mon ordi rame

helene07 · le 27 Nov 2010 11:02

bonjour,
j'ai eu une grosse attaque de virus il y a qques temps et grâce a vous j'ai reussit a m'en débarrasser. Malheureusement, mon ordi rame de plus en plus .De quoi cela peut il venir ?

danakil · le 27 Nov 2010 12:06

Salut!

J'averti Jypalou afin qu'il te reprenne en compte.

danakil · le 28 Nov 2010 08:49

Salut helene07!

Jypalou est bloqué en ce moment, donc je prends en compte ton cas.

Première chose - As-tu effectué sa dernière consigne lors de la désinfection de ton PC :
viewtopic-54021-0-asc-30.html#p412836

Ensuite ...
Ton PC rame!
Au démarrage?
En utlisation normal?
En naviguant sur le Web?

helene07 · le 29 Nov 2010 10:16

Ha ok, autant pour moi,je n'avais pas vu son dernier message. Alors voici le rapport de tools cleaner:

Code: Tout sélectionner: [ Rapport ToolsCleaner version 2.3.11 (par A.Rothstein & dj QUIOU) ] --> Recherche: C:\Documents and Settings\Compaq_Propriétaire\Bureau\HijackThis.exe: trouvé ! C:\Documents and Settings\Compaq_Propriétaire\Bureau\reparation et info pc+anti virus\ZHPdiag.exe: trouvé ! C:\Program Files\ZHPDiag: trouvé ! C:\Program Files\ZHPDiag\ZHPdiag.exe: trouvé ! C:\Program Files\ZHPDiag\catchme.exe: trouvé ! C:\Program Files\ZHPDiag\mbr.log: trouvé ! C:\Program Files\ZHPDiag\mbr.exe: trouvé !

danakil · le 29 Nov 2010 11:46

Ok!

Pour l'instant ne passes pas sur la procédure de Suppression de ToolsCleaner2, on va vérifier que l'Adware NaviPromo est bien supprimé et que ce n'est pas lui qui fasse "ramer" ton PC.

Effectue ceci :
• Télécharge OTL de Old Timer sur ton Bureau.
• Ferme toutes les applications actives sur le PC.
• Double-clique sur l'icône d'OTL présente sur le Bureau pour le lancer.
(Vista et Seven --> Clic droit, "Exécuter en tant qu'Administrateur")

• Coches les cases suivantes:
"Tous les utilisateurs"
"Recherche LOP"
"Recherche Purity".

• Copie et colle la citation ci-dessous dans la fenêtre Personnalisation:

netsvcs
%systemroot%\system32\drivers\*.sys /lockedfiles
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%alluserprofile%\application data\*.
%alluserprofile%\application data\*.exe /s
%appdata%\*.
%appdata%\*.exe /s
%systemdrive%\*.exe
/md5start
explorer.exe
userinit.exe
winlogon.exe
tcpip.sys
Sfloppy.sys
Changer.sys
cdrom.sys
disk.sys
ndis.sys
usbscan.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles

• Clique sur le bouton Analyse (en haut à gauche) .
(Laisse le scan se dérouler sans toucher au PC).

• A la fin du scan un ou deux rapports (documents textes) seront crées et s'ouvriront:
"OTL.txt" et "Extras.Txt"
• Réduit ces deux documents dans la barre des tâches, et ferme la fenêtre de OTL présente.

• Connecte toi ici et copie\colle les contenus des rapports en réponses.
(n'oublie pas d'encadrer tes rapports entre les balises [code][/code])

***

Maintenant précise aussi ceci :
Ton PC rame!
Au démarrage?
En utlisation normal?
En naviguant sur le Web?

Skynet · le 29 Nov 2010 14:06

Code: Tout sélectionner: OTL Extras logfile created on: 29/11/2010 12:48:40 - Run 1 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\Compaq_Propriétaire\Bureau Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 382,00 Mb Total Physical Memory | 40,00 Mb Available Physical Memory | 10,00% Memory free 973,00 Mb Paging File | 171,00 Mb Available in Paging File | 18,00% Paging File free Paging file location(s): C:\pagefile.sys 576 1152 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 143,04 Gb Total Space | 62,63 Gb Free Space | 43,78% Space Free | Partition Type: NTFS Drive D: | 5,99 Gb Total Space | 2,25 Gb Free Space | 37,58% Space Free | Partition Type: FAT32 Computer Name: NOM-EB85C523610 | User Name: Compaq_Propriétaire | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) [HKEY_USERS\S-1-5-21-1238882258-2045701615-1049950058-1008\SOFTWARE\Classes\<extension>] .html [@ = htmlfile] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* htmlfile [edit] -- Reg Error: Key error. http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "%ProgramFiles%\iTunes\iTunes.exe" = %ProgramFiles%\iTunes\iTunes.exe:*:enabled:iTunes -- (Apple Computer, Inc.) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Computer, Inc.) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{075473F5-846A-448B-BCB3-104AA1760205}" = Sonic RecordNow Data "{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATI Control Panel "{109D28C7-FB38-483A-9C91-001CB59E2699}" = EPSON CardMonitor "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer "{19C989C4-50AE-43A4-B06E-8C70FFFF852F}" = PC-Doctor for Windows "{1D301950-EA2F-4882-9AA0-49467756842A}" = SweetIM for Messenger 3.3 "{1EF93620-4B15-4DB4-B0EA-889E2F187081}" = FreeCompressor "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{21657574-BD54-48A2-9450-EB03B2C7FC29}" = Sonic MyDVD Plus "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer "{23B59ED4-C360-11D7-875B-0090CC005647}" = EPSON PRINT Image Framer Tool2.1 "{266517E6-D866-439D-919C-B8B1A52E6080}" = OpenOffice.org 3.2 "{26A24AE4-039D-4CA4-87B4-2F83216020F0}" = Java(TM) 6 Update 20 "{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java(TM) 6 Update 22 "{2C8574B5-6935-4FCE-860E-F4E8602378FF}" = OfferBox "{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Sonic Update Manager "{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{3912A629-0020-0005-3757-2FBA74D4DF0A}" = InterVideo WinDVD Player "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4BD271AB-66E2-4D58-AF88-80FE3B0770C4}" = Fissa "{65F5B7AF-3363-11D7-BB6B-00018021113F}" = EPSON PhotoQuicker3.5 "{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Sonic Express Labeler "{66C8BE35-8BBB-472B-96C7-C7C9A499F988}" = PhotoImpression 5 "{67EDD823-135A-4D59-87BD-950616D6E857}" = EPSON Copy Utility 3 "{6C11D561-620B-47DA-A693-4C597F3CDF40}" = EPSON Smart Panel "{7BD0A2D8-4EA0-43C6-BDF8-DDA87B8031C6}" = PIF DESIGNER2.1 "{7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}" = EPSON Web-To-Page "{8105684D-8CA6-440D-8F58-7E5FD67A499D}" = Connexion Facile à Internet "{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}" = InterVideo WinDVD Player "{9A394342-4A68-4EBA-85A6-55B559F4E700}" = Microsoft .NET Framework 1.1 French Language Pack "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A6CC2CA2-2779-4F10-88BF-A3C9EB874C24}" = SweetIM Toolbar for Internet Explorer 3.9 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{A93C4E94-1005-489D-BEAA-B873C1AA6CFC}" = HP Help and Support 4.0 "{AB708C9B-97C8-4AC9-899B-DBF226AC9382}" = Sonic RecordNow Audio "{AC76BA86-0000-0000-0000-6028747ADE01}" = Adobe Acrobat - Reader 6.0.2 Update "{AC76BA86-7AD7-1036-7B44-A00000000001}" = Adobe Reader 6.0.1 - Français "{B12665F4-4E93-4AB4-B7FC-37053B524629}" = Sonic RecordNow Copy "{BE20E2F5-1903-4AAE-B1AF-2046E586C925}" = iTunes "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C48817E7-AA05-4151-A99D-1E1E550CE801}" = EPSON PhotoStarter3.1 "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{DB518BA6-CB74-4EB6-9ABD-880B6D6E1F38}" = HpSdpAppCoreApp "{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager "{EBAE381B-60A6-4863-AA9F-FCAB755BC9E5}" = ScanToWeb "ABAEnglish" = ABAEnglish 2.0 "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Agere Systems Soft Modem" = Agere Systems PCI Soft Modem "ATI Display Driver" = ATI Display Driver "avast5" = avast! Free Antivirus "CCleaner" = CCleaner "EPSON Printer and Utilities" = EPSON Logiciel imprimante "EPSON Scanner" = EPSON Scan "ESET Online Scanner" = ESET Online Scanner v3 "EspaceWanadoo.exe" = Outil de connexion Wanadoo "ESPRX420 Guide de réf." = ESPRX420 Guide de réf. "ESPRX420 Guide des logiciels" = ESPRX420 Guide des logiciels "Google Chrome" = Google Chrome "gsle4" = LRC Editor 4.0 (remove only) "Help and Support Additions" = Compléments d'aide et de support "HijackThis" = HijackThis 2.0.2 "IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs "ie7" = Windows Internet Explorer 7 "ie8" = Windows Internet Explorer 8 "InstallShield_{19C989C4-50AE-43A4-B06E-8C70FFFF852F}" = PC-Doctor for Windows "InstallShield_{8105684D-8CA6-440D-8F58-7E5FD67A499D}" = Connexion Facile à Internet "InstallShield_{BE20E2F5-1903-4AAE-B1AF-2046E586C925}" = iTunes "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware "Marco_0" = Marco Polo Français Anglais 4.2 "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs "PS2" = PS2 "Python 2.2.3" = Python 2.2.3 "pywin32-py2.2" = Python 2.2 pywin32 extensions (build 203) "QuickTime" = QuickTime "SiS163u" = 802.11 USB Wireless LAN Adapter "Wanadoo Messager" = Wanadoo Messager "WIC" = Windows Imaging Component "Windows Media Format Runtime" = Windows Media Format Runtime "Windows Media Player" = Lecteur Windows Media 10 "ZHPDiag_is1" = ZHPDiag 1.27 [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-1238882258-2045701615-1049950058-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Notification de cadeaux MSN" = Notification de cadeaux MSN [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 03/11/2010 18:16:29 | Computer Name = NOM-EB85C523610 | Source = F-Secure Anti-Virus | ID = 103 Description = Error - 03/11/2010 18:16:42 | Computer Name = NOM-EB85C523610 | Source = F-Secure Anti-Virus | ID = 103 Description = Error - 03/11/2010 18:17:13 | Computer Name = NOM-EB85C523610 | Source = F-Secure Anti-Virus | ID = 103 Description = Error - 03/11/2010 18:17:18 | Computer Name = NOM-EB85C523610 | Source = F-Secure Anti-Virus | ID = 103 Description = Error - 03/11/2010 18:17:43 | Computer Name = NOM-EB85C523610 | Source = F-Secure Anti-Virus | ID = 103 Description = Error - 03/11/2010 18:17:51 | Computer Name = NOM-EB85C523610 | Source = F-Secure Anti-Virus | ID = 103 Description = Error - 03/11/2010 18:18:03 | Computer Name = NOM-EB85C523610 | Source = F-Secure Anti-Virus | ID = 103 Description = Error - 03/11/2010 18:18:24 | Computer Name = NOM-EB85C523610 | Source = F-Secure Anti-Virus | ID = 103 Description = Error - 03/11/2010 18:18:32 | Computer Name = NOM-EB85C523610 | Source = F-Secure Anti-Virus | ID = 103 Description = Error - 03/11/2010 18:18:49 | Computer Name = NOM-EB85C523610 | Source = F-Secure Anti-Virus | ID = 103 Description = [ System Events ] Error - 29/11/2010 04:08:30 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7001 Description = Le service avast! Web Scanner dépend du service avast! Antivirus qui n'a pas pu démarrer en raison de l'erreur : %%1053 Error - 29/11/2010 04:30:11 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7022 Description = Le service PCI Bus a1ff2 Controller est en attente de démarrage. Error - 29/11/2010 04:30:30 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7000 Description = Le service PCAMPR5 NDIS Protocol Driver n'a pas pu démarrer en raison de l'erreur : %%2 Error - 29/11/2010 04:30:30 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7000 Description = Le service PCAMPR5 NDIS Protocol Driver n'a pas pu démarrer en raison de l'erreur : %%2 Error - 29/11/2010 04:30:30 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7000 Description = Le service PCAMPR5 NDIS Protocol Driver n'a pas pu démarrer en raison de l'erreur : %%2 Error - 29/11/2010 04:30:30 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7000 Description = Le service PCAMPR5 NDIS Protocol Driver n'a pas pu démarrer en raison de l'erreur : %%2 Error - 29/11/2010 04:30:30 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7000 Description = Le service PCAMPR5 NDIS Protocol Driver n'a pas pu démarrer en raison de l'erreur : %%2 Error - 29/11/2010 04:30:30 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7000 Description = Le service PCAMPR5 NDIS Protocol Driver n'a pas pu démarrer en raison de l'erreur : %%2 Error - 29/11/2010 04:30:30 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7000 Description = Le service PCAMPR5 NDIS Protocol Driver n'a pas pu démarrer en raison de l'erreur : %%2 Error - 29/11/2010 04:30:30 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7000 Description = Le service PCAMPR5 NDIS Protocol Driver n'a pas pu démarrer en raison de l'erreur : %%2 < End of report >

