virus "volt..." oridnateur infesté de chevaux de troie.. ???

virus "volt..." oridnateur infesté de chevaux de troie.. ???

après avoir ouvert un lien sur facebook, mes pares feux s'affolent,
j'ai un virus appelé "volt..." et près de 500 chevaux de troie detecté !!!!!!!!!
que faire ?

Bonsoir à toi aussi,

Pour rappel :
.

Télécharge HiJackThis de Merijn sur ton bureau.

- Double-clic sur HijackThis.
- Génère un rapport en suivant ces indications :
- Exécute le et clique sur Do a scan and save log file.
- Le rapport s'ouvre sur le Bloc-Note.

- Colle le rapport ici, pour cela :
- Menu Edition / Selectionner Tout
- Menu Edition / copier
- Ici dans un nouveau message : clic droit / coller

Aide : N'hésite pas à consulter l'aide HiJackThis.


Cordialement.

Merci beaucoup,
je crois que le rapport est un peu long....


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:17:10, on 24/06/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Microsoft Windows OneCare Live\Antivirus\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\Program Files\Microsoft SQL Server\MSSQL$HIMSA\Binn\sqlservr.exe
C:\Program Files\Microsoft SQL Server\MSSQL$PHONAKGROUPDB\Binn\sqlservr.exe
C:\PROGRA~1\Ontrack\Fix-It\MXTask.exe
C:\Program Files\Microsoft Windows OneCare Live\OcHealthMon.exe
C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment\VzCdb\VzFw.exe
C:\Program Files\Microsoft Windows OneCare Live\Firewall\msfwsvc.exe
C:\Program Files\Microsoft Windows OneCare Live\winss.exe
C:\Program Files\Apoint\Apoint.exe
C:\Program Files\Sony\HotKey Utility\HKserv.exe
C:\Program Files\sony\vaio power management\SPMgr.exe
C:\WINDOWS\ATK0100\Hcontrol.exe
C:\WINDOWS\system32\ICO.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Sony\ISB Utility\ISBMgr.exe
C:\WINDOWS\system32\ezSP_Px.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe
C:\Program Files\Sony\HotKey Utility\HKWnd.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\windows\freddy46.exe
C:\windows\pp10.exe
C:\Program Files\Microsoft Windows OneCare Live\winssnotify.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\All Users\Application Data\Macrovision\FLEXnet Connect\6\ISUSPM.exe
C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
C:\Program Files\sony\sonicstage mastering studio\audio filter\SSMSFilter.exe
C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\wbem\wmiapsrv.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
D:\Program Files\Microsoft Office\Office\WINWORD.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://internetsearchservice.com
R1 - HKLM\Software\Microsoft\Internet Explorer,SearchURL = http://internetsearchservice.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://internetsearchservice.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://internetsearchservice.com/ie6.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: ECarteBleueBrowserHelper Class - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: 750623 Class - {3CCCCEF1-D6D1-4BD0-84D3-BA6E364E7DCD} - C:\WINDOWS\system32\750623\750623.dll (file missing)
O2 - BHO: ASCWarningBHO Class - {58472BC6-BEA3-42d4-8917-7A8BCB0711B5} - C:\Program Files\ASC 2.1\ASCWarning32.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [HKSERV.EXE] C:\Program Files\Sony\HotKey Utility\HKserv.exe
O4 - HKLM\..\Run: [SonyPowerCfg] C:\Program Files\sony\vaio power management\SPMgr.exe
O4 - HKLM\..\Run: [Hcontrol] C:\WINDOWS\ATK0100\Hcontrol.exe
O4 - HKLM\..\Run: [Mouse Suite 98 Daemon] ICO.EXE
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [ISBMgr.exe] C:\Program Files\Sony\ISB Utility\ISBMgr.exe
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\system32\ezSP_Px.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [VAIO Update 3] "C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe" /Stationary
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [sysldtray] C:\windows\ld10.exe
O4 - HKLM\..\Run: [sysfbtray] C:\windows\freddy46.exe
O4 - HKLM\..\Run: [pp] C:\windows\pp10.exe
O4 - HKLM\..\Run: [OneCareUI] "C:\Program Files\Microsoft Windows OneCare Live\winssnotify.exe"
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ISUSPM] "C:\Documents and Settings\All Users\Application Data\Macrovision\FLEXnet Connect\6\ISUSPM.exe" -scheduler
O4 - HKCU\..\Run: [isaey] "c:\documents and settings\cyril\local settings\application data\isaey.exe" isaey
O4 - HKCU\..\Run: [kasoy] "c:\documents and settings\cyril\local settings\application data\kasoy.exe" kasoy
O4 - HKCU\..\Run: [uesig] "c:\documents and settings\cyril\local settings\application data\uesig.exe" uesig
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Assistant d'Acrobat.lnk = C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
O4 - Global Startup: Audio Filter.lnk = C:\Program Files\sony\sonicstage mastering studio\audio filter\SSMSFilter.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = D:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Service Manager.lnk = C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe
O9 - Extra button: (no name) - {9034A523-D068-4BE8-A284-9DF278BE776E} - http://www.ietoolsite.com/redirect.php (file missing)
O9 - Extra 'Tools' menuitem: IE Anti-Spyware - {9034A523-D068-4BE8-A284-9DF278BE776E} - http://www.ietoolsite.com/redirect.php (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.club-vaio.sony-europe.com/
O15 - Trusted Zone: *.sony-europe.com
O15 - Trusted Zone: *.sonystyle-europe.com
O15 - Trusted Zone: *.vaio-link.com
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase5036.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{33B34E83-E8F4-403D-8183-0B0F94175252}: NameServer = 213.174.139.72,255.255.255.255
O17 - HKLM\System\CCS\Services\Tcpip\..\{B74CC97B-8928-4CDE-B6D1-E4444FA1E177}: NameServer = 213.174.139.72,255.255.255.255
O17 - HKLM\System\CCS\Services\Tcpip\..\{DBE152B4-7910-4EBD-86C0-EC2657F59B4D}: NameServer = 213.174.139.72,255.255.255.255
O17 - HKLM\System\CCS\Services\Tcpip\..\{E1D560EA-E936-4EA6-8F34-543B9712A228}: NameServer = 213.174.139.72,255.255.255.255
O17 - HKLM\System\CCS\Services\Tcpip\..\{ECCC3DF4-48D3-43A4-839D-DF70FD8869D1}: NameServer = 213.174.139.72,255.255.255.255
O22 - SharedTaskScheduler: enation - {629340b5-8df6-4211-9245-a86563a35792} - (no file)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: MXServer - Ontrack Data International - C:\PROGRA~1\Ontrack\Fix-It\MXTask.exe
O23 - Service: VAIO Entertainment Aggregation and Control Service - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment\VzRs\VzRs.exe
O23 - Service: VAIO Entertainment File Import Service - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment\VzCdb\VzFw.exe
O23 - Service: VAIO Entertainment Task Scheduler - Sony Corporation - C:\Program Files\sony\vaio entertainment\VzTaskScheduler.exe
O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
O23 - Service: VAIO Entertainment UPnP Client Adapter - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment\VCSW\VCSW.exe
O23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\VMISrv.exe
O23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
O23 - Service: VAIO Media Integrated Server (UPnP) (VAIOMediaPlatform-IntegratedServer-UPnP) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\Platform\VmGateway.exe
O23 - Service: VAIO Cooporated Initialisation (VCI) - Sony Corporation - C:\Program Files\Sony\VAIO Cooperated Initialisation\VCI_SVC.exe

--
End of file - 12739 bytes

Bonsoir,

Quel est ton FAI ?
Désactive tes logiciels de sécurité durant la procédure.

1) Télécharge Navilog1 :

- Clique-droit sur le lien ci-dessus et choisis Enregistrer la cible (du lien) sous... et range le sur ton Bureau.
- Clique-droit sur navilog1.exe et suis les instructions d'installation.

- Démarre Navilog1 à partir du raccourci crée sur ton bureau.
- Sur le menu principal, choisis 1.
- Suis les instructions et patiente.
- Patiente jusqu'au message *** Nettoyage terminé le....*** (il se peut que ça prenne un certain temps).
- Appuie sur une touche ainsi que demandé.
- Un document du Bloc-notes est créé : fixnavi.txt.
- Copie/colle le contenu de ce compte-rendu dans ta prochaine réponse.
- Referme le Bloc-notes.

Le rapport fixnavi.txt est également sauvegardé dans %systemdrive%. (en général C:\).


2) Télécharge OTL (de OldTimer) et enregistre-le sur ton Bureau.

- Quitte les applications en cours afin de ne pas interrompre le scan.
- Exécute OTL.exe avec l'option "Exécuter en tant qu'Administrateur".
- Une fenêtre apparaît. Dans la section Output en haut de cette fenêtre, coche "Minimal Output". Fais de même avec "Scan All Users".
- Coche également les cases à côté de "LOP Check" et "Purity Check".
- Dans la zone Extra List, coche "Use Safelist".

Ne modifie pas les autres paramètres !

- Clique sur le bouton Run Scan.
- Une fois l'analyse terminée, deux fenêtres vont s'ouvrir dans le Bloc-notes : OTL.txt et Extras.txt. Ils se trouvent au même endroit que OTListIT2 (donc par défaut sur le Bureau).

- Copie/colle ici le contenu des deux fichiers. Utilise un message par rapport.


Cordialement.

merci encore , vraiment je croyais mon ordi mort, et c mon outil de travail.....
voilà pour le 1er lien :


Fix Navipromo version 4.0.0 commencé le 24/06/2009 à 21:34:55,31

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!

Outil exécuté depuis C:\Program Files\navilog1

Mise à jour le 19.06.2009 à 20h00 par IL-MAFIOSO

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) M processor 1.60GHz )
BIOS : Revision: 1.2
USER : Cyril ( Administrator )
BOOT : Normal boot

Antivirus : Windows Live OneCare 1.0.0 (Activated)
Firewall : Pare-feu Windows Live OneCare 1.0.0 (Activated)

C:\ (Local Disk) - NTFS - Total:27 Go (Free:7 Go)
D:\ (Local Disk) - NTFS - Total:46 Go (Free:46 Go)
E:\ (USB)
F:\ (CD or DVD)


Recherche exécutée en mode normal

Nettoyage exécuté au redémarrage de l'ordinateur


C:\Documents and Settings\Cyril\locals~1\applic~1\gwoyqmg.dat supprimé !
C:\Documents and Settings\Cyril\locals~1\applic~1\gwoyqmg_nav.dat supprimé !
C:\Documents and Settings\Cyril\locals~1\applic~1\gwoyqmg_navps.dat supprimé !


Nettoyage contenu C:\WINDOWS\Temp effectué !
Nettoyage contenu C:\Documents and Settings\Cyril\locals~1\Temp effectué !


*** Sauvegarde du Registre vers dossier Safebackup ***

sauvegarde du Registre réalisée avec succès !

