Impossible démarrer Avast, Ccleaner, etc... - log joint

Sécurité et insécurité. Virus, Trojans, Spywares, Failles etc. …

Modérateur: Modérateurs et Modératrices

Règles du forum
Assiste.com a suspendu l'assistance à la décontamination après presque 15 ans sur l'ancien forum puis celui-ci. Voir :

Procédure de décontamination 1 - Anti-malware
Décontamination anti-malwares

Procédure de décontamination 2 - Anti-malware et antivirus (La Manip)
La Manip - Procédure standard de décontamination

Entretien périodique d'un PC sous Windows
Entretien périodique d'un PC sous Windows

Protection des navigateurs, de la navigation et de la vie privée
Protéger le navigateur, la navigation et la vie privée

Impossible démarrer Avast, Ccleaner, etc... - log joint

Messagede Wildcat » 04 Fév 2009, 20:45

Bonjour,

And again... sur config XP.

Impossible de démarrer Avast, Ccleaner, et impossible de démarrer en mode sans echec !!

AOL spyware a bloqué les éléments suivants:

- Bagdrop
- Trojan.Mitglieder.M
- Higlider

Lorsqu'on essaye de lancer Avast, le message indique que ashAvast.exe n'est pas une application Win32 valide.

Habituellement, je fais quand même quelques tentatives avant de poster ici, mais là, vu l'impossibilité de démarrer en mode sans echec...

Voici le log: HJT1.txt => je sais, c'est Hitjack 1.99. J'ai télépchargé la nouvelle version, installer, et là, devinez quoi?... lorsque je veux lancer la nouvelle version, j'ai le message indiquant que Hijack n'est pas une application Win32 valide...
Code: Tout sélectionner
Logfile of HijackThis v1.99.1
Scan saved at 19:09:51, on 04/02/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Multimedia Keyboard Driver\V5\KMWDSrv.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
C:\Program Files\Fichiers communs\AOL\1203422821\ee\AOLSoftware.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\AirPort\APAgent.exe
C:\Program Files\Multimedia Keyboard Driver\V5\StartAutorun.exe
C:\Program Files\Multimedia Keyboard Driver\V5\KMConfig.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Multimedia Keyboard Driver\V5\KMProcess.exe
C:\Program Files\AOL 9.0b\aoltray.exe
c:\program files\fichiers communs\aol\1203422821\ee\services\antiSpywareApp\ver2_0_28_1\AOLSP Scheduler.exe
c:\program files\fichiers communs\aol\1203422821\ee\aolsoftware.exe
C:\Program Files\Philips\Philips SPC230NC Webcam\TrayMin230.exe
C:\Program Files\Hercules\WiFi Station\WifiStation.exe
C:\Documents and Settings\PropriÈtaire\Application Data\Microsoft\Live Search\Notification-LiveSearch.exe
C:\Documents and Settings\PropriÈtaire\Application Data\Microsoft\Live Search\Mise-a-jour-LiveSearch.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
D:\Depannage\Hijack\Wildcat.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,First Home Page = C:\Program Files\AOL Toolbar\welcome.html
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: AIM Toolbar Search Class - {03402f96-3dc7-4285-bc50-9e81fefafe43} - C:\Program Files\AIM Toolbar\aimtb.dll
R3 - URLSearchHook: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AIM Toolbar Loader - {b0cda128-b425-4eef-a174-61a11ac5dbf8} - C:\Program Files\AIM Toolbar\aimtb.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: AIM Toolbar - {61539ecd-cc67-4437-a03c-9aaccbd14326} - C:\Program Files\AIM Toolbar\aimtb.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [JMB36X Configure] C:\WINDOWS\system32\JMRaidSetup.exe boot
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [Omnipage] C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Fichiers communs\AOL\1203422821\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [AirPort Base Station Agent] "C:\Program Files\AirPort\APAgent.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [KMConfig] "C:\Program Files\Multimedia Keyboard Driver\V5\StartAutorun.exe" KMConfig.exe
O4 - HKLM\..\Run: [SPC230NC_Monitor] C:\WINDOWS\Philips\SPC230NC\Monitor.exe
O4 - HKLM\..\Run: [SPC_Monitor] C:\WINDOWS\Philips\SPC230NC\Monitor.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Philips Intelligent Agent] "C:\Program Files\Philips\Intelligent Agent\Philips Intelligent Agent.exe" /SILENT
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - Startup: Outil de notification Live Search.lnk = ?
O4 - Global Startup: Aide.lnk = C:\Program Files\Alwil Software\Avast4\FRENCH\HELP\help.chm
O4 - Global Startup: AOL 9.0 IcÙne AOL.lnk = C:\Program Files\AOL 9.0b\aoltray.exe
O4 - Global Startup: avast! Antivirus.lnk = C:\Program Files\Alwil Software\Avast4\ashAvast.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: Site Web avast!.url
O4 - Global Startup: TrayMin230.lnk = ?
O4 - Global Startup: WiFi Station.lnk = ?
O8 - Extra context menu item: &AIM Toolbar Search - C:\Documents and Settings\All Users\Application Data\AIM Toolbar\ieToolbar\resources\en-US\local\search.html
O8 - Extra context menu item: &Recherche AOL Toolbar - c:\program files\aol\aol toolbar 5.0\resources\fr-fr\local\search.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Ajouter ‡ la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint PrÈvisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O9 - Extra button: AIM Toolbar - {0b83c99c-1efa-4259-858f-bcb33e007a5b} - C:\Program Files\AIM Toolbar\aimtb.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL
O11 - Options group: [INTERNATIONAL] International*
O13 - Gopher Prefix:
O16 - DPF: {049A470D-F818-4E34-B14D-E4E237DADCF8} (CPlayFirstFashionDasControl Object) - http://download.playfirst.com/play/game/fashiondash/fashiondashweb.1.0.0.21.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {3107C2A8-9F0B-4404-A58B-21BD85268FBC} (PogoWebLauncher Control) - http://www.pogo.com/cdl/launcher/PogoWebLauncherInstaller.CAB
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3/resources/MSNPUpld.cab
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://copainsdavant.linternaute.com/framework/lib/objimageuploader/html_include/5.1.1.0/ImageUploader5.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1204310147937
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1204310862125
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://menki.spaces.live.com/PhotoUpload/MsnPUpld.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D8089245-3211-40F6-819B-9E5E92CD61A2} (FlashXControl Object) - https://signin2.valueactive.com/Register/Branding/olr3313/OCX/v1018/flashax.cab
O16 - DPF: {E41BA393-9078-424E-9554-9DB5126F5F4C} (CPlayFirstDreamChronControl Object) - http://download.playfirst.com/play/game/dreamchronicles2/dream2web.1.0.0.13.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\FICHIE~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O20 - Winlogon Notify: LBTWlgn - c:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Avira Premium Security Suite MailGuard (AntiVirMailService) - Avira GmbH - C:\Program Files\Avira\Avira Premium Security Suite\avmailc.exe
O23 - Service: Avira Premium Security Suite Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\Avira Premium Security Suite\sched.exe
O23 - Service: Avira Premium Security Suite Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\Avira Premium Security Suite\avguard.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: IIS Restart API Proxy dll (iisrstap32) - Unknown owner - rundll32.exe (file missing)
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf (file missing)
O23 - Service: Keyboard And Mouse Communication Service (KMWDSERVICE) - UASSOFT.COM - C:\Program Files\Multimedia Keyboard Driver\V5\KMWDSrv.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe



En espérant que vous pourrez (comme d'habitude) faire des miracles.
Avatar de l’utilisateur
Wildcat
 
Messages: 72
Inscription: 01 Mai 2006, 17:51

Messagede nickW » 05 Fév 2009, 00:31

Bonsoir,

Recherche ciblée:


Note: Ces manips doivent être effectuées en ayant ouvert une session avec les "droits Administrateur" (ne pas utiliser le profil utilisateur nommé "Administrateur" visible en mode sans échec).
Sous Windows XP, pour vérifier si un compte a les droits "Administrateur":
Démarrer---->Paramètres---->Panneau de configuration---->Comptes d'utilisateurs
A côté de l'icône représentant certains comptes (hormis celui nommé "Administrateur"), il est indiqué "Administrateur de l'ordinateur"
C'est l'un de ces comptes qu'il faudra utiliser.



Étape 1: FindyKill (de Chiquitine29), installation et recherche
Télécharger FindyKill.exe via un clic droit (suivi de Enregistrer sous....) sur le lien ci-dessous:
http://sd-1.archive-host.com/membres/up ... dyKill.exe
Enregistrer ce fichier sur le Bureau.

Faire un double clic sur le fichier téléchargé FindyKill.exe pour lancer l'installation.
Accepter tous les paramètres par défaut (en cliquant sur Suivant, en cochant "Je suis d'accord...." suivi d'un clic sur Suivant, puis en cliquant sur Suivant, et enfin sur Démarrer). En fin d'installation, cliquer sur Quitter.

Brancher les périphériques de stockage externes (clé USB, disque dur externe, etc...).

Faire un double clic sur le raccourci FindyKill situé sur le Bureau.

Sur le menu principal, choisir l'option 1 (Recherche de fichiers infectieux) et valider en appuyant sur la touche Entrée.
Les icônes du Bureau et le Menu Démarrer vont disparaître: c'est normal.
Lorsque la recherche est terminée, appuyer sur une touche pour provoquer l'ouverture d'une fenêtre du Bloc-notes contenant le résultat de l'analyse. Fermer le Bloc-notes.


Étape 2: Résultat
Envoyer en réponse le contenu du fichier SystemDrive\FindyKill.txt
[SystemDrive représente la partition sur laquelle est installé le système, généralement C:]

A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Messagede Wildcat » 05 Fév 2009, 18:40

mmmm... yabon à dégager... :-)

Voici le FindyKill.txt



###################### [ FindyKill V4.715 ]

# User : PropriÇtaire - VINY-71E5D7ACCC
# Emplacement : C:\Program Files\FindyKill
# Outils Mis a jours 29/01/09 par Chiquitine29
# Recherche effectuÈe ‡ 18:31:21 le 05/02/2009
# Windows XP - Internet Explorer 7.0.5730.13

# [ FindyKill V4.715 - Scan ] ##############

\\\\\\\\\\\\\\\\\\\\ [ Processus actifs ] ///////////////////


C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Multimedia Keyboard Driver\V5\KMWDSrv.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
C:\Program Files\Fichiers communs\AOL\1203422821\ee\AOLSoftware.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\AirPort\APAgent.exe
C:\Program Files\Multimedia Keyboard Driver\V5\StartAutorun.exe
C:\Program Files\Multimedia Keyboard Driver\V5\KMConfig.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Multimedia Keyboard Driver\V5\KMProcess.exe
C:\Documents and Settings\PropriÈtaire\Application Data\drivers\winupgro.exe
C:\Documents and Settings\PropriÈtaire\Application Data\m\flec006.exe
C:\WINDOWS\system32\wintems.exe
C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe
C:\Program Files\AOL 9.0b\aoltray.exe
C:\Program Files\AOL 9.0b\waol.exe
c:\program files\fichiers communs\aol\1203422821\ee\services\antiSpywareApp\ver2_0_28_1\AOLSP Scheduler.exe
c:\program files\fichiers communs\aol\1203422821\ee\aolsoftware.exe
C:\Program Files\Fichiers communs\Aol\aoltpspd.exe

\\\\\\\\\\\\\\\\\\ [ Processus infectieux stoppÈs ] ///////////////////


"C:\Documents and Settings\PropriÈtaire\Application Data\drivers\winupgro.exe" (1820)
"C:\Documents and Settings\PropriÈtaire\Application Data\m\flec006.exe" (1896)
"C:\WINDOWS\system32\wintems.exe" (2116)


\\\\\\\\\\\\\\\\\\ [ Fichiers/Dossiers infectieux ] ///////////////////


################## [ C:\ ]

Found ! [05/02/2009 17:31] - "C:\Avenger"
Found ! [05/02/2009 17:46] - C:\InfoSat.txt

################## [ C:\WINDOWS ]


################## [ C:\WINDOWS\Prefetch ]


################## [ C:\WINDOWS\system32 ]

Found ! [05/02/2009 17:45] - C:\WINDOWS\system32\mdelk.exe
Found ! [05/02/2009 17:45] - C:\WINDOWS\system32\wintems.exe

################## [ C:\WINDOWS\system32\drivers ]


################## [ C:\Documents and Settings\PropriÇtaire\Application Data ]

Found ! [05/02/2009 17:36] - "C:\Documents and Settings\PropriÇtaire\Application Data\m\flec006.exe"
Found ! [05/02/2009 17:39] - "C:\Documents and Settings\PropriÇtaire\Application Data\m\shared"
Found ! [05/02/2009 17:46] - "C:\Documents and Settings\PropriÇtaire\Application Data\m"
Found ! [05/02/2009 17:46] - "C:\Documents and Settings\PropriÇtaire\Application Data\drivers"
Found ! [05/02/2009 18:27] - "C:\Documents and Settings\PropriÇtaire\Application Data\drivers\srosa2.sys"
Found ! [05/02/2009 18:27] - "C:\Documents and Settings\PropriÇtaire\Application Data\drivers\wfsintwq.sys"
Found ! [02/07/2006 04:10] - "C:\Documents and Settings\PropriÇtaire\Application Data\drivers\winupgro.exe"
Found ! [05/02/2009 17:46] - "C:\Documents and Settings\PropriÇtaire\Application Data\drivers\downld"

