Sujet Précédent Sujet Suivant

Probkeme IE

Fermé
moon888 Messages postés 1 Date d'inscription mercredi 29 juin 2011 Statut Membre Dernière intervention 29 juin 2011 - 29 juin 2011 à 12:28
 Utilisateur anonyme - 29 juin 2011 à 12:59
OTL logfile created on: 29/06/2011 11:06:23 - Run 2
OTL by OldTimer - Version 3.2.24.1 Folder = C:\Documents and Settings\mehdi\Bureau
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

1013,88 Mb Total Physical Memory | 542,17 Mb Available Physical Memory | 53,47% Memory free
2,39 Gb Paging File | 2,00 Gb Available in Paging File | 83,71% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 139,04 Gb Total Space | 111,02 Gb Free Space | 79,84% Space Free | Partition Type: NTFS
Drive E: | 1,86 Gb Total Space | 0,34 Gb Free Space | 18,16% Space Free | Partition Type: FAT32

Computer Name: PACKARD-B0B6CC2 | User Name: mehdi | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2011/06/29 10:11:49 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\mehdi\Bureau\OTL.exe
PRC - [2011/05/21 18:17:34 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\javaw.exe
PRC - [2011/01/07 13:12:22 | 000,253,672 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
PRC - [2010/01/20 23:03:39 | 000,117,640 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton Internet Security\Engine\16.8.0.41\ccSvcHst.exe
PRC - [2009/03/18 10:46:30 | 001,160,736 | ---- | M] (Acer Incorporated) -- C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe
PRC - [2008/11/09 22:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
PRC - [2008/07/03 15:58:22 | 000,094,208 | ---- | M] (sonix) -- C:\WINDOWS\PLFSetL.exe
PRC - [2008/05/09 10:45:51 | 000,135,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cscript.exe
PRC - [2008/04/15 18:54:42 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2008/04/15 18:54:40 | 000,178,712 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2008/04/14 14:00:00 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


[color=#E56717]========== Modules (SafeList) ==========[/color]

MOD - [2011/06/29 10:11:49 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\mehdi\Bureau\OTL.exe
MOD - [2010/01/20 23:03:36 | 000,419,696 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton Internet Security\Engine\16.8.0.41\asOEHook.dll
MOD - [2008/04/14 14:00:00 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2010/01/20 23:03:39 | 000,117,640 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Norton Internet Security\Engine\16.8.0.41\ccSvcHst.exe -- (Norton Internet Security)
SRV - [2009/04/04 10:37:41 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2008/11/09 22:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
SRV - [2008/04/15 18:54:42 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2011/06/25 02:50:26 | 000,355,256 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20110625.031\IDSXpx86.sys -- (IDSxpx86)
DRV - [2011/05/17 10:00:00 | 001,542,392 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20110628.002\NAVEX15.SYS -- (NAVEX15)
DRV - [2011/05/17 10:00:00 | 000,086,008 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20110628.002\NAVENG.SYS -- (NAVENG)
DRV - [2011/05/09 10:00:00 | 000,374,392 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2011/05/09 10:00:00 | 000,105,592 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2011/04/14 01:23:29 | 000,124,976 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2011/04/14 01:23:05 | 000,482,432 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\NIS\1008000.029\ccHPx86.sys -- (ccHP)
DRV - [2010/01/20 23:03:40 | 000,217,136 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\NIS\1008000.029\SYMTDI.SYS -- (SYMTDI)
DRV - [2010/01/20 23:03:40 | 000,089,904 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\NIS\1008000.029\SYMFW.SYS -- (SYMFW)
DRV - [2010/01/20 23:03:40 | 000,036,400 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\NIS\1008000.029\SYMNDIS.SYS -- (SYMNDIS)
DRV - [2010/01/20 23:03:40 | 000,033,072 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\NIS\1008000.029\SYMIDS.SYS -- (SYMIDS)
DRV - [2010/01/20 23:03:39 | 000,310,320 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\NIS\1008000.029\SYMEFA.SYS -- (SymEFA)
DRV - [2010/01/20 23:03:39 | 000,308,272 | ---- | M] (Symantec Corporation) [File_System | System | Running] -- C:\WINDOWS\System32\Drivers\NIS\1008000.029\SRTSP.SYS -- (SRTSP)
DRV - [2010/01/20 23:03:39 | 000,259,632 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\NIS\1008000.029\BHDrvx86.sys -- (BHDrvx86)
DRV - [2010/01/20 23:03:39 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NIS\1008000.029\SRTSPX.SYS -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV - [2010/01/20 23:03:28 | 000,036,400 | R--- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SymIM.sys -- (SymIMMP)
DRV - [2010/01/20 23:03:28 | 000,036,400 | R--- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SymIM.sys -- (SymIM)
DRV - [2009/05/06 18:15:38 | 001,759,744 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC)
DRV - [2009/03/02 07:03:48 | 000,038,912 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\l1c51x86.sys -- (L1c)
DRV - [2009/02/25 21:17:52 | 001,344,224 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\athw.sys -- (AR5416)
DRV - [2009/02/24 10:49:44 | 005,032,448 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2009/02/20 10:53:18 | 001,952,512 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2009/02/03 08:42:30 | 000,162,816 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV - [2008/08/05 14:10:12 | 001,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2006/01/04 09:41:48 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [Binary data over 100 bytes]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ww38.search-web.net/?subid1=20200207-1536-5282-b382-404527b40094
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\software\mozilla\Firefox\Extensions\\{7BA52691-1876-45ce-9EE6-54BCB3B04BBC}: C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\coFFPlgn\ [2011/04/17 18:44:41 | 000,000,000 | ---D | M]


