Pub+ralentissement. - Page 2
Dernière réponse : dans Sécurité
bonsoir
Télécharge OTViewIt et sauvegarde-le sur ton bureau.
* Ferme toutes les fenêtres et double-clique sur l'icône d'OTviewIT pour l'ouvrir.
* Clique sur le bouton Run Scan et laisse le programme travailler sans l'interrompre.
* Il va produire deux rapports, l'un nommé OTViewIt.txt, et un autre nommé Extras qui sera sauvegardé sur ton bureau. Merci de me poster les deux rapports dans ta prochaine réponse.
Télécharge OTViewIt et sauvegarde-le sur ton bureau.
* Ferme toutes les fenêtres et double-clique sur l'icône d'OTviewIT pour l'ouvrir.
* Clique sur le bouton Run Scan et laisse le programme travailler sans l'interrompre.
* Il va produire deux rapports, l'un nommé OTViewIt.txt, et un autre nommé Extras qui sera sauvegardé sur ton bureau. Merci de me poster les deux rapports dans ta prochaine réponse.
Lassé par la pub ? Créez un compte
Désolé pour le retard, je poste ça en deux rapport distinct :
OTViewIt logfile created on: 19/09/2008 21:03:26 - Run 2
OTViewIt by OldTimer - Version 1.0.6.0 Folder = C:\Documents and Settings\YANN\Bureau
Windows XP Media Center Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
767,48 Mb Total Physical Memory | 426,36 Mb Available Physical Memory | 55,55% Memory free
1,83 Gb Paging File | 1,33 Gb Available in Paging File | 72,38% Paging File free
Paging file location(s): C:\pagefile.sys 1152 2304;
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 48,83 Gb Total Space | 13,28 Gb Free Space | 27,21% Space Free | Partition Type: NTFS
Drive D: | 113,76 Gb Total Space | 42,54 Gb Free Space | 37,39% Space Free | Partition Type: NTFS
Drive E: | 1,89 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive K: | 64,45 Gb Total Space | 31,55 Gb Free Space | 48,95% Space Free | Partition Type: NTFS
Computer Name: YANN
Current User Name: YANN
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Whitelist: On
Files within: 30 Days
========== Processes - Non-Microsoft Only ==========
[2006/05/17 17:05:52 | 02,297,856 | ---- | M] () -- C:\Program Files\NETGEAR\WG111v2\WG111v2.exe
[2008/09/19 21:02:48 | 00,424,448 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\YANN\Bureau\OTViewIt.exe
========== (O23) Win32 Services - Non-Microsoft Only ==========
File not found -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service [On_Demand | Stopped])
File not found -- C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe -- (Planificateur LiveUpdate automatique [Auto | Stopped])
========== Driver Services - Non-Microsoft Only ==========
[2008/02/24 18:15:20 | 00,011,000 | ---- | M] () -- C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys -- (AVG Anti-Spyware Driver [System | Running])
File not found -- C:\DOCUME~1\YANN\LOCALS~1\Temp\catchme.sys -- (catchme [On_Demand | Stopped])
File not found -- C:\WINDOWS\system32\drivers\EagleNT.sys -- (EagleNT [On_Demand | Stopped])
[2008/09/12 21:04:18 | 00,085,969 | ---- | M] (GMER) -- C:\WINDOWS\system32\drivers\gmer.sys -- (gmer [On_Demand | Stopped])
[2005/01/13 15:46:16 | 00,069,632 | ---- | M] () -- C:\Acer\Empowering Technology\eRecovery\int15.sys -- (int15.sys [On_Demand | Running])
[2005/09/01 14:09:28 | 02,169,984 | ---- | M] () -- C:\WINDOWS\system32\drivers\Lvckap.sys -- (Lvckap [On_Demand | Stopped])
[2005/09/01 14:11:52 | 01,912,064 | ---- | M] () -- C:\WINDOWS\system32\drivers\LVMVdrv.sys -- (lvmvdrv [On_Demand | Stopped])
[2005/09/01 14:11:52 | 00,016,768 | ---- | M] () -- C:\WINDOWS\system32\drivers\LVPrcMon.sys -- (LVPrcMon [On_Demand | Running])
File not found -- C:\WINDOWS\System32\DRIVERS\ManyCam.sys -- (ManyCam [On_Demand | Stopped])
[2008/06/04 20:42:58 | 00,717,296 | ---- | M] () -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd [Boot | Running])
[2004/12/17 04:14:44 | 00,013,952 | ---- | M] () -- C:\WINDOWS\System32\drivers\UBHelper.sys -- (UBHelper [Boot | Running])
========== (R ) Internet Explorer ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main]
"Default_Page_URL"=http://www.google.com
"Default_Search_URL"=http://go.microsoft.com/fwlink/?LinkId=54896
"Default_Secondary_Page_URL"=
"Extensions Off Page"=about:NoAdd-ons
"Local Page"=%SystemRoot%\system32\blank.htm
"Search Page"=http://go.microsoft.com/fwlink/?LinkId=54896
"Secondary Start Pages"=
"Security Risk Page"=about:SecurityRisk
"Start Page"=http://www.google.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Search]
"CustomizeSearch"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
"Default_Search_URL"=http://www.google.com/ie
"SearchAssistant"=http://www.google.com/ie
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main]
"Default_Page_URL"=http://www.google.com
"Default_Search_URL"=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iese...
"Local Page"=C:\WINDOWS\system32\blank.htm
"Search Page"=http://www.google.com
"SearchMigratedDefaultName"=Google
"SearchMigratedDefaultURL"=http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
"Start Page"=http://www.google.com
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Search]
"SearchAssistant"=http://www.google.com/ie
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURL]
""=http://www.google.com/search?q=%s
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{EF99BD32-C1FB-11D2-892F-0090271D4F88}" (HKLM) -- C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll File not found
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"ProxyEnable" = 0
========== (O1) Hosts File ==========
HOSTS File = (23 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
First 25 entries...
