Mes GO disparaissent... [Résolu] • page 2

Rush · le 11 Juil 2010 21:49

Ask to Old Man a écrit:
je t'écris la correction:
tu dois faire précéder le code de fermeture avec le "slash" ==>/ & non pas "l'antislash" ==>\.

[/code] <== Comme ceci.

Oups! Ok merci beaucoup j'ai corrigé mon erreur.

Rush · le 11 Juil 2010 21:54

bernard53 a écrit:Ensuite je ne vois pas du tout d'antivirus sur ton rapport

tu en avais un au moins!!!

Mais il est toujours là mon anti virus c'est microsoft security essentiel et j'ai aussi Prevx qui travail en symbiose avec.

Je vais suivre ton conseil avec OTL merci de ton aide!

Rush · le 12 Juil 2010 06:00

Voici les deux rapports d'OTL:

OTL.txt

Code: Tout sélectionner: OTL logfile created on: 2010-07-12 00:11:29 - Run 1 OTL by OldTimer - Version 3.2.9.0 Folder = C:\Users\Stéphane\Desktop 64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18928) Locale: 00000C0C | Country: Canada | Language: FRC | Date Format: yyyy-MM-dd 4,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 46,00% Memory free 8,00 Gb Paging File | 6,00 Gb Available in Paging File | 74,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 450,70 Gb Total Space | 1,14 Gb Free Space | 0,25% Space Free | Partition Type: NTFS Drive D: | 15,00 Gb Total Space | 8,60 Gb Free Space | 57,32% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: PC-DE-STÉPHANE Current User Name: Stéphane Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Include 64bit Scans Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Minimal [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - C:\Users\Stéphane\Desktop\OTL.exe (OldTimer Tools) PRC - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) PRC - C:\Program Files\My Lockbox\mylbx.exe (FSPro Labs) PRC - C:\Program Files (x86)\SpeedBit Video Accelerator\VideoAccelerator.exe (Speedbit Ltd.) PRC - C:\Program Files (x86)\SpeedBit Video Accelerator\VideoAcceleratorEngine.exe (Speedbit Ltd.) PRC - C:\Windows\SysWOW64\fsproflt.exe (FSPro Labs) PRC - C:\Program Files\Dell\DellDock\DockLogin.exe (Stardock Corporation) PRC - C:\Program Files (x86)\Dell\MediaDirect\PCMService.exe (CyberLink Corp.) [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - C:\Users\Stéphane\Desktop\OTL.exe (OldTimer Tools) MOD - C:\Windows\SysWOW64\msscript.ocx (Microsoft Corporation) [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV:[b]64bit:[/b] - (rpcapd) -- C:\Program Files\WinPcap\rpcapd.exe -d -f %ProgramFiles%\WinPcap\rpcapd.ini File not found SRV:[b]64bit:[/b] - (CSIScanner) -- C:\Program Files\Prevx\prevx.exe (Prevx) SRV:[b]64bit:[/b] - (MsMpSvc) -- C:\Program Files\Microsoft Security Essentials\MsMpEng.exe (Microsoft Corporation) SRV:[b]64bit:[/b] - (Ati External Event Utility) -- C:\Windows\SysNative\Ati2evxx.exe (ATI Technologies Inc.) SRV:[b]64bit:[/b] - (DockLoginService) -- C:\Program Files\Dell\DellDock\DockLogin.exe (Stardock Corporation) SRV:[b]64bit:[/b] - (AERTFilters) -- C:\Windows\SysNative\AERTSr64.exe (Andrea Electronics Corporation) SRV:[b]64bit:[/b] - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation) SRV - (Apple Mobile Device) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) SRV - (WPFFontCache_v0400) -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe (Microsoft Corporation) SRV - (clr_optimization_v4.0.30319_64) -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe (Microsoft Corporation) SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation) SRV - (VideoAcceleratorService) -- C:\Program Files (x86)\SpeedBit Video Accelerator\VideoAcceleratorService.exe (Speedbit Ltd.) SRV - (fsproflt) -- C:\Windows\SysWOW64\fsproflt.exe (FSPro Labs) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV:[b]64bit:[/b] - (NwlnkFwd) -- C:\Windows\SysNative\DRIVERS\nwlnkfwd.sys File not found DRV:[b]64bit:[/b] - (NwlnkFlt) -- C:\Windows\SysNative\DRIVERS\nwlnkflt.sys File not found DRV:[b]64bit:[/b] - (IpInIp) -- C:\Windows\SysNative\DRIVERS\ipinip.sys File not found DRV:[b]64bit:[/b] - (pxrts) -- C:\Windows\SysNative\drivers\pxrts.sys (Prevx) DRV:[b]64bit:[/b] - (pxscan) -- C:\Windows\SysNative\drivers\pxscan.sys (Prevx) DRV:[b]64bit:[/b] - (pxkbf) -- C:\Windows\SysNative\drivers\pxkbf.sys (Prevx) DRV:[b]64bit:[/b] - (bbcap) -- C:\Windows\SysNative\DRIVERS\bbcap.sys (Windows (R) Codename Longhorn DDK provider) DRV:[b]64bit:[/b] - (NPF) -- C:\Windows\SysNative\drivers\npf.sys (CACE Technologies, Inc.) DRV:[b]64bit:[/b] - (GEARAspiWDM) -- C:\Windows\SysNative\DRIVERS\GEARAspiWDM.sys (GEAR Software Inc.) DRV:[b]64bit:[/b] - (R300) -- C:\Windows\SysNative\DRIVERS\atikmdag.sys (ATI Technologies Inc.) DRV:[b]64bit:[/b] - (atikmdag) -- C:\Windows\SysNative\DRIVERS\atikmdag.sys (ATI Technologies Inc.) DRV:[b]64bit:[/b] - (RTL8169) -- C:\Windows\SysNative\DRIVERS\Rtlh64.sys (Realtek Corporation ) DRV:[b]64bit:[/b] - (iaStor) -- C:\Windows\SysNative\drivers\iastor.sys (Intel Corporation) DRV:[b]64bit:[/b] - (pavboot) -- C:\Windows\SysNative\drivers\pavboot64.sys (Panda Security, S.L.) DRV:[b]64bit:[/b] - (FSProFilter) -- C:\Windows\SysNative\Drivers\FSPFltd.sys (FSPro Labs) DRV:[b]64bit:[/b] - (e1express) Pilote de la connexion réseau Intel(R) -- C:\Windows\SysNative\DRIVERS\e1e6032e.sys (Intel Corporation) DRV:[b]64bit:[/b] - (PxHlpa64) -- C:\Windows\SysNative\Drivers\PxHlpa64.sys (Sonic Solutions) DRV:[b]64bit:[/b] - (Ntfs) -- C:\Windows\SysNative\Wbem\ntfs.mof () [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.ca/ig/dell?hl=fr&client=dell-row&channel=ca&ibd=3081224 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.ca/ig/dell?hl=fr&client=dell-row&channel=ca&ibd=3081224 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ca.msn.com/defaultf.aspx?lang=fr-ca&OCID=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr-ca IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = F3 29 60 1F 80 D4 CA 01 [binary data] IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://www.mozilla.com/fr/firefox/3.6/whatsnew/" FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.7.2 FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.0 FF - prefs.js..extensions.enabledItems: {0329E7D6-6F54-462D-93F6-F5C3118BADF2}:2.1.4 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 FF - prefs.js..keyword.URL: "http://search.speedbit.com/searchresults.asp?site=tb&q=" FF - HKLM\software\mozilla\Firefox\Extensions\\{0329E7D6-6F54-462D-93F6-F5C3118BADF2}: C:\Program Files (x86)\SpeedBit Video Downloader\SPFireFox [2010-01-31 13:50:02 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010-04-10 16:51:03 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010-07-03 20:53:34 | 000,000,000 | ---D | M] [2009-08-29 10:14:02 | 000,000,000 | ---D | M] -- C:\Users\Stéphane\AppData\Roaming\mozilla\Extensions [2010-06-28 16:59:08 | 000,000,000 | ---D | M] -- C:\Users\Stéphane\AppData\Roaming\mozilla\Firefox\Profiles\sbp8mw4x.default\extensions [2009-08-29 10:19:41 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Stéphane\AppData\Roaming\mozilla\Firefox\Profiles\sbp8mw4x.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-03-22 01:37:17 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Stéphane\AppData\Roaming\mozilla\Firefox\Profiles\sbp8mw4x.