*** Nettoyage Registre ***

Nettoyage Registre Ok




*** Scan terminé le 24/06/2009 à 21:51:28,59 ***

Voilà le 2ème rapport

OTL logfile created on: 24/06/2009 22:08:51 - Run 1
OTL by OldTimer - Version 3.0.5.2 Folder = C:\Documents and Settings\Cyril\Bureau
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

510,80 Mb Total Physical Memory | 39,80 Mb Available Physical Memory | 7,79% Memory free
1,22 Gb Paging File | 0,70 Gb Available in Paging File | 57,02% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 27,95 Gb Total Space | 8,29 Gb Free Space | 29,65% Space Free | Partition Type: NTFS
Drive D: | 46,58 Gb Total Space | 46,41 Gb Free Space | 99,63% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: SONY_VAIO
Current User Name: Cyril
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - C:\Program Files\Microsoft Windows OneCare Live\Antivirus\MsMpEng.exe (Microsoft Corporation)
PRC - C:\WINDOWS\Explorer.EXE (Microsoft Corporation)
PRC - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
PRC - c:\Program Files\Microsoft SQL Server\MSSQL$HIMSA\Binn\sqlservr.exe (Microsoft Corporation)
PRC - C:\Program Files\Microsoft SQL Server\MSSQL$PHONAKGROUPDB\Binn\sqlservr.exe (Microsoft Corporation)
PRC - C:\Program Files\Ontrack\Fix-It\mxtask.exe (Ontrack Data International)
PRC - C:\Program Files\Microsoft Windows OneCare Live\OcHealthMon.exe (Microsoft Corporation)
PRC - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment\VzCdb\VzFw.exe (Sony Corporation)
PRC - C:\Program Files\Microsoft Windows OneCare Live\Firewall\msfwsvc.exe (Microsoft Corporation)
PRC - C:\Program Files\Microsoft Windows OneCare Live\winss.exe (Microsoft Corporation)
PRC - C:\WINDOWS\System32\wbem\wmiprvse.exe (Microsoft Corporation)
PRC - C:\Program Files\Microsoft Windows OneCare Live\winssnotify.exe (Microsoft Corporation)
PRC - C:\WINDOWS\notepad.exe (Microsoft Corporation)
PRC - C:\Program Files\Apoint\Apoint.exe (Alps Electric Co., Ltd.)
PRC - C:\Program Files\Sony\HotKey Utility\HKserv.exe (Sony Corporation)
PRC - C:\Program Files\sony\vaio power management\SPMgr.exe (Sony Corporation)
PRC - C:\WINDOWS\ATK0100\Hcontrol.exe ()
PRC - C:\WINDOWS\System32\ICO.EXE (Primax Electronics Ltd.)
PRC - C:\Program Files\Sony\ISB Utility\ISBMgr.exe (Sony Corporation)
PRC - C:\WINDOWS\System32\ezSP_Px.exe (Easy Systems Japan Ltd.)
PRC - C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
PRC - C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation)
PRC - C:\Program Files\Apoint\Apntex.exe (Alps Electric Co., Ltd.)
PRC - C:\WINDOWS\ATK0100\ATKOSD.exe ()
PRC - C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe (Sony Corporation)
PRC - C:\Program Files\Sony\HotKey Utility\HKWnd.exe (Sony Corporation)
PRC - C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
PRC - C:\windows\freddy46.exe ()
PRC - C:\windows\pp10.exe ()
PRC - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
PRC - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
PRC - C:\Documents and Settings\All Users\Application Data\Macrovision\FLEXnet Connect\6\ISUSPM.exe (Macrovision Corporation)
PRC - C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe (Adobe Systems Inc.)
PRC - C:\Program Files\sony\sonicstage mastering studio\audio filter\SSMSFilter.exe (Sony Corporation)
PRC - C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe (Microsoft Corporation)
PRC - C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.)
PRC - C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
PRC - C:\Documents and Settings\Cyril\Bureau\OTL(2).exe (OldTimer Tools)

========== Win32 Services (SafeList) ==========

SRV - (Apple Mobile Device [Auto | Running]) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (aspnet_state [On_Demand | Stopped]) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (Microsoft Corporation)
SRV - (clr_optimization_v2.0.50727_32 [On_Demand | Stopped]) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (gusvc [On_Demand | Stopped]) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (Google)
SRV - (helpsvc [Auto | Running]) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll (Microsoft Corporation)
SRV - (iPod Service [On_Demand | Running]) -- C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.)
SRV - (msfwsvc [Auto | Running]) -- C:\Program Files\Microsoft Windows OneCare Live\Firewall\msfwsvc.exe (Microsoft Corporation)
SRV - (MSSQL$HIMSA [Auto | Running]) -- c:\Program Files\Microsoft SQL Server\MSSQL$HIMSA\Binn\sqlservr.exe (Microsoft Corporation)
SRV - (MSSQL$PHONAKGROUPDB [Auto | Running]) -- C:\Program Files\Microsoft SQL Server\MSSQL$PHONAKGROUPDB\Binn\sqlservr.exe (Microsoft Corporation)
SRV - (MSSQLServerADHelper [On_Demand | Stopped]) -- C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe (Microsoft Corporation)
SRV - (MXServer [Auto | Running]) -- C:\Program Files\Ontrack\Fix-It\mxtask.exe (Ontrack Data International)
SRV - (OcHealthMon [Auto | Running]) -- C:\Program Files\Microsoft Windows OneCare Live\OcHealthMon.exe (Microsoft Corporation)
SRV - (OneCareMP [Auto | Running]) -- C:\Program Files\Microsoft Windows OneCare Live\Antivirus\MsMpEng.exe (Microsoft Corporation)
SRV - (SQLAgent$HIMSA [On_Demand | Stopped]) -- c:\Program Files\Microsoft SQL Server\MSSQL$HIMSA\Binn\sqlagent.EXE (Microsoft Corporation)
SRV - (SQLAgent$PHONAKGROUPDB [On_Demand | Stopped]) -- C:\Program Files\Microsoft SQL Server\MSSQL$PHONAKGROUPDB\Binn\sqlagent.EXE (Microsoft Corporation)
SRV - (sys [Auto | Stopped]) -- C:\Program Files\sys\sys.dll ()
SRV - (VAIO Entertainment Aggregation and Control Service [On_Demand | Stopped]) -- C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment\VzRs\VzRs.exe (Sony Corporation)
SRV - (VAIO Entertainment File Import Service [Auto | Running]) -- C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment\VzCdb\VzFw.exe (Sony Corporation)
SRV - (VAIO Entertainment Task Scheduler [On_Demand | Stopped]) -- C:\Program Files\sony\vaio entertainment\VzTaskScheduler.exe (Sony Corporation)
SRV - (VAIO Entertainment TV Device Arbitration Service [On_Demand | Stopped]) -- C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe (Sony Corporation)
SRV - (VAIO Entertainment UPnP Client Adapter [On_Demand | Stopped]) -- C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment\VCSW\VCSW.exe (Sony Corporation)
SRV - (VAIOMediaPlatform-IntegratedServer-AppServer [On_Demand | Stopped]) -- C:\Program Files\sony\VAIO Media Integrated Server\VMISrv.exe (Sony Corporation)
SRV - (VAIOMediaPlatform-IntegratedServer-HTTP [On_Demand | Stopped]) -- C:\Program Files\sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe (Sony Corporation)
SRV - (VAIOMediaPlatform-IntegratedServer-UPnP [On_Demand | Stopped]) -- C:\Program Files\sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe (Sony Corporation)
SRV - (VAIOMediaPlatform-Mobile-Gateway [On_Demand | Stopped]) -- C:\Program Files\sony\VAIO Media Integrated Server\Platform\VmGateway.exe (Sony Corporation)
SRV - (VCI [Auto | Stopped]) -- C:\Program Files\Sony\VAIO Cooperated Initialisation\VCI_SVC.exe (Sony Corporation)
SRV - (winss [Auto | Running]) -- C:\Program Files\Microsoft Windows OneCare Live\winss.exe (Microsoft Corporation)

========== Driver Services (SafeList) ==========

DRV - (ACEDRV07 [Auto | Running]) -- C:\WINDOWS\System32\drivers\ACEDRV07.sys (Protect Software GmbH)
DRV - (ALCXSENS [On_Demand | Running]) -- C:\WINDOWS\System32\drivers\ALCXSENS.SYS (Sensaura)
DRV - (ALCXWDM [On_Demand | Running]) -- C:\WINDOWS\System32\drivers\ALCXWDM.SYS (Realtek Semiconductor Corp.)
DRV - (ApfiltrService [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\Apfiltr.sys (Alps Electric Co., Ltd.)
DRV - (DMICall [System | Running]) -- C:\WINDOWS\System32\DRIVERS\DMICall.sys (Sony Corporation)
DRV - (E1000 [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\e1000325.sys (Intel Corporation)
DRV - (GEARAspiWDM [On_Demand | Running]) -- C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV - (HSFHWICH [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\HSFHWICH.sys (Conexant Systems, Inc.)
DRV - (HSF_DP [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\HSF_DP.sys (Conexant Systems, Inc.)
DRV - (hwdatacard [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\ewusbmdm.sys (Huawei Technologies Co., Ltd.)
DRV - (I97DRIVER [On_Demand | Stopped]) -- C:\Program Files\Ontrack\Fix-It\dgs.sys ()
DRV - (Kithara-kbas6 [Auto | Running]) -- C:\WINDOWS\System32\kbas6.sys (Kithara Software)
DRV - (Kithara-kioa6 [Auto | Running]) -- C:\WINDOWS\System32\kioa6.sys (Kithara Software)
DRV - (mdmxsdk [Auto | Running]) -- C:\WINDOWS\System32\DRIVERS\mdmxsdk.sys (Conexant)
DRV - (minicom [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\miniCom.sys (GN Resound as)
DRV - (MpFilter [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\MpFilter.sys (Microsoft Corporation)
DRV - (MSFWDrv [Auto | Running]) -- C:\WINDOWS\System32\DRIVERS\msfwdrv.sys (Microsoft Corporation)
DRV - (MSFWHLPR [System | Running]) -- C:\WINDOWS\System32\DRIVERS\msfwhlpr.sys (Microsoft Corporation)
DRV - (MTsensor [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\ATKACPI.sys ()
DRV - (pelmouse [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\pelmouse.sys (Primax Electronics Ltd.)
DRV - (pelusblf [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\pelusblf.sys (Primax Electronics Ltd.)
DRV - (Ptilink [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys (Parallel Technologies, Inc.)
DRV - (PxHelp20 [Boot | Running]) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys (Sonic Solutions)
DRV - (Secdrv [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
DRV - (Ser2pl [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\ser2pl.sys (Prolific Technology Inc.)
DRV - (SNC [On_Demand | Running]) -- C:\WINDOWS\System32\Drivers\SonyNC.sys (Sony Corporation)
DRV - (SONYTVC [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\SONYTVC.sys (Sony Corporation)
DRV - (SPI [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\SonyPI.sys (Sony Corporation)
DRV - (tifmsony [On_Demand | Running]) -- C:\WINDOWS\System32\drivers\tifmsony.sys (Texas Instruments)
DRV - (USBAAPL [On_Demand | Stopped]) -- C:\WINDOWS\System32\Drivers\usbaapl.sys (Apple, Inc.)
DRV - (USTOR [On_Demand | Stopped]) -- C:\WINDOWS\System32\DRIVERS\UStork.sys (USB Mass Storage.)
DRV - (w22n51 [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\w22n51.sys (Intel® Corporation)
DRV - (winachsf [On_Demand | Running]) -- C:\WINDOWS\System32\DRIVERS\HSF_CNXT.sys (Conexant Systems, Inc.)

