[OK] Erreur LogMeIn

Modérateur: Modérateurs et Modératrices

[OK] Erreur LogMeIn

Messagede kaki » 25 Mar 2010, 18:58

:oops: Bonjour,

J'ai désinstallé, il y a quelques temps, le logiciel LogMeIn, mis en place, à mon insu, par un réparateur qui voulait sans doute bien faire.

Depuis, je releve chaque jour sur l'Observatoire d'Evenements, rubrique Système : le service LogMeIn Kernel Information Provider n'a pas pu démarrer, le chemin d'accès spécifié est introuvable !

Dans la liste des services, je ne trouve rien concernant ce logiciel et reste très perplexe sur la teneur de ce message.

Je vous remercie de vos conseils

kaki
kaki
 
Messages: 63
Inscription: 16 Mai 2005, 16:13
Localisation: Marseille

Messagede nickW » 26 Mar 2010, 19:27

Bonjour,

Il doit rester des éléments qui se lancent sous forme de pilotes ("drivers").

Peux-tu envoyer les deux rapports d'analyse créés par OTL:

Étape 1: OTL (de OldTimer), téléchargement
Télécharger OTL.exe depuis l'un des deux liens ci-dessous:
http://oldtimer.geekstogo.com/OTL.exe
http://ottools.noahdfear.net/OTL.exe
Enregistrer ce fichier sur le Bureau.


Étape 2: OTL (de OldTimer), analyse
Fermer toutes les fenêtres de programme ouvertes.

Faire un double clic sur OTL.exe pour lancer l'outil.
Sous Windows Vista/7, faire un clic droit sur OTL.exe puis choisir "Exécuter en tant qu'Administrateur" pour lancer l'outil.

L'écran principal de OTL s'affiche:
Image

Si ce n'est déjà fait, dans le paragraphe Extra Registry, cocher le bouton-radio Use SafeList:
Image

Cocher (en haut) la case située devant Scan All Users:
Image

Puis cliquer sur le bouton Run Scan:
Image

Laisser l'outil travailler sans l'interrompre.
Lorsque l'outil a terminé, il y a ouverture d'une fenêtre du Bloc-notes contenant un rapport (log).
Fermer le Bloc-notes.
Le second rapport est visible dans la Barre des tâches. Le fermer également.
Fermer la fenêtre de OTL.


Étape 3: Résultats
Envoyer en réponse dans deux messages distincts (à cause de la longueur des fichiers):
*- les deux rapports de OTL (contenu des fichiers OTL.Txt et Extras.Txt situés sur le Bureau).
Les rapports envoyés sur le forum doivent se terminer par une ligne contenant <End>. Si ce n'est pas le cas, ils sont incomplets, et doivent alors être découpés en plusieurs messages.

Note importante: Pour l'envoi de ta(tes) réponse(s), il ne faut pas créer un nouveau sujet, mais cliquer sur le bouton "Répondre"
Image pour continuer dans ce fil de discussion.


A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Messagede kaki » 28 Mar 2010, 15:30

Bonjour nickW,

Merci d'avoir pris en charge mon problème, je t'envoie les rapports demandés :

OTL logfile created on: 28/03/2010 16:21:10 - Run 1
OTL by OldTimer - Version 3.1.37.3 Folder = C:\Documents and Settings\pc\Bureau
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 77,00% Memory free
3,00 Gb Paging File | 3,00 Gb Available in Paging File | 90,00% Paging File free
Paging file location(s): C:\pagefile.sys 1344 2688 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 149,04 Gb Total Space | 34,20 Gb Free Space | 22,95% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PC-9PBYEY2OCGUJ
Current User Name: Papillou
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/03/28 16:06:43 | 000,555,520 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\pc\Bureau\OTL.exe
PRC - [2010/01/18 15:45:08 | 003,168,216 | ---- | M] (PC Tools) -- C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe
PRC - [2010/01/11 16:21:52 | 000,246,504 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
PRC - [2009/11/18 17:24:09 | 000,818,432 | ---- | M] (PC Tools) -- C:\Program Files\PC Tools Firewall Plus\FWService.exe
PRC - [2008/04/14 04:34:16 | 000,421,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntvdm.exe
PRC - [2008/04/14 04:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008/01/30 12:37:26 | 000,468,224 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2008/01/30 12:37:12 | 001,443,072 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2007/05/15 15:55:46 | 001,550,896 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
PRC - [2006/11/13 14:07:02 | 001,289,000 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\wcescomm.exe
PRC - [2006/11/13 14:06:52 | 000,199,464 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\rapimgr.exe
PRC - [2002/01/28 14:48:50 | 000,885,760 | ---- | M] (Lexmark International Inc.) -- C:\WINDOWS\system32\LXSUPMON.EXE


========== Modules (SafeList) ==========

MOD - [2010/03/28 16:06:43 | 000,555,520 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\pc\Bureau\OTL.exe


========== Win32 Services (SafeList) ==========

SRV - [2009/11/18 17:24:09 | 000,818,432 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files\PC Tools Firewall Plus\FWService.exe -- (PCToolsFirewallPlus)
SRV - [2009/10/18 16:27:17 | 001,858,144 | ---- | M] (Emsi Software GmbH) [On_Demand | Stopped] -- C:\Program Files\a-squared Free\a2service.exe -- (a2free)
SRV - [2009/09/03 19:51:00 | 003,347,280 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\System32\GameMon.des -- (npggsvc)
SRV - [2008/01/30 12:39:14 | 000,019,200 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2008/01/30 12:37:26 | 000,468,224 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2007/05/15 15:55:46 | 001,550,896 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe -- (InCDsrv)
SRV - [2007/05/08 19:47:22 | 000,271,920 | ---- | M] (Nero AG) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService)


========== Driver Services (SafeList) ==========

DRV - [2010/01/18 15:45:29 | 000,115,216 | ---- | M] (PC Tools) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pctplfw.sys -- (pctplfw)
DRV - [2010/01/18 15:45:29 | 000,058,816 | ---- | M] (PC Tools) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pctNdis.sys -- (pctNDIS)
DRV - [2010/01/18 15:45:28 | 000,070,664 | ---- | M] (PC Tools) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pctNdis-PacketFilter.sys -- (PCTFW-PacketFilter)
DRV - [2010/01/18 15:45:27 | 000,032,680 | ---- | M] (PC Tools) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pctNdis-DNS.sys -- (PCTFW-DNS)
DRV - [2010/01/18 15:45:26 | 000,233,136 | ---- | M] (PC Tools) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\pctgntdi.sys -- (pctgntdi)
DRV - [2010/01/18 15:45:25 | 000,088,040 | ---- | M] (PC Tools) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\PCTAppEvent.sys -- (PCTAppEvent)
DRV - [2009/12/25 13:53:18 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009/06/17 14:20:34 | 000,012,648 | ---- | M] (Secunia) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\psi_mf.sys -- (PSI)
DRV - [2009/03/28 01:03:00 | 006,280,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2008/05/28 12:33:14 | 000,083,288 | ---- | M] (LogMeIn, Inc.) [File_System | Disabled | Stopped] -- C:\WINDOWS\system32\LMIRfsClientNP.dll -- (LMIRfsClientNP)
DRV - [2008/04/13 20:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Pilote USB audio (WDM)
DRV - [2008/03/07 13:39:50 | 000,045,848 | ---- | M] (LogMeIn, Inc.) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\LMIRfsDriver.sys -- (LMIRfsDriver)
DRV - [2008/01/30 12:38:08 | 000,034,312 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2008/01/30 12:35:56 | 000,029,704 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\easdrv.sys -- (easdrv)
DRV - [2008/01/30 12:35:30 | 000,039,944 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2007/05/15 15:55:36 | 000,118,576 | ---- | M] (Nero AG) [File_System | Disabled | Running] -- C:\WINDOWS\system32\drivers\InCDfs.sys -- (InCDfs)
DRV - [2007/05/15 15:55:36 | 000,038,576 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDRm.sys -- (incdrm)
DRV - [2007/05/15 15:55:36 | 000,037,040 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDPass.sys -- (InCDPass)
DRV - [2007/04/10 13:04:40 | 004,397,568 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007/03/14 03:57:50 | 001,972,736 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2007/02/06 18:43:26 | 000,090,880 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2005/08/10 14:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2005/05/16 15:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2005/03/09 08:53:00 | 000,036,352 | R--- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2005/01/07 17:07:18 | 000,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)
DRV - [2004/08/03 23:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C)
DRV - [2004/03/02 09:26:58 | 000,050,007 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\adildr.sys -- (ADILOADER) General Purpose USB Driver (adildr.sys)
DRV - [2004/03/02 09:24:16 | 000,127,065 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\adiusbaw.sys -- (adiusbaw)
DRV - [2003/04/19 00:32:04 | 000,004,736 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\tandpl.sys -- (tandpl)
DRV - [2003/03/02 17:44:26 | 000,007,552 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\enodpl.sys -- (enodpl)
DRV - [2002/09/20 15:15:42 | 000,472,396 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lvcm.sys -- (QCMerced)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========



IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1060284298-1993962763-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.google.fr/ [binary data]
IE - HKU\S-1-5-21-1060284298-1993962763-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.orange.fr/
IE - HKU\S-1-5-21-1060284298-1993962763-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp
IE - HKU\S-1-5-21-1060284298-1993962763-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr
IE - HKU\S-1-5-21-1060284298-1993962763-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0C F5 55 42 58 38 CA 01 [binary data]
IE - HKU\S-1-5-21-1060284298-1993962763-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



O1 HOSTS File: ([2008/08/07 20:45:31 | 000,257,781 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.1001-search.info
O1 - Hosts: 127.0.0.1 1001-search.info
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.123topsearch.com
O1 - Hosts: 127.0.0.1 123topsearch.com
O1 - Hosts: 127.0.0.1 www.132.com
O1 - Hosts: 127.0.0.1 132.com
O1 - Hosts: 127.0.0.1 www.136136.net
O1 - Hosts: 127.0.0.1 136136.net
O1 - Hosts: 8958 more lines...
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4 - HKLM..\Run: [00PCTFW] C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe (PC Tools)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [LXSUPMON] C:\WINDOWS\System32\LXSUPMON.EXE (Lexmark International Inc.)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKU\S-1-5-21-1060284298-1993962763-682003330-1003..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\wcescomm.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1060284298-1993962763-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95 00 00 00 [binary data]
O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Wanadoo Messager\Wanadoo Messager.exe (France Telecom)
O9 - Extra 'Tools' menuitem : Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Wanadoo Messager\Wanadoo Messager.exe (France Telecom)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} http://www.nvidia.com/content/DriverDow ... eqlab3.cab (System Requirements Lab Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\LMIinit: DllName - LMIinit.dll - C:\WINDOWS\System32\LMIinit.dll (LogMeIn, Inc.)
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\pc\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\pc\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/06/12 14:49:04 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{b6740ad8-29bb-11de-8030-4d6564696130}\Shell\AutoRun\command - "" = G:\wdsync.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010/03/28 16:06:25 | 000,555,520 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\pc\Bureau\OTL.exe
[2010/03/28 00:42:36 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\pc\Recent
[2010/03/20 17:26:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\pc\Application Data\Tracker Software
[2010/03/12 20:53:31 | 000,000,000 | ---D | C] -- C:\Program Files\Auslogics
[2010/03/10 15:42:57 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe
[2010/03/08 15:05:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\pc\Local Settings\Application Data\My Games
[2010/03/03 21:57:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\pc\Local Settings\Application Data\LearnPulse
[2010/03/02 19:19:27 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe
[2010/02/27 17:19:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Bureau
[2008/08/18 22:56:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\ESET
[2008/06/12 17:18:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2008/06/12 14:51:56 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2008/06/12 14:51:56 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2008/06/12 14:51:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[4 C:\Documents and Settings\All Users\Application Data\*.tmp files -> C:\Documents and Settings\All Users\Application Data\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/03/28 16:20:00 | 000,000,426 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{57CE737D-9A42-4A27-8F79-2EEE14542E32}.job
[2010/03/28 16:06:43 | 000,555,520 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\pc\Bureau\OTL.exe
[2010/03/28 15:39:46 | 000,000,601 | ---- | M] () -- C:\WINDOWS\win.ini
[2010/03/28 15:31:18 | 000,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/03/28 15:31:04 | 000,204,191 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010/03/28 15:30:59 | 000,000,318 | ---- | M] () -- C:\WINDOWS\tasks\GlaryInitialize.job
[2010/03/28 15:30:58 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/03/28 15:30:56 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/03/28 15:30:54 | 000,000,000 | ---- | M] () -- C:\WINDOWS\MEMORY.DMP
[2010/03/28 15:11:50 | 000,509,872 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2010/03/28 15:11:50 | 000,440,684 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/03/28 15:11:50 | 000,084,956 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2010/03/28 15:11:49 | 001,121,204 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010/03/28 15:11:49 | 000,071,002 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010/03/28 00:42:47 | 009,699,328 | -H-- | M] () -- C:\Documents and Settings\pc\NTUSER.DAT
[2010/03/25 17:43:07 | 000,000,041 | ---- | M] () -- C:\WINDOWS\Filzip.ini
[2010/03/25 17:17:05 | 000,022,328 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010/03/25 17:05:29 | 000,001,691 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Call of Duty(R) 4 - Modern Warfare(TM) campagne solo.lnk
[2010/03/25 17:05:08 | 000,022,328 | ---- | M] () -- C:\Documents and Settings\pc\Application Data\PnkBstrK.sys
[2010/03/25 17:03:44 | 000,000,319 | ---- | M] () -- C:\WINDOWS\game.ini
[2010/03/20 22:44:09 | 000,000,042 | -HS- | M] () -- C:\Documents and Settings\pc\ntuser.ini
[2010/03/13 18:29:01 | 000,245,344 | ---- | M] () -- C:\Documents and Settings\pc\Mes documents\Résoudre une grille de Sodoku.mht
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[4 C:\Documents and Settings\All Users\Application Data\*.tmp files -> C:\Documents and Settings\All Users\Application Data\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/03/25 17:05:29 | 000,001,691 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Call of Duty(R) 4 - Modern Warfare(TM) campagne solo.lnk
[2010/03/25 17:05:09 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010/03/25 17:05:02 | 000,103,736 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2010/03/13 18:29:00 | 000,245,344 | ---- | C] () -- C:\Documents and Settings\pc\Mes documents\Résoudre une grille de Sodoku.mht
[2009/12/26 13:11:32 | 000,000,125 | ---- | C] () -- C:\Documents and Settings\pc\Local Settings\Application Data\fusioncache.dat
[2009/12/25 18:09:03 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini
[2009/10/01 11:03:59 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\lxaxlcnp.dll
[2009/08/15 16:50:28 | 000,144,384 | ---- | C] () -- C:\WINDOWS\System32\miccyhook.dll
[2009/06/04 12:20:23 | 000,056,320 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll
[2008/08/13 18:50:58 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\pc\Application Data\$_hpcst$.hpc
[2008/08/13 12:47:28 | 000,000,331 | ---- | C] () -- C:\WINDOWS\doom3.ini
[2008/08/12 17:51:56 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\pc\Application Data\PnkBstrK.sys
[2008/07/02 19:15:01 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008/07/01 17:20:46 | 000,000,041 | ---- | C] () -- C:\WINDOWS\System32\Filzip.ini
[2008/06/29 14:48:09 | 000,000,241 | ---- | C] () -- C:\WINDOWS\QSync.INI
[2008/06/29 14:46:40 | 000,010,628 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
[2008/06/29 14:45:20 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\MimicICM.dll
[2008/06/29 14:34:02 | 000,000,029 | ---- | C] () -- C:\WINDOWS\DEBUGSM.INI
[2008/06/29 14:31:47 | 000,096,768 | ---- | C] () -- C:\WINDOWS\SlantAdj.dll
[2008/06/29 14:31:47 | 000,000,072 | ---- | C] () -- C:\WINDOWS\System32\epDPE.ini
[2008/06/25 14:17:23 | 000,000,520 | ---- | C] () -- C:\WINDOWS\netdet.ini
[2008/06/24 20:50:46 | 000,024,576 | ---- | C] () -- C:\Documents and Settings\pc\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/06/14 19:37:19 | 000,007,552 | ---- | C] () -- C:\WINDOWS\System32\drivers\enodpl.sys
[2008/06/14 19:37:19 | 000,004,736 | ---- | C] () -- C:\WINDOWS\System32\drivers\tandpl.sys
[2008/06/14 19:29:52 | 000,001,967 | ---- | C] () -- C:\WINDOWS\MediaR12.ini
[2008/06/14 18:57:33 | 000,000,040 | ---- | C] () -- C:\WINDOWS\NAVIGMA.INI
[2008/06/14 18:45:05 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2008/06/14 18:11:35 | 000,000,041 | ---- | C] () -- C:\WINDOWS\Filzip.ini
[2008/06/14 12:21:08 | 000,000,154 | ---- | C] () -- C:\WINDOWS\adidsl.ini
[2008/06/14 12:21:08 | 000,000,021 | ---- | C] () -- C:\WINDOWS\Fast800.ini
[2008/06/14 12:21:06 | 000,000,342 | ---- | C] () -- C:\WINDOWS\adiras.ini
[2008/06/14 12:21:02 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\coclassfast.dll
[2008/06/14 12:21:02 | 000,046,892 | ---- | C] () -- C:\WINDOWS\System32\adadix16.dll
[2008/06/12 15:01:47 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2008/05/16 14:01:00 | 001,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2008/05/16 14:01:00 | 001,503,232 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2008/05/16 14:01:00 | 001,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2008/05/16 14:01:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2008/05/16 14:01:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2008/01/30 12:38:08 | 000,034,312 | ---- | C] () -- C:\WINDOWS\System32\drivers\epfwtdir.sys

