[Réglé] pc redémarre avec magentic

cisco29 · le 01 Nov 2010 07:16

Bonjour,utilisateur de magentic depuis 2 ans avec aucun problèmes jusqu'à aujourd'hui car lorsque ça passe en écran de veille mon pc redémarre systématiquement , d'ou vient le problème . merci

cisco29 · le 28 Nov 2010 13:23

Bjr , personne pour m'aider

danakil · le 28 Nov 2010 13:42

Salut cisco29!

Si tu postes ici c'est que tu penses avoir un souci de contamination ... on vérifie!

Fais ceci :
• Télécharge OTL de Old Timer sur ton Bureau.
• Ferme toutes les applications actives sur le PC.
• Double-clique sur l'icône d'OTL présente sur le Bureau pour le lancer.
(Vista et Seven --> Clic droit, "Exécuter en tant qu'Administrateur")

• Coches les cases suivantes:
"Tous les utilisateurs"
"Recherche LOP"
"Recherche Purity".

• Copie et colle la citation ci-dessous dans la fenêtre Personnalisation:

netsvcs
%systemroot%\system32\drivers\*.sys /lockedfiles
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%alluserprofile%\application data\*.
%alluserprofile%\application data\*.exe /s
%appdata%\*.
%appdata%\*.exe /s
%systemdrive%\*.exe
/md5start
explorer.exe
userinit.exe
winlogon.exe
tcpip.sys
Sfloppy.sys
Changer.sys
cdrom.sys
disk.sys
ndis.sys
usbscan.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles

• Clique sur le bouton Analyse (en haut à gauche) .
(Laisse le scan se dérouler sans toucher au PC).

• A la fin du scan un ou deux rapports (documents textes) seront crées et s'ouvriront:
"OTL.txt" et "Extras.Txt"
• Réduit ces deux documents dans la barre des tâches, et ferme la fenêtre de OTL présente.

• Connecte toi ici et copie\colle les contenus des rapports en réponses.
(n'oublie pas d'encadrer tes rapports entre les balises [code][/code])

