S'abonner :

Newsletters

Magazines

01men.

Avis sur les produits

Avis sur les logiciels

Avis sur les jeux

Actualités

A propos de 01net

187 utilisateurs connectés

Forum de 01net / Sécurité / Impossible de naviguer sur internet

Impossible de naviguer sur internet

bdav137 le 27 mai 2009 à 19h18

Bonjour,

Je vous explique mon problème : J'ai un PC portable avec lequel je ne parvient pas à naviguer sur internet que ce soit avec mozilla ou explorer.

J'ai fait le ménage pourtant, passé Antivir, Malwarebytes, CCleaner mais rien à faire.

Ma connection fonctionne cependant. Je peux utiliser Messenger, le ping google.com me renvoit des réponses positives.

Aider moi s'il vous plait je ne vois pas d'où peut venir le problème.

J'ai une connection 3G+ mais c'est pareil en wifi c'est à dire que ça ne change rien à mon problème. La clé fonctionne d'ailleurs très bien sur un autre ordinateur donc chose sûre, ce n'est pas matériel.

Je pense à un virus ou une mauvaise configuration pare feu ou autre

Merci de votre aide, voici mon log Hijackthis :

BON COURAGE

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:15:22, on 27/05/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18226)
Boot mode: Normal

EDITION MODERATEUR : Règle du forum à respecter :

Pas de rapport avant qu'il n'en soit demandé un !

Veuillez lire l'article suivant :
http://forum.telecharger.01net.com/telecharger/securite_virus_et_assimiles/a_(...)

Merci d'en prendre connaissance.

-->Message édité par totoftotof le 27/05/2009 20:25:12<--

répondre

bdav137 le 27 mai 2009 à 20h57

Effectivement je m'en excuse c'est pour cela que j'avais réédité pensant pouvoir supprimer l'autre sujet pour éviter ainsi les doublons.

Dans mon second j'avais enlevé le log

Merci de m'apporter une aide.

J'en ai grand besoin.

Encore désolé

répondre

Curson le 27 mai 2009 à 21h34

Bonsoir,

Télécharge OTViewIt de OldTimer sur ton bureau.

- Ferme toutes les fenêtres et applications.
- Double clique sur OTViewIt.exe pour le lancer.
- Dans la liste déroulante "File Age" choisis : 30 days (ou selon votre choix)
- Clique sur le bouton "Run Scan".
- Patiente quelques minutes.
- le bloc note va s'ouvrir, poste les deux rapports obtenus dans ta prochaine réponse.

Cordialement.

-------
Si votre sujet reste sans réponse, merci de le signaler ici.

répondre

bdav137 le 27 mai 2009 à 22h39

Extra :

OTViewIt Extras logfile created on: 27/05/2009 22:27:00 - Run 3
OTViewIt by OldTimer - Version 1.0.21.0 Folder = G:\
Windows Vista Home Basic Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

1,99 Gb Total Physical Memory | 1,21 Gb Available Physical Memory | 61,03% Memory free
4,00 Gb Paging File | 3,33 Gb Available in Paging File | 83,37% Paging File free
Paging file location(s): ?:\pagefile.sys;

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 101,78 Gb Total Space | 43,25 Gb Free Space | 42,49% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
Drive G: | 951,62 Mb Total Space | 593,02 Mb Free Space | 62,32% Space Free | Partition Type: FAT32
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PC-DE-BENOÎT
Current User Name: Benoît
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Whitelist: On
File Age = 30 Days

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- C:\Programmes\Internet Explorer\iexplore.exe File not found

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval"=1
"UacDisableNotify"=0
"InternetSettingsDisableNotify"=0
"AutoUpdateDisableNotify"=0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring"=1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring"=1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride"=0
"AntiSpywareOverride"=0
"FirewallOverride"=0
"VistaSp1"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
"EnableFirewall"=1
"DisableNotifications"=0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\Logging]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

========== (O10) Winsock2 Catalogs ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\]
NameSpace_Catalog5\Catalog_Entries\000000000001 [@%SystemRoot%\system32\nlasvc.dll,-1000] -- C:\Windows\System32\nlaapi.dll (Microsoft Corporation)
NameSpace_Catalog5\Catalog_Entries\000000000002 [@%SystemRoot%\system32\napinsp.dll,-1000] -- C:\Windows\System32\NapiNSP.dll (Microsoft Corporation)
NameSpace_Catalog5\Catalog_Entries\000000000003 [@%SystemRoot%\system32\pnrpnsp.dll,-1000] -- C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
NameSpace_Catalog5\Catalog_Entries\000000000004 [@%SystemRoot%\system32\pnrpnsp.dll,-1001] -- C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)

========== HKEY_LOCAL_MACHINE Protocol Defaults ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults - Default Protocols
ldap -- 4 = Restricted sites (Not a Default Protocol)
news -- 4 = Restricted sites (Not a Default Protocol)
nntp -- 4 = Restricted sites (Not a Default Protocol)
oecmd -- 4 = Restricted sites (Not a Default Protocol)
snews -- 4 = Restricted sites (Not a Default Protocol)

========== (O18) Protocol Handlers ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\]
File not found C:\Programmes\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (livecall:{828030A1-22C1-4009-854F-8E305202313F} (HKLM) [Reg Error: Value does not exist or could not be read.])
File not found C:\Programmes\Common Files\microsoft shared\Help\hxds.dll (ms-help:{314111c7-a502-11d2-bbca-00c04f8ec294} (HKLM) [HxProtocol Class])
File not found c:\Programmes\Common Files\microsoft shared\Information Retrieval\msitss.dll (ms-itss:{0A9007C0-4076-11D3-8789-0000F8105754} (HKLM) [Microsoft Infotech Storage Protocol for IE 4.0])
File not found C:\Programmes\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (msnim:{828030A1-22C1-4009-854F-8E305202313F} (HKLM) [Reg Error: Value does not exist or could not be read.])
File not found C:\Programmes\Common Files\Skype\Skype4COM.dll (skype4com:{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} (HKLM) [IEProtocolHandler Class])
File not found C:\Programmes\Windows Live\Mail\mailcomm.dll (wlmailhtml:{03C514A3-1EFB-4856-9F99-10D7BE1653C0} (HKLM) [Windows Live Mail HTML Asynchronous Pluggable Protocol Handler])

========== (O18) Protocol Filters ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\] - Protocol Filters
File not found C:\Programmes\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL text/xml:{807563E5-5146-11D5-A672-00B0D022E945} (HKLM) [Microsoft Office InfoPath XML Mime Filter]

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0A8C97AD-DEED-4894-B446-3ABA95A77D0D}"=Windows Live Toolbar
"{0CA6047C-D28B-4295-834A-07C52BA20C2D}"=Extension de Windows Live Toolbar (Windows Live Toolbar)
"{0CC70FEF-5068-4CD5-B4DE-86FFD98EC929}"=Menus intelligents (Windows Live Toolbar)
"{12EFA1A4-AC3B-443C-8143-237EDE760403}"=NTI Backup Now Standard
"{18D10072035C4515918F7E37EAFAACFC}"=AutoUpdate
"{20471B27-D702-4FE8-8DEC-0702CC8C0A85}"=InterVideo WinDVD 8
"{2413930C-8309-47A6-BC61-5EF27A4222BC}"=NTI Media Maker 8
"{299F6B9B-0C63-4F97-95AA-8FB1AE96F6E9}"=The Fate Of Hellas
"{2D0822EC-391F-4D67-A59A-F6EC1087C732}"=Seven Kingdoms Conquest
"{3DFF4274-EBB0-4356-9692-972965018954}"=Windows Live Writer
"{5695B707-C5A9-4EF4-9534-31A798683362}"=The Club
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}"=Skype™ 3.8
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}"=Activation Assistant for the 2007 Microsoft Office suites
"{6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C}"=Microsoft Works
"{7299052b-02a4-4627-81f2-1818da5d550d}"=Microsoft Visual C++ 2005 Redistributable
"{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}"=Windows Live Favorites pour Windows Live Toolbar
"{7F811A54-5A09-4579-90E1-C93498E230D9}"=eMachines Recovery Management
"{81B5F83F-2291-48B0-8375-36B63A9BF5B0}"=Surligneur (Windows Live Toolbar)
"{90120000-0016-040C-0000-0000000FF1CE}"=Microsoft Office Excel MUI (French) 2007
"{90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{A0353900-21A2-42CF-B973-883500A027F7}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0018-040C-0000-0000000FF1CE}"=Microsoft Office PowerPoint MUI (French) 2007
"{90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{A0353900-21A2-42CF-B973-883500A027F7}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001B-040C-0000-0000000FF1CE}"=Microsoft Office Word MUI (French) 2007
"{90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{A0353900-21A2-42CF-B973-883500A027F7}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0401-0000-0000000FF1CE}"=Microsoft Office Proof (Arabic) 2007
"{90120000-001F-0401-0000-0000000FF1CE}_HOMESTUDENTR_{5A2F65A4-808F-4A1E-973E-92E17824982D}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0407-0000-0000000FF1CE}"=Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0409-0000-0000000FF1CE}"=Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{3EC77D26-799B-4CD8-914F-C1565E796173}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-040C-0000-0000000FF1CE}"=Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{430971B1-C31E-45DA-81E0-72C095BAB72C}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0413-0000-0000000FF1CE}"=Microsoft Office Proof (Dutch) 2007
"{90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{B3F4DC34-7F60-4B7C-A79F-1C13012D99D4}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0C0A-0000-0000000FF1CE}"=Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{F7A31780-33C4-4E39-951A-5EC9B91D7BF1}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-002C-040C-0000-0000000FF1CE}"=Microsoft Office Proofing (French) 2007
"{90120000-006E-040C-0000-0000000FF1CE}"=Microsoft Office Shared MUI (French) 2007
"{90120000-006E-040C-0000-0000000FF1CE}_HOMESTUDENTR_{EC50B538-CBE1-42E6-B7FE-87AA540AADFB}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-00A1-040C-0000-0000000FF1CE}"=Microsoft Office OneNote MUI (French) 2007
"{90120000-00A1-040C-0000-0000000FF1CE}_HOMESTUDENTR_{A0353900-21A2-42CF-B973-883500A027F7}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}"=Intel(R) Matrix Storage Manager
"{91120000-002F-0000-0000-0000000FF1CE}"=Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}"=Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}"=ALPS Touch Pad Driver
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}"=Microsoft Visual C++ 2005 Redistributable
"{AC76BA86-7AD7-1033-7B44-A81000000003}"=Adobe Reader 8.1.0
"{B5761811-28F3-4257-B537-815C5EEF472C}"=Vodafone Mobile Connect Lite
"{BADF6744-3787-48F6-B8C9-4C4995401D65}"=Windows Live Messenger
"{C514C594-23AA-4F13-A070-DB8BDB27594F}"=Windows Live Mail
"{CE386A4E-D0DA-4208-8235-BCE43275C694}"=LightScribe 1.4.142.1
"{D1B01DC9-CBAF-45F9-A387-7D00C11B630E}"=Microsoft Games for Windows - LIVE Redistributable
"{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}"=Assistant de connexion Windows Live
"{E80F62FF-5D3C-4A19-8409-9721F2928206}"=LiveUpdate (Symantec Corporation)
"{ECA1A3B6-898F-4DCE-9F04-714CF3BA126B}"=Adobe Flash Player 10 Plugin
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}"=Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}"=Realtek High Definition Audio Driver
"{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}"=Windows Live installer
"Activation Assistant for the 2007 Microsoft Office suites"=Activation Assistant for the 2007 Microsoft Office suites
"Adobe Flash Player ActiveX"=Adobe Flash Player ActiveX
"Avira AntiVir Desktop"=Avira AntiVir Personal - Free Antivirus
"CCleaner"=CCleaner (remove only)
"eMule"=eMule
"HDMI"=Intel(R) Graphics Media Accelerator Driver
"HijackThis"=HijackThis 2.0.2
"HOMESTUDENTR"=Microsoft Office Home and Student 2007
"InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}"=NTI Backup Now 5
"InstallShield_{20471B27-D702-4FE8-8DEC-0702CC8C0A85}"=InterVideo WinDVD 8
"InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}"=NTI Media Maker 8
"InstallShield_{5695B707-C5A9-4EF4-9534-31A798683362}"=The Club
"KLiteCodecPack_is1"=K-Lite Codec Pack 4.8.5 (Full)
"LimeWire"=LimeWire 5.1.2
"Live-Player"=Live-Player
"LManager"=Launch Manager
"Malwarebytes' Anti-Malware_is1"=Malwarebytes' Anti-Malware
"Mozilla Firefox (3.0.10)"=Mozilla Firefox (3.0.10)
"OpenAL"=OpenAL
"PsuedoLiveUpdate"=LiveUpdate (Symantec Corporation)
"Video Convert Master_is1"=Video Convert Master v3.5
"Windows Live Toolbar"=Windows Live Toolbar