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2010-03-24 03:18:50 | 000,004,140 | ---- | M] () -- C:\Users\Stéphane\AppData\Roaming\Mozilla\FireFox\Profiles\sbp8mw4x.default\searchplugins\youtube.xml [2010-05-12 01:52:51 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions [2010-05-12 01:52:51 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010-04-12 17:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll [2010-04-01 13:07:29 | 000,001,516 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\amazon-france.xml [2010-04-01 13:07:29 | 000,001,822 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml [2010-04-01 13:07:29 | 000,000,757 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\eBay-france.xml [2010-04-01 13:07:29 | 000,001,426 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-fr.xml [2010-04-01 13:07:29 | 000,000,956 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\yahoo-france.xml O1 HOSTS File: ([2006-09-18 17:37:24 | 000,000,761 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2:[b]64bit:[/b] - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O2:[b]64bit:[/b] - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg64.dll (Google Inc.) O2 - BHO: (no name) - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - No CLSID value found. O2 - BHO: (SBCONVERT Class) - {3017FB3E-9A77-4396-88C5-0EC9548FB42F} - C:\Program Files (x86)\SpeedBit Video Downloader\Toolbar\tbcore3.dll () O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer) O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (SBCONVERT Class) - {A1056498-D09A-41E4-864B-505EDD640D9E} - C:\Program Files (x86)\SpeedBit Video Downloader\Toolbar\SpeedBitVideoDownloader.dll () O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll (Google Inc.) O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files (x86)\Dell\BAE\BAE.dll (Dell Inc.) O2 - BHO: (no name) - {EAEE5C74-6D0D-4aca-9232-0DA4A7B866BA} - C:\Program Files (x86)\PicLensIE\cooliris.dll (Cooliris Inc.) O2 - BHO: (GrabberObj Class) - {FF7C3CF0-4B15-11D1-ABED-709549C10000} - C:\Program Files (x86)\SpeedBit Video Downloader\Toolbar\Grabber.dll (Speedbit Ltd.) O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O3 - HKLM\..\Toolbar: (SpeedBit Video Downloader) - {0329E7D6-6F54-462D-93F6-F5C3118BADF2} - C:\Program Files (x86)\SpeedBit Video Downloader\Toolbar\tbcore3.dll () O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKCU\..\Toolbar\WebBrowser: (SpeedBit Video Downloader) - {0329E7D6-6F54-462D-93F6-F5C3118BADF2} - C:\Program Files (x86)\SpeedBit Video Downloader\Toolbar\tbcore3.dll () O3:[b]64bit:[/b] - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O4:[b]64bit:[/b] - HKLM..\Run: [] File not found O4:[b]64bit:[/b] - HKLM..\Run: [MSSE] C:\Program Files\Microsoft Security Essentials\msseces.exe (Microsoft Corporation) O4 - HKLM..\Run: [PCMService] C:\Program Files (x86)\Dell\MediaDirect\PCMService.exe (CyberLink Corp.) O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Java\jre6\bin\jusched.exe File not found O4 - HKCU..\Run: [SpeedBitVideoAccelerator] C:\Program Files (x86)\SpeedBit Video Accelerator\VideoAccelerator.exe (Speedbit Ltd.) O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) O4 - Startup: C:\Users\Stéphane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Advanced\Folder\Hidden\SHOWALL: CheckedValue = 1 O9 - Extra Button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra Button: Launch Cooliris - {3437D640-C91A-458f-89F5-B9095EA4C28B} - C:\Program Files (x86)\PicLensIE\cooliris.dll (Cooliris Inc.) O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files (x86)\SpeedBit Video Accelerator\sblsp.dll (Speedbit Ltd.) O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files (x86)\SpeedBit Video Accelerator\sblsp.dll (Speedbit Ltd.) O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files (x86)\SpeedBit Video Accelerator\sblsp.dll (Speedbit Ltd.) O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files (x86)\SpeedBit Video Accelerator\sblsp.dll (Speedbit Ltd.) O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files (x86)\SpeedBit Video Accelerator\sblsp.dll (Speedbit Ltd.) O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Program Files (x86)\SpeedBit Video Accelerator\sblsp.dll (Speedbit Ltd.) O10:[b]64bit:[/b] - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Program Files (x86)\SpeedBit Video Accelerator\sblsp.dll (Speedbit Ltd.) O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files (x86)\SpeedBit Video Accelerator\sblsp.dll (Speedbit Ltd.) O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files (x86)\SpeedBit Video Accelerator\sblsp.dll (Speedbit Ltd.) O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files (x86)\SpeedBit Video Accelerator\sblsp.dll (Speedbit Ltd.) O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files (x86)\SpeedBit Video Accelerator\sblsp.dll (Speedbit Ltd.) O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files (x86)\SpeedBit Video Accelerator\sblsp.dll (Speedbit Ltd.) O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Program Files (x86)\SpeedBit Video Accelerator\sblsp.dll (Speedbit Ltd.) O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Program Files (x86)\SpeedBit Video Accelerator\sblsp.dll (Speedbit Ltd.) O13 - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab (Java Plug-in 1.6.0_19) O16 - DPF: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab (Java Plug-in 1.6.0_19) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab (ActiveScan 2.0 Installer Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O16 - DPF: {F7EDBBEA-1AD2-4EBF-AA07-D453CC29EE65} https://plugins.valueactive.eu/flashax/iefax.cab (Flash Casino Helper Control) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 216.144.115.251 216.144.115.252 O18:[b]64bit:[/b] - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\Users\Stéphane\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg O24 - Desktop BackupWallPaper: C:\Users\Stéphane\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %* O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O35 - HKCU\..exefile [open] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKCU\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010-07-12 00:06:37 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Users\Stéphane\Desktop\OTL.exe [2010-07-10 16:25:20 | 000,000,000 | ---D | C] -- C:\Users\Stéphane\AppData\Roaming\Malwarebytes [2010-07-10 16:24:30 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys [2010-07-10 16:24:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware [2010-07-10 16:24:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2010-07-10 16:22:07 | 006,153,352 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Stéphane\Documents\mbam-setup-1.46.exe [2010-07-03 21:17:38 | 000,000,000 | ---D | C] -- C:\Program Files\iPod [2010-07-03 21:17:34 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes [2010-07-03 21:17:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes [2010-07-03 21:10:33 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour [2010-07-03 21:10:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bonjour [2010-07-03 21:10:32 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2010-07-03 21:01:58 | 000,000,000 | ---D | C] -- C:\Users\Stéphane\AppData\Roaming\vlc [2010-07-02 00:36:55 | 000,000,000 | ---D | C] -- C:\Users\Stéphane\Desktop\Nouveau dossier (2) [2010-06-29 12:15:37 | 000,000,000 | ---D | C] -- C:\Users\Stéphane\AppData\Roaming\Software Defender [2010-06-29 12:01:46 | 000,000,000 | ---D | C] -- C:\Users\Stéphane\Documents\RouletteBotPro [2010-06-29 12:01:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Roulette Bot Pro [2010-06-28 00:13:34 | 005,913,577 | ---- | C] (Roulette Sniper ) -- C:\Users\Stéphane\Documents\rs_trial.exe [2010-06-22 18:06:48 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfshim.dll [2010-06-22 18:06:48 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHost.exe [2010-06-22 18:06:48 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHostProxy.dll [2010-06-22 18:06:48 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netfxperf.dll [2010-06-22 18:06:47 | 001,942,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfshim.dll [2010-06-22 18:06:47 | 000,320,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHost.exe [2010-06-22 18:06:47 | 000,109,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHostProxy.dll [2010-06-22 18:06:47 | 000,048,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netfxperf.dll [2010-06-22 18:05:10 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\GameUXLegacyGDFs.dll [2010-06-22 18:05:10 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Apphlpdm.dll [2010-06-22 18:05:10 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Apphlpdm.dll [2010-06-22 18:05:09 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\SysNative\GameUXLegacyGDFs.dll [2010-06-19 14:52:27 | 000,000,000 | ---D | C] -- C:\Users\Stéphane\Documents\test anti-virus [2010-06-18 11:54:13 | 000,022,016 | ---- | C] (SingleClick Systems) -- C:\Windows\SysWow64\drivers\packet.sys [2010-06-18 11:54:01 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP [2010-06-18 11:53:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Dell [2010-06-15 00:30:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\SWF Studio [2010-06-15 00:30:30 | 000,000,000 | -HSD | C] -- C:\Users\Stéphane\AppData\Roaming\.# [2010-06-14 04:51:47 | 000,000,000 | ---D | C] -- C:\Users\Stéphane\AppData\Local\Deployment [2010-06-13 04:04:12 | 000,000,000 | ---D | C] -- C:\ProgramData\PCDr [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2010-07-12 00:11:10 | 006,553,600 | -HS- | M] () -- C:\Users\Stéphane\ntuser.dat [2010-07-12 00:10:54 | 000,035,478 | ---- | M] () -- C:\Users\Stéphane\AppData\Roaming\wklnhst.dat [2010-07-12 00:10:54 | 000,009,216 | ---- | M] () -- C:\Users\Stéphane\Documents\OTL procedure.wps [2010-07-12 00:06:42 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\Stéphane\Desktop\OTL.exe [2010-07-12 00:06:13 | 000,009,728 | ---- | M] () -- C:\Users\Stéphane\Documents\A faire au Plus criss.wps [2010-07-12 00:03:28 | 008,212,480 | ---- | M] () -- C:\Users\Stéphane\AppData\Local\filesync.metadata [2010-07-12 00:02:22 | 000,000,424 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{C9510D3C-9590-4B4A-98BD-50C109A1FF4D}.job [2010-07-12 00:02:01 | 000,069,120 | ---- | M] () -- C:\Users\Stéphane\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-07-11 23:42:00 | 000,001,066 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2010-07-11 23:36:10 | 000,678,804 | ---- | M] () -- C:\Windows\SysNative\perfh00C.dat [2010-07-11 23:36:09 | 001,495,948 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2010-07-11 23:36:09 | 000,595,798 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2010-07-11 23:36:09 | 000,126,420 | ---- | M] () -- C:\Windows\SysNative\perfc00C.dat [2010-07-11 23:36:09 | 000,103,872 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2010-07-11 23:34:27 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2010-07-11 21:42:00 | 000,001,062 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2010-07-11 05:27:18 | 000,003,744 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2010-07-11 05:27:18 | 000,003,744 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2010-07-10 16:22:13 | 006,153,352 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Stéphane\Documents\mbam-setup-1.46.exe [2010-07-10 05:01:24 | 001,493,905 | ---- | M] () -- C:\Users\Stéphane\Documents\LeMessagedonneparlesExtra-terrestres.pdf [2010-07-10 00:09:13 | 000,016,384 | ---- | M] () -- C:\Users\Stéphane\Documents\Perte GO.wps [2010-07-09 15:15:50 | 000,065,536 | ---- | M] () -- C:\Windows\SysNative\Ikeext.etl [2010-07-09 15:15:21 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2010-07-09 15:15:12 | 000,000,031 | ---- | M] () -- C:\Windows\SysNative\bbcap.err [2010-07-09 05:15:46 | 000,524,288 | -HS- | M] () -- C:\Users\Stéphane\ntuser.dat{a53b40a5-1e97-11de-bcfa-00219b190dfa}.TMContainer00000000000000000001.regtrans-ms [2010-07-09 05:15:46 | 000,065,536 | -HS- | M] () -- C:\Users\Stéphane\ntuser.dat{a53b40a5-1e97-11de-bcfa-00219b190dfa}.TM.blf [2010-07-09 05:15:36 | 003,082,375 | -H-- | M] () -- C:\Users\Stéphane\AppData\Local\IconCache.db [2010-07-07 01:36:44 | 000,060,928 | ---- | M] (Prevx) -- C:\Windows\SysWow64\PxSecure.dll [2010-07-07 01:36:43 | 000,056,320 | ---- | M] (Prevx) -- C:\Windows\SysNative\drivers\pxrts.sys [2010-07-07 01:36:43 | 000,034,696 | ---- | M] (Prevx) -- C:\Windows\SysNative\drivers\pxscan.sys [2010-07-07 01:36:43 | 000,022,336 | ---- | M] (Prevx) -- C:\Windows\SysNative\drivers\pxkbf.sys [2010-07-07 01:36:33 | 000,000,032 | ---- | M] () -- C:\Windows\wininit.ini [2010-07-04 22:25:31 | 000,009,728 | ---- | M] () -- C:\Users\Stéphane\Documents\Francois charron probleme de perte de GO copie du message.wps [2010-07-03 22:53:45 | 000,074,160 | ---- | M] () -- C:\Users\Stéphane\AppData\Local\GDIPFONTCACHEV1.DAT [2010-07-03 22:47:24 | 000,319,696 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2010-07-03 21:18:07 | 000,001,804 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk [2010-07-03 21:08:19 | 000,001,866 | ---- | M] () -- C:\Users\Public\Desktop\Safari.lnk [2010-07-03 21:08:19 | 000,001,866 | ---- | M] () -- C:\Users\Stéphane\Application Data\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk [2010-07-03 20:53:34 | 000,001,919 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk [2010-06-29 21:40:20 | 000,000,954 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Security Essentials.lnk [2010-06-29 11:58:53 | 003,100,609 | ---- | M] () -- C:\Users\Stéphane\Documents\RBPTrial.zip [2010-06-29 11:09:16 | 000,008,704 | ---- | M] () -- C:\Users\Stéphane\Documents\Gag google traduction.wps [2010-06-28 00:13:47 | 005,913,577 | ---- | M] (Roulette Sniper ) -- C:\Users\Stéphane\Documents\rs_trial.exe [2010-06-20 16:59:33 | 000,063,488 | ---- | M] () -- C:\Users\Stéphane\Documents\Popcorn valeur nutritive.wps [2010-06-18 11:50:26 | 016,081,552 | ---- | M] () -- C:\Users\Stéphane\Desktop\DELL_REMOTE-ACCESS_A06_R218808.exe [2010-06-18 11:29:20 | 001,852,664 | ---- | M] () -- C:\Users\Stéphane\Desktop\R218167.exe [2010-06-15 00:47:35 | 000,010,240 | ---- | M] () -- C:\Users\Stéphane\Documents\Betvoyageur new password.wps [2010-06-14 04:53:50 | 000,000,366 | ---- | M] () -- C:\Users\Stéphane\Desktop\Atys RNG Stats.appref-ms [2010-06-12 06:23:41 | 000,000,677 | ---- | M] () -- C:\Users\Public\Desktop\Casino.com.lnk [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-07-12 00:10:54 | 000,009,216 | ---- | C] () -- C:\Users\Stéphane\Documents\OTL procedure.wps [2010-07-10 05:01:21 | 001,493,905 | ---- | C] () -- C:\Users\Stéphane\Documents\LeMessagedonneparlesExtra-terrestres.pdf [2010-07-06 17:03:16 | 000,016,384 | ---- | C] () -- C:\Users\Stéphane\Documents\Perte GO.wps [2010-07-04 22:25:31 | 000,009,728 | ---- | C] () -- C:\Users\Stéphane\Documents\Francois charron probleme de perte de GO copie du message.wps [2010-07-03 21:18:07 | 000,001,804 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk [2010-07-03 21:08:19 | 000,001,866 | ---- | C] () -- C:\Users\Public\Desktop\Safari.lnk [2010-07-03 20:53:34 | 000,001,919 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk [2010-07-02 16:26:53 | 000,009,728 | ---- | C] () -- C:\Users\Stéphane\Documents\A faire au Plus criss.wps [2010-06-29 21:40:20 | 000,000,954 | ---- | C] () -- C:\Users\Public\Desktop\Microsoft Security Essentials.lnk [2010-06-29 11:58:46 | 003,100,609 | ---- | C] () -- C:\Users\Stéphane\Documents\RBPTrial.zip [2010-06-20 16:59:33 | 000,063,488 | ---- | C] () -- C:\Users\Stéphane\Documents\Popcorn valeur nutritive.wps [2010-06-18 11:50:01 | 016,081,552 | ---- | C] () -- C:\Users\Stéphane\Desktop\DELL_REMOTE-ACCESS_A06_R218808.exe [2010-06-18 11:29:14 | 001,852,664 | ---- | C] () -- C:\Users\Stéphane\Desktop\R218167.exe [2010-06-17 01:44:35 | 000,008,704 | ---- | C] () -- C:\Users\Stéphane\Documents\Gag google traduction.wps [2010-06-15 00:47:35 | 000,010,240 | ---- | C] () -- C:\Users\Stéphane\Documents\Betvoyageur new password.wps [2010-06-14 04:53:50 | 000,000,366 | ---- | C] () -- C:\Users\Stéphane\Desktop\Atys RNG Stats.appref-ms [2010-06-12 06:23:41 | 000,000,677 | ---- | C] () -- C:\Users\Public\Desktop\Casino.com.lnk [2010-05-19 14:22:16 | 000,000,060 | ---- | C] () -- C:\Windows\SysWow64\SYSWQDRV.SYS [2010-03-24 03:36:56 | 000,053,299 | ---- | C] () -- C:\Windows\SysWow64\pthreadVC.dll [2010-03-21 19:40:02 | 000,178,176 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll [2010-03-12 13:53:29 | 000,000,232 | ---- | C] () -- C:\Windows\reimage.ini [2010-02-27 13:44:57 | 000,000,032 | ---- | C] () -- C:\Windows\wininit.ini [2010-02-08 01:32:25 | 000,528,384 | ---- | C] () -- C:\Windows\SysWow64\BladeEnc.dll [2010-02-08 01:32:25 | 000,120,832 | ---- | C] () -- C:\Windows\SysWow64\ShnDll32.dll [2009-12-14 10:35:08 | 001,380,403 | ---- | C] () -- C:\Windows\SysWow64\avgsdk.dll [2009-10-19 02:54:55 | 008,676,883 | ---- | C] () -- C:\Windows\SysWow64\NCMedia2.dll [2009-10-19 02:54:55 | 000,758,018 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll [2009-10-19 02:54:55 | 000,180,224 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll [2009-07-13 21:33:21 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2009-07-13 21:32:43 | 000,117,248 | ---- | C] () -- C:\Windows\SysWow64\EhStorAuthn.dll [2008-01-20 22:50:05 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color] [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2008-01-20 22:46:51 | 000,064,568 | ---- | M] (Microsoft Corporation) MD5=F6F6793B7F17B550ECFDBD3B229173F7 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_163188bf770e4ab0\AGP440.sys [2008-01-20 22:46:51 | 000,064,568 | ---- | M] (Microsoft Corporation) MD5=F6F6793B7F17B550ECFDBD3B229173F7 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_181d01cb743015fc\AGP440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2008-01-20 22:46:50 | 000,022,584 | ---- | M] (Microsoft Corporation) MD5=1898FAE8E07D97F2F6C2D5326C633FAC -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_3956c39dd9e73fd2\atapi.sys [2008-12-24 06:45:14 | 000,022,584 | ---- | M] (Microsoft Corporation) MD5=5EB9EF6EEC5D873E94992095A1719BF6 -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.0.6001.22134_none_39c3f1ccf31998cb\atapi.sys [2009-04-11 03:15:00 | 000,020,952 | ---- | M] (Microsoft Corporation) MD5=E68D9B3A3905619732F7FE039466A623 -- C:\Windows\SoftwareDistribution\Download\d15e0adcf011f7a00bde2023e8b74a00\amd64_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_3b423ca9d7090b1e\atapi.sys [2009-04-11 00:15:02 | 000,020,952 | ---- | M] (Microsoft Corporation) MD5=E68D9B3A3905619732F7FE039466A623 -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_3b423ca9d7090b1e\atapi.sys [2008-12-24 06:45:14 | 000,022,584 | ---- | M] (Microsoft Corporation) MD5=F988BB0690CD660318037908E9B8DBF7 -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.0.6001.18034_none_393a5501d9fbf901\atapi.sys [color=#A23BEC]< MD5 for: CNGAUDIT.DLL >[/color] [2006-11-02 07:16:48 | 000,014,848 | ---- | M] (Microsoft Corporation) MD5=21322B1A2AD337C579F4A65EA0D25193 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_424bc4aceb06de1c\cngaudit.dll [2006-11-02 05:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\SysWOW64\cngaudit.dll [2006-11-02 05:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\SysWOW64\cngaudit.dll [2006-11-02 05:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll [color=#A23BEC]< MD5 for: IASTOR.SYS >[/color] [2008-09-01 05:12:26 | 000,381,976 | ---- | M] (Intel Corporation) MD5=CEB53BB804B41C52AB0782505C8E2994 -- C:\Drivers\storage\R185991\iaStor.sys [color=#A23BEC]< MD5 for: IASTORV.SYS >[/color] [2008-01-20 22:46:59 | 000,290,872 | ---- | M] (Intel Corporation) MD5=3E3BF3627D886736D0B4E90054F929F6 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_0b2fedfc40256bc5\iaStorV.sys [color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color] [2008-01-20 22:51:03 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=5D0A4891F8CD0E9E64FF57A6A34044F5 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_59d652c6f057598d\netlogon.dll [2009-04-11 02:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\SoftwareDistribution\Download\d15e0adcf011f7a00bde2023e8b74a00\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_6616762521d9e6d4\netlogon.dll [2009-04-10 23:28:24 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\SysWOW64\netlogon.dll [2009-04-10 23:28:24 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\SysWOW64\netlogon.dll [2009-04-10 23:28:24 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_6616762521d9e6d4\netlogon.dll [2009-04-11 03:11:16 | 000,717,312 | ---- | M] (Microsoft Corporation) MD5=A3F1B171702CA04744EE514243B45BFB -- C:\Windows\SoftwareDistribution\Download\d15e0adcf011f7a00bde2023e8b74a00\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_5bc1cbd2ed7924d9\netlogon.dll [2009-04-11 00:11:18 | 000,717,312 | ---- | M] (Microsoft Corporation) MD5=A3F1B171702CA04744EE514243B45BFB -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_5bc1cbd2ed7924d9\netlogon.dll [2008-01-20 22:48:28 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_642afd1924b81b88\netlogon.dll [color=#A23BEC]< MD5 for: NVSTOR.SYS >[/color] [2008-01-20 22:46:54 | 000,054,328 | ---- | M] (NVIDIA Corporation) MD5=F7EA0FE82842D05EDA3EFDD376DBFDBA -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_95f95eab775c159d\nvstor.sys [color=#A23BEC]< MD5 for: SCECLI.DLL >[/color] [2008-01-20 22:50:28 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_9e812831c5d9a243\scecli.dll [2008-01-20 22:49:49 | 000,235,520 | ---- | M] (Microsoft Corporation) MD5=35F1DD99F9903BC267C2AF16B09F9BF7 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_942c7ddf9178e048\scecli.dll [2009-04-11 02:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\SoftwareDistribution\Download\d15e0adcf011f7a00bde2023e8b74a00\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_a06ca13dc2fb6d8f\scecli.dll [2009-04-10 23:28:26 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\SysWOW64\scecli.dll [2009-04-10 23:28:26 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\SysWOW64\scecli.dll [2009-04-10 23:28:26 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_a06ca13dc2fb6d8f\scecli.dll [2009-04-11 03:11:23 | 000,235,520 | ---- | M] (Microsoft Corporation) MD5=9922ADB6DCA8F0F5EA038BEFF339C08B -- C:\Windows\SoftwareDistribution\Download\d15e0adcf011f7a00bde2023e8b74a00\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_9617f6eb8e9aab94\scecli.dll [2009-04-11 00:11:24 | 000,235,520 | ---- | M] (Microsoft Corporation) MD5=9922ADB6DCA8F0F5EA038BEFF339C08B -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_9617f6eb8e9aab94\scecli.dll [color=#A23BEC]< %systemroot%\*. /mp /s >[/color] [color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color] [color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 124 bytes -> C:\ProgramData\TEMP:5D432CE3 < End of report >