========== Alternate Data Streams ==========

@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5C321E34
@Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C31F31E6
<End>
kaki
 
Messages: 63
Inscription: 16 Mai 2005, 16:13
Localisation: Marseille

Messagede kaki » 28 Mar 2010, 15:33

Suite :

OTL Extras logfile created on: 28/03/2010 16:21:10 - Run 1
OTL by OldTimer - Version 3.1.37.3 Folder = C:\Documents and Settings\pc\Bureau
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 77,00% Memory free
3,00 Gb Paging File | 3,00 Gb Available in Paging File | 90,00% Paging File free
Paging file location(s): C:\pagefile.sys 1344 2688 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 149,04 Gb Total Space | 34,20 Gb Free Space | 22,95% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PC-9PBYEY2OCGUJ
Current User Name: Papillou
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [ChangeIcon] -- "C:\Program Files\ChgIcon\ChangeIcon.exe" %1 (Pierre-Marie DEVIGNE)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Parcourir avec XnView] -- "C:\Program Files\XnView\xnview.exe" "%1" (XnView, http://www.xnview.com)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe" = C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe" = C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe" = C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application -- (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\SiSoftware\SiSoftware Sandra Lite XII.SP2c\WNt500x86\RpcSandraSrv.exe" = C:\Program Files\SiSoftware\SiSoftware Sandra Lite XII.SP2c\WNt500x86\RpcSandraSrv.exe:*:Enabled:SiSoftware Sandra Agent Service -- File not found
"C:\WINDOWS\system32\CIMSVR.exe" = C:\WINDOWS\system32\CIMSVR.exe:*:Enabled:Logitech IM Video Companion Server -- (Logitech Inc.)
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe" = C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe" = C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager -- (Microsoft Corporation)
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe" = C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application -- (Microsoft Corporation)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01B28B7B-EEC6-12D5-5B5A-5A7EBDF5EFBA}" = Catalyst Control Center Localization Dutch
"{01E836B9-843A-42F7-9F10-0F261B3B15DA}" = Catalyst Control Center Localization Japanese
"{053B3DA8-91B5-4682-A130-715412A1A252}" = Paint.NET v3.5.4
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{06577CC6-34AC-F592-C982-ACA2C6693F4B}" = Catalyst Control Center Localization Turkish
"{08F0DDCB-05C1-4A0E-B9E7-9EE077A2EDAD}" = Conflict Desert Storm II
"{09784F06-A9D0-AD2F-9947-4637F8917EED}" = Catalyst Control Center Localization Portuguese
"{0BD83598-C2EF-3343-847B-7D2E84599128}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA
"{0FA44E79-CD7D-4E8D-A2EE-26FE05F509B6}" = OpenOffice.org 3.1
"{107409C7-C8DD-E2E6-8B93-DDBA6DC47C65}" = Catalyst Control Center Graphics Full New
"{111E336D-30BF-4CD4-8D69-4541732AFB27}" = Peter Jackson's King Kong - The Official Game of the Movie
"{13400EBE-5DE5-48E5-FBDC-27CC4E2FB723}" = CCC Help English
"{13922F10-BD74-4912-AB11-E34B35062700}" = Microsoft Calculatrice Plus
"{14E01A0E-14CF-A34F-6B02-24710B14E4FB}" = CCC Help French
"{167105DE-14C3-8DC9-5FDE-C0CF8E582EE6}" = Catalyst Control Center Localization Czech
"{19E819FC-E546-8CA8-D3C3-7373436B5CF0}" = Catalyst Control Center Graphics Full Existing
"{1BCAF2AE-302A-515A-12B5-48AF8CCE00FF}" = Catalyst Control Center Localization Norwegian
"{21A127AE-2DAF-40B7-8374-34C3E629521C}" = Far Cry (Patch 1.3)
"{234054E5-05C3-E7DE-D83F-03F35C0F10E7}" = Skins
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 18
"{2BD1F67A-F41E-35FB-75F5-6D1A1D08A478}" = Catalyst Control Center Localization Finnish
"{2D22DDC6-4CF7-491C-865B-154191EB5218}" = CryENGINE MOD SDK for FarCry v1.1
"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder
"{3C662203-292F-4E9D-AE02-281071C06903}" = Far Cry (Patch 1.33)
"{3E31821C-7917-367E-938E-E65FC413EA31}" = Microsoft .NET Framework 3.5 Language Pack SP1 - fra
"{413A49C0-E43E-FE69-D9D5-DBF6B8F24CA4}" = CCC Help Thai
"{42BC0474-6E50-464A-8183-5E3D32E41B1B}" = XIII
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A106F8A-7C4D-F592-6FA0-71E056236F74}" = CCC Help Danish
"{4AE3A0CB-87B0-4F51-BECD-3D1F8DFDD62F}" = SAGEM F@st 800-840
"{4DC75641-E005-49C5-BB0E-3EC1F6A2D4A4}" = ROUTE 66 Route 2004
"{554597A5-A57A-9592-A28E-3EBDCFFC5516}" = CCC Help German
"{55D1BF8E-EA8F-4969-82B9-B577010CFBCD}" = Microsoft Baseline Security Analyzer 2.1
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5A24DD7E-7B01-41AC-ADA8-F1776177A3BA}" = Logitech ImageStudio
"{5D02AE2F-0C28-4AB1-91FA-049E6192AB93}" = Encyclopédie Universelle Larousse
"{6045FB3F-5CF6-2157-885B-20BC9DBC6B0A}" = Catalyst Control Center Localization Chinese Traditional
"{6687EF6D-66D6-4189-89D4-3DB5197BD138}" = ESET NOD32 Antivirus
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72AD53CC-CCC0-3757-8480-9EE176866A7C}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA
"{735D1B9F-A9A4-4FF2-A830-96C150883B97}" = QVGDM Seconde Edition
"{75443B81-E1FC-4D79-80C0-5F0DF2A7F897}" = Conflict Global Storm
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{788E737C-54C5-0E5B-2C2D-A5AE5E941765}" = Catalyst Control Center Localization Russian
"{7A6B26B5-6872-B3ED-A644-396778046FE4}" = CCC Help Portuguese
"{7B27B170-2F40-4D39-A52F-BD4261B12D29}" = Caplio Software
"{80BDA494-E9FF-2A4C-209B-AC1F84957A72}" = CCC Help Chinese Traditional
"{851B7934-1CF6-3CF7-7E60-61E74509279A}" = CCC Help Hungarian
"{866A523B-36EA-9D14-D5F1-3449BC35A95A}" = Catalyst Control Center Localization Danish
"{89661B04-C646-4412-B6D3-5E19F02F1F37}" = EAX4 Unified Redist
"{89C9ECA1-6FCF-CA48-FCB4-E6AD3D2E812E}" = CCC Help Chinese Standard
"{89D17E48-B25A-A15D-9CAB-96E4BAC6CADC}" = ccc-core-static
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8AA18701-9EFA-6B5D-E199-D55EA27DBC83}" = CCC Help Czech
"{8C48E464-EB9F-43B8-82C5-245EE6B196DF}" = Doom 3
"{8CE62CBA-6D7E-B810-20CE-D8159427295A}" = CCC Help Italian
"{8D273DE5-ABFA-4BD0-A9D7-EE9C971438C4}_is1" = PDF-Viewer
"{8D5C20A6-5CBF-4D0F-7193-4703DC2F27DF}" = CCC Help Greek
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{984F10FD-11FD-4BED-8163-92DB81E6A825}" = Logitech IM Video Companion
