[résolu] Panneau de configuration instable + Disque dure

Question

FORUM high-tech

SECURITE

Sécurité

[résolu] Panneau de configuration instable + Disque dure

Recherche :

18 utilisateurs inconnus

Mot : Pseudo : Filtrer
Page : 1 Bas de page
Auteur	Sujet : [résolu] Panneau de configuration instable + Disque dure

Nikoleo

Bébé forumeur (De 10 à 49 messages postés)

Bonjour,

J'appel à l'aide car depuis quelques jours, dans le panneau de configuration, je ne peu pas ouvrir la plupart des éléments, comme le gestionnaire de parfeux etc...

De plus, un disque dure est apparut dans le poste de travail, avec la lettre (Q), il n'est pas accessible est fait 0 octets.

Le PC acer aspire 5920G est sous windows 7, installer par dessus Vista.
L'antivirus Antivir ne trouve rien, ni HiJackThis.

Merci de votre aide

(Publicité)

Page :

1

Haut de page

Sujets relatifs
Infecté par Adware Gibmedia et Ecobar [résolu]	PC instable et erreur de script
pubs qui s'ouvrent quand je suis sur internet [résolu]	PC tres lent au demarrage (sur le bureau) =>RESOLU
fenêtres de pub intenpestives [resolu]	disque dur infecté par un virus
trojan sur mon PC, configuration= vista	pc infecté par svcsys.exe, icone disque dure disparu
[résolu]Leosrv : encore un imbécile tombé dans le panneau!!!	[résolu]trojan dans win32 album photo 2007
Plus de sujets relatifs à : [résolu] Panneau de configuration instable + Disque dure

Les 5 sujets de discussion précédents	Nombre de réponses	Dernier message
Infection Bagle	10	15/03/2010 à 10:49:35
PC devenu lent [résolu]	22	18/03/2010 à 23:17:32
cheval de troie repéré, pub intempestives, moteur de recherc	3	16/03/2010 à 00:22:58
virus protector	41	22/04/2010 à 16:16:21
problèmes search setting 1.2	9	09/05/2010 à 17:35:19

Oyi450y · Answer 1 · Posté le 15/03/2010 à 06:52:57

Salut, faire ceci: Télécharger RootRepeal http://rootrepeal.googlepages.com/RootRepeal.zip Créer un répertoire avec le nom RootReapeal: C:\RootRepeal Cliquer RootRepeal.exe (Pour les utilisateur de Vista vous devez cliquer droit et selectionner "Exécuter en tant qu'administrateur"). Cliquer sur l'onglet Report et Scan. Dans la nouvelle fenêtre Select Scan, cocher: Drivers, Files, Processes, SSDT, Stealth Objects, Hidden Services et cliquer sur "Ok". Vérifier qu'il scan bien la partition de votre Windows et cliquer "OK". Une fois terminée vous cliquez sur "Save Report" et le sauvegarder dans un endroit facile d'accès. Pour me copier/coller les log dans le "Bloc note" vous allez dans le menu Édition et cliquer sur "Sélectionner tout" et retourner dans "Édition" et cliquer sur "copier" Sur le forum, faire un click droit et cliquer sur "coller". Copier/coller moi aussi un Hijackthis 2.0.3: http://go.trendmicro.com/free-tools/hijackthis/beta/HijackThis.msi

Nikoleo · Answer 2 · Posté le 18/03/2010 à 15:44:00

Bonjour, J'ai un message d'erreur avec RootRepeal, il est impossible de lancer le scan : DeviceIoControl Error! Error Code = 0x0 Rapport HiJackThis : Logfile of Trend Micro HijackThis v2.0.3 (BETA) Scan saved at 15:43:20, on 18/03/2010 Platform: Unknown Windows (WinNT 6.01.3504) MSIE: Internet Explorer v8.00 (8.00.7600.16385) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Synaptics\SynTP\SynTPStart.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Windows\System32\rundll32.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Launch Manager\QtZgAcer.EXE C:\Program Files\RocketDock\RocketDock.exe C:\Program Files\Logitech Touch Mouse Server\iTouch-Server-Win.exe C:\Program Files\Safari\Safari.exe C:\Windows\explorer.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.fr.acer.yahoo.com R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll O4 - HKLM\..\Run: C:\Program Files\Synaptics\SynTP\SynTPStart.exe O4 - HKLM\..\Run: RtHDVCpl.exe O4 - HKLM\..\Run: Skytel.exe O4 - HKLM\..\Run: rundll32.exe C:\Windows\PLFSet.dll,PLFDefSetting O4 - HKLM\..\Run: "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKLM\..\Run: rundll32 C:\Windows\system32\spool\DRIVERS\W32X86\3\LXBUtime.dll,_RunDLLEntry@16 O4 - HKLM\..\Run: C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE O4 - HKLM\..\Run: RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKCU\..\Run: "C:\Program Files\RocketDock\RocketDock.exe" O4 - HKUS\S-1-5-19\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-20\..\RunOnce: C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU') O4 - Startup: Logitech Touch Mouse Server.lnk = C:\Program Files\Logitech Touch Mouse Server\iTouch-Server-Win.exe O8 - Extra context menu item: &Tout télécharger avec FlashGet - C:\Program Files\FlashGet\jc_all.htm O8 - Extra context menu item: &Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000 O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe O13 - Gopher Prefix: O15 - Trusted Zone: *.line6.net O16 - DPF: {04CB5B64-5915-4629-B869-8945CEBADD21} (Module de délivrance de certificat MINEFI) - https://static.impots.gouv.fr/abos/static/securite/certdgi1.cab O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (CDownloadCtrl Object) - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.7.109.cab O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} (DLM Control) - http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.4.8.cab O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {88764F69-3831-4EC1-B40B-FF21D8381345} (AdVerifierADPCtrl Class) - https://static.impots.gouv.fr/tdir/static/adpform/AdSignerVistaADP-1.1.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: ALaunch Service (ALaunchService) - Unknown owner - C:\Acer\ALaunch\ALaunchSvc.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Service Google Update (gupdate1ca0556c29c4cf0) (gupdate1ca0556c29c4cf0) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Raw Socket Service (RS_Service) - Acer Inc. - C:\Program Files\Acer\Acer VCM\RS_Service.exe O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\snmp.exe,-3 (SNMP) - Unknown owner - C:\Windows\System32\snmp.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (StiSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe -- End of file - 23480 bytes

Oyi450y · Answer 3 · Posté le 18/03/2010 à 17:50:42

Télécharger OTS ici: http://oldtimer.geekstogo.com/OTS.exe Exécuter le logiciel et cocher la case All Users. Dans Additional Scans cocher les 4 suivants: •Reg - Shell Spawning •File - Lop Check •File - Purity Scan •Evnt - EvtViewer (last 10) Dans custom scans, copier/coller ceci: netsvcs %SYSTEMDRIVE%\*.exe %SYSTEMDRIVE%\eventlog.dll /s %SYSTEMDRIVE%\scecli.dll /s %SYSTEMDRIVE%\netlogon.dll /s %SYSTEMDRIVE%\cngaudit.dll /s %SYSTEMDRIVE%\sceclt.dll /s %SYSTEMDRIVE%\ntelogon.dll /s %SYSTEMDRIVE%\logevent.dll /s %SYSTEMDRIVE%\iaStor.sys /s %SYSTEMDRIVE%\nvstor.sys /s %SYSTEMDRIVE%\atapi.sys /s %SYSTEMDRIVE%\IdeChnDr.sys /s %SYSTEMDRIVE%\viasraid.sys /s %SYSTEMDRIVE%\AGP440.sys /s %SYSTEMDRIVE%\vaxscsi.sys /s Maintenant cliquer sur le bouton "Run Scan" dans la toolbar. Une fois terminée le bloc note va s'ouvrir et cliquer Format et cocher Retour automatique à la ligne. Pour me copier/coller les log dans le "Bloc note" vous allez dans le menu Édition et cliquer sur "Sélectionner tout" et retourner dans "Édition" et cliquer sur "copier" Sur le forum, faire un click droit et cliquer sur "coller".

