Virus sur pc aidez moi please.
Résolu
korigane
Messages postés
20
Date d'inscription
Statut
Membre
Dernière intervention
-
momo -
momo -
Bonjour,
Suite à un scan au démarrage que j'ai fais je me suis aperçus que j'avais pleins de virus, je le ais mis en quarantenaire sur avast.
Par contre après je ne sais pas du tout ce que je dois faire, je ne m'y connais pas.
Aidez moi s'il vous plait.
NOM:
Emplacement d'origine :
Derniers changements :
Date du transfert :
Virus :
ClickPotatoLiteSA.exe
C:\Program Files \ClickPotatoLite\bin\10.0.668.0
22/03/2011 23:25:28
21/05/2011 13:26:04
Win32:HotBar-BE [PUP]
ClickPotatoLiteSAAX.dll
C:\Program Files \ClickPotatoLite\bin\10.0.668.0
22/03/2011 23:28:10
21/05/2011 13:26:13
Win32:HotBar-BE [PUP]
ClickPotatoLiteSABHO.dll
C:\Program Files \ClickPotatoLite\bin\10.0.668.0
22/03/2011 23:18:46
21/05/2011 13:26:26
Win32:HotBar-BE [PUP]
ClickPotatoLiteSAHook.dll
C:\Program Files \ClickPotatoLite\bin\10.0.668.0
22/03/2011 23:29:20
21/05/2011 13:26:33
Win32:HotBar-BE [PUP]
ClickPotatoLiteUninstaller.exe
C:\Program Files \ClickPotatoLite\bin\10.0.668.0
21/05/2011 13:26:39
21/05/2011 13:26:39
NSIS:Zango [PUP]
LaunchHelp.dll
C:\Program Files \ClickPotatoLite\bin\10.0.668.0
22/03/2011 23:26:08
21/05/2011 13:26:44
Win32:HotBar-BE [PUP]
npclntax_ClickPotatoLiteSA.dll
C:\Program Files \ClickPotatoLite\bin\10.0.668.0\firefox\extensions\plugins
22/03/2011 23:30:20
21/05/2011 13:26:42
Win32:HotBar-BE [PUP]
npclntax_ClickPotatoLiteSA.dll
C:\Program Files\Mozilla Firefox\plugins
22/03/2011 23:30:20
21/05/2011 13:31:22
Win32:HotBar-BE [PUP]
Questscan.exe
C:\Program Files\QuestScan
20/05/2011 08 :32 :54
21/05/2011 13 :33 :34
Win32 :Zwangi-BW [PUP]
questscan129.exe
C:\ProgramData\QuestScan
20/05/2011 08:32:54
21/05/2011 13:36:25
Win32 :Zwangi-BW [PUP]
ShopperRepportsUninstaller.exe
C:\Program Files\ShopperRepports3\bin\3.1.69.0
21/05/2011 13:34:00
21/05/2011 13:34:00
NSIS:Zango [PUP]
Upgrade[1].cab
C:\Windows\System32\config\systemprofile\AppData\Local\Microft\Windows\Temporay Internet Files\Content.IE5\CDM6Y4ER
21/05/2011 14:04:40
21/05/2011 14:04:40
Win32:Zwangi-BT [PUP]
Suite à un scan au démarrage que j'ai fais je me suis aperçus que j'avais pleins de virus, je le ais mis en quarantenaire sur avast.
Par contre après je ne sais pas du tout ce que je dois faire, je ne m'y connais pas.
Aidez moi s'il vous plait.
NOM:
Emplacement d'origine :
Derniers changements :
Date du transfert :
Virus :
ClickPotatoLiteSA.exe
C:\Program Files \ClickPotatoLite\bin\10.0.668.0
22/03/2011 23:25:28
21/05/2011 13:26:04
Win32:HotBar-BE [PUP]
ClickPotatoLiteSAAX.dll
C:\Program Files \ClickPotatoLite\bin\10.0.668.0
22/03/2011 23:28:10
21/05/2011 13:26:13
Win32:HotBar-BE [PUP]
ClickPotatoLiteSABHO.dll
C:\Program Files \ClickPotatoLite\bin\10.0.668.0
22/03/2011 23:18:46
21/05/2011 13:26:26
Win32:HotBar-BE [PUP]
ClickPotatoLiteSAHook.dll
C:\Program Files \ClickPotatoLite\bin\10.0.668.0
22/03/2011 23:29:20
21/05/2011 13:26:33
Win32:HotBar-BE [PUP]
ClickPotatoLiteUninstaller.exe
C:\Program Files \ClickPotatoLite\bin\10.0.668.0
21/05/2011 13:26:39
21/05/2011 13:26:39
NSIS:Zango [PUP]
LaunchHelp.dll
C:\Program Files \ClickPotatoLite\bin\10.0.668.0
22/03/2011 23:26:08
21/05/2011 13:26:44
Win32:HotBar-BE [PUP]
npclntax_ClickPotatoLiteSA.dll
C:\Program Files \ClickPotatoLite\bin\10.0.668.0\firefox\extensions\plugins
22/03/2011 23:30:20
21/05/2011 13:26:42
Win32:HotBar-BE [PUP]
npclntax_ClickPotatoLiteSA.dll
C:\Program Files\Mozilla Firefox\plugins
22/03/2011 23:30:20
21/05/2011 13:31:22
Win32:HotBar-BE [PUP]
Questscan.exe
C:\Program Files\QuestScan
20/05/2011 08 :32 :54
21/05/2011 13 :33 :34
Win32 :Zwangi-BW [PUP]
questscan129.exe
C:\ProgramData\QuestScan
20/05/2011 08:32:54
21/05/2011 13:36:25
Win32 :Zwangi-BW [PUP]
ShopperRepportsUninstaller.exe
C:\Program Files\ShopperRepports3\bin\3.1.69.0
21/05/2011 13:34:00
21/05/2011 13:34:00
NSIS:Zango [PUP]
Upgrade[1].cab
C:\Windows\System32\config\systemprofile\AppData\Local\Microft\Windows\Temporay Internet Files\Content.IE5\CDM6Y4ER
21/05/2011 14:04:40
21/05/2011 14:04:40
Win32:Zwangi-BT [PUP]
A voir également:
- Virus sur pc aidez moi please.
- Reinitialiser pc - Guide
- Télécharger musique gratuitement sur pc - Télécharger - Conversion & Extraction
- Test performance pc - Guide
- Pc lent - Guide
- Downloader for pc - Télécharger - Téléchargement & Transfert
36 réponses
J'ai copier coller en laissant deux espaces avant :otl
j'ai redémarré et je n'ai pas de rapport qui s'affiche.
j'ai redémarré et je n'ai pas de rapport qui s'affiche.
Le script, c'est :
:OTL
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2653012&SearchSource=3&q={searchTerms}"
FF - prefs.js..keyword.URL: "http://www.questscan.com/?tmp=nemo_results_removelink&prt=QstscanPB&keywords="
[2011/05/19 18:23:14 | 000,000,000 | ---D | C] -- C:\ProgramData\QuestScan
[2011/05/19 18:23:14 | 000,000,000 | ---D | C] -- C:\Program Files\QuestScan
:commands
[emptytemp]
:OTL
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2653012&SearchSource=3&q={searchTerms}"
FF - prefs.js..keyword.URL: "http://www.questscan.com/?tmp=nemo_results_removelink&prt=QstscanPB&keywords="
[2011/05/19 18:23:14 | 000,000,000 | ---D | C] -- C:\ProgramData\QuestScan
[2011/05/19 18:23:14 | 000,000,000 | ---D | C] -- C:\Program Files\QuestScan
:commands
[emptytemp]
même chose je fais tous comme tu me dis.
OTL me dis de redémarrer, l'ordi
une fois redémarré je n'ai pas le rapport qui s'affiche.
OTL me dis de redémarrer, l'ordi
une fois redémarré je n'ai pas le rapport qui s'affiche.
Ok alors refais un scan OTL et poste le rapport OTL (c'est normal qu'il n'y ait pas de nouveau rapport Extras).
