Un petit Coup de Main :)
DriZzt
-
DriZzt -
DriZzt -
Bonjour, voila
J'ai donc fait un petit scan générale de mon ordinateur je vous envoie le rapport dss :
Si vous pouvez i jetez un coup d'oeil sa serai Cool :
Deckard's System Scanner v20071014.68
Run by Navone on 2008-05-28 17:08:26
Computer is in Normal Mode.
--------------------------------------------------------------------------------
-- System Restore --------------------------------------------------------------
System Restore is disabled; attempting to re-enable...success.
-- Last 5 Restore Point(s) --
9: 2008-04-08 16:39:18 UTC - RP9 - Le KB917734_WMP10 pour Lecteur Windows Media 10 a été installé.
8: 2008-04-08 16:39:07 UTC - RP8 - Le KB911565 pour Lecteur Windows Media 10 a été installé.
7: 2008-04-08 16:38:57 UTC - RP7 - Installed Windows Media Format SDK KB902344.
6: 2008-04-08 16:38:48 UTC - RP6 - Installed Windows Media Player 10 KB888656.
5: 2008-04-08 16:37:48 UTC - RP5 - Installed Lecteur Windows Media 10
-- First Restore Point --
1: 2008-04-08 16:31:53 UTC - RP1 - Le KB885894 pour Windows XP a été installé.
Backed up registry hives.
Performed disk cleanup.
-- HijackThis Clone ------------------------------------------------------------
Emulating logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2008-05-28 17:09:34
Platform: Windows XP Service Pack 2 (5.01.2600)
MSIE: Internet Explorer (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Navone\Bureau\dss.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/toolbar/ie8/sidebar.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/search?q=%s
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/toolbar/ie8/sidebar.html
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" -H
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_01] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Srchasst" (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_02] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\msagent" (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_03] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Help\Tours" (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_04] cmd.exe /c md "%USERPROFILE%\Local Settings\Temp" (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_05] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_06] rundll32 advpack.dll,LaunchINFSection nlite.inf,nLiteReg (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_07] rundll32 advpack.dll,LaunchINFSection nlite.inf,S (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_01] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Srchasst" (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_02] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\msagent" (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_03] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Help\Tours" (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_04] cmd.exe /c md "%USERPROFILE%\Local Settings\Temp" (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_05] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_06] rundll32 advpack.dll,LaunchINFSection nlite.inf,nLiteReg (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_07] rundll32 advpack.dll,LaunchINFSection nlite.inf,S (User 'NETWORK SERVICE')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O15 - ProtocolDefaults: Unknown 'about:' protocol is in Restricted Zone (HKLM)
O17 - HKLM\SYSTEM\CCS\Services\Tcpip\..\{22DEBB8D-A925-4AA4-91C9-1B2DB8CCC2F8}: NameServer = 192.168.1.1
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\system32\TuneUpDefragService.exe
--
End of file - 6122 bytes
-- File Associations -----------------------------------------------------------
[COLOR=red].bat - batfile - DefaultIcon - %userprofile%\Mes documents\ICONES\XPCoccinelle\2_BAT-CMD.ico,0/COLOR
[COLOR=red].cmd - cmdfile - DefaultIcon - %userprofile%\Mes documents\ICONES\XPCoccinelle\2_BAT-CMD.ico,0/COLOR
[COLOR=red].inf - inffile - DefaultIcon - %userprofile%\Mes documents\ICONES\XPCoccinelle\INF.ico,0/COLOR
[COLOR=red].reg - regfile - DefaultIcon - %userprofile%\Mes documents\ICONES\XPCoccinelle\REG.ico,0/COLOR
[COLOR=red].txt - txtfile - DefaultIcon - %userprofile%\Mes documents\ICONES\XPCoccinelle\58_TXT.ico,0/COLOR
-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------
R0 giveio - c:\windows\system32\giveio.sys
R0 speedfan - c:\windows\system32\speedfan.sys <Not Verified; Windows (R) 2000 DDK provider; Windows (R) 2000 DDK driver>
-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------
All services whitelisted.
-- Device Manager: Disabled ----------------------------------------------------
No disabled devices found.
-- Scheduled Tasks -------------------------------------------------------------
2008-05-28 17:04:18 506 --a------ C:\WINDOWS\Tasks\Maintenance en 1 clic.job
-- Files created between 2008-04-28 and 2008-05-28 -----------------------------
2008-05-28 16:54:26 0 d-------- C:\Program Files\SpeedFan
2008-05-28 03:32:05 0 d-------- C:\Documents and Settings\All Users\Application Data\Avg8
2008-05-27 00:16:29 0 d-------- C:\Documents and Settings\Navone\Application Data\AVGTOOLBAR
2008-05-26 23:56:08 229376 --a------ C:\Documents and Settings\Invité\NTUSER.DAT
2008-05-26 23:56:08 0 d--h----- C:\Documents and Settings\Invité\Local Settings
2008-05-26 23:56:08 0 d---s---- C:\Documents and Settings\Invité\Cookies
2008-05-26 23:56:08 0 d-------- C:\Documents and Settings\Invité\Application Data
2008-05-26 23:56:08 0 d---s---- C:\Documents and Settings\Invité\Application Data\Microsoft
2008-05-25 18:49:42 0 d-------- C:\Program Files\Atari
2008-05-13 19:46:47 0 d-------- C:\Documents and Settings\Navone\Application Data\Command & Conquer 3 Les guerres du Tiberium
2008-05-13 19:11:40 0 d-------- C:\Program Files\Electronic Arts
2008-05-12 22:57:19 0 d-------- C:\Documents and Settings\Navone\Application Data\DivX
2008-04-30 22:20:42 56 --ah----- C:\WINDOWS\system32\ezsidmv.dat
2008-04-30 22:20:42 0 d-------- C:\Documents and Settings\Navone\Application Data\skypePM
2008-04-30 22:18:50 0 d-------- C:\Documents and Settings\Navone\Application Data\Skype
2008-04-30 22:18:24 0 d-------- C:\Program Files\Skype
2008-04-30 22:18:23 0 d-------- C:\Program Files\Fichiers communs\Skype
2008-04-30 22:18:12 0 d-------- C:\Documents and Settings\All Users\Application Data\Skype
2008-04-30 22:02:50 53248 -ra------ C:\WINDOWS\system32\InstMed.exe