Extra.txt

Code: Tout sélectionner: OTL Extras logfile created on: 2010-07-12 00:11:29 - Run 1 OTL by OldTimer - Version 3.2.9.0 Folder = C:\Users\Stéphane\Desktop 64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18928) Locale: 00000C0C | Country: Canada | Language: FRC | Date Format: yyyy-MM-dd 4,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 46,00% Memory free 8,00 Gb Paging File | 6,00 Gb Available in Paging File | 74,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 450,70 Gb Total Space | 1,14 Gb Free Space | 0,25% Space Free | Partition Type: NTFS Drive D: | 15,00 Gb Total Space | 8,60 Gb Free Space | 57,32% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: PC-DE-STÉPHANE Current User Name: Stéphane Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Include 64bit Scans Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Minimal [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] [color=#E56717]========== Shell Spawning ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* File not found cmdfile [open] -- "%1" %* File not found comfile [open] -- "%1" %* File not found exefile [open] -- "%1" %* File not found helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation) htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* File not found regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" File not found scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S File not found txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation) htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 "VistaSp1" = 9F 9E 16 8C DC 5B C8 01 [binary data] "VistaSp2" = AC 16 A9 8D 26 04 CA 01 [binary data] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-2374652892-3678409295-3537486610-1000] "EnableNotificationsRef" = 3 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "oobe_av" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 "DoNotAllowExceptions" = 0 [color=#E56717]========== Authorized Applications List ==========[/color] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{0FFE6BA1-FF10-4626-B572-FE8A5F1DA699}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe | "{8DAD82AF-0337-49F2-B25F-DB92286A057D}" = lport=2869 | protocol=6 | dir=in | app=system | [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{265EDC65-5E61-4903-9BE1-93849DA807C6}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | "{27778842-FC94-4C77-9306-B03133A491FF}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{290D56EA-E311-44A1-B2E3-15FF24CB0EF2}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{4128AC95-8513-423F-A68B-F7D85DEA9AC8}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | "{42F55A58-FC27-4AB3-93ED-16EE4F777250}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe | "{47C8EF85-4BD9-4B4D-96D8-ACE76357CAD8}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{4A7B7364-2B87-4A10-9FB8-6B02FCF6BF63}" = protocol=6 | dir=in | app=c:\program files (x86)\itunes\itunes.exe | "{52D6F8EF-89EE-45A9-989D-2311E44ADB54}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{548369A9-F677-4F61-9F03-C49A5D5E1064}" = protocol=17 | dir=in | app=c:\program files (x86)\itunes\itunes.exe | "{54F07A14-4368-42C7-AF60-0AC9553632CC}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe | "{6E71BE7C-184E-4084-9766-B4E3C41806CA}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{8A113FD3-52F4-421E-8113-9D58058FD79E}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{A26D23AD-B374-4050-A858-A22CC5F46F9C}" = protocol=6 | dir=in | app=c:\program files (x86)\dell video chat\dellvideochat.exe | "{B2D5802B-0F87-4CDE-B629-1CDB28AC33FE}" = dir=in | app=c:\program files (x86)\windows live\messenger\wlcsdk.exe | "{CDF269A6-97C7-4A2A-A292-9497FEFD5971}" = dir=in | app=c:\program files (x86)\dell\mediadirect\mediadirect.exe | "{D96D4B26-EBE3-4300-8E8D-31E5C871B112}" = protocol=17 | dir=in | app=c:\program files (x86)\dell video chat\dellvideochat.exe | "{E90B1267-8166-47AA-9B9C-FB3679DC6AF2}" = dir=in | app=c:\program files (x86)\dell\mediadirect\kernel\dms\clmsservice.exe | "{F0710F78-33E4-41C6-A621-280D64AB6533}" = dir=in | app=c:\program files (x86)\dell\mediadirect\kernel\dmp\clbrowserengine.exe | "{FD1EEAC9-5E6C-4B90-A925-3EA03F03B705}" = dir=in | app=c:\program files (x86)\dell\mediadirect\pcmservice.exe | "{FDA4DD1E-5DEA-4730-AE95-B3D4E32F10D0}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe | "TCP Query User{07F90F79-1E2A-4081-9345-E81D8DF41179}C:\program files (x86)\safari\safari.exe" = protocol=6 | dir=in | app=c:\program files (x86)\safari\safari.exe | "TCP Query User{21293853-C974-4CCA-9AF1-1CE77BA68EEF}C:\program files (x86)\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe | "TCP Query User{77BF05E4-E6A4-42D5-AE49-1684B6855C2F}C:\program files (x86)\vuze\azureus.exe" = protocol=6 | dir=in | app=c:\program files (x86)\vuze\azureus.exe | "TCP Query User{AAB1A959-9690-4F95-B315-CB74BD709C26}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe | "TCP Query User{AC319AEC-03F2-47D1-A930-9C501BD1042F}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe | "TCP Query User{EBCBE071-DC51-49D2-9F41-A24D7FD6A545}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe | "UDP Query User{201F4AF1-3740-40DA-BBA4-A9CBEC5734DF}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe | "UDP Query User{4324AB2D-59CB-48C3-B0CA-3A75C175C745}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe | "UDP Query User{4D1ACDB1-220D-415C-A002-F9FCF3639FC6}C:\program files (x86)\vuze\azureus.exe" = protocol=17 | dir=in | app=c:\program files (x86)\vuze\azureus.exe | "UDP Query User{8845719A-1B0E-4CA6-A03B-2A51BF5588E0}C:\program files (x86)\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe | "UDP Query User{C11FB6D6-B6B9-4BC0-9F1B-C4937D10E684}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe | "UDP Query User{CBB5B28F-A7B4-497A-A483-CF7E0D7994C4}C:\program files (x86)\safari\safari.exe" = protocol=17 | dir=in | app=c:\program files (x86)\safari\safari.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{26A24AE4-039D-4CA4-87B4-2F86416019FF}" = Java(TM) 6 Update 19 (64-bit) "{2CD65167-671F-49A3-B6C7-3B919DF028E2}_is1" = Streaming Video Recorder V2.1.0 "{32508A23-C9EA-4D29-83CA-97A42A13701E}" = Microsoft Sync Framework Services v1.0 (x64) "{328CC232-CFDC-468B-A214-2E21300E4CB5}" = Apple Mobile Device Support "{3E31821C-7917-367E-938E-E65FC413EA31}" = Microsoft .NET Framework 3.5 Language Pack SP1 - fra "{4B5F58F7-C7D1-3CE3-9B37-B657F0852643}" = Microsoft .NET Framework 4 Client Profile FRA Language Pack "{53529DAD-F7C9-476E-87CC-1547C4E3E821}" = iTunes "{53D7A054-4598-4947-A159-E8FCC77720AB}" = Microsoft Sync Framework Runtime v1.0 (x64) "{838F7AB2-5DFE-60B3-1030-43ACC3454CD2}" = ccc-utility64 "{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007 "{90120000-002A-040C-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (French) 2007 "{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting "{95C9C76F-ECF3-40FA-94F8-5DDFB6BAF40D}" = Microsoft Security Essentials "{A4526B5A-89C0-4F4B-9E6E-4F883374D5F9}" = Microsoft Antimalware Service FR-FR Language Pack "{B25BFFC9-FF51-44F2-9E46-4D93849C836F}" = SyncToy 2.0 (x64) "{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}" = Bonjour "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{E62A1F01-07B7-4541-A835-EE5B0BF064C2}" = Microsoft Antimalware "{F0AF91F4-D1ED-490E-8751-997AF2A3FF0D}_is1" = Leawo Free FLV Converter version 2.3.0.8 "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile "{F6CB42B9-F033-4152-8813-FF11DA8E6A78}" = Dell Dock "Microsoft .NET Framework 3.5 Language Pack SP1 - fra" = Module linguistique Microsoft .NET Framework 3.5 SP1- fra "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Client Profile FRA Language Pack" = Module linguistique Microsoft .NET Framework 4 Client Profile FRA "Microsoft Security Essentials" = Microsoft Security Essentials "My Lockbox_is1" = My Lockbox 2.0 "PCSI" = Prevx [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center "{08E81ABD-79F7-49C2-881F-FD6CB0975693}" = Roxio Creator Data "{09760D42-E223-42AD-8C3E-55B47D0DDAC3}" = Roxio Creator DE "{0DB1C665-97DD-F405-1D03-60ED1DA95510}" = Catalyst Control Center Graphics Previews Vista "{105CA5BB-9F30-149D-1AD4-144040CB3C1B}" = Catalyst Control Center Localization Spanish "{13766F76-6C8C-4E57-A9F3-3212D1C6E0D1}" = Dell DataSafe Online "{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer "{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate "{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}" = Roxio Creator Tools "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer "{26A24AE4-039D-4CA4-87B4-2F83216019FF}" = Java(TM) 6 Update 20 "{27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1" = ConvertHelper 2.2 "{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}" = QuickTime "{2BEF1AF7-845D-78AE-D826-A87E8CDB0E7F}" = CCC Help Chinese Standard "{2CA3F2A2-F00D-4DFF-87A2-A037A0B83079}" = AMD Demo - Whiteout "{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Roxio Update Manager "{3B160861-7250-451E-B5EE-8B92BF30A710}" = Microsoft Works "{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform "{3BEF9769-BA52-18F7-1D02-2362F6A27E38}" = Adobe Media Player "{3C36015E-F0F6-43D7-58ED-F4210D355CF9}" = Catalyst Control Center Localization Turkish "{3EE33958-7381-4E7B-A4F3-6E43098E9E9C}" = Browser Address Error Redirector "{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker "{44033AD6-17D0-3611-1D73-2791646B0892}" = CCC Help Portuguese "{4634B21A-CC07-4396-890C-2B8168661FEA}" = Windows Live Writer "{46ABBC54-1872-4AA3-95E2-F2C063A63F31}" = Installation Windows Live "{47244975-454F-770B-79C1-0A705F17AA68}" = Catalyst Control Center Localization Chinese Standard "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4C4759BE-2BA4-2DA7-58F6-E5188062E6EB}" = CCC Help French "{4D125AFC-0817-C6AC-B225-3C4E6EDB696D}" = CCC Help Japanese "{57D57F9A-0CED-61D0-B3C6-75A874CB9F4D}" = Skins "{5E0322C6-8CA9-A4BD-E9DC-CC8D8E7CB99E}" = Catalyst Control Center Graphics Previews Common "{5F06BE49-28E6-771F-A57A-7AC8C97F38E1}" = Catalyst Control Center Core Implementation "{60E5FF66-3F28-148C-8EE0-CE623C26233D}" = Catalyst Control Center Localization Portuguese "{62230596-37E5-4618-A329-0D21F529A86F}" = Browser Address Error Redirector "{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3 "{672BEEF8-6C95-8F97-74D4-BDF37412437B}" = CCC Help Spanish "{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update "{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}" = Roxio Creator Audio "{746F3251-0E32-08E4-D18F-43794D57588D}" = Catalyst Control Center Localization Italian "{75C89AB1-F888-6B0B-6BB4-A06ED4BDDFC0}" = Catalyst Control Center Graphics Full Existing "{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762 "{770F1BEC-2871-4E70-B837-FB8525FFA3B1}" = Windows Live Messenger "{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec "{7C7088C6-6347-150C-AEF4-A3190FF2F5AA}" = Catalyst Control Center Localization Hungarian "{7CF7894B-D52C-F9E5-2ABF-DB6756CE21AC}" = CCC Help Turkish "{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide "{7EDFEE8E-F4F2-CB4E-618B-846D4A95CAC8}" = CCC Help Chinese Traditional "{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}" = Windows Live Call "{8380D40E-291B-144A-554F-4877F4B439DB}" = Catalyst Control Center InstallProxy "{84A528D6-EB2F-49C5-9C08-36CE41A72357}" = BB FlashBack Standard "{8587A68A-BF5F-9492-228C-FACFDBA1A4F4}" = CCC Help Hungarian "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player "{90120000-0016-040C-0000-0000000FF1CE}" = Microsoft Office Excel MUI (French) 2007 "{90120000-0016-040C-0000-0000000FF1CE}_STANDARDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0018-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007 "{90120000-0018-040C-0000-0000000FF1CE}_STANDARDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001A-040C-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (French) 2007 "{90120000-001A-040C-0000-0000000FF1CE}_STANDARDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001B-040C-0000-0000000FF1CE}" = Microsoft Office Word MUI (French) 2007 "{90120000-001B-040C-0000-0000000FF1CE}_STANDARDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2007 "{90120000-001F-0401-0000-0000000FF1CE}_STANDARDR_{14809F99-C601-4D4A-9391-F1E8FAA964C5}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0407-0000-0000000FF1CE}_STANDARDR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0409-0000-0000000FF1CE}_STANDARDR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007 "{90120000-001F-040C-0000-0000000FF1CE}_STANDARDR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007 "{90120000-001F-0413-0000-0000000FF1CE}_STANDARDR_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007 "{90120000-001F-0C0A-0000-0000000FF1CE}_STANDARDR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-0020-040C-0000-0000000FF1CE}" = Module de compatibilité pour Microsoft Office System 2007 "{90120000-002A-0000-1000-0000000FF1CE}_STANDARDR_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-002A-040C-1000-0000000FF1CE}_STANDARDR_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2007 "{90120000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2007 "{90120000-006E-040C-0000-0000000FF1CE}_STANDARDR_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}" = Microsoft Office 2007 Service Pack 2 (SP2) "{91120000-0012-0000-0000-0000000FF1CE}" = Microsoft Office Standard 2007 "{91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2) "{91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581) "{91155C7C-3404-C96D-78DA-E1D6AF73F6DA}" = Catalyst Control Center Graphics Full New "{95120000-00AF-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (French) "{9BD9026D-C3C6-0C40-9FD2-DD95A24CDEB2}" = Catalyst Control Center Localization French "{9C6978E8-B6D0-4AB7-A7A0-D81A74FBF745}" = MediaDirect "{9F9BE2A8-2FA2-438E-934B-6F237B641167}" = Cooliris for Internet Explorer "{A0422738-2E4A-B01F-D19E-ED0379A3C3CC}" = CCC Help English "{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{A96E97134CA649888820BCDE5E300BBD}" = H.264 Decoder "{AAC389499AEF40428987B3D30CFC76C9}" = MKV Splitter "{AAF4238F-7C29-451D-9925-C753271A5728}" = Microsoft Visual C++ Run Time Lib Setup "{AB67580-257C-45FF-B8F4-C8C30682091A}_is1" = SIW version 2010.03.10 "{AC76BA86-7AD7-1036-7B44-A93000000001}" = Adobe Reader 9.3.3 - Français "{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9 "{ACE0BCCF-27A6-C275-0318-651F6388882F}" = CCC Help German "{AEF9DC35ADDF4825B049ACBFD1C6EB37}" = AAC Decoder "{AFAC914D-9E83-4A89-8ABE-427521C82CCF}" = Safari "{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter "{B2D328BE-45AD-4D92-96F9-2151490A203E}" = Apple Application Support "{B2E581DB-C4DD-432C-AC84-ED761AC056BC}" = OpenOffice.org 3.1 "{B3DAF54F-DB25-4586-9EF1-96D24BB14088}" = Windows Movie Maker 2.6 "{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}" = Roxio Creator Copy "{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player "{B935C985-A17F-484B-8470-09E4FC27DC26}" = Dell-eBay "{C39A4E1F-9AF1-4FE1-A80E-A5B867FABB42}" = Dell Best of Web "{C4B556FF-ABE6-8FBE-EF7A-909F72492DA8}" = CCC Help Korean "{CA06B6B3-A775-50D6-3031-53C40A5202A6}" = Catalyst Control Center Localization Chinese Traditional "{D0338BF1-DD06-8565-48A1-C8F3F991B959}" = Catalyst Control Center Localization Japanese "{D259350E-936C-C6C0-5FDF-B6B4B95731ED}" = Catalyst Control Center Graphics Light "{D81230AD-71DF-CFCB-CD05-52CFF26F8634}" = Catalyst Control Center Localization Korean "{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}" = Assistant de connexion Windows Live "{E4A185BB-8E95-6FA7-2637-C9E4768DE2C3}" = ccc-core-static "{E5F1AAA6-C0C8-326C-CAD2-B413CE1F5512}" = Catalyst Control Center Localization German "{E62FFFA6-DCBC-189B-443E-D10A44901385}" = CCC Help Italian "{ED439A64-F018-4DD4-8BA5-328D85AB09AB}" = Roxio Creator DE "{F0AF91F4-D1ED-490E-8751-997AF2A3FF0D}_is1" = Leawo Free FLV Converter version 2.3.0.9 "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F7B0939E-58DF-11DF-B3A6-005056806466}" = Google Earth "{FFA49297-740A-4D58-ACEF-BC5D95A03E98}_is1" = Roulette Bot Pro Version 2.1 "8461-7759-5462-8226" = Vuze "ActiveScan 2.0" = Panda ActiveScan 2.0 "Adobe AIR" = Adobe AIR "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "ALUpdate_is1" = ALTools Update "ALZip_is1" = ALZip "Amazing Roulette System" = Amazing Roulette System 1.0 "Applian FLV Player2.0.24" = Applian FLV Player "AviScreen Classic (Freeware)_is1" = AviScreen Classic Version 1.3 "BB FlashBack Standard" = BB FlashBack Standard "CamStudio" = CamStudio "CamStudio Lossless Codec_is1" = CamStudio Lossless Codec v1.4 "Casino.com" = Casino.com "CCleaner" = CCleaner "com.adobe.amp.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1" = Adobe Media Player "dBpoweramp Music Converter" = dBpoweramp Music Converter "dBpoweramp Shorten Codec" = dBpoweramp Shorten Codec "Dell Video Chat" = Dell Video Chat (remove only) "DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters "FileZilla Client" = FileZilla Client 3.3.0.1 "foobar2000" = foobar2000 v1.0 "Freez FLV to AVI/MPEG/WMV Converter v1.6_is1" = Freez FLV to AVI/MPEG/WMV Converter "King Solomons Casino" = King Solomons Casino "KLiteCodecPack_is1" = K-Lite Codec Pack 5.4.4 (Basic) "Loco Mania" = Loco Mania 1.1 "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware "Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3) "RealPlayer 12.0" = RealPlayer "Reimage Repair" = Reimage Repair "Replay Converter 3" = Replay Converter 3 "Roulette Xtreme 2.0" = Roulette Xtreme 2.0 2.3.5.1 "SpeedBit Video Accelerator" = SpeedBit Video Accelerator "SpeedBit Video Downloader" = SpeedBit Video Downloader "STANDARDR" = Version d'évaluation de Microsoft Office Standard 2007 "SuMoRoBo" = Supply Money Roulette Bot "Veetle TV" = Veetle TV 0.9.17 "Vegas Red Casino" = Vegas Red Casino "VLC media player" = VLC media player 1.0.5 "WinLiveSuite_Wave3" = Installation Windows Live "yowindow" = YoWindow [color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "339e1ed15118cf4d" = Atys RNG Stats "f031ef6ac137efc5" = Dell Driver Download Manager "Swiss Casino" = Swiss Casino "uTorrent" = µTorrent [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 2010-06-23 08:13:13 | Computer Name = PC-de-Stéphane | Source = Application Error | ID = 1000 Description = Application défaillante mDNSResponder.exe, version 2.0.1.2, horodatage 0x4bbe371f, module défaillant unknown, version 0.0.0.0, horodatage 0x00000000, code d’exception 0xc0000005, décalage d’erreur 0x00000000, ID du processus 0x58c, heure de début de l’application 0x01cb12582ce0e178. Error - 2010-06-23 09:42:06 | Computer Name = PC-de-Stéphane | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 2010-06-23 09:42:09 | Computer Name = PC-de-Stéphane | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 2010-06-23 09:42:10 | Computer Name = PC-de-Stéphane | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 2010-06-23 09:42:19 | Computer Name = PC-de-Stéphane | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 2010-06-23 09:42:20 | Computer Name = PC-de-Stéphane | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 2010-06-23 09:42:27 | Computer Name = PC-de-Stéphane | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 2010-06-23 09:42:28 | Computer Name = PC-de-Stéphane | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 2010-06-23 09:42:45 | Computer Name = PC-de-Stéphane | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 2010-06-26 03:14:39 | Computer Name = PC-de-Stéphane | Source = Application Hang | ID = 1002 Description = Le programme iexplore.exe version 8.0.6001.18928 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans l’application Rapports et solutions aux problèmes du Panneau de configuration. ID de processus : 12dc Heure de début : 01cb14d0aae26560 Heure de fin : 0 [ System Events ] Error - 2010-07-09 00:30:02 | Computer Name = PC-de-Stéphane | Source = DCOM | ID = 10016 Description = Error - 2010-07-09 00:30:02 | Computer Name = PC-de-Stéphane | Source = DCOM | ID = 10016 Description = Error - 2010-07-09 03:23:10 | Computer Name = PC-de-Stéphane | Source = DCOM | ID = 10016 Description = Error - 2010-07-09 03:23:10 | Computer Name = PC-de-Stéphane | Source = DCOM | ID = 10016 Description = Error - 2010-07-09 03:23:15 | Computer Name = PC-de-Stéphane | Source = DCOM | ID = 10016 Description = Error - 2010-07-09 03:23:15 | Computer Name = PC-de-Stéphane | Source = DCOM | ID = 10016 Description = Error - 2010-07-09 22:26:33 | Computer Name = PC-de-Stéphane | Source = Microsoft Antimalware | ID = 2001 Description = %%861 a rencontré une erreur lors d'une tentative de mise à jour de signature. Nouvelle version de la signature : Ancienne version de la signature : 1.85.1721.0 Source de la mise à jour : %%859 Phase de la mise à jour : %%854 Chemin d'accès source : http://www.microsoft.com Type de signature : %%800 Type de mise à jour : %%803 Utilisateur : AUTORITE NT\SYSTEM Version actuelle du moteur : Version précédente du moteur : 1.1.5902.0 Code d'erreur : 0x80070643 Description de l'erreur : Erreur irrécupérable lors de l'installation. Error - 2010-07-09 22:27:09 | Computer Name = PC-de-Stéphane | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20 Description = Error - 2010-07-10 01:11:26 | Computer Name = PC-de-Stéphane | Source = Service Control Manager | ID = 7034 Description = Error - 2010-07-11 01:27:40 | Computer Name = PC-de-Stéphane | Source = Service Control Manager | ID = 7034 Description = < End of report >