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
extras
OTL Extras logfile created on: 21/05/2011 20:30:21 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Famille Adams\Downloads
Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 54,00% Memory free
4,00 Gb Paging File | 2,00 Gb Available in Paging File | 56,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,75 Gb Total Space | 365,81 Gb Free Space | 78,54% Space Free | Partition Type: NTFS
Computer Name: FAMILLEADAMS-PC | User Name: Famille Adams | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Extra Registry (SafeList) ==========/color
[color=#E56717]========== File Associations ==========/color
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
[color=#E56717]========== Shell Spawning ==========/color
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[color=#E56717]========== Security Center Settings ==========/color
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[color=#E56717]========== Firewall Settings ==========/color
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[color=#E56717]========== Authorized Applications List ==========/color
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========/color
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00ADFB20-AE75-46F4-AD2C-F48B15AC3100}" = Adobe Color NA Recommended Settings CS4
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{0711500B-9912-4D60-9A49-C577B4503D42}" = Nero Recode Help
"{07FF7593-9DEA-40B5-9F87-F557E65BBF60}" = Nero Recode
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{09F56A49-A7B1-4AAB-95B9-D13094254AD1}" = Windows Live UX Platform Language Pack
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0CB9668D-F979-4F31-B8B8-67FE90F929F8}" = Bonjour
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{1122AAC4-AAAA-43BF-B2D4-3C8C12378952}" = Nero InfoTool
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series" = Canon MP250 series MP Drivers
"{11A84FCA-C3C7-4AFD-A797-111DB8569DBC}" = Nero BurningROM
"{12345674-DE9A-677A-CCEE-666356D89777}" = Nero BurnRights
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{1B040683-C390-4711-ABC7-DA8D85E470E7}" = NeroBurningROM
"{1CAC7A41-583B-4483-9FA5-3E5465AFF8C2}" = Microsoft Default Manager
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{2D3455A8-3B15-41A8-99F8-0D4215746463}" = Nero StartSmart
"{3097B151-1F61-4211-A4CC-D70127B226AE}" = SoundTrax
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}" = Windows Live
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3D9892BB-A751-4E48-ADC8-E4289956CE1D}" = QuickTime
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{3F30CC51-0788-487B-AA83-7214A239C0C0}" = Nero Disc Copy Gadget Help
"{488F0347-C4A7-4374-91A7-30818BEDA710}" = Galerie de photos Windows Live
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform
"{4D42353B-533F-4306-AD0B-7FEF292ADE04}" = Nero CoverDesigner Help
"{4E8C27C2-D727-4C00-A90E-C3F6376EEE70}" = Nero ControlCenter
"{548F99E0-14CC-4D53-A7D6-4A62A5F2C748}" = Nero PhotoSnap
"{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4}" = Adobe Color EU Extra Settings CS4
"{56BE5CC9-95E6-4128-ABEA-968414CA9C80}" = DolbyFiles
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5A62A775-A29A-4CE1-BBC2-4A9CD0B211EF}" = Nero Live Help
"{5AE12194-3EAA-40DF-B2BF-FE1D6B78BBF4}" = Nero Vision
"{5C2E8A0F-80E2-4C68-8CC0-D8D16E7196BF}" = Nero RescueAgent Help
"{5C42EAB8-54F9-423A-948C-1CBEF25F8DB4}" = Nero PhotoSnap Help
"{5C9BB0B3-E830-4814-BBA4-D93535E1C7B9}" = Nero Live
"{6057E21C-ABE9-4059-AE3E-3BEB9925E660}" = Windows Live Messenger
"{61AD15B2-50DB-4686-A739-14FE180D4429}" = Windows Live ID Sign-in Assistant
"{62687B11-58B5-4A18-9BC3-9DF4CE03F194}" = Windows Live Writer Resources
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69B040CC-E9B1-4769-950E-87786C9E16AD}" = OpenOffice.org 3.2
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}" = Windows Live Movie Maker
"{6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}" = Complément Messenger
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{75321954-2589-11DC-DDCC-E98356D81493}" = Nero DriveSpeed
"{753973C4-B961-43BF-B2D4-3C8C92F7216E}" = Nero DriveSpeed
"{76810709-A7D3-468D-9167-A1780C1E766C}" = Windows Live FolderShare
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{78523651-D8B1-11DC-CCEE-741589645873}" = Nero DiscSpeed
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{85991ED2-010C-4930-96FA-52F43C2CE98A}" = Apple Mobile Device Support
"{87532CAB-7932-4F84-8937-823337622807}" = Adobe Illustrator CS4
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C654BD0-1949-43DE-84F2-EC2A1ABB0CB4}" = Nero ShowTime
"{8CE08C3C-8FF4-45D9-925E-4F3CE2D7FA7D}" = Adobe Setup
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules
"{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007
"{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0015-040C-0000-0000000FF1CE}" = Microsoft Office Access MUI (French) 2007
"{90120000-0015-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-040C-0000-0000000FF1CE}" = Microsoft Office Excel MUI (French) 2007
"{90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007
"{90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-040C-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (French) 2007
"{90120000-0019-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-040C-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (French) 2007
"{90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-040C-0000-0000000FF1CE}" = Microsoft Office Word MUI (French) 2007
"{90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2007
"{90120000-001F-0401-0000-0000000FF1CE}_PROPLUS_{14809F99-C601-4D4A-9391-F1E8FAA964C5}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007
"{90120000-001F-0413-0000-0000000FF1CE}_PROPLUS_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2007
"{90120000-0044-040C-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (French) 2007
"{90120000-0044-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2007
"{90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91F7F3F3-CE80-48C3-8327-7D24A0A5716A}" = iTunes
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{943CC0C0-2253-4FE0-9493-DD386F7857FD}" = Nero Express
"{948FFAAE-C57F-447B-9B07-3721E950BFDC}" = Nero ShowTime
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95140000-007A-040C-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{961D53EA-40DC-4156-AD74-25684CE05F81}" = Nero Installer
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A875B56-A35C-46BA-A3AA-DF8D03EE9F2F}" = Nero ControlCenter
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9F3523F8-DAD7-AE52-6DA7-45CDDDF33726}" = Advertising Center
"{9FAE6E8D-E686-49F5-A574-0A58DFD9580C}" = Windows Live Mail
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A73BEC3C-40A0-480E-87EF-EFCD33629088}" = NeroExpress
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A7E19604-93AF-4611-8C9F-CE509C2B286F}_is1" = Free YouTube Downloader 3.2.77
"{A8399F58-234A-48C6-BA55-30C15738BF3C}" = Nero CoverDesigner
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAA12554-2589-11DC-92EF-E98356D81493}" = Nero InfoTool
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AABBCC54-D8B1-11DC-92EF-E98356D81493}" = Nero DiscSpeed
"{AC76BA86-7AD7-1036-7B44-A94000000001}" = Adobe Reader 9.4.2 - Français
"{aeef905b-1146-4d44-a618-7d1b29c3c103}" = Nero 9
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B2C12C8D-65DC-40BD-B309-5ADB0C6C8D8F}" = Nero WaveEditor
"{B2D328BE-45AD-4D92-96F9-2151490A203E}" = Apple Application Support
"{B96C2601-52F5-4D5D-816A-63469EA311EF}" = "Nero SoundTrax Help
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{BCD82AB5-670D-4242-90FA-1F97103C16CD}" = Movie Templates - Starter Kit
"{C27BC2A2-30DD-4014-B22E-63EB0DB572F9}" = Logitech Webcam Software
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{C893D8C0-1BA0-4517-B11C-E89B65E72F70}" = Windows Live Photo Common
"{C99C89A3-119A-45E6-B26E-DD5643CAA0C5}" = Menu Templates - Starter Kit
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CD1826A5-CFCC-4C6E-9F9D-E181876162EA}" = Nero Rescue Agent
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D65F8E34-C050-4E6C-86DB-D2B9075749A0}" = Windows Live Sync ActiveX Control for Remote Connections
"{D7C206B6-1A63-4389-A8B1-8F607D0BFF1F}" = Nero StartSmart Help
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E4A8DD87-A746-4443-BF25-CAF99CED6767}" = Nero Disc Copy Gadget
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype(TM) 5.1
"{E6F043EB-FEF5-4C34-95AF-99B3EB68F7D9}" = Hercules Webcam Deluxe
"{E86156E5-9859-440D-8876-26CED1349802}" = Nero WaveEditor Help
"{EA9FFE54-D8B1-11DC-92EF-E98356D81493}" = Nero BurnRights
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F53F6769-AC46-49E3-ABE3-2C8AFD39D0DD}" = Nero Vision
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe_2a31ae7a5c43ff52d8577782dd34e04" = Adobe Illustrator CS4
"Audacity 1.3 Beta (Unicode)_is1" = Audacity 1.3.12 (Unicode)
"Audacity_is1" = Audacity 1.2.6
"avast" = avast! Free Antivirus
"CanonMyPrinter" = Canon Utilities My Printer
"CanonSolutionMenu" = Canon Utilities Solution Menu
"CCleaner" = CCleaner
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"eMule" = eMule
"Enregistrement utilisateur de Canon MP250 series" = Enregistrement utilisateur de Canon MP250 series
"FileZilla Client" = FileZilla Client 3.4.0
"iZotope Ozone 4_is1" = iZotope Ozone 4
"Live 8.0.3" = Live 8.0.3
"Logitech Vid" = Logitech Vid HD
"lvdrivers_12.10" = Coffret de pilotes Logitech Webcam Software
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Mozilla Firefox 4.0.1 (x86 fr)" = Mozilla Firefox 4.0.1 (x86 fr)
"MP Navigator EX 3.0" = Canon MP Navigator EX 3.0
"Native Instruments Beatport Sync" = Native Instruments Beatport Sync
"PosteRazor_is1" = PosteRazor
"PROPLUS" = Microsoft Office Professional Plus 2007
"TomTom HOME" = TomTom HOME 2.7.6.2056
"uTorrent" = µTorrent
"Winamp" = Winamp
"WinGimp-2.0_is1" = GIMP 2.6.8
"WinLiveSuite" = Windows Live
"WinRAR archiver" = Archiveur WinRAR
[color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========/color
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Winamp Detect" = Détection de l'application Winamp
[color=#E56717]========== Last 10 Event Log Errors ==========/color
[ Application Events ]
Error - 20/05/2011 07:54:05 | Computer Name = FamilleAdams-PC | Source = Winlogon | ID = 4103
Description = Échec de l'activation de la licence Windows. Erreur 0x80070005.
