Aide log hijackthis + baidubar svp
pipop2000
Messages postés
2
Statut
Membre
-
totobetourne Messages postés 5677 Statut Membre -
totobetourne Messages postés 5677 Statut Membre -
Bonjour,
J'ai recuopere un vieux pc tres verole. J'ai fait ce que j'ai pu pour nettoyer mais etant donne que je suis pas bon il reste sans doute du travail. Il y a notament baidubartrouve par spybot que je n'arrive pas a virer.
Ci dessous le log, merci de me dire ce que je dois virer et si vous avez des conseils pour nettoyer.
pipop
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:01:17, on 02/11/2008
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\a-squared Anti-Malware\a2service.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\wuauclt.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\SAMSUNG\SENS Keyboard V4 Launcher\SENSKBD.EXE
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
C:\PROGRA~1\WANADOO\TaskBarIcon.exe
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\PROGRA~1\WANADOO\GestionnaireInternet.exe
C:\PROGRA~1\WANADOO\ComComp.exe
C:\PROGRA~1\WANADOO\Toaster.exe
C:\PROGRA~1\WANADOO\Inactivity.exe
C:\PROGRA~1\WANADOO\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\PROGRA~1\WANADOO\Watch.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\POZNANCZYK IRENE\Bureau\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\WANADOO\SEARCH~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,userinit.exe,
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O3 - Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [SENS Keyboard V4 Launcher] "C:\Program Files\SAMSUNG\SENS Keyboard V4 Launcher\SENSKBD.EXE"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\WANADOO\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\WANADOO\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [ASuite] E:\sphg\SuiteportableHG.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [a-squared] "C:\PROGRAM FILES\A-SQUARED ANTI-MALWARE\a2guard.exe" /d=60
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\WANADOO\GestMaj.exe GestionnaireInternet.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Backward &Links - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cac&hed Snapshot of Page - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Si&milar Pages - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O22 - SharedTaskScheduler: {874443fe-aa33-4ebf-a6ac-73208787e62d} - bestreak - (no file)
O23 - Service: a-squared Anti-Malware Service (a2AntiMalware) - Emsi Software GmbH - C:\Program Files\a-squared Anti-Malware\a2service.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
J'ai recuopere un vieux pc tres verole. J'ai fait ce que j'ai pu pour nettoyer mais etant donne que je suis pas bon il reste sans doute du travail. Il y a notament baidubartrouve par spybot que je n'arrive pas a virer.
Ci dessous le log, merci de me dire ce que je dois virer et si vous avez des conseils pour nettoyer.
pipop
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:01:17, on 02/11/2008
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\a-squared Anti-Malware\a2service.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\wuauclt.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\SAMSUNG\SENS Keyboard V4 Launcher\SENSKBD.EXE
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
C:\PROGRA~1\WANADOO\TaskBarIcon.exe
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\PROGRA~1\WANADOO\GestionnaireInternet.exe
C:\PROGRA~1\WANADOO\ComComp.exe
C:\PROGRA~1\WANADOO\Toaster.exe
C:\PROGRA~1\WANADOO\Inactivity.exe
C:\PROGRA~1\WANADOO\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\PROGRA~1\WANADOO\Watch.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\POZNANCZYK IRENE\Bureau\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\WANADOO\SEARCH~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,userinit.exe,
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O3 - Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [SENS Keyboard V4 Launcher] "C:\Program Files\SAMSUNG\SENS Keyboard V4 Launcher\SENSKBD.EXE"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\WANADOO\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\WANADOO\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [ASuite] E:\sphg\SuiteportableHG.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [a-squared] "C:\PROGRAM FILES\A-SQUARED ANTI-MALWARE\a2guard.exe" /d=60
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\WANADOO\GestMaj.exe GestionnaireInternet.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Backward &Links - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cac&hed Snapshot of Page - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Si&milar Pages - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O22 - SharedTaskScheduler: {874443fe-aa33-4ebf-a6ac-73208787e62d} - bestreak - (no file)
O23 - Service: a-squared Anti-Malware Service (a2AntiMalware) - Emsi Software GmbH - C:\Program Files\a-squared Anti-Malware\a2service.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
A voir également:
- Aide log hijackthis + baidubar svp
- Hijackthis - Télécharger - Antivirus & Antimalwares
- Vpn no log - Guide
- View rescue log traduction - Guide
- Log freebox - Forum Freebox
- Log crash windows - Guide
4 réponses
bonjour
Bonjour,
*Télécharge SDFix (créé par AndyManchesta)
http://downloads.andymanchesta.com/RemovalTools/SDFix.exe
*Double-clique sur SDFix.exe
*Choisis Install pour l'extraire dans un dossier dédié sur le Bureau.
*Redémarre en mode sans échec
*Ouvre le dossier SDFix qui vient d'être créé à la racine de ton disque dur C:\
*Double clique sur RunThis.bat pour lancer le script. (Le .bat peut ne pas apparaître)
*Appuie sur Y pour commencer le processus de nettoyage.
*Appuie sur une touche pour redémarrer quand SDFix te demander d'appuyer sur une touche pour redémarrer.
*Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
*Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
*Appuie sur une touche pour finir l'exécution du script et charger les icônes de ton Bureau.
*Les icônes du Bureau affichées, le rapport SDFix s'ouvrira. Il porte le nom de Report.txt.
*Copie/colle le contenu
*Si Sdfix ne se lance pas
* Clique sur Démarrer > Exécuter
*Copie/colle ceci: %systemroot%\system32\cmd.exe /K %systemdrive%\SDFix\apps\FixPath.exe
*Clique sur Ok.
*Redémarre et essaie de relance SDFix.
Bonjour,
*Télécharge SDFix (créé par AndyManchesta)
http://downloads.andymanchesta.com/RemovalTools/SDFix.exe
*Double-clique sur SDFix.exe
*Choisis Install pour l'extraire dans un dossier dédié sur le Bureau.
*Redémarre en mode sans échec
*Ouvre le dossier SDFix qui vient d'être créé à la racine de ton disque dur C:\
*Double clique sur RunThis.bat pour lancer le script. (Le .bat peut ne pas apparaître)
*Appuie sur Y pour commencer le processus de nettoyage.
*Appuie sur une touche pour redémarrer quand SDFix te demander d'appuyer sur une touche pour redémarrer.
*Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
*Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
*Appuie sur une touche pour finir l'exécution du script et charger les icônes de ton Bureau.
*Les icônes du Bureau affichées, le rapport SDFix s'ouvrira. Il porte le nom de Report.txt.
*Copie/colle le contenu
*Si Sdfix ne se lance pas
* Clique sur Démarrer > Exécuter
*Copie/colle ceci: %systemroot%\system32\cmd.exe /K %systemdrive%\SDFix\apps\FixPath.exe
*Clique sur Ok.
*Redémarre et essaie de relance SDFix.
Pas sur d'avoir bien compris,
Sous SDfix, je n'ai pas la commande "Y" qui repare, mais j'ai effectivement la possibilite d'avoir un rapport : le voici.
