Bonjour, Configuration: Windows XP / Firefox 18.0 anti virus microsoft security essentials. depuis quelques jours , à l'ouverture , le message tcbhn à rencontrer un problème . comment le résoudre ? Merci pour information pepegentil

Tcbhn a rencontrer un probleme

Réponse 21 / 49

Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318

Salut,
Pour vérification, relance USBFix en mode recherche puis poste le rapport stp

Réponse 22 / 49

pepegentil Messages postés 200 Statut Membre 2

############################## | UsbFix V 7.106 | [Recherche]

Utilisateur: ernesto (Administrateur) # ERNESTO-
Mis à jour le 12/02/2013 par El Desaparecido
Lancé à 21:00:37 | 13/02/2013

Site Web: https://www.sosvirus.net/
Contact: contact@sosvirus.org

PC: INTEL_ (D915GEV_) (X86-based PC)
CPU: Intel(R) Pentium(R) 4 CPU 2.66GHz (2666)
RAM -> [Total : 2943 | Free : 1825]
BIOS: BIOS Date: 06/09/04 17:22:53 Ver: 08.00.10
BOOT: Normal boot

OS: Microsoft Windows XP Édition familiale (5.1.2600 32-Bit) # Service Pack 3
WB: Windows Internet Explorer 8.0.6001.18702

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
FW: Windows FireWall Service [Enabled]

C:\ (%systemdrive%) -> Disque fixe # 114 Go (51 Go libre(s) - 45%) [] # NTFS
D:\ -> CD-ROM
E:\ -> CD-ROM
F:\ -> Disque fixe # 3 Go (1 Go libre(s) - 43%) [SAUVEGARDE ] # NTFS
G:\ -> Disque amovible # 8 Go (7 Go libre(s) - 99%) [USB20FD] # FAT32
H:\ -> Disque fixe # 16 Go (798 Mo libre(s) - 5%) [SECONDAIRE] # NTFS
I:\ -> Disque fixe # 112 Go (68 Go libre(s) - 61%) [120gb secours] # NTFS

################## | Processus Actif |

C:\WINDOWS\System32\smss.exe (676)
C:\WINDOWS\system32\winlogon.exe (764)
C:\WINDOWS\system32\services.exe (808)
C:\WINDOWS\system32\lsass.exe (820)
C:\WINDOWS\system32\svchost.exe (972)
c:\Program Files\Microsoft Security Client\MsMpEng.exe (1180)
C:\WINDOWS\System32\svchost.exe (1216)
C:\WINDOWS\system32\svchost.exe (1248)
C:\WINDOWS\system32\spoolsv.exe (1788)
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe (2012)
C:\WINDOWS\system32\svchost.exe (148)
C:\Program Files\Java\jre7\bin\jqs.exe (172)
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (356)
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (520)
C:\Program Files\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe (1160)
C:\WINDOWS\System32\svchost.exe (1192)
C:\WINDOWS\system32\nvsvc32.exe (1272)
C:\WINDOWS\System32\svchost.exe (1300)
C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe (1488)
C:\WINDOWS\System32\svchost.exe (1612)
C:\WINDOWS\Explorer.EXE (2124)
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (2184)
C:\WINDOWS\SOUNDMAN.EXE (2336)
C:\WINDOWS\ALCWZRD.EXE (2344)
C:\Program Files\Orange\Systray\SystrayApp.exe (2392)
C:\Program Files\Microsoft Security Client\msseces.exe (2416)
C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe (2500)
C:\WINDOWS\system32\ctfmon.exe (2524)
C:\WINDOWS\system32\rundll32.exe (2564)
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe (2668)
C:\Program Files\Mozilla Firefox\firefox.exe (3136)
C:\Program Files\Windows Live\Messenger\msnmsgr.exe (3392)
C:\Program Files\Windows Live\Messenger\msnmsgr.exe (3404)
C:\Program Files\Windows Live\Messenger\msnmsgr.exe (3532)
C:\Program Files\Skype\Phone\Skype.exe (3712)
C:\Program Files\Yuna Software\Messenger Plus! for Skype\Messenger Plus! for Skype.exe (3720)
C:\WINDOWS\System32\wbem\wmiapsrv.exe (1276)
C:\Program Files\Mozilla Firefox\plugin-container.exe (1092)
C:\Program Files\Windows Live\Contacts\wlcomm.exe (2712)
C:\UsbFix\Go.exe (3508)

################## | Éléments infectieux |

Présent! F:\Raccourci vers OOo_3.0.0_Win32Intel_install_wJRE_fr.lnk
Présent! H:\Outlook Express.lnk
Présent! F:\Recycled\desktop.ini
Présent! H:\captura.bmp
Présent! H:\Recycled\desktop.ini
Présent! H:\msvcr71.dll

################## | Registre |

################## | Mountpoints2 |

HKCU\.\.\.\.\Explorer\MountPoints2\{d2460f8e-b410-11df-b98f-806d6172696f}
Shell\Rip\Command = "C:\Program Files\Windows Media Player\wmplayer.exe" /prefetch:3 /RipAudioCD "%L"

################## | Vaccin |

(!) Cet ordinateur n'est pas vacciné!

################## | E.O.F | https://www.sosvirus.net/ |

Réponse 23 / 49

Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318

Bonjour,
On va passer à la suppression autrement! :-)

Démarrage en Mode sans échec avec prise en charge réseau :
Pour cela, tu tapotes la touche F8 dès le début de l'allumage du pc sans t'arrêter
Une fenêtre va s'ouvrir tu te déplaces avec les flèches du clavier sur >> démarrer en Mode sans échec avec prise en charge réseau
puis tape entrée.
Une fois sur le bureau s'il n'y a pas toutes les couleurs et autres c'est normal !
(Si F8 ne marche pas utilise la touche F5)
---------------------------
Dans ce mode fais ceci stp :
(!) Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) suceptible d avoir été infectés sans les ouvrir

* Double clique sur le raccourci UsbFix sur ton Bureau (clique droit avec la souris

:exécuter en tant qu'administrateur pour vista/seven), l'installation se fera

automatiquement

* Clique sur "Suppression"
* Laisse travailler l'outil

* A la fin, le rapport va s'afficher : poste le dans ta prochaine réponse (il est aussi sauvegardé a la racine du disque dur : C:\UsbFix.txt )

@+

Réponse 24 / 49

pepegentil Messages postés 200 Statut Membre 2

############################## | UsbFix V 7.106 | [Suppression]

Utilisateur: ernesto (Administrateur) # ERNESTO-
Mis à jour le 12/02/2013 par El Desaparecido
Lancé à 09:42:48 | 14/02/2013

Site Web: https://www.sosvirus.net/
Contact: contact@sosvirus.org

PC: INTEL_ (D915GEV_) (X86-based PC)
CPU: Intel(R) Pentium(R) 4 CPU 2.66GHz (2666)
RAM -> [Total : 2943 | Free : 2000]
BIOS: BIOS Date: 06/09/04 17:22:53 Ver: 08.00.10
BOOT: Normal boot

OS: Microsoft Windows XP Édition familiale (5.1.2600 32-Bit) # Service Pack 3
WB: Windows Internet Explorer 8.0.6001.18702

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
FW: Windows FireWall Service [Enabled]

C:\ (%systemdrive%) -> Disque fixe # 114 Go (51 Go libre(s) - 45%) [] # NTFS
D:\ -> CD-ROM
E:\ -> CD-ROM
G:\ -> Disque amovible # 8 Go (7 Go libre(s) - 98%) [USB20FD] # FAT32

################## | Processus Stoppés |

Stoppé! c:\Program Files\Microsoft Security Client\MsMpEng.exe (1180)
Stoppé! C:\WINDOWS\system32\spoolsv.exe (1796)
Stoppé! C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe (296)
Stoppé! C:\WINDOWS\Explorer.EXE (448)
Stoppé! C:\Program Files\Java\jre7\bin\jqs.exe (616)
Stoppé! C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (696)
Stoppé! C:\WINDOWS\SOUNDMAN.EXE (1928)
Stoppé! C:\WINDOWS\ALCWZRD.EXE (1916)
Stoppé! C:\Program Files\Orange\Systray\SystrayApp.exe (1976)
Stoppé! C:\Program Files\Microsoft Security Client\msseces.exe (1932)
Stoppé! C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe (188)
Stoppé! C:\WINDOWS\system32\ctfmon.exe (2036)
Stoppé! C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (372)
Stoppé! C:\WINDOWS\system32\rundll32.exe (580)
Stoppé! C:\Program Files\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe (652)
Stoppé! C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe (272)
Stoppé! C:\WINDOWS\system32\nvsvc32.exe (828)
Stoppé! C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe (1276)
Stoppé! C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (2336)
Stoppé! C:\Program Files\Mozilla Firefox\firefox.exe (2880)
Stoppé! C:\Program Files\Windows Live\Messenger\msnmsgr.exe (2972)
Stoppé! C:\Program Files\Windows Live\Messenger\msnmsgr.exe (3020)
Stoppé! C:\Program Files\Windows Live\Messenger\msnmsgr.exe (3124)
Stoppé! C:\Program Files\Skype\Phone\Skype.exe (3220)
Stoppé! C:\WINDOWS\System32\wbem\wmiapsrv.exe (1620)
Stoppé! C:\Program Files\Mozilla Firefox\plugin-container.exe (2664)
Stoppé! C:\Program Files\Windows Live\Contacts\wlcomm.exe (2600)
Stoppé! c:\Program Files\Microsoft Security Client\MpCmdRun.exe (3080)
Stoppé! C:\WINDOWS\system32\wuauclt.exe (2112)