Error - 20/05/2011 16:09:23 | Computer Name = FamilleAdams-PC | Source = Application Hang | ID = 1002
Description = Le programme winamp.exe version 5.5.8.2985 a cessé d'interagir avec
Windows et a été fermé. Pour déterminer si des informations supplémentaires sont
disponibles, consultez l'historique du problème dans le Centre de maintenance. ID
de processus : 1608 Heure de début : 01cc1729c1bbe9ba Heure de fin : 15 Chemin d'accès
de l'application : C:\Program Files\Winamp\winamp.exe ID de rapport : 098ec780-831d-11e0-8372-00248cbb53a5
Error - 21/05/2011 02:07:57 | Computer Name = FamilleAdams-PC | Source = Winlogon | ID = 4103
Description = Échec de l'activation de la licence Windows. Erreur 0x80070005.
Error - 21/05/2011 03:49:52 | Computer Name = FamilleAdams-PC | Source = SideBySide | ID = 16842815
Description = La création du contexte d'activation a échoué pour « C:\Program Files\Common
Files\Adobe AIR\Versions\1.0\Adobe AIR.dll ». Erreur dans le fichier de manifeste
ou de stratégie « C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll »
à la ligne 3. La valeur « MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR »
de l'attribut « version » de l'élément « assemblyIdentity » n'est pas valide.
Error - 21/05/2011 06:51:13 | Computer Name = FamilleAdams-PC | Source = Winlogon | ID = 4103
Description = Échec de l'activation de la licence Windows. Erreur 0x80070005.
Error - 21/05/2011 08:12:51 | Computer Name = FamilleAdams-PC | Source = Winlogon | ID = 4103
Description = Échec de l'activation de la licence Windows. Erreur 0x80070005.
Error - 21/05/2011 09:25:09 | Computer Name = FamilleAdams-PC | Source = Winlogon | ID = 4103
Description = Échec de l'activation de la licence Windows. Erreur 0x80070005.
Error - 21/05/2011 10:44:54 | Computer Name = FamilleAdams-PC | Source = Winlogon | ID = 4103
Description = Échec de l'activation de la licence Windows. Erreur 0x80070005.
Error - 21/05/2011 13:12:56 | Computer Name = FamilleAdams-PC | Source = Winlogon | ID = 4103
Description = Échec de l'activation de la licence Windows. Erreur 0x80070005.
Error - 21/05/2011 13:54:08 | Computer Name = FamilleAdams-PC | Source = Winlogon | ID = 4103
Description = Échec de l'activation de la licence Windows. Erreur 0x80070005.
[ OSession Events ]
Error - 17/01/2011 09:44:52 | Computer Name = FamilleAdams-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 10029
seconds with 2940 seconds of active time. This session ended with a crash.
[ System Events ]
Error - 15/05/2011 09:21:49 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =
Error - 16/05/2011 03:01:06 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =
Error - 16/05/2011 03:46:16 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =
Error - 17/05/2011 01:05:26 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =
Error - 18/05/2011 02:56:16 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =
Error - 18/05/2011 08:11:49 | Computer Name = FamilleAdams-PC | Source = Service Control Manager | ID = 7009
Description = Le dépassement de délai (30000 millisecondes) a été atteint lors de
l'attente de la connexion du service Service de rapport d'erreurs Windows.
Error - 19/05/2011 03:24:42 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =
Error - 19/05/2011 05:28:01 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10010
Description =
Error - 20/05/2011 01:10:30 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =
Error - 21/05/2011 02:11:17 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =
< End of report >
OTL Extras logfile created on: 21/05/2011 20:30:21 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Famille Adams\Downloads
Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 54,00% Memory free
4,00 Gb Paging File | 2,00 Gb Available in Paging File | 56,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,75 Gb Total Space | 365,81 Gb Free Space | 78,54% Space Free | Partition Type: NTFS
Computer Name: FAMILLEADAMS-PC | User Name: Famille Adams | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Extra Registry (SafeList) ==========/color
[color=#E56717]========== File Associations ==========/color
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
[color=#E56717]========== Shell Spawning ==========/color
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[color=#E56717]========== Security Center Settings ==========/color
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[color=#E56717]========== Firewall Settings ==========/color
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[color=#E56717]========== Authorized Applications List ==========/color
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========/color
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00ADFB20-AE75-46F4-AD2C-F48B15AC3100}" = Adobe Color NA Recommended Settings CS4
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{0711500B-9912-4D60-9A49-C577B4503D42}" = Nero Recode Help
"{07FF7593-9DEA-40B5-9F87-F557E65BBF60}" = Nero Recode
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{09F56A49-A7B1-4AAB-95B9-D13094254AD1}" = Windows Live UX Platform Language Pack
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0CB9668D-F979-4F31-B8B8-67FE90F929F8}" = Bonjour
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{1122AAC4-AAAA-43BF-B2D4-3C8C12378952}" = Nero InfoTool
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series" = Canon MP250 series MP Drivers
"{11A84FCA-C3C7-4AFD-A797-111DB8569DBC}" = Nero BurningROM
"{12345674-DE9A-677A-CCEE-666356D89777}" = Nero BurnRights
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{1B040683-C390-4711-ABC7-DA8D85E470E7}" = NeroBurningROM
"{1CAC7A41-583B-4483-9FA5-3E5465AFF8C2}" = Microsoft Default Manager
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{2D3455A8-3B15-41A8-99F8-0D4215746463}" = Nero StartSmart
"{3097B151-1F61-4211-A4CC-D70127B226AE}" = SoundTrax
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}" = Windows Live
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3D9892BB-A751-4E48-ADC8-E4289956CE1D}" = QuickTime
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{3F30CC51-0788-487B-AA83-7214A239C0C0}" = Nero Disc Copy Gadget Help
"{488F0347-C4A7-4374-91A7-30818BEDA710}" = Galerie de photos Windows Live
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform
"{4D42353B-533F-4306-AD0B-7FEF292ADE04}" = Nero CoverDesigner Help
"{4E8C27C2-D727-4C00-A90E-C3F6376EEE70}" = Nero ControlCenter
"{548F99E0-14CC-4D53-A7D6-4A62A5F2C748}" = Nero PhotoSnap
"{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4}" = Adobe Color EU Extra Settings CS4
"{56BE5CC9-95E6-4128-ABEA-968414CA9C80}" = DolbyFiles
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5A62A775-A29A-4CE1-BBC2-4A9CD0B211EF}" = Nero Live Help
"{5AE12194-3EAA-40DF-B2BF-FE1D6B78BBF4}" = Nero Vision
"{5C2E8A0F-80E2-4C68-8CC0-D8D16E7196BF}" = Nero RescueAgent Help
"{5C42EAB8-54F9-423A-948C-1CBEF25F8DB4}" = Nero PhotoSnap Help
"{5C9BB0B3-E830-4814-BBA4-D93535E1C7B9}" = Nero Live
"{6057E21C-ABE9-4059-AE3E-3BEB9925E660}" = Windows Live Messenger
"{61AD15B2-50DB-4686-A739-14FE180D4429}" = Windows Live ID Sign-in Assistant
"{62687B11-58B5-4A18-9BC3-9DF4CE03F194}" = Windows Live Writer Resources
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69B040CC-E9B1-4769-950E-87786C9E16AD}" = OpenOffice.org 3.2
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}" = Windows Live Movie Maker
"{6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}" = Complément Messenger
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{75321954-2589-11DC-DDCC-E98356D81493}" = Nero DriveSpeed
"{753973C4-B961-43BF-B2D4-3C8C92F7216E}" = Nero DriveSpeed
"{76810709-A7D3-468D-9167-A1780C1E766C}" = Windows Live FolderShare
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{78523651-D8B1-11DC-CCEE-741589645873}" = Nero DiscSpeed
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{85991ED2-010C-4930-96FA-52F43C2CE98A}" = Apple Mobile Device Support
"{87532CAB-7932-4F84-8937-823337622807}" = Adobe Illustrator CS4
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C654BD0-1949-43DE-84F2-EC2A1ABB0CB4}" = Nero ShowTime
"{8CE08C3C-8FF4-45D9-925E-4F3CE2D7FA7D}" = Adobe Setup
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules
"{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007
"{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0015-040C-0000-0000000FF1CE}" = Microsoft Office Access MUI (French) 2007
"{90120000-0015-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-040C-0000-0000000FF1CE}" = Microsoft Office Excel MUI (French) 2007
