 | ---- | C] () -- C:\WINDOWS\MESSAGES.INI
[2006/05/10 22:28:37 | 00,008,864 | ---- | C] () -- C:\WINDOWS\System32\drivers\CDAC15BA.SYS
[2006/05/10 22:18:23 | 00,000,029 | ---- | C] () -- C:\WINDOWS\DEBUGSM.INI
[2006/05/10 22:15:28 | 00,049,152 | ---- | C] () -- C:\WINDOWS\StiRegstFre.dll
[2006/05/10 22:10:24 | 00,290,919 | ---- | C] () -- C:\WINDOWS\System32\pythoncom21.dll
[2006/05/10 22:10:24 | 00,057,344 | ---- | C] () -- C:\WINDOWS\System32\PyWinTypes21.dll
[2006/05/10 22:07:13 | 00,000,072 | ---- | C] () -- C:\WINDOWS\System32\epDPE.ini
[2006/05/10 22:04:18 | 00,000,130 | ---- | C] () -- C:\WINDOWS\EPSON Perfection 1670F.ini
[2006/04/13 19:59:36 | 00,000,488 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2006/04/11 15:26:57 | 00,000,092 | ---- | C] () -- C:\WINDOWS\CMISETUP.INI
[2006/04/11 15:26:57 | 00,000,026 | ---- | C] () -- C:\WINDOWS\CMCDPLAY.INI
[2006/04/11 15:26:55 | 00,000,016 | ---- | C] () -- C:\WINDOWS\Wininit.ini
[2006/04/11 15:26:42 | 00,028,672 | ---- | C] () -- C:\WINDOWS\CMIRmDriver.dll
[2006/04/11 14:38:07 | 00,032,768 | ---- | C] () -- C:\WINDOWS\SIS_LIB.DLL
[2006/04/11 14:35:47 | 00,002,392 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2006/04/11 14:35:46 | 00,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2005/03/01 16:30:20 | 00,000,453 | ---- | C] () -- C:\WINDOWS\bdoscandellang.ini
[2004/08/05 14:00:00 | 00,001,135 | ---- | C] () -- C:\WINDOWS\win.ini
[2004/08/05 14:00:00 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini
[2003/02/19 01:26:28 | 00,028,672 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.dll

[color=orange]========== Files - Modified Within 30 Days ==========/color

[1 C:\WINDOWS\*.tmp files]
[2009/06/14 21:51:28 | 00,013,868 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009/06/14 21:50:30 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009/06/14 21:50:26 | 00,000,062 | -HS- | M] () -- C:\Documents and Settings\PROPRIETAIRE\Local Settings\desktop.ini
[2009/06/14 21:50:24 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009/06/11 22:28:08 | 00,001,707 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Avira AntiVir Control Center.lnk
[2009/06/11 22:04:20 | 00,001,548 | ---- | M] () -- C:\Documents and Settings\PROPRIETAIRE\Bureau\CCleaner.lnk
[2009/06/11 21:55:06 | 00,003,072 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2009/06/11 20:56:43 | 00,306,060 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2009/06/11 20:53:16 | 00,000,698 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20090611-205642.backup
[2009/06/09 11:35:18 | 30,143,928 | ---- | M] () -- C:\Documents and Settings\PROPRIETAIRE\Bureau\avira_antivir_personal_fr.exe
[2009/06/09 11:05:00 | 00,005,518 | ---- | M] () -- C:\A coller.doc
[2009/06/05 23:55:19 | 00,000,284 | ---- | M] () -- C:\Documents and Settings\PROPRIETAIRE\Mes documents\cc_20090605_235515.reg
[2009/06/05 23:55:00 | 00,014,216 | ---- | M] () -- C:\Documents and Settings\PROPRIETAIRE\Mes documents\cc_20090605_235456.reg
[2009/06/05 23:54:28 | 00,956,012 | ---- | M] () -- C:\Documents and Settings\PROPRIETAIRE\Mes documents\cc_20090605_235356.reg
[2009/06/04 20:31:37 | 00,000,575 | ---- | M] () -- C:\Documents and Settings\PROPRIETAIRE\Mes documents\Mes dossiers de partage.lnk
[2009/06/01 22:00:20 | 00,420,680 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2009/06/01 22:00:20 | 00,356,244 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009/06/01 22:00:20 | 00,069,538 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2009/06/01 22:00:20 | 00,055,938 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009/06/01 18:51:12 | 23,635,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MRT.exe
[2009/05/18 23:22:07 | 00,083,796 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.idx
[2009/05/18 19:22:18 | 01,065,886 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009/05/17 19:27:03 | 00,001,646 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\IncrediMail.lnk