################## [ C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp ]


\\\\\\\\\\\\\\\\\\ [ Registre / Startup ] ///////////////////

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
CTFMON.EXE=C:\WINDOWS\system32\ctfmon.exe
BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}="C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe"
Philips Intelligent Agent="C:\Program Files\Philips\Intelligent Agent\Philips Intelligent Agent.exe" /SILENT
AlcoholAutomount="C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
Uniblue RegistryBooster 2009=C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe /S

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
NvCplDaemon=RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
nwiz=nwiz.exe /install
NvMediaCenter=RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
JMB36X Configure=C:\WINDOWS\system32\JMRaidSetup.exe boot
AOLDialer=C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe
QuickTime Task="C:\Program Files\QuickTime\QTTask.exe" -atboottime
Omnipage=C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
HostManager=C:\Program Files\Fichiers communs\AOL\1203422821\ee\AOLSoftware.exe
RTHDCPL=RTHDCPL.EXE
SkyTel=SkyTel.EXE
RealTray=C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
AirPort Base Station Agent="C:\Program Files\AirPort\APAgent.exe"
NeroFilterCheck=C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe
NBKeyScan="C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
Kernel and Hardware Abstraction Layer=KHALMNPR.EXE
Logitech Hardware Abstraction Layer=KHALMNPR.EXE
KMConfig="C:\Program Files\Multimedia Keyboard Driver\V5\StartAutorun.exe" KMConfig.exe
SPC230NC_Monitor=C:\WINDOWS\Philips\SPC230NC\Monitor.exe
SPC_Monitor=C:\WINDOWS\Philips\SPC230NC\Monitor.exe
avast!=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
SunJavaUpdateSched="C:\Program Files\Java\jre6\bin\jusched.exe"
Ad-Watch=C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe

[HKEY_CURRENT_USER\software\local appwizard-generated applications\edfgdgdfjghj]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\hldrrr]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\mdelk]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\NMBgMonitor]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\run]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\tisspwiz]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\Wild_West_Wendy_1.1]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\winupgro]

\\\\\\\\\\\\\\\\\\ [ Registre / ClÈs infectieuses ] ///////////////////


Found ! - HKEY_USERS\S-1-5-21-1078081533-789336058-725345543-1002\Software\Local AppWizard-Generated Applications\hldrrr
Found ! - HKEY_USERS\S-1-5-21-1078081533-789336058-725345543-1002\Software\Local AppWizard-Generated Applications\mdelk
Found ! - HKEY_USERS\S-1-5-21-1078081533-789336058-725345543-1002\Software\Local AppWizard-Generated Applications\winupgro
Found ! - HKEY_USERS\S-1-5-21-1078081533-789336058-725345543-1002\Software\bisoft
Found ! - HKEY_USERS\S-1-5-21-1078081533-789336058-725345543-1002\Software\DateTime4
Found ! - HKEY_USERS\S-1-5-21-1078081533-789336058-725345543-1002\Software\MuleAppData
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\hldrrr
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\mdelk
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\winupgro
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SROSA
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_SROSA
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sK9Ou0s
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sK9Ou0s
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sK9Ou0s
Found ! - HKEY_CURRENT_USER\Software\bisoft
Found ! - HKEY_CURRENT_USER\Software\DateTime4
Found ! - [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] | drvsyskit
Found ! - [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] | german.exe
Found ! - [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] | mule_st_key

/!\ Infection active : HKLM\SYSTEM\...\Services\srosa -> Start = 0x1
/!\ Infection active : HKLM\SYSTEM\...\Services\sK9Ou0s -> Start = 0x1

\\\\\\\\\\\\\\\\\\ [ Etat / Services ] ///////////////////

# ClÈ manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot

/!\ Mode sans echec non fonctionnel !!

# ClÈ manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal

/!\ Mode sans echec non fonctionnel !!

# ClÈ manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network

/!\ Mode sans echec non fonctionnel !!


# Services : [ Auto=2 / Demande=3 / DÈsactivÈ=4 ]

/!\ Ndisuio - # Type de dÈmarrage = 4

/!\ Ip6Fw - # Type de dÈmarrage = 4

/!\ SharedAccess - # Type de dÈmarrage = 4

/!\ wuauserv - # Type de dÈmarrage = 4

/!\ wscsvc - # Type de dÈmarrage = 4


\\\\\\\\\\\\\\\\\\ [ Recherche dans supports amovibles] ///////////////////


# Informations :

C: - Lecteur fixe

D: - Lecteur fixe

G: - Lecteur fixe

J: - Lecteur amovible


# Contenu de l'autorun : J:\autorun.inf

[autorun]
open=RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\ise32.exe
icon=%SystemRoot%\system32\SHELL32.dll,4
action=Open folder to view files
shell\open=Open
shell\open\command=RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\ise32.exe
shell\open\default=1

# presence des fichiers :

Found ! [20/06/2008 23:03][-rahs----] - J:\autorun.inf


\\\\\\\\\\\\\\\\\\ [ Registre / Mountpoint2 ] ///////////////////


-> Not found !


################## [ ! Fin du rapport # FindyKill V4.715 ! ]

Voilà, voilà... J: c'est la clé USB que j'ai utilisée. Je m'en sers pour transférer les fichiers (Findykill.exe et le txt) car le PC XP n'a plus de connection internet non plus maintenant... Je suis sur mac, j'espère donc que ce qui se trouve sur la clé ne peut pas infecté mon ordinateur...

D'avance, merci pour les prochaines étapes ;-)
Avatar de l’utilisateur
Wildcat
 
Messages: 72
Inscription: 01 Mai 2006, 17:51

Messagede nickW » 06 Fév 2009, 00:58

Bonsoir,

Nettoyage:

Note: Ces manips doivent être effectuées en ayant ouvert une session avec les "droits Administrateur" (ne pas utiliser le profil utilisateur nommé "Administrateur" visible en mode sans échec).

Étape 1: FindyKill (de Chiquitine29), nettoyage
Brancher les périphériques de stockage externes (clé USB, disque dur externe, etc...).

Faire un double clic sur le raccourci FindyKill situé sur le Bureau.

Sur le menu principal, choisir l'option 2 (Suppression des fichiers infectieux) et valider en appuyant sur la touche Entrée.
Cliquer sur OK dans la fenêtre d'information.
Les icônes du Bureau et le Menu Démarrer vont disparaître: c'est normal.
Le PC va redémarrer deux fois (appuyer sur une touche quand demandé).

Lorsque le nettoyage est terminé, appuyer sur une touche pour provoquer l'ouverture d'une fenêtre du Bloc-notes contenant le résultat. Fermer le Bloc-notes.


Étape 2: Résultat
Envoyer en réponse:
*- le rapport de FindyKill (contenu du fichier SystemDrive\FindyKill.txt).
[SystemDrive représente la partition sur laquelle est installé le système, généralement C:]




Ceci fait, il est indispensable de désinstaller puis réinstaller ton logiciel antivirus/pare-feu: Avira Premium Security Suite.


A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Messagede nickW » 06 Fév 2009, 01:01

Re-Bonsoir,

Après avoir effectué les manips du message précédent, création de deux rapports détaillés:

Note: Ces manips doivent être effectuées en ayant ouvert une session avec les "droits Administrateur" (ne pas utiliser le profil utilisateur nommé "Administrateur" visible en mode sans échec).


Étape 1: OTListIt2 (de OldTimer), téléchargement
Télécharger OTListIt2.exe depuis http://oldtimer.geekstogo.com/OTListIt2.exe
Enregistrer ce fichier sur le Bureau.


Étape 2: OTListIt2 (de OldTimer)
Fermer toutes les fenêtres de programme ouvertes.

Faire un double clic sur OTListIt2.exe pour lancer l'outil.

L'écran principal de OTListIt2 s'affiche:
Image

Si ce n'est déjà fait, dans le paragraphe Extra Registry, cocher le bouton-radio Use SafeList

Cocher (en haut) la case située devant Scan All Users: Image

Puis cliquer sur le bouton Run Scan: Image

Laisser l'outil travailler sans l'interrompre.
Lorsque l'outil a terminé, il y a ouverture d'une fenêtre du Bloc-notes contenant un rapport (log).
Fermer le Bloc-notes.
Le second rapport est visible dans la Barre des tâches. Le fermer également.
Fermer la fenêtre de OTListIt2.


Étape 3: Résultats
Envoyer ensuite en réponse dans deux messages distincts (à cause de la longueur des logs):
*- les deux rapports de OTListIt2 (contenu des fichiers OTListIt.txt et Extras.txt situés sur le Bureau).
Les rapports envoyés sur le forum doivent se terminer par une ligne contenant <End>. Si ce n'est pas le cas, ils sont incomplets, et doivent alors être découpés en plusieurs messages.

Note importante: Pour l'envoi de ta(tes) réponse(s), il ne faut pas créer un nouveau sujet, mais cliquer sur le bouton "Répondre"
Image pour continuer dans ce fil de discussion.

A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Messagede Wildcat » 28 Fév 2009, 18:59

Bonjour/Bonsoir,

Navrée d'avoir attendu si longtemps, mais un déménagement plus tard, me revoici...

Je vais poster les 3 rapport: FindKill, puis OTListIt, puis Extras.

Mon ami a fait des manips en solo (sans rien dire), donc, je ne sais pas si l'on peut vraiment reprendre la désinfection à partir de là...

Je lespère en tout cas... :Mouaaarrrrffffffff:

1) FindKill le 28/02/09 - option 2 (suppression)


############################## [ FindyKill V4.718 ]


############################## [ Active Processes ]

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Windows Live\Family Safety\fsssvc.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Multimedia Keyboard Driver\V5\KMWDSrv.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\System32\alg.exe
C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
C:\Program Files\Fichiers communs\AOL\1203422821\ee\AOLSoftware.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\AirPort\APAgent.exe
C:\Program Files\Multimedia Keyboard Driver\V5\StartAutorun.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Multimedia Keyboard Driver\V5\KMConfig.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Windows Live\Family Safety\fsui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Multimedia Keyboard Driver\V5\KMProcess.exe
c:\program files\fichiers communs\aol\1203422821\ee\services\antiSpywareApp\ver2_0_28_1\AOLSP Scheduler.exe
c:\program files\fichiers communs\aol\1203422821\ee\aolsoftware.exe
C:\Program Files\AOL 9.0b\aoltray.exe
C:\Program Files\Philips\Philips SPC230NC Webcam\TrayMin230.exe
C:\Program Files\Hercules\WiFi Station\WifiStation.exe
C:\Documents and Settings\Propriétaire\Application Data\Microsoft\Live Search\Notification-LiveSearch.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Propriétaire\Application Data\Microsoft\Live Search\Mise-a-jour-LiveSearch.exe

################## [ Infected Files / Folders C:\ ]


################## [ C:\WINDOWS ]


################## [ C:\WINDOWS\system32 ]


################## [ C:\WINDOWS\system32\drivers ]


################## [ C:\.. Application Data ... ]


################## [ Registry / Infected keys ]


################## [ Cleaning Removable drives ]

# Deleting files :

Not deleted !! - E:\autorun.inf

################## [ Registry / Mountpoint2 ]

# -> Not found !

################## [ Searching Other Infections ]


################## [ PEH Corrupted ]