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Live Search"=Notification Live Search

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 19/05/2009 06:10:15 | Computer Name = PC-de-Benoît | Source = WinMgmt | ID = 10
Description =

Error - 19/05/2009 06:25:47 | Computer Name = PC-de-Benoît | Source = Automatic LiveUpdate Scheduler | ID = 101
Description = Niveau d'information : error Echec de lancement de LiveUpdate automatique
: err:0x2; Le fichier spécifié est introuvable. .

Error - 19/05/2009 06:30:48 | Computer Name = PC-de-Benoît | Source = Automatic LiveUpdate Scheduler | ID = 101
Description = Niveau d'information : error Echec de lancement de LiveUpdate automatique
: err:0x2; Le fichier spécifié est introuvable. .

Error - 19/05/2009 06:35:48 | Computer Name = PC-de-Benoît | Source = Automatic LiveUpdate Scheduler | ID = 101
Description = Niveau d'information : error Echec de lancement de LiveUpdate automatique
: err:0x2; Le fichier spécifié est introuvable. .

Error - 22/05/2009 07:24:29 | Computer Name = PC-de-Benoît | Source = WinMgmt | ID = 10
Description =

Error - 22/05/2009 12:49:09 | Computer Name = PC-de-Benoît | Source = WinMgmt | ID = 10
Description =

Error - 23/05/2009 09:29:39 | Computer Name = PC-de-Benoît | Source = WinMgmt | ID = 10
Description =

Error - 23/05/2009 09:36:35 | Computer Name = PC-de-Benoît | Source = WinMgmt | ID = 10
Description =

Error - 23/05/2009 09:57:08 | Computer Name = PC-de-Benoît | Source = Automatic LiveUpdate Scheduler | ID = 101
Description = Niveau d'information : error Echec de lancement de LiveUpdate automatique
: err:0x2; Le fichier spécifié est introuvable. .

Error - 26/05/2009 09:55:11 | Computer Name = PC-de-Benoît | Source = WinMgmt | ID = 10
Description =

[ System Events ]
Error - 14/04/2009 14:00:48 | Computer Name = PC-de-Benoît | Source = HTTP | ID = 15016
Description =

Error - 15/04/2009 15:12:12 | Computer Name = PC-de-Benoît | Source = HTTP | ID = 15016
Description =

Error - 15/04/2009 15:26:11 | Computer Name = PC-de-Benoît | Source = Server | ID = 2505
Description = Le serveur n'a pas pu se lier au transport \Device\NetBT_Tcpip_{A73CCE26-F165-41AD-A18A-1A0C8F5F8193}
car un autre ordinateur du réseau porte le même nom. Le serveur n'a pas pu démarrer.

Error - 16/04/2009 15:04:15 | Computer Name = PC-de-Benoît | Source = HTTP | ID = 15016
Description =

Error - 17/04/2009 15:13:05 | Computer Name = PC-de-Benoît | Source = HTTP | ID = 15016
Description =

Error - 19/04/2009 04:59:41 | Computer Name = PC-de-Benoît | Source = HTTP | ID = 15016
Description =

Error - 24/04/2009 05:20:09 | Computer Name = PC-de-Benoît | Source = HTTP | ID = 15016
Description =

Error - 24/04/2009 05:22:10 | Computer Name = PC-de-Benoît | Source = Server | ID = 2505
Description = Le serveur n'a pas pu se lier au transport \Device\NetBT_Tcpip_{A73CCE26-F165-41AD-A18A-1A0C8F5F8193}
car un autre ordinateur du réseau porte le même nom. Le serveur n'a pas pu démarrer.

Error - 24/04/2009 06:27:43 | Computer Name = PC-de-Benoît | Source = HTTP | ID = 15016
Description =

Error - 27/04/2009 12:39:55 | Computer Name = PC-de-Benoît | Source = HTTP | ID = 15016
Description =

< End of report >

répondre

bdav137 le 27 mai 2009 à 22h39

OtViewIt :

OTViewIt logfile created on: 27/05/2009 22:26:59 - Run 3
OTViewIt by OldTimer - Version 1.0.21.0 Folder = G:\
Windows Vista Home Basic Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

1,99 Gb Total Physical Memory | 1,21 Gb Available Physical Memory | 61,03% Memory free
4,00 Gb Paging File | 3,33 Gb Available in Paging File | 83,37% Paging File free
Paging file location(s): ?:\pagefile.sys;

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 101,78 Gb Total Space | 43,25 Gb Free Space | 42,49% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
Drive G: | 951,62 Mb Total Space | 593,02 Mb Free Space | 62,32% Space Free | Partition Type: FAT32
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PC-DE-BENOÎT
Current User Name: Benoît
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Whitelist: On
File Age = 30 Days

========== Processes ==========

[2008/01/21 04:33:13 | 00,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wininit.exe
[2008/01/21 04:33:15 | 00,229,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsm.exe
[2008/01/21 04:34:50 | 02,623,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLsvc.exe
[2008/01/21 04:34:32 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwm.exe
[2008/01/21 04:34:32 | 00,169,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskeng.exe
[2009/04/01 15:46:04 | 00,108,289 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
[2008/01/21 04:34:32 | 00,169,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskeng.exe
[2009/03/02 13:09:54 | 00,185,089 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
[2008/03/03 13:11:14 | 00,016,384 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
[2008/04/03 17:28:58 | 00,024,576 | ---- | M] () -- C:\Program Files\EMACHINES\eMachines Recovery Management\Service\ETService.exe
[2007/07/12 16:36:12 | 00,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
[2007/01/04 19:48:52 | 00,112,152 | R--- | M] (InterVideo) -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
[2007/01/17 11:20:10 | 00,061,440 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe
[2008/04/06 22:42:24 | 00,050,424 | ---- | M] (NewTech InfoSystems, Inc.) -- C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
[2008/04/04 03:03:14 | 00,131,072 | ---- | M] () -- C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
[2008/05/27 07:18:43 | 00,439,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchIndexer.exe
[2008/01/21 04:33:00 | 01,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
[2007/07/12 16:36:10 | 00,178,712 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
[2008/01/22 16:21:40 | 00,141,848 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxtray.exe
[2008/01/22 16:21:38 | 00,166,424 | ---- | M] (Intel Corporation) -- C:\Windows\System32\hkcmd.exe
[2008/01/22 16:21:40 | 00,133,656 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxpers.exe
[2008/04/24 11:25:52 | 06,111,232 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
[2008/01/22 16:21:40 | 00,256,536 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxsrvc.exe
[2008/05/13 12:31:00 | 00,768,520 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\LManager.exe
[2008/04/06 22:42:36 | 00,034,040 | ---- | M] () -- C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe
[2007/07/21 12:18:14 | 00,159,744 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\Apoint2K\Apoint.exe
[2009/03/02 13:08:11 | 00,209,153 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
[2007/03/29 16:41:26 | 00,222,128 | ---- | M] (Macrovision Corporation) -- C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe
[2008/12/22 11:33:13 | 00,143,360 | ---- | M] (Microsoft Corporation) -- C:\Users\Benoît\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe
[2008/12/22 11:33:13 | 00,125,440 | ---- | M] (Microsoft Corporation) -- C:\Users\Benoît\AppData\Roaming\Microsoft\Live Search\Mise-a-jour-LiveSearch.exe
[2007/05/22 08:18:56 | 00,050,736 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\Apoint2K\ApMsgFwd.exe
[2008/01/22 16:21:40 | 00,170,520 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxext.exe
[2008/01/22 16:21:40 | 00,256,536 | ---- | M] (Intel Corporation) -- C:\Windows\System32\igfxsrvc.exe
[2007/06/06 10:44:44 | 00,049,152 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\Apoint2K\Apntex.exe
[2008/02/09 04:06:00 | 00,238,968 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
[2009/03/03 04:16:04 | 00,247,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WmiPrvSE.exe
[2008/01/21 04:34:48 | 00,142,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WUDFHost.exe
[2009/05/27 22:16:18 | 00,422,912 | ---- | M] (OldTimer Tools) -- G:\OTViewIt.exe
[2008/01/21 04:33:11 | 00,151,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\notepad.exe
[2008/01/21 04:33:11 | 00,151,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\notepad.exe