127.0.0.1 localhost
========== (O3) Toolbars ==========
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser]
"{C4069E3A-68F1-403E-B40E-20066696354B}" (HKLM) -- Reg Error: Key does not exist or could not be opened. File not found
"{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}" (HKLM) -- Reg Error: Key does not exist or could not be opened. File not found
"{C4069E3A-68F1-403E-B40E-20066696354B}" (HKLM) -- Reg Error: Key does not exist or could not be opened. File not found
========== (O4) Run Keys ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSPY2002"=C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC ()
"ntiMUI"=c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe ()
"nwiz"=nwiz.exe /install ()
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Steam"=K:\Steam\Steam.exe -silent File not found
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe (Google Inc.)
========== (O4) Startup Folders ==========
[2006/05/17 17:05:52 | 02,297,856 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\NETGEAR WG111v2 Smart Wizard.lnk = C:\Program Files\NETGEAR\WG111v2\WG111v2.exe
[2006/08/03 22:54:12 | 00,225,411 | ---- | M] () -- C:\Documents and Settings\YANN\Menu Démarrer\Programmes\Démarrage\Warkeys Update.lnk = C:\Program Files\Warkeys\update\Warkeys Update.exe
========== (O6 & O7) Current Version Policies ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.mss -- File not found
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.the -- File not found
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]
"NoDriveTypeAutoRun"=145
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]
"DisableRegistryTools"=0
========== (O8) IE Context Menu Extensions ==========
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\]
&Télécharger avec FlashGet: C:\Program Files\FlashGet\JC_LINK.HTM [2007/05/18 18:13:10 | 00,001,898 | ---- | M] ()
&Tout télécharger avec FlashGet: C:\Program Files\FlashGet\JC_ALL.HTM [2007/05/18 18:13:10 | 00,001,049 | ---- | M] ()
E&xporter vers Microsoft Excel: C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE File not found
========== (O12) Internet Explorer Plugins ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\]
PluginsPage: "" = http://activex.microsoft.com/controls/find.asp?ext=%s&m...
PluginsPageFriendlyName: "" = Microsoft ActiveX Gallery
========== (O13) Default Prefixes ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix]
""=http://
========== (O15) Trusted Sites ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\]
1 domain(s) and sub-domain(s) not assigned to a zone.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\]
33 domain(s) and sub-domain(s) not assigned to a zone.
========== (O16) DPF ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\]
{30528230-99f7-4bb4-88d8-fa1d4f56a2ab}: C:\Program Files\Yahoo!\Common\yinsthelper.dll -- YInstStarter Class
{4F1E5B1A-2A80-42CA-8532-2D05CB959537}: http://gfx2.mail.live.com/mail/w1/resources/MSNPUpld.ca... -- MSN Photo Upload Tool
{5D6F45B3-9043-443D-A792-115447494D24}: http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca... -- UnoCtrl Class
{8AD9C840-044E-11D1-B3E9-00805F499D93}: http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-wind... -- Java Plug-in 1.6.0_07
{B8BE5E93-A60C-4D26-A2DC-220313175592}: http://messenger.zone.msn.com/binary/ZIntro.cab56649.ca... -- MSN Games - Installer
{C3F79A2B-B9B4-4A66-B012-3EE46475B072}: http://messenger.zone.msn.com/binary/MessengerStatsPACl... -- MessengerStatsClient Class
{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}: http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-wind... -- Java Plug-in 1.6.0_07
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}: http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-wind... -- Java Plug-in 1.6.0_07
{D27CDB6E-AE6D-11CF-96B8-444553540000}: http://download.macromedia.com/pub/shockwave/cabs/flash... -- Shockwave Flash Object
{F5A7706B-B9C0-4C89-A715-7A0C6B05DD48}: http://messenger.zone.msn.com/binary/MineSweeper.cab569... -- Minesweeper Flags Class
========== (O17) DNS Name Servers ==========
{3CA6E947-61A5-4C2D-BEFD-93A01EBA1C7F} (Servers: | Description: Generic Marvell Yukon Chipset based Ethernet Controller)
{4AC48A29-33BA-4BA2-820C-247A0D090CA4} (Servers: | Description: NETGEAR WG111v2 54Mbps Wireless USB 2.0 Adapter)
{5E923D33-67D8-40FA-804F-F5C634A0A5C4} (Servers: | Description: )
{63AA936A-7509-4526-904A-0BB50D8BE0B8} (Servers: | Description: Carte réseau 1394)
{9ADEA1D5-3BCF-43B5-A393-4DA5964C2C21} (Servers: | Description: NETGEAR WG111v2 54Mbps Wireless USB 2.0 Adapter)
========== (O20) HKLM Winlogon Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"GinaDLL"=RtlGina2.dll
>[2006/05/03 18:44:32 | 00,036,864 | ---- | M] () -- C:\WINDOWS\system32\RtlGina2.dll
========== Safeboot Options ==========
"AlternateShell"=cmd.exe
========== CDRom AutoRun Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom]
"AutoRun" = 1
========== Autorun Files on Drives ==========
AUTOEXEC.BAT [PATH=%PATH%;C:\PROGRA~1\FICHIE~1\MUVEET~1\030625 | ]
[2006/08/11 19:52:52 | 00,000,050 | ---- | M] () -- C:\AUTOEXEC.BAT -- [ NTFS ]
========== Files/Folders - Created Within 30 days ==========
[9 C:\WINDOWS\System32\*.tmp files]
[1 C:\WINDOWS\*.tmp files]
[2008/09/19 21:02:44 | 00,424,448 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\YANN\Bureau\OTViewIt.exe