2008-04-30 22:02:28 0 d-------- C:\Program Files\Fichiers communs\Logitech
2008-04-30 22:01:19 0 d-------- C:\Program Files\Logitech
2008-04-30 21:55:06 0 d-------- C:\Documents and Settings\Navone\Application Data\AdobeUM
2008-04-29 00:47:16 0 d-------- C:\Program Files\DivX
-- Find3M Report ---------------------------------------------------------------
2008-05-28 03:42:00 0 d-------- C:\Program Files\Windows Media Connect 2
2008-05-28 03:35:46 0 d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-05-27 01:42:34 0 d-------- C:\Program Files\DAEMON Tools Lite
2008-05-25 18:49:44 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-04-30 22:18:23 0 d-------- C:\Program Files\Fichiers communs
2008-04-13 17:44:11 0 d-------- C:\Program Files\Windows Live
2008-04-13 17:43:53 0 d--hs--c- C:\Program Files\Fichiers communs\WindowsLiveInstaller
2008-04-10 21:58:41 0 d-------- C:\Program Files\Valve
2008-04-10 18:17:05 0 d-------- C:\Documents and Settings\Navone\Application Data\Media Player Classic
2008-04-10 18:16:44 0 d-------- C:\Program Files\K-Lite Codec Pack
2008-04-09 22:24:15 0 d-------- C:\Documents and Settings\Navone\Application Data\Macromedia
2008-04-09 22:24:15 0 d-------- C:\Documents and Settings\Navone\Application Data\Adobe
2008-04-09 22:23:40 1160 --a------ C:\WINDOWS\mozver.dat
2008-04-09 00:45:14 0 d-------- C:\Program Files\THQ
2008-04-09 00:31:14 0 d-------- C:\Program Files\C-Media 3D Audio
2008-04-08 23:51:47 0 d-------- C:\Program Files\Fichiers communs\InstallShield
2008-04-08 23:38:50 43520 --a------ C:\WINDOWS\system32\CmdLineExt03.dll
2008-04-08 23:19:47 0 d-------- C:\Documents and Settings\Navone\Application Data\WinRAR
2008-04-08 22:26:52 0 d-------- C:\Documents and Settings\Navone\Application Data\TuneUp Software
2008-04-08 22:26:46 0 d-------- C:\Program Files\TuneUp Utilities 2008
2008-04-08 22:26:23 0 d-------- C:\Program Files\Fichiers communs\Wise Installation Wizard
2008-04-08 22:12:07 0 d-------- C:\Documents and Settings\Navone\Application Data\DAEMON Tools
2008-04-08 21:55:22 0 d-------- C:\Documents and Settings\Navone\Application Data\Talkback
2008-04-08 21:55:18 0 --a------ C:\WINDOWS\nsreg.dat
2008-04-08 21:55:15 0 d-------- C:\Documents and Settings\Navone\Application Data\Mozilla
2008-04-08 20:44:09 0 d-------- C:\Documents and Settings\Navone\Application Data\Desktopicon
2008-04-08 20:04:35 0 d-------- C:\Program Files\Fichiers communs\ODBC
2008-04-08 20:04:32 0 d-------- C:\Program Files\Fichiers communs\SpeechEngines
2008-04-08 20:04:03 62 --ahs---- C:\Documents and Settings\Navone\Application Data\desktop.ini
2008-04-08 18:53:46 0 d-------- C:\Program Files\Sunbelt Software
2008-04-08 18:52:38 0 d-------- C:\Documents and Settings\Navone\Application Data\Malwarebytes
2008-04-08 18:42:36 0 d-------- C:\Documents and Settings\Navone\Application Data\Identities
2008-04-08 18:41:43 0 d-------- C:\Program Files\Java
2008-04-08 18:41:21 0 d-------- C:\Program Files\Fichiers communs\Java
2008-04-08 18:40:33 0 d-------- C:\Program Files\Fichiers communs\Adobe
2008-04-08 18:38:30 0 d-------- C:\Program Files\Windows Media Components
2008-04-08 18:38:29 0 d-------- C:\Program Files\WMV9_VCM
2008-04-08 18:36:29 467620 --a------ C:\WINDOWS\system32\perfh00C.dat
2008-04-08 18:36:29 75696 --a------ C:\WINDOWS\system32\perfc00C.dat
2008-04-08 18:31:23 0 d-------- C:\Program Files\JEUX
2008-04-08 18:31:19 0 d-------- C:\Program Files\UTILS
2008-04-08 18:17:57 0 d-------- C:\Program Files\microsoft frontpage
2008-04-08 18:16:47 0 -rahs---- C:\MSDOS.SYS
2008-04-08 18:16:47 0 -rahs---- C:\IO.SYS
2008-04-08 18:16:47 0 --a------ C:\CONFIG.SYS
2008-04-08 18:16:47 0 --a------ C:\AUTOEXEC.BAT
2008-04-08 18:15:10 0 d--h----- C:\Program Files\WindowsUpdate
2008-04-08 18:14:32 0 d-------- C:\Program Files\Fichiers communs\MSSoap
2008-04-08 18:14:27 0 d-------- C:\Program Files\Movie Maker
2008-04-08 18:13:33 21892 --a------ C:\WINDOWS\system32\emptyregdb.dat
2008-04-08 18:12:56 0 d-------- C:\Program Files\MSN Gaming Zone
2008-04-08 18:12:48 0 d-------- C:\Program Files\Windows NT
2008-03-31 23:25:48 823296 --a------ C:\WINDOWS\system32\divx_xx0c.dll <Not Verified; DivX, Inc.; DivX®>
2008-03-31 23:25:48 823296 --a------ C:\WINDOWS\system32\divx_xx07.dll <Not Verified; DivX, Inc.; DivX®>
2008-03-31 23:25:46 802816 --a------ C:\WINDOWS\system32\divx_xx11.dll <Not Verified; DivX, Inc.; DivX?>
2008-03-31 23:25:46 831488 --a------ C:\WINDOWS\system32\divx_xx0a.dll
2008-03-31 23:25:46 682496 --a------ C:\WINDOWS\system32\DivX.dll <Not Verified; DivX, Inc.; DivX®>
2008-03-24 19:52:00 1626112 --a------ C:\WINDOWS\system32\nwiz.exe
2008-03-24 19:52:00 1019904 --a------ C:\WINDOWS\system32\nvwimg.dll
2008-03-24 19:52:00 1703936 --a------ C:\WINDOWS\system32\nvwdmcpl.dll
2008-03-24 19:52:00 466944 --a------ C:\WINDOWS\system32\nvshell.dll
2008-03-24 19:52:00 286720 --a------ C:\WINDOWS\system32\nvnt4cpl.dll
2008-03-24 19:52:00 1482752 --a------ C:\WINDOWS\system32\nview.dll
2008-03-24 19:52:00 1339392 --a------ C:\WINDOWS\system32\nvdspsch.exe
2008-03-24 19:52:00 442368 --a------ C:\WINDOWS\system32\nvappbar.exe
2008-03-24 19:52:00 425984 --a------ C:\WINDOWS\system32\keystone.exe
2008-03-21 22:30:08 3596288 --a------ C:\WINDOWS\system32\qt-dx331.dll
2008-03-21 22:28:54 196608 --a------ C:\WINDOWS\system32\dtu100.dll <Not Verified; DivX, Inc.; DivX, Inc. dtu100>
2008-03-21 22:28:54 81920 --a------ C:\WINDOWS\system32\dpl100.dll <Not Verified; DivX, Inc.; DivX, Inc. dpl100>
2008-03-21 22:28:20 12288 --a------ C:\WINDOWS\system32\DivXWMPExtType.dll
2008-03-04 12:33:18 7680 --a------ C:\WINDOWS\system32\ff_vfw.dll
-- Registry Dump ---------------------------------------------------------------
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"UnlockerAssistant"="C:\Program Files\Unlocker\UnlockerAssistant.exe" [01/03/2008 07:10]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [24/03/2008 19:52]
"nwiz"="nwiz.exe" [24/03/2008 19:52 C:\WINDOWS\system32\nwiz.exe]
"Cmaudio"="cmicnfg.cpl" []
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [24/03/2008 19:52]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [28/01/2008 11:43]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"SynchronousMachineGroupPolicy"=0 (0x0)
"SynchronousUserGroupPolicy"=0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoRemoteRecursiveEvents"=1 (0x1)
"ForceClassicControlPanel"=1 (0x1)