[color=orange]========== LOP Check ==========/color

[2006/04/11 14:48:01 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Administrateur\Application Data
[2007/01/31 15:12:56 | 00,000,000 | --SD | M] -- C:\Documents and Settings\Administrateur\Application Data\Microsoft
[2009/06/11 22:26:35 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\All Users\Application Data
[2008/11/10 13:59:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2006/04/11 15:40:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ahead
[2008/08/24 17:49:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Apple
[2008/08/24 18:00:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Apple Computer
[2009/06/11 22:26:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Avira
[2007/08/22 19:17:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BVRP Software
[2006/04/11 15:35:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\CyberLink
[2009/01/18 19:09:21 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Google
[2007/08/24 22:47:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Grisoft
[2008/06/29 10:17:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IM
[2008/06/29 10:13:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IncrediMail
[2009/05/18 23:18:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Lavasoft
[2008/05/15 23:25:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ma-config.com
[2008/08/13 11:23:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MailFrontier
[2009/05/18 23:00:43 | 00,000,000 | --SD | M] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2007/07/06 23:41:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MSN6
[2009/05/18 23:22:05 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\OnlineArmor
[2009/06/11 22:04:55 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
[2009/03/02 22:13:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TomTom
[2006/08/15 17:57:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2008/11/13 01:15:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WLInstaller
[2006/04/11 14:48:01 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Default User\Application Data
[2006/04/11 14:22:06 | 00,000,000 | --SD | M] -- C:\Documents and Settings\Default User\Application Data\Microsoft
[2006/04/11 14:27:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data
[2007/10/03 22:41:56 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2006/04/11 14:27:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Application Data
[2006/04/11 14:22:06 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2009/06/11 21:05:55 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data
[2006/05/10 22:14:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\ABBYY
[2006/05/17 23:08:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\ACD Systems
[2007/04/16 22:29:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\ACDInTouch
[2008/09/08 23:18:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Adobe
[2007/03/28 21:37:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\AdobeUM
[2009/06/03 23:56:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\AdSigner
[2008/07/04 23:20:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Ahead
[2009/06/11 01:17:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Apple Computer
[2009/03/05 20:39:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\ArcSoft
[2008/09/08 23:19:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\com.adobe.example.widget-programmes.40247E01796E652D304FB5752B197AB47987A585.1
[2007/01/20 13:57:47 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\CyberLink
[2009/06/10 23:44:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio(5)
[2009/06/10 22:15:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio(6)
[2008/11/03 12:59:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\DivX
[2008/01/10 00:17:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Google
[2006/04/13 21:21:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Help
[2006/05/14 18:26:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Hewlett-Packard
[2006/04/11 14:32:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Identities
[2009/05/18 23:00:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Lavasoft
[2009/05/19 00:13:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\LimeWire
[2006/04/14 00:57:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Macromedia
[2008/11/13 01:15:25 | 00,000,000 | --SD | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Microsoft
[2009/03/02 22:13:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Mozilla
[2009/03/31 16:17:27 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\MSN6
[2007/01/07 22:53:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Netscape
[2009/05/19 07:04:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\OnlineArmor
[2006/10/18 19:31:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\PC Tools
[2008/01/09 23:31:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Photodex
[2008/11/16 12:59:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\SendPix
[2006/05/10 22:25:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Smart Panel
[2007/09/13 23:46:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\SPAMfighter
[2008/02/29 21:46:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Sun
[2008/06/04 00:44:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\TaoUSign
[2009/03/02 22:12:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\TomTom
[2009/05/17 10:20:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\uTorrent
[2006/04/25 16:12:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\PROPRIETAIRE\Application Data\vlc
[2001/08/28 12:00:00 | 00,000,065 | RH-- | M] () -- C:\WINDOWS\Tasks\desktop.ini
[2009/06/14 21:50:30 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\Tasks\SA.DAT