[2008/09/14 20:42:06 | 02,174,656 | ---- | C] () -- C:\Documents and Settings\YANN\Bureau\IceSword120_en.zip
[2008/09/12 21:04:19 | 00,000,250 | ---- | C] () -- C:\WINDOWS\gmer.ini
[2008/09/12 21:04:18 | 00,884,736 | ---- | C] () -- C:\WINDOWS\gmer.dll
[2008/09/12 21:04:18 | 00,811,008 | ---- | C] () -- C:\WINDOWS\gmer.exe
[2008/09/12 21:04:18 | 00,085,969 | ---- | C] (GMER) -- C:\WINDOWS\System32\drivers\gmer.sys
[2008/09/12 21:04:18 | 00,000,080 | ---- | C] () -- C:\WINDOWS\gmer_uninstall.cmd
[2008/09/12 21:04:14 | 00,811,008 | ---- | C] () -- C:\Documents and Settings\YANN\Bureau\gmer.exe
[2008/09/11 18:07:47 | 00,000,287 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Rappelz.lnk
[2008/09/10 19:30:24 | 00,708,333 | ---- | C] () -- C:\Documents and Settings\YANN\Bureau\sys60656.exe
[2008/09/10 18:52:38 | 00,400,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF13971.exe
[2008/09/10 18:51:52 | 00,400,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF13814.exe
[2008/09/10 18:50:59 | 02,847,488 | R--- | C] () -- C:\Documents and Settings\YANN\Bureau\ComboFix.exe
[2008/09/10 18:49:04 | 00,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Mozilla Firefox.lnk
[2008/09/09 22:31:29 | 00,001,734 | ---- | C] () -- C:\Documents and Settings\YANN\Bureau\HijackThis.lnk
[2008/09/09 22:03:56 | 00,400,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF31438.exe
[2008/09/07 20:18:58 | 00,121,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xmllite.dll
[2008/09/07 20:15:40 | 00,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2008/09/07 20:14:35 | 00,267,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2008/09/07 20:14:35 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieudinit.exe
[2008/09/07 20:14:34 | 00,459,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2008/09/07 20:14:34 | 00,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2008/09/07 20:14:33 | 01,048,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll.mui
[2008/09/07 20:14:31 | 02,455,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dat
[2008/09/07 20:14:30 | 00,383,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dll
[2008/09/07 20:14:30 | 00,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icardie.dll
[2008/09/07 20:14:29 | 06,066,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2008/09/05 21:48:08 | 00,217,412 | ---- | C] () -- C:\Documents and Settings\YANN\Bureau\Lion-King_1.jpg
[2008/09/04 19:14:40 | 00,056,462 | ---- | C] () -- C:\Documents and Settings\YANN\Bureau\ours_polaire.jpg
[2008/08/24 14:50:09 | 80,483,5328 | -HS- | C] () -- C:\hiberfil.sys
========== Files - Modified Within 30 days ==========
[9 C:\WINDOWS\System32\*.tmp files]
[1 C:\WINDOWS\*.tmp files]
[2008/09/19 21:02:48 | 00,424,448 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\YANN\Bureau\OTViewIt.exe
[2008/09/19 20:26:38 | 00,000,579 | ---- | M] () -- C:\Documents and Settings\YANN\Mes documents\Mes dossiers de partage.lnk
[2008/09/19 20:15:58 | 00,000,931 | ---- | M] () -- C:\WINDOWS\win.ini
[2008/09/19 20:15:25 | 00,073,451 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2008/09/19 20:15:25 | 00,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2008/09/19 17:38:43 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2008/09/19 17:38:41 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2008/09/19 17:38:39 | 80,483,5328 | -HS- | M] () -- C:\hiberfil.sys
[2008/09/18 23:09:56 | 01,575,564 | -H-- | M] () -- C:\Documents and Settings\YANN\Local Settings\Application Data\IconCache.db
[2008/09/16 20:15:43 | 00,000,016 | ---- | M] () -- C:\Documents and Settings\YANN\Bureau\WarcraftIIIAutoRefresh_Config.dat
[2008/09/16 19:08:55 | 00,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2008/09/14 21:04:38 | 00,008,704 | -HS- | M] () -- C:\WINDOWS\System32\Thumbs.db
@Alternate Data Stream - 0 bytes -> C:\WINDOWS\System32\Thumbs.db:encryptable
[2008/09/14 20:42:53 | 02,174,656 | ---- | M] () -- C:\Documents and Settings\YANN\Bureau\IceSword120_en.zip
[2008/09/12 21:05:27 | 00,000,250 | ---- | M] () -- C:\WINDOWS\gmer.ini
[2008/09/12 21:04:18 | 00,884,736 | ---- | M] () -- C:\WINDOWS\gmer.dll
[2008/09/12 21:04:18 | 00,085,969 | ---- | M] (GMER) -- C:\WINDOWS\System32\drivers\gmer.sys
[2008/09/12 21:04:18 | 00,000,080 | ---- | M] () -- C:\WINDOWS\gmer_uninstall.cmd
[2008/09/11 18:07:47 | 00,000,287 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Rappelz.lnk
[2008/09/10 19:30:28 | 00,708,333 | ---- | M] () -- C:\Documents and Settings\YANN\Bureau\sys60656.exe
[2008/09/10 18:51:27 | 02,847,488 | R--- | M] () -- C:\Documents and Settings\YANN\Bureau\ComboFix.exe
[2008/09/10 18:49:04 | 00,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Mozilla Firefox.lnk
[2008/09/10 03:08:45 | 00,340,240 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2008/09/10 03:00:33 | 00,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2008/09/09 22:31:29 | 00,001,734 | ---- | M] () -- C:\Documents and Settings\YANN\Bureau\HijackThis.lnk
[2008/09/09 22:02:04 | 00,092,672 | ---- | M] () -- C:\Documents and Settings\YANN\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2008/09/09 21:35:46 | 00,115,200 | ---- | M] () -- C:\Documents and Settings\YANN\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/09/09 18:54:11 | 00,000,057 | ---- | M] () -- C:\WINDOWS\Bbt97.INI
