Demande d'analyse

Sécurité et insécurité. Virus, Trojans, Spywares, Failles etc. …

Modérateur: Modérateurs et Modératrices

Règles du forum
Assiste.com a suspendu l'assistance à la décontamination après presque 15 ans sur l'ancien forum puis celui-ci. Voir :

Procédure de décontamination 1 - Anti-malware
Décontamination anti-malwares

Procédure de décontamination 2 - Anti-malware et antivirus (La Manip)
La Manip - Procédure standard de décontamination

Entretien périodique d'un PC sous Windows
Entretien périodique d'un PC sous Windows

Protection des navigateurs, de la navigation et de la vie privée
Protéger le navigateur, la navigation et la vie privée

Demande d'analyse

Messagede ferhu » 30 Aoû 2010, 18:05

Bonsoir suite du sujet

http://assiste.forum.free.fr/viewtopic. ... 186#156186

Ici la correction n'a pas été faite conformément aux recommandations
Elle avait été faite précédemment dans le topic cité ci-dessus pour deux autres éléments infectés.

Merci de votre aide !

Code: Tout sélectionner
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Version de la base de données: 4509

Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13

30/08/2010 18:48:39
mbam-log-2010-08-30 (18-48-39).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 132044
Temps écoulé: 9 minute(s), 15 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 1
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
ferhu
 
Messages: 8
Inscription: 29 Aoû 2010, 19:10

Messagede ferhu » 30 Aoû 2010, 18:06

OTL Extras logfile created on: 30/08/2010 18:53:19 - Run 1
OTL by OldTimer - Version 3.2.11.0 Folder = C:\Documents and Settings\HP_Propriétaire\Bureau
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

447,00 Mb Total Physical Memory | 130,00 Mb Available Physical Memory | 29,00% Memory free
1,00 Gb Paging File | 1,00 Gb Available in Paging File | 63,00% Paging File free
Paging file location(s): C:\pagefile.sys 672 1344 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 180,13 Gb Total Space | 159,25 Gb Free Space | 88,40% Space Free | Partition Type: NTFS
Drive D: | 6,15 Gb Total Space | 0,63 Gb Free Space | 10,30% Space Free | Partition Type: FAT32
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: NOM-EB85C523610
Current User Name: HP_Propriétaire
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

[HKEY_USERS\S-1-5-21-1485120347-1273226354-2920547573-1008\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe" = C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" = C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe" = C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe -- (Hewlett-Packard)
"C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe" = C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe:*:Enabled:hpqdia.exe -- ( )
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\CyberLink\PowerCinema\PowerCinema.exe" = C:\Program Files\CyberLink\PowerCinema\PowerCinema.exe:*:Enabled:CyberLink PowerCinema -- (CyberLink Corp.)
"C:\Program Files\CyberLink\PowerCinema\PCMService.exe" = C:\Program Files\CyberLink\PowerCinema\PCMService.exe:*:Enabled:CyberLink PowerCinema Resident Program -- (CyberLink Corp.)
"C:\Program Files\AOL 9.0\waol.exe" = C:\Program Files\AOL 9.0\waol.exe:*:Enabled:AOL France -- File not found
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{075473F5-846A-448B-BCB3-104AA1760205}" = Sonic RecordNow Data
"{0A65A3BD-54B5-4d0d-B084-7688507813F5}" = SlideShow
"{0B33B738-AD79-4E32-90C5-E67BFB10BBFF}" = AiO_Scan
"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = Panneau de contrôle ATI
"{0BF5FBE7-3907-4A1F-9E48-8B66E52850D6}" = TrayApp
"{0CB9668D-F979-4F31-B8B8-67FE90F929F8}" = Bonjour
"{1248C09A-BD6B-47F5-BF3F-CD2B700D9FCB}" = ccCommon
"{12E2B9E9-05B1-407d-B0FD-B5F350535125}" = Norton Internet Security
"{133742BA-6F46-4D3E-85AF-78631D9AD8B8}" = Installation Windows Live
"{1341D838-719C-4A05-B50F-49420CA1B4BB}" = HP Boot Optimizer
"{15C0AF59-4877-49B6-B8C6-A61CE54515F5}" = cp_OnlineProjectsConfig
"{1E1F1E70-14D8-4380-8652-BD1A895A7D65}" = Status
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live
"{21657574-BD54-48A2-9450-EB03B2C7FC29}" = Sonic MyDVD Plus
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{23012310-3E05-46A5-88A9-C6CBCABCAC79}" = Amélioration de nos services
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{2376813B-2E5A-4641-B7B3-A0D5ADB55229}" = HPPhotoSmartExpress
"{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = PowerCinema
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 21
"{27428D1B-8CBA-4EEA-B9C0-A23CA7B4FCC1}" = muvee autoProducer 5.0
"{2C5D07FB-31A2-4F2D-9FDA-0B24ACD42BD0}" = HP Deskjet Printer Preload
"{2EBF25F1-F8A2-40EA-92BE-931C142A44E2}" = CC_ccProxyExt
"{2F58D60D-2BFD-4467-9B4D-64E7355C329D}" = Sonic_PrimoSDK
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Sonic Update Manager
"{30738666-9805-4926-A78F-91DA33B6C437}" = ccPxyCore
"{31263605-FC84-4787-B847-BA445B147E24}" = ScannerCopy
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{3248F0A8-6813-11D6-A77B-00B0D0150050}" = J2SE Runtime Environment 5.0 Update 5
"{33BF0960-DBA3-4187-B6CC-C969FCFA2D25}" = SkinsHP1
"{33D6CC28-9F75-4d1b-A11D-98895B3A3729}" = HP Photosmart 330,380,420,470,7800,8000,8200 Series
"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{352F5013-07DC-446D-8DB6-38F339086C60}" = LightScribe 1.4.84.1
"{36D620AD-EEBA-4973-BA86-0C9AE6396620}" = OptionalContentQFolder
"{3CF99DC3-38FD-46E6-A6B4-9C70074E020C}" = DocumentViewer
"{41E776A5-9B12-416D-9A12-B4F7B044EBED}" = CP_Package_Basic1
"{445B183D-F4F1-45C8-B9DB-F11355CA657B}" = Windows Live Messenger
"{449F3A9E-9903-4a0d-A209-08030D45A935}" = Norton Internet Security
"{45B8A76B-57EC-4242-B019-066400CD8428}" = BufferChm
"{45D707E9-F3C4-11D9-A373-0050BAE317E1}" = HP DVD Play 2.1
"{48185814-A224-447a-81DA-71BD20580E1B}" = Norton Internet Security
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4BE53DB2-C1F2-44D1-A9AB-1630BA7F2AF1}" = SolutionCenter
"{54E3707F-808E-4fd4-95C9-15D1AB077E5D}" = NewCopy
"{5677563D-0CB1-485F-9E18-C5025306BB3F}" = Norton AntiSpam
"{5B79CFD1-6845-4158-9D7D-6BE89DF2C135}" = HP PSC & OfficeJet 5.3.B
"{5CFD7508-7774-48FE-8280-7A3C0AE71755}" = Services Internet
"{5D61626A-BD55-4e42-82EE-4AE89D8FD050}" = HP Appareils photos Photosmart 6.0
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Sonic Express Labeler
"{6696D9A4-28A8-4F5A-8E9A-2E8974C8C39C}" = RandMap
"{68763C27-235D-4165-A961-FDEA228CE504}" = AiOSoftwareNPI
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6A118C80-B382-41c0-8907-CDD0BF5EFE6E}" = CameraDrivers
"{729DF902-05F9-4C00-9E6D-411119824E5F}" = hpiCamDrvQFolder
"{736C803C-DD3B-4015-BC51-AFB9E67B9076}" = Readme
"{755EC5E3-FD51-46bd-A57F-7A2D56FBF061}" = PSTAPlugin
"{769A295C-DCF4-41d6-AFBA-7D9394B23AFE}" = PSPrinters08
"{77772678-817F-4401-9301-ED1D01A8DA56}" = SPBBC
"{7850A6D2-CBEA-4728-9877-F1BEDEA9F619}" = AiOSoftware
"{8105684D-8CA6-440D-8F58-7E5FD67A499D}" = Connexion Facile à Internet
"{82081779-4175-4666-A457-AB711CD37EF0}" = cp_LightScribeConfig
"{829DAAD6-BB11-4BB7-921B-07FFB703F944}" = CP_Package_Variety3
"{82A5BF38-8461-4A5C-B2C9-24F5256D92A6}" = Norton Protection Center
"{82E55892-6FFD-403F-AA97-D726846768AA}" = CP_AtenaShokunin1Config
"{866A0078-DEA7-4348-9C9A-999AF2991EAA}" = SlideShowMusic
"{8A534F71-3202-4464-A422-B767295E67B9}" = CP_Package_Variety2
"{8CE4E6E9-9D55-43FB-9DDB-688C976BFC05}" = Unload
"{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}" = Logitech Desktop Messenger
"{93E5A317-24EC-4744-812C-16FECFE86E6A}" = CP_Package_Variety1
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A394342-4A68-4EBA-85A6-55B559F4E700}" = Microsoft .NET Framework 1.1 French Language Pack
"{9DAD18F4-301E-4EEE-AD1C-96CD204B34C1}" = SymNet
"{A059DE09-1B49-4450-B340-7AE097EC3F04}" = Microsoft Works
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A29800BA-0BF1-4E63-9F31-DF05A87F4104}" = InstantShareDevices
"{A3455242-DAE0-4523-8242-FD82706ABF4B}" = CameraDrivers
"{A93C9E60-29B6-49da-BA21-F70AC6AADE20}" = Norton Internet Security
"{AADFE0B9-F905-4d5f-A144-0ADB2EFA747B}" = Norton Internet Security
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AB708C9B-97C8-4AC9-899B-DBF226AC9382}" = Sonic RecordNow Audio
"{AC76BA86-7AD7-1036-7B44-A93000000001}" = Adobe Reader 9.3.4 - Français
"{B12665F4-4E93-4AB4-B7FC-37053B524629}" = Sonic RecordNow Copy
"{B2157760-AA3C-4E2E-BFE6-D20BC52495D9}" = cp_PosterPrintConfig
"{B2D328BE-45AD-4D92-96F9-2151490A203E}" = Apple Application Support
"{B3B487E7-6171-4376-9074-B28082CEB504}" = Windows Live Call
"{B6286A44-7505-471A-A72B-04EC2DB2F442}" = CueTour
"{B69CFE29-FD03-4E0A-87A7-6ED97F98E5B3}" = CP_Panorama1Config
"{B7C61755-DB48-4003-948F-3D34DB8EAF69}" = MSRedist
"{B9DD2DE0-27BE-4e6b-AAD8-0D960ABF87FD}" = CameraUserGuides
"{BB85ED9C-AFC9-43BD-B8DC-258C3C7DF72E}" = HP Software Update
"{BF4E9ED0-EF26-4A4C-A123-6A6A1ABEE411}" = DocProc
"{C1C6767D-B395-43CB-BF99-051B58B86DA6}" = PhotoGallery
"{C3FAA091-B278-44A7-BF48-190811C5F9F7}" = cp_UpdateProjectsConfig
"{C43048A9-742C-4DAD-90D2-E3B53C9DB825}" = Logiciel QuickCam de Logitech
"{C6812939-B117-48E6-A3BA-1709C14A3C8C}" = Scan
"{C6F5B6CF-609C-428E-876F-CA83176C021B}" = Norton AntiVirus 2006
"{C8753E28-2680-49BF-BD48-DD38FD086EFE}" = AiO_Scan_CDA
"{C98E8D9D-21DE-4F87-A9B7-142BB89840FC}" = Toolbox
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE24344F-DFD8-40C8-8FD8-C9740B5F25AC}" = Fax
"{DB518BA6-CB74-4EB6-9ABD-880B6D6E1F38}" = HpSdpAppCoreApp
"{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}" = Assistant de connexion Windows Live
"{DEBB2986-15B0-4D28-95FA-5C966A396589}" = HPProductAssistant
"{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager
"{E3EFA461-EB83-4C3B-9C47-2C1D58A01555}" = Norton Internet Security
"{E5A1DE9A-A21C-43A1-B06D-5146BAF62033}" = PanoStandAlone
"{E5A8DDAB-AE80-48C6-A75B-D0FAB83B299D}" = HP PSC & OfficeJet 6.1.A
"{E5EE9939-259F-4DE2-8023-5C49E16A4F43}" = Norton Internet Security
"{E85FA9A1-C241-4698-893B-DD99509B8DB0}" = Norton WMI Update
"{EC2715CE-C182-483C-84CC-81D7D914CF14}" = WebReg
"{ED2C557E-9C18-41FF-B58E-A05EEF0B3B5F}" = CP_CalendarTemplates1
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F6076EF9-08E1-442F-B6A2-BFB61B295A14}" = Fax_CDA
"{F64306A5-4C32-41bb-B153-53986527FAB4}" = Norton WMI Update
"{FB15E224-67C3-491F-9F5C-F257BC418412}" = Destinations
"{FBB980B0-63F8-4B48-8D65-90F1D9F81D9F}" = NewCopy_CDA
"{FFB4DD53-28B7-4981-BFF0-9BD801F61095}" = Norton Internet Security
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"ATI Display Driver" = ATI Display Driver
"ERUNT_is1" = ERUNT 1.1j
"HijackThis" = HijackThis 2.0.2
"HP Document Viewer" = HP Document Viewer 6.1
"HP Imaging Device Functions" = HP Imaging Device Functions 7.0
"HP Photo & Imaging" = HP Photosmart Premier Software 6.5
"HP Solution Center & Imaging Support Tools" = HP Solution Center and Imaging Support Tools 6.1
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"InstallShield_{23012310-3E05-46A5-88A9-C6CBCABCAC79}" = Amélioration de nos services
"InstallShield_{5CFD7508-7774-48FE-8280-7A3C0AE71755}" = Services Internet
"InstallShield_{8105684D-8CA6-440D-8F58-7E5FD67A499D}" = Connexion Facile à Internet
"LiveUpdate" = LiveUpdate 3.0 (Symantec Corporation)
"Logitech Print Service" = Logitech Print Service
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Mozilla Firefox (3.6.8)" = Mozilla Firefox (3.6.8)
"MSNINST" = MSN
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"PC-Doctor 5 for Windows" = PC-Doctor 5 for Windows
"Python 2.2.3" = Python 2.2.3
"pywin32-py2.2" = Python 2.2 pywin32 extensions (build 203)
"QcDrv" = Programme de gestion Camera de Logitech®
"RealPlayer 6.0" = RealPlayer
"SymSetup.{A93C9E60-29B6-49da-BA21-F70AC6AADE20}" = Norton Internet Security 2006 (Symantec Corporation)
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows Media Player" = Lecteur Windows Media 10
"Windows XP Service" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Installation Windows Live