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Search
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://internetsearchservice.com/search?q={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKLM\Software\Microsoft\Internet Explorer\SearchURL\w, = http://internetsearchservice.com/search?q=%s

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://internetsearchservice.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://internetsearchservice.com/search?q={searchTerms}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchPage =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\w, = http://internetsearchservice.com/search?q=%s
IE - URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Search the web"
FF - prefs.js..browser.search.defaulturl: "http://search.babylon.com/web/{searchTerms}?babsrc=browsersearch"
FF - prefs.js..browser.search.selectedEngine: "Search the web"
FF - prefs.js..browser.startup.homepage: "http://search.babylon.com/home"
FF - prefs.js..extensions.enabledItems: {3112ca9c-de6d-4884-a869-9855de68056c}:3.1.20081127W
FF - prefs.js..extensions.enabledItems: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7}:1.5.48.2
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.11

FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Program Files\Real\RealPlayer\browserrecord [2008/01/26 16:44:09 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.11\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/06/12 16:56:29 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.11\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/06/16 10:09:40 | 00,000,000 | ---D | M]

[2008/07/14 17:27:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Cyril\Application Data\mozilla\Extensions
[2008/07/14 17:27:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Cyril\Application Data\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/06/24 09:27:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Cyril\Application Data\mozilla\Firefox\Profiles\8vqnz8is.default\extensions
[2008/12/11 00:46:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Cyril\Application Data\mozilla\Firefox\Profiles\8vqnz8is.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2009/04/08 19:52:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Cyril\Application Data\mozilla\Firefox\Profiles\8vqnz8is.default\extensions\{b2e293ee-fd7e-4c71-a714-5f4750d8d7b7}
[2008/07/12 12:31:56 | 00,000,276 | ---- | M] () -- C:\Documents and Settings\Cyril\Application Data\Mozilla\FireFox\Profiles\8vqnz8is.default\searchplugins\search.xml
[2009/06/24 09:27:43 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2008/01/26 16:45:06 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2009/06/12 16:56:24 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2008/02/04 22:51:53 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\realplayer@partners.mozilla.com
[2008/07/12 12:32:17 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\sotfone-tracker@sotfone.ru
[2009/06/12 16:56:23 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009/06/12 16:56:23 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2009/06/12 16:56:26 | 00,065,528 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2004/12/14 03:19:18 | 00,057,344 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll
[2009/01/17 11:41:50 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin.dll
[2009/01/17 11:41:50 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll
[2009/01/17 11:41:50 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll
[2009/01/17 11:41:51 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll
[2009/01/17 11:41:51 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll
[2009/01/17 11:41:51 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll
[2009/01/17 11:41:51 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll
[2009/01/17 11:41:51 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin8.dll
[2008/12/21 10:37:45 | 00,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2009/04/30 14:06:37 | 00,002,194 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2008/12/21 10:37:45 | 00,000,757 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2008/12/21 10:37:45 | 00,001,706 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2008/12/21 10:37:45 | 00,000,748 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\MediaDICO-fr.xml
[2008/12/21 10:37:45 | 00,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2008/12/21 10:37:45 | 00,000,652 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml

O1 HOSTS File: (790 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Yahoo! Toolbar Helper) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (ECarteBleueBrowserHelper Class) - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\System32\BhoECart.dll (Orbiscom Ltd. All rights reserved.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (750623 Class) - {3CCCCEF1-D6D1-4BD0-84D3-BA6E364E7DCD} - C:\WINDOWS\System32\750623\750623.dll File not found
O2 - BHO: (ASCWarningBHO Class) - {58472BC6-BEA3-42d4-8917-7A8BCB0711B5} - C:\Program Files\ASC 2.1\ASCWarning32.dll File not found
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar avec bloqueur de fenêtres pop-up) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll (Google Inc.)
O4 - HKLM..\Run: [AA_SecuUFD] File not found
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe (Alps Electric Co., Ltd.)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.CPL (Microsoft Corporation)
O4 - HKLM..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe (Easy Systems Japan Ltd.)
O4 - HKLM..\Run: [Hcontrol] C:\WINDOWS\ATK0100\Hcontrol.exe ()
O4 - HKLM..\Run: [HKSERV.EXE] C:\Program Files\Sony\HotKey Utility\HKserv.exe (Sony Corporation)
O4 - HKLM..\Run: [ISBMgr.exe] C:\Program Files\Sony\ISB Utility\ISBMgr.exe (Sony Corporation)
O4 - HKLM..\Run: [ISUSPM Startup] C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [Mouse Suite 98 Daemon] C:\WINDOWS\System32\ICO.EXE (Primax Electronics Ltd.)
O4 - HKLM..\Run: [OneCareUI] C:\Program Files\Microsoft Windows OneCare Live\winssnotify.exe (Microsoft Corporation)
O4 - HKLM..\Run: [pp] C:\windows\pp10.exe ()
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\qttask.exe (Apple Inc.)
O4 - HKLM..\Run: [SonyPowerCfg] C:\Program Files\sony\vaio power management\SPMgr.exe (Sony Corporation)
O4 - HKLM..\Run: [sysfbtray] C:\windows\freddy46.exe ()
O4 - HKLM..\Run: [sysldtray] C:\windows\ld10.exe ()
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [UserFaultCheck] File not found
O4 - HKLM..\Run: [VAIO Update 3] File not found
O4 - HKCU..\Run: [ISUSPM] C:\Documents and Settings\All Users\Application Data\Macrovision\FLEXnet Connect\6\ISUSPM.exe (Macrovision Corporation)
O4 - HKCU..\Run: [MSMSGS] C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Assistant d'Acrobat.lnk = C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe (Adobe Systems Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Audio Filter.lnk = C:\Program Files\sony\sonicstage mastering studio\audio filter\SSMSFilter.exe (Sony Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe (Adobe Systems Incorporated)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Microsoft Office.lnk = D:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Service Manager.lnk = C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoNetHood = 1
O9 - Extra 'Tools' menuitem : IE Anti-Spyware - {9034A523-D068-4BE8-A284-9DF278BE776E} - File not found
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\System32\wshbth.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\System32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\System32\rsvpsp.dll (Microsoft Corporation)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKCU\..Trusted Domains: sony-europe.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: sonystyle-europe.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: vaio-link.com ([]* in Trusted sites)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\yinsthelper.dll (YInstStarter Class)
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase5036.cab (Windows Live Safety Center Base Module)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.241 212.27.40.240
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O22 - SharedTaskScheduler: {629340b5-8df6-4211-9245-a86563a35792} - enation - Reg Error: Key error. File not found
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004/08/26 14:49:27 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{4d6f2620-7a03-11dd-9cf8-080046eaa043}\Shell - "" = AutoRun
O33 - MountPoints2\{4d6f2620-7a03-11dd-9cf8-080046eaa043}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe -- File not found
O33 - MountPoints2\{69a78020-c2eb-11da-9af3-080046dbc0de}\Shell - "" = AutoRun
O33 - MountPoints2\{69a78020-c2eb-11da-9af3-080046dbc0de}\Shell\AutoRun\command - "" = H:\ReadMe.exe -- File not found
O33 - MountPoints2\{6af1abe4-7dcc-11dd-9d07-080046dbc0de}\Shell - "" = AutoRun
O33 - MountPoints2\{6af1abe4-7dcc-11dd-9d07-080046dbc0de}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe -- File not found
O33 - MountPoints2\{7b868930-7be4-11dd-9d01-080046eaa043}\Shell - "" = AutoRun
O33 - MountPoints2\{7b868930-7be4-11dd-9d01-080046eaa043}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe -- File not found
O33 - MountPoints2\{82497770-7a50-11dd-9cf9-080046eaa043}\Shell - "" = AutoRun
O33 - MountPoints2\{82497770-7a50-11dd-9cf9-080046eaa043}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe -- File not found
O33 - MountPoints2\{e1ba2dd0-7e4d-11dd-9d08-080046eaa043}\Shell - "" = AutoRun
O33 - MountPoints2\{e1ba2dd0-7e4d-11dd-9d08-080046eaa043}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -- File not found
O33 - MountPoints2\{e449b870-7e59-11dd-9d0c-080046dbc0de}\Shell - "" = AutoRun
O33 - MountPoints2\{e449b870-7e59-11dd-9d0c-080046dbc0de}\Shell\AutoRun\command - "" = G:\StartVMCLite.exe -- File not found
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found