"{99052DB7-9592-4522-A558-5417BBAD48EE}" = Microsoft ActiveSync
"{9A394342-4A68-4EBA-85A6-55B559F4E700}" = Microsoft .NET Framework 1.1 French Language Pack
"{9B4E6CB9-E54D-47F7-A414-E2D5740E1036}" = Nero 7 Essentials
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A804B134-F03D-4EFD-9BC0-DCD257AA1B22}" = Hitman Blood Money
"{A9759B20-7D00-5BBF-031C-D35B297D3D19}" = CCC Help Korean
"{AB67580-257C-45FF-B8F4-C8C30682091A}_is1" = SIW version 2010.03.10
"{ABFB9EA8-2B03-6470-39BD-0535DB3021FC}" = Catalyst Control Center Localization Hungarian
"{AE7363A2-B18A-1C20-E91A-8D31230A78C7}" = Catalyst Control Center Localization Swedish
"{B01AB1B5-85AB-1091-1ED5-01CCCCF422B4}" = Catalyst Control Center Core Implementation
"{B0E062C5-21A4-ADDF-759C-4852A9507AC4}" = CCC Help Swedish
"{B38B8FCF-200E-9829-782F-3C47B2629B6F}" = Catalyst Control Center Localization Chinese Standard
"{B68521B4-5BCA-E327-E0F0-FA5E0704F1B9}" = Catalyst Control Center Localization Thai
"{B969515D-747E-1831-B8FC-9BFEF6590F9E}" = CCC Help Dutch
"{BE5C71FE-D9F0-9EC8-041C-CC4D7BF5DDF0}" = CCC Help Russian
"{BF2E75D1-E386-E496-D7B7-92C47FD28B4C}" = CCC Help Japanese
"{BF707D69-A99C-3D43-F408-266177F59C95}" = Catalyst Control Center Localization German
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C5B66459-7020-E809-13A9-B7401550B1D0}" = CCC Help Turkish
"{C60A4D74-4922-872B-C801-DFEA30557817}" = CCC Help Polish
"{C6F58E1D-EB38-08F6-76A5-568553A2BA66}" = Catalyst Control Center Localization Greek
"{C941F1F1-25B3-4DF5-83E6-888C51A1AAB6}" = AVIVO Codecs
"{C9D1D844-9AE6-B208-19B1-71967A62DEFC}" = Catalyst Control Center Localization Spanish
"{CAD1691A-FA24-4B95-9009-3257B8440ECC}" = Tom Clancy's Splinter Cell Double Agent
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CB803548-1B13-B505-A6BF-2F20B951D0C3}" = CCC Help Spanish
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D09B05A7-714E-55F2-D9F8-4797641E961D}" = Catalyst Control Center Localization Polish
"{D6DBDC2A-E72C-4284-B6AD-6B3B61B4DABC}" = Far Cry
"{D792A069-B96B-40BA-BCB4-E5651A6E5926}" = Far Cry (Patch 1)
"{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty(R) - World at War(TM)
"{D9DD35C3-0967-1F19-8024-4C2E9202729B}" = Catalyst Control Center Localization Italian
"{D9DEC396-7414-AC0C-EACC-F6D1F29D587E}" = Catalyst Control Center Graphics Light
"{DBB581E4-5483-4F6A-74D0-B1D3A40B70CB}" = ccc-utility
"{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = Auslogics Disk Defrag
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{EA117E9A-586E-A80E-FB01-D34FE9F1E61F}" = CCC Help Finnish
"{EE8592F6-FC2B-4AFD-B527-109D127C039F}" = Far Cry (Patch 1.31)
"{EEFB15EB-FE8B-47DF-A496-1C4D1420294A}" = Doom 3
"{EFC97089-04D6-42CE-A707-A343B4A7D2CD}" = Ghost Recon Advanced Warfighter
"{EFCF2EC0-39B9-CF5C-73DA-07DC33F91599}" = Catalyst Control Center Localization French
"{EFE1AB94-5466-4B6E-BE31-FF4C115FD25D}" = Max Payne 2
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2835483-37F2-4123-B4FE-0E77D58447F2}" = Far Cry 2
"{F5346614-B7C4-4E94-826A-E2363155233D}" = EasyCleaner
"{F8D32782-613E-7076-4AFD-E7232A23515D}" = CCC Help Norwegian
"{FEC173D3-683C-4C09-9167-7D2D573A3A9C}" = Alias
"{FFF14D52-BE57-EA38-DEA9-B0101D14B1A2}" = Catalyst Control Center Localization Korean
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Airscanner Mobile Encrypter" = Airscanner Mobile Encrypter
"All ATI Software" = ATI - Utilitaire de désinstallation du logiciel
"a-squared Free_is1" = a-squared Free 4.5
"ATI Display Driver" = ATI Display Driver
"CCleaner" = CCleaner
"CodeStuff Starter" = CodeStuff Starter
"CULTIX 2.0" = CULTIX 2.0
"Dragonica(FR)" = Dragonica(FR)
"ERUNT_is1" = ERUNT 1.1j
"EspaceWanadoo.exe" = Wanadoo
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"FileHippo.com" = FileHippo.com Update Checker
"Filzip 3.0.6.93_is1" = Filzip 3.06
"Freedom Fighters" = Freedom Fighters
"Glary Utilities_is1" = Glary Utilities 2.20.0.831
"GotoBridge II Découverte" = GotoBridge II Découverte
"Halo" = Microsoft Halo
"HD Tune_is1" = HD Tune 2.54
"HijackThis" = HijackThis 2.0.2
"Hitman 2: Silent Assassin" = Hitman 2: Silent Assassin
"IcoFX_is1" = IcoFX 1.6.4
"i-Covers_is1" = i-Covers 2009.a
"ie8" = Windows Internet Explorer 8
"Indeo® Software" = Indeo® Software
"InstallShield_{2D22DDC6-4CF7-491C-865B-154191EB5218}" = CryENGINE MOD SDK for FarCry v1.1
"InstallShield_{3BD633E0-4BF8-4499-9149-88F0767D449C}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.4 Patch
"InstallShield_{D6DBDC2A-E72C-4284-B6AD-6B3B61B4DABC}" = Far Cry
"InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty(R) - World at War(TM)
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"InstallShield_{EEFB15EB-FE8B-47DF-A496-1C4D1420294A}" = Doom 3
"InstallShield_{FEC173D3-683C-4C09-9167-7D2D573A3A9C}" = Alias
"IsoBuster_is1" = IsoBuster 2.7
"KeePass Password Safe_is1" = KeePass Password Safe 1.17
"LeechGet 2007_is1" = LeechGet 2007 Version 2.1
"Lexmark Supplies Monitor" = Lexmark Supplies Monitor
"Lexmark Z25-Z35" = Lexmark Z25-Z35
"Logitech Print Service" = Logitech Print Service
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MediaDICO12" = Micro Application - MediaDICO 12
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - fra" = Module linguistique Microsoft .NET Framework 3.5 SP1- fra
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Netpass XP" = Netpass XP
"NODouble" = NODouble
"NVIDIA Drivers" = NVIDIA Drivers
"Objective Tarot" = Objective Tarot
"Pack Français de ERUNT" = Pack Français de ERUNT
"PC Tools Firewall Plus" = PC Tools Firewall Plus 6.0
"PERCEL 5.0" = PERCEL 5.0
"Photocopier_is1" = Photocopier 3.04
"Recuva" = Recuva
"Revo Uninstaller" = Revo Uninstaller 1.83
"Secunia PSI" = Secunia PSI
"Shockwave" = Shockwave
"Simple Sudoku_is1" = Simple Sudoku 4.2
"SMART PANEL for Scanner" = EPSON SMART PANEL for Scanner
"SpywareBlaster_is1" = SpywareBlaster 4.2
"ST6UNST #1" = Lingo
"SumatraPDF" = SumatraPDF
"SystemRequirementsLab" = System Requirements Lab
"Texas Hold 'Em" = Texas Hold 'Em
"The KMPlayer FR_is1" = The KMPlayer v2.9.4.1435 FR
"Tomb Raider: Underworld" = Tomb Raider: Underworld 1.1
"Total Uninstall_is1" = Total Uninstall 2.35
"Unlocker" = Unlocker 1.8.7
"Wanadoo Messager" = Wanadoo Messager
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Lecteur Windows Media 11
"XnView_is1" = XnView 1.97.2