C:\Documents and Settings\Propriétaire\Bureau\jeux gestion temps\Turbo_Fiesta\Turbo Fiesta\Fix\Launch.exe
C:\Program Files\3DO\Support\SysInfo.exe
C:\Program Files\Avira\Avira Premium Security Suite\avadmin.exe
C:\Program Files\Avira\Avira Premium Security Suite\avcenter.exe
C:\Program Files\Avira\Avira Premium Security Suite\avconfig.exe
C:\Program Files\Avira\Avira Premium Security Suite\avesvc.exe
C:\Program Files\Avira\Avira Premium Security Suite\avfwsvc.exe
C:\Program Files\Avira\Avira Premium Security Suite\avgnt.exe
C:\Program Files\Avira\Avira Premium Security Suite\avguard.exe
C:\Program Files\Avira\Avira Premium Security Suite\avmailc.exe
C:\Program Files\Avira\Avira Premium Security Suite\avnotify.exe
C:\Program Files\Avira\Avira Premium Security Suite\avscan.exe
C:\Program Files\Avira\Avira Premium Security Suite\avwebgrd.exe
C:\Program Files\Avira\Avira Premium Security Suite\guardgui.exe
C:\Program Files\Avira\Avira Premium Security Suite\licmgr.exe
C:\Program Files\Avira\Avira Premium Security Suite\preupd.exe
C:\Program Files\Avira\Avira Premium Security Suite\sched.exe
C:\Program Files\Avira\Avira Premium Security Suite\update.exe
C:\Program Files\Avira\Avira Premium Security Suite\wsctool.exe
C:\Program Files\Fichiers communs\AOL\uninstaller.exe
C:\Program Files\Fichiers communs\Ulead Systems\Autodetector\Monitor.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Mozilla Firefox\uninstall\helper.exe
C:\Program Files\Philips\Philips SPC230NC Webcam\Monitor.exe
C:\Program Files\SAGEM\SAGEM F@st 1500\Monitor.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\$hf_mig$\KB915865\update\update.exe
C:\WINDOWS\Philips\SPC230NC\Monitor.exe
C:\WINDOWS\Philips\SPC230NC\PXIINST-32\Remover.exe
C:\WINDOWS\system32\dllcache\register.exe
D:\de0eba0a9641007f9b4be26b9284c0\update\update.exe
D:\heroes 3\Support\sysinfo.exe
D:\Mes Documents\Mes fichiers reçus\LiveUpdate\LiveUpdate.exe
D:\Program Files\Avira\AntiVir PersonalEdition Classic\avadmin.exe
D:\Program Files\Avira\AntiVir PersonalEdition Classic\avcenter.exe
D:\Program Files\Avira\AntiVir PersonalEdition Classic\avconfig.exe
D:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
D:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
D:\Program Files\Avira\AntiVir PersonalEdition Classic\avnotify.exe
D:\Program Files\Avira\AntiVir PersonalEdition Classic\avscan.exe
D:\Program Files\Avira\AntiVir PersonalEdition Classic\guardgui.exe
D:\Program Files\Avira\AntiVir PersonalEdition Classic\licmgr.exe
D:\Program Files\Avira\AntiVir PersonalEdition Classic\preupd.exe
D:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
D:\Program Files\Avira\AntiVir PersonalEdition Classic\update.exe
D:\Program Files\Avira\AntiVir PersonalEdition Classic\wsctool.exe
D:\Program Files\Fichiers communs\AOL\uninstaller.exe
D:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
D:\Program Files\Mozilla Firefox\uninstall\helper.exe
D:\Program Files\SAGEM\SAGEM F@st 1500\Monitor.exe

################## [ ! End of Report # FindyKill V4.718 ! ]
Avatar de l’utilisateur
Wildcat
 
Messages: 72
Inscription: 01 Mai 2006, 17:51

Messagede Wildcat » 28 Fév 2009, 18:59

Suite...

2) OTListIt le 28/02/09

OTListIt logfile created on: 28/02/2009 18:46:45 - Run 1
OTListIt2 by OldTimer - Version 2.0.3.0 Folder = C:\Documents and Settings\Propriétaire\Bureau
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 1,52 Gb Available Physical Memory | 76,28% Memory free
3,85 Gb Paging File | 3,44 Gb Available in Paging File | 89,51% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97,65 Gb Total Space | 62,54 Gb Free Space | 64,04% Space Free | Partition Type: NTFS
Drive D: | 368,10 Gb Total Space | 301,82 Gb Free Space | 81,99% Space Free | Partition Type: NTFS
Drive E: | 666,32 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
F: Drive not present or media not loaded
Drive G: | 186,31 Gb Total Space | 185,34 Gb Free Space | 99,48% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive J: | 3,84 Gb Total Space | 2,38 Gb Free Space | 62,08% Space Free | Partition Type: FAT32
Drive Z: | 929,51 Gb Total Space | 576,78 Gb Free Space | 62,05% Space Free | Partition Type: FAT32

Computer Name: VINY-71E5D7ACCC
Current User Name: Propriétaire
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Output = Standard
File Age = 90 Days
Company Name Whitelist: On

========== Processes (SafeList) ==========

PRC - [2009/02/05 22:01:25 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2009/02/05 22:08:40 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2006/10/23 13:50:35 | 00,046,640 | R--- | M] (AOL LLC) -- C:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe
PRC - [2007/07/24 14:17:08 | 00,229,376 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2009/02/06 18:08:58 | 00,533,360 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe
PRC - [2004/08/19 15:09:54 | 01,036,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE
PRC - [2009/02/11 15:05:14 | 00,133,104 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\GoogleUpdate.exe
PRC - [2008/11/10 05:43:40 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2007/05/08 16:00:48 | 02,179,072 | ---- | M] (UASSOFT.COM) -- C:\Program Files\Multimedia Keyboard Driver\V5\KMWDSrv.exe
PRC - [2007/08/08 08:25:08 | 00,836,904 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
PRC - [2007/04/12 22:44:00 | 00,163,908 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2009/01/14 17:53:02 | 00,226,656 | ---- | M] (Microsoft Corp.) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
PRC - [2007/05/28 17:57:54 | 00,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2007/01/04 22:38:08 | 00,024,652 | ---- | M] (Viewpoint Corporation) -- C:\Program Files\Viewpoint\Common\ViewpointService.exe
PRC - [2003/08/27 10:29:46 | 00,065,536 | ---- | M] (America Online, Inc.) -- C:\WINDOWS\wanmpsvc.exe
PRC - [2009/02/05 22:08:26 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2009/02/05 22:06:04 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2006/10/23 13:50:37 | 00,071,216 | R--- | M] (AOL LLC) -- C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe
PRC - [2008/05/27 09:50:30 | 00,413,696 | ---- | M] (Apple Inc.) -- C:\Program Files\QuickTime\QTTask.exe
PRC - [2002/06/03 11:38:12 | 00,049,152 | ---- | M] (ScanSoft, Inc) -- C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
PRC - [2006/09/26 01:52:48 | 00,050,736 | ---- | M] (America Online, Inc.) -- C:\Program Files\Fichiers communs\AOL\1203422821\ee\AOLSoftware.exe
PRC - [2006/11/14 10:21:28 | 16,270,848 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE
PRC - [2008/02/18 23:05:36 | 00,026,112 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\RealPlay.exe
PRC - [2008/05/20 14:17:42 | 00,737,280 | ---- | M] (Apple Inc.) -- C:\Program Files\AirPort\APAgent.exe
PRC - [2007/03/06 13:51:14 | 00,212,992 | ---- | M] (UASSOFT.COM) -- C:\Program Files\Multimedia Keyboard Driver\V5\StartAutorun.exe
PRC - [2007/09/17 21:51:14 | 01,470,464 | ---- | M] (UASSOFT.COM) -- C:\Program Files\Multimedia Keyboard Driver\V5\KMConfig.exe
PRC - [2008/11/10 05:43:42 | 00,136,600 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009/02/05 22:08:45 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2009/02/06 18:08:58 | 00,454,000 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Family Safety\fsui.exe
PRC - [2007/09/25 22:18:54 | 00,561,152 | ---- | M] (UASSOFT.COM) -- C:\Program Files\Multimedia Keyboard Driver\V5\KMProcess.exe
PRC - [2006/06/01 21:33:22 | 00,001,536 | ---- | M] () -- c:\program files\fichiers communs\aol\1203422821\ee\services\antiSpywareApp\ver2_0_28_1\AOLSP Scheduler.exe
PRC - [2006/09/26 01:52:48 | 00,050,736 | ---- | M] (America Online, Inc.) -- c:\program files\fichiers communs\aol\1203422821\ee\aolsoftware.exe
PRC - [2004/05/10 22:49:40 | 00,156,784 | -H-- | M] (America Online, Inc.) -- C:\Program Files\AOL 9.0b\aoltray.exe
PRC - [2007/12/14 15:58:30 | 00,241,664 | ---- | M] () -- C:\Program Files\Philips\Philips SPC230NC Webcam\TrayMin230.exe
PRC - [2006/06/19 12:17:18 | 00,650,240 | ---- | M] (Hercules) -- C:\Program Files\Hercules\WiFi Station\WifiStation.exe
PRC - [2008/12/31 18:58:48 | 00,143,360 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Propriétaire\Application Data\Microsoft\Live Search\Notification-LiveSearch.exe
PRC - [2008/12/31 18:58:48 | 00,125,440 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Propriétaire\Application Data\Microsoft\Live Search\Mise-a-jour-LiveSearch.exe
PRC - [2009/02/28 18:44:52 | 00,497,152 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Propriétaire\Bureau\OTListIt2.exe

========== Win32 Services (SafeList) ==========

SRV - [2009/02/05 17:19:13 | 00,135,208 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\Avira Premium Security Suite\avmailc.exe -- (AntiVirMailService [Auto | Stopped])
SRV - [2009/02/05 19:06:19 | 00,063,016 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\Avira Premium Security Suite\sched.exe -- (AntiVirScheduler [Auto | Stopped])
SRV - [2009/02/05 19:06:19 | 00,210,984 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\Avira Premium Security Suite\avguard.exe -- (AntiVirService [Auto | Stopped])
SRV - [2006/10/23 13:50:35 | 00,046,640 | R--- | M] (AOL LLC) -- C:\Program Files\Fichiers communs\AOL\ACS\AOLacsd.exe -- (AOL ACS [Auto | Running])
SRV - [2008/07/25 11:16:40 | 00,034,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state [On_Demand | Stopped])
SRV - [2009/02/05 22:01:25 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv [Auto | Running])
SRV - [2009/02/05 22:08:40 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus [Auto | Running])
SRV - [2009/02/05 22:08:26 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner [On_Demand | Running])
SRV - [2009/02/05 22:06:04 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner [On_Demand | Running])
SRV - [2009/02/05 17:19:13 | 00,012,840 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\Avira Premium Security Suite\avesvc.exe -- (AVEService [Disabled | Stopped])
SRV - [2007/07/24 14:17:08 | 00,229,376 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service [Auto | Running])
SRV - [2008/07/25 11:17:02 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
SRV - [2008/07/29 21:10:04 | 00,046,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
SRV - [2009/02/06 18:08:58 | 00,533,360 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe -- (fsssvc [Auto | Running])
SRV - [2009/02/11 15:05:14 | 00,133,104 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\GoogleUpdate.exe -- (gupdate1c98c51c3ba61c2 [Auto | Stopped])
SRV - [2004/08/19 15:09:38 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running])
SRV - [2008/07/29 19:24:50 | 00,881,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped])
SRV - File not found -- -- (iisrstap32 [Auto | Stopped])
SRV - [2008/11/10 05:43:40 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService [Auto | Running])
SRV - [2007/05/08 16:00:48 | 02,179,072 | ---- | M] (UASSOFT.COM) -- C:\Program Files\Multimedia Keyboard Driver\V5\KMWDSrv.exe -- (KMWDSERVICE [Auto | Running])
SRV - [2007/11/15 09:09:42 | 00,121,360 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ [On_Demand | Stopped])
SRV - [2007/08/08 08:25:08 | 00,836,904 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe -- (Nero BackItUp Scheduler 3 [Auto | Running])
SRV - [2008/07/29 19:16:38 | 00,132,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
SRV - [2007/08/03 11:51:18 | 00,382,248 | ---- | M] (Nero AG) -- C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe -- (NMIndexingService [On_Demand | Stopped])
SRV - [2007/04/12 22:44:00 | 00,163,908 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc [Auto | Running])
SRV - [2006/10/26 19:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped])
SRV - [2006/10/26 14:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])
SRV - [2008/08/12 14:58:11 | 00,066,872 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrA.txt -- (PnkBstrA [Auto | Stopped])
SRV - [2009/01/14 17:53:02 | 00,226,656 | ---- | M] (Microsoft Corp.) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort [Auto | Running])
SRV - [2007/05/28 17:57:54 | 00,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE [Auto | Running])
SRV - [2007/01/04 22:38:08 | 00,024,652 | ---- | M] (Viewpoint Corporation) -- C:\Program Files\Viewpoint\Common\ViewpointService.exe -- (Viewpoint Manager Service [Auto | Running])
SRV - [2003/08/27 10:29:46 | 00,065,536 | ---- | M] (America Online, Inc.) -- C:\WINDOWS\wanmpsvc.exe -- (WANMiniportService [Auto | Running])
SRV - [2006/11/03 09:59:14 | 00,918,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\WMPNetwk.exe -- (WMPNetworkSvc [On_Demand | Stopped])