Merci en tt cas pour la reponse rapide.
pipop
[b]System Report[/b]
*************
Run on 02/11/2008 at 17:44
Microsoft Windows XP [version 5.1.2600]
Current user is an administrator
[b]Running Processes[/b]:
\SystemRoot\System32\smss.exe [556]
\??\C:\WINDOWS\system32\csrss.exe [636]
\??\C:\WINDOWS\system32\winlogon.exe [660]
C:\WINDOWS\system32\services.exe [704]
C:\WINDOWS\system32\lsass.exe [716]
C:\WINDOWS\system32\svchost.exe [868]
C:\WINDOWS\System32\svchost.exe [896]
C:\WINDOWS\System32\svchost.exe [996]
C:\WINDOWS\System32\svchost.exe [1012]
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [1124]
C:\Program Files\Alwil Software\Avast4\ashServ.exe [1252]
C:\WINDOWS\Explorer.EXE [1328]
C:\WINDOWS\system32\spoolsv.exe [1584]
C:\Program Files\a-squared Anti-Malware\a2service.exe [1732]
C:\WINDOWS\System32\alg.exe [1764]
C:\WINDOWS\System32\FTRTSVC.exe [1816]
C:\WINDOWS\System32\svchost.exe [1888]
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [408]
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [244]
C:\WINDOWS\System32\igfxtray.exe [1388]
C:\WINDOWS\System32\wuauclt.exe [400]
C:\WINDOWS\System32\hkcmd.exe [492]
C:\WINDOWS\AGRSMMSG.exe [488]
C:\Program Files\SAMSUNG\SENS Keyboard V4 Launcher\SENSKBD.EXE [476]
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe [108]
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [824]
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe [984]
C:\PROGRA~1\WANADOO\TaskBarIcon.exe [1268]
C:\Program Files\Winamp\winampa.exe [1144]
C:\WINDOWS\System32\ctfmon.exe [1048]
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [1744]
C:\PROGRA~1\WANADOO\GestionnaireInternet.exe [1696]
C:\PROGRA~1\WANADOO\ComComp.exe [1620]
C:\PROGRA~1\WANADOO\Toaster.exe [1140]
C:\PROGRA~1\WANADOO\Inactivity.exe [1020]
C:\PROGRA~1\WANADOO\PollingModule.exe [1864]
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE [1900]
C:\PROGRA~1\WANADOO\Watch.exe [2188]
C:\Program Files\Mozilla Firefox\firefox.exe [3036]
C:\WINDOWS\system32\notepad.exe [2132]
[b]Drivers - Running[/b]:
Aavmker4
ACPI
ACPIEC
AFD
alcan5wn
alcaudsl
Arp1394
aswMon2
aswRdr
aswSP
aswTdi
atapi
audstub
Beep
CmBatt
Compbatt
cs429x
Disk
E100B
Fastfat
Fips
Ftdisk
Gpc
i8042prt
ialm
IpNat
IPSec
isapnp
Kbdclass
kmixer
KSecDD
mnmdd
Mouclass
MountMgr
MRxDAV
MRxSmb
Msfs
Mup
NDIS
NdisTapi
Ndisuio
NdisWan
NDProxy
NetBIOS
NetBT
NIC1394
Npfs
Null
ohci1394
Parport
PartMgr
ParVdm
PCI
PCIIde
Pcmcia
PptpMiniport
Processor
PSched
Ptilink
PxHelp20
RasAcd
Rasl2tp
RasPppoe
Raspti
Rdbss
RDPCDD
serenum
Serial
Srv
swenum
sysaudio
Tcpip
TermDD
Update
usbehci
usbhub
usbuhci
VgaSave
VolSnap
Wanarp
wdmaud
{5C8B2B62-A385-11d5-A78B-00104B672758}
{5C8B2B65-A385-11d5-A78B-00104B672758}
{6080A529-897E-4629-A488-ABA0C29B635E}
{D31A0762-0CEB-444e-ACFF-B049A1F6FE91}
[b]Drivers - Stopped[/b]:
Abiosdsk
abp480n5
adpu160m
aec
AgereSoftModem
Aha154x
aic78u2
aic78xx
alcan5ln
AliIde
amsint
asc
asc3350p
asc3550
AsyncMac
Atdisk
Atmarpc
ATWPKT
cbidf2k
CCDECODE
cd20xrnt
Cdaudio
Cdfs
Cdrom
Changer
CmdIde
Cpqarray
dac960nt
dmboot
dmio
dmload
DMusic
DOSMEMIO
dpti2o
drmkaud
Fdc
Flpydisk
HidUsb
hpn
hpt3xx
i2omgmt
i2omp
Imapi
ini910u
IntelIde
IpFilterDriver
IpInIp
IRENUM
lbrtfdc
Modem
mouhid
mraid35x
MSKSSRV
MSPCLOCK
MSPQM
MSTEE
NABTSFEC
NdisIP
Ntfs
NwlnkFlt
NwlnkFwd
PCAMPR5
PCANDIS5
PCIDump
PD023BLK
PD023VID
PDCOMP
PDFRAME
PDRELI
PDRFRAME
perc2
perc2hib
ql1080
Ql10wnt
ql12160
ql1240
ql1280
RDPWD
redbook
Secdrv
Sfloppy
Simbad
SLIP
SONYPVU1
Sparrow
splitter
sr
StillCam
streamip
SWLD12
swmidi
symc810
symc8xx
SymEvent
sym_hi
sym_u3
TDPIPE
TDTCP
TosIde
Udfs
ultra
usbccgp
Usblink
usbscan
USBSTOR
ViaIde
VNic
wanatw
WDICA
WSTCODEC
[b]Services - Running[/b]:
a2AntiMalware
ALG
aswUpdSv
AudioSrv
avast!
avast!
avast!
Browser
CryptSvc
Dhcp
Dnscache
ERSvc
Eventlog
EventSystem
FastUserSwitchingCompatibility
FTRTSVC
helpsvc
lanmanserver
lanmanworkstation
LmHosts
Messenger
Netman
Nla
PlugPlay
PolicyAgent
ProtectedStorage
RasMan
RpcSs
SamSs
Schedule
seclogon
SENS
SharedAccess
ShellHWDetection
Spooler
SSDPSRV
stisvc
TapiSrv
TermService
Themes
TrkWks
uploadmgr
W32Time
WebClient
winmgmt
WmdmPmSp
wuauserv
WZCSVC
[b]Services - Stopped[/b]:
Alerter
AppMgmt
aspnet_state
BITS
cisvc
ClipSrv
COMSysApp
dmadmin
dmserver
HidServ
IDriverT
ImapiService
mnmsrvc
MSDTC
MSIServer
NetDDE
NetDDEdsdm
Netlogon
NtLmSsp
NtmsSvc
RasAuto
RDSessMgr
RemoteAccess
RpcLocator
RSVP
SCardDrv
SCardSvr
srservice
SwPrv
SysmonLog
upnphost
UPS
VSS
WmiApSrv
[b]Files Created/Modified - 60 Days[/b]:
C:\
2 Nov 2008 16:10:22 258 985 984 A.SH. "C:\hiberfil.sys"
2 Nov 2008 16:10:14 390 070 272 A.SH. "C:\pagefile.sys"
2 Nov 2008 17:38:18 1 556 227 A.... "C:\SDFix.exe"
C:\WINDOWS\
2 Nov 2008 16:10:22 2 048 A.S.. "C:\WINDOWS\bootstat.dat"
7 Oct 2008 12:19:42 16 721 856 A.... "C:\WINDOWS\system32\MRT.exe"
2 Nov 2008 9:12:32 52 962 A.... "C:\WINDOWS\system32\perfc009.dat"
2 Nov 2008 9:12:32 380 548 A.... "C:\WINDOWS\system32\perfh009.dat"
2 Nov 2008 9:12:32 63 812 A.... "C:\WINDOWS\system32\perfc00C.dat"
2 Nov 2008 9:12:32 445 254 A.... "C:\WINDOWS\system32\perfh00C.dat"
1 Nov 2008 17:45:02 227 208 A.... "C:\WINDOWS\system32\FNTCACHE.DAT"
2 Nov 2008 17:44:24 0 A.... "C:\WINDOWS\Temp\scs3B.tmp"
2 Nov 2008 16:10:44 6 A..H. "C:\WINDOWS\Tasks\SA.DAT"
22 Oct 2008 16:10:22 15 504 A.... "C:\WINDOWS\system32\drivers\mbam.sys"
22 Oct 2008 16:10:38 38 496 A.... "C:\WINDOWS\system32\drivers\mbamswissarmy.sys"
5 Oct 2008 4:24:02 3 695 008 A.... "C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll"
5 Oct 2008 4:24:04 235 936 A.... "C:\WINDOWS\system32\Macromed\Flash\NPSWF32_FlashUtil.exe"
2 Nov 2008 16:27:56 84 661 A.... "C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe"
C:\Program Files\
1 Nov 2008 18:40:44 7 671 408 A.... "C:\Program Files\Mozilla Firefox\firefox.exe"
1 Nov 2008 18:40:46 458 856 A.... "C:\Program Files\Mozilla Firefox\js3250.dll"
1 Nov 2008 18:40:42 13 952 A.... "C:\Program Files\Mozilla Firefox\AccessibleMarshal.dll"
1 Nov 2008 18:40:46 161 392 A.... "C:\Program Files\Mozilla Firefox\nspr4.dll"
1 Nov 2008 18:40:48 382 568 A.... "C:\Program Files\Mozilla Firefox\nss3.dll"
1 Nov 2008 18:40:48 276 080 A.... "C:\Program Files\Mozilla Firefox\nssckbi.dll"
1 Nov 2008 18:40:48 34 424 A.... "C:\Program Files\Mozilla Firefox\plc4.dll"
1 Nov 2008 18:40:48 30 320 A.... "C:\Program Files\Mozilla Firefox\plds4.dll"
1 Nov 2008 18:40:48 112 232 A.... "C:\Program Files\Mozilla Firefox\smime3.dll"
1 Nov 2008 18:40:50 254 060 A.... "C:\Program Files\Mozilla Firefox\softokn3.dll"
1 Nov 2008 18:40:50 136 808 A.... "C:\Program Files\Mozilla Firefox\ssl3.dll"
1 Nov 2008 18:40:50 132 232 A.... "C:\Program Files\Mozilla Firefox\updater.exe"
1 Nov 2008 18:40:50 13 416 A.... "C:\Program Files\Mozilla Firefox\xpcom.dll"