[color=orange]========== Purity Check ==========/color

< End of report >
0
Réponse 37 / 184
Ramon1 Messages postés 333 Date d'inscription samedi 1 octobre 2005 Statut Membre Dernière intervention 16 juillet 2024
15 juin 2009 à 10:10
2ème rapport

OTL Extras logfile created on: 14/06/2009 21:52:50 - Run 1
OTL by OldTimer - Version 2.1.1.0 Folder = F:\
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

1023,48 Mb Total Physical Memory | 601,21 Mb Available Physical Memory | 58,74% Memory free
2,41 Gb Paging File | 2,06 Gb Available in Paging File | 85,78% Paging File free
Paging file location(s): [Binary data over 100 bytes]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37,26 Gb Total Space | 5,38 Gb Free Space | 14,44% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
Drive F: | 1,95 Gb Total Space | 1,90 Gb Free Space | 97,14% Space Free | Partition Type: FAT
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: ROCHER-0B5F4F3D
Current User Name: PROPRIETAIRE
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Output = Standard
File Age = 30 Days
Company Name Whitelist: On

[color=orange]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[color=orange]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
"EnableFirewall" = 0
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
"48113:TCP" = 48113:TCP:LocalSubNet:Enabled:maconfig_tcp
"48113:UDP" = 48113:UDP:LocalSubNet:Enabled:maconfig_udp

[color=orange]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[2008/04/13 20:53:32 | 00,558,080 | ---- | M] (Microsoft Corporation) -- %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000
[2007/10/18 12:34:04 | 05,724,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger
[2007/10/02 18:18:24 | 00,304,488 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
[2008/04/13 20:53:32 | 00,558,080 | ---- | M] (Microsoft Corporation) -- %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000
[2008/05/14 16:40:36 | 00,576,680 | ---- | M] (CybelSoft) -- C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice
[2007/07/24 15:17:08 | 00,229,376 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe:*:Disabled:Bonjour
[2008/08/01 19:41:24 | 05,480,448 | ---- | M] (http://www.emule-project.net) -- C:\Program Files\eMule\emule.exe:*:Disabled:eMule
[2009/04/16 11:57:02 | 00,112,000 | ---- | M] (IncrediMail, Ltd.) -- C:\Program Files\IncrediMail\bin\ImpCnt.exe:*:Disabled:IncrediMail
[2009/04/16 11:57:10 | 00,103,808 | ---- | M] () -- C:\Program Files\IncrediMail\bin\ImPackr.exe:*:Disabled:IncrediMail
[2009/04/16 11:57:06 | 00,304,512 | ---- | M] (IncrediMail, Ltd.) -- C:\Program Files\IncrediMail\bin\ImLc.exe:*:Disabled:IncrediMail
File not found -- C:\Documents and Settings\PROPRIETAIRE\Local Settings\Temporary Internet Files\Content.IE5\PTIEMD3Q\incredimail_install[1].exe:*:Disabled:IncrediMail Installer
File not found -- C:\WINDOWS\system32\ZoneLabs\avsys\ScanningProcess.exe:*:Disabled:Kaspersky AV Scanner
[2008/09/18 20:50:21 | 00,147,456 | ---- | M] (Lime Wire, LLC) -- C:\Program Files\LimeWire\LimeWire.exe:*:Disabled:LimeWire
[2007/10/18 12:34:04 | 05,724,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Disabled:Windows Live Messenger
[2007/10/02 18:18:24 | 00,304,488 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\livecall.exe:*:Disabled:Windows Live Messenger (Phone)
[2008/04/14 04:34:13 | 01,695,232 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Messenger\msmsgs.exe:*:Disabled:Windows Messenger
[2009/04/16 11:57:02 | 00,251,264 | ---- | M] (IncrediMail, Ltd.) -- C:\Program Files\IncrediMail\bin\IncMail.exe:*:Enabled:IncrediMail
[2009/04/16 11:56:58 | 00,189,824 | ---- | M] (IncrediMail, Ltd.) -- C:\Program Files\IncrediMail\bin\IMApp.exe:*:Enabled:IncrediMail