"NoSimpleStartMenu"=0 (0x0)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoStrCmpLogical"=1 (0x1)
"NoSaveSettings"=0 (0x0)
"NoTrayItemsDisplay"=0 (0x0)
"NoToolbarsOnTaskbar"=0 (0x0)
"NoResolveTrack"=0 (0x0)
"NoResolveSearch"=0 (0x0)
"NoNetworkConnections"=0 (0x0)
"NoRun"=0 (0x0)
"NoSMHelp"=0 (0x0)
"NoRecentDocsMenu"=0 (0x0)
"NoFind"=0 (0x0)
"NoSMMyPictures"=0 (0x0)
"NoRecentDocsHistory"=0 (0x0)
"NoStartMenuMFUprogramsList"=0 (0x0)
"NoUserNameInStartMenu"=0 (0x0)
"NoStartMenuMorePrograms"=0 (0x0)
"ClearRecentDocsOnExit"=0 (0x0)
"MaxRecentDocs"=15 (0xf)
"NoInstrumentation"=0 (0x0)
"MemCheckBoxInRunDlg"=1 (0x1)
"NoSMBalloonTip"=0 (0x0)
"DisallowCpl"=1 (0x1)
"NoLowDiskSpaceChecks"=1 (0x1)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowCpl]
"1"=Polices
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
SecurityProviders msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
"LogitechSoftwareUpdate"="C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
"DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
"Skype"="C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
"Steam"="c:\program files\valve\steam\steam.exe" -silent
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"LVCOMSX"=C:\WINDOWS\system32\LVCOMSX.EXE
"LogitechVideoRepair"=C:\Program Files\Logitech\Video\ISStart.exe
"LogitechVideoTray"=C:\Program Files\Logitech\Video\LogiTray.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d927c42e-0587-11dd-b339-806d6172696f}]
AutoRun\command- D:\Bin\assetup.exe
-- Hosts -----------------------------------------------------------------------
127.0.0.1 .supercocklol.com
127.0.0.1 www..webloyalty.com
127.0.0.1 007guard.com
127.0.0.1 www.007guard.com
127.0.0.1 008i.com
127.0.0.1 008k.com
127.0.0.1 www.008k.com
127.0.0.1 00hq.com
127.0.0.1 www.00hq.com
127.0.0.1 010402.com
8541 more entries in hosts file.
-- End of Deckard's System Scanner: finished at 2008-05-28 17:15:45 ------------
J'ai donc fait un petit scan générale de mon ordinateur je vous envoie le rapport dss :
Si vous pouvez i jetez un coup d'oeil sa serai Cool :
Deckard's System Scanner v20071014.68
Run by Navone on 2008-05-28 17:08:26
Computer is in Normal Mode.
--------------------------------------------------------------------------------
-- System Restore --------------------------------------------------------------
System Restore is disabled; attempting to re-enable...success.
-- Last 5 Restore Point(s) --
9: 2008-04-08 16:39:18 UTC - RP9 - Le KB917734_WMP10 pour Lecteur Windows Media 10 a été installé.
8: 2008-04-08 16:39:07 UTC - RP8 - Le KB911565 pour Lecteur Windows Media 10 a été installé.
7: 2008-04-08 16:38:57 UTC - RP7 - Installed Windows Media Format SDK KB902344.
6: 2008-04-08 16:38:48 UTC - RP6 - Installed Windows Media Player 10 KB888656.
5: 2008-04-08 16:37:48 UTC - RP5 - Installed Lecteur Windows Media 10
-- First Restore Point --
1: 2008-04-08 16:31:53 UTC - RP1 - Le KB885894 pour Windows XP a été installé.
Backed up registry hives.
Performed disk cleanup.
-- HijackThis Clone ------------------------------------------------------------
Emulating logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2008-05-28 17:09:34
Platform: Windows XP Service Pack 2 (5.01.2600)
MSIE: Internet Explorer (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Navone\Bureau\dss.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/toolbar/ie8/sidebar.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/search?q=%s
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/toolbar/ie8/sidebar.html
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" -H
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_01] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Srchasst" (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_02] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\msagent" (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_03] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Help\Tours" (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_04] cmd.exe /c md "%USERPROFILE%\Local Settings\Temp" (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_05] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_06] rundll32 advpack.dll,LaunchINFSection nlite.inf,nLiteReg (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_07] rundll32 advpack.dll,LaunchINFSection nlite.inf,S (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_01] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Srchasst" (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_02] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\msagent" (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_03] rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Help\Tours" (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_04] cmd.exe /c md "%USERPROFILE%\Local Settings\Temp" (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_05] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_06] rundll32 advpack.dll,LaunchINFSection nlite.inf,nLiteReg (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_07] rundll32 advpack.dll,LaunchINFSection nlite.inf,S (User 'NETWORK SERVICE')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O15 - ProtocolDefaults: Unknown 'about:' protocol is in Restricted Zone (HKLM)
O17 - HKLM\SYSTEM\CCS\Services\Tcpip\..\{22DEBB8D-A925-4AA4-91C9-1B2DB8CCC2F8}: NameServer = 192.168.1.1
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\system32\TuneUpDefragService.exe
--
End of file - 6122 bytes
-- File Associations -----------------------------------------------------------
[COLOR=red].bat - batfile - DefaultIcon - %userprofile%\Mes documents\ICONES\XPCoccinelle\2_BAT-CMD.ico,0/COLOR
[COLOR=red].cmd - cmdfile - DefaultIcon - %userprofile%\Mes documents\ICONES\XPCoccinelle\2_BAT-CMD.ico,0/COLOR
[COLOR=red].inf - inffile - DefaultIcon - %userprofile%\Mes documents\ICONES\XPCoccinelle\INF.ico,0/COLOR
[COLOR=red].reg - regfile - DefaultIcon - %userprofile%\Mes documents\ICONES\XPCoccinelle\REG.ico,0/COLOR
[COLOR=red].txt - txtfile - DefaultIcon - %userprofile%\Mes documents\ICONES\XPCoccinelle\58_TXT.ico,0/COLOR
-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------
R0 giveio - c:\windows\system32\giveio.sys
R0 speedfan - c:\windows\system32\speedfan.sys <Not Verified; Windows (R) 2000 DDK provider; Windows (R) 2000 DDK driver>
-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------
All services whitelisted.