========== (O23) Win32 Services ==========

File not found -- -- (AntiVirSchedulerService [Auto | Running])
File not found -- -- (AntiVirService [Auto | Running])
File not found -- -- (Automatic LiveUpdate Scheduler [Auto | Running])
File not found -- -- (BUNAgentSvc [Auto | Running])
File not found -- -- (CertPropSvc [Unknown | Stopped])
[2008/07/27 20:03:13 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
File not found -- -- (DcomLaunch [Unknown | Running])
[2008/01/21 04:33:11 | 02,091,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dfsr.exe -- (DFSR [On_Demand | Stopped])
[2008/01/21 04:34:19 | 00,134,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dps.dll -- (DPS [Unknown | Running])
File not found -- -- (ETService [Auto | Running])
[2008/01/21 04:35:12 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
[2008/01/21 04:34:44 | 00,574,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gpsvc.dll -- (gpsvc [Unknown | Running])
File not found -- -- (IAANTMON [Auto | Running])
File not found -- -- (IviRegMgr [Auto | Running])
File not found -- -- (LightScribeService [Auto | Running])
File not found -- -- (LiveUpdate [On_Demand | Stopped])
[2008/10/18 04:13:33 | 00,000,000 | ---D | M] -- C:\Windows\System32\Msdtc -- (MSDTC [Unknown | Stopped])
[2008/01/21 04:35:13 | 00,122,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
File not found -- -- (NTIBackupSvc [Auto | Running])
File not found -- -- (NTISchedulerSvc [Auto | Running])
File not found -- -- (odserv [On_Demand | Stopped])
File not found -- -- (ose [On_Demand | Stopped])
[2008/01/21 04:34:01 | 00,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SCardSvr.dll -- (SCardSvr [Unknown | Stopped])
File not found -- -- (Schedule [Unknown | Running])
File not found -- -- (SCPolicySvc [Unknown | Stopped])
[2008/01/21 04:34:50 | 02,623,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLsvc.exe -- (slsvc [Auto | Running])
[2006/11/02 11:45:46 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\snmptrap.exe -- (SNMPTRAP [On_Demand | Stopped])
[2008/01/21 04:33:45 | 00,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UI0Detect.exe -- (UI0Detect [On_Demand | Stopped])
File not found -- -- (usnjsvc [On_Demand | Stopped])
[2008/01/21 04:34:50 | 00,382,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vds.exe -- (vds [On_Demand | Stopped])
File not found -- -- (WdiServiceHost [Unknown | Stopped])
File not found -- -- (WdiSystemHost [Unknown | Running])
File not found -- -- (WLSetupSvc [On_Demand | Stopped])
[2008/05/27 07:18:43 | 00,439,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchIndexer.exe -- (WSearch [Auto | Running])