[color=orange]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02DFF6B1-1654-411C-8D7B-FD6052EF016F}" = Apple Software Update
"{08CA9554-B5FE-4313-938F-D4A417B81175}" = QuickTime
"{0E0131B2-CF18-40D9-A331-60A3746C1204}" = EPSON Scan
"{15EE79F4-4ED1-4267-9B0F-351009325D7D}" = HP Software Update
"{16C9924C-C42A-4790-BD18-27BDCA4B23C1}" = SPAMfighter
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java(TM) 6 Update 13
"{2DBFBD32-00BB-4678-B77B-8F5F729842BC}" = PS7600
"{3248F0A8-6813-11D6-A77B-00B0D0160020}" = Java(TM) 6 Update 2
"{3248F0A8-6813-11D6-A77B-00B0D0160030}" = Java(TM) 6 Update 3
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7
"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{35CB235F-6E2B-4F20-9739-51E0ED3D8093}" = Ma-Config.com
"{45B6180B-DCAB-4093-8EE8-6164457517F0}" = Photosmart 140,240,7200,7600,7700,7900 Series
"{47BF1BD6-DCAC-468F-A0AD-E5DECC2211C3}" = Bonjour
"{49C88E44-1B38-4FC6-824E-2BDA3063B0E3}" = Apple Mobile Device Support
"{4AE3A0CB-87B0-4F51-BECD-3D1F8DFDD62F}" = SAGEM F@st 800-840
"{4F41AD68-89F2-4262-A32C-2F70B01FCE9E}" = Photorécit 3 pour Windows
"{517B8FB2-26EE-43B0-AE1B-07408860AA69}" = DigitImg
"{5ADA9741-0570-4096-B5FE-1D55E57537D4}" = Camera Window
"{60758250-C8CF-47EB-8CB6-E0C3B84D8207}" = PSShortcuts
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{6C11D561-620B-47DA-A693-4C597F3CDF40}" = EPSON Smart Panel
"{6C5D7191-140A-11D6-B5A0-0050DA208A93}" = ArcSoft PhotoImpression
"{755D3B4E-D3A3-4D05-99D8-FC35E26A331C}" = File Viewer Utility 1.2.2
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules
"{9028040C-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional avec FrontPage
"{9030040C-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Media Content
"{930EAE5E-436E-40C4-AFFC-F73D550C0E51}" = ACDSee 3.1 (SR-1) Standard
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9E75AF24-815C-4BD1-9A05-F96866CC6005}" = CIG
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{AB3AC39D-9915-435D-ACC4-9881E75326BC}" = RemoteCapture 2.7.2
"{AC76BA86-7AD7-1036-7B44-A81300000003}" = Adobe Reader 8.1.4 - Français
"{AF600F7B-67A7-48D9-BA3B-0FF97F35F970}" = ABBYY FineReader 6.0
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B376402D-58EA-45EA-BD50-DD924EB67A70}" = Disque de souvenirs HP
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B410328C-0E8C-4DD2-9DB4-DE7766D0DFE0}" = Micro Application - 9 Dictionnaires Utiles
"{B69CC1A5-0404-11D6-ABCB-005004C21D30}" = EPSON Copy Utility
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{BADF6744-3787-48F6-B8C9-4C4995401D65}" = Windows Live Messenger
"{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}" = Canon Utilities ZoomBrowser EX
"{C24FE0B8-0A25-42E6-8532-A4ABAA1FA400}" = EPSON Photo Print
"{C765D9FF-4A34-4BF1-9F91-E9A3C60C86FC}" = ArcSoft VideoImpression 2
"{D1696920-9794-4BBC-8A30-7A88763DE5A2}" = ABBYY FineReader 5.0 Sprint
"{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}" = Assistant de connexion Windows Live
"{DE4997B5-55AD-4878-97A7-C9FA84FE23C7}" = PSUsage
"{E1180142-3B31-4DCC-9D27-7AC2D37662BF}" = LightScribe 1.4.124.1
"{EBAE381B-60A6-4863-AA9F-FCAB755BC9E5}" = ScanToWeb
"{F11A403B-0DE9-4953-B790-7A2F014FBB2B}" = PhotoStitch
"{F38E1EF1-BBD6-4743-AF84-021E26B0481C}" = Dealio Toolbar 3.1.1
"{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}" = Windows Live installer
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Photoshop 7.0" = Adobe Photoshop 7.0
"Ad-remover" = Ad-remover
"a-squared Free_is1" = a-squared Free 4.5
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"BrowsingAdvisor" = BrowsingAdvisor
"CCleaner" = CCleaner (remove only)
"CleanUp!" = CleanUp!
"C-Media Audio Driver" = C-Media WDM Audio Driver
"eMule" = eMule
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"hp photosmart 7600 series_Driver" = hp photosmart 7600 series
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"IncrediMail" = IncrediMail
"InstallShield_{5ADA9741-0570-4096-B5FE-1D55E57537D4}" = Fenêtre d'appareil photo Canon pour ZoomBrowser EX
"InstallShield_{755D3B4E-D3A3-4D05-99D8-FC35E26A331C}" = Canon Utilities File Viewer Utility 1.2
"InstallShield_{9E75AF24-815C-4BD1-9A05-F96866CC6005}" = Canon Internet Library for ZoomBrowser EX
"InstallShield_{AB3AC39D-9915-435D-ACC4-9881E75326BC}" = Canon Utilities RemoteCapture 2.7
"InstallShield_{F11A403B-0DE9-4953-B790-7A2F014FBB2B}" = Canon Utilities PhotoStitch 3.1
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Nero - Burning Rom!UninstallKey" = Nero 6 Demo
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"OnlineArmor_is1" = Online Armor 3.5
"P1670 Guide de référence" = P1670 Guide de référence
"Photodex Presenter" = Photodex Presenter
"PhotoRecord" = Canon PhotoRecord
"Picasa2" = Picasa 2
"PixDiscount" = PixDiscount 2.00
"ProShow Gold" = ProShow Gold
"SFR-PC" = Désinstallation du SFR Video Manager
"SiSLan" = SiS 900 PCI Fast Ethernet Adapter Driver
"SPAMfighter" = SPAMfighter
"Spybot - Search & Destroy_is1" = Spybot - Search & Destroy 1.5.2.20
"sqlaptunpboyrblhi" = Performance Dashboard Snappyads
"TomTom HOME" = TomTom HOME 2.6.1.1549
"Uninstall Presto! BizCard 4.1 Fre" = Presto! BizCard 4.1 Fre
"VLC media player" = VideoLAN VLC media player 0.8.6d
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Lecteur Windows Media 11
"Windows XP Service" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR archiver
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