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1060284298-1993962763-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Screenpresso" = Screenpresso

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 12/10/2009 05:32:43 | Computer Name = PC-9PBYEY2OCGUJ | Source = Userenv | ID = 1047
Description = Windows ne peut pas lire l'historique des objets de paramètre de groupe
à partir du Registre. Le traitement de la stratégie de groupe continue.

Error - 12/10/2009 05:32:43 | Computer Name = PC-9PBYEY2OCGUJ | Source = Userenv | ID = 1047
Description = Windows ne peut pas lire l'historique des objets de paramètre de groupe
à partir du Registre. Le traitement de la stratégie de groupe continue.

Error - 12/10/2009 05:32:43 | Computer Name = PC-9PBYEY2OCGUJ | Source = Userenv | ID = 1047
Description = Windows ne peut pas lire l'historique des objets de paramètre de groupe
à partir du Registre. Le traitement de la stratégie de groupe continue.

Error - 12/10/2009 05:32:43 | Computer Name = PC-9PBYEY2OCGUJ | Source = Userenv | ID = 1047
Description = Windows ne peut pas lire l'historique des objets de paramètre de groupe
à partir du Registre. Le traitement de la stratégie de groupe continue.

Error - 12/10/2009 05:32:43 | Computer Name = PC-9PBYEY2OCGUJ | Source = Userenv | ID = 1047
Description = Windows ne peut pas lire l'historique des objets de paramètre de groupe
à partir du Registre. Le traitement de la stratégie de groupe continue.

Error - 12/10/2009 05:32:43 | Computer Name = PC-9PBYEY2OCGUJ | Source = Userenv | ID = 1047
Description = Windows ne peut pas lire l'historique des objets de paramètre de groupe
à partir du Registre. Le traitement de la stratégie de groupe continue.

Error - 12/10/2009 05:32:43 | Computer Name = PC-9PBYEY2OCGUJ | Source = Userenv | ID = 1047
Description = Windows ne peut pas lire l'historique des objets de paramètre de groupe
à partir du Registre. Le traitement de la stratégie de groupe continue.

Error - 12/10/2009 05:32:43 | Computer Name = PC-9PBYEY2OCGUJ | Source = Userenv | ID = 1047
Description = Windows ne peut pas lire l'historique des objets de paramètre de groupe
à partir du Registre. Le traitement de la stratégie de groupe continue.

Error - 12/10/2009 05:32:43 | Computer Name = PC-9PBYEY2OCGUJ | Source = Userenv | ID = 1047
Description = Windows ne peut pas lire l'historique des objets de paramètre de groupe
à partir du Registre. Le traitement de la stratégie de groupe continue.

Error - 12/10/2009 05:32:43 | Computer Name = PC-9PBYEY2OCGUJ | Source = Userenv | ID = 1047
Description = Windows ne peut pas lire l'historique des objets de paramètre de groupe
à partir du Registre. Le traitement de la stratégie de groupe continue.

[ System Events ]
Error - 26/03/2010 05:17:46 | Computer Name = PC-9PBYEY2OCGUJ | Source = Service Control Manager | ID = 7000
Description = Le service General Purpose USB Driver (adildr.sys) n'a pas pu démarrer
en raison de l'erreur : %%1058

Error - 26/03/2010 05:17:46 | Computer Name = PC-9PBYEY2OCGUJ | Source = Service Control Manager | ID = 7000
Description = Le service LogMeIn Kernel Information Provider n'a pas pu démarrer
en raison de l'erreur : %%3

Error - 26/03/2010 14:27:40 | Computer Name = PC-9PBYEY2OCGUJ | Source = Service Control Manager | ID = 7000
Description = Le service General Purpose USB Driver (adildr.sys) n'a pas pu démarrer
en raison de l'erreur : %%1058

Error - 26/03/2010 14:27:40 | Computer Name = PC-9PBYEY2OCGUJ | Source = Service Control Manager | ID = 7000
Description = Le service LogMeIn Kernel Information Provider n'a pas pu démarrer
en raison de l'erreur : %%3

Error - 27/03/2010 12:34:29 | Computer Name = PC-9PBYEY2OCGUJ | Source = Service Control Manager | ID = 7000
Description = Le service General Purpose USB Driver (adildr.sys) n'a pas pu démarrer
en raison de l'erreur : %%1058

Error - 27/03/2010 12:34:29 | Computer Name = PC-9PBYEY2OCGUJ | Source = Service Control Manager | ID = 7000
Description = Le service LogMeIn Kernel Information Provider n'a pas pu démarrer
en raison de l'erreur : %%3