################## | Éléments infectieux |

############################## | UsbFix V 7.106 | [Suppression]

Utilisateur: ernesto (Administrateur) # ERNESTO-
Mis à jour le 12/02/2013 par El Desaparecido
Lancé à 09:54:47 | 14/02/2013

Site Web: https://www.sosvirus.net/
Contact: contact@sosvirus.org

PC: INTEL_ (D915GEV_) (X86-based PC)
CPU: Intel(R) Pentium(R) 4 CPU 2.66GHz (2667)
RAM -> [Total : 2943 | Free : 2620]
BIOS: BIOS Date: 06/09/04 17:22:53 Ver: 08.00.10
BOOT: Fail-safe with network boot

OS: Microsoft Windows XP Édition familiale (5.1.2600 32-Bit) # Service Pack 3
WB: Windows Internet Explorer 8.0.6001.18702

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
FW: Windows FireWall Service [Enabled]

C:\ (%systemdrive%) -> Disque fixe # 114 Go (52 Go libre(s) - 45%) [] # NTFS
D:\ -> CD-ROM
E:\ -> CD-ROM
G:\ -> Disque amovible # 8 Go (7 Go libre(s) - 98%) [USB20FD] # FAT32

################## | Processus Stoppés |

Stoppé! c:\Program Files\Microsoft Security Client\MsMpEng.exe (1052)
Stoppé! C:\WINDOWS\Explorer.EXE (1876)

################## | Éléments infectieux |

(!) Fichiers temporaires supprimés.

################## | Registre |

################## | Mountpoints2 |

################## | Listing |

[30/08/2010 - 13:35:30 | D ] C:\12e86e24eba16d60c14de4
[01/09/2010 - 21:07:12 | D ] C:\3197fe13a764d38af406
[11/11/2010 - 09:39:50 | D ] C:\7956d7ce641362fb0b99
[01/09/2010 - 14:41:28 | D ] C:\8d70dfdc283358035ac279b91077
[01/11/2012 - 11:22:19 | N | 60637] C:\AdwCleaner[R1].txt
[10/02/2013 - 16:10:15 | N | 71170] C:\AdwCleaner[R2].txt
[10/02/2013 - 16:12:49 | N | 71036] C:\AdwCleaner[S1].txt
[12/05/2012 - 08:35:38 | D ] C:\AeriaGames
[30/08/2010 - 08:29:49 | N | 0] C:\AUTOEXEC.BAT
[07/02/2013 - 09:20:36 | N | 216] C:\boot.ini
[24/04/2003 - 13:00:00 | N | 4952] C:\Bootfont.bin
[31/08/2010 - 07:53:04 | D ] C:\CanoScan
[13/02/2013 - 10:11:45 | D ] C:\Config.Msi
[30/08/2010 - 08:29:49 | N | 0] C:\CONFIG.SYS
[24/09/2012 - 08:37:39 | N | 367] C:\content_update_notification.xml
[11/11/2010 - 09:39:50 | D ] C:\de325f5a7a4d64703ef02b1896e04c
[05/09/2012 - 15:55:43 | D ] C:\Documents and Settings
[01/09/2010 - 18:15:47 | D ] C:\e7c87c98144281430820941c306cdc33
[02/09/2010 - 09:16:02 | D ] C:\EPSON
[30/08/2010 - 10:15:18 | D ] C:\Intel
[30/08/2010 - 08:29:49 | N | 0] C:\IO.SYS
[21/09/2010 - 08:30:21 | D ] C:\Media
[30/08/2010 - 08:29:49 | N | 0] C:\MSDOS.SYS
[30/08/2010 - 13:07:30 | RHD ] C:\MSOCache
[30/08/2010 - 11:19:37 | N | 47564] C:\NTDETECT.COM
[30/08/2010 - 11:19:37 | N | 252240] C:\ntldr
[14/02/2013 - 09:53:24 | ASH | 2145386496] C:\pagefile.sys
[11/11/2010 - 09:39:44 | D ] C:\photos isabelle
[08/03/2011 - 11:08:58 | D ] C:\pmw
[11/02/2013 - 20:59:14 | D ] C:\Program Files
[21/05/2012 - 09:56:45 | D ] C:\Program1
[27/10/2011 - 12:08:32 | SHD ] C:\RECYCLER
[30/08/2010 - 08:45:43 | N | 396] C:\RtlSetup.log
[30/08/2010 - 08:54:00 | N | 159] C:\Setup.log
[14/02/2013 - 09:49:21 | N | 608] C:\sti.log
[25/07/2011 - 12:12:35 | SHD ] C:\System Volume Information
[13/02/2013 - 09:44:22 | D ] C:\TEMP
[01/09/2010 - 10:07:29 | D ] C:\TempEI4
[02/05/2012 - 14:16:18 | D ] C:\tiffen
[21/07/2012 - 10:08:29 | D ] C:\Uniblue
[12/02/2013 - 18:57:46 | N | 316940] C:\Update_UsbFix.exe
[14/02/2013 - 10:00:07 | D ] C:\UsbFix
[14/02/2013 - 10:00:27 | A | 6292] C:\UsbFix [Clean 1] ERNESTO-.txt
[13/02/2013 - 11:16:46 | N | 5338] C:\UsbFix [Listing 1 ] ERNESTO-.txt
[13/02/2013 - 11:06:56 | N | 3594] C:\UsbFix [Scan 2] ERNESTO-.txt
[13/02/2013 - 21:15:56 | N | 3938] C:\UsbFix [Scan 3] ERNESTO-.txt
[14/02/2013 - 09:22:34 | D ] C:\WINDOWS
[11/02/2013 - 20:59:41 | D ] C:\ZHP
[01/01/1995 - 01:00:02 | R | 44] E:\Track01.cda
[01/01/1995 - 01:03:26 | R | 44] E:\Track02.cda
[01/01/1995 - 01:06:42 | R | 44] E:\Track03.cda
[01/01/1995 - 01:10:18 | R | 44] E:\Track04.cda
[01/01/1995 - 01:13:55 | R | 44] E:\Track05.cda
[01/01/1995 - 01:16:48 | R | 44] E:\Track06.cda
[01/01/1995 - 01:19:07 | R | 44] E:\Track07.cda
[01/01/1995 - 01:21:55 | R | 44] E:\Track08.cda
[01/01/1995 - 01:26:21 | R | 44] E:\Track09.cda
[01/01/1995 - 01:30:48 | R | 44] E:\Track10.cda
[01/01/1995 - 01:34:28 | R | 44] E:\Track11.cda
[01/01/1995 - 01:38:04 | R | 44] E:\Track12.cda
[01/01/1995 - 01:42:12 | R | 44] E:\Track13.cda
[01/01/1995 - 01:45:35 | R | 44] E:\Track14.cda
[01/01/1995 - 01:49:34 | R | 44] E:\Track15.cda
[01/01/1995 - 01:53:02 | R | 44] E:\Track16.cda
[01/01/1995 - 01:56:40 | R | 44] E:\Track17.cda
[01/01/1995 - 01:59:53 | R | 44] E:\Track18.cda
[01/01/1995 - 01:02:53 | R | 44] E:\Track19.cda
[01/01/1995 - 01:06:15 | R | 44] E:\Track20.cda

################## | Vaccin |

C:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | E.O.F | https://www.sosvirus.net/ |

Réponse 25 / 49

Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318

1/
Il manque juste de vacciner ton disque amovible G!
----------------
Redémarre ton PC en mode normal puis :
(!) Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) suceptible d avoir été infectés sans les ouvrir

* Double clique sur le raccourci UsbFix sur ton Bureau (clique droit avec la souris

:exécuter en tant qu'administrateur pour vista/seven), l'installation se fera

automatiquement

* Clique sur "Vaccination"
* Laisse travailler l'outil

2/
Comment fonctionne ton PC maintenant ?

@+

Réponse 26 / 49

pepegentil Messages postés 200 Statut Membre 2

et bien , j'ai toujours la demande d'analyse à l'ouverture , et au démarrage l'ouverture des pages un peu lentes .

SINON ? RAS ...

merci encore

Réponse 27 / 49

Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318

Salut,
* Tu peux suivre les indications de cette page pour t'aider : https://www.malekal.com/tutorial-otl/

* Télécharge http://www.geekstogo.com/forum/files/file/398-otl-oldtimers-list-it/ sur ton bureau.
(Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)

* Lance OTL
* Sous Personnalisation, copie-colle le texte en gras ci-dessous :

netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%temp%\.exe /s
%SYSTEMDRIVE%\*.exe
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
/md5start
explorer.exe
winlogon.exe
wininit.exe
/md5stop
CREATERESTOREPOINT
nslookup www.google.fr /c

* Clique sur le bouton Analyse.
* Quand le scan est fini, utilise le site http://pjjoint.malekal.com/ pour envoyer les rapports.
Donnes le lien pjjoint ici ensuite pour pouvoir être consultés.