[2008/09/08 17:55:16 | 00,000,076 | -HS- | M] () -- C:\Documents and Settings\YANN\Mes documents\desktop.ini
[2008/09/05 21:48:11 | 00,217,412 | ---- | M] () -- C:\Documents and Settings\YANN\Bureau\Lion-King_1.jpg
[2008/09/05 17:38:17 | 00,021,840 | ---- | M] () -- C:\WINDOWS\System32\SIntfNT.dll
[2008/09/05 17:38:17 | 00,017,212 | ---- | M] () -- C:\WINDOWS\System32\SIntf32.dll
[2008/09/05 17:38:17 | 00,012,067 | ---- | M] () -- C:\WINDOWS\System32\SIntf16.dll
[2008/09/04 19:14:40 | 00,056,462 | ---- | M] () -- C:\Documents and Settings\YANN\Bureau\ours_polaire.jpg
[2008/08/26 22:28:12 | 16,208,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MRT.exe
< End of report >
OTViewIt logfile created on: 19/09/2008 21:03:26 - Run 2
OTViewIt by OldTimer - Version 1.0.6.0 Folder = C:\Documents and Settings\YANN\Bureau
Windows XP Media Center Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
767,48 Mb Total Physical Memory | 426,36 Mb Available Physical Memory | 55,55% Memory free
1,83 Gb Paging File | 1,33 Gb Available in Paging File | 72,38% Paging File free
Paging file location(s): C:\pagefile.sys 1152 2304;
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 48,83 Gb Total Space | 13,28 Gb Free Space | 27,21% Space Free | Partition Type: NTFS
Drive D: | 113,76 Gb Total Space | 42,54 Gb Free Space | 37,39% Space Free | Partition Type: NTFS
Drive E: | 1,89 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive K: | 64,45 Gb Total Space | 31,55 Gb Free Space | 48,95% Space Free | Partition Type: NTFS
Computer Name: YANN
Current User Name: YANN
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Whitelist: On
Files within: 30 Days
========== Processes - Non-Microsoft Only ==========
[2006/05/17 17:05:52 | 02,297,856 | ---- | M] () -- C:\Program Files\NETGEAR\WG111v2\WG111v2.exe
[2008/09/19 21:02:48 | 00,424,448 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\YANN\Bureau\OTViewIt.exe
========== (O23) Win32 Services - Non-Microsoft Only ==========
File not found -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service [On_Demand | Stopped])
File not found -- C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe -- (Planificateur LiveUpdate automatique [Auto | Stopped])
========== Driver Services - Non-Microsoft Only ==========
[2008/02/24 18:15:20 | 00,011,000 | ---- | M] () -- C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys -- (AVG Anti-Spyware Driver [System | Running])
File not found -- C:\DOCUME~1\YANN\LOCALS~1\Temp\catchme.sys -- (catchme [On_Demand | Stopped])
File not found -- C:\WINDOWS\system32\drivers\EagleNT.sys -- (EagleNT [On_Demand | Stopped])
[2008/09/12 21:04:18 | 00,085,969 | ---- | M] (GMER) -- C:\WINDOWS\system32\drivers\gmer.sys -- (gmer [On_Demand | Stopped])
[2005/01/13 15:46:16 | 00,069,632 | ---- | M] () -- C:\Acer\Empowering Technology\eRecovery\int15.sys -- (int15.sys [On_Demand | Running])
[2005/09/01 14:09:28 | 02,169,984 | ---- | M] () -- C:\WINDOWS\system32\drivers\Lvckap.sys -- (Lvckap [On_Demand | Stopped])
[2005/09/01 14:11:52 | 01,912,064 | ---- | M] () -- C:\WINDOWS\system32\drivers\LVMVdrv.sys -- (lvmvdrv [On_Demand | Stopped])
[2005/09/01 14:11:52 | 00,016,768 | ---- | M] () -- C:\WINDOWS\system32\drivers\LVPrcMon.sys -- (LVPrcMon [On_Demand | Running])
File not found -- C:\WINDOWS\System32\DRIVERS\ManyCam.sys -- (ManyCam [On_Demand | Stopped])
[2008/06/04 20:42:58 | 00,717,296 | ---- | M] () -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd [Boot | Running])
[2004/12/17 04:14:44 | 00,013,952 | ---- | M] () -- C:\WINDOWS\System32\drivers\UBHelper.sys -- (UBHelper [Boot | Running])
========== (R ) Internet Explorer ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main]
"Default_Page_URL"=http://www.google.com
"Default_Search_URL"=http://go.microsoft.com/fwlink/?LinkId=54896
"Default_Secondary_Page_URL"=
"Extensions Off Page"=about:NoAdd-ons
"Local Page"=%SystemRoot%\system32\blank.htm
"Search Page"=http://go.microsoft.com/fwlink/?LinkId=54896
"Secondary Start Pages"=
"Security Risk Page"=about:SecurityRisk
"Start Page"=http://www.google.com
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Search]
"CustomizeSearch"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
"Default_Search_URL"=http://www.google.com/ie
"SearchAssistant"=http://www.google.com/ie
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main]
"Default_Page_URL"=http://www.google.com
"Default_Search_URL"=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iese...
"Local Page"=C:\WINDOWS\system32\blank.htm
"Search Page"=http://www.google.com
"SearchMigratedDefaultName"=Google
"SearchMigratedDefaultURL"=http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
"Start Page"=http://www.google.com
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Search]
"SearchAssistant"=http://www.google.com/ie
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURL]
""=http://www.google.com/search?q=%s
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{EF99BD32-C1FB-11D2-892F-0090271D4F88}" (HKLM) -- C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll File not found
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"ProxyEnable" = 0
========== (O1) Hosts File ==========
HOSTS File = (23 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
First 25 entries...