1 Nov 2008 18:40:50 12 400 A.... "C:\Program Files\Mozilla Firefox\xpistub.dll"
1 Nov 2008 18:40:46 200 829 A.... "C:\Program Files\Mozilla Firefox\freebl3.dll"
1 Nov 2008 18:40:50 73 848 A.... "C:\Program Files\Mozilla Firefox\xpcom_compat.dll"
1 Nov 2008 18:40:50 422 000 A.... "C:\Program Files\Mozilla Firefox\xpcom_core.dll"
1 Nov 2008 18:40:50 73 336 A.... "C:\Program Files\Mozilla Firefox\xpicleanup.exe"
1 Nov 2008 18:05:32 15 585 A.... "C:\Program Files\Malwarebytes' Anti-Malware\unins000.dat"
10 Sep 2008 0:03:54 380 080 A.... "C:\Program Files\Malwarebytes' Anti-Malware\mbam-dor.exe"
10 Sep 2008 0:03:56 73 392 A.... "C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll"
10 Sep 2008 0:03:58 44 720 A.... "C:\Program Files\Malwarebytes' Anti-Malware\ssubtmr6.dll"
22 Oct 2008 16:10:18 65 168 A.... "C:\Program Files\Malwarebytes' Anti-Malware\mbam.dll"
22 Oct 2008 16:10:20 1 261 200 A.... "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe"
22 Oct 2008 16:10:36 77 968 A.... "C:\Program Files\Malwarebytes' Anti-Malware\zlib.dll"
22 Oct 2008 16:10:24 399 504 A.... "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe"
22 Oct 2008 16:10:24 170 640 A.... "C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe"
1 Nov 2008 18:05:16 688 784 A.... "C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
1 Nov 2008 17:58:26 25 624 A.... "C:\Program Files\Spybot - Search & Destroy\unins000.dat"
1 Nov 2008 17:56:42 696 200 A.... "C:\Program Files\Spybot - Search & Destroy\unins000.exe"
16 Sep 2008 12:16:08 1 833 296 A.SHR "C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe"
15 Sep 2008 14:25:44 1 562 960 A.SHR "C:\Program Files\Spybot - Search & Destroy\SDHelper.dll"
29 Sep 2008 16:11:54 1 279 216 A.... "C:\Program Files\CCleaner\CCleaner.exe"
25 Sep 2008 1:40:22 24 064 A.... "C:\Program Files\CCleaner\lang-1036.dll"
1 Nov 2008 18:22:00 114 605 A.... "C:\Program Files\CCleaner\uninst.exe"
1 Nov 2008 18:38:04 18 678 A.... "C:\Program Files\a-squared Anti-Malware\unins000.dat"
1 Nov 2008 18:37:08 717 976 A.... "C:\Program Files\a-squared Anti-Malware\unins000.exe"
1 Nov 2008 18:50:26 234 640 A.... "C:\Program Files\a-squared Anti-Malware\a2cmd.exe"
1 Nov 2008 18:51:44 2 780 816 A.... "C:\Program Files\a-squared Anti-Malware\a2guard.exe"
16 Sep 2008 17:39:30 207 488 A.... "C:\Program Files\a-squared Anti-Malware\a2handler.dll"
4 Oct 2008 12:24:44 1 069 184 A.... "C:\Program Files\a-squared Anti-Malware\a2HiJackFree.exe"
1 Nov 2008 18:50:12 982 528 A.... "C:\Program Files\a-squared Anti-Malware\a2hosts.dat"
1 Nov 2008 18:52:28 1 240 208 A.... "C:\Program Files\a-squared Anti-Malware\a2scan.exe"
1 Nov 2008 18:52:16 1 152 136 A.... "C:\Program Files\a-squared Anti-Malware\a2start.exe"
4 Oct 2008 12:24:44 89 736 A.... "C:\Program Files\a-squared Anti-Malware\a2upd.exe"
1 Nov 2008 18:52:30 96 204 A.... "C:\Program Files\a-squared Anti-Malware\a2wl.dat"
16 Sep 2008 17:39:32 263 808 A.... "C:\Program Files\a-squared Anti-Malware\core.dll"
1 Nov 2008 18:52:04 451 712 A.... "C:\Program Files\a-squared Anti-Malware\engine.dll"
1 Nov 2008 18:50:00 224 416 A.... "C:\Program Files\a-squared Anti-Malware\a2contmenu.dll"
1 Nov 2008 18:49:58 300 704 A.... "C:\Program Files\a-squared Anti-Malware\a2contmenu64.dll"
1 Nov 2008 18:51:20 264 696 A.... "C:\Program Files\a-squared Anti-Malware\t3.dll"
1 Nov 2008 18:51:48 419 448 A.... "C:\Program Files\a-squared Anti-Malware\a2service.exe"
1 Nov 2008 18:50:30 321 160 A.... "C:\Program Files\a-squared Anti-Malware\a2update.dll"
1 Nov 2008 18:51:22 290 960 A.... "C:\Program Files\a-squared Anti-Malware\a2framework.dll"
1 Nov 2008 18:51:58 1 127 064 A.... "C:\Program Files\a-squared Anti-Malware\a2wizard.exe"
1 Nov 2008 18:40:48 22 664 A.... "C:\Program Files\Mozilla Firefox\plugins\npnul32.dll"
1 Nov 2008 18:40:42 67 696 A.... "C:\Program Files\Mozilla Firefox\components\jar50.dll"
1 Nov 2008 18:40:42 54 376 A.... "C:\Program Files\Mozilla Firefox\components\jsd3250.dll"
1 Nov 2008 18:40:42 34 952 A.... "C:\Program Files\Mozilla Firefox\components\myspell.dll"
1 Nov 2008 18:40:42 46 720 A.... "C:\Program Files\Mozilla Firefox\components\spellchk.dll"
1 Nov 2008 18:40:42 172 144 A.... "C:\Program Files\Mozilla Firefox\components\xpinstal.dll"
1 Nov 2008 18:40:50 451 880 A.... "C:\Program Files\Mozilla Firefox\uninstall\helper.exe"
24 Sep 2008 18:02:36 813 416 A.... "C:\Program Files\Spybot - Search & Destroy\Updates\sdhelper161.zip"
15 Sep 2008 14:38:34 843 168 A.... "C:\Program Files\Spybot - Search & Destroy\Updates\sdhelper161.exe"
24 Sep 2008 18:02:48 908 027 A.... "C:\Program Files\Spybot - Search & Destroy\Updates\teatimer162.zip"
16 Sep 2008 12:19:08 937 696 A.... "C:\Program Files\Spybot - Search & Destroy\Updates\teatimer162.exe"
1 Nov 2008 22:04:40 70 766 A.... "C:\Program Files\Alwil Software\Avast4\DATA\iNews.htm"
2 Nov 2008 16:10:30 391 216 A.... "C:\Program Files\Alwil Software\Avast4\DATA\clnr0.dll"
2 Nov 2008 16:10:30 273 592 A.... "C:\Program Files\Alwil Software\Avast4\DATA\dllcc0.dat"
2 Nov 2008 16:10:30 9 080 A.... "C:\Program Files\Alwil Software\Avast4\DATA\exts0.dll"
2 Nov 2008 16:10:30 225 200 A.... "C:\Program Files\Alwil Software\Avast4\DATA\aswar0.dll"
1 Nov 2008 17:51:56 127 024 ..... "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll"
[b]Files with hidden attributes[/b]:
Mon 7 Jul 2008 1,429,840 A.SHR --- "C:\Program Files\Spybot - Search & Destroy\SDUpdate.exe"
Mon 7 Jul 2008 4,891,472 A.SHR --- "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe"
Tue 16 Sep 2008 1,833,296 A.SHR --- "C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe"
Mon 15 Sep 2008 1,562,960 A.SHR --- "C:\Program Files\Spybot - Search & Destroy\SDHelper.dll"
Sun 19 Mar 2006 48 A.SH. --- "C:\Documents and Settings\All Users\DRM\v2ks.sec.bak"
Sun 19 Mar 2006 400 A.SH. --- "C:\Documents and Settings\All Users\DRM\v2ks.bla.bak"
Sat 20 Mar 2004 4,348 ..SH. --- "C:\Documents and Settings\All Users\DRM\DRMv1.bak"
[b]Program Folders[/b]:
C:\Program Files\
Adobe
Ahead
Alwil Software
a-squared Anti-Malware
Audiograbber
AviSynth 2.5
BitLord
Canon
CCleaner
Common Files
ffdshow
Fichiers communs
InstallShield Installation Information
Internet Explorer
Java
Malwarebytes' Anti-Malware
Microids
microsoft frontpage
Microsoft Office
Microsoft Picture It! PhotoPub
Microsoft Works
Microsoft Works Suite 2003
Movie Maker
Mozilla Firefox
MSN
MSN Gaming Zone
My Shared Folder
MyHeritage
MYIE2
NetMeeting
Outlook Express
PC-Linq
Postal2
QuickTime
Raccourcis de programmes
Real
Ripp-it_AM
SAMSUNG
Securitoo
Services en ligne
SLD CODEC PACK 1.5.3
Soulseek
Spybot - Search & Destroy
Symantec
Thomson
totalcmd
Uninstall Information
Universal Combat Demo
Viewpoint
Wanadoo
Winamp
Windows Media Player
Windows NT
WindowsUpdate
xerox
Yahoo!