Réponse 28 / 49

pepegentil Messages postés 200 Statut Membre 2

OTL logfile created on: 15/02/2013 21:06:58 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\ernesto\Bureau
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2,87 Gb Total Physical Memory | 1,78 Gb Available Physical Memory | 62,00% Memory free
4,72 Gb Paging File | 3,68 Gb Available in Paging File | 78,02% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 114,48 Gb Total Space | 52,15 Gb Free Space | 45,55% Space Free | Partition Type: NTFS
Drive F: | 2,73 Gb Total Space | 1,16 Gb Free Space | 42,51% Space Free | Partition Type: NTFS
Drive H: | 15,90 Gb Total Space | 0,78 Gb Free Space | 4,90% Space Free | Partition Type: NTFS

Computer Name: ERNESTO- | User Name: ernesto | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========/color

PRC - [2013/02/15 20:51:36 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\ernesto\Bureau\OTL.exe
PRC - [2013/02/06 09:48:22 | 000,917,400 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2013/01/23 16:02:11 | 000,802,304 | ---- | M] (Yuna Software) -- C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe
PRC - [2012/12/14 16:49:28 | 000,682,344 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012/12/14 16:49:28 | 000,512,360 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012/12/14 16:49:28 | 000,398,184 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2012/10/20 20:25:03 | 000,161,768 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2012/10/02 12:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) -- C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
PRC - [2012/09/12 16:25:22 | 000,020,472 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2012/09/12 16:19:44 | 000,947,176 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2012/04/29 09:48:18 | 004,495,872 | ---- | M] (Yuna Software) -- C:\Program Files\Yuna Software\Messenger Plus! for Skype\Messenger Plus! for Skype.exe
PRC - [2012/04/29 09:43:41 | 000,119,296 | ---- | M] (Yuna Software) -- C:\Program Files\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe
PRC - [2008/04/13 18:34:04 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007/09/25 19:08:58 | 000,094,208 | -H-- | M] (France Telecom SA) -- C:\Program Files\Orange\Systray\SystrayApp.exe
PRC - [2007/09/25 18:27:50 | 000,065,536 | ---- | M] (France Telecom SA) -- C:\Program Files\Fichiers communs\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
PRC - [2007/09/25 18:24:56 | 000,090,112 | ---- | M] (France Telecom SA) -- C:\Program Files\Fichiers communs\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
PRC - [2005/05/04 18:01:36 | 002,805,248 | ---- | M] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE
PRC - [2005/05/04 02:43:50 | 000,090,112 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE

[color=#E56717]========== Modules (No Company Name) ==========/color

MOD - [2013/02/09 21:16:43 | 014,586,736 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_149.dll
MOD - [2013/02/06 09:44:58 | 003,023,256 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012/12/18 15:28:24 | 000,301,056 | ---- | M] () -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.FRA
MOD - [2012/04/10 16:35:53 | 000,390,656 | ---- | M] () -- C:\Program Files\Yuna Software\Messenger Plus! for Skype\lame_enc.dll
MOD - [2012/04/10 16:35:43 | 000,370,688 | ---- | M] () -- C:\Program Files\Yuna Software\Messenger Plus! for Skype\libsndfile.dll
MOD - [2012/04/10 16:33:41 | 008,499,712 | ---- | M] () -- C:\Program Files\Yuna Software\Messenger Plus! for Skype\QtGui4.dll
MOD - [2012/04/10 16:30:56 | 000,200,704 | ---- | M] () -- C:\Program Files\Yuna Software\Messenger Plus! for Skype\imageformats\qjpeg4.dll
MOD - [2012/04/10 16:30:47 | 000,026,624 | ---- | M] () -- C:\Program Files\Yuna Software\Messenger Plus! for Skype\imageformats\qgif4.dll
MOD - [2012/04/10 16:30:40 | 000,863,744 | ---- | M] () -- C:\Program Files\Yuna Software\Messenger Plus! for Skype\QtNetwork4.dll
MOD - [2012/04/10 16:26:08 | 002,347,520 | ---- | M] () -- C:\Program Files\Yuna Software\Messenger Plus! for Skype\QtCore4.dll
MOD - [2011/10/04 21:42:36 | 000,086,016 | ---- | M] () -- C:\WINDOWS\system32\custmon32i.dll
MOD - [2011/08/07 14:54:16 | 000,004,096 | ---- | M] () -- C:\Program Files\Yuna Software\Messenger Plus!\Detour32.dll
MOD - [2008/04/13 18:33:32 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2007/08/28 00:59:00 | 001,478,656 | ---- | M] () -- C:\WINDOWS\system32\nview.dll
MOD - [2007/08/28 00:59:00 | 000,466,944 | ---- | M] () -- C:\WINDOWS\system32\nvshell.dll

[color=#E56717]========== Services (SafeList) ==========/color

SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2013/02/09 21:16:53 | 000,251,248 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/02/06 09:48:16 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/01/08 12:53:48 | 000,161,536 | ---- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/12/14 16:49:28 | 000,682,344 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/12/14 16:49:28 | 000,398,184 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012/10/20 20:25:03 | 000,161,768 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2012/10/02 12:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2012/09/12 16:25:22 | 000,020,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2012/04/29 09:43:41 | 000,119,296 | ---- | M] (Yuna Software) [Auto | Running] -- C:\Program Files\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe -- (MsgPlusService)
SRV - [2012/01/18 13:38:28 | 000,155,320 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion)
SRV - [2012/01/04 13:32:36 | 000,718,888 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2007/09/25 18:27:50 | 000,065,536 | ---- | M] (France Telecom SA) [Auto | Running] -- C:\Program Files\Fichiers communs\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe -- (FTRTSVC)
SRV - [2007/05/03 12:31:12 | 000,074,656 | R--- | M] (MicroVision Development, Inc.) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\SureThing Shared\stllssvr.exe -- (stllssvr)
SRV - [2003/07/28 19:28:22 | 000,089,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose)

[color=#E56717]========== Driver Services (SafeList) ==========/color

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | System | Stopped] -- -- (vevvctcx)
DRV - File not found [Kernel | On_Demand | Stopped] -- E:\NTGLM7X.sys -- (SetupNTGLM7X)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | On_Demand | Stopped] -- E:\INSTALL\GMSIPCI.SYS -- (GMSIPCI)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\ernesto\LOCALS~1\Temp\catchme.sys -- (catchme)
DRV - [2013/01/10 10:12:21 | 000,025,200 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc)
DRV - [2013/01/10 10:12:21 | 000,012,400 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt)
DRV - [2012/12/14 16:49:28 | 000,021,104 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2009/12/18 09:58:52 | 000,011,336 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\SystemRequirementsLab\cpudrv.sys -- (cpudrv)
DRV - [2008/08/26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2007/05/11 02:10:50 | 000,034,704 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\blueletaudio.sys -- (BlueletAudio)
DRV - [2007/05/09 00:59:40 | 000,036,496 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btcusb.sys -- (Btcsrusb)
DRV - [2007/03/05 05:00:04 | 000,027,792 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BlueletSCOAudio.sys -- (BlueletSCOAudio)
DRV - [2007/03/05 04:59:04 | 000,018,320 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btnetdrv.sys -- (BT)
DRV - [2007/03/05 04:56:18 | 000,035,600 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\BTHidMgr.sys -- (BTHidMgr)
DRV - [2007/03/05 04:55:12 | 000,020,880 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\vbtenum.sys -- (BTHidEnum)
DRV - [2007/03/05 04:53:18 | 000,044,304 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VcommMgr.sys -- (VcommMgr)
DRV - [2007/03/05 04:52:18 | 000,034,448 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VComm.sys -- (VComm)
DRV - [2006/11/21 21:41:18 | 000,022,416 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\Program Files\IVT Corporation\BlueSoleil\device\Win2k\BTNetFilter.sys -- (BTNetFilter)
DRV - [2006/03/01 18:53:54 | 000,032,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcandis5.sys -- (PCANDIS5)
DRV - [2005/05/05 01:18:26 | 002,951,680 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2005/01/07 16:07:16 | 000,145,920 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Hdaudio.sys -- (HdAudAddService)
DRV - [2004/06/16 06:14:00 | 000,180,480 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
DRV - [2004/06/07 04:43:52 | 000,036,484 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SMBios.sys -- (SMBios)
DRV - [2003/09/23 10:38:34 | 000,034,688 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcampr5.sys -- (PCAMPR5)
DRV - [2003/05/14 03:57:02 | 000,090,357 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\P1110Vid.sys -- (P1110VID)
DRV - [2003/05/02 17:52:18 | 000,033,920 | ---- | M] (Alcor Micro Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sunkfilt.sys -- (SunkFilt)

[color=#E56717]========== Standard Registry (SafeList) ==========/color

[color=#E56717]========== Internet Explorer ==========/color

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search bar = http://www.bing.com/spresults.aspx
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = Reg Error: Value error.
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
IE - HKLM\..\SearchScopes,Backup.Old.DefaultScope = {EEE6C360-6118-11DC-9C72-001320C79847}
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = https://www.bing.com/?scope=web&mkt=fr-FR{searchTerms}&src={referrer:source?}
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = https://www.google.com/webhp?gws_rd=ssl{searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
IE - HKCU\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\SearchURLHook\SearchPageURL.dll ()
IE - HKCU\..\SearchScopes,Backup.Old.DefaultScope = {EEE6C360-6118-11DC-9C72-001320C79847}
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\${searchCLSID}: "URL" = https://www.bing.com/?scope=web&mkt=fr-FR{searchTerms}&src={referrer:source?}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = https://www.bing.com/?scope=web&mkt=fr-FR{searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = https://www.bing.com/?scope=web&mkt=fr-FR{searchTerms}&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========/color

FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://trouve.info/depart.htm"
FF - prefs.js..extensions.enabledAddons: %7BCAFEEFAC-0016-0000-0035-ABCDEFFEDCBA%7D:6.0.35
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:18.0.2
FF - prefs.js..extensions.enabledItems: helperbar@helperbar.com:1.0
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_149.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Documents and Settings\ernesto\Local Settings\Application Data\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\quickprint@hp.com: C:\Program Files\Hewlett-Packard\SmartPrint\QPExtension [2011/10/20 08:26:02 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013/02/06 09:48:25 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013/02/06 09:44:04 | 000,000,000 | ---D | M]