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 17/08/2010 17:45:18 | Computer Name = NOM-EB85C523610 | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 17/08/2010 17:45:18 | Computer Name = NOM-EB85C523610 | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 76937

Error - 17/08/2010 17:45:18 | Computer Name = NOM-EB85C523610 | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 76937

Error - 18/08/2010 01:21:02 | Computer Name = NOM-EB85C523610 | Source = Application Hang | ID = 1002
Description = Application bloquée rundll32.exe, version 5.1.2600.5512, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 18/08/2010 01:42:26 | Computer Name = NOM-EB85C523610 | Source = WmiAdapter | ID = 4099
Description = Échec de l'ouverture de services.

Error - 18/08/2010 01:55:02 | Computer Name = NOM-EB85C523610 | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 18/08/2010 01:55:02 | Computer Name = NOM-EB85C523610 | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 76781

Error - 18/08/2010 01:55:02 | Computer Name = NOM-EB85C523610 | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 76781

Error - 18/08/2010 05:34:54 | Computer Name = NOM-EB85C523610 | Source = WmiAdapter | ID = 4099
Description = Échec de l'ouverture de services.

Error - 18/08/2010 06:54:31 | Computer Name = NOM-EB85C523610 | Source = WmiAdapter | ID = 4099
Description = Échec de l'ouverture de services.

[ System Events ]
Error - 29/08/2010 06:05:11 | Computer Name = NOM-EB85C523610 | Source = System Error | ID = 1003
Description = Code erreur 100000d1, paramètre 1 c90c8d00, paramètre 2 00000002,
paramètre 3 00000008, paramètre 4 c90c8d00.

Error - 29/08/2010 07:37:50 | Computer Name = NOM-EB85C523610 | Source = Dhcp | ID = 1002
Description = Le bail de l'adresse IP 192.168.1.2 pour la carte réseau dont l'adresse
réseau est 0016EC891B47 a été refusé par le serveur DHCP 0.0.0.0 (celui-ci a envoyé
un message DHCPNACK).

Error - 29/08/2010 07:40:53 | Computer Name = NOM-EB85C523610 | Source = System Error | ID = 1003
Description = Code erreur 100000d1, paramètre 1 c90c8d00, paramètre 2 00000002,
paramètre 3 00000008, paramètre 4 c90c8d00.

Error - 29/08/2010 12:11:31 | Computer Name = NOM-EB85C523610 | Source = DCOM | ID = 10010
Description = Le serveur {F3A614DC-ABE0-11D2-A441-00C04F795683} ne s'est pas enregistré
sur DCOM avant la fin du temps imparti.

Error - 30/08/2010 05:10:18 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7009
Description = Délai (30000 millisecondes) d'attente pour une connexion du service
Service de la passerelle de la couche Application.