"{90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007
"{90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-040C-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (French) 2007
"{90120000-0019-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-040C-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (French) 2007
"{90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-040C-0000-0000000FF1CE}" = Microsoft Office Word MUI (French) 2007
"{90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2007
"{90120000-001F-0401-0000-0000000FF1CE}_PROPLUS_{14809F99-C601-4D4A-9391-F1E8FAA964C5}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007
"{90120000-001F-0413-0000-0000000FF1CE}_PROPLUS_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2007
"{90120000-0044-040C-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (French) 2007
"{90120000-0044-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2007
"{90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91F7F3F3-CE80-48C3-8327-7D24A0A5716A}" = iTunes
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{943CC0C0-2253-4FE0-9493-DD386F7857FD}" = Nero Express
"{948FFAAE-C57F-447B-9B07-3721E950BFDC}" = Nero ShowTime
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95140000-007A-040C-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{961D53EA-40DC-4156-AD74-25684CE05F81}" = Nero Installer
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A875B56-A35C-46BA-A3AA-DF8D03EE9F2F}" = Nero ControlCenter
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9F3523F8-DAD7-AE52-6DA7-45CDDDF33726}" = Advertising Center
"{9FAE6E8D-E686-49F5-A574-0A58DFD9580C}" = Windows Live Mail
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A73BEC3C-40A0-480E-87EF-EFCD33629088}" = NeroExpress
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A7E19604-93AF-4611-8C9F-CE509C2B286F}_is1" = Free YouTube Downloader 3.2.77
"{A8399F58-234A-48C6-BA55-30C15738BF3C}" = Nero CoverDesigner
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAA12554-2589-11DC-92EF-E98356D81493}" = Nero InfoTool
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AABBCC54-D8B1-11DC-92EF-E98356D81493}" = Nero DiscSpeed
"{AC76BA86-7AD7-1036-7B44-A94000000001}" = Adobe Reader 9.4.2 - Français
"{aeef905b-1146-4d44-a618-7d1b29c3c103}" = Nero 9
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B2C12C8D-65DC-40BD-B309-5ADB0C6C8D8F}" = Nero WaveEditor
"{B2D328BE-45AD-4D92-96F9-2151490A203E}" = Apple Application Support
"{B96C2601-52F5-4D5D-816A-63469EA311EF}" = "Nero SoundTrax Help
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{BCD82AB5-670D-4242-90FA-1F97103C16CD}" = Movie Templates - Starter Kit
"{C27BC2A2-30DD-4014-B22E-63EB0DB572F9}" = Logitech Webcam Software
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{C893D8C0-1BA0-4517-B11C-E89B65E72F70}" = Windows Live Photo Common
"{C99C89A3-119A-45E6-B26E-DD5643CAA0C5}" = Menu Templates - Starter Kit
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CD1826A5-CFCC-4C6E-9F9D-E181876162EA}" = Nero Rescue Agent
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D65F8E34-C050-4E6C-86DB-D2B9075749A0}" = Windows Live Sync ActiveX Control for Remote Connections
"{D7C206B6-1A63-4389-A8B1-8F607D0BFF1F}" = Nero StartSmart Help
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E4A8DD87-A746-4443-BF25-CAF99CED6767}" = Nero Disc Copy Gadget
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype(TM) 5.1
"{E6F043EB-FEF5-4C34-95AF-99B3EB68F7D9}" = Hercules Webcam Deluxe
"{E86156E5-9859-440D-8876-26CED1349802}" = Nero WaveEditor Help
"{EA9FFE54-D8B1-11DC-92EF-E98356D81493}" = Nero BurnRights
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F53F6769-AC46-49E3-ABE3-2C8AFD39D0DD}" = Nero Vision
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe_2a31ae7a5c43ff52d8577782dd34e04" = Adobe Illustrator CS4
"Audacity 1.3 Beta (Unicode)_is1" = Audacity 1.3.12 (Unicode)
"Audacity_is1" = Audacity 1.2.6
"avast" = avast! Free Antivirus
"CanonMyPrinter" = Canon Utilities My Printer
"CanonSolutionMenu" = Canon Utilities Solution Menu
"CCleaner" = CCleaner
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"eMule" = eMule
"Enregistrement utilisateur de Canon MP250 series" = Enregistrement utilisateur de Canon MP250 series
"FileZilla Client" = FileZilla Client 3.4.0
"iZotope Ozone 4_is1" = iZotope Ozone 4
"Live 8.0.3" = Live 8.0.3
"Logitech Vid" = Logitech Vid HD
"lvdrivers_12.10" = Coffret de pilotes Logitech Webcam Software
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Mozilla Firefox 4.0.1 (x86 fr)" = Mozilla Firefox 4.0.1 (x86 fr)
"MP Navigator EX 3.0" = Canon MP Navigator EX 3.0
"Native Instruments Beatport Sync" = Native Instruments Beatport Sync
"PosteRazor_is1" = PosteRazor
"PROPLUS" = Microsoft Office Professional Plus 2007
"TomTom HOME" = TomTom HOME 2.7.6.2056
"uTorrent" = µTorrent
"Winamp" = Winamp
"WinGimp-2.0_is1" = GIMP 2.6.8
"WinLiveSuite" = Windows Live
"WinRAR archiver" = Archiveur WinRAR
[color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========/color
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Winamp Detect" = Détection de l'application Winamp
[color=#E56717]========== Last 10 Event Log Errors ==========/color
[ Application Events ]
Error - 20/05/2011 07:54:05 | Computer Name = FamilleAdams-PC | Source = Winlogon | ID = 4103
Description = Échec de l'activation de la licence Windows. Erreur 0x80070005.
Error - 20/05/2011 16:09:23 | Computer Name = FamilleAdams-PC | Source = Application Hang | ID = 1002
Description = Le programme winamp.exe version 5.5.8.2985 a cessé d'interagir avec
Windows et a été fermé. Pour déterminer si des informations supplémentaires sont
disponibles, consultez l'historique du problème dans le Centre de maintenance. ID
de processus : 1608 Heure de début : 01cc1729c1bbe9ba Heure de fin : 15 Chemin d'accès
de l'application : C:\Program Files\Winamp\winamp.exe ID de rapport : 098ec780-831d-11e0-8372-00248cbb53a5
Error - 21/05/2011 02:07:57 | Computer Name = FamilleAdams-PC | Source = Winlogon | ID = 4103
Description = Échec de l'activation de la licence Windows. Erreur 0x80070005.
Error - 21/05/2011 03:49:52 | Computer Name = FamilleAdams-PC | Source = SideBySide | ID = 16842815
Description = La création du contexte d'activation a échoué pour « C:\Program Files\Common
Files\Adobe AIR\Versions\1.0\Adobe AIR.dll ». Erreur dans le fichier de manifeste
ou de stratégie « C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll »
à la ligne 3. La valeur « MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR »
de l'attribut « version » de l'élément « assemblyIdentity » n'est pas valide.
Error - 21/05/2011 06:51:13 | Computer Name = FamilleAdams-PC | Source = Winlogon | ID = 4103
Description = Échec de l'activation de la licence Windows. Erreur 0x80070005.
Error - 21/05/2011 08:12:51 | Computer Name = FamilleAdams-PC | Source = Winlogon | ID = 4103
Description = Échec de l'activation de la licence Windows. Erreur 0x80070005.
Error - 21/05/2011 09:25:09 | Computer Name = FamilleAdams-PC | Source = Winlogon | ID = 4103
Description = Échec de l'activation de la licence Windows. Erreur 0x80070005.
Error - 21/05/2011 10:44:54 | Computer Name = FamilleAdams-PC | Source = Winlogon | ID = 4103
Description = Échec de l'activation de la licence Windows. Erreur 0x80070005.
Error - 21/05/2011 13:12:56 | Computer Name = FamilleAdams-PC | Source = Winlogon | ID = 4103
Description = Échec de l'activation de la licence Windows. Erreur 0x80070005.
Error - 21/05/2011 13:54:08 | Computer Name = FamilleAdams-PC | Source = Winlogon | ID = 4103
Description = Échec de l'activation de la licence Windows. Erreur 0x80070005.
[ OSession Events ]
Error - 17/01/2011 09:44:52 | Computer Name = FamilleAdams-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 10029
seconds with 2940 seconds of active time. This session ended with a crash.
[ System Events ]
Error - 15/05/2011 09:21:49 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =
Error - 16/05/2011 03:01:06 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =
Error - 16/05/2011 03:46:16 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =
Error - 17/05/2011 01:05:26 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =
Error - 18/05/2011 02:56:16 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =
Error - 18/05/2011 08:11:49 | Computer Name = FamilleAdams-PC | Source = Service Control Manager | ID = 7009
Description = Le dépassement de délai (30000 millisecondes) a été atteint lors de
l'attente de la connexion du service Service de rapport d'erreurs Windows.
