Autre virus digital protection

OBREL · le 05 Mai 2010 21:49

Edit AtOM: Tu ne sais pas lire ?? Une infection, une machine = un sujet.
La pollution des topics d'autres participant en cours de désinfection... ...Ça le fait pas

Code: Tout sélectionner: OTL Extras logfile created on: 05/05/2010 22:27:07 - Run 1 OTL by OldTimer - Version 3.2.4.1 Folder = C:\Documents and Settings\alex.ALEX-A89BE92523\Bureau Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 7.0.5730.13) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 1 023,00 Mb Total Physical Memory | 422,00 Mb Available Physical Memory | 41,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 81,00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files Drive C: | 195,31 Gb Total Space | 108,34 Gb Free Space | 55,47% Space Free | Partition Type: NTFS Drive D: | 270,45 Gb Total Space | 270,03 Gb Free Space | 99,85% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: ALEX-A89BE92523 Current User Name: alex Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 7 Days Output = Minimal [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] [HKEY_USERS\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Classes\<extension>] .html [@ = htmlfile] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation) htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "AntiVirusOverride" = 1 "FirewallDisableNotify" = 1 "FirewallOverride" = 1 "UpdatesDisableNotify" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 0 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 "DisableUnicastResponsesToMulticastBroadcast" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 "DisableUnicastResponsesToMulticastBroadcast" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "48113:TCP" = 48113:TCP:LocalSubNet:Enabled:maconfig_tcp "48113:UDP" = 48113:UDP:LocalSubNet:Enabled:maconfig_udp "1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\eMule\eMule.exe" = C:\Program Files\eMule\eMule.exe:*:Enabled:eMule -- (http://www.emule-project.net) "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation) "C:\Program Files\ma-config.com\maconfservice.exe" = C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice -- (CybelSoft) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{01521746-02A6-4A72-00BD-A285DF6B80C6}" = Les Sims 2 Académie "{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3 "{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting "{11F5D779-7BD9-465A-BBC4-10701386BCB9}" = FW LiveUpdate "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer "{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin "{18754BA4-4F0C-4E6E-888B-9496AFA05F43}" = Ma-Config.com "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer "{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 17 "{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3 "{2B6EC03E-6FA0-4D7C-9CCE-1B03819AB613}" = PerfectDisk 2008 Professional "{3248F0A8-6813-11D6-A77B-00B0D0160060}" = Java(TM) 6 Update 6 "{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}" = Microsoft XNA Framework Redistributable 3.0 "{38E1CA6C-2121-4B5C-A3A5-0B0003794EFF}" = Sony Media Manager 2.2 "{3F7924B9-D148-3141-87B1-68F36043A940}" = Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - FRA "{46ABBC54-1872-4AA3-95E2-F2C063A63F31}" = Installation Windows Live "{4908C75E-E5E2-43F7-B1DF-023CBA831036}" = Nero 7 Premium "{511DF669-2930-30C0-8EB6-552887E29EC8}" = Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - FRA "{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3 "{5DD76286-9BE7-4894-A990-E905E91AC818}" = Windows Live Mail "{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All "{6E7DD182-9FC6-4651-0095-2E666CC6AF35}" = Les Sims 2 "{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3 "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{73B5D990-04EA-4751-B10F-5534770B91F2}" = Adobe Color EU Recommended Settings "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{770F1BEC-2871-4E70-B837-FB8525FFA3B1}" = Windows Live Messenger "{7B3577F5-1D82-4C9B-008B-69D026FD8BCA}" = Les Sims 2 : La bonne affaire "{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3 "{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}" = Windows Live Call "{8411FA28-D32D-4518-92F0-3FBD80A702BC}" = Sony Vegas 7.0 "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3 "{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support "{9011040C-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003 "{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3 "{926DEB4E-2B0A-4C5C-AE4A-BF6C06949702}" = Adobe Setup "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{95120000-0122-040C-0000-0000000FF1CE}" = Microsoft Office Outlook Connector "{9A394342-4A68-4EBA-85A6-55B559F4E700}" = Microsoft .NET Framework 1.1 French Language Pack "{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3 "{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI "{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps "{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings "{B2D41883-3BFC-4BA0-A2F6-5A2C9836C238}" = ACDSee 9 Photo Manager "{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0 "{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3 "{BF794769-8875-4E01-B7BE-E00104604F4A}" = Adobe Photoshop CS3 "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2 "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CB85D557-008D-4DC1-9B01-B1B470771860}" = Hercules WiFi Controller "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client "{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files "{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}" = Adobe Color Common Settings "{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}" = Assistant de connexion Windows Live "{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings "{E09B48B5-E141-427A-AB0C-D3605127224A}" = Microsoft SQL Server Desktop Engine (SONY_MEDIAMGR) "{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update "{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3 "{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard "{F7529650-B9DB-481B-0089-A2AC3C2821C1}" = Les Sims 2 : Nuits de Folie "{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio "{FF29A7E2-FF40-4D07-B7E4-2093DE59E10A}" = Adobe Color NA Extra Settings "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Adobe_32e9033392a51340b32fdc6ad893ab7" = Adobe Photoshop CS3 "avast5" = avast! Free Antivirus "CCleaner" = CCleaner (remove only) "CEP - Colour Enable Packages_is1" = CEP (Color Enable Package) v.9.2 (beta) "C-Media Audio Driver" = C-Media WDM Audio Driver "eMule" = eMule "EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.30 "Fraps" = Fraps "GENEUIDE" = USB Storage Driver "hp psc 1200 series_Driver" = hp psc 1200 series "Messenger Plus! Live" = Messenger Plus! Live "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3) "Notepad++" = Notepad++ "PhotoScape" = PhotoScape "Scriptorium_for_TS2_is1" = Scriptorium for TS2 "SFR_Kit" = SFR - Kit de connexion "Sims2Pack Clean Installer " = Sims2Pack Clean Installer "TeraCopy_is1" = TeraCopy 2.0 beta 3 "WinGimp-2.0_is1" = GIMP 2.6.8 "WinLiveSuite_Wave3" = Installation Windows Live "WinRAR archiver" = WinRAR archiver "XpsEPSC" = XML Paper Specification Shared Components Pack 1.0 "XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0 [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "PhotoFiltre Studio X" = PhotoFiltre Studio X [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Antivirus Events ] Error - 25/12/2009 09:39:36 | Computer Name = ALEX-A89BE92523 | Source = avast! | ID = 33554522 Description = [ Application Events ] Error - 26/03/2010 11:15:34 | Computer Name = ALEX-A89BE92523 | Source = Userenv | ID = 1041 Description = Windows ne peut pas effectuer de requête sur l'entrée DllName du Registre pour {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}. Error - 26/03/2010 12:55:42 | Computer Name = ALEX-A89BE92523 | Source = Userenv | ID = 1041 Description = Windows ne peut pas effectuer de requête sur l'entrée DllName du Registre pour {7B849a69-220F-451E-B3FE-2CB811AF94AE}. Error - 26/03/2010 12:55:42 | Computer Name = ALEX-A89BE92523 | Source = Userenv | ID = 1041 Description = Windows ne peut pas effectuer de requête sur l'entrée DllName du Registre pour {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}. Error - 26/03/2010 12:55:42 | Computer Name = ALEX-A89BE92523 | Source = Userenv | ID = 1041 Description = Windows ne peut pas effectuer de requête sur l'entrée DllName du Registre pour {7B849a69-220F-451E-B3FE-2CB811AF94AE}. Error - 26/03/2010 12:55:42 | Computer Name = ALEX-A89BE92523 | Source = Userenv | ID = 1041 Description = Windows ne peut pas effectuer de requête sur l'entrée DllName du Registre pour {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}. Error - 26/03/2010 14:25:43 | Computer Name = ALEX-A89BE92523 | Source = Userenv | ID = 1041 Description = Windows ne peut pas effectuer de requête sur l'entrée DllName du Registre pour {7B849a69-220F-451E-B3FE-2CB811AF94AE}. Error - 26/03/2010 14:25:43 | Computer Name = ALEX-A89BE92523 | Source = Userenv | ID = 1041 Description = Windows ne peut pas effectuer de requête sur l'entrée DllName du Registre pour {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}. Error - 26/03/2010 14:42:42 | Computer Name = ALEX-A89BE92523 | Source = Userenv | ID = 1041 Description = Windows ne peut pas effectuer de requête sur l'entrée DllName du Registre pour {7B849a69-220F-451E-B3FE-2CB811AF94AE}. Error - 26/03/2010 14:42:42 | Computer Name = ALEX-A89BE92523 | Source = Userenv | ID = 1041 Description = Windows ne peut pas effectuer de requête sur l'entrée DllName du Registre pour {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}. Error - 26/03/2010 16:16:43 | Computer Name = ALEX-A89BE92523 | Source = Userenv | ID = 1041 Description = Windows ne peut pas effectuer de requête sur l'entrée DllName du Registre pour {7B849a69-220F-451E-B3FE-2CB811AF94AE}. [ System Events ] Error - 01/05/2010 18:58:38 | Computer Name = ALEX-A89BE92523 | Source = WPDMTPDriver | ID = 80836 Description = MTP WPD Driver has failed to start. Error 0x8007001f. Error - 01/05/2010 18:58:49 | Computer Name = ALEX-A89BE92523 | Source = WPDMTPDriver | ID = 80836 Description = MTP WPD Driver has failed to start. Error 0x8007001f. Error - 01/05/2010 18:59:09 | Computer Name = ALEX-A89BE92523 | Source = WPDMTPDriver | ID = 80836 Description = MTP WPD Driver has failed to start. Error 0x8007001f. Error - 01/05/2010 18:59:34 | Computer Name = ALEX-A89BE92523 | Source = WPDMTPDriver | ID = 80836 Description = MTP WPD Driver has failed to start. Error 0x8007001f. Error - 01/05/2010 18:59:55 | Computer Name = ALEX-A89BE92523 | Source = WPDMTPDriver | ID = 80836 Description = MTP WPD Driver has failed to start. Error 0x8007001f. Error - 01/05/2010 19:02:30 | Computer Name = ALEX-A89BE92523 | Source = WPDMTPDriver | ID = 80836 Description = MTP WPD Driver has failed to start. Error 0x8007001f. Error - 01/05/2010 19:02:47 | Computer Name = ALEX-A89BE92523 | Source = WPDMTPDriver | ID = 80836 Description = MTP WPD Driver has failed to start. Error 0x8007001f. Error - 01/05/2010 19:04:28 | Computer Name = ALEX-A89BE92523 | Source = WPDMTPDriver | ID = 80836 Description = MTP WPD Driver has failed to start. Error 0x8007001f. Error - 05/05/2010 17:01:11 | Computer Name = ALEX-A89BE92523 | Source = NtServicePack | ID = 921877 Description = L'installation du Windows XP KB979306 a échoué. Plus de données sont disponibles . Error - 05/05/2010 17:01:17 | Computer Name = ALEX-A89BE92523 | Source = Windows Update Agent | ID = 20 Description = Échec de l'installation : l'installation de la mise à jour suivante a échoué avec l'erreur 0x800700ea : Mise à jour pour Windows XP (KB979306). < End of report >