127.0.0.1 localhost
========== (O3) Toolbars ==========
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser]
"{C4069E3A-68F1-403E-B40E-20066696354B}" (HKLM) -- Reg Error: Key does not exist or could not be opened. File not found
"{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}" (HKLM) -- Reg Error: Key does not exist or could not be opened. File not found
"{C4069E3A-68F1-403E-B40E-20066696354B}" (HKLM) -- Reg Error: Key does not exist or could not be opened. File not found
========== (O4) Run Keys ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSPY2002"=C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC ()
"ntiMUI"=c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe ()
"nwiz"=nwiz.exe /install ()
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Steam"=K:\Steam\Steam.exe -silent File not found
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe (Google Inc.)
========== (O4) Startup Folders ==========
[2006/05/17 17:05:52 | 02,297,856 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\NETGEAR WG111v2 Smart Wizard.lnk = C:\Program Files\NETGEAR\WG111v2\WG111v2.exe
[2006/08/03 22:54:12 | 00,225,411 | ---- | M] () -- C:\Documents and Settings\YANN\Menu Démarrer\Programmes\Démarrage\Warkeys Update.lnk = C:\Program Files\Warkeys\update\Warkeys Update.exe
========== (O6 & O7) Current Version Policies ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.mss -- File not found
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.the -- File not found
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]
"NoDriveTypeAutoRun"=145
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]
"DisableRegistryTools"=0
========== (O8) IE Context Menu Extensions ==========
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\]
&Télécharger avec FlashGet: C:\Program Files\FlashGet\JC_LINK.HTM [2007/05/18 18:13:10 | 00,001,898 | ---- | M] ()
&Tout télécharger avec FlashGet: C:\Program Files\FlashGet\JC_ALL.HTM [2007/05/18 18:13:10 | 00,001,049 | ---- | M] ()
E&xporter vers Microsoft Excel: C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE File not found
========== (O12) Internet Explorer Plugins ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\]
PluginsPage: "" = http://activex.microsoft.com/controls/find.asp?ext=%s&m...
PluginsPageFriendlyName: "" = Microsoft ActiveX Gallery
========== (O13) Default Prefixes ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix]
""=http://
========== (O15) Trusted Sites ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\]
1 domain(s) and sub-domain(s) not assigned to a zone.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\]
33 domain(s) and sub-domain(s) not assigned to a zone.
========== (O16) DPF ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\]
{30528230-99f7-4bb4-88d8-fa1d4f56a2ab}: C:\Program Files\Yahoo!\Common\yinsthelper.dll -- YInstStarter Class
{4F1E5B1A-2A80-42CA-8532-2D05CB959537}: http://gfx2.mail.live.com/mail/w1/resources/MSNPUpld.ca... -- MSN Photo Upload Tool
{5D6F45B3-9043-443D-A792-115447494D24}: http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca... -- UnoCtrl Class
{8AD9C840-044E-11D1-B3E9-00805F499D93}: http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-wind... -- Java Plug-in 1.6.0_07
{B8BE5E93-A60C-4D26-A2DC-220313175592}: http://messenger.zone.msn.com/binary/ZIntro.cab56649.ca... -- MSN Games - Installer
{C3F79A2B-B9B4-4A66-B012-3EE46475B072}: http://messenger.zone.msn.com/binary/MessengerStatsPACl... -- MessengerStatsClient Class
{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}: http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-wind... -- Java Plug-in 1.6.0_07
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}: http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-wind... -- Java Plug-in 1.6.0_07
{D27CDB6E-AE6D-11CF-96B8-444553540000}: http://download.macromedia.com/pub/shockwave/cabs/flash... -- Shockwave Flash Object
{F5A7706B-B9C0-4C89-A715-7A0C6B05DD48}: http://messenger.zone.msn.com/binary/MineSweeper.cab569... -- Minesweeper Flags Class
========== (O17) DNS Name Servers ==========
{3CA6E947-61A5-4C2D-BEFD-93A01EBA1C7F} (Servers: | Description: Generic Marvell Yukon Chipset based Ethernet Controller)
{4AC48A29-33BA-4BA2-820C-247A0D090CA4} (Servers: | Description: NETGEAR WG111v2 54Mbps Wireless USB 2.0 Adapter)
{5E923D33-67D8-40FA-804F-F5C634A0A5C4} (Servers: | Description: )
{63AA936A-7509-4526-904A-0BB50D8BE0B8} (Servers: | Description: Carte réseau 1394)
{9ADEA1D5-3BCF-43B5-A393-4DA5964C2C21} (Servers: | Description: NETGEAR WG111v2 54Mbps Wireless USB 2.0 Adapter)
========== (O20) HKLM Winlogon Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"GinaDLL"=RtlGina2.dll
>[2006/05/03 18:44:32 | 00,036,864 | ---- | M] () -- C:\WINDOWS\system32\RtlGina2.dll
========== Safeboot Options ==========
"AlternateShell"=cmd.exe
========== CDRom AutoRun Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom]