Error - 30/08/2010 05:10:21 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7000
Description = Le service Service de la passerelle de la couche Application n'a pas
pu démarrer en raison de l'erreur : %%1053

Error - 30/08/2010 06:07:26 | Computer Name = NOM-EB85C523610 | Source = DCOM | ID = 10010
Description = Le serveur {F3A614DC-ABE0-11D2-A441-00C04F795683} ne s'est pas enregistré
sur DCOM avant la fin du temps imparti.

Error - 30/08/2010 06:10:21 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7009
Description = Délai (30000 millisecondes) d'attente pour une connexion du service
Service de la passerelle de la couche Application.

Error - 30/08/2010 06:10:39 | Computer Name = NOM-EB85C523610 | Source = Service Control Manager | ID = 7000
Description = Le service Service de la passerelle de la couche Application n'a pas
pu démarrer en raison de l'erreur : %%1053

Error - 30/08/2010 09:28:11 | Computer Name = NOM-EB85C523610 | Source = Dhcp | ID = 1002
Description = Le bail de l'adresse IP 192.168.1.2 pour la carte réseau dont l'adresse
réseau est 0016EC891B47 a été refusé par le serveur DHCP 0.0.0.0 (celui-ci a envoyé
un message DHCPNACK).


<End>
ferhu
 
Messages: 8
Inscription: 29 Aoû 2010, 19:10

Messagede ferhu » 30 Aoû 2010, 18:07

OTL logfile created on: 30/08/2010 18:53:19 - Run 1
OTL by OldTimer - Version 3.2.11.0 Folder = C:\Documents and Settings\HP_Propriétaire\Bureau
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

447,00 Mb Total Physical Memory | 130,00 Mb Available Physical Memory | 29,00% Memory free
1,00 Gb Paging File | 1,00 Gb Available in Paging File | 63,00% Paging File free
Paging file location(s): C:\pagefile.sys 672 1344 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 180,13 Gb Total Space | 159,25 Gb Free Space | 88,40% Space Free | Partition Type: NTFS
Drive D: | 6,15 Gb Total Space | 0,63 Gb Free Space | 10,30% Space Free | Partition Type: FAT32
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: NOM-EB85C523610
Current User Name: HP_Propriétaire
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/08/30 18:25:07 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\HP_Propriétaire\Bureau\OTL.exe
PRC - [2010/07/23 04:11:07 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010/07/22 19:58:50 | 001,251,720 | ---- | M] () -- C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
PRC - [2010/05/14 11:44:46 | 000,248,552 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
PRC - [2010/03/04 16:08:22 | 000,099,720 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
PRC - [2008/04/14 04:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007/10/01 14:50:08 | 000,214,408 | ---- | M] (Symantec Corporation) -- c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
PRC - [2007/05/28 12:00:24 | 000,139,888 | ---- | M] (Symantec Corporation) -- c:\Program Files\Norton Internet Security\Norton AntiVirus\NAVAPSVC.EXE
PRC - [2006/12/15 18:41:50 | 000,750,720 | ---- | M] (Symantec Corporation) -- c:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
PRC - [2006/03/24 01:48:44 | 000,073,728 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
PRC - [2006/02/25 02:47:02 | 000,114,784 | ---- | M] () -- C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
PRC - [2006/02/25 02:47:00 | 000,266,338 | ---- | M] () -- C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
PRC - [2006/02/25 02:46:34 | 000,147,456 | ---- | M] (CyberLink Corp.) -- C:\Program Files\CyberLink\PowerCinema\PCMService.exe
PRC - [2006/02/25 02:46:20 | 001,073,152 | ---- | M] (Cyberlink) -- C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
PRC - [2005/09/17 00:27:12 | 000,169,584 | ---- | M] (Symantec Corporation) -- c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
PRC - [2005/09/17 00:27:10 | 000,202,352 | ---- | M] (Symantec Corporation) -- c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
PRC - [2005/09/17 00:27:06 | 000,192,112 | ---- | M] (Symantec Corporation) -- c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
PRC - [2005/09/17 00:27:02 | 000,052,848 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
PRC - [2005/07/19 17:32:18 | 000,221,184 | ---- | M] (Logitech Inc.) -- C:\WINDOWS\system32\LVCOMSX.EXE
PRC - [2005/06/08 15:14:44 | 000,217,088 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\Video\LogiTray.exe
PRC - [2005/06/08 14:44:56 | 000,192,512 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\Video\FxSvr2.exe


========== Modules (SafeList) ==========

MOD - [2010/08/30 18:25:07 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\HP_Propriétaire\Bureau\OTL.exe
MOD - [2010/03/04 16:01:10 | 000,503,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSVCP71.DLL
MOD - [2010/03/04 16:01:10 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSVCR71.DLL
MOD - [2008/04/14 04:33:29 | 000,586,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mlang.dll
MOD - [2008/04/14 04:32:02 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2005/09/23 18:38:24 | 000,123,488 | ---- | M] (Symantec Corporation) -- C:\Program Files\Fichiers communs\Symantec Shared\AntiSpam\asOEHook.dll
MOD - [2005/09/17 00:33:36 | 000,377,968 | ---- | M] (Symantec Corporation) -- c:\Program Files\Fichiers communs\Symantec Shared\ccL40.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- C:\WINDOWS\System32\appmgmts.dll -- (AppMgmt)
SRV - [2010/08/13 09:13:32 | 000,066,112 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper_3004.dll -- (nosGetPlusHelper) getPlus(R)
SRV - [2010/07/22 19:58:50 | 001,251,720 | ---- | M] () [Auto | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe -- (Symantec Core LC)
SRV - [2010/03/04 16:08:22 | 002,106,760 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_0.EXE -- (LiveUpdate)
SRV - [2010/03/04 16:08:22 | 000,099,720 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe -- (Planificateur LiveUpdate automatique)
SRV - [2007/10/01 14:50:08 | 000,214,408 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe -- (SNDSrvc)
SRV - [2007/05/28 12:00:24 | 000,139,888 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe -- (navapsvc)
SRV - [2007/02/20 11:46:08 | 000,072,328 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- c:\Program Files\Norton Internet Security\ccPwdSvc.exe -- (ccISPwdSvc)
SRV - [2007/02/01 17:20:46 | 000,045,696 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- c:\Program Files\Norton Internet Security\comHost.exe -- (comHost)
SRV - [2006/12/15 18:41:50 | 000,750,720 | ---- | M] (Symantec Corporation) [On_Demand | Running] -- c:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE -- (NSCService)
SRV - [2006/03/24 01:48:44 | 000,073,728 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe -- (LightScribeService)
SRV - [2006/02/25 02:47:02 | 000,114,784 | ---- | M] () [Auto | Running] -- C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe -- (CLSched) CyberLink Task Scheduler (CTS)
SRV - [2006/02/25 02:47:00 | 000,266,338 | ---- | M] () [Auto | Running] -- C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe -- (CLCapSvc) CyberLink Background Capture Service (CBCS)
SRV - [2006/02/25 02:46:20 | 001,073,152 | ---- | M] (Cyberlink) [Auto | Running] -- C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe -- (CyberLink Media Library Service)
SRV - [2005/09/17 00:27:12 | 000,169,584 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe -- (ccSetMgr)
SRV - [2005/09/17 00:27:10 | 000,202,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe -- (ccProxy)
SRV - [2005/09/17 00:27:06 | 000,192,112 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe -- (ccEvtMgr)
SRV - [2005/09/15 16:21:14 | 001,160,800 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe -- (SPBBCSvc)
SRV - [2005/08/26 15:22:48 | 000,198,368 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe -- (SAVScan)
SRV - [2004/10/22 10:24:18 | 000,073,728 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT)