========== Driver Services (SafeList) ==========

DRV - [2009/02/05 22:05:11 | 00,026,944 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4 [System | Running])
DRV - [2008/01/23 09:19:44 | 00,501,560 | ---- | M] (Protect Software GmbH) -- C:\WINDOWS\system32\drivers\acedrv11.sys -- (acedrv11 [Auto | Running])
DRV - [2008/02/18 22:04:23 | 00,020,747 | ---- | M] (Meetinghouse Data Communications) -- C:\WINDOWS\system32\DRIVERS\AegisP.sys -- (AegisP [Auto | Running])
DRV - [2005/02/22 22:58:56 | 00,011,776 | ---- | M] (Arcsoft, Inc.) -- C:\WINDOWS\system32\drivers\Afc.sys -- (Afc [On_Demand | Running])
DRV - [2009/02/05 22:08:10 | 00,094,032 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2 [Auto | Running])
DRV - [2009/02/05 22:06:10 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr [On_Demand | Running])
DRV - [2009/02/05 22:07:23 | 00,114,768 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP [System | Running])
DRV - [2009/02/05 22:06:20 | 00,051,376 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi [System | Running])
DRV - [2008/05/22 16:01:39 | 00,278,984 | ---- | M] () -- C:\WINDOWS\system32\DRIVERS\atksgt.sys -- (atksgt [Auto | Running])
DRV - [2007/08/30 13:12:23 | 00,067,752 | ---- | M] (Avira GmbH) -- C:\WINDOWS\system32\DRIVERS\avfwot.sys -- (avfwot [System | Running])
DRV - [2007/08/09 13:04:11 | 00,040,768 | ---- | M] (Avira GmbH) -- C:\WINDOWS\SYSTEM32\DRIVERS\avgntdd.sys -- (avgntdd [System | Running])
DRV - [2007/09/07 12:05:19 | 00,062,016 | ---- | M] (AVIRA GmbH) -- C:\WINDOWS\system32\DRIVERS\avipbb.sys -- (avipbb [System | Running])
DRV - [2008/12/08 17:01:56 | 00,055,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys -- (fssfltr [Auto | Running])
DRV - [2005/01/07 17:07:18 | 00,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\system32\DRIVERS\HDAudBus.sys -- (HDAudBus [On_Demand | Running])
DRV - [2006/11/15 07:34:40 | 04,225,920 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService [On_Demand | Running])
DRV - [2006/02/07 12:52:58 | 00,006,912 | R--- | M] (JMicron ) -- C:\WINDOWS\system32\DRIVERS\JGOGO.sys -- (JGOGO [Boot | Running])
DRV - [2006/10/30 04:31:58 | 00,043,648 | R--- | M] (JMicron Technology Corp.) -- C:\WINDOWS\system32\DRIVERS\jraid.sys -- (JRAID [Boot | Running])
DRV - [2007/09/21 02:10:20 | 00,020,240 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys -- (L8042Kbd [On_Demand | Stopped])
DRV - [2007/09/21 02:10:26 | 00,063,120 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\system32\DRIVERS\L8042mou.Sys -- (L8042mou [On_Demand | Stopped])
DRV - [2004/08/03 21:59:34 | 00,034,688 | ---- | M] (Toshiba Corp.) -- C:\WINDOWS\System32\drivers\lbrtfdc.sys -- (lbrtfdc [System | Stopped])
DRV - [2007/09/21 02:10:40 | 00,035,088 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys -- (LHidFilt [On_Demand | Running])
DRV - [2008/05/22 16:01:39 | 00,025,416 | ---- | M] () -- C:\WINDOWS\system32\DRIVERS\lirsgt.sys -- (lirsgt [Auto | Running])
DRV - [2007/09/21 02:10:46 | 00,036,240 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys -- (LMouFilt [On_Demand | Running])
DRV - [2007/09/21 02:10:54 | 00,078,992 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\system32\DRIVERS\LMouKE.Sys -- (LMouKE [On_Demand | Stopped])
DRV - [2004/08/13 03:56:20 | 00,005,810 | R--- | M] () -- C:\WINDOWS\system32\DRIVERS\ASACPI.sys -- (MTsensor [On_Demand | Running])
DRV - [2007/04/12 22:44:00 | 06,738,656 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\DRIVERS\nv4_mini.sys -- (nv [On_Demand | Running])
DRV - [2006/04/24 18:52:28 | 00,100,736 | R--- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata [Boot | Running])
DRV - [2006/02/17 12:28:30 | 00,034,176 | R--- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\DRIVERS\NVENETFD.sys -- (NVENETFD [On_Demand | Running])
DRV - [2006/02/17 12:28:32 | 00,013,056 | R--- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\DRIVERS\nvnetbus.sys -- (nvnetbus [On_Demand | Running])
DRV - [2007/09/26 13:28:46 | 00,008,576 | ---- | M] (PixArt Imaging Incorporation) -- C:\WINDOWS\system32\DRIVERS\PAEAFLT.sys -- (PAEAFLT.sys [On_Demand | Running])
DRV - [2004/08/05 04:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\system32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])
DRV - [2006/03/09 10:33:22 | 00,366,080 | ---- | M] (Ralink Technology Inc.) -- C:\WINDOWS\system32\DRIVERS\RT61.sys -- (RT61 [On_Demand | Running])
DRV - [2008/03/27 17:43:20 | 00,163,644 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\system32\drivers\SECDRV.SYS -- (SecDrv [Auto | Running])
DRV - [2001/08/17 20:56:16 | 00,007,552 | ---- | M] (Sony Corporation) -- C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS -- (SONYPVU1 [On_Demand | Stopped])
DRV - [2007/12/31 15:19:50 | 00,461,056 | ---- | M] (PixArt Imaging Inc.) -- C:\WINDOWS\system32\DRIVERS\SPC230NC.SYS -- (SPC230NC [On_Demand | Running])
DRV - [2009/01/13 16:05:54 | 00,717,296 | ---- | M] () -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd [Boot | Running])
DRV - [2007/03/01 10:34:36 | 00,028,352 | ---- | M] (Avira GmbH) -- C:\WINDOWS\system32\DRIVERS\ssmdrv.sys -- (ssmdrv [System | Running])
DRV - [2003/01/10 16:13:04 | 00,033,588 | ---- | M] (America Online, Inc.) -- C:\WINDOWS\system32\DRIVERS\wanatw4.sys -- (wanatw [On_Demand | Running])

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = Reg Error: Invalid data type.
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = C:\Program Files\AOL Toolbar\welcome.html
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
IE - URLSearchHook: {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - Reg Error: Key error. File not found


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
IE - URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key error. File not found
IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
IE - URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key error. File not found
IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key error. File not found
IE - HKU\S-1-5-19\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key error. File not found
IE - HKU\S-1-5-20\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-1078081533-789336058-725345543-1002\S-1-5-21-1078081533-789336058-725345543-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1078081533-789336058-725345543-1002\S-1-5-21-1078081533-789336058-725345543-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

FF - prefs.js..browser.search.defaultenginename: "AIM Search"
FF - presf.js..browser.search.defaulturl: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2706&invocationType=tb50fftrie7&query="
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://www.planete-aventure.net/"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}:6.0.03
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}:6.0.05
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}:6.0.07
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}:6.0.10
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.0
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.5
FF - HKLM\software\mozilla\Firefox\Extensions\\jqs@sun.com -> %ProgramFiles%\JAVA\JRE6\LIB\DEPLOY\JQS\FF [C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF] -> [2008/11/15 19:14:10 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b} -> %SystemRoot%\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION [C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION\] -> [2009/02/05 21:24:42 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.5\extensions\\Components -> %ProgramFiles%\MOZILLA FIREFOX\COMPONENTS [C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS] -> [2008/12/18 15:11:03 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.5\extensions\\Plugins -> %ProgramFiles%\MOZILLA FIREFOX\PLUGINS [C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS] -> [2008/12/18 15:11:03 00,000,000 | ---D | M]
FF - C:\Documents and Settings\Propriétaire\Application Data\mozilla\Extensions [2008/11/08 21:01:38 00,000,000 | ---D | M]
FF - C:\Documents and Settings\Propriétaire\Application Data\mozilla\Extensions [2008/11/08 21:01:38 00,000,000 | ---D | M]
FF - C:\Documents and Settings\Propriétaire\Application Data\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} [2008/11/08 21:01:38 00,000,000 | ---D | M]
FF - C:\Documents and Settings\Propriétaire\Application Data\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} [2008/11/08 21:01:38 00,000,000 | ---D | M]
FF - C:\Documents and Settings\Propriétaire\Application Data\mozilla\Firefox\Profiles\rykeb851.default\extensions [2009/02/05 21:38:08 00,000,000 | ---D | M]
FF - C:\Documents and Settings\Propriétaire\Application Data\mozilla\Firefox\Profiles\rykeb851.default\extensions [2009/02/05 21:38:08 00,000,000 | ---D | M]
FF - C:\Program Files\mozilla firefox\extensions [2009/02/05 21:37:39 00,000,000 | ---D | M]
FF - C:\Program Files\mozilla firefox\extensions [2009/02/05 21:37:39 00,000,000 | ---D | M]
FF - C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2008/12/18 15:11:03 00,000,000 | ---D | M]
FF - C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2008/12/18 15:11:03 00,000,000 | ---D | M]
FF - C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} [2008/02/18 21:46:01 00,000,000 | ---D | M]
FF - C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} [2008/02/18 21:46:01 00,000,000 | ---D | M]
FF - C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} [2008/03/21 15:06:05 00,000,000 | ---D | M]
FF - C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} [2008/03/21 15:06:05 00,000,000 | ---D | M]
FF - C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} [2008/07/21 12:58:13 00,000,000 | ---D | M]
FF - C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} [2008/07/21 12:58:13 00,000,000 | ---D | M]
FF - C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} [2008/11/15 19:14:16 00,000,000 | ---D | M]
FF - C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} [2008/11/15 19:14:16 00,000,000 | ---D | M]
FF - C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} [2008/12/03 14:04:12 00,000,000 | ---D | M]
FF - C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} [2008/12/03 14:04:12 00,000,000 | ---D | M]

O1 HOSTS File: (686 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - Reg Error: Key error. File not found
O2 - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - Reg Error: Key error. File not found
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll (Microsoft Corp.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (AOL Toolbar Launcher) - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (AOL)
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (AIM Toolbar Loader) - {b0cda128-b425-4eef-a174-61a11ac5dbf8} - C:\Program Files\AIM Toolbar\aimtb.dll (AOL LLC.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O3 - HKLM\..\Toolbar: (AIM Toolbar) - {61539ecd-cc67-4437-a03c-9aaccbd14326} - C:\Program Files\AIM Toolbar\aimtb.dll (AOL LLC.)
O3 - HKLM\..\Toolbar: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (AOL)
O3 - HKLM\..\Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key error. File not found
O3 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\..\Toolbar\WebBrowser: (no name) - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - Reg Error: Key error. File not found
O3 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\..\Toolbar\WebBrowser: (no name) - {61539ECD-CC67-4437-A03C-9AACCBD14326} - C:\Program Files\AIM Toolbar\aimtb.dll (AOL LLC.)
O3 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\..\Toolbar\WebBrowser: (no name) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (AOL)
O4 - HKLM..\Run: [AirPort Base Station Agent] "C:\Program Files\AirPort\APAgent.exe" (Apple Inc.)
O4 - HKLM..\Run: [AOLDialer] C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe (AOL LLC)
O4 - HKLM..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun (Microsoft Corporation)
O4 - HKLM..\Run: [HostManager] C:\Program Files\Fichiers communs\AOL\1203422821\ee\AOLSoftware.exe (America Online, Inc.)
O4 - HKLM..\Run: [JMB36X Configure] C:\WINDOWS\system32\JMRaidSetup.exe boot (JMicron Technology Corp.)
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE (Logitech, Inc.)
O4 - HKLM..\Run: [KMConfig] "C:\Program Files\Multimedia Keyboard Driver\V5\StartAutorun.exe" KMConfig.exe File not found
O4 - HKLM..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE (Logitech, Inc.)
O4 - HKLM..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] nwiz.exe /install ()
O4 - HKLM..\Run: [Omnipage] C:\Program Files\ScanSoft\OmniPageSE\opware32.exe (ScanSoft, Inc)
O4 - HKLM..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime (Apple Inc.)
O4 - HKLM..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER (RealNetworks, Inc.)
O4 - HKLM..\Run: [RTHDCPL] RTHDCPL.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SPC_Monitor] C:\WINDOWS\Philips\SPC230NC\Monitor.exe (PixArt Imaging Incorporation)
O4 - HKLM..\Run: [SPC230NC_Monitor] C:\WINDOWS\Philips\SPC230NC\Monitor.exe (PixArt Imaging Incorporation)
O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" (Sun Microsystems, Inc.)
O4 - HKU\S-1-5-21-1078081533-789336058-725345543-1002..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount (Alcohol Soft Development Team)
O4 - HKU\S-1-5-21-1078081533-789336058-725345543-1002..\Run: [ccleaner] "D:\CCleaner\CCleaner.exe" /AUTO (Piriform Ltd)
O4 - HKU\S-1-5-21-1078081533-789336058-725345543-1002..\Run: [Philips Intelligent Agent] "C:\Program Files\Philips\Intelligent Agent\Philips Intelligent Agent.exe" /SILENT (Philips Consumer Electronics)
O4 - HKU\S-1-5-21-1078081533-789336058-725345543-1002..\Run: [Uniblue RegistryBooster 2009] C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe /S (Uniblue Software)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\AOL 9.0 Icône AOL.lnk = C:\Program Files\AOL 9.0b\aoltray.exe (America Online, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe File not found
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\TrayMin230.lnk = C:\Program Files\Philips\Philips SPC230NC Webcam\TrayMin230.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\WiFi Station.lnk = C:\Program Files\Hercules\WiFi Station\WifiStation.exe (Hercules)
O4 - Startup: C:\Documents and Settings\Propriétaire\Menu Démarrer\Programmes\Démarrage\Outil de notification Live Search.lnk = C:\Documents and Settings\Propriétaire\Application Data\Microsoft\Live Search\Notification-LiveSearch.exe (Microsoft Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsMenu = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFavoritesMenu = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyDocs = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMyMusic = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsHistory = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsNetHood = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoInstrumentation = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSimpleStartMenu = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideLegacyLogonScripts = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideLogoffScripts = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunLogonScriptSync = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunStartupScriptSync = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideStartupScripts = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsMenu = 1
O7 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFavoritesMenu = 0
O7 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyDocs = 0
O7 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 0
O7 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMyMusic = 0
O7 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsHistory = 1
O7 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ClearRecentDocsOnExit = 1
O7 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsNetHood = 0
O7 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0
O7 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoUserNameInStartMenu = 1
O7 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoInstrumentation = 0
O7 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuPinnedList = 0
O7 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceStartMenuLogoff = 0
O7 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSharedDocuments = 1
O7 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideLegacyLogonScripts = 0
O7 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideLogoffScripts = 0
O7 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunLogonScriptSync = 1
O7 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: RunStartupScriptSync = 0
O7 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideStartupScripts = 0
O7 - HKU\S-1-5-21-1078081533-789336058-725345543-1002_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: &AIM Toolbar Search - C:\Documents and Settings\All Users\Application Data\AIM Toolbar\ieToolbar\resources\en-US\local\search.html
O8 - Extra context menu item: &Recherche AOL Toolbar - c:\program files\aol\aol toolbar 5.0\resources\fr-fr\local\search.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O9 - Extra Button: AIM Toolbar - {0b83c99c-1efa-4259-858f-bcb33e007a5b} - C:\Program Files\AIM Toolbar\aimtb.dll (AOL LLC.)
O9 - Extra Button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (AOL)
O9 - Extra Button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll (Apple Inc.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [NWLink IPX/SPX/NetBIOS Compatible Transport Protocol] - C:\WINDOWS\System32\nwprovau.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O15 - HKLM\..Trusted Domains: 48 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\.DEFAULT\..Trusted Domains: 48 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\S-1-5-18\..Trusted Domains: 48 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\..Trusted Domains: aol.com ([objects] * is out of zone range - 6)
O15 - HKU\S-1-5-21-1078081533-789336058-725345543-1002\..Trusted Domains: 56 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {049A470D-F818-4E34-B14D-E4E237DADCF8} http://download.playfirst.com/play/game ... 0.0.21.cab (CPlayFirstFashionDasControl Object)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\yinsthelper.dll (Reg Error: Key error.)
O16 - DPF: {3107C2A8-9F0B-4404-A58B-21BD85268FBC} http://www.pogo.com/cdl/launcher/PogoWe ... taller.CAB (PogoWebLauncher Control)
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} http://gfx1.hotmail.com/mail/w3/resources/MSNPUpld.cab (MSN Photo Upload Tool)
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} http://copainsdavant.linternaute.com/fr ... oader5.cab (Image Uploader Control)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.microsoft.com/windows ... 4310147937 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microso ... 4310862125 (MUWebControl Class)
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} http://menki.spaces.live.com/PhotoUpload/MsnPUpld.cab (Windows Live Photo Upload Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_11)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/Me ... b56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_11)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_11)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/sh ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {D8089245-3211-40F6-819B-9E5E92CD61A2} https://signin2.valueactive.com/Registe ... lashax.cab (FlashXControl Object)
O16 - DPF: {E41BA393-9078-424E-9554-9DB5126F5F4C} http://download.playfirst.com/play/game ... 0.0.13.cab (CPlayFirstDreamChronControl Object)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp Reg Error: Value error. - Reg Error: Key error. File not found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter: - text/xml - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\LBTWlgn: DllName - c:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll - c:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/02/18 21:41:09 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2000/06/30 13:28:08 | 00,135,168 | R--- | M] (Impressions Games) - E:\autorun.exe -- [ CDFS ]
O32 - AutoRun File - [2000/07/27 17:25:14 | 00,000,191 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{0140c6e8-f67b-11dc-98af-001d60b2cec8}\Shell - "" = AutoRun
O33 - MountPoints2\{0140c6e8-f67b-11dc-98af-001d60b2cec8}\Shell\AutoRun\command - "" = H:\LaunchU3.exe -- File not found
O33 - MountPoints2\{eb825756-0437-11de-9acd-001d60b2cec8}\Shell - "" = AutoRun
O33 - MountPoints2\{eb825756-0437-11de-9acd-001d60b2cec8}\Shell\AutoRun\command - "" = H:\AutoRun.exe -- File not found