Nikoleo · Answer 4 · Posté le 18/03/2010 à 19:15:58

OTS logfile created on: 18/03/2010 19:01:58 - Run 1 OTS by OldTimer - Version 3.1.27.1 Folder = D:\Nicolas\Downloads Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 56,00% Memory free 6,00 Gb Paging File | 4,00 Gb Available in Paging File | 75,00% Paging File free Paging file location(s): ?:\pagefile.sys %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 111,69 Gb Total Space | 32,61 Gb Free Space | 29,19% Space Free | Partition Type: NTFS Drive D: | 108,19 Gb Total Space | 59,60 Gb Free Space | 55,09% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: PC-DE-NICOLAS Current User Name: Nicolas Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days ots.exe -> D:\Nicolas\Downloads\OTS.exe -> (OldTimer Tools) safari.exe -> C:\Program Files\Safari\Safari.exe -> (Apple Inc.) explorer.exe -> C:\Windows\explorer.exe -> (Microsoft Corporation) itouch-server-win.exe -> C:\Program Files\Logitech Touch Mouse Server\iTouch-Server-Win.exe -> (Logitech, Inc.) cvhsvc.exe -> C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE -> (Microsoft Corporation) sftvsa.exe -> C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe -> (Microsoft Corporation) sftlist.exe -> C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe -> (Microsoft Corporation) avguard.exe -> C:\Program Files\Avira\AntiVir Desktop\avguard.exe -> (Avira GmbH) sched.exe -> C:\Program Files\Avira\AntiVir Desktop\sched.exe -> (Avira GmbH) snmp.exe -> C:\Windows\System32\snmp.exe -> (Microsoft Corporation) conhost.exe -> C:\Windows\System32\conhost.exe -> (Microsoft Corporation) wlidsvc.exe -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -> (Microsoft Corporation) wlidsvcm.exe -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe -> (Microsoft Corporation) avgnt.exe -> C:\Program Files\Avira\AntiVir Desktop\avgnt.exe -> (Avira GmbH) evteng.exe -> C:\Program Files\Intel\WiFi\bin\EvtEng.exe -> (Intel(R) Corporation) regsrvc.exe -> C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -> (Intel(R) Corporation) rthdvcpl.exe -> C:\Windows\RtHDVCpl.exe -> (Realtek Semiconductor) qtzgacer.exe -> C:\Program Files\Launch Manager\QtZgAcer.EXE -> (Dritek System Inc.) iaantmon.exe -> C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe -> (Intel Corporation) iaanotif.exe -> C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe -> (Intel Corporation) syntpstart.exe -> C:\Program Files\Synaptics\SynTP\SynTPStart.exe -> (Synaptics, Inc.) rs_service.exe -> C:\Program Files\Acer\Acer VCM\RS_Service.exe -> (Acer Inc.) erecoveryservice.exe -> C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe -> (Acer Inc.) rocketdock.exe -> C:\Program Files\RocketDock\RocketDock.exe -> () starwindserviceae.exe -> C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe -> (Rocket Division Software) alaunchsvc.exe -> C:\Acer\ALaunch\ALaunchSvc.exe -> () mobilityservice.exe -> C:\Acer\Mobility Center\MobilityService.exe -> () ots.exe -> D:\Nicolas\Downloads\OTS.exe -> (OldTimer Tools) sspicli.dll -> C:\Windows\System32\sspicli.dll -> (Microsoft Corporation) sechost.dll -> C:\Windows\System32\sechost.dll -> (Microsoft Corporation) samcli.dll -> C:\Windows\System32\samcli.dll -> (Microsoft Corporation) profapi.dll -> C:\Windows\System32\profapi.dll -> (Microsoft Corporation) netutils.dll -> C:\Windows\System32\netutils.dll -> (Microsoft Corporation) kernelbase.dll -> C:\Windows\System32\KernelBase.dll -> (Microsoft Corporation) dwmapi.dll -> C:\Windows\System32\dwmapi.dll -> (Microsoft Corporation) devobj.dll -> C:\Windows\System32\devobj.dll -> (Microsoft Corporation) cryptbase.dll -> C:\Windows\System32\cryptbase.dll -> (Microsoft Corporation) cfgmgr32.dll -> C:\Windows\System32\cfgmgr32.dll -> (Microsoft Corporation) comctl32.dll -> C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll -> (Microsoft Corporation) (cvhsvc) Client Virtualization Handler -> C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE -> (Microsoft Corporation) (osppsvc) Office Software Protection Platform -> C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE -> (Microsoft Corporation) (sftvsa) Application Virtualization Service Agent -> C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe -> (Microsoft Corporation) (sftlist) Application Virtualization Client -> C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe -> (Microsoft Corporation) (AntiVirService) Avira AntiVir Guard -> C:\Program Files\Avira\AntiVir Desktop\avguard.exe -> (Avira GmbH) (fsssvc) Service Windows Live Contrôle parental -> C:\Program Files\Windows Live\Family Safety\fsssvc.exe -> (Microsoft Corporation) (AntiVirSchedulerService) Avira AntiVir Planificateur -> C:\Program Files\Avira\AntiVir Desktop\sched.exe -> (Avira GmbH) (WwanSvc) Service de configuration automatique WWAN -> C:\Windows\System32\wwansvc.dll -> (Microsoft Corporation) (WbioSrvc) Service de biométrie Windows -> C:\Windows\System32\wbiosrvc.dll -> (Microsoft Corporation) (Power) Alimentation -> C:\Windows\System32\umpo.dll -> (Microsoft Corporation) (Themes) Thèmes -> C:\Windows\System32\themeservice.dll -> (Microsoft Corporation) (sppuinotify) Service de notification SPP -> C:\Windows\System32\sppuinotify.dll -> (Microsoft Corporation) (RpcEptMapper) Mappeur de point de terminaison RPC -> C:\Windows\System32\RpcEpMap.dll -> (Microsoft Corporation) (SensrSvc) Brillance adaptative -> C:\Windows\System32\sensrsvc.dll -> (Microsoft Corporation) (PNRPsvc) Protocole PNRP -> C:\Windows\System32\pnrpsvc.dll -> (Microsoft Corporation) (p2pimsvc) Gestionnaire d’identité réseau homologue -> C:\Windows\System32\pnrpsvc.dll -> (Microsoft Corporation) (HomeGroupProvider) Fournisseur HomeGroup -> C:\Windows\System32\provsvc.dll -> (Microsoft Corporation) (PNRPAutoReg) Service de publication des noms d’ordinateurs PNRP -> C:\Windows\System32\pnrpauto.dll -> (Microsoft Corporation) (WinDefend) Windows Defender -> C:\Program Files\Windows Defender\mpsvc.dll -> (Microsoft Corporation) (HomeGroupListener) Écouteur HomeGroup -> C:\Windows\System32\ListSvc.dll -> (Microsoft Corporation) (FontCache) Service de cache de police Windows -> C:\Windows\System32\FntCache.dll -> (Microsoft Corporation) (Dhcp) Client DHCP -> C:\Windows\System32\dhcpcore.dll -> (Microsoft Corporation) (defragsvc) Défragmenteur de disque -> C:\Windows\System32\defragsvc.dll -> (Microsoft Corporation) (BDESVC) Service de chiffrement de lecteur BitLocker -> C:\Windows\System32\bdesvc.dll -> (Microsoft Corporation) (AxInstSV) Programme d’installation ActiveX (AxInstSV) -> C:\Windows\System32\AxInstSv.dll -> (Microsoft Corporation) (AppIDSvc) Identité de l’application -> C:\Windows\System32\appidsvc.dll -> (Microsoft Corporation) (SNMP) Service SNMP -> C:\Windows\System32\snmp.exe -> (Microsoft Corporation) (sppsvc) Protection logicielle -> C:\Windows\System32\sppsvc.exe -> (Microsoft Corporation) (wlidsvc) Windows Live ID Sign-in Assistant -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -> (Microsoft Corporation) (EvtEng) Intel(R) PROSet/Wireless Event Log -> C:\Program Files\Intel\WiFi\bin\EvtEng.exe -> (Intel(R) Corporation) (RegSrvc) Intel(R) PROSet/Wireless Registry Service -> C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -> (Intel(R) Corporation) (IAANTMON) Intel(R) Matrix Storage Event Monitor -> C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe -> (Intel Corporation) (RS_Service) Raw Socket Service -> C:\Program Files\Acer\Acer VCM\RS_Service.exe -> (Acer Inc.) (eRecoveryService) eRecovery Service -> C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe -> (Acer Inc.) (StarWindServiceAE) StarWind AE Service -> C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe -> (Rocket Division Software) (ALaunchService) ALaunch Service -> C:\Acer\ALaunch\ALaunchSvc.exe -> () (MobilityService) MobilityService -> C:\Acer\Mobility Center\MobilityService.exe -> () (avgntflt) avgntflt -> C:\Windows\System32\drivers\avgntflt.sys -> (Avira GmbH) (sptd) sptd -> C:\Windows\System32\Drivers\sptd.sys -> () (Sftredir) Sftredir -> C:\Windows\System32\drivers\Sftredirlh.sys -> (Microsoft Corporation) (sftvol) sftvol -> C:\Program Files\Microsoft Application Virtualization Client\drivers\sftvollh.sys -> (Microsoft Corporation) (sftplay) sftplay -> C:\Program Files\Microsoft Application Virtualization Client\drivers\sftplaylh.sys -> (Microsoft Corporation) (sftfs) sftfs -> C:\Program Files\Microsoft Application Virtualization Client\drivers\sftfslh.sys -> (Microsoft Corporation) (nvlddmkm) nvlddmkm -> C:\Windows\System32\drivers\nvlddmkm.sys -> (NVIDIA Corporation) (fssfltr) fssfltr -> C:\Windows\System32\drivers\fssfltr.sys -> (Microsoft Corporation) (ssmdrv) ssmdrv -> C:\Windows\System32\drivers\ssmdrv.sys -> (Avira GmbH) (cmdide) cmdide -> C:\Windows\system32\DRIVERS\cmdide.sys -> (CMD Technology, Inc.) (adpahci) adpahci -> C:\Windows\system32\DRIVERS\adpahci.sys -> (Adaptec, Inc.) (adp94xx) adp94xx -> C:\Windows\system32\DRIVERS\adp94xx.sys -> (Adaptec, Inc.) (amdsbs) amdsbs -> C:\Windows\system32\DRIVERS\amdsbs.sys -> (AMD Technologies Inc.) (adpu320) adpu320 -> C:\Windows\system32\DRIVERS\adpu320.sys -> (Adaptec, Inc.) (arcsas) arcsas -> C:\Windows\system32\DRIVERS\arcsas.sys -> (Adaptec, Inc.) (amdsata) amdsata -> C:\Windows\system32\DRIVERS\amdsata.sys -> (Advanced Micro Devices) (arc) arc -> C:\Windows\system32\DRIVERS\arc.sys -> (Adaptec, Inc.) (amdxata) amdxata -> C:\Windows\system32\DRIVERS\amdxata.sys -> (Advanced Micro Devices) (aliide) aliide -> C:\Windows\system32\DRIVERS\aliide.sys -> (Acer Laboratories Inc.) (nvstor) nvstor -> C:\Windows\system32\DRIVERS\nvstor.sys -> (NVIDIA Corporation) (nvraid) nvraid -> C:\Windows\system32\DRIVERS\nvraid.sys -> (NVIDIA Corporation) (nfrd960) nfrd960 -> C:\Windows\system32\DRIVERS\nfrd960.sys -> (IBM Corporation) (LSI_SAS) LSI_SAS -> C:\Windows\system32\DRIVERS\lsi_sas.sys -> (LSI Corporation) (iaStorV) iaStorV -> C:\Windows\system32\DRIVERS\iaStorV.sys -> (Intel Corporation) (MegaSR) MegaSR -> C:\Windows\system32\DRIVERS\MegaSR.sys -> (LSI Corporation, Inc.) (KSecPkg) KSecPkg -> C:\Windows\System32\Drivers\ksecpkg.sys -> (Microsoft Corporation) (LSI_SCSI) LSI_SCSI -> C:\Windows\system32\DRIVERS\lsi_scsi.sys -> (LSI Corporation) (LSI_FC) LSI_FC -> C:\Windows\system32\DRIVERS\lsi_fc.sys -> (LSI Corporation) (LSI_SAS2) LSI_SAS2 -> C:\Windows\system32\DRIVERS\lsi_sas2.sys -> (LSI Corporation) (iirsp) iirsp -> C:\Windows\system32\DRIVERS\iirsp.sys -> (Intel Corp./ICP vortex GmbH) (megasas) megasas -> C:\Windows\system32\DRIVERS\megasas.sys -> (LSI Corporation) (hwpolicy) Hardware Policy Driver -> C:\Windows\System32\drivers\hwpolicy.sys -> (Microsoft Corporation) (elxstor) elxstor -> C:\Windows\system32\DRIVERS\elxstor.sys -> (Emulex) (aic78xx) aic78xx -> C:\Windows\system32\DRIVERS\djsvs.sys -> (Adaptec, Inc.) (HpSAMD) HpSAMD -> C:\Windows\system32\DRIVERS\HpSAMD.sys -> (Hewlett-Packard Company) (FsDepends) File System Dependency Minifilter -> C:\Windows\System32\drivers\fsdepends.sys -> (Microsoft Corporation) (vsmraid) vsmraid -> C:\Windows\system32\DRIVERS\vsmraid.sys -> (VIA Technologies Inc.,Ltd) (vhdmp) vhdmp -> C:\Windows\system32\DRIVERS\vhdmp.sys -> (Microsoft Corporation) (vdrvroot) Pilote d’énumérateur de lecteur virtuel Microsoft -> C:\Windows\system32\DRIVERS\vdrvroot.sys -> (Microsoft Corporation) (WIMMount) WIMMount -> C:\Windows\System32\drivers\wimmount.sys -> (Microsoft Corporation) (viaide) viaide -> C:\Windows\system32\DRIVERS\viaide.sys -> (VIA Technologies, Inc.) (ql2300) ql2300 -> C:\Windows\system32\DRIVERS\ql2300.sys -> (QLogic Corporation) (rdyboost) ReadyBoost -> C:\Windows\System32\drivers\rdyboost.sys -> (Microsoft Corporation) (ql40xx) ql40xx -> C:\Windows\system32\DRIVERS\ql40xx.sys -> (QLogic Corporation) (SiSRaid4) SiSRaid4 -> C:\Windows\system32\DRIVERS\sisraid4.sys -> (Silicon Integrated Systems) (pcw) Performance Counters for Windows Driver -> C:\Windows\System32\drivers\pcw.sys -> (Microsoft Corporation) (SiSRaid2) SiSRaid2 -> C:\Windows\system32\DRIVERS\SiSRaid2.sys -> (Silicon Integrated Systems Corp.) (stexstor) stexstor -> C:\Windows\system32\DRIVERS\stexstor.sys -> (Promise Technology) (CNG) CNG -> C:\Windows\System32\Drivers\cng.sys -> (Microsoft Corporation) (Brserid) Brother MFC Serial Port Interface Driver (WDM) -> C:\Windows\System32\Drivers\Brserid.sys -> (Brother Industries Ltd.) (rdpbus) Remote Desktop Device Redirector Bus Driver -> C:\Windows\system32\DRIVERS\rdpbus.sys -> (Microsoft Corporation) (RDPREFMP) Reflector Display Driver used to gain access to graphics data -> C:\Windows\System32\drivers\RDPREFMP.sys -> (Microsoft Corporation) (RasAgileVpn) WAN Miniport (IKEv2) -> C:\Windows\System32\drivers\agilevpn.sys -> (Microsoft Corporation) (WfpLwf) WFP Lightweight Filter -> C:\Windows\System32\drivers\wfplwf.sys -> (Microsoft Corporation) (NdisCap) NDIS Capture LightWeight Filter -> C:\Windows\System32\drivers\ndiscap.sys -> (Microsoft Corporation) (vwifibus) Pilote de bus WiFi virtuel -> C:\Windows\System32\drivers\vwifibus.sys -> (Microsoft Corporation) (1394ohci) Contrôleur d’hôte compatible OHCI 1394 -> C:\Windows\System32\drivers\1394ohci.sys -> (Microsoft Corporation) (UmPass) Microsoft UMPass Driver -> C:\Windows\system32\DRIVERS\umpass.sys -> (Microsoft Corporation) (WinUsb) WinUsb -> C:\Windows\System32\drivers\winusb.sys -> (Microsoft Corporation) (mshidkmdf) Pass-through HID to KMDF Filter Driver -> C:\Windows\System32\drivers\mshidkmdf.sys -> (Microsoft Corporation) (MTConfig) Microsoft Input Configuration Driver -> C:\Windows\system32\DRIVERS\MTConfig.sys -> (Microsoft Corporation) (CompositeBus) Pilote de l’énumérateur de bus composite -> C:\Windows\System32\drivers\CompositeBus.sys -> (Microsoft Corporation) (AppID) Pilote AppID -> C:\Windows\system32\drivers\appid.sys -> (Microsoft Corporation) (scfilter) Pilote de filtre de classe PnP de carte à puce -> C:\Windows\System32\drivers\scfilter.sys -> (Microsoft Corporation) (discache) System Attribute Cache -> C:\Windows\System32\drivers\discache.sys -> (Microsoft Corporation) (HidBatt) HID UPS Battery Driver -> C:\Windows\system32\DRIVERS\HidBatt.sys -> (Microsoft Corporation) (AcpiPmi) ACPI Power Meter Driver -> C:\Windows\system32\DRIVERS\acpipmi.sys -> (Microsoft Corporation) (AmdPPM) AMD Processor Driver -> C:\Windows\system32\DRIVERS\amdppm.sys -> (Microsoft Corporation) (hcw85cir) Hauppauge Consumer Infrared Receiver -> C:\Windows\system32\drivers\hcw85cir.sys -> (Hauppauge Computer Works, Inc.) (BrUsbMdm) Brother MFC USB Fax Only Modem -> C:\Windows\System32\Drivers\BrUsbMdm.sys -> (Brother Industries Ltd.) (BrUsbSer) Brother MFC USB Serial WDM Driver -> C:\Windows\System32\Drivers\BrUsbSer.sys -> (Brother Industries Ltd.) (BrSerWdm) Brother WDM Serial driver -> C:\Windows\System32\Drivers\BrSerWdm.sys -> (Brother Industries Ltd.) (BrFiltLo) Brother USB Mass-Storage Lower Filter Driver -> C:\Windows\system32\DRIVERS\BrFiltLo.sys -> (Brother Industries, Ltd.) (BrFiltUp) Brother USB Mass-Storage Upper Filter Driver -> C:\Windows\system32\DRIVERS\BrFiltUp.sys -> (Brother Industries, Ltd.) (netw5v32) Pilote de carte de liaison WiFi sans fil Intel(R) 5000 Series pour Windows Vista 32 bits -> C:\Windows\System32\drivers\netw5v32.sys -> (Intel Corporation) (b57nd60x) Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 -> C:\Windows\System32\drivers\b57nd60x.sys -> (Broadcom Corporation) (ebdrv) Broadcom NetXtreme II 10 GigE VBD -> C:\Windows\system32\DRIVERS\evbdx.sys -> (Broadcom Corporation) (b06bdrv) Broadcom NetXtreme II VBD -> C:\Windows\system32\DRIVERS\bxvbdx.sys -> (Broadcom Corporation) (VClone) VClone -> C:\Windows\System32\drivers\VClone.sys -> (Elaborate Bytes AG) (avipbb) avipbb -> C:\Windows\System32\drivers\avipbb.sys -> (Avira GmbH) (ElbyCDIO) ElbyCDIO Driver -> C:\Windows\System32\drivers\ElbyCDIO.sys -> (Elaborate Bytes AG) (avgio) avgio -> C:\Program Files\Avira\AntiVir Desktop\avgio.sys -> (Avira GmbH) (NTIDrvr) Upper Class Filter Driver -> C:\Windows\System32\drivers\NTIDrvr.sys -> (NewTech Infosystems, Inc.) (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -> C:\Windows\System32\drivers\RTKVHDA.sys -> (Realtek Semiconductor Corp.) (HSF_DPV) HSF_DPV -> C:\Windows\System32\drivers\HSX_DPV.sys -> (Conexant Systems, Inc.) (winachsf) winachsf -> C:\Windows\System32\drivers\HSX_CNXT.sys -> (Conexant Systems, Inc.) (iaStor) Intel AHCI Controller -> C:\Windows\system32\DRIVERS\iaStor.sys -> (Intel Corporation) (HSXHWAZL) HSXHWAZL -> C:\Windows\System32\drivers\HSXHWAZL.sys -> (Conexant Systems, Inc.) (winbondcir) Winbond IR Transceiver -> C:\Windows\System32\drivers\winbondcir.sys -> (Winbond Electronics Corporation) (DKbFltr) Dritek Keyboard Filter Driver -> C:\Windows\System32\drivers\DKbFltr.sys -> (Dritek System Inc.) (XAudio) XAudio -> C:\Windows\System32\drivers\XAudio.sys -> (Conexant Systems, Inc.) (SynTP) Synaptics TouchPad Driver -> C:\Windows\System32\drivers\SynTP.sys -> (Synaptics, Inc.) (NETw4v32) Pilote de carte Intel(R) Wireless WiFi Link pour Windows Vista 32 bits -> C:\Windows\System32\drivers\NETw4v32.sys -> (Intel Corporation) (CrystalSysInfo) CrystalSysInfo -> C:\Program Files\MediaCoder iPod Edition\SysInfo.sys -> () (rimmptsk) rimmptsk -> C:\Windows\System32\drivers\rimmptsk.sys -> (REDC) (rismxdp) Ricoh xD-Picture Card Driver -> C:\Windows\System32\drivers\rixdptsk.sys -> (REDC) (rimsptsk) rimsptsk -> C:\Windows\System32\drivers\rimsptsk.sys -> (REDC) (BDASwCap) AVerMedia A310 BDA DVBT Capture Device -> C:\Windows\System32\drivers\AVerA310Cap.sys -> (AVerMedia TECHNOLOGIES, Inc.) (A310) AVerMedia A310 DVB-T -> C:\Windows\System32\drivers\AVerA310USB.sys -> (AVerMedia TECHNOLOGIES, Inc.) (int15) int15 -> C:\Acer\Empowering Technology\eRecovery\int15.sys -> (Acer, Inc.) (SNP2UVC) USB2.0 PC Camera (SNP2UVC) -> C:\Windows\System32\drivers\snp2uvc.sys -> () (VNUSB) VN Series Device -> C:\Windows\System32\drivers\VNUSB.sys -> (OLYMPUS IMAGING CORP.) < Internet Explorer Settings > -> -> HKEY_LOCAL_MACHINE\: Main\\"Start Page" -> http://fr.fr.acer.yahoo.com -> < Internet Explorer Settings > -> -> < Internet Explorer Settings > -> -> < Internet Explorer Settings > -> -> < Internet Explorer Settings > -> -> < Internet Explorer Settings > -> -> HKEY_USERS\S-1-5-21-4119355899-2911314421-214302231-1000\: Main\\"SearchMigratedDefaultName" -> Yahoo! Search -> HKEY_USERS\S-1-5-21-4119355899-2911314421-214302231-1000\: Main\\"SearchMigratedDefaultURL" -> http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7 -> HKEY_USERS\S-1-5-21-4119355899-2911314421-214302231-1000\: Main\\"Start Page" -> http://google.fr/ -> HKEY_USERS\S-1-5-21-4119355899-2911314421-214302231-1000\: Main\\"StartPageCache" -> 1 -> HKEY_USERS\S-1-5-21-4119355899-2911314421-214302231-1000\: "ProxyEnable" -> 0 -> HKEY_USERS\S-1-5-21-4119355899-2911314421-214302231-1000\: "ProxyOverride" -> *.local -> < FireFox Extensions > -> HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla HKLM\software\mozilla\Firefox\Extensions -> -> < FireFox Extensions > -> < HOSTS File > ( - 20 lines) -> C:\Windows\System32\drivers\etc\hosts -> Reset Hosts ::1 localhost < BHO's > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ -> {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} -> C:\Program Files\FlashGet\jccatch.dll -> (www.flashget.com) {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll -> (Microsoft Corporation) {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll -> (Google Inc.) {F156768E-81EF-470C-9057-481BA8380DBA} -> C:\Program Files\FlashGet\getflash.dll -> (www.flashget.com) < Internet Explorer ToolBars > -> HKEY_USERS\S-1-5-21-4119355899-2911314421-214302231-1000\Software\Microsoft\Internet Explorer\Toolbar\ -> ShellBrowser\\"{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}" -> Reg Error: Key error. -> File not found < Run > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "avgnt" -> C:\Program Files\Avira\AntiVir Desktop\avgnt.exe -> (Avira GmbH) "IAAnotif" -> C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe -> (Intel Corporation) "LManager" -> C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE -> (Dritek System Inc.) "LXBUCATS" -> C:\Windows\System32\spool\DRIVERS\W32X86\3\LXBUtime.DLL -> () "NvCplDaemon" -> C:\Windows\System32\NvCpl.DLL -> (NVIDIA Corporation) "PLFSet" -> C:\Windows\PLFSet.DLL -> ( ) "RtHDVCpl" -> C:\Windows\RtHDVCpl.exe -> (Realtek Semiconductor) "Skytel" -> C:\Windows\SkyTel.exe -> (Realtek Semiconductor Corp.) "SynTPStart" -> C:\Program Files\Synaptics\SynTP\SynTPStart.exe -> (Synaptics, Inc.) < RunOnce > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce -> "mctadmin" -> C:\Windows\System32\mctadmin.exe -> (Microsoft Corporation) < RunOnce > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce -> "mctadmin" -> C:\Windows\System32\mctadmin.exe -> (Microsoft Corporation) < Run > -> HKEY_USERS\S-1-5-21-4119355899-2911314421-214302231-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "RocketDock" -> C:\Program Files\RocketDock\RocketDock.exe -> () < Software Policy Settings > -> HKEY_USERS\S-1-5-21-4119355899-2911314421-214302231-1000\SOFTWARE\Policies\Microsoft\Internet Explorer -> < CurrentVersion Policy Settings - Explorer > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer \\"NoDriveAutoRun" -> -> File not found \\"NoDriveTypeAutoRun" -> -> File not found < CurrentVersion Policy Settings - System > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System \\"ConsentPromptBehaviorAdmin" -> -> File not found \\"ConsentPromptBehaviorUser" -> -> File not found \\"HideLegacyLogonScripts" -> -> File not found \\"HideLogoffScripts" -> -> File not found \\"HideStartupScripts" -> -> File not found \\"RunLogonScriptSync" -> -> File not found \\"RunStartupScriptSync" -> -> File not found HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats < CurrentVersion Policy Settings > -> HKEY_USERS\S-1-5-21-4119355899-2911314421-214302231-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer -> < CurrentVersion Policy Settings > -> HKEY_USERS\S-1-5-21-4119355899-2911314421-214302231-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System -> HKEY_USERS\S-1-5-21-4119355899-2911314421-214302231-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System \\"HideLegacyLogonScripts" -> -> File not found \\"HideLogoffScripts" -> -> File not found \\"HideStartupScripts" -> -> File not found \\"RunLogonScriptSync" -> -> File not found \\"RunStartupScriptSync" -> -> File not found < Internet Explorer Menu Extensions > -> HKEY_USERS\S-1-5-21-4119355899-2911314421-214302231-1000\Software\Microsoft\Internet Explorer\MenuExt\ -> &Télécharger avec FlashGet -> C:\Program Files\FlashGet\jc_link.htm -> () &Tout télécharger avec FlashGet -> C:\Program Files\FlashGet\jc_all.htm -> () E&xporter vers Microsoft Excel -> C:\Programmes\Microsoft Office\Office12\EXCEL.EXE -> File not found < Internet Explorer Extensions > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ -> {219C3416-8CB2-491a-A3C7-D9FCDDC9D600}:{5F7B1267-94A9-47F5-98DB-E99415F33AEC} -> C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll -> (Microsoft Corporation) {219C3416-8CB2-491a-A3C7-D9FCDDC9D600}:{5F7B1267-94A9-47F5-98DB-E99415F33AEC} -> C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll -> (Microsoft Corporation) {2670000A-7350-4f3c-8081-5663EE0C6C49}:{48E73304-E1D6-4330-914C-F5F514E3486C} -> C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll -> (Microsoft Corporation) {2670000A-7350-4f3c-8081-5663EE0C6C49}:{48E73304-E1D6-4330-914C-F5F514E3486C} -> C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll -> (Microsoft Corporation) {92780B25-18CC-41C8-B9BE-3C9C571A8263}:{FF059E31-CC5A-4E2E-BF3B-96E929D65503} -> C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL -> (Microsoft Corporation) {D6E814A0-E0C5-11d4-8D29-0050BA6940E3}:Exec -> C:\Program Files\FlashGet\FlashGet.exe -> (FlashGet.com) {D6E814A0-E0C5-11d4-8D29-0050BA6940E3}:Exec -> C:\Program Files\FlashGet\FlashGet.exe -> (FlashGet.com) < Internet Explorer Plugins > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ -> < Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix "" -> http:// < Trusted Sites Domains > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 0 domain(s) found. -> < Trusted Sites Ranges > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 0 range(s) found. -> < Trusted Sites Domains > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 0 domain(s) found. -> < Trusted Sites Ranges > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 0 range(s) found. -> < Trusted Sites Domains > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 0 domain(s) found. -> < Trusted Sites Ranges > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 0 range(s) found. -> < Trusted Sites Domains > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 0 domain(s) found. -> < Trusted Sites Ranges > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 0 range(s) found. -> < Trusted Sites Domains > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 0 domain(s) found. -> < Trusted Sites Ranges > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 0 range(s) found. -> < Trusted Sites Domains > -> HKEY_USERS\S-1-5-21-4119355899-2911314421-214302231-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_USERS\S-1-5-21-4119355899-2911314421-214302231-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 2 domain(s) found. -> line6.net . -> Trusted sites -> localhost . -> Trusted sites -> < Trusted Sites Ranges > -> HKEY_USERS\S-1-5-21-4119355899-2911314421-214302231-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_USERS\S-1-5-21-4119355899-2911314421-214302231-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 0 range(s) found. -> < Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ -> {04CB5B64-5915-4629-B869-8945CEBADD21} -> https://static.impots.gouv.fr/abos/static/securite/certdgi1.cab -> {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} -> http://webscanner.kaspersky.fr/kavwebscan_unicode.cab -> {166B1BCA-3F9C-11CF-8075-444553540000} -> http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab -> {17492023-C23A-453E-A040-C7C580BBF700} -> http://download.microsoft.com/download/8/b/d/8bd77752-5704-4d68-a152-f7252adaa4f2/LegitCheckControl.cab -> {1E54D648-B804-468d-BC78-4AFFED8E262F} -> http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab -> {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} -> http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.7.109.cab -> {4871A87A-BFDD-4106-8153-FFDE2BAC2967} -> http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.4.8.cab -> {67DABFBF-D0AB-41FA-9C46-CC0F21721616} -> http://download.divx.com/player/DivXBrowserPlugin.cab -> {88764F69-3831-4EC1-B40B-FF21D8381345} -> https://static.impots.gouv.fr/tdir/static/adpform/AdSignerVistaADP-1.1.cab -> {8AD9C840-044E-11D1-B3E9-00805F499D93} -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab -> {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab -> {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab -> {E2883E8F-472F-4FB0-9522-AC9BF37916A7} -> http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab -> < Name Servers > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\ -> DhcpNameServer -> 192.168.1.254 -> < Name Servers > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ -> {ECAD6550-649C-45FE-AF24-1D83F1F6C410}\\DhcpNameServer -> 192.168.1.254 (Liaison WiFi sans fil Intel(R) 4965AGN) -> < Winlogon settings > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> *Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell -> Explorer.exe -> C:\Windows\explorer.exe -> (Microsoft Corporation) *MultiFile Done* -> -> *VMApplet* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet -> SystemPropertiesPerformance.exe -> C:\Windows\System32\SystemPropertiesPerformance.exe -> (Microsoft Corporation) /pagefile -> -> File not found *MultiFile Done* -> -> < SSODL > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad -> "{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" -> Reg Error: Key error. -> File not found < ShellExecuteHooks > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks -> "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}" -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll -> (Microsoft Corporation) < LSA Security Packages > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\Security Packages -> *LSA Security Packages* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\Security Packages -> pku2u -> C:\Windows\System32\pku2u.dll -> (Microsoft Corporation) *MultiFile Done* -> -> < Standard Profile Authorized Applications List > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List -> "C:\Acer\Empowering Technology\eDataSecurity\decryption.exe" -> C:\Acer\Empowering Technology\eDataSecurity\decryption.exe -> File not found "C:\Acer\Empowering Technology\eDataSecurity\eDSfsu.exe" -> C:\Acer\Empowering Technology\eDataSecurity\eDSfsu.exe -> File not found "C:\Acer\Empowering Technology\eDataSecurity\encryption.exe" -> C:\Acer\Empowering Technology\eDataSecurity\encryption.exe -> File not found < SafeBoot AlternateShell > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot -> < CDROM Autorun Setting > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom -> "AutoRun" -> 1 -> "DisplayName" -> Pilote de CD-ROM -> "ImagePath" -> -> File not found < Drives with AutoRun files > -> -> C:\autoexec.bat -> C:\autoexec.bat -> () < MountPoints2 > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2 -> < Registry Shell Spawning - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\ \command -> comfile -> "%1" %* -> exefile -> "%1" %* -> < File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>\ -> .com -> "%1" %* -> .exe -> "%1" %* -> < Registry Shell Spawning - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\ \command -> batfile -> "%1" %* -> cmdfile -> "%1" %* -> comfile -> "%1" %* -> cplfile -> %SystemRoot%\System32\control.exe "%1",%* -> (Microsoft Corporation) exefile -> "%1" %* -> hlpfile -> %SystemRoot%\winhlp32.exe %1 -> (Microsoft Corporation) htmlfile -> "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 -> (Microsoft Corporation) htmlfile -> "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 -> (Microsoft Corporation) piffile -> "%1" %* -> scrfile -> "%1" -> scrfile -> rundll32.exe desk.cpl,InstallScreenSaver %l -> (Microsoft Corporation) scrfile -> "%1" /S -> Unknown -> %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 -> Directory -> cmd.exe /s /k pushd "%V" -> (Microsoft Corporation) Directory -> %SystemRoot%\Explorer.exe -> (Microsoft Corporation) Directory -> C:\PROGRA~1\MICROS~4\Office12\ONENOTE.EXE "%L" -> File not found Folder -> %SystemRoot%\Explorer.exe -> (Microsoft Corporation) Drive -> %SystemRoot%\Explorer.exe -> (Microsoft Corporation) < EventViewer Logs - Last 10 Errors > -> Event Information -> Description Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt! Trend Micro -> C:\Program Files\Trend Micro -> RootRepeal -> C:\RootRepeal -> Vega5maj -> C:\Vega5maj -> Vega5 -> C:\Vega5 -> browserchoice.exe -> C:\Windows\System32\browserchoice.exe -> (Microsoft Corporation) Applications -> C:\Users\Nicolas\Bureau\Applications -> Outils -> C:\Users\Nicolas\Bureau\Outils -> Multimedia -> C:\Users\Nicolas\Bureau\Multimedia -> Image -> C:\Users\Nicolas\Bureau\Image -> Energie -> C:\Users\Nicolas\Bureau\Energie -> Digital Wave Player -> D:\Nicolas\Documents\Digital Wave Player -> SNWValid.dll -> C:\Windows\System32\SNWValid.dll -> (Cendant Software) SierraNW.dll -> C:\Windows\System32\SierraNW.dll -> (Cendant Software) IsUninst.Exe -> C:\Windows\IsUninst.Exe -> (InstallShield Software Corporation) MFC250.DLL -> C:\Windows\System32\MFC250.DLL -> (Microsoft Corporation) MFCOLEUI.DLL -> C:\Windows\System32\MFCOLEUI.DLL -> (Microsoft Corporation) MFCO250.DLL -> C:\Windows\System32\MFCO250.DLL -> (Microsoft Corporation) MFCD250.DLL -> C:\Windows\System32\MFCD250.DLL -> (Microsoft Corporation) MFCN250.DLL -> C:\Windows\System32\MFCN250.DLL -> (Microsoft Corporation) Sierra On-Line -> C:\Program Files\Sierra On-Line -> SIERRA -> C:\SIERRA -> Unity -> C:\Users\Nicolas\AppData\Local\Unity -> jscript.dll -> C:\Windows\System32\jscript.dll -> (Microsoft Corporation) CPFilters.dll -> C:\Windows\System32\CPFilters.dll -> (Microsoft Corporation) psisdecd.dll -> C:\Windows\System32\psisdecd.dll -> (Microsoft Corporation) msdri.dll -> C:\Windows\System32\msdri.dll -> (Microsoft Corporation) MSNP.ax -> C:\Windows\System32\MSNP.ax -> (Microsoft Corporation) tzres.dll -> C:\Windows\System32\tzres.dll -> (Microsoft Corporation) LiveCAD3 -> C:\Users\Nicolas\AppData\Roaming\LiveCAD3 -> XAudio2_6.dll -> C:\Windows\System32\XAudio2_6.dll -> (Microsoft Corporation) xactengine3_6.dll -> C:\Windows\System32\xactengine3_6.dll -> (Microsoft Corporation) XAPOFX1_4.dll -> C:\Windows\System32\XAPOFX1_4.dll -> (Microsoft Corporation) X3DAudio1_7.dll -> C:\Windows\System32\X3DAudio1_7.dll -> (Microsoft Corporation) XAudio2_5.dll -> C:\Windows\System32\XAudio2_5.dll -> (Microsoft Corporation) XAPOFX1_3.dll -> C:\Windows\System32\XAPOFX1_3.dll -> (Microsoft Corporation) d3dcsx_42.dll -> C:\Windows\System32\d3dcsx_42.dll -> (Microsoft Corporation) D3DCompiler_42.dll -> C:\Windows\System32\D3DCompiler_42.dll -> (Microsoft Corporation) d3dx10_42.dll -> C:\Windows\System32\d3dx10_42.dll -> (Microsoft Corporation) xactengine3_5.dll -> C:\Windows\System32\xactengine3_5.dll -> (Microsoft Corporation) d3dx11_42.dll -> C:\Windows\System32\d3dx11_42.dll -> (Microsoft Corporation) D3DX9_42.dll -> C:\Windows\System32\D3DX9_42.dll -> (Microsoft Corporation) XAudio2_2.dll -> C:\Windows\System32\XAudio2_2.dll -> (Microsoft Corporation) XAPOFX1_1.dll -> C:\Windows\System32\XAPOFX1_1.dll -> (Microsoft Corporation) xactengine3_2.dll -> C:\Windows\System32\xactengine3_2.dll -> (Microsoft Corporation) msdownld.tmp -> C:\Windows\msdownld.tmp -> directx -> C:\Windows\System32\directx -> LiveCAD -> C:\Program Files\LiveCAD -> My Stationery -> D:\Nicolas\Documents\My Stationery -> Bouygues-BboxMini.649F13D0CDF968A472A16014E8BC8A2ED131D04E.1 -> C:\Users\Nicolas\AppData\Roaming\Bouygues-BboxMini.649F13D0CDF968A472A16014E8BC8A2ED131D04E.1 -> Bouygues Telecom Mes services en un clic -> C:\Program Files\Bouygues Telecom Mes services en un clic -> Adobe AIR -> C:\Program Files\Common Files\Adobe AIR -> Plans -> D:\Nicolas\Documents\Plans -> LXBUhcp.dll -> C:\Windows\System32\LXBUhcp.dll -> ( ) lxdehcp.dll -> C:\Windows\System32\lxdehcp.dll -> ( ) PLFSet.dll -> C:\Windows\PLFSet.dll -> ( ) rsnp2uvc.dll -> C:\Windows\System32\rsnp2uvc.dll -> ( ) csnp2uvc.dll -> C:\Windows\System32\csnp2uvc.dll -> ( ) lxdepmui.dll -> C:\Windows\System32\lxdepmui.dll -> ( ) lxdeserv.dll -> C:\Windows\System32\lxdeserv.dll -> ( ) lxdelmpm.dll -> C:\Windows\System32\lxdelmpm.dll -> ( ) lxdecomm.dll -> C:\Windows\System32\lxdecomm.dll -> ( ) lxdeinpa.dll -> C:\Windows\System32\lxdeinpa.dll -> ( ) lxdehbn3.dll -> C:\Windows\System32\lxdehbn3.dll -> ( ) lxdeusb1.dll -> C:\Windows\System32\lxdeusb1.dll -> ( ) lxdecomc.dll -> C:\Windows\System32\lxdecomc.dll -> ( ) lxdeiesc.dll -> C:\Windows\System32\lxdeiesc.dll -> ( ) lxdeprox.dll -> C:\Windows\System32\lxdeprox.dll -> ( ) 2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> NTUSER.DAT -> C:\Users\Nicolas\NTUSER.DAT -> () bootstat.dat -> C:\Windows\bootstat.dat -> () GoogleUpdateTaskMachineUA.job -> C:\Windows\tasks\GoogleUpdateTaskMachineUA.job -> () settings.dat -> C:\Windows\System32\settings.dat -> () RootRepeal.zip -> C:\RootRepeal.zip -> () GoogleUpdateTaskMachineCore.job -> C:\Windows\tasks\GoogleUpdateTaskMachineCore.job -> () Google Software Updater.job -> C:\Windows\tasks\Google Software Updater.job -> () 7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 -> C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 -> () 7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 -> C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 -> () GlaryInitialize.job -> C:\Windows\tasks\GlaryInitialize.job -> () SA.DAT -> C:\Windows\tasks\SA.DAT -> () hiberfil.sys -> C:\hiberfil.sys -> () IconCache.db -> C:\Users\Nicolas\AppData\Local\IconCache.db -> () nicolasmasson.mny -> D:\Nicolas\Documents\nicolasmasson.mny -> () nicolasmasson.mbf -> D:\Nicolas\Documents\nicolasmasson.mbf -> () Local.doc -> C:\Users\Nicolas\Bureau\Local.doc -> () ntuser.pol -> C:\ProgramData\ntuser.pol -> () theme.themepack -> C:\Users\Nicolas\AppData\Roaming\theme.themepack -> () SIERRA.INI -> C:\Windows\SIERRA.INI -> () PerfStringBackup.INI -> C:\Windows\System32\PerfStringBackup.INI -> () perfh00C.dat -> C:\Windows\System32\perfh00C.dat -> () perfh009.dat -> C:\Windows\System32\perfh009.dat -> () perfc00C.dat -> C:\Windows\System32\perfc00C.dat -> () perfc009.dat -> C:\Windows\System32\perfc009.dat -> () 2 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> 2 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> 2 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> settings.dat -> C:\Windows\System32\settings.dat -> () RootRepeal.zip -> C:\RootRepeal.zip -> () Local.doc -> C:\Users\Nicolas\Bureau\Local.doc -> () theme.themepack -> C:\Users\Nicolas\AppData\Roaming\theme.themepack -> () SIERRA.INI -> C:\Windows\SIERRA.INI -> () SoftWriting.ini -> C:\Windows\SoftWriting.ini -> () OdiOlDVR.dll -> C:\Windows\System32\OdiOlDVR.dll -> () OdiAPI.dll -> C:\Windows\System32\OdiAPI.dll -> () EhStorAuthn.dll -> C:\Windows\System32\EhStorAuthn.dll -> () ImportClient.INI -> C:\Windows\ImportClient.INI -> () LXBUinst.dll -> C:\Windows\System32\LXBUinst.dll -> () DeskHack.dll -> C:\Windows\System32\DeskHack.dll -> () AVSredirect.dll -> C:\Windows\System32\AVSredirect.dll -> () GlobalUserInterface.CompositeFont -> C:\Windows\Fonts\GlobalUserInterface.CompositeFont -> () GlobalSerif.CompositeFont -> C:\Windows\Fonts\GlobalSerif.CompositeFont -> [2009/07/14 05:52