Pour ce qui est de ta question, il rame tout le temps, des fenêtres d'erreur arrive assez souvent. Voilà avec ou sans connection il rame.

helene07 · le 29 Nov 2010 14:08

je comprend pas, j'avais tous mis et rien ne s'est publier. Je vais devoir recommencer les rapports car je les ai effacé

Skynet · le 29 Nov 2010 14:22

Bonjour helene07,

Le second rapport était trop long, je l'ai donc divisé.

Le voilà :

Code: Tout sélectionner: OTL logfile created on: 29/11/2010 12:48:40 - Run 1 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\Compaq_Propriétaire\Bureau Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 382,00 Mb Total Physical Memory | 40,00 Mb Available Physical Memory | 10,00% Memory free 973,00 Mb Paging File | 171,00 Mb Available in Paging File | 18,00% Paging File free Paging file location(s): C:\pagefile.sys 576 1152 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 143,04 Gb Total Space | 62,63 Gb Free Space | 43,78% Space Free | Partition Type: NTFS Drive D: | 5,99 Gb Total Space | 2,25 Gb Free Space | 37,58% Space Free | Partition Type: FAT32 Computer Name: NOM-EB85C523610 | User Name: Compaq_Propriétaire | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2010/11/29 12:47:24 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\OTL.exe PRC - [2010/11/06 12:05:56 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe PRC - [2010/10/13 16:21:08 | 000,111,928 | R--- | M] (SweetIM Technologies Ltd.) -- C:\Program Files\SweetIM\Messenger\SweetIM.exe PRC - [2010/09/07 17:12:02 | 002,838,912 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe PRC - [2010/09/07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe PRC - [2010/05/21 00:58:48 | 011,312,128 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin PRC - [2010/05/21 00:58:46 | 011,318,784 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe PRC - [2010/05/17 22:09:14 | 000,039,408 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe PRC - [2010/05/14 11:44:46 | 000,248,552 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe PRC - [2005/08/29 15:33:00 | 001,466,368 | ---- | M] (Inventel) -- C:\Program Files\Inventel\Gateway\WLANCFG.EXE PRC - [2005/02/21 15:17:02 | 000,802,816 | ---- | M] (France Télécom R&D) -- C:\Program Files\Wanadoo\EspaceWanadoo.exe PRC - [2004/11/02 15:31:20 | 000,069,632 | ---- | M] (France Telecom R&D) -- C:\Program Files\Wanadoo\Toaster.exe PRC - [2004/10/27 10:30:44 | 000,032,768 | ---- | M] () -- C:\Program Files\Wanadoo\Inactivity.exe PRC - [2004/10/27 10:07:06 | 000,069,632 | ---- | M] () -- C:\Program Files\Wanadoo\PollingModule.exe PRC - [2004/10/25 08:41:36 | 000,245,760 | ---- | M] (France Télécom R&D) -- C:\Program Files\Wanadoo\ComComp.exe PRC - [2004/10/21 07:50:52 | 000,045,056 | ---- | M] () -- C:\WINDOWS\system32\AlertModule\AlertModule.exe PRC - [2004/10/05 16:00:12 | 000,061,440 | ---- | M] (France Télécom R&D) -- C:\Program Files\Wanadoo\TaskBarIcon.exe PRC - [2004/08/23 13:49:56 | 000,040,960 | ---- | M] (France Telecom) -- C:\WINDOWS\system32\FTRTSVC.exe PRC - [2004/08/23 13:49:56 | 000,020,480 | ---- | M] (France Télécom R&D) -- C:\Program Files\Wanadoo\Watch.exe PRC - [2004/08/05 19:00:00 | 001,036,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2004/07/11 17:54:26 | 000,015,360 | ---- | M] (Microsoft® Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2010/11/29 12:47:24 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\OTL.exe MOD - [2010/10/13 16:20:52 | 000,023,864 | R--- | M] (SweetIM Technologies Ltd.) -- C:\Program Files\SweetIM\Messenger\mgAdaptersProxy.dll MOD - [2006/07/11 18:35:38 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files\SweetIM\Messenger\msvcr71.dll MOD - [2004/10/26 08:49:34 | 000,028,672 | ---- | M] () -- C:\Program Files\Wanadoo\Inactivity.dll MOD - [2004/08/05 19:00:00 | 001,050,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper_3004.dll -- (nosGetPlusHelper) getPlus(R) SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ) SRV - File not found [On_Demand | Stopped] -- C:\WINDOWS\System32\appmgmts.dll -- (AppMgmt) SRV - [2010/09/07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner) SRV - [2010/09/07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Stopped] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner) SRV - [2010/09/07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus) SRV - [2005/08/29 15:33:00 | 001,466,368 | ---- | M] (Inventel) [Auto | Running] -- C:\Program Files\Inventel\Gateway\wlancfg.exe -- (Wlancfg) SRV - [2004/10/22 10:24:18 | 000,073,728 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT) SRV - [2004/08/23 13:49:56 | 000,040,960 | ---- | M] (France Telecom) [Auto | Running] -- C:\WINDOWS\system32\FTRTSVC.exe -- (FTRTSVC) SRV - [2004/08/05 13:00:00 | 000,729,600 | ---- | M] () [Auto | Start_Pending] -- C:\WINDOWS\System32\dlo2.dll -- (hcdvukdg) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\PCAMPR5.SYS -- (PCAMPR5) DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\System32\DRIVERS\intelppm.sys -- (intelppm) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\catchme.sys -- (catchme) DRV - [2010/10/23 23:17:18 | 000,017,134 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\PCANDIS5.sys -- (PCANDIS5) DRV - [2010/09/07 16:52:25 | 000,046,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi) DRV - [2010/09/07 16:52:03 | 000,165,584 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP) DRV - [2010/09/07 16:47:46 | 000,023,376 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr) DRV - [2010/09/07 16:47:19 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2) DRV - [2010/09/07 16:47:07 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2010/09/07 16:46:51 | 000,028,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4) DRV - [2005/06/20 10:12:00 | 000,215,040 | ---- | M] (SiS Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sis163u.sys -- (SIS163u) DRV - [2005/04/20 19:00:56 | 002,317,696 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2005/04/06 05:58:48 | 001,035,776 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2005/03/09 22:53:00 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8) DRV - [2005/01/19 17:21:56 | 000,012,416 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PcdrNdisuio.sys -- (PcdrNdisuio) DRV - [2004/08/05 13:00:00 | 000,023,424 | ---- | M] (Toshiba Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\hgycytxi.sys -- (hgycytxi) DRV - [2004/08/04 07:46:46 | 000,607,452 | ---- | M] (LT) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ltmdmnt.sys -- (ltmodem5) DRV - [2004/08/03 22:07:56 | 000,059,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Pilote USB audio (WDM) DRV - [2004/06/29 18:07:18 | 001,268,204 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem) DRV - [2002/10/04 18:04:10 | 000,046,976 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\R8139n51.sys -- (rtl8139) DRV - [2002/07/29 22:43:50 | 000,023,808 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\PS2.sys -- (Ps2) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=FR_FR&c=Q305&bd=presario&pf=desktop IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q305&bd=presario&pf=desktop IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q305&bd=presario&pf=desktop IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=FR_FR&c=Q305&bd=presario&pf=desktop IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=FR_FR&c=Q305&bd=presario&pf=desktop IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q305&bd=presario&pf=desktop IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q305&bd=presario&pf=desktop IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=FR_FR&c=Q305&bd=presario&pf=desktop IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1238882258-2045701615-1049950058-1008\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google IE - HKU\S-1-5-21-1238882258-2045701615-1049950058-1008\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 IE - HKU\S-1-5-21-1238882258-2045701615-1049950058-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr IE - HKU\S-1-5-21-1238882258-2045701615-1049950058-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp IE - HKU\S-1-5-21-1238882258-2045701615-1049950058-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr IE - HKU\S-1-5-21-1238882258-2045701615-1049950058-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = E0 5F 7D BD 33 84 CB 01 [binary data] IE - HKU\S-1-5-21-1238882258-2045701615-1049950058-1008\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie IE - HKU\S-1-5-21-1238882258-2045701615-1049950058-1008\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultenginename: "Google" FF - prefs.js..browser.search.defaulturl: "http://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..browser.startup.homepage: "http://www.hoolight.com/" FF - prefs.js..network.proxy.ftp: "€" FF - prefs.js..network.proxy.gopher: "€" FF - prefs.js..network.proxy.http: "€" FF - prefs.js..network.proxy.no_proxies_on: "€" FF - prefs.js..network.proxy.share_proxy_settings: true FF - prefs.js..network.proxy.socks: "€" FF - prefs.js..network.proxy.ssl: "€" FF - HKLM\software\mozilla\Firefox\Extensions\\offerboxffx@offerbox.com: C:\Program Files\OfferBox\offerboxffx@offerbox.com [2010/11/06 18:58:05 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\freecompressor@spointer.com: C:\Program Files\FreeCompressor\spointer\extensions\freecompressor@spointer.com [2010/11/06 19:28:22 | 000,000,000 | ---D | M] [2010/11/06 19:27:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\okndj48q.default\extensions [2010/11/06 19:08:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\okndj48q.default\extensions\@FissaPlugin [2010/11/06 19:27:55 | 000,000,000 | ---D | M] (SweetIM Toolbar for Firefox) -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\okndj48q.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847} [2006/11/01 14:11:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\okndj48q.default\extensions\staged-xpis [2010/11/06 19:27:51 | 000,003,915 | ---- | M] () -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\okndj48q.default\searchplugins\sweetim.xml [2007/05/02 07:48:45 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2006/11/01 14:09:29 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org [2007/02/09 16:53:15 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\defaults\profile\extensions [2007/02/09 16:53:15 | 000,000,000 | ---D | M] (Firefox (default)) -- C:\Program Files\Mozilla Firefox\defaults\profile\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2005/07/17 20:15:00 | 000,041,578 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\jar50.dll [2005/07/17 20:15:00 | 000,048,228 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\jsd3250.dll [2005/07/17 20:15:00 | 000,160,876 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\xpinstal.dll [2007/06/11 12:34:00 | 002,115,816 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\NPSWF32.dll [2006/11/01 14:09:22 | 000,000,680 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.png [2006/11/01 14:09:22 | 000,000,782 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.src [2005/07/17 20:15:00 | 000,000,680 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazondotfr.png [2005/07/17 20:15:00 | 000,000,770 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazondotfr.src [2005/07/17 20:15:00 | 000,000,356 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\creativecommons.png [2005/07/17 20:15:00 | 000,000,961 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\creativecommons.src [2006/11/01 14:09:22 | 000,000,210 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.gif [2006/11/01 14:09:23 | 000,001,081 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.src [2005/07/17 20:15:00 | 000,000,210 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBayfr.gif [2005/07/17 20:15:00 | 000,001,036 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBayfr.src [2005/07/17 20:15:00 | 000,001,076 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.gif [2009/01/24 15:38:10 | 000,000,750 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.src [2006/11/01 14:09:23 | 000,000,115 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\MediaDICO-fr.gif [2006/11/01 14:09:22 | 000,000,686 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\MediaDICO-fr.src [2005/07/17 20:15:00 | 000,000,459 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.png [2005/07/17 20:15:00 | 000,001,350 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.src [2006/11/01 14:09:22 | 000,000,088 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.gif [2006/11/01 14:09:23 | 000,001,221 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.src [2005/07/17 20:15:00 | 000,000,088 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo.gif [2005/07/17 20:15:00 | 000,001,067 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo.src O1 HOSTS File: ([2010/11/06 00:27:46 | 000,000,799 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: () - {2DD05F50-1478-40D0-88D4-E0FCFE2BD665} - C:\WINDOWS\System32\dlo2.dll () O2 - BHO: (Interest recogniser for Freecompressor (powered by Spointer)) - {a83c3565-302c-4bf8-b000-6b6f1811d892} - C:\Program Files\FreeCompressor\spointer\extensions\freecompressor_air_ie.dll (Freecompressor) O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll (Google Inc.) O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O2 - BHO: (OfferBox) - {FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} - C:\Program Files\OfferBox\OfferBoxBHO.dll (Secure Digital Services Limited) O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKU\S-1-5-21-1238882258-2045701615-1049950058-1008\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found. O3 - HKU\S-1-5-21-1238882258-2045701615-1049950058-1008\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKU\S-1-5-21-1238882258-2045701615-1049950058-1008\..\Toolbar\WebBrowser: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O3 - HKU\S-1-5-21-1238882258-2045701615-1049950058-1008\..\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [EPSON Stylus Photo RX420 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\LSBurnWatcher.exe (Hewlett-Packard Company) O4 - HKLM..\Run: [PS2] C:\WINDOWS\system32\ps2.EXE (Hewlett-Packard Company) O4 - HKLM..\Run: [Recguard] C:\WINDOWS\SMINST\Recguard.exe () O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.) O4 - HKLM..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.) O4 - HKLM..\Run: [UserFaultCheck] File not found O4 - HKLM..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe File not found O4 - HKU\S-1-5-21-1238882258-2045701615-1049950058-1008..\Run: [ccleaner] C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd) O4 - HKU\S-1-5-21-1238882258-2045701615-1049950058-1008..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.) O4 - HKU\S-1-5-21-1238882258-2045701615-1049950058-1008..