O1 HOSTS File: ([2008/04/14 14:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\16.8.0.41\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\16.8.0.41\IPSBHO.dll (Symantec Corporation)
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\16.8.0.41\CoIEPlg.dll (Symantec Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\16.8.0.41\CoIEPlg.dll (Symantec Corporation)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [AzMixerSel] C:\Program Files\Realtek\Audio\Drivers\AzMixerSel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [IMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [MSPY2002] C:\WINDOWS\System32\IME\PINTLGNT\ImScInst.exe ()
O4 - HKLM..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [PLFSetL] C:\WINDOWS\PLFSetL.exe (sonix)
O4 - HKLM..\Run: [snp2uvc] C:\WINDOWS\System32\csnp2uvc.dll ( )
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [Yahoo Messenger] File not found
O4 - HKCU..\Run: [SmpcSys] C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe (Acer Incorporated)
O4 - Startup: C:\Documents and Settings\mehdi\Menu Démarrer\Programmes\Démarrage\Protection.lnk = C:\Documents and Settings\mehdi\Protection.jar ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 0
O15 - HKCU\..Trusted Domains: chat-land.org ([www] http in Sites de confiance)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\symres {AA1061FE-6C41-421f-9344-69640C9732AB} - C:\Program Files\Norton Internet Security\Engine\16.8.0.41\CoIEPlg.dll (Symantec Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~1\GOOGLE\GOOGLE~1\GOEC62~1.DLL) - C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper:
O24 - Desktop BackupWallPaper:
O32 - Unable to read "AutoRun" value or value not present!
O32 - AutoRun File - [2009/04/04 08:57:44 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2011/06/29 10:11:42 | 000,579,072 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\mehdi\Bureau\OTL.exe
[2011/06/29 10:10:24 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Remover
[2011/06/29 02:14:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\mehdi\historique_ChatLand
[2011/06/27 17:41:44 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\mehdi\Recent
[2011/06/26 03:14:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel
[2011/06/26 03:06:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\mehdi\Application Data\Template
[2011/06/24 15:38:45 | 000,000,000 | ---D | C] -- C:\af3b7f754f61465cdc864749d4cad6d6
[2011/06/24 02:12:19 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2011/06/20 01:33:35 | 000,274,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2011/06/20 01:33:35 | 000,018,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui
[2011/06/09 14:01:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2011/06/09 14:00:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SpeedBit
[2011/06/09 14:00:55 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\SpeedBit
[2011/06/09 14:00:50 | 000,000,000 | ---D | C] -- C:\Program Files\DAP
[2011/06/09 13:35:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\mehdi\Application Data\IDM
[2011/04/08 16:05:15 | 000,196,608 | ---- | C] ( ) -- C:\WINDOWS\System32\csnp2uvc.dll
[2011/04/08 16:05:10 | 000,225,280 | ---- | C] ( ) -- C:\WINDOWS\System32\rsnp2uvc.dll
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Documents and Settings\mehdi\*.tmp files -> C:\Documents and Settings\mehdi\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2011/06/29 11:05:45 | 000,002,262 | ---- | M] () -- C:\Documents and Settings\mehdi\main.vbe
[2011/06/29 10:51:33 | 000,000,004 | ---- | M] () -- C:\Documents and Settings\mehdi\binternet_29_06_2011
[2011/06/29 10:51:33 | 000,000,003 | ---- | M] () -- C:\Documents and Settings\mehdi\vers
[2011/06/29 10:51:30 | 000,000,594 | ---- | M] () -- C:\Documents and Settings\mehdi\Menu Démarrer\Programmes\Démarrage\Protection.lnk
[2011/06/29 10:51:16 | 000,000,278 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-4283021946-2942328611-1021817841-1006.job
[2011/06/29 10:50:56 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/06/29 10:50:46 | 1063,198,720 | -HS- | M] () -- C:\hiberfil.sys
[2011/06/29 10:11:49 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\mehdi\Bureau\OTL.exe
[2011/06/29 10:10:28 | 000,001,556 | ---- | M] () -- C:\Documents and Settings\mehdi\Bureau\AD-R.lnk
[2011/06/29 02:48:52 | 000,000,126 | ---- | M] () -- C:\Documents and Settings\mehdi\parm.fr
[2011/06/29 02:19:27 | 000,018,747 | ---- | M] () -- C:\Documents and Settings\mehdi\Protection.jar
[2011/06/29 02:19:07 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\mehdi\tmp1.16
[2011/06/29 02:14:43 | 000,003,926 | ---- | M] () -- C:\Documents and Settings\mehdi\F_ajour.jar
[2011/06/29 02:14:41 | 000,000,015 | ---- | M] () -- C:\WINDOWS\System32\prncnfgd
[2011/06/28 21:04:14 | 000,052,224 | ---- | M] () -- C:\Documents and Settings\mehdi\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/06/28 17:03:01 | 000,002,265 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Skype.lnk
[2011/06/28 01:03:24 | 000,000,532 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\ADSL.lnk
[2011/06/26 03:19:10 | 000,250,288 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/06/26 03:14:41 | 000,000,286 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-4283021946-2942328611-1021817841-1006.job