[color=orange]========== Last 10 Event Log Errors ==========[/color]

[ Application Events ]
Error - 04/06/2009 16:14:15 | Computer Name = ROCHER-0B5F4F3D | Source = .NET Runtime | ID = 0
Description =

Error - 04/06/2009 16:43:33 | Computer Name = ROCHER-0B5F4F3D | Source = .NET Runtime | ID = 0
Description =

Error - 04/06/2009 17:01:29 | Computer Name = ROCHER-0B5F4F3D | Source = .NET Runtime | ID = 0
Description =

Error - 04/06/2009 17:17:15 | Computer Name = ROCHER-0B5F4F3D | Source = .NET Runtime | ID = 0
Description =

Error - 04/06/2009 17:29:09 | Computer Name = ROCHER-0B5F4F3D | Source = .NET Runtime | ID = 0
Description =

Error - 04/06/2009 17:30:28 | Computer Name = ROCHER-0B5F4F3D | Source = .NET Runtime | ID = 0
Description =

Error - 07/06/2009 18:10:54 | Computer Name = ROCHER-0B5F4F3D | Source = .NET Runtime | ID = 0
Description =

Error - 07/06/2009 18:12:06 | Computer Name = ROCHER-0B5F4F3D | Source = .NET Runtime | ID = 0
Description =

Error - 10/06/2009 14:30:50 | Computer Name = ROCHER-0B5F4F3D | Source = .NET Runtime | ID = 0
Description =

Error - 10/06/2009 14:34:52 | Computer Name = ROCHER-0B5F4F3D | Source = .NET Runtime | ID = 0
Description =

[ Canal+ Events ]
Error - 30/05/2009 09:21:41 | Computer Name = ROCHER-0B5F4F3D | Source = VideoOnDemand | ID = 0
Description =