Skynet · le 28 Nov 2010 14:34

voici les raports

Code: Tout sélectionner: OTL logfile created on: 28/11/2010 13:57:32 - Run 1 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\francis lecarrie\Bureau Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 959,00 Mb Total Physical Memory | 501,00 Mb Available Physical Memory | 52,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 83,00% Paging File free Paging file location(s): C:\pagefile.sys 1440 2880 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 222,52 Gb Total Space | 109,23 Gb Free Space | 49,09% Space Free | Partition Type: NTFS Computer Name: ELSA-A7E2143326 | User Name: francis lecarrie | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2010/11/28 13:53:52 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\francis lecarrie\Bureau\OTL.exe PRC - [2010/11/25 05:36:28 | 000,353,736 | ---- | M] (IncrediMail, Ltd.) -- C:\Program Files\IncrediMail\bin\IncMail.exe PRC - [2010/11/25 05:36:28 | 000,255,432 | ---- | M] (IncrediMail, Ltd.) -- C:\Program Files\IncrediMail\bin\ImApp.exe PRC - [2010/11/09 21:08:58 | 000,146,000 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Fichiers communs\Logishrd\KHAL3\KHALMNPR.exe PRC - [2010/10/29 00:32:48 | 001,352,272 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe PRC - [2010/09/07 17:12:02 | 002,838,912 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe PRC - [2010/09/07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe PRC - [2010/08/24 10:38:18 | 000,092,008 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe PRC - [2010/08/24 10:38:16 | 000,247,144 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe PRC - [2010/08/03 19:56:34 | 000,411,648 | ---- | M] (Visicom Media Inc.) -- C:\Documents and Settings\francis lecarrie\Application Data\magentictb\incredimailya1_0dn.exe PRC - [2010/05/14 10:44:46 | 000,248,552 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe PRC - [2010/05/11 12:33:50 | 000,122,088 | ---- | M] () -- C:\Program Files\Magentic\bin\MgApp.exe PRC - [2010/01/28 14:19:26 | 003,404,600 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe PRC - [2009/12/22 03:31:26 | 000,217,088 | ---- | M] (Teruten) -- C:\WINDOWS\system32\FsUsbExService.Exe PRC - [2009/12/22 03:31:02 | 000,095,568 | ---- | M] (Devguru Co., Ltd.) -- C:\WINDOWS\system32\dgdersvc.exe PRC - [2009/10/15 09:53:54 | 000,959,808 | ---- | M] (SFR) -- C:\Program Files\SFR\Kit\9props.exe PRC - [2009/09/30 06:04:36 | 000,198,160 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe PRC - [2009/05/19 10:36:18 | 000,240,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe PRC - [2008/04/14 03:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2005/08/05 08:15:04 | 000,061,440 | ---- | M] (Vimicro) -- C:\WINDOWS\VM305_STI.EXE PRC - [2005/08/01 07:05:04 | 000,094,208 | ---- | M] (Lexmark International Inc.) -- C:\Program Files\Lexmark 2300 Series\ezprint.exe PRC - [2005/07/25 20:25:18 | 000,491,520 | ---- | M] ( ) -- C:\WINDOWS\system32\lxcgcoms.exe PRC - [2005/07/22 08:00:10 | 000,081,920 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE PRC - [2005/07/21 01:07:34 | 000,200,704 | ---- | M] (Lexmark International, Inc.) -- C:\Program Files\Lexmark 2300 Series\lxcgmon.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2010/11/28 13:53:52 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\francis lecarrie\Bureau\OTL.exe MOD - [2010/08/23 17:12:39 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll MOD - [2010/08/03 17:15:58 | 000,356,864 | ---- | M] (Visicom Media Inc.) -- C:\Documents and Settings\francis lecarrie\Application Data\magentictb\incredimailya1_0dn.dll MOD - [2006/05/03 21:53:54 | 000,174,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\framedyn.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [On_Demand | Stopped] -- C:\WINDOWS\System32\appmgmts.dll -- (AppMgmt) SRV - [2010/10/28 11:13:30 | 000,293,456 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ) SRV - [2010/09/12 15:30:52 | 000,251,248 | ---- | M] (CybelSoft) [On_Demand | Stopped] -- C:\Program Files\ma-config.com\maconfservice.exe -- (maconfservice) SRV - [2010/09/07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner) SRV - [2010/09/07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner) SRV - [2010/09/07 17:11:59 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus) SRV - [2010/08/24 10:38:18 | 000,092,008 | ---- | M] (TomTom) [Auto | Running] -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe -- (TomTomHOMEService) SRV - [2009/12/22 03:31:26 | 000,217,088 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService) SRV - [2009/12/22 03:31:02 | 000,095,568 | ---- | M] (Devguru Co., Ltd.) [Auto | Running] -- C:\WINDOWS\system32\dgdersvc.exe -- (dgdersvc) SRV - [2009/05/19 10:36:18 | 000,240,512 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort) SRV - [2008/11/11 08:38:06 | 000,620,544 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2008/02/28 16:07:48 | 000,529,704 | ---- | M] (Nero AG) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe -- (NMIndexingService) SRV - [2005/07/25 20:25:18 | 000,491,520 | ---- | M] ( ) [On_Demand | Running] -- C:\WINDOWS\System32\lxcgcoms.exe -- (lxcg_device) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- D:\NTGLM7X.sys -- (SetupNTGLM7X) DRV - File not found [Kernel | On_Demand | Stopped] -- D:\NTACCESS.sys -- (NTACCESS) DRV - File not found [Kernel | On_Demand | Stopped] -- D:\install4\MSICPL.sys -- (MSICPL) DRV - File not found [Kernel | On_Demand | Stopped] -- D:\INSTALL\GMSIPCI.SYS -- (GMSIPCI) DRV - [2010/09/07 16:53:58 | 000,340,048 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx) DRV - [2010/09/07 16:52:25 | 000,046,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi) DRV - [2010/09/07 16:52:03 | 000,165,584 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP) DRV - [2010/09/07 16:47:46 | 000,023,376 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr) DRV - [2010/09/07 16:47:19 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2) DRV - [2010/09/07 16:47:07 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2010/09/07 16:46:51 | 000,028,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4) DRV - [2010/08/30 12:19:54 | 000,014,336 | ---- | M] (CybelSoft) [Kernel | On_Demand | Stopped] -- C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys -- (driverhardwarev2) DRV - [2010/08/24 18:31:18 | 000,028,624 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LUsbFilt.sys -- (LUsbFilt) DRV - [2010/08/24 18:31:02 | 000,037,328 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt) DRV - [2010/08/24 18:30:52 | 000,038,864 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt) DRV - [2010/08/24 18:30:18 | 000,010,448 | ---- | M] (Logitech, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\LBeepKE.sys -- (LBeepKE) DRV - [2010/08/24 18:30:06 | 000,020,304 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd) DRV - [2010/07/01 05:23:01 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2010/04/11 06:33:11 | 000,004,484 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cpuidlep.sys -- (cpuidlep) DRV - [2009/12/22 03:31:26 | 000,036,640 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk) DRV - [2009/12/22 03:31:02 | 000,018,136 | ---- | M] (Devguru Co., Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dgderdrv.sys -- (dgderdrv) DRV - [2009/09/19 06:30:10 | 000,123,648 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdm.sys -- (ss_bmdm) DRV - [2009/09/19 06:30:10 | 000,100,224 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bserd.sys -- (ss_bserd) DRV - [2009/09/19 06:30:10 | 000,098,432 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM) DRV - [2009/09/19 06:30:10 | 000,014,848 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter) DRV - [2009/09/11 12:41:17 | 000,004,096 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nocashio.sys -- (nocashio) DRV - [2009/03/27 00:16:28 | 000,012,672 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\cpuz132_x32.sys -- (cpuz132) DRV - [2008/12/18 22:43:54 | 000,079,248 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE) DRV - [2008/12/18 22:43:12 | 000,063,248 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\L8042mou.Sys -- (L8042mou) DRV - [2008/09/21 08:39:29 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen) DRV - [2008/08/26 08:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2006/02/21 19:46:26 | 001,505,792 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2005/11/30 05:50:14 | 000,392,316 | R--- | M] (Vimicro Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbVM305.sys -- (ZSMC0305) DRV - [2005/07/26 10:03:22 | 003,644,032 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2005/03/09 07:53:00 | 000,036,352 | R--- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8) DRV - [2004/08/03 23:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C) DRV - [2004/04/13 13:14:12 | 000,070,144 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtlnicxp.sys -- (RTL8023xp) DRV - [2001/08/17 20:49:10 | 000,026,624 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\irstusb.sys -- (STIrUsb) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.01net.com/http://www.01men.com/ [binary data] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1957994488-515967899-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = IE - HKU\S-1-5-21-1957994488-515967899-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1 IE - HKU\S-1-5-21-1957994488-515967899-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.sfr.fr/accueil/adsl.html IE - HKU\S-1-5-21-1957994488-515967899-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [2009/04/06 05:06:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Mozilla\Extensions [2009/04/06 05:06:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Mozilla\Extensions\home2@tomtom.com O1 HOSTS File: ([2004/08/05 13:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll File not found O2 - BHO: (vShare Plugin) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll () O2 - BHO: (Magentic Toolbar) - {07C92F45-3193-4FD9-AF54-B1925707C872} - C:\Program Files\magentictb\magenticDx.dll () O2 - BHO: (Objet d'aide à la navigation SFR) - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} - C:\Program Files\SFR\Kit\SFRNavErrorHelper.dll (SFR) O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer) O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation) O2 - BHO: (Babylon IE plugin) - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll File not found O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.) O2 - BHO: (myBabylon English Toolbar) - {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Program Files\myBabylon_English\tbmyBa.dll File not found O2 - BHO: (Updater For Magentic Toolbar) - {B3312915-9368-4FE4-8D4E-B60E5B36D0FF} - C:\Program Files\magentictb\auxi\magenticAu.dll (Visicom Media) O2 - BHO: (Mininova-Vuze Toolbar) - {d51d388b-f5dc-471a-a1ce-5e2d671091c0} - C:\Program Files\Mininova-Vuze\tbMin1.dll File not found O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll File not found O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll File not found O3 - HKLM\..\Toolbar: (vShare Plugin) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll () O3 - HKLM\..\Toolbar: (Magentic Toolbar) - {07C92F45-3193-4FD9-AF54-B1925707C872} - C:\Program Files\magentictb\magenticDx.dll () O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKLM\..\Toolbar: (myBabylon English Toolbar) - {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Program Files\myBabylon_English\tbmyBa.dll File not found O3 - HKLM\..\Toolbar: (Mininova-Vuze Toolbar) - {d51d388b-f5dc-471a-a1ce-5e2d671091c0} - C:\Program Files\Mininova-Vuze\tbMin1.dll File not found O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll File not found O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll File not found O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKU\S-1-5-21-1957994488-515967899-839522115-1004\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found. O3 - HKU\S-1-5-21-1957994488-515967899-839522115-1004\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKU\S-1-5-21-1957994488-515967899-839522115-1004\..\Toolbar\WebBrowser: (myBabylon English Toolbar) - {B2E293EE-FD7E-4C71-A714-5F4750D8D7B7} - C:\Program Files\myBabylon_English\tbmyBa.dll File not found O3 - HKU\S-1-5-21-1957994488-515967899-839522115-1004\..\Toolbar\WebBrowser: (Mininova-Vuze Toolbar) - {D51D388B-F5DC-471A-A1CE-5E2D671091C0} - C:\Program Files\Mininova-Vuze\tbMin1.dll File not found O3 - HKU\S-1-5-21-1957994488-515967899-839522115-1004\..\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll File not found O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [ASUS Camera ScreenSaver] C:\WINDOWS\ASScrProlog.exe () O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [Babylon Client] C:\Program Files\Babylon\Babylon-Pro\Babylon.exe File not found O4 - HKLM..\Run: [BigDog305] C:\WINDOWS\VM305_STI.EXE (Vimicro) O4 - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.) O4 - HKLM..\Run: [EzPrint] C:\Program Files\Lexmark 2300 Series\ezprint.exe (Lexmark International Inc.) O4 - HKLM..\Run: [Google Quick Search Box] C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe (Google Inc.) O4 - HKLM..\Run: [lxcgmon.exe] C:\Program Files\Lexmark 2300 Series\lxcgmon.exe (Lexmark International, Inc.) O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG) O4 - HKLM..\Run: [Network Error Advisor] C:\Program Files\magentictb\ExeRunner.exe (Visicom Media Inc.) O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.) O4 - HKLM..\Run: [System.32] C:\WINDOWS\System32\System.32\Install.exe.exe File not found O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.) O4 - HKU\S-1-5-21-1957994488-515967899-839522115-1004..\Run: [Configuration de la C-BOX] C:\Program Files\Cegetel\C-BOX\Wizard\QuickAccess.exe File not found O4 - HKU\S-1-5-21-1957994488-515967899-839522115-1004..\Run: [Connexion SFR 9props.exe] C:\Program Files\SFR\Kit\9props.exe (SFR) O4 - HKU\S-1-5-21-1957994488-515967899-839522115-1004..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe File not found O4 - HKU\S-1-5-21-1957994488-515967899-839522115-1004..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe (IncrediMail, Ltd.) O4 - HKU\S-1-5-21-1957994488-515967899-839522115-1004..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\/\KiesTrayAgent.exe () O4 - HKU\S-1-5-21-1957994488-515967899-839522115-1004..\Run: [Magentic] C:\Program Files\Magentic\bin\Magentic.exe () O4 - HKU\S-1-5-21-1957994488-515967899-839522115-1004..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.) O4 - HKU\S-1-5-21-1957994488-515967899-839522115-1004..