Ask to Old Man · le 05 Mai 2010 22:11

Bonsoir,

Sujet divisé!! & lorsque l'on arrive quelque part, rien n'interdit d'être courtois.
Tu jettes ton rapport sans une explication ou autre ... ..Bravo!!

bernard53 · le 06 Mai 2010 06:28

Bonjour

Quelles sont comme le signale "AtOM'" tes signes d'infections?

Mets moi l'autre rapport généré par OTL qui s'apelle "OTL.Txt" s.t.p

OBREL · le 07 Mai 2010 18:06

Code: Tout sélectionner: OTL logfile created on: 05/05/2010 22:27:07 - Run 1 OTL by OldTimer - Version 3.2.4.1 Folder = C:\Documents and Settings\alex.ALEX-A89BE92523\Bureau Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 7.0.5730.13) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 1 023,00 Mb Total Physical Memory | 422,00 Mb Available Physical Memory | 41,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 81,00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files Drive C: | 195,31 Gb Total Space | 108,34 Gb Free Space | 55,47% Space Free | Partition Type: NTFS Drive D: | 270,45 Gb Total Space | 270,03 Gb Free Space | 99,85% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: ALEX-A89BE92523 Current User Name: alex Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 7 Days Output = Minimal [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - C:\Documents and Settings\alex.ALEX-A89BE92523\Bureau\OTL.exe (OldTimer Tools) PRC - C:\Program Files\Digital Protection\digprot.exe () PRC - C:\Documents and Settings\alex.ALEX-A89BE92523\Local Settings\Temp\bootvrfy.exe (Microsoft Corporation) PRC - C:\Program Files\Alwil Software\Avast5\AvastUI.exe (ALWIL Software) PRC - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (ALWIL Software) PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) PRC - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.) PRC - C:\Program Files\InstallShield Installation Information\{CB85D557-008D-4DC1-9B01-B1B470771860}\setup.exe (Macrovision Corporation) PRC - C:\Program Files\SAMSUNG\FW LiveUpdate\FWManager.exe ( ) PRC - C:\Program Files\SFR\Kit\9props.exe (SFR) PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) PRC - C:\Program Files\Raxco\PerfectDisk2008\PD91Agent.exe (Raxco Software, Inc.) PRC - C:\Program Files\Hercules\Hercules WiFi Controller Software\ConnectionSharing.exe (Thrustmaster) PRC - C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.) PRC - C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe (Nero AG) PRC - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe (Nero AG) PRC - C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe (HP) [color=#E56717]========== Modules (All) ==========[/color] MOD - C:\Documents and Settings\alex.ALEX-A89BE92523\Bureau\OTL.exe (OldTimer Tools) MOD - C:\WINDOWS\system32\msasn1.dll (Microsoft Corporation) MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6001.22319_x-ww_f0b4c2df\GdiPlus.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\atl.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\secur32.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\WMVCore.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\rpcrt4.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\kernel32.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\msctfime.ime (Microsoft Corporation) MOD - C:\WINDOWS\system32\ntdll.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\advapi32.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\normaliz.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\gdi32.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\netapi32.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\dnsapi.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\wpdshext.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\portabledeviceapi.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\audiodev.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\uxtheme.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\wininet.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\iertutil.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\xpsp2res.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\ole32.dll (Microsoft Corporation) MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\setupapi.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\comres.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\userenv.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\crypt32.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\wiashext.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\mlang.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\user32.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\cryptui.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\clbcatq.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\shlwapi.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\hnetcfg.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\msvcrt.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\cscui.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\MSCTF.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\mstask.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\comdlg32.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\netui1.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\wbem\framedyn.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\winmm.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\wintrust.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\wldap32.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\winspool.drv (Microsoft Corporation) MOD - C:\WINDOWS\system32\ntshrui.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\imagehlp.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\apphelp.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\ntmarta.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\msscript.ocx (Microsoft Corporation) MOD - C:\WINDOWS\system32\imm32.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\cscdll.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\olepro32.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\netui0.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\ws2_32.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\sti.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\srclient.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\ntdsapi.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\samlib.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\mpr.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\ntlanman.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\davclnt.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\psapi.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\ws2help.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\linkinfo.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\wshtcpip.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\version.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\cfgmgr32.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\drprov.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\netrap.dll (Microsoft Corporation) MOD - C:\WINDOWS\system32\wmasf.dll (Microsoft Corporation) MOD - C:\Program Files\Fichiers communs\Ahead\Lib\NeroDigitalExt.dll (Nero AG) MOD - C:\Program Files\Fichiers communs\Ahead\Lib\MFC71.dll (Microsoft Corporation) MOD - C:\Program Files\Fichiers communs\Ahead\Lib\msvcp71.dll (Microsoft Corporation) MOD - C:\Program Files\Fichiers communs\Ahead\Lib\msvcr71.dll (Microsoft Corporation) [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (ALWIL Software) SRV - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (ALWIL Software) SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (ALWIL Software) SRV - (FLEXnet Licensing Service) -- C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.) SRV - (maconfservice) -- C:\Program Files\ma-config.com\maconfservice.exe (CybelSoft) SRV - (PD91Engine) -- C:\Program Files\Raxco\PerfectDisk2008\PD91Engine.exe (Raxco Software, Inc.) SRV - (PD91Agent) -- C:\Program Files\Raxco\PerfectDisk2008\PD91Agent.exe (Raxco Software, Inc.) SRV - (ose) -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation) SRV - (MSSQL$SONY_MEDIAMGR) -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe (Microsoft Corporation) SRV - (SQLAgent$SONY_MEDIAMGR) -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE (Microsoft Corporation) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - (aswTdi) -- C:\WINDOWS\system32\drivers\aswTdi.sys (ALWIL Software) DRV - (aswSP) -- C:\WINDOWS\system32\drivers\aswSP.sys (ALWIL Software) DRV - (aswRdr) -- C:\WINDOWS\system32\drivers\aswRdr.sys (ALWIL Software) DRV - (aswMon2) -- C:\WINDOWS\system32\drivers\aswmon2.sys (ALWIL Software) DRV - (aswFsBlk) -- C:\WINDOWS\system32\drivers\aswFsBlk.sys (ALWIL Software) DRV - (Aavmker4) -- C:\WINDOWS\system32\drivers\aavmker4.sys (ALWIL Software) DRV - (driverhardwarev2) -- C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys (CybelSoft) DRV - (EverestDriver) -- C:\Program Files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt () DRV - (ALCXWDM) Service for Realtek AC97 Audio (WDM) -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS (Realtek Semiconductor Corp.) DRV - (gameenum) -- C:\WINDOWS\system32\drivers\gameenum.sys (Microsoft Corporation) DRV - (nv) -- C:\WINDOWS\system32\drivers\nv4_mini.sys (NVIDIA Corporation) DRV - (VIAudio) Contrôleur audio VIA AC'97 (WDM) -- C:\WINDOWS\system32\drivers\ac97via.sys (VIA Technologies, Inc.) DRV - (DefragFS) -- C:\WINDOWS\system32\drivers\DefragFS.sys (Raxco Software, Inc.) DRV - (RT73) -- C:\WINDOWS\system32\drivers\rt73.sys (Ralink Technology, Corp.) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://home.microsoft.com/access/allinone.asp IE - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/ IE - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "http://GOOGLE.fr/" FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..network.proxy.type: 1 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/04/22 23:05:41 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/04/03 13:44:59 | 000,000,000 | ---D | M] [2010/02/16 18:19:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\Mozilla\Extensions [2010/02/16 18:48:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\Mozilla\Firefox\Profiles\4unxzosk.default\extensions [2010/02/16 18:18:59 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010/01/16 02:10:07 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml [2010/01/16 02:10:07 | 000,001,822 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml [2010/01/16 02:10:07 | 000,000,757 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml [2010/01/16 02:10:07 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml [2010/03/23 21:13:34 | 000,000,956 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml O1 HOSTS File: ([2008/04/14 15:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (no name) - {6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C} - No CLSID value found. O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll (Google Inc.) O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (ALWIL Software) O4 - HKLM..\Run: [Cmaudio] File not found O4 - HKLM..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe (HP) O4 - HKLM..\Run: [Name of App] C:\Program Files\SAMSUNG\FW LiveUpdate\FWManager.exe ( ) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [SoundMan] C:\windows\SOUNDMAN.EXE (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [WiFiCtrl] C:\Program Files\Hercules\Hercules WiFi Controller Software\WiFiCtrl.exe () O4 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe (Nero AG) O4 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003..\Run: [bootvrfy.exe] C:\Documents and Settings\alex.ALEX-A89BE92523\Local Settings\Temp\bootvrfy.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003..\Run: [Connexion SFR 9props.exe] C:\Program Files\SFR\Kit\9props.exe (SFR) O4 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003..\Run: [Digital Protection] C:\Program Files\Digital Protection\digprot.exe () O4 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.) O4 - HKLM..\RunOnce: [KB976002-v5] C:\WINDOWS\system32\browserchoice.exe (Microsoft Corporation) O4 - HKU\.DEFAULT..\RunOnce: [nltide_2] File not found O4 - HKU\S-1-5-18..\RunOnce: [nltide_2] File not found O4 - HKU\S-1-5-19..\RunOnce: [nltide_2] File not found O4 - HKU\S-1-5-20..\RunOnce: [nltide_2] File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyDocs = 0 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 0 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuPinnedList = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMyMusic = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyDocs = 0 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 0 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuPinnedList = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMyMusic = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyDocs = 0 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 0 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuPinnedList = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMyMusic = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyDocs = 0 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 0 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuPinnedList = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMyMusic = 1 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyDocs = 1 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuPinnedList = 1 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMyMusic = 1 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuNetworkPlaces = 0 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 128 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetworkConnections = 1 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1 O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.) O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/C/0/C/C0CBBA88-A6F2-48D9-9B0E-1719D1177202/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool) O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab (Checkers Class) O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab (Facebook Photo Uploader 5 Control) O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} http://fichiers.touslesdrivers.com/maconfig/MaConfig_4_0_1_3.cab (Ma-Config control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class) O16 - DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab (Java Plug-in 1.6.0_06) O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation) O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation) O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation) O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\Antiwpa: DllName - antiwpa.dll - File not found O20 - Winlogon\Notify\awtrSjKb: DllName - awtrSjKb.dll - File not found O24 - Desktop Components:0 (Ma page d'accueil) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\alex.ALEX-A89BE92523\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\alex.ALEX-A89BE92523\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O28 - HKLM ShellExecuteHooks: {6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C} - Reg Error: Key error. File not found O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009/11/27 23:26:34 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2010/01/17 13:33:33 | 000,000,086 | ---- | M] () - D:\AUTORUN.INF -- [ NTFS ] O34 - HKLM BootExecute: (PDBoot.exe) - C:\windows\System32\PDBoot.exe (Raxco Software, Inc.) O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - C:\WINDOWS\system32\ias [2010/02/04 22:29:12 | 000,000,000 | ---D | M] NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found [color=#E56717]========== Files/Folders - Created Within 7 Days ==========[/color] [2010/05/05 22:18:28 | 000,000,000 | ---D | C] -- C:\_OTL [2010/05/05 22:08:54 | 000,000,000 | ---D | C] -- C:\windows\System32\KB905474 [2010/05/05 22:05:46 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2010/05/05 22:00:43 | 000,000,000 | ---D | C] -- C:\windows\ie7updates [2010/05/05 22:00:34 | 000,000,000 | ---D | C] -- C:\windows\LastGood [2010/05/05 21:33:05 | 000,570,880 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\alex.ALEX-A89BE92523\Bureau\OTL.exe [2010/05/05 21:29:53 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\moviemk.exe [2010/05/05 21:28:28 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\browserchoice.exe [2010/05/05 20:40:44 | 000,000,000 | ---D | C] -- C:\Program Files\Digital Protection [2010/05/05 15:16:23 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Recent [2010/05/05 10:40:14 | 000,162,768 | ---- | C] (ALWIL Software) -- C:\windows\System32\drivers\aswSP.sys [2010/05/05 10:40:14 | 000,019,024 | ---- | C] (ALWIL Software) -- C:\windows\System32\drivers\aswFsBlk.sys [2010/05/05 10:40:13 | 000,023,376 | ---- | C] (ALWIL Software) -- C:\windows\System32\drivers\aswRdr.sys [2010/05/05 10:40:12 | 000,100,432 | ---- | C] (ALWIL Software) -- C:\windows\System32\drivers\aswmon2.sys [2010/05/05 10:40:12 | 000,094,800 | ---- | C] (ALWIL Software) -- C:\windows\System32\drivers\aswmon.sys [2010/05/05 10:40:12 | 000,046,672 | ---- | C] (ALWIL Software) -- C:\windows\System32\drivers\aswTdi.sys [2010/05/05 10:40:11 | 000,028,880 | ---- | C] (ALWIL Software) -- C:\windows\System32\drivers\aavmker4.sys [2010/05/05 10:40:01 | 000,038,848 | ---- | C] (ALWIL Software) -- C:\windows\System32\avastSS.scr [2010/05/05 10:35:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\HTML Executable [2010/05/05 10:27:17 | 000,000,000 | ---D | C] -- C:\windows\System32\LogFiles [2010/05/04 19:12:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Bureau\Nicolas Alexandra LEA 1 Groupe A [2010/05/01 23:55:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Mes documents\Rihanna [2010/04/29 22:30:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Bureau\FAC [4 C:\windows\*.tmp files -> C:\windows\*.tmp -> ] [21 C:\windows\System32\*.tmp files -> C:\windows\System32\*.tmp -> ] [1 C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\*.tmp files -> C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\*.tmp -> ] [color=#E56717]========== Files - Modified Within 7 Days ==========[/color] [2010/05/05 22:13:47 | 000,007,336 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Application Data\fiosejgfse.dll [2010/05/05 22:12:38 | 001,143,530 | ---- | M] () -- C:\windows\System32\PerfStringBackup.INI [2010/05/05 22:12:38 | 000,534,348 | ---- | M] () -- C:\windows\System32\perfh00C.dat [2010/05/05 22:12:38 | 000,461,554 | ---- | M] () -- C:\windows\System32\perfh009.dat [2010/05/05 22:12:38 | 000,096,788 | ---- | M] () -- C:\windows\System32\perfc00C.dat [2010/05/05 22:12:38 | 000,079,666 | ---- | M] () -- C:\windows\System32\perfc009.dat [2010/05/05 22:10:47 | 000,001,355 | ---- | M] () -- C:\windows\imsins.BAK [2010/05/05 22:08:54 | 000,000,260 | ---- | M] () -- C:\windows\tasks\WGASetup.job [2010/05/05 22:04:26 | 000,000,603 | ---- | M] () -- C:\windows\win.ini [2010/05/05 21:55:04 | 000,001,900 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Bureau\Hercules WiFi Controller Software.lnk [2010/05/05 21:46:22 | 001,505,648 | ---- | M] () -- C:\windows\System32\FNTCACHE.DAT [2010/05/05 21:46:19 | 000,000,006 | -H-- | M] () -- C:\windows\tasks\SA.DAT [2010/05/05 21:46:16 | 000,002,048 | --S- | M] () -- C:\windows\bootstat.dat [2010/05/05 21:45:12 | 007,340,032 | -H-- | M] () -- C:\Documents and Settings\alex.ALEX-A89BE92523\NTUSER.DAT [2010/05/05 21:45:12 | 000,000,284 | -HS- | M] () -- C:\Documents and Settings\alex.ALEX-A89BE92523\ntuser.ini [2010/05/05 21:33:05 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\alex.ALEX-A89BE92523\Bureau\OTL.exe [2010/05/05 20:12:57 | 000,000,065 | ---- | M] () -- C:\Documents and Settings\alex.ALEX-A89BE92523\default.pls [2010/05/05 20:12:53 | 000,000,116 | ---- | M] () -- C:\windows\NeroDigital.ini [2010/05/05 15:38:36 | 000,002,573 | ---- | M] () -- C:\Documents and Settings\alex.ALEX-A89BE92523\Bureau\Microsoft Office Word 2003.lnk [2010/05/05 13:27:56 | 000,003,121 | ---- | M] () -- C:\windows\System32\CONFIG.NT [2010/05/05 10:40:15 | 000,001,700 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Bureau\avast! Free Antivirus.lnk [2010/05/05 10:27:09 | 000,000,430 | -H-- | M] () -- C:\windows\tasks\User_Feed_Synchronization-{8E0A8D25-11FE-49B1-860F-D2543086BFC7}.job [2010/05/05 10:22:30 | 000,002,206 | ---- | M] () -- C:\windows\System32\wpa.dbl [2010/05/04 20:49:03 | 000,026,624 | ---- | M] () -- C:\Documents and Settings\alex.ALEX-A89BE92523\Mes documents\Essay 4.doc [2010/05/03 22:24:03 | 000,000,523 | ---- | M] () -- C:\hpfr3420.xml [2010/05/03 17:03:16 | 000,046,592 | ---- | M] () -- C:\Documents and Settings\alex.ALEX-A89BE92523\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010/05/03 16:11:32 | 000,018,944 | ---- | M] () -- C:\Documents and Settings\alex.ALEX-A89BE92523\Bureau\Copie de Groupe A.xls [2010/05/01 18:51:34 | 000,000,156 | ---- | M] () -- C:\windows\Twunk001.MTX [2010/05/01 18:51:34 | 000,000,003 | ---- | M] () -- C:\windows\Twain001.Mtx [2010/04/30 12:45:59 | 000,025,600 | ---- | M] () -- C:\Documents and Settings\alex.ALEX-A89BE92523\Mes documents\_PARTIEL.doc [2010/04/29 17:03:55 | 000,022,842 | ---- | M] () -- C:\Documents and Settings\alex.ALEX-A89BE92523\Mes documents\7ycef69m.jpg [4 C:\windows\*.tmp files -> C:\windows\*.tmp -> ] [21 C:\windows\System32\*.tmp files -> C:\windows\System32\*.tmp -> ] [1 C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\*.tmp files -> C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010/05/05 22:08:54 | 000,000,260 | ---- | C] () -- C:\windows\tasks\WGASetup.job [2010/05/05 22:00:57 | 000,001,355 | ---- | C] () -- C:\windows\imsins.BAK [2010/05/05 10:40:15 | 000,001,700 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Bureau\avast! Free Antivirus.lnk [2010/05/04 23:51:18 | 000,007,336 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Application Data\fiosejgfse.dll [2010/05/04 20:49:03 | 000,026,624 | ---- | C] () -- C:\Documents and Settings\alex.ALEX-A89BE92523\Mes documents\Essay 4.doc [2010/05/03 16:11:32 | 000,018,944 | ---- | C] () -- C:\Documents and Settings\alex.ALEX-A89BE92523\Bureau\Copie de Groupe A.xls [2010/04/30 12:45:59 | 000,025,600 | ---- | C] () -- C:\Documents and Settings\alex.ALEX-A89BE92523\Mes documents\_PARTIEL.doc [2010/04/29 17:03:54 | 000,022,842 | ---- | C] () -- C:\Documents and Settings\alex.ALEX-A89BE92523\Mes documents\7ycef69m.jpg [2009/12/07 18:27:07 | 000,000,050 | ---- | C] () -- C:\windows\wininit.ini [2009/12/07 13:46:30 | 000,000,637 | R--- | C] () -- C:\windows\System32\iconcfg.ini [2009/12/05 16:32:52 | 000,028,672 | R--- | C] () -- C:\windows\System32\cmirmdrv.dll [2009/12/05 15:44:50 | 000,147,456 | ---- | C] () -- C:\windows\System32\RTLCPAPI.dll [2009/11/29 20:41:04 | 000,000,116 | ---- | C] () -- C:\windows\NeroDigital.ini [2009/11/28 20:38:46 | 000,000,385 | ---- | C] () -- C:\windows\ODBC.INI [2003/04/01 06:28:02 | 000,005,260 | ---- | C] () -- C:\windows\System32\OUTLPERF.INI [2002/03/21 13:39:02 | 000,073,728 | ---- | C] () -- C:\windows\System32\UNACEV2.DLL [color=#E56717]========== LOP Check ==========[/color] [2009/11/29 12:42:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex\Application Data\ACD Systems [2009/11/27 23:38:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex\Application Data\Notepad++ [2009/12/05 15:30:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\ACD Systems [2009/12/05 19:10:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\BSplayer [2009/12/05 19:10:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\BSplayer Pro [2010/04/26 19:02:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\gtk-2.0 [2010/05/05 10:35:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\HTML Executable [2009/11/28 20:31:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\Notepad++ [2009/12/06 12:22:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\PhotoFiltre Studio X [2009/12/05 16:01:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\Publish Providers [2009/12/05 16:01:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\Sony [2010/05/05 21:47:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\TeraCopy [2009/11/27 23:38:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ACD Systems [2009/11/28 20:34:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\ACD Systems [2010/01/29 22:59:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Alwil Software [2010/02/04 20:23:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\ma-config.com [2009/12/06 11:15:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Messenger Plus! [2009/12/05 15:54:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Sony [2010/05/05 10:27:09 | 000,000,430 | -H-- | M] () -- C:\windows\Tasks\User_Feed_Synchronization-{8E0A8D25-11FE-49B1-860F-D2543086BFC7}.job [2010/05/05 22:08:54 | 000,000,260 | ---- | M] () -- C:\windows\Tasks\WGASetup.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color] [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2008/06/21 09:56:59 | 018,261,056 | ---- | M] () .cab file -- C:\WINDOWS.0\Driver Cache\i386\sp3.cab:AGP440.sys [2008/06/21 09:56:59 | 018,261,056 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2008/06/21 09:56:59 | 018,261,056 | ---- | M] () .cab file -- C:\WINDOWS.0\Driver Cache\i386\sp3.cab:atapi.sys [2008/06/21 09:56:59 | 018,261,056 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys [2008/04/14 15:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS.0\system32\drivers\atapi.sys [2008/04/14 15:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2008/04/14 15:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS.0\system32\eventlog.dll [2008/04/14 15:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\system32\eventlog.dll [color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color] [2008/04/14 15:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS.0\system32\netlogon.dll [2008/04/14 15:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\system32\netlogon.dll [color=#A23BEC]< MD5 for: SCECLI.DLL >[/color] [2008/04/14 15:00:00 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS.0\system32\scecli.dll [2008/04/14 15:00:00 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\system32\scecli.dll [color=#A23BEC]< MD5 for: VIAMRAID.SYS >[/color] [2008/01/22 19:02:24 | 000,117,248 | ---- | M] (VIA Technologies inc,.ltd) MD5=3A82A61E312ADDB3BE8F1FE3481842B1 -- C:\WINDOWS.0\system32\drivers\viamraid.sys [2004/03/29 06:45:36 | 000,073,600 | R--- | M] (VIA Technologies inc,.ltd) MD5=65864ABA65EEE06EA586009301834E43 -- C:\WINDOWS\system32\drivers\viamraid.sys [color=#A23BEC]< %systemroot%\*. /mp /s >[/color] [color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color] [2010/03/11 13:34:31 | 000,347,136 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\dxtmsft.dll [2010/03/11 13:34:31 | 000,214,528 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\dxtrans.dll [2010/03/11 13:34:35 | 000,192,512 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\iepeers.dll [21 C:\windows\system32\*.tmp files -> C:\windows\system32\*.tmp -> ] [color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color] < End of report >

