Sujet Précédent Sujet Suivant

Rapport hijack

Résolu
nova -  
Destrio5 Messages postés 99820 Statut Modérateur -
Bonjour,
j'ai mon anti virus qui me signale deux fichiers infectés : "wuault exe cscript exe, mis biensur en quarantaine mais que l'antivirus me resignale systématiquement. impossible de détruire ces fichiers. dans l'attente d'une réponse je vous remercie par avance.
A voir également:

48 réponses

Précédent
Réponse 21 / 48
Destrio5 Messages postés 99820 Statut Modérateur 10 305
 
"apres avoir coché lecases il faut que j'appui sur SCAN?"
---> Non, ferme HijackThis puis refais la manip' qui permet d'obtenir un rapport HijackThis.
0
nova
 
je crois que j'ai merdé ,j'ai appuié sur scan voici quand mème le rapportLogfile of Trend Micro HijackThis v2.0.2
Scan saved at 02:40:08, on 01/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\netdde.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AxBx\VirusKeeper 2007 Pro\VirusKeeper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - d:\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - D:\SPYBOT~1\SDHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [VirusKeeper] C:\Program Files\AxBx\VirusKeeper 2007 Pro\VirusKeeper.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
0
Réponse 22 / 48
Destrio5 Messages postés 99820 Statut Modérateur 10 305
 
Bien pour le rapport.

As-tu encore des problèmes ?

Je te donne la suite de la procédure demain ;)
0
nova
 
écoute, au redemarrage c'était parfait le pc tourne correctement, maintenant on va voir par la suite ma femme me dira çça demain dans tous les cas un grand BRAVO et merci pour ta pacience je suis souvent à l'ecoute sur ccm et vous faites tous du bon boulo tun grand merci encore et bonne continuation tu me diras quand mème ce que tu en penses de l'anti virus c'est vrai que je ne l'ai pas payé cher 44Eu il me semble ,mais j'ai les mises à jour à vie
0
Réponse 23 / 48
Destrio5 Messages postés 99820 Statut Modérateur 10 305
 
Je ne connais pas cet antivirus.
0
Réponse 24 / 48
Destrio5 Messages postés 99820 Statut Modérateur 10 305
 
---> Supprime le dossier RSIT situé dans C:\

---> Refais un scan RSIT et poste les deux rapports.
0
nova
 
Logfile of random's system information tool 1.04 (written by random/random)
Run by Administrateur at 2008-12-01 08:09:12
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 10 GB (50%) free of 20 GB
Total RAM: 958 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 08:09:17, on 01/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\netdde.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AxBx\VirusKeeper 2007 Pro\VirusKeeper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Administrateur\Bureau\RSIT(2).exe
C:\Program Files\Trend Micro\HijackThis\Administrateur.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - d:\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - D:\SPYBOT~1\SDHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [VirusKeeper] C:\Program Files\AxBx\VirusKeeper 2007 Pro\VirusKeeper.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
0
nova
 
Logfile of random's system information tool 1.04 (written by random/random)
Run by Administrateur at 2008-12-01 08:09:12
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 10 GB (50%) free of 20 GB
Total RAM: 958 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 08:09:17, on 01/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\netdde.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AxBx\VirusKeeper 2007 Pro\VirusKeeper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Administrateur\Bureau\RSIT(2).exe
C:\Program Files\Trend Micro\HijackThis\Administrateur.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - d:\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - D:\SPYBOT~1\SDHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [VirusKeeper] C:\Program Files\AxBx\VirusKeeper 2007 Pro\VirusKeeper.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
0
nova
 
info.txt logfile of random's system information tool 1.04 2008-12-01 08:09:18

======Uninstall list======

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Acrobat 5.0-->C:\WINDOWS\ISUN040C.EXE -f"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.dll"
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 9 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A90000000001}
Architecte 3D - Silver-->D:\PROGRA~1\ARCHIT~1\UNWISE.EXE D:\PROGRA~1\ARCHIT~1\INSTALL.LOG
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
ATI - Software Uninstall Utility-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Catalyst Control Center-->MsiExec.exe /I{34566374-6C4D-419F-A9E0-8B21CA905FD8}
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
AusLogics Disk Defrag 1.4-->"C:\Program Files\AusLogics Disk Defrag\unins000.exe"
Bloqueur de fenêtres pop-up (Windows Live Toolbar)-->MsiExec.exe /X{A425C250-A0E1-4D78-B1C1-A5CBC7385E7C}
CCleaner (remove only)-->"D:\CCleaner\uninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Counter-Strike(TM)-->MsiExec.exe /I{DF5A03CC-D5AA-43D8-B948-D9903F2AF94A}
Extension de Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{0CA6047C-D28B-4295-834A-07C52BA20C2D}
Google Earth-->MsiExec.exe /I{1D14373E-7970-4F2F-A467-ACA4F0EA21E3}
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
HP Extended Capabilities 5.3-->C:\Program Files\HP\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.dat
HP Image Zone Express-->MsiExec.exe /X{FE64AE29-0883-4C70-8388-DC026019C900}
HP Imaging Device Functions 5.3-->C:\Program Files\HP\Digital Imaging\DigitalImagingMonitor\hpzscr01.exe -datfile hpqbud01.dat
HP Product Assistant-->MsiExec.exe /I{36FDBE6E-6684-462B-AE98-9A39A1B200CC}
HP PSC & OfficeJet 5.3.B-->"C:\Program Files\HP\Digital Imaging\{5B79CFD1-6845-4158-9D7D-6BE89DF2C135}\setup\hpzscr01.exe" -datfile hposcr07.dat
HP Solution Center & Imaging Support Tools 5.3-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat
HP Update-->MsiExec.exe /X{FE57DE70-95DE-4B64-9266-84DA811053DB}
Java(TM) 6 Update 10-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216010FF}
Kaspersky Online Scanner-->C:\WINDOWS\system32\KASPER~1\KASPER~1\kavuninstall.exe
Kaspersky On-line Scanner-->C:\WINDOWS\system32\KASPER~1\KASPER~1\kavuninstall.exe
livebox-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17342E3B-0818-4A6F-BFF8-99476605ADD6}\Setup.exe" -l0x40c
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Menus intelligents (Windows Live Toolbar)-->MsiExec.exe /X{0CC70FEF-5068-4CD5-B4DE-86FFD98EC929}
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Mio Technology SpeedCam Tool-->C:\PROGRA~1\MIOTEC~1\SPEEDC~1\Setup.exe /remove
Mio Transfer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2003F533-7639-4436-8404-CB3DE67F1FFA}\Setup.exe" -l0x40c
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127-v2)-->"C:\WINDOWS\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956390)-->"C:\WINDOWS\$NtUninstallKB956390$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mozilla Firefox (3.0.4)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
msxml4-->MsiExec.exe /X{5AE3D9F1-9E9E-4015-8787-E22705AA32C5}
Picasa 2-->"D:\Picasa2\Uninstall.exe"
Realtek AC'97 Audio-->Alcrmv.exe -r -m
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Spelling Dictionaries Support For Adobe Reader 9-->MsiExec.exe /I{AC76BA86-7AD7-5464-3428-900000000004}
Spybot - Search & Destroy-->"D:\Spybot - Search & Destroy\unins000.exe"
Steam(TM)-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
Surligneur (Windows Live Toolbar)-->MsiExec.exe /X{81B5F83F-2291-48B0-8375-36B63A9BF5B0}
Trek 310-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7AC09F4A-6AA6-4848-8959-A109BA079C5C}\Setup.exe" -l0x40c
Unlocker 1.8.7-->C:\Program Files\Unlocker\uninst.exe
VirusKeeper 2007 Pro-->"C:\Program Files\AxBx\VirusKeeper 2007 Pro\unins000.exe"
VLC media player 0.9.4-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Live Favorites pour Windows Live Toolbar-->MsiExec.exe /X{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}
Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
Windows Live Mail-->MsiExec.exe /I{C514C594-23AA-4F13-A070-DB8BDB27594F}
Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
Windows Live Sign-in Assistant-->MsiExec.exe /I{0ED47137-C071-46CC-A243-E5E33271E10E}
Windows Live Toolbar-->"C:\Program Files\Windows Live Toolbar\UnInstall.exe" {0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows Live Toolbar-->MsiExec.exe /X{0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"

=====HijackThis Backups=====

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O20 - AppInit_DLLs: abpexs.dll

======Security center information======

AV: VirusKeeper 2007 Pro

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\ATI Technologies\ATI.ACE
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 47 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=2f02
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP

-----------------EOF-----------------
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 48
nova
 
info.txt logfile of random's system information tool 1.04 2008-12-01 08:09:18

======Uninstall list======

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Acrobat 5.0-->C:\WINDOWS\ISUN040C.EXE -f"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.dll"
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 9 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A90000000001}
Architecte 3D - Silver-->D:\PROGRA~1\ARCHIT~1\UNWISE.EXE D:\PROGRA~1\ARCHIT~1\INSTALL.LOG
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
ATI - Software Uninstall Utility-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Catalyst Control Center-->MsiExec.exe /I{34566374-6C4D-419F-A9E0-8B21CA905FD8}
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
AusLogics Disk Defrag 1.4-->"C:\Program Files\AusLogics Disk Defrag\unins000.exe"
Bloqueur de fenêtres pop-up (Windows Live Toolbar)-->MsiExec.exe /X{A425C250-A0E1-4D78-B1C1-A5CBC7385E7C}
CCleaner (remove only)-->"D:\CCleaner\uninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Counter-Strike(TM)-->MsiExec.exe /I{DF5A03CC-D5AA-43D8-B948-D9903F2AF94A}
Extension de Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{0CA6047C-D28B-4295-834A-07C52BA20C2D}
Google Earth-->MsiExec.exe /I{1D14373E-7970-4F2F-A467-ACA4F0EA21E3}
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
HP Extended Capabilities 5.3-->C:\Program Files\HP\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.dat
HP Image Zone Express-->MsiExec.exe /X{FE64AE29-0883-4C70-8388-DC026019C900}
HP Imaging Device Functions 5.3-->C:\Program Files\HP\Digital Imaging\DigitalImagingMonitor\hpzscr01.exe -datfile hpqbud01.dat
HP Product Assistant-->MsiExec.exe /I{36FDBE6E-6684-462B-AE98-9A39A1B200CC}
HP PSC & OfficeJet 5.3.B-->"C:\Program Files\HP\Digital Imaging\{5B79CFD1-6845-4158-9D7D-6BE89DF2C135}\setup\hpzscr01.exe" -datfile hposcr07.dat
HP Solution Center & Imaging Support Tools 5.3-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat
HP Update-->MsiExec.exe /X{FE57DE70-95DE-4B64-9266-84DA811053DB}
Java(TM) 6 Update 10-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216010FF}
Kaspersky Online Scanner-->C:\WINDOWS\system32\KASPER~1\KASPER~1\kavuninstall.exe
Kaspersky On-line Scanner-->C:\WINDOWS\system32\KASPER~1\KASPER~1\kavuninstall.exe
livebox-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17342E3B-0818-4A6F-BFF8-99476605ADD6}\Setup.exe" -l0x40c
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Menus intelligents (Windows Live Toolbar)-->MsiExec.exe /X{0CC70FEF-5068-4CD5-B4DE-86FFD98EC929}
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Mio Technology SpeedCam Tool-->C:\PROGRA~1\MIOTEC~1\SPEEDC~1\Setup.exe /remove
Mio Transfer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2003F533-7639-4436-8404-CB3DE67F1FFA}\Setup.exe" -l0x40c
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127-v2)-->"C:\WINDOWS\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956390)-->"C:\WINDOWS\$NtUninstallKB956390$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mozilla Firefox (3.0.4)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
msxml4-->MsiExec.exe /X{5AE3D9F1-9E9E-4015-8787-E22705AA32C5}
Picasa 2-->"D:\Picasa2\Uninstall.exe"
Realtek AC'97 Audio-->Alcrmv.exe -r -m
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Spelling Dictionaries Support For Adobe Reader 9-->MsiExec.exe /I{AC76BA86-7AD7-5464-3428-900000000004}
Spybot - Search & Destroy-->"D:\Spybot - Search & Destroy\unins000.exe"
Steam(TM)-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
Surligneur (Windows Live Toolbar)-->MsiExec.exe /X{81B5F83F-2291-48B0-8375-36B63A9BF5B0}
Trek 310-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7AC09F4A-6AA6-4848-8959-A109BA079C5C}\Setup.exe" -l0x40c
Unlocker 1.8.7-->C:\Program Files\Unlocker\uninst.exe
VirusKeeper 2007 Pro-->"C:\Program Files\AxBx\VirusKeeper 2007 Pro\unins000.exe"
VLC media player 0.9.4-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Live Favorites pour Windows Live Toolbar-->MsiExec.exe /X{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}
Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
Windows Live Mail-->MsiExec.exe /I{C514C594-23AA-4F13-A070-DB8BDB27594F}
Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
Windows Live Sign-in Assistant-->MsiExec.exe /I{0ED47137-C071-46CC-A243-E5E33271E10E}
Windows Live Toolbar-->"C:\Program Files\Windows Live Toolbar\UnInstall.exe" {0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows Live Toolbar-->MsiExec.exe /X{0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"

=====HijackThis Backups=====

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O20 - AppInit_DLLs: abpexs.dll

======Security center information======

AV: VirusKeeper 2007 Pro

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\ATI Technologies\ATI.ACE
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 47 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=2f02
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP

-----------------EOF-----------------
0
Réponse 26 / 48
Destrio5 Messages postés 99820 Statut Modérateur 10 305
 
---> Télécharge OTMoveIt3 (OldTimer) sur ton Bureau :
http://oldtimer.geekstogo.com/OTMoveIt3.exe

---> Double-clique sur OTMoveIt3.exe afin de le lancer.

---> Copie (Ctrl+C) le texte suivant ci-dessous :

:processes
explorer.exe

:files
C:\WINDOWS\system32\0390a544-.txt

:reg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

:commands
[purity]
[emptytemp]
[start explorer]
[reboot]

---> Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.

---> Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.

Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.

---> Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log
0
nova
 
bonjour,DESTRIO 5 je vais de ce pas telecharger ce que tu me demande
0
nova
 
Error: Unable to interpret <Message suivant> in the current context!
Error: Unable to interpret <Flux rss> in the current context!
Error: Unable to interpret < * High-Tech> in the current context!
Error: Unable to interpret < * Droit/Finances> in the current context!
Error: Unable to interpret < * Santé/Médecine> in the current context!
Error: Unable to interpret <Version anglaiseVersion espagnoleVersion française> in the current context!
Error: Unable to interpret < * Lundi 1 décembre 2008 - 15:17:23> in the current context!
Error: Unable to interpret < * inscrits : 1088741> in the current context!
Error: Unable to interpret < * connectés : 56416> in the current context!
Error: Unable to interpret < * questions/jour : 4900> in the current context!
Error: Unable to interpret < * Taux de réponse : 75.32%> in the current context!
Error: Unable to interpret <Inscrivez-vous, c'est gratuit ! (mot de passe oublié)> in the current context!
Error: Unable to interpret <CommentCaMarche.net - Communauté informatique> in the current context!
Error: Unable to interpret < * Tout le site> in the current context!
Error: Unable to interpret < * FAQ> in the current context!
Error: Unable to interpret < * Guide d'achat> in the current context!
Error: Unable to interpret < * Forum> in the current context!
Error: Unable to interpret < * Téléchargements> in the current context!
Error: Unable to interpret < * Actualités> in the current context!
Error: Unable to interpret < * Articles> in the current context!
Error: Unable to interpret < * Accueil> in the current context!
Error: Unable to interpret < * Forum> in the current context!
Error: Unable to interpret < * Astuces> in the current context!
Error: Unable to interpret < * Télécharger> in the current context!
Error: Unable to interpret < * Actualités> in the current context!
Error: Unable to interpret < * Dossiers> in the current context!
Error: Unable to interpret < * Guide d'achat> in the current context!
Error: Unable to interpret < * Emploi> in the current context!
Error: Unable to interpret < * Décideurs> in the current context!
Error: Unable to interpret < o E-business> in the current context!
Error: Unable to interpret < o Gestion de projet> in the current context!
Error: Unable to interpret < o Infrastructures> in the current context!
Error: Unable to interpret < o Qualité> in the current context!
Error: Unable to interpret < o Sécurité informatique> in the current context!
Error: Unable to interpret < o Logiciels professionnels> in the current context!
Error: Unable to interpret <o> in the current context!
Error: Unable to interpret <Posez votre question Format imprimable Liste des forums Aidez-les Statistiques Rechercher CharteForum Virus-Sécurité> in the current context!
Error: Unable to interpret <A voir également Analyse rapport hijackthis Analyse rapport hijackthis malekal tutorial Analyse rapport hijackthis o16 Comment rédiger un rapport de stage Commentcamarche net forum affich 9100 660 rapport hijackthis Conclusion rapport de stage Detecter virus dans rapport hijackthis Etudier rapport hijackthis Exemple de rapport de stage Exemple rapport de stage Faire un rapport d'hijackthis Hijackfree rapport emsi Lire un rapport hijackthis Ou coller le rapport hijackthis Rapport de stage Rapport de stage 3eme Rapport de stage conclusion Rapport de stage en anglais Rapport hijack Rapport hijackthis Rapport hijackthis virus Rapportd hijackthis analyse envoyer Traduire un rapport hijackthisPlus> in the current context!
Error: Unable to interpret <Ils ont besoin de votre aide> in the current context!
Error: Unable to interpret < * RSSOptions> in the current context!
Error: Unable to interpret < * 15:17 Problème free (Matériel/Hardware)> in the current context!
Error: Unable to interpret < * 15:16 vba messages de liaisons (Programmation)> in the current context!
Error: Unable to interpret < * 15:16 réseau sans serveur?! (Réseaux)> in the current context!
Error: Unable to interpret < * 15:15 comment afficher les ip sur son site (Webmastering)> in the current context!
Error: Unable to interpret < * 15:15 probleme interactive dvd-kids (Jeux vidéos)> in the current context!
Error: Unable to interpret < * 15:14 lfp manager 2008 (Jeux vidéos)> in the current context!
Error: Unable to interpret < * 15:14 parabole et tnt (Vidéo numérique)> in the current context!
Error: Unable to interpret < * Tous les messages sans réponse> in the current context!
Error: Unable to interpret <Téléchargez gratuitement la nouvelle version> in the current context!
Error: Unable to interpret <de SQL Server 2008> in the current context!
Error: Unable to interpret <Click Here> in the current context!
Error: Unable to interpret <Collection CommentCaMarche.net> in the current context!
Error: Unable to interpret < * Consulter la collection CommentCaMarche.net> in the current context!
Error: Unable to interpret < * Tout sur les e-outils pour les TPE - PME> in the current context!
Error: Unable to interpret < par Jean-Philippe Élie> in the current context!
Error: Unable to interpret < * Tout sur les outils Google> in the current context!
Error: Unable to interpret < par Jean-Philippe Élie> in the current context!
Error: Unable to interpret < * Tout sur le Web 2.0> in the current context!
Error: Unable to interpret < par Capucine Cousin> in the current context!
Error: Unable to interpret < * Plus de livres> in the current context!
Error: Unable to interpret <Plateformes d'assistance> in the current context!
Error: Unable to interpret <Windows> in the current context!
Error: Unable to interpret <Linux/Unix> in the current context!
Error: Unable to interpret <MacOS> in the current context!
Error: Unable to interpret <Matériel/Hardware> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Logiciels/Pilotes> in the current context!
Error: Unable to interpret <Bureautique> in the current context!
Error: Unable to interpret <Jeux vidéos> in the current context!
Error: Unable to interpret <Audio numérique> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Infographie/Photo> in the current context!
Error: Unable to interpret <Vidéo numérique> in the current context!
Error: Unable to interpret <Gravure> in the current context!
Error: Unable to interpret <Téléphonie/PDA/GPS> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Programmation> in the current context!
Error: Unable to interpret <Webmastering> in the current context!
Error: Unable to interpret <Réseaux> in the current context!
Error: Unable to interpret <Internet> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Messagerie/Chat> in the current context!
Error: Unable to interpret <Virus/Sécurité> in the current context!
Error: Unable to interpret <Discussions & Opinions des Communautés> in the current context!
Error: Unable to interpret <Actualités> in the current context!
Error: Unable to interpret <Etudes/Formation> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Droit/Libertés> in the current context!
Error: Unable to interpret <Cinéma/Télé> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Musique/Radio> in the current context!
Error: Unable to interpret <Loisirs/Divertissement> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Suggestions> in the current context!
Error: Unable to interpret <Café des membres> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Rechercher : dans > in the current context!
Error: Unable to interpret <Par : Pertinence Date Nom d'utilisateur> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <50 réponses 12> in the current context!
Error: Unable to interpret <35> in the current context!
Error: Unable to interpret < *> in the current context!
Error: Unable to interpret < Ce message vous semble utile, votez !> in the current context!
Error: Unable to interpret < * Signaler ce message aux modérateurs> in the current context!
Error: Unable to interpret <*> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Destrio5, le lundi 1 décembre 2008 à 02:08:47> in the current context!
Error: Unable to interpret <---> Relance HijackThis et choisis Do a system scan only> in the current context!
Error: Unable to interpret <---> Coche les cases qui sont devant les lignes suivantes :> in the current context!
Error: Unable to interpret <O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe> in the current context!
Error: Unable to interpret <O20 - AppInit_DLLs: abpexs.dll> in the current context!
Error: Unable to interpret <---> Clique en bas sur Fix checked. Mets oui si HijackThis te demande quelque chose.> in the current context!
Error: Unable to interpret <---> Redémarre ton PC et poste un nouveau rapport HijackThis.> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Répondre à Destrio5> in the current context!
Error: Unable to interpret <38> in the current context!
Error: Unable to interpret < *> in the current context!
Error: Unable to interpret < Ce message vous semble utile, votez !> in the current context!
Error: Unable to interpret < * Signaler ce message aux modérateurs> in the current context!
Error: Unable to interpret <*> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <nova, le lundi 1 décembre 2008 à 02:27:54> in the current context!
Error: Unable to interpret <apres avoir coché lecases il faut que j'appui sur SCAN?> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Répondre à nova> in the current context!
Error: Unable to interpret <37> in the current context!
Error: Unable to interpret < *> in the current context!
Error: Unable to interpret < Ce message vous semble utile, votez !> in the current context!
Error: Unable to interpret < * Signaler ce message aux modérateurs> in the current context!
Error: Unable to interpret <*> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Destrio5, le lundi 1 décembre 2008 à 02:18:34> in the current context!
Error: Unable to interpret <Oui, c'est une version piratée donc tu ne peux pas faire les mises à jour Windows sous peine de bloquer Windows.> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Répondre à Destrio5> in the current context!
Error: Unable to interpret <39> in the current context!
Error: Unable to interpret < *> in the current context!
Error: Unable to interpret < Ce message vous semble utile, votez !> in the current context!
Error: Unable to interpret < * Signaler ce message aux modérateurs> in the current context!
Error: Unable to interpret <*> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Destrio5, le lundi 1 décembre 2008 à 02:29:37> in the current context!
Error: Unable to interpret <"apres avoir coché lecases il faut que j'appui sur SCAN?"> in the current context!
Error: Unable to interpret <---> Non, ferme HijackThis puis refais la manip' qui permet d'obtenir un rapport HijackThis.> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Répondre à Destrio5> in the current context!
Error: Unable to interpret <40> in the current context!
Error: Unable to interpret < *> in the current context!
Error: Unable to interpret < Ce message vous semble utile, votez !> in the current context!
Error: Unable to interpret < * Signaler ce message aux modérateurs> in the current context!
Error: Unable to interpret <*> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <nova, le lundi 1 décembre 2008 à 02:47:25> in the current context!
Error: Unable to interpret <je crois que j'ai merdé ,j'ai appuié sur scan voici quand mème le rapportLogfile of Trend Micro HijackThis v2.0.2> in the current context!
Error: Unable to interpret <Scan saved at 02:40:08, on 01/12/2008> in the current context!
Error: Unable to interpret <Platform: Windows XP SP3 (WinNT 5.01.2600)> in the current context!
Error: Unable to interpret <MSIE: Internet Explorer v7.00 (7.00.6000.16735)> in the current context!
Error: Unable to interpret <Boot mode: Normal> in the current context!
Error: Unable to interpret <Running processes:> in the current context!
Error: Unable to interpret <C:\WINDOWS\System32\smss.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\winlogon.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\services.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lsass.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\Ati2evxx.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\svchost.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\System32\svchost.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\spoolsv.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\System32\svchost.exe> in the current context!
Error: Unable to interpret <C:\Program Files\Java\jre6\bin\jqs.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\netdde.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\svchost.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\Ati2evxx.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\Explorer.EXE> in the current context!
Error: Unable to interpret <C:\Program Files\AxBx\VirusKeeper 2007 Pro\VirusKeeper.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ctfmon.exe> in the current context!
Error: Unable to interpret <C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe> in the current context!
Error: Unable to interpret <C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe> in the current context!
Error: Unable to interpret <C:\Program Files\Mozilla Firefox\firefox.exe> in the current context!
Error: Unable to interpret <C:\Program Files\Trend Micro\HijackThis\HijackThis.exe> in the current context!
Error: Unable to interpret <R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/> in the current context!
Error: Unable to interpret <R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp>= in the current context!
Error: Unable to interpret <R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?gt;=&toHttps=1&redig=BD196CE4339F42A69BDE924EA1945EBF in the current context!
Error: Unable to interpret <R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?gt;=&toHttps=1&redig=BD196CE4339F42A69BDE924EA1945EBF in the current context!
Error: Unable to interpret <R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp>= in the current context!
Error: Unable to interpret <R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens> in the current context!
Error: Unable to interpret <O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - d:\Reader\ActiveX\AcroIEHelper.ocx> in the current context!
Error: Unable to interpret <O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll> in the current context!
Error: Unable to interpret <O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - D:\SPYBOT~1\SDHelper.dll> in the current context!
Error: Unable to interpret <O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll> in the current context!
Error: Unable to interpret <O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)> in the current context!
Error: Unable to interpret <O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll> in the current context!
Error: Unable to interpret <O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll> in the current context!
Error: Unable to interpret <O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll> in the current context!
Error: Unable to interpret <O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll> in the current context!
Error: Unable to interpret <O4 - HKLM\..\Run: [VirusKeeper] C:\Program Files\AxBx\VirusKeeper 2007 Pro\VirusKeeper.exe> in the current context!
Error: Unable to interpret <O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe> in the current context!
Error: Unable to interpret <O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')> in the current context!