\Run: [WOOKIT] C:\Program Files\Wanadoo\Shell.exe () O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Player Wanadoo.lnk = C:\Program Files\Wanadoo\Player Wanadoo\Player Wanadoo.exe File not found O4 - Startup: C:\Documents and Settings\Compaq_Propriétaire\Menu Démarrer\Programmes\Démarrage\Notification de cadeaux MSN.lnk = C:\Documents and Settings\Compaq_Propriétaire\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe (Microsoft Corporation) O4 - Startup: C:\Documents and Settings\Compaq_Propriétaire\Menu Démarrer\Programmes\Démarrage\OpenOffice.org 3.2.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe () O4 - Startup: C:\Documents and Settings\Compaq_Propriétaire\Menu Démarrer\Programmes\Démarrage\WKCALREM.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe (Microsoft® Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1238882258-2045701615-1049950058-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95 00 00 00 [binary data] O9 - Extra Button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm () O9 - Extra 'Tools' menuitem : Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm () O9 - Extra Button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Wanadoo Messager\Wanadoo Messager.exe (France Telecom) O9 - Extra 'Tools' menuitem : Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Wanadoo Messager\Wanadoo Messager.exe (France Telecom) O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resources/scanner/sources/fr/scan8/oscan8.cab (BDSCANONLINE Control) O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (get_atlcom Class) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O24 - Desktop Components:0 (Ma page d'accueil) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Wallpaper2.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Wallpaper2.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2004/11/23 22:21:48 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2006/07/30 15:20:12 | 000,000,959 | RHS- | M] () - C:\autorun.bin -- [ NTFS ] O32 - AutoRun File - [2006/08/25 06:01:40 | 000,000,245 | RHS- | M] () - C:\AUTORUN.FCB -- [ NTFS ] O32 - AutoRun File - [2006/06/14 09:06:28 | 000,000,203 | RHS- | M] () - C:\AUTORUN.INF_被屏蔽木马 -- [ NTFS ] O32 - AutoRun File - [2006/08/22 11:20:42 | 000,000,000 | RHS- | M] () - C:\autorun.srm -- [ NTFS ] O32 - AutoRun File - [2006/06/14 02:26:38 | 000,000,024 | RHS- | M] () - C:\autorun.txt -- [ NTFS ] O32 - AutoRun File - [2001/10/29 14:00:16 | 000,061,440 | RHS- | M] () - C:\Autorun.~ex -- [ NTFS ] O32 - AutoRun File - [2001/07/28 07:07:38 | 000,000,000 | -HS- | M] () - D:\AUTOEXEC.BAT -- [ FAT32 ] O32 - AutoRun File - [2006/07/30 16:20:12 | 000,000,959 | RHS- | M] () - D:\autorun.bin -- [ FAT32 ] O32 - AutoRun File - [2006/08/25 07:01:40 | 000,000,245 | RHS- | M] () - D:\AUTORUN.FCB -- [ FAT32 ] O32 - AutoRun File - [2006/08/22 12:20:42 | 000,000,000 | RHS- | M] () - D:\autorun.srm -- [ FAT32 ] O32 - AutoRun File - [2006/06/14 03:26:38 | 000,000,024 | RHS- | M] () - D:\autorun.txt -- [ FAT32 ] O32 - AutoRun File - [2001/10/29 15:00:16 | 000,061,440 | RHS- | M] () - D:\Autorun.~ex -- [ FAT32 ] O32 - AutoRun File - [2006/06/14 10:06:28 | 000,000,203 | RHS- | M] () - D:\AUTORUN.INF_被屏蔽木马 -- [ FAT32 ] O33 - MountPoints2\D\Shell - "" = AutoRun O33 - MountPoints2\E\Shell - "" = AutoRun O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\LANCEUR.EXE -- File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: AppMgmt - C:\WINDOWS\System32\appmgmts.dll File not found NetSvcs: HidServ - C:\WINDOWS\System32\hidserv.dll File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found NetSvcs: hcdvukdg - C:\WINDOWS\System32\dlo2.dll () SafeBootMin: AppMgmt - C:\WINDOWS\System32\appmgmts.dll File not found SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: AppMgmt - C:\WINDOWS\System32\appmgmts.dll File not found SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun) ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Rendu VML (Vector Graphics Rendering) ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Lecteur Windows Media Microsoft 6.4 ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation ActiveX: {2A3320D6-C805-4280-B423-B665BDE33D8F} - Microsoft .NET Framework 1.1 Security Update (KB979906) ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Liaison de données Dynamic HTML pour Java ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460) ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Création avancée ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - Classes Java DirectAnimation ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6 ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINDOWS\system32\ie4uinit.exe -BaseSettings ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install ActiveX: {8b15971b-5355-4c82-8c07-7e181ea07608} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.Install.PerUser ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding ActiveX: {94de52c8-2d59-4f1b-883e-79663d2d9a8c} - Fax Provider ActiveX: {9A394342-4A68-4EBA-85A6-55B559F4E700} - .NET Framework ActiveX: {ACC563BC-4266-43f0-B6ED-9D38C4202C7E} - ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Planificateur de tâches ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1 ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Macromedia Shockwave Flash ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE ActiveX: >{CB58DED6-4AF3-4080-9DF1-DEE72075169F} - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation) Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.) Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.) Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.) Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax () Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll () [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010/11/29 12:47:21 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\OTL.exe [2010/11/29 09:28:18 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Compaq_Propriétaire\Recent [2010/11/21 14:49:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Nouveau dossier [2010/11/10 14:11:19 | 000,000,000 | ---D | C] -- C:\AbaEnglishCourse [2010/11/10 14:10:25 | 000,000,000 | ---D | C] -- C:\Marco Polo Turbo Vocabulary Tutor [2010/11/09 00:27:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2010/11/09 00:27:39 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2010/11/09 00:27:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US [2010/11/09 00:27:20 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2010/11/09 00:26:39 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll [2010/11/09 00:26:39 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll [2010/11/09 00:26:39 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe [2010/11/09 00:26:39 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll [2010/11/09 00:26:39 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll [2010/11/09 00:26:39 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll [2010/11/09 00:26:38 | 000,000,000 | ---D | C] -- C:\531181ef411eedf2ad65e795 [2010/11/09 00:19:50 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 6.0 [2010/11/07 12:24:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\budget jean luc [2010/11/07 12:15:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\budget helene [2010/11/07 12:03:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\OpenOffice.org [2010/11/07 11:48:18 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2010/11/07 11:48:18 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2010/11/07 11:48:18 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2010/11/07 11:43:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\OpenOffice.org 3.2 (fr) Installation Files [2010/11/07 11:04:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\reparation et info pc+anti virus [2010/11/06 20:38:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun [2010/11/06 20:37:16 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll [2010/11/06 20:37:16 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl [2010/11/06 19:27:24 | 000,000,000 | ---D | C] -- C:\Program Files\SweetIM [2010/11/06 19:27:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SweetIM [2010/11/06 19:08:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\freecompressor Air [2010/11/06 19:08:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\freeCompressor [2010/11/06 19:08:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\FissaSearch [2010/11/06 18:58:41 | 000,000,000 | ---D | C] -- C:\Program Files\FreeCompressor [2010/11/06 18:58:05 | 000,000,000 | ---D | C] -- C:\Program Files\OfferBox [2010/11/06 18:58:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\OfferBox [2010/11/06 14:56:08 | 000,165,584 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys [2010/11/06 14:56:08 | 000,017,744 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys [2010/11/06 14:56:06 | 000,023,376 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys [2010/11/06 14:56:04 | 000,046,672 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys [2010/11/06 14:56:01 | 000,100,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys [2010/11/06 14:56:01 | 000,094,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys [2010/11/06 14:56:00 | 000,028,880 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys [2010/11/06 14:55:23 | 000,038,848 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr [2010/11/06 14:55:22 | 000,167,592 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe [2010/11/06 14:55:05 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software [2010/11/06 14:55:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Alwil Software [2010/11/06 12:53:43 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Compaq_Propriétaire\PrivacIE [2010/11/06 12:50:35 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Compaq_Propriétaire\IETldCache [2010/11/06 12:41:57 | 000,000,000 | -H-D | C] -- C:\WINDOWS\msdownld.tmp [2010/11/06 12:41:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2010/11/06 12:39:04 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2010/11/06 12:36:54 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll [2010/11/06 12:05:45 | 021,954,904 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\installation_ie8-xp.exe [2010/11/06 11:31:44 | 000,401,720 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\HiJackThis.exe [2010/11/06 08:13:53 | 000,272,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys [2010/11/06 08:13:34 | 000,454,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys [2010/11/06 08:12:34 | 002,183,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe [2010/11/06 08:12:33 | 002,139,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe [2010/11/06 08:12:33 | 002,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe [2010/11/06 08:12:33 | 002,018,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe [2010/11/06 08:11:52 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msyuv.dll [2010/11/06 08:11:10 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe [2010/11/06 08:11:00 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iyuv_32.dll [2010/11/06 08:11:00 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsbyuv.dll [2010/11/05 18:32:26 | 000,000,000 | ---D | C] -- C:\Program Files\ZHPDiag [2010/11/04 19:28:03 | 000,000,000 | ---D | C] -- C:\Program Files\ESET [2010/11/04 13:54:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\fr-fr [2010/11/04 13:46:33 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll [2010/11/04 13:46:33 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll [2010/11/04 13:46:32 | 001,985,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll [2010/11/04 13:46:31 | 003,698,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dat [2010/11/04 13:46:31 | 001,310,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll.mui [2010/11/04 13:46:31 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieudinit.exe [2010/11/04 13:46:30 | 000,445,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dll [2010/11/04 13:46:29 | 011,076,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll [2010/11/04 13:46:29 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icardie.dll [2010/11/04 13:44:16 | 000,000,000 | ---D | C] -- C:\9fab96f9f9d499bb949d1c11a93bab2f [2010/11/04 08:18:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot_bak [2010/11/04 07:43:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2010/11/04 07:43:01 | 000,026,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe [2010/11/03 23:37:35 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010/11/03 23:37:34 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2010/11/03 23:28:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel [2010/11/03 21:29:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2010/11/03 09:57:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\F-Secure [2010/11/02 23:12:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\f-secure [2010/11/02 19:19:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Malwarebytes [2010/11/02 16:51:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\AdobeUM [2010/11/02 16:51:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Adobe [2010/11/01 13:04:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Macromedia [2010/11/01 12:48:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Adobe [2010/10/31 09:59:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Google [2010/10/31 09:55:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Temp [2010/10/31 09:54:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Google [2007/10/17 19:41:57 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\pcouffin.sys [6 C:\WINDOWS\Fonts\*.tmp files -> C:\WINDOWS\Fonts\*.tmp -> ] [6 C:\WINDOWS\Fonts\*.tmp files -> C:\WINDOWS\Fonts\*.tmp -> ] [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2016/08/03 07:55:20 | 000,003,120 | ---- | M] () -- C:\WINDOWS\MF_C421.lfa [2016/08/03 07:55:20 | 000,003,120 | ---- | M] () -- C:\WINDOWS\MF_C420.lfa [2010/11/29 12:47:24 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\OTL.exe [2010/11/29 12:38:00 | 000,000,256 | ---- | M] () -- C:\WINDOWS\tasks\Vérifier les mises à jour de Windows Live Toolbar.job [2010/11/29 12:00:14 | 000,001,054 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2010/11/29 10:27:43 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn [2010/11/29 10:27:43 | 000,001,409 | ---- | M] () -- C:\WINDOWS\QTFont.for [2010/11/29 10:00:08 | 000,001,050 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2010/11/29 09:57:24 | 000,455,680 | ---- | M] () -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\ToolsCleaner2.exe [2010/11/29 09:27:03 | 000,000,246 | ---- | M] () -- C:\WINDOWS\System\hpsysdrv.dat [2010/11/29 09:26:43 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010/11/29 09:26:37 | 401,133,568 | -HS- | M] () -- C:\hiberfil.sys