Oyi450y · Answer 5 · Posté le 18/03/2010 à 23:36:06

Télécharger le logiciel suivant: Malwarebytes' Anti-Malware (Gratuit) (Windows 2K et + 32/64 bits) http://www.malwarebytes.org/mbam.php Une fois installé lorsques que vous allez démarrer le logiciel il va demander de ce mettre à jour et cliquer "ok". Sinon cliquer sur l'onglet "mise à jour" et sur "Recherche de mise à jour" pour la version gratuite avant chaque scan. Dans l'onglet "Recherche" ,Vérifier que c'est bien "Exécuter un examen complet" qui est coché et appuyer le bouton "Rechercher". Quand il aura fini cliquer sur "ok". Vous allez maintenant être de retour à l'écran principal de la recherche. Cliquer sur "Afficher les résultats". Maintenant vous allez voir le résultat avec les fichiers infectés. Cliquer ensuite "Supprimer la Selection" et une fois terminée, il va ouvrir le "Bloc note" avec le résultat du travail. Pour me copier/coller les log dans le "Bloc note" vous allez dans le menu Édition et cliquer sur "Sélectionner tout" et retourner dans "Édition" et cliquer sur "copier" Sur le forum, faire un click droit et cliquer sur "coller".

Nikoleo · Answer 6 · Posté le 20/03/2010 à 12:20:41

J'ai toujours le même probleme, malgres la suppression avec MalwarBytes Malwarebytes' Anti-Malware 1.44 Version de la base de données: 3510 Windows 6.1.7600 Internet Explorer 8.0.7600.16385 14/03/2010 23:29:27 mbam-log-2010-03-14 (23-29-27).txt Type de recherche: Examen complet (C:\|D:\|Q:\|) Eléments examinés: 448179 Temps écoulé: 1 hour(s), 37 minute(s), 7 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 2 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{1d4db7d2-6ec9-47a3-bd87-1e41684e07bb} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{1e0de227-5ce4-4ea3-ab0c-8b03e1aa76bc} (Adware.MyWebSearch) -> Quarantined and deleted successfully. Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté)

Oyi450y · Answer 7 · Posté le 20/03/2010 à 18:50:55

Faites un scan avec ceci: Télécharger RootRepeal sur votre bureau. http://rootrepeal.googlepages.com/RootRepeal.zip Créer ensuite un nouveau répertoire dans c:\. Ouvrir le "Poste de Travail" ou Explorateur Windows et faire bouton de droit sur c:\ sélectionner "Nouveau" et "Dossier". Vous allez le nommer RootRepeal. Le fichier est en format "ZIP" donc il faut le décompresser dans le nouveau dossier RootRepeal. Vous cliquez droit sur le fichier RootRepeal.zip et cliquer sur "extraire vers" et choisir C:\RootRepeal. Pour démarrer le logiciel sous Vista et Windows 7, vous devez faire bouton droit sur RootRepeal.exe et exécuter en tant qu'administrateur. Maintenant voici comment le paramétrer. Cliquez sur l'onglet Report puis sur le bouton Scan, vous cochez: Drivers, Files, Processes, SSDT, Stealth Objects, Hidden Services et Shadow SSDT et cliquer "OK". Choisir la partition du système d'exploitation. Normalement "C:\" qui est à scanner. Ne rien faire pendant le scan. À la fin du scan, cliquer sur le bouton "Save report" et enregistrer le log dans le dossier RootRepeal sous le nom RootRepeal111.txt. Fournir le log complet sur un forum même s'il est très long. Prendre plus d'un "post".

Nikoleo · Answer 8 · Posté le 21/03/2010 à 19:50:14

Nikoleo

Désolé, mais le logiciel ne marche pas. Pourtant j'exécute en tant qu'administrateur.

http://img115.imageshack.us/img115/5700/capturepa.jpg

Oyi450y · Answer 9 · Posté le 22/03/2010 à 00:24:18

Bon ok! Vérifions alors avec ceci: Télécharger le démo de 30 jours de Hitman Pro qui est pleinement fonctionnel et scanner votre machine. Redémarrer si demandé. Prendre la version 32 ou 64 bits selon votre Windows. http://www.surfright.nl/en/hitmanpro Trouve t-il quelque chose ?

Nikoleo · Answer 10 · Posté le 22/03/2010 à 21:32:27

Nikoleo

Il n'a rien trouvé

Ne serait-ce pas un problème dans l'OS lui même ?

Oyi450y · Answer 11 · Posté le 23/03/2010 à 03:15:59

Quel est le message des icône du panneau de configuration ? Faire également un log avec RSIT ici: Téléchargement de Random's system information tool Incompatible windows 7 64 bit http://images.malwareremoval.com/random/RSIT.exe Cliquez pour le télécharger et dans enregistrer sous le mettre sur le bureau. Cliquer sur le fichier pour générer les logs. RSIT installe Hijackthis en même temps. Ensuite vous cliquez sur RSIT.exe. Cliquer sur "continuer" ou changer le temps par défaut soit un mois à 2 ou 3 mois si vous pensez que l'infection date de ce temps. Le scan terminée, 2 fenêtres "bloc note" vont s'ouvrir. Vous me copier/coller log.txt en premier et info.txt en second. Dans le "Bloc note" vous allez dans le menu Édition et cliquer sur "Sélectionner tout" et retourner dans "Édition" et cliquer sur "copier" Sur le forum, faire un click droit et cliquer sur "coller".

Nikoleo · Answer 12 · Posté le 23/03/2010 à 19:54:11

Nikoleo

Le scan ne peut pas se lancer, ça plante à "listing services and drivers" :

http://img405.imageshack.us/img405/9611/capturebv.jpg

Oyi450y · Answer 13 · Posté le 23/03/2010 à 20:01:37

Vous avez Windows 7 il est incompatible mais nous allons arranger cela! Faire bouton droit Propriétés sur RSIT.exe et aller dans l'onglet Compatibilité et cocher: "Exécuter en programme en mode de compatibilité pour:" et choisir Windows Vista sp2 et cliquer appliquer. Re-cliquer sur RIST.exe