========== Files/Folders - Created Within 90 Days ==========

[5 C:\WINDOWS\System32\*.tmp files]
[6 C:\WINDOWS\*.tmp files]
[2013/07/18 17:03:24 | 01,825,892 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Bureau\margaux1.JPG
[2013/07/18 17:03:06 | 01,800,380 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Bureau\margaux.JPG
[2009/02/28 18:44:17 | 00,497,152 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Propriétaire\Bureau\OTListIt2.exe
[2009/02/28 17:53:11 | 00,001,564 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Bureau\FindyKill.lnk
[2009/02/28 17:50:37 | 01,216,021 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Bureau\FindyKill.exe
[2009/02/27 16:10:48 | 00,000,766 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Bureau\Hospital Hustle.lnk
[2009/02/27 16:10:32 | 00,000,000 | ---D | C] -- C:\Program Files\Hospital Hustle
[2009/02/27 14:34:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\FarmFrenzy-PizzaParty
[2009/02/27 14:34:34 | 00,001,865 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Bureau\Farm Frenzy Pizza Party.lnk
[2009/02/27 14:18:31 | 03,342,809 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Mes documents\eMule0.49c-Installer.exe
[2009/02/27 14:09:43 | 00,000,000 | -HSD | C] -- C:\Config.Msi
[2009/02/26 21:01:08 | 00,000,000 | ---D | C] -- C:\VundoFix Backups
[2009/02/26 20:04:16 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\SupportAppXL
[2009/02/26 16:13:50 | 00,000,296 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Bureau\Raccourci vers pharaon.exe.lnk
[2009/02/26 14:47:51 | 00,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll
[2009/02/26 14:47:51 | 00,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll
[2009/02/26 14:47:51 | 00,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll
[2009/02/26 14:47:08 | 00,000,766 | ---- | C] () -- C:\WINDOWS\zeusicon.ico
[2009/02/26 14:36:12 | 00,004,398 | ---- | C] () -- C:\WINDOWS\caesar3.ico
[2009/02/26 14:34:45 | 00,000,000 | ---D | C] -- C:\SIERRA
[2009/02/26 14:34:45 | 00,000,000 | ---D | C] -- C:\Program Files\Sierra On-Line
[2009/02/26 14:34:22 | 00,000,370 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2009/02/19 19:59:24 | 00,013,260 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Bureau\Poste_Pilote.docx
[2009/02/19 18:06:38 | 00,010,952 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Bureau\03.docx
[2009/02/19 17:02:24 | 00,032,256 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Bureau\CVSylvie.doc
[2009/02/18 21:48:51 | 00,000,000 | -HSD | C] -- C:\RECYCLER
[2009/02/18 16:39:13 | 00,000,000 | ---D | C] -- C:\ComboFix
[2009/02/15 12:31:21 | 00,000,630 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Bureau\µTorrent.lnk
[2009/02/15 12:31:21 | 00,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2009/02/15 12:31:03 | 00,270,128 | ---- | C] (BitTorrent, Inc.) -- C:\Documents and Settings\Propriétaire\Bureau\utorrent.exe
[2009/02/12 17:12:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Mes documents\picasaweblogo-fr
[2009/02/12 17:12:45 | 00,005,936 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Mes documents\picasaweblogo-fr.zip
[2009/02/11 15:06:10 | 00,001,836 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Google Earth.lnk
[2009/02/08 20:21:30 | 00,185,053 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Mes documents\kikou.JPG
[2009/02/06 19:39:24 | 00,308,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\WLXPGSS.SCR
[2009/02/06 18:52:40 | 00,049,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sirenacm.dll
[2009/02/06 17:04:44 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Application Data\Babylon
[2009/02/06 17:04:44 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Babylon
[2009/02/06 15:05:13 | 00,000,000 | ---D | C] -- C:\WINDOWS\Lost Secrets Bermuda Triangle
[2009/02/05 21:48:35 | 00,051,376 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2009/02/05 21:48:35 | 00,026,944 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2009/02/05 21:48:35 | 00,023,152 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2009/02/05 21:48:35 | 00,001,709 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\avast! Antivirus.lnk
[2009/02/05 21:48:34 | 00,114,768 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2009/02/05 21:48:34 | 00,097,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr
[2009/02/05 21:48:34 | 00,094,032 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2009/02/05 21:48:34 | 00,093,296 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2009/02/05 21:48:27 | 01,256,296 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2009/02/05 21:48:27 | 00,380,928 | ---- | C] () -- C:\WINDOWS\System32\actskin4.ocx
[2009/02/05 21:25:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\{51019853-129C-4EDE-9030-D5FD7BBD9AD0}
[2009/02/05 21:25:11 | 00,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg2.dll
[2009/02/05 21:24:23 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2009/02/05 21:24:21 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2009/02/05 21:24:18 | 00,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2009/02/05 21:24:04 | 01,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll
[2009/02/05 21:24:04 | 01,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll
[2009/02/05 21:24:04 | 00,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe
[2009/02/05 21:24:04 | 00,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsshhdr.dll
[2009/02/05 21:24:04 | 00,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll
[2009/02/05 21:24:04 | 00,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll
[2009/02/05 21:24:04 | 00,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll
[2009/02/05 18:34:00 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\{D5ABFFAD-D592-4F98-B02B-587125B4801F}
[2009/02/05 18:30:53 | 00,000,000 | ---D | C] -- C:\Program Files\FindyKill
[2009/02/05 18:04:20 | 00,000,000 | ---D | C] -- C:\Program Files\MSXML 6.0
[2009/02/05 17:59:41 | 00,000,000 | RH-D | C] -- C:\AHCache
[2009/02/05 17:53:49 | 00,000,000 | ---D | C] -- C:\Program Files\Uniblue
[2009/02/05 17:53:30 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\{B46E1EF5-0B37-4DB4-A4E2-9F2B41036185}
[2009/02/05 17:16:15 | 00,002,855 | ---- | C] () -- C:\WINDOWS\System32\mem.PIF
[2009/02/04 21:50:28 | 00,015,504 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009/02/04 21:50:26 | 00,038,496 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009/02/04 21:50:25 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009/02/04 21:41:27 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVS4YOU
[2009/02/04 21:40:48 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml3a.dll
[2009/02/04 21:40:48 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\AVSMedia
[2009/02/04 21:40:47 | 00,000,000 | ---D | C] -- C:\Program Files\AVS4YOU
[2009/02/04 21:10:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft
[2009/02/04 20:30:02 | 00,000,000 | ---D | C] -- C:\Program Files\Panda Security
[2009/02/04 19:45:30 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2009/02/04 19:42:36 | 14,771,744 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\Propriétaire\Bureau\IE7-WindowsXP-x86-fra.exe
[2009/02/04 19:38:03 | 00,000,000 | ---D | C] -- C:\NVIDIA
[2009/02/03 18:32:11 | 02,749,952 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Bureau\Rail_Spain_Work3_1.xls
[2009/02/03 18:30:12 | 00,000,000 | ---D | C] -- C:\Program Files\Add-in Express
[2009/02/03 18:29:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Bureau\random-generator-excel-20
[2009/02/03 18:29:11 | 02,271,478 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Bureau\random-generator-excel-20.zip
[2009/02/03 17:51:08 | 00,230,400 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Bureau\Rail_Spain_Work3.xls
[2009/02/02 19:35:24 | 00,000,000 | ---D | C] -- C:\WINDOWS\Detective Stories Hollywood
[2009/02/02 19:35:24 | 00,000,000 | ---D | C] -- C:\Program Files\Detective Stories Hollywood
[2009/01/28 20:32:17 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Bureau\photo appart
[2009/01/28 20:09:57 | 00,000,000 | ---D | C] -- C:\Program Files\Beach Party Craze
[2009/01/26 11:01:24 | 00,471,316 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Bureau\batimat.pdf
[2009/01/20 16:07:57 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Application Data\Meridian93
[2009/01/16 15:05:05 | 00,000,000 | ---D | C] -- C:\Program Files\Youdagames
[2009/01/14 21:42:32 | 00,235,475 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Bureau\ps3cb.PDF
[2009/01/14 21:36:36 | 00,236,944 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Mes documents\ps3.PDF
[2009/01/13 20:07:34 | 00,000,000 | ---- | C] () -- C:\WINDOWS\GAME.INI
[2009/01/13 16:10:26 | 00,000,833 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Mes documents\Alcohol 120%.lnk
[2009/01/13 16:10:24 | 00,000,000 | ---D | C] -- C:\Program Files\Alcohol Soft
[2009/01/13 16:05:54 | 00,717,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2009/01/13 16:05:38 | 10,600,544 | ---- | C] (Alcohol Soft) -- C:\Documents and Settings\Propriétaire\Mes documents\Alcohol120_trial_1.9.8.7117.exe
[2009/01/13 15:46:50 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Application Data\Fabulous Finds
[2009/01/05 16:08:11 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Mes documents\photo
[2009/01/04 18:33:03 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Mes documents\Boolat Games
[2009/01/03 20:44:34 | 00,000,000 | ---D | C] -- C:\WINDOWS\Heartwild Solitaire
[2009/01/03 15:05:43 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Mes documents\Upload_Me
[2009/01/03 15:01:59 | 00,000,606 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Mes documents\MSNFix.lnk
[2009/01/03 15:01:58 | 00,000,000 | ---D | C] -- C:\Program Files\MSNFix
[2009/01/01 15:20:06 | 00,003,702 | ---- | C] () -- C:\WINDOWS\System32\msupdte.MSNFix
[2008/12/31 21:05:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations
[2008/12/31 20:29:36 | 01,116,568 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\Propriétaire\Mes documents\EmoticonesDejantees.exe
[2008/12/31 20:24:33 | 00,989,544 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\Propriétaire\Mes documents\emoticones.exe
[2008/12/31 19:28:17 | 00,001,186 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Bureau\1. Windows Live Messenger.lnk
[2008/12/31 19:14:52 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2008/12/31 19:14:44 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Office Outlook Connector
[2008/12/31 19:14:38 | 00,055,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\fssfltr_tdi.sys
[2008/12/31 19:14:18 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Sync Framework
[2008/12/31 19:13:48 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2008/12/31 19:12:48 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft
[2008/12/31 19:12:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\microsoft
[2008/12/31 19:12:32 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Live SkyDrive
[2008/12/31 18:59:16 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Windows Live
[2008/12/31 18:58:48 | 00,001,119 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Menu Démarrer\Programmes\Démarrage\Outil de notification Live Search.lnk
[2008/12/31 18:58:47 | 00,001,378 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Mes documents\Aller sur MSN.fr.lnk
[2008/12/31 18:58:47 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Propriétaire\Mes documents\Services Windows Live
[2008/12/31 18:28:48 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Application Data\Suspects and Clues Prefs
[2008/12/31 18:28:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Application Data\Suspects and Clues Players
[2008/12/31 18:28:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Application Data\Spinapse
[2008/12/31 18:28:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Application Data\IOMediaSupport6SZZ001s
[2008/12/31 18:17:19 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Arkadium
[2008/12/31 18:13:39 | 00,000,000 | ---D | C] -- C:\WINDOWS\The Pini Society
[2008/12/31 13:13:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Mes documents\Slapdash Games
[2008/12/31 13:13:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Slapdash Games
[2008/12/31 13:13:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Slapdash Games
[2008/12/27 15:16:48 | 00,000,000 | ---D | C] -- C:\Program Files\Fab Fashion
[2008/12/25 18:28:50 | 03,851,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_39.dll
[2008/12/25 18:28:50 | 01,493,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_39.dll
[2008/12/25 18:28:50 | 00,509,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_2.dll
[2008/12/25 18:28:50 | 00,507,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_1.dll
[2008/12/25 18:28:50 | 00,467,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_39.dll
[2008/12/25 18:28:50 | 00,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_2.dll
[2008/12/25 18:28:50 | 00,068,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_1.dll
[2008/12/25 18:28:50 | 00,065,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_0.dll
[2008/12/25 18:28:49 | 03,850,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_38.dll
[2008/12/25 18:28:49 | 01,491,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_38.dll
[2008/12/25 18:28:49 | 00,479,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_0.dll
[2008/12/25 18:28:49 | 00,467,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_38.dll
[2008/12/25 18:28:49 | 00,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_1.dll
[2008/12/25 18:28:49 | 00,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_0.dll
[2008/12/25 18:28:49 | 00,025,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_4.dll
[2008/12/25 18:28:48 | 03,786,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_37.dll
[2008/12/25 18:28:48 | 01,420,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_37.dll
[2008/12/25 18:28:48 | 01,374,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_36.dll
[2008/12/25 18:28:48 | 00,462,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_37.dll
[2008/12/25 18:28:48 | 00,444,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_36.dll
[2008/12/25 18:28:48 | 00,267,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_10.dll
[2008/12/25 18:28:48 | 00,025,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_3.dll
[2008/12/25 18:28:47 | 03,734,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_36.dll
[2008/12/25 18:28:47 | 00,267,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_9.dll
[2008/12/25 18:28:46 | 00,266,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_8.dll
[2008/12/25 18:28:46 | 00,017,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_2.dll
[2008/12/25 18:27:33 | 00,000,000 | ---D | C] -- C:\WINDOWS\Logs
[2008/12/23 15:22:57 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Application Data\Ashtons. Family Resort
[2008/12/23 15:22:57 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ashtons. Family Resort
[2008/12/23 15:22:20 | 00,000,000 | ---D | C] -- C:\WINDOWS\Ashtons Family Resort
[2008/12/22 11:20:45 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Mes documents\ScheduleOCR Output
[2008/12/22 11:20:45 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Mes documents\ScheduleOCR Input
Avatar de l’utilisateur
Wildcat
 