Error - 19/05/2011 03:24:42 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =
Error - 19/05/2011 05:28:01 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10010
Description =
Error - 20/05/2011 01:10:30 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =
Error - 21/05/2011 02:11:17 | Computer Name = FamilleAdams-PC | Source = DCOM | ID = 10001
Description =
< End of report >
OTL
OTL logfile created on: 21/05/2011 20:30:21 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Famille Adams\Downloads
Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 54,00% Memory free
4,00 Gb Paging File | 2,00 Gb Available in Paging File | 56,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,75 Gb Total Space | 365,81 Gb Free Space | 78,54% Space Free | Partition Type: NTFS
Computer Name: FAMILLEADAMS-PC | User Name: Famille Adams | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - C:\Users\Famille Adams\Downloads\OTL(1).exe (OldTimer Tools)
PRC - C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files\Logitech\Vid HD\Vid.exe (Logitech Inc.)
PRC - C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe (TomTom)
PRC - C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE (CANON INC.)
PRC - C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe ()
PRC - C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe ()
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
[color=#E56717]========== Modules (SafeList) ==========[/color]
MOD - C:\Users\Famille Adams\Downloads\OTL(1).exe (OldTimer Tools)
MOD - C:\Program Files\Alwil Software\Avast5\snxhk.dll (AVAST Software)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll (Microsoft Corporation)
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)
SRV - (TomTomHOMEService) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe (TomTom)
SRV - (WatAdminSvc) -- C:\Windows\System32\Wat\WatAdminSvc.exe (Microsoft Corporation)
SRV - (SwitchBoard) -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
SRV - (LVPrcSrv) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV - (Nero BackItUp Scheduler 4.0) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (Nero AG)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - (aswSnx) -- C:\Windows\System32\drivers\aswSnx.sys (AVAST Software)
DRV - (aswSP) -- C:\Windows\System32\drivers\aswSP.sys (AVAST Software)
DRV - (aswTdi) -- C:\Windows\System32\drivers\aswTdi.sys (AVAST Software)
DRV - (aswRdr) -- C:\Windows\System32\drivers\aswRdr.sys (AVAST Software)
DRV - (aswMonFlt) -- C:\Windows\System32\drivers\aswMonFlt.sys (AVAST Software)
DRV - (aswFsBlk) -- C:\Windows\System32\drivers\aswFsBlk.sys (AVAST Software)
DRV - (LVUVC) Logitech Webcam 250(UVC) -- C:\Windows\System32\drivers\lvuvc.sys (Logitech Inc.)
DRV - (LVRS) -- C:\Windows\System32\drivers\lvrs.sys (Logitech Inc.)
DRV - (lvpopflt) -- C:\Windows\System32\drivers\lvpopflt.sys (Logitech Inc.)
DRV - (LVPr2Mon) -- C:\Windows\System32\drivers\LVPr2Mon.sys ()
DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (MTsensor) -- C:\Windows\System32\drivers\ASACPI.sys ()
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = https://www.msn.com/fr-fr?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr-FR
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 61 94 41 A2 3C 13 CC 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
[color=#E56717]========== FireFox ==========[/color]
FF - prefs.js..browser.search.defaultthis.engineName: "Veoh Web Player Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2653012&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..extensions.enabledItems: {cd90bf73-20f6-44ef-993d-bb920303bd2e}:2.7.1.3
FF - prefs.js..extensions.enabledItems: cacaoweb@cacaoweb.org:1.0.11
FF - prefs.js..extensions.enabledItems: {33e0daa6-3af3-d8b5-6752-10e949c61516}:1.1
FF - prefs.js..keyword.URL: "http://www.questscan.com/?tmp=nemo_results_removelink&prt=QstscanPB&keywords="
FF - prefs.js..network.proxy.no_proxies_on: "*.local"
FF - HKLM\software\mozilla\Firefox\Extensions\\{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}: C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DMExtension\ [2010/08/14 15:30:24 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/05/11 20:34:56 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/05/21 13:31:22 | 000,000,000 | ---D | M]
[2010/10/25 22:02:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Famille Adams\AppData\Roaming\mozilla\Extensions
[2010/10/25 22:02:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Famille Adams\AppData\Roaming\mozilla\Extensions\home2@tomtom.com
[2011/05/21 15:22:43 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Famille Adams\AppData\Roaming\mozilla\Firefox\Profiles\2tiqb051.default\extensions
[2011/05/12 18:37:15 | 000,000,000 | ---D | M] (Veoh Web Player Community Toolbar) -- C:\Users\Famille Adams\AppData\Roaming\mozilla\Firefox\Profiles\2tiqb051.default\extensions\{cd90bf73-20f6-44ef-993d-bb920303bd2e}
[2011/03/02 12:43:42 | 000,000,000 | ---D | M] (cacaoweb) -- C:\Users\Famille Adams\AppData\Roaming\mozilla\Firefox\Profiles\2tiqb051.default\extensions\cacaoweb@cacaoweb.org
[2011/05/21 16:41:13 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions
File not found (No name found) --
[2011/04/14 18:47:17 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2010/07/12 18:33:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
[2010/01/01 10:00:00 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2010/01/01 10:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2010/01/01 10:00:00 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2010/01/01 10:00:00 | 000,001,154 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2010/01/01 10:00:00 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2010/01/01 10:00:00 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml
O1 HOSTS File: ([2010/10/29 20:51:23 | 000,000,857 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 activate.adobe.com
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe ()
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - HKCU..\Run: [cacaoweb] C:\Users\Famille Adams\AppData\Roaming\cacaoweb\cacaoweb.exe ()
O4 - HKCU..\Run: [Logitech Vid] C:\Program Files\Logitech\Vid HD\Vid.exe (Logitech Inc.)
O4 - HKCU..\Run: [TomTomHOME.exe] C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe (TomTom)
O4 - HKCU..\Run: [VeohPlugin] File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MIF5BA~1\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.241 212.27.40.240
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2011/05/21 15:44:46 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Roaming\Malwarebytes
[2011/05/21 15:44:33 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/05/21 15:44:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/05/21 15:44:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/05/21 15:44:30 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/05/21 15:44:30 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/05/21 12:57:50 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{5DFE8DC2-1C39-4999-983F-6F4C33AB7E9E}
[2011/05/20 21:02:14 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{AFCD6150-8532-494A-AB7E-DB9A804B754E}
[2011/05/19 18:23:14 | 000,000,000 | ---D | C] -- C:\ProgramData\QuestScan
[2011/05/19 18:23:14 | 000,000,000 | ---D | C] -- C:\Program Files\QuestScan
[2011/05/19 16:06:52 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{A92E21E7-8BBC-4AA3-8762-C3EEA0EAE0E7}
[2011/05/19 12:38:37 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe
[2011/05/18 18:00:32 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2011/05/18 12:16:03 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{CB4B81B7-2B42-4DBC-A31B-4C3AC00F6675}
[2011/05/17 22:30:56 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{5514F01D-E886-4C1A-B069-53EEE8C121E6}
[2011/05/17 10:30:07 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{FBFA77F1-FCFC-4CEF-A6B7-89D694E0FFCC}
[2011/05/16 12:35:54 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{920C26C8-78D2-4AF2-9442-49DFAC439F3F}
[2011/05/15 13:51:30 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{CF05FAF5-15FB-488C-884C-2AA296275603}
[2011/05/13 16:18:11 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{9CC981CD-061F-4FA8-8CB5-77ACA3BEAC6F}
[2011/05/12 21:02:34 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{D3198E0E-3D62-46D5-9599-7BBFF16AAE7E}
[2011/05/12 09:01:53 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{2357F85F-38FB-4B47-8419-EC1C6307EF8D}
[2011/05/11 18:02:27 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{8E9097C5-9EFC-4EAB-BBD1-B9AD08EEE5CC}
[2011/05/11 09:38:27 | 003,957,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2011/05/11 09:38:27 | 003,901,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2011/05/10 23:07:15 | 000,040,112 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2011/05/10 22:45:30 | 000,307,928 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2011/05/10 22:45:30 | 000,019,544 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
[2011/05/10 22:45:29 | 000,025,432 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2011/05/10 22:45:28 | 000,053,592 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2011/05/10 22:45:28 | 000,049,240 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2011/05/10 22:45:19 | 000,199,304 | ---- | C] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2011/05/10 09:48:30 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{E195FB54-9DA1-4CC7-B00E-A9CEF56BB36B}
[2011/05/09 12:34:22 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{3DEFB3D2-7475-4456-86F4-A240BB8BCB0B}
[2011/05/08 19:13:38 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{C787C8AE-5F13-4B43-87D2-AF82F0B71351}
[2011/05/08 17:01:47 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{45294D6A-7AC6-436C-B861-29DA77C4DD61}