\Run: [TomTomHOME.exe] C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe (TomTom) O4 - Startup: C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Démarrage\Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe File not found O4 - Startup: C:\Documents and Settings\francis lecarrie\Menu Démarrer\Programmes\Démarrage\Logitech . Enregistrement du produit.lnk = C:\Program Files\Fichiers communs\Logishrd\eReg\SetPoint\eReg.exe (Leader Technologies/Logitech) O4 - Startup: C:\Documents and Settings\Propriétaire\Menu Démarrer\Programmes\Démarrage\Zapu Acceleration Engine.lnk = C:\Program Files\Zapu\Zapu\wincm.exe File not found O4 - Startup: C:\Documents and Settings\Propriétaire\Menu Démarrer\Programmes\Démarrage\Zapu.lnk = C:\Program Files\Zapu\Zapu\wDivi.exe File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: System.32 = C:\WINDOWS\system32\System.32\Install.exe.exe File not found O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1957994488-515967899-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1957994488-515967899-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: System.32 = C:\WINDOWS\system32\System.32\Install.exe.exe File not found O8 - Extra context menu item: Free YouTube Download - C:\Documents and Settings\francis lecarrie\Application Data\DVDVideoSoftIEHelpers\youtubedownload.htm () O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Documents and Settings\francis lecarrie\Application Data\DVDVideoSoftIEHelpers\youtubetomp3.htm () O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll (Google Inc.) O9 - Extra Button: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll File not found O9 - Extra 'Tools' menuitem : Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll File not found O15 - HKU\S-1-5-21-1957994488-515967899-839522115-1004\..Trusted Domains: dainrauscher.com ([]https in Local intranet) O15 - HKU\S-1-5-21-1957994488-515967899-839522115-1004\..Trusted Domains: rbcdain.com ([]https in Local intranet) O16 - DPF: {0067DBFC-A752-458C-AE6E-B9C7E63D4824} http://www.logitech.com/devicedetector/plugins/LogitechDeviceDetection32.cab (Détection de dispositifs) O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab (Facebook Photo Uploader 5 Control) O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/C/0/C/C0CBBA88-A6F2-48D9-9B0E-1719D1177202/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool) O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} http://copainsdavant.linternaute.com/framework/lib/objimageuploader/html_include/5.1.1.0/ImageUploader5.cab (Image Uploader Control) O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab (Reg Error: Key error.) O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab (Facebook Photo Uploader 5 Control) O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} http://www.ma-config.com/plugins/MaConfig_4_6_0_1.cab ("Ma-Config.com control) O16 - DPF: {888078C6-70B2-4F88-8EE7-1F50DDEA6120} https://as.photoprintit.de/ips-opdata/activex/ImageUploader6.cab (CeWe Color AG & Co. OHG Control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class) O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} http://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cab (Windows Live Hotmail Photo Upload Tool) O16 - DPF: {FAB2BB9D-91E9-457E-9D42-75A7FCCBBC00} http://ngfmedias.disneylandparis.com/3d2/plugin/DFusionHomeWebPlugIn.InstallerFull.exe (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\vsharechrome {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - C:\Program Files\vShare\vshare_toolbar.dll () O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O20 - Winlogon\Notify\LBTWlgn: DllName - c:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll - c:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.) O24 - Desktop Components:0 (Ma page d'accueil) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\francis lecarrie\Local Settings\Application Data\Magentic\Runtime\Collage\Magentic Collage.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\francis lecarrie\Local Settings\Application Data\Magentic\Runtime\Collage\Magentic Collage.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008/03/14 23:03:29 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O33 - MountPoints2\{0b6d9c70-f788-11df-a2c4-0013d3e99e13}\Shell\AutoRun\command - "" = E:\InstallTomTomHOME.exe -- File not found O33 - MountPoints2\{ef98d6f8-708d-11df-85a2-0013d3e99e13}\Shell - "" = AutoRun O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: AppMgmt - C:\WINDOWS\System32\appmgmts.dll File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found MsConfig - StartUpReg: [b]IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}[/b] - hkey= - key= - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) MsConfig - StartUpReg: [b]NeroFilterCheck[/b] - hkey= - key= - C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe (Nero AG) MsConfig - State: "system.ini" - 0 MsConfig - State: "win.ini" - 0 MsConfig - State: "bootini" - 0 MsConfig - State: "services" - 0 MsConfig - State: "startup" - 2 SafeBootMin: AppMgmt - C:\WINDOWS\System32\appmgmts.dll File not found SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vds - Service SafeBootMin: vga.sys - Driver SafeBootMin: WdfLoadGroup - SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: AppMgmt - C:\WINDOWS\System32\appmgmts.dll File not found SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: WdfLoadGroup - SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun) ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Rendu VML (Vector Graphics Rendering) ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4 ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Liaison de données Dynamic HTML pour Java ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Création avancée ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - Classes Java DirectAnimation ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.8 ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINDOWS\system32\ie4uinit.exe -BaseSettings ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Planificateur de tâches ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1 ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Adobe Flash Player ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE ActiveX: >{CB58DED6-4AF3-4080-9DF1-DEE72075169F} - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation) Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.) Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.) Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation) Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.) Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation) Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation) Drivers32: vidc.VP60 - C:\WINDOWS\system32\vp6vfw.dll (On2.com) Drivers32: vidc.VP61 - C:\WINDOWS\system32\vp6vfw.dll (On2.com) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010/11/28 13:53:40 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\francis lecarrie\Bureau\OTL.exe [2010/11/28 10:49:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\francis lecarrie\Local Settings\Application Data\Logishrd [2010/11/28 10:49:39 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidserv.dll [2010/11/28 10:48:50 | 000,016,400 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\LNonPnP.sys [2010/11/28 10:47:49 | 000,010,448 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\LBeepKE.sys [2010/11/28 10:47:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Documents\LogiShrd [2010/11/28 10:47:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Logishrd [2010/11/28 10:47:11 | 000,000,000 | ---D | C] -- C:\Program Files\Logitech [2010/11/28 10:46:29 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Logishrd [2010/11/28 10:40:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\francis lecarrie\Application Data\Logishrd [2010/11/28 08:41:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\PC Drivers HeadQuarters [2010/11/24 06:12:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\TomTom [2010/11/23 19:04:28 | 000,000,000 | ---D | C] -- C:\Program Files\Veetle [2010/11/23 06:40:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Driver Whiz [2010/11/18 19:49:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\francis lecarrie\Bureau\CV, Lettre de motivation [2010/11/11 14:02:38 | 000,000,000 | ---D | C] -- C:\Avenger [2010/11/11 08:36:52 | 000,203,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\richtx32.ocx [2010/11/11 08:36:52 | 000,124,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mswinsck.ocx [2010/11/11 08:36:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\francis lecarrie\Mes documents\EasyActivator5_v0.57.21 [2010/11/11 07:55:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\francis lecarrie\Mes documents\Nouveau dossier [2010/11/10 05:03:06 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2010/11/10 05:03:06 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2010/11/10 05:03:06 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2010/11/06 09:19:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\francis lecarrie\Application Data\magentictb [2010/11/06 09:19:39 | 000,000,000 | ---D | C] -- C:\Program Files\magentictb [2010/11/06 09:19:29 | 000,748,808 | ---- | C] (IncrediMail LTD.) -- C:\WINDOWS\System32\Magentic Screensaver.scr [2010/11/06 09:19:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\francis lecarrie\Local Settings\Application Data\Magentic [2010/11/06 09:19:21 | 000,000,000 | ---D | C] -- C:\Program Files\Magentic [2010/11/06 07:59:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\francis lecarrie\Application Data\Registry Mechanic [2010/11/04 05:54:27 | 000,017,744 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys [2010/11/04 05:54:26 | 000,165,584 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys [2010/11/04 05:54:25 | 000,340,048 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys [2010/11/04 05:54:24 | 000,023,376 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys [2010/11/04 05:54:23 | 000,046,672 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys [2010/11/04 05:54:21 | 000,100,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys [2010/11/04 05:54:21 | 000,094,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys [2010/11/04 05:54:21 | 000,028,880 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys [2010/11/04 05:53:59 | 000,038,848 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr [2010/11/04 05:53:58 | 000,167,592 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe [2010/11/04 05:34:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\francis lecarrie\Mes documents\anti virus [2010/10/31 12:52:52 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\francis lecarrie\Recent [2010/10/31 10:20:16 | 000,000,000 | ---D | C] -- C:\Program Files\Magentic(2) [2010/10/31 10:01:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\francis lecarrie\Local Settings\Application Data\Magentic(2) [2008/03/15 08:15:45 | 001,134,592 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgusb1.dll [2008/03/15 08:15:44 | 001,183,744 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgserv.dll [2008/03/15 08:15:44 | 000,413,696 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgcomm.dll [2008/03/15 08:15:44 | 000,155,648 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgprox.dll [2008/03/15 08:15:44 | 000,114,688 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgpplc.dll [2008/03/15 08:15:43 | 000,704,512 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcgcomc.dll [2008/03/15 08:15:43 | 000,483,328 | ---- | C] ( ) -- C:\WINDOWS\System32\lxcglmpm.dll [8 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2010/11/28 13:53:52 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\francis lecarrie\Bureau\OTL.exe [2010/11/28 13:49:00 | 000,001,054 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2010/11/28 13:16:10 | 000,001,000 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job [2010/11/28 12:58:37 | 000,001,050 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2010/11/28 12:58:24 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010/11/28 12:58:21 | 1006,030,848 | -HS- | M] () -- C:\hiberfil.sys [2010/11/28 12:14:28 | 000,000,242 | ---- | M] () -- C:\Documents and Settings\francis lecarrie\Bureau\Bienvenue sur Facebook ! Facebook.url [2010/11/28 10:52:57 | 000,000,971 | ---- | M] () -- C:\Documents and Settings\francis lecarrie\Menu Démarrer\Programmes\Démarrage\Logitech . Enregistrement du produit.lnk [2010/11/28 10:48:50 | 000,016,400 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\LNonPnP.sys [2010/11/28 10:48:49 | 000,000,454 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{C31B45E3-D3E9-467B-BC3E-46CFF3E3337A}.job [2010/11/27 15:35:01 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job [2010/11/27 08:21:32 | 000,013,764 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010/11/26 19:00:00 | 000,000,276 | ---- | M] () -- C:\WINDOWS\tasks\RMSchedule.job [2010/11/25 19:09:17 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2010/11/25 05:37:59 | 000,001,750 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Bureau\IncrediMail.lnk [2010/11/25 05:37:59 | 000,001,736 | ---- | M] () -- C:\Documents and Settings\francis lecarrie\Application Data\Microsoft\Internet Explorer\Quick Launch\IncrediMail 2.0.lnk [2010/11/24 06:06:17 | 000,000,216 | -HS- | M] () -- C:\boot.ini [2010/11/21 16:00:32 | 000,000,325 | ---- | M] () -- C:\Documents and Settings\francis lecarrie\Bureau\Mon eBay Récapitulatif.url [2010/11/20 20:00:00 | 000,000,426 | ---- | M] () -- C:\WINDOWS\tasks\Registry Winner Schedule.job [2010/11/14 22:42:45 | 000,217,088 | ---- | M] () -- C:\Documents and Settings\francis lecarrie\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010/11/12 20:03:49 | 000,000,101 | ---- | M] () -- C:\Documents and Settings\francis lecarrie\default.pls [2010/11/11 08:36:52 | 000,203,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\richtx32.ocx [2010/11/11 08:36:52 | 000,124,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mswinsck.ocx [2010/11/04 05:54:27 | 000,001,700 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Bureau\avast! Pro Antivirus.lnk [2010/11/04 05:54:22 | 000,003,121 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010/11/01 17:58:40 | 000,000,392 | ---- | M] () -- C:\ZHPRegY0.zhp [2010/10/31 12:59:35 | 000,501,696 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat [2010/10/31 12:59:35 | 000,432,936 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010/10/31 12:59:35 | 000,081,136 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat [2010/10/31 12:59:35 | 000,067,700 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [8 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010/11/28 10:52:57 | 000,000,971 | ---- | C] () -- C:\Documents and Settings\francis lecarrie\Menu Démarrer\Programmes\Démarrage\Logitech . Enregistrement du produit.lnk [2010/11/07 07:46:03 | 000,002,076 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Démarrage\Logitech Desktop Messenger.lnk [2010/11/06 07:54:34 | 000,000,276 | ---- | C] () -- C:\WINDOWS\tasks\RMSchedule.job [2010/11/04 05:54:27 | 000,001,700 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Bureau\avast! Pro Antivirus.lnk [2010/11/01 17:58:40 | 000,000,392 | ---- | C] () -- C:\ZHPRegY0.zhp [2010/07/01 05:23:01 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2010/06/06 06:11:10 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll [2010/06/06 06:11:10 | 000,036,640 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys [2010/06/06 06:10:54 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\francis lecarrie\Application Data\$_hpcst$.hpc [2010/04/11 06:33:11 | 000,004,484 | ---- | C] () -- C:\WINDOWS\System32\drivers\cpuidlep.sys [2009/11/11 20:38:50 | 000,000,127 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI [2009/11/09 03:08:10 | 000,974,848 | ---- | C] () -- C:\WINDOWS\System32\cis-2.4.dll [2009/11/09 03:08:10 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\issacapi_bs-2.3.dll [2009/11/09 03:08:10 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\issacapi_pe-2.3.dll [2009/11/09 03:08:10 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\issacapi_se-2.3.dll [2009/11/06 05:37:27 | 000,000,035 | ---- | C] () -- C:\WINDOWS\System32\RTELM.dll [2009/10/06 08:16:00 | 000,819,200 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2009/10/02 17:43:29 | 000,000,530 | ---- | C] () -- C:\WINDOWS\System32\tx14_ic.ini [2009/09/11 12:41:17 | 000,004,096 | ---- | C] () -- C:\WINDOWS\System32\drivers\nocashio.sys [2009/05/14 04:42:55 | 000,012,288 | ---- | C] () -- C:\WINDOWS\impborl.dll [2009/05/14 04:41:02 | 000,001,546 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini [2009/05/14 04:41:01 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS [2009/04/26 16:15:15 | 000,000,027 | ---- | C] () -- C:\WINDOWS\yes_messenger.ini [2009/04/06 14:07:20 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2009/04/05 10:33:06 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Application Data\LauncherAccess.dt [2009/04/05 10:22:59 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys [2009/04/05 07:40:08 | 000,217,088 | ---- | C] () -- C:\Documents and Settings\francis lecarrie\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009/04/04 16:19:43 | 000,156,672 | R--- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll [2009/04/04 12:28:58 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2009/01/05 14:44:10 | 000,000,453 | ---- | C] () -- C:\WINDOWS\bdoscandellang.ini [2008/03/15 08:15:45 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxcgvs.dll [2008/03/15 08:15:39 | 000,131,072 | ---- | C] () -- C:\WINDOWS\System32\lxcgjswr.dll [2008/03/15 08:15:39 | 000,102,400 | ---- | C] () -- C:\WINDOWS\System32\lxcginsr.dll [2008/03/15 08:15:38 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\lxcgcur.dll [color=#E56717]========== LOP Check ==========[/color] [2009/02/11 12:18:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BVRP Software [2008/04/26 17:29:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations [2009/01/23 19:35:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\eBay [2008/11/19 06:37:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IM [2008/11/19 06:36:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IncrediMail [2008/05/29 20:11:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Lea passion Mode [2009/03/08 11:06:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ma-config.com [2008/03/29 