========== Driver Services ==========

[2008/01/21 04:32:46 | 00,422,968 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\adp94xx.sys -- (adp94xx [Disabled | Stopped])
[2008/01/21 04:32:51 | 00,300,600 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\adpahci.sys -- (adpahci [Disabled | Stopped])
[2008/01/21 04:32:52 | 00,101,432 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\adpu160m.sys -- (adpu160m [Disabled | Stopped])
[2008/01/21 04:32:53 | 00,149,560 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\adpu320.sys -- (adpu320 [Disabled | Stopped])
[2006/11/02 11:50:11 | 00,071,272 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\djsvs.sys -- (aic78xx [Disabled | Stopped])
[2008/01/21 04:32:21 | 00,017,464 | ---- | M] (Acer Laboratories Inc.) -- C:\Windows\System32\drivers\aliide.sys -- (aliide [Disabled | Stopped])
[2008/01/21 04:32:22 | 00,057,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\AMDAGP.SYS -- (amdagp [On_Demand | Stopped])
[2008/01/21 04:32:21 | 00,017,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\amdide.sys -- (amdide [Disabled | Stopped])
[2008/01/21 04:32:21 | 00,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\amdk7.sys -- (AmdK7 [Disabled | Stopped])
[2008/01/21 04:32:21 | 00,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\amdk8.sys -- (AmdK8 [Disabled | Stopped])
[2007/12/11 11:42:44 | 00,163,376 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Windows\System32\drivers\Apfiltr.sys -- (ApfiltrService [On_Demand | Running])
[2008/01/21 04:32:49 | 00,079,416 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\arc.sys -- (arc [Disabled | Stopped])
[2008/01/21 04:32:50 | 00,079,928 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\arcsas.sys -- (arcsas [Disabled | Stopped])
[2007/07/30 16:13:10 | 00,743,424 | ---- | M] (Atheros Communications, Inc.) -- C:\Windows\System32\drivers\athr.sys -- (athr [On_Demand | Running])
File not found -- -- (avgio [System | Running])
[2009/03/24 16:07:58 | 00,055,640 | ---- | M] (Avira GmbH) -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt [Auto | Running])
[2009/03/30 10:32:47 | 00,096,104 | ---- | M] (Avira GmbH) -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb [System | Running])
[2007/07/22 09:00:44 | 00,180,736 | ---- | M] (Broadcom Corporation) -- C:\Windows\System32\drivers\b57nd60x.sys -- (b57nd60x [On_Demand | Running])
[2008/01/21 04:32:22 | 00,045,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\blbdrive.sys -- (blbdrive [Disabled | Stopped])
[2008/01/21 04:33:26 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\bowser.sys -- (bowser [On_Demand | Running])
[2006/11/02 10:24:45 | 00,013,568 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\System32\drivers\BrFiltLo.sys -- (BrFiltLo [On_Demand | Stopped])
[2006/11/02 10:24:46 | 00,005,248 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\System32\drivers\BrFiltUp.sys -- (BrFiltUp [On_Demand | Stopped])
[2006/11/02 10:25:24 | 00,071,808 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\BrSerId.sys -- (Brserid [Disabled | Stopped])
[2006/11/02 10:24:44 | 00,062,336 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\BrSerWdm.sys -- (BrSerWdm [Disabled | Stopped])
[2006/11/02 10:24:44 | 00,012,160 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\BrUsbMdm.sys -- (BrUsbMdm [Disabled | Stopped])
[2006/11/02 10:24:47 | 00,011,904 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\BrUsbSer.sys -- (BrUsbSer [On_Demand | Stopped])
[2006/11/02 10:55:23 | 00,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\bthmodem.sys -- (BTHMODEM [Disabled | Stopped])
[2008/01/21 04:32:51 | 00,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\circlass.sys -- (circlass [Disabled | Stopped])
[2008/01/21 04:33:27 | 00,247,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\clfs.sys -- (CLFS [Unknown | Running])
[2008/01/21 04:32:21 | 00,019,000 | ---- | M] (CMD Technology, Inc.) -- C:\Windows\System32\drivers\cmdide.sys -- (cmdide [Disabled | Stopped])
[2008/01/21 04:32:48 | 00,024,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\crcdisk.sys -- (crcdisk [Boot | Running])
[2008/01/21 04:32:21 | 00,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\crusoe.sys -- (Crusoe [Disabled | Stopped])
[2008/01/21 04:34:44 | 00,075,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\dfsc.sys -- (DfsC [System | Running])
[2008/05/13 12:31:00 | 00,021,264 | ---- | M] (Dritek System Inc.) -- C:\Windows\System32\drivers\DKbFltr.sys -- (DKbFltr [On_Demand | Running])
File not found -- -- (DritekPortIO [System | Running])
[2008/08/02 03:01:23 | 00,625,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgkrnl.sys -- (DXGKrnl [On_Demand | Running])
[2008/01/21 04:32:50 | 00,118,784 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60 [On_Demand | Stopped])
[2008/01/21 04:33:07 | 00,143,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ecache.sys -- (Ecache [Boot | Running])
[2008/01/21 04:32:48 | 00,342,584 | ---- | M] (Emulex) -- C:\Windows\System32\drivers\elxstor.sys -- (elxstor [Disabled | Stopped])
[2008/01/21 04:32:21 | 00,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\errdev.sys -- (ErrDev [Disabled | Stopped])
[2008/01/21 04:34:54 | 00,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\exfat.sys -- (exfat [On_Demand | Stopped])
[2008/01/21 04:33:40 | 00,058,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\fileinfo.sys -- (FileInfo [Boot | Running])
[2008/01/21 04:34:01 | 00,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\filetrace.sys -- (Filetrace [On_Demand | Stopped])
[2008/01/21 04:32:47 | 00,061,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\GAGP30KX.SYS -- (gagp30kx [On_Demand | Stopped])
[2006/11/02 09:36:49 | 00,235,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\HdAudio.sys -- (HdAudAddService [On_Demand | Stopped])
[2008/01/21 04:32:47 | 00,053,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\hdaudbus.sys -- (HDAudBus [On_Demand | Running])
[2006/11/02 10:55:22 | 00,029,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidbth.sys -- (HidBth [Disabled | Stopped])
[2006/11/02 10:55:01 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidir.sys -- (HidIr [Disabled | Stopped])
[2008/01/21 04:32:52 | 00,040,504 | ---- | M] (Hewlett-Packard Company) -- C:\Windows\System32\drivers\HpCISSs.sys -- (HpCISSs [Disabled | Stopped])
[2007/11/05 12:56:58 | 00,101,504 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\Windows\System32\drivers\ewusbmdm.sys -- (hwdatacard [On_Demand | Stopped])
[2007/07/12 16:35:02 | 00,305,176 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\iaStor.sys -- (iaStor [Boot | Running])
[2008/01/21 04:32:49 | 00,235,064 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\iaStorV.sys -- (iaStorV [Disabled | Stopped])
[2008/03/20 22:37:22 | 00,261,680 | ---- | M] (Symantec Corporation) -- C:\ProgramData\Symantec\Definitions\SymcData\ipsdefs\20080813.001\IDSvix86.sys -- (IDSvix86 [System | Running])
[2008/01/22 16:21:38 | 02,016,256 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\igdkmd32.sys -- (igfx [On_Demand | Running])
[2006/11/02 11:50:17 | 00,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) -- C:\Windows\System32\drivers\iirsp.sys -- (iirsp [Disabled | Stopped])
[2008/04/03 17:23:38 | 00,015,392 | ---- | M] (Acer, Inc.) -- C:\Windows\System32\drivers\int15.sys -- (int15 [Auto | Running])
[2008/04/24 12:20:44 | 02,126,688 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService [On_Demand | Running])
[2008/01/21 04:32:48 | 00,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\IPMIDrv.sys -- (IPMIDRV [Disabled | Stopped])
[2008/01/21 04:32:22 | 00,181,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\msiscsi.sys -- (iScsiPrt [On_Demand | Running])
[2006/11/02 11:50:07 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\System32\drivers\iteatapi.sys -- (iteatapi [Disabled | Stopped])
[2006/11/02 11:50:09 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\System32\drivers\iteraid.sys -- (iteraid [Disabled | Stopped])
[2008/01/21 04:32:49 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\kbdhid.sys -- (kbdhid [Disabled | Stopped])
[2008/01/21 04:34:21 | 00,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\lltdio.sys -- (lltdio [Auto | Running])
[2008/01/21 04:32:49 | 00,096,312 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\lsi_fc.sys -- (LSI_FC [Disabled | Stopped])
[2008/01/21 04:32:51 | 00,089,656 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\lsi_sas.sys -- (LSI_SAS [Disabled | Stopped])
[2008/01/21 04:32:48 | 00,096,312 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\lsi_scsi.sys -- (LSI_SCSI [Disabled | Stopped])
[2008/01/21 04:34:22 | 00,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\luafv.sys -- (luafv [Auto | Running])
[2008/01/21 04:32:53 | 00,031,288 | ---- | M] (LSI Corporation) -- C:\Windows\System32\drivers\megasas.sys -- (megasas [Disabled | Stopped])
[2008/01/21 04:32:52 | 00,386,616 | ---- | M] (LSI Corporation, Inc.) -- C:\Windows\System32\drivers\MegaSR.sys -- (MegaSR [Disabled | Stopped])
[2008/01/21 04:32:47 | 00,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\monitor.sys -- (monitor [On_Demand | Running])
[2008/01/21 04:32:45 | 00,105,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\mpio.sys -- (mpio [Disabled | Stopped])
[2008/01/21 04:34:35 | 00,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\mpsdrv.sys -- (mpsdrv [On_Demand | Running])
[2006/11/02 11:49:59 | 00,033,384 | ---- | M] (LSI Logic Corporation) -- C:\Windows\System32\drivers\Mraid35x.sys -- (Mraid35x [Disabled | Stopped])
[2008/08/27 03:05:41 | 00,212,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\mrxsmb10.sys -- (mrxsmb10 [On_Demand | Running])
[2008/01/21 04:34:15 | 00,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\mrxsmb20.sys -- (mrxsmb20 [On_Demand | Running])
[2008/01/21 04:32:21 | 00,028,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\msahci.sys -- (msahci [Disabled | Stopped])
[2008/01/21 04:32:47 | 00,094,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\msdsm.sys -- (msdsm [Disabled | Stopped])
[2008/01/21 04:32:22 | 00,016,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\msisadrv.sys -- (msisadrv [Boot | Running])
[2008/01/21 04:34:07 | 00,163,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\msrpc.sys -- (MsRPC [On_Demand | Stopped])
[2008/05/20 04:07:31 | 00,148,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\nwifi.sys -- (NativeWifiP [On_Demand | Running])
[2006/11/02 11:50:19 | 00,045,160 | ---- | M] (IBM Corporation) -- C:\Windows\System32\drivers\nfrd960.sys -- (nfrd960 [Disabled | Stopped])
[2008/01/21 04:34:35 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\nsiproxy.sys -- (nsiproxy [System | Running])
[2008/01/30 11:52:06 | 00,014,848 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Windows\System32\drivers\NTIDrvr.sys -- (NTIDrvr [On_Demand | Running])
[2006/11/02 09:36:50 | 00,020,608 | ---- | M] (N-trig Innovative Technologies) -- C:\Windows\System32\drivers\ntrigdigi.sys -- (ntrigdigi [Disabled | Stopped])
[2008/01/21 04:32:47 | 00,102,968 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvraid.sys -- (nvraid [Disabled | Stopped])
[2008/01/21 04:32:47 | 00,045,112 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvstor.sys -- (nvstor [Disabled | Stopped])
[2008/01/21 04:32:22 | 00,109,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\NV_AGP.SYS -- (nv_agp [On_Demand | Stopped])
[2006/11/02 11:04:35 | 00,878,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\PEAuth.sys -- (PEAUTH [Auto | Running])
[2008/04/05 03:21:42 | 00,072,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\pacer.sys -- (PSched [System | Running])
[2008/01/21 04:32:50 | 01,122,360 | ---- | M] (QLogic Corporation) -- C:\Windows\System32\drivers\ql2300.sys -- (ql2300 [Disabled | Stopped])
[2006/11/02 11:50:35 | 00,106,088 | ---- | M] (QLogic Corporation) -- C:\Windows\System32\drivers\ql40xx.sys -- (ql40xx [Disabled | Stopped])
[2008/01/21 04:32:58 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\qwavedrv.sys -- (QWAVEdrv [On_Demand | Stopped])
[2008/01/21 04:34:56 | 00,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\rassstp.sys -- (RasSstp [On_Demand | Running])
[2008/01/21 04:34:38 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\RDPENCDD.sys -- (RDPENCDD [System | Running])
[2007/04/17 20:09:28 | 00,011,032 | ---- | M] (InterVideo) -- C:\Windows\System32\drivers\regi.sys -- (regi [Auto | Running])
[2008/01/21 04:34:21 | 00,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\rspndr.sys -- (rspndr [Auto | Running])
[2006/11/02 11:50:16 | 00,076,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\sbp2port.sys -- (sbp2port [Disabled | Stopped])
[2006/11/02 08:37:21 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv [Auto | Running])
[2008/01/21 04:32:45 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\sermouse.sys -- (sermouse [Disabled | Stopped])
[2008/01/21 04:32:49 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\sffdisk.sys -- (sffdisk [Disabled | Stopped])
[2008/01/21 04:32:49 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\sffp_mmc.sys -- (sffp_mmc [On_Demand | Stopped])
[2008/01/21 04:32:49 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\sffp_sd.sys -- (sffp_sd [On_Demand | Stopped])
[2008/01/21 04:32:22 | 00,055,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\SISAGP.SYS -- (sisagp [On_Demand | Stopped])
[2008/01/21 04:32:51 | 00,041,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\sisraid2.sys -- (SiSRaid2 [Disabled | Stopped])
[2008/01/21 04:32:52 | 00,074,808 | ---- | M] (Silicon Integrated Systems) -- C:\Windows\System32\drivers\sisraid4.sys -- (SiSRaid4 [Disabled | Stopped])
[2008/01/21 04:34:49 | 00,066,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\smb.sys -- (Smb [System | Running])
[2008/01/21 04:33:48 | 00,021,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\spldr.sys -- (spldr [Boot | Running])
[2008/01/21 04:34:49 | 00,144,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\srv2.sys -- (srv2 [On_Demand | Running])
[2008/01/21 04:33:17 | 00,098,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\srvnet.sys -- (srvnet [On_Demand | Running])
[2009/02/13 12:49:30 | 00,028,376 | ---- | M] (Avira GmbH) -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv [System | Running])
[2006/11/02 11:50:05 | 00,035,944 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\symc8xx.sys -- (Symc8xx [Disabled | Stopped])
[2008/06/13 14:13:38 | 00,013,616 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\symdns.sys -- (SYMDNS [On_Demand | Running])
[2008/05/22 06:05:31 | 00,123,952 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent [On_Demand | Running])
[2008/06/13 14:13:38 | 00,096,432 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\symfw.sys -- (SYMFW [On_Demand | Running])
[2008/06/13 14:13:40 | 00,041,008 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\symndisv.sys -- (SYMNDISV [On_Demand | Running])
[2008/06/13 14:13:38 | 00,022,320 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\symredrv.sys -- (SYMREDRV [On_Demand | Running])
[2008/06/13 14:13:40 | 00,184,240 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\symtdi.sys -- (SYMTDI [System | Running])
[2006/11/02 11:49:56 | 00,031,848 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\sym_hi.sys -- (Sym_hi [Disabled | Stopped])
[2006/11/02 11:50:03 | 00,034,920 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\sym_u3.sys -- (Sym_u3 [Disabled | Stopped])
[2008/01/21 04:33:13 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\tcpipreg.sys -- (tcpipreg [Auto | Running])
[2008/01/21 04:34:42 | 00,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\tdx.sys -- (tdx [System | Running])
[2008/01/21 04:34:49 | 00,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\tssecsrv.sys -- (tssecsrv [On_Demand | Stopped])
[2008/01/21 04:34:06 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\TUNMP.SYS -- (tunmp [On_Demand | Running])
[2008/01/21 04:34:06 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\tunnel.sys -- (tunnel [On_Demand | Running])
[2008/01/21 04:32:47 | 00,059,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\UAGP35.SYS -- (uagp35 [On_Demand | Stopped])
[2008/01/30 11:51:50 | 00,013,824 | ---- | M] (NewTech Infosystems Corporation) -- C:\Windows\System32\drivers\UBHelper.sys -- (UBHelper [Boot | Running])
[2008/01/21 04:32:22 | 00,060,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ULIAGPKX.SYS -- (uliagpkx [On_Demand | Stopped])
[2008/01/21 04:32:45 | 00,238,648 | ---- | M] (ULi Electronics Inc.) -- C:\Windows\System32\drivers\uliahci.sys -- (uliahci [Disabled | Stopped])
[2006/11/02 11:50:35 | 00,098,408 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\System32\drivers\ulsata.sys -- (UlSata [Disabled | Stopped])
[2008/01/21 04:32:49 | 00,115,816 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\System32\drivers\ulsata2.sys -- (ulsata2 [Disabled | Stopped])
[2008/01/21 04:32:48 | 00,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\umbus.sys -- (umbus [On_Demand | Running])
[2006/11/02 10:55:09 | 00,068,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbcir.sys -- (usbcir [Disabled | Stopped])
[2008/01/21 04:32:52 | 00,134,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbvideo.sys -- (usbvideo [On_Demand | Running])
[2008/01/21 04:32:23 | 00,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\vgapnp.sys -- (vga [On_Demand | Stopped])
[2008/01/21 04:32:21 | 00,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\viac7.sys -- (ViaC7 [Disabled | Stopped])
[2008/01/21 04:32:21 | 00,020,024 | ---- | M] (VIA Technologies, Inc.) -- C:\Windows\System32\drivers\viaide.sys -- (viaide [Disabled | Stopped])
[2008/01/21 04:32:22 | 00,052,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\volmgr.sys -- (volmgr [Boot | Running])
[2008/01/21 04:34:08 | 00,294,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\volmgrx.sys -- (volmgrx [Boot | Running])
[2008/01/21 04:32:49 | 00,130,616 | ---- | M] (VIA Technologies Inc.,Ltd) -- C:\Windows\System32\drivers\vsmraid.sys -- (vsmraid [Disabled | Stopped])
[2006/11/02 10:52:52 | 00,020,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\wacompen.sys -- (WacomPen [Disabled | Stopped])
[2008/01/21 04:32:50 | 00,022,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\wd.sys -- (Wd [Disabled | Stopped])
[2008/01/21 04:33:23 | 00,503,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\Wdf01000.sys -- (Wdf01000 [Boot | Running])
[2008/01/21 04:32:21 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\wmiacpi.sys -- (WmiAcpi [On_Demand | Running])
[2008/01/21 04:34:35 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ws2ifsl.sys -- (ws2ifsl [Disabled | Stopped])