C:\Program Files\Fichiers communs\
Adobe
Ahead
Designer
InstallShield
Java
Microsoft Shared
MSSoap
Nero
NSV
ODBC
Real
Services
SpeechEngines
Symantec Shared
System
[b]Add/Remove Programs[/b]:
a-squared Anti-Malware 4.0
Adobe Acrobat 5.0
Adobe Flash Player 10 Plugin
SENS LT56ADW Modem
avast! Antivirus
CCleaner (remove only)
Creative PC-CAM 600 Driver (1.03.01.1023)
Navigateur Orange
Gestionnaire Internet
HijackThis 2.0.2
LiveReg (Symantec Corporation)
LiveUpdate 1.7 (Symantec Corporation)
Macromedia Shockwave Player
Malwarebytes' Anti-Malware
Microsoft .NET Framework (French) v1.0.3705
Mozilla Firefox (2.0.0.17)
Intel(R) PRO Ethernet Adapter and Software
Windows XP Hotfix (SP1) [See Q307274 for more information]
Windows XP Hotfix (SP1) [See Q308677 for more information]
Windows XP Hotfix (SP1) [See Q309521 for more information]
Windows XP Hotfix (SP1) [See Q311889 for more information]
Windows XP Hotfix (SP1) [See Q311967 for more information]
Windows XP Hotfix (SP1) [See Q312370 for more information]
Windows XP Hotfix (SP1) [See Q313450 for more information]
Windows XP Hotfix (SP1) [See Q314862 for more information]
Windows XP Hotfix (SP1) [See Q315000 for more information]
Windows XP Hotfix (SP1) [See Q315403 for more information]
Windows XP Hotfix (SP1) [See Q317277 for more information]
Windows XP Hotfix (SP1) [See Q318138 for more information]
Windows XP Application Compatibility Update[Q319580]
Windows XP Hotfix (SP1) [See Q323172 for more information]
Windows XP Hotfix (SP1) [See Q324096 for more information]
Windows XP Hotfix (SP1) [See Q324380 for more information]
Windows XP Hotfix (SP1) [See Q326830 for more information]
Windows XP Hotfix (SP1) Q328310
Windows XP Hotfix (SP1) [See Q328940 for more information]
Windows XP Hotfix (SP1) [See Q329048 for more information]
Package du correctif Windows XP [voir Q329115 pour plus de détails]
Windows XP Hotfix (SP1) Q329170
Windows XP Hotfix (SP1) [See Q329390 for more information]
Windows XP Hotfix (SP1) [See Q329441 for more information]
Windows XP Hotfix (SP1) [See Q329834 for more information]
Windows XP Hotfix (SP1) Q810577
Windows XP Hotfix (SP1) Q810833
Windows XP Hotfix (SP1) Q811493
Windows XP Hotfix (SP1) Q815021
Windows XP Hotfix (SP1) Q817606
Windows XP Hotfix (SP1) Q819696
Correctif pour le Lecteur Windows Media [Voir wm828026 pour plus d'informations]
Ri4m v5.0.1d
Shockwave
SLD CODEC PACK 1.5.3
Viewpoint Media Player (Remove Only)
Winamp
Winterscapes LITE Screen Saver
Sélecteur d'installation de Microsoft Works Suite 2003
Yahoo! Toolbar avec bloqueur de fenêtres pop-up
Yahoo! Toolbar
Microsoft .NET Framework (French)
Java 2 Runtime Environment, SE v1.4.2_03
Intel(R) Extreme Graphics Driver
Microsoft Word 2002
MagicLAN 11Mbps WirelessLAN MiniPCI Card Driver
Spybot - Search & Destroy
Microsoft .NET Framework 1.1
SpeedTouch USB Software
OS Pack Works Suite
SENS Keyboard V4 Launcher
Microsoft Picture It! Express 2001
[b]Run Values[/b]:
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"IgfxTray"="C:\\WINDOWS\\System32\\igfxtray.exe"
"HotKeysCmds"="C:\\WINDOWS\\System32\\hkcmd.exe"
"AGRSMMSG"="AGRSMMSG.exe"
"SENS Keyboard V4 Launcher"="\"C:\\Program Files\\SAMSUNG\\SENS Keyboard V4 Launcher\\SENSKBD.EXE\""
"SunJavaUpdateSched"="C:\\Program Files\\Java\\j2re1.4.2_03\\bin\\jusched.exe"
"avast!"="C:\\PROGRA~1\\ALWILS~1\\Avast4\\ashDisp.exe"
"SpeedTouch USB Diagnostics"="\"C:\\Program Files\\Thomson\\SpeedTouch USB\\Dragdiag.exe\" /icon"
"WOOWATCH"="C:\\PROGRA~1\\WANADOO\\Watch.exe"
"WOOTASKBARICON"="C:\\PROGRA~1\\WANADOO\\GestMaj.exe TaskBarIcon.exe"
"ASuite"="E:\\sphg\\SuiteportableHG.exe"
"WinampAgent"="\"C:\\Program Files\\Winamp\\winampa.exe\""
"a-squared"="\"C:\\PROGRAM FILES\\A-SQUARED ANTI-MALWARE\\a2guard.exe\" /d=60"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"Installed"="1"
"NoChange"="1"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\System32\\ctfmon.exe"
"WOOKIT"="C:\\PROGRA~1\\WANADOO\\GestMaj.exe GestionnaireInternet.exe"
"SpybotSD TeaTimer"="C:\\Program Files\\Spybot - Search & Destroy\\TeaTimer.exe"
[b]Bot Check[/b]:
SERVICE_NAME: sharedaccess
DISPLAY_NAME : Pare-feu de connexion Internet (ICF) / Partage de connexion Internet (ICS)
START_TYPE : 2 AUTO_START
SERVICE_NAME: wuauserv
DISPLAY_NAME : Mises à jour automatiques
START_TYPE : 2 AUTO_START
SERVICE_NAME: srservice
DISPLAY_NAME : Service de restauration système
START_TYPE : 2 AUTO_START
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Ole]
"EnableDCOM"="Y"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"restrictanonymous"=dword:00000000
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update]
"AUOptions"=dword:00000003
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"WaitToKillServiceTimeout"="20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"SFCDisable"=dword:00000000
"Shell"="Explorer.exe"
"Userinit"="C:\\WINDOWS\\system32\\userinit.exe,userinit.exe,"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shell extensions]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NetBT\Parameters]
"TransportBindName"="\\Device\\"
[b]ShellExecuteHooks[/b]:
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""
[b]Environment[/b]:
HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager\environment
ComSpec REG_EXPAND_SZ %SystemRoot%\system32\cmd.exe
Path REG_EXPAND_SZ %SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
windir REG_EXPAND_SZ %SystemRoot%
OS REG_SZ Windows_NT
PATHEXT REG_SZ .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
TEMP REG_EXPAND_SZ %SystemRoot%\TEMP
TMP REG_EXPAND_SZ %SystemRoot%\TEMP
CLASSPATH REG_EXPAND_SZ .;