Nikoleo · Answer 14 · Posté le 23/03/2010 à 21:12:34

Logfile of random's system information tool 1.06 (written by random/random) Run by Nicolas at 2010-03-23 21:04:59 Microsoft Windows 7 Édition Familiale Premium Service Pack 2 System drive C: has 32 GB (28%) free of 114 GB Total RAM: 3070 MB (56% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 21:05:01, on 23/03/2010 Platform: Unknown Windows (WinNT 6.01.3504) MSIE: Internet Explorer v8.00 (8.00.7600.16385) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Synaptics\SynTP\SynTPStart.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Windows\System32\rundll32.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Launch Manager\QtZgAcer.EXE C:\Program Files\RocketDock\RocketDock.exe C:\Program Files\Logitech Touch Mouse Server\iTouch-Server-Win.exe C:\Program Files\Windows Live\Mail\wlmail.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Program Files\Safari\Safari.exe C:\Windows\system32\wuauclt.exe C:\Users\Nicolas\Bureau\RSIT.exe C:\Program Files\trend micro\Nicolas.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.fr.acer.yahoo.com R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll O4 - HKLM\..\Run: C:\Program Files\Synaptics\SynTP\SynTPStart.exe O4 - HKLM\..\Run: RtHDVCpl.exe O4 - HKLM\..\Run: Skytel.exe O4 - HKLM\..\Run: rundll32.exe C:\Windows\PLFSet.dll,PLFDefSetting O4 - HKLM\..\Run: "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKLM\..\Run: rundll32 C:\Windows\system32\spool\DRIVERS\W32X86\3\LXBUtime.dll,_RunDLLEntry@16 O4 - HKLM\..\Run: C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE O4 - HKLM\..\Run: RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKCU\..\Run: "C:\Program Files\RocketDock\RocketDock.exe" O4 - HKUS\S-1-5-19\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-20\..\RunOnce: C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU') O4 - Startup: Logitech Touch Mouse Server.lnk = C:\Program Files\Logitech Touch Mouse Server\iTouch-Server-Win.exe O8 - Extra context menu item: &Tout télécharger avec FlashGet - C:\Program Files\FlashGet\jc_all.htm O8 - Extra context menu item: &Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000 O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe O13 - Gopher Prefix: O15 - Trusted Zone: *.line6.net O16 - DPF: {04CB5B64-5915-4629-B869-8945CEBADD21} (Module de délivrance de certificat MINEFI) - https://static.impots.gouv.fr/abos/static/securite/certdgi1.cab O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (CDownloadCtrl Object) - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.7.109.cab O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} (DLM Control) - http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.4.8.cab O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {88764F69-3831-4EC1-B40B-FF21D8381345} (AdVerifierADPCtrl Class) - https://static.impots.gouv.fr/tdir/static/adpform/AdSignerVistaADP-1.1.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: ALaunch Service (ALaunchService) - Unknown owner - C:\Acer\ALaunch\ALaunchSvc.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe O23 - Service: Service Google Update (gupdate1ca0556c29c4cf0) (gupdate1ca0556c29c4cf0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe O23 - Service: Raw Socket Service (RS_Service) - Acer Inc. - C:\Program Files\Acer\Acer VCM\RS_Service.exe O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe -- End of file - 8959 bytes ======Scheduled tasks folder====== C:\Windows\tasks\GlaryInitialize.job C:\Windows\tasks\Google Software Updater.job C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job ======Registry dump====== FGCatchUrl - C:\Program Files\FlashGet\jccatch.dll Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll Programme d'aide de l'Assistant de connexion Windows Live ID - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll FlashGet GetFlash Class - C:\Program Files\FlashGet\getflash.dll "SynTPStart"=C:\Program Files\Synaptics\SynTP\SynTPStart.exe "RtHDVCpl"=C:\Windows\RtHDVCpl.exe "Skytel"=C:\Windows\Skytel.exe "PLFSet"=C:\Windows\PLFSet.dll "avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe "IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe "LXBUCATS"=rundll32 C:\Windows\system32\spool\DRIVERS\W32X86\3\LXBUtime.dll,_RunDLLEntry@16 "NvCplDaemon"=C:\Windows\system32\NvCpl.dll "RocketDock"=C:\Program Files\RocketDock\RocketDock.exe C:\Program Files\Alcohol Soft\Alcohol 52\axcmd.exe C:\Users\Nicolas\AppData\Local\Google\Update\GoogleUpdate.exe /c C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Download Manager\DLM.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Lexmark 4800 Series\lxdeamon.exe C:\Program Files\Lexmark 4800 Series\lxdemon.exe C:\Program Files\QuickTime\QTTask.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\VirtualCloneDrive\VCDDaemon.exe C:\Acer\WR_PopUp\WarReg_PopUp.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Program Files\Windows Media Player\WMPNSCFG.exe C:\Acer\EMPOWE~1\EAPLAU~1.EXE C:\PROGRA~1\BRODER~1\PRINTM~1\PMremind.exe C:\Users\Nicolas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup Logitech Touch Mouse Server.lnk - C:\Program Files\Logitech Touch Mouse Server\iTouch-Server-Win.exe "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll "RunStartupScriptSync"=1 "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "legalnoticetext"= "RunStartupScriptSync"=1 "BindDirectlyToPropertySetStorage"= "NoDriveAutoRun"= "NoDriveTypeAutoRun"= "C:\Acer\Empowering Technology\eDataSecurity\decryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\decryption.exe:*:Enabled:decryption" "C:\Acer\Empowering Technology\eDataSecurity\eDSfsu.exe"="C:\Acer\Empowering Technology\eDataSecurity\eDSfsu.exe:*:Enabled:eDSfsu" "C:\Acer\Empowering Technology\eDataSecurity\encryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\encryption.exe:*:Enabled:encryption" ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* .reg - edit - .reg - open - c:\Winnt\Regedit.exe %1 ======List of files/folders created in the last 3 months====== 2010-03-23 19:50:33 ----D---- C:\rsit 2010-03-22 21:56:30 ----D---- C:\Program Files\IKEA HomePlanner 2010-03-22 20:07:58 ----D---- C:\ProgramData\Hitman Pro 2010-03-22 20:07:58 ----D---- C:\Program Files\Hitman Pro 3.5 2010-03-18 15:42:07 ----D---- C:\Program Files\Trend Micro 2010-03-18 15:36:04 ----D---- C:\RootRepeal 2010-03-15 19:48:50 ----D---- C:\Vega5maj 2010-03-15 19:48:50 ----D---- C:\Vega5 2010-03-15 15:50:33 ----A---- C:\Windows\system32\browserchoice.exe 2010-03-11 21:55:32 ----RA---- C:\Windows\system32\SNWValid.dll 2010-03-11 21:55:31 ----RA---- C:\Windows\system32\SierraNW.dll 2010-03-11 21:55:28 ----A---- C:\Windows\IsUninst.Exe 2010-03-11 21:54:46 ----RA---- C:\Windows\system32\MFCOLEUI.DLL 2010-03-11 21:54:46 ----RA---- C:\Windows\system32\MFCO250.DLL 2010-03-11 21:54:46 ----RA---- C:\Windows\system32\MFCN250.DLL 2010-03-11 21:54:46 ----RA---- C:\Windows\system32\MFCD250.DLL 2010-03-11 21:54:46 ----RA---- C:\Windows\system32\MFC250.DLL 2010-03-11 21:54:30 ----D---- C:\SIERRA 2010-03-11 21:54:30 ----D---- C:\Program Files\Sierra On-Line 2010-03-11 21:53:58 ----A---- C:\Windows\SIERRA.INI 2010-02-24 18:39:12 ----A---- C:\Windows\system32\jscript.dll 2010-02-24 18:39:09 ----A---- C:\Windows\system32\psisdecd.dll 2010-02-24 18:39:09 ----A---- C:\Windows\system32\msdri.dll 2010-02-24 18:39:09 ----A---- C:\Windows\system32\CPFilters.dll 2010-02-24 18:39:06 ----A---- C:\Windows\system32\tzres.dll 2010-02-21 22:59:39 ----D---- C:\Users\Nicolas\AppData\Roaming\LiveCAD3 2010-02-21 22:59:32 ----A---- C:\Windows\system32\XAudio2_6.dll 2010-02-21 22:59:32 ----A---- C:\Windows\system32\XAPOFX1_4.dll 2010-02-21 22:59:32 ----A---- C:\Windows\system32\xactengine3_6.dll 2010-02-21 22:59:31 ----A---- C:\Windows\system32\X3DAudio1_7.dll 2010-02-21 22:59:30 ----A---- C:\Windows\system32\XAudio2_5.dll 2010-02-21 22:59:30 ----A---- C:\Windows\system32\XAPOFX1_3.dll 2010-02-21 22:59:29 ----A---- C:\Windows\system32\xactengine3_5.dll 2010-02-21 22:59:29 ----A---- C:\Windows\system32\d3dx11_42.dll 2010-02-21 22:59:29 ----A---- C:\Windows\system32\d3dx10_42.dll 2010-02-21 22:59:29 ----A---- C:\Windows\system32\d3dcsx_42.dll 2010-02-21 22:59:29 ----A---- C:\Windows\system32\D3DCompiler_42.dll 2010-02-21 22:59:28 ----A---- C:\Windows\system32\D3DX9_42.dll 2010-02-21 22:59:27 ----A---- C:\Windows\system32\XAudio2_2.dll 2010-02-21 22:59:27 ----A---- C:\Windows\system32\XAPOFX1_1.dll 2010-02-21 22:59:26 ----A---- C:\Windows\system32\xactengine3_2.dll 2010-02-21 22:44:12 ----HD---- C:\Windows\msdownld.tmp 2010-02-21 22:44:09 ----D---- C:\Windows\system32\directx 2010-02-21 22:43:50 ----D---- C:\Program Files\LiveCAD 2010-02-19 17:43:12 ----D---- C:\Users\Nicolas\AppData\Roaming\Bouygues-BboxMini.649F13D0CDF968A472A16014E8BC8A2ED131D04E.1 2010-02-19 17:43:09 ----D---- C:\Program Files\Bouygues Telecom Mes services en un clic 2010-02-19 17:43:07 ----D---- C:\Program Files\Common Files\Adobe AIR 2010-02-15 16:46:10 ----D---- C:\Program Files\iPhone Explorer 2010-02-10 12:46:49 ----A---- C:\Windows\system32\ntkrnlpa.exe 2010-02-10 12:46:49 ----A---- C:\Windows\system32\kernel32.dll 2010-02-10 12:46:48 ----A---- C:\Windows\system32\ntoskrnl.exe 2010-02-10 12:46:48 ----A---- C:\Windows\system32\apphelp.dll 2010-02-10 12:46:47 ----A---- C:\Windows\system32\quartz.dll 2010-02-10 12:46:46 ----A---- C:\Windows\system32\tsbyuv.dll 2010-02-10 12:46:46 ----A---- C:\Windows\system32\msyuv.dll 2010-02-10 12:46:46 ----A---- C:\Windows\system32\msvidc32.dll 2010-02-10 12:46:46 ----A---- C:\Windows\system32\msrle32.dll 2010-02-10 12:46:46 ----A---- C:\Windows\system32\mciavi32.dll 2010-02-10 12:46:46 ----A---- C:\Windows\system32\iyuv_32.dll 2010-02-10 12:46:46 ----A---- C:\Windows\system32\avifil32.dll 2010-02-10 12:46:44 ----A---- C:\Windows\system32\secproc_ssp_isv.dll 2010-02-10 12:46:44 ----A---- C:\Windows\system32\secproc_ssp.dll 2010-02-10 12:46:44 ----A---- C:\Windows\system32\secproc_isv.dll 2010-02-10 12:46:44 ----A---- C:\Windows\system32\secproc.dll 2010-02-10 12:46:44 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe 2010-02-10 12:46:44 ----A---- C:\Windows\system32\RMActivate_ssp.exe 2010-02-10 12:46:44 ----A---- C:\Windows\system32\RMActivate_isv.exe 2010-02-10 12:46:44 ----A---- C:\Windows\system32\RMActivate.exe 2010-02-09 15:24:56 ----D---- C:\Program Files\Bitmanagement Software 2010-02-02 22:44:26 ----A---- C:\Windows\SoftWriting.ini 2010-02-02 22:44:24 ----D---- C:\Program Files\SimpleOCR 2010-02-02 20:10:37 ----D---- C:\Program Files\iPod 2010-02-02 20:10:36 ----D---- C:\Program Files\iTunes 2010-02-02 20:09:06 ----D---- C:\Program Files\QuickTime 2010-01-27 14:05:55 ----A---- C:\Windows\system32\winlogon.exe 2010-01-27 14:05:55 ----A---- C:\Windows\explorer.exe 2010-01-22 21:45:01 ----A---- C:\Windows\system32\mshtml.dll 2010-01-22 21:45:01 ----A---- C:\Windows\system32\ieframe.dll 2010-01-22 21:45:00 ----A---- C:\Windows\system32\wininet.dll 2010-01-22 21:45:00 ----A---- C:\Windows\system32\urlmon.dll 2010-01-22 21:45:00 ----A---- C:\Windows\system32\msfeedsbs.dll 2010-01-22 21:45:00 ----A---- C:\Windows\system32\iedkcs32.dll 2010-01-18 20:09:59 ----D---- C:\Users\Nicolas\AppData\Roaming\dvdcss 2010-01-16 16:33:21 ----D---- C:\Program Files\Logitech Touch Mouse Server 2010-01-13 07:31:16 ----A---- C:\Windows\system32\t2embed.dll 2010-01-13 07:31:16 ----A---- C:\Windows\system32\fontsub.dll 2010-01-10 14:44:06 ----D---- C:\Program Files\Open Design Alliance 2010-01-10 14:44:06 ----D---- C:\Program Files\Common Files\DWGdirectX 2.5 2010-01-10 14:44:04 ----A---- C:\Windows\system32\tsccvid.dll 2010-01-10 14:44:03 ----D---- C:\Users\Nicolas\AppData\Roaming\Anuman Interactive 2010-01-10 14:43:22 ----A---- C:\Windows\system32\sevLock.dll 2010-01-10 14:43:22 ----A---- C:\Windows\system32\CyViewer.dll 2010-01-10 14:24:40 ----D---- C:\Program Files\Anuman Interactive 2010-01-05 18:59:57 ----D---- C:\Users\Nicolas\AppData\Roaming\GlarySoft 2010-01-05 18:06:51 ----D---- C:\Program Files\Glary Utilities ======List of files/folders modified in the last 3 months====== 2010-03-23 19:58:59 ----D---- C:\Windows\system32\config 2010-03-23 19:51:39 ----D---- C:\Windows\Prefetch 2010-03-23 19:48:56 ----D---- C:\Windows\system32\catroot 2010-03-23 19:38:13 ----D---- C:\Windows\Temp 2010-03-23 12:30:10 ----D---- C:\Windows\Tasks 2010-03-23 09:39:00 ----HD---- C:\ProgramData 2010-03-22 21:56:36 ----SHD---- C:\Windows\Installer 2010-03-22 21:56:30 ----RD---- C:\Program Files 2010-03-22 21:56:29 ----SHD---- C:\System Volume Information 2010-03-22 21:55:59 ----D---- C:\Program Files\Common Files\Wise Installation Wizard 2010-03-22 21:35:19 ----D---- C:\Windows\system32\Tasks 2010-03-22 20:08:09 ----D---- C:\Windows\system32\drivers 2010-03-21 19:39:57 ----D---- C:\Program Files\Lx_cats 2010-03-18 15:48:28 ----D---- C:\Windows\System32 2010-03-15 15:50:40 ----D---- C:\Windows\winsxs 2010-03-15 15:43:06 ----D---- C:\Windows 2010-03-14 21:28:23 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2010-03-14 19:33:55 ----D---- C:\Windows\Downloaded Program Files 2010-03-13 14:50:29 ----D---- C:\Program Files\RocketDock 2010-03-12 18:32:15 ----D---- C:\Windows\system32\wdi 2010-03-11 22:46:45 ----D---- C:\Windows\inf 2010-03-11 22:46:44 ----D---- C:\Windows\system32\DriverStore 2010-03-11 22:46:41 ----D---- C:\Windows\system32\catroot2 2010-03-11 22:39:18 ----D---- C:\Windows\system32\FxsTmp 2010-03-11 21:55:30 ----RSD---- C:\Windows\Fonts 2010-03-10 22:02:58 ----D---- C:\ProgramData\Microsoft Help 2010-03-10 22:02:30 ----D---- C:\Windows\AppPatch 2010-03-06 22:59:47 ----D---- C:\Users\Nicolas\AppData\Roaming\Skype 2010-03-06 22:43:10 ----D---- C:\Users\Nicolas\AppData\Roaming\skypePM 2010-03-06 17:53:09 ----D---- C:\Windows\system32\fr-FR 2010-03-02 20:39:09 ----D---- C:\Windows\system32\NDF 2010-03-02 06:30:12 ----A---- C:\Windows\system32\MRT.exe 2010-02-26 15:02:55 ----A---- C:\Windows\system32\PerfStringBackup.INI 2010-02-25 18:08:16 ----D---- C:\Windows\Microsoft.NET 2010-02-25 18:07:47 ----RSD---- C:\Windows\assembly 2010-02-24 22:49:27 ----D---- C:\Windows\ehome 2010-02-19 17:43:11 ----D---- C:\ProgramData\Adobe 2010-02-19 17:43:07 ----D---- C:\Program Files\Common Files 2010-02-19 17:42:44 ----D---- C:\Users\Nicolas\AppData\Roaming\Adobe 2010-02-06 13:33:47 ----D---- C:\Program Files\Google 2010-02-02 20:10:36 ----D---- C:\Program Files\Common Files\Apple 2010-02-02 20:06:59 ----D---- C:\Program Files\Safari 2010-01-29 19:39:48 ----HD---- C:\Program Files\InstallShield Installation Information 2010-01-28 18:52:39 ----D---- C:\Program Files\Wizards of the Coast 2010-01-27 15:46:50 ----D---- C:\Program Files\Internet Explorer 2010-01-24 22:29:02 ----D---- C:\Users\Nicolas\AppData\Roaming\DocumentsToGoDesktop 2010-01-21 11:24:29 ----D---- C:\Program Files\Microsoft Silverlight 2010-01-06 16:13:52 ----D---- C:\ProgramData\NVIDIA 2010-01-05 19:44:11 ----D---- C:\Windows\system32\sysprep 2010-01-05 19:44:11 ----D---- C:\Windows\pss 2010-01-05 19:44:11 ----D---- C:\Windows\Panther 2010-01-05 19:44:08 ----D---- C:\Program Files\Nvu 2010-01-05 19:44:08 ----D---- C:\Program Files\Microsoft Works 2010-01-05 19:44:07 ----D---- C:\Windows\Minidump 2010-01-05 18:34:41 ----D---- C:\Program Files\Acer Inc 2010-01-05 18:34:28 ----D---- C:\Acer ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys R1 discache;@%systemroot%\system32\drivers\discache.sys,-102; C:\Windows\System32\drivers\discache.sys R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys R1 RDPREFMP;@%systemroot%\system32\drivers\RdpRefMp.sys,-101; C:\Windows\system32\drivers\rdprefmp.sys R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys R1 WfpLwf;WFP Lightweight Filter; C:\Windows\system32\DRIVERS\wfplwf.sys R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys R2 int15;int15; \??\C:\Acer\Empowering Technology\eRecovery\int15.sys R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys R3 1394ohci;Contrôleur d’hôte compatible OHCI 1394; C:\Windows\system32\DRIVERS\1394ohci.sys R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\Windows\system32\DRIVERS\CmBatt.sys R3 CompositeBus;Pilote de l’énumérateur de bus composite; C:\Windows\system32\DRIVERS\CompositeBus.sys R3 DKbFltr;Dritek Keyboard Filter Driver; C:\Windows\system32\DRIVERS\DKbFltr.sys R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys R3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys R3 netw5v32;Pilote de carte de liaison WiFi sans fil Intel(R) 5000 Series pour Windows Vista 32 bits; C:\Windows\system32\DRIVERS\netw5v32.sys R3 NTIDrvr;Upper Class Filter Driver; C:\Windows\system32\DRIVERS\NTIDrvr.sys R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys R3 RasAgileVpn;WAN Miniport (IKEv2); C:\Windows\system32\DRIVERS\AgileVpn.sys R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys R3 sftfs;sftfs; \??\C:\Program Files\Microsoft Application Virtualization Client\drivers\sftfslh.sys R3 sftplay;sftplay; \??\C:\Program Files\Microsoft Application Virtualization Client\drivers\sftplaylh.sys R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys R3 sftvol;sftvol; \??\C:\Program Files\Microsoft Application Virtualization Client\drivers\sftvollh.sys R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys R3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys R3 winbondcir;Winbond IR Transceiver; C:\Windows\system32\DRIVERS\winbondcir.sys R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys R3 WudfPf;User Mode Driver Frameworks Platform Driver; C:\Windows\system32\drivers\WudfPf.sys S3 A310;AVerMedia A310 DVB-T; C:\Windows\system32\DRIVERS\AVerA310USB.sys S3 AcpiPmi;ACPI Power Meter Driver; C:\Windows\system32\DRIVERS\acpipmi.sys S3 AmdPPM;AMD Processor Driver; C:\Windows\system32\DRIVERS\amdppm.sys S3 amdsata;amdsata; C:\Windows\system32\DRIVERS\amdsata.sys S3 amdsbs;amdsbs; C:\Windows\system32\DRIVERS\amdsbs.sys S3 AppID;@%systemroot%\system32\appidsvc.dll,-102; C:\Windows\system32\drivers\appid.sys S3 b06bdrv;Broadcom NetXtreme II VBD; C:\Windows\system32\DRIVERS\bxvbdx.sys S3 BDASwCap;AVerMedia A310 BDA DVBT Capture Device; C:\Windows\system32\drivers\AVerA310Cap.sys S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files\MediaCoder iPod Edition\SysInfo.sys S3 drmkaud;Pilotes audio approuvés par Microsoft; C:\Windows\system32\drivers\drmkaud.sys S3 ebdrv;Broadcom NetXtreme II 10 GigE VBD; C:\Windows\system32\DRIVERS\evbdx.sys S3 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\DRIVERS\errdev.sys S3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; C:\Windows\System32\drivers\FsDepends.sys S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys S3 hcw85cir;Hauppauge Consumer Infrared Receiver; C:\Windows\system32\drivers\hcw85cir.sys S3 HidBatt;HID UPS Battery Driver; C:\Windows\system32\DRIVERS\HidBatt.sys S3 HpSAMD;HpSAMD; C:\Windows\system32\DRIVERS\HpSAMD.sys S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys S3 LSI_SAS2;LSI_SAS2; C:\Windows\system32\DRIVERS\lsi_sas2.sys S3 MegaSR;MegaSR; C:\Windows\system32\DRIVERS\MegaSR.sys S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; C:\Windows\System32\drivers\mshidkmdf.sys S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys S3 MTConfig;Microsoft Input Configuration Driver; C:\Windows\system32\DRIVERS\MTConfig.sys S3 NdisCap;NDIS Capture LightWeight Filter; C:\Windows\system32\DRIVERS\ndiscap.sys S3 NETw4v32;Pilote de carte Intel(R) Wireless WiFi Link pour Windows Vista 32 bits; C:\Windows\system32\DRIVERS\NETw4v32.sys S3 rdpbus;Remote Desktop Device Redirector Bus Driver; C:\Windows\system32\DRIVERS\rdpbus.sys S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; C:\Windows\System32\DRIVERS\scfilter.sys S3 stexstor;stexstor; C:\Windows\system32\DRIVERS\stexstor.sys S3 UmPass;Microsoft UMPass Driver; C:\Windows\system32\DRIVERS\umpass.sys S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys S3 vhdmp;vhdmp; C:\Windows\system32\DRIVERS\vhdmp.sys S3 VNUSB;VN Series Device; C:\Windows\system32\DRIVERS\VNUSB.sys S3 vwifibus;@%SystemRoot%\System32\drivers\vwifibus.sys,-257; C:\Windows\System32\drivers\vwifibus.sys S3 WIMMount;WIMMount; C:\Windows\system32\drivers\wimmount.sys S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 ALaunchService;ALaunch Service; C:\Acer\ALaunch\ALaunchSvc.exe R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe R2 cvhsvc;Client Virtualization Handler; C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE R2 EFS;@%SystemRoot%\system32\efssvc.dll,-100; C:\Windows\System32\lsass.exe R2 eRecoveryService;eRecovery Service; C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe R2 MobilityService;MobilityService; C:\Acer\Mobility Center\MobilityService.exe R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe R2 Power;@%SystemRoot%\system32\umpo.dll,-100; C:\Windows\system32\svchost.exe R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; C:\Windows\system32\svchost.exe R2 RS_Service;Raw Socket Service; C:\Program Files\Acer\Acer VCM\RS_Service.exe R2 sftlist;Application Virtualization Client; C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe R2 SNMP;@%SystemRoot%\system32\snmp.exe,-3; C:\Windows\System32\snmp.exe R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe R3 HomeGroupProvider;@%SystemRoot%\System32\provsvc.dll,-100; C:\Windows\System32\svchost.exe R3 sftvsa;Application Virtualization Service Agent; C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe S2 gupdate1ca0556c29c4cf0;Service Google Update (gupdate1ca0556c29c4cf0); C:\Program Files\Google\Update\GoogleUpdate.exe S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe S2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; C:\Windows\system32\sppsvc.exe S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; C:\Windows\system32\svchost.exe S3 AxInstSV;@%SystemRoot%\system32\AxInstSV.dll,-103; C:\Windows\system32\svchost.exe S3 BDESVC;@%SystemRoot%\system32\bdesvc.dll,-100; C:\Windows\System32\svchost.exe S3 bthserv;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; C:\Windows\system32\svchost.exe S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe S3 fsssvc;Service Windows Live Contrôle parental; C:\Program Files\Windows Live\Family Safety\fsssvc.exe S3 HomeGroupListener;@%SystemRoot%\System32\ListSvc.dll,-100; C:\Windows\System32\svchost.exe S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe S3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE S3 SensrSvc;@%SystemRoot%\System32\sensrsvc.dll,-1000; C:\Windows\system32\svchost.exe S3 sppuinotify;@%SystemRoot%\system32\sppuinotify.dll,-103; C:\Windows\system32\svchost.exe S3 VaultSvc;@%SystemRoot%\system32\vaultsvc.dll,-1003; C:\Windows\system32\lsass.exe S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe S3 WbioSrvc;@%systemroot%\system32\wbiosrvc.dll,-100; C:\Windows\system32\svchost.exe S3 WwanSvc;@%SystemRoot%\System32\wwansvc.dll,-257; C:\Windows\system32\svchost.exe -----------------EOF-----------------