========== (R ) Internet Explorer ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main]
"Default_Page_URL"=http://www.gateway.com/g/startpage.html?Ch=Retail&SubCH=&Br=EM&Loc=FRN_FR&Sys=PTB&M=eMachines E510
"Default_Search_URL"=http://go.microsoft.com/fwlink/?LinkId=54896
"Default_Secondary_Page_URL"=
"Extensions Off Page"=about:NoAdd-ons
"Local Page"=%SystemRoot%\system32\blank.htm
"Search Page"=http://www.shareware.pro/misc/search.htm/fr
"Security Risk Page"=about:SecurityRisk
"Start Page"=http://www.shareware.pro/misc/search.htm/fr

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Search]
"SearchAssistant"=http://www.gateway.com/g/sidepanel.html?Ch=Retail&SubCH=&Br=EM&Loc=FRN_FR&Sys=PTB&M=eMachines E510

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main]
"Default_Page_URL"=http://www.gateway.com/g/startpage.html?Ch=Retail&SubCH=&Br=EM&Loc=FRN_FR&Sys=PTB&M=eMachines E510
"Default_Secondary_Page_URL"=
"Local Page"=C:\Windows\system32\blank.htm
"Page_Transitions"=
"Search Page"=http://www.shareware.pro/misc/search.htm/fr
"Start Page"=http://www.shareware.pro/misc/search.htm/fr
"StartPageCache"=

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Search]
"AutoSearch"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/saautosearch.aspx
"CustomizeSearch"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
"SearchAssistant"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURL]
""=http://www.google.com/keyword/%s

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{CFBFAE00-17A6-11D0-99CB-00C04FD64497}" (HKLM) -- C:\Windows\System32\ieframe.dll (Microsoft Corporation)

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"ProxyEnable" = 0

========== (O1) Hosts File ==========

HOSTS File = (761 bytes) - C:\Windows\System32\drivers\etc\Hosts
First 25 entries...
127.0.0.1 localhost
::1 localhost

========== (O2) BHO's ==========

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\]
{02478D38-C3F9-4efb-9B51-7695ECA05670} (HKLM) -- Reg Error: Key does not exist or could not be opened. File not found
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (HKLM) -- C:\Programmes\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll File not found
{22BF413B-C6D2-4d91-82A9-A0F997BA588C} (HKLM) -- C:\Programmes\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll File not found
{7E853D72-626A-48EC-A868-BA8D5E23E045} (HKLM) -- Reg Error: Key does not exist or could not be opened. File not found
{9030D464-4C02-4ABF-8ECC-5164760863C6} (HKLM) -- C:\Programmes\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll File not found
{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} (HKLM) -- C:\Programmes\Windows Live Toolbar\msntb.dll File not found

========== (O3) Toolbars ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar]
"{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}" (HKLM) -- C:\Programmes\Windows Live Toolbar\msntb.dll File not found

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}" (HKLM) -- C:\Programmes\Windows Live Toolbar\msntb.dll File not found

========== (O4) Run Keys ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" File not found
"Apoint"=C:\Program Files\Apoint2K\Apoint.exe File not found
"avgnt"="C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min File not found
"BkupTray"="C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe" File not found
"EdenFlirt"=C:\Program Files\Eden Flirt\EdenFlirt.exe File not found
"eRecoveryService"= File not found
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe (Intel Corporation)
"IAAnotif"="C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" File not found
"IgfxTray"=C:\Windows\system32\igfxtray.exe (Intel Corporation)
"LManager"=C:\PROGRA~1\LAUNCH~1\LManager.exe File not found
"Persistence"=C:\Windows\system32\igfxpers.exe (Intel Corporation)
"RtHDVCpl"=RtHDVCpl.exe (Realtek Semiconductor)
"WarReg_PopUp"=C:\Program Files\eMachines\WR_PopUp\WarReg_PopUp.exe File not found
"Windows Defender"=%ProgramFiles%\Windows Defender\MSASCui.exe -hide File not found

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM"="C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe" -scheduler (Macrovision Corporation)
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background File not found
"Skype"="C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized File not found
"VMCL"=C:\Program Files\vodafone\vmclite\DongleEnumerator.exe File not found

========== (O6 & O7) Current Version Policies ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]
"ConsentPromptBehaviorAdmin"=2
"ConsentPromptBehaviorUser"=1
"EnableInstallerDetection"=1
"EnableLUA"=1
"EnableSecureUIAPaths"=1
"EnableVirtualization"=1
"PromptOnSecureDesktop"=1
"ValidateAdminCodeSignatures"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"scforceoption"=0
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"FilterAdministratorToken"=0
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats]
"CF_TEXT"=1
"CF_BITMAP"=2
"CF_OEMTEXT"=7
"CF_DIB"=8
"CF_PALETTE"=9
"CF_UNICODETEXT"=13
"CF_DIBV5"=17

========== (O8) IE Context Menu Extensions ==========

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\]
&Windows Live Search: C:\Programmes\Windows Live Toolbar\msntb.dll File not found
Add to Windows &Live Favorites: File not found

========== (O9) IE Extensions ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\]
{219C3416-8CB2-491a-A3C7-D9FCDDC9D600}: Button: Ajout Direct -- %SystemDrive%\Programmes\Windows Live\Writer\WriterBrowserExtension.dll File not found
{219C3416-8CB2-491a-A3C7-D9FCDDC9D600}: Menu: &Ajout Direct dans Windows Live Writer -- %SystemDrive%\Programmes\Windows Live\Writer\WriterBrowserExtension.dll File not found
{2670000A-7350-4f3c-8081-5663EE0C6C49}: Button: Envoyer à OneNote -- %SystemDrive%\Programmes\Microsoft Office\Office12\ONBttnIE.dll File not found
{2670000A-7350-4f3c-8081-5663EE0C6C49}: Menu: &Envoyer à OneNote -- %SystemDrive%\Programmes\Microsoft Office\Office12\ONBttnIE.dll File not found
{77BF5300-1474-4EC7-9980-D32B190E9B07}: Button: Skype -- %SystemDrive%\Programmes\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll File not found
{92780B25-18CC-41C8-B9BE-3C9C571A8263}: Button: Research -- %SystemDrive%\Programmes\Microsoft Office\Office12\REFIEBAR.DLL File not found

========== (O12) Internet Explorer Plugins ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\]
PluginsPage: "" = http://activex.microsoft.com/controls/find.asp?ext=%s&mime=%s
PluginsPageFriendlyName: "" = Microsoft ActiveX Gallery

========== (O13) Default Prefixes ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix]
""=http://

========== (O17) DNS Name Servers ==========

{1196BF8E-05D6-4FA3-85B5-06074EBBD05B} (Servers: | Description: Atheros AR5007EG Wireless Network Adapter)
{57C5C998-A458-4AB9-AE2F-AE9CBCA0200B} (Servers: | Description: Broadcom NetLink (TM) Gigabit Ethernet)

========== (O20) Winlogon Notify Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\]
igfxcui: "DllName" = igfxdev.dll -- C:\Windows\System32\igfxdev.dll (Intel Corporation)

========== HKLM *SecurityProviders* ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders]
"SecurityProviders"=credssp.dll
>[2008/01/21 04:34:21 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\credssp.dll

========== LSA *Security Packages* ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"Security Packages"=kerberos,msv1_0,schannel,wdigest,tspkg,
>[2008/01/21 04:34:21 | 00,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TSpkg.dll

========== Safeboot Options ==========

"AlternateShell"=cmd.exe

========== CDRom AutoRun Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom]
"AutoRun" = 1

========== Autorun Files on Drives ==========

autoexec.bat [REM Dummy file for NTVDM | ]
[2006/09/18 23:43:36 | 00,000,024 | ---- | M] () -- C:\autoexec.bat -- [ NTFS ]

========== MountPoints2 ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{332b4253-ad73-11dd-98aa-001eec4b541f}\Shell\AutoRun\command]
""=E:\

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{332b4253-ad73-11dd-98aa-001eec4b541f}\Shell\explore\Command]
""=E:\RECYCLED\INFO.exe -- File not found

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{332b4253-ad73-11dd-98aa-001eec4b541f}\Shell\open\Command]
""=E:\RECYCLED\INFO.exe -- File not found

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{41fd4cbc-66d1-11dd-9a89-001eec4b541f}\Shell\Auto\command]
""=AdobeR.exe e

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{41fd4cbc-66d1-11dd-9a89-001eec4b541f}\Shell\AutoRun\command]
""=C:\Windows\System32\shell32.dll -- [2008/11/06 15:14:25 | 11,580,928 | ---- | M] (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{64e1feba-79fa-11dd-9d6b-001eec4b541f}\Shell]
""=AutoRun

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{64e1feba-79fa-11dd-9d6b-001eec4b541f}\Shell\AutoRun\command]
""=E:\browsercall.exe PhotoServiceEditionSetup.exe -- File not found

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9906d603-05b9-11de-b6c3-001eec4b541f}\Shell]
""=AutoRun

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9906d603-05b9-11de-b6c3-001eec4b541f}\Shell\AutoRun\command]
""=E:\StartVMCLite.exe -- File not found

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9906d608-05b9-11de-b6c3-001eec4b541f}\Shell]
""=AutoRun

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9906d608-05b9-11de-b6c3-001eec4b541f}\Shell\AutoRun\command]
""=E:\StartVMCLite.exe -- File not found