Error: Unable to interpret <O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')> in the current context!
Error: Unable to interpret <O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')> in the current context!
Error: Unable to interpret <O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')> in the current context!
Error: Unable to interpret <O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe> in the current context!
Error: Unable to interpret <O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm> in the current context!
Error: Unable to interpret <O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites in the current context!
Error: Unable to interpret <O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\SPYBOT~1\SDHelper.dll> in the current context!
Error: Unable to interpret <O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\SPYBOT~1\SDHelper.dll> in the current context!
Error: Unable to interpret <O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe> in the current context!
Error: Unable to interpret <O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe> in the current context!
Error: Unable to interpret <O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe> in the current context!
Error: Unable to interpret <O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe> in the current context!
Error: Unable to interpret <O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr in the current context!
Error: Unable to interpret <O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab> in the current context!
Error: Unable to interpret <O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe> in the current context!
Error: Unable to interpret <O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe> in the current context!
Error: Unable to interpret <O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe> in the current context!
Error: Unable to interpret <O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe> in the current context!
Error: Unable to interpret <O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe> in the current context!
Error: Unable to interpret <End of file - 5121 bytes> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Répondre à nova> in the current context!
Error: Unable to interpret <41> in the current context!
Error: Unable to interpret < *> in the current context!
Error: Unable to interpret < Ce message vous semble utile, votez !> in the current context!
Error: Unable to interpret < * Signaler ce message aux modérateurs> in the current context!
Error: Unable to interpret <*> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Destrio5, le lundi 1 décembre 2008 à 03:00:05> in the current context!
Error: Unable to interpret <Bien pour le rapport.> in the current context!
Error: Unable to interpret <As-tu encore des problèmes ?> in the current context!
Error: Unable to interpret <Je te donne la suite de la procédure demain ;)> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Répondre à Destrio5> in the current context!
Error: Unable to interpret <42> in the current context!
Error: Unable to interpret < *> in the current context!
Error: Unable to interpret < Ce message vous semble utile, votez !> in the current context!
Error: Unable to interpret < * Signaler ce message aux modérateurs> in the current context!
Error: Unable to interpret <*> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <nova, le lundi 1 décembre 2008 à 03:13:14> in the current context!
Error: Unable to interpret <écoute, au redemarrage c'était parfait le pc tourne correctement, maintenant on va voir par la suite ma femme me dira çça demain dans tous les cas un grand BRAVO et merci pour ta pacience je suis souvent à l'ecoute sur ccm et vous faites tous du bon boulo tun grand merci encore et bonne continuation tu me diras quand mème ce que tu en penses de l'anti virus c'est vrai que je ne l'ai pas payé cher 44Eu il me semble ,mais j'ai les mises à jour à vie> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Répondre à nova> in the current context!
Error: Unable to interpret <43> in the current context!
Error: Unable to interpret < *> in the current context!
Error: Unable to interpret < Ce message vous semble utile, votez !> in the current context!
Error: Unable to interpret < * Signaler ce message aux modérateurs> in the current context!
Error: Unable to interpret <*> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Destrio5, le lundi 1 décembre 2008 à 03:24:17> in the current context!
Error: Unable to interpret <Je ne connais pas cet antivirus.> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Répondre à Destrio5> in the current context!
Error: Unable to interpret <44> in the current context!
Error: Unable to interpret < *> in the current context!
Error: Unable to interpret < Ce message vous semble utile, votez !> in the current context!
Error: Unable to interpret < * Signaler ce message aux modérateurs> in the current context!
Error: Unable to interpret <*> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Destrio5, le lundi 1 décembre 2008 à 03:43:02> in the current context!
Error: Unable to interpret <---> Supprime le dossier RSIT situé dans C:\> in the current context!
Error: Unable to interpret <---> Refais un scan RSIT et poste les deux rapports.> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <Répondre à Destrio5> in the current context!
Error: Unable to interpret <46> in the current context!
Error: Unable to interpret < *> in the current context!
Error: Unable to interpret < Ce message vous semble utile, votez !> in the current context!
Error: Unable to interpret < * Signaler ce message aux modérateurs> in the current context!
Error: Unable to interpret <*> in the current context!
Error: Unable to interpret < > in the current context!
Error: Unable to interpret <nova, le lundi 1 décembre 2008 à 08:41:03> in the current context!
Error: Unable to interpret <Logfile of random's system information tool 1.04 (written by random/random)> in the current context!
Error: Unable to interpret <Run by Administrateur at 2008-12-01 08:09:12> in the current context!
Error: Unable to interpret <Microsoft Windows XP Professionnel Service Pack 3> in the current context!
Error: Unable to interpret <System drive C: has 10 GB (50%) free of 20 GB> in the current context!
Error: Unable to interpret <Total RAM: 958 MB (60% free)> in the current context!
Error: Unable to interpret <Logfile of Trend Micro HijackThis v2.0.2> in the current context!
Error: Unable to interpret <Scan saved at 08:09:17, on 01/12/2008> in the current context!
Error: Unable to interpret <Platform: Windows XP SP3 (WinNT 5.01.2600)> in the current context!
Error: Unable to interpret <MSIE: Internet Explorer v7.00 (7.00.6000.16735)> in the current context!
Error: Unable to interpret <Boot mode: Normal> in the current context!
Error: Unable to interpret <Running processes:> in the current context!
Error: Unable to interpret <C:\WINDOWS\System32\smss.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\winlogon.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\services.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\lsass.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\Ati2evxx.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\svchost.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\System32\svchost.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\spoolsv.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\System32\svchost.exe> in the current context!
Error: Unable to interpret <C:\Program Files\Java\jre6\bin\jqs.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\netdde.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\svchost.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\wbem\wmiapsrv.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\Ati2evxx.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\Explorer.EXE> in the current context!
Error: Unable to interpret <C:\Program Files\AxBx\VirusKeeper 2007 Pro\VirusKeeper.exe> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\ctfmon.exe> in the current context!
Error: Unable to interpret <C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe> in the current context!
Error: Unable to interpret <C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe> in the current context!
Error: Unable to interpret <C:\Program Files\Mozilla Firefox\firefox.exe> in the current context!
Error: Unable to interpret <C:\Documents and Settings\Administrateur\Bureau\RSIT(2).exe> in the current context!
Error: Unable to interpret <C:\Program Files\Trend Micro\HijackThis\Administrateur.exe> in the current context!
Error: Unable to interpret <R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/> in the current context!
Error: Unable to interpret <R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp>= in the current context!
Error: Unable to interpret <R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?gt;=&toHttps=1&redig=BD196CE4339F42A69BDE924EA1945EBF in the current context!
Error: Unable to interpret <R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?gt;=&toHttps=1&redig=BD196CE4339F42A69BDE924EA1945EBF in the current context!
Error: Unable to interpret <R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp>= in the current context!
Error: Unable to interpret <R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens> in the current context!
Error: Unable to interpret <O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - d:\Reader\ActiveX\AcroIEHelper.ocx> in the current context!
Error: Unable to interpret <O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll> in the current context!
Error: Unable to interpret <O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - D:\SPYBOT~1\SDHelper.dll> in the current context!
Error: Unable to interpret <O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll> in the current context!
Error: Unable to interpret <O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)> in the current context!
Error: Unable to interpret <O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll> in the current context!
Error: Unable to interpret <O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll> in the current context!
Error: Unable to interpret <O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll> in the current context!
Error: Unable to interpret <O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll> in the current context!
Error: Unable to interpret <O4 - HKLM\..\Run: [VirusKeeper] C:\Program Files\AxBx\VirusKeeper 2007 Pro\VirusKeeper.exe> in the current context!
Error: Unable to interpret <O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe> in the current context!
Error: Unable to interpret <O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')> in the current context!
Error: Unable to interpret <O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')> in the current context!
Error: Unable to interpret <O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')> in the current context!
Error: Unable to interpret <O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')> in the current context!
Error: Unable to interpret <O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe> in the current context!
Error: Unable to interpret <O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm> in the current context!
Error: Unable to interpret <O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites in the current context!
Error: Unable to interpret <O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\SPYBOT~1\SDHelper.dll> in the current context!
Error: Unable to interpret <O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\SPYBOT~1\SDHelper.dll> in the current context!
Error: Unable to interpret <O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe> in the current context!
Error: Unable to interpret <O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe> in the current context!
Error: Unable to interpret <O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe> in the current context!
Error: Unable to interpret <O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe> in the current context!
Error: Unable to interpret <O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr in the current context!
Error: Unable to interpret <O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab> in the current context!
Error: Unable to interpret <O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe> in the current context!
Error: Unable to interpret <O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe> in the current context!
Error: Unable to interpret <O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe> in the current context!
Error: Unable to interpret <O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe> in the current context!
Error: Unable to interpret <O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe> in the current context!
Error: Unable to interpret <End of file - 5225 bytes> in the current context!
Error: Unable to interpret <======Scheduled tasks folder======> in the current context!
Error: Unable to interpret <C:\WINDOWS\tasks\Vérifier les mises à jour de Windows Live Toolbar.job> in the current context!
Error: Unable to interpret <======Registry dump======> in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]> in the current context!
Error: Unable to interpret <AcroIEHlprObj Class - d:\Reader\ActiveX\AcroIEHelper.ocx [2001-04-16 37808]> in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]> in the current context!
Error: Unable to interpret <Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]> in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]> in the current context!
Error: Unable to interpret <Spybot-S&D IE Protection - D:\SPYBOT~1\SDHelper.dll [2008-09-15 1562960]> in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]> in the current context!
Error: Unable to interpret <Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2008-11-03 320920]> in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]> in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]> in the current context!
Error: Unable to interpret <Windows Live Sign-in Helper - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-12-14 392240]> in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}]> in the current context!
Error: Unable to interpret <Windows Live Toolbar Helper - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320]> in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]> in the current context!
Error: Unable to interpret <Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2008-11-03 34816]> in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]> in the current context!
Error: Unable to interpret <{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Windows Live Toolbar - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320]> in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]> in the current context!
Error: Unable to interpret <"VirusKeeper"=C:\Program Files\AxBx\VirusKeeper 2007 Pro\VirusKeeper.exe [2008-01-15 2406248]> in the current context!
Error: Unable to interpret <[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]> in the current context!
Error: Unable to interpret <"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]> in the current context!
Error: Unable to interpret <C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage> in the current context!
Error: Unable to interpret <HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe> in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]> in the current context!
Error: Unable to interpret <C:\WINDOWS\system32\Ati2evxx.dll [2006-03-22 61440]> in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]> in the current context!