Messages: 72
Inscription: 01 Mai 2006, 17:51

Messagede Wildcat » 28 Fév 2009, 19:10

Suite et fin OTList

[2008/12/22 11:20:45 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ScanSoft
[2008/12/21 21:00:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Application Data\Mushroom Age
[2008/12/21 20:10:03 | 00,000,000 | ---D | C] -- C:\WINDOWS\Mushroom Age
[2008/12/20 18:31:20 | 00,000,000 | ---D | C] -- C:\WINDOWS\County Fair
[2008/12/19 16:45:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Application Data\EnchantedCavern
[2008/12/18 15:34:36 | 00,000,000 | ---D | C] -- C:\WoW
[2008/12/17 15:06:36 | 00,000,216 | ---- | C] () -- C:\Boot.bak
[2008/12/17 15:06:34 | 00,263,488 | ---- | C] () -- C:\cmldr
[2008/12/17 15:06:34 | 00,000,000 | RHSD | C] -- C:\cmdcons
[2008/12/17 15:05:46 | 00,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2008/12/17 15:05:46 | 00,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2008/12/17 15:05:46 | 00,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2008/12/17 15:05:46 | 00,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2008/12/17 15:05:46 | 00,089,504 | ---- | C] (Smallfrogs Studio) -- C:\WINDOWS\fdsv.exe
[2008/12/17 15:05:46 | 00,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2008/12/17 15:05:46 | 00,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2008/12/17 15:05:46 | 00,049,152 | ---- | C] () -- C:\WINDOWS\VFIND.exe
[2008/12/14 17:11:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Game Mill Files
[2008/12/11 12:01:58 | 00,000,000 | ---D | C] -- C:\WINDOWS\DQ Tycoon
[2008/12/11 12:00:23 | 00,000,499 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Mes documents\Raccourci vers ComboFix.exe.lnk
[2008/12/09 23:22:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ScreenSeven
[2008/12/09 23:21:46 | 00,000,000 | ---D | C] -- C:\WINDOWS\Scepter of Ra
[2008/12/09 22:52:48 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Application Data\TMInc
[2008/12/09 20:04:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\Treasure Masters Inc
[2008/12/09 17:12:39 | 00,000,000 | ---D | C] -- C:\Program Files\Alawar
[2008/12/09 14:55:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SecretsOfOlympus
[2008/12/08 17:28:14 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\HiddenSecretsNightmare
[2008/12/08 12:16:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Questtracers
[2008/12/08 11:55:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NevoSoft Games
[2008/12/08 11:51:33 | 00,000,000 | ---D | C] -- C:\WINDOWS\Farm Craft
[2008/12/07 15:49:24 | 00,000,000 | ---D | C] -- C:\Program Files\Magic Encyclopedia First Story
[2008/12/04 18:57:05 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Alawar Stargaze
[2008/12/04 13:22:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Application Data\iWin
[2008/12/04 13:22:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\iWin
[2008/12/04 13:22:26 | 00,000,000 | ---D | C] -- C:\WINDOWS\Pageant Princess
[2008/12/03 19:19:47 | 00,000,000 | ---D | C] -- C:\WINDOWS\House of Wonders - Kitty Kat Wedding
[2008/12/03 19:19:47 | 00,000,000 | ---D | C] -- C:\Program Files\House of Wonders - Kitty Kat Wedding
[2008/12/03 16:52:12 | 00,000,000 | ---D | C] -- C:\WINDOWS\Alabama Smithin Escape from Pompeii
[2008/12/03 14:51:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Application Data\SecretIslandEng
[2008/12/03 14:42:22 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Application Data\Shape games
[2008/12/03 14:06:48 | 00,059,392 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Mes documents\W1B75F75T7.doc
[2008/12/01 19:42:27 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NeptunesAdve
[2008/12/01 15:59:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Playrix Entertainment

========== Files - Modified Within 90 Days ==========

[5 C:\WINDOWS\System32\*.tmp files]
[6 C:\WINDOWS\*.tmp files]
[2013/07/18 17:03:24 | 01,825,892 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Bureau\margaux1.JPG
[2013/07/18 17:03:06 | 01,800,380 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Bureau\margaux.JPG
[2009/02/28 18:44:52 | 00,497,152 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Propriétaire\Bureau\OTListIt2.exe
[2009/02/28 18:40:07 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009/02/28 18:02:19 | 00,000,738 | ---- | M] () -- C:\WINDOWS\win.ini
[2009/02/28 17:53:11 | 00,001,564 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Bureau\FindyKill.lnk
[2009/02/28 17:51:00 | 01,216,021 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Bureau\FindyKill.exe
[2009/02/28 13:47:42 | 00,001,374 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009/02/27 16:10:48 | 00,000,766 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Bureau\Hospital Hustle.lnk
[2009/02/27 14:34:34 | 00,001,865 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Bureau\Farm Frenzy Pizza Party.lnk
[2009/02/27 14:18:56 | 00,000,730 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\eMule.lnk
[2009/02/27 14:18:31 | 03,342,809 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Mes documents\eMule0.49c-Installer.exe
[2009/02/27 13:56:48 | 00,069,632 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2009/02/26 16:14:24 | 02,106,914 | -H-- | M] () -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\IconCache.db
[2009/02/26 16:13:50 | 00,000,296 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Bureau\Raccourci vers pharaon.exe.lnk
[2009/02/26 15:54:42 | 00,021,840 | ---- | M] () -- C:\WINDOWS\System32\SIntfNT.dll
[2009/02/26 15:54:42 | 00,017,212 | ---- | M] () -- C:\WINDOWS\System32\SIntf32.dll
[2009/02/26 15:54:42 | 00,012,067 | ---- | M] () -- C:\WINDOWS\System32\SIntf16.dll
[2009/02/26 14:47:07 | 00,000,370 | ---- | M] () -- C:\WINDOWS\SIERRA.INI
[2009/02/19 20:33:17 | 00,032,256 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Bureau\CVSylvie.doc
[2009/02/19 20:32:09 | 00,013,260 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Bureau\Poste_Pilote.docx
[2009/02/19 19:59:09 | 00,010,952 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Bureau\03.docx
[2009/02/18 18:03:39 | 00,000,109 | ---- | M] () -- C:\WINDOWS\NAVIGMA.INI
[2009/02/18 16:39:44 | 00,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2009/02/15 12:31:21 | 00,000,630 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Bureau\µTorrent.lnk
[2009/02/15 12:31:03 | 00,270,128 | ---- | M] (BitTorrent, Inc.) -- C:\Documents and Settings\Propriétaire\Bureau\utorrent.exe
[2009/02/12 17:12:46 | 00,005,936 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Mes documents\picasaweblogo-fr.zip
[2009/02/11 15:06:10 | 00,001,836 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Google Earth.lnk
[2009/02/11 13:58:40 | 00,003,121 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2009/02/06 19:39:24 | 00,308,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WLXPGSS.SCR
[2009/02/06 18:52:40 | 00,049,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\sirenacm.dll
[2009/02/06 18:10:32 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2009/02/06 18:04:19 | 00,044,544 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/02/05 22:11:35 | 01,256,296 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2009/02/05 22:08:19 | 00,093,296 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2009/02/05 22:08:10 | 00,094,032 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2009/02/05 22:07:23 | 00,114,768 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2009/02/05 22:06:20 | 00,051,376 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2009/02/05 22:06:10 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2009/02/05 22:05:11 | 00,026,944 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2009/02/05 22:04:45 | 00,097,480 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr
[2009/02/05 21:48:35 | 00,001,709 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\avast! Antivirus.lnk
[2009/02/05 21:29:05 | 00,268,600 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009/02/05 21:24:38 | 01,036,718 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009/02/05 21:24:38 | 00,478,696 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2009/02/05 21:24:38 | 00,414,910 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009/02/05 21:24:38 | 00,073,544 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2009/02/05 21:24:38 | 00,062,430 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009/02/05 17:24:07 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe
[2009/02/05 17:16:15 | 00,002,855 | ---- | M] () -- C:\WINDOWS\System32\mem.PIF
[2009/02/04 19:43:19 | 14,771,744 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Propriétaire\Bureau\IE7-WindowsXP-x86-fra.exe
[2009/02/03 18:32:11 | 02,749,952 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Bureau\Rail_Spain_Work3_1.xls
[2009/02/03 18:29:15 | 02,271,478 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Bureau\random-generator-excel-20.zip
[2009/02/03 17:51:11 | 00,230,400 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Bureau\Rail_Spain_Work3.xls
[2009/01/26 11:01:24 | 00,471,316 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Bureau\batimat.pdf
[2009/01/14 21:42:32 | 00,235,475 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Bureau\ps3cb.PDF
[2009/01/14 21:36:36 | 00,236,944 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Mes documents\ps3.PDF
[2009/01/14 16:11:32 | 00,038,496 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009/01/14 16:11:28 | 00,015,504 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009/01/13 20:07:34 | 00,000,000 | ---- | M] () -- C:\WINDOWS\GAME.INI
[2009/01/13 16:10:26 | 00,000,833 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Mes documents\Alcohol 120%.lnk
[2009/01/13 16:05:54 | 00,717,296 | ---- | M] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2009/01/13 16:05:38 | 10,600,544 | ---- | M] (Alcohol Soft) -- C:\Documents and Settings\Propriétaire\Mes documents\Alcohol120_trial_1.9.8.7117.exe
[2009/01/03 15:01:59 | 00,000,606 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Mes documents\MSNFix.lnk
[2009/01/01 15:20:06 | 00,003,702 | ---- | M] () -- C:\WINDOWS\System32\msupdte.MSNFix
[2008/12/31 20:29:40 | 01,116,568 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Propriétaire\Mes documents\EmoticonesDejantees.exe
[2008/12/31 20:24:34 | 00,989,544 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Propriétaire\Mes documents\emoticones.exe
[2008/12/31 19:28:17 | 00,001,186 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Bureau\1. Windows Live Messenger.lnk
[2008/12/31 19:13:21 | 00,000,924 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Mes documents\Mes dossiers de partage.lnk
[2008/12/31 18:58:48 | 00,001,119 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Menu Démarrer\Programmes\Démarrage\Outil de notification Live Search.lnk
[2008/12/31 18:58:47 | 00,001,378 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Mes documents\Aller sur MSN.fr.lnk
[2008/12/17 18:27:54 | 00,230,432 | ---- | M] () -- C:\SPC230NC.DAT
[2008/12/17 15:06:36 | 00,000,286 | RHS- | M] () -- C:\boot.ini
[2008/12/17 15:05:11 | 02,877,478 | R--- | M] () -- C:\Documents and Settings\Propriétaire\Bureau\ComboFix.exe
[2008/12/11 12:00:23 | 00,000,499 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Mes documents\Raccourci vers ComboFix.exe.lnk
[2008/12/08 17:01:56 | 00,055,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\fssfltr_tdi.sys
[2008/12/03 14:06:50 | 00,059,392 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Mes documents\W1B75F75T7.doc