========== Driver Services (SafeList) ==========

DRV - [2010/07/15 13:50:36 | 001,362,608 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\VirusDefs\20100829.004\NAVEX15.SYS -- (NAVEX15)
DRV - [2010/07/15 13:50:36 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2010/07/15 13:50:36 | 000,102,448 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2010/07/15 13:50:36 | 000,085,424 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\VirusDefs\20100829.004\NAVENG.SYS -- (NAVENG)
DRV - [2010/06/23 21:37:11 | 000,264,568 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Fichiers communs\Symantec Shared\SymcData\idsdefs\20100720.001\SymIDSCo.sys -- (SYMIDSCO)
DRV - [2008/04/13 20:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Pilote USB audio (WDM)
DRV - [2008/04/13 18:36:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2007/10/01 14:49:26 | 000,189,320 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\SYMTDI.SYS -- (SYMTDI)
DRV - [2007/10/01 14:49:20 | 000,023,944 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\SYMREDRV.SYS -- (SYMREDRV)
DRV - [2007/10/01 14:49:16 | 000,031,624 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\SYMIDS.SYS -- (SYMIDS)
DRV - [2007/10/01 14:49:10 | 000,028,040 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\SYMNDIS.SYS -- (SYMNDIS)
DRV - [2007/10/01 14:49:04 | 000,098,184 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\SYMFW.SYS -- (SYMFW)
DRV - [2007/10/01 14:48:56 | 000,012,680 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\SYMDNS.SYS -- (SYMDNS)
DRV - [2006/06/01 07:48:17 | 000,010,344 | ---- | M] (Symantec Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\symlcbrd.sys -- (symlcbrd)
DRV - [2006/03/08 22:27:12 | 004,246,016 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006/02/08 06:55:34 | 001,480,704 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2006/01/19 03:41:58 | 000,080,512 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2005/12/13 02:27:00 | 000,019,072 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\PS2.sys -- (Ps2)
DRV - [2005/09/17 01:20:06 | 000,108,168 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Symantec\SYMEVENT.SYS -- (SymEvent)
DRV - [2005/09/15 16:21:14 | 000,389,728 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)
DRV - [2005/08/26 15:22:50 | 000,053,896 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- c:\Program Files\Norton Internet Security\Norton AntiVirus\Savrtpel.sys -- (SAVRTPEL)
DRV - [2005/08/26 15:22:48 | 000,334,984 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- c:\Program Files\Norton Internet Security\Norton AntiVirus\savrt.sys -- (SAVRT)
DRV - [2005/05/27 11:32:52 | 001,317,152 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lvcm.sys -- (QCMerced)
DRV - [2005/05/27 11:31:28 | 000,022,016 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2004/08/04 01:46:46 | 000,607,452 | ---- | M] (LT) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ltmdmnt.sys -- (ltmodem5)
DRV - [2004/08/03 23:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktop


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktop
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktop
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktop
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktop
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktop
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktop
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktop
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktop
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1485120347-1273226354-2920547573-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktop
IE - HKU\S-1-5-21-1485120347-1273226354-2920547573-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktop
IE - HKU\S-1-5-21-1485120347-1273226354-2920547573-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktop
IE - HKU\S-1-5-21-1485120347-1273226354-2920547573-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktop
IE - HKU\S-1-5-21-1485120347-1273226354-2920547573-1008\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1485120347-1273226354-2920547573-1008\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;localhost

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Wikipédia (fr)"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1.6.2.90
FF - prefs.js..network.proxy.no_proxies_on: "*.local"
FF - prefs.js..network.proxy.type: 0

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/08/27 10:37:40 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/08/30 16:29:43 | 000,000,000 | ---D | M]

[2010/08/27 10:38:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Extensions
[2010/08/27 09:50:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Firefox\Profiles\bxen3v08.default\extensions
[2010/08/27 09:41:09 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Firefox\Profiles\bxen3v08.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}(2)
[2010/08/30 16:17:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Firefox\Profiles\jnpa5y4t.default\extensions
[2010/08/28 10:15:32 | 000,000,000 | ---D | M] (Adobe DLM (powered by getPlus(R))) -- C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Firefox\Profiles\jnpa5y4t.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}
[2010/08/27 10:37:22 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/07/23 02:44:11 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml
[2010/07/23 02:44:11 | 000,001,822 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml
[2010/07/23 02:44:11 | 000,000,757 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml
[2010/07/23 02:44:11 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml
[2010/07/23 02:44:11 | 000,000,956 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml

O1 HOSTS File: ([2004/08/05 13:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (CNavExtBho Class) - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NAVSHEXT.DLL (Symantec Corporation)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Norton AntiVirus) - {C4069E3A-68F1-403E-B40E-20066696354B} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NAVSHEXT.DLL (Symantec Corporation)
O3 - HKU\S-1-5-21-1485120347-1273226354-2920547573-1008\..\Toolbar\ShellBrowser: (Norton AntiVirus) - {C4069E3A-68F1-403E-B40E-20066696354B} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NAVSHEXT.DLL (Symantec Corporation)
O3 - HKU\S-1-5-21-1485120347-1273226354-2920547573-1008\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ccApp] c:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [HPBootOp] C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [HPHUPD08] c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe (Hewlett-Packard)
O4 - HKLM..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe (Logitech Inc.)
O4 - HKLM..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe (Logitech Inc.)
O4 - HKLM..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE (Logitech Inc.)
O4 - HKLM..\Run: [PCDrProfiler] File not found
O4 - HKLM..\Run: [PCMService] C:\Program Files\CyberLink\PowerCinema\PCMService.exe (CyberLink Corp.)
O4 - HKLM..\Run: [Recguard] C:\WINDOWS\SMINST\Recguard.exe ()
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKU\S-1-5-21-1485120347-1273226354-2920547573-1008..\Run: [LogitechSoftwareUpdate] C:\Program Files\Logitech\Video\ManifestEngine.exe (Logitech Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe (Logitech)
O4 - Startup: C:\Documents and Settings\Default User\Menu Démarrer\Programmes\Démarrage\Pin.lnk = C:\HP\bin\cloaker.exe (Hewlett-Packard Co.)
O4 - Startup: C:\Documents and Settings\HP_Propriétaire\Menu Démarrer\Programmes\Démarrage\ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1485120347-1273226354-2920547573-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: &Traduire à partir de l'anglais - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O8 - Extra context menu item: Pages liées - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O8 - Extra context menu item: Pages similaires - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O8 - Extra context menu item: Recherche &Google - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - C:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O9 - Extra Button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm ()
O9 - Extra 'Tools' menuitem : Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (get_atlcom Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - CLSID or File not found.
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/06/01 07:32:21 | 000,000,050 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2001/07/27 15:07:38 | 000,000,000 | -HS- | M] () - D:\AUTOEXEC.BAT -- [ FAT32 ]
O32 - AutoRun File - [2004/04/30 07:01:14 | 000,000,053 | -HS- | M] () - D:\Autorun.inf -- [ FAT32 ]
O33 - MountPoints2\{300ef907-95b4-11df-8580-806d6172696f}\Shell - "" = AutoRun
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - C:\WINDOWS\System32\appmgmts.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: Wmi - C:\WINDOWS\System32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (16902109354000384)