12:19:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Messenger Plus! [2010/04/24 11:33:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\services [2008/04/02 05:37:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Software rule flag owns [2009/01/23 19:32:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WholeSecurity [2008/07/18 21:50:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WinZip [2010/10/24 10:33:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Alwil Software [2009/04/12 06:17:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Azureus [2009/12/29 08:11:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Babylon [2009/08/24 18:07:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\BVRP Software [2010/07/01 05:22:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\DAEMON Tools Lite [2010/03/28 07:45:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Downloaded Installations [2010/11/23 06:40:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Driver Whiz [2009/09/07 14:36:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\DriverScanner [2009/04/04 11:43:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\IM [2009/04/04 11:42:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\IncrediMail [2010/11/23 06:08:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\ma-config.com [2010/04/12 10:13:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Messenger Plus! [2010/11/28 08:41:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\PC Drivers HeadQuarters [2010/06/06 06:14:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\PC Suite [2010/06/06 06:11:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Samsung [2009/12/29 08:37:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\SweetIM [2010/11/06 08:32:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP [2010/11/24 06:12:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\TomTom [2010/04/03 13:24:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\TuneUp Software [2009/09/07 14:35:37 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\{66E2F539-12B6-4870-A500-7689CDE75C5E} [2010/04/03 13:24:16 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC} [2009/11/29 18:52:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\ALLCapture [2009/04/12 06:19:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Azureus [2009/12/29 08:00:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Babylon [2010/07/01 05:50:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\DAEMON Tools Lite [2009/08/11 11:49:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Datel [2010/04/25 12:47:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\DVDVideoSoftIEHelpers [2009/11/01 14:46:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Leadertech [2010/11/06 09:20:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\magentictb [2009/10/02 18:44:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\OpenOffice.org [2010/06/06 06:14:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\PC Suite [2010/01/10 19:49:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\PhotoFiltre [2010/11/22 05:19:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\PriceGong [2009/08/18 17:08:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Regensoft [2010/11/06 08:26:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Registry Mechanic [2010/06/06 06:09:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Samsung [2009/04/06 05:06:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\TomTom [2010/04/03 13:25:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\TuneUp Software [2009/09/07 14:27:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Uniblue [2010/09/15 20:08:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\vShare [2010/08/28 17:17:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\VSO [2010/11/06 09:19:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Invité.ELSA-A7E2143326\Application Data\magentictb [2008/06/18 16:14:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Datel [2008/04/28 05:04:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\DeepBurner [2009/01/23 19:35:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\eBay [2009/02/01 15:48:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Flock [2008/10/24 20:26:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\fltk.org [2008/10/05 14:06:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\GrabPro [2008/10/19 11:32:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\HiYo [2008/04/10 18:18:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Leadertech [2008/03/15 14:01:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\MSNInstaller [2008/03/21 22:06:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Musicmatch [2008/10/10 06:06:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Orbit [2008/08/31 09:45:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Samsung [2008/03/16 15:42:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\TomTom [2009/04/04 08:38:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\uTorrent [2010/11/20 20:00:00 | 000,000,426 | ---- | M] () -- C:\WINDOWS\Tasks\Registry Winner Schedule.job [2010/11/26 19:00:00 | 000,000,276 | ---- | M] () -- C:\WINDOWS\Tasks\RMSchedule.job [2010/11/28 10:48:49 | 000,000,454 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{C31B45E3-D3E9-467B-BC3E-46CFF3E3337A}.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color] [2010/07/01 05:23:01 | 000,691,696 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\drivers\sptd.sys Invalid Environment Variable: alluserprofile Invalid Environment Variable: alluserprofile [color=#A23BEC]< %appdata%\*. >[/color] [2009/04/09 20:04:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Adobe [2009/11/29 18:52:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\ALLCapture [2009/05/23 11:36:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Apple Computer [2009/04/04 18:38:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\AVS4YOU [2009/04/12 06:19:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Azureus [2009/12/29 08:00:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Babylon [2010/07/01 05:50:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\DAEMON Tools Lite [2009/08/11 11:49:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Datel [2010/09/27 19:10:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\dvdcss [2010/04/25 12:47:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\DVDVideoSoftIEHelpers [2009/04/04 11:37:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Google [2009/07/12 14:15:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Help [2009/04/04 10:51:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Identities [2009/11/01 14:46:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Leadertech [2010/11/28 10:40:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Logishrd [2010/11/28 10:40:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Logitech [2009/04/04 11:29:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Macromedia [2010/11/06 09:20:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\magentictb [2010/04/24 09:04:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Malwarebytes [2010/11/06 08:24:53 | 000,000,000 | --SD | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Microsoft [2009/09/01 18:51:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Mozilla [2009/04/06 06:30:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Nero [2009/10/02 18:44:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\OpenOffice.org [2010/06/06 06:14:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\PC Suite [2010/01/10 19:49:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\PhotoFiltre [2010/11/22 05:19:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\PriceGong [2009/09/30 06:08:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Real [2009/08/18 17:08:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Regensoft [2010/11/06 08:26:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Registry Mechanic [2010/06/06 06:09:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Samsung [2009/04/12 13:50:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Sun [2009/04/06 05:06:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\TomTom [2010/04/03 13:25:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\TuneUp Software [2009/09/07 14:27:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Uniblue [2010/10/23 15:24:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\vlc [2010/09/15 20:08:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\vShare [2010/08/28 17:17:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\VSO [2009/04/05 08:01:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\WinRAR [2009/10/02 14:08:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Xfire [2009/08/27 05:25:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\Yahoo! [color=#A23BEC]< %appdata%\*.exe /s >[/color] [2009/04/04 14:55:07 | 001,915,520 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\francis lecarrie\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\fpupdateax\fpupdateax.exe [2010/08/03 19:56:34 | 000,411,648 | ---- | M] (Visicom Media Inc.) -- C:\Documents and Settings\francis lecarrie\Application Data\magentictb\incredimailya1_0dn.exe [2010/11/28 10:50:00 | 000,053,248 | R--- | M] (Acresso Software Inc.) -- C:\Documents and Settings\francis lecarrie\Application Data\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe [2009/09/21 13:06:36 | 000,040,960 | R--- | M] (InstallShield Software Corp.) -- C:\Documents and Settings\francis lecarrie\Application Data\Microsoft\Installer\{9559F7CA-5E34-4237-A2D9-D856464AD727}\ARPPRODUCTICON.exe [2009/09/21 13:06:36 | 000,040,960 | R--- | M] (InstallShield Software Corp.) -- C:\Documents and Settings\francis lecarrie\Application Data\Microsoft\Installer\{9559F7CA-5E34-4237-A2D9-D856464AD727}\NewShortcut1_9559F7CA5E344237A2D9D856464AD727.exe [2009/09/21 13:06:36 | 000,008,854 | R--- | M] () -- C:\Documents and Settings\francis lecarrie\Application Data\Microsoft\Installer\{9559F7CA-5E34-4237-A2D9-D856464AD727}\Uninstall_Project64__9559F7CA5E344237A2D9D856464AD727.exe [2010/05/14 22:26:58 | 000,738,824 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\francis lecarrie\Application Data\Real\RealPlayer\setup\AU_setup20100217.exe [2010/06/18 03:38:36 | 000,265,528 | ---- | M] (ml) -- C:\Documents and Settings\francis lecarrie\Application Data\Samsung\Kies\UpdateTemp\MCS.Thunder.Update.exe [color=#A23BEC]< %systemdrive%\*.exe >[/color] [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2004/08/05 13:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys [2009/05/17 06:28:44 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys [2009/05/17 06:28:44 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys [2008/04/13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys [2008/04/13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys [2004/08/05 13:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys [color=#A23BEC]< MD5 for: CHANGER.SYS >[/color] [2004/08/05 13:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys [2009/05/17 06:28:44 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys [2009/05/17 06:28:44 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys [2008/04/13 19:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys [color=#A23BEC]< MD5 for: DISK.SYS >[/color] [2004/08/05 13:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:disk.sys [2009/05/17 06:28:44 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:disk.sys [2009/05/17 06:28:44 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:disk.sys [2004/08/05 13:00:00 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=00CA44E4534865F8A3B64F7C0984BFF0 -- C:\WINDOWS\$NtServicePackUninstall$\disk.sys [2008/04/13 19:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\ServicePackFiles\i386\disk.sys [2008/04/13 19:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\system32\drivers\disk.sys [color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color] [2004/08/05 13:00:00 | 001,036,288 | ---- | M] (Microsoft Corporation) MD5=4C33E5B9A6197B6ED215F6CFBA0A2DAA -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe [2008/04/14 03:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\explorer.exe [2008/04/14 03:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008/04/13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys [2008/04/13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys [2004/08/05 13:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys [color=#A23BEC]< MD5 for: SFLOPPY.SYS >[/color] [2004/08/05 13:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Sfloppy.sys [2009/05/17 06:28:44 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Sfloppy.sys [2009/05/17 06:28:44 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Sfloppy.sys [2004/08/05 13:00:00 | 000,011,392 | ---- | M] (Microsoft Corporation) MD5=0D13B6DF6E9E101013A7AFB0CE629FE0 -- C:\WINDOWS\$NtServicePackUninstall$\sfloppy.sys [2008/04/13 19:40:48 | 000,011,392 | ---- | M] (Microsoft Corporation) MD5=8E6B8C671615D126FDC553D1E2DE5562 -- C:\WINDOWS\ServicePackFiles\i386\sfloppy.sys [2008/04/13 19:40:48 | 000,011,392 | ---- | M] (Microsoft Corporation) MD5=8E6B8C671615D126FDC553D1E2DE5562 -- C:\WINDOWS\system32\drivers\sfloppy.sys [color=#A23BEC]< MD5 for: TCPIP.SYS >[/color] [2008/06/20 11:45:13 | 000,360,320 | ---- | M] (Microsoft Corporation) MD5=2A5554FC5B1E04E131230E3CE035C3F9 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys [2008/06/20 11:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys [2008/04/13 20:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys [2008/06/20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys [2008/06/20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys [2008/06/20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys [2004/08/05 13:00:00 | 000,359,040 | ---- | M] (Microsoft Corporation) MD5=9F4B36614A0FC234525BA224957DE55C -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys [2008/06/20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys [color=#A23BEC]< MD5 for: USBSCAN.SYS >[/color] [2004/08/05 13:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:usbscan.sys [2009/05/17 06:28:44 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:usbscan.sys [2009/05/17 06:28:44 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:usbscan.sys [2008/04/13 19:45:34 | 000,015,104 | ---- | M] (Microsoft Corporation) MD5=A0B8CF9DEB1184FBDD20784A58FA75D4 -- C:\WINDOWS\ServicePackFiles\i386\usbscan.sys [2008/04/13 19:45:34 | 000,015,104 | ---- | M] (Microsoft Corporation) MD5=A0B8CF9DEB1184FBDD20784A58FA75D4 -- C:\WINDOWS\system32\drivers\usbscan.sys [2008/04/13 19:45:34 | 000,015,104 | ---- | M] (Microsoft Corporation) MD5=A0B8CF9DEB1184FBDD20784A58FA75D4 -- C:\WINDOWS\system32\ReinstallBackups\0010\DriverFiles\i386\usbscan.sys [2004/08/03 21:58:46 | 000,015,104 | ---- | M] (Microsoft Corporation) MD5=A6BC71402F4F7DD5B77FD7F4A8DDBA85 -- C:\WINDOWS\$NtServicePackUninstall$\usbscan.sys [color=#A23BEC]< MD5 for: USERINIT.EXE >[/color] [2004/08/05 13:00:00 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=D6D65EA32B190401B57EDB6706F29669 -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe [2008/04/14 03:34:26 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe [2008/04/14 03:34:26 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\system32\userinit.exe [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2004/08/05 13:00:00 | 000,506,368 | ---- | M] (Microsoft Corporation) MD5=D2DE785AEAB0BB8CA4C14A8A199DBE4E -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe [2008/04/14 03:34:28 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe [2008/04/14 03:34:28 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\system32\dllcache\winlogon.exe [2008/04/14 03:34:28 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\system32\winlogon.exe [color=#A23BEC]< %systemroot%\*. /mp /s >[/color] [color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color] [2009/03/08 04:31:44 | 000,348,160 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\dxtmsft.dll [2009/03/08 04:31:38 | 000,216,064 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\dxtrans.dll [8 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ] [color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color] [color=#A23BEC]< >[/color] [color=#A23BEC]< >[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:2E0A12A9 @Alternate Data Stream - 104 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:D1B5B4F1 < End of report >