[2010/09/13 20:02:29 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ernesto\Application Data\Mozilla\Extensions
[2010/08/30 20:31:27 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ernesto\Application Data\Mozilla\Extensions\mozswing@mozswing.org
[2013/02/10 16:12:02 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ernesto\Application Data\Mozilla\Firefox\Profiles\98otyjhd.default\extensions
[2013/01/25 20:58:23 | 000,003,488 | ---- | M] () (No name found) -- C:\Documents and Settings\ernesto\Application Data\Mozilla\Firefox\Profiles\98otyjhd.default\extensions\moncompte44000@mon-compte.org.xpi
[2013/01/31 11:04:15 | 000,204,344 | ---- | M] () (No name found) -- C:\Documents and Settings\ernesto\Application Data\Mozilla\Firefox\Profiles\98otyjhd.default\extensions\OneClickDownloader@OneClickDownloader.com.xpi
[2013/02/06 09:43:19 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2013/02/06 09:43:23 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/02/06 09:43:34 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
[2013/02/06 09:48:25 | 000,262,552 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2013/01/11 09:38:21 | 000,001,609 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2012/08/30 19:42:54 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/12/07 09:45:14 | 000,002,035 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2013/01/11 09:38:21 | 000,001,476 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2013/01/11 09:38:21 | 000,001,399 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2012/12/07 09:45:14 | 000,001,169 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml

[color=#E56717]========== Chrome ==========/color

CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.57\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.57\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.57\pdf.dll
CHR - plugin: Skype Click to Call (Enabled) = C:\Documents and Settings\ernesto\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.4.0.11328_0\npSkypeChromePlugin.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Facebook Video Calling Plugin (Enabled) = C:\Documents and Settings\ernesto\Local Settings\Application Data\Facebook\Video\Skype\npFacebookVideoCalling.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U9 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Microsoft Office Live Plug-in for Firefox (Enabled) = C:\Program Files\Microsoft\Office Live\npOLW.dll
CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_149.dll
CHR - plugin: Java Deployment Toolkit 7.0.90.5 (Enabled) = C:\WINDOWS\system32\npDeployJava1.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: Skype Click to Call = C:\Documents and Settings\ernesto\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.4.0.11328_0\
CHR - Extension: Skype Click to Call = C:\Documents and Settings\ernesto\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.4.0.11328_0\

O1 HOSTS File: ([2011/02/20 09:11:06 | 000,000,698 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (HP Smart Print BHO) - {1658D3A1-9E13-4196-A82A-D70D70880F36} - C:\Program Files\Hewlett-Packard\SmartPrint\QuickPrintBHO.dll (Hewlett-Packard)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [AlcWzrd] C:\WINDOWS\ALCWZRD.EXE (RealTek Semicoductor Corp.)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NSU_agent] C:\Program Files\Nokia\Nokia Software Updater\nsu3ui_agent.exe ()
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [PlusService] C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe (Yuna Software)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SystrayORAHSS] C:\Program Files\Orange\Systray\SystrayApp.exe (France Telecom SA)
O4 - HKCU..\Run: [Facebook Update] C:\Documents and Settings\ernesto\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3
O9 - Extra Button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\SmartPrint\HPQuickPrintLauncher.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\SmartPrint\HPQuickPrintLauncher.exe (Hewlett-Packard)
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\PLUGINS\NPDocBox.dll (InterTrust Technologies Corporation, Inc.)
O15 - HKCU\..Trusted Domains: orange.fr ([www] http in Trusted sites)
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab (Checkers Class)
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} http://copainsdavant.linternaute.com/framework/lib/objimageuploader/html_include/5.1.1.0/ImageUploader5.cab (Image Uploader Control)
O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection2.cab (GMNRev Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab (PhotoPickConvert Class)
O16 - DPF: {B60CEFE7-2DD0-4B78-951A-509D951DB1F0} http://www.extrafilm.fr/ExtraFilmUploader6.cab (ExtraFilm Uploader Control)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Java Plug-in 1.6.0_35)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Java Plug-in 1.6.0_35)
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} http://d1ylr6sba64qi3.cloudfront.net/global/bin/srldetect_intel_4.2.2.0.cab (SysInfo Class)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5B43935E-7329-4934-83F3-75A9FB09A0D7}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\livecall - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msnim - No CLSID value found
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\Userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\ernesto\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\ernesto\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/08/30 08:29:49 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2013/02/14 10:31:29 | 000,000,000 | RHSD | M] - C:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2013/02/14 10:31:35 | 000,000,000 | RHSD | M] - F:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2013/02/14 10:31:39 | 000,000,000 | RHSD | M] - H:\Autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe - (Hewlett-Packard Co.)
MsConfig - StartUpFolder: C:^Documents and Settings^ernesto^Menu Démarrer^Programmes^Démarrage^Event Reminder.lnk - C:\pmw\PMREMIND.EXE - ()
MsConfig - StartUpReg: [b]Adobe ARM/b - hkey= - key= - C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
MsConfig - StartUpReg: [b]BitTorrent/b - hkey= - key= - File not found
MsConfig - StartUpReg: [b]Browser Infrastructure Helper/b - hkey= - key= - File not found
MsConfig - StartUpReg: [b]ctfmon.exe/b - hkey= - key= - File not found
MsConfig - StartUpReg: [b]High Definition Audio Property Page Shortcut/b - hkey= - key= - File not found
MsConfig - StartUpReg: [b]HP Software Update/b - hkey= - key= - C:\Program Files\HP\HP Software Update\hpwuSchd2.exe (Hewlett-Packard)
MsConfig - StartUpReg: [b]hpqSRMon/b - hkey= - key= - C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe (Hewlett-Packard)
MsConfig - StartUpReg: [b]MessengerPlusForSkypeService/b - hkey= - key= - C:\Program Files\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe (Yuna Software)
MsConfig - StartUpReg: [b]MSMSGS/b - hkey= - key= - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
MsConfig - StartUpReg: [b]NeroFilterCheck/b - hkey= - key= - File not found
MsConfig - StartUpReg: [b]NvCplDaemon/b - hkey= - key= - File not found
MsConfig - StartUpReg: [b]nwiz/b - hkey= - key= - File not found
MsConfig - StartUpReg: [b]ORAHSSSessionManager/b - hkey= - key= - C:\Program Files\Orange\SessionManager\SessionManager.exe (France Telecom SA)
MsConfig - StartUpReg: [b]PlusService/b - hkey= - key= - C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe (Yuna Software)
MsConfig - StartUpReg: [b]QuickTime Task/b - hkey= - key= - C:\Program Files\QuickTime\qttask.exe (Apple Inc.)
MsConfig - StartUpReg: [b]Skype/b - hkey= - key= - C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
MsConfig - StartUpReg: [b]SunJavaUpdateSched/b - hkey= - key= - C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
MsConfig - StartUpReg: [b]Sunkist2k/b - hkey= - key= - C:\Program Files\Multimedia Card Reader\shwicon2k.exe (Alcor Micro Corp)
MsConfig - StartUpReg: [b]swg/b - hkey= - key= - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
MsConfig - State: "system.ini" - 1
MsConfig - State: "win.ini" - 0
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 2

SafeBootMin: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: MsMpSvc - c:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vds - Service
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: MsMpSvc - c:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: UploadMgr - Service
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Rendu VML (Vector Graphics Rendering)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Liaison de données Dynamic HTML pour Java
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Création avancée
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015C} - Microsoft DirectX
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - Classes Java DirectAnimation
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Dossiers Web
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINDOWS\system32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install
ActiveX: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files\Google\Chrome\Application\24.0.1312.57\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C3C986D6-06B1-43BF-90DD-BE30756C00DE} - RevokedRootsUpdate
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Planificateur de tâches
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Reg Error: Value error.
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE

Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========/color

[2013/02/15 20:51:24 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\ernesto\Bureau\OTL.exe
[2013/02/14 10:31:29 | 000,000,000 | RHSD | C] -- C:\Autorun.inf
[2013/02/14 10:29:10 | 000,000,000 | ---D | C] -- C:\UsbFix
[2013/02/14 10:28:51 | 001,322,562 | ---- | C] (El Desaparecido) -- C:\Documents and Settings\ernesto\Bureau\UsbFix.exe
[2013/02/11 13:50:23 | 000,021,104 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2013/02/11 13:50:22 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2013/02/11 10:46:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ernesto\Local Settings\Application Data\Facebook
[2013/02/10 16:30:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ernesto\Bureau\RK_Quarantine
[2013/02/10 11:00:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ernesto\Bureau\ZHP
[2013/02/10 10:30:27 | 000,000,000 | ---D | C] -- C:\ZHP
[2013/02/06 09:43:05 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2013/02/03 09:23:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Skype
[2013/02/03 09:23:18 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Skype
[2013/01/28 20:44:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ernesto\AppData
[2013/01/25 11:09:20 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsgXP_2k3.dll
[2013/01/25 10:51:41 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusb.dll
[2013/01/25 10:51:40 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusd.dll
[2013/01/25 10:08:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ernesto\Mes documents\Sony
[6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========/color