OBREL · le 07 Mai 2010 18:07

Code: Tout sélectionner: OTL Extras logfile created on: 05/05/2010 22:27:07 - Run 1 OTL by OldTimer - Version 3.2.4.1 Folder = C:\Documents and Settings\alex.ALEX-A89BE92523\Bureau Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 7.0.5730.13) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 1 023,00 Mb Total Physical Memory | 422,00 Mb Available Physical Memory | 41,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 81,00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files Drive C: | 195,31 Gb Total Space | 108,34 Gb Free Space | 55,47% Space Free | Partition Type: NTFS Drive D: | 270,45 Gb Total Space | 270,03 Gb Free Space | 99,85% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: ALEX-A89BE92523 Current User Name: alex Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 7 Days Output = Minimal [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] [HKEY_USERS\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Classes\<extension>] .html [@ = htmlfile] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation) htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "AntiVirusOverride" = 1 "FirewallDisableNotify" = 1 "FirewallOverride" = 1 "UpdatesDisableNotify" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 0 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 "DisableUnicastResponsesToMulticastBroadcast" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 "DisableUnicastResponsesToMulticastBroadcast" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "48113:TCP" = 48113:TCP:LocalSubNet:Enabled:maconfig_tcp "48113:UDP" = 48113:UDP:LocalSubNet:Enabled:maconfig_udp "1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\eMule\eMule.exe" = C:\Program Files\eMule\eMule.exe:*:Enabled:eMule -- (http://www.emule-project.net) "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation) "C:\Program Files\ma-config.com\maconfservice.exe" = C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice -- (CybelSoft) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{01521746-02A6-4A72-00BD-A285DF6B80C6}" = Les Sims 2 Académie "{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3 "{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting "{11F5D779-7BD9-465A-BBC4-10701386BCB9}" = FW LiveUpdate "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer "{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin "{18754BA4-4F0C-4E6E-888B-9496AFA05F43}" = Ma-Config.com "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer "{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 17 "{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3 "{2B6EC03E-6FA0-4D7C-9CCE-1B03819AB613}" = PerfectDisk 2008 Professional "{3248F0A8-6813-11D6-A77B-00B0D0160060}" = Java(TM) 6 Update 6 "{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}" = Microsoft XNA Framework Redistributable 3.0 "{38E1CA6C-2121-4B5C-A3A5-0B0003794EFF}" = Sony Media Manager 2.2 "{3F7924B9-D148-3141-87B1-68F36043A940}" = Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - FRA "{46ABBC54-1872-4AA3-95E2-F2C063A63F31}" = Installation Windows Live "{4908C75E-E5E2-43F7-B1DF-023CBA831036}" = Nero 7 Premium "{511DF669-2930-30C0-8EB6-552887E29EC8}" = Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - FRA "{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3 "{5DD76286-9BE7-4894-A990-E905E91AC818}" = Windows Live Mail "{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All "{6E7DD182-9FC6-4651-0095-2E666CC6AF35}" = Les Sims 2 "{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3 "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{73B5D990-04EA-4751-B10F-5534770B91F2}" = Adobe Color EU Recommended Settings "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{770F1BEC-2871-4E70-B837-FB8525FFA3B1}" = Windows Live Messenger "{7B3577F5-1D82-4C9B-008B-69D026FD8BCA}" = Les Sims 2 : La bonne affaire "{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3 "{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}" = Windows Live Call "{8411FA28-D32D-4518-92F0-3FBD80A702BC}" = Sony Vegas 7.0 "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3 "{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support "{9011040C-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003 "{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3 "{926DEB4E-2B0A-4C5C-AE4A-BF6C06949702}" = Adobe Setup "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{95120000-0122-040C-0000-0000000FF1CE}" = Microsoft Office Outlook Connector "{9A394342-4A68-4EBA-85A6-55B559F4E700}" = Microsoft .NET Framework 1.1 French Language Pack "{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3 "{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI "{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps "{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings "{B2D41883-3BFC-4BA0-A2F6-5A2C9836C238}" = ACDSee 9 Photo Manager "{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0 "{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3 "{BF794769-8875-4E01-B7BE-E00104604F4A}" = Adobe Photoshop CS3 "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2 "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CB85D557-008D-4DC1-9B01-B1B470771860}" = Hercules WiFi Controller "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client "{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files "{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}" = Adobe Color Common Settings "{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}" = Assistant de connexion Windows Live "{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings "{E09B48B5-E141-427A-AB0C-D3605127224A}" = Microsoft SQL Server Desktop Engine (SONY_MEDIAMGR) "{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update "{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3 "{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard "{F7529650-B9DB-481B-0089-A2AC3C2821C1}" = Les Sims 2 : Nuits de Folie "{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio "{FF29A7E2-FF40-4D07-B7E4-2093DE59E10A}" = Adobe Color NA Extra Settings "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Adobe_32e9033392a51340b32fdc6ad893ab7" = Adobe Photoshop CS3 "avast5" = avast! Free Antivirus "CCleaner" = CCleaner (remove only) "CEP - Colour Enable Packages_is1" = CEP (Color Enable Package) v.9.2 (beta) "C-Media Audio Driver" = C-Media WDM Audio Driver "eMule" = eMule "EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.30 "Fraps" = Fraps "GENEUIDE" = USB Storage Driver "hp psc 1200 series_Driver" = hp psc 1200 series "Messenger Plus! Live" = Messenger Plus! Live "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3) "Notepad++" = Notepad++ "PhotoScape" = PhotoScape "Scriptorium_for_TS2_is1" = Scriptorium for TS2 "SFR_Kit" = SFR - Kit de connexion "Sims2Pack Clean Installer " = Sims2Pack Clean Installer "TeraCopy_is1" = TeraCopy 2.0 beta 3 "WinGimp-2.0_is1" = GIMP 2.6.8 "WinLiveSuite_Wave3" = Installation Windows Live "WinRAR archiver" = WinRAR archiver "XpsEPSC" = XML Paper Specification Shared Components Pack 1.0 "XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0 [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "PhotoFiltre Studio X" = PhotoFiltre Studio X [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Antivirus Events ] Error - 25/12/2009 09:39:36 | Computer Name = ALEX-A89BE92523 | Source = avast! | ID = 33554522 Description = [ Application Events ] Error - 26/03/2010 11:15:34 | Computer Name = ALEX-A89BE92523 | Source = Userenv | ID = 1041 Description = Windows ne peut pas effectuer de requête sur l'entrée DllName du Registre pour {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}. Error - 26/03/2010 12:55:42 | Computer Name = ALEX-A89BE92523 | Source = Userenv | ID = 1041 Description = Windows ne peut pas effectuer de requête sur l'entrée DllName du Registre pour {7B849a69-220F-451E-B3FE-2CB811AF94AE}. Error - 26/03/2010 12:55:42 | Computer Name = ALEX-A89BE92523 | Source = Userenv | ID = 1041 Description = Windows ne peut pas effectuer de requête sur l'entrée DllName du Registre pour {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}. Error - 26/03/2010 12:55:42 | Computer Name = ALEX-A89BE92523 | Source = Userenv | ID = 1041 Description = Windows ne peut pas effectuer de requête sur l'entrée DllName du Registre pour {7B849a69-220F-451E-B3FE-2CB811AF94AE}. Error - 26/03/2010 12:55:42 | Computer Name = ALEX-A89BE92523 | Source = Userenv | ID = 1041 Description = Windows ne peut pas effectuer de requête sur l'entrée DllName du Registre pour {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}. Error - 26/03/2010 14:25:43 | Computer Name = ALEX-A89BE92523 | Source = Userenv | ID = 1041 Description = Windows ne peut pas effectuer de requête sur l'entrée DllName du Registre pour {7B849a69-220F-451E-B3FE-2CB811AF94AE}. Error - 26/03/2010 14:25:43 | Computer Name = ALEX-A89BE92523 | Source = Userenv | ID = 1041 Description = Windows ne peut pas effectuer de requête sur l'entrée DllName du Registre pour {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}. Error - 26/03/2010 14:42:42 | Computer Name = ALEX-A89BE92523 | Source = Userenv | ID = 1041 Description = Windows ne peut pas effectuer de requête sur l'entrée DllName du Registre pour {7B849a69-220F-451E-B3FE-2CB811AF94AE}. Error - 26/03/2010 14:42:42 | Computer Name = ALEX-A89BE92523 | Source = Userenv | ID = 1041 Description = Windows ne peut pas effectuer de requête sur l'entrée DllName du Registre pour {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}. Error - 26/03/2010 16:16:43 | Computer Name = ALEX-A89BE92523 | Source = Userenv | ID = 1041 Description = Windows ne peut pas effectuer de requête sur l'entrée DllName du Registre pour {7B849a69-220F-451E-B3FE-2CB811AF94AE}. [ System Events ] Error - 01/05/2010 18:58:38 | Computer Name = ALEX-A89BE92523 | Source = WPDMTPDriver | ID = 80836 Description = MTP WPD Driver has failed to start. Error 0x8007001f. Error - 01/05/2010 18:58:49 | Computer Name = ALEX-A89BE92523 | Source = WPDMTPDriver | ID = 80836 Description = MTP WPD Driver has failed to start. Error 0x8007001f. Error - 01/05/2010 18:59:09 | Computer Name = ALEX-A89BE92523 | Source = WPDMTPDriver | ID = 80836 Description = MTP WPD Driver has failed to start. Error 0x8007001f. Error - 01/05/2010 18:59:34 | Computer Name = ALEX-A89BE92523 | Source = WPDMTPDriver | ID = 80836 Description = MTP WPD Driver has failed to start. Error 0x8007001f. Error - 01/05/2010 18:59:55 | Computer Name = ALEX-A89BE92523 | Source = WPDMTPDriver | ID = 80836 Description = MTP WPD Driver has failed to start. Error 0x8007001f. Error - 01/05/2010 19:02:30 | Computer Name = ALEX-A89BE92523 | Source = WPDMTPDriver | ID = 80836 Description = MTP WPD Driver has failed to start. Error 0x8007001f. Error - 01/05/2010 19:02:47 | Computer Name = ALEX-A89BE92523 | Source = WPDMTPDriver | ID = 80836 Description = MTP WPD Driver has failed to start. Error 0x8007001f. Error - 01/05/2010 19:04:28 | Computer Name = ALEX-A89BE92523 | Source = WPDMTPDriver | ID = 80836 Description = MTP WPD Driver has failed to start. Error 0x8007001f. Error - 05/05/2010 17:01:11 | Computer Name = ALEX-A89BE92523 | Source = NtServicePack | ID = 921877 Description = L'installation du Windows XP KB979306 a échoué. Plus de données sont disponibles . Error - 05/05/2010 17:01:17 | Computer Name = ALEX-A89BE92523 | Source = Windows Update Agent | ID = 20 Description = Échec de l'installation : l'installation de la mise à jour suivante a échoué avec l'erreur 0x800700ea : Mise à jour pour Windows XP (KB979306). < End of report >