Error - 30/05/2009 09:21:41 | Computer Name = ROCHER-0B5F4F3D | Source = VideoOnDemand | ID = 0
Description =

Error - 31/05/2009 06:01:17 | Computer Name = ROCHER-0B5F4F3D | Source = VideoOnDemand | ID = 0
Description =

Error - 31/05/2009 06:01:17 | Computer Name = ROCHER-0B5F4F3D | Source = VideoOnDemand | ID = 0
Description =

Error - 01/06/2009 07:33:32 | Computer Name = ROCHER-0B5F4F3D | Source = VideoOnDemand | ID = 0
Description =

Error - 01/06/2009 07:33:32 | Computer Name = ROCHER-0B5F4F3D | Source = VideoOnDemand | ID = 0
Description =

Error - 01/06/2009 15:39:46 | Computer Name = ROCHER-0B5F4F3D | Source = VideoOnDemand | ID = 0
Description =

Error - 01/06/2009 15:39:46 | Computer Name = ROCHER-0B5F4F3D | Source = VideoOnDemand | ID = 0
Description =

Error - 01/06/2009 15:53:15 | Computer Name = ROCHER-0B5F4F3D | Source = VideoOnDemand | ID = 0
Description =

Error - 01/06/2009 15:53:15 | Computer Name = ROCHER-0B5F4F3D | Source = VideoOnDemand | ID = 0
Description =

[ System Events ]
Error - 14/06/2009 15:47:03 | Computer Name = ROCHER-0B5F4F3D | Source = Service Control Manager | ID = 7001
Description = Le service Apple Mobile Device dépend du service Pilote du protocole
TCP/IP qui n'a pas pu démarrer en raison de l'erreur : %%31

Error - 14/06/2009 15:47:03 | Computer Name = ROCHER-0B5F4F3D | Source = Service Control Manager | ID = 7001
Description = Le service Service Bonjour dépend du service Pilote du protocole TCP/IP
qui n'a pas pu démarrer en raison de l'erreur : %%31

Error - 14/06/2009 15:47:03 | Computer Name = ROCHER-0B5F4F3D | Source = Service Control Manager | ID = 7001
Description = Le service Services IPSEC dépend du service Pilote IPSEC qui n'a pas
pu démarrer en raison de l'erreur : %%31

Error - 14/06/2009 15:47:03 | Computer Name = ROCHER-0B5F4F3D | Source = Service Control Manager | ID = 7026
Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se
charger : AFD AmdK7 avgio avipbb Fips IPSec kl1 MRxSmb NetBIOS NetBT OADevice OAmon OAnet RasAcd
Rdbss
ssmdrv
Tcpip

Error - 14/06/2009 15:47:03 | Computer Name = ROCHER-0B5F4F3D | Source = DCOM | ID = 10005
Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service StiSvc
avec les arguments "" pour démarrer le serveur : {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 14/06/2009 15:47:37 | Computer Name = ROCHER-0B5F4F3D | Source = DCOM | ID = 10005
Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service wuauserv
avec les arguments "" pour démarrer le serveur : {E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error - 14/06/2009 15:51:12 | Computer Name = ROCHER-0B5F4F3D | Source = Service Control Manager | ID = 7000
Description = Le service General Purpose USB Driver (adildr.sys) n'a pas pu démarrer
en raison de l'erreur : %%1058

Error - 14/06/2009 15:51:12 | Computer Name = ROCHER-0B5F4F3D | Source = Service Control Manager | ID = 7000
Description = Le service Protocole IrDA n'a pas pu démarrer en raison de l'erreur :
%%2

Error - 14/06/2009 15:51:12 | Computer Name = ROCHER-0B5F4F3D | Source = Service Control Manager | ID = 7001
Description = Le service Moniteur infrarouge dépend du service Protocole IrDA qui
n'a pas pu démarrer en raison de l'erreur : %%2

Error - 14/06/2009 15:51:12 | Computer Name = ROCHER-0B5F4F3D | Source = Service Control Manager | ID = 7026
Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se
charger : kl1
0
Réponse 38 / 184
Utilisateur anonyme
15 juin 2009 à 15:34
Hello

Télécharge HostXpert sur ton Bureau :

---> Décompresse-le (Clic droit >> Extraire ici)

---> Double-clique sur HostsXpert pour le lancer

---> clique sur le bouton "Restore MS Hosts File" puis ferme le programme

PS : Avant de cliquer sur le bouton "Restore MS Hosts File", vérifie que le cadenas en haut à gauche est ouvert sinon tu vas avoir un message d'erreur.

s'il est fermé , clique dessus :)

ensuite :

Télécharge Zeb-Restore http://telechargement.zebulon.fr/zeb-restore.html enregistre ce fichier sur le bureau.