Code: Tout sélectionner: OTL Extras logfile created on: 28/11/2010 13:57:32 - Run 1 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\francis lecarrie\Bureau Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 959,00 Mb Total Physical Memory | 501,00 Mb Available Physical Memory | 52,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 83,00% Paging File free Paging file location(s): C:\pagefile.sys 1440 2880 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 222,52 Gb Total Space | 109,23 Gb Free Space | 49,09% Space Free | Partition Type: NTFS Computer Name: ELSA-A7E2143326 | User Name: francis lecarrie | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* htmlfile [edit] -- Reg Error: Key error. piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "48113:TCP" = 48113:TCP:LocalSubNet:Enabled:maconfig_tcp "48113:UDP" = 48113:UDP:LocalSubNet:Enabled:maconfig_udp "1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "C:\Program Files\MSN Messenger\livecall.exe" = C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone) -- File not found [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\IncrediMail\bin\IncMail.exe" = C:\Program Files\IncrediMail\bin\IncMail.exe:*:Enabled:IncrediMail -- (IncrediMail, Ltd.) "C:\Program Files\IncrediMail\bin\ImApp.exe" = C:\Program Files\IncrediMail\bin\ImApp.exe:*:Enabled:IncrediMail -- (IncrediMail, Ltd.) "C:\Program Files\IncrediMail\bin\ImpCnt.exe" = C:\Program Files\IncrediMail\bin\ImpCnt.exe:*:Enabled:IncrediMail -- (IncrediMail, Ltd.) "C:\Program Files\Magentic\bin\Magentic.exe" = C:\Program Files\Magentic\bin\Magentic.exe:*:Enabled:Magentic -- () "C:\Program Files\Magentic\bin\MgImp.exe" = C:\Program Files\Magentic\bin\MgImp.exe:*:Enabled:Magentic -- (IncrediMail, Ltd.) "C:\Program Files\Magentic\bin\MgApp.exe" = C:\Program Files\Magentic\bin\MgApp.exe:*:Enabled:Magentic -- () "C:\Program Files\eMule\emule.exe" = C:\Program Files\eMule\emule.exe:*:Enabled:eMule -- (http://www.emule-project.net) "C:\Program Files\Vuze\Azureus.exe" = C:\Program Files\Vuze\Azureus.exe:*:Disabled:Azureus -- File not found "C:\Program Files\MSN Messenger\livecall.exe" = C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone) -- File not found "C:\Program Files\LucasArts\Star Wars Battlefront II\GameData\BattlefrontII.exe" = C:\Program Files\LucasArts\Star Wars Battlefront II\GameData\BattlefrontII.exe:*:Disabled:BattlefrontII -- File not found "C:\Program Files\LucasArts\Star Wars Jedi Knight Jedi Academy\GameData\jamp.exe" = C:\Program Files\LucasArts\Star Wars Jedi Knight Jedi Academy\GameData\jamp.exe:*:Enabled:Jedi Academy MultiPlayer -- File not found "C:\WINDOWS\system32\muzapp.exe" = C:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player -- (Musiccity Co.Ltd.) "C:\Program Files\SFR\Media Center\httpd\httpd.exe" = C:\Program Files\SFR\Media Center\httpd\httpd.exe:172.16.255.0/255.255.255.0,192.168.1.0/255.255.255.0:Enabled:Serveur de partage Media Center (Player SFR) -- (Apache Software Foundation) "C:\Program Files\ma-config.com\maconfservice.exe" = C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice -- (CybelSoft) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{01521746-02A6-4A72-00BD-A285DF6B80C6}" = Les Sims 2 Académie "{0FA44E79-CD7D-4E8D-A2EE-26FE05F509B6}" = OpenOffice.org 3.1 "{133742BA-6F46-4D3E-85AF-78631D9AD8B8}" = Installation Windows Live "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer "{1A2A15C2-6780-49c1-B296-503230E9DE00}" = Les Sims™ 2 Demeures de rêve Kit "{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}" = LifeFrame2 "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer "{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java(TM) 6 Update 22 "{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform "{34610DE0-3C13-42CA-8E32-01FFA38AB6E8}" = PC Connectivity Solution "{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg "{4286E640-B5FB-11DF-AC4B-005056C00008}" = Google Earth "{445B183D-F4F1-45C8-B9DB-F11355CA657B}" = Windows Live Messenger "{4817189D-1785-4627-A33C-39FD90919300}" = Les Sims™ 2 Animaux & Cie "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack "{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml "{5C648FDB-0138-4619-B66E-230EF53E8E2C}" = Les Sims™ 2 Tout pour les ados Kit "{5E97F3BD-CDDC-4188-9D98-532E14FABB5D}" = IncrediMail "{6522C636-B04C-4333-9BEB-9E0C0B6350D6}" = Les Sims™ 2 Kit design Cuisine et Salle de bain "{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update "{6E17F9751-F056-4335-B718-8AF1B1092AFB}" = Les Sims™ 2 IKEA® Home Design Kit "{6E7DD182-9FC6-4651-0095-2E666CC6AF35}" = Les Sims 2 "{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{735D1B9F-A9A4-4FF2-A830-96C150883B97}" = QVGDM Seconde Edition "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{7AC15160-A49B-4A89-B181-D4619C025FFF}" = Samsung Samples Installer "{7B3577F5-1D82-4C9B-008B-69D026FD8BCA}" = Les Sims 2 : La bonne affaire "{84DDE556-43EF-43ed-B2DF-37AF9E5DDD75}" = Les Sims™ 2 H&M® Fashion Kit "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules "{95120000-00AF-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (French) "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{9559F7CA-5E34-4237-A2D9-D856464AD727}" = Project64 1.6 "{96EB95A2-5245-4EA2-B6EA-B8BA2FBF64C4}" = Ma-Config.com "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-1036-7B44-A94000000001}" = Adobe Reader 9.4.1 - Français "{B3B487E7-6171-4376-9074-B28082CEB504}" = Windows Live Call "{B6F5B704-06D3-4687-90F3-6195304AD755}" = Les Sims™ 2 La Vie en Appartement "{C01EAD00-7A41-4045-9FB7-07813BA1EDAE}" = Samsung PC Studio 3 "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C427E746-4EC9-4E3C-AACB-C6BB1F714D7F}" = Uniblue DriverScanner 2009 "{C4A4722E-79F9-417C-BD72-8D359A090C97}" = Samsung PC Studio 3 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones "{D6CD26FD-CD7F-4C86-96A3-EEBFABE5FE47}" = Kies "{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}" = Les Sims™ 2 Au fil des saisons "{EAA38532-7AD0-4f78-918A-4F4F02096ECE}" = Les Sims™ 2 Jour de fête ! Kit "{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}" = Samsung PC Studio 3 USB Driver Installer "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard "{F248ADFA-64E0-4b03-8A83-059078BED6A0}" = Les Sims™ 2 Bon Voyage "{F7529650-B9DB-481B-0089-A2AC3C2821C1}" = Les Sims 2 : Nuits de Folie "504244733D18C8F63FF584AEB290E3904E791693" = Package de pilotes Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0) "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "All ATI Software" = ATI - Utilitaire de désinstallation du logiciel "Asus_LCD_ScreenSaver" = Asus_LCD_ScreenSaver "ATI Display Driver" = ATI Display Driver "avast5" = avast! Pro Antivirus "AVS Update Manager_is1" = AVS Update Manager 1.0 "AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.3 "AVS4YOU Video Converter 6_is1" = AVS Video Converter 6 "CCleaner" = CCleaner (remove only) "CPUID HWMonitor_is1" = CPUID HWMonitor 1.15 "eMule" = eMule "EVEREST Home Edition_is1" = EVEREST Home Edition v2.20 "Free 3GP Video Converter_is1" = Free 3GP Video Converter version 3.2 "Free Audio CD Burner_is1" = Free Audio CD Burner version 1.4 "Free Audio CD to MP3 Converter_is1" = Free Audio CD to MP3 Converter version 1.1 "Free Studio_is1" = Free Studio version 4.2 "Free Video to iPod Converter_is1" = Free Video to iPod Converter version 3.2 "Free YouTube Download_is1" = Free YouTube Download 2.9 "Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.7 "Google Updater" = Outil de mise à jour Google "IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs "ie7" = Windows Internet Explorer 7 "ie8" = Windows Internet Explorer 8 "IncrediMail" = IncrediMail 2.0 "InstallShield_{D6CD26FD-CD7F-4C86-96A3-EEBFABE5FE47}" = Kies "Lexmark 2300 Series" = Lexmark 2300 Series "Magentic" = Magentic "magentictb" = Magentic Toolbar "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware "Messenger Plus! Live" = Messenger Plus! Live "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP "MyFreeCodec" = MyFreeCodec "NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs "Radars TomTomHeaven_is1" = Radars TomTomHeaven 31.01.2010 "RealPlayer 12.0" = RealPlayer "SAMSUNG CDMA Modem" = SAMSUNG CDMA Modem Driver Set "SFR_Kit" = SFR - Kit de connexion "SFR_Media Center" = SFR - Media Center "SnadBoy's Revelation v2" = SnadBoy's Revelation v2 "SOS Photos perdues_is1" = SOS Photos perdues "sp6" = Logitech SetPoint 6.20 "TomTom HOME" = TomTom HOME 2.7.6.2056 "Uninstall_is1" = Uninstall 1.0.0.1 "Veetle TV" = Veetle TV 0.9.18 "VLC media player" = VLC media player 1.1.4 "vShare" = vShare Plugin "Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5 "Wii Max Media Manager Pro_is1" = Wii Max Media Manager Pro "Windows Media Format Runtime" = Windows Media Format 11 runtime "Windows Media Player" = Lecteur Windows Media 11 "Windows XP Service" = Windows XP Service Pack 3 "WinLiveSuite_Wave3" = Installation Windows Live "WinRAR archiver" = Archiveur WinRAR "WMFDist11" = Windows Media Format 11 runtime "wmp11" = Windows Media Player 11 "Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0 "Xfire" = Xfire (remove only) [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-1957994488-515967899-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "MyFreeCodec" = MyFreeCodec "PhotoFiltre" = PhotoFiltre [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 21/11/2010 01:17:19 | Computer Name = ELSA-A7E2143326 | Source = Application Error | ID = 1000 Description = Application défaillante nmindexstoresvr.exe, version 3.3.3.0, module défaillant unknown, version 0.0.0.0, adresse de défaillance 0x01db9dc2. Error - 21/11/2010 01:20:43 | Computer Name = ELSA-A7E2143326 | Source = Application Error | ID = 1001 Description = Détecteur d'erreurs -2102082463. Error - 22/11/2010 00:08:22 | Computer Name = ELSA-A7E2143326 | Source = Application Error | ID = 1000 Description = Application défaillante nmindexstoresvr.exe, version 3.3.3.0, module défaillant unknown, version 0.0.0.0, adresse de défaillance 0x01e27e46. Error - 25/11/2010 02:12:56 | Computer Name = ELSA-A7E2143326 | Source = Application Error | ID = 1000 Description = Application défaillante iexplore.exe, version 8.0.6001.18702, module défaillant unknown, version 0.0.0.0, adresse de défaillance 0x00000020. Error - 25/11/2010 02:14:06 | Computer Name = ELSA-A7E2143326 | Source = Application Error | ID = 1000 Description = Application défaillante iexplore.exe, version 8.0.6001.18702, module défaillant unknown, version 0.0.0.0, adresse de défaillance 0x024b0f36. Error - 25/11/2010 02:15:25 | Computer Name = ELSA-A7E2143326 | Source = Application Error | ID = 1000 Description = Application défaillante iexplore.exe, version 8.0.6001.18702, module défaillant unknown, version 0.0.0.0, adresse de défaillance 0x02570f51. Error - 26/11/2010 03:11:55 | Computer Name = ELSA-A7E2143326 | Source = Application Error | ID = 1000 Description = Application défaillante iexplore.exe, version 8.0.6001.18702, module défaillant unknown, version 0.0.0.0, adresse de défaillance 0x02460f06. Error - 26/11/2010 04:24:10 | Computer Name = ELSA-A7E2143326 | Source = Application Error | ID = 1000 Description = Application défaillante iexplore.exe, version 8.0.6001.18702, module défaillant unknown, version 0.0.0.0, adresse de défaillance 0x02770f33. Error - 26/11/2010 13:05:14 | Computer Name = ELSA-A7E2143326 | Source = Application Hang | ID = 1002 Description = Application bloquée FreeYouTubeToMP3Converter.exe, version 3.7.17.183, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. Error - 26/11/2010 13:22:44 | Computer Name = ELSA-A7E2143326 | Source = Application Hang | ID = 1002 Description = Application bloquée FreeYouTubeToMP3Converter.exe, version 3.7.17.183, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. [ System Events ] Error - 21/11/2010 06:53:35 | Computer Name = ELSA-A7E2143326 | Source = Service Control Manager | ID = 7023 Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126 Error - 21/11/2010 06:53:35 | Computer Name = ELSA-A7E2143326 | Source = Service Control Manager | ID = 7023 Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126 Error - 21/11/2010 06:53:35 | Computer Name = ELSA-A7E2143326 | Source = Service Control Manager | ID = 7023 Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126 Error - 21/11/2010 06:53:35 | Computer Name = ELSA-A7E2143326 | Source = Service Control Manager | ID = 7023 Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126 Error - 21/11/2010 06:53:35 | Computer Name = ELSA-A7E2143326 | Source = Service Control Manager | ID = 7023 Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126 Error - 21/11/2010 06:53:35 | Computer Name = ELSA-A7E2143326 | Source = Service Control Manager | ID = 7023 Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126 Error - 21/11/2010 06:53:35 | Computer Name = ELSA-A7E2143326 | Source = Service Control Manager | ID = 7023 Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126 Error - 21/11/2010 06:53:35 | Computer Name = ELSA-A7E2143326 | Source = Service Control Manager | ID = 7023 Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126 Error - 21/11/2010 06:53:35 | Computer Name = ELSA-A7E2143326 | Source = Service Control Manager | ID = 7023 Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126 Error - 21/11/2010 06:53:36 | Computer Name = ELSA-A7E2143326 | Source = Service Control Manager | ID = 7023 Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126 < End