[2011/05/08 11:53:53 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{E3365C58-946C-4E2C-8543-40FFA4CEE98C}
[2011/05/08 11:34:03 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{53CAC4AF-2FC8-41E4-969B-B10F76E8D83E}
[2011/05/07 12:34:48 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{BFD20E12-DC71-4F65-A799-F08D58E8D0F4}
[2011/05/06 19:06:31 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{CEB11D06-6CAE-474D-AAC1-BEA5F1938398}
[2011/05/05 18:33:39 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{480EC6D7-0490-48E8-895F-87148C8775BE}
[2011/05/04 12:03:49 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{A86353FA-8D38-42D6-A706-9F762AD40093}
[2011/05/03 22:10:10 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{70F095B6-23CF-480B-BF55-BBBA680B8030}
[2011/05/03 10:09:24 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{0FF09A21-CBE1-48CA-A533-227323AD0B9F}
[2011/05/02 13:45:45 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{04DA24C5-C794-4ED7-BE0A-9FDD906A14C0}
[2011/05/01 14:20:01 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{203EDC64-2D07-4889-AD29-C967B62206C8}
[2011/04/30 23:30:57 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{51504952-D4A0-4B15-B1A7-D1FDA6CA7E78}
[2011/04/30 11:30:10 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{1A35C812-0469-48DE-811F-328C1874CAE3}
[2011/04/29 23:08:21 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{7BAC8205-7A46-4799-93AA-872E02A4C470}
[2011/04/29 11:07:34 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{533B5C33-9694-40A0-B97B-4BEACE6F1FFF}
[2011/04/28 09:29:15 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{DC63FCBE-19AE-4D5E-B628-69ECCA6D8C2C}
[2011/04/27 19:14:35 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{4B0947F6-6E9C-4B9A-883C-E8CF5451D537}
[2011/04/24 10:47:56 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{DE8945CF-F78A-4D68-A45A-ADA705F07E38}
[2011/04/23 11:39:52 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{3C6741B4-1AB9-4775-9EAC-F06720636F23}
[2011/04/22 12:47:52 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{10ADDA74-1C2E-44BA-A208-02816E78ED6B}
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2011/05/21 19:54:02 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/05/21 19:54:02 | 000,000,000 | ---- | M] () -- C:\Windows\System32\drivers\lvuvc.hs
[2011/05/21 19:53:58 | 1609,965,568 | -HS- | M] () -- C:\hiberfil.sys
[2011/05/21 18:21:58 | 000,347,029 | ---- | M] () -- C:\Users\Famille Adams\Desktop\Sans titre.jpg
[2011/05/21 15:44:33 | 000,001,071 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/05/21 14:24:48 | 000,151,663 | ---- | M] () -- C:\Users\Famille Adams\Desktop\VIRUS.png
[2011/05/16 22:55:59 | 000,009,584 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/05/16 22:55:59 | 000,009,584 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/05/15 22:20:24 | 000,704,242 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2011/05/15 22:20:24 | 000,615,810 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/05/15 22:20:24 | 000,130,548 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2011/05/15 22:20:24 | 000,106,190 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/05/15 16:07:02 | 000,001,950 | ---- | M] () -- C:\Users\Public\Desktop\FileZilla Client.lnk
[2011/05/11 20:35:50 | 000,002,002 | ---- | M] () -- C:\Users\Famille Adams\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/05/11 20:34:56 | 000,001,100 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011/05/10 23:07:19 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2011/05/10 14:10:59 | 000,040,112 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2011/05/10 14:10:55 | 000,199,304 | ---- | M] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2011/05/10 14:03:54 | 000,441,176 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
[2011/05/10 14:03:44 | 000,307,928 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2011/05/10 14:02:37 | 000,049,240 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2011/05/10 13:59:56 | 000,025,432 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2011/05/10 13:59:44 | 000,053,592 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2011/05/10 13:59:35 | 000,019,544 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
[2011/05/08 19:05:48 | 000,114,454 | ---- | M] () -- C:\Users\Famille Adams\Desktop\groupe_historique1083348865.pdf
[2011/05/08 17:57:26 | 883,551,737 | ---- | M] () -- C:\Users\Famille Adams\Desktop\T.OLLIVIER.zip
[2011/05/06 10:29:40 | 000,001,098 | ---- | M] () -- C:\Users\Famille Adams\Desktop\reseau-horizon-0909-BD - Raccourci.lnk
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2011/05/21 15:44:33 | 000,001,071 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/05/21 14:30:46 | 000,347,029 | ---- | C] () -- C:\Users\Famille Adams\Desktop\Sans titre.jpg
[2011/05/21 14:23:48 | 000,151,663 | ---- | C] () -- C:\Users\Famille Adams\Desktop\VIRUS.png
[2011/05/11 20:34:56 | 000,001,112 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2011/05/08 19:05:47 | 000,114,454 | ---- | C] () -- C:\Users\Famille Adams\Desktop\groupe_historique1083348865.pdf
[2011/05/08 18:02:06 | 883,551,737 | ---- | C] () -- C:\Users\Famille Adams\Desktop\T.OLLIVIER.zip
[2011/05/06 10:29:40 | 000,001,098 | ---- | C] () -- C:\Users\Famille Adams\Desktop\reseau-horizon-0909-BD - Raccourci.lnk
[2010/12/11 22:05:13 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2010/11/13 18:37:51 | 000,082,289 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini
[2010/11/10 16:03:53 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2010/10/13 12:09:30 | 000,000,168 | ---- | C] () -- C:\Users\Famille Adams\AppData\Roaming\default.rss
[2010/08/21 22:10:12 | 000,004,767 | ---- | C] () -- C:\Windows\Irremote.ini
[2010/07/27 09:03:20 | 010,829,656 | ---- | C] () -- C:\Windows\System32\LogiDPP.dll
[2010/07/27 09:03:20 | 000,102,744 | ---- | C] () -- C:\Windows\System32\LogiDPPApp.exe
[2010/07/27 09:03:18 | 000,290,648 | ---- | C] () -- C:\Windows\System32\DevManagerCore.dll
[2009/10/07 02:46:36 | 000,025,752 | ---- | C] () -- C:\Windows\System32\drivers\LVPr2Mon.sys
[2009/10/07 02:23:08 | 000,013,584 | ---- | C] () -- C:\Windows\System32\drivers\iKeyLFT2.dll
[2009/07/14 10:39:49 | 000,704,242 | ---- | C] () -- C:\Windows\System32\perfh00C.dat
[2009/07/14 10:39:49 | 000,344,522 | ---- | C] () -- C:\Windows\System32\perfi00C.dat
[2009/07/14 10:39:49 | 000,130,548 | ---- | C] () -- C:\Windows\System32\perfc00C.dat
[2009/07/14 10:39:49 | 000,038,160 | ---- | C] () -- C:\Windows\System32\perfd00C.dat
[2009/07/14 06:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 06:33:53 | 003,792,296 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/07/14 04:05:48 | 000,615,810 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009/07/14 04:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009/07/14 04:05:48 | 000,106,190 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009/07/14 04:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009/07/14 04:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009/07/14 04:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009/07/14 01:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/14 01:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/06/10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2004/08/13 09:56:20 | 000,005,810 | ---- | C] () -- C:\Windows\System32\drivers\ASACPI.sys
< End of report >
OTL logfile created on: 21/05/2011 20:30:21 - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Famille Adams\Downloads
Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 54,00% Memory free
4,00 Gb Paging File | 2,00 Gb Available in Paging File | 56,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,75 Gb Total Space | 365,81 Gb Free Space | 78,54% Space Free | Partition Type: NTFS
Computer Name: FAMILLEADAMS-PC | User Name: Famille Adams | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - C:\Users\Famille Adams\Downloads\OTL(1).exe (OldTimer Tools)
PRC - C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files\Logitech\Vid HD\Vid.exe (Logitech Inc.)
PRC - C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe (TomTom)
PRC - C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE (CANON INC.)
PRC - C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe ()
PRC - C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe ()
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
[color=#E56717]========== Modules (SafeList) ==========[/color]
MOD - C:\Users\Famille Adams\Downloads\OTL(1).exe (OldTimer Tools)
MOD - C:\Program Files\Alwil Software\Avast5\snxhk.dll (AVAST Software)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll (Microsoft Corporation)
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)
SRV - (TomTomHOMEService) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe (TomTom)
SRV - (WatAdminSvc) -- C:\Windows\System32\Wat\WatAdminSvc.exe (Microsoft Corporation)
SRV - (SwitchBoard) -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
SRV - (LVPrcSrv) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV - (Nero BackItUp Scheduler 4.0) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (Nero AG)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - (aswSnx) -- C:\Windows\System32\drivers\aswSnx.sys (AVAST Software)
DRV - (aswSP) -- C:\Windows\System32\drivers\aswSP.sys (AVAST Software)
DRV - (aswTdi) -- C:\Windows\System32\drivers\aswTdi.sys (AVAST Software)
DRV - (aswRdr) -- C:\Windows\System32\drivers\aswRdr.sys (AVAST Software)
DRV - (aswMonFlt) -- C:\Windows\System32\drivers\aswMonFlt.sys (AVAST Software)
DRV - (aswFsBlk) -- C:\Windows\System32\drivers\aswFsBlk.sys (AVAST Software)
DRV - (LVUVC) Logitech Webcam 250(UVC) -- C:\Windows\System32\drivers\lvuvc.sys (Logitech Inc.)