[b]SecurityProviders[/b]:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders
SecurityProviders REG_SZ msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll
[b]Authentication Packages[/b]:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa
Authentication Packages REG_MULTI_SZ msv1_0\0\0
[b]Subsystem Startup[/b]:
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems]
"Windows"="%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16"
[b]Midi Drivers[/b]:
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midi"="wdmaud.drv"
"midi1"="wdmaud.drv"
[b]Non-Default IFEO Debugger[/b]:
[b]Non-Default Installed Components[/b]:
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{acc563bc-4266-43f0-b6ed-9d38c4202c7e}
<NO NAME> REG_SZ Accès Internet Explorer
StubPath REG_EXPAND_SZ rundll32 iesetup.dll,IEAccessUserInst
Version REG_SZ 6,0,2600,0000
[b]Non-Default Safeboot Minimal[/b]:
[b]File Associations[/b]:
[HKEY_CLASSES_ROOT\batfile\shell\open\command]
@="\"%1\" %*"
[HKEY_CLASSES_ROOT\cmdfile\shell\open\command]
@="\"%1\" %*"
[HKEY_CLASSES_ROOT\comfile\shell\open\command]
@="\"%1\" %*"
[HKEY_CLASSES_ROOT\exefile\shell\open\command]
@="\"%1\" %*"
[HKEY_CLASSES_ROOT\htafile\shell\open\command]
@="C:\\WINDOWS\\System32\\mshta.exe \"%1\" %*"
[HKEY_CLASSES_ROOT\http\shell\open\command]
@="\"C:\\PROGRA~1\\WANADOO\\WOOBrowser\\WOOBrowser.exe\" %1"
[HKEY_CLASSES_ROOT\htmlfile\shell\open\command]
@="\"C:\\PROGRA~1\\WANADOO\\WOOBrowser\\WOOBrowser.exe\" %1"
[HKEY_CLASSES_ROOT\regedit\shell\open\command]
@="regedit.exe %1"
[HKEY_CLASSES_ROOT\regfile\shell\open\command]
@="regedit.exe \"%1\""
[HKEY_CLASSES_ROOT\scrfile\shell\open\command]
@="\"%1\" /S"
[HKEY_CLASSES_ROOT\txtfile\shell\open\command]
@="%SystemRoot%\system32\NOTEPAD.EXE %1"
[b]Finished![/b]
Sous SDfix, je n'ai pas la commande "Y" qui repare, mais j'ai effectivement la possibilite d'avoir un rapport : le voici.
Merci en tt cas pour la reponse rapide.
pipop
[b]System Report[/b]
*************
Run on 02/11/2008 at 17:44
Microsoft Windows XP [version 5.1.2600]
Current user is an administrator
[b]Running Processes[/b]:
\SystemRoot\System32\smss.exe [556]
\??\C:\WINDOWS\system32\csrss.exe [636]
\??\C:\WINDOWS\system32\winlogon.exe [660]
C:\WINDOWS\system32\services.exe [704]
C:\WINDOWS\system32\lsass.exe [716]
C:\WINDOWS\system32\svchost.exe [868]
C:\WINDOWS\System32\svchost.exe [896]
C:\WINDOWS\System32\svchost.exe [996]
C:\WINDOWS\System32\svchost.exe [1012]
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [1124]
C:\Program Files\Alwil Software\Avast4\ashServ.exe [1252]
C:\WINDOWS\Explorer.EXE [1328]
C:\WINDOWS\system32\spoolsv.exe [1584]
C:\Program Files\a-squared Anti-Malware\a2service.exe [1732]
C:\WINDOWS\System32\alg.exe [1764]
C:\WINDOWS\System32\FTRTSVC.exe [1816]
C:\WINDOWS\System32\svchost.exe [1888]
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [408]
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [244]
C:\WINDOWS\System32\igfxtray.exe [1388]
C:\WINDOWS\System32\wuauclt.exe [400]
C:\WINDOWS\System32\hkcmd.exe [492]
C:\WINDOWS\AGRSMMSG.exe [488]
C:\Program Files\SAMSUNG\SENS Keyboard V4 Launcher\SENSKBD.EXE [476]
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe [108]
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [824]
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe [984]
C:\PROGRA~1\WANADOO\TaskBarIcon.exe [1268]
C:\Program Files\Winamp\winampa.exe [1144]
C:\WINDOWS\System32\ctfmon.exe [1048]
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [1744]
C:\PROGRA~1\WANADOO\GestionnaireInternet.exe [1696]
C:\PROGRA~1\WANADOO\ComComp.exe [1620]
C:\PROGRA~1\WANADOO\Toaster.exe [1140]
C:\PROGRA~1\WANADOO\Inactivity.exe [1020]
C:\PROGRA~1\WANADOO\PollingModule.exe [1864]
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE [1900]
C:\PROGRA~1\WANADOO\Watch.exe [2188]
C:\Program Files\Mozilla Firefox\firefox.exe [3036]
C:\WINDOWS\system32\notepad.exe [2132]
[b]Drivers - Running[/b]:
Aavmker4
ACPI
ACPIEC
AFD
alcan5wn
alcaudsl
Arp1394
aswMon2
aswRdr
aswSP
aswTdi
atapi
audstub
Beep
CmBatt
Compbatt
cs429x
Disk
E100B
Fastfat
Fips
Ftdisk
Gpc
i8042prt
ialm
IpNat
IPSec
isapnp
Kbdclass
kmixer
KSecDD
mnmdd
Mouclass
MountMgr
MRxDAV
MRxSmb
Msfs
Mup
NDIS
NdisTapi
Ndisuio
NdisWan
NDProxy
NetBIOS
NetBT
NIC1394
Npfs
Null
ohci1394
Parport
PartMgr
ParVdm
PCI
PCIIde
Pcmcia
PptpMiniport
Processor
PSched
Ptilink
PxHelp20
RasAcd
Rasl2tp
RasPppoe
Raspti
Rdbss
RDPCDD
serenum
Serial
Srv
swenum
sysaudio
Tcpip
TermDD
Update
usbehci
usbhub
usbuhci
VgaSave
VolSnap
Wanarp
wdmaud
{5C8B2B62-A385-11d5-A78B-00104B672758}
{5C8B2B65-A385-11d5-A78B-00104B672758}
{6080A529-897E-4629-A488-ABA0C29B635E}
{D31A0762-0CEB-444e-ACFF-B049A1F6FE91}
[b]Drivers - Stopped[/b]:
Abiosdsk
abp480n5
adpu160m
aec
AgereSoftModem
Aha154x
aic78u2
aic78xx
alcan5ln
AliIde
amsint
asc
asc3350p
asc3550
AsyncMac
Atdisk
Atmarpc
ATWPKT
cbidf2k
CCDECODE
cd20xrnt
Cdaudio
Cdfs
Cdrom
Changer
CmdIde
Cpqarray
dac960nt
dmboot
dmio
dmload
DMusic
DOSMEMIO
dpti2o
drmkaud
Fdc
Flpydisk
HidUsb
hpn
hpt3xx
i2omgmt
i2omp
Imapi
ini910u
IntelIde
IpFilterDriver
IpInIp
IRENUM
lbrtfdc
Modem
mouhid
mraid35x
MSKSSRV
MSPCLOCK
MSPQM
MSTEE
NABTSFEC
NdisIP
Ntfs
NwlnkFlt
NwlnkFwd
PCAMPR5
PCANDIS5
PCIDump
PD023BLK
PD023VID
PDCOMP
PDFRAME
PDRELI
PDRFRAME
perc2
perc2hib
ql1080
Ql10wnt
ql12160
ql1240
ql1280
RDPWD
redbook
Secdrv
Sfloppy
Simbad
SLIP
SONYPVU1
Sparrow
splitter
sr
StillCam
streamip
SWLD12
swmidi
symc810
symc8xx
SymEvent
sym_hi
sym_u3
TDPIPE
TDTCP
TosIde
Udfs
ultra
usbccgp
Usblink
usbscan
USBSTOR
ViaIde
VNic
wanatw
WDICA
WSTCODEC
[b]Services - Running[/b]:
a2AntiMalware
ALG
aswUpdSv
AudioSrv
avast!
avast!
avast!