[2013/02/15 21:25:00 | 000,000,434 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{4F0878BB-FBED-4200-9835-2EBFB852272E}.job
[2013/02/15 21:15:11 | 000,001,002 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013/02/15 20:56:19 | 000,002,265 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Skype.lnk
[2013/02/15 20:51:45 | 000,000,400 | -H-- | M] () -- C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job
[2013/02/15 20:51:36 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\ernesto\Bureau\OTL.exe
[2013/02/15 20:42:16 | 000,001,054 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013/02/15 20:41:55 | 000,000,282 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-1085031214-1677128483-725345543-1004.job
[2013/02/15 20:41:54 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013/02/15 20:41:30 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013/02/15 18:39:00 | 000,001,058 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013/02/15 18:28:00 | 000,000,480 | ---- | M] () -- C:\WINDOWS\tasks\HP Photo Creations Communicator.job
[2013/02/15 16:29:00 | 000,001,162 | ---- | M] () -- C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1085031214-1677128483-725345543-1007UA.job
[2013/02/15 10:51:02 | 000,001,006 | ---- | M] () -- C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1085031214-1677128483-725345543-1004UA.job
[2013/02/15 10:51:00 | 000,000,984 | ---- | M] () -- C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1085031214-1677128483-725345543-1004Core.job
[2013/02/14 21:21:21 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2013/02/14 10:29:09 | 001,322,562 | ---- | M] (El Desaparecido) -- C:\Documents and Settings\ernesto\Bureau\UsbFix.exe
[2013/02/14 09:49:55 | 000,000,440 | ---- | M] () -- C:\Documents and Settings\ernesto\Bureau\Raccourci vers Update_UsbFix.lnk
[2013/02/13 13:29:00 | 000,001,140 | ---- | M] () -- C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1085031214-1677128483-725345543-1007Core.job
[2013/02/13 13:13:38 | 000,215,264 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013/02/13 10:12:13 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2013/02/13 10:05:51 | 000,504,130 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2013/02/13 10:05:51 | 000,435,870 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013/02/13 10:05:51 | 000,082,100 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2013/02/13 10:05:51 | 000,068,766 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013/02/12 18:57:46 | 000,316,940 | ---- | M] () -- C:\Update_UsbFix.exe
[2013/02/11 13:50:47 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes Anti-Malware.lnk
[2013/02/10 09:36:00 | 000,000,290 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-1085031214-1677128483-725345543-1004.job
[2013/02/09 21:16:51 | 000,697,712 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2013/02/09 21:16:49 | 000,074,096 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2013/02/09 11:23:37 | 000,121,344 | ---- | M] () -- C:\Documents and Settings\ernesto\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013/02/07 09:20:36 | 000,000,216 | ---- | M] () -- C:\boot.ini
[2013/02/02 10:43:27 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Google Chrome.lnk
[2013/01/30 11:53:21 | 000,232,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MpSigStub.exe
[2013/01/26 04:55:45 | 000,552,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oleaut32.dll
[2013/01/25 11:09:39 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ggflt_01009.Wdf
[2013/01/25 11:09:38 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ggsemc_01009.Wdf
[2013/01/25 11:09:33 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2013/01/23 10:21:08 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========/color

[2013/02/14 09:49:55 | 000,000,440 | ---- | C] () -- C:\Documents and Settings\ernesto\Bureau\Raccourci vers Update_UsbFix.lnk
[2013/02/12 18:52:09 | 000,316,940 | ---- | C] () -- C:\Update_UsbFix.exe
[2013/02/11 13:50:47 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes Anti-Malware.lnk
[2013/02/11 10:46:32 | 000,001,006 | ---- | C] () -- C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1085031214-1677128483-725345543-1004UA.job
[2013/02/11 10:46:31 | 000,000,984 | ---- | C] () -- C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1085031214-1677128483-725345543-1004Core.job
[2013/02/03 09:23:19 | 000,002,265 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Skype.lnk
[2013/01/25 11:09:39 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ggflt_01009.Wdf
[2013/01/25 11:09:38 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ggsemc_01009.Wdf
[2013/01/25 11:09:33 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2012/11/08 09:51:55 | 000,017,136 | ---- | C] () -- C:\WINDOWS\System32\sasnative32.exe
[2012/07/22 14:52:15 | 000,558,133 | ---- | C] () -- C:\WINDOWS\System32\sqlite3.dll
[2012/07/13 13:46:36 | 000,000,058 | ---- | C] () -- C:\WINDOWS\presntr.ini
[2012/05/21 09:58:51 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\custmon32i.dll
[2012/04/25 13:45:12 | 000,000,184 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\-Zt26VuxSWpnb3Br
[2012/04/25 13:45:12 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\-Zt26VuxSWpnb3B
[2012/04/25 13:44:17 | 000,000,480 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\Zt26VuxSWpnb3B
[2012/02/16 20:41:18 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011/10/18 09:07:44 | 000,128,248 | ---- | C] () -- C:\WINDOWS\hpoins11.dat
[2011/10/18 09:00:39 | 000,011,634 | ---- | C] () -- C:\WINDOWS\hpomdl11.dat
[2011/10/17 08:24:38 | 000,000,145 | ---- | C] () -- C:\WINDOWS\System32\EBPPORT.DAT
[2011/08/06 07:47:40 | 000,048,640 | ---- | C] () -- C:\WINDOWS\catalogSubInstaller.exe
[2011/06/17 08:45:35 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\SoyWeb.dll
[2011/06/05 13:06:46 | 000,000,160 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\~25550628r
[2011/06/05 13:06:46 | 000,000,136 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\~25550628
[2011/06/05 13:06:39 | 000,000,392 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\25550628
[2011/05/03 10:27:48 | 000,000,103 | ---- | C] () -- C:\WINDOWS\P2kRotate.ini
[2011/05/03 09:06:59 | 000,000,027 | ---- | C] () -- C:\WINDOWS\SOFTNOW.INI
[2010/09/03 08:23:55 | 000,121,344 | ---- | C] () -- C:\Documents and Settings\ernesto\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/08/31 09:44:19 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\ernesto\Y9Y9

[color=#E56717]========== ZeroAccess Check ==========/color

[2010/08/31 10:34:10 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008/04/13 18:33:42 | 001,499,136 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\System32\wbem\fastprox.dll -- [2009/02/09 11:53:55 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\System32\wbem\wbemess.dll -- [2008/04/13 18:33:50 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[color=#E56717]========== Custom Scans ==========/color

[color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*. >/color
[2013/01/30 10:56:23 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2010/09/01 19:38:45 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Ahead
[2011/05/22 09:23:10 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Apple
[2011/05/22 09:24:05 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Apple Computer
[2011/09/01 11:21:50 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Avira
[2010/10/01 12:37:48 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Bluetooth
[2012/07/16 08:40:26 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2011/07/15 09:59:03 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Driver Mender
[2011/02/22 10:27:09 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\ESTsoft
[2011/05/04 20:06:32 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\F-Secure
[2010/08/30 15:35:11 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Google
[2010/08/31 08:53:01 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Hewlett-Packard
[2010/08/31 08:49:31 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\HP
[2012/06/02 08:49:21 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\HP Photo Creations
[2010/08/31 08:48:59 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\HP Product Assistant
[2011/07/24 12:43:25 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\iK02300MiDpM02300
[2013/01/10 09:41:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Installations
[2012/10/30 09:52:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2012/06/19 09:21:07 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Messenger Plus!
[2012/05/28 09:41:23 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Messenger Plus! for Skype
[2011/09/01 08:25:36 | 000,000,000 | --SD | M] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2012/05/01 10:31:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Mozilla
[2012/02/13 10:25:21 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\NokiaInstallerCache
[2012/02/13 11:02:49 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\PC Suite
[2011/05/22 08:36:45 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Real
[2013/02/03 09:23:35 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Skype
[2013/01/10 10:02:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sony
[2013/01/25 10:26:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sony Ericsson
[2010/08/30 15:35:51 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Sun
[2012/11/08 09:52:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Systweak
[2011/10/20 08:14:55 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Visan
[2010/08/31 09:00:40 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\WEBREG
[2010/09/11 10:43:52 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2010/08/30 11:12:33 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\WinZip
[2012/07/21 09:57:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{6AD8E59C-250C-4201-B5BA-56ADEF76FF46}
[2012/07/21 09:57:24 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1}

[color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*.exe /s >/color
[2011/11/15 11:29:47 | 003,283,360 | ---- | M] (Uniblue Systems Ltd ) -- C:\Documents and Settings\All Users\Application Data\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1}\bm_installer.exe
[2012/12/03 08:35:28 | 000,352,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\All Users\Application Data\Adobe\ARM\Reader_10.1.4\27485\AcrobatUpdater.exe
[2012/12/03 08:35:28 | 000,946,352 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\All Users\Application Data\Adobe\ARM\Reader_10.1.4\27485\AdobeARM.exe
[2012/12/03 08:35:28 | 000,352,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\All Users\Application Data\Adobe\ARM\Reader_10.1.4\27485\AdobeARMHelp

Réponse 29 / 49

pepegentil Messages postés 200 Statut Membre 2

j'avais aussi ce rapport qui s'est ouvert

OTL Extras logfile created on: 15/02/2013 21:06:58 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\ernesto\Bureau
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2,87 Gb Total Physical Memory | 1,78 Gb Available Physical Memory | 62,00% Memory free
4,72 Gb Paging File | 3,68 Gb Available in Paging File | 78,02% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 114,48 Gb Total Space | 52,15 Gb Free Space | 45,55% Space Free | Partition Type: NTFS
Drive F: | 2,73 Gb Total Space | 1,16 Gb Free Space | 42,51% Space Free | Partition Type: NTFS
Drive H: | 15,90 Gb Total Space | 0,78 Gb Free Space | 4,90% Space Free | Partition Type: NTFS