DRV - (LVRS) -- C:\Windows\System32\drivers\lvrs.sys (Logitech Inc.)
DRV - (lvpopflt) -- C:\Windows\System32\drivers\lvpopflt.sys (Logitech Inc.)
DRV - (LVPr2Mon) -- C:\Windows\System32\drivers\LVPr2Mon.sys ()
DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (MTsensor) -- C:\Windows\System32\drivers\ASACPI.sys ()
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = https://www.msn.com/fr-fr?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr-FR
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 61 94 41 A2 3C 13 CC 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
[color=#E56717]========== FireFox ==========[/color]
FF - prefs.js..browser.search.defaultthis.engineName: "Veoh Web Player Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2653012&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..extensions.enabledItems: {cd90bf73-20f6-44ef-993d-bb920303bd2e}:2.7.1.3
FF - prefs.js..extensions.enabledItems: cacaoweb@cacaoweb.org:1.0.11
FF - prefs.js..extensions.enabledItems: {33e0daa6-3af3-d8b5-6752-10e949c61516}:1.1
FF - prefs.js..keyword.URL: "http://www.questscan.com/?tmp=nemo_results_removelink&prt=QstscanPB&keywords="
FF - prefs.js..network.proxy.no_proxies_on: "*.local"
FF - HKLM\software\mozilla\Firefox\Extensions\\{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}: C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DMExtension\ [2010/08/14 15:30:24 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/05/11 20:34:56 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/05/21 13:31:22 | 000,000,000 | ---D | M]
[2010/10/25 22:02:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Famille Adams\AppData\Roaming\mozilla\Extensions
[2010/10/25 22:02:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Famille Adams\AppData\Roaming\mozilla\Extensions\home2@tomtom.com
[2011/05/21 15:22:43 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Famille Adams\AppData\Roaming\mozilla\Firefox\Profiles\2tiqb051.default\extensions
[2011/05/12 18:37:15 | 000,000,000 | ---D | M] (Veoh Web Player Community Toolbar) -- C:\Users\Famille Adams\AppData\Roaming\mozilla\Firefox\Profiles\2tiqb051.default\extensions\{cd90bf73-20f6-44ef-993d-bb920303bd2e}
[2011/03/02 12:43:42 | 000,000,000 | ---D | M] (cacaoweb) -- C:\Users\Famille Adams\AppData\Roaming\mozilla\Firefox\Profiles\2tiqb051.default\extensions\cacaoweb@cacaoweb.org
[2011/05/21 16:41:13 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions
File not found (No name found) --
[2011/04/14 18:47:17 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2010/07/12 18:33:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
[2010/01/01 10:00:00 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2010/01/01 10:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2010/01/01 10:00:00 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2010/01/01 10:00:00 | 000,001,154 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2010/01/01 10:00:00 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2010/01/01 10:00:00 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml
O1 HOSTS File: ([2010/10/29 20:51:23 | 000,000,857 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 activate.adobe.com
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe ()
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - HKCU..\Run: [cacaoweb] C:\Users\Famille Adams\AppData\Roaming\cacaoweb\cacaoweb.exe ()
O4 - HKCU..\Run: [Logitech Vid] C:\Program Files\Logitech\Vid HD\Vid.exe (Logitech Inc.)
O4 - HKCU..\Run: [TomTomHOME.exe] C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe (TomTom)
O4 - HKCU..\Run: [VeohPlugin] File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MIF5BA~1\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.241 212.27.40.240
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2011/05/21 15:44:46 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Roaming\Malwarebytes
[2011/05/21 15:44:33 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/05/21 15:44:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/05/21 15:44:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/05/21 15:44:30 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/05/21 15:44:30 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/05/21 12:57:50 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{5DFE8DC2-1C39-4999-983F-6F4C33AB7E9E}
[2011/05/20 21:02:14 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{AFCD6150-8532-494A-AB7E-DB9A804B754E}
[2011/05/19 18:23:14 | 000,000,000 | ---D | C] -- C:\ProgramData\QuestScan
[2011/05/19 18:23:14 | 000,000,000 | ---D | C] -- C:\Program Files\QuestScan
[2011/05/19 16:06:52 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{A92E21E7-8BBC-4AA3-8762-C3EEA0EAE0E7}
[2011/05/19 12:38:37 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe
[2011/05/18 18:00:32 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2011/05/18 12:16:03 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{CB4B81B7-2B42-4DBC-A31B-4C3AC00F6675}
[2011/05/17 22:30:56 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{5514F01D-E886-4C1A-B069-53EEE8C121E6}
[2011/05/17 10:30:07 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{FBFA77F1-FCFC-4CEF-A6B7-89D694E0FFCC}
[2011/05/16 12:35:54 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{920C26C8-78D2-4AF2-9442-49DFAC439F3F}
[2011/05/15 13:51:30 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{CF05FAF5-15FB-488C-884C-2AA296275603}
[2011/05/13 16:18:11 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{9CC981CD-061F-4FA8-8CB5-77ACA3BEAC6F}
[2011/05/12 21:02:34 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{D3198E0E-3D62-46D5-9599-7BBFF16AAE7E}
[2011/05/12 09:01:53 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{2357F85F-38FB-4B47-8419-EC1C6307EF8D}
[2011/05/11 18:02:27 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{8E9097C5-9EFC-4EAB-BBD1-B9AD08EEE5CC}
[2011/05/11 09:38:27 | 003,957,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2011/05/11 09:38:27 | 003,901,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2011/05/10 23:07:15 | 000,040,112 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2011/05/10 22:45:30 | 000,307,928 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2011/05/10 22:45:30 | 000,019,544 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
[2011/05/10 22:45:29 | 000,025,432 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2011/05/10 22:45:28 | 000,053,592 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2011/05/10 22:45:28 | 000,049,240 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2011/05/10 22:45:19 | 000,199,304 | ---- | C] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2011/05/10 09:48:30 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{E195FB54-9DA1-4CC7-B00E-A9CEF56BB36B}
[2011/05/09 12:34:22 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{3DEFB3D2-7475-4456-86F4-A240BB8BCB0B}
[2011/05/08 19:13:38 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{C787C8AE-5F13-4B43-87D2-AF82F0B71351}
[2011/05/08 17:01:47 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{45294D6A-7AC6-436C-B861-29DA77C4DD61}
[2011/05/08 11:53:53 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{E3365C58-946C-4E2C-8543-40FFA4CEE98C}
[2011/05/08 11:34:03 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{53CAC4AF-2FC8-41E4-969B-B10F76E8D83E}
[2011/05/07 12:34:48 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{BFD20E12-DC71-4F65-A799-F08D58E8D0F4}
[2011/05/06 19:06:31 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{CEB11D06-6CAE-474D-AAC1-BEA5F1938398}
[2011/05/05 18:33:39 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{480EC6D7-0490-48E8-895F-87148C8775BE}
[2011/05/04 12:03:49 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{A86353FA-8D38-42D6-A706-9F762AD40093}
[2011/05/03 22:10:10 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{70F095B6-23CF-480B-BF55-BBBA680B8030}
[2011/05/03 10:09:24 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{0FF09A21-CBE1-48CA-A533-227323AD0B9F}
[2011/05/02 13:45:45 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{04DA24C5-C794-4ED7-BE0A-9FDD906A14C0}
[2011/05/01 14:20:01 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{203EDC64-2D07-4889-AD29-C967B62206C8}
[2011/04/30 23:30:57 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{51504952-D4A0-4B15-B1A7-D1FDA6CA7E78}
[2011/04/30 11:30:10 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{1A35C812-0469-48DE-811F-328C1874CAE3}
[2011/04/29 23:08:21 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{7BAC8205-7A46-4799-93AA-872E02A4C470}
[2011/04/29 11:07:34 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{533B5C33-9694-40A0-B97B-4BEACE6F1FFF}