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a0f1597a-09a9-11de-bcde-001eec4b541f}\Shell\AutoRun\command]
""=C:\Windows\System32\shell32.dll -- [2008/11/06 15:14:25 | 11,580,928 | ---- | M] (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{baa52902-a278-11dd-9903-001eec4b541f}\Shell\AutoRun\command]
""=E:\d.com -- File not found

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{baa52902-a278-11dd-9903-001eec4b541f}\Shell\explore\Command]
""=E:\d.com -- File not found

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{baa52902-a278-11dd-9903-001eec4b541f}\Shell\open\Command]
""=E:\d.com -- File not found

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cb3bea6a-e3f6-11dd-b6f0-001eec4b541f}\Shell]
""=AutoRun

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cb3bea6a-e3f6-11dd-b6f0-001eec4b541f}\Shell\AutoRun\command]
""=E:\StartVMCLite.exe -- File not found

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cb3bea9f-e3f6-11dd-b6f0-001eec4b541f}\Shell]
""=AutoRun

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cb3bea9f-e3f6-11dd-b6f0-001eec4b541f}\Shell\AutoRun\command]
""=E:\StartVMCLite.exe -- File not found

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e5f19cc9-0bbb-11de-9941-001eec4b541f}\Shell]
""=AutoRun

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e5f19cc9-0bbb-11de-9941-001eec4b541f}\Shell\AutoRun\command]
""=E:\StartVMCLite.exe -- File not found

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e5f19cca-0bbb-11de-9941-001eec4b541f}\Shell]
""=AutoRun

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e5f19cca-0bbb-11de-9941-001eec4b541f}\Shell\AutoRun\command]
""=E:\StartVMCLite.exe -- File not found

========== Files/Folders - Created Within 30 Days ==========

[2009/05/27 08:22:58 | 00,168,448 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2009/05/27 08:22:57 | 00,000,414 | ---- | C] () -- C:\Windows\System32\lame_acm.xml
[2009/05/27 08:22:57 | 00,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2009/05/27 08:22:56 | 00,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\Windows\System32\lameACM.acm
[2009/05/27 08:22:56 | 00,795,648 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2009/05/27 08:22:56 | 00,217,088 | ---- | C] (www.helixcommunity.org) -- C:\Windows\System32\yv12vfw.dll
[2009/05/27 08:22:56 | 00,130,048 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2009/05/27 08:22:56 | 00,118,784 | ---- | C] (fccHandler) -- C:\Windows\System32\ac3acm.acm
[2009/05/27 08:22:54 | 00,084,480 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2009/05/27 08:22:52 | 00,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack
[2009/05/27 08:21:12 | 00,000,874 | ---- | C] () -- C:\Users\Benoît\Desktop\WinAVI MP4 Converter.lnk
[2009/05/27 08:21:11 | 00,000,000 | ---D | C] -- C:\Program Files\WinAVI MP4 Converter
[2009/05/27 08:19:33 | 00,000,783 | ---- | C] () -- C:\Users\Benoît\Desktop\Video Convert Master.lnk
[2009/05/27 08:19:29 | 00,487,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcp70.dll
[2009/05/27 08:19:29 | 00,425,984 | ---- | C] () -- C:\Windows\System32\xvid.dll
[2009/05/27 08:19:29 | 00,413,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MPG4c32.dll
[2009/05/27 08:19:29 | 00,316,640 | ---- | C] () -- C:\Windows\System32\WMSysPr9.prx
[2009/05/27 08:19:29 | 00,262,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MPG4ds32.ax
[2009/05/27 08:19:29 | 00,053,248 | ---- | C] () -- C:\Windows\System32\xvid.ax
[2009/05/27 08:19:29 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml3a.dll
[2009/05/27 08:19:26 | 00,000,000 | ---D | C] -- C:\Program Files\Video Convert Master
[2009/05/27 07:54:51 | 00,000,612 | ---- | C] () -- C:\Windows\WININIT.INI
[2009/05/26 23:15:34 | 00,001,672 | ---- | C] () -- C:\Users\Benoît\Desktop\CCleaner.lnk
[2009/05/26 23:15:34 | 00,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2009/05/26 23:09:10 | 00,001,876 | ---- | C] () -- C:\Users\Benoît\Desktop\HijackThis.lnk
[2009/05/26 23:09:10 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2009/05/26 23:06:18 | 00,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2009/05/26 23:06:18 | 00,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2009/05/26 19:46:00 | 00,000,000 | ---D | C] -- C:\Users\Benoît\AppData\Roaming\Malwarebytes
[2009/05/26 19:45:59 | 00,000,820 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/05/26 19:45:58 | 00,015,504 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2009/05/26 19:45:56 | 00,038,496 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2009/05/26 19:45:55 | 00,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2009/05/26 19:45:55 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009/05/26 19:40:59 | 00,001,849 | ---- | C] () -- C:\Users\Public\Desktop\Avira AntiVir Control Center.lnk
[2009/05/26 19:40:49 | 00,096,104 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\avipbb.sys
[2009/05/26 19:40:49 | 00,055,640 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\avgntflt.sys
[2009/05/26 19:40:48 | 00,028,376 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\ssmdrv.sys
[2009/05/26 19:40:47 | 00,000,000 | ---D | C] -- C:\ProgramData\Avira
[2009/05/26 19:40:47 | 00,000,000 | ---D | C] -- C:\Program Files\Avira
[2009/05/15 13:25:20 | 00,000,290 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2009/05/15 13:22:06 | 00,096,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dfshim.dll
[2009/05/15 13:21:59 | 00,282,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscoree.dll
[2009/05/15 13:21:59 | 00,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2009/05/15 13:21:50 | 00,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll
[2009/05/15 13:21:46 | 00,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll
[2009/05/15 13:13:48 | 00,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2009/05/15 13:13:47 | 00,000,000 | ---D | C] -- C:\Users\Benoît\AppData\Roaming\Mozilla
[2009/05/15 13:13:47 | 00,000,000 | ---D | C] -- C:\Users\Benoît\AppData\Local\Mozilla
[2009/05/15 13:13:40 | 00,001,726 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2009/05/15 13:13:37 | 00,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2009/04/28 22:03:33 | 00,000,000 | ---D | C] -- C:\ProgramData\Oberon Games

========== Files - Modified Within 30 Days ==========

[2 C:\Windows\System32\*.tmp files]
[1 C:\Windows\*.tmp files]
[2009/05/27 22:20:00 | 00,669,566 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2009/05/27 22:20:00 | 00,587,178 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009/05/27 22:20:00 | 00,123,556 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2009/05/27 22:20:00 | 00,101,250 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009/05/27 22:19:59 | 01,470,810 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009/05/27 22:14:21 | 00,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009/05/27 22:14:21 | 00,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009/05/27 22:13:02 | 00,000,000 | ---- | M] () -- C:\Windows\System32\LogConfigTemp.xml
[2009/05/27 22:12:53 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009/05/27 22:12:45 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009/05/27 22:12:40 | 21,369,89696 | -HS- | M] () -- C:\hiberfil.sys
[2009/05/27 20:57:49 | 02,524,675 | -H-- | M] () -- C:\Users\Benoît\AppData\Local\IconCache.db
[2009/05/27 08:23:33 | 00,239,616 | ---- | M] () -- C:\Users\Benoît\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/05/27 08:21:12 | 00,000,874 | ---- | M] () -- C:\Users\Benoît\Desktop\WinAVI MP4 Converter.lnk
[2009/05/27 08:19:33 | 00,000,783 | ---- | M] () -- C:\Users\Benoît\Desktop\Video Convert Master.lnk
[2009/05/27 08:06:40 | 00,000,612 | ---- | M] () -- C:\Windows\WININIT.INI
[2009/05/26 23:15:34 | 00,001,672 | ---- | M] () -- C:\Users\Benoît\Desktop\CCleaner.lnk
[2009/05/26 23:09:10 | 00,001,876 | ---- | M] () -- C:\Users\Benoît\Desktop\HijackThis.lnk
[2009/05/26 19:45:59 | 00,000,820 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/05/26 19:41:21 | 00,000,497 | ---- | M] () -- C:\Users\Benoît\Documents\Mes dossiers de partage.lnk
[2009/05/26 19:40:59 | 00,001,849 | ---- | M] () -- C:\Users\Public\Desktop\Avira AntiVir Control Center.lnk
[2009/05/15 13:25:20 | 00,000,290 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2009/05/15 13:13:48 | 00,000,000 | ---- | M] () -- C:\Windows\nsreg.dat
[2009/05/15 13:13:40 | 00,001,726 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2009/05/07 09:16:29 | 24,699,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mrt.exe
< End of report >

répondre

bdav137 le 27 mai 2009 à 22h40

Merci

répondre

Curson le 27 mai 2009 à 23h05

Bonsoir,

Désactive tous tes logiciels de sécurité durant la procédure.

1) Désinstalle totalement Norton.
Télécharge le Norton Removal Tool et sauvegarde-le sur ton bureau.

- Clique deux fois sur l'icône Norton Removal Tool.
- Suis les instructions. L'ordinateur pourra être redémarré plusieurs fois et tu seras peut-être invité à répéter certaines étapes.

2) Télécharge et installe UsbFix

- Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) sans les ouvrir
- Double clic sur le raccourci UsbFix présent sur ton bureau .
- Choisis l' option 1 ( Recherche )
- Laisse travailler l'outil.
- Ensuite post le rapport UsbFix.txt qui apparaitra.

Cordialement.

-------
Si votre sujet reste sans réponse, merci de le signaler ici.

répondre

bdav137 le 28 mai 2009 à 01h52

Que ça marche ou non, je te remercie grandement pour ton aide.