========== Files/Folders - Created Within 30 Days ==========

[2010/08/30 18:49:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Propriétaire\Mes documents\Logs
[2010/08/30 18:35:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010/08/30 18:31:36 | 000,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2010/08/30 18:29:08 | 000,791,393 | ---- | C] (Lars Hederer ) -- C:\Documents and Settings\HP_Propriétaire\Bureau\erunt-setup.exe
[2010/08/30 18:25:06 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\HP_Propriétaire\Bureau\OTL.exe
[2010/08/30 12:32:41 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/08/30 12:32:37 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/08/30 12:32:36 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/08/28 14:37:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Propriétaire\Application Data\HP
[2010/08/28 14:37:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Propriétaire\Mes documents\Mes albums
[2010/08/28 14:37:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\IsolatedStorage
[2010/08/28 14:37:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\HP
[2010/08/28 14:32:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Propriétaire\Application Data\Malwarebytes
[2010/08/28 14:32:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010/08/28 10:37:20 | 000,512,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jscript.dll
[2010/08/28 10:36:03 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2010/08/28 10:15:36 | 000,000,000 | ---D | C] -- C:\Program Files\NOS
[2010/08/28 10:07:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2010/08/28 10:07:28 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Adobe
[2010/08/28 10:05:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\NOS
[2010/08/27 19:42:48 | 000,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstee.sys
[2010/08/27 19:41:59 | 000,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndisip.sys
[2010/08/27 19:41:36 | 000,015,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\streamip.sys
[2010/08/27 19:41:34 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsink.ax
[2010/08/27 19:41:34 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipsink.ax
[2010/08/27 19:41:03 | 000,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\slip.sys
[2010/08/27 19:40:15 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wstcodec.sys
[2010/08/27 19:40:01 | 000,085,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nabtsfec.sys
[2010/08/27 19:39:55 | 000,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ccdecode.sys
[2010/08/27 19:39:34 | 000,060,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\USBAUDIO.sys
[2010/08/27 19:39:34 | 000,060,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbaudio.sys
[2010/08/27 19:38:57 | 000,372,736 | R--- | C] (Logitech Inc.) -- C:\WINDOWS\System32\LVUI2RC.dll
[2010/08/27 19:38:57 | 000,204,800 | R--- | C] (Logitech Inc.) -- C:\WINDOWS\System32\LVUI2.dll
[2010/08/27 19:38:57 | 000,106,496 | R--- | C] (Logitech Inc.) -- C:\WINDOWS\System32\lvcoinst.dll
[2010/08/27 19:38:57 | 000,022,016 | R--- | C] (Logitech Inc.) -- C:\WINDOWS\System32\drivers\LVUSBSta.sys
[2010/08/27 19:38:56 | 000,204,800 | R--- | C] (Logitech Inc.) -- C:\WINDOWS\System32\lvcodec2.dll
[2010/08/27 19:38:54 | 002,180,096 | R--- | C] (Logitech Inc.) -- C:\WINDOWS\System32\drivers\lvsvf2.sys
[2010/08/27 19:38:44 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax
[2010/08/27 19:38:44 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kswdmcap.ax
[2010/08/27 19:38:44 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vfwwdm32.dll
[2010/08/27 19:38:44 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vfwwdm32.dll
[2010/08/27 19:38:44 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax
[2010/08/27 19:38:44 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksxbar.ax
[2010/08/27 19:38:43 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax
[2010/08/27 19:38:43 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kstvtune.ax
[2010/08/27 19:34:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Propriétaire\Application Data\FotoWire
[2010/08/27 19:34:07 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\FotoWire
[2010/08/27 19:32:22 | 000,462,848 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\LCamCpl.dll
[2010/08/27 19:32:22 | 000,282,624 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\camcpl.cpl
[2010/08/27 19:32:22 | 000,215,552 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Lvkrn12n.dll
[2010/08/27 19:32:21 | 000,029,795 | ---- | C] (Ingenient Technologies, Inc.) -- C:\WINDOWS\System32\ITIG726.acm
[2010/08/27 19:32:20 | 000,628,736 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltocx12n.ocx
[2010/08/27 19:32:20 | 000,192,512 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltscr12n.ocx
[2010/08/27 19:32:16 | 000,856,064 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\Ltwvc12n.dll
[2010/08/27 19:32:16 | 000,466,944 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\QCUI2.dll
[2010/08/27 19:32:16 | 000,406,016 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltkrn12n.dll
[2010/08/27 19:32:16 | 000,259,072 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LTDIS12n.dll
[2010/08/27 19:32:16 | 000,207,872 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltefx12n.dll
[2010/08/27 19:32:16 | 000,164,864 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltimg12n.dll
[2010/08/27 19:32:16 | 000,131,072 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\ltfil12n.DLL
[2010/08/27 19:32:15 | 000,328,704 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\LFCMP12n.DLL
[2010/08/27 19:32:15 | 000,141,312 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lftif12n.dll
[2010/08/27 19:32:15 | 000,078,336 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lffax12n.dll
[2010/08/27 19:32:15 | 000,030,720 | ---- | C] (LEAD Technologies, Inc.) -- C:\WINDOWS\System32\lfbmp12n.dll
[2010/08/27 19:32:12 | 000,090,112 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\LQCUI2.dll
[2010/08/27 19:14:36 | 000,086,016 | R--- | C] (Logitech Inc.) -- C:\WINDOWS\System32\vatee.ax
[2010/08/27 19:13:56 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\msvcr71.dll
[2010/08/27 18:16:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010/08/27 17:58:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\fr
[2010/08/27 17:58:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2010/08/27 17:48:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\EHome
[2010/08/27 17:21:32 | 000,459,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2010/08/27 17:21:32 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2010/08/27 17:21:31 | 006,067,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2010/08/27 17:21:31 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dll
[2010/08/27 17:21:31 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2010/08/27 17:21:31 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieudinit.exe
[2010/08/27 17:21:30 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icardie.dll
[2010/08/27 17:21:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2010/08/27 16:10:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Apple
[2010/08/27 15:51:44 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\HP_Propriétaire\UserData
[2010/08/27 15:50:22 | 000,025,471 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv10nt.sys
[2010/08/27 15:50:22 | 000,022,271 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv06nt.sys
[2010/08/27 15:50:21 | 000,011,935 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv11nt.sys
[2010/08/27 15:50:21 | 000,011,871 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv09nt.sys
[2010/08/27 15:50:21 | 000,011,807 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv07nt.sys
[2010/08/27 15:50:21 | 000,011,295 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv08nt.sys
[2010/08/27 15:50:20 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax
[2010/08/27 15:50:20 | 000,011,325 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\vchnt5.dll
[2010/08/27 15:49:51 | 000,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnthal.sys
[2010/08/27 15:49:51 | 000,073,796 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slserv.exe
[2010/08/27 15:49:51 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slrundll.exe
[2010/08/27 15:49:51 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\slrundll.exe
[2010/08/27 15:49:51 | 000,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slwdmsup.sys
[2010/08/27 15:49:51 | 000,005,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\smbali.sys
[2010/08/27 15:49:50 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys
[2010/08/27 15:49:49 | 000,188,508 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slgen.dll
[2010/08/27 15:49:49 | 000,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnt7554.sys
[2010/08/27 15:49:48 | 000,286,792 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slextspk.dll
[2010/08/27 15:49:47 | 000,073,832 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slcoinst.dll
[2010/08/27 15:49:46 | 000,040,960 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\drivers\sisagp.sys
[2010/08/27 15:49:46 | 000,003,901 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\siint5.dll
[2010/08/27 15:49:42 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys
[2010/08/27 15:49:41 | 000,397,056 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\s3gnb.dll
[2010/08/27 15:49:40 | 000,030,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rndismpx.sys
[2010/08/27 15:49:38 | 000,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\recagent.sys
[2010/08/27 15:49:21 | 001,897,408 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv4_mini.sys
[2010/08/27 15:49:19 | 004,274,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll
[2010/08/27 15:49:18 | 000,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys
[2010/08/27 15:49:11 | 001,737,856 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\mtxparhd.dll
[2010/08/27 15:49:11 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys
[2010/08/27 15:49:11 | 000,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mutohpen.sys
[2010/08/27 15:49:10 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys
[2010/08/27 15:49:10 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys
[2010/08/27 15:49:05 | 000,086,016 | ---- | C] (Conexant) -- C:\WINDOWS\System32\mdmxsdk.dll