Error - 28/03/2010 09:10:42 | Computer Name = PC-9PBYEY2OCGUJ | Source = Service Control Manager | ID = 7000
Description = Le service General Purpose USB Driver (adildr.sys) n'a pas pu démarrer
en raison de l'erreur : %%1058

Error - 28/03/2010 09:10:42 | Computer Name = PC-9PBYEY2OCGUJ | Source = Service Control Manager | ID = 7000
Description = Le service LogMeIn Kernel Information Provider n'a pas pu démarrer
en raison de l'erreur : %%3

Error - 28/03/2010 09:31:15 | Computer Name = PC-9PBYEY2OCGUJ | Source = Service Control Manager | ID = 7000
Description = Le service General Purpose USB Driver (adildr.sys) n'a pas pu démarrer
en raison de l'erreur : %%1058

Error - 28/03/2010 09:31:15 | Computer Name = PC-9PBYEY2OCGUJ | Source = Service Control Manager | ID = 7000
Description = Le service LogMeIn Kernel Information Provider n'a pas pu démarrer
en raison de l'erreur : %%3


<End>

Je reste à ton écoute et te remercie encore pour ton assistance.

kaki
kaki
 
Messages: 63
Inscription: 16 Mai 2005, 16:13
Localisation: Marseille

Messagede nickW » 28 Mar 2010, 23:42

Bonsoir,

En effet il reste plusieurs éléments liés à LogMeIn.


Suppression définitive de ces éléments:

Étape 1: OTL (de OldTimer), préparation du nettoyage
Ouvrir une fenêtre du Bloc-notes, via Démarrer---->Exécuter, taper notepad puis cliquer sur OK

Sélectionner toutes les lignes de la zone blanche située sous "Code:" ci-dessous, puis appuyer simultanément sur les touches Ctrl et C

Code: Tout sélectionner
rien

:otl
DRV - [2008/05/28 12:33:14 | 000,083,288 | ---- | M] (LogMeIn, Inc.) [File_System | Disabled | Stopped] -- C:\WINDOWS\system32\LMIRfsClientNP.dll -- (LMIRfsClientNP)
DRV - [2008/03/07 13:39:50 | 000,045,848 | ---- | M] (LogMeIn, Inc.) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\LMIRfsDriver.sys -- (LMIRfsDriver)
O20 - Winlogon\Notify\LMIinit: DllName - LMIinit.dll - C:\WINDOWS\System32\LMIinit.dll (LogMeIn, Inc.)

:Commands
[emptytemp]



Retourner dans la fenêtre du Bloc-notes, faire un clic droit dans la fenêtre et choisir Coller
Vérifier dans le menu Format (en haut) que "Retour automatique à ligne" n'est pas actif (pas coché).
Enregistrer le fichier sous le nom fix.txt <---- ne pas modifier le nom du fichier
Fermer le Bloc-notes.

Note: Les lignes de la zone Code ci-dessus ont été créées exclusivement pour CET utilisateur: kaki.
si vous n'êtes pas CET utilisateur, il ne faut pas les utiliser: elles pourraient endommager votre système.



Étape 2: Pas de processus de contrôle en temps réel
Désactiver le module résident de l'antivirus.
Image Nod32 Antivirus: clic droit sur l'icône dans la SysBarre (à coté de l'horloge), cliquer sur "Quitter"


Étape 3: OTL (de OldTimer), nettoyage

Faire un double clic sur OTL.exe pour lancer l'outil.

L'écran principal de OTL s'affiche:
Image

Cliquer sur le bouton Run Fix: Image

Il y a ouverture d'une petite fenêtre "Information": Image

Cliquer sur le bouton Yes.

A partir de la nouvelle fenêtre "Ouvrir", naviguer jusqu'au dossier de sauvegarde du fichier fix.txt puis cliquer sur le bouton Ouvrir.

Le contenu du fichier fix.txt est ainsi inséré dans le panneau "Custom Scans/Fixes" Image

Fermer toutes les fenêtres de programme ouvertes autres que OTL (navigateur, traitement de texte, etc...): un redémarrage du PC va se produire.

Cliquer de nouveau sur le bouton Run Fix: Image

Note: Lorsque le redémarrage est demandé, cliquer sur Oui/Yes

Lorsque l'outil a terminé son travail, il y a affichage dans une petite fenêtre du message "Fix Complete! Click OK to open the fix log". Cliquer sur OK puis fermer OTL.


Étape 4: Processus de contrôle en temps réel
Important: Réactiver le module résident de l'antivirus.


Étape 5: OTL (de OldTimer), analyse rapide
Fermer toutes les fenêtres de programme ouvertes.

Faire un double clic sur OTL.exe pour lancer l'outil.

L'écran principal de OTL s'affiche:
Image

Cliquer sur le bouton Quick Scan:
Image


Laisser l'outil travailler sans l'interrompre.
Lorsque l'outil a terminé, il y a ouverture d'une fenêtre du Bloc-notes contenant un rapport (log).
Fermer le Bloc-notes.
Fermer la fenêtre de OTL.


Étape 6: Résultats
Envoyer en réponse:
*- le rapport de correction de OTL (contenu du fichier SystemDrive\_OTL\MovedFiles\********_******.log - les *** sont des chiffres représentant la date [moisjourannée] et l'heure)
[SystemDrive représente la partition sur laquelle est installé le système, généralement C:]

Envoyer ensuite en réponse dans un message distinct (à cause de la longueur du fichier):
*- le rapport principal de OTL (contenu du fichier OTL.txt situé sur le Bureau).
Le rapport envoyé sur le forum doit se terminer par une ligne contenant <End>. Si ce n'est pas le cas, il est incomplet, et doit alors être découpé en plusieurs messages.

Note importante: Pour l'envoi de ta(tes) réponse(s), il ne faut pas créer un nouveau sujet, mais cliquer sur le bouton "Répondre"
Image pour continuer dans ce fil de discussion.


Vois-tu encore des messages d'erreur dans l'Observateur d'événements?

A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Messagede kaki » 29 Mar 2010, 13:57

Bonjour nickW,

Merci pour ta célérité, j'ai essayé de faire ce que tu m'as dit :

All processes killed
Error: Unable to interpret <rien> in the current context!
========== OTL ==========
Service LMIRfsClientNP stopped successfully!
Service LMIRfsClientNP deleted successfully!
C:\WINDOWS\system32\LMIRfsClientNP.dll moved successfully.a
Service LMIRfsDriver stopped successfully!
Service LMIRfsDriver deleted successfully!
C:\WINDOWS\system32\drivers\LMIRfsDriver.sys moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LMIinit\ deleted successfully.
C:\WINDOWS\system32\LMIinit.dll moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrateur
->Temp folder emptied: 592687 bytes
->Temporary Internet Files folder emptied: 855425 bytes
->Flash cache emptied: 434 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33237 bytes

User: pc
->Temp folder emptied: 11488706 bytes
->Temporary Internet Files folder emptied: 55055578 bytes
->Java cache emptied: 0 bytes
->Flash cache emptied: 2523 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 1139202 bytes
%systemroot%\System32 .tmp files removed: 102912 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 212179 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 55082 bytes
RecycleBin emptied: 14521754 bytes

Total Files Cleaned = 80,00 mb


OTL by OldTimer - Version 3.1.37.3 log created on 03292010_143321

Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\pc\Local Settings\Temp\~DF547E.tmp not found!
File\Folder C:\Documents and Settings\pc\Local Settings\Temp\~DF5489.tmp not found!
File\Folder C:\Documents and Settings\pc\Local Settings\Temp\~DF5511.tmp not found!
File\Folder C:\Documents and Settings\pc\Local Settings\Temp\~DF551C.tmp not found!
File\Folder C:\Documents and Settings\pc\Local Settings\Temp\~DF564A.tmp not found!
File\Folder C:\Documents and Settings\pc\Local Settings\Temp\~DF5656.tmp not found!
File\Folder C:\Documents and Settings\pc\Local Settings\Temp\~DF5765.tmp not found!
File\Folder C:\Documents and Settings\pc\Local Settings\Temp\~DF5786.tmp not found!
C:\Documents and Settings\pc\Local Settings\Temporary Internet Files\Content.IE5\QKBO4PU9\index[2].htm moved successfully.
C:\Documents and Settings\pc\Local Settings\Temporary Internet Files\Content.IE5\HF5FJGM5\google_fr[2].htm moved successfully.
C:\Documents and Settings\pc\Local Settings\Temporary Internet Files\AntiPhishing\2CEDBFBC-DBA8-43AA-B1FD-CC8E6316E3E2.dat moved successfully.
C:\Documents and Settings\pc\Local Settings\Temporary Internet Files\SuggestedSites.dat moved successfully.