Computer Name: ERNESTO- | User Name: ernesto | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]

[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- C:\Program Files\Advanced System Protector\filetypehelper.exe -scanunknown "%1"
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[color=#E56717]========== System Restore Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[color=#E56717]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\MSN Messenger\msncall.exe" = C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Orange\Connectivity\ConnectivityManager.exe" = C:\Program Files\Orange\Connectivity\ConnectivityManager.exe:*:enabled:CSS -- (France Telecom SA)
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\MSN Messenger\msncall.exe" = C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare -- (Microsoft Corporation)
"C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard)
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe" = C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth -- (Google)
"C:\Program Files\Google\Google Earth\client\googleearth.exe" = C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth -- (Google)
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe" = C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil -- (IVT Corporation.)
"C:\Program Files\Internet Explorer\iexplore.exe" = C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer -- (Microsoft Corporation)
"C:\Program Files\eMule\emule.exe" = C:\Program Files\eMule\emule.exe:*:Enabled:eMule -- (http://www.emule-project.net)
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent
"C:\WINDOWS\system32\rtcshare.exe" = C:\WINDOWS\system32\rtcshare.exe:*:Enabled:Partage de l'application RTC -- (Microsoft Corporation)
"C:\Program Files\Messenger\msmsgs.exe" = C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger -- (Microsoft Corporation)
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe" = C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" = C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe" = C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe" = C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe:*:Enabled:hpqdia.exe -- ( )
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe:*:Enabled:hpqnrs08.exe -- (Hewlett-Packard Development Company, L.P.)
"C:\Program Files\BitTorrent\BitTorrent.exe" = C:\Program Files\BitTorrent\BitTorrent.exe:*:Enabled:BitTorrent
"C:\Documents and Settings\ernesto\Mes documents\Téléchargements\SweetImSetup.exe" = C:\Documents and Settings\ernesto\Mes documents\Téléchargements\SweetImSetup.exe:*:Enabled:SweetIM Installer
"C:\WINDOWS\system32\msiexec.exe" = C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup -- (Microsoft Corporation)
"C:\Documents and Settings\theo\Local Settings\Application Data\Akamai\netsession_win.exe" = C:\Documents and Settings\theo\Local Settings\Application Data\Akamai\netsession_win.exe:*:Disabled:Akamai NetSession Client -- (Akamai Technologies, Inc.)
"C:\Documents and Settings\theo\Local Settings\Application Data\Facebook\Video\Skype\FacebookVideoCalling.exe" = C:\Documents and Settings\theo\Local Settings\Application Data\Facebook\Video\Skype\FacebookVideoCalling.exe:*:Disabled:Facebook Video Calling -- (Skype Limited)
"C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe" = C:\Program Files\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe:*:Enabled:Update Engine -- ()
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)
"C:\Documents and Settings\ernesto\Local Settings\Application Data\Facebook\Video\Skype\FacebookVideoCalling.exe" = C:\Documents and Settings\ernesto\Local Settings\Application Data\Facebook\Video\Skype\FacebookVideoCalling.exe:*:Enabled:Facebook Video Calling Plugin -- (Skype Limited)

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{069730C2-755A-485B-A205-27A1AAFA836A}" = InstantShareAlert
"{074D482A-0D8B-4ba3-832C-C870F45621BC}" = HP Smart Print 1.0.8.0
"{0F7C2E47-089E-4d23-B9F7-39BE00100776}" = Toolbox
"{12A76360-388E-4B27-ABEB-D5FC5378DD2A}" = HPPhotoSmartPhotobookWebPack1
"{133742BA-6F46-4D3E-85AF-78631D9AD8B8}" = Installation Windows Live
"{13B97BA0-1765-4EBA-8902-C6E30291F67B}" = Multimedia Card Reader
"{172423F9-522A-483A-AD65-03600CE4CA4F}" = Microsoft Works 6-9 Converter
"{17342E3B-0818-4A6F-BFF8-99476605ADD6}" = livebox
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{18669FF9-C8FE-407a-9F70-E674896B1DB4}" = GPBaseService
"{195F2C6C-A343-4b10-B1A4-3F00AB9E9DD9}" = Fax
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1EE04769-91C4-4A06-92B7-FCAFE6BABDD9}" = Galerie de photos Windows Live
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{2376813B-2E5A-4641-B7B3-A0D5ADB55229}" = HPPhotoSmartExpress
"{26A24AE4-039D-4CA4-87B4-2F83216032FF}" = Java(TM) 6 Update 35
"{26A24AE4-039D-4CA4-87B4-2F83217009FF}" = Java 7 Update 9
"{2BC21CD2-8053-406A-80F6-9AB61717B49D}" = ODF Add-in for Microsoft Office
"{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}" = HP Update
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{32E9C1A5-0FDA-4483-987D-DBABF9CC1DD8}" = Microsoft Antimalware Service FR-FR Language Pack
"{34BFB099-07B2-4E95-A673-7362D60866A2}" = PSSWCORE
"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{36FDBE6E-6684-462b-AE98-9A39A1B200CC}" = HPProductAssistant
"{4304BE34-6DDA-46CC-ADAB-77990DC77ED5}" = Magellan RoadMate Tools
"{438BB9B4-65FE-4626-91D9-A8F57B18001D}" = Bluesoleil2.6.0.8 Release 070517
"{445B183D-F4F1-45C8-B9DB-F11355CA657B}" = Windows Live Messenger
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CACFCD9-F71B-413A-8DF5-1A6419D5CDC6}" = Cards_Calendar_OrderGift_DoMorePlugout
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype(TM) 6.1
"{50779A29-834E-4E36-BBEB-B7CABC67A825}" = Microsoft Security Client FR-FR Language Pack
"{5109C064-813E-4e87-B0DE-C8AF7B5BC02B}" = SmartWebPrintingOC
"{52A69E11-7CEB-4a7d-9607-68BA4F39A89B}" = DeviceDiscovery
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
"{5ACE69F0-A3E8-44eb-88C1-0A841E700180}" = TrayApp
"{5DD76286-9BE7-4894-A990-E905E91AC818}" = Windows Live Mail
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{679EC478-3FF9-4987-B2FF-C2C2B27532A2}" = DocProc
"{68763C27-235D-4165-A961-FDEA228CE504}" = AiOSoftwareNPI
"{687FEF8A-8597-40b4-832C-297EA3F35817}" = BufferChm
"{6909F917-5499-482e-9AA1-FAD06A99F231}" = Toolbox
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6994491D-D491-48F1-AE1F-E179C1FFFC2F}" = HP Photosmart Essential
"{6B437F94-056F-4791-AF2C-0D10E2706AF0}" = PanoStandAlone
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7130468A-F53F-4698-8C09-A339EA3B05E6}" = Nokia Software Updater
"{736C803C-DD3B-4015-BC51-AFB9E67B9076}" = Readme
"{76810709-A7D3-468D-9167-A1780C1E766C}" = Windows Live FolderShare
"{7E7B7865-6C80-4373-8BC1-C2EB9431F9DE}" = ProductContextNPI
"{80533B67-C407-485D-8B5D-63BB8ED9D878}" = Scan
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{8777AC6D-89F9-4793-8266-DE406F343E89}" = QFolder
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A85DEAD-7C1F-4368-881C-72AC74CB2E91}" = UnloadSupport
"{8CE4E6E9-9D55-43FB-9DDB-688C976BFC05}" = Unload
"{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
"{9011040C-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90120000-0020-040C-0000-0000000FF1CE}" = Module de compatibilité pour Microsoft Office System 2007
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95120000-0122-040C-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{98EABC7F-B1A1-43A5-B505-5B4EC3908DCD}" = Microsoft Security Client
"{996512CF-F35B-48DE-9291-557FA5316967}" = ScannerCopy
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A07840FC-CE63-4CB8-8030-EF4B9805925A}" = HPPhotoSmartDiscLabel_PaperLabel
"{A0B9F8DF-C949-45ed-9808-7DC5C0C19C81}" = Status
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A2AA4204-C05A-4013-888A-AD153139297F}" = PC Connectivity Solution
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A39A90AC-D59C-4215-B04A-19574DA96132}" = Messenger Plus! Community Smartbar
"{A57025CC-5F2E-4D01-B387-06DB10500D43}" = Nokia Connectivity Cable Driver
"{A5AB9D5E-52E2-440e-A3ED-9512E253C81A}" = SolutionCenter
"{A80FA752-C491-4ED9-ABF0-4278563160B2}" = 32 Bit HP CIO Components Installer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1036-7B44-AA1000000001}" = Adobe Reader X (10.1.5) - Français
"{ADFB9653-F44C-460C-BF58-189CC552DFFE}" = hpphotosmartdisclabelplugin
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{AF7FC1CA-79DF-43c3-90A3-33EFEB9294CE}" = AIO_Scan
"{B056DB05-BF39-49A0-AAB8-C8FA49D9660C}" = Micro Application - PrintPratic 3
"{B3B487E7-6171-4376-9074-B28082CEB504}" = Windows Live Call
"{B4E91E95-A5BA-4E50-A465-DB7EFEB176E8}" = HPPhotoSmartDiscLabel_PrintOnDisc
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B8DBED1E-8BC3-4d08-B94A-F9D7D88E9BBF}" = HPSSupply
"{B92C5909-1D37-4C51-8397-A28BB28E5DC3}" = Facebook Video Calling 1.2.0.287
"{b9be267c-e096-4cce-a4fd-f24eec004938}" = PS_AIO_02_ProductContext
"{BAD0FA60-09CF-4411-AE6A-C2844C8812FA}" = HP Photosmart Essential 2.5
"{BDBE2F3E-42DB-4d4a-8CB1-19BA765DBC6C}" = HP Photosmart, Officejet and Deskjet 7.0.A
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{c4549405-195f-4450-8865-6be9dc5ad136}" = PS_AIO_02_Software_Min
"{C708333C-B1B9-43be-B797-49FEC7A8D15B}" = C5200
"{C8753E28-2680-49BF-BD48-DD38FD086EFE}" = AiO_Scan_CDA
"{C950420B-4182-49EA-850A-A6A2ABF06C6B}" = Marvell Miniport Driver
"{CAE7D1D9-3794-4169-B4DD-964ADBC534EE}" = HP Product Detection
"{CCB9B81A-167F-4832-B305-D2A0430840B3}" = WebReg
"{cd0b9359-b716-4fd0-8e0a-09b3e312e8a4}" = PS_AIO_02_Software
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240BD}" = WinZip 14.5
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{cef78f86-19a8-4bbd-91fa-e9b6b2d37348}" = C5200_Help
"{D2E0F0CC-6BE0-490b-B08B-9267083E34C9}" = MarketResearch
"{D99A8E3A-AE5A-4692-8B19-6F16D454E240}" = Destination Component
"{DB0A4FCC-87C7-4A59-95BE-B5C2F0D8CDD4}" = System Requirements Lab for Intel
"{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}" = Assistant de connexion Windows Live
"{DD3C88A0-C53C-41D0-A21B-6D021981D23E}" = HPPhotoSmartDiscLabelContent1
"{DD920AB6-2DB9-48B7-8052-0A4F0C4277BC}" = MarketingReg
"{E08DC77E-D09A-4e36-8067-D6DBBCC5F8DC}" = VideoToolkit01
"{E0A1559B-9886-11D4-8D06-0050DA284A39}" = Scan Manager 5.2
"{E3B64CC5-C011-40C0-92BC-7316CD5E5688}" = Microsoft_VC100_CRT_SP1_x86
"{E63E34A7-E552-412B-9E40-FD6FC5227ABA}_is1" = Uniblue RegistryBooster 2010
"{E6A9B4BB-666A-42BF-9AE4-D906C6FD2D6A}" = MioMore Desktop 2
"{EA23971F-2CEE-48FC-B64D-7F74A6EF90F0}" = XMLinst
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony PC Companion 2.10.115
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F157460F-720E-482f-8625-AD7843891E5F}" = InstantShareDevicesMFC
"{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}" = Microsoft Office Live Add-in 1.5
"{F42CD69D-E393-47c8-B2CD-B139C4ADA9A8}" = Copy
"{F6076EF9-08E1-442F-B6A2-BFB61B295A14}" = Fax_CDA
"{FBB980B0-63F8-4B48-8D65-90F1D9F81D9F}" = NewCopy_CDA
"{ORAHSS}.UninstallSuite" = Orange - Logiciels Internet
"504244733D18C8F63FF584AEB290E3904E791693" = Package de pilotes Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"Adobe Acrobat 5.0" = Adobe Acrobat 5.0
"Adobe ActiveShare" = Adobe ActiveShare 1.3
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe PhotoDeluxe Home Edition 4.0" = Adobe PhotoDeluxe Home Edition 4.0
"Ad-Remover" = Ad-Remover par C_XX
"ALUpdate_is1" = ALTools Update
"ALZip_is1" = ALZip
"ArcSoft PhotoBase" = ArcSoft PhotoBase
"ArcSoft PhotoStudio 2000" = ArcSoft PhotoStudio 2000
"Canon ScanGear Toolbox 3.0" = Canon ScanGear Toolbox 3.0
"Creative PC-CAM Center" =
"Creative PD1110" = Creative WebCam NX Driver (1.02.01.0827)
"Creative WebCam Monitor" =
"eMule" = eMule
"Google Chrome" = Google Chrome
"HP Photo Creations" = HP Photo Creations
"ie8" = Windows Internet Explorer 8
"InstallShield_{13B97BA0-1765-4EBA-8902-C6E30291F67B}" = Multimedia Card Reader
"Intelli-studio" = SAMSUNG Intelli-studio
"Kazoo Player" = Kazoo Player
"KLiteCodecPack_is1" = K-Lite Codec Pack 2.77 Basic
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.70.0.1100
"Messenger Plus!" = Messenger Plus!
"Messenger Plus! for Skype" = Messenger Plus! for Skype
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft Security Client" = Microsoft Security Essentials
"Mozilla Firefox 18.0.2 (x86 fr)" = Mozilla Firefox 18.0.2 (x86 fr)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NeroMultiInstaller!UninstallKey" = Nero Suite
"Noël, Nouvel An et fêtes_is1" = Noël, Nouvel An et fêtes
"NVIDIA Drivers" = NVIDIA Drivers
"OmniPagePro9.0DeinstKey" = OmniPage Pro 9.0
"PhotoStudio_4281508C_4DA1_4d4e_81EB_725D55EC30DC_is1" = Systweak PhotoStudio 2.1
"Print@Auchan" = Print@Auchan
"PrintMaster Gold 4.00" = PrintMaster Gold 4.00
"RegClean Pro_is1" = RegClean Pro
"Uniblue RegistryBooster" = Uniblue RegistryBooster
"Update Engine" = Sony Ericsson Update Engine
"Usbfix" = UsbFix By El Desaparecido
"Vittalia" = Vittalia Installer
"VLC media player" = VideoLAN VLC media player 0.8.6c
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Lecteur Windows Media 11
"Windows XP Service" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Installation Windows Live
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01009" = Microsoft User-Mode Driver Framework Feature Pack 1.9
"ZHPDiag_is1" = ZHPDiag 1.3.5