-- Device Manager: Disabled ----------------------------------------------------
No disabled devices found.
-- Scheduled Tasks -------------------------------------------------------------
2008-05-28 17:04:18 506 --a------ C:\WINDOWS\Tasks\Maintenance en 1 clic.job
-- Files created between 2008-04-28 and 2008-05-28 -----------------------------
2008-05-28 16:54:26 0 d-------- C:\Program Files\SpeedFan
2008-05-28 03:32:05 0 d-------- C:\Documents and Settings\All Users\Application Data\Avg8
2008-05-27 00:16:29 0 d-------- C:\Documents and Settings\Navone\Application Data\AVGTOOLBAR
2008-05-26 23:56:08 229376 --a------ C:\Documents and Settings\Invité\NTUSER.DAT
2008-05-26 23:56:08 0 d--h----- C:\Documents and Settings\Invité\Local Settings
2008-05-26 23:56:08 0 d---s---- C:\Documents and Settings\Invité\Cookies
2008-05-26 23:56:08 0 d-------- C:\Documents and Settings\Invité\Application Data
2008-05-26 23:56:08 0 d---s---- C:\Documents and Settings\Invité\Application Data\Microsoft
2008-05-25 18:49:42 0 d-------- C:\Program Files\Atari
2008-05-13 19:46:47 0 d-------- C:\Documents and Settings\Navone\Application Data\Command & Conquer 3 Les guerres du Tiberium
2008-05-13 19:11:40 0 d-------- C:\Program Files\Electronic Arts
2008-05-12 22:57:19 0 d-------- C:\Documents and Settings\Navone\Application Data\DivX
2008-04-30 22:20:42 56 --ah----- C:\WINDOWS\system32\ezsidmv.dat
2008-04-30 22:20:42 0 d-------- C:\Documents and Settings\Navone\Application Data\skypePM
2008-04-30 22:18:50 0 d-------- C:\Documents and Settings\Navone\Application Data\Skype
2008-04-30 22:18:24 0 d-------- C:\Program Files\Skype
2008-04-30 22:18:23 0 d-------- C:\Program Files\Fichiers communs\Skype
2008-04-30 22:18:12 0 d-------- C:\Documents and Settings\All Users\Application Data\Skype
2008-04-30 22:02:50 53248 -ra------ C:\WINDOWS\system32\InstMed.exe
2008-04-30 22:02:28 0 d-------- C:\Program Files\Fichiers communs\Logitech
2008-04-30 22:01:19 0 d-------- C:\Program Files\Logitech
2008-04-30 21:55:06 0 d-------- C:\Documents and Settings\Navone\Application Data\AdobeUM
2008-04-29 00:47:16 0 d-------- C:\Program Files\DivX
-- Find3M Report ---------------------------------------------------------------
2008-05-28 03:42:00 0 d-------- C:\Program Files\Windows Media Connect 2
2008-05-28 03:35:46 0 d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-05-27 01:42:34 0 d-------- C:\Program Files\DAEMON Tools Lite
2008-05-25 18:49:44 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-04-30 22:18:23 0 d-------- C:\Program Files\Fichiers communs
2008-04-13 17:44:11 0 d-------- C:\Program Files\Windows Live
2008-04-13 17:43:53 0 d--hs--c- C:\Program Files\Fichiers communs\WindowsLiveInstaller
2008-04-10 21:58:41 0 d-------- C:\Program Files\Valve
2008-04-10 18:17:05 0 d-------- C:\Documents and Settings\Navone\Application Data\Media Player Classic
2008-04-10 18:16:44 0 d-------- C:\Program Files\K-Lite Codec Pack
2008-04-09 22:24:15 0 d-------- C:\Documents and Settings\Navone\Application Data\Macromedia
2008-04-09 22:24:15 0 d-------- C:\Documents and Settings\Navone\Application Data\Adobe
2008-04-09 22:23:40 1160 --a------ C:\WINDOWS\mozver.dat
2008-04-09 00:45:14 0 d-------- C:\Program Files\THQ
2008-04-09 00:31:14 0 d-------- C:\Program Files\C-Media 3D Audio
2008-04-08 23:51:47 0 d-------- C:\Program Files\Fichiers communs\InstallShield
2008-04-08 23:38:50 43520 --a------ C:\WINDOWS\system32\CmdLineExt03.dll
2008-04-08 23:19:47 0 d-------- C:\Documents and Settings\Navone\Application Data\WinRAR
2008-04-08 22:26:52 0 d-------- C:\Documents and Settings\Navone\Application Data\TuneUp Software
2008-04-08 22:26:46 0 d-------- C:\Program Files\TuneUp Utilities 2008
2008-04-08 22:26:23 0 d-------- C:\Program Files\Fichiers communs\Wise Installation Wizard
2008-04-08 22:12:07 0 d-------- C:\Documents and Settings\Navone\Application Data\DAEMON Tools
2008-04-08 21:55:22 0 d-------- C:\Documents and Settings\Navone\Application Data\Talkback
2008-04-08 21:55:18 0 --a------ C:\WINDOWS\nsreg.dat
2008-04-08 21:55:15 0 d-------- C:\Documents and Settings\Navone\Application Data\Mozilla
2008-04-08 20:44:09 0 d-------- C:\Documents and Settings\Navone\Application Data\Desktopicon
2008-04-08 20:04:35 0 d-------- C:\Program Files\Fichiers communs\ODBC
2008-04-08 20:04:32 0 d-------- C:\Program Files\Fichiers communs\SpeechEngines
2008-04-08 20:04:03 62 --ahs---- C:\Documents and Settings\Navone\Application Data\desktop.ini
2008-04-08 18:53:46 0 d-------- C:\Program Files\Sunbelt Software
2008-04-08 18:52:38 0 d-------- C:\Documents and Settings\Navone\Application Data\Malwarebytes
2008-04-08 18:42:36 0 d-------- C:\Documents and Settings\Navone\Application Data\Identities
2008-04-08 18:41:43 0 d-------- C:\Program Files\Java
2008-04-08 18:41:21 0 d-------- C:\Program Files\Fichiers communs\Java
2008-04-08 18:40:33 0 d-------- C:\Program Files\Fichiers communs\Adobe
2008-04-08 18:38:30 0 d-------- C:\Program Files\Windows Media Components
2008-04-08 18:38:29 0 d-------- C:\Program Files\WMV9_VCM