Suite du même rapport :

Code: Tout sélectionner: [2010/11/28 16:58:16 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2010/11/25 18:53:39 | 000,014,114 | ---- | M] () -- C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Sans nom 1 ANNIF momo 14 ans !!!! AH BON.odt [2010/11/23 15:58:06 | 000,000,300 | ---- | M] () -- C:\WINDOWS\tasks\Connexion facile à Internet.job [2010/11/21 11:13:55 | 000,052,943 | ---- | M] () -- C:\Documents and Settings\All Users\Documents\LM Jluc Responsable d'Expoitation en Sécurité.pdf [2010/11/19 21:52:01 | 000,023,822 | ---- | M] () -- C:\Documents and Settings\Compaq_Propriétaire\Mes documents\CV jluc.odt [2010/11/19 21:51:55 | 000,071,252 | ---- | M] () -- C:\Documents and Settings\All Users\Documents\CV jluc CV Agent de sécurité incendie -sûreté- surveillance.pdf [2010/11/19 16:50:47 | 000,036,384 | ---- | M] () -- C:\Documents and Settings\All Users\Documents\LM Jluc surveillant internat à Priziac . Pole emploi Lanester.pdf [2010/11/10 14:11:20 | 000,000,596 | ---- | M] () -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\ABAEnglish.lnk [2010/11/10 14:10:31 | 000,001,994 | ---- | M] () -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Microsoft\Internet Explorer\Quick Launch\Marco Polo Turbo Français Anglais.lnk [2010/11/10 14:10:31 | 000,001,976 | ---- | M] () -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\Marco Polo Turbo Français Anglais.lnk [2010/11/10 00:33:28 | 000,514,908 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat [2010/11/10 00:33:28 | 000,445,218 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010/11/10 00:33:28 | 000,086,850 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat [2010/11/10 00:33:28 | 000,073,082 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010/11/09 08:53:43 | 000,133,280 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010/11/07 12:06:40 | 000,000,872 | ---- | M] () -- C:\Documents and Settings\Compaq_Propriétaire\Menu Démarrer\Programmes\Démarrage\OpenOffice.org 3.2.lnk [2010/11/07 11:55:36 | 000,000,917 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\OpenOffice.org 3.2.lnk [2010/11/07 09:37:22 | 000,000,690 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\CCleaner.lnk [2010/11/06 20:36:53 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2010/11/06 20:36:53 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2010/11/06 20:36:53 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2010/11/06 20:36:53 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl [2010/11/06 20:36:52 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll [2010/11/06 19:34:23 | 000,641,473 | ---- | M] (The RaProducts Team: Paul McLain and Fred de Vries) -- C:\Documents and Settings\Compaq_Propriétaire\Mes documents\JavaRa.exe [2010/11/06 19:34:20 | 000,351,259 | ---- | M] () -- C:\Documents and Settings\Compaq_Propriétaire\Mes documents\JavaRa.def [2010/11/06 19:34:17 | 000,003,027 | ---- | M] () -- C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Français.lng [2010/11/06 19:34:17 | 000,002,920 | ---- | M] () -- C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Italiano.lng [2010/11/06 19:34:16 | 000,002,946 | ---- | M] () -- C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Español.lng [2010/11/06 19:34:16 | 000,002,758 | ---- | M] () -- C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Deutsch.lng [2010/11/06 19:27:48 | 000,000,232 | -H-- | M] () -- C:\sqmdata06.sqm [2010/11/06 19:27:47 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt05.sqm [2010/11/06 14:59:26 | 000,001,821 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Google Chrome.lnk [2010/11/06 14:59:26 | 000,001,799 | ---- | M] () -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [2010/11/06 14:56:02 | 000,003,121 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010/11/06 14:54:41 | 043,701,952 | ---- | M] () -- C:\setup_av_free_fre.exe [2010/11/06 12:50:40 | 000,000,823 | ---- | M] () -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Microsoft\Internet Explorer\Quick Launch\Démarrer Internet Explorer.lnk [2010/11/06 12:05:56 | 000,001,114 | ---- | M] () -- C:\Documents and Settings\Compaq_Propriétaire\Menu Démarrer\Programmes\Démarrage\Notification de cadeaux MSN.lnk [2010/11/06 12:05:56 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\Internet Explorer.lnk [2010/11/06 12:05:50 | 021,954,904 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\installation_ie8-xp.exe [2010/11/06 11:31:44 | 000,401,720 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\HiJackThis.exe [2010/11/06 11:29:22 | 000,016,574 | ---- | M] () -- C:\WINDOWS\EPISMF00.SWB [2010/11/02 16:08:54 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2016/08/03 07:55:20 | 000,003,120 | ---- | C] () -- C:\WINDOWS\MF_C421.lfa [2016/08/03 07:55:20 | 000,003,120 | ---- | C] () -- C:\WINDOWS\MF_C420.lfa [2010/11/29 10:27:43 | 000,054,156 | -H-- | C] () -- C:\WINDOWS\QTFont.qfn [2010/11/29 10:27:43 | 000,001,409 | ---- | C] () -- C:\WINDOWS\QTFont.for [2010/11/29 09:57:08 | 000,455,680 | ---- | C] () -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\ToolsCleaner2.exe [2010/11/25 18:53:37 | 000,014,114 | ---- | C] () -- C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Sans nom 1 ANNIF momo 14 ans !!!! AH BON.odt [2010/11/23 15:57:58 | 000,000,300 | ---- | C] () -- C:\WINDOWS\tasks\Connexion facile à Internet.job [2010/11/21 14:35:37 | 000,036,308 | ---- | C] () -- C:\Documents and Settings\Compaq_Propriétaire\Mes documents\LM Jluc 5 citédia.pdf [2010/11/21 11:13:54 | 000,052,943 | ---- | C] () -- C:\Documents and Settings\All Users\Documents\LM Jluc Responsable d'Expoitation en Sécurité.pdf [2010/11/19 21:51:53 | 000,071,252 | ---- | C] () -- C:\Documents and Settings\All Users\Documents\CV jluc CV Agent de sécurité incendie -sûreté- surveillance.pdf [2010/11/19 16:50:41 | 000,036,384 | ---- | C] () -- C:\Documents and Settings\All Users\Documents\LM Jluc surveillant internat à Priziac . Pole emploi Lanester.pdf [2010/11/17 08:57:01 | 000,023,822 | ---- | C] () -- C:\Documents and Settings\Compaq_Propriétaire\Mes documents\CV jluc.odt [2010/11/10 14:11:20 | 000,000,596 | ---- | C] () -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\ABAEnglish.lnk [2010/11/10 14:10:31 | 000,001,994 | ---- | C] () -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Microsoft\Internet Explorer\Quick Launch\Marco Polo Turbo Français Anglais.lnk [2010/11/10 14:10:31 | 000,001,976 | ---- | C] () -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\Marco Polo Turbo Français Anglais.lnk [2010/11/07 12:06:39 | 000,000,872 | ---- | C] () -- C:\Documents and Settings\Compaq_Propriétaire\Menu Démarrer\Programmes\Démarrage\OpenOffice.org 3.2.lnk [2010/11/07 11:55:36 | 000,000,917 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\OpenOffice.org 3.2.lnk [2010/11/07 09:37:21 | 000,000,690 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\CCleaner.lnk [2010/11/06 14:59:26 | 000,001,821 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Google Chrome.lnk [2010/11/06 14:59:26 | 000,001,799 | ---- | C] () -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [2010/11/06 14:54:30 | 043,701,952 | ---- | C] () -- C:\setup_av_free_fre.exe [2010/11/06 12:05:56 | 000,001,114 | ---- | C] () -- C:\Documents and Settings\Compaq_Propriétaire\Menu Démarrer\Programmes\Démarrage\Notification de cadeaux MSN.lnk [2010/11/06 12:05:56 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\Internet Explorer.lnk [2010/11/03 21:17:42 | 401,133,568 | -HS- | C] () -- C:\hiberfil.sys [2010/11/02 20:21:18 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2010/10/24 10:49:19 | 000,001,110 | ---- | C] () -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\2DD05F50-1478-40D0-88D4-E0FCFE2BD665.txt [2010/10/23 23:40:34 | 000,003,314 | ---- | C] () -- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\2DD05F50-1478-40D0-88D4-E0FCFE2BD665.txt [2010/10/23 23:06:35 | 000,000,142 | ---- | C] () -- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\fusioncache.dat [2010/10/23 22:58:42 | 000,000,072 | ---- | C] () -- C:\WINDOWS\System32\epDPE.ini [2010/10/23 22:54:47 | 000,000,022 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini [2010/10/23 21:07:19 | 000,000,016 | ---- | C] () -- C:\Documents and Settings\NetworkService\Application Data\dxqkew.dat [2009/10/28 13:29:40 | 000,000,940 | ---- | C] () -- C:\WINDOWS\bdoscandellang.ini [2009/02/19 14:30:13 | 000,000,736 | ---- | C] () -- C:\WINDOWS\SamsungMaster.INI [2009/02/18 13:57:52 | 000,096,768 | ---- | C] () -- C:\WINDOWS\SlantAdj.dll [2009/01/23 23:53:25 | 000,000,067 | ---- | C] () -- C:\WINDOWS\SpotAuditor.INI [2008/06/26 21:31:35 | 000,000,203 | ---- | C] () -- C:\WINDOWS\yesmessenger.ini [2008/03/08 12:03:08 | 000,063,488 | ---- | C] () -- C:\WINDOWS\xobglu16.dll [2008/03/08 12:03:08 | 000,057,586 | ---- | C] () -- C:\WINDOWS\xobglu32.dll [2008/02/06 17:05:42 | 000,134,272 | ---- | C] () -- C:\WINDOWS\System32\SPXAudio.dll [2008/02/06 17:04:00 | 000,584,832 | ---- | C] () -- C:\WINDOWS\System32\AXPBObjects.dll [2007/10/17 19:42:37 | 000,000,033 | ---- | C] () -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\pcouffin.log [2007/10/17 19:41:57 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\inst.exe [2007/10/17 19:41:57 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\pcouffin.cat [2007/10/17 19:41:57 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\pcouffin.inf [2007/09/24 21:12:21 | 000,001,217 | ---- | C] () -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\QuickZip45.ini [2006/11/07 16:30:23 | 000,002,048 | ---- | C] () -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\user60.rdb [2006/11/07 16:30:20 | 000,000,199 | ---- | C] () -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\sversion.ini [2006/11/06 18:17:58 | 000,000,119 | ---- | C] () -- C:\WINDOWS\Readiris.ini [2006/10/31 12:47:27 | 000,001,755 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache [2006/05/28 11:47:36 | 000,000,339 | ---- | C] () -- C:\WINDOWS\hegames.ini [2006/01/15 02:25:45 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI [2005/11/29 18:56:48 | 000,000,344 | ---- | C] () -- C:\WINDOWS\DcmLtBox.ini [2005/11/26 