Browser
CryptSvc
Dhcp
Dnscache
ERSvc
Eventlog
EventSystem
FastUserSwitchingCompatibility
FTRTSVC
helpsvc
lanmanserver
lanmanworkstation
LmHosts
Messenger
Netman
Nla
PlugPlay
PolicyAgent
ProtectedStorage
RasMan
RpcSs
SamSs
Schedule
seclogon
SENS
SharedAccess
ShellHWDetection
Spooler
SSDPSRV
stisvc
TapiSrv
TermService
Themes
TrkWks
uploadmgr
W32Time
WebClient
winmgmt
WmdmPmSp
wuauserv
WZCSVC
[b]Services - Stopped[/b]:
Alerter
AppMgmt
aspnet_state
BITS
cisvc
ClipSrv
COMSysApp
dmadmin
dmserver
HidServ
IDriverT
ImapiService
mnmsrvc
MSDTC
MSIServer
NetDDE
NetDDEdsdm
Netlogon
NtLmSsp
NtmsSvc
RasAuto
RDSessMgr
RemoteAccess
RpcLocator
RSVP
SCardDrv
SCardSvr
srservice
SwPrv
SysmonLog
upnphost
UPS
VSS
WmiApSrv
[b]Files Created/Modified - 60 Days[/b]:
C:\
2 Nov 2008 16:10:22 258 985 984 A.SH. "C:\hiberfil.sys"
2 Nov 2008 16:10:14 390 070 272 A.SH. "C:\pagefile.sys"
2 Nov 2008 17:38:18 1 556 227 A.... "C:\SDFix.exe"
C:\WINDOWS\
2 Nov 2008 16:10:22 2 048 A.S.. "C:\WINDOWS\bootstat.dat"
7 Oct 2008 12:19:42 16 721 856 A.... "C:\WINDOWS\system32\MRT.exe"
2 Nov 2008 9:12:32 52 962 A.... "C:\WINDOWS\system32\perfc009.dat"
2 Nov 2008 9:12:32 380 548 A.... "C:\WINDOWS\system32\perfh009.dat"
2 Nov 2008 9:12:32 63 812 A.... "C:\WINDOWS\system32\perfc00C.dat"
2 Nov 2008 9:12:32 445 254 A.... "C:\WINDOWS\system32\perfh00C.dat"
1 Nov 2008 17:45:02 227 208 A.... "C:\WINDOWS\system32\FNTCACHE.DAT"
2 Nov 2008 17:44:24 0 A.... "C:\WINDOWS\Temp\scs3B.tmp"
2 Nov 2008 16:10:44 6 A..H. "C:\WINDOWS\Tasks\SA.DAT"
22 Oct 2008 16:10:22 15 504 A.... "C:\WINDOWS\system32\drivers\mbam.sys"
22 Oct 2008 16:10:38 38 496 A.... "C:\WINDOWS\system32\drivers\mbamswissarmy.sys"
5 Oct 2008 4:24:02 3 695 008 A.... "C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll"
5 Oct 2008 4:24:04 235 936 A.... "C:\WINDOWS\system32\Macromed\Flash\NPSWF32_FlashUtil.exe"
2 Nov 2008 16:27:56 84 661 A.... "C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe"
C:\Program Files\
1 Nov 2008 18:40:44 7 671 408 A.... "C:\Program Files\Mozilla Firefox\firefox.exe"
1 Nov 2008 18:40:46 458 856 A.... "C:\Program Files\Mozilla Firefox\js3250.dll"
1 Nov 2008 18:40:42 13 952 A.... "C:\Program Files\Mozilla Firefox\AccessibleMarshal.dll"
1 Nov 2008 18:40:46 161 392 A.... "C:\Program Files\Mozilla Firefox\nspr4.dll"
1 Nov 2008 18:40:48 382 568 A.... "C:\Program Files\Mozilla Firefox\nss3.dll"
1 Nov 2008 18:40:48 276 080 A.... "C:\Program Files\Mozilla Firefox\nssckbi.dll"
1 Nov 2008 18:40:48 34 424 A.... "C:\Program Files\Mozilla Firefox\plc4.dll"
1 Nov 2008 18:40:48 30 320 A.... "C:\Program Files\Mozilla Firefox\plds4.dll"
1 Nov 2008 18:40:48 112 232 A.... "C:\Program Files\Mozilla Firefox\smime3.dll"
1 Nov 2008 18:40:50 254 060 A.... "C:\Program Files\Mozilla Firefox\softokn3.dll"
1 Nov 2008 18:40:50 136 808 A.... "C:\Program Files\Mozilla Firefox\ssl3.dll"
1 Nov 2008 18:40:50 132 232 A.... "C:\Program Files\Mozilla Firefox\updater.exe"
1 Nov 2008 18:40:50 13 416 A.... "C:\Program Files\Mozilla Firefox\xpcom.dll"
1 Nov 2008 18:40:50 12 400 A.... "C:\Program Files\Mozilla Firefox\xpistub.dll"
1 Nov 2008 18:40:46 200 829 A.... "C:\Program Files\Mozilla Firefox\freebl3.dll"
1 Nov 2008 18:40:50 73 848 A.... "C:\Program Files\Mozilla Firefox\xpcom_compat.dll"
1 Nov 2008 18:40:50 422 000 A.... "C:\Program Files\Mozilla Firefox\xpcom_core.dll"
1 Nov 2008 18:40:50 73 336 A.... "C:\Program Files\Mozilla Firefox\xpicleanup.exe"
1 Nov 2008 18:05:32 15 585 A.... "C:\Program Files\Malwarebytes' Anti-Malware\unins000.dat"
10 Sep 2008 0:03:54 380 080 A.... "C:\Program Files\Malwarebytes' Anti-Malware\mbam-dor.exe"
10 Sep 2008 0:03:56 73 392 A.... "C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll"
10 Sep 2008 0:03:58 44 720 A.... "C:\Program Files\Malwarebytes' Anti-Malware\ssubtmr6.dll"
22 Oct 2008 16:10:18 65 168 A.... "C:\Program Files\Malwarebytes' Anti-Malware\mbam.dll"
22 Oct 2008 16:10:20 1 261 200 A.... "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe"
22 Oct 2008 16:10:36 77 968 A.... "C:\Program Files\Malwarebytes' Anti-Malware\zlib.dll"
22 Oct 2008 16:10:24 399 504 A.... "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe"
22 Oct 2008 16:10:24 170 640 A.... "C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe"
1 Nov 2008 18:05:16 688 784 A.... "C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
1 Nov 2008 17:58:26 25 624 A.... "C:\Program Files\Spybot - Search & Destroy\unins000.dat"
1 Nov 2008 17:56:42 696 200 A.... "C:\Program Files\Spybot - Search & Destroy\unins000.exe"
16 Sep 2008 12:16:08 1 833 296 A.SHR "C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe"
15 Sep 2008 14:25:44 1 562 960 A.SHR "C:\Program Files\Spybot - Search & Destroy\SDHelper.dll"
29 Sep 2008 16:11:54 1 279 216 A.... "C:\Program Files\CCleaner\CCleaner.exe"
25 Sep 2008 1:40:22 24 064 A.... "C:\Program Files\CCleaner\lang-1036.dll"