========== Files/Folders - Created Within 30 Days ==========

[2 C:\WINDOWS\*.tmp files]
[2009/06/24 22:00:43 | 00,512,512 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Cyril\Bureau\OTL(2).exe
[2009/06/24 21:58:42 | 00,512,512 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Cyril\Bureau\OTL.exe
[2009/06/24 21:54:47 | 00,000,432 | -H-- | C] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{7F84B6E3-CC5D-48AC-9955-DBDEF5D2F63E}.job
[2009/06/24 21:33:46 | 00,000,634 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Navilog1.lnk
[2009/06/24 21:33:40 | 00,000,000 | ---D | C] -- C:\Program Files\Navilog1
[2009/06/24 21:30:46 | 00,574,705 | ---- | C] (IL-MAFIOSO ) -- C:\Documents and Settings\Cyril\Bureau\Navilog1.exe
[2009/06/24 21:16:20 | 00,001,738 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\HijackThis.lnk
[2009/06/24 21:16:18 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2009/06/24 21:14:03 | 00,812,344 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Cyril\Bureau\HJTInstall.exe
[2009/06/24 20:04:13 | 00,000,162 | -H-- | C] () -- C:\Documents and Settings\Cyril\Bureau\~$thilde, c'est dur d'être grande.doc
[2009/06/24 17:52:30 | 00,149,394 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\TRIBULATIONS D.odt
[2009/06/24 15:47:02 | 00,000,010 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2009/06/24 14:58:20 | 00,019,968 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\SINGHA 23-06-09.doc
[2009/06/24 14:25:25 | 00,019,456 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\TOUTE AUTRE CHOSE 23-06-09.doc
[2009/06/24 12:48:57 | 00,019,456 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\DESTINATION DECO 23-06-09.doc
[2009/06/23 20:52:39 | 00,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2009/06/23 20:03:16 | 00,091,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\msfwdrv.sys
[2009/06/23 20:03:01 | 00,116,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\msfwhlpr.sys
[2009/06/23 20:01:06 | 00,053,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\MpFilter.sys
[2009/06/23 19:44:10 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Windows OneCare Live
[2009/06/23 19:43:16 | 01,483,128 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\Cyril\Bureau\SetupOneCare.exe
[2009/06/23 17:41:08 | 00,000,002 | ---- | C] () -- C:\WINDOWS\010112010146115110.dat
[2009/06/23 17:41:07 | 00,014,848 | -H-- | C] () -- C:\WINDOWS\pp10.exe
[2009/06/23 17:41:07 | 00,000,001 | ---- | C] () -- C:\WINDOWS\934fdfg34fgjf23
[2009/06/23 17:41:07 | 00,000,000 | ---D | C] -- C:\Program Files\sys
[2009/06/23 17:41:01 | 00,000,002 | ---- | C] () -- C:\WINDOWS\010112010146118114.dat
[2009/06/23 17:40:58 | 00,000,001 | -H-- | C] () -- C:\WINDOWS\bf23567.dat
[2009/06/23 17:40:57 | 00,041,472 | -H-- | C] () -- C:\WINDOWS\freddy46.exe
[2009/06/23 17:40:57 | 00,000,002 | ---- | C] () -- C:\WINDOWS\0101120101465452.dat
[2009/06/23 17:40:35 | 00,014,848 | -H-- | C] () -- C:\WINDOWS\ld10.exe
[2009/06/23 15:13:15 | 00,021,504 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\LODGE GALLERY 22-06-09.doc
[2009/06/23 14:19:30 | 00,020,992 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\MARINE BEAUTE 22-06-09.doc
[2009/06/23 11:36:09 | 00,019,968 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\UNE MAISON AU BORD DE L EAU 22-06-09.doc
[2009/06/19 23:26:48 | 00,003,050 | ---- | C] () -- C:\Documents and Settings\Cyril\Mes documents\attestation impot 2008.pdf
[2009/06/19 17:10:24 | 00,019,968 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\A LA MAISON D'ICI 19-06-09.doc
[2009/06/18 18:56:17 | 00,019,456 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\anniv will.doc
[2009/06/18 17:35:19 | 00,056,564 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\picot gat mort.jpg
[2009/06/18 17:34:15 | 00,056,564 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\e89a73d4cc.jpg
[2009/06/18 16:00:39 | 00,927,232 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\capture écran st med.doc
[2009/06/18 14:52:08 | 00,712,704 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\thématiques.doc
[2009/06/18 14:42:29 | 00,025,088 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\pictos.jpg
[2009/06/18 14:37:34 | 00,028,276 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\1vigne.jpg
[2009/06/18 14:31:29 | 00,012,479 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\silhotte femme.jpg
[2009/06/18 14:23:14 | 00,008,189 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\arbre.gif
[2009/06/18 08:57:46 | 00,019,456 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\VILLA MONTGOLFIER 18-06-09.doc
[2009/06/17 01:07:38 | 00,674,304 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\lagunes gat mort BOOK.doc
[2009/06/17 00:19:24 | 00,054,784 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\UNE HISTOIRE DE PASSION BOOK.doc
[2009/06/16 22:41:18 | 00,166,400 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\BORDEAUX EN FETE - BOOK.doc
[2009/06/16 17:08:33 | 00,020,480 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\LE JARDIN DES LETTRES 16-06-09.doc
[2009/06/16 10:43:01 | 00,019,456 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\CASA LOLA BY E 16-06-09.doc
[2009/06/16 10:16:32 | 00,019,456 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\LES SECRETS DE MARIE 16-06-09.doc
[2009/06/15 13:27:24 | 01,226,228 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\view.pdf
[2009/06/12 15:27:22 | 00,019,968 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\DIVINE ET SENS 12-06-09.doc
[2009/06/11 16:37:48 | 00,020,992 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\RECAP SEPTEMBRE O9.doc
[2009/06/11 15:37:42 | 00,024,576 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\TRENTE TROIS 11-06-09.doc
[2009/06/11 11:36:59 | 00,019,456 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\MARIE CLAIRE 11-06-09.doc
[2009/06/11 10:38:12 | 00,019,456 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\ROSE DES VENTS 11-06-09.doc
[2009/06/11 10:27:43 | 00,019,456 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\10-06-09.doc
[2009/06/10 16:24:55 | 00,019,968 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\ATELIER ALEXIA 10-06-09.doc
[2009/06/09 17:46:26 | 00,019,968 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\MISS SERAPHINE 09-06-09.doc
[2009/06/09 17:20:51 | 00,019,456 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\NOVELTY 09-06-09.doc
[2009/06/09 13:13:14 | 00,019,456 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\Indécise.doc
[2009/06/09 11:35:43 | 00,024,576 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\AGENCE IMMO DE LA PRESQU'ILE 09-06-09.doc
[2009/06/09 10:32:43 | 00,019,968 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\3COLLECTION 09-06-09.doc
[2009/06/04 15:45:13 | 00,040,448 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\LICENCE PROFESSIONNELLE JDE.doc
[2009/06/04 15:19:13 | 00,014,783 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\Inforec.png
[2009/06/01 23:53:47 | 04,259,038 | -H-- | C] () -- C:\Documents and Settings\Cyril\Local Settings\Application Data\IconCache.db
[2009/05/30 17:28:18 | 00,023,040 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\BLOG.doc
[2009/05/27 11:19:10 | 00,043,008 | ---- | C] () -- C:\Documents and Settings\Cyril\Bureau\Mathilde, c'est dur d'être grande.doc
[2008/01/27 21:02:15 | 00,053,248 | ---- | C] () -- C:\WINDOWS\System32\ArmAccess.dll
[2008/01/21 22:07:49 | 00,000,000 | ---- | C] () -- C:\WINDOWS\VAIOUpdt.INI
[2007/04/23 10:17:02 | 00,000,288 | ---- | C] () -- C:\WINDOWS\UIpref.ini
[2006/11/22 15:12:09 | 00,001,143 | ---- | C] () -- C:\WINDOWS\FALOCAL.INI
[2005/11/18 18:20:45 | 00,000,089 | ---- | C] () -- C:\WINDOWS\DIGI2.INI
[2005/11/14 16:37:06 | 00,000,000 | ---- | C] () -- C:\WINDOWS\prlayout.ini
[2005/11/03 12:41:21 | 00,000,043 | ---- | C] () -- C:\WINDOWS\OIS.INI
[2005/08/03 13:02:04 | 00,000,024 | ---- | C] () -- C:\WINDOWS\AUDISCD.INI
[2005/08/03 10:26:04 | 00,000,032 | ---- | C] () -- C:\WINDOWS\REM020.INI
[2005/08/03 10:23:55 | 00,000,160 | ---- | C] () -- C:\WINDOWS\aud020.ini
[2005/08/03 10:23:32 | 00,000,118 | ---- | C] () -- C:\WINDOWS\AURICAL.INI
[2005/06/28 14:50:52 | 00,000,283 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2005/06/28 14:50:46 | 00,000,000 | ---- | C] () -- C:\WINDOWS\AUTORUN.INI
[2005/05/31 17:41:27 | 00,000,114 | ---- | C] () -- C:\WINDOWS\fit013L.ini
[2005/04/19 11:07:12 | 00,000,146 | ---- | C] () -- C:\WINDOWS\GNDB.ini
[2005/04/05 11:31:13 | 00,000,040 | ---- | C] () -- C:\WINDOWS\DFDBASE.INI
[2005/02/22 19:01:03 | 00,000,893 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2005/02/22 17:16:00 | 00,000,635 | ---- | C] () -- C:\WINDOWS\unifit.ini
[2005/02/22 17:08:30 | 00,000,059 | ---- | C] () -- C:\WINDOWS\WIN011.INI
[2005/02/22 17:08:30 | 00,000,031 | ---- | C] () -- C:\WINDOWS\VersionWindows.INI
[2005/02/22 17:08:28 | 00,000,492 | ---- | C] () -- C:\WINDOWS\FIT011.INI
[2005/02/22 13:10:01 | 00,000,108 | ---- | C] () -- C:\WINDOWS\amplifit.ini
[2005/02/21 13:24:51 | 00,000,111 | ---- | C] () -- C:\WINDOWS\MESWBOX.INI
[2005/02/21 13:20:58 | 00,001,919 | ---- | C] () -- C:\WINDOWS\FIT079.INI
[2005/02/21 13:12:54 | 00,000,011 | ---- | C] () -- C:\WINDOWS\hicoss.ini
[2005/02/21 13:01:57 | 00,000,045 | ---- | C] () -- C:\WINDOWS\hipro.ini
[2005/02/21 13:01:56 | 00,001,162 | ---- | C] () -- C:\WINDOWS\connexx.ini
[2005/02/21 13:01:56 | 00,000,110 | ---- | C] () -- C:\WINDOWS\cdctrl.ini
[2005/02/21 13:01:56 | 00,000,060 | ---- | C] () -- C:\WINDOWS\siifs.ini
[2005/02/21 13:01:56 | 00,000,008 | ---- | C] () -- C:\WINDOWS\cxx_aud.ini
[2005/02/21 13:01:30 | 00,000,385 | ---- | C] () -- C:\WINDOWS\unity.ini
[2005/02/21 10:19:16 | 00,019,968 | ---- | C] () -- C:\WINDOWS\System32\Cpuinf32.dll
[2004/08/27 13:16:47 | 00,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2004/08/27 11:35:37 | 00,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2004/08/27 11:35:37 | 00,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2004/08/27 11:35:37 | 00,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2004/08/27 11:35:37 | 00,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2004/08/27 11:35:37 | 00,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2004/08/27 11:35:37 | 00,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2004/08/26 16:34:50 | 00,002,485 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2004/08/26 16:34:35 | 00,000,662 | ---- | C] () -- C:\WINDOWS\win.ini
[2004/08/26 16:34:33 | 00,000,231 | ---- | C] () -- C:\WINDOWS\system.ini
[2004/08/26 15:17:39 | 00,155,648 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2004/08/26 14:54:44 | 00,000,837 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2004/08/26 14:53:17 | 00,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2004/07/02 11:03:06 | 00,005,786 | ---- | C] () -- C:\WINDOWS\System32\drivers\ATKACPI.sys
[2004/02/02 13:42:26 | 00,131,072 | ---- | C] () -- C:\WINDOWS\System32\e1000msg.dll
[2001/10/24 16:00:40 | 00,524,288 | ---- | C] () -- C:\WINDOWS\System32\TDI-SonyOMG.dll
[1999/11/21 23:18:42 | 00,001,559 | ---- | C] () -- C:\WINDOWS\FIT002.INI
[1999/01/22 20:46:58 | 00,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL

========== Files - Modified Within 30 Days ==========

[1 C:\WINDOWS\System32\*.tmp files]
[2 C:\WINDOWS\*.tmp files]
[2009/06/24 22:00:43 | 00,512,512 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Cyril\Bureau\OTL(2).exe
[2009/06/24 21:58:49 | 00,512,512 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Cyril\Bureau\OTL.exe
[2009/06/24 21:57:29 | 00,000,432 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{7F84B6E3-CC5D-48AC-9955-DBDEF5D2F63E}.job
[2009/06/24 21:48:38 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009/06/24 21:48:31 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009/06/24 21:33:46 | 00,000,634 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Navilog1.lnk
[2009/06/24 21:30:53 | 00,574,705 | ---- | M] (IL-MAFIOSO ) -- C:\Documents and Settings\Cyril\Bureau\Navilog1.exe
[2009/06/24 21:16:20 | 00,001,738 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\HijackThis.lnk
[2009/06/24 21:14:12 | 00,812,344 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\Cyril\Bureau\HJTInstall.exe
[2009/06/24 20:21:00 | 00,043,008 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\Mathilde, c'est dur d'être grande.doc
[2009/06/24 20:04:13 | 00,000,162 | -H-- | M] () -- C:\Documents and Settings\Cyril\Bureau\~$thilde, c'est dur d'être grande.doc
[2009/06/24 17:52:34 | 00,149,394 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\TRIBULATIONS D.odt
[2009/06/24 15:47:03 | 00,000,010 | ---- | M] () -- C:\WINDOWS\WININIT.INI
[2009/06/24 15:08:37 | 00,019,968 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\SINGHA 23-06-09.doc
[2009/06/24 14:25:25 | 00,019,456 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\TOUTE AUTRE CHOSE 23-06-09.doc
[2009/06/24 14:04:52 | 00,019,456 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\DESTINATION DECO 23-06-09.doc
[2009/06/23 20:56:26 | 00,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2009/06/23 19:43:39 | 01,483,128 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Cyril\Bureau\SetupOneCare.exe
[2009/06/23 17:44:09 | 00,014,848 | -H-- | M] () -- C:\WINDOWS\ld10.exe
[2009/06/23 17:41:09 | 00,000,002 | ---- | M] () -- C:\WINDOWS\010112010146115110.dat
[2009/06/23 17:41:07 | 00,014,848 | -H-- | M] () -- C:\WINDOWS\pp10.exe
[2009/06/23 17:41:07 | 00,000,001 | ---- | M] () -- C:\WINDOWS\934fdfg34fgjf23
[2009/06/23 17:41:01 | 00,000,002 | ---- | M] () -- C:\WINDOWS\010112010146118114.dat
[2009/06/23 17:40:58 | 00,000,001 | -H-- | M] () -- C:\WINDOWS\bf23567.dat
[2009/06/23 17:40:57 | 00,041,472 | -H-- | M] () -- C:\WINDOWS\freddy46.exe
[2009/06/23 17:40:57 | 00,000,002 | ---- | M] () -- C:\WINDOWS\0101120101465452.dat
[2009/06/23 15:46:03 | 00,021,504 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\LODGE GALLERY 22-06-09.doc
[2009/06/23 14:49:50 | 00,020,992 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\MARINE BEAUTE 22-06-09.doc
[2009/06/23 14:18:49 | 00,019,968 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\UNE MAISON AU BORD DE L EAU 22-06-09.doc
[2009/06/23 09:27:20 | 00,019,968 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\A LA MAISON D'ICI 19-06-09.doc
[2009/06/22 18:32:46 | 00,118,272 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\perso.doc
[2009/06/22 17:24:45 | 00,041,984 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\LOUD.doc
[2009/06/19 23:26:48 | 00,003,050 | ---- | M] () -- C:\Documents and Settings\Cyril\Mes documents\attestation impot 2008.pdf
[2009/06/19 21:52:03 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2009/06/19 11:30:48 | 00,023,040 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\BLOG.doc
[2009/06/19 10:42:38 | 00,132,608 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\CV CECILE GEORGES.doc
[2009/06/19 10:12:14 | 00,002,433 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\Microsoft Word.lnk
[2009/06/18 20:32:57 | 00,166,400 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\BORDEAUX EN FETE - BOOK.doc
[2009/06/18 20:29:55 | 00,054,784 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\UNE HISTOIRE DE PASSION BOOK.doc
[2009/06/18 18:56:17 | 00,019,456 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\anniv will.doc
[2009/06/18 18:05:46 | 00,712,704 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\thématiques.doc
[2009/06/18 17:35:20 | 00,056,564 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\picot gat mort.jpg
[2009/06/18 17:34:16 | 00,056,564 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\e89a73d4cc.jpg
[2009/06/18 17:20:15 | 00,012,479 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\silhotte femme.jpg
[2009/06/18 16:56:11 | 00,028,276 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\1vigne.jpg
[2009/06/18 16:29:27 | 00,674,304 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\lagunes gat mort BOOK.doc
[2009/06/18 16:06:47 | 00,927,232 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\capture écran st med.doc
[2009/06/18 14:42:29 | 00,025,088 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\pictos.jpg
[2009/06/18 14:23:16 | 00,008,189 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\arbre.gif
[2009/06/18 09:26:06 | 00,019,456 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\CASA LOLA BY E 16-06-09.doc
[2009/06/18 09:22:01 | 00,019,456 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\VILLA MONTGOLFIER 18-06-09.doc
[2009/06/16 17:22:11 | 00,020,480 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\LE JARDIN DES LETTRES 16-06-09.doc
[2009/06/16 10:26:10 | 00,019,456 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\LES SECRETS DE MARIE 16-06-09.doc
[2009/06/15 13:27:24 | 01,226,228 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\view.pdf
[2009/06/12 15:27:36 | 00,019,968 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\DIVINE ET SENS 12-06-09.doc
[2009/06/12 09:12:56 | 00,019,968 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\3COLLECTION 09-06-09.doc
[2009/06/11 17:52:54 | 00,024,576 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\TRENTE TROIS 11-06-09.doc
[2009/06/11 17:44:41 | 00,024,576 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\AGENCE IMMO DE LA PRESQU'ILE 09-06-09.doc
[2009/06/11 17:40:25 | 00,019,456 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\ROSE DES VENTS 11-06-09.doc
[2009/06/11 17:36:07 | 00,019,968 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\ATELIER ALEXIA 10-06-09.doc
[2009/06/11 17:15:39 | 00,019,968 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\MISS SERAPHINE 09-06-09.doc
[2009/06/11 17:07:47 | 00,019,456 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\MARIE CLAIRE 11-06-09.doc
[2009/06/11 17:01:01 | 00,019,456 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\NOVELTY 09-06-09.doc
[2009/06/11 16:57:09 | 00,020,992 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\RECAP SEPTEMBRE O9.doc
[2009/06/11 10:27:44 | 00,019,456 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\10-06-09.doc
[2009/06/11 08:39:49 | 00,161,936 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009/06/09 13:13:14 | 00,019,456 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\Indécise.doc
[2009/06/04 15:45:13 | 00,040,448 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\LICENCE PROFESSIONNELLE JDE.doc
[2009/06/04 15:19:14 | 00,014,783 | ---- | M] () -- C:\Documents and Settings\Cyril\Bureau\Inforec.png
[2009/06/01 23:53:49 | 04,259,038 | -H-- | M] () -- C:\Documents and Settings\Cyril\Local Settings\Application Data\IconCache.db
[2009/06/01 18:51:12 | 23,635,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MRT.exe