of report > OTL Extras logfile created on: 28/11/2010 13:57:32 - Run 1 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\francis lecarrie\Bureau Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 959,00 Mb Total Physical Memory | 501,00 Mb Available Physical Memory | 52,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 83,00% Paging File free Paging file location(s): C:\pagefile.sys 1440 2880 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 222,52 Gb Total Space | 109,23 Gb Free Space | 49,09% Space Free | Partition Type: NTFS Computer Name: ELSA-A7E2143326 | User Name: francis lecarrie | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* htmlfile [edit] -- Reg Error: Key error. piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "48113:TCP" = 48113:TCP:LocalSubNet:Enabled:maconfig_tcp "48113:UDP" = 48113:UDP:LocalSubNet:Enabled:maconfig_udp "1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "C:\Program Files\MSN Messenger\livecall.exe" = C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone) -- File not found [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\IncrediMail\bin\IncMail.exe" = C:\Program Files\IncrediMail\bin\IncMail.exe:*:Enabled:IncrediMail -- (IncrediMail, Ltd.) "C:\Program Files\IncrediMail\bin\ImApp.exe" = C:\Program Files\IncrediMail\bin\ImApp.exe:*:Enabled:IncrediMail -- (IncrediMail, Ltd.) "C:\Program Files\IncrediMail\bin\ImpCnt.exe" = C:\Program Files\IncrediMail\bin\ImpCnt.exe:*:Enabled:IncrediMail -- (IncrediMail, Ltd.) "C:\Program Files\Magentic\bin\Magentic.exe" = C:\Program Files\Magentic\bin\Magentic.exe:*:Enabled:Magentic -- () "C:\Program Files\Magentic\bin\MgImp.exe" = C:\Program Files\Magentic\bin\MgImp.exe:*:Enabled:Magentic -- (IncrediMail, Ltd.) "C:\Program Files\Magentic\bin\MgApp.exe" = C:\Program Files\Magentic\bin\MgApp.exe:*:Enabled:Magentic -- () "C:\Program Files\eMule\emule.exe" = C:\Program Files\eMule\emule.exe:*:Enabled:eMule -- (http://www.emule-project.net) "C:\Program Files\Vuze\Azureus.exe" = C:\Program Files\Vuze\Azureus.exe:*:Disabled:Azureus -- File not found "C:\Program Files\MSN Messenger\livecall.exe" = C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone) -- File not found "C:\Program Files\LucasArts\Star Wars Battlefront II\GameData\BattlefrontII.exe" = C:\Program Files\LucasArts\Star Wars Battlefront II\GameData\BattlefrontII.exe:*:Disabled:BattlefrontII -- File not found "C:\Program Files\LucasArts\Star Wars Jedi Knight Jedi Academy\GameData\jamp.exe" = C:\Program Files\LucasArts\Star Wars Jedi Knight Jedi Academy\GameData\jamp.exe:*:Enabled:Jedi Academy MultiPlayer -- File not found "C:\WINDOWS\system32\muzapp.exe" = C:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player -- (Musiccity Co.Ltd.) "C:\Program Files\SFR\Media Center\httpd\httpd.exe" = C:\Program Files\SFR\Media Center\httpd\httpd.exe:172.16.255.0/255.255.255.0,192.168.1.0/255.255.255.0:Enabled:Serveur de partage Media Center (Player SFR) -- (Apache Software Foundation) "C:\Program Files\ma-config.com\maconfservice.exe" = C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice -- (CybelSoft) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{01521746-02A6-4A72-00BD-A285DF6B80C6}" = Les Sims 2 Académie "{0FA44E79-CD7D-4E8D-A2EE-26FE05F509B6}" = OpenOffice.org 3.1 "{133742BA-6F46-4D3E-85AF-78631D9AD8B8}" = Installation Windows Live "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer "{1A2A15C2-6780-49c1-B296-503230E9DE00}" = Les Sims™ 2 Demeures de rêve Kit "{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}" = LifeFrame2 "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer "{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java(TM) 6 Update 22 "{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform "{34610DE0-3C13-42CA-8E32-01FFA38AB6E8}" = PC Connectivity Solution "{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg "{4286E640-B5FB-11DF-AC4B-005056C00008}" = Google Earth "{445B183D-F4F1-45C8-B9DB-F11355CA657B}" = Windows Live Messenger "{4817189D-1785-4627-A33C-39FD90919300}" = Les Sims™ 2 Animaux & Cie "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack "{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml "{5C648FDB-0138-4619-B66E-230EF53E8E2C}" = Les Sims™ 2 Tout pour les ados Kit "{5E97F3BD-CDDC-4188-9D98-532E14FABB5D}" = IncrediMail "{6522C636-B04C-4333-9BEB-9E0C0B6350D6}" = Les Sims™ 2 Kit design Cuisine et Salle de bain "{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update "{6E17F9751-F056-4335-B718-8AF1B1092AFB}" = Les Sims™ 2 IKEA® Home Design Kit "{6E7DD182-9FC6-4651-0095-2E666CC6AF35}" = Les Sims 2 "{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{735D1B9F-A9A4-4FF2-A830-96C150883B97}" = QVGDM Seconde Edition "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{7AC15160-A49B-4A89-B181-D4619C025FFF}" = Samsung Samples Installer "{7B3577F5-1D82-4C9B-008B-69D026FD8BCA}" = Les Sims 2 : La bonne affaire "{84DDE556-43EF-43ed-B2DF-37AF9E5DDD75}" = Les Sims™ 2 H&M® Fashion Kit "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules "{95120000-00AF-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (French) "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{9559F7CA-5E34-4237-A2D9-D856464AD727}" = Project64 1.6 "{96EB95A2-5245-4EA2-B6EA-B8BA2FBF64C4}" = Ma-Config.com "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-1036-7B44-A94000000001}" = Adobe Reader 9.4.1 - Français "{B3B487E7-6171-4376-9074-B28082CEB504}" = Windows Live Call "{B6F5B704-06D3-4687-90F3-6195304AD755}" = Les Sims™ 2 La Vie en Appartement "{C01EAD00-7A41-4045-9FB7-07813BA1EDAE}" = Samsung PC Studio 3 "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C427E746-4EC9-4E3C-AACB-C6BB1F714D7F}" = Uniblue DriverScanner 2009 "{C4A4722E-79F9-417C-BD72-8D359A090C97}" = Samsung PC Studio 3 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones "{D6CD26FD-CD7F-4C86-96A3-EEBFABE5FE47}" = Kies "{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}" = Les Sims™ 2 Au fil des saisons "{EAA38532-7AD0-4f78-918A-4F4F02096ECE}" = Les Sims™ 2 Jour de fête ! Kit "{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}" = Samsung PC Studio 3 USB Driver Installer "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard "{F248ADFA-64E0-4b03-8A83-059078BED6A0}" = Les Sims™ 2 Bon Voyage "{F7529650-B9DB-481B-0089-A2AC3C2821C1}" = Les Sims 2 : Nuits de Folie "504244733D18C8F63FF584AEB290E3904E791693" = Package de pilotes Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0) "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "All ATI Software" = ATI - Utilitaire de désinstallation du logiciel "Asus_LCD_ScreenSaver" = Asus_LCD_ScreenSaver "ATI Display Driver" = ATI Display Driver "avast5" = avast! Pro Antivirus "AVS Update Manager_is1" = AVS Update Manager 1.0 "AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.3 "AVS4YOU Video Converter 6_is1" = AVS Video Converter 6 "CCleaner" = CCleaner (remove only) "CPUID HWMonitor_is1" = CPUID HWMonitor 1.15 "eMule" = eMule "EVEREST Home Edition_is1" = EVEREST Home Edition v2.20 "Free 3GP Video Converter_is1" = Free 3GP Video Converter version 3.2 "Free Audio CD Burner_is1" = Free Audio CD Burner version 1.4 "Free Audio CD to MP3 Converter_is1" = Free Audio CD to MP3 Converter version 1.1 "Free Studio_is1" = Free Studio version 4.2 "Free Video to iPod Converter_is1" = Free Video to iPod Converter version 3.2 "Free YouTube Download_is1" = Free YouTube Download 2.9 "Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.7 "Google Updater" = Outil de mise à jour Google "IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs "ie7" = Windows Internet Explorer 7 "ie8" = Windows Internet Explorer 8 "IncrediMail" = IncrediMail 2.0 "InstallShield_{D6CD26FD-CD7F-4C86-96A3-EEBFABE5FE47}" = Kies "Lexmark 2300 Series" = Lexmark 2300 Series "Magentic" = Magentic "magentictb" = Magentic Toolbar "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware "Messenger Plus! Live" = Messenger Plus! Live "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP "MyFreeCodec" = MyFreeCodec "NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs "Radars TomTomHeaven_is1" = Radars TomTomHeaven 31.01.2010 "RealPlayer 12.0" = RealPlayer "SAMSUNG CDMA Modem" = SAMSUNG CDMA Modem Driver Set "SFR_Kit" = SFR - Kit de connexion "SFR_Media Center" = SFR - Media Center "SnadBoy's Revelation v2" = SnadBoy's Revelation v2 "SOS Photos perdues_is1" = SOS Photos perdues "sp6" = Logitech SetPoint 6.20 "TomTom HOME" = TomTom HOME 2.7.6.2056 "Uninstall_is1" = Uninstall 1.0.0.1 "Veetle TV" = Veetle TV 0.9.18 "VLC media player" = VLC media player 1.1.4 "vShare" = vShare Plugin "Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5 "Wii Max Media Manager Pro_is1" = Wii Max Media Manager Pro "Windows Media Format Runtime" = Windows Media Format 11 runtime "Windows Media Player" = Lecteur Windows Media 11 "Windows XP Service" = Windows XP Service Pack 3 "WinLiveSuite_Wave3" = Installation Windows Live "WinRAR archiver" = Archiveur WinRAR "WMFDist11" = Windows Media Format 11 runtime "wmp11" = Windows Media Player 11 "Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0 "Xfire" = Xfire (remove only) [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-1957994488-515967899-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "MyFreeCodec" = MyFreeCodec "PhotoFiltre" = PhotoFiltre [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 21/11/2010 01:17:19 | Computer Name = ELSA-A7E2143326 | Source = Application Error | ID = 1000 Description = Application défaillante nmindexstoresvr.exe, version 3.3.3.0, module défaillant unknown, version 0.0.0.0, adresse de défaillance 0x01db9dc2. Error - 21/11/2010 01:20:43 | Computer Name = ELSA-A7E2143326 | Source = Application Error | ID = 1001 Description = Détecteur d'erreurs -2102082463. Error - 22/11/2010 00:08:22 | Computer Name = ELSA-A7E2143326 | Source = Application Error | ID = 1000 Description = Application défaillante nmindexstoresvr.exe, version 3.3.3.0, module défaillant unknown, version 0.0.0.0, adresse de défaillance 0x01e27e46. Error - 25/11/2010 02:12:56 | Computer Name = ELSA-A7E2143326 | Source = Application Error | ID = 1000 Description = Application défaillante iexplore.exe, version 8.0.6001.18702, module défaillant unknown, version 0.0.0.0, adresse de défaillance 0x00000020. Error - 25/11/2010 02:14:06 | Computer Name = ELSA-A7E2143326 | Source = Application Error | ID = 1000 Description = Application défaillante iexplore.exe, version 8.0.6001.18702, module défaillant unknown, version 0.0.0.0, adresse de défaillance 0x024b0f36. Error - 25/11/2010 02:15:25 | Computer Name = ELSA-A7E2143326 | Source = Application Error | ID = 1000 Description = Application défaillante iexplore.exe, version 8.0.6001.18702, module défaillant unknown, version 0.0.0.0, adresse de défaillance 0x02570f51. Error - 26/11/2010 03:11:55 | Computer Name = ELSA-A7E2143326 | Source = Application Error | ID = 1000 Description = Application défaillante iexplore.exe, version 8.0.6001.18702, module défaillant unknown, version 0.0.0.0, adresse de défaillance 0x02460f06. Error - 26/11/2010 04:24:10 | Computer Name = ELSA-A7E2143326 | Source = Application Error | ID = 1000 Description = Application défaillante iexplore.exe, version 8.0.6001.18702, module défaillant unknown, version 0.0.0.0, adresse de défaillance 0x02770f33. Error - 26/11/2010 13:05:14 | Computer Name = ELSA-A7E2143326 | Source = Application Hang | ID = 1002 Description = Application bloquée FreeYouTubeToMP3Converter.exe, version 3.7.17.183, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. Error - 26/11/2010 13:22:44 | Computer Name = ELSA-A7E2143326 | Source = Application Hang | ID = 1002 Description = Application bloquée FreeYouTubeToMP3Converter.exe, version 3.7.17.183, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000. [ System Events ] Error - 21/11/2010 06:53:35 | Computer Name = ELSA-A7E2143326 | Source = Service Control Manager | ID = 7023 Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126 Error - 21/11/2010 06:53:35 | Computer Name = ELSA-A7E2143326 | Source = Service Control Manager | ID = 7023 Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126 Error - 21/11/2010 06:53:35 | Computer Name = ELSA-A7E2143326 | Source = Service Control Manager | ID = 7023 Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126 Error - 21/11/2010 06:53:35 | Computer Name = ELSA-A7E2143326 | Source = Service Control Manager | ID = 7023 Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126 Error - 21/11/2010 06:53:35 | Computer Name = ELSA-A7E2143326 | Source = Service Control Manager | ID = 7023 Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126 Error - 21/11/2010 06:53:35 | Computer Name = ELSA-A7E2143326 | Source = Service Control Manager | ID = 7023 Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126 Error - 21/11/2010 06:53:35 | Computer Name = ELSA-A7E2143326 | Source = Service Control Manager | ID = 7023 Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126 Error - 21/11/2010 06:53:35 | Computer Name = ELSA-A7E2143326 | Source = Service Control Manager | ID = 7023 Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126 Error - 21/11/2010 06:53:35 | Computer Name = ELSA-A7E2143326 | Source = Service Control Manager | ID = 7023 Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126 Error - 21/11/2010 06:53:36 | Computer Name = ELSA-A7E2143326 | Source = Service Control Manager | ID = 7023 Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126 < End of report >