Registry entries deleted on Reboot...
kaki
 
Messages: 63
Inscription: 16 Mai 2005, 16:13
Localisation: Marseille

Messagede kaki » 29 Mar 2010, 14:07

:oops:

Suite

OTL logfile created on: 29/03/2010 14:47:38 - Run 2
OTL by OldTimer - Version 3.1.37.3 Folder = C:\Documents and Settings\pc\Bureau
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 77,00% Memory free
3,00 Gb Paging File | 3,00 Gb Available in Paging File | 90,00% Paging File free
Paging file location(s): C:\pagefile.sys 1344 2688 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 149,04 Gb Total Space | 34,21 Gb Free Space | 22,95% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PC-9PBYEY2OCGUJ
Current User Name: Papillou
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2010/03/28 16:06:43 | 000,555,520 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\pc\Bureau\OTL.exe
PRC - [2010/01/18 15:45:08 | 003,168,216 | ---- | M] (PC Tools) -- C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe
PRC - [2010/01/11 16:21:52 | 000,246,504 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
PRC - [2009/11/18 17:24:09 | 000,818,432 | ---- | M] (PC Tools) -- C:\Program Files\PC Tools Firewall Plus\FWService.exe
PRC - [2008/04/14 04:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008/01/30 12:37:26 | 000,468,224 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2008/01/30 12:37:12 | 001,443,072 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2007/05/15 15:55:46 | 001,550,896 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
PRC - [2006/11/13 14:07:02 | 001,289,000 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\wcescomm.exe
PRC - [2006/11/13 14:06:52 | 000,199,464 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\rapimgr.exe
PRC - [2002/01/28 14:48:50 | 000,885,760 | ---- | M] (Lexmark International Inc.) -- C:\WINDOWS\system32\LXSUPMON.EXE


========== Modules (SafeList) ==========

MOD - [2010/03/28 16:06:43 | 000,555,520 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\pc\Bureau\OTL.exe


========== Win32 Services (SafeList) ==========

SRV - [2009/11/18 17:24:09 | 000,818,432 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files\PC Tools Firewall Plus\FWService.exe -- (PCToolsFirewallPlus)
SRV - [2009/10/18 16:27:17 | 001,858,144 | ---- | M] (Emsi Software GmbH) [On_Demand | Stopped] -- C:\Program Files\a-squared Free\a2service.exe -- (a2free)
SRV - [2009/09/03 19:51:00 | 003,347,280 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\System32\GameMon.des -- (npggsvc)
SRV - [2008/01/30 12:39:14 | 000,019,200 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2008/01/30 12:37:26 | 000,468,224 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2007/05/15 15:55:46 | 001,550,896 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe -- (InCDsrv)
SRV - [2007/05/08 19:47:22 | 000,271,920 | ---- | M] (Nero AG) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.google.fr/ [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.orange.fr/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0C F5 55 42 58 38 CA 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



O1 HOSTS File: ([2008/08/07 20:45:31 | 000,257,781 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.1001-search.info
O1 - Hosts: 127.0.0.1 1001-search.info
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.123topsearch.com
O1 - Hosts: 127.0.0.1 123topsearch.com
O1 - Hosts: 127.0.0.1 www.132.com
O1 - Hosts: 127.0.0.1 132.com
O1 - Hosts: 127.0.0.1 www.136136.net
O1 - Hosts: 127.0.0.1 136136.net
O1 - Hosts: 8958 more lines...
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4 - HKLM..\Run: [00PCTFW] C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe (PC Tools)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [LXSUPMON] C:\WINDOWS\System32\LXSUPMON.EXE (Lexmark International Inc.)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKCU..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\wcescomm.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95 00 00 00 [binary data]
O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Wanadoo Messager\Wanadoo Messager.exe (France Telecom)
O9 - Extra 'Tools' menuitem : Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Wanadoo Messager\Wanadoo Messager.exe (France Telecom)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} http://www.nvidia.com/content/DriverDow ... eqlab3.cab (System Requirements Lab Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\pc\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\pc\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/06/12 14:49:04 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{b6740ad8-29bb-11de-8030-4d6564696130}\Shell\AutoRun\command - "" = G:\wdsync.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 14 Days ==========

[2010/03/29 14:33:21 | 000,000,000 | ---D | C] -- C:\_OTL
[2010/03/29 00:30:02 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\pc\Recent
[2010/03/28 16:06:25 | 000,555,520 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\pc\Bureau\OTL.exe
[2010/03/20 17:26:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\pc\Application Data\Tracker Software
[2008/08/18 22:56:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\ESET
[2008/06/12 17:18:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2008/06/12 14:51:56 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2008/06/12 14:51:56 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2008/06/12 14:51:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[4 C:\Documents and Settings\All Users\Application Data\*.tmp files -> C:\Documents and Settings\All Users\Application Data\*.tmp -> ]