========== LOP Check ==========

[2009/05/03 10:39:23 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\All Users\Application Data
[2009/01/17 11:44:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[2008/09/04 09:09:05 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Macrovision
[2007/09/20 16:22:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Oticon
[2006/02/28 11:10:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Phonak Group
[2004/08/26 14:55:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SBSI
[2008/07/12 12:42:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2007/05/25 09:39:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Unitron Hearing
[2009/05/03 10:39:22 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Cyril\Application Data
[2008/11/23 14:24:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Cyril\Application Data\Auslogics
[2008/11/30 18:48:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Cyril\Application Data\DeepBurner
[2005/03/15 17:11:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Cyril\Application Data\InterVideo
[2005/02/21 12:39:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Cyril\Application Data\Leadertech
[2008/09/04 09:25:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Cyril\Application Data\Macrovision
[2005/03/01 11:28:12 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Cyril\Application Data\Template
[2008/09/09 11:04:17 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Cyril\Application Data\U3
[2009/06/19 21:52:03 | 00,000,284 | ---- | M] () -- C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
[2003/04/24 14:00:00 | 00,000,065 | RH-- | M] () -- C:\WINDOWS\Tasks\desktop.ini
[2009/06/24 21:48:38 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\Tasks\SA.DAT
[2005/09/06 17:05:49 | 00,000,314 | ---- | M] () -- C:\WINDOWS\Tasks\System Lifeguard 2 Shutdown Task.job
[2009/06/24 21:57:29 | 00,000,432 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{7F84B6E3-CC5D-48AC-9955-DBDEF5D2F63E}.job

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F085C8A1
< End of report >

bonsoir, c'est encore moi.. je ne sais pas si je devais copier tout ça : je dévoile tout mon PC ou presque....

Bonsoir,

J'ai besoin des rapports pour désinfecter ton système. Cela ne présente que très peu de risques.
Désactive tes logiciels de sécurité durant la procédure.

1) Relance OTL

- Copie-colle l'entièreté de ceci ci dessous dans la partie "Customs Scans/Fixes" :


Clique ensuite sur "Run Fix". Note: Un redémarrage est parfois nécessaire. S'il est demandé, cliquer sur Oui/Yes

Une fois l'opération terminée, un fichier texte apparaîtra à l'écran. Copie/colle son contenu ici.


2) Télécharge Malwarebytes Anti-Malware.

- Installe-le et fais les mises à jour.


3) Lance MBAM :

- Coche la case "Exécuter un examen complet" puis clique sur Rechercher.
- Sélectionne (coche) toutes tes partitions puis clique sur "Lancer l'examen".
- Lorsque le scan est terminé, un message te prévient. Clique alors sur le bouton "Montrer les résultats".
- Dans la fenêtre suivante clique sur "Supprimer la sélection". Si le programme te propose de redémarrer l'ordinateur, accepte!
- Le rapport de scan va s'afficher. Sauvegarde le puis poste son contenu.


4) Analyse ton système avec le Kaspersky Online Scanner. Tutorial.
Poste le résultat de l'analyse ici.


Comment se comporte le système ?


Cordialement.

les anti virus, doivent ils tous être désactivés ??? je ne suis pas sure qu'ils le soient ??

Il te suffit simplement de désactiver celui de la suite OneCare.

Voici encore ....

OTL Extras logfile created on: 24/06/2009 22:08:51 - Run 1
OTL by OldTimer - Version 3.0.5.2 Folder = C:\Documents and Settings\Cyril\Bureau
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

510,80 Mb Total Physical Memory | 39,80 Mb Available Physical Memory | 7,79% Memory free
1,22 Gb Paging File | 0,70 Gb Available in Paging File | 57,02% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 27,95 Gb Total Space | 8,29 Gb Free Space | 29,65% Space Free | Partition Type: NTFS
Drive D: | 46,58 Gb Total Space | 46,41 Gb Free Space | 99,63% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: SONY_VAIO
Current User Name: Cyril
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- C:\WINDOWS\hh.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.scr [@ = scrfile] -- "%1" /S "%3"

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001040C-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 Professional
"{013E1BA8-C815-4E27-BCB9-D6B1B2E24094}" = SonicStage Mastering Studio Audio Filter Custom Preset
"{01AF4645-78E6-46C4-B528-54863679CC40}" = VAIO SLIT-C Screen Saver
"{11B569C2-4BF6-4ED0-9D17-A4273943CB24}" = Adobe Photoshop Album 2.0 Edition Découverte
"{1A91D1FA-B9B3-4556-9878-5C61059A19B2}" = InterVideo WinDVDX
"{1EB317D8-8945-4FD6-B37F-DF470317C6AB}" = VAIO Media 3.1
"{2083AC1F-D26D-4ACA-9CD0-FE4836933360}" = EXPRESSfit 5 for NOAH 3
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{266AEE68-5718-4A31-BDD3-D356B1250C70}" = VAIO SLIT Pattern Wallpaper
"{2682B22A-E537-4B5E-9B9F-3998ED21E414}" = SHS Software UnityFitting Component
"{27579b3c-5470-4496-be6c-0c872674f19f}" = Macromedia Flash Player
"{2ADE2157-7A5E-122C-B51D-EB8A01B15943}" = DeepBurner v1.9.0.228
"{2CCBABCB-6427-4A55-B091-49864623C43F}" = Google Toolbar for Firefox
"{318AB667-3230-41B5-A617-CB3BF748D371}" = iTunes
"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3600FB01-C63B-4A3D-B044-BB21792C6811}" = VAIO SLIT-B Screen Saver
"{3851147E-5A91-4469-BA4D-13FFFCC8A920}" = Microsoft Windows OneCare Live v2.5.2900.24 Idcrl Install
"{5165EA11-E487-4DE8-AC45-D3707549C835}" = SHS Software Fitting Component
"{5660022E-F3F2-4126-8CC5-9726C47150EB}" = Microsoft Windows Live OneCare Resources v2.5.2900.24
"{62B715BC-01F5-4CC9-9811-D24ED44C16D4}" = My Info Centre
"{63859E52-7E34-4245-BA68-3146BDD1F61D}" = Genie additionals
"{6513E869-647F-40FD-A55D-CFC92579B9BA}" = PX Engine
"{668B1BD6-4593-4959-970E-249AFFE6F35C}" = VOR
"{685BCC47-B8EC-45EC-BBCE-77DF2451502C}" = DVgate Plus
"{689404D2-1C94-44B3-9203-BEC5594FDA7A}" = Microsoft SQL Server Desktop Engine (HIMSA)
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6990A2BF-D1D2-11D3-81BC-00609789C908}" = Sony Video Shared Library
"{6F1974D6-4249-43B6-88B0-9A9B8A33956C}" = OpenMG Secure Module 4.0.00
"{7128C69B-8F7E-4336-8698-3FD3CDD955EC}" = VAIO Media Redistribution 3.1
"{71D6CE84-B7DC-4166-8E0D-56C1C37BFB5A}" = SonicStage 2.1.00
"{78CBEDE0-3419-4518-8AD3-E4C8FC233DD2}" = Microsoft Protection Service
"{7998F67D-655B-42E3-B651-18D96DD17268}" = Adobe Premiere Standard
"{7A79D11B-FD82-4A5E-834F-20173515DD14}" = VAIO Media Integrated Server 3.1
"{7C2F71B2-6C73-11D6-B659-00C04F790F76}" = Click to DVD 2.1.10
"{88DA0A52-3372-4803-971A-ADFB961707E8}" = PictureGear Studio 2.0
"{8A8819FD-439C-43FF-B41B-3086B85D9388}" = SHS Software Common Component
"{8B21B9EF-6DBF-4F63-8CC7-9F6A56D1EE8E}" = GTOneCare
"{8D324F1B-A39E-4D5A-BA58-147416FE019A}" = VAIO SLIT-A Screen Saver
"{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}" = InterVideo WinDVD 5 for VAIO
"{924EB80F-C2BB-4B9F-8412-88BBA937393F}" = MobileMe Control Panel
"{936FADC9-C609-471A-B6F2-A33E2E660D1A}" = Sony Notebook Setup
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{98A3A654-3AEF-42D9-BA91-DE5815EA5897}" = Données de menu Click to DVD 2.0.01
"{9A394342-4A68-4EBA-85A6-55B559F4E700}" = Microsoft .NET Framework 1.1 French Language Pack
"{9E158BB9-37B9-464B-837E-CC1D5766291B}" = VAIO Update 3
"{9E319E96-ED8E-4B01-9775-C521A1869A25}" = VAIO Power Management
"{A17456ED-3432-49FF-A14D-E0F00A96A2AA}" = VAIO SLIT Scene Wallpaper
"{A43F939E-A863-433D-AC78-0897E44CFEB2}" = VAIO Launcher
"{AB467B85-4F52-48C2-AEED-0673D00417B0}" = SonicStage Mastering Studio Audio Filter
"{AC76BA86-7AD7-1036-7B44-A70000000000}" = Adobe Reader 7.0 - Français
"{AC76BA86-7AD7-1036-7B44-A81200000003}" = Adobe Reader 8.1.2 - Français
"{B4C88CF0-B617-4658-8F84-C4E847FBC9F7}" = Microsoft Managed DirectX (1126)
"{B508B3F1-A24A-32C0-B310-85786919EF28}" = Microsoft .NET Framework 2.0 Service Pack 1
"{BB311F54-39D6-4A03-8E18-053D1B2833D7}" = HotKey Utility
"{BF3B304B-8A18-452D-A19F-6012CA8418D7}" = SonicStage Mastering Studio 1.3
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{D07A8E7E-D324-4945-BA8C-E532AD008FF3}" = Microsoft Windows OneCare Live v2.5.2900.24
"{D67B1C57-0E05-4F8C-9011-1C8BAE293782}" = Samsung PC Studio
"{D8E2BDAE-4AEB-464D-A410-89AF090B08D9}" = VAIO GrandBlue Wallpaper
"{D917FD82-6CE5-489A-AAF8-C701AAC85C4D}" = VAIO Entertainment Platform
"{DC6E3CD5-A93D-44EA-85AE-894C1603B7E2}" = VAIO TV Tuner Library 1.1
"{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = AusLogics Disk Defrag
"{E09B48B5-E141-427A-AB0C-D3605127224A}" = Microsoft SQL Server Desktop Engine (PHONAKGROUPDB)
"{E26B83D1-C0BB-41BC-8F44-31D5354DD6AF}" = Microsoft Windows OneCare Live AntiSpyware and AntiVirus
"{EC4455AB-F155-4CC1-A4C5-88F3777F9886}" = Apple Mobile Device Support
"{ED8D39F2-7FFA-45EC-B148-EF2472955BB4}" = VAIO Zone
"{EE7EB179-5AA2-4B28-AC92-5CBAAF82BA7F}" = SonicStage Mastering Studio Plugins 1.3
"{EF3D45BB-2260-4008-88EA-492E7744A9DF}" = Sony Utilities DLL
"{F958CA02-BB40-4007-894B-258729456EE4}" = QuickTime
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FF4721E5-9770-4419-83FB-CAE9887B2835}" = eTONA
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop Elements 2.0" = Adobe Photoshop Elements 2.0
"CCleaner" = CCleaner (remove only)
"CNXT_MODEM_PCI_VEN_8086&DEV_24C6&SUBSYS_818C104D" = SoftV92 Data Fax Modem
"Fix-It1.0" = Ontrack Fix-It Utilities 3.0
"Free.fr" = Free - Kit de connexion
"GN ReSound" = GN ReSound
"Hcontrol" = ATK0100 ACPI UTILITY
"HijackThis" = HijackThis 2.0.2
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"InstallShield_{62B715BC-01F5-4CC9-9811-D24ED44C16D4}" = My Info Centre
"InstallShield_{668B1BD6-4593-4959-970E-249AFFE6F35C}" = Enregistrement en ligne VAIO (Français)
"InstallShield_{6F1974D6-4249-43B6-88B0-9A9B8A33956C}" = OpenMG Secure Module 4.0.00
"Kithara Runtime Installation for Unity32" = Kithara Runtime Installation for Unity32
"Macromedia Shockwave Player" = Macromedia Shockwave Player
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"MoodLogic" = MoodLogic
"MouseSuite98" = Sony USB Mouse
"Mozilla Firefox (3.0.11)" = Mozilla Firefox (3.0.11)
"Navilog1_is1" = Navilog1 4.0.0
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"OpenMG HotFix4.0-04-06-21-01" = OpenMG Limited Patch 4.0-04-07-14-01
"PROSet" = Intel(R) PRO Network Adapters and Drivers
"RealPlayer 6.0" = RealPlayer
"ReSource16" = ReSource II for Noah
"Shockwave" = Shockwave
"ShockwaveFlash" = Macromedia Flash Player 8
"Sierra Utilities" = Utilitaires Sierra
"Virtualis Crédit Mutuel" = Virtualis Crédit Mutuel
"Wetrix for Windows 95" = Wetrix for Windows 95
"Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner
"Windows XP Service" = Windows XP Service Pack 3
"Windows XP Service Pack" = Windows XP Service Pack 2
"WinSS" = Windows Live OneCare
"Yahoo! Companion" = Yahoo! Toolbar avec bloqueur de fenêtres pop-up
"Yahoo! Toolbar" = Yahoo! Toolbar
"YInstHelper" = Yahoo! Install Manager