Nikoleo · Answer 15 · Posté le 23/03/2010 à 21:13:18

info.txt logfile of random's system information tool 1.06 2010-03-23 21:05:05 ======Uninstall list====== -->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER -->MsiExec /X{DD1865F0-AD73-40FB-B23E-1822E02396FF} -->MsiExec.exe /I{2EA870FA-585F-4187-903D-CB9FFD21E2E0} Acer Crystal Eye webcam-->C:\Program Files\InstallShield Installation Information\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}\setup.exe -runfromtemp -l0x040c -removeonly -u Acer Crystal Eye webcam-->C:\Program Files\InstallShield Installation Information\{AA047D7C-5E7C-4878-B75C-77589151B563}\setup.exe -runfromtemp -l0x0009 -removeonly Acer Mobility Center Plug-In-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{11316260-6666-467B-AC34-183FCB5D4335}\setup.exe" -l0x40c -removeonly Acer ScreenSaver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{79DD56FC-DB8B-47F5-9C80-78B62E05F9BC}\setup.exe" -l0x9 -removeonly Acer VCM-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{047F790A-7A2A-4B6A-AD02-38092BA63DAC}\setup.exe" -l0x40c -removeonly Activation Assistant for the 2007 Microsoft Office suites-->"C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}\Microsoft Office Activation Assistant.exe" REMOVE=TRUE MODIFY=FALSE Adobe AIR-->C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall Adobe AIR-->MsiExec.exe /I{A2BCA9F1-566C-4805-97D1-7FDC93386723} Adobe Flash Player 10 Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe Adobe Flash Player ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe Adobe Shockwave Player-->C:\Windows\System32\Adobe\SHOCKW~1\UNWISE.EXE C:\Windows\System32\Adobe\SHOCKW~1\Install.log AnumanLive-->"C:\Users\Nicolas\AppData\Roaming\Anuman Interactive\AnumanLive\AnumanLive.exe" /UNINSTALL Apple Application Support-->MsiExec.exe /I{3FA365DF-2D68-45ED-8F83-8C8A33E65143} Apple Mobile Device Support-->MsiExec.exe /I{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE} Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033} Architecture 3D 3.1 - Premium (Démonstration)-->"C:\Program Files\LiveCAD\Architecture 3D 3.1 - Premium (Démonstration)\unins000.exe" Architecture et construction 3D-->"C:\Program Files\Anuman Interactive\Architecture et construction 3D\unins000.exe" Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe Assistant de connexion Windows Live ID-->MsiExec.exe /X{10A44844-4465-456E-8C97-80BDD4F68845} Audacity 1.2.6-->"C:\Program Files\Audacity\unins000.exe" Audacity 1.3.7 (Unicode)-->"C:\Program Files\Audacity\Audacity 1.3 Beta (Unicode)\unins000.exe" Auto-école 3D-->"C:\Program Files\Anuman interactive\Auto-école 3D\unins000.exe" Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE BattleForge™-->MsiExec.exe /X{C580908C-B3BA-4C19-BD60-16F02F272201} Bing Maps 3D-->MsiExec.exe /I{2D87E961-577B-492B-AD54-1368680FB9A7} Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B} Bouygues Telecom Mes services en un clic-->msiexec /qb /x {8ED44FA5-DB47-4BF8-646C-4D5590D0363D} Bouygues Telecom Mes services en un clic-->MsiExec.exe /I{8ED44FA5-DB47-4BF8-646C-4D5590D0363D} Broadcom Gigabit Integrated Controller-->MsiExec.exe /X{D3B3B9B2-FE73-44CB-8C0A-F737D92F991B} BS Contact-->C:\Program Files\Bitmanagement Software\BS Contact\uninstall.exe CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe" City Life 2008-->C:\Program Files\Monte Cristo\City Life\uninst.exe Code de la route-->"C:\Program Files\Anuman Interactive\Code de la route\unins000.exe" Conseiller de mise à niveau vers Windows 7-->MsiExec.exe /I{4983AA07-81D0-4605-BF92-49A343056DC8} Crayon Physics Deluxe Demo - release 52-->"C:\Program Files\Crayon Physics Deluxe Demo\unins000.exe" Day Bank Station-->MsiExec.exe /X{60C3E356-BF63-49E4-8626-8ACBE58FC220} DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER DivX Plus DirectShow Filters-->C:\Program Files\DivX\DivXDSFiltersUninstall.exe /DSFILTERS DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN Documents To Go Desktop-->C:\Program Files\Documents To Go Desktop\Uninstaller.exe Download Manager 2.3.7-->C:\Program Files\Download Manager\uninst.exe DWGdirectX 2.5-->MsiExec.exe /I{98929AD0-0DE4-4BC9-B28F-C7B352450955} FileZilla Client 3.3.0-->C:\Program Files\FileZilla FTP Client\uninstall.exe FlashGet 1.9.6.1073-->C:\Program Files\FlashGet\uninst.exe Foxit PDF IFilter-->MsiExec.exe /I{4448ABF6-786D-4C3D-A49D-7BB237E6DD17} Foxit Reader-->C:\Program Files\Foxit Software\Foxit Reader\Uninstall.exe Galerie de photos Windows Live-->MsiExec.exe /X{B131E59D-202C-43C6-84C9-68F0C37541F1} Glary Utilities 2.20.0.831-->"C:\Program Files\Glary Utilities\unins000.exe" Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} Google Earth-->MsiExec.exe /X{2EAF7E61-068E-11DF-953C-005056806466} GSiteCrawler-->C:\PROGRA~1\Sitemap\GSITEC~1\UNWISE.EXE C:\PROGRA~1\Sitemap\GSITEC~1\INSTALL.LOG HDAUDIO Soft Data Fax Modem with SmartCP-->C:\Program Files\CONEXANT\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFAOR2C06_118\UIU32m.exe -U -IAcrZUn32z.inf Hello Engines! Standard 6-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{87D02B40-F778-42EA-A957-52BF0F0689FD}\setup.exe" -l0x9 -removeonly HijackThis 2.0.2-->"D:\Nicolas\Downloads\HiJackThis\HijackThis.exe" /uninstall HiJackThis-->MsiExec.exe /X{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A} IKEA Home Planner-->MsiExec.exe /I{B3276CB1-20B6-4AF9-AAEC-E72C83816495} Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe Installation Windows Live-->MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C063A63F31} Intel® Matrix Storage Manager-->C:\Windows\system32\imsmudlg.exe -uninstall iPhone Explorer 0.991-->"C:\Program Files\iPhone Explorer\unins000.exe" iPod Video Converter 3.90-->C:\Program Files\iPodRobot\iPod Video Converter\uninst.exe iTunes-->MsiExec.exe /I{F439D7AF-03F3-4F8E-AEC4-571BFE977C61} James Cameron's AVATAR(tm): THE GAME (Démo)-->"C:\Program Files\InstallShield Installation Information\{1DC4E424-5D92-4C92-B1E1-4BE4318E7136}\setup.exe" -runfromtemp -l0x040c -removeonly Java(TM) 6 Update 14-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF} Junk Mail filter update-->MsiExec.exe /I{E2DFE069-083E-4631-9B6C-43C48E991DE5} KC Softwares IDPhotoStudio-->"C:\Program Files\IDPhotoStudio\unins000.exe" KRISTAL Audio Engine-->C:\Program Files\Kreatives.org\KRISTAL Audio Engine\Uninstall.exe Launch Manager-->C:\Windows\UnInst32.exe QtZgAcer.UNI Lexmark 4800 Series-->C:\Program Files\Lexmark 4800 Series\Install\x86\Uninst.exe Lexmark 6200 Series-->C:\Program Files\Lexmark 6200 Series\Install\x86\Uninst.exe Line 6 Uninstaller-->C:\Program Files\Line6\Tools\Line 6 Uninstaller.exe Logiciel Intel(R) PROSet/Wireless WiFi-->MsiExec.exe /I{F22FD942-651D-4EE8-BD6F-7E0AF5E17625} Logitech Touch Mouse Server 1.0-->C:\Program Files\Logitech Touch Mouse Server\uninst.exe Magic Workstation 0.94f-->"C:\Program Files\Magic Workstation\unins000.exe" Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe" MediaCoder iPod Edition-->C:\Program Files\MediaCoder iPod Edition\uninst.exe Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570} Microsoft Device Emulator version 1.0 - ENU-->MsiExec.exe /X{78B75C6D-E53C-424C-BF83-4B63BD4A6682} Microsoft Money-->C:\Program Files\Microsoft Money 2005\MNYCoreFiles\Setup\uninst.exe /s:120 Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0044-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {B165D3C2-40AE-4D39-86F7-E5C87C4264C0} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {B165D3C2-40AE-4D39-86F7-E5C87C4264C0} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-00A1-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-00A1-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-00BA-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {91120000-002E-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B} Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE} Microsoft Office Click-to-Run 2010 (Beta)-->"C:\PROGRA~1\COMMON~1\MICROS~1\VIRTUA~1\CVHBS.EXE" /removeall Microsoft Office Click-to-Run 2010 (Beta)-->MsiExec.exe /I{20140000-006D-040C-0000-0000000FF1CE} Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE} Microsoft Office Groove MUI (French) 2007-->MsiExec.exe /X{90120000-00BA-040C-0000-0000000FF1CE} Microsoft Office Home and Student 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall HOMESTUDENTR /dll OSETUP.DLL Microsoft Office Home and Student 2007-->MsiExec.exe /X{91120000-002F-0000-0000-0000000FF1CE} Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE} Microsoft Office Live Add-in 1.4-->MsiExec.exe /I{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8} Microsoft Office OneNote MUI (French) 2007-->MsiExec.exe /X{90120000-00A1-040C-0000-0000000FF1CE} Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE} Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE} Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE} Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE} Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE} Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE} Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE} Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE} Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE} Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {14809F99-C601-4D4A-9391-F1E8FAA964C5} Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {14809F99-C601-4D4A-9391-F1E8FAA964C5} Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {A0516415-ED61-419A-981D-93596DA74165} Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {A0516415-ED61-419A-981D-93596DA74165} Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045} Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045} Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76BB86787} Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76BB86787} Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {D66D5A44-E480-4BA4-B4F2-C554F6B30EBB} Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {D66D5A44-E480-4BA4-B4F2-C554F6B30EBB} Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {187308AB-5FA7-4F14-9AB9-D290383A10D9} Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {187308AB-5FA7-4F14-9AB9-D290383A10D9} Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE} Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE} Microsoft Office Ultimate 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ULTIMATER /dll OSETUP.DLL Microsoft Office Ultimate 2007-->MsiExec.exe /X{91120000-002E-0000-0000-0000000FF1CE} Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE} Microsoft Outlook Hotmail Connector 32 bits (Beta)-->MsiExec.exe /X{25140000-0048-040C-0000-0000000FF1CE} Microsoft Photo Premium 10-->"C:\Program Files\Common Files\Microsoft Shared\Picture It!\RmvSuite.exe" ADDREMOVE=1 SKU=PREM Microsoft Silverlight-->MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} Microsoft SQL Server 2005 Compact Edition -->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c} Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475} Microsoft Works-->MsiExec.exe /I{6B1CB38D-E2E4-4A30-933D-EFDEBA76AD9C} Microsoft WorldWide Telescope-->MsiExec.exe /I{E7A9DCC5-8D19-4B95-BED8-2DB41F920F11} Mise à jour Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {B761869A-B85C-40E2-994C-A1CE78AC8F2C} Mise à jour Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {B761869A-B85C-40E2-994C-A1CE78AC8F2C} Mise à jour Microsoft Office Outlook 2007 Help (KB963677)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {51EFB347-1F3D-4BAC-8B79-F056B904FE21} Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {C3DCA38E-005E-41BA-A52A-7C3429F351C3} Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {C3DCA38E-005E-41BA-A52A-7C3429F351C3} Mise à jour Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {81536A04-DBFB-4DB3-978F-0F284590C223} Mise à jour Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {81536A04-DBFB-4DB3-978F-0F284590C223} MobileMe Control Panel-->MsiExec.exe /I{3AC54383-31D1-4907-961B-B12CBB1D0AE8} Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->C:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94} MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F} MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF} MSXML 4.0 SP2 (KB941833)-->MsiExec.exe /I{C523D256-313D-4866-B36A-F3DE528246EF} MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71} MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC} MTG Cropped Card Pics (up to Eventide)-->"C:\Program Files\Magic Workstation\Pics\unins000.exe" MTG GamePack for Magic Workstation-->"C:\Program Files\Magic Workstation\unins001.exe" NTI Backup NOW! 4.7-->"C:\Program Files\InstallShield Installation Information\{67ADE9AF-5CD9-4089-8825-55DE4B366799}\setup.exe" -removeonly NTI CD & DVD-Maker-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2} /l1036 CDM7 NVIDIA Drivers-->C:\Windows\system32\nvuninst.exe UninstallGUI NVIDIA PhysX-->MsiExec.exe /X{DD1865F0-AD73-40FB-B23E-1822E02396FF} Nvu 1.0PR-->"C:\Program Files\Nvu\unins000.exe" Olympus Digital Wave Player-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB91E774-867B-4567-ACE7-8144EF036068}\Setup.exe" -l0x40c OpenOffice.org 3.1-->MsiExec.exe /I{B2E581DB-C4DD-432C-AC84-ED761AC056BC} OpenSong Version 1.3.0-->"C:\Program Files\OpenSong\unins000.exe" Outil de mise à jour Google-->"C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -uninstall Outil de téléchargement Windows Live SkyDrive-->MsiExec.exe /I{2FD177C0-A752-11DC-8314-0800200C9A66} Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238} PDFCreator-->C:\Program Files\PDFCreator\unins000.exe PhotoFiltre-->"C:\Program Files\PhotoFiltre\Uninst.exe" Picthema-->"C:\Program Files\Picthema\unins000.exe" plist Editor for Windows 1.0.0-->C:\Program Files\iPodRobot\plist Editor for Windows\uninst.exe PowerProducer 3.72-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B7A0CE06-068E-11D6-97FD-0050BACBF861}\Setup.exe" -uninstall PrintMaster-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8DD144C1-5EAD-4D55-80A1-ACAF893A4FFE}\setup.exe" anything Qtpfsgui 1.9.3-->"C:\Program Files\Qtpfsgui\unins000.exe" QuickTime-->MsiExec.exe /I{1451DE6B-ABE1-4F62-BE9A-B363A17588A2} RICOH R5C83x/84x Flash Media Controller Driver Ver.3.52.02-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{59F6A514-9813-47A3-948C-8A155460CC2A}\Setup.exe" -l0x40c anything RocketDock 1.3.5-->"C:\Program Files\RocketDock\unins000.exe" Safari-->MsiExec.exe /I{D6E4E5D6-7693-4BB4-95BA-21F38FAFEE90} Security Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {91120000-002E-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08} Security Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08} Security Update for 2007 Microsoft Office System (KB978380)-->msiexec /package {91120000-002E-0000-0000-0000000FF1CE} /uninstall {667A88D1-0369-4070-A62A-70672D68A9BF} Security Update for 2007 Microsoft Office System (KB978380)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {667A88D1-0369-4070-A62A-70672D68A9BF} Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} Security Update for Microsoft Office Excel 2007 (KB978382)-->msiexec /package {91120000-002E-0000-0000-0000000FF1CE} /uninstall {6DE3DABF-0203-426B-B330-7287D1003E86} Security Update for Microsoft Office Excel 2007 (KB978382)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {6DE3DABF-0203-426B-B330-7287D1003E86} Security Update for Microsoft Office Outlook 2007 (KB972363)-->msiexec /package {91120000-002E-0000-0000-0000000FF1CE} /uninstall {120BE9A0-9B09-4855-9E0C-7DEE45CB03C0} Security Update for Microsoft Office PowerPoint 2007 (KB957789)-->msiexec /package {91120000-002E-0000-0000-0000000FF1CE} /uninstall {7559E742-FF9F-4FAE-B279-008ED296CB4D} Security Update for Microsoft Office PowerPoint 2007 (KB957789)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {7559E742-FF9F-4FAE-B279-008ED296CB4D} Security Update for Microsoft Office Publisher 2007 (KB969693)-->msiexec /package {91120000-002E-0000-0000-0000000FF1CE} /uninstall {7BE67088-1EB3-4569-8E75-DDAFBF61BC4E} Security Update for Microsoft Office system 2007 (972581)-->msiexec /package {91120000-002E-0000-0000-0000000FF1CE} /uninstall {3D019598-7B59-447A-80AE-815B703B84FF} Security Update for Microsoft Office system 2007 (972581)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {3D019598-7B59-447A-80AE-815B703B84FF} Security Update for Microsoft Office system 2007 (KB969613)-->msiexec /package {91120000-002E-0000-0000-0000000FF1CE} /uninstall {5ECEB317-CBE9-4E08-AB10-756CB6F0FB6C} Security Update for Microsoft Office system 2007 (KB969613)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {5ECEB317-CBE9-4E08-AB10-756CB6F0FB6C} Security Update for Microsoft Office system 2007 (KB974234)-->msiexec /package {91120000-002E-0000-0000-0000000FF1CE} /uninstall {FCD742B9-7A55-44BC-A776-F795F21FEDDC} Security Update for Microsoft Office system 2007 (KB974234)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {FCD742B9-7A55-44BC-A776-F795F21FEDDC} Security Update for Microsoft Office Visio Viewer 2007 (KB973709)-->msiexec /package {91120000-002E-0000-0000-0000000FF1CE} /uninstall {71127777-8B2C-4F97-AF7A-6CF8CAC8224D} Security Update for Microsoft Office Visio Viewer 2007 (KB973709)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {71127777-8B2C-4F97-AF7A-6CF8CAC8224D} Shockwave-->C:\Windows\System32\Macromed\SHOCKW~2\UNWISE.EXE C:\Windows\System32\Macromed\SHOCKW~2\INSTALL.LOG Sierra Print Artist 6.0-->C:\Windows\IsUn040c.exe -fC:\SIERRA\PA6\Uninst.isu -c"C:\SIERRA\PA6\PASTP.DLL" SimpleOCR 3.1-->C:\PROGRA~1\SIMPLE~1\UNWISE.EXE C:\PROGRA~1\SIMPLE~1\INSTALL.LOG Skype™ 4.0-->MsiExec.exe /X{24D753CA-6AE9-4E30-8F5F-EFC93E08BF3D} Switcher 2.0.0-->MsiExec.exe /X{F7DB6677-661D-4835-AAD8-1B7F4C98D7CE} Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall System Requirements Lab-->C:\Program Files\SystemRequirementsLab\Uninstall.exe The Endless Forest-->"C:\Program Files\Tale of Tales\The Endless Forest 3\unins000.exe" TSP_CODEC-->C:\Program Files\Bytescribe\TSP_CODEC\Uninst.exe /pid:{A90C03D6-08E1-4C59-B93B-6919A6C0AC19} /asd Unity Web Player-->C:\Program Files\Unity\WebPlayer\Uninstall.exe Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {91120000-002E-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D} Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D} Update for 2007 Microsoft Office System (KB977724)-->msiexec /package {91120000-002E-0000-0000-0000000FF1CE} /uninstall {CC0E469C-5006-48B9-BBDC-D11B562499B4} Update for 2007 Microsoft Office System (KB977724)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {CC0E469C-5006-48B9-BBDC-D11B562499B4} Update for Microsoft Office InfoPath 2007 (KB976416)-->msiexec /package {91120000-002E-0000-0000-0000000FF1CE} /uninstall {432C5EE4-8096-4FF1-95E1-65219365DFF7} Update for Microsoft Office InfoPath 2007 (KB976416)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {432C5EE4-8096-4FF1-95E1-65219365DFF7} Update for Microsoft Office Word 2007 (KB974561)-->msiexec /package {91120000-002E-0000-0000-0000000FF1CE} /uninstall {0CDDBAA2-2111-4A0E-A1B0-76C40C635331} Update for Microsoft Office Word 2007 (KB974561)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {0CDDBAA2-2111-4A0E-A1B0-76C40C635331} Update for Outlook 2007 Junk Email Filter (kb979895)-->msiexec /package {91120000-002E-0000-0000-0000000FF1CE} /uninstall {D45674C6-9127-4C84-8826-93FBC552DF53} Utilitaire de configuration iPhone-->MsiExec.exe /I{ECD59AE2-BEF4-4225-B0E9-3A81B5328D35} Utilitaire de téléchargement Metaboli pour NeverWinter Nights 2 (remove only)-->C:\Program Files\Metaboli Downloader\Metaboli DLM(377802)\Uninstall.exe VC80CRTRedist - 8.0.50727.762-->MsiExec.exe /I{767CC44C-9BBC-438D-BAD3-FD4595DD148B} VideoLAN VLC media player 0.8.6c-->C:\Program Files\VideoLAN\VLC\uninstall.exe VirtualCloneDrive-->"C:\Program Files\VirtualCloneDrive\vcd-uninst.exe" /D="C:\Program Files\VirtualCloneDrive" Web Acappella-->"C:\Program Files\Intuisphere\Web Acappella\unins000.exe" Winbond CIR Drivers-->MsiExec.exe /X{427967BF-09F8-46D5-9275-37001CCBBA5D} Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41} Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52} Windows Live Contrôle parental-->MsiExec.exe /X{D5D81435-B8DE-4CAF-867F-7998F2B92CFC} Windows Live FolderShare-->MsiExec.exe /X{2075CB0A-D26F-4DAA-B424-5079296B43BA} Windows Live Mail-->MsiExec.exe /I{5DD76286-9BE7-4894-A990-E905E91AC818} Windows Live Messenger-->MsiExec.exe /X{770F1BEC-2871-4E70-B837-FB8525FFA3B1} Windows Live Movie Maker-->MsiExec.exe /X{53B20C18-D8D4-4588-8737-9BBFE303C354} Windows Live Writer-->MsiExec.exe /X{4634B21A-CC07-4396-890C-2B8168661FEA} Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4} ======System event log====== Computer Name: PC-de-Nicolas Event Code: 7026 Message: Le pilote de démarrage système ou d’amorçage suivant n’a pas pu se charger : sptd Record Number: 157733 Source Name: Service Control Manager Time Written: 20091031202850.332240-000 Event Type: Erreur User: Computer Name: PC-de-Nicolas Event Code: 4 Message: Broadcom NetLink (TM) Gigabit Ethernet : le lien réseau est hors service. Vérifiez que le câble réseau est connecté correctement. Record Number: 157658 Source Name: b57nd60x Time Written: 20091031202820.953234-000 Event Type: Avertissement User: Computer Name: PC-de-Nicolas Event Code: 4 Message: Le pilote a détecté une erreur interne dans ses structures de données pour . Record Number: 157651 Source Name: sptd Time Written: 20091031202804.401605-000 Event Type: Erreur User: Computer Name: PC-de-Nicolas Event Code: 4001 Message: Le Service d’autoconfiguration WLAN s’est arrêté correctement. Record Number: 157645 Source Name: Microsoft-Windows-WLAN-AutoConfig Time Written: 20091031152103.302988-000 Event Type: Avertissement User: AUTORITE NT\Système Computer Name: PC-de-Nicolas Event Code: 10002 Message: Le module d’extensibilité WLAN s’est arrêté. Chemin d’accès du module : C:\Windows\System32\IWMSSvc.dll Record Number: 157644 Source Name: Microsoft-Windows-WLAN-AutoConfig Time Written: 20091031152103.209388-000 Event Type: Avertissement User: AUTORITE NT\Système =====Application event log===== Computer Name: PC-de-Nicolas Event Code: 1530 Message: Record Number: 14738 Source Name: Microsoft-Windows-User Profiles Service Time Written: 20081107005819.000000-000 Event Type: Avertissement User: AUTORITE NT\Système Computer Name: PC-de-Nicolas Event Code: 1530 Message: Record Number: 14461 Source Name: Microsoft-Windows-User Profiles Service Time Written: 20081105030049.000000-000 Event Type: Avertissement User: AUTORITE NT\Système Computer Name: PC-de-Nicolas Event Code: 1530 Message: Record Number: 14460 Source Name: Microsoft-Windows-User Profiles Service Time Written: 20081105030049.000000-000 Event Type: Avertissement User: AUTORITE NT\Système Computer Name: PC-de-Nicolas Event Code: 1530 Message: Record Number: 14380 Source Name: Microsoft-Windows-User Profiles Service Time Written: 20081104010004.000000-000 Event Type: Avertissement User: AUTORITE NT\Système Computer Name: PC-de-Nicolas Event Code: 1530 Message: Record Number: 14379 Source Name: Microsoft-Windows-User Profiles Service Time Written: 20081104010003.000000-000 Event Type: Avertissement User: AUTORITE NT\Système =====Security event log===== Computer Name: PC-de-Nicolas Event Code: 4648 Message: Tentative d’ouverture de session en utilisant des informations d’identification explicites. Sujet : ID de sécurité : S-1-5-18 Nom du compte : PC-DE-NICOLAS$ Domaine du compte : WORKGROUP ID d’ouverture de session : 0x3e7 GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000} Compte dont les informations d’identification ont été utilisées : Nom du compte : SYSTEM Domaine du compte : AUTORITE NT GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000} Serveur cible : Nom du serveur cible : localhost Informations supplémentaires : localhost Informations sur le processus : ID du processus : 0x2dc Nom du processus : C:\Windows\System32\services.exe Informations sur le réseau : Adresse du réseau : - Port : - Cet événement est généré lorsqu’un processus tente d’ouvrir une session pour un compte en spécifiant explicitement les informations d’identification de ce compte. Ceci se produit le plus souvent dans les configurations par lot comme les tâches planifiées, ou avec l’utilisation de la commande RUNAS. Record Number: 42623 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20090902145917.785000-000 Event Type: Succès de l’audit User: Computer Name: PC-de-Nicolas Event Code: 4672 Message: Privilèges spéciaux attribués à la nouvelle ouverture de session. Sujet : ID de sécurité : S-1-5-18 Nom du compte : SYSTEM Domaine du compte : AUTORITE NT ID d’ouverture de session : 0x3e7 Privilèges : SeAssignPrimaryTokenPrivilege SeTcbPrivilege SeSecurityPrivilege SeTakeOwnershipPrivilege SeLoadDriverPrivilege SeBackupPrivilege SeRestorePrivilege SeDebugPrivilege SeAuditPrivilege SeSystemEnvironmentPrivilege SeImpersonatePrivilege Record Number: 42622 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20090902145906.285000-000 Event Type: Succès de l’audit User: Computer Name: PC-de-Nicolas Event Code: 4624 Message: L’ouverture de session d’un compte s’est correctement déroulée. Sujet : ID de sécurité : S-1-5-18 Nom du compte : PC-DE-NICOLAS$ Domaine du compte : WORKGROUP ID d’ouverture de session : 0x3e7 Type d’ouverture de session : 5 Nouvelle ouverture de session : ID de sécurité : S-1-5-18 Nom du compte : SYSTEM Domaine du compte : AUTORITE NT ID d’ouverture de session : 0x3e7 GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000} Informations sur le processus : ID du processus : 0x2dc Nom du processus : C:\Windows\System32\services.exe Informations sur le réseau : Nom de la station de travail : Adresse du réseau source : - Port source : - Informations détaillées sur l’authentification : Processus d’ouverture de session : Advapi Package d’authentification : Negotiate Services en transit : - Nom du package (NTLM uniquement) : - Longueur de la clé : 0 Cet événement est généré lors de la création d’une ouverture de session. Il est généré sur l’ordinateur sur lequel l’ouverture de session a été effectuée. Le champ Objet indique le compte sur le système local qui a demandé l’ouverture de session. Il s’agit le plus souvent d’un service, comme le service Serveur, ou un processus local tel que Winlogon.exe ou Services.exe. Le champ Type d’ouverture de session indique le type d’ouverture de session qui s’est produit. Les types les plus courants sont 2 (interactif) et 3 (réseau). Le champ Nouvelle ouverture de session indique le compte pour lequel la nouvelle ouverture de session a été créée, par exemple, le compte qui s’est connecté. Les champs relatifs au réseau indiquent la provenance d’une demande d’ouverture de session à distance. Le nom de la station de travail n’étant pas toujours disponible, peut être laissé vide dans certains cas. Les champs relatifs aux informations d’authentification fournissent des détails sur cette demande d’ouverture de session spécifique. - Le GUID d’ouverture de session est un identificateur unique pouvant servir à associer cet événement à un événement KDC . - Les services en transit indiquent les services intermédiaires qui ont participé à cette demande d’ouverture de session. - Nom du package indique quel est le sous-protocole qui a été utilisé parmi les protocoles NTLM. - La longueur de la clé indique la longueur de la clé de session générée. Elle a la valeur 0 si aucune clé de session n’a été demandée. Record Number: 42621 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20090902145906.285000-000 Event Type: Succès de l’audit User: Computer Name: PC-de-Nicolas Event Code: 4648 Message: Tentative d’ouverture de session en utilisant des informations d’identification explicites. Sujet : ID de sécurité : S-1-5-18 Nom du compte : PC-DE-NICOLAS$ Domaine du compte : WORKGROUP ID d’ouverture de session : 0x3e7 GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000} Compte dont les informations d’identification ont été utilisées : Nom du compte : SYSTEM Domaine du compte : AUTORITE NT GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000} Serveur cible : Nom du serveur cible : localhost Informations supplémentaires : localhost Informations sur le processus : ID du processus : 0x2dc Nom du processus : C:\Windows\System32\services.exe Informations sur le réseau : Adresse du réseau : - Port : - Cet événement est généré lorsqu’un processus tente d’ouvrir une session pour un compte en spécifiant explicitement les informations d’identification de ce compte. Ceci se produit le plus souvent dans les configurations par lot comme les tâches planifiées, ou avec l’utilisation de la commande RUNAS. Record Number: 42620 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20090902145906.285000-000 Event Type: Succès de l’audit User: Computer Name: PC-de-Nicolas Event Code: 4672 Message: Privilèges spéciaux attribués à la nouvelle ouverture de session. Sujet : ID de sécurité : S-1-5-18 Nom du compte : SYSTEM Domaine du compte : AUTORITE NT ID d’ouverture de session : 0x3e7 Privilèges : SeAssignPrimaryTokenPrivilege SeTcbPrivilege SeSecurityPrivilege SeTakeOwnershipPrivilege SeLoadDriverPrivilege SeBackupPrivilege SeRestorePrivilege SeDebugPrivilege SeAuditPrivilege SeSystemEnvironmentPrivilege SeImpersonatePrivilege Record Number: 42619 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20090902145817.846000-000 Event Type: Succès de l’audit User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC "PROCESSOR_ARCHITECTURE"=x86 "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "USERNAME"=SYSTEM "windir"=%SystemRoot% "PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\ "NUMBER_OF_PROCESSORS"=2 "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 23 Stepping 6, GenuineIntel "PROCESSOR_REVISION"=1706 "Path"=%CommonProgramFiles%\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\DivX Shared\;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\QuickTime\QTSystem\ "CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip "QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip -----------------EOF-----------------