Error: Unable to interpret <WgaLogon.dll []> in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]> in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]> in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]> in the current context!
Error: Unable to interpret <"legalnoticecaption"=> in the current context!
Error: Unable to interpret <"legalnoticetext"=> in the current context!
Error: Unable to interpret <"undockwithoutlogon"=1> in the current context!
Error: Unable to interpret <"ShutdownWithoutLogon"=1> in the current context!
Error: Unable to interpret <"DontDisplayLastUserName"=0> in the current context!
Error: Unable to interpret <"DisableCAD"=1> in the current context!
Error: Unable to interpret <[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]> in the current context!
Error: Unable to interpret <"NoDriveTypeAutoRun"=323> in the current context!
Error: Unable to interpret <"NoDrives"=0> in the current context!
Error: Unable to interpret <"NoDriveAutoRun"=67108863> in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]> in the current context!
Error: Unable to interpret <"NoResolveTrack"=> in the current context!
Error: Unable to interpret <"NoDriveTypeAutoRun"=> in the current context!
Error: Unable to interpret <"NoDrives"=> in the current context!
Error: Unable to interpret <"NoDriveAutoRun"=> in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]> in the current context!
Error: Unable to interpret <"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"> in the current context!
Error: Unable to interpret <"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"> in the current context!
Error: Unable to interpret <"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"> in the current context!
Error: Unable to interpret <"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"> in the current context!
Error: Unable to interpret <"C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"> in the current context!
Error: Unable to interpret <"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"> in the current context!
Error: Unable to interpret <"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe"> in the current context!
Error: Unable to interpret <"C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe"> in the current context!
Error: Unable to interpret <"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"> in the current context!
Error: Unable to interpret <"C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe"> in the current context!
Error: Unable to interpret <"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"> in the current context!
Error: Unable to interpret <"C:\Program Files\Google\Google Earth\googleearth.exe"="C:\Program Files\Google\Google Earth\googleearth.exe:*:Enabled:Google Earth"> in the current context!
Error: Unable to interpret <"C:\Program Files\HP\Image Zone Express\HP_IZE.exe"="C:\Program Files\HP\Image Zone Express\HP_IZE.exe:*:Enabled:HP Image Zone Express"> in the current context!
Error: Unable to interpret <"C:\Program Files\HP\HP Software Update\HPWUCli.exe"="C:\Program Files\HP\HP Software Update\HPWUCli.exe:*:Enabled:Mise à jour HP"> in the current context!
Error: Unable to interpret <"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Mozilla Firefox"> in the current context!
Error: Unable to interpret <"C:\Program Files\MiTAC Research (Shanghai) Ltd\Mio Transfer\MioTransfer.exe"="C:\Program Files\MiTAC Research (Shanghai) Ltd\Mio Transfer\MioTransfer.exe:*:Enabled:MioTransfer"> in the current context!
Error: Unable to interpret <"D:\Picasa2\Picasa2.exe"="D:\Picasa2\Picasa2.exe:*:Enabled:Picasa2"> in the current context!
Error: Unable to interpret <"C:\Program Files\AxBx\VirusKeeper 2007 Pro\ProcessWatch2.exe"="C:\Program Files\AxBx\VirusKeeper 2007 Pro\ProcessWatch2.exe:*:Enabled:ProcessWatch II"> in the current context!
Error: Unable to interpret <"C:\Program Files\AxBx\VirusKeeper 2007 Pro\vk_run.exe"="C:\Program Files\AxBx\VirusKeeper 2007 Pro\vk_run.exe:*:Enabled:VirusKeeper 2007 Pro"> in the current context!
Error: Unable to interpret <"C:\Program Files\AxBx\VirusKeeper 2007 Pro\vk_scanspy.exe"="C:\Program Files\AxBx\VirusKeeper 2007 Pro\vk_scanspy.exe:*:Enabled:VK Spyware Scanner"> in the current context!
Error: Unable to interpret <"C:\Program Files\Valve\Steam\Steam.exe"="C:\Program Files\Valve\Steam\Steam.exe:*:Enabled:Steam"> in the current context!
Error: Unable to interpret <"C:\Program Files\Trek 310\Skin.exe"="C:\Program Files\Trek 310\Skin.exe:*:Enabled:Trek 310"> in the current context!
Error: Unable to interpret <"C:\Program Files\movie maker\moviemk.exe"="C:\Program Files\movie maker\moviemk.exe:*:Enabled:Windows Movie Maker"> in the current context!
Error: Unable to interpret <"C:\WINDOWS\system32\mmc.exe"="C:\WINDOWS\system32\mmc.exe:*:Enabled:Microsoft Management Console"> in the current context!
Error: Unable to interpret <"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"> in the current context!
Error: Unable to interpret <"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"> in the current context!
Error: Unable to interpret <"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"> in the current context!
Error: Unable to interpret <"C:\Program Files\SAGEM\SAGEM F@st 3202\Orange.ico"="C:\Program Files\SAGEM\SAGEM F@st 3202\Orange.ico:*:Enabled:Orange.ico"> in the current context!
Error: Unable to interpret <"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"> in the current context!
Error: Unable to interpret <"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe"="C:\Program Files\Trend Micro\HijackThis\HijackThis.exe:*:Enabled:HijackThis"> in the current context!
Error: Unable to interpret <[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]> in the current context!
Error: Unable to interpret <"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"> in the current context!
Error: Unable to interpret <"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"> in the current context!
Error: Unable to interpret <"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"> in the current context!
Error: Unable to interpret <"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"> in the current context!
Error: Unable to interpret <======List of files/folders created in the last 1 months======> in the current context!
Error: Unable to interpret <2008-12-01 08:09:12 ----D---- C:\rsit> in the current context!
Error: Unable to interpret <2008-12-01 05:15:40 ----SHD---- C:\RECYCLER> in the current context!
Error: Unable to interpret <2008-12-01 01:00:16 ----A---- C:\ComboFix.txt> in the current context!
Error: Unable to interpret <2008-12-01 00:57:15 ----D---- C:\WINDOWS\temp> in the current context!
Error: Unable to interpret <2008-12-01 00:55:34 ----A---- C:\WINDOWS\NIRCMD.exe> in the current context!
Error: Unable to interpret <2008-12-01 00:55:30 ----D---- C:\ComboFix> in the current context!
Error: Unable to interpret <2008-11-30 21:44:54 ----A---- C:\WINDOWS\msnfix.txt> in the current context!
Error: Unable to interpret <2008-11-30 19:13:41 ----D---- C:\WINDOWS\system32\Kaspersky Lab> in the current context!
Error: Unable to interpret <2008-11-30 17:58:46 ----A---- C:\Boot.bak> in the current context!
Error: Unable to interpret <2008-11-30 17:58:42 ----RASHD---- C:\cmdcons> in the current context!
Error: Unable to interpret <2008-11-30 17:56:45 ----A---- C:\WINDOWS\zip.exe> in the current context!
Error: Unable to interpret <2008-11-30 17:56:45 ----A---- C:\WINDOWS\VFIND.exe> in the current context!
Error: Unable to interpret <2008-11-30 17:56:45 ----A---- C:\WINDOWS\SWXCACLS.exe> in the current context!
Error: Unable to interpret <2008-11-30 17:56:45 ----A---- C:\WINDOWS\SWSC.exe> in the current context!
Error: Unable to interpret <2008-11-30 17:56:45 ----A---- C:\WINDOWS\SWREG.exe> in the current context!
Error: Unable to interpret <2008-11-30 17:56:45 ----A---- C:\WINDOWS\sed.exe> in the current context!
Error: Unable to interpret <2008-11-30 17:56:45 ----A---- C:\WINDOWS\grep.exe> in the current context!
Error: Unable to interpret <2008-11-30 17:56:45 ----A---- C:\WINDOWS\fdsv.exe> in the current context!
Error: Unable to interpret <2008-11-30 17:56:37 ----D---- C:\WINDOWS\ERDNT> in the current context!
Error: Unable to interpret <2008-11-30 17:56:37 ----D---- C:\Qoobox> in the current context!
Error: Unable to interpret <2008-11-30 12:16:36 ----D---- C:\Program Files\VS Revo Group> in the current context!
Error: Unable to interpret <2008-11-30 09:15:46 ----D---- C:\Documents and Settings\All Users\Application Data\Lavasoft> in the current context!
Error: Unable to interpret <2008-11-29 13:29:45 ----A---- C:\WINDOWS\kit.ini> in the current context!
Error: Unable to interpret <2008-11-29 13:28:49 ----D---- C:\Program Files\SAGEM> in the current context!
Error: Unable to interpret <2008-11-29 13:28:15 ----D---- C:\Program Files\Securitoo> in the current context!
Error: Unable to interpret <2008-11-29 12:26:42 ----D---- C:\WINDOWS\Profiles> in the current context!
Error: Unable to interpret <2008-11-29 12:26:41 ----D---- C:\WINDOWS\system32\Adobe> in the current context!
Error: Unable to interpret <2008-11-29 12:26:41 ----D---- C:\Documents and Settings\Administrateur\Application Data\InterTrust> in the current context!
Error: Unable to interpret <2008-11-29 12:13:04 ----A---- C:\WINDOWS\IsUn040c.exe> in the current context!
Error: Unable to interpret <2008-11-29 10:39:58 ----D---- C:\WINDOWS\Prefetch> in the current context!
Error: Unable to interpret <2008-11-29 10:38:22 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$> in the current context!
Error: Unable to interpret <2008-11-29 10:38:18 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$> in the current context!
Error: Unable to interpret <2008-11-29 10:38:13 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$> in the current context!
Error: Unable to interpret <2008-11-29 10:38:08 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$> in the current context!
Error: Unable to interpret <2008-11-29 10:38:04 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$> in the current context!
Error: Unable to interpret <2008-11-29 10:37:57 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$> in the current context!
Error: Unable to interpret <2008-11-29 10:37:51 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$> in the current context!
Error: Unable to interpret <2008-11-29 10:37:47 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$> in the current context!
Error: Unable to interpret <2008-11-29 10:37:42 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$> in the current context!
Error: Unable to interpret <2008-11-29 10:37:33 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$> in the current context!
Error: Unable to interpret <2008-11-29 10:37:29 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$> in the current context!
Error: Unable to interpret <2008-11-29 10:37:23 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$> in the current context!
Error: Unable to interpret <2008-11-29 10:37:19 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$> in the current context!
Error: Unable to interpret <2008-11-29 10:37:15 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$> in the current context!
Error: Unable to interpret <2008-11-29 10:37:11 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$> in the current context!
Error: Unable to interpret <2008-11-29 10:37:07 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$> in the current context!
Error: Unable to interpret <2008-11-29 10:27:45 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$> in the current context!
Error: Unable to interpret <2008-11-29 10:03:56 ----HDC---- C:\WINDOWS\$NtUninstallKB954211_0$> in the current context!
Error: Unable to interpret <2008-11-29 09:48:56 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2_0$> in the current context!
Error: Unable to interpret <2008-11-29 09:48:48 ----HDC---- C:\WINDOWS\$NtUninstallKB952954_0$> in the current context!
Error: Unable to interpret <2008-11-29 09:48:30 ----HDC---- C:\WINDOWS\$NtUninstallKB956803_0$> in the current context!
Error: Unable to interpret <2008-11-29 09:48:13 ----D---- C:\WINDOWS\ie7updates> in the current context!
Error: Unable to interpret <2008-11-29 09:47:13 ----HDC---- C:\WINDOWS\ie7> in the current context!
Error: Unable to interpret <2008-11-29 09:46:38 ----HDC---- C:\WINDOWS\$NtUninstallKB915865$> in the current context!
Error: Unable to interpret <2008-11-29 09:45:11 ----HDC---- C:\WINDOWS\$NtUninstallKB914440$> in the current context!
Error: Unable to interpret <2008-11-29 09:45:05 ----HDC---- C:\WINDOWS\$NtUninstallKB904942$> in the current context!
Error: Unable to interpret <2008-11-29 09:42:34 ----HDC---- C:\WINDOWS\$NtUninstallKB956391$> in the current context!
Error: Unable to interpret <2008-11-29 09:42:29 ----HDC---- C:\WINDOWS\$NtUninstallKB957095_0$> in the current context!
Error: Unable to interpret <2008-11-29 09:42:24 ----HDC---- C:\WINDOWS\$NtUninstallKB950974_0$> in the current context!
Error: Unable to interpret <2008-11-29 09:41:58 ----HDC---- C:\WINDOWS\$NtUninstallKB951698_0$> in the current context!
Error: Unable to interpret <2008-11-29 09:41:50 ----HDC---- C:\WINDOWS\$NtUninstallKB956841_0$> in the current context!
Error: Unable to interpret <2008-11-29 09:41:45 ----HDC---- C:\WINDOWS\$NtUninstallKB925720$> in the current context!
Error: Unable to interpret <2008-11-29 09:41:39 ----HDC---- C:\WINDOWS\$NtUninstallKB950762_0$> in the current context!
Error: Unable to interpret <2008-11-29 09:41:28 ----HDC---- C:\WINDOWS\$NtUninstallKB951072-v2$> in the current context!
Error: Unable to interpret <2008-11-29 09:41:23 ----HDC---- C:\WINDOWS\$NtUninstallKB952287_0$> in the current context!
Error: Unable to interpret <2008-11-29 09:41:17 ----HDC---- C:\WINDOWS\$NtUninstallKB951066_0$> in the current context!
Error: Unable to interpret <2008-11-29 09:41:13 ----HDC---- C:\WINDOWS\$NtUninstallKB938464_0$> in the current context!
Error: Unable to interpret <2008-11-29 09:41:08 ----HDC---- C:\WINDOWS\$NtUninstallKB958644_0$> in the current context!
Error: Unable to interpret <2008-11-29 09:40:52 ----HDC---- C:\WINDOWS\$NtUninstallKB956390$> in the current context!
Error: Unable to interpret <2008-11-29 09:40:38 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$> in the current context!
Error: Unable to interpret <2008-11-29 09:33:55 ----N---- C:\WINDOWS\system32\msxml6.dll> in the current context!
Error: Unable to interpret <2008-11-29 09:32:00 ----A---- C:\WINDOWS\system32\wuauclt.exe> in the current context!
Error: Unable to interpret <2008-11-28 21:25:50 ----A---- C:\WINDOWS\SchedLgU.Txt> in the current context!
Error: Unable to interpret <2008-11-28 18:46:41 ----D---- C:\Documents and Settings\Administrateur\Application Data\Malwarebytes> in the current context!
Error: Unable to interpret <2008-11-28 18:46:37 ----D---- C:\Program Files\Malwarebytes' Anti-Malware> in the current context!
Error: Unable to interpret <2008-11-28 18:46:37 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes> in the current context!
Error: Unable to interpret <2008-11-28 14:22:29 ----D---- C:\WINDOWS\REG> in the current context!
Error: Unable to interpret <2008-11-28 14:22:29 ----A---- C:\$$RENAME.TXT> in the current context!
Error: Unable to interpret <2008-11-28 14:12:46 ----D---- C:\WINDOWS\nldrv> in the current context!
Error: Unable to interpret <2008-11-28 13:38:51 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest> in the current context!
Error: Unable to interpret <2008-11-28 13:38:19 ----D---- C:\WINDOWS\system32\DirectX> in the current context!
Error: Unable to inte
0
Réponse 27 / 48
Destrio5 Messages postés 99820 Statut Modérateur 10 305
 