bernard53 · le 12 Juil 2010 11:56

OK pas d'infection en vus juste un peu d'inutile.

1-tu as bien fait les suppressions avec Malwarebytes

2-fait ceci.

* Fait un double-clic sur l'icône d'OTL pour le lancer
/!\ pour Vista/Seven fais un clic-droit sur l'icône d'OTL et choisis "Exécuter en tant qu'administrateur"

* Assure-toi d'avoir fermé toutes les applications en court de fonctionnement.

* Quand la fenêtre d'OTL apparaît, assure toi que dans la section "Rapport" (en haut à droite) la case " Rapport minimal" soit cochée.

* Copies et colles le contenue de cette citation dans la partie inférieure d'OTL "Personnalisation"

:OTL
DRV:64bit: - (NwlnkFwd) -- C:\Windows\SysNative\DRIVERS\nwlnkfwd.sys File not found
DRV:64bit: - (NwlnkFlt) -- C:\Windows\SysNative\DRIVERS\nwlnkflt.sys File not found
DRV:64bit: - (IpInIp) -- C:\Windows\SysNative\DRIVERS\ipinip.sys File not found
FF - prefs.js..keyword.URL: "http://search.speedbit.com/searchresults.asp?site=tb&q="
FF - prefs.js..extensions.enabledItems: {0329E7D6-6F54-462D-93F6-F5C3118BADF2}:2.1.4
O2 - BHO: (SBCONVERT Class) - {3017FB3E-9A77-4396-88C5-0EC9548FB42F} - C:\Program Files (x86)\SpeedBit Video Downloader\Toolbar\tbcore3.dll ()
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (SBCONVERT Class) - {A1056498-D09A-41E4-864B-505EDD640D9E} - C:\Program Files (x86)\SpeedBit Video Downloader\Toolbar\SpeedBitVideoDownloader.dll ()
O2 - BHO: (GrabberObj Class) - {FF7C3CF0-4B15-11D1-ABED-709549C10000} - C:\Program Files (x86)\SpeedBit Video Downloader\Toolbar\Grabber.dll (Speedbit Ltd.)
O3 - HKLM\..\Toolbar: (SpeedBit Video Downloader) - {0329E7D6-6F54-462D-93F6-F5C3118BADF2} - C:\Program Files (x86)\SpeedBit Video Downloader\Toolbar\tbcore3.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (SpeedBit Video Downloader) - {0329E7D6-6F54-462D-93F6-F5C3118BADF2} - C:\Program Files (x86)\SpeedBit Video Downloader\Toolbar\tbcore3.dll ()
O4:64bit: - HKLM\..\Run: [] File not found
:reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Casino.com"=-

:Commands
[resethosts]
[emptytemp]

* Cliques sur l'icône Correction (en haut à gauche) .
* Laisse le scan aller à son terme sans te servir du PC
* A la fin du scan un ou deux rapports vont s'ouvrir "OTL.Txt" et ( ou ) "Extras.Txt"( dans certains cas).
* Copie et colle le ou les rapports dans ta réponse stp...
* Au cas où, tu peux les retrouver dans le dossier C:\OTL ou sur ton bureau en fonction des cas rencontrés

Rush · le 13 Juil 2010 08:27

bernard53 a écrit:OK pas d'infection en vus juste un peu d'inutile.