2008-04-08 18:36:29 467620 --a------ C:\WINDOWS\system32\perfh00C.dat
2008-04-08 18:36:29 75696 --a------ C:\WINDOWS\system32\perfc00C.dat
2008-04-08 18:31:23 0 d-------- C:\Program Files\JEUX
2008-04-08 18:31:19 0 d-------- C:\Program Files\UTILS
2008-04-08 18:17:57 0 d-------- C:\Program Files\microsoft frontpage
2008-04-08 18:16:47 0 -rahs---- C:\MSDOS.SYS
2008-04-08 18:16:47 0 -rahs---- C:\IO.SYS
2008-04-08 18:16:47 0 --a------ C:\CONFIG.SYS
2008-04-08 18:16:47 0 --a------ C:\AUTOEXEC.BAT
2008-04-08 18:15:10 0 d--h----- C:\Program Files\WindowsUpdate
2008-04-08 18:14:32 0 d-------- C:\Program Files\Fichiers communs\MSSoap
2008-04-08 18:14:27 0 d-------- C:\Program Files\Movie Maker
2008-04-08 18:13:33 21892 --a------ C:\WINDOWS\system32\emptyregdb.dat
2008-04-08 18:12:56 0 d-------- C:\Program Files\MSN Gaming Zone
2008-04-08 18:12:48 0 d-------- C:\Program Files\Windows NT
2008-03-31 23:25:48 823296 --a------ C:\WINDOWS\system32\divx_xx0c.dll <Not Verified; DivX, Inc.; DivX®>
2008-03-31 23:25:48 823296 --a------ C:\WINDOWS\system32\divx_xx07.dll <Not Verified; DivX, Inc.; DivX®>
2008-03-31 23:25:46 802816 --a------ C:\WINDOWS\system32\divx_xx11.dll <Not Verified; DivX, Inc.; DivX?>
2008-03-31 23:25:46 831488 --a------ C:\WINDOWS\system32\divx_xx0a.dll
2008-03-31 23:25:46 682496 --a------ C:\WINDOWS\system32\DivX.dll <Not Verified; DivX, Inc.; DivX®>
2008-03-24 19:52:00 1626112 --a------ C:\WINDOWS\system32\nwiz.exe
2008-03-24 19:52:00 1019904 --a------ C:\WINDOWS\system32\nvwimg.dll
2008-03-24 19:52:00 1703936 --a------ C:\WINDOWS\system32\nvwdmcpl.dll
2008-03-24 19:52:00 466944 --a------ C:\WINDOWS\system32\nvshell.dll
2008-03-24 19:52:00 286720 --a------ C:\WINDOWS\system32\nvnt4cpl.dll
2008-03-24 19:52:00 1482752 --a------ C:\WINDOWS\system32\nview.dll
2008-03-24 19:52:00 1339392 --a------ C:\WINDOWS\system32\nvdspsch.exe
2008-03-24 19:52:00 442368 --a------ C:\WINDOWS\system32\nvappbar.exe
2008-03-24 19:52:00 425984 --a------ C:\WINDOWS\system32\keystone.exe
2008-03-21 22:30:08 3596288 --a------ C:\WINDOWS\system32\qt-dx331.dll
2008-03-21 22:28:54 196608 --a------ C:\WINDOWS\system32\dtu100.dll <Not Verified; DivX, Inc.; DivX, Inc. dtu100>
2008-03-21 22:28:54 81920 --a------ C:\WINDOWS\system32\dpl100.dll <Not Verified; DivX, Inc.; DivX, Inc. dpl100>
2008-03-21 22:28:20 12288 --a------ C:\WINDOWS\system32\DivXWMPExtType.dll
2008-03-04 12:33:18 7680 --a------ C:\WINDOWS\system32\ff_vfw.dll
-- Registry Dump ---------------------------------------------------------------
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"UnlockerAssistant"="C:\Program Files\Unlocker\UnlockerAssistant.exe" [01/03/2008 07:10]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [24/03/2008 19:52]
"nwiz"="nwiz.exe" [24/03/2008 19:52 C:\WINDOWS\system32\nwiz.exe]
"Cmaudio"="cmicnfg.cpl" []
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [24/03/2008 19:52]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [28/01/2008 11:43]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"SynchronousMachineGroupPolicy"=0 (0x0)
"SynchronousUserGroupPolicy"=0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoRemoteRecursiveEvents"=1 (0x1)
"ForceClassicControlPanel"=1 (0x1)
"NoSimpleStartMenu"=0 (0x0)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoStrCmpLogical"=1 (0x1)
"NoSaveSettings"=0 (0x0)
"NoTrayItemsDisplay"=0 (0x0)
"NoToolbarsOnTaskbar"=0 (0x0)
"NoResolveTrack"=0 (0x0)
"NoResolveSearch"=0 (0x0)
"NoNetworkConnections"=0 (0x0)
"NoRun"=0 (0x0)
"NoSMHelp"=0 (0x0)
"NoRecentDocsMenu"=0 (0x0)
"NoFind"=0 (0x0)
"NoSMMyPictures"=0 (0x0)
"NoRecentDocsHistory"=0 (0x0)
"NoStartMenuMFUprogramsList"=0 (0x0)
"NoUserNameInStartMenu"=0 (0x0)
"NoStartMenuMorePrograms"=0 (0x0)
"ClearRecentDocsOnExit"=0 (0x0)
"MaxRecentDocs"=15 (0xf)
"NoInstrumentation"=0 (0x0)
"MemCheckBoxInRunDlg"=1 (0x1)
"NoSMBalloonTip"=0 (0x0)
"DisallowCpl"=1 (0x1)
"NoLowDiskSpaceChecks"=1 (0x1)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowCpl]
"1"=Polices
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
SecurityProviders msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
"LogitechSoftwareUpdate"="C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
"DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
"Skype"="C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
"Steam"="c:\program files\valve\steam\steam.exe" -silent
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"LVCOMSX"=C:\WINDOWS\system32\LVCOMSX.EXE
"LogitechVideoRepair"=C:\Program Files\Logitech\Video\ISStart.exe
"LogitechVideoTray"=C:\Program Files\Logitech\Video\LogiTray.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d927c42e-0587-11dd-b339-806d6172696f}]
AutoRun\command- D:\Bin\assetup.exe
-- Hosts -----------------------------------------------------------------------
127.0.0.1 .supercocklol.com
127.0.0.1 www..webloyalty.com
127.0.0.1 007guard.com
127.0.0.1 www.007guard.com
127.0.0.1 008i.com
127.0.0.1 008k.com
127.0.0.1 www.008k.com
127.0.0.1 00hq.com
127.0.0.1 www.00hq.com
127.0.0.1 010402.com
8541 more entries in hosts file.