Tu m'as fait quoi là ^^

Le texte à mettre dans OTMoveIt3, c'est :

:processes
explorer.exe

:files
C:\WINDOWS\system32\0390a544-.txt

:reg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

:commands
[purity]
[emptytemp]
[start explorer]
[reboot]
0
nova
 
j'espere que ce coup ci c'est le bon========== FILES ==========
File/Folder C:\WINDOWS\system32\0390a544-.txt not found.
========== REGISTRY ==========
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\etilqs_G23Zo3GGx8aGfbHIj0yZ scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\hpodvd09.log scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_6d8.dat scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully

OTMoveIt3 by OldTimer - Version 1.0.7.1 log created on 12012008_161241

Files moved on Reboot...
File C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\etilqs_G23Zo3GGx8aGfbHIj0yZ not found!
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\hpodvd09.log moved successfully.
File move failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be moved on reboot.
File C:\WINDOWS\temp\Perflib_Perfdata_6d8.dat not found!
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\Cache\_CACHE_001_ moved successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\Cache\_CACHE_002_ moved successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\Cache\_CACHE_003_ moved successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\Cache\_CACHE_MAP_ moved successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\urlclassifier3.sqlite moved successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\XUL.mfl moved successfully.
0
Réponse 28 / 48
Destrio5 Messages postés 99820 Statut Modérateur 10 305
 
---> Poste-moi deux nouveaux rapports RSIT pour vérifier.