21:41:18 | 000,278,528 | ---- | C] () -- C:\Program Files\Fichiers communs\FDEUnInstaller.exe [2005/11/14 21:48:45 | 000,168,448 | ---- | C] () -- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2005/11/14 20:58:48 | 000,000,040 | ---- | C] () -- C:\WINDOWS\NAVIGMA.INI [2005/11/07 20:29:44 | 000,000,131 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2005/09/09 11:02:12 | 000,000,263 | ---- | C] () -- C:\WINDOWS\SIERRA.INI [2005/09/03 11:14:03 | 000,000,029 | ---- | C] () -- C:\WINDOWS\DEBUGSM.INI [2005/09/02 12:43:19 | 000,000,000 | ---- | C] () -- C:\WINDOWS\MSDraw.ini [2005/08/31 16:01:36 | 000,002,552 | ---- | C] () -- C:\WINDOWS\WAVEMIX.INI [2005/08/31 16:01:33 | 000,000,119 | ---- | C] () -- C:\WINDOWS\QTW.INI [2005/08/31 14:08:55 | 000,026,490 | ---- | C] () -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\wklnhst.dat [2005/08/31 11:07:29 | 000,000,040 | ---- | C] () -- C:\WINDOWS\INTER.INI [2005/08/30 19:22:00 | 000,000,025 | ---- | C] () -- C:\WINDOWS\CDE RX420FG.ini [2005/04/30 03:29:26 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini [2005/01/19 22:45:40 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\PcdrKernelModeServices.dll [2005/01/19 22:45:40 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\ProgressTrace.dll [2005/01/01 19:10:32 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini [2005/01/01 19:07:53 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll [2005/01/01 19:07:53 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll [2005/01/01 19:07:53 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll [2005/01/01 19:07:53 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll [2005/01/01 19:07:53 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll [2005/01/01 19:07:53 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll [2005/01/01 18:41:15 | 000,013,282 | ---- | C] () -- C:\WINDOWS\System32\CHODDI.SYS [2005/01/01 18:41:09 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\hpreg.dll [2005/01/01 18:28:22 | 000,003,712 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini [2005/01/01 18:13:28 | 000,000,829 | ---- | C] () -- C:\WINDOWS\orun32.ini [2005/01/01 18:11:30 | 000,323,584 | ---- | C] () -- C:\WINDOWS\System32\pythoncom22.dll [2005/01/01 18:11:30 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\pywintypes22.dll [2005/01/01 18:11:04 | 000,016,896 | ---- | C] () -- C:\WINDOWS\System32\bcbmm.dll [2004/11/23 22:21:24 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2004/08/05 19:00:00 | 000,755,200 | ---- | C] () -- C:\WINDOWS\System32\ir50_32.dll [2004/08/05 19:00:00 | 000,338,432 | ---- | C] () -- C:\WINDOWS\System32\ir41_qcx.dll [2004/08/05 19:00:00 | 000,200,192 | ---- | C] () -- C:\WINDOWS\System32\ir50_qc.dll [2004/08/05 19:00:00 | 000,183,808 | ---- | C] () -- C:\WINDOWS\System32\ir50_qcx.dll [2004/08/05 19:00:00 | 000,120,320 | ---- | C] () -- C:\WINDOWS\System32\ir41_qc.dll [2004/08/05 13:00:00 | 000,729,600 | ---- | C] () -- C:\WINDOWS\System32\dlo2.dll [2004/08/05 13:00:00 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys [2004/07/27 05:17:16 | 000,000,659 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini [2003/04/10 22:04:00 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\JAWTAccessBridge.dll [1996/05/21 21:13:34 | 000,374,784 | ---- | C] () -- C:\WINDOWS\3dg32.dll [1996/04/17 11:48:40 | 000,000,250 | ---- | C] () -- C:\WINDOWS\3dr.ini [color=#E56717]========== LOP Check ==========[/color] [2009/01/30 15:39:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrateur\Application Data\SampleView [2010/10/20 17:08:04 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\347932 [2010/11/06 14:55:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software [2007/05/16 21:00:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Bluetooth [2007/05/20 11:40:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BVRP Software [2007/05/02 07:46:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ciel [2007/07/03 22:11:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EBP [2010/11/03 23:26:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\f-secure [2008/12/31 22:18:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Flood Light Games [2010/11/03 09:53:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\fssg [2009/01/29 23:33:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\GamesBar [2010/03/01 19:10:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MGS [2008/06/04 20:10:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MumboJumbo [2006/09/13 11:05:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\pixelStorm [2008/05/28 15:44:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PlayFirst [2010/10/20 17:03:06 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\SMEXPE [2005/09/06 18:31:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Softdisk LLC [2005/09/26 21:58:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Spontania4IM [2010/11/06 19:28:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SweetIM [2007/07/25 12:38:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Teleca [2010/10/21 10:27:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP [2010/09/21 10:49:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TomTom [2005/08/30 19:40:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\UDL [2005/09/26 21:59:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\vidcap [2010/10/24 00:07:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Win7codecs [2005/10/12 10:10:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\eConf [2010/11/06 19:08:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\FissaSearch [2008/12/31 22:18:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Flood Light Games [2010/11/06 19:08:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\freeCompressor [2007/02/09 18:54:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Grisbi [2009/01/24 00:33:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Icone [2005/08/31 11:24:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\InterVideo [2008/06/09 18:58:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\iWin [2005/09/02 19:12:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Leadertech [2007/02/09 17:42:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Nvu [2010/11/23 19:41:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\OfferBox [2007/05/02 08:02:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\OFFICE One v6 [2010/11/07 12:03:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\OpenOffice.org [2007/02/09 17:44:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\PDFCreator [2006/02/21 22:03:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Player Wanadoo [2008/06/08 22:04:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\PlayFirst [2005/01/01 18:51:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\SampleView [2008/12/09 10:41:10 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\SMov [2006/05/16 16:16:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\TaoUSign [2007/08/07 08:50:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Teleca [2005/09/01 01:24:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Template [2007/02/09 16:57:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Thunderbird [2007/12/16 19:13:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\TomTom [2009/01/29 23:21:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\uTorrent [2007/10/17 20:06:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Vso [2006/09/01 19:12:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Windows Desktop Search [2005/01/01 18:51:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire.SCHWARTZ\Application Data\SampleView [2010/04/17 13:38:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire.SCHWARTZ.000\Application Data\BitTorrent [2010/11/04 23:39:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire.SCHWARTZ.000\Application Data\DEB957E7A3BB1E19E0D33D5ABAA8A9A8 [2010/08/13 20:33:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire.SCHWARTZ.000\Application Data\DNA [2010/10/21 10:17:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire.SCHWARTZ.000\Application Data\EoRezo [2009/08/09 17:55:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire.SCHWARTZ.000\Application Data\EPSON [2010/10/23 21:12:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire.SCHWARTZ.000\Application Data\Free Download Manager [2009/02/10 16:35:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire.SCHWARTZ.000\Application Data\Icone [2010/08/30 14:11:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire.SCHWARTZ.000\Application Data\Icones [2009/02/11 23:09:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire.SCHWARTZ.000\Application Data\InterVideo [2009/02/06 23:37:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire.SCHWARTZ.000\Application Data\OpenOffice.org [2010/10/07 20:18:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire.SCHWARTZ.000\Application Data\PDF Software [2009/02/06 22:07:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire.SCHWARTZ.000\Application Data\PDFCreator [2005/01/01 18:51:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire.SCHWARTZ.000\Application Data\SampleView [2010/10/20 17:08:02 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\Compaq_Propriétaire.SCHWARTZ.000\Application Data\Smart Engine [2009/02/03 11:16:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire.SCHWARTZ.000\Application Data\Template [2010/09/02 17:29:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire.SCHWARTZ.000\Application Data\TomTom [2010/09/03 22:59:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire.SCHWARTZ.000\Application Data\uTorrent [2005/01/01 18:51:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Application Data\SampleView [2010/10/23 21:26:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\PDF Software [2010/11/23 15:58:06 | 000,000,300 | ---- | M] () -- C:\WINDOWS\Tasks\Connexion facile à Internet.job [2010/11/29 12:38:00 | 000,000,256 | ---- | M] () -- C:\WINDOWS\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color] Invalid Environment Variable: alluserprofile Invalid Environment Variable: alluserprofile [color=#A23BEC]< %appdata%\*. >[/color] [2007/02/09 17:37:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\.clamwin [2008/11/11 15:03:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Adobe [2010/11/19 17:33:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\AdobeUM [2010/10/23 23:08:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Apple Computer [2009/01/03 14:05:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\ArcSoft [2006/11/01 14:25:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\DivX [2005/10/12 10:10:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\eConf [2010/11/06 19:08:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\FissaSearch [2008/12/31 22:18:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Flood Light Games [2010/11/06 19:08:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\freeCompressor [2010/10/31 10:19:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Google [2007/02/09 18:54:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Grisbi [2005/12/05 21:13:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Help [2009/01/24 00:33:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Icone [2004/11/25 04:26:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Identities [2007/05/20 11:36:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\InstallShield [2005/08/31 11:24:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\InterVideo [2008/06/09 18:58:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\iWin [2005/09/02 19:12:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Leadertech [2008/05/30 20:34:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Macromedia [2010/11/02 19:19:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Malwarebytes [2010/11/06 12:05:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Microsoft [2006/11/07 16:50:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla [2007/02/09 17:42:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Nvu [2010/11/23 19:41:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\OfferBox [2007/05/02 08:02:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\OFFICE One v6 [2010/11/07 12:03:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\OpenOffice.org [2010/11/06 11:00:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\OpenOffice.org2 [2007/02/09 17:44:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\PDFCreator [2006/02/21 22:03:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Player Wanadoo [2008/06/08 22:04:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\PlayFirst [2005/01/01 18:51:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\SampleView [2008/12/09 10:41:10 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\SMov [2005/09/02 19:12:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Sonic [2007/07/25 12:44:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Sony Ericsson [2005/09/06 21:49:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Sun [2010/10/23 23:08:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Symantec [2006/11/01 14:10:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Talkback [2006/05/16 16:16:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\TaoUSign [2007/08/07 08:50:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Teleca [2005/09/01 01:24:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Template [2007/02/09 16:57:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Thunderbird [2007/12/16 19:13:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\TomTom [2007/10/12 13:10:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\U3 [2009/01/29 23:21:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\uTorrent [2007/02/09 17:43:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\vlc [2007/10/17 20:06:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Vso [2006/09/01 19:12:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Windows Desktop Search [2006/04/21 19:51:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Yahoo! [color=#A23BEC]< %appdata%\*.exe /s >[/color] [2007/10/17 20:06:09 | 000,087,608 | ---- | M] () -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\inst.exe [2007/06/22 18:49:36 | 000,001,078 | R--- | M] () -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Microsoft\Installer\{F1A2577D-2FDF-47D5-9055-ABE809D78D15}\_18be6784.exe [2007/06/22 18:49:36 | 000,020,870 | R--- | M] () -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Microsoft\Installer\{F1A2577D-2FDF-47D5-9055-ABE809D78D15}\_294823.exe [2010/11/06 12:05:56 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe [2010/11/06 12:05:57 | 000,086,576 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Microsoft\Services Windows Live\Raccourci Galerie de Photos Windows Live.exe [2010/11/06 12:05:57 | 000,132,672 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Microsoft\Services Windows Live\Raccourci Windows Live Messenger.exe [2006/08/15 09:15:04 | 000,110,592 | ---- | M] () -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\U3\temp\cleanup.exe [color=#A23BEC]< %systemdrive%\*.exe >[/color] [2007/11/19 11:31:00 | 003,686,400 | ---- | M] (Infor) -- C:\IKEA Home Planner.exe [2010/11/06 14:54:41 | 043,701,952 | ---- | M] () -- C:\setup_av_free_fre.exe [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2009/02/02 20:06:24 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\$NtServicePackUninstall$\sp3.cab:cdrom.sys [2004/08/05 19:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys [2009/02/02 20:06:24 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys [2004/08/05 13:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp2.cab:cdrom.sys [2009/02/02 20:06:24 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys [2009/01/30 11:44:27 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\sp3.cab:cdrom.sys [2009/02/02 20:06:24 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\51f93922a72f4cba24d116598e161b49\sp3.cab:cdrom.sys [2008/04/13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys [2008/04/13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\cdrom.sys [2008/04/13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\SoftwareDistribution\Download\327771f7f3830b5acec68906a2aac4ab\cdrom.sys [2008/04/13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\SoftwareDistribution\Download\51f93922a72f4cba24d116598e161b49\cdrom.sys [2004/08/05 19:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys [2004/08/05 19:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\system32\drivers\cdrom.sys [color=#A23BEC]< MD5 for: CHANGER.SYS >[/color] [2009/02/02 20:06:24 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\$NtServicePackUninstall$\sp3.cab:Changer.sys [2004/08/05 19:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys [2009/02/02 20:06:24 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys [2004/08/05 13:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp2.cab:Changer.sys [2009/02/02 20:06:24 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys [2009/01/30 11:44:27 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\sp3.cab:Changer.sys [2009/02/02 20:06:24 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\51f93922a72f4cba24d116598e161b49\sp3.cab:Changer.sys [2008/04/13 19:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys [2008/04/13 19:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\changer.sys [2008/04/13 19:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\SoftwareDistribution\Download\327771f7f3830b5acec68906a2aac4ab\changer.sys [2008/04/13 19:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\SoftwareDistribution\Download\51f93922a72f4cba24d116598e161b49\changer.sys [color=#A23BEC]< MD5 for: DISK.SYS >[/color] [2009/02/02 20:06:24 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\$NtServicePackUninstall$\sp3.cab:disk.sys [2004/08/05 19:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:disk.sys [2009/02/02 20:06:24 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:disk.sys [2004/08/05 13:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp2.cab:disk.sys [2009/02/02 20:06:24 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:disk.sys [2009/01/30 11:44:27 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\sp3.cab:disk.sys [2009/02/02 20:06:24 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\51f93922a72f4cba24d116598e161b49\sp3.cab:disk.sys [2004/08/05 19:00:00 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=00CA44E4534865F8A3B64F7C0984BFF0 -- C:\WINDOWS\$NtServicePackUninstall$\disk.sys [2004/08/05 19:00:00 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=00CA44E4534865F8A3B64F7C0984BFF0 -- C:\WINDOWS\system32\drivers\disk.sys [2008/04/13 19:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\ServicePackFiles\i386\disk.sys [2008/04/13 19:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\disk.sys [2008/04/13 19:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\SoftwareDistribution\Download\327771f7f3830b5acec68906a2aac4ab\disk.sys [2008/04/13 19:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\SoftwareDistribution\Download\51f93922a72f4cba24d116598e161b49\disk.sys [color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color] [2004/08/05 19:00:00 | 001,036,288 | ---- | M] (Microsoft Corporation) MD5=4C33E5B9A6197B6ED215F6CFBA0A2DAA -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe [2004/08/05 19:00:00 | 001,036,288 | ---- | M] (Microsoft Corporation) MD5=4C33E5B9A6197B6ED215F6CFBA0A2DAA -- C:\WINDOWS\$NtUninstallKB938828$\explorer.exe [2004/08/05 19:00:00 | 001,036,288 | ---- | M] (Microsoft Corporation) MD5=4C33E5B9A6197B6ED215F6CFBA0A2DAA -- C:\WINDOWS\explorer.exe [2004/08/05 19:00:00 | 001,036,288 | ---- | M] (Microsoft Corporation) MD5=4C33E5B9A6197B6ED215F6CFBA0A2DAA -- C:\WINDOWS\system32\dllcache\explorer.exe [2007/06/13 14:10:53 | 001,037,312 | ---- | M] (Microsoft Corporation) MD5=B795475444D6D57A572C14B9E1A29839 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe [2008/04/14 03:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe [2008/04/14 03:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\explorer.exe [2008/04/14 03:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\SoftwareDistribution\Download\327771f7f3830b5acec68906a2aac4ab\explorer.exe [2008/04/14 03:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\SoftwareDistribution\Download\51f93922a72f4cba24d116598e161b49\explorer.exe [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008/04/13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys [2008/04/13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\ndis.sys [2008/04/13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\SoftwareDistribution\Download\327771f7f3830b5acec68906a2aac4ab\ndis.sys [2008/04/13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\SoftwareDistribution\Download\51f93922a72f4cba24d116598e161b49\ndis.sys [2004/08/05 19:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys [2004/08/05 19:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\dllcache\ndis.sys [2004/08/05 19:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\drivers\ndis.sys [color=#A23BEC]< MD5 for: SFLOPPY.SYS >[/color] [2009/02/02 20:06:24 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\$NtServicePackUninstall$\sp3.cab:Sfloppy.sys [2004/08/05 19:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Sfloppy.sys [2009/02/02 20:06:24 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Sfloppy.sys [2004/08/05 13:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp2.cab:Sfloppy.sys [2009/02/02 20:06:24 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Sfloppy.sys [2009/01/30 11:44:27 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\sp3.cab:Sfloppy.sys [2009/02/02 20:06:24 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\51f93922a72f4cba24d116598e161b49\sp3.cab:Sfloppy.sys [2004/08/05 19:00:00 | 000,011,392 | ---- | M] (Microsoft Corporation) MD5=0D13B6DF6E9E101013A7AFB0CE629FE0 -- C:\WINDOWS\$NtServicePackUninstall$\sfloppy.sys [2004/08/05 19:00:00 | 000,011,392 | ---- | M] (Microsoft Corporation) MD5=0D13B6DF6E9E101013A7AFB0CE629FE0 -- C:\WINDOWS\system32\drivers\sfloppy.sys [2008/04/13 19:40:48 | 000,011,392 | ---- | M] (Microsoft Corporation) MD5=8E6B8C671615D126FDC553D1E2DE5562 -- C:\WINDOWS\ServicePackFiles\i386\sfloppy.sys [2008/04/13 19:40:48 | 000,011,392 | ---- | M] (Microsoft Corporation) MD5=8E6B8C671615D126FDC553D1E2DE5562 -- C:\WINDOWS\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\sfloppy.sys [2008/04/13 19:40:48 | 000,011,392 | ---- | M] (Microsoft Corporation) MD5=8E6B8C671615D126FDC553D1E2DE5562 -- C:\WINDOWS\SoftwareDistribution\Download\327771f7f3830b5acec68906a2aac4ab\sfloppy.sys [2008/04/13 19:40:48 | 000,011,392 | ---- | M] (Microsoft Corporation) MD5=8E6B8C671615D126FDC553D1E2DE5562 -- C:\WINDOWS\SoftwareDistribution\Download\51f93922a72f4cba24d116598e161b49\sfloppy.sys [color=#A23BEC]< MD5 for: TCPIP.SYS >[/color] [2006/04/20 12:51:50 | 000,359,808 | ---- | M] (Microsoft Corporation) MD5=1DBF125862891817F374F407626967F4 -- C:\WINDOWS\$NtUninstallKB941644$\tcpip.sys [2008/06/20 11:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys [2008/06/20 11:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\system32\dllcache\tcpip.sys [2008/06/20 11:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\system32\drivers\tcpip.sys [2006/01/13 18:07:08 | 000,360,448 | ---- | M] (Microsoft Corporation) MD5=5562CC0A47B2AEF06D3417B733F3C195 -- C:\WINDOWS\$hf_mig$\KB913446\SP2QFE\tcpip.sys [2006/01/13 03:28:14 | 000,359,808 | ---- | M] (Microsoft Corporation) MD5=583E063FDC888CA30D05C2724B0D7EF4 -- C:\WINDOWS\$NtUninstallKB917953$\tcpip.sys [2005/05/25 20:07:12 | 000,359,936 | ---- | M] (Microsoft Corporation) MD5=63FDFEA54EB53DE2D863EE454937CE1E -- C:\WINDOWS\$hf_mig$\KB893066\SP2QFE\tcpip.sys [2007/10/30 17:53:32 | 000,360,832 | ---- | M] (Microsoft Corporation) MD5=64798ECFA43D78C7178375FCDD16D8C8 -- C:\WINDOWS\$hf_mig$\KB941644\SP2QFE\tcpip.sys [2008/06/20 11:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys [2005/05/25 20:04:02 | 000,359,808 | ---- | M] (Microsoft Corporation) MD5=88763A98A4C26C409741B4AA162720C9 -- C:\WINDOWS\$NtUninstallKB913446$\tcpip.sys [2007/10/30 18:20:55 | 000,360,064 | ---- | M] (Microsoft Corporation) MD5=90CAFF4B094573449A0872A0F919B178 -- C:\WINDOWS\$NtUninstallKB951748_0$\tcpip.sys [2008/04/13 20:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys [2008/04/13 20:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\tcpip.sys [2008/04/13 20:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\SoftwareDistribution\Download\327771f7f3830b5acec68906a2aac4ab\tcpip.sys [2008/04/13 20:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\SoftwareDistribution\Download\51f93922a72f4cba24d116598e161b49\tcpip.sys [2008/06/20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys [2004/08/05 19:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtUninstallKB893066$\tcpip.sys [2004/08/05 19:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys [2008/06/20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys [2006/04/20 13:18:35 | 000,360,576 | ---- | M] (Microsoft Corporation) MD5=B2220C618B42A2212A59D91EBD6FC4B4 -- C:\WINDOWS\$hf_mig$\KB917953\SP2QFE\tcpip.sys [color=#A23BEC]< MD5 for: USBSCAN.SYS >[/color] [2009/02/02 20:06:24 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\$NtServicePackUninstall$\sp3.cab:usbscan.sys [2004/08/05 19:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:usbscan.sys [2009/02/02 20:06:24 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:usbscan.sys [2004/08/05 13:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp2.cab:usbscan.sys [2009/02/02 20:06:24 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:usbscan.sys [2009/01/30 11:44:27 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\sp3.cab:usbscan.sys [2009/02/02 20:06:24 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\51f93922a72f4cba24d116598e161b49\sp3.cab:usbscan.sys [2008/04/13 19:45:34 | 000,015,104 | ---- | M] (Microsoft Corporation) MD5=A0B8CF9DEB1184FBDD20784A58FA75D4 -- C:\WINDOWS\ServicePackFiles\i386\usbscan.sys [2008/04/13 19:45:34 | 000,015,104 | ---- | M] (Microsoft Corporation) MD5=A0B8CF9DEB1184FBDD20784A58FA75D4 -- C:\WINDOWS\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\usbscan.sys [2008/04/13 19:45:34 | 000,015,104 | ---- | M] (Microsoft Corporation) MD5=A0B8CF9DEB1184FBDD20784A58FA75D4 -- C:\WINDOWS\SoftwareDistribution\Download\327771f7f3830b5acec68906a2aac4ab\usbscan.sys [2008/04/13 19:45:34 | 000,015,104 | ---- | M] (Microsoft Corporation) MD5=A0B8CF9DEB1184FBDD20784A58FA75D4 -- C:\WINDOWS\SoftwareDistribution\Download\51f93922a72f4cba24d116598e161b49\usbscan.sys [2004/08/03 21:58:46 | 000,015,104 | ---- | M] (Microsoft Corporation) MD5=A6BC71402F4F7DD5B77FD7F4A8DDBA85 -- C:\WINDOWS\system32\dllcache\usbscan.sys [2004/08/03 21:58:46 | 000,015,104 | ---- | M] (Microsoft Corporation) MD5=A6BC71402F4F7DD5B77FD7F4A8DDBA85 -- C:\WINDOWS\system32\drivers\usbscan.sys [color=#A23BEC]< MD5 for: USERINIT.EXE >[/color] [2004/08/05 19:00:00 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=D6D65EA32B190401B57EDB6706F29669 -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe [2004/08/05 19:00:00 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=D6D65EA32B190401B57EDB6706F29669 -- C:\WINDOWS\system32\dllcache\userinit.exe [2004/08/05 19:00:00 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=D6D65EA32B190401B57EDB6706F29669 -- C:\WINDOWS\system32\userinit.exe [2008/04/14 03:34:26 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe [2008/04/14 03:34:26 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\userinit.exe [2008/04/14 03:34:26 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\SoftwareDistribution\Download\327771f7f3830b5acec68906a2aac4ab\userinit.exe [2008/04/14 03:34:26 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\SoftwareDistribution\Download\51f93922a72f4cba24d116598e161b49\userinit.exe [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2004/08/05 19:00:00 | 000,506,368 | ---- | M] (Microsoft Corporation) MD5=D2DE785AEAB0BB8CA4C14A8A199DBE4E -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe [2004/08/05 19:00:00 | 000,506,368 | ---- | M] (Microsoft Corporation) MD5=D2DE785AEAB0BB8CA4C14A8A199DBE4E -- C:\WINDOWS\system32\dllcache\winlogon.exe [2004/08/05 19:00:00 | 000,506,368 | ---- | M] (Microsoft Corporation) MD5=D2DE785AEAB0BB8CA4C14A8A199DBE4E -- C:\WINDOWS\system32\winlogon.exe [2008/04/14 03:34:28 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe [2008/04/14 03:34:28 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\winlogon.exe [2008/04/14 03:34:28 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\SoftwareDistribution\Download\327771f7f3830b5acec68906a2aac4ab\winlogon.exe [2008/04/14 03:34:28 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\SoftwareDistribution\Download\51f93922a72f4cba24d116598e161b49\winlogon.exe [color=#A23BEC]< %systemroot%\*. /mp /s >[/color] [color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color] [2004/08/05 13:00:00 | 000,729,600 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\WINDOWS\System32\dlo2.dll [2009/03/08 04:31:44 | 000,348,160 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\dxtmsft.dll [2009/03/08 04:31:38 | 000,216,064 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\dxtrans.dll [color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color] [color=#E56717]========== Files - Unicode (All) ==========[/color] [2008/06/19 18:23:54 | 000,000,000 | ---D | M](C:\Doc?) -- C:\Docץ [2008/06/19 18:23:27 | 000,000,000 | ---D | C](C:\Doc?) -- C:\Docץ [2008/05/18 12:13:11 | 000,000,000 | ---D | M](C:\Dop?) -- C:\Dopץ [2008/05/18 12:12:37 | 000,000,000 | ---D | C](C:\Dop?) -- C:\Dopץ [2007/05/17 14:46:52 | 000,000,203 | RHS- | C] ()(C:\AUTORUN.INF_?????) -- C:\AUTORUN.INF_被屏蔽木马 [2006/06/14 09:06:28 | 000,000,203 | RHS- | M] ()(C:\AUTORUN.INF_?????) -- C:\AUTORUN.INF_被屏蔽木马 [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2 @Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E1982A23 @Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B623B5B8 @Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DB365884 @Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B203B914 @Alternate Data Stream - 101 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:131C0EE9 < End of report >