[color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 15/02/2013 16:08:07 | Computer Name = ERNESTO- | Source = nview_info | ID = 11141121
Description =

Error - 15/02/2013 16:09:58 | Computer Name = ERNESTO- | Source = nview_info | ID = 11141121
Description =

Error - 15/02/2013 16:09:58 | Computer Name = ERNESTO- | Source = nview_info | ID = 11141121
Description =

Error - 15/02/2013 16:09:58 | Computer Name = ERNESTO- | Source = nview_info | ID = 11141121
Description =

Error - 15/02/2013 16:09:58 | Computer Name = ERNESTO- | Source = nview_info | ID = 11141121
Description =

Error - 15/02/2013 16:09:58 | Computer Name = ERNESTO- | Source = nview_info | ID = 11141121
Description =

Error - 15/02/2013 16:09:58 | Computer Name = ERNESTO- | Source = nview_info | ID = 11141121
Description =

Error - 15/02/2013 16:09:58 | Computer Name = ERNESTO- | Source = nview_info | ID = 11141121
Description =

Error - 15/02/2013 16:10:03 | Computer Name = ERNESTO- | Source = nview_info | ID = 11141121
Description =

Error - 15/02/2013 16:10:03 | Computer Name = ERNESTO- | Source = nview_info | ID = 11141121
Description =

[ Application Events ]
Error - 15/02/2013 16:08:07 | Computer Name = ERNESTO- | Source = nview_info | ID = 11141121
Description =

Error - 15/02/2013 16:09:58 | Computer Name = ERNESTO- | Source = nview_info | ID = 11141121
Description =

Error - 15/02/2013 16:09:58 | Computer Name = ERNESTO- | Source = nview_info | ID = 11141121
Description =

Error - 15/02/2013 16:09:58 | Computer Name = ERNESTO- | Source = nview_info | ID = 11141121
Description =

Error - 15/02/2013 16:09:58 | Computer Name = ERNESTO- | Source = nview_info | ID = 11141121
Description =

Error - 15/02/2013 16:09:58 | Computer Name = ERNESTO- | Source = nview_info | ID = 11141121
Description =

Error - 15/02/2013 16:09:58 | Computer Name = ERNESTO- | Source = nview_info | ID = 11141121
Description =

Error - 15/02/2013 16:09:58 | Computer Name = ERNESTO- | Source = nview_info | ID = 11141121
Description =

Error - 15/02/2013 16:10:03 | Computer Name = ERNESTO- | Source = nview_info | ID = 11141121
Description =

Error - 15/02/2013 16:10:03 | Computer Name = ERNESTO- | Source = nview_info | ID = 11141121
Description =

[ System Events ]
Error - 15/02/2013 04:22:24 | Computer Name = ERNESTO- | Source = Ntfs | ID = 262199
Description = La structure du système de fichiers sur le disque est endommagée et
inutilisable. Veuillez exécuter l'utilitaire chkdsk sur le volume H:.

Error - 15/02/2013 04:22:24 | Computer Name = ERNESTO- | Source = Ntfs | ID = 262199
Description = La structure du système de fichiers sur le disque est endommagée et
inutilisable. Veuillez exécuter l'utilitaire chkdsk sur le volume F:.

Error - 15/02/2013 04:22:24 | Computer Name = ERNESTO- | Source = Ntfs | ID = 262199
Description = La structure du système de fichiers sur le disque est endommagée et
inutilisable. Veuillez exécuter l'utilitaire chkdsk sur le volume H:.

Error - 15/02/2013 04:24:29 | Computer Name = ERNESTO- | Source = Service Control Manager | ID = 7022
Description = Le service Service HP CUE DeviceDiscovery est en attente de démarrage.

Error - 15/02/2013 10:40:25 | Computer Name = ERNESTO- | Source = NIC1394 | ID = 5002
Description = Carte réseau 1394 : a déterminé que la carte réseau ne fonctionne
pas correctement.