-- End of Deckard's System Scanner: finished at 2008-05-28 17:15:45 ------------
Configuration: Windows XP Firefox 2.0.0.14
A voir également:
- Un petit Coup de Main :)
- Coup d'un soir avis - Forum Réseaux sociaux
- Petit 1 comme ² ✓ - Forum Windows
- Comment écrire un chiffre en petit caractè ✓ - Forum Bureautique
- Trier du plus petit au plus grand excel - Guide
- Petit point vert snap ✓ - Forum Snapchat
1 réponse
Voila la suite
Deckard's System Scanner v20071014.68
Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------
-- System Information ----------------------------------------------------------
Microsoft Windows XP Professionnel (build 2600) SP 2.0
Architecture: X86; Language: French
CPU 0: Intel(R) Pentium(R) 4 CPU 2.60GHz
CPU 1: Intel(R) Pentium(R) 4 CPU 2.60GHz
Percentage of Memory in Use: 24%
Physical Memory (total/avail): 1535.48 MiB / 1155.63 MiB
Pagefile Memory (total/avail): 3434.43 MiB / 3216.9 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1930.02 MiB
A: is Removable (No Media)
C: is Fixed (NTFS) - 114.48 GiB total, 40.65 GiB free.
D: is CDROM (No Media)
E: is Fixed (Unformatted) - 0 GiB total, 0 GiB free.
F: is CDROM (No Media)
\\.\PHYSICALDRIVE1 - Maxtor 6B200P0 - 189.92 GiB - 1 partition
\PARTITION0 - Système de fichiers installable - 189.91 GiB - E:
\\.\PHYSICALDRIVE0 - Maxtor 6Y120L0 - 114.49 GiB - 1 partition
\PARTITION0 (bootable) - Système de fichiers installable - 114.48 GiB - C:
-- Security Center -------------------------------------------------------------
AUOptions is disabled.
Windows Internal Firewall is disabled.
FirstRunDisabled is set.
Unable to create WMI object.
-- Environment Variables -------------------------------------------------------
ALLUSERSPROFILE=C:\Documents and Settings\All Users
APPDATA=C:\Documents and Settings\Navone\Application Data
CLIENTNAME=Console
CommonProgramFiles=C:\Program Files\Fichiers communs
COMPUTERNAME=XPSP2-0181848AE
ComSpec=C:\WINDOWS\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Documents and Settings\Navone
LOGONSERVER=\\XPSP2-0181848AE
NUMBER_OF_PROCESSORS=2
OS=Windows_NT
Path=C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 15 Model 2 Stepping 9, GenuineIntel
PROCESSOR_LEVEL=15
PROCESSOR_REVISION=0209
ProgramFiles=C:\Program Files
PROMPT=$P$G
SESSIONNAME=Console
SystemDrive=C:
SystemRoot=C:\WINDOWS
TEMP=C:\DOCUME~1\Navone\LOCALS~1\Temp
TMP=C:\DOCUME~1\Navone\LOCALS~1\Temp
USERDOMAIN=XPSP2-0181848AE
USERNAME=Navone
USERPROFILE=C:\Documents and Settings\Navone
windir=C:\WINDOWS
-- User Profiles ---------------------------------------------------------------
Navone [I](admin)/I
Invité [I](guest)/I
-- Add/Remove Programs ---------------------------------------------------------
--> C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
--> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player ActiveX --> C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 7.0.8 - Français --> MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70800000002}
Archiveur WinRAR --> C:\Program Files\WinRAR\uninstall.exe
BloodRayne 2 Demo --> "C:\Program Files\Valve\Steam\steam.exe" steam://uninstall/3850
C-Media 3D Audio --> C:\WINDOWS\CMIUnInstall.exe
Codeur Windows Media Série 9 --> msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Codeur Windows Media Série 9 --> MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Command & Conquer 3 --> MsiExec.exe /I{B0C30E93-D3D9-4F04-A2AC-54749B573275}
Correctif Windows XP - KB867282 --> C:\WINDOWS\$NtUninstallKB867282$\spuninst\spuninst.exe
Correctif Windows XP - KB885894 --> C:\WINDOWS\$NtUninstallKB885894$\spuninst\spuninst.exe
Dawn of War - Soulstorm --> "C:\Program Files\InstallShield Installation Information\{20533183-D42D-4261-A125-956736FBEA8C}\setup.exe" -runfromtemp -l0x040c -removeonly
Dawn Of War - Winter Assault --> MsiExec.exe /X{DD8408E9-9421-484F-979D-DB6361E3E828}
DawnOfWar --> C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\10\INTEL3~1\IDriver.exe /M{362D5167-9716-44BE-89FD-BF9EB6EF814B}
DivX Codec --> C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DivX Converter --> C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
DivX Player --> C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
DivX Web Player --> C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
Half-Life(R) 2 --> MsiExec.exe /I{D45EC259-4A19-4656-B588-C2C360DD18EA}
Hotfix for Windows Media Format SDK (KB902344) --> "C:\WINDOWS\$NtUninstallKB902344$\spuninst\spuninst.exe"
J2SE Runtime Environment 5.0 Update 7 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150070}
K-Lite Codec Pack 3.8.5 Full --> "C:\Program Files\K-Lite Codec Pack\unins000.exe"
Logiciel QuickCam de Logitech --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C43048A9-742C-4DAD-90D2-E3B53C9DB825}\setup.exe" -l0x40c
Macromedia Flash Player 8 Plugin --> MsiExec.exe /X{E3D278BD-FC97-4F87-BB1F-689AE0CB9122}
Macromedia Shockwave Player --> MsiExec.exe /X{838A1BC9-95CA-4880-9BE3-2A7D23600A2B}
Malwarebytes' Anti-Malware --> "C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Microsoft Office PowerPoint Viewer 2003 --> MsiExec.exe /X{90AF040C-6000-11D3-8CFE-0150048383C9}
Microsoft Visual C++ 2005 Redistributable --> MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Windows Media Video 9 VCM --> RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmv9vcm.inf, Uninstall
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565) --> "C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734) --> "C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB913433) --> C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB913433.inf
Mise à jour de sécurité pour Windows XP (KB917953) --> "C:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe"
Mozilla Firefox (2.0.0.14) --> C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Neverwinter Nights 2 --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F20C1251-1D0A-4944-B2AE-678581B33B19}\SETUP.exe" -l0x40c -removeonly
NVIDIA Drivers --> C:\WINDOWS\system32\nvuninst.exe UninstallGUI
Programme de gestion Camera de Logitech® --> "C:\Program Files\Fichiers communs\Logitech\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT
Skype™ 3.8 --> MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}
SpeedFan (remove only) --> "C:\Program Files\SpeedFan\uninstall.exe"
Spybot - Search & Destroy --> "C:\Program Files\Spybot - Search & Destroy\unins000.exe"
Steam(TM) --> MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
Sunbelt Personal Firewall --> MsiExec.exe /X{BFD080F6-3BF0-40E1-9507-9CA969C35870}
Team Fortress 2 --> "C:\Program Files\Valve\Steam\steam.exe" steam://uninstall/440
TuneUp Utilities 2008 --> MsiExec.exe /I{5888428E-699C-4E71-BF71-94EE06B497DA}
Unlocker 1.8.6 --> C:\Program Files\Unlocker\uninst.exe
Windows Live installer --> MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
Windows Live Messenger --> MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
-- Application Event Log -------------------------------------------------------
Event Record #/Type560 / Error
Event Submitted/Written: 05/28/2008 05:14:19 PM
Event ID/Source: 8 / crypt32
Event Description:
Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : Cette opération s'est terminée car le délai d'attente a expiré.