Voici mon log

############################## [ UsbFix V3.026 | Scan ]

# User : Benoît (Administrateurs) # PC-DE-BENOÎT
# Update on 26/05/09 by Chiquitine29, C_XX & Chimay8
# WebSite : http://pagesperso-orange.fr/NosTools/usbfix.html
# Start at: 00:55:40 | 28/05/2009

# Intel(R) Celeron(R) CPU 560 @ 2.13GHz
# Microsoft® Windows Vista™ Édition Familiale Basique (6.0.6001 32-bit) # Service Pack 1
# Internet Explorer 7.0.6001.18000
# Windows Firewall Status : Disabled

# C:\ # Disque fixe local # 101,78 Go (39,39 Go free) [OS] # NTFS
# D:\ # Disque CD-ROM
# G:\ # Disque amovible # 951,62 Mo (588,13 Mo free) [BENJAMIN1GO] # FAT32

############################## [ Processus actifs ]

C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
C:\Program Files\EMACHINES\eMachines Recovery Management\Service\ETService.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Launch Manager\LManager.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe
C:\Users\Benoît\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Windows\system32\igfxext.exe
C:\Windows\system32\igfxsrvc.exe
C:\Users\Benoît\AppData\Roaming\Microsoft\Live Search\Mise-a-jour-LiveSearch.exe
C:\Program Files\Apoint2K\ApMsgFwd.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\wbem\wmiprvse.exe

################## [ Registre Startup ]

HKCU_Main: "Local Page"="C:\\Windows\\system32\\blank.htm"
HKCU_Main: "Search Page"="http://www.shareware.pro/misc/search.htm/fr"
HKCU_Main: "Start Page"="http://www.shareware.pro/misc/search.htm/fr"
HKLM_logon: "Userinit"="C:\\Windows\\system32\\userinit.exe,"
HKLM_logon: "LegalNoticeCaption"=""
HKLM_logon: "LegalNoticeText"=""
HKLM_Run: Windows Defender=%ProgramFiles%\Windows Defender\MSASCui.exe -hide
HKLM_Run: IAAnotif="C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
HKLM_Run: IgfxTray=C:\Windows\system32\igfxtray.exe
HKLM_Run: HotKeysCmds=C:\Windows\system32\hkcmd.exe
HKLM_Run: Persistence=C:\Windows\system32\igfxpers.exe
HKLM_Run: RtHDVCpl=RtHDVCpl.exe
HKLM_Run: LManager=C:\PROGRA~1\LAUNCH~1\LManager.exe
HKLM_Run: Adobe Reader Speed Launcher="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
HKLM_Run: BkupTray="C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe"
HKLM_Run: Apoint=C:\Program Files\Apoint2K\Apoint.exe
HKLM_Run: eRecoveryService=
HKLM_Run: WarReg_PopUp=C:\Program Files\eMachines\WR_PopUp\WarReg_PopUp.exe
HKLM_Run: EdenFlirt=C:\Program Files\Eden Flirt\EdenFlirt.exe
HKLM_Run: avgnt="C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
HKLM_Run: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
HKCU_Run: MsnMsgr="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
HKCU_Run: Skype="C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
HKCU_Run: ISUSPM="C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe" -scheduler
HKCU_Run: VMCL=C:\Program Files\vodafone\vmclite\DongleEnumerator.exe

################## [ Fichiers # Dossiers infectieux ]

################## [ Registre # Clés Run infectieuses ]

################## [ Registre # Mountpoints2 ]

HKCU\...\Explorer\MountPoints2\{332b4253-ad73-11dd-98aa-001eec4b541f}\Shell\AutoRun\Command
HKCU\...\Explorer\MountPoints2\{332b4253-ad73-11dd-98aa-001eec4b541f}\Shell\explore\Command
HKCU\...\Explorer\MountPoints2\{332b4253-ad73-11dd-98aa-001eec4b541f}\Shell\open\Command
HKCU\...\Explorer\MountPoints2\{41fd4cbc-66d1-11dd-9a89-001eec4b541f}\Shell\Auto\Command
HKCU\...\Explorer\MountPoints2\{41fd4cbc-66d1-11dd-9a89-001eec4b541f}\Shell\AutoRun\Command
HKCU\...\Explorer\MountPoints2\{64e1feba-79fa-11dd-9d6b-001eec4b541f}\Shell\AutoRun\Command
HKCU\...\Explorer\MountPoints2\{9906d603-05b9-11de-b6c3-001eec4b541f}\Shell\AutoRun\Command
HKCU\...\Explorer\MountPoints2\{9906d608-05b9-11de-b6c3-001eec4b541f}\Shell\AutoRun\Command
HKCU\...\Explorer\MountPoints2\{a0f1597a-09a9-11de-bcde-001eec4b541f}\Shell\AutoRun\Command
HKCU\...\Explorer\MountPoints2\{baa52902-a278-11dd-9903-001eec4b541f}\Shell\AutoRun\Command
HKCU\...\Explorer\MountPoints2\{baa52902-a278-11dd-9903-001eec4b541f}\Shell\explore\Command
HKCU\...\Explorer\MountPoints2\{baa52902-a278-11dd-9903-001eec4b541f}\Shell\open\Command
HKCU\...\Explorer\MountPoints2\{cb3bea6a-e3f6-11dd-b6f0-001eec4b541f}\Shell\AutoRun\Command
HKCU\...\Explorer\MountPoints2\{cb3bea9f-e3f6-11dd-b6f0-001eec4b541f}\Shell\AutoRun\Command
HKCU\...\Explorer\MountPoints2\{e5f19cc9-0bbb-11de-9941-001eec4b541f}\Shell\AutoRun\Command
HKCU\...\Explorer\MountPoints2\{e5f19cca-0bbb-11de-9941-001eec4b541f}\Shell\AutoRun\Command

################## [ Informations # Fichier Suspect ]

################## [ Cracks # Keygens # Serials ]

# -> Nothing found !

################## [ ! Fin du rapport # UsbFix V3.026 ! ]

BON COURAGE

répondre

Curson le 28 mai 2009 à 17h07

Bonjour,

Désactive tous tes logiciels de sécurité durant la procédure.

1) Désactive l'UAC. Tutorial.

2) Télécharge ATF-Cleaner by Atribune et enregistre-le sur ton bureau.

Ferme tes navigateurs et exécute le programme.

- Coche l'onglet "Select All".
- Clique sur "Empty Selected".

3) Relance USBFix

- Choisis l'option 2 ( Suppression )
- Ton bureau disparaitra et le pc redémarrera .
- Au redémarrage , UsbFix scannera ton pc , laisse travailler l'outil.
- Ensuite poste le rapport UsbFix.txt qui apparaitra avec le bureau .

4) Télécharge Combofix de sUBs : combofix.exe
et sauvegarde le sur ton bureau et pas ailleurs!

- Branche tous tes supports amovibles.

5) Crée un nouveau document texte : clic droit de souris sur le bureau > Nouveau > Document Texte, et copie dedans les lignes suivantes :

KILLALL::

Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main]
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Start Page"=""Start Page"=http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main]
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Start Page"="http://www.google.fr"
[-HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
[-HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

File::
C:\Windows\System32\perfh00C.dat
C:\Windows\System32\perfh009.dat
C:\Windows\System32\perfc00C.dat
C:\Windows\System32\perfc009.dat

- Fait un glisser/déposer de ce fichier CFScript sur le fichier ComboFix.exe comme sur la capture

< inclued picture >

- Une fenêtre bleue va apparaître. Tape 1 si nécessaire.
- Patiente le temps du scan. Le bureau va disparaître à plusieurs reprises: c'est normal!
Ne touche à rien tant que le scan n'est pas terminé.
- Une fois le scan achevé, un rapport va s'afficher: poste son contenu, en précisant où en sont tes soucis.

- Si le fichier ne s'ouvre pas, il se trouve ici > C:\ComboFix.txt

Si tu n'as plus accès à Internet après l'utilisation de ComboFix :
Suis cette procédure :

1. Cliquez sur le bouton Démarrer.
2. Cliquez sur l'option de menu Paramètres.
3. Cliquez sur l'option Panneau de configuration.
4. Après l'ouverture du Panneau de configuration, faites un double clic sur l'icône Connexions réseau. Si votre Panneau de configuration est paramétré pour un affichage en catégories, faites un double clic sur Connexions réseau et Internet puis cliquez sur Connexions réseau tout en bas.
5. Vous verrez alors une liste de toutes les connexions réseau disponibles. Repérez la connexion vers votre adaptateur Sans Fil ou Réseau local et faites un clic droit dessus.
6. Vous verrez alors un menu similaire à celui de l'image ci-dessous. Cliquez simplement sur l'option de menu Réparer.
< inclued picture >

7. Laissez le processus de réparation se dérouler, et lorsqu'il a terminé, votre connexion Internet devrait être de nouveau opérationnelle.

Sinon, si une icône de votre réseau apparaît aussi dans la barre des tâches Windows, vous pouvez la réparer en faisant un clic droit sur l'icône et en choisissant Réparer comme le montre l'image ci-dessous:
< inclued picture >

Comment se comporte le système ?

Cordialement.

-->Message édité par Curson le 28/05/2009 17:09:22<--

-------
Si votre sujet reste sans réponse, merci de le signaler ici.

répondre

bdav137 le 28 mai 2009 à 22h55

Voici le rapport usbfix :

############################## [ UsbFix V3.026 | Cleaning ]

# User : Benoît (Administrateurs) # PC-DE-BENOÎT
# Update on 26/05/09 by Chiquitine29, C_XX & Chimay8
# WebSite : http://pagesperso-orange.fr/NosTools/usbfix.html
# Start at: 22:40:04 | 28/05/2009

# Intel(R) Celeron(R) CPU 560 @ 2.13GHz
# Microsoft® Windows Vista™ Édition Familiale Basique (6.0.6001 32-bit) # Service Pack 1
# Internet Explorer 7.0.6001.18000
# Windows Firewall Status : Disabled

# C:\ # Disque fixe local # 101,78 Go (39,51 Go free) [OS] # NTFS
# D:\ # Disque CD-ROM
# G:\ # Disque amovible # 951,62 Mo (585,09 Mo free) [BENJAMIN1GO] # FAT32

############################## [ Processus actifs ]

C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\LogonUI.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\userinit.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\runonce.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
C:\Program Files\EMACHINES\eMachines Recovery Management\Service\ETService.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Windows Calendar\WinCal.exe

################## [ Fichiers # Dossiers infectieux ]

################## [ Registre # Clés Run infectieuses ]

################## [ Registre # Mountpoints2 ]