[2011/06/26 03:06:08 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\mehdi\Application Data\wklnhst.dat
[2011/06/24 02:12:19 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2011/06/14 02:50:46 | 000,469,622 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2011/06/14 02:50:46 | 000,402,406 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/06/14 02:50:46 | 000,076,136 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2011/06/14 02:50:46 | 000,063,016 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/06/09 14:00:52 | 000,084,480 | ---- | M] () -- C:\WINDOWS\System32\EasyHook32.dll
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\Documents and Settings\mehdi\*.tmp files -> C:\Documents and Settings\mehdi\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2011/06/29 10:10:28 | 000,001,556 | ---- | C] () -- C:\Documents and Settings\mehdi\Bureau\AD-R.lnk
[2011/06/29 02:58:25 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\mehdi\binternet_29_06_2011
[2011/06/29 02:19:30 | 000,002,262 | ---- | C] () -- C:\Documents and Settings\mehdi\main.vbe
[2011/06/29 02:19:29 | 000,000,594 | ---- | C] () -- C:\Documents and Settings\mehdi\Menu Démarrer\Programmes\Démarrage\Protection.lnk
[2011/06/29 02:19:29 | 000,000,003 | ---- | C] () -- C:\Documents and Settings\mehdi\vers
[2011/06/29 02:19:27 | 000,018,747 | ---- | C] () -- C:\Documents and Settings\mehdi\Protection.jar
[2011/06/29 02:19:19 | 000,000,126 | ---- | C] () -- C:\Documents and Settings\mehdi\parm.fr
[2011/06/29 02:19:07 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\mehdi\tmp1.16
[2011/06/29 02:14:43 | 000,003,926 | ---- | C] () -- C:\Documents and Settings\mehdi\F_ajour.jar
[2011/06/29 02:14:41 | 000,000,015 | ---- | C] () -- C:\WINDOWS\System32\prncnfgd
[2011/06/28 01:03:24 | 000,000,532 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\ADSL.lnk
[2011/06/26 03:06:08 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\mehdi\Application Data\wklnhst.dat
[2011/06/09 14:00:53 | 000,084,480 | ---- | C] () -- C:\WINDOWS\System32\EasyHook32.dll
[2011/04/08 19:19:56 | 000,052,224 | ---- | C] () -- C:\Documents and Settings\mehdi\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/04/08 16:05:15 | 000,028,544 | ---- | C] () -- C:\WINDOWS\System32\drivers\sncduvc.sys
[2011/04/08 16:05:14 | 001,759,744 | ---- | C] () -- C:\WINDOWS\System32\drivers\snp2uvc.sys
[2011/04/08 16:05:14 | 000,000,323 | ---- | C] () -- C:\WINDOWS\PidList.ini
[2011/04/08 16:03:27 | 000,000,135 | ---- | C] () -- C:\Documents and Settings\mehdi\Local Settings\Application Data\fusioncache.dat
[2009/04/04 17:38:10 | 000,469,622 | ---- | C] () -- C:\WINDOWS\System32\perfh00C.dat
[2009/04/04 17:38:10 | 000,322,810 | ---- | C] () -- C:\WINDOWS\System32\perfi00C.dat
[2009/04/04 17:38:10 | 000,076,136 | ---- | C] () -- C:\WINDOWS\System32\perfc00C.dat
[2009/04/04 17:38:10 | 000,034,108 | ---- | C] () -- C:\WINDOWS\System32\perfd00C.dat
[2009/04/04 17:37:58 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2009/04/04 17:37:56 | 000,402,406 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2009/04/04 17:37:56 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2009/04/04 17:37:56 | 000,063,016 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2009/04/04 17:37:56 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2009/04/04 17:37:56 | 000,004,524 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2009/04/04 17:37:55 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2009/04/04 17:37:54 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2009/04/04 17:37:51 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2009/04/04 17:37:51 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2009/04/04 17:37:45 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2009/04/04 17:37:42 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2009/04/04 11:21:06 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2009/04/04 10:22:10 | 000,090,772 | ---- | C] () -- C:\WINDOWS\System32\drivers\RtConvEQ.DAT
[2009/04/04 10:22:10 | 000,000,536 | ---- | C] () -- C:\WINDOWS\System32\drivers\RtHdatEx.dat
[2009/04/04 10:22:10 | 000,000,520 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTEQEX2.dat
[2009/04/04 10:22:10 | 000,000,520 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTEQEX1.dat
[2009/04/04 10:22:10 | 000,000,520 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTEQEX0.dat
[2009/04/04 10:22:10 | 000,000,164 | ---- | C] () -- C:\WINDOWS\System32\drivers\SamSfPa.dat
[2009/04/04 10:22:10 | 000,000,016 | ---- | C] () -- C:\WINDOWS\System32\drivers\rtkhdaud.dat
[2009/04/04 10:19:47 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4926.dll
[2009/04/04 09:52:13 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2009/04/04 09:51:26 | 000,250,288 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009/04/04 09:00:54 | 000,032,768 | ---- | C] () -- C:\WINDOWS\AMove.exe
[2009/04/04 09:00:54 | 000,000,544 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2009/04/04 08:59:59 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2009/04/04 08:55:33 | 000,021,892 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2009/04/04 08:54:38 | 000,003,712 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:553CA6CA