OBREL · le 07 Mai 2010 18:43

Code: Tout sélectionner: OTL logfile created on: 07/05/2010 18:35:38 - Run 3 OTL by OldTimer - Version 3.2.4.1 Folder = C:\Documents and Settings\alex.ALEX-A89BE92523\Bureau Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 7.0.5730.13) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 1 023,00 Mb Total Physical Memory | 499,00 Mb Available Physical Memory | 49,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 86,00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files Drive C: | 195,31 Gb Total Space | 104,69 Gb Free Space | 53,60% Space Free | Partition Type: NTFS Drive D: | 270,45 Gb Total Space | 270,03 Gb Free Space | 99,85% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: ALEX-A89BE92523 Current User Name: alex Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 7 Days Output = Minimal [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - C:\Documents and Settings\alex.ALEX-A89BE92523\Local Settings\Temp\asdC.tmp.exe () PRC - C:\Documents and Settings\alex.ALEX-A89BE92523\Bureau\OTL.exe (OldTimer Tools) PRC - C:\Documents and Settings\alex.ALEX-A89BE92523\Local Settings\Temp\bootvrfy.exe (Microsoft Corporation) PRC - C:\Program Files\Alwil Software\Avast5\AvastUI.exe (ALWIL Software) PRC - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (ALWIL Software) PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) PRC - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.) PRC - C:\Program Files\InstallShield Installation Information\{CB85D557-008D-4DC1-9B01-B1B470771860}\setup.exe (Macrovision Corporation) PRC - C:\Program Files\SAMSUNG\FW LiveUpdate\FWManager.exe ( ) PRC - C:\Program Files\SFR\Kit\9props.exe (SFR) PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) PRC - C:\Program Files\Raxco\PerfectDisk2008\PD91Agent.exe (Raxco Software, Inc.) PRC - C:\Program Files\Hercules\Hercules WiFi Controller Software\ConnectionSharing.exe (Thrustmaster) PRC - C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.) PRC - C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe (Nero AG) PRC - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe (Nero AG) PRC - C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe (HP) [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - C:\Documents and Settings\alex.ALEX-A89BE92523\Bureau\OTL.exe (OldTimer Tools) MOD - C:\WINDOWS\system32\msscript.ocx (Microsoft Corporation) [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (ALWIL Software) SRV - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (ALWIL Software) SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (ALWIL Software) SRV - (FLEXnet Licensing Service) -- C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.) SRV - (maconfservice) -- C:\Program Files\ma-config.com\maconfservice.exe (CybelSoft) SRV - (PD91Engine) -- C:\Program Files\Raxco\PerfectDisk2008\PD91Engine.exe (Raxco Software, Inc.) SRV - (PD91Agent) -- C:\Program Files\Raxco\PerfectDisk2008\PD91Agent.exe (Raxco Software, Inc.) SRV - (ose) -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation) SRV - (MSSQL$SONY_MEDIAMGR) -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe (Microsoft Corporation) SRV - (SQLAgent$SONY_MEDIAMGR) -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE (Microsoft Corporation) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - (aswTdi) -- C:\WINDOWS\system32\drivers\aswTdi.sys (ALWIL Software) DRV - (aswSP) -- C:\WINDOWS\system32\drivers\aswSP.sys (ALWIL Software) DRV - (aswRdr) -- C:\WINDOWS\system32\drivers\aswRdr.sys (ALWIL Software) DRV - (aswMon2) -- C:\WINDOWS\system32\drivers\aswmon2.sys (ALWIL Software) DRV - (aswFsBlk) -- C:\WINDOWS\system32\drivers\aswFsBlk.sys (ALWIL Software) DRV - (Aavmker4) -- C:\WINDOWS\system32\drivers\aavmker4.sys (ALWIL Software) DRV - (driverhardwarev2) -- C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys (CybelSoft) DRV - (EverestDriver) -- C:\Program Files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt () DRV - (ALCXWDM) Service for Realtek AC97 Audio (WDM) -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS (Realtek Semiconductor Corp.) DRV - (gameenum) -- C:\WINDOWS\system32\drivers\gameenum.sys (Microsoft Corporation) DRV - (nv) -- C:\WINDOWS\system32\drivers\nv4_mini.sys (NVIDIA Corporation) DRV - (VIAudio) Contrôleur audio VIA AC'97 (WDM) -- C:\WINDOWS\system32\drivers\ac97via.sys (VIA Technologies, Inc.) DRV - (DefragFS) -- C:\WINDOWS\system32\drivers\DefragFS.sys (Raxco Software, Inc.) DRV - (RT73) -- C:\WINDOWS\system32\drivers\rt73.sys (Ralink Technology, Corp.) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://home.microsoft.com/access/allinone.asp IE - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/ IE - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "http://GOOGLE.fr/" FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..network.proxy.type: 1 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/04/22 23:05:41 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/04/03 13:44:59 | 000,000,000 | ---D | M] [2010/02/16 18:19:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\Mozilla\Extensions [2010/05/07 18:21:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\Mozilla\Firefox\Profiles\4unxzosk.default\extensions [2010/05/07 18:21:12 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\Mozilla\Firefox\Profiles\4unxzosk.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010/02/16 18:18:59 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010/01/16 02:10:07 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml [2010/01/16 02:10:07 | 000,001,822 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml [2010/01/16 02:10:07 | 000,000,757 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml [2010/01/16 02:10:07 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml [2010/03/23 21:13:34 | 000,000,956 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml O1 HOSTS File: ([2008/04/14 15:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (no name) - {6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C} - No CLSID value found. O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll (Google Inc.) O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (ALWIL Software) O4 - HKLM..\Run: [Cmaudio] File not found O4 - HKLM..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe (HP) O4 - HKLM..\Run: [Name of App] C:\Program Files\SAMSUNG\FW LiveUpdate\FWManager.exe ( ) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [SoundMan] C:\windows\SOUNDMAN.EXE (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [WiFiCtrl] C:\Program Files\Hercules\Hercules WiFi Controller Software\WiFiCtrl.exe () O4 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe (Nero AG) O4 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003..\Run: [bootvrfy.exe] C:\Documents and Settings\alex.ALEX-A89BE92523\Local Settings\Temp\bootvrfy.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003..\Run: [Connexion SFR 9props.exe] C:\Program Files\SFR\Kit\9props.exe (SFR) O4 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003..\Run: [Digital Protection] C:\Program Files\Digital Protection\digprot.exe File not found O4 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.) O4 - HKU\.DEFAULT..\RunOnce: [nltide_2] File not found O4 - HKU\S-1-5-18..\RunOnce: [nltide_2] File not found O4 - HKU\S-1-5-19..\RunOnce: [nltide_2] File not found O4 - HKU\S-1-5-20..\RunOnce: [nltide_2] File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyDocs = 0 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 0 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuPinnedList = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMyMusic = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyDocs = 0 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 0 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuPinnedList = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMyMusic = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyDocs = 0 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 0 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuPinnedList = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMyMusic = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyDocs = 0 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 0 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuPinnedList = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMyMusic = 1 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyDocs = 1 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuPinnedList = 1 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMyMusic = 1 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuNetworkPlaces = 0 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 128 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetworkConnections = 1 O7 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1 O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.) O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/C/0/C/C0CBBA88-A6F2-48D9-9B0E-1719D1177202/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool) O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab (Checkers Class) O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab (Facebook Photo Uploader 5 Control) O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} http://fichiers.touslesdrivers.com/maconfig/MaConfig_4_0_1_3.cab (Ma-Config control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class) O16 - DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab (Java Plug-in 1.6.0_06) O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation) O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation) O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation) O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\Antiwpa: DllName - antiwpa.dll - File not found O20 - Winlogon\Notify\awtrSjKb: DllName - awtrSjKb.dll - File not found O24 - Desktop Components:0 (Ma page d'accueil) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\alex.ALEX-A89BE92523\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\alex.ALEX-A89BE92523\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O28 - HKLM ShellExecuteHooks: {6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C} - Reg Error: Key error. File not found O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009/11/27 23:26:34 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2010/01/17 13:33:33 | 000,000,086 | ---- | M] () - D:\AUTORUN.INF -- [ NTFS ] O34 - HKLM BootExecute: (PDBoot.exe) - C:\windows\System32\PDBoot.exe (Raxco Software, Inc.) O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - C:\WINDOWS\system32\ias [2010/02/04 22:29:12 | 000,000,000 | ---D | M] NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found [color=#E56717]========== Files/Folders - Created Within 7 Days ==========[/color] [2010/05/07 17:48:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Bureau\Downloads [2010/05/05 22:18:28 | 000,000,000 | ---D | C] -- C:\_OTL [2010/05/05 22:08:54 | 000,000,000 | ---D | C] -- C:\windows\System32\KB905474 [2010/05/05 22:05:46 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2010/05/05 22:00:43 | 000,000,000 | ---D | C] -- C:\windows\ie7updates [2010/05/05 21:33:05 | 000,570,880 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\alex.ALEX-A89BE92523\Bureau\OTL.exe [2010/05/05 21:29:53 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\moviemk.exe [2010/05/05 21:28:28 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\browserchoice.exe [2010/05/05 15:16:23 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Recent [2010/05/05 10:40:14 | 000,162,768 | ---- | C] (ALWIL Software) -- C:\windows\System32\drivers\aswSP.sys [2010/05/05 10:40:14 | 000,019,024 | ---- | C] (ALWIL Software) -- C:\windows\System32\drivers\aswFsBlk.sys [2010/05/05 10:40:13 | 000,023,376 | ---- | C] (ALWIL Software) -- C:\windows\System32\drivers\aswRdr.sys [2010/05/05 10:40:12 | 000,100,432 | ---- | C] (ALWIL Software) -- C:\windows\System32\drivers\aswmon2.sys [2010/05/05 10:40:12 | 000,094,800 | ---- | C] (ALWIL Software) -- C:\windows\System32\drivers\aswmon.sys [2010/05/05 10:40:12 | 000,046,672 | ---- | C] (ALWIL Software) -- C:\windows\System32\drivers\aswTdi.sys [2010/05/05 10:40:11 | 000,028,880 | ---- | C] (ALWIL Software) -- C:\windows\System32\drivers\aavmker4.sys [2010/05/05 10:40:01 | 000,038,848 | ---- | C] (ALWIL Software) -- C:\windows\System32\avastSS.scr [2010/05/05 10:35:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\HTML Executable [2010/05/05 10:27:17 | 000,000,000 | ---D | C] -- C:\windows\System32\LogFiles [2010/05/04 19:12:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Bureau\Nicolas Alexandra LEA 1 Groupe A [2010/05/01 23:55:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Mes documents\Rihanna [4 C:\windows\*.tmp files -> C:\windows\*.tmp -> ] [1 C:\windows\System32\*.tmp files -> C:\windows\System32\*.tmp -> ] [1 C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\*.tmp files -> C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\*.tmp -> ] [color=#E56717]========== Files - Modified Within 7 Days ==========[/color] [2010/05/07 18:52:06 | 000,001,900 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Bureau\Hercules WiFi Controller Software.lnk [2010/05/07 18:51:00 | 000,000,260 | ---- | M] () -- C:\windows\tasks\WGASetup.job [2010/05/07 18:50:48 | 000,000,006 | -H-- | M] () -- C:\windows\tasks\SA.DAT [2010/05/07 18:50:45 | 000,002,048 | --S- | M] () -- C:\windows\bootstat.dat [2010/05/07 18:49:37 | 007,340,032 | -H-- | M] () -- C:\Documents and Settings\alex.ALEX-A89BE92523\NTUSER.DAT [2010/05/07 18:49:37 | 000,000,284 | -HS- | M] () -- C:\Documents and Settings\alex.ALEX-A89BE92523\ntuser.ini [2010/05/07 18:40:13 | 000,000,430 | -H-- | M] () -- C:\windows\tasks\User_Feed_Synchronization-{8E0A8D25-11FE-49B1-860F-D2543086BFC7}.job [2010/05/07 15:39:31 | 000,008,384 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Application Data\fiosejgfse.dll [2010/05/05 22:12:38 | 001,143,530 | ---- | M] () -- C:\windows\System32\PerfStringBackup.INI [2010/05/05 22:12:38 | 000,534,348 | ---- | M] () -- C:\windows\System32\perfh00C.dat [2010/05/05 22:12:38 | 000,461,554 | ---- | M] () -- C:\windows\System32\perfh009.dat [2010/05/05 22:12:38 | 000,096,788 | ---- | M] () -- C:\windows\System32\perfc00C.dat [2010/05/05 22:12:38 | 000,079,666 | ---- | M] () -- C:\windows\System32\perfc009.dat [2010/05/05 22:10:47 | 000,001,355 | ---- | M] () -- C:\windows\imsins.BAK [2010/05/05 22:04:26 | 000,000,603 | ---- | M] () -- C:\windows\win.ini [2010/05/05 21:46:22 | 001,505,648 | ---- | M] () -- C:\windows\System32\FNTCACHE.DAT [2010/05/05 21:33:05 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\alex.ALEX-A89BE92523\Bureau\OTL.exe [2010/05/05 20:12:57 | 000,000,065 | ---- | M] () -- C:\Documents and Settings\alex.ALEX-A89BE92523\default.pls [2010/05/05 20:12:53 | 000,000,116 | ---- | M] () -- C:\windows\NeroDigital.ini [2010/05/05 15:38:36 | 000,002,573 | ---- | M] () -- C:\Documents and Settings\alex.ALEX-A89BE92523\Bureau\Microsoft Office Word 2003.lnk [2010/05/05 13:27:56 | 000,003,121 | ---- | M] () -- C:\windows\System32\CONFIG.NT [2010/05/05 10:40:15 | 000,001,700 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Bureau\avast! Free Antivirus.lnk [2010/05/05 10:22:30 | 000,002,206 | ---- | M] () -- C:\windows\System32\wpa.dbl [2010/05/04 20:49:03 | 000,026,624 | ---- | M] () -- C:\Documents and Settings\alex.ALEX-A89BE92523\Mes documents\Essay 4.doc [2010/05/03 22:24:03 | 000,000,523 | ---- | M] () -- C:\hpfr3420.xml [2010/05/03 17:03:16 | 000,046,592 | ---- | M] () -- C:\Documents and Settings\alex.ALEX-A89BE92523\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010/05/03 16:11:32 | 000,018,944 | ---- | M] () -- C:\Documents and Settings\alex.ALEX-A89BE92523\Bureau\Copie de Groupe A.xls [2010/05/01 18:51:34 | 000,000,156 | ---- | M] () -- C:\windows\Twunk001.MTX [2010/05/01 18:51:34 | 000,000,003 | ---- | M] () -- C:\windows\Twain001.Mtx [4 C:\windows\*.tmp files -> C:\windows\*.tmp -> ] [1 C:\windows\System32\*.tmp files -> C:\windows\System32\*.tmp -> ] [1 C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\*.tmp files -> C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010/05/05 22:08:54 | 000,000,260 | ---- | C] () -- C:\windows\tasks\WGASetup.job [2010/05/05 22:00:57 | 000,001,355 | ---- | C] () -- C:\windows\imsins.BAK [2010/05/05 10:40:15 | 000,001,700 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Bureau\avast! Free Antivirus.lnk [2010/05/04 23:51:18 | 000,008,384 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Application Data\fiosejgfse.dll [2010/05/04 20:49:03 | 000,026,624 | ---- | C] () -- C:\Documents and Settings\alex.ALEX-A89BE92523\Mes documents\Essay 4.doc [2010/05/03 16:11:32 | 000,018,944 | ---- | C] () -- C:\Documents and Settings\alex.ALEX-A89BE92523\Bureau\Copie de Groupe A.xls [2009/12/07 18:27:07 | 000,000,050 | ---- | C] () -- C:\windows\wininit.ini [2009/12/07 13:46:30 | 000,000,637 | R--- | C] () -- C:\windows\System32\iconcfg.ini [2009/12/05 16:32:52 | 000,028,672 | R--- | C] () -- C:\windows\System32\cmirmdrv.dll [2009/12/05 15:44:50 | 000,147,456 | ---- | C] () -- C:\windows\System32\RTLCPAPI.dll [2009/11/29 20:41:04 | 000,000,116 | ---- | C] () -- C:\windows\NeroDigital.ini [2009/11/28 20:38:46 | 000,000,385 | ---- | C] () -- C:\windows\ODBC.INI [2003/04/01 06:28:02 | 000,005,260 | ---- | C] () -- C:\windows\System32\OUTLPERF.INI [2002/03/21 13:39:02 | 000,073,728 | ---- | C] () -- C:\windows\System32\UNACEV2.DLL [color=#E56717]========== LOP Check ==========[/color] [2009/11/29 12:42:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex\Application Data\ACD Systems [2009/11/27 23:38:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex\Application Data\Notepad++ [2009/12/05 15:30:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\ACD Systems [2009/12/05 19:10:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\BSplayer [2009/12/05 19:10:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\BSplayer Pro [2010/04/26 19:02:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\gtk-2.0 [2010/05/05 10:35:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\HTML Executable [2009/11/28 20:31:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\Notepad++ [2009/12/06 12:22:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\PhotoFiltre Studio X [2009/12/05 16:01:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\Publish Providers [2009/12/05 16:01:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\Sony [2010/05/07 18:33:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\alex.ALEX-A89BE92523\Application Data\TeraCopy [2009/11/27 23:38:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ACD Systems [2009/11/28 20:34:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\ACD Systems [2010/01/29 22:59:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Alwil Software [2010/02/04 20:23:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\ma-config.com [2009/12/06 11:15:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Messenger Plus! [2009/12/05 15:54:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Sony [2010/05/07 18:40:13 | 000,000,430 | -H-- | M] () -- C:\windows\Tasks\User_Feed_Synchronization-{8E0A8D25-11FE-49B1-860F-D2543086BFC7}.job [2010/05/07 18:51:00 | 000,000,260 | ---- | M] () -- C:\windows\Tasks\WGASetup.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color] [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2008/06/21 09:56:59 | 018,261,056 | ---- | M] () .cab file -- C:\WINDOWS.0\Driver Cache\i386\sp3.cab:AGP440.sys [2008/06/21 09:56:59 | 018,261,056 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2008/06/21 09:56:59 | 018,261,056 | ---- | M] () .cab file -- C:\WINDOWS.0\Driver Cache\i386\sp3.cab:atapi.sys [2008/06/21 09:56:59 | 018,261,056 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys [2008/04/14 15:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS.0\system32\drivers\atapi.sys [2008/04/14 15:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2008/04/14 15:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS.0\system32\eventlog.dll [2008/04/14 15:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\system32\eventlog.dll [color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color] [2008/04/14 15:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS.0\system32\netlogon.dll [2008/04/14 15:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\system32\netlogon.dll [color=#A23BEC]< MD5 for: SCECLI.DLL >[/color] [2008/04/14 15:00:00 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS.0\system32\scecli.dll [2008/04/14 15:00:00 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\system32\scecli.dll [color=#A23BEC]< MD5 for: VIAMRAID.SYS >[/color] [2008/01/22 19:02:24 | 000,117,248 | ---- | M] (VIA Technologies inc,.ltd) MD5=3A82A61E312ADDB3BE8F1FE3481842B1 -- C:\WINDOWS.0\system32\drivers\viamraid.sys [2004/03/29 06:45:36 | 000,073,600 | R--- | M] (VIA Technologies inc,.ltd) MD5=65864ABA65EEE06EA586009301834E43 -- C:\WINDOWS\system32\drivers\viamraid.sys [color=#A23BEC]< %systemroot%\*. /mp /s >[/color] [color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color] [1 C:\windows\system32\*.tmp files -> C:\windows\system32\*.tmp -> ] [color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color] [color=#A23BEC]< >[/color] < End of report >

Skynet · le 07 Mai 2010 19:20

Bonjour,

je vois que l'avertissement d'AtOM n'a pas suffit. Outre le fait de balancer des rapports sans un "bonjour" et un "merci d'avance" sans oublier le principal "une explication ne serait pas du luxe par un court message"... Tu t'es encore trompé en postant tes rapports dans deux autres sujets qui n'ont rien à voir avec les tiens.