danakil · le 28 Nov 2010 15:21

Ferme toutes les fenêtres actives sur ton PC.

Relance OTL

Xp --> Double-clics
Vista & Seven --> Clic droit dessus > "Exécuter en tant qu'Administrateur".
Dans l'interface d'OTL, vérifie que la case "Rapport minimal" soit bien cochée.

Copie (TOUT SELECTIONNER) et colle le contenue de cette citation dans la fenêtre "Personnalisation"

Code: Tout sélectionner: :files C:\Program Files\vShare\vshare_toolbar.dll () C:\Documents and Settings\All Users\Application Data\Software rule flag owns C:\Documents and Settings\francis lecarrie\Application Data\PriceGong :OTL O2 - BHO: (vShare Plugin) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll () O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll File not found O2 - BHO: (myBabylon English Toolbar) - {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Program Files\myBabylon_English\tbmyBa.dll File not found O2 - BHO: (Mininova-Vuze Toolbar) - {d51d388b-f5dc-471a-a1ce-5e2d671091c0} - C:\Program Files\Mininova-Vuze\tbMin1.dll File not found O2 - BHO: (SweetIM Toolbar Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll File not found O3 - HKLM\..\Toolbar: (myBabylon English Toolbar) - {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Program Files\myBabylon_English\tbmyBa.dll File not found O3 - HKLM\..\Toolbar: (Mininova-Vuze Toolbar) - {d51d388b-f5dc-471a-a1ce-5e2d671091c0} - C:\Program Files\Mininova-Vuze\tbMin1.dll File not found O3 - HKLM\..\Toolbar: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll File not found O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll File not found O3 - HKLM\..\Toolbar: (vShare Plugin) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll () O3 - HKU\S-1-5-21-1957994488-515967899-839522115-1004\..\Toolbar\WebBrowser: (myBabylon English Toolbar) - {B2E293EE-FD7E-4C71-A714-5F4750D8D7B7} - C:\Program Files\myBabylon_English\tbmyBa.dll File not found O3 - HKU\S-1-5-21-1957994488-515967899-839522115-1004\..\Toolbar\WebBrowser: (Mininova-Vuze Toolbar) - {D51D388B-F5DC-471A-A1CE-5E2D671091C0} - C:\Program Files\Mininova-Vuze\tbMin1.dll File not found O3 - HKU\S-1-5-21-1957994488-515967899-839522115-1004\..\Toolbar\WebBrowser: (SweetIM Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll File not found O4 - HKLM..\Run: [EzPrint] C:\Program Files\Lexmark 2300 Series\ezprint.exe (Lexmark International Inc.) O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.) O4 - HKU\S-1-5-21-1957994488-515967899-839522115-1004..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe (IncrediMail, Ltd.) O4 - HKU\S-1-5-21-1957994488-515967899-839522115-1004..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.) O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.) O18 - Protocol\Handler\vsharechrome {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - C:\Program Files\vShare\vshare_toolbar.dll () [2008/04/02 05:37:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Software rule flag owns [2010/11/22 05:19:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\francis lecarrie\Application Data\PriceGong PRC - [2010/11/25 05:36:28 | 000,255,432 | ---- | M] (IncrediMail, Ltd.) -- C:\Program Files\IncrediMail\bin\ImApp.exe PRC - [2005/07/22 08:00:10 | 000,081,920 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE [2009/04/26 16:15:15 | 000,000,027 | ---- | C] () -- C:\WINDOWS\yes_messenger.ini [2009/12/29 08:37:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\SweetIM MsConfig - StartUpReg: [b]NeroFilterCheck[/b] - hkey= - key= - C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe (Nero AG) :reg [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{043C5167-00BB-4324-AF7E-62013FAEDACF}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{043C5167-00BB-4324-AF7E-62013FAEDACF}] :Commands [emptytemp] [emptyflash] [resethosts] [reboot]

Clique sur le bouton Correction.

Ne touche plus au PC avant son redémarrage.
A l'ouverture du PC un rapport va s'ouvrir --> OTL.txt ... Si ce n'est le cas tu le retrouveras sous le même nom sur le Bureau ou alors dans son dossier --> C:\OTL.txt

Copie et colle ici en réponse le contenu de ce rapport.

Skynet · le 28 Nov 2010 15:50

voici

Code: Tout sélectionner: All processes killed ========== FILES ========== File\Folder C:\Program Files\vShare\vshare_toolbar.dll () not found. File\Folder C:\Documents and Settings\All Users\Application Data\Software rule flag owns not found. File\Folder C:\Documents and Settings\francis lecarrie\Application Data\PriceGong not found. ========== OTL ========== Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{043C5167-00BB-4324-AF7E-62013FAEDACF}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{043C5167-00BB-4324-AF7E-62013FAEDACF}\ not found. File C:\Program Files\vShare\vshare_toolbar.dll not found. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ not found. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b2e293ee-fd7e-4c71-a714-5f4750d8d7b7}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b2e293ee-fd7e-4c71-a714-5f4750d8d7b7}\ not found. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d51d388b-f5dc-471a-a1ce-5e2d671091c0}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d51d388b-f5dc-471a-a1ce-5e2d671091c0}\ not found. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}\ not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b2e293ee-fd7e-4c71-a714-5f4750d8d7b7}\ not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{d51d388b-f5dc-471a-a1ce-5e2d671091c0} not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d51d388b-f5dc-471a-a1ce-5e2d671091c0}\ not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{EEE6C35B-6118-11DC-9C72-001320C79847} not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}\ not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{EF99BD32-C1FB-11D2-892F-0090271D4F88} not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}\ not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{043C5167-00BB-4324-AF7E-62013FAEDACF} not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{043C5167-00BB-4324-AF7E-62013FAEDACF}\ not found. File C:\Program Files\vShare\vshare_toolbar.dll not found. Registry value HKEY_USERS\S-1-5-21-1957994488-515967899-839522115-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{B2E293EE-FD7E-4C71-A714-5F4750D8D7B7} not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B2E293EE-FD7E-4C71-A714-5F4750D8D7B7}\ not found. Registry value HKEY_USERS\S-1-5-21-1957994488-515967899-839522115-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D51D388B-F5DC-471A-A1CE-5E2D671091C0} not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D51D388B-F5DC-471A-A1CE-5E2D671091C0}\ not found. Registry value HKEY_USERS\S-1-5-21-1957994488-515967899-839522115-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EEE6C35B-6118-11DC-9C72-001320C79847} not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}\ not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\EzPrint not found. File C:\Program Files\Lexmark 2300 Series\ezprint.exe not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\TkBellExe not found. File C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe not found. Registry value HKEY_USERS\S-1-5-21-1957994488-515967899-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Run\\IncrediMail not found. File C:\Program Files\IncrediMail\bin\IncMail.exe not found. Registry value HKEY_USERS\S-1-5-21-1957994488-515967899-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Run\\swg not found. File C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SoundMan not found. File C:\WINDOWS\SOUNDMAN.EXE not found. File C:\Program Files\vShare\vshare_toolbar.dll not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\vsharechrome\ not found. Invalid CLSID key: C:\Program Files\vShare\vshare_toolbar.dll File C:\Program Files\vShare\vshare_toolbar.dll not found. Folder C:\Documents and Settings\All Users\Application Data\Software rule flag owns\ not found. Folder C:\Documents and Settings\francis lecarrie\Application Data\PriceGong\ not found. No active process named ImApp.exe was found! No active process named SOUNDMAN.EXE was found! File C:\WINDOWS\yes_messenger.ini not found. Folder C:\Documents and Settings\All Users.WINDOWS\Application Data\SweetIM\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\StartUpReg\NeroFilterCheck\ not found. ========== REGISTRY ========== Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{043C5167-00BB-4324-AF7E-62013FAEDACF}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{043C5167-00BB-4324-AF7E-62013FAEDACF}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{043C5167-00BB-4324-AF7E-62013FAEDACF}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{043C5167-00BB-4324-AF7E-62013FAEDACF}\ not found. ========== COMMANDS ========== [EMPTYTEMP] User: Administrateur ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: All Users User: All Users.WINDOWS User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Default User.WINDOWS ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: francis lecarrie ->Temp folder emptied: 17192 bytes ->Temporary Internet Files folder emptied: 2306451 bytes ->Java cache emptied: 0 bytes ->Google Chrome cache emptied: 0 bytes ->Flash cache emptied: 531 bytes User: Invité ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Invité.ELSA-A7E2143326 ->Temp folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: LocalService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: LocalService.AUTORITE NT ->Temp folder emptied: 66016 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: NetworkService.AUTORITE NT ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Propriétaire ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Java cache emptied: 0 bytes ->Google Chrome cache emptied: 0 bytes ->Flash cache emptied: 0 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 0 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 2,00 mb [EMPTYFLASH] User: Administrateur User: All Users User: All Users.WINDOWS User: Default User User: Default User.WINDOWS ->Flash cache emptied: 0 bytes User: francis lecarrie ->Flash cache emptied: 0 bytes User: Invité ->Flash cache emptied: 0 bytes User: Invité.ELSA-A7E2143326 ->Flash cache emptied: 0 bytes User: LocalService User: LocalService.AUTORITE NT User: NetworkService User: NetworkService.AUTORITE NT User: Propriétaire ->Flash cache emptied: 0 bytes Total Flash Files Cleaned = 0,00 mb C:\WINDOWS\System32\drivers\etc\Hosts moved successfully. HOSTS file reset successfully OTL by OldTimer - Version 3.2.17.3 log created on 11282010_154446 Files\Folders moved on Reboot... C:\Documents and Settings\francis lecarrie\Local Settings\Temporary Internet Files\Content.IE5\V5CH3VEW\pc-redemarre-magentic-vt-53949[1].html moved successfully. C:\Documents and Settings\francis lecarrie\Local Settings\Temporary Internet Files\Content.IE5\HB87CIU3\iframes_api_loader[1].html moved successfully. C:\Documents and Settings\francis lecarrie\Local Settings\Temporary Internet Files\Content.IE5\0BKW65AP\ads[1].htm moved successfully. C:\Documents and Settings\francis lecarrie\Local Settings\Temporary Internet Files\Content.IE5\0BKW65AP\ads[2].htm moved successfully. C:\Documents and Settings\francis lecarrie\Local Settings\Temporary Internet Files\AntiPhishing\2CEDBFBC-DBA8-43AA-B1FD-CC8E6316E3E2.dat moved successfully. File move failed. C:\WINDOWS\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot. Registry entries deleted on Reboot...

danakil · le 28 Nov 2010 16:59

V'la autre chose, du "not found" dans tous les sens!