Event Record #/Type559 / Error
Event Submitted/Written: 05/28/2008 05:13:33 PM
Event ID/Source: 8 / crypt32
Event Description:
Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : Cette connexion réseau n'existe pas.
Event Record #/Type558 / Error
Event Submitted/Written: 05/28/2008 05:13:33 PM
Event ID/Source: 8 / crypt32
Event Description:
Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : Cette opération s'est terminée car le délai d'attente a expiré.
Event Record #/Type539 / Success
Event Submitted/Written: 05/27/2008 03:13:38 PM
Event ID/Source: 12001 / usnjsvc
Event Description:
The Messenger Sharing USN Journal Reader service started successfully.
Event Record #/Type513 / Success
Event Submitted/Written: 05/26/2008 05:33:13 PM
Event ID/Source: 12001 / usnjsvc
Event Description:
The Messenger Sharing USN Journal Reader service started successfully.
-- Security Event Log ----------------------------------------------------------
No Errors/Warnings found.
-- System Event Log ------------------------------------------------------------
Event Record #/Type3109 / Warning
Event Submitted/Written: 05/28/2008 04:56:09 AM
Event ID/Source: 8021 / BROWSER
Event Description:
L'explorateur n'a pas pu retrouver la liste des serveurs du maître explorateur \\RUBEN sur le réseau \Device\NetBT_Tcpip_{22DEBB8D-A925-4AA4-91C9-1B2DB8CCC2F8}.
La donnée est le code d'erreur.
Event Record #/Type3098 / Error
Event Submitted/Written: 05/28/2008 03:53:45 AM
Event ID/Source: 10005 / DCOM
Event Description:
DCOM a reçu l'erreur "%%1084" lors de la mise en route du service EventSystem avec les arguments ""
pour démarrer le serveur :
{1BE1F766-5536-11D1-B726-00C04FB926AF}
Event Record #/Type3097 / Error
Event Submitted/Written: 05/28/2008 03:50:26 AM
Event ID/Source: 10005 / DCOM
Event Description:
DCOM a reçu l'erreur "%%1084" lors de la mise en route du service StiSvc avec les arguments ""
pour démarrer le serveur :
{A1F4E726-8CF1-11D1-BF92-0060081ED811}
Event Record #/Type3096 / Error
Event Submitted/Written: 05/28/2008 03:46:55 AM
Event ID/Source: 10005 / DCOM
Event Description:
DCOM a reçu l'erreur "%%1084" lors de la mise en route du service StiSvc avec les arguments ""
pour démarrer le serveur :
{A1F4E726-8CF1-11D1-BF92-0060081ED811}
Event Record #/Type3095 / Error
Event Submitted/Written: 05/28/2008 03:40:09 AM
Event ID/Source: 10005 / DCOM
Event Description:
DCOM a reçu l'erreur "%%1084" lors de la mise en route du service StiSvc avec les arguments ""
pour démarrer le serveur :
{A1F4E726-8CF1-11D1-BF92-0060081ED811}
-- End of Deckard's System Scanner: finished at 2008-05-28 17:15:45 ------------
Deckard's System Scanner v20071014.68
Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------
-- System Information ----------------------------------------------------------
Microsoft Windows XP Professionnel (build 2600) SP 2.0
Architecture: X86; Language: French
CPU 0: Intel(R) Pentium(R) 4 CPU 2.60GHz
CPU 1: Intel(R) Pentium(R) 4 CPU 2.60GHz
Percentage of Memory in Use: 24%
Physical Memory (total/avail): 1535.48 MiB / 1155.63 MiB
Pagefile Memory (total/avail): 3434.43 MiB / 3216.9 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1930.02 MiB
A: is Removable (No Media)
C: is Fixed (NTFS) - 114.48 GiB total, 40.65 GiB free.
D: is CDROM (No Media)
E: is Fixed (Unformatted) - 0 GiB total, 0 GiB free.
F: is CDROM (No Media)
\\.\PHYSICALDRIVE1 - Maxtor 6B200P0 - 189.92 GiB - 1 partition
\PARTITION0 - Système de fichiers installable - 189.91 GiB - E:
\\.\PHYSICALDRIVE0 - Maxtor 6Y120L0 - 114.49 GiB - 1 partition
\PARTITION0 (bootable) - Système de fichiers installable - 114.48 GiB - C:
-- Security Center -------------------------------------------------------------
AUOptions is disabled.
Windows Internal Firewall is disabled.
FirstRunDisabled is set.
Unable to create WMI object.