"AutoRun" = 1
========== Autorun Files on Drives ==========
AUTOEXEC.BAT [PATH=%PATH%;C:\PROGRA~1\FICHIE~1\MUVEET~1\030625 | ]
[2006/08/11 19:52:52 | 00,000,050 | ---- | M] () -- C:\AUTOEXEC.BAT -- [ NTFS ]
========== Files/Folders - Created Within 30 days ==========
[9 C:\WINDOWS\System32\*.tmp files]
[1 C:\WINDOWS\*.tmp files]
[2008/09/19 21:02:44 | 00,424,448 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\YANN\Bureau\OTViewIt.exe
[2008/09/14 20:42:06 | 02,174,656 | ---- | C] () -- C:\Documents and Settings\YANN\Bureau\IceSword120_en.zip
[2008/09/12 21:04:19 | 00,000,250 | ---- | C] () -- C:\WINDOWS\gmer.ini
[2008/09/12 21:04:18 | 00,884,736 | ---- | C] () -- C:\WINDOWS\gmer.dll
[2008/09/12 21:04:18 | 00,811,008 | ---- | C] () -- C:\WINDOWS\gmer.exe
[2008/09/12 21:04:18 | 00,085,969 | ---- | C] (GMER) -- C:\WINDOWS\System32\drivers\gmer.sys
[2008/09/12 21:04:18 | 00,000,080 | ---- | C] () -- C:\WINDOWS\gmer_uninstall.cmd
[2008/09/12 21:04:14 | 00,811,008 | ---- | C] () -- C:\Documents and Settings\YANN\Bureau\gmer.exe
[2008/09/11 18:07:47 | 00,000,287 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Rappelz.lnk
[2008/09/10 19:30:24 | 00,708,333 | ---- | C] () -- C:\Documents and Settings\YANN\Bureau\sys60656.exe
[2008/09/10 18:52:38 | 00,400,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF13971.exe
[2008/09/10 18:51:52 | 00,400,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF13814.exe
[2008/09/10 18:50:59 | 02,847,488 | R--- | C] () -- C:\Documents and Settings\YANN\Bureau\ComboFix.exe
[2008/09/10 18:49:04 | 00,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Mozilla Firefox.lnk
[2008/09/09 22:31:29 | 00,001,734 | ---- | C] () -- C:\Documents and Settings\YANN\Bureau\HijackThis.lnk
[2008/09/09 22:03:56 | 00,400,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF31438.exe
[2008/09/07 20:18:58 | 00,121,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xmllite.dll
[2008/09/07 20:15:40 | 00,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2008/09/07 20:14:35 | 00,267,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2008/09/07 20:14:35 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieudinit.exe
[2008/09/07 20:14:34 | 00,459,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2008/09/07 20:14:34 | 00,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2008/09/07 20:14:33 | 01,048,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll.mui
[2008/09/07 20:14:31 | 02,455,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dat
[2008/09/07 20:14:30 | 00,383,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dll
[2008/09/07 20:14:30 | 00,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icardie.dll
[2008/09/07 20:14:29 | 06,066,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2008/09/05 21:48:08 | 00,217,412 | ---- | C] () -- C:\Documents and Settings\YANN\Bureau\Lion-King_1.jpg
[2008/09/04 19:14:40 | 00,056,462 | ---- | C] () -- C:\Documents and Settings\YANN\Bureau\ours_polaire.jpg
[2008/08/24 14:50:09 | 80,483,5328 | -HS- | C] () -- C:\hiberfil.sys
========== Files - Modified Within 30 days ==========
[9 C:\WINDOWS\System32\*.tmp files]
[1 C:\WINDOWS\*.tmp files]
[2008/09/19 21:02:48 | 00,424,448 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\YANN\Bureau\OTViewIt.exe
[2008/09/19 20:26:38 | 00,000,579 | ---- | M] () -- C:\Documents and Settings\YANN\Mes documents\Mes dossiers de partage.lnk
[2008/09/19 20:15:58 | 00,000,931 | ---- | M] () -- C:\WINDOWS\win.ini
[2008/09/19 20:15:25 | 00,073,451 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2008/09/19 20:15:25 | 00,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2008/09/19 17:38:43 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2008/09/19 17:38:41 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2008/09/19 17:38:39 | 80,483,5328 | -HS- | M] () -- C:\hiberfil.sys
[2008/09/18 23:09:56 | 01,575,564 | -H-- | M] () -- C:\Documents and Settings\YANN\Local Settings\Application Data\IconCache.db
[2008/09/16 20:15:43 | 00,000,016 | ---- | M] () -- C:\Documents and Settings\YANN\Bureau\WarcraftIIIAutoRefresh_Config.dat
[2008/09/16 19:08:55 | 00,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2008/09/14 21:04:38 | 00,008,704 | -HS- | M] () -- C:\WINDOWS\System32\Thumbs.db
@Alternate Data Stream - 0 bytes -> C:\WINDOWS\System32\Thumbs.db:encryptable
[2008/09/14 20:42:53 | 02,174,656 | ---- | M] () -- C:\Documents and Settings\YANN\Bureau\IceSword120_en.zip
[2008/09/12 21:05:27 | 00,000,250 | ---- | M] () -- C:\WINDOWS\gmer.ini
[2008/09/12 21:04:18 | 00,884,736 | ---- | M] () -- C:\WINDOWS\gmer.dll
[2008/09/12 21:04:18 | 00,085,969 | ---- | M] (GMER) -- C:\WINDOWS\System32\drivers\gmer.sys
[2008/09/12 21:04:18 | 00,000,080 | ---- | M] () -- C:\WINDOWS\gmer_uninstall.cmd
[2008/09/11 18:07:47 | 00,000,287 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Rappelz.lnk