1 Nov 2008 18:22:00 114 605 A.... "C:\Program Files\CCleaner\uninst.exe"
1 Nov 2008 18:38:04 18 678 A.... "C:\Program Files\a-squared Anti-Malware\unins000.dat"
1 Nov 2008 18:37:08 717 976 A.... "C:\Program Files\a-squared Anti-Malware\unins000.exe"
1 Nov 2008 18:50:26 234 640 A.... "C:\Program Files\a-squared Anti-Malware\a2cmd.exe"
1 Nov 2008 18:51:44 2 780 816 A.... "C:\Program Files\a-squared Anti-Malware\a2guard.exe"
16 Sep 2008 17:39:30 207 488 A.... "C:\Program Files\a-squared Anti-Malware\a2handler.dll"
4 Oct 2008 12:24:44 1 069 184 A.... "C:\Program Files\a-squared Anti-Malware\a2HiJackFree.exe"
1 Nov 2008 18:50:12 982 528 A.... "C:\Program Files\a-squared Anti-Malware\a2hosts.dat"
1 Nov 2008 18:52:28 1 240 208 A.... "C:\Program Files\a-squared Anti-Malware\a2scan.exe"
1 Nov 2008 18:52:16 1 152 136 A.... "C:\Program Files\a-squared Anti-Malware\a2start.exe"
4 Oct 2008 12:24:44 89 736 A.... "C:\Program Files\a-squared Anti-Malware\a2upd.exe"
1 Nov 2008 18:52:30 96 204 A.... "C:\Program Files\a-squared Anti-Malware\a2wl.dat"
16 Sep 2008 17:39:32 263 808 A.... "C:\Program Files\a-squared Anti-Malware\core.dll"
1 Nov 2008 18:52:04 451 712 A.... "C:\Program Files\a-squared Anti-Malware\engine.dll"
1 Nov 2008 18:50:00 224 416 A.... "C:\Program Files\a-squared Anti-Malware\a2contmenu.dll"
1 Nov 2008 18:49:58 300 704 A.... "C:\Program Files\a-squared Anti-Malware\a2contmenu64.dll"
1 Nov 2008 18:51:20 264 696 A.... "C:\Program Files\a-squared Anti-Malware\t3.dll"
1 Nov 2008 18:51:48 419 448 A.... "C:\Program Files\a-squared Anti-Malware\a2service.exe"
1 Nov 2008 18:50:30 321 160 A.... "C:\Program Files\a-squared Anti-Malware\a2update.dll"
1 Nov 2008 18:51:22 290 960 A.... "C:\Program Files\a-squared Anti-Malware\a2framework.dll"
1 Nov 2008 18:51:58 1 127 064 A.... "C:\Program Files\a-squared Anti-Malware\a2wizard.exe"
1 Nov 2008 18:40:48 22 664 A.... "C:\Program Files\Mozilla Firefox\plugins\npnul32.dll"
1 Nov 2008 18:40:42 67 696 A.... "C:\Program Files\Mozilla Firefox\components\jar50.dll"
1 Nov 2008 18:40:42 54 376 A.... "C:\Program Files\Mozilla Firefox\components\jsd3250.dll"
1 Nov 2008 18:40:42 34 952 A.... "C:\Program Files\Mozilla Firefox\components\myspell.dll"
1 Nov 2008 18:40:42 46 720 A.... "C:\Program Files\Mozilla Firefox\components\spellchk.dll"
1 Nov 2008 18:40:42 172 144 A.... "C:\Program Files\Mozilla Firefox\components\xpinstal.dll"
1 Nov 2008 18:40:50 451 880 A.... "C:\Program Files\Mozilla Firefox\uninstall\helper.exe"
24 Sep 2008 18:02:36 813 416 A.... "C:\Program Files\Spybot - Search & Destroy\Updates\sdhelper161.zip"
15 Sep 2008 14:38:34 843 168 A.... "C:\Program Files\Spybot - Search & Destroy\Updates\sdhelper161.exe"
24 Sep 2008 18:02:48 908 027 A.... "C:\Program Files\Spybot - Search & Destroy\Updates\teatimer162.zip"
16 Sep 2008 12:19:08 937 696 A.... "C:\Program Files\Spybot - Search & Destroy\Updates\teatimer162.exe"
1 Nov 2008 22:04:40 70 766 A.... "C:\Program Files\Alwil Software\Avast4\DATA\iNews.htm"
2 Nov 2008 16:10:30 391 216 A.... "C:\Program Files\Alwil Software\Avast4\DATA\clnr0.dll"
2 Nov 2008 16:10:30 273 592 A.... "C:\Program Files\Alwil Software\Avast4\DATA\dllcc0.dat"
2 Nov 2008 16:10:30 9 080 A.... "C:\Program Files\Alwil Software\Avast4\DATA\exts0.dll"
2 Nov 2008 16:10:30 225 200 A.... "C:\Program Files\Alwil Software\Avast4\DATA\aswar0.dll"
1 Nov 2008 17:51:56 127 024 ..... "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll"
[b]Files with hidden attributes[/b]:
Mon 7 Jul 2008 1,429,840 A.SHR --- "C:\Program Files\Spybot - Search & Destroy\SDUpdate.exe"
Mon 7 Jul 2008 4,891,472 A.SHR --- "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe"
Tue 16 Sep 2008 1,833,296 A.SHR --- "C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe"
Mon 15 Sep 2008 1,562,960 A.SHR --- "C:\Program Files\Spybot - Search & Destroy\SDHelper.dll"
Sun 19 Mar 2006 48 A.SH. --- "C:\Documents and Settings\All Users\DRM\v2ks.sec.bak"
Sun 19 Mar 2006 400 A.SH. --- "C:\Documents and Settings\All Users\DRM\v2ks.bla.bak"
Sat 20 Mar 2004 4,348 ..SH. --- "C:\Documents and Settings\All Users\DRM\DRMv1.bak"
[b]Program Folders[/b]:
C:\Program Files\
Adobe
Ahead
Alwil Software
a-squared Anti-Malware
Audiograbber
AviSynth 2.5
BitLord
Canon
CCleaner
Common Files
ffdshow
Fichiers communs
InstallShield Installation Information
Internet Explorer
Java
Malwarebytes' Anti-Malware
Microids
microsoft frontpage
Microsoft Office
Microsoft Picture It! PhotoPub
Microsoft Works
Microsoft Works Suite 2003
Movie Maker
Mozilla Firefox
MSN
MSN Gaming Zone
My Shared Folder
MyHeritage
MYIE2
NetMeeting
Outlook Express
PC-Linq
Postal2
QuickTime
Raccourcis de programmes
Real
Ripp-it_AM
SAMSUNG
Securitoo
Services en ligne
SLD CODEC PACK 1.5.3
Soulseek
Spybot - Search & Destroy
Symantec
Thomson
totalcmd
Uninstall Information
Universal Combat Demo
Viewpoint
Wanadoo
Winamp
Windows Media Player
Windows NT
WindowsUpdate
xerox
Yahoo!