< End of report >
A voir également:

2 réponses

Réponse 1 / 2
BmV Messages postés 91524 Date d'inscription samedi 24 août 2002 Statut Modérateur Dernière intervention 2 janvier 2025 4 701
29 juin 2011 à 12:52 
Merci.

C'est un très joli roman-texte avec plein de chiffres.



Ça nous a fait passer un bon moment : justement on s'ennuyait.

Mais en majorité, on n'est pas du tout d'accord avec la scène de fin ; et la marque de la voiture n'est pas de la bonne époque.



Essaie encore.


                
                

    
        

    
            
        1
                                
                
    

            



    

        
        
    


        

        

                    

    

        

                    

            

        

        
        
        

                        Réponse 2 / 2
        


                    
                    

                

        

                    

        
    
    

            

    

        

            Utilisateur anonyme                    

                    29 juin 2011 à 12:59
                        

    


    

                        

                    ? salut pas compris



========



▶ Télécharge ici : USBFIX sur ton bureau 



branche tous tes periphériques sans les ouvrir



/!\ Désactive provisoirement et seulement le temps de l'utilisation d'USBFIX, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.



si tu as XP => double clique

si tu as Vista ou windows 7 => clic droit "executer en tant que...." 



sur l'icône Usbfix située sur ton Bureau.

Sur la page, clique sur le bouton :



▶ choisi l option Suppression



▶ UsbFix scannera ton pc , laisse travailler l outil.



▶ Ensuite post le rapport UsbFix.txt qui apparaitra avec le bureau .



▶ Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque.( C:\UsbFix.txt )



( CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller ) 





                
                

    
        

    
            
        0
                                
                
    

            



    

        
        
    


        

        

                    

    

        

                    

            

        

    



    
Discussions similaires

                                                    

                
                    Facture de google 380€ !
                    

                        
    
    

                
            

    


                        

                                                                                    Misternet -  

                            
                                                                                    okapi - 
                        

                    

                    

                    

                        61 réponses
                    

                
            

                                                        

                
                    Arnaque frauduleuse Ireland ltd
                    

                        
    
    

            

    


                        

                                                                                    Mymy -  

                            
                                                                                    mel - 
                        

                    

                    

                    

                        4 réponses
                    

                
            

                                                        

                
                    arnaque cb google sur mon compte bancaire
                    

                        
    
    

            

    


                        

                                                                                    patooun -  

                            
                                                                                    samgunsjovirow - 
                        

                    

                    

                    

                        1 réponse
                    

                
            

                                                        

                
                    Arnaque de Google Ireland Limited
                    

                        
    
    

            

    


                        

                                                                                    Sortideli -  

                            
                                                                                    jordane45 - 
                        

                    

                    

                    

                        1 réponse
                    

                
            

                                                        

                
                    Prélèvement "CB Google" inconnu. Arnaque ?
                    

                        
    
    

            

    


                        

                                                                                    sandrinepommelet -  

                            
                                                                                    Roanisel - 
                        

                    

                    

                    

                        29 réponses