-- Environment Variables -------------------------------------------------------
ALLUSERSPROFILE=C:\Documents and Settings\All Users
APPDATA=C:\Documents and Settings\Navone\Application Data
CLIENTNAME=Console
CommonProgramFiles=C:\Program Files\Fichiers communs
COMPUTERNAME=XPSP2-0181848AE
ComSpec=C:\WINDOWS\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Documents and Settings\Navone
LOGONSERVER=\\XPSP2-0181848AE
NUMBER_OF_PROCESSORS=2
OS=Windows_NT
Path=C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 15 Model 2 Stepping 9, GenuineIntel
PROCESSOR_LEVEL=15
PROCESSOR_REVISION=0209
ProgramFiles=C:\Program Files
PROMPT=$P$G
SESSIONNAME=Console
SystemDrive=C:
SystemRoot=C:\WINDOWS
TEMP=C:\DOCUME~1\Navone\LOCALS~1\Temp
TMP=C:\DOCUME~1\Navone\LOCALS~1\Temp
USERDOMAIN=XPSP2-0181848AE
USERNAME=Navone
USERPROFILE=C:\Documents and Settings\Navone
windir=C:\WINDOWS
-- User Profiles ---------------------------------------------------------------
Navone [I](admin)/I
Invité [I](guest)/I
-- Add/Remove Programs ---------------------------------------------------------
--> C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
--> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player ActiveX --> C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 7.0.8 - Français --> MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70800000002}
Archiveur WinRAR --> C:\Program Files\WinRAR\uninstall.exe
BloodRayne 2 Demo --> "C:\Program Files\Valve\Steam\steam.exe" steam://uninstall/3850
C-Media 3D Audio --> C:\WINDOWS\CMIUnInstall.exe
Codeur Windows Media Série 9 --> msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Codeur Windows Media Série 9 --> MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Command & Conquer 3 --> MsiExec.exe /I{B0C30E93-D3D9-4F04-A2AC-54749B573275}
Correctif Windows XP - KB867282 --> C:\WINDOWS\$NtUninstallKB867282$\spuninst\spuninst.exe
Correctif Windows XP - KB885894 --> C:\WINDOWS\$NtUninstallKB885894$\spuninst\spuninst.exe
Dawn of War - Soulstorm --> "C:\Program Files\InstallShield Installation Information\{20533183-D42D-4261-A125-956736FBEA8C}\setup.exe" -runfromtemp -l0x040c -removeonly
Dawn Of War - Winter Assault --> MsiExec.exe /X{DD8408E9-9421-484F-979D-DB6361E3E828}
DawnOfWar --> C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\10\INTEL3~1\IDriver.exe /M{362D5167-9716-44BE-89FD-BF9EB6EF814B}
DivX Codec --> C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DivX Converter --> C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
DivX Player --> C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
DivX Web Player --> C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
Half-Life(R) 2 --> MsiExec.exe /I{D45EC259-4A19-4656-B588-C2C360DD18EA}
Hotfix for Windows Media Format SDK (KB902344) --> "C:\WINDOWS\$NtUninstallKB902344$\spuninst\spuninst.exe"
J2SE Runtime Environment 5.0 Update 7 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150070}
K-Lite Codec Pack 3.8.5 Full --> "C:\Program Files\K-Lite Codec Pack\unins000.exe"
Logiciel QuickCam de Logitech --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C43048A9-742C-4DAD-90D2-E3B53C9DB825}\setup.exe" -l0x40c
Macromedia Flash Player 8 Plugin --> MsiExec.exe /X{E3D278BD-FC97-4F87-BB1F-689AE0CB9122}
Macromedia Shockwave Player --> MsiExec.exe /X{838A1BC9-95CA-4880-9BE3-2A7D23600A2B}
Malwarebytes' Anti-Malware --> "C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Microsoft Office PowerPoint Viewer 2003 --> MsiExec.exe /X{90AF040C-6000-11D3-8CFE-0150048383C9}
Microsoft Visual C++ 2005 Redistributable --> MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Windows Media Video 9 VCM --> RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmv9vcm.inf, Uninstall
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565) --> "C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734) --> "C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB913433) --> C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB913433.inf
Mise à jour de sécurité pour Windows XP (KB917953) --> "C:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe"
Mozilla Firefox (2.0.0.14) --> C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Neverwinter Nights 2 --> RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F20C1251-1D0A-4944-B2AE-678581B33B19}\SETUP.exe" -l0x40c -removeonly
NVIDIA Drivers --> C:\WINDOWS\system32\nvuninst.exe UninstallGUI
Programme de gestion Camera de Logitech® --> "C:\Program Files\Fichiers communs\Logitech\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT
Skype™ 3.8 --> MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}
SpeedFan (remove only) --> "C:\Program Files\SpeedFan\uninstall.exe"
Spybot - Search & Destroy --> "C:\Program Files\Spybot - Search & Destroy\unins000.exe"
Steam(TM) --> MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
Sunbelt Personal Firewall --> MsiExec.exe /X{BFD080F6-3BF0-40E1-9507-9CA969C35870}
Team Fortress 2 --> "C:\Program Files\Valve\Steam\steam.exe" steam://uninstall/440
TuneUp Utilities 2008 --> MsiExec.exe /I{5888428E-699C-4E71-BF71-94EE06B497DA}
Unlocker 1.8.6 --> C:\Program Files\Unlocker\uninst.exe
Windows Live installer --> MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
Windows Live Messenger --> MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
-- Application Event Log -------------------------------------------------------
Event Record #/Type560 / Error
Event Submitted/Written: 05/28/2008 05:14:19 PM
Event ID/Source: 8 / crypt32
Event Description:
Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : Cette opération s'est terminée car le délai d'attente a expiré.
Event Record #/Type559 / Error
Event Submitted/Written: 05/28/2008 05:13:33 PM
Event ID/Source: 8 / crypt32
Event Description:
Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : Cette connexion réseau n'existe pas.
Event Record #/Type558 / Error
Event Submitted/Written: 05/28/2008 05:13:33 PM
Event ID/Source: 8 / crypt32
Event Description:
Échec de la récupération de la mise à jour automatique du numéro de séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> avec l'erreur : Cette opération s'est terminée car le délai d'attente a expiré.
Event Record #/Type539 / Success
Event Submitted/Written: 05/27/2008 03:13:38 PM
Event ID/Source: 12001 / usnjsvc
Event Description:
The Messenger Sharing USN Journal Reader service started successfully.
Event Record #/Type513 / Success
Event Submitted/Written: 05/26/2008 05:33:13 PM
Event ID/Source: 12001 / usnjsvc
Event Description:
The Messenger Sharing USN Journal Reader service started successfully.
-- Security Event Log ----------------------------------------------------------
No Errors/Warnings found.
-- System Event Log ------------------------------------------------------------
Event Record #/Type3109 / Warning
Event Submitted/Written: 05/28/2008 04:56:09 AM
Event ID/Source: 8021 / BROWSER
Event Description:
L'explorateur n'a pas pu retrouver la liste des serveurs du maître explorateur \\RUBEN sur le réseau \Device\NetBT_Tcpip_{22DEBB8D-A925-4AA4-91C9-1B2DB8CCC2F8}.
La donnée est le code d'erreur.
Event Record #/Type3098 / Error
Event Submitted/Written: 05/28/2008 03:53:45 AM
Event ID/Source: 10005 / DCOM
Event Description:
DCOM a reçu l'erreur "%%1084" lors de la mise en route du service EventSystem avec les arguments ""
pour démarrer le serveur :
{1BE1F766-5536-11D1-B726-00C04FB926AF}
Event Record #/Type3097 / Error
Event Submitted/Written: 05/28/2008 03:50:26 AM
Event ID/Source: 10005 / DCOM
Event Description:
DCOM a reçu l'erreur "%%1084" lors de la mise en route du service StiSvc avec les arguments ""
pour démarrer le serveur :
{A1F4E726-8CF1-11D1-BF92-0060081ED811}
Event Record #/Type3096 / Error
Event Submitted/Written: 05/28/2008 03:46:55 AM
Event ID/Source: 10005 / DCOM
Event Description:
DCOM a reçu l'erreur "%%1084" lors de la mise en route du service StiSvc avec les arguments ""
pour démarrer le serveur :
{A1F4E726-8CF1-11D1-BF92-0060081ED811}
Event Record #/Type3095 / Error
Event Submitted/Written: 05/28/2008 03:40:09 AM
Event ID/Source: 10005 / DCOM
Event Description:
DCOM a reçu l'erreur "%%1084" lors de la mise en route du service StiSvc avec les arguments ""
pour démarrer le serveur :
{A1F4E726-8CF1-11D1-BF92-0060081ED811}
-- End of Deckard's System Scanner: finished at 2008-05-28 17:15:45 ------------