Fais ceci maintenant :
• Télécharge ZHPDiag de Nicolas coolman sur ton Bureau.
• Double clique sur le fichier d'installation, puis installe le avec les paramètres par défaut (Coche "Créer une icône sur le Bureau")
• Lance ZHPDiag en double cliquant sur l'icône

présente sur ton Bureau0
[Clique droit -> Exécuter en tant qu'Administrateur ( Vista/seven )]
• Clique sur la loupe en haut à gauche, puis laisse l'outil scanner le PC.
• Une fois le scan terminé, clique sur l'icône en forme de disquette et enregistre le fichier sur ton Bureau.
• Poste le contenu du rapport dans ta prochaine réponse en utilisant ce site : http://www.cijoint.fr/

> ... sur le site de cijoint :
• Clique sur Parcourir pour rechercher le rapport puis sur Cliquez ici pour déposer le fichier
• Copie et colle ici le lien web qui te sera donné.
• Il est de ce type : http://www.cijoint.fr/cjlink.php?file=c ... 8MD0zB.txt

cisco29 · le 28 Nov 2010 17:13

http://www.cijoint.fr/cjlink.php?file=c ... 7TE4xH.txt

danakil · le 29 Nov 2010 06:43

OK!
Je regarde cela :wink:

danakil · le 29 Nov 2010 12:21

• Sur ton Bureau tu dois avoir une icône nommé "ZHPFix"

> Ouvre cet exécutable.
• Si tu ne l'as pas ... tu trouveras ZHPFix en ouvrant ZHPDiag et en cliquant sur cette icône -->

***

• Clique sur le bouton "TOUT SELECTIONNER dans la fenêtre ci-dessous et réduit la page Web dans la barre des tâches.

Code: Tout sélectionner: [MD5.5C2D9B590B38724E4A70887A5DF01FC7] - (.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files\IncrediMail\Bin\ImApp.exe [255432] O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-21-1957994488-515967899-839522115-1004\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\IncrediMail.lnk . (.Pas de propriétaire.) -- C:\Program Files\IncrediMail\bin\IncMail.exe (.not file.) O1 - Hosts: ÿþ1 [HKCU\Software\Conduit] [HKCU\Software\ImInstaller] [HKCU\Software\Mininova-Vuze] [HKCU\Software\PriceGong] [HKCU\Software\SweetIM] [HKLM\Software\AskBarDis] [HKLM\Software\BrowserChoice] [HKLM\Software\Conduit] [HKLM\Software\ImInstaller] [HKLM\Software\Mininova-Vuze] [HKLM\Software\SweetIM] O43 - CFD: 10/08/2009 - 16:03:06 ----D- C:\Program Files\Antbar O43 - CFD: 12/04/2009 - 14:23:18 ----D- C:\Program Files\BitTorrent Fastest Tool O43 - CFD: 07/04/2009 - 09:46:50 ----D- C:\Program Files\Circle Developemen O43 - CFD: 02/11/2008 - 18:43:24 ----D- C:\Program Files\Conduit O43 - CFD: 03/07/2010 - 04:52:18 ----D- C:\Program Files\DAEMON Tools Toolbar O43 - CFD: 16/06/2008 - 09:19:06 ----D- C:\Program Files\Multi_Media_France O43 - CFD: 16/06/2008 - 09:25:38 ----D- C:\Program Files\Share_Accelerator_MM O43 - CFD: 23/10/2009 - 20:36:56 ----D- C:\Program Files\TorrentSpeeder O44 - LFC:[MD5.111F6B6F5F69856A97A0E2409587BE33] - 28/11/2010 - 12:58:32 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\lxcgscan.log [14041] O44 - LFC:[MD5.5FDC9167D53FCB6C68C3C6822F9A6C4E] - 28/11/2010 - 10:44:29 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\lxcg.log [234] O47 - AAKE:Key Export SP - "C:\Program Files\IncrediMail\bin\IncMail.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- O47 - AAKE:Key Export SP - "C:\Program Files\IncrediMail\bin\ImApp.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- O47 - AAKE:Key Export SP - "C:\Program Files\IncrediMail\bin\ImpCnt.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- O69 - SBI: SearchScopes [HKCU] {043C5167-00BB-4324-AF7E-62013FAEDACF} - (Web Search...) - http://vshare.toolbarhome.com O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} - (DVDVideoSoftTB Customized Web Search) - http://search.conduit.com O69 - SBI: SearchScopes [HKCU] {CF739809-1C6C-47C0-85B9-569DBB141420} - (Ask Search) - http://toolbar.ask.com

• En haut dans la barre de commandes de ZHPFix clique sur --> H ...
... afin d'activer les lignes Helpers, et de faire apparître ta sélection. Contrôle quelle correspond bien à celle que je viens de te donner.

• Clique enfin sur OK, puis sur Tous, et pour terminer le lancement sur Nettoyer.
(Cela sera rapide et tu obtiendras un rapport de nettoyage).

• Copie et colle ici ce rapport en réponse et ferme toutes les fenêtres actives puis redémarre ton PC. Ensuite après consultation du rapport je te réponds.

Skynet · le 29 Nov 2010 19:43

bonjour , voici le raport :

Code: Tout sélectionner: Rapport de ZHPFix 1.12.3223 par Nicolas Coolman, Update du 27/11/2010 Fichier d'export Registre : C:\ZHPExportRegistry-29-11-2010-19-40-28.txt Run by francis lecarrie at 29/11/2010 19:40:28 Web site : http://www.premiumorange.com/zeb-help-process/zhpfix.html Contact : nicolascoolman@yahoo.fr ========== Processus mémoire ========== C:\Program Files\IncrediMail\Bin\ImApp.exe [255432] => Supprimé et mis en quarantaine ========== Clé(s) du Registre ========== HKCU\Software\Conduit => Clé supprimée avec succès HKCU\Software\ImInstaller => Clé supprimée avec succès HKCU\Software\Mininova-Vuze => Clé supprimée avec succès HKCU\Software\PriceGong => Clé supprimée avec succès HKCU\Software\SweetIM => Clé supprimée avec succès HKLM\Software\AskBarDis => Clé supprimée avec succès HKLM\Software\BrowserChoice => Clé supprimée avec succès HKLM\Software\Conduit => Clé supprimée avec succès HKLM\Software\ImInstaller => Clé supprimée avec succès HKLM\Software\Mininova-Vuze => Clé supprimée avec succès HKLM\Software\SweetIM => Clé supprimée avec succès ========== Valeur(s) du Registre ========== O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe => Valeur supprimée avec succès O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe => Valeur supprimée avec succès O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe => Valeur supprimée avec succès O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe => Valeur supprimée avec succès O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe => Valeur supprimée avec succès O4 - HKUS\S-1-5-21-1957994488-515967899-839522115-1004\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe => Valeur absente O47 - AAKE:Key Export SP - "C:\Program Files\IncrediMail\bin\IncMail.exe" [Enabled] .(.) (.not file.) -- => Valeur supprimée avec succès O47 - AAKE:Key Export SP - "C:\Program Files\IncrediMail\bin\ImApp.exe" [Enabled] .(.) (.not file.) -- => Valeur supprimée avec succès O47 - AAKE:Key Export SP - "C:\Program Files\IncrediMail\bin\ImpCnt.exe" [Enabled] .(.) (.not file.) -- => Valeur supprimée avec succès ========== Elément(s) de donnée du Registre ========== O69 - SBI: SearchScopes [HKCU] {043C5167-00BB-4324-AF7E-62013FAEDACF} - (Web Search...) - http://vshare.toolbarhome.com => Donnée remplacée avec succès O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} - (DVDVideoSoftTB Customized Web Search) - http://search.conduit.com => Donnée remplacée avec succès O69 - SBI: SearchScopes [HKCU] {CF739809-1C6C-47C0-85B9-569DBB141420} - (Ask Search) - http://toolbar.ask.com => Donnée remplacée avec succès ========== Dossier(s) ========== C:\Program Files\Antbar => Supprimé et mis en quarantaine C:\Program Files\BitTorrent Fastest Tool => Supprimé et mis en quarantaine C:\Program Files\Circle Developemen => Supprimé et mis en quarantaine C:\Program Files\Conduit => Supprimé et mis en quarantaine C:\Program Files\DAEMON Tools Toolbar => Supprimé et mis en quarantaine C:\Program Files\Multi_Media_France => Supprimé et mis en quarantaine C:\Program Files\Share_Accelerator_MM => Supprimé et mis en quarantaine C:\Program Files\TorrentSpeeder => Supprimé et mis en quarantaine ========== Fichier(s) ========== c:\program files\adobe\reader 9.0\reader\reader_sl.exe => Supprimé et mis en quarantaine c:\windows\system32\ctfmon.exe => Supprimé et mis en quarantaine c:\documents and settings\all users\menu démarrer\programmes\incredimail.lnk => Supprimé et mis en quarantaine c:\program files\incredimail\bin\incmail.exe () => Fichier absent c:\lxcgscan.log => Supprimé et mis en quarantaine c:\lxcg.log => Supprimé et mis en quarantaine ========== Fichier HOSTS ========== 127.0.0.1ÿþ1127.0.0.1127.0.0.1127.0.0.1127.0.0.1Le fichier Hosts est sain ========== Récapitulatif ========== 1 : Processus mémoire 11 : Clé(s) du Registre 9 : Valeur(s) du Registre 3 : Elément(s) de donnée du Registre 8 : Dossier(s) 6 : Fichier(s) 6 : Fichier HOSTS End of the scan

danakil · le 29 Nov 2010 19:50

Super!

Maintenant consulte ce tuto en images et poste moi le rapport de Suppression
tutoriel-malwarebytes-anti-malware-vt-46564.html

Skynet · le 29 Nov 2010 22:14

Code: Tout sélectionner: Malwarebytes' Anti-Malware 1.46 http://www.malwarebytes.org Version de la base de données: 5097 Windows 5.1.2600 Service Pack 3 Internet Explorer 8.0.6001.18702 29/11/2010 22:12:43 mbam-log-2010-11-29 (22-12-43).txt Type d'examen: Examen complet (C:\|) Elément(s) analysé(s): 366539 Temps écoulé: 2 heure(s), 17 minute(s), 57 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 7 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): C:\System Volume Information\_restore{3051BBCE-BB67-4A77-AFFE-F1C04F6753B9}\RP486\A0183479.dll (Adware.Agent.Gen) -> No action taken. C:\System Volume Information\_restore{3051BBCE-BB67-4A77-AFFE-F1C04F6753B9}\RP486\A0183480.exe (Adware.QueryExplorer) -> No action taken. C:\System Volume Information\_restore{3051BBCE-BB67-4A77-AFFE-F1C04F6753B9}\RP486\A0183489.dll (Adware.ClickPotato) -> No action taken. C:\System Volume Information\_restore{3051BBCE-BB67-4A77-AFFE-F1C04F6753B9}\RP486\A0183490.dll (Adware.ClickPotato) -> No action taken. C:\System Volume Information\_restore{3051BBCE-BB67-4A77-AFFE-F1C04F6753B9}\RP486\A0183491.dll (Adware.ClickPotato) -> No action taken. C:\System Volume Information\_restore{3051BBCE-BB67-4A77-AFFE-F1C04F6753B9}\RP486\A0183492.exe (Adware.ClickPotato) -> No action taken. C:\System Volume Information\_restore{3051BBCE-BB67-4A77-AFFE-F1C04F6753B9}\RP486\A0183493.dll (Adware.ClickPotato) -> No action taken.

Skynet · le 29 Nov 2010 22:20

Bonsoir,

@cisco29 : Merci de lire mes notes et de les appliquer.

Cordialement.

danakil · le 30 Nov 2010 12:30

Salut tlm!
Merci Skynet

cisco29
1/ Désactive la Restauration de tous les disques sur ton PC.
--> La procédure en images
> Redémarre ensuite le PC et réactive la Restauration < opération inverse. :wink:

> Nous créerons un nouveau point de Restauration en fin de procédure.

2/ Relance Mbam > Scan rapide.
... > Si détection actionne le bouton Supprimer la Sélection
> Poste moi le rapport en oubliant pas de l'encadrer entre les balises Code ( bouton disponible en haut de la fenêtre de réponse ).

[Réglé] pc redémarre avec magentic

[Réglé] pc redémarre avec magentic

Re: pc redémarre avec magentic

Re: pc redémarre avec magentic

Re: pc redémarre avec magentic

Re: pc redémarre avec magentic

Re: pc redémarre avec magentic

Re: pc redémarre avec magentic

Re: pc redémarre avec magentic

Re: pc redémarre avec magentic

Re: pc redémarre avec magentic

Sujets similaires

Qui est en ligne