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 14/05/2009 10:57:51 | Computer Name = SONY_VAIO | Source = Application Error | ID = 1000
Description = Application défaillante winword.exe, version 9.0.0.2823, module défaillant
winword.exe, version 9.0.0.2823, adresse de défaillance 0x0018994c.

Error - 19/06/2009 09:45:17 | Computer Name = SONY_VAIO | Source = Application Hang | ID = 1002
Description = Application bloquée rundll32.exe, version 5.1.2600.5512, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 23/06/2009 15:19:39 | Computer Name = SONY_VAIO | Source = WmiAdapter | ID = 4099
Description = Échec de l'ouverture de services.

Error - 23/06/2009 15:20:10 | Computer Name = SONY_VAIO | Source = WmiAdapter | ID = 4099
Description = Échec de l'ouverture de services.

Error - 23/06/2009 15:37:42 | Computer Name = SONY_VAIO | Source = Application Error | ID = 1000
Description = Application défaillante winss.exe, version 2.5.2900.24, module défaillant
ntdll.dll, version 5.1.2600.5755, adresse de défaillance 0x000101b3.

Error - 23/06/2009 15:38:00 | Computer Name = SONY_VAIO | Source = Application Error | ID = 1000
Description = Application défaillante winss.exe, version 2.5.2900.24, module défaillant
ntdll.dll, version 5.1.2600.5755, adresse de défaillance 0x000101b3.

Error - 23/06/2009 15:41:19 | Computer Name = SONY_VAIO | Source = Application Error | ID = 1004
Description = Application défaillante winss.exe, version 2.5.2900.24, module défaillant
ntdll.dll, version 5.1.2600.5755, adresse de défaillance 0x000101b3.

Error - 23/06/2009 15:47:56 | Computer Name = SONY_VAIO | Source = Application Error | ID = 1001
Description = Détecteur d'erreurs 1228979089.

Error - 24/06/2009 03:33:42 | Computer Name = SONY_VAIO | Source = Application Hang | ID = 1002
Description = Application bloquée iexplore.exe, version 8.0.6001.18702, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 24/06/2009 07:36:48 | Computer Name = SONY_VAIO | Source = Application Hang | ID = 1002
Description = Application bloquée iexplore.exe, version 8.0.6001.18702, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

[ MSFWSVC Events ]
Error - 23/06/2009 15:37:22 | Computer Name = SONY_VAIO | Source = MSFWSVC | ID = 1080
Description = OneCare Firewall a échoué lors de l'exécution de la méthode suivante
: BuildAdaptersMap. Code d'erreur : 0x80070002, Message d'erreur : Le fichier spécifié
est introuvable. .

[ System Events ]
Error - 24/06/2009 09:50:31 | Computer Name = SONY_VAIO | Source = Service Control Manager | ID = 7023
Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126

Error - 24/06/2009 09:50:31 | Computer Name = SONY_VAIO | Source = Service Control Manager | ID = 7023
Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126

Error - 24/06/2009 09:50:31 | Computer Name = SONY_VAIO | Source = Service Control Manager | ID = 7023
Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126

Error - 24/06/2009 09:50:31 | Computer Name = SONY_VAIO | Source = Service Control Manager | ID = 7023
Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126

Error - 24/06/2009 09:50:31 | Computer Name = SONY_VAIO | Source = Service Control Manager | ID = 7023
Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126

Error - 24/06/2009 09:52:31 | Computer Name = SONY_VAIO | Source = OneCareMP | ID = 3006
Description = L’agent de protection en temps réel %%829 a rencontré une erreur lors
d’une intervention sur un logiciel espion ou un autre logiciel potentiellement
indésirable. Pour plus d’informations, consultez les informations suivantes : http://go.microsoft.com/fwlink/?linkid=37020&name=VirTool:Win32/Obfuscato(...)

ID
d’analyse : {0C5EA2BF-1EC8-4484-B46F-E50D6A8FB486} Utilisateur : SONY_VAIO\Cyril

Nom :
VirTool:Win32/Obfuscator.FR ID : 2147625861 Gravité : Grave Catégorie : Outil Chemin :
file:\\?\C:\Documents and Settings\Cyril\Local Settings\Temporary Internet Files\Content.IE5\OWGQC1XB\install[1].exe

Type
d’alerte : Action : %%812 Code d’erreur : 0x80508021 Description de l’erreur : Un
problème inattendu s’est produit. Installez toutes les mises à jour disponibles,
puis essayez de redémarrer le programme. Pour plus d’informations sur l’installation
des mises à jour, voir Aide et support.

Error - 24/06/2009 11:12:38 | Computer Name = SONY_VAIO | Source = OneCareMP | ID = 1008
Description = %%829 a rencontré une erreur lors d’une intervention sur un logiciel
espion ou un autre logiciel potentiellement indésirable. Pour plus d’informations,
consultez les informations suivantes : http://go.microsoft.com/fwlink/?linkid=37020&name=VirTool:Win32/Obfuscato(...)

ID
d’analyse : {CF22B815-4113-41BE-88AA-4FEF160392B9} Type d’analyse : %%802 Utilisateur :
SONY_VAIO\Cyril Nom : VirTool:Win32/Obfuscator.FR ID : 2147625861 Gravité : Grave Catégorie
: Outil Chemin : file:\\?\C:\Documents and Settings\Cyril\Local Settings\Temporary
Internet Files\Content.IE5\OWGQC1XB\install[1].exe Action : %%812 Code d’erreur :
0x80508021 Description d’erreur : Un problème inattendu s’est produit. Installez
toutes les mises à jour disponibles, puis essayez de redémarrer le programme. Pour
plus d’informations sur l’installation des mises à jour, voir Aide et support.

Error - 24/06/2009 13:59:58 | Computer Name = SONY_VAIO | Source = Print | ID = 6161
Description = Impossible d'imprimer le document cecilegeorges - Webmail Fre... appartenant
à Cyril sur l'imprimante HP DeskJet 815C. Type de données : NT EMF 1.008. Taille
du fichier spoule en octets : 6539148. Nombre d'octets imprimés : 3810260. Nombre
de pages dans le document : 88. Nombre de pages imprimées : 1. Ordinateur client
: \\SONY_VAIO. Le code d'erreur Win32 renvoyé par le processeur d'impression était
: 0 (0x0).

Error - 24/06/2009 14:05:08 | Computer Name = SONY_VAIO | Source = OneCareMP | ID = 3006
Description = L’agent de protection en temps réel %%829 a rencontré une erreur lors
d’une intervention sur un logiciel espion ou un autre logiciel potentiellement
indésirable. Pour plus d’informations, consultez les informations suivantes : http://go.microsoft.com/fwlink/?linkid=37020&name=VirTool:Win32/Obfuscato(...)

ID
d’analyse : {1F4C733D-D806-46B2-B0D5-1F15A39F1426} Utilisateur : SONY_VAIO\Cyril

Nom :
VirTool:Win32/Obfuscator.FR ID : 2147625861 Gravité : Grave Catégorie : Outil Chemin :
file:\\?\C:\Documents and Settings\Cyril\Local Settings\Temporary Internet Files\Content.IE5\OWGQC1XB\install[1].exe

Type
d’alerte : Action : %%812 Code d’erreur : 0x80508021 Description de l’erreur : Un
problème inattendu s’est produit. Installez toutes les mises à jour disponibles,
puis essayez de redémarrer le programme. Pour plus d’informations sur l’installation
des mises à jour, voir Aide et support.

Error - 24/06/2009 14:40:27 | Computer Name = SONY_VAIO | Source = OneCareMP | ID = 3006
Description = L’agent de protection en temps réel %%829 a rencontré une erreur lors
d’une intervention sur un logiciel espion ou un autre logiciel potentiellement
indésirable. Pour plus d’informations, consultez les informations suivantes : http://go.microsoft.com/fwlink/?linkid=37020&name=VirTool:Win32/Obfuscato(...)