-Clic droit Zeb-Restore.zip ==> Extraire tout choisis comme lieu d'enregistrement le bureau.
-Ouvre le dossier ZR_1.0.0.37 ==> double clic sur Zeb-Restore.exe
- Coche la case devant :sites de confiance
- Ne coche aucune autre case
-Clique sur Restaurer
-Redémarre ton PC

ensuite :

Double clic sur OTL.exe pour le lancer.


Copie la liste qui se trouve en gras ci-dessous,

et colle-la dans la zone sous Customs Scans/Fixes

:processes
explorer.exe
iexplore.exe
firefox.exe
msnmsgr.exe

:OTL
O3 - HKU\S-1-5-21-2000478354-1275210071-725345543-1004\..\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key error. File not found
O7 - HKU\S-1-5-21-2000478354-1275210071-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Reg Error: Key error.)
"{F38E1EF1-BBD6-4743-AF84-021E26B0481C}" = Dealio Toolbar 3.1.1
"BrowsingAdvisor" = BrowsingAdvisor
"sqlaptunpboyrblhi" = Performance Dashboard Snappyads

:services

:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=-
"Cmaudio"=-
"NeroFilterCheck"=-

:files
C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio(6)
C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio(5)

:commands
[Purity]
[emptytemp]
[Reboot]



Clique sur RunFix pour lancer la suppression.


Poste le rapport.

==========
0
Réponse 39 / 184
Ramon1 Messages postés 333 Date d'inscription samedi 1 octobre 2005 Statut Membre Dernière intervention 16 juillet 2024
16 juin 2009 à 07:57
Re
Dernier pb, plus de connexion internet, antivir désinstallé ?
J'ai réussi à rétablir la connexion internet indispensable pour réinstaller Antivir.
Le message d'erreur à l'ouverture " Antivir Desktop est peut-être périmé " est -il du à la non reconnaissance de windows ?
Tout semblait aller mieux jusqu'àu branchement de mon disque dur externe ? reblocage
Ce matin après scan en mode sans échec, blocage lors des branchements périphériques (clé USB, disque dur externe ) ??
Ci-joint le rapport d'hier soir


========== PROCESSES ==========
No active process named explorer.exe was found!
No active process named iexplore.exe was found!
No active process named firefox.exe was found!
No active process named msnmsgr.exe was found!
========== OTL ==========
Registry value HKEY_USERS\S-1-5-21-2000478354-1275210071-725345543-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EF99BD32-C1FB-11D2-892F-0090271D4F88} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}\ deleted successfully.
Registry value HKEY_USERS\S-1-5-21-2000478354-1275210071-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\DisableRegistryTools deleted successfully.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
========== SERVICES/DRIVERS ==========
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Cmaudio deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NeroFilterCheck deleted successfully.
========== FILES ==========
C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio(6)\kb124(2)\temp(2) moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio(6)\kb124(2) moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio(6) moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio(5)\kb124(2)\temp(2) moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio(5)\kb124(2) moved successfully.
C:\Documents and Settings\PROPRIETAIRE\Application Data\Dealio(5) moved successfully.
========== COMMANDS ==========
User's Temp folder emptied.
User's Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
Network Service Temp folder emptied.
Network Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_564.dat scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
Temp folders emptied.

OTL by OldTimer - Version 2.1.1.0 log created on 06152009_213506

Files moved on Reboot...
File C:\WINDOWS\temp\Perflib_Perfdata_564.dat not found!

Registry entries deleted on Reboot...
0
Réponse 40 / 184
Utilisateur anonyme
16 juin 2009 à 08:05
reposte un OTL par l intermediaire de cijoint.fr stp
0