Je viens de les fusionner ici.

Comme tu ne parles pas, on va dire que c'est la barrière de la langue malgré que tu habites/transites en France.

Et pour les erreurs de topic, on va mettre ça sur le compte que tu découvres un forum pour la première fois de ta vie.

Pour ta prochaine réponse (si toutefois il y a une suite), tu peux retrouver l'ensemble de tes messages et sujets sur ton profil : profile-viewprofile-43795.html

Et pour ta demande en cours directement ici : virus-digital-protection-vt-51030.html

Tu dois utiliser le bouton "REPONDRE" en bas à gauche, pour comme tu t'en doutes répondre dans "ton" sujet.

Maintenant que tu as toutes les cartes en main, je n'hésiterais pas à la prochaine erreur et au manque de tact à verrouiller purement et simplement ta demande.

bernard53 · le 07 Mai 2010 19:40

Bonsoir

N'oublies que nous ne sommes pas des robots donc mets des infos s.t.p

Télécharge >> TFC.exe << impérativement sur ton bureau

Ferme tous les programmes en cour de fonctionnement...

Valide START pour lancer TFC

Une demande va apparaitre pour te demander de redémarrer ton pc, cliques sur "YES" et laisse faire TFC.

Ensuite ceci.

* Fait un double-clic sur l'icône d'OTL pour le lancer
/!\ pour Vista/Seven fais un clic-droit sur l'icône d'OTL et choisis "Exécuter en tant qu'administrateur"

* Assure-toi d'avoir fermé toutes les applications en court de fonctionnement.

* Quand la fenêtre d'OTL apparaît, assure toi que dans la section "Rapport" (en haut à droite) la case " Rapport minimal" soit cochée.

* Copies et colles le contenue de cette citation dans la partie inférieure d'OTL "Personnalisation"

:OTL
PRC - C:\Documents and Settings\alex.ALEX-A89BE92523\Local Settings\Temp\asdC.tmp.exe ()
PRC - C:\Program Files\Digital Protection\digprot.exe ()
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (no name) - {6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4 - HKLM\..\Run: [Cmaudio] File not found
O4 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\..\Run: [bootvrfy.exe] C:\Documents and Settings\alex.ALEX-A89BE92523\Local Settings\Temp\bootvrfy.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-823518204-1060284298-1177238915-1003\..\Run: [Digital Protection] C:\Program Files\Digital Protection\digprot.exe ()
O4 - HKU\.DEFAULT\..\RunOnce: [nltide_2] File not found
O4 - HKU\S-1-5-18\..\RunOnce: [nltide_2] File not found
O4 - HKU\S-1-5-19\..\RunOnce: [nltide_2] File not found
O4 - HKU\S-1-5-20\..\RunOnce: [nltide_2] File not found
O20 - Winlogon\Notify\Antiwpa: DllName - antiwpa.dll - File not found
O20 - Winlogon\Notify\awtrSjKb: DllName - awtrSjKb.dll - File not found
O28 - HKLM ShellExecuteHooks: {6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C} - Reg Error: Key error. File not found
:Files
C:\Program Files\Digital Protection
C:\Documents and Settings\All Users.WINDOWS\Application Data\fiosejgfse.dll

* Cliques sur l'icône Correction (en haut à gauche) .
* Laisse le scan aller à son terme sans te servir du PC
* A la fin du scan un ou deux rapports vont s'ouvrir "OTL.Txt" et ( ou ) "Extras.Txt"( dans certains cas).
* Copie et colle le ou les rapports dans ta réponse stp...
* Au cas où, tu peux les retrouver dans le dossier C:\OTL ou sur ton bureau en fonction des cas rencontrés

OBREL · le 07 Mai 2010 22:23

Je vous prie de bien vouloir m'excuser, je suis novice et donc je n'avais pas vraiment compris le fonctionnement du forum, a présent grâce a vous je sais.

je vous colle le rapport et merci encore.

========== OTL ==========
No active process named asdC.tmp.exe was found!
No active process named digprot.exe was found!
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked not found.
Registry key HKEY_LOCAL_MACHINE\\Software\Microsoft\Windows\CurrentVersion\Run not found.
Registry value HKEY_USERS\S-1-5-21-823518204-1060284298-1177238915-1003\\Software\Microsoft\Windows\CurrentVersion\Run\\bootvrfy.exe not found.
File C:\Documents and Settings\alex.ALEX-A89BE92523\Local Settings\Temp\bootvrfy.exe not found.
Registry value HKEY_USERS\S-1-5-21-823518204-1060284298-1177238915-1003\\Software\Microsoft\Windows\CurrentVersion\Run\\Digital Protection not found.
File C:\Program Files\Digital Protection\digprot.exe not found.
Registry value HKEY_USERS\.DEFAULT\\Software\Microsoft\Windows\CurrentVersion\RunOnce\\nltide_2 not found.
Registry value HKEY_USERS\S-1-5-18\\Software\Microsoft\Windows\CurrentVersion\RunOnce\\nltide_2 not found.
Registry value HKEY_USERS\S-1-5-19\\Software\Microsoft\Windows\CurrentVersion\RunOnce\\nltide_2 not found.
Registry value HKEY_USERS\S-1-5-20\\Software\Microsoft\Windows\CurrentVersion\RunOnce\\nltide_2 not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Antiwpa\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\awtrSjKb\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C}\ not found.
========== FILES ==========
File\Folder C:\Program Files\Digital Protection not found.
File\Folder C:\Documents and Settings\All Users.WINDOWS\Application Data\fiosejgfse.dll not found.

OTL by OldTimer - Version 3.2.4.1 log created on 05072010_221800

Skynet · le 07 Mai 2010 22:29

OBREL a écrit:je suis novice et donc je n'avais pas vraiment compris le fonctionnement du forum

Aucun problème dans ce cas

. Tu es le ou la bienvenue sur le forum.

Bon courage pour la suite.

P.S. : Je vais réduire les anciens rapports pour plus de clarté

.

OBREL · le 07 Mai 2010 22:32

Merci beaucoup pour votre compréhension.

Skynet · le 07 Mai 2010 22:39

C'est bien normal. On a tous débuté un jour.

A ce moment-là peut-être que la FAQ du forum te renseignera un peu plus sur le fonctionnement : faq.php <====

Sinon n'hésite pas à poser des questions au besoin.

Je laisse la place à Bernard53.

Bonne fin de soirée.

bernard53 · le 08 Mai 2010 12:44

OK pour le rapport OBREL

fait ceci et après dis moi comment va ton pc.

Télécharge CCLEANER

TUTO

Fait un nettoyage comme cela :

**Décoche la case dans Options –avancé- Effacer uniquement les fichiers, du dossier temp de Windows : plus vieux que 24 Heures

Recocher cette case une fois le premier nettoyage effectué

1-Élimine les fichiers temporaires et les traces ( onglet nettoyeur )

que vous laissez en naviguant sur Internet ou bien en ouvrant simplement des fichiers avec n'importe quel logiciel sous Windows : le Lecteur Windows Media, Emule, Office, Nero, Adobe Reader, etc.

Puis:

Installe Malewarebytes' Antimalware,
Téléchargement

*** Met-le à jour puis choisi, Exécuter un examen complet

*** Si une infection est trouvée, coche la case a coté et valides avec l’Onglet Supprimer la sélection

Poste le rapport final.
*** il est conseillé de désactivé Tea-Timer si tu as Spybot-S&D juste le temps du scan.

Voici comment faire: Lancez Spybot-S&D, passez en Mode avancé via le Menu Mode (en haut) → cliquez sur Oui--> choisissez Outils dans la barre de navigation sur la gauche -->Résident et là vous pouvez décocher les cases situées devant les deux outils.

Autre virus digital protection

Autre virus digital protection

Re: Autre virus digital protection

Re: Autre virus digital protection

Re: Autre virus digital protection

Re: Autre virus digital protection

Re: Autre virus digital protection

Re: Autre virus digital protection

Sujets similaires

Qui est en ligne