ID
d’analyse : {D6C1670E-78F3-414A-9C11-23F38E186691} Utilisateur : SONY_VAIO\Cyril

Nom :
VirTool:Win32/Obfuscator.FR ID : 2147625861 Gravité : Grave Catégorie : Outil Chemin :
file:\\?\C:\Documents and Settings\Cyril\Local Settings\Temporary Internet Files\Content.IE5\OWGQC1XB\install[1].exe

Type
d’alerte : Action : %%812 Code d’erreur : 0x80508019 Description de l’erreur : Le
fichier ou lecteur que vous essayez d’analyser n’existe pas sur cet ordinateur.
Choisissez un autre fichier ou lecteur, puis recommencez l’analyse de votre ordinateur.


[ Windows OneCare Events ]
Error - 23/06/2009 14:21:51 | Computer Name = SONY_VAIO | Source = WinSS | ID = 7001
Description = Impossible d'exécuter le processus de vérification de la sécurité
sans fil. Code d'erreur = 0x8a180109.

Error - 23/06/2009 14:30:34 | Computer Name = SONY_VAIO | Source = WinSS | ID = 7001
Description = Impossible d'exécuter le processus de vérification de la sécurité
sans fil. Code d'erreur = 0x8a180109.

Error - 23/06/2009 14:32:37 | Computer Name = SONY_VAIO | Source = WinSS | ID = 7001
Description = Impossible d'exécuter le processus de vérification de la sécurité
sans fil. Code d'erreur = 0x8a180109.

Error - 23/06/2009 15:07:05 | Computer Name = SONY_VAIO | Source = WinSS | ID = 7001
Description = Impossible d'exécuter le processus de vérification de la sécurité
sans fil. Code d'erreur = 0x8a180109.

Error - 23/06/2009 15:40:22 | Computer Name = SONY_VAIO | Source = WinSS | ID = 1002
Description = Le service n'a pas pu démarrer.

Error - 24/06/2009 03:17:09 | Computer Name = SONY_VAIO | Source = WinSS | ID = 7001
Description = Impossible d'exécuter le processus de vérification de la sécurité
sans fil. Code d'erreur = 0x8a180109.

Error - 24/06/2009 03:18:03 | Computer Name = SONY_VAIO | Source = WinSS | ID = 7001
Description = Impossible d'exécuter le processus de vérification de la sécurité
sans fil. Code d'erreur = 0x8a180109.


< End of report >

Voilà encore,


OTL Extras logfile created on: 24/06/2009 22:08:51 - Run 1
OTL by OldTimer - Version 3.0.5.2 Folder = C:\Documents and Settings\Cyril\Bureau
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

510,80 Mb Total Physical Memory | 39,80 Mb Available Physical Memory | 7,79% Memory free
1,22 Gb Paging File | 0,70 Gb Available in Paging File | 57,02% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 27,95 Gb Total Space | 8,29 Gb Free Space | 29,65% Space Free | Partition Type: NTFS
Drive D: | 46,58 Gb Total Space | 46,41 Gb Free Space | 99,63% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: SONY_VAIO
Current User Name: Cyril
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- C:\WINDOWS\hh.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.scr [@ = scrfile] -- "%1" /S "%3"

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001040C-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 Professional
"{013E1BA8-C815-4E27-BCB9-D6B1B2E24094}" = SonicStage Mastering Studio Audio Filter Custom Preset
"{01AF4645-78E6-46C4-B528-54863679CC40}" = VAIO SLIT-C Screen Saver
"{11B569C2-4BF6-4ED0-9D17-A4273943CB24}" = Adobe Photoshop Album 2.0 Edition Découverte
"{1A91D1FA-B9B3-4556-9878-5C61059A19B2}" = InterVideo WinDVDX
"{1EB317D8-8945-4FD6-B37F-DF470317C6AB}" = VAIO Media 3.1
"{2083AC1F-D26D-4ACA-9CD0-FE4836933360}" = EXPRESSfit 5 for NOAH 3
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{266AEE68-5718-4A31-BDD3-D356B1250C70}" = VAIO SLIT Pattern Wallpaper
"{2682B22A-E537-4B5E-9B9F-3998ED21E414}" = SHS Software UnityFitting Component
"{27579b3c-5470-4496-be6c-0c872674f19f}" = Macromedia Flash Player
"{2ADE2157-7A5E-122C-B51D-EB8A01B15943}" = DeepBurner v1.9.0.228
"{2CCBABCB-6427-4A55-B091-49864623C43F}" = Google Toolbar for Firefox
"{318AB667-3230-41B5-A617-CB3BF748D371}" = iTunes
"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3600FB01-C63B-4A3D-B044-BB21792C6811}" = VAIO SLIT-B Screen Saver
"{3851147E-5A91-4469-BA4D-13FFFCC8A920}" = Microsoft Windows OneCare Live v2.5.2900.24 Idcrl Install
"{5165EA11-E487-4DE8-AC45-D3707549C835}" = SHS Software Fitting Component
"{5660022E-F3F2-4126-8CC5-9726C47150EB}" = Microsoft Windows Live OneCare Resources v2.5.2900.24
"{62B715BC-01F5-4CC9-9811-D24ED44C16D4}" = My Info Centre
"{63859E52-7E34-4245-BA68-3146BDD1F61D}" = Genie additionals
"{6513E869-647F-40FD-A55D-CFC92579B9BA}" = PX Engine
"{668B1BD6-4593-4959-970E-249AFFE6F35C}" = VOR
"{685BCC47-B8EC-45EC-BBCE-77DF2451502C}" = DVgate Plus
"{689404D2-1C94-44B3-9203-BEC5594FDA7A}" = Microsoft SQL Server Desktop Engine (HIMSA)
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6990A2BF-D1D2-11D3-81BC-00609789C908}" = Sony Video Shared Library
"{6F1974D6-4249-43B6-88B0-9A9B8A33956C}" = OpenMG Secure Module 4.0.00
"{7128C69B-8F7E-4336-8698-3FD3CDD955EC}" = VAIO Media Redistribution 3.1
"{71D6CE84-B7DC-4166-8E0D-56C1C37BFB5A}" = SonicStage 2.1.00
"{78CBEDE0-3419-4518-8AD3-E4C8FC233DD2}" = Microsoft Protection Service
"{7998F67D-655B-42E3-B651-18D96DD17268}" = Adobe Premiere Standard
"{7A79D11B-FD82-4A5E-834F-20173515DD14}" = VAIO Media Integrated Server 3.1
"{7C2F71B2-6C73-11D6-B659-00C04F790F76}" = Click to DVD 2.1.10
"{88DA0A52-3372-4803-971A-ADFB961707E8}" = PictureGear Studio 2.0
"{8A8819FD-439C-43FF-B41B-3086B85D9388}" = SHS Software Common Component
"{8B21B9EF-6DBF-4F63-8CC7-9F6A56D1EE8E}" = GTOneCare
"{8D324F1B-A39E-4D5A-BA58-147416FE019A}" = VAIO SLIT-A Screen Saver
"{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}" = InterVideo WinDVD 5 for VAIO
"{924EB80F-C2BB-4B9F-8412-88BBA937393F}" = MobileMe Control Panel
"{936FADC9-C609-471A-B6F2-A33E2E660D1A}" = Sony Notebook Setup
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{98A3A654-3AEF-42D9-BA91-DE5815EA5897}" = Données de menu Click to DVD 2.0.01
"{9A394342-4A68-4EBA-85A6-55B559F4E700}" = Microsoft .NET Framework 1.1 French Language Pack
"{9E158BB9-37B9-464B-837E-CC1D5766291B}" = VAIO Update 3
"{9E319E96-ED8E-4B01-9775-C521A1869A25}" = VAIO Power Management
"{A17456ED-3432-49FF-A14D-E0F00A96A2AA}" = VAIO SLIT Scene Wallpaper
"{A43F939E-A863-433D-AC78-0897E44CFEB2}" = VAIO Launcher
"{AB467B85-4F52-48C2-AEED-0673D00417B0}" = SonicStage Mastering Studio Audio Filter
"{AC76BA86-7AD7-1036-7B44-A70000000000}" = Adobe Reader 7.0 - Français
"{AC76BA86-7AD7-1036-7B44-A81200000003}" = Adobe Reader 8.1.2 - Français
"{B4C88CF0-B617-4658-8F84-C4E847FBC9F7}" = Microsoft Managed DirectX (1126)
"{B508B3F1-A24A-32C0-B310-85786919EF28}" = Microsoft .NET Framework 2.0 Service Pack 1
"{BB311F54-39D6-4A03-8E18-053D1B2833D7}" = HotKey Utility
"{BF3B304B-8A18-452D-A19F-6012CA8418D7}" = SonicStage Mastering Studio 1.3
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{D07A8E7E-D324-4945-BA8C-E532AD008FF3}" = Microsoft Windows OneCare Live v2.5.2900.24
"{D67B1C57-0E05-4F8C-9011-1C8BAE293782}" = Samsung PC Studio
"{D8E2BDAE-4AEB-464D-A410-89AF090B08D9}" = VAIO GrandBlue Wallpaper
"{D917FD82-6CE5-489A-AAF8-C701AAC85C4D}" = VAIO Entertainment Platform
"{DC6E3CD5-A93D-44EA-85AE-894C1603B7E2}" = VAIO TV Tuner Library 1.1
"{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = AusLogics Disk Defrag
"{E09B48B5-E141-427A-AB0C-D3605127224A}" = Microsoft SQL Server Desktop Engine (PHONAKGROUPDB)
"{E26B83D1-C0BB-41BC-8F44-31D5354DD6AF}" = Microsoft Windows OneCare Live AntiSpyware and AntiVirus
"{EC4455AB-F155-4CC1-A4C5-88F3777F9886}" = Apple Mobile Device Support
"{ED8D39F2-7FFA-45EC-B148-EF2472955BB4}" = VAIO Zone
"{EE7EB179-5AA2-4B28-AC92-5CBAAF82BA7F}" = SonicStage Mastering Studio Plugins 1.3
"{EF3D45BB-2260-4008-88EA-492E7744A9DF}" = Sony Utilities DLL
"{F958CA02-BB40-4007-894B-258729456EE4}" = QuickTime
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FF4721E5-9770-4419-83FB-CAE9887B2835}" = eTONA
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop Elements 2.0" = Adobe Photoshop Elements 2.0
"CCleaner" = CCleaner (remove only)
"CNXT_MODEM_PCI_VEN_8086&DEV_24C6&SUBSYS_818C104D" = SoftV92 Data Fax Modem
"Fix-It1.0" = Ontrack Fix-It Utilities 3.0
"Free.fr" = Free - Kit de connexion
"GN ReSound" = GN ReSound
"Hcontrol" = ATK0100 ACPI UTILITY
"HijackThis" = HijackThis 2.0.2
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"InstallShield_{62B715BC-01F5-4CC9-9811-D24ED44C16D4}" = My Info Centre
"InstallShield_{668B1BD6-4593-4959-970E-249AFFE6F35C}" = Enregistrement en ligne VAIO (Français)
"InstallShield_{6F1974D6-4249-43B6-88B0-9A9B8A33956C}" = OpenMG Secure Module 4.0.00
"Kithara Runtime Installation for Unity32" = Kithara Runtime Installation for Unity32
"Macromedia Shockwave Player" = Macromedia Shockwave Player
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"MoodLogic" = MoodLogic
"MouseSuite98" = Sony USB Mouse
"Mozilla Firefox (3.0.11)" = Mozilla Firefox (3.0.11)
"Navilog1_is1" = Navilog1 4.0.0
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"OpenMG HotFix4.0-04-06-21-01" = OpenMG Limited Patch 4.0-04-07-14-01
"PROSet" = Intel(R) PRO Network Adapters and Drivers
"RealPlayer 6.0" = RealPlayer
"ReSource16" = ReSource II for Noah
"Shockwave" = Shockwave
"ShockwaveFlash" = Macromedia Flash Player 8
"Sierra Utilities" = Utilitaires Sierra
"Virtualis Crédit Mutuel" = Virtualis Crédit Mutuel
"Wetrix for Windows 95" = Wetrix for Windows 95
"Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner
"Windows XP Service" = Windows XP Service Pack 3
"Windows XP Service Pack" = Windows XP Service Pack 2
"WinSS" = Windows Live OneCare
"Yahoo! Companion" = Yahoo! Toolbar avec bloqueur de fenêtres pop-up
"Yahoo! Toolbar" = Yahoo! Toolbar
"YInstHelper" = Yahoo! Install Manager

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 14/05/2009 10:57:51 | Computer Name = SONY_VAIO | Source = Application Error | ID = 1000
Description = Application défaillante winword.exe, version 9.0.0.2823, module défaillant
winword.exe, version 9.0.0.2823, adresse de défaillance 0x0018994c.