Ton PC va comment ?
0
Réponse 29 / 48
nova
 
info.txt logfile of random's system information tool 1.04 2008-12-01 08:09:18

======Uninstall list======

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Acrobat 5.0-->C:\WINDOWS\ISUN040C.EXE -f"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.dll"
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 9 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A90000000001}
Architecte 3D - Silver-->D:\PROGRA~1\ARCHIT~1\UNWISE.EXE D:\PROGRA~1\ARCHIT~1\INSTALL.LOG
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
ATI - Software Uninstall Utility-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Catalyst Control Center-->MsiExec.exe /I{34566374-6C4D-419F-A9E0-8B21CA905FD8}
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
AusLogics Disk Defrag 1.4-->"C:\Program Files\AusLogics Disk Defrag\unins000.exe"
Bloqueur de fenêtres pop-up (Windows Live Toolbar)-->MsiExec.exe /X{A425C250-A0E1-4D78-B1C1-A5CBC7385E7C}
CCleaner (remove only)-->"D:\CCleaner\uninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Counter-Strike(TM)-->MsiExec.exe /I{DF5A03CC-D5AA-43D8-B948-D9903F2AF94A}
Extension de Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{0CA6047C-D28B-4295-834A-07C52BA20C2D}
Google Earth-->MsiExec.exe /I{1D14373E-7970-4F2F-A467-ACA4F0EA21E3}
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
HP Extended Capabilities 5.3-->C:\Program Files\HP\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.dat
HP Image Zone Express-->MsiExec.exe /X{FE64AE29-0883-4C70-8388-DC026019C900}
HP Imaging Device Functions 5.3-->C:\Program Files\HP\Digital Imaging\DigitalImagingMonitor\hpzscr01.exe -datfile hpqbud01.dat
HP Product Assistant-->MsiExec.exe /I{36FDBE6E-6684-462B-AE98-9A39A1B200CC}
HP PSC & OfficeJet 5.3.B-->"C:\Program Files\HP\Digital Imaging\{5B79CFD1-6845-4158-9D7D-6BE89DF2C135}\setup\hpzscr01.exe" -datfile hposcr07.dat
HP Solution Center & Imaging Support Tools 5.3-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat
HP Update-->MsiExec.exe /X{FE57DE70-95DE-4B64-9266-84DA811053DB}
Java(TM) 6 Update 10-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216010FF}
Kaspersky Online Scanner-->C:\WINDOWS\system32\KASPER~1\KASPER~1\kavuninstall.exe
Kaspersky On-line Scanner-->C:\WINDOWS\system32\KASPER~1\KASPER~1\kavuninstall.exe
livebox-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17342E3B-0818-4A6F-BFF8-99476605ADD6}\Setup.exe" -l0x40c
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Menus intelligents (Windows Live Toolbar)-->MsiExec.exe /X{0CC70FEF-5068-4CD5-B4DE-86FFD98EC929}
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Mio Technology SpeedCam Tool-->C:\PROGRA~1\MIOTEC~1\SPEEDC~1\Setup.exe /remove
Mio Transfer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2003F533-7639-4436-8404-CB3DE67F1FFA}\Setup.exe" -l0x40c
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127-v2)-->"C:\WINDOWS\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956390)-->"C:\WINDOWS\$NtUninstallKB956390$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mozilla Firefox (3.0.4)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
msxml4-->MsiExec.exe /X{5AE3D9F1-9E9E-4015-8787-E22705AA32C5}
Picasa 2-->"D:\Picasa2\Uninstall.exe"
Realtek AC'97 Audio-->Alcrmv.exe -r -m
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Spelling Dictionaries Support For Adobe Reader 9-->MsiExec.exe /I{AC76BA86-7AD7-5464-3428-900000000004}
Spybot - Search & Destroy-->"D:\Spybot - Search & Destroy\unins000.exe"
Steam(TM)-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
Surligneur (Windows Live Toolbar)-->MsiExec.exe /X{81B5F83F-2291-48B0-8375-36B63A9BF5B0}
Trek 310-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7AC09F4A-6AA6-4848-8959-A109BA079C5C}\Setup.exe" -l0x40c
Unlocker 1.8.7-->C:\Program Files\Unlocker\uninst.exe
VirusKeeper 2007 Pro-->"C:\Program Files\AxBx\VirusKeeper 2007 Pro\unins000.exe"
VLC media player 0.9.4-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Live Favorites pour Windows Live Toolbar-->MsiExec.exe /X{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}
Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
Windows Live Mail-->MsiExec.exe /I{C514C594-23AA-4F13-A070-DB8BDB27594F}
Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
Windows Live Sign-in Assistant-->MsiExec.exe /I{0ED47137-C071-46CC-A243-E5E33271E10E}
Windows Live Toolbar-->"C:\Program Files\Windows Live Toolbar\UnInstall.exe" {0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows Live Toolbar-->MsiExec.exe /X{0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"

=====HijackThis Backups=====

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O20 - AppInit_DLLs: abpexs.dll

======Security center information======

AV: VirusKeeper 2007 Pro

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\ATI Technologies\ATI.ACE
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 47 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=2f02
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%info.txt logfile of random's system information tool 1.04 2008-12-01 08:09:18

======Uninstall list======

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Acrobat 5.0-->C:\WINDOWS\ISUN040C.EXE -f"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.dll"
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 9 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A90000000001}
Architecte 3D - Silver-->D:\PROGRA~1\ARCHIT~1\UNWISE.EXE D:\PROGRA~1\ARCHIT~1\INSTALL.LOG
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
ATI - Software Uninstall Utility-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Catalyst Control Center-->MsiExec.exe /I{34566374-6C4D-419F-A9E0-8B21CA905FD8}
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
AusLogics Disk Defrag 1.4-->"C:\Program Files\AusLogics Disk Defrag\unins000.exe"
Bloqueur de fenêtres pop-up (Windows Live Toolbar)-->MsiExec.exe /X{A425C250-A0E1-4D78-B1C1-A5CBC7385E7C}
CCleaner (remove only)-->"D:\CCleaner\uninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Counter-Strike(TM)-->MsiExec.exe /I{DF5A03CC-D5AA-43D8-B948-D9903F2AF94A}
Extension de Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{0CA6047C-D28B-4295-834A-07C52BA20C2D}
Google Earth-->MsiExec.exe /I{1D14373E-7970-4F2F-A467-ACA4F0EA21E3}
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
HP Extended Capabilities 5.3-->C:\Program Files\HP\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.dat
HP Image Zone Express-->MsiExec.exe /X{FE64AE29-0883-4C70-8388-DC026019C900}
HP Imaging Device Functions 5.3-->C:\Program Files\HP\Digital Imaging\DigitalImagingMonitor\hpzscr01.exe -datfile hpqbud01.dat
HP Product Assistant-->MsiExec.exe /I{36FDBE6E-6684-462B-AE98-9A39A1B200CC}
HP PSC & OfficeJet 5.3.B-->"C:\Program Files\HP\Digital Imaging\{5B79CFD1-6845-4158-9D7D-6BE89DF2C135}\setup\hpzscr01.exe" -datfile hposcr07.dat
HP Solution Center & Imaging Support Tools 5.3-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat
HP Update-->MsiExec.exe /X{FE57DE70-95DE-4B64-9266-84DA811053DB}
Java(TM) 6 Update 10-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216010FF}
Kaspersky Online Scanner-->C:\WINDOWS\system32\KASPER~1\KASPER~1\kavuninstall.exe
Kaspersky On-line Scanner-->C:\WINDOWS\system32\KASPER~1\KASPER~1\kavuninstall.exe
livebox-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17342E3B-0818-4A6F-BFF8-99476605ADD6}\Setup.exe" -l0x40c
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Menus intelligents (Windows Live Toolbar)-->MsiExec.exe /X{0CC70FEF-5068-4CD5-B4DE-86FFD98EC929}
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Mio Technology SpeedCam Tool-->C:\PROGRA~1\MIOTEC~1\SPEEDC~1\Setup.exe /remove
Mio Transfer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2003F533-7639-4436-8404-CB3DE67F1FFA}\Setup.exe" -l0x40c
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127-v2)-->"C:\WINDOWS\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956390)-->"C:\WINDOWS\$NtUninstallKB956390$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mozilla Firefox (3.0.4)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
msxml4-->MsiExec.exe /X{5AE3D9F1-9E9E-4015-8787-E22705AA32C5}
Picasa 2-->"D:\Picasa2\Uninstall.exe"
Realtek AC'97 Audio-->Alcrmv.exe -r -m
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Spelling Dictionaries Support For Adobe Reader 9-->MsiExec.exe /I{AC76BA86-7AD7-5464-3428-900000000004}
Spybot - Search & Destroy-->"D:\Spybot - Search & Destroy\unins000.exe"
Steam(TM)-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
Surligneur (Windows Live Toolbar)-->MsiExec.exe /X{81B5F83F-2291-48B0-8375-36B63A9BF5B0}
Trek 310-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7AC09F4A-6AA6-4848-8959-A109BA079C5C}\Setup.exe" -l0x40c
Unlocker 1.8.7-->C:\Program Files\Unlocker\uninst.exe
VirusKeeper 2007 Pro-->"C:\Program Files\AxBx\VirusKeeper 2007 Pro\unins000.exe"
VLC media player 0.9.4-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Live Favorites pour Windows Live Toolbar-->MsiExec.exe /X{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}
Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
Windows Live Mail-->MsiExec.exe /I{C514C594-23AA-4F13-A070-DB8BDB27594F}
Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
Windows Live Sign-in Assistant-->MsiExec.exe /I{0ED47137-C071-46CC-A243-E5E33271E10E}
Windows Live Toolbar-->"C:\Program Files\Windows Live Toolbar\UnInstall.exe" {0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows Live Toolbar-->MsiExec.exe /X{0A8C97AD-DEED-4894-B446-3ABA95A77D0D}
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"

=====HijackThis Backups=====

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O20 - AppInit_DLLs: abpexs.dll

======Security center information======

AV: VirusKeeper 2007 Pro

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\ATI Technologies\ATI.ACE
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 47 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=2f02
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP

-----------------EOF-----------------
SystemRoot%\TEMP

-----------------EOF-----------------
0
Réponse 30 / 48
nova
 
Logfile of random's system information tool 1.04 (written by random/random)
Run by Administrateur at 2008-12-01 16:33:27
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 10 GB (50%) free of 20 GB
Total RAM: 958 MB (59% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:33:32, on 01/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\netdde.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\notepad.exe
C:\Program Files\AxBx\VirusKeeper 2007 Pro\VirusKeeper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\Administrateur\Bureau\RSIT(2).exe
C:\Program Files\Trend Micro\HijackThis\Administrateur.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - d:\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - D:\SPYBOT~1\SDHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [VirusKeeper] C:\Program Files\AxBx\VirusKeeper 2007 Pro\VirusKeeper.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
0
Réponse 31 / 48
Destrio5 Messages postés 99820 Statut Modérateur 10 305
 
Ça n'a pas fonctionné correctement, voici le nouveau texte à mettre dans OTMoveIt3 :

:processes
explorer.exe

:files
C:\WINDOWS\SETA2.tmp
C:\WINDOWS\SETA1.tmp
C:\WINDOWS\SETA0.tmp
C:\WINDOWS\SET9F.tmp
C:\WINDOWS\SET9E.tmp
C:\WINDOWS\SET9D.tmp
C:\WINDOWS\SET9C.tmp
C:\WINDOWS\SET9B.tmp
C:\WINDOWS\SET9A.tmp
C:\WINDOWS\SET99.tmp
C:\WINDOWS\SET98.tmp
C:\WINDOWS\SET5D.tmp
C:\WINDOWS\SET51.tmp
C:\WINDOWS\SET4E.tmp

:reg
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

:commands
[purity]
[emptytemp]
[start explorer]
[reboot]
0
Réponse 32 / 48
nova
 
le pc a l'air de fonctionner impécable !!
0
Réponse 33 / 48
Destrio5 Messages postés 99820 Statut Modérateur 10 305
 
Ok, fais la manip' que j'ai posté juste avant.
0
Réponse 34 / 48
nova
 
Error: Unable to interpret <explorer.exe> in the current context!
========== FILES ==========
C:\WINDOWS\SETA2.tmp moved successfully.
C:\WINDOWS\SETA1.tmp moved successfully.
C:\WINDOWS\SETA0.tmp moved successfully.
C:\WINDOWS\SET9F.tmp moved successfully.
C:\WINDOWS\SET9E.tmp moved successfully.
C:\WINDOWS\SET9D.tmp moved successfully.
C:\WINDOWS\SET9C.tmp moved successfully.
C:\WINDOWS\SET9B.tmp moved successfully.
C:\WINDOWS\SET9A.tmp moved successfully.
C:\WINDOWS\SET99.tmp moved successfully.
C:\WINDOWS\SET98.tmp moved successfully.
C:\WINDOWS\SET5D.tmp moved successfully.
C:\WINDOWS\SET51.tmp moved successfully.
C:\WINDOWS\SET4E.tmp moved successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBo­ot\network\nm\\ not found.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBo­ot\network\nm.sys\\ not found.
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\etilqs_VGHglpM366aqf3APvf0K scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\hpodvd09.log scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_73c.dat scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully

OTMoveIt3 by OldTimer - Version 1.0.7.1 log created on 12012008_170008

Files moved on Reboot...
File C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\etilqs_VGHglpM366aqf3APvf0K not found!
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\hpodvd09.log moved successfully.
File move failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be moved on reboot.
File C:\WINDOWS\temp\Perflib_Perfdata_73c.dat not found!
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\Cache\_CACHE_001_ moved successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\Cache\_CACHE_002_ moved successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\Cache\_CACHE_003_ moved successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\Cache\_CACHE_MAP_ moved successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\urlclassifier3.sqlite moved successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\y0ovzrc3.default\XUL.mfl moved successfully.
0
Réponse 35 / 48
Destrio5 Messages postés 99820 Statut Modérateur 10 305
 
1/

---> Désinstalle HijackThis.

---> Menu Démarrer > Exécuter > Tape combofix /u et valide avec OK.

2/

---> Télécharge ToolsCleaner2 sur ton Bureau.
* Double-clique sur ToolsCleaner2.exe pour le lancer.
* Clique sur Recherche et laisse le scan agir.
* Clique sur Suppression pour finaliser.
* Tu peux, si tu le souhaites, te servir des Options Facultatives.
* Clique sur Quitter pour obtenir le rapport.
* Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).

3/

---> Télécharge et installe CCleaner (N'installe pas la Yahoo Toolbar) :
* Lance-le. Va dans Options puis Avancé et décoche la case Effacer uniquement les fichiers etc....
* Va dans Nettoyeur, choisis Analyse. Une fois terminé, lance le nettoyage.
* Ensuite, choisis Registre, puis Chercher des erreurs. Une fois terminé, répare toutes les erreurs (Sauvegarde la base de registre).

4/

---> Il est nécessaire de désactiver puis réactiver la restauration système pour la purger :
http://www.infos-du-net.com/forum/272480-11-desactiver-activer-restauration-systeme

---> Je te conseille de créer un point de restauration que tu pourras utiliser plus tard si tu as un problème :
https://www.vulgarisation-informatique.com/creer-point-restauration.php

5/

---> Par rapport au P2P :
http://www.libellules.ch/...

---> Tiens à jour Windows et tes logiciels.

Sois plus vigilant sur Internet ;)
0
nova
 
[ Rapport ToolsCleaner version 2.2.6 (par A.Rothstein & dj QUIOU) ]

-->- Recherche:

C:\Combofix.txt: trouvé !
C:\Combofix: trouvé !
C:\Rsit: trouvé !
C:\Documents and Settings\Administrateur\Bureau\HijackThis.lnk: trouvé !
C:\Documents and Settings\Administrateur\Bureau\ComboFix.exe: trouvé !
C:\Documents and Settings\Administrateur\Bureau\OTMoveIt3.exe: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: trouvé !
C:\Program Files\Trend Micro\HijackThis: trouvé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: trouvé !
C:\Program Files\Trend Micro\HijackThis\hijackthis.log: trouvé !
C:\WINDOWS\msnfix.txt: trouvé !

---------------------------------
-->- Suppression:

C:\Documents and Settings\Administrateur\Bureau\HijackThis.lnk: supprimé !
C:\Documents and Settings\Administrateur\Bureau\ComboFix.exe: ERREUR DE SUPPRESSION !!
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: supprimé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: supprimé !
C:\Combofix.txt: supprimé !
C:\Documents and Settings\Administrateur\Bureau\OTMoveIt3.exe: supprimé !
C:\Program Files\Trend Micro\HijackThis\hijackthis.log: supprimé !
C:\WINDOWS\msnfix.txt: supprimé !
C:\Combofix: ERREUR DE SUPPRESSION !!
C:\Rsit: supprimé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: supprimé !
C:\Program Files\Trend Micro\HijackThis: supprimé !
0
Réponse 36 / 48
Destrio5 Messages postés 99820 Statut Modérateur 10 305
 
Recommence la manip' avec ToolsCleaner.
0
Réponse 37 / 48
nova
 
[ Rapport ToolsCleaner version 2.2.6 (par A.Rothstein & dj QUIOU) ]

-->- Recherche:

C:\Combofix: trouvé !
C:\Documents and Settings\Administrateur\Bureau\ComboFix.exe: trouvé !

---------------------------------
-->- Suppression:

C:\Documents and Settings\Administrateur\Bureau\ComboFix.exe: ERREUR DE SUPPRESSION !!
C:\Combofix: ERREUR DE SUPPRESSION !!
0
Réponse 38 / 48
Destrio5 Messages postés 99820 Statut Modérateur 10 305
 
Redémarre et recommence ;)
0
nova
 
ok
0
nova
 
[ Rapport ToolsCleaner version 2.2.6 (par A.Rothstein & dj QUIOU) ]

-->- Recherche:

C:\Combofix: trouvé !
C:\Documents and Settings\Administrateur\Bureau\ComboFix.exe: trouvé !

---------------------------------
-->- Suppression:

C:\Documents and Settings\Administrateur\Bureau\ComboFix.exe: ERREUR DE SUPPRESSION !!
C:\Combofix: supprimé !
0
Réponse 39 / 48
Destrio5 Messages postés 99820 Statut Modérateur 10 305
 
Ok, supprime ToolsCleaner et ComboFix.
0
nova
 
c'est fait
0
Réponse 40 / 48
Destrio5 Messages postés 99820 Statut Modérateur 10 305
 
Tu peux passer à la suite sur la procédure finale.
0
nova
 
ok
0

Discussions similaires

Impossible d'afficher le rapport de tableau croisé dynamique sur un rapport
Utilisateur anonyme -
TomH. -

13 réponses
écrire un rapport de travail
asi -
REGINALD -

3 réponses
impossible d'afficher le tableau dynamique sur un rapport existant
Pierre -
Adrien71 -

3 réponses
Problém affichage du tableau croisé dynamique
BK -
Raymond PENTIER -

2 réponses
Theme de rapport de stage option comptabilité
sana saydou -
Raymond PENTIER -

2 réponses