========== Alternate Data Streams ==========

@Alternate Data Stream - 88 bytes -> C:\WINDOWS\System32\PnkBstrA.txt:SummaryInformation
@Alternate Data Stream - 88 bytes -> C:\WINDOWS\System32\ntdll.dll:SummaryInformation
@Alternate Data Stream - 88 bytes -> C:\WINDOWS\System32\lsasrv.dll:SummaryInformation
@Alternate Data Stream - 88 bytes -> C:\WINDOWS\System32\dllhst3g.exe:SummaryInformation
@Alternate Data Stream - 196 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E66FFABE
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4DDCE10B
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A4E5024A
@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:77846FFE
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E55CE2D1
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0D31DA45
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:BD9F7E4E
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:9EB9A9EC
@Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0A73A758
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5C321E34
@Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B1FBA7E1
@Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A688EF17
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:9AA05701
@Alternate Data Stream - 111 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D055FC10
@Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4AD2C54D
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:708BB0FA
@Alternate Data Stream - 108 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D507B5A8
@Alternate Data Stream - 108 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:957E9765
@Alternate Data Stream - 107 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8EEDCEA2
@Alternate Data Stream - 107 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5C270C64
@Alternate Data Stream - 107 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:08D8BB20
@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:417B6FAC
@Alternate Data Stream - 104 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2
@Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3C5ABDC7
@Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:1D9ED8F7
@Alternate Data Stream - 0 bytes -> C:\WINDOWS\System32\PnkBstrA.txt:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
@Alternate Data Stream - 0 bytes -> C:\WINDOWS\System32\ntdll.dll:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
@Alternate Data Stream - 0 bytes -> C:\WINDOWS\System32\lsasrv.dll:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
@Alternate Data Stream - 0 bytes -> C:\WINDOWS\System32\dllhst3g.exe:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
<End>
Avatar de l’utilisateur
Wildcat
 
Messages: 72
Inscription: 01 Mai 2006, 17:51

Messagede Wildcat » 28 Fév 2009, 19:39

Et...

3) Extras 28/02/09

OTListIt Extras logfile created on: 28/02/2009 18:46:46 - Run 1
OTListIt2 by OldTimer - Version 2.0.3.0 Folder = C:\Documents and Settings\Propriétaire\Bureau
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 1,52 Gb Available Physical Memory | 76,28% Memory free
3,85 Gb Paging File | 3,44 Gb Available in Paging File | 89,51% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97,65 Gb Total Space | 62,54 Gb Free Space | 64,04% Space Free | Partition Type: NTFS
Drive D: | 368,10 Gb Total Space | 301,82 Gb Free Space | 81,99% Space Free | Partition Type: NTFS
Drive E: | 666,32 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
F: Drive not present or media not loaded
Drive G: | 186,31 Gb Total Space | 185,34 Gb Free Space | 99,48% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive J: | 3,84 Gb Total Space | 2,38 Gb Free Space | 62,08% Space Free | Partition Type: FAT32
Drive Z: | 929,51 Gb Total Space | 576,78 Gb Free Space | 62,05% Space Free | Partition Type: FAT32

Computer Name: VINY-71E5D7ACCC
Current User Name: Propriétaire
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Output = Standard
File Age = 90 Days
Company Name Whitelist: On

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.hta [@ = ] -- Reg Error: Key error. File not found
.html [@ = aolfile_HTM] -- C:\Program Files\AOL 9.0a\aol.exe (America Online, Inc.)
.js [@ = jsfile] -- Reg Error: Key error. File not found
.jse [@ = Reg Error: Key error.] -- Reg Error: Key error. File not found
.vbe [@ = Reg Error: Key error.] -- Reg Error: Key error. File not found
.vbs [@ = VBSFile] -- Reg Error: Key error. File not found
.wsf [@ = Reg Error: Key error.] -- Reg Error: Key error. File not found
.wsh [@ = Reg Error: Key error.] -- Reg Error: Key error. File not found

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found

[HKEY_USERS\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[2007/02/09 16:59:48 | 00,259,632 | ---- | M] (America Online, Inc.) -- C:\Program Files\AOL 9.0b\waol.exe:*:Enabled:AOL
[2009/02/06 18:51:28 | 03,885,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger
[2009/02/06 18:23:32 | 01,170,272 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
[2009/02/22 20:15:14 | 05,668,864 | ---- | M] (http://www.emule-project.net) -- C:\Program Files\eMule\emule.exe:*:Enabled:eMule
[2008/02/21 16:19:30 | 00,613,792 | ---- | M] (Philips Consumer Electronics) -- C:\Program Files\Philips\Intelligent Agent\Philips Intelligent Agent.exe:*:Enabled:Philips Intelligent Agent
[2007/02/09 16:59:48 | 00,259,632 | ---- | M] (America Online, Inc.) -- C:\Program Files\AOL 9.0a\waol.exe:*:Enabled:AOL 9.0a
[2007/02/09 16:59:48 | 00,259,632 | ---- | M] (America Online, Inc.) -- C:\Program Files\AOL 9.0b\waol.exe:*:Enabled:AOL
[2006/11/03 08:17:27 | 00,010,800 | ---- | M] (AOL LLC) -- C:\Program Files\Fichiers communs\AOL\Loader\aolload.exe:*:Enabled:AOL Loader
[2006/09/26 01:52:48 | 00,050,736 | ---- | M] (America Online, Inc.) -- C:\Program Files\Fichiers communs\AOL\1203422821\ee\aolsoftware.exe:*:Enabled:AOL Services
[2008/02/18 23:05:36 | 00,026,112 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\realplay.exe:*:Enabled:RealPlayer
[2001/05/16 10:28:50 | 00,212,992 | ---- | M] (Naviant, Inc.) -- C:\Program Files\ScanSoft\OmniPageSE\EregFre\NAVBrowser.exe:*:Enabled:NAVBrowser
[2009/02/15 12:31:21 | 00,270,128 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent
[2009/02/06 18:51:28 | 03,885,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger
[2009/02/06 18:23:32 | 01,170,272 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{025C3792-E9C6-432A-92C1-661F99D021CA}" = Ulead Photo Explorer 8.5 SE Basic
"{02DFF6B1-1654-411C-8D7B-FD6052EF016F}" = Apple Software Update
"{03F1CC67-5BD8-4C36-8394-76311B2AE69A}" = ArcSoft PhotoStudio 5
"{059C042E-796A-4ACC-A81A-ECC2010BB78C}" = Windows Live Messenger
"{05F350C6-FA6A-40D0-A130-FB941B39152C}" = Philips SPC230NC Webcam
"{08CA9554-B5FE-4313-938F-D4A417B81175}" = QuickTime
"{0BD83598-C2EF-3343-847B-7D2E84599128}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live
"{2231CE39-B963-4B9D-823A-F412ECA637B1}" = Windows Live Writer
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216010FF}" = Java(TM) 6 Update 11
"{3101CB58-3482-4D21-AF1A-7057FC935355}" = KhalInstallWrapper
"{3248F0A8-6813-11D6-A77B-00B0D0160030}" = Java(TM) 6 Update 3
"{3248F0A8-6813-11D6-A77B-00B0D0160050}" = Java(TM) 6 Update 5
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7
"{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}" = JMB36X Raid Configurer
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3E31821C-7917-367E-938E-E65FC413EA31}" = Microsoft .NET Framework 3.5 Language Pack SP1 - fra
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = erLT
"{44E54A81-9D91-4AA1-9417-80AFF134F5FF}" = Galerie de photos Windows Live
"{45235788-142C-44BE-8A4D-DDE9A84492E5}" = AGEIA PhysX v7.09.13
"{47BF1BD6-DCAC-468F-A0AD-E5DECC2211C3}" = Bonjour
"{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}" = Junk Mail filter update
"{51B46054-AE28-4BCD-8DE8-3901354F0A1C}" = Multimedia Keyboard Driver
"{548EAC70-EE00-11DD-908C-005056806466}" = Google Earth
"{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3
"{599858EA-0422-481D-944A-DA049C626A25}" = AirPort
"{5D186585-1FCE-421B-A522-CF655153832E}" = Youda Farmer
"{6249C22D-E6A8-407B-BA8B-40298848ED94}" = OmniPage SE
"{63DC2DA0-2A6C-4C38-9249-B75395458657}" = Windows Live Mail
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72AD53CC-CCC0-3757-8480-9EE176866A7C}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA
"{7370DF47-B4F9-4279-BFC3-3F09919F720D}" = Installation Windows Live
"{7d921126-4ea9-40ae-9889-33a848c5724e}.sdb" = cleopatre
"{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}" = Windows Live Call
"{85AFD3AA-4AAF-4A6F-B3E1-C47252AB0378}" = Conseiller de mise à niveau Windows Vista
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8AEA4BE2-2B52-41C0-BB7D-9F2D17AF1036}" = Nero 8
"{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard
"{90120000-0010-040C-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (French) 12
"{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007
"{90120000-0015-040C-0000-0000000FF1CE}" = Microsoft Office Access MUI (French) 2007
"{90120000-0016-040C-0000-0000000FF1CE}" = Microsoft Office Excel MUI (French) 2007
"{90120000-0018-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007
"{90120000-0019-040C-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (French) 2007
"{90120000-001A-040C-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (French) 2007
"{90120000-001B-040C-0000-0000000FF1CE}" = Microsoft Office Word MUI (French) 2007
"{90120000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2007
"{90120000-0044-040C-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (French) 2007
"{90120000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2007
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95120000-0120-040C-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{9C5EB781-0D37-44B8-9A58-77B3E4BF5F5E}" = Windows Live Sync
"{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}" = Microsoft Search Enhancement Pack
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{B951D13B-18E2-41A0-BAE8-349D758B3B29}" = ArcSoft VideoImpression 2
"{BCE46757-7674-4416-BEDB-68205A60409E}" = CanoScan Toolbox 4.1
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C1D14C0D-FDAA-4DF2-8441-A902805CCE8C}" = ArcSoft PhotoBase 3
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CECB7782-F35F-45CE-97C0-74BBBDC51C22}" = Webcam Video Viewer
"{D6A2DDE3-9D7C-412C-932A-756580D29919}" = Windows Live Contrôle parental
"{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}" = Assistant de connexion Windows Live
"{DECE22F4-EEDD-4615-BC56-2F4827FAD64B}" = WiFi Station
"{E088AC54-7379-4C8F-A8B6-D2381E5A1172}" = Manual CanoScan 3000,3000F
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Codeur Windows Media Série 9
"{E63E34A7-E552-412B-9E40-FD6FC5227ABA}" = Uniblue RegistryBooster 2009
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F7D27C70-90F5-49B9-B188-0A133C0CE353}" = Windows Live Toolbar
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"AIM Toolbar" = AIM Toolbar
"America Online fr" = AOL (France)
"AOL Toolbar" = AOL Toolbar 5.0
"AOL Uninstaller" = AOL Uninstaller (Choose which Products to Remove)
"AOL YGP Screensaver" = Ecran de veille AOL Photos
"AOLCoach fr" = AOL Coach Version 1.0(Build:20040229.1 fr)
"AOLSAV" = AOL Auto-diagnostic
"avast!" = avast! Antivirus
"Beach Party Craze1.0" = Beach Party Craze
"BFGC" = Big Fish Games Client
"Canon Setup Utility 2.0" = Canon Setup Utility 2.0
"CANONBJ_Deinstall_CNMCP79.DLL" = Canon iP5200
"CCleaner" = CCleaner (remove only)
"Easy-PhotoPrint" = Canon Utilities Easy-PhotoPrint
"Easy-WebPrint" = Easy-WebPrint
"eMule" = eMule
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"Farm Frenzy Pizza Party 1.00" = Farm Frenzy Pizza Party 1.00
"FindyKill" = FindyKill
"Fix-it-up - Kate's Adventure 1.00" = Fix-it-up - Kate's Adventure 1.00
"HijackThis" = HijackThis 1.99.1
"Hospital Hustle_is1" = Hospital Hustle
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"InstallShield_{51B46054-AE28-4BCD-8DE8-3901354F0A1C}" = Multimedia Keyboard Driver
"LuckyTender" = LuckyTender 1.3.0
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MediaNavigation.CDLabelPrint" = CD-LabelPrint
"Microsoft .NET Framework 3.5 Language Pack SP1 - fra" = Module linguistique Microsoft .NET Framework 3.5 SP1- fra
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Miriel The Magical Merchant1.0" = Miriel The Magical Merchant
"Mozilla Firefox (3.0.5)" = Mozilla Firefox (3.0.5)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"Pharaoh" = Pharaon
"Pharaon" = Pharaon
"Philips Intelligent Agent_is1" = Philips Intelligent Agent
"Premium Security Suite" = Avira Premium Security Suite
"Programme de désinstallation AOL" = AOL - Assistant de désinstallation
"PROPLUS" = Microsoft Office Professional Plus 2007
"ProtectDisc Driver 11" = ProtectDisc Driver, Version 11
"PunkBusterSvc" = PunkBuster Services
"Random Generator for Microsoft Excel_is1" = Random Generator for Excel 2.0
"RealPlayer 6.0" = RealPlayer Basic
"SoftwareUpdUtility" = Download Updater (AOL LLC)
"StreetPlugin" = Learn2 Player (Uninstall Only)
"Uniblue RegistryBooster 2009" = Uniblue RegistryBooster 2009
"ViewpointMediaPlayer" = Viewpoint Media Player
"VLC media player" = VideoLAN VLC media player 0.8.6d
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"WIC" = Windows Imaging Component
"Windows Media Encoder 9" = Codeur Windows Media Série 9
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Lecteur Windows Media 11
"WinISO_is1" = WinISO 5.3
"WinLiveSuite_Wave3" = Installation Windows Live
"WinRAR archiver" = Archiveur WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
"Yahoo! Toolbar" = Yahoo! Toolbar
"YInstHelper" = Yahoo! Install Manager