[2010/08/27 15:48:59 | 000,032,285 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\hsfcisp2.dll
[2010/08/27 15:48:35 | 000,036,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthprint.sys
[2010/08/27 15:48:35 | 000,015,423 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\ch7xxnt5.dll
[2010/08/27 15:46:46 | 000,025,471 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv04nt5.dll
[2010/08/27 15:46:46 | 000,021,183 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv01nt5.dll
[2010/08/27 15:46:46 | 000,017,279 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv10nt5.dll
[2010/08/27 15:46:46 | 000,014,143 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv06nt5.dll
[2010/08/27 15:46:46 | 000,011,359 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv02nt5.dll
[2010/08/27 15:46:45 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys
[2010/08/27 15:46:45 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys
[2010/08/27 15:46:45 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativtmxx.dll
[2010/08/27 15:46:45 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys
[2010/08/27 15:46:45 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativmvxx.ax
[2010/08/27 15:46:45 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys
[2010/08/27 15:46:45 | 000,009,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativdaxx.ax
[2010/08/27 15:46:44 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys
[2010/08/27 15:46:44 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys
[2010/08/27 15:46:44 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys
[2010/08/27 15:46:44 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys
[2010/08/27 15:46:44 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys
[2010/08/27 15:46:44 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys
[2010/08/27 15:46:42 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3d1ag.dll
[2010/08/27 15:46:41 | 000,327,168 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys
[2010/08/27 15:46:40 | 000,377,984 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvaa.dll
[2010/08/27 15:46:39 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys
[2010/08/27 15:46:39 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys
[2010/08/27 15:46:39 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys
[2010/08/27 15:46:39 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys
[2010/08/27 15:46:39 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys
[2010/08/27 15:46:39 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys
[2010/08/27 15:46:39 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys
[2010/08/27 15:46:38 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys
[2010/08/27 15:46:38 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys
[2010/08/27 15:46:38 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys
[2010/08/27 15:46:36 | 000,043,008 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\drivers\amdagp.sys
[2010/08/27 15:46:33 | 000,004,255 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv01nt5.dll
[2010/08/27 15:46:33 | 000,003,967 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv02nt5.dll
[2010/08/27 15:46:33 | 000,003,775 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv11nt5.dll
[2010/08/27 15:46:33 | 000,003,711 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv09nt5.dll
[2010/08/27 15:46:33 | 000,003,647 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv07nt5.dll
[2010/08/27 15:46:33 | 000,003,615 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv05nt5.dll
[2010/08/27 15:46:33 | 000,003,135 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv08nt5.dll
[2010/08/27 15:06:00 | 000,274,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2010/08/27 14:26:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Logitech-LS
[2010/08/27 10:47:38 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft
[2010/08/27 10:47:20 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live SkyDrive
[2010/08/27 10:37:20 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2010/08/27 10:25:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\WMTools Downloaded Files
[2010/08/27 10:17:25 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010/08/27 10:17:25 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010/08/27 10:17:25 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010/08/27 10:04:28 | 000,000,000 | ---D | C] -- C:\SystemRoot
[2010/08/27 09:50:34 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\HP_Propriétaire\Recent
[2010/08/27 09:50:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NOS
[2010/08/27 09:49:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood(2)
[2010/08/27 09:41:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NOS(2)
[2010/08/27 09:40:50 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\xing shared
[2010/08/25 16:56:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real
[2010/08/23 18:06:39 | 000,000,000 | ---D | C] -- C:\Program Files\Sony
[2010/08/23 18:05:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sony Corporation
[2010/08/19 10:28:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Propriétaire\Mes documents\Mes muvees
[2010/08/19 10:28:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Propriétaire\Application Data\muvee Technologies
[2010/08/19 10:28:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\muvee Technologies
[2010/08/18 11:41:38 | 000,000,000 | ---D | C] -- C:\2a90f376c7279c1671ef1c
[2010/08/17 12:48:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2010/08/17 12:48:11 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2010/08/17 12:48:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2010/08/17 12:48:04 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2010/08/16 02:40:16 | 000,000,000 | ---D | C] -- C:\81def7a9d3be0b07e814
[2010/08/16 02:40:10 | 000,000,000 | ---D | C] -- C:\768edbcc79315dde29478d0a172283
[2010/08/15 14:28:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Propriétaire\Mes documents\soirée Huster
[2010/08/15 14:27:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Propriétaire\Mes documents\dossier lucie
[2010/08/13 19:27:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Propriétaire\Mes documents\Mes fichiers reçus
[2010/08/12 14:12:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2010/08/11 16:18:35 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2010/08/11 16:02:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Propriétaire\Application Data\MSNInstaller
[2010/08/11 10:09:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Propriétaire\Application Data\PhotoScape
[2010/08/11 10:09:12 | 000,000,000 | ---D | C] -- C:\Program Files\PhotoScape
[2010/08/11 10:04:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\HP_Propriétaire\Mes documents\photos HafsiaHubert
[2010/08/10 21:42:48 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\MAGIX Shared
[2010/08/10 21:10:06 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Logitech
[2010/08/10 21:09:00 | 000,000,000 | ---D | C] -- C:\Program Files\Logitech
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/08/30 18:31:45 | 000,000,778 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Menu Démarrer\Programmes\Démarrage\ERUNT AutoBackup.lnk
[2010/08/30 18:31:37 | 000,000,640 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Application Data\Microsoft\Internet Explorer\Quick Launch\NTREGOPT.lnk
[2010/08/30 18:31:37 | 000,000,622 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Bureau\NTREGOPT.lnk
[2010/08/30 18:31:37 | 000,000,621 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Application Data\Microsoft\Internet Explorer\Quick Launch\ERUNT.lnk
[2010/08/30 18:31:37 | 000,000,603 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Bureau\ERUNT.lnk
[2010/08/30 18:30:33 | 000,005,024 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Bureau\erunt-loc_fr.zip
[2010/08/30 18:29:36 | 000,791,393 | ---- | M] (Lars Hederer ) -- C:\Documents and Settings\HP_Propriétaire\Bureau\erunt-setup.exe
[2010/08/30 18:28:00 | 000,000,478 | ---- | M] () -- C:\WINDOWS\tasks\Connexion facile à Internet.job
[2010/08/30 18:25:41 | 000,000,383 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Bureau\scan.zip
[2010/08/30 18:25:07 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\HP_Propriétaire\Bureau\OTL.exe
[2010/08/30 17:32:01 | 000,000,184 | ---- | M] () -- C:\WINDOWS\System\hpsysdrv.DAT
[2010/08/30 17:04:30 | 000,000,298 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-1485120347-1273226354-2920547573-1008.job
[2010/08/30 17:04:29 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/08/30 17:04:18 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/08/30 17:04:16 | 469,159,936 | -HS- | M] () -- C:\hiberfil.sys
[2010/08/30 17:02:54 | 001,572,864 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\ntuser.dat
[2010/08/30 17:02:54 | 000,000,184 | -HS- | M] () -- C:\Documents and Settings\HP_Propriétaire\ntuser.ini
[2010/08/30 16:36:17 | 000,001,740 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Adobe Reader 9.lnk
[2010/08/30 12:32:47 | 000,000,725 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2010/08/30 12:32:47 | 000,000,707 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk
[2010/08/29 17:50:11 | 000,003,244 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Mes documents\images.jpeg
[2010/08/29 13:44:19 | 000,029,852 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Mes documents\problème pilote.rtf
[2010/08/28 18:35:13 | 000,002,472 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Mes documents\mise à jour forum malwares.rtf
[2010/08/28 14:37:22 | 000,048,184 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010/08/28 14:31:05 | 000,001,745 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Bureau\HijackThis.lnk
[2010/08/28 11:20:05 | 000,036,469 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Mes documents\Fotolia_5151336_M.jpg
[2010/08/28 10:45:05 | 000,200,144 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/08/28 10:41:41 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010/08/27 20:00:48 | 000,000,604 | ---- | M] () -- C:\WINDOWS\tasks\Norton AntiVirus - Effectuer une analyse complète du système - HP_Propriétaire.job
[2010/08/27 19:34:15 | 000,001,655 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Logitech QuickCam.lnk
[2010/08/27 19:34:15 | 000,001,624 | ---- |
ferhu
 