1-tu as bien fait les suppressions avec Malwarebytes

Merci Bernard de m'aider!

Est-ce une question?

Je pense que je n'ai rien supprimé j'ai seulement fait un scan avec Malwarebytes je ne savais pas si il y avait des faux positif et il y avait des clé de registre.

bernard53 · le 13 Juil 2010 11:55

Est-ce une question?

Oui. Tu peux valider la suppression et supprimer la quarantaine.

Rush · le 14 Juil 2010 23:17

Il faut que je recommence le tres long scan de Malwarebytes vue que les fichiers a supprimé ne sont plus la, j'avais seulement fais un scan comme demander et il y a rien dans la quarantaine et si je me souviens il faut que je supprime Speedbit video accelerator qui m,aide beaucoup pour youtube et autres et deux casinos ou je fais de l,argent...

ce n'est pas des faux positifs?

bernard53 · le 15 Juil 2010 11:58

en fait pour Speedbit video accelerator je te fait supprimer juste les tooblars qui sont du superflus et pas le logiciel.

Rush · le 17 Juil 2010 03:01

Sapristi!!! J'ai fais tel que tu m'a demander et je me retrouve avec un gains de 321 GO...

Pas de farce! j'étais à 1.25 GO avant cette manipulation.

Yahoo!!!

S'était quoi le problème?

Il y a seulement un rapport qui est apparue apres la correction d'OTL, j'ai été voir dans le dossier principale et il y a seulement un rapport et un dossier speedbit et un autre system32.

Merci beaucoup Bernard pour cette aide extraordinaire!

Voici le rapport:

Code: Tout sélectionner: All processes killed ========== OTL ========== Service NwlnkFwd stopped successfully! Service NwlnkFwd deleted successfully! File C:\Windows\SysNative\DRIVERS\nwlnkfwd.sys File not found not found. Service NwlnkFlt stopped successfully! Service NwlnkFlt deleted successfully! File C:\Windows\SysNative\DRIVERS\nwlnkflt.sys File not found not found. Service IpInIp stopped successfully! Service IpInIp deleted successfully! File C:\Windows\SysNative\DRIVERS\ipinip.sys File not found not found. Prefs.js: "http://search.speedbit.com/searchresults.asp?site=tb&q=" removed from keyword.URL Prefs.js: {0329E7D6-6F54-462D-93F6-F5C3118BADF2}:2.1.4 removed from extensions.enabledItems Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3017FB3E-9A77-4396-88C5-0EC9548FB42F}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3017FB3E-9A77-4396-88C5-0EC9548FB42F}\ deleted successfully. C:\Program Files (x86)\SpeedBit Video Downloader\Toolbar\tbcore3.dll moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A1056498-D09A-41E4-864B-505EDD640D9E}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A1056498-D09A-41E4-864B-505EDD640D9E}\ not found. File C:\Program Files (x86)\SpeedBit Video Downloader\Toolbar\SpeedBitVideoDownloader.dll not found. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FF7C3CF0-4B15-11D1-ABED-709549C10000}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FF7C3CF0-4B15-11D1-ABED-709549C10000}\ deleted successfully. C:\Program Files (x86)\SpeedBit Video Downloader\Toolbar\Grabber.dll moved successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{0329E7D6-6F54-462D-93F6-F5C3118BADF2} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0329E7D6-6F54-462D-93F6-F5C3118BADF2}\ deleted successfully. File C:\Program Files (x86)\SpeedBit Video Downloader\Toolbar\tbcore3.dll not found. Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{0329E7D6-6F54-462D-93F6-F5C3118BADF2} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0329E7D6-6F54-462D-93F6-F5C3118BADF2}\ not found. File C:\Program Files (x86)\SpeedBit Video Downloader\Toolbar\tbcore3.dll not found. Registry key HKEY_LOCAL_MACHINE\\Software\Microsoft\Windows\CurrentVersion\Run not found. ========== REGISTRY ========== Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\\Casino.com not found. ========== COMMANDS ========== File move failed. C:\Windows\System32\drivers\etc\Hosts scheduled to be moved on reboot. HOSTS file reset successfully [EMPTYTEMP] User: All Users User: AppData User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 32902 bytes ->Flash cache emptied: 41620 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Invité ->Temp folder emptied: 80345 bytes ->Temporary Internet Files folder emptied: 22787427 bytes ->Flash cache emptied: 41722 bytes User: Public User: RA Media Server ->Temp folder emptied: 339872363672 bytes ->Temporary Internet Files folder emptied: 32902 bytes ->Flash cache emptied: 41620 bytes User: Stéphane ->Temp folder emptied: 99608 bytes ->Temporary Internet Files folder emptied: 57085423 bytes ->Java cache emptied: 59409453 bytes ->FireFox cache emptied: 41022368 bytes ->Apple Safari cache emptied: 44153436 bytes ->Flash cache emptied: 49452 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32 (64bit) .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 20324 bytes %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 148755 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 324 342,00 mb OTL by OldTimer - Version 3.2.9.0 log created on 07162010_211309 Files\Folders moved on Reboot... File move failed. C:\Windows\System32\drivers\etc\Hosts scheduled to be moved on reboot. Registry entries deleted on Reboot...

bernard53 · le 17 Juil 2010 12:16

Très bien bonne nouvelle. Trop de chose en fichier temporaires. :wink:

Content que tu es récupéré ton espace.

tout va bien maintenant je pense!

Rush · le 17 Juil 2010 20:00

bernard53 a écrit: Trop de chose en fichier temporaires.

Mais j'utilise Ccleaner une fois par semaine il est supposé enlever les fichiers temporaires non?

Vaut-il mieux que j'utilise le nettoyage de windows au lieu de Ccleaner?

Donc s'était pas une infections...

A tu des conseils à me donné pour que cela ne se reproduise plus?

J'espère que je t'exaspère pas trop avec mes questions... :oops:

bernard53 · le 17 Juil 2010 20:13

Non pas de soucis d'infection.
A part les barres Toolbar que tu avais en trop rien de méchant.

tu peux garder Ccleaner sans soucis .

tu as eu un total de = 324 342,00 mb de supprimer.

Donc cela ne correspond pas a la totalité que tu as retrouver.

Franchement je ne peux te dire exactement ce qui a fait que tu as retrouver tout ton espace.
L'essentiel est que tout va bien de ton coté :wink:

Bonne soirée

Rush · le 18 Juil 2010 00:32

Bon et bien problème "RÉGLER"

Merci encore Bernard

bernard53 · le 18 Juil 2010 09:08

Rush a écrit:Bon et bien problème "RÉGLER"

Merci encore Bernard

De rien et bon dimanche :wink:

Mes GO disparaissent... [Résolu] • page 2

Re: Mes GO disparaissent...

Re: Mes GO disparaissent...

Re: Mes GO disparaissent...

Re: Mes GO disparaissent...

Re: Mes GO disparaissent...

Re: Mes GO disparaissent...

Re: Mes GO disparaissent...

Re: Mes GO disparaissent...

Re: Mes GO disparaissent...

Re: Mes GO disparaissent...

Re: Mes GO disparaissent...

Re: Mes GO disparaissent...

Re: Mes GO disparaissent...

Re: Mes GO disparaissent...

Sujets similaires

Qui est en ligne