========== Files - Modified Within 14 Days ==========

[2010/03/29 14:45:00 | 000,000,426 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{57CE737D-9A42-4A27-8F79-2EEE14542E32}.job
[2010/03/29 14:38:55 | 000,204,191 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010/03/29 14:38:21 | 000,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/03/29 14:38:08 | 000,000,318 | ---- | M] () -- C:\WINDOWS\tasks\GlaryInitialize.job
[2010/03/29 14:38:07 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/03/29 14:38:06 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/03/29 00:30:14 | 009,699,328 | -H-- | M] () -- C:\Documents and Settings\pc\NTUSER.DAT
[2010/03/28 16:06:43 | 000,555,520 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\pc\Bureau\OTL.exe
[2010/03/28 15:39:46 | 000,000,601 | ---- | M] () -- C:\WINDOWS\win.ini
[2010/03/28 15:30:54 | 000,000,000 | ---- | M] () -- C:\WINDOWS\MEMORY.DMP
[2010/03/28 15:11:50 | 000,509,872 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2010/03/28 15:11:50 | 000,440,684 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/03/28 15:11:50 | 000,084,956 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2010/03/28 15:11:49 | 001,121,204 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010/03/28 15:11:49 | 000,071,002 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010/03/25 17:43:07 | 000,000,041 | ---- | M] () -- C:\WINDOWS\Filzip.ini
[2010/03/25 17:17:05 | 000,022,328 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010/03/25 17:05:29 | 000,001,691 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Call of Duty(R) 4 - Modern Warfare(TM) campagne solo.lnk
[2010/03/25 17:05:08 | 000,022,328 | ---- | M] () -- C:\Documents and Settings\pc\Application Data\PnkBstrK.sys
[2010/03/25 17:03:44 | 000,000,319 | ---- | M] () -- C:\WINDOWS\game.ini
[2010/03/20 22:44:09 | 000,000,042 | -HS- | M] () -- C:\Documents and Settings\pc\ntuser.ini
[4 C:\Documents and Settings\All Users\Application Data\*.tmp files -> C:\Documents and Settings\All Users\Application Data\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/03/25 17:05:29 | 000,001,691 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Call of Duty(R) 4 - Modern Warfare(TM) campagne solo.lnk
[2010/03/25 17:05:09 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010/03/25 17:05:02 | 000,103,736 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2009/12/26 13:11:32 | 000,000,125 | ---- | C] () -- C:\Documents and Settings\pc\Local Settings\Application Data\fusioncache.dat
[2009/12/25 18:09:03 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini
[2009/10/01 11:03:59 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\lxaxlcnp.dll
[2009/08/15 16:50:28 | 000,144,384 | ---- | C] () -- C:\WINDOWS\System32\miccyhook.dll
[2009/06/04 12:20:23 | 000,056,320 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll
[2008/08/13 18:50:58 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\pc\Application Data\$_hpcst$.hpc
[2008/08/13 12:47:28 | 000,000,331 | ---- | C] () -- C:\WINDOWS\doom3.ini
[2008/08/12 17:51:56 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\pc\Application Data\PnkBstrK.sys
[2008/07/02 19:15:01 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008/07/01 17:20:46 | 000,000,041 | ---- | C] () -- C:\WINDOWS\System32\Filzip.ini
[2008/06/29 14:48:09 | 000,000,241 | ---- | C] () -- C:\WINDOWS\QSync.INI
[2008/06/29 14:46:40 | 000,010,628 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
[2008/06/29 14:45:20 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\MimicICM.dll
[2008/06/29 14:34:02 | 000,000,029 | ---- | C] () -- C:\WINDOWS\DEBUGSM.INI
[2008/06/29 14:31:47 | 000,096,768 | ---- | C] () -- C:\WINDOWS\SlantAdj.dll
[2008/06/29 14:31:47 | 000,000,072 | ---- | C] () -- C:\WINDOWS\System32\epDPE.ini
[2008/06/25 14:17:23 | 000,000,520 | ---- | C] () -- C:\WINDOWS\netdet.ini
[2008/06/24 20:50:46 | 000,024,576 | ---- | C] () -- C:\Documents and Settings\pc\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/06/14 19:37:19 | 000,007,552 | ---- | C] () -- C:\WINDOWS\System32\drivers\enodpl.sys
[2008/06/14 19:37:19 | 000,004,736 | ---- | C] () -- C:\WINDOWS\System32\drivers\tandpl.sys
[2008/06/14 19:29:52 | 000,001,967 | ---- | C] () -- C:\WINDOWS\MediaR12.ini
[2008/06/14 18:57:33 | 000,000,040 | ---- | C] () -- C:\WINDOWS\NAVIGMA.INI
[2008/06/14 18:45:05 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2008/06/14 18:11:35 | 000,000,041 | ---- | C] () -- C:\WINDOWS\Filzip.ini
[2008/06/14 12:21:08 | 000,000,154 | ---- | C] () -- C:\WINDOWS\adidsl.ini
[2008/06/14 12:21:08 | 000,000,021 | ---- | C] () -- C:\WINDOWS\Fast800.ini
[2008/06/14 12:21:06 | 000,000,342 | ---- | C] () -- C:\WINDOWS\adiras.ini
[2008/06/14 12:21:02 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\coclassfast.dll
[2008/06/14 12:21:02 | 000,046,892 | ---- | C] () -- C:\WINDOWS\System32\adadix16.dll
[2008/06/12 15:01:47 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2008/05/16 14:01:00 | 001,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2008/05/16 14:01:00 | 001,503,232 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2008/05/16 14:01:00 | 001,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2008/05/16 14:01:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2008/05/16 14:01:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2008/01/30 12:38:08 | 000,034,312 | ---- | C] () -- C:\WINDOWS\System32\drivers\epfwtdir.sys

========== LOP Check ==========

[2009/12/25 13:52:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2008/06/12 14:57:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ESET
[2010/03/29 14:38:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2008/08/13 22:17:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ubisoft
[2008/11/03 20:15:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ulead Systems
[2009/12/29 23:31:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pc\Application Data\Auslogics
[2009/12/25 13:55:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pc\Application Data\DAEMON Tools Lite
[2009/03/02 17:16:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pc\Application Data\DAEMON Tools Pro
[2008/06/29 14:44:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pc\Application Data\FotoWire
[2009/10/18 19:08:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pc\Application Data\Foxit
[2009/08/15 21:15:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pc\Application Data\GetRightToGo
[2010/02/24 20:50:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pc\Application Data\GlarySoft
[2008/12/01 15:58:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pc\Application Data\IcoFX
[2008/08/16 18:56:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pc\Application Data\KeePass
[2009/04/28 12:04:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pc\Application Data\OpenOffice.org
[2009/09/30 16:35:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pc\Application Data\PCToolsFirewallPlus
[2009/03/04 20:51:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pc\Application Data\SAU KP
[2010/03/28 18:35:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pc\Application Data\Simple Sudoku
[2009/11/25 17:18:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pc\Application Data\SumatraPDF
[2010/03/20 17:26:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pc\Application Data\Tracker Software
[2008/08/12 01:03:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pc\Application Data\TRIWORKS
[2008/11/03 20:15:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pc\Application Data\Ulead Systems
[2009/12/25 19:32:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pc\Application Data\uTorrent
[2009/01/28 20:56:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pc\Application Data\WordWeb
[2010/03/11 20:19:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\pc\Application Data\XnView
[2010/03/29 14:38:08 | 000,000,318 | ---- | M] () -- C:\WINDOWS\Tasks\GlaryInitialize.job
[2010/03/29 14:45:00 | 000,000,426 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{57CE737D-9A42-4A27-8F79-2EEE14542E32}.job

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5C321E34
@Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C31F31E6
<End>
J'ai peur d'avoir fait une boulette car je n'ai pas vu la mention "Fix complète" après le redémarrage ! et pour couronner le tout mon imprimante ne marche plus...

J'attends de tes nouvelles, le dernier message d'erreur sur l'observatoire remonte à 14h38? Merci pour ton aide

kaki
kaki
 
Messages: 63
Inscription: 16 Mai 2005, 16:13
Localisation: Marseille

Erreur LogMeIn

Messagede kaki » 07 Avr 2010, 16:00

:oops: Bonjour

Up, désolé de relancer mais sans nouvelles depuis le 29/3

Merci de votre aide.

kaki
kaki
 
Messages: 63
Inscription: 16 Mai 2005, 16:13
Localisation: Marseille

Messagede nickW » 08 Avr 2010, 00:42

Bonsoir,

Quelles nouvelles attends-tu?
La correction (suppression des deux pilotes) s'est déroulée normalement.


Tu ne dis pas si tu as encore des messages d'erreur dans l'Observateur d'événements.


Ton imprimante fonctionne-t-elle?
(à priori, aucun rapport avec les manips effectuées)

A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Messagede kaki » 08 Avr 2010, 12:13

:oops: Bonjour Nickw,

Merci de ta réponse, j'ai demandé de tes nouvelles car j'ai toujours l'erreur sur L'observatoire d'évènements et je ne savais pas interprêter les log. d'OTL. Peut-être est-ce négligeable ?

Concernant mon problème d'imprimante, toujours effectif, je l'avais signalé au cas où il aurait fallu reprendre la procédure.

Dernier point : puis-je supprimer les log et fichiers générés par OTL?

Je te remercie de ta patience et de ton aide.

kaki
kaki
 
Messages: 63
Inscription: 16 Mai 2005, 16:13
Localisation: Marseille

Suivante

Retourner vers Windows (toutes versions) et moi

Qui est en ligne

Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 6 invités

cron