Deleted ! HKCU\...\Explorer\MountPoints2\{332b4253-ad73-11dd-98aa-001eec4b541f}\Shell\AutoRun\Command
Deleted ! HKCU\...\Explorer\MountPoints2\{41fd4cbc-66d1-11dd-9a89-001eec4b541f}\Shell\Auto\Command
Deleted ! HKCU\...\Explorer\MountPoints2\{64e1feba-79fa-11dd-9d6b-001eec4b541f}\Shell\AutoRun\Command
Deleted ! HKCU\...\Explorer\MountPoints2\{9906d603-05b9-11de-b6c3-001eec4b541f}\Shell\AutoRun\Command
Deleted ! HKCU\...\Explorer\MountPoints2\{9906d608-05b9-11de-b6c3-001eec4b541f}\Shell\AutoRun\Command
Deleted ! HKCU\...\Explorer\MountPoints2\{a0f1597a-09a9-11de-bcde-001eec4b541f}\Shell\AutoRun\Command
Deleted ! HKCU\...\Explorer\MountPoints2\{baa52902-a278-11dd-9903-001eec4b541f}\Shell\AutoRun\Command
Deleted ! HKCU\...\Explorer\MountPoints2\{cb3bea6a-e3f6-11dd-b6f0-001eec4b541f}\Shell\AutoRun\Command
Deleted ! HKCU\...\Explorer\MountPoints2\{cb3bea9f-e3f6-11dd-b6f0-001eec4b541f}\Shell\AutoRun\Command
Deleted ! HKCU\...\Explorer\MountPoints2\{e5f19cc9-0bbb-11de-9941-001eec4b541f}\Shell\AutoRun\Command
Deleted ! HKCU\...\Explorer\MountPoints2\{e5f19cca-0bbb-11de-9941-001eec4b541f}\Shell\AutoRun\Command

################## [ Listing des fichiers présent ]

[18/09/2006 23:43|--a------|24] - C:\autoexec.bat
[21/01/2008 04:34|-rahs----|333203] - C:\bootmgr
[22/05/2008 15:32|-ra-s----|8192] - C:\BOOTSECT.BAK
[18/09/2006 23:43|--a------|10] - C:\config.sys
[?|?|?] - C:\hiberfil.sys
[?|?|?] - C:\pagefile.sys
[14/06/2008 14:26|--a------|477] - C:\RHDSetup.log
[18/10/2008 19:59|--ah-----|268] - C:\sqmdata00.sqm
[20/10/2008 19:47|--ah-----|268] - C:\sqmdata01.sqm
[08/11/2008 10:56|--ah-----|268] - C:\sqmdata02.sqm
[08/11/2008 14:57|--ah-----|268] - C:\sqmdata03.sqm
[08/11/2008 15:31|--ah-----|268] - C:\sqmdata04.sqm
[15/11/2008 20:23|--ah-----|268] - C:\sqmdata05.sqm
[05/12/2008 20:41|--ah-----|268] - C:\sqmdata06.sqm
[06/01/2009 15:32|--ah-----|268] - C:\sqmdata07.sqm
[21/02/2009 18:41|--ah-----|268] - C:\sqmdata08.sqm
[21/02/2009 18:43|--ah-----|268] - C:\sqmdata09.sqm
[28/02/2009 15:12|--ah-----|268] - C:\sqmdata10.sqm
[30/03/2009 19:06|--ah-----|268] - C:\sqmdata11.sqm
[15/04/2009 21:20|--ah-----|268] - C:\sqmdata12.sqm
[16/04/2009 22:39|--ah-----|268] - C:\sqmdata13.sqm
[17/04/2009 21:28|--ah-----|268] - C:\sqmdata14.sqm
[19/04/2009 11:35|--ah-----|268] - C:\sqmdata15.sqm
[17/10/2008 18:18|--ah-----|268] - C:\sqmdata16.sqm
[17/10/2008 18:23|--ah-----|268] - C:\sqmdata17.sqm
[17/10/2008 18:51|--ah-----|268] - C:\sqmdata18.sqm
[17/10/2008 19:52|--ah-----|268] - C:\sqmdata19.sqm
[18/10/2008 19:59|--ah-----|244] - C:\sqmnoopt00.sqm
[20/10/2008 19:47|--ah-----|244] - C:\sqmnoopt01.sqm
[08/11/2008 10:56|--ah-----|244] - C:\sqmnoopt02.sqm
[08/11/2008 14:57|--ah-----|244] - C:\sqmnoopt03.sqm
[08/11/2008 15:31|--ah-----|244] - C:\sqmnoopt04.sqm
[15/11/2008 20:23|--ah-----|244] - C:\sqmnoopt05.sqm
[05/12/2008 20:41|--ah-----|244] - C:\sqmnoopt06.sqm
[06/01/2009 15:32|--ah-----|244] - C:\sqmnoopt07.sqm
[21/02/2009 18:41|--ah-----|244] - C:\sqmnoopt08.sqm
[21/02/2009 18:43|--ah-----|244] - C:\sqmnoopt09.sqm
[28/02/2009 15:12|--ah-----|244] - C:\sqmnoopt10.sqm
[30/03/2009 19:06|--ah-----|244] - C:\sqmnoopt11.sqm
[15/04/2009 21:20|--ah-----|244] - C:\sqmnoopt12.sqm
[16/04/2009 22:39|--ah-----|244] - C:\sqmnoopt13.sqm
[17/04/2009 21:28|--ah-----|244] - C:\sqmnoopt14.sqm
[19/04/2009 11:35|--ah-----|244] - C:\sqmnoopt15.sqm
[17/10/2008 18:18|--ah-----|244] - C:\sqmnoopt16.sqm
[17/10/2008 18:23|--ah-----|244] - C:\sqmnoopt17.sqm
[17/10/2008 18:51|--ah-----|244] - C:\sqmnoopt18.sqm
[17/10/2008 19:52|--ah-----|244] - C:\sqmnoopt19.sqm
[28/05/2009 22:42|--a------|6138] - C:\UsbFix.txt
[14/06/2008 14:34|--a------|471790] - C:\vcredist_x86.log
[17/10/2008 18:20|--a------|353] - C:\[0] Avast Pro 4.8 Serial Key - Raccourci.lnk
[06/01/2004 02:04|---h-----|786440] - G:\nideiect.0om
[01/11/2008 22:08|--a------|1094008] - G:\TV - Arnold et Willy(fran‡ais).mp3
[28/10/2007 13:01|--a------|693] - G:\chantillons d'images.lnk
[09/07/2007 19:34|--a------|2319360] - G:\rapport de stage.doc
[09/04/2001 14:48|--a------|208384] - G:\dictionnaire immunologie.doc
[16/03/2008 19:31|--a------|71723] - G:\cours grad.odt
[15/03/2008 13:47|--a------|39651] - G:\dico d'immuno.odt
[29/10/2007 15:23|--a------|211456] - G:\cours grad.doc
[02/02/2009 13:01|--a------|2632192] - G:\INTRODUCTION.dot
[18/04/2009 09:30|--a------|1066413] - G:\Num‚riser0001.jpg
[18/04/2009 09:31|--a------|818706] - G:\Num‚riser0002.jpg
[31/03/2009 19:59|--a------|8185984] - G:\- Pep's - Liberta (radio) - 2008.mp3
[31/03/2009 19:47|--a------|8180675] - G:\03 - JESSY MATADOR Aka LA SELESAO - Mini Kawoul‚.mp3
[31/03/2009 19:48|--a------|3244959] - G:\06 - Ocean Drive - Some People.mp3
[31/03/2009 19:47|--a------|5048123] - G:\116. Flo Rida - Right Round.mp3
[31/03/2009 19:47|--a------|8844088] - G:\Alesha Dixon - The Boy Does Nothing.mp3
[31/03/2009 19:21|--a------|4933702] - G:\Fragma - Memory.mp3
[31/03/2009 20:02|--a------|8682496] - G:\Hakimakli - Dilly Dally (French Radio Edit).mp3
[31/03/2009 21:28|--a------|2867968] - G:\Hakimakli - Dollaly.mp3
[31/03/2009 19:25|--a------|8246604] - G:\HAKIMAKLI (DING DONG) EXTENDED MIX.mp3
[31/03/2009 19:52|--a------|7823488] - G:\Jessy Matador aka La Selesao - D‚cal‚ Gwada.mp3
[31/03/2009 19:47|--a------|8180675] - G:\Jessy Matador Mini Kawoule.mp3
[31/03/2009 19:51|--a------|11291252] - G:\Kid Cudi - Day N Nite (Crookers Remix).mp3
[13/04/2009 20:31|--a------|5464633] - G:\La_Chorale_d'enfants_de_l'ecole_de_musique_de_Bois_d'Arcy_-_Chanson_d'Emilie_jolie_e_du_grand_oiseau.wma
[31/03/2009 19:26|--a------|6550760] - G:\Magic_System_ft_Cheb_Khaled_-_meme_pas_fatigue(QUALITER_CD)2009-BY_POPOF.mp3
[16/12/2008 18:44|--a------|2330798] - G:\NDSROM Player.exe
[13/04/2009 20:36|--a------|5199236] - G:\OCEAN DRIVE FT. DJ ORISKA - Some People (Radio Edit).mp3
[31/03/2009 19:48|--a------|6912128] - G:\Ocean Drive Ft Dj Oriska Some People (extended mix).mp3
[13/04/2009 20:39|--a------|5975461] - G:\Shalya - In The Party (Radio Edit).mp3
[16/05/2009 14:25|--a------|4338387] - G:\setupstickusb80211gv4.exe
[02/05/2009 18:53|--a------|30143928] - G:\avira_antivir_personal_free.exe
[27/05/2009 08:14|--a------|17741094] - G:\VideoConvertMaster_Fr.exe
[27/05/2009 08:16|--a------|14017526] - G:\klcodec485f.exe
[27/05/2009 08:16|--a------|4500646] - G:\WinAVI_MP4_Video_Converter.exe
[27/05/2009 08:18|--a------|296] - G:\WMPInfo.xml
[27/05/2009 19:15|--a------|8456] - G:\hijackthis.log
[27/05/2009 22:16|--a------|422912] - G:\OTViewIt.exe
[27/05/2009 22:29|--a------|102206] - G:\OTViewIt.Txt
[27/05/2009 22:30|--a------|31634] - G:\Extras.Txt
[27/05/2009 22:28|--a------|101818] - G:\OTViewIt1.Txt
[27/05/2009 23:53|--a------|3063649] - G:\Norton_Removal_Tool.exe
[27/05/2009 23:55|--a------|710416] - G:\UsbFix.exe
[28/05/2009 01:51|--a------|6762] - G:\UsbFix.txt
[28/05/2009 22:34|--a------|50688] - G:\ATF-Cleaner.exe
[28/05/2009 22:35|--a------|3119934] - G:\ComboFix.exe

################## [ Vaccination ]

# C:\autorun.inf ( # Not infected ) -> Folder created by UsbFix.
# G:\autorun.inf ( # Not infected ) -> Folder created by UsbFix.

################## [ Informations # Fichier Suspect ]

################## [ Cracks # Keygens # Serials ]

# -> Nothing found !

################## [ ! Fin du rapport # UsbFix V3.026 ! ]

Encore merci
Cordialement

Je te tien au courant pour la suite

Merci

répondre

bdav137 le 29 mai 2009 à 00h50