[2011/04/28 09:29:15 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{DC63FCBE-19AE-4D5E-B628-69ECCA6D8C2C}
[2011/04/27 19:14:35 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{4B0947F6-6E9C-4B9A-883C-E8CF5451D537}
[2011/04/24 10:47:56 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{DE8945CF-F78A-4D68-A45A-ADA705F07E38}
[2011/04/23 11:39:52 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{3C6741B4-1AB9-4775-9EAC-F06720636F23}
[2011/04/22 12:47:52 | 000,000,000 | ---D | C] -- C:\Users\Famille Adams\AppData\Local\{10ADDA74-1C2E-44BA-A208-02816E78ED6B}
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2011/05/21 19:54:02 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/05/21 19:54:02 | 000,000,000 | ---- | M] () -- C:\Windows\System32\drivers\lvuvc.hs
[2011/05/21 19:53:58 | 1609,965,568 | -HS- | M] () -- C:\hiberfil.sys
[2011/05/21 18:21:58 | 000,347,029 | ---- | M] () -- C:\Users\Famille Adams\Desktop\Sans titre.jpg
[2011/05/21 15:44:33 | 000,001,071 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/05/21 14:24:48 | 000,151,663 | ---- | M] () -- C:\Users\Famille Adams\Desktop\VIRUS.png
[2011/05/16 22:55:59 | 000,009,584 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/05/16 22:55:59 | 000,009,584 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/05/15 22:20:24 | 000,704,242 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2011/05/15 22:20:24 | 000,615,810 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/05/15 22:20:24 | 000,130,548 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2011/05/15 22:20:24 | 000,106,190 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/05/15 16:07:02 | 000,001,950 | ---- | M] () -- C:\Users\Public\Desktop\FileZilla Client.lnk
[2011/05/11 20:35:50 | 000,002,002 | ---- | M] () -- C:\Users\Famille Adams\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/05/11 20:34:56 | 000,001,100 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011/05/10 23:07:19 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2011/05/10 14:10:59 | 000,040,112 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2011/05/10 14:10:55 | 000,199,304 | ---- | M] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2011/05/10 14:03:54 | 000,441,176 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
[2011/05/10 14:03:44 | 000,307,928 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2011/05/10 14:02:37 | 000,049,240 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2011/05/10 13:59:56 | 000,025,432 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2011/05/10 13:59:44 | 000,053,592 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2011/05/10 13:59:35 | 000,019,544 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
[2011/05/08 19:05:48 | 000,114,454 | ---- | M] () -- C:\Users\Famille Adams\Desktop\groupe_historique1083348865.pdf
[2011/05/08 17:57:26 | 883,551,737 | ---- | M] () -- C:\Users\Famille Adams\Desktop\T.OLLIVIER.zip
[2011/05/06 10:29:40 | 000,001,098 | ---- | M] () -- C:\Users\Famille Adams\Desktop\reseau-horizon-0909-BD - Raccourci.lnk
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2011/05/21 15:44:33 | 000,001,071 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/05/21 14:30:46 | 000,347,029 | ---- | C] () -- C:\Users\Famille Adams\Desktop\Sans titre.jpg
[2011/05/21 14:23:48 | 000,151,663 | ---- | C] () -- C:\Users\Famille Adams\Desktop\VIRUS.png
[2011/05/11 20:34:56 | 000,001,112 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2011/05/08 19:05:47 | 000,114,454 | ---- | C] () -- C:\Users\Famille Adams\Desktop\groupe_historique1083348865.pdf
[2011/05/08 18:02:06 | 883,551,737 | ---- | C] () -- C:\Users\Famille Adams\Desktop\T.OLLIVIER.zip
[2011/05/06 10:29:40 | 000,001,098 | ---- | C] () -- C:\Users\Famille Adams\Desktop\reseau-horizon-0909-BD - Raccourci.lnk
[2010/12/11 22:05:13 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2010/11/13 18:37:51 | 000,082,289 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini
[2010/11/10 16:03:53 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2010/10/13 12:09:30 | 000,000,168 | ---- | C] () -- C:\Users\Famille Adams\AppData\Roaming\default.rss
[2010/08/21 22:10:12 | 000,004,767 | ---- | C] () -- C:\Windows\Irremote.ini
[2010/07/27 09:03:20 | 010,829,656 | ---- | C] () -- C:\Windows\System32\LogiDPP.dll
[2010/07/27 09:03:20 | 000,102,744 | ---- | C] () -- C:\Windows\System32\LogiDPPApp.exe
[2010/07/27 09:03:18 | 000,290,648 | ---- | C] () -- C:\Windows\System32\DevManagerCore.dll
[2009/10/07 02:46:36 | 000,025,752 | ---- | C] () -- C:\Windows\System32\drivers\LVPr2Mon.sys
[2009/10/07 02:23:08 | 000,013,584 | ---- | C] () -- C:\Windows\System32\drivers\iKeyLFT2.dll
[2009/07/14 10:39:49 | 000,704,242 | ---- | C] () -- C:\Windows\System32\perfh00C.dat
[2009/07/14 10:39:49 | 000,344,522 | ---- | C] () -- C:\Windows\System32\perfi00C.dat
[2009/07/14 10:39:49 | 000,130,548 | ---- | C] () -- C:\Windows\System32\perfc00C.dat
[2009/07/14 10:39:49 | 000,038,160 | ---- | C] () -- C:\Windows\System32\perfd00C.dat
[2009/07/14 06:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 06:33:53 | 003,792,296 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/07/14 04:05:48 | 000,615,810 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009/07/14 04:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009/07/14 04:05:48 | 000,106,190 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009/07/14 04:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009/07/14 04:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009/07/14 04:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009/07/14 01:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/14 01:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/06/10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2004/08/13 09:56:20 | 000,005,810 | ---- | C] () -- C:\Windows\System32\drivers\ASACPI.sys
< End of report >
Je sais pas pourquoi le script OTL ne fonctionne pas.
Supprime ces dossiers :
- C:\ProgramData\QuestScan
- C:\Program Files\QuestScan
Supprime ces dossiers :
- C:\ProgramData\QuestScan
- C:\Program Files\QuestScan
et bien j'ai d'autre chose en zone de quarantaine.
Je ne sais pas quoi en faire.
Est ce que je ne risque rien si cela reste en quarantaine ?
Je ne sais pas quoi en faire.
Est ce que je ne risque rien si cela reste en quarantaine ?
Pour finir :
1/
---> Télécharge DelFix sur ton Bureau.
* Clique droit sur DelFix et choisis Exécuter en tant qu'administrateur.
* Clique sur le bouton Suppression.
* Poste le rapport (C:\DelFixSuppr.txt).
* Supprime DelFix.
2/
---> Télécharge et installe CCleaner.
* Lance-le. Va dans Options puis Avancé et décoche la case Effacer uniquement les fichiers etc....
* Va dans Nettoyeur, choisis Analyse. Une fois terminé, lance le nettoyage.
3/
---> Il est nécessaire de supprimer les points de restauration.
==Prévention==
Voici un dossier sur la prévention et sécurité sur Internet (A lire avec Adobe Reader ou Foxit Reader) : Lien
;)
1/
---> Télécharge DelFix sur ton Bureau.
* Clique droit sur DelFix et choisis Exécuter en tant qu'administrateur.
* Clique sur le bouton Suppression.
* Poste le rapport (C:\DelFixSuppr.txt).
* Supprime DelFix.
2/
---> Télécharge et installe CCleaner.
* Lance-le. Va dans Options puis Avancé et décoche la case Effacer uniquement les fichiers etc....
* Va dans Nettoyeur, choisis Analyse. Une fois terminé, lance le nettoyage.
3/
---> Il est nécessaire de supprimer les points de restauration.
==Prévention==
Voici un dossier sur la prévention et sécurité sur Internet (A lire avec Adobe Reader ou Foxit Reader) : Lien
;)
# DelFix v7.9 - Rapport créé le 21/05/2011 à 22:48
# Mis à jour le 21/05/11 à 12h par Xplode
# Système d'exploitation : Windows 7 Home Premium (32 bits) [version 6.1.7600]
# Nom d'utilisateur : Famille Adams - FAMILLEADAMS-PC (Administrateur)
# Exécuté depuis : C:\Users\Famille Adams\Downloads\DelFix.exe
# Option [Suppression]
~~~~~~ Dossier(s) ~~~~~~
~~~~~~ Fichier(s) ~~~~~~
Supprimé : C:\Users\Famille Adams\Downloads\OTL(1).exe
Supprimé : C:\Users\Famille Adams\Downloads\OTL.exe
~~~~~~ Registre ~~~~~~
~~~~~~ Autre ~~~~~~
-> Prefetch vidé
########## EOF - "C:\DelFixSuppr.txt" - [691 octets] ##########
# Mis à jour le 21/05/11 à 12h par Xplode
# Système d'exploitation : Windows 7 Home Premium (32 bits) [version 6.1.7600]
# Nom d'utilisateur : Famille Adams - FAMILLEADAMS-PC (Administrateur)
# Exécuté depuis : C:\Users\Famille Adams\Downloads\DelFix.exe
# Option [Suppression]
~~~~~~ Dossier(s) ~~~~~~
~~~~~~ Fichier(s) ~~~~~~
Supprimé : C:\Users\Famille Adams\Downloads\OTL(1).exe
Supprimé : C:\Users\Famille Adams\Downloads\OTL.exe
~~~~~~ Registre ~~~~~~
~~~~~~ Autre ~~~~~~
-> Prefetch vidé
########## EOF - "C:\DelFixSuppr.txt" - [691 octets] ##########