[2008/09/10 19:30:28 | 00,708,333 | ---- | M] () -- C:\Documents and Settings\YANN\Bureau\sys60656.exe
[2008/09/10 18:51:27 | 02,847,488 | R--- | M] () -- C:\Documents and Settings\YANN\Bureau\ComboFix.exe
[2008/09/10 18:49:04 | 00,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Mozilla Firefox.lnk
[2008/09/10 03:08:45 | 00,340,240 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2008/09/10 03:00:33 | 00,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2008/09/09 22:31:29 | 00,001,734 | ---- | M] () -- C:\Documents and Settings\YANN\Bureau\HijackThis.lnk
[2008/09/09 22:02:04 | 00,092,672 | ---- | M] () -- C:\Documents and Settings\YANN\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2008/09/09 21:35:46 | 00,115,200 | ---- | M] () -- C:\Documents and Settings\YANN\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/09/09 18:54:11 | 00,000,057 | ---- | M] () -- C:\WINDOWS\Bbt97.INI
[2008/09/08 17:55:16 | 00,000,076 | -HS- | M] () -- C:\Documents and Settings\YANN\Mes documents\desktop.ini
[2008/09/05 21:48:11 | 00,217,412 | ---- | M] () -- C:\Documents and Settings\YANN\Bureau\Lion-King_1.jpg
[2008/09/05 17:38:17 | 00,021,840 | ---- | M] () -- C:\WINDOWS\System32\SIntfNT.dll
[2008/09/05 17:38:17 | 00,017,212 | ---- | M] () -- C:\WINDOWS\System32\SIntf32.dll
[2008/09/05 17:38:17 | 00,012,067 | ---- | M] () -- C:\WINDOWS\System32\SIntf16.dll
[2008/09/04 19:14:40 | 00,056,462 | ---- | M] () -- C:\Documents and Settings\YANN\Bureau\ours_polaire.jpg
[2008/08/26 22:28:12 | 16,208,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MRT.exe
< End of report >
Extra :
OTViewIt Extras logfile created on: 19/09/2008 21:03:26 - Run YANN
OTViewIt by OldTimer - Version 1.0.6.0 Folder = C:\Documents and Settings\YANN\Bureau
Windows XP Media Center Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
767,48 Mb Total Physical Memory | 426,36 Mb Available Physical Memory | 55,55% Memory free
1,83 Gb Paging File | 1,33 Gb Available in Paging File | 72,38% Paging File free
Paging file location(s): C:\pagefile.sys 1152 2304;
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 48,83 Gb Total Space | 13,28 Gb Free Space | 27,21% Space Free | Partition Type: NTFS
Drive D: | 113,76 Gb Total Space | 42,54 Gb Free Space | 37,39% Space Free | Partition Type: NTFS
Drive E: | 1,89 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive K: | 64,45 Gb Total Space | 31,55 Gb Free Space | 48,95% Space Free | Partition Type: NTFS
Computer Name: YANN
Current User Name: YANN
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Whitelist: On
Files within: 30 Days
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled"=1
"AntiVirusDisableNotify"=0
"FirewallDisableNotify"=0
"UpdatesDisableNotify"=0
"AntiVirusOverride"=0
"FirewallOverride"=0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
File not found -- K:\Warcraft III\War3.exe:*:Enabled:Warcraft III
File not found -- K:\World of Warcraft\WoW-1.12.0-frFR-downloader.exe:*:Enabled:Blizzard Downloader
File not found -- K:\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III
File not found -- K:\World of Warcraft\WoW-1.12.x-to-2.0.1-frFR-patch-downloader.exe:*:Enabled:Blizzard Downloader
File not found -- J:\Yann\WoW-2.0.0.5991-frFR-Installer-downloader.exe:*:Enabled:Blizzard Downloader
File not found -- K:\Steam\SteamApps\bea31\counter-strike\hl.exe:*:Enabled:Half-Life Launcher
File not found -- J:\patch\WoW-2.0.10.6448-to-2.0.12.6546-frFR-downloader.exe:*:Enabled:Blizzard Downloader
[2004/10/07 20:46:52 | 00,077,896 | ---- | M] () -- K:\Cs source\hl2.exe:*:Enabled:hl2
[1999/11/30 01:19:46 | 00,233,472 | ---- | M] () -- K:\Unreal\System\UnrealTournament.exe:*:Enabled:UnrealTournament
File not found -- C:\Program Files\DAP\DAP.exe:*:Enabled![:D]( ":D")
ownload Accelerator Plus (DAP)
File not found -- C:\Program Files\eMule\eMule.exe:*:Enabled:eMule Plus
"\\PARENT\WARCRAFT III\Warcraft III.exe"=\\PARENT\WARCRAFT III\Warcraft III.exe:*:Enabled:Warcraft III.exe
File not found -- C:\Program Files\Azureus\Azureus.exe:*:Enabled:Azureus
File not found -- C:\Documents and Settings\YANN\Local Settings\Temp\WZSE0.TMP\SymNRT.exe:*:Enabled:Norton Removal Tool
File not found -- C:\Program Files\Free Music Zilla\FMZilla.exe:*:Enabled:FMZilla Module
========== (O18) Protocol Handlers ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\]
ipp: [HKLM - No CLSID value]
msdaipp: [HKLM - No CLSID value]
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01A8838A-9469-425F-A5FB-FC14D4CF93B9}"=Rappelz
"{0CB98AC0-D691-4B21-AD3D-95982517021D}"=Acer WLAN 11g USB Dongle
"{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}"=Security Update for CAPICOM (KB931906)
"{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}"=NTI CD & DVD-Maker
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}"=Google Toolbar for Internet Explorer
"{3248F0A8-6813-11D6-A77B-00B0D0160070}"=Java(TM) 6 Update 7
"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}"=WebFldrs XP