Error - 15/02/2013 10:42:51 | Computer Name = ERNESTO- | Source = Service Control Manager | ID = 7022
Description = Le service Service HP CUE DeviceDiscovery est en attente de démarrage.

Error - 15/02/2013 12:39:48 | Computer Name = ERNESTO- | Source = NIC1394 | ID = 5002
Description = Carte réseau 1394 : a déterminé que la carte réseau ne fonctionne
pas correctement.

Error - 15/02/2013 12:41:14 | Computer Name = ERNESTO- | Source = Service Control Manager | ID = 7022
Description = Le service Service HP CUE DeviceDiscovery est en attente de démarrage.

Error - 15/02/2013 15:41:42 | Computer Name = ERNESTO- | Source = NIC1394 | ID = 5002
Description = Carte réseau 1394 : a déterminé que la carte réseau ne fonctionne
pas correctement.

Error - 15/02/2013 15:43:48 | Computer Name = ERNESTO- | Source = Service Control Manager | ID = 7022
Description = Le service Service HP CUE DeviceDiscovery est en attente de démarrage.

< End of report >

Réponse 30 / 49

Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318

Bonjour,
Est ce que tu peux héberger le premier rapport (incomplet) comme suit :
* Rends toi sur pjjoint.malekal.com
* Clique sur le bouton Parcourir
* Sélectionne le fichier que tu veux héberger et clique sur Ouvrir
* Clique sur le bouton Envoyer
* Un message de confirmation s'affiche (L'upload a réussi ! - Le lien à transmettre à vos correspondant pour visualiser le fichier est : https://pjjoint.malekal.com/files.php?id=df5ea299241015

* Copie le lien dans ta prochaine réponse.

Réponse 31 / 49

pepegentil Messages postés 200 Statut Membre 2

https://pjjoint.malekal.com/files.php?id=20130216_b514f10k6h9

Réponse 32 / 49

Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318

Salut,
1/
Relance OTL
- Sous XP double-clic sur l'icône pour lancer l'outil.
- Sous Vista/Seven clic-droit sur l'icône et choisir "Exécuter en tant qu'administrateur" dans le menu contextuel.
* Dans la partie "Personnalisation", copie/colle les instructions suivantes :

:OTL
IE - HKLM\..\SearchScopes,Backup.Old.DefaultScope = {EEE6C360-6118-11DC-9C72-001320C79847}
IE - HKCU\..\SearchScopes,Backup.Old.DefaultScope = {EEE6C360-6118-11DC-9C72-001320C79847}
[2012/04/25 13:45:12 | 000,000,184 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\-Zt26VuxSWpnb3Br
[2012/04/25 13:45:12 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\-Zt26VuxSWpnb3B
[2012/04/25 13:44:17 | 000,000,480 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\Zt26VuxSWpnb3B
[2011/06/05 13:06:46 | 000,000,160 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\~25550628r
[2011/06/05 13:06:46 | 000,000,136 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\~25550628
[2011/06/05 13:06:39 | 000,000,392 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\25550628
[2011/07/24 12:43:25 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\iK02300MiDpM02300

:Commands
[purity]
[emptytemp]

* Clique sur le bouton Correction.
* Patiente pendant le travail de l'outil, il doit ensuite redémarrer le PC.
* Accepte en cliquant sur OK.
* Le rapport indiquant les actions réalisées par OTL doit s'ouvrir spontanément.

Tu peux le retrouver le fichier à la racine du disque : C:\_OTL\MovedFiles

2/
Dans le rapport extras, il existe ces types de messages :
[ System Events ]
Error - 15/02/2013 04:22:24 | Computer Name = ERNESTO- | Source = Ntfs | ID = 262199
Description = La structure du système de fichiers sur le disque est endommagée et
inutilisable. Veuillez exécuter l'utilitaire chkdsk sur le volume H:.

Error - 15/02/2013 04:22:24 | Computer Name = ERNESTO- | Source = Ntfs | ID = 262199
Description = La structure du système de fichiers sur le disque est endommagée et
inutilisable. Veuillez exécuter l'utilitaire chkdsk sur le volume F:.

Error - 15/02/2013 04:24:29 | Computer Name = ERNESTO- | Source = Service Control Manager | ID = 7022
Description = Le service Service HP CUE DeviceDiscovery est en attente de démarrage.

Error - 15/02/2013 10:40:25 | Computer Name = ERNESTO- | Source = NIC1394 | ID = 5002
Description = Carte réseau 1394 : a déterminé que la carte réseau ne fonctionne
pas correctement.

Error - 15/02/2013 15:41:42 | Computer Name = ERNESTO- | Source = NIC1394 | ID = 5002
Description = Carte réseau 1394 : a déterminé que la carte réseau ne fonctionne
pas correctement.
===========================

* Ouvre ton menu démarrer

-> Si tu es sur XP, ouvre exécuter, tape cmd et valide par pression sur la touche Enter

-> Sur Vista/Seven, dans le champ "Recherche" tape cmd , sur le résultat qui apparait, clic droit > exécuter en tant qu'administrateur

3/

* Ouvre ton menu démarrer

-> Si tu es sur XP, ouvre exécuter, tape cmd et valide par pression sur la touche Enter

-> Sur Vista/Seven, dans le champ "Recherche" tape cmd , sur le résultat qui apparait, clic droit > exécuter en tant qu'administrateur

* Dans la fenêtre noire, tape sfc /scannow et laisse Windows réparer les fichiers.

4/
Redémarre ton PC en me disant s'il existe encore d'autres problèmes ?

¤¤¤ Le meilleur remède pour tous les problèmes, c'est la patience.... ¤¤¤

Réponse 33 / 49

pepegentil Messages postés 200 Statut Membre 2

il me demande d'inserer mon cd windows xp et il ne veut pas le reconnaitre.

les dossiers necessaires au fonctionnement de windows doivent être copiés dans le dossier dll cache .

au debut il demande windows xp professionel et ensuite xp familiale .

la bouteille à l'encre
.
et il bloque l'avancement .

dur dur de comprendre

Réponse 34 / 49

Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318

Bonsoir,
Il existe des problèmes Pour ton Windows!
--------------------
* Télécharge WinChk (d'Xplode) sur ton bureau
* Double clique sur winchk.exe
* Clique sur le bouton Exécuter
* Patiente durant la création du rapport..
* Celui-ci s'affiche à l'écran à la fin de l'analyse. Si rien n'apparaît, le rapport est présent à la racine de votre disque dur : C:\WinChk.txt
* Poste le rapport sur le forum.

¤¤¤ Le meilleur remède pour tous les problèmes, c'est la patience.... ¤¤¤

Réponse 35 / 49

pepegentil Messages postés 200 Statut Membre 2

Rapport WinChk v2.0 - 17/02/2013 à 09:19
Mis à jour le 08/07/11 à 16h par Xplode
Système d'exploitation : Microsoft Windows XP (32 bits) [version 5.1.2600] Service Pack 3
Nom d'utilisateur : ernesto - ERNESTO- (Administrateur)
Exécuté depuis : C:\Documents and Settings\ernesto\Mes documents\Téléchargements\winchk0.exe

¤¤¤¤¤ Recherche | Registre ¤¤¤¤¤

... OK !

¤¤¤¤¤ Recherche | AntiWPA ¤¤¤¤¤

... OK !

¤¤¤¤¤ Recherche | KMS ¤¤¤¤¤

... OK !

¤¤¤¤¤ Recherche | Fichiers suspect ¤¤¤¤¤

... OK !

¤¤¤¤¤ Vérification | Fichiers système ¤¤¤¤¤

... OK !

¤¤¤¤¤ Vérification | Fichier Hosts ¤¤¤¤¤

... OK !

¤¤¤¤¤ Vérification | Windows Update ¤¤¤¤¤

¤ Paramètres : Les mises à jour automatiques sont activées et sont installées automatiquement.

¤ Dernière mise à jour détectée le 2013-02-17 à 08:13:51
¤ Dernière mise à jour téléchargée le 2013-02-13 à 08:21:25
¤ Dernière mise à jour installée le 2013-02-13 à 09:23:16

########## EOF - "C:\WinChk.txt" - [1072 octets] ##########

Réponse 36 / 49

Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318

Bonjour,
Il manque le rapport OTL : ici en 1/

@+

Réponse 37 / 49

pepegentil Messages postés 200 Statut Membre 2

et bien

grrrrrrrrr

j'ai essayé de refaire la manoeuvre , mais blocage d'écran , rien ne se passe , et je ne peux en sortir que par un reset ..

snifffffffffff

!!!!!!!!!!!!!!

Réponse 38 / 49

Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318

Bonjour,

Redémarre ton PC puis tiens moi au courant...

@+

Réponse 39 / 49

pepegentil Messages postés 200 Statut Membre 2

fait plusieurs fois hier , aussi , ce matin en arrêtant l'anti virus , mais quand je clique sur correction , j'ai un message de l'a v disant , microsoft essential security à été arreté , cliquer sur demarrer ...

je n'ai même pas le temps de le faire , il devient blanc , et plus de main .....

Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318

Ce n'est pas la peine de lancer se script d'OTL pour le moment!
ESt ce que ton antivirus fonctionne correctement ?

Réponse 40 / 49

pepegentil Messages postés 200 Statut Membre 2

microsift security essential fonctionne .normalement ...il est vrai que j'ai rarement des alertes , mais c'est tout ce que je peux dire

Tcbhn a rencontrer un probleme

49 réponses

Votre réponse

Discussions similaires

Newsletters