Messages: 8
Inscription: 29 Aoû 2010, 19:10

Messagede ferhu » 30 Aoû 2010, 18:13

========== Files - Modified Within 30 Days ==========

[2010/08/30 18:31:45 | 000,000,778 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Menu Démarrer\Programmes\Démarrage\ERUNT AutoBackup.lnk
[2010/08/30 18:31:37 | 000,000,640 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Application Data\Microsoft\Internet Explorer\Quick Launch\NTREGOPT.lnk
[2010/08/30 18:31:37 | 000,000,622 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Bureau\NTREGOPT.lnk
[2010/08/30 18:31:37 | 000,000,621 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Application Data\Microsoft\Internet Explorer\Quick Launch\ERUNT.lnk
[2010/08/30 18:31:37 | 000,000,603 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Bureau\ERUNT.lnk
[2010/08/30 18:30:33 | 000,005,024 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Bureau\erunt-loc_fr.zip
[2010/08/30 18:29:36 | 000,791,393 | ---- | M] (Lars Hederer ) -- C:\Documents and Settings\HP_Propriétaire\Bureau\erunt-setup.exe
[2010/08/30 18:28:00 | 000,000,478 | ---- | M] () -- C:\WINDOWS\tasks\Connexion facile à Internet.job
[2010/08/30 18:25:41 | 000,000,383 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Bureau\scan.zip
[2010/08/30 18:25:07 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\HP_Propriétaire\Bureau\OTL.exe
[2010/08/30 17:32:01 | 000,000,184 | ---- | M] () -- C:\WINDOWS\System\hpsysdrv.DAT
[2010/08/30 17:04:30 | 000,000,298 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-1485120347-1273226354-2920547573-1008.job
[2010/08/30 17:04:29 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/08/30 17:04:18 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/08/30 17:04:16 | 469,159,936 | -HS- | M] () -- C:\hiberfil.sys
[2010/08/30 17:02:54 | 001,572,864 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\ntuser.dat
[2010/08/30 17:02:54 | 000,000,184 | -HS- | M] () -- C:\Documents and Settings\HP_Propriétaire\ntuser.ini
[2010/08/30 16:36:17 | 000,001,740 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Adobe Reader 9.lnk
[2010/08/30 12:32:47 | 000,000,725 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2010/08/30 12:32:47 | 000,000,707 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk
[2010/08/29 17:50:11 | 000,003,244 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Mes documents\images.jpeg
[2010/08/29 13:44:19 | 000,029,852 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Mes documents\problème pilote.rtf
[2010/08/28 18:35:13 | 000,002,472 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Mes documents\mise à jour forum malwares.rtf
[2010/08/28 14:37:22 | 000,048,184 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010/08/28 14:31:05 | 000,001,745 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Bureau\HijackThis.lnk
[2010/08/28 11:20:05 | 000,036,469 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Mes documents\Fotolia_5151336_M.jpg
[2010/08/28 10:45:05 | 000,200,144 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/08/28 10:41:41 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010/08/27 20:00:48 | 000,000,604 | ---- | M] () -- C:\WINDOWS\tasks\Norton AntiVirus - Effectuer une analyse complète du système - HP_Propriétaire.job
[2010/08/27 19:34:15 | 000,001,655 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Logitech QuickCam.lnk
[2010/08/27 19:34:15 | 000,001,624 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Mes photos Logitech.lnk
[2010/08/27 19:34:09 | 000,000,750 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Bureau\Logitech Print Service.lnk
[2010/08/27 19:32:03 | 000,001,896 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech Desktop Messenger.lnk
[2010/08/27 19:31:53 | 000,081,920 | R--- | M] () -- C:\WINDOWS\bwUnin-6.1.4.68-8876480L.exe
[2010/08/27 19:13:05 | 000,000,272 | ---- | M] () -- C:\WINDOWS\_delis32.ini
[2010/08/27 18:18:46 | 000,513,088 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2010/08/27 18:18:46 | 000,443,046 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/08/27 18:18:46 | 000,086,024 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2010/08/27 18:18:46 | 000,072,120 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010/08/27 18:18:45 | 001,126,130 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010/08/27 18:16:37 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010/08/27 18:16:04 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/08/27 17:27:19 | 000,000,808 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Application Data\Launch Internet Explorer Browser.lnk
[2010/08/27 16:10:54 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010/08/27 13:27:02 | 000,000,492 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Mes documents\vidéo fr3.rtf
[2010/08/27 12:40:32 | 000,001,952 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Installation MSN.lnk
[2010/08/27 10:37:25 | 000,001,631 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010/08/27 10:37:25 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Mozilla Firefox.lnk
[2010/08/27 10:09:58 | 000,000,227 | ---- | M] () -- C:\WINDOWS\HP_CounterReport_Update_HPSU.ini
[2010/08/27 09:38:36 | 004,842,486 | -H-- | M] () -- C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\IconCache.db
[2010/08/27 00:37:14 | 000,000,306 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-1485120347-1273226354-2920547573-1008.job
[2010/08/25 21:44:32 | 001,990,903 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Mes documents\Copie de 2010 08 26 Le Monde les Roms et le diocèse.jpg
[2010/08/25 21:44:32 | 001,990,903 | ---- | M] () -- C:\Documents and Settings\HP_Propriétaire\Mes documents\2010 08 26 Le Monde les Roms et le diocèse.jpg
[2010/08/25 15:30:14 | 000,000,739 | ---- | M] () -- C:\WINDOWS\win.ini
[2010/08/25 15:30:14 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010/08/19 18:50:56 | 000,012,288 | -H-- | M] () -- C:\Documents and Settings\HP_Propriétaire\Mes documents\photothumb.db
[2010/08/10 21:50:04 | 000,044,784 | ---- | M] () -- C:\WINDOWS\MAGIX MIDI Studio 11.PRF
[2010/08/10 21:49:13 | 000,000,746 | -HS- | M] () -- C:\midi studio 11.Key
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/08/30 18:31:45 | 000,000,778 | ---- | C] () -- C:\Documents and Settings\HP_Propriétaire\Menu Démarrer\Programmes\Démarrage\ERUNT AutoBackup.lnk
[2010/08/30 18:31:37 | 000,000,640 | ---- | C] () -- C:\Documents and Settings\HP_Propriétaire\Application Data\Microsoft\Internet Explorer\Quick Launch\NTREGOPT.lnk
[2010/08/30 18:31:37 | 000,000,622 | ---- | C] () -- C:\Documents and Settings\HP_Propriétaire\Bureau\NTREGOPT.lnk
[2010/08/30 18:31:37 | 000,000,621 | ---- | C] () -- C:\Documents and Settings\HP_Propriétaire\Application Data\Microsoft\Internet Explorer\Quick Launch\ERUNT.lnk
[2010/08/30 18:31:37 | 000,000,603 | ---- | C] () -- C:\Documents and Settings\HP_Propriétaire\Bureau\ERUNT.lnk
[2010/08/30 18:30:32 | 000,005,024 | ---- | C] () -- C:\Documents and Settings\HP_Propriétaire\Bureau\erunt-loc_fr.zip
[2010/08/30 18:25:39 | 000,000,383 | ---- | C] () -- C:\Documents and Settings\HP_Propriétaire\Bureau\scan.zip
[2010/08/30 12:32:47 | 000,000,725 | ---- | C] () -- C:\Documents and Settings\HP_Propriétaire\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2010/08/30 12:32:47 | 000,000,707 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk
[2010/08/29 17:50:09 | 000,003,244 | ---- | C] () -- C:\Documents and Settings\HP_Propriétaire\Mes documents\images.jpeg
[2010/08/29 13:44:18 | 000,029,852 | ---- | C] () -- C:\Documents and Settings\HP_Propriétaire\Mes documents\problème pilote.rtf
[2010/08/28 18:35:13 | 000,002,472 | ---- | C] () -- C:\Documents and Settings\HP_Propriétaire\Mes documents\mise à jour forum malwares.rtf
[2010/08/28 11:20:03 | 000,036,469 | ---- | C] () -- C:\Documents and Settings\HP_Propriétaire\Mes documents\Fotolia_5151336_M.jpg
[2010/08/28 10:36:06 | 000,001,745 | ---- | C] () -- C:\Documents and Settings\HP_Propriétaire\Bureau\HijackThis.lnk
[2010/08/28 10:08:22 | 000,001,740 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Adobe Reader 9.lnk
[2010/08/27 19:38:57 | 000,009,255 | R--- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
[2010/08/27 19:38:52 | 001,317,152 | R--- | C] () -- C:\WINDOWS\System32\drivers\lvcm.sys
[2010/08/27 19:34:15 | 000,001,655 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Logitech QuickCam.lnk
[2010/08/27 19:34:15 | 000,001,624 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Mes photos Logitech.lnk
[2010/08/27 19:34:08 | 000,000,750 | ---- | C] () -- C:\Documents and Settings\HP_Propriétaire\Bureau\Logitech Print Service.lnk
[2010/08/27 19:32:03 | 000,001,896 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech Desktop Messenger.lnk
[2010/08/27 19:31:54 | 000,081,920 | R--- | C] () -- C:\WINDOWS\bwUnin-6.1.4.68-8876480L.exe
[2010/08/27 19:13:05 | 000,000,272 | ---- | C] () -- C:\WINDOWS\_delis32.ini
[2010/08/27 17:27:19 | 000,000,808 | ---- | C] () -- C:\Documents and Settings\HP_Propriétaire\Application Data\Launch Internet Explorer Browser.lnk
[2010/08/27 15:48:36 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2010/08/27 14:18:51 | 000,053,248 | R--- | C] () -- C:\WINDOWS\System32\InstMed.exe
[2010/08/27 13:49:54 | 001,990,903 | ---- | C] () -- C:\Documents and Settings\HP_Propriétaire\Mes documents\Copie de 2010 08 26 Le Monde les Roms et le diocèse.jpg
[2010/08/27 13:27:02 | 000,000,492 | ---- | C] () -- C:\Documents and Settings\HP_Propriétaire\Mes documents\vidéo fr3.rtf
[2010/08/27 12:40:32 | 000,001,952 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Installation MSN.lnk
[2010/08/27 10:37:25 | 000,001,631 | ---- | C] () -- C:\Documents and Settings\HP_Propriétaire\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010/08/27 10:37:25 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Mozilla Firefox.lnk
[2010/08/27 10:09:57 | 000,000,227 | ---- | C] () -- C:\WINDOWS\HP_CounterReport_Update_HPSU.ini
[2010/08/25 21:44:31 | 001,990,903 | ---- | C] () -- C:\Documents and Settings\HP_Propriétaire\Mes documents\2010 08 26 Le Monde les Roms et le diocèse.jpg
[2010/08/25 17:00:41 | 000,000,298 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-1485120347-1273226354-2920547573-1008.job
[2010/08/25 17:00:40 | 000,000,306 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-1485120347-1273226354-2920547573-1008.job
[2010/08/11 15:48:43 | 000,000,734 | ---- | C] () -- C:\Documents and Settings\HP_Propriétaire\Installer.log
[2010/08/11 10:10:11 | 000,012,288 | -H-- | C] () -- C:\Documents and Settings\HP_Propriétaire\Mes documents\photothumb.db
[2010/08/11 09:34:18 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2010/08/10 21:50:04 | 000,044,784 | ---- | C] () -- C:\WINDOWS\MAGIX MIDI Studio 11.PRF
[2010/08/10 21:49:13 | 000,000,746 | -HS- | C] () -- C:\midi studio 11.Key
[2010/08/10 21:43:16 | 000,014,182 | ---- | C] () -- C:\WINDOWS\System32\DLLAV32.lib
[2010/07/31 11:48:13 | 000,370,426 | ---- | C] () -- C:\Documents and Settings\HP_Propriétaire\Application Data\PatchUpdate_HP_CounterReport_Update_HPSU.log
[2010/07/22 19:20:41 | 000,000,138 | ---- | C] () -- C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\fusioncache.dat
[2006/06/01 08:01:38 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2006/06/01 07:38:45 | 000,028,848 | ---- | C] () -- C:\WINDOWS\System32\drivers\USBkey.sys
[2006/06/01 07:34:19 | 000,013,640 | ---- | C] () -- C:\WINDOWS\System32\CHODDI.SYS
[2006/06/01 07:34:13 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\hpreg.dll
[2006/06/01 07:27:20 | 000,198,144 | ---- | C] () -- C:\WINDOWS\System32\_psisdecd.dll
[2006/06/01 07:24:20 | 000,000,108 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2006/06/01 07:08:34 | 000,001,712 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log
[2006/06/01 07:07:35 | 000,003,712 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2006/06/01 06:49:35 | 000,000,829 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2006/06/01 06:46:02 | 000,323,584 | ---- | C] () -- C:\WINDOWS\System32\pythoncom22.dll
[2006/06/01 06:46:02 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\pywintypes22.dll
[2006/06/01 06:45:42 | 000,016,896 | ---- | C] () -- C:\WINDOWS\System32\bcbmm.dll
[2006/03/18 02:23:44 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2004/08/05 13:00:00 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo(2).dll
[2004/07/26 23:17:16 | 000,000,651 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2001/07/06 22:30:00 | 000,003,279 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI
[1999/01/27 13:39:06 | 000,065,024 | ---- | C] () -- C:\WINDOWS\System32\indounin.dll
[1997/06/13 07:56:08 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll

========== LOP Check ==========

[2010/08/19 10:28:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\muvee Technologies
[2010/08/30 18:28:00 | 000,000,478 | ---- | M] () -- C:\WINDOWS\Tasks\Connexion facile à Internet.job
[2010/07/22 19:24:54 | 000,000,502 | ---- | M] () -- C:\WINDOWS\Tasks\Warranty Reminder 11 month.job

========== Purity Check ==========



========== Custom Scans ==========


<SYSTEMDRIVE>


<MD5>
[2010/07/23 11:12:51 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\$NtServicePackUninstall$\sp3.cab:AGP440.sys
[2004/08/05 13:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2010/08/27 17:48:20 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2004/08/04 23:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp2.cab:AGP440.sys
[2010/08/27 17:48:20 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2010/08/27 17:48:20 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\327771f7f3830b5acec68906a2aac4ab\sp3.cab:AGP440.sys
[2008/04/13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008/04/13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\327771f7f3830b5acec68906a2aac4ab\agp440.sys
[2008/04/13 20:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys

<MD5>
[2010/07/23 11:12:51 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\$NtServicePackUninstall$\sp3.cab:atapi.sys
[2004/08/05 13:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2010/08/27 17:48:20 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2004/08/04 23:00:00 | 018,779,217 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp2.cab:atapi.sys
[2010/08/27 17:48:20 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2010/08/27 17:48:20 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\SoftwareDistribution\Download\327771f7f3830b5acec68906a2aac4ab\sp3.cab:atapi.sys
[2008/04/13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008/04/13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\327771f7f3830b5acec68906a2aac4ab\atapi.sys
[2008/04/13 20:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004/08/04 05:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2004/08/05 13:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0000\DriverFiles\i386\atapi.sys

<MD5>
[2004/08/05 13:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=21E83876A6287F15538EF187D286FE11 -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
[2008/04/14 04:33:24 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008/04/14 04:33:24 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\SoftwareDistribution\Download\327771f7f3830b5acec68906a2aac4ab\eventlog.dll
[2008/04/14 04:33:24 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\system32\eventlog.dll

<MD5>
[2008/04/14 04:33:34 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008/04/14 04:33:34 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\SoftwareDistribution\Download\327771f7f3830b5acec68906a2aac4ab\netlogon.dll
[2008/04/14 04:33:34 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\system32\netlogon.dll
[2009/02/06 20:46:49 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=ECD7791E0E9246CA5F218A19F3911EB9 -- C:\WINDOWS\$hf_mig$\KB968389\SP2QFE\netlogon.dll
[2009/02/06 20:46:49 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=ECD7791E0E9246CA5F218A19F3911EB9 -- C:\WINDOWS\$hf_mig$\KB975467\SP2QFE\netlogon.dll
[2004/08/05 13:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=FAF07FDCDE76000621A28D19F8E2E8EB -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll

<MD5>
[2008/04/14 04:33:40 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008/04/14 04:33:40 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\SoftwareDistribution\Download\327771f7f3830b5acec68906a2aac4ab\scecli.dll
[2008/04/14 04:33:40 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\system32\scecli.dll
[2004/08/05 13:00:00 | 000,186,368 | ---- | M] (Microsoft Corporation) MD5=DEC0397F35D027874804EC72979D03CC -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll

<systemroot>

<systemroot>
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

<systemroot>
<End>
ferhu
 
Messages: 8
Inscription: 29 Aoû 2010, 19:10

Messagede Paul771 » 30 Aoû 2010, 19:06

Suivi par moi
C'est trop injuste !
Mes configs
Avatar de l’utilisateur
Paul771
 
Messages: 985
Inscription: 15 Déc 2007, 20:55
Localisation: Le Plessis-Robinson (92)

Messagede nickW » 31 Aoû 2010, 10:59

Bonjour,

Je sais que Pierre771 = Paul771, mais dois-je comprendre que daspense = fehru :?:

Salut,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Messagede nickW » 31 Aoû 2010, 11:18

Bonjour,


Ce que MBAM a signalé ne correspond pas à une "infection", mais au fait que Norton a décidé de désactiver les notifications d'avertissement du Centre de sécurité Windows sur le pare-feu et l'antivirus afin de les gérer lui-même.
C'est un comportement habituel de la plupart des suites de sécurité.
L'avoir corrigé ou non n'a pas de conséquence néfaste.


Le journal Système de l'Observateur d'événements signale une erreur
Error - 29/08/2010 06:05:11 | Computer Name = NOM-EB85C523610 | Source = System Error | ID = 1003
Description = Code erreur 100000d1, paramètre 1 c90c8d00, paramètre 2 00000002,
paramètre 3 00000008, paramètre 4 c90c8d00.

... qui peut faire penser à un problème de barrette mémoire.


Peux-tu faire ce qui suit:

Memtest+
Télécharger l'image ISO de Memtest depuis la page: http://www.memtest.org/#downiso
Cliquer sur Download - Pre-Compiled Bootable ISO (.zip)
Extraire de cette archive ZIP le fichier mt410.iso
Graver ce fichier sur un CD sous la forme: Graver une image ISO. Important: Il ne faut pas graver un CD de données!

Modifier le BIOS du PC afin que la séquence de démarrage soit: d'abord le lecteur de CD, ensuite le disque dur.
Voir: http://netah25.developpez.com/Tutoriels/TutoMemtest86/

Mettre le CD contenant l'image ISO de Memtest dans le lecteur et faire redémarrer le PC.

L'amorçage (le "boot") doit se faire sur le CD.

Laisser les tests tourner plusieurs heures.

Noter et transmettre sur le forum tout message d'erreur/d'avertissement.

A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Messagede Paul771 » 31 Aoû 2010, 11:24

nickW a écrit:Bonjour,

Je sais que Pierre771 = Paul771, mais dois-je comprendre que daspense = fehru :?:

Salut,

Non, pas le moins du monde ! Daspense ne parle pas un mot de français et ferhu pas un mot d'anglais ! Daspense est venu se greffer sur un topic à moi sur le forum malwarebytes.

Ferhu est un ami connu sur mon lieu de vacances et que j'essaie d'aider.

Et on fait la suite...
C'est trop injuste !
Mes configs
Avatar de l’utilisateur
Paul771
 
Messages: 985
Inscription: 15 Déc 2007, 20:55
Localisation: Le Plessis-Robinson (92)

Messagede Paul771 » 31 Aoû 2010, 11:40

On fait la suite (je ne sais pas si on a des CD vierges)

et en attendant voici la suite des symptômes

Ce matin, j'ai eu un arrêt intempestif avec
retour sur le bios.

Puis un écran bleu qui dit ceci:

Code: Tout sélectionner
Un problème a été détecté et windows
a été arrêté afin de protéger votre ordinateur
de tout dommage.
 
DRIVER_IRQL_NOT_LESS ON_EQUAL
 
Si vous voyez cet écran pour la 1ère fois redémarez l'ordinateur
Si l'écran apparaît encore assurez-vous que tout nouveau
matériel ou logiciel sont installés correctement.
S'il s'agit d'une nouvelle installation contactez le fabricant
pour les mises à jour.
 
Si les problèmes persistent désactivez ou supprimez
tout logiciel nouvellement installés.
 
Désactivez les options mémoire du bios telless que le cache
ou l'ombrage, si vous êtes obligé d'utiliser le mode sans échec pour supprimer ou redémarrer des composants
redémarrez l'ordinateur appuiyez sur la touche F8 pour sélectionner les options de redémarrage avancées. puis
sélectionnez le mode sans échec
 
Informations techniques:
 
stop: 0X000000D1 (0X04BDDFAO, 0X0000002, 0X00000001,
0XF787674E1
PCIIDEX,SYS-ADRESS 47876A4E BASE AT F7876000, DATESTEMP 4802539d.
 
C'est trop injuste !
Mes configs
Avatar de l’utilisateur
Paul771
 
Messages: 985
Inscription: 15 Déc 2007, 20:55
Localisation: Le Plessis-Robinson (92)

Messagede Paul771 » 31 Aoû 2010, 12:55

Redémarrage fait avec le cd avec l'image gravée. Test en cours...

le fichier s'appelle en fait :

memtest86+-4.00.iso
C'est trop injuste !
Mes configs
Avatar de l’utilisateur
Paul771
 
Messages: 985
Inscription: 15 Déc 2007, 20:55
Localisation: Le Plessis-Robinson (92)

Suivante

Retourner vers Sécurité (Contamination - Décontamination)

Qui est en ligne

Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 19 invités

cron