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Live Search" = Notification Live Search
"uTorrent" = µTorrent

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1078081533-789336058-725345543-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Live Search" = Notification Live Search
"uTorrent" = µTorrent

========== Last 10 Event Log Errors ==========

[ Antivirus Events ]
Error - 04/01/2009 12:29:34 | Computer Name = VINY-71E5D7ACCC | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Documents and Settings\Propriétaire\Bureau\jeux gestion temps\Stand O Food 2.exe
failed, 0000001E.

Error - 04/01/2009 12:29:36 | Computer Name = VINY-71E5D7ACCC | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Documents and Settings\Propriétaire\Bureau\jeux gestion temps\The Great Chocolate
Chase.exe failed, 0000001E.

Error - 04/01/2009 13:32:34 | Computer Name = VINY-71E5D7ACCC | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Documents and Settings\Propriétaire\Bureau\jeux gestion temps\Jewelleria.exe
failed, 0000001E.

Error - 05/01/2009 13:33:46 | Computer Name = VINY-71E5D7ACCC | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Documents and Settings\Propriétaire\Bureau\jeux gestion temps\Jewelleria.exe
failed, 0000001E.

Error - 06/01/2009 14:25:04 | Computer Name = VINY-71E5D7ACCC | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Documents and Settings\Propriétaire\Bureau\jeux gestion temps\Jewelleria.exe
failed, 0000001E.

Error - 07/01/2009 12:19:48 | Computer Name = VINY-71E5D7ACCC | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Documents and Settings\Propriétaire\Bureau\jeux gestion temps\The Great Chocolate
Chase.exe failed, 0000001E.

Error - 10/01/2009 13:02:38 | Computer Name = VINY-71E5D7ACCC | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Documents and Settings\Propriétaire\Bureau\jeux gestion temps\Jewelleria.exe
failed, 0000001E.

Error - 19/01/2009 14:42:48 | Computer Name = VINY-71E5D7ACCC | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Documents and Settings\Propriétaire\Bureau\jeux gestion temps\The Great Chocolate
Chase.exe failed, 0000001E.

Error - 21/01/2009 13:31:55 | Computer Name = VINY-71E5D7ACCC | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Documents and Settings\Propriétaire\Bureau\jeux gestion temps\Cooking Dash.exe
failed, 0000001E.

Error - 28/01/2009 15:02:18 | Computer Name = VINY-71E5D7ACCC | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Documents and Settings\Propriétaire\Bureau\jeux gestion temps\Cooking Dash.exe
failed, 0000001E.

[ Application Events ]
Error - 26/02/2009 16:11:17 | Computer Name = VINY-71E5D7ACCC | Source = Google Update | ID = 20
Description =

Error - 26/02/2009 16:25:11 | Computer Name = VINY-71E5D7ACCC | Source = SecurityCenter | ID = 1802
Description = Le service Centre de sécurité de Windows n'a pas pu établir de requêtes
d'événements avec WMI pour contrôler le programme antivirus et le pare-feu tiers.

Error - 26/02/2009 16:36:40 | Computer Name = VINY-71E5D7ACCC | Source = Google Update | ID = 20
Description =

Error - 27/02/2009 08:37:53 | Computer Name = VINY-71E5D7ACCC | Source = SecurityCenter | ID = 1802
Description = Le service Centre de sécurité de Windows n'a pas pu établir de requêtes
d'événements avec WMI pour contrôler le programme antivirus et le pare-feu tiers.

Error - 28/02/2009 08:48:21 | Computer Name = VINY-71E5D7ACCC | Source = SecurityCenter | ID = 1802
Description = Le service Centre de sécurité de Windows n'a pas pu établir de requêtes
d'événements avec WMI pour contrôler le programme antivirus et le pare-feu tiers.

Error - 28/02/2009 12:56:50 | Computer Name = VINY-71E5D7ACCC | Source = SecurityCenter | ID = 1802
Description = Le service Centre de sécurité de Windows n'a pas pu établir de requêtes
d'événements avec WMI pour contrôler le programme antivirus et le pare-feu tiers.

Error - 28/02/2009 13:04:58 | Computer Name = VINY-71E5D7ACCC | Source = SecurityCenter | ID = 1802
Description = Le service Centre de sécurité de Windows n'a pas pu établir de requêtes
d'événements avec WMI pour contrôler le programme antivirus et le pare-feu tiers.

Error - 28/02/2009 13:11:40 | Computer Name = VINY-71E5D7ACCC | Source = SecurityCenter | ID = 1802
Description = Le service Centre de sécurité de Windows n'a pas pu établir de requêtes
d'événements avec WMI pour contrôler le programme antivirus et le pare-feu tiers.

Error - 28/02/2009 13:30:13 | Computer Name = VINY-71E5D7ACCC | Source = SecurityCenter | ID = 1802
Description = Le service Centre de sécurité de Windows n'a pas pu établir de requêtes
d'événements avec WMI pour contrôler le programme antivirus et le pare-feu tiers.

Error - 28/02/2009 13:40:58 | Computer Name = VINY-71E5D7ACCC | Source = SecurityCenter | ID = 1802
Description = Le service Centre de sécurité de Windows n'a pas pu établir de requêtes
d'événements avec WMI pour contrôler le programme antivirus et le pare-feu tiers.

[ System Events ]
Error - 26/02/2009 15:02:28 | Computer Name = VINY-71E5D7ACCC | Source = W32Time | ID = 39452701
Description = Le fournisseur de temps NtpClient est configuré pour acquérir le temps
à partir d'une ou plusieurs sources de temps, cependant aucune source n'est actuellement
accessible. Aucune tentative pour en contacter une ne sera effectuée d'ici 14 minutes.
NtpClient
n'a pas de source de temps précis.

Error - 26/02/2009 15:03:59 | Computer Name = VINY-71E5D7ACCC | Source = Windows Update Agent | ID = 16
Description = Connexion impossible : Windows ne parvient pas à se connecter au service
Mises à jour automatiques et ne peut donc pas procéder au téléchargement et à l'installation
des mises à jour définies par la planification. Windows continuera d'essayer d'établir
la connexion.

Error - 26/02/2009 15:57:48 | Computer Name = VINY-71E5D7ACCC | Source = W32Time | ID = 39452689
Description = Fournisseur de temps NtpClient : une erreur s'est produite lors de
la recherche DNS de l'homologue manuellement configuré 'time.windows.com,0x1'. NtpClient
va essayer à nouveau la recherche DNS dans 15 minutes. L'erreur était : Une opération
a été tentée sur un hôte impossible à atteindre. (0x80072751)

Error - 26/02/2009 15:57:48 | Computer Name = VINY-71E5D7ACCC | Source = W32Time | ID = 39452701
Description = Le fournisseur de temps NtpClient est configuré pour acquérir le temps
à partir d'une ou plusieurs sources de temps, cependant aucune source n'est actuellement
accessible. Aucune tentative pour en contacter une ne sera effectuée d'ici 14 minutes.
NtpClient
n'a pas de source de temps précis.

Error - 26/02/2009 16:12:47 | Computer Name = VINY-71E5D7ACCC | Source = W32Time | ID = 39452689
Description = Fournisseur de temps NtpClient : une erreur s'est produite lors de
la recherche DNS de l'homologue manuellement configuré 'time.windows.com,0x1'. NtpClient
va essayer à nouveau la recherche DNS dans 30 minutes. L'erreur était : Une opération
a été tentée sur un hôte impossible à atteindre. (0x80072751)

Error - 26/02/2009 16:12:47 | Computer Name = VINY-71E5D7ACCC | Source = W32Time | ID = 39452701
Description = Le fournisseur de temps NtpClient est configuré pour acquérir le temps
à partir d'une ou plusieurs sources de temps, cependant aucune source n'est actuellement
accessible. Aucune tentative pour en contacter une ne sera effectuée d'ici 30 minutes.
NtpClient
n'a pas de source de temps précis.

Error - 26/02/2009 16:16:32 | Computer Name = VINY-71E5D7ACCC | Source = W32Time | ID = 39452689
Description = Fournisseur de temps NtpClient : une erreur s'est produite lors de
la recherche DNS de l'homologue manuellement configuré 'time.windows.com,0x1'. NtpClient
va essayer à nouveau la recherche DNS dans 15 minutes. L'erreur était : Une opération
a été tentée sur un hôte impossible à atteindre. (0x80072751)

Error - 26/02/2009 16:16:32 | Computer Name = VINY-71E5D7ACCC | Source = W32Time | ID = 39452701
Description = Le fournisseur de temps NtpClient est configuré pour acquérir le temps
à partir d'une ou plusieurs sources de temps, cependant aucune source n'est actuellement
accessible. Aucune tentative pour en contacter une ne sera effectuée d'ici 14 minutes.
NtpClient
n'a pas de source de temps précis.

Error - 26/02/2009 16:26:29 | Computer Name = VINY-71E5D7ACCC | Source = W32Time | ID = 39452689
Description = Fournisseur de temps NtpClient : une erreur s'est produite lors de
la recherche DNS de l'homologue manuellement configuré 'time.windows.com,0x1'. NtpClient
va essayer à nouveau la recherche DNS dans 15 minutes. L'erreur était : Une opération
a été tentée sur un hôte impossible à atteindre. (0x80072751)

Error - 26/02/2009 16:26:29 | Computer Name = VINY-71E5D7ACCC | Source = W32Time | ID = 39452701
Description = Le fournisseur de temps NtpClient est configuré pour acquérir le temps
à partir d'une ou plusieurs sources de temps, cependant aucune source n'est actuellement
accessible. Aucune tentative pour en contacter une ne sera effectuée d'ici 14 minutes.
NtpClient
n'a pas de source de temps précis.


<End>
Avatar de l’utilisateur
Wildcat
 
Messages: 72
Inscription: 01 Mai 2006, 17:51

Messagede nickW » 02 Mar 2009, 01:33

Bonsoir,

Wildcat, le 04/02/2009, a écrit:Impossible de démarrer Avast, Ccleaner, et impossible de démarrer en mode sans echec !!


Est-ce toujours vrai?

Comment se comporte le PC?


A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Suivante

Retourner vers Sécurité (Contamination - Décontamination)

Qui est en ligne

Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 33 invités

cron