Oyi450y · Answer 16 · Posté le 23/03/2010 à 23:50:01

On voit que avez un problème avec le logiciel Daemond Tools. Probablement relier au Q:\. Désinstallaer le logiciel. Donc quel icone du panneau de configuration n'ouvre pas et quel est le message précis ?

Nikoleo · Answer 17 · Posté le 24/03/2010 à 22:26:07

Daemon Tools n'est plus sur le PC, il y a Alcoohol 52% mais aucun lecteur virtuel. Comment faire ? Dans le panneau de configuration, il n'y a aucun message, juste un retour sur le bureau, avec un clignotement de l'écran, et les icones de la zone de notification qui disparaissent, et se relancent les uns à la suite des autres. Par exemple quand j'essaye d'ouvrir le par-feu.

Oyi450y · Answer 18 · Posté le 25/03/2010 à 01:15:08

Je ne connais pas ce logiciel désoler! Pour en revenir à l'infection faire ceci: 1. Télécharger Kaspersky tdsskiller http://support.kaspersky.com/downloads/utils/tdsskiller.zip Le décompresser dans un nouveau dossier sur votre disque dur ou sur le bureau. Cliquer-droit - "Extraire ici". Supprimer TDSSKiller.zip. Fermer tout et désactiver antivirus et tout autre programme de protection. Renommer TDSSKiller.exe en ordi.com puis lancer le programme et patienter jusqu'à la fin de l'analyse. Lorsque terminé, le programme va vous demander d'écrire le mot Delete et "Y" pour redémarrer pour finir la désinfection et il va se désactive lui-même. Le rapport généré est sauvegardé à la racine de la partition système (normalement C:\). Le nom du log est X:\TDSSKiller.version_JJ.MM.AAAA_HH.MN.SS_log.txt. Si tout va bien, continuer en #4. 2. Télécharger le démo de 30 jours de Hitman Pro http://www.surfright.nl/en/hitmanpro qui est pleinement fonctionnel et scanner votre machine. Redémarrer si demandé. Prendre la version 32 ou 64 bits selon votre Windows.

Nikoleo · Answer 19 · Posté le 25/03/2010 à 22:42:22

Nikoleo

J'ai le message suivant avec tdsskiler

http://img683.imageshack.us/img683/7051/capturexf.jpg

Hitman pro n'a rien trouvé.

Oyi450y · Answer 20 · Posté le 25/03/2010 à 23:59:50

C'est correct. Faire ceci maintenant: Scanner avec le scan en ligne de ESET et me mettre le log ici: http://www.eset-nod32.fr/scanner.html Log ici: C:\Program Files\EsetOnlineScanner\log.txt

Nikoleo · Answer 21 · Posté le 27/03/2010 à 23:34:09

ESETSmartInstaller@High as downloader log: all ok esets_scanner_update returned -1 esets_gle=0 # version=7 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6211 # api_version=3.0.2 # EOSSerial=62aa9f080f2dd54b9dd4768a72437651 # end=finished # remove_checked=true # archives_checked=false # unwanted_checked=true # unsafe_checked=false # antistealth_checked=true # utc_time=2010-03-27 10:32:57 # local_time=2010-03-27 11:32:57 (+0100, Paris, Madrid) # country="France" # lang=1036 # osver=6.1.7600 NT # compatibility_mode=512 16777215 100 0 358077 358077 0 0 # compatibility_mode=1797 16775165 100 100 38824 65793086 6498 0 # compatibility_mode=5893 16776638 100 85 22168398 22168398 0 0 # compatibility_mode=8192 67108863 100 0 3663 3663 0 0 # scanned=0 # found=0 # cleaned=0 # scan_time=0

Nikoleo · Answer 22 · Posté le 01/04/2010 à 17:41:51

Nikoleo

Bonjour,

Pas de solution ?

Oyi450y · Answer 23 · Posté le 02/04/2010 à 01:16:31

Oyi450y

En mode sans échec cela fonctionne ?

Nikoleo · Answer 24 · Posté le 12/05/2010 à 16:34:11

Nikoleo

Bonjour,

Une mise à jour de windows 7 semble avoir résolut le problème. Merci de votre aide.