C:\Program Files\Fichiers communs\
Adobe
Ahead
Designer
InstallShield
Java
Microsoft Shared
MSSoap
Nero
NSV
ODBC
Real
Services
SpeechEngines
Symantec Shared
System
[b]Add/Remove Programs[/b]:
a-squared Anti-Malware 4.0
Adobe Acrobat 5.0
Adobe Flash Player 10 Plugin
SENS LT56ADW Modem
avast! Antivirus
CCleaner (remove only)
Creative PC-CAM 600 Driver (1.03.01.1023)
Navigateur Orange
Gestionnaire Internet
HijackThis 2.0.2
LiveReg (Symantec Corporation)
LiveUpdate 1.7 (Symantec Corporation)
Macromedia Shockwave Player
Malwarebytes' Anti-Malware
Microsoft .NET Framework (French) v1.0.3705
Mozilla Firefox (2.0.0.17)
Intel(R) PRO Ethernet Adapter and Software
Windows XP Hotfix (SP1) [See Q307274 for more information]
Windows XP Hotfix (SP1) [See Q308677 for more information]
Windows XP Hotfix (SP1) [See Q309521 for more information]
Windows XP Hotfix (SP1) [See Q311889 for more information]
Windows XP Hotfix (SP1) [See Q311967 for more information]
Windows XP Hotfix (SP1) [See Q312370 for more information]
Windows XP Hotfix (SP1) [See Q313450 for more information]
Windows XP Hotfix (SP1) [See Q314862 for more information]
Windows XP Hotfix (SP1) [See Q315000 for more information]
Windows XP Hotfix (SP1) [See Q315403 for more information]
Windows XP Hotfix (SP1) [See Q317277 for more information]
Windows XP Hotfix (SP1) [See Q318138 for more information]
Windows XP Application Compatibility Update[Q319580]
Windows XP Hotfix (SP1) [See Q323172 for more information]
Windows XP Hotfix (SP1) [See Q324096 for more information]
Windows XP Hotfix (SP1) [See Q324380 for more information]
Windows XP Hotfix (SP1) [See Q326830 for more information]
Windows XP Hotfix (SP1) Q328310
Windows XP Hotfix (SP1) [See Q328940 for more information]
Windows XP Hotfix (SP1) [See Q329048 for more information]
Package du correctif Windows XP [voir Q329115 pour plus de détails]
Windows XP Hotfix (SP1) Q329170
Windows XP Hotfix (SP1) [See Q329390 for more information]
Windows XP Hotfix (SP1) [See Q329441 for more information]
Windows XP Hotfix (SP1) [See Q329834 for more information]
Windows XP Hotfix (SP1) Q810577
Windows XP Hotfix (SP1) Q810833
Windows XP Hotfix (SP1) Q811493
Windows XP Hotfix (SP1) Q815021
Windows XP Hotfix (SP1) Q817606
Windows XP Hotfix (SP1) Q819696
Correctif pour le Lecteur Windows Media [Voir wm828026 pour plus d'informations]
Ri4m v5.0.1d
Shockwave
SLD CODEC PACK 1.5.3
Viewpoint Media Player (Remove Only)
Winamp
Winterscapes LITE Screen Saver
Sélecteur d'installation de Microsoft Works Suite 2003
Yahoo! Toolbar avec bloqueur de fenêtres pop-up
Yahoo! Toolbar
Microsoft .NET Framework (French)
Java 2 Runtime Environment, SE v1.4.2_03
Intel(R) Extreme Graphics Driver
Microsoft Word 2002
MagicLAN 11Mbps WirelessLAN MiniPCI Card Driver
Spybot - Search & Destroy
Microsoft .NET Framework 1.1
SpeedTouch USB Software
OS Pack Works Suite
SENS Keyboard V4 Launcher
Microsoft Picture It! Express 2001
[b]Run Values[/b]:
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"IgfxTray"="C:\\WINDOWS\\System32\\igfxtray.exe"
"HotKeysCmds"="C:\\WINDOWS\\System32\\hkcmd.exe"
"AGRSMMSG"="AGRSMMSG.exe"
"SENS Keyboard V4 Launcher"="\"C:\\Program Files\\SAMSUNG\\SENS Keyboard V4 Launcher\\SENSKBD.EXE\""
"SunJavaUpdateSched"="C:\\Program Files\\Java\\j2re1.4.2_03\\bin\\jusched.exe"
"avast!"="C:\\PROGRA~1\\ALWILS~1\\Avast4\\ashDisp.exe"
"SpeedTouch USB Diagnostics"="\"C:\\Program Files\\Thomson\\SpeedTouch USB\\Dragdiag.exe\" /icon"
"WOOWATCH"="C:\\PROGRA~1\\WANADOO\\Watch.exe"
"WOOTASKBARICON"="C:\\PROGRA~1\\WANADOO\\GestMaj.exe TaskBarIcon.exe"
"ASuite"="E:\\sphg\\SuiteportableHG.exe"
"WinampAgent"="\"C:\\Program Files\\Winamp\\winampa.exe\""
"a-squared"="\"C:\\PROGRAM FILES\\A-SQUARED ANTI-MALWARE\\a2guard.exe\" /d=60"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"Installed"="1"
"NoChange"="1"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\System32\\ctfmon.exe"
"WOOKIT"="C:\\PROGRA~1\\WANADOO\\GestMaj.exe GestionnaireInternet.exe"
"SpybotSD TeaTimer"="C:\\Program Files\\Spybot - Search & Destroy\\TeaTimer.exe"
[b]Bot Check[/b]:
SERVICE_NAME: sharedaccess
DISPLAY_NAME : Pare-feu de connexion Internet (ICF) / Partage de connexion Internet (ICS)
START_TYPE : 2 AUTO_START
SERVICE_NAME: wuauserv
DISPLAY_NAME : Mises à jour automatiques
START_TYPE : 2 AUTO_START
SERVICE_NAME: srservice
DISPLAY_NAME : Service de restauration système
START_TYPE : 2 AUTO_START
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Ole]
"EnableDCOM"="Y"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"restrictanonymous"=dword:00000000
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update]
"AUOptions"=dword:00000003
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"WaitToKillServiceTimeout"="20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"SFCDisable"=dword:00000000
"Shell"="Explorer.exe"
"Userinit"="C:\\WINDOWS\\system32\\userinit.exe,userinit.exe,"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shell extensions]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NetBT\Parameters]
"TransportBindName"="\\Device\\"
[b]ShellExecuteHooks[/b]:
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""
[b]Environment[/b]:
HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager\environment
ComSpec REG_EXPAND_SZ %SystemRoot%\system32\cmd.exe
Path REG_EXPAND_SZ %SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
windir REG_EXPAND_SZ %SystemRoot%
OS REG_SZ Windows_NT
PATHEXT REG_SZ .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
TEMP REG_EXPAND_SZ %SystemRoot%\TEMP
TMP REG_EXPAND_SZ %SystemRoot%\TEMP
CLASSPATH REG_EXPAND_SZ .;
[b]SecurityProviders[/b]:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders
SecurityProviders REG_SZ msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll
[b]Authentication Packages[/b]:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa
Authentication Packages REG_MULTI_SZ msv1_0\0\0
[b]Subsystem Startup[/b]:
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems]
"Windows"="%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16"
[b]Midi Drivers[/b]:
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midi"="wdmaud.drv"
"midi1"="wdmaud.drv"
[b]Non-Default IFEO Debugger[/b]:
[b]Non-Default Installed Components[/b]:
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{acc563bc-4266-43f0-b6ed-9d38c4202c7e}
<NO NAME> REG_SZ Accès Internet Explorer
StubPath REG_EXPAND_SZ rundll32 iesetup.dll,IEAccessUserInst
Version REG_SZ 6,0,2600,0000
[b]Non-Default Safeboot Minimal[/b]:
[b]File Associations[/b]:
[HKEY_CLASSES_ROOT\batfile\shell\open\command]
@="\"%1\" %*"
[HKEY_CLASSES_ROOT\cmdfile\shell\open\command]
@="\"%1\" %*"
[HKEY_CLASSES_ROOT\comfile\shell\open\command]
@="\"%1\" %*"
[HKEY_CLASSES_ROOT\exefile\shell\open\command]
@="\"%1\" %*"
[HKEY_CLASSES_ROOT\htafile\shell\open\command]
@="C:\\WINDOWS\\System32\\mshta.exe \"%1\" %*"
[HKEY_CLASSES_ROOT\http\shell\open\command]
@="\"C:\\PROGRA~1\\WANADOO\\WOOBrowser\\WOOBrowser.exe\" %1"
[HKEY_CLASSES_ROOT\htmlfile\shell\open\command]
@="\"C:\\PROGRA~1\\WANADOO\\WOOBrowser\\WOOBrowser.exe\" %1"
[HKEY_CLASSES_ROOT\regedit\shell\open\command]
@="regedit.exe %1"
[HKEY_CLASSES_ROOT\regfile\shell\open\command]
@="regedit.exe \"%1\""
[HKEY_CLASSES_ROOT\scrfile\shell\open\command]
@="\"%1\" /S"
[HKEY_CLASSES_ROOT\txtfile\shell\open\command]
@="%SystemRoot%\system32\NOTEPAD.EXE %1"
[b]Finished![/b]