danakil · le 29 Nov 2010 14:57

Merci Skynet!

helene07, l'infection est revenue mais en plus elle a fait des petits ... Ne t'inquiète pas je te peaufine une solution de nettoyage ... et je te poste la procédure. :wink:

helene07 · le 30 Nov 2010 10:38

le message indiqué en ce moment c'est: "runtime error216 at 7c9200e8. Et puis mon ecran a l'air de clignoter de temps en temps.

danakil · le 30 Nov 2010 12:32

OK!

Je prends en compte cette information. Procédure en fin d'AM :wink:

danakil · le 30 Nov 2010 18:22

Salut helene07!

Respecte les étapes afin que nous ne loupions aucunes des infections sur ton PC. Si tu as un doute ... reviens ici consulter mon message, ou alors (sans effectuer de redémarrage du PC) viens ici et pose moi ta ou tes questions.

1 / Arrêt des protections :
Ferme toutes les fenêtres et applications, déconnecte-toi du net et désactive tes protections résidentes (antivirus, antispy, etc ...) :
http://forum.pcastuces.com/desactiver_l ... -f31s4.htm

2/ Arrêt d'un service :
Démarrer > Exécuter > dans la fenêtre tape ou copie ceci :

regsvr32 dlo2.dll

> Valide par la touche "Entrée" > Si tu as un message d'erreur n'en tiens pas compte et passe à la suite.

3/ Nettoyage du PC :

Relance OTL
Xp --> Double-clics
Vista & Seven --> Clic droit dessus > "Exécuter en tant qu'Administrateur".
(Dans l'interface d'OTL, vérifie que la case "Rapport minimal" soit bien cochée).

Copie (TOUT SELECTIONNER) et colle le contenue de cette citation dans la fenêtre "Personnalisation"

Code: Tout sélectionner: :files c:\program files\offerbox\offerboxbho.dll C:\Program Files\OfferBox C:\Documents and Settings\Compaq_Propriétaire\Application Data\OfferBox C:\Documents and Settings\Compaq_Propriétaire\Bureau\Internet Explorer.lnk C:\Documents and Settings\Compaq_Propriétaire\Bureau\Internet Explorer.lnk C:\Documents and Settings\Compaq_Propriétaire\Application Data\inst.exe C:\Documents and Settings\All Users\Application Data\GamesBar C:\Documents and Settings\Compaq_Propriétaire\Application Data\OfferBox C:\Documents and Settings\Compaq_Propriétaire.SCHWARTZ.000\Application Data\EoRezo C:\Documents and Settings\Compaq_Propriétaire\Application Data\inst.exe :OTL FF - HKLM\software\mozilla\Firefox\Extensions\\offerboxffx@offerbox.com: C:\Program Files\OfferBox\offerboxffx@offerbox.com [2010/11/06 18:58:05 | 000,000,000 | ---D | M] O2 - BHO: (OfferBox) - {FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} - C:\Program Files\OfferBox\OfferBoxBHO.dll PRC - [2010/10/13 16:21:08 | 000,111,928 | R--- | M] (SweetIM Technologies Ltd.) -- C:\Program Files\SweetIM\Messenger\SweetIM.exe MOD - [2010/10/13 16:20:52 | 000,023,864 | R--- | M] (SweetIM Technologies Ltd.) -- C:\Program Files\SweetIM\Messenger\mgAdaptersProxy.dll MOD - [2006/07/11 18:35:38 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files\SweetIM\Messenger\msvcr71.dll SRV - [2004/08/05 13:00:00 | 000,729,600 | ---- | M] () [Auto | Start_Pending] -- C:\WINDOWS\System32\dlo2.dll -- (hcdvukdg) IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com O2 - BHO: () - {2DD05F50-1478-40D0-88D4-E0FCFE2BD665} - C:\WINDOWS\System32\dlo2.dll () O4 - HKLM..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.) O4 - Startup: C:\Documents and Settings\Compaq_Propriétaire\Menu Démarrer\Programmes\Démarrage\OpenOffice.org 3.2.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe () NetSvcs: hcdvukdg - C:\WINDOWS\System32\dlo2.dll () [2010/11/06 19:27:24 | 000,000,000 | ---D | C] -- C:\Program Files\SweetIM [2010/11/06 19:27:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SweetIM [2010/11/06 08:11:10 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe [2016/08/03 07:55:20 | 000,003,120 | ---- | M] () -- C:\WINDOWS\MF_C421.lfa [2016/08/03 07:55:20 | 000,003,120 | ---- | M] () -- C:\WINDOWS\MF_C420.lfa [2010/11/06 19:27:48 | 000,000,232 | -H-- | M] () -- C:\sqmdata06.sqm [2010/11/06 19:27:47 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt05.sqm [2016/08/03 07:55:20 | 000,003,120 | ---- | C] () -- C:\WINDOWS\MF_C421.lfa [2016/08/03 07:55:20 | 000,003,120 | ---- | C] () -- C:\WINDOWS\MF_C420.lfa [2004/08/05 13:00:00 | 000,729,600 | ---- | C] () -- C:\WINDOWS\System32\dlo2.dll [2010/03/01 19:10:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MGS [2010/11/06 19:28:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SweetIM [2008/06/09 18:58:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\iWin [2008/06/09 18:58:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\iWin [2004/08/05 13:00:00 | 000,729,600 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\WINDOWS\System32\dlo2.dll [2010/11/06 19:27:55 | 000,000,000 | ---D | M] (SweetIM Toolbar for Firefox) -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\okndj48q.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847} [2010/11/06 19:27:51 | 000,003,915 | ---- | M] () -- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\okndj48q.default\searchplugins\sweetim.xml O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O3 - HKU\S-1-5-21-1238882258-2045701615-1049950058-1008\..\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd O4 - HKU\S-1-5-21-1238882258-2045701615-1049950058-1008..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.) :reg [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}] :Commands [emptytemp] [emptyflash] [resethosts] [reboot]

Clique sur le bouton Correction.

Ne touche plus au PC avant son redémarrage.
A l'ouverture du PC un rapport va s'ouvrir --> OTL.txt ... Si ce n'est le cas tu le retrouveras sous le même nom sur le Bureau ou alors dans son dossier --> C:\OTL.txt

4/ Le rapport :

Copie et colle ici en réponse le contenu de ce rapport.

helene07 · le 30 Nov 2010 21:09

j'ai fais ce que tu m'as dit, et au redemarrage, j'ai reçu un premier message: " access violation at adress 005b99ce in module OTL exe read of address 00000000. J'ai fermé et réouvert OTL .aucun rapport n'etait arrivé. En fait, le rapport que j'ai fait hier je l'ai laissé sur le bureau et aucun autre n'est arrivé. En même temps, un autre message est arrive: generic host process for win32 services à rencontre un probleme et doit fermer. En tout cas, je ne sais pas ou trouver le rapport .Si tu peux m'éclairer ?

danakil · le 30 Nov 2010 21:28

Clic droit sur le Bureau > Ouvrir
Dans l'arborescence de la fenêtre de gauche > Clique sur le "+" du lecteur --> C:\
Tu verras le dossier -OTL\MovedFiles s'afficher
Clic gauche sur MovedFiles ...
Dans la fenêtre de droite tu dois avoir un document texte se nommant comme ceci :

11302010-214745.txt <-- c'est un exemple

Ouvre ce document texte et copie le moi en réponse ici.

helene07 · le 30 Nov 2010 22:13

désolé, mais je ne trouve pas. Qd je clic droit sur le bureau, il y a tout sauf ouvrir. Je m'y prend peut être pas bien.

mon ordi rame

mon ordi rame

Re: mon ordi rame

Re: mon ordi rame

Re: mon ordi rame

Re: mon ordi rame

Re: mon ordi rame

Re: mon ordi rame

Re: mon ordi rame

Re: mon ordi rame

Re: mon ordi rame

Re: mon ordi rame

Re: mon ordi rame

Re: mon ordi rame

Re: mon ordi rame

Sujets similaires

Qui est en ligne