Error - 19/06/2009 09:45:17 | Computer Name = SONY_VAIO | Source = Application Hang | ID = 1002
Description = Application bloquée rundll32.exe, version 5.1.2600.5512, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 23/06/2009 15:19:39 | Computer Name = SONY_VAIO | Source = WmiAdapter | ID = 4099
Description = Échec de l'ouverture de services.

Error - 23/06/2009 15:20:10 | Computer Name = SONY_VAIO | Source = WmiAdapter | ID = 4099
Description = Échec de l'ouverture de services.

Error - 23/06/2009 15:37:42 | Computer Name = SONY_VAIO | Source = Application Error | ID = 1000
Description = Application défaillante winss.exe, version 2.5.2900.24, module défaillant
ntdll.dll, version 5.1.2600.5755, adresse de défaillance 0x000101b3.

Error - 23/06/2009 15:38:00 | Computer Name = SONY_VAIO | Source = Application Error | ID = 1000
Description = Application défaillante winss.exe, version 2.5.2900.24, module défaillant
ntdll.dll, version 5.1.2600.5755, adresse de défaillance 0x000101b3.

Error - 23/06/2009 15:41:19 | Computer Name = SONY_VAIO | Source = Application Error | ID = 1004
Description = Application défaillante winss.exe, version 2.5.2900.24, module défaillant
ntdll.dll, version 5.1.2600.5755, adresse de défaillance 0x000101b3.

Error - 23/06/2009 15:47:56 | Computer Name = SONY_VAIO | Source = Application Error | ID = 1001
Description = Détecteur d'erreurs 1228979089.

Error - 24/06/2009 03:33:42 | Computer Name = SONY_VAIO | Source = Application Hang | ID = 1002
Description = Application bloquée iexplore.exe, version 8.0.6001.18702, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 24/06/2009 07:36:48 | Computer Name = SONY_VAIO | Source = Application Hang | ID = 1002
Description = Application bloquée iexplore.exe, version 8.0.6001.18702, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

[ MSFWSVC Events ]
Error - 23/06/2009 15:37:22 | Computer Name = SONY_VAIO | Source = MSFWSVC | ID = 1080
Description = OneCare Firewall a échoué lors de l'exécution de la méthode suivante
: BuildAdaptersMap. Code d'erreur : 0x80070002, Message d'erreur : Le fichier spécifié
est introuvable. .

[ System Events ]
Error - 24/06/2009 09:50:31 | Computer Name = SONY_VAIO | Source = Service Control Manager | ID = 7023
Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126

Error - 24/06/2009 09:50:31 | Computer Name = SONY_VAIO | Source = Service Control Manager | ID = 7023
Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126

Error - 24/06/2009 09:50:31 | Computer Name = SONY_VAIO | Source = Service Control Manager | ID = 7023
Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126

Error - 24/06/2009 09:50:31 | Computer Name = SONY_VAIO | Source = Service Control Manager | ID = 7023
Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126

Error - 24/06/2009 09:50:31 | Computer Name = SONY_VAIO | Source = Service Control Manager | ID = 7023
Description = Le service Gestion d'applications s'est arrêté avec l'erreur : %%126

Error - 24/06/2009 09:52:31 | Computer Name = SONY_VAIO | Source = OneCareMP | ID = 3006
Description = L’agent de protection en temps réel %%829 a rencontré une erreur lors
d’une intervention sur un logiciel espion ou un autre logiciel potentiellement
indésirable. Pour plus d’informations, consultez les informations suivantes : http://go.microsoft.com/fwlink/?linkid=37020&name=VirTool:Win32/Obfuscato(...)

ID
d’analyse : {0C5EA2BF-1EC8-4484-B46F-E50D6A8FB486} Utilisateur : SONY_VAIO\Cyril

Nom :
VirTool:Win32/Obfuscator.FR ID : 2147625861 Gravité : Grave Catégorie : Outil Chemin :
file:\\?\C:\Documents and Settings\Cyril\Local Settings\Temporary Internet Files\Content.IE5\OWGQC1XB\install[1].exe

Type
d’alerte : Action : %%812 Code d’erreur : 0x80508021 Description de l’erreur : Un
problème inattendu s’est produit. Installez toutes les mises à jour disponibles,
puis essayez de redémarrer le programme. Pour plus d’informations sur l’installation
des mises à jour, voir Aide et support.

Error - 24/06/2009 11:12:38 | Computer Name = SONY_VAIO | Source = OneCareMP | ID = 1008
Description = %%829 a rencontré une erreur lors d’une intervention sur un logiciel
espion ou un autre logiciel potentiellement indésirable. Pour plus d’informations,
consultez les informations suivantes : http://go.microsoft.com/fwlink/?linkid=37020&name=VirTool:Win32/Obfuscato(...)

ID
d’analyse : {CF22B815-4113-41BE-88AA-4FEF160392B9} Type d’analyse : %%802 Utilisateur :
SONY_VAIO\Cyril Nom : VirTool:Win32/Obfuscator.FR ID : 2147625861 Gravité : Grave Catégorie
: Outil Chemin : file:\\?\C:\Documents and Settings\Cyril\Local Settings\Temporary
Internet Files\Content.IE5\OWGQC1XB\install[1].exe Action : %%812 Code d’erreur :
0x80508021 Description d’erreur : Un problème inattendu s’est produit. Installez
toutes les mises à jour disponibles, puis essayez de redémarrer le programme. Pour
plus d’informations sur l’installation des mises à jour, voir Aide et support.

Error - 24/06/2009 13:59:58 | Computer Name = SONY_VAIO | Source = Print | ID = 6161
Description = Impossible d'imprimer le document cecilegeorges - Webmail Fre... appartenant
à Cyril sur l'imprimante HP DeskJet 815C. Type de données : NT EMF 1.008. Taille
du fichier spoule en octets : 6539148. Nombre d'octets imprimés : 3810260. Nombre
de pages dans le document : 88. Nombre de pages imprimées : 1. Ordinateur client
: \\SONY_VAIO. Le code d'erreur Win32 renvoyé par le processeur d'impression était
: 0 (0x0).

Error - 24/06/2009 14:05:08 | Computer Name = SONY_VAIO | Source = OneCareMP | ID = 3006
Description = L’agent de protection en temps réel %%829 a rencontré une erreur lors
d’une intervention sur un logiciel espion ou un autre logiciel potentiellement
indésirable. Pour plus d’informations, consultez les informations suivantes : http://go.microsoft.com/fwlink/?linkid=37020&name=VirTool:Win32/Obfuscato(...)

ID
d’analyse : {1F4C733D-D806-46B2-B0D5-1F15A39F1426} Utilisateur : SONY_VAIO\Cyril

Nom :
VirTool:Win32/Obfuscator.FR ID : 2147625861 Gravité : Grave Catégorie : Outil Chemin :
file:\\?\C:\Documents and Settings\Cyril\Local Settings\Temporary Internet Files\Content.IE5\OWGQC1XB\install[1].exe

Type
d’alerte : Action : %%812 Code d’erreur : 0x80508021 Description de l’erreur : Un
problème inattendu s’est produit. Installez toutes les mises à jour disponibles,
puis essayez de redémarrer le programme. Pour plus d’informations sur l’installation
des mises à jour, voir Aide et support.

Error - 24/06/2009 14:40:27 | Computer Name = SONY_VAIO | Source = OneCareMP | ID = 3006
Description = L’agent de protection en temps réel %%829 a rencontré une erreur lors
d’une intervention sur un logiciel espion ou un autre logiciel potentiellement
indésirable. Pour plus d’informations, consultez les informations suivantes : http://go.microsoft.com/fwlink/?linkid=37020&name=VirTool:Win32/Obfuscato(...)

ID
d’analyse : {D6C1670E-78F3-414A-9C11-23F38E186691} Utilisateur : SONY_VAIO\Cyril

Nom :
VirTool:Win32/Obfuscator.FR ID : 2147625861 Gravité : Grave Catégorie : Outil Chemin :
file:\\?\C:\Documents and Settings\Cyril\Local Settings\Temporary Internet Files\Content.IE5\OWGQC1XB\install[1].exe

Type
d’alerte : Action : %%812 Code d’erreur : 0x80508019 Description de l’erreur : Le
fichier ou lecteur que vous essayez d’analyser n’existe pas sur cet ordinateur.
Choisissez un autre fichier ou lecteur, puis recommencez l’analyse de votre ordinateur.


[ Windows OneCare Events ]
Error - 23/06/2009 14:21:51 | Computer Name = SONY_VAIO | Source = WinSS | ID = 7001
Description = Impossible d'exécuter le processus de vérification de la sécurité
sans fil. Code d'erreur = 0x8a180109.

Error - 23/06/2009 14:30:34 | Computer Name = SONY_VAIO | Source = WinSS | ID = 7001
Description = Impossible d'exécuter le processus de vérification de la sécurité
sans fil. Code d'erreur = 0x8a180109.

Error - 23/06/2009 14:32:37 | Computer Name = SONY_VAIO | Source = WinSS | ID = 7001
Description = Impossible d'exécuter le processus de vérification de la sécurité
sans fil. Code d'erreur = 0x8a180109.

Error - 23/06/2009 15:07:05 | Computer Name = SONY_VAIO | Source = WinSS | ID = 7001
Description = Impossible d'exécuter le processus de vérification de la sécurité
sans fil. Code d'erreur = 0x8a180109.

Error - 23/06/2009 15:40:22 | Computer Name = SONY_VAIO | Source = WinSS | ID = 1002
Description = Le service n'a pas pu démarrer.

Error - 24/06/2009 03:17:09 | Computer Name = SONY_VAIO | Source = WinSS | ID = 7001
Description = Impossible d'exécuter le processus de vérification de la sécurité
sans fil. Code d'erreur = 0x8a180109.

Error - 24/06/2009 03:18:03 | Computer Name = SONY_VAIO | Source = WinSS | ID = 7001
Description = Impossible d'exécuter le processus de vérification de la sécurité
sans fil. Code d'erreur = 0x8a180109.


< End of report >

bonsoir,
impossible d'atteindre le scan' final...
la page ne s'ouvre pas.

Merci pour votre aide et à demain, j'espère ...

Bonsoir,

Quel est exactement le problème rencontré ?

Bonsoir,

Le PC n'a plus de virus ... mais internet explorer ou firefox ne se connectent pas. Par contre le PC indique qu'il est connecté sur le réseau wifi et "windows n'a détecté aucunproblème sur cette connexion".
Pouvez-vous m'aider svp ?
Merci

Bonsoir,

Utilises-tu un réseau sans fil pour te connecter ?
Désactive tes logiciels de sécurité durant la procédure.

1) Supprime ta version de OTL.

2) Télécharge OTL (de OldTimer) et enregistre-le sur ton Bureau.

- Quitte les applications en cours afin de ne pas interrompre le scan.
- Une fenêtre apparaît. Dans la section Output en haut de cette fenêtre, coche "Minimal Output". Fais de même avec "Scan All Users".
- Coche également les cases à côté de "LOP Check" et "Purity Check".
- Dans la zone Extra Registry, coche "Use Safelist".

Ne modifie pas les autres paramètres !

- Clique sur le bouton Run Scan.
- Une fois l'analyse terminée, deux fenêtres vont s'ouvrir dans le Bloc-notes : OTL.txt et Extras.txt. Ils se trouvent au même endroit que OTListIT2 (donc par défaut sur le Bureau).

- Copie/colle ici le contenu des deux fichiers. Utilise un message par rapport.


Cordialement.