"{385979FE-DC4F-4140-8EAD-A59625000D72}"=NTI Backup NOW! 4
"{38C65D12-79E3-49C0-B211-DE3BE0A7AB39}"=commercial
"{38E0C491-5230-4373-B62E-F1A6E94B1036}"=Nero 7 Ultra Edition
"{3D5E5C0A-5B36-4F98-99A7-287F7DBDCE03}"=Skype Plugin Manager
"{4312AB5F-7C43-461E-B48B-EDFA6B9CD3D6}"=Kptic
"{4AD13F68-CADA-4C6B-9759-C33753F89908}"=Acer eDataSecurity Management
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}"=PowerDVD
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}"=Windows Media Player Firefox Plugin
"{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}"=PartitionMagic
"{7057702F-6D71-4F30-8000-9E72BC771887}"=Acer ePerformance Management
"{90AF040C-6000-11D3-8CFE-0150048383C9}"=Microsoft Office PowerPoint Viewer 2003
"{9941F0AA-B903-4AF4-A055-83A9815CC011}"=Sonic Encoders
"{9A394342-4A68-4EBA-85A6-55B559F4E700}"=Microsoft .NET Framework 1.1 French Language Pack
"{A260B422-70E1-41E2-957D-F76FA21266D5}"=Apple Software Update
"{AB6097D9-D722-4987-BD9E-A076E2848EE2}"=Acer Empowering Technology
"{AC76BA86-7AD7-1033-7B44-A70000000000}"=Adobe Reader 7.0
"{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}"=Assistant de connexion Windows Live
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1"=Spybot - Search & Destroy
"{B7050CBDB2504B34BC2A9CA0A692CC29}"=DivX Web Player
"{BADF6744-3787-48F6-B8C9-4C4995401D65}"=Windows Live Messenger
"{C04E32E0-0416-434D-AFB9-6969D703A9EF}"=MSXML 4.0 SP2 (KB936181)
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}"=Microsoft .NET Framework 1.1
"{D050D7362D214723AD585B541FFB6C11}"=DivX Content Uploader
"{D755C7A3-C03E-4460-8C00-AC6E55505FB5}"=LightScribe 1.4.74.1
"{E0F252A6-DE85-4E93-A93B-DFC3537B3965}"=NETGEAR WG111v2 wireless USB 2.0 adapter
"{EF1B5DF7-8DF5-4D38-BFF0-FDC7B7847C00}"=Logiciel QuickCam de Logitech
"{F07B861C-72B9-40A4-8B1A-AAED4C06A7E8}"=QuickTime
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}"=Realtek High Definition Audio Driver
"{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}"=Windows Live installer
"3BEF1AFDE8303306594E2ADA27520E6E700820AE"=Package de pilotes Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
"Adobe Flash Player Plugin"=Adobe Flash Player Plugin
"Adobe Shockwave Player"=Adobe Shockwave Player
"Age of Empires 2.0"=Microsoft Age of Empires II
"Age of Empires II: The Conquerors Expansion 1.0"=Microsoft Age of Empires II : The Conquerors Expansion
"AntiVir PersonalEdition Classic"=Avira AntiVir Personal - Free Antivirus
"Audacity_is1"=Audacity 1.2.6
"AVGAntiSpyware75"=AVG Anti-Spyware 7.5
"Blender"=Blender (remove only)
"CCleaner"=CCleaner (remove only)
"Client_Fix_1.9.2"=Client Hack 1.9.2d
"Counter-Strike Source"=Counter-Strike Source
"dBpoweramp Music Converter"=dBpoweramp Music Converter
"Diablo II"=Diablo II
"F3B506E1FDAEA4DC6669B53B2D3F0B68FBA20C2D"=Package de pilotes Windows - AMD System (04/06/2006 1.0.1.0)
"FlashGet"=FlashGet 1.9.6.1073
"GoldWave v5.22"=GoldWave v5.22
"Guild Wars"=GUILD WARS
"HijackThis"=HijackThis 2.0.2
"IDNMitigationAPIs"=Microsoft Internationalized Domain Names Mitigation APIs
"ie7"=Windows Internet Explorer 7
"InstallShield_{0CB98AC0-D691-4B21-AD3D-95982517021D}"=Acer WLAN 11g USB Dongle
"InstallShield_{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}"=NTI CD & DVD-Maker
"InstallShield_{385979FE-DC4F-4140-8EAD-A59625000D72}"=NTI Backup NOW! 4
"InstallShield_{4AD13F68-CADA-4C6B-9759-C33753F89908}"=Acer eDataSecurity Management 2.0.3077
"InstallShield_{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}"=PowerQuest PartitionMagic 8.0
"InstallShield_{E0F252A6-DE85-4E93-A93B-DFC3537B3965}"=NETGEAR WG111v2 wireless USB 2.0 adapter
"KB867282"=Correctif Windows XP - KB867282
"KB873333"=Correctif Windows XP - KB873333
"KB873339"=Correctif Windows XP - KB873339
"KB885250"=Correctif Windows XP - KB885250
"KB885835"=Correctif Windows XP - KB885835
"KB885836"=Correctif Windows XP - KB885836
"KB886185"=Correctif Windows XP - KB886185
"KB887472"=Correctif Windows XP - KB887472
"KB887998"=Microsoft .NET Framework 1.0 Hotfix (KB887998)
"KB888111WXPSP2"=High Definition Audio Driver Package - KB888111
"KB888113"=Correctif Windows XP - KB888113
"KB888239"=Correctif Windows XP - KB888239
"KB888302"=Correctif Windows XP - KB888302
"KB890047"=Correctif Windows XP - KB890047
"KB890175"=Correctif Windows XP - KB890175
"KB890859"=Correctif Windows XP - KB890859
"KB890923"=Correctif Windows XP - KB890923
"KB891781"=Correctif Windows XP - KB891781
"KB893086"=Correctif Windows XP - KB893086
"KB893803v2"=Windows Installer 3.1 (KB893803)
"KB895961"=Correctif Windows XP - KB895961
"KB898458"=Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)
"KB900325"=Correctif n° 2 pour Windows XP Édition Media Center 2005
"KB903157"=Hotfix for Windows Media Player 10 (KB903157)
"KB908246"=Windows XP Media Center Edition 2005 KB908246
"KB910393"=Mise à jour pour Lecteur Windows Media 10 (KB910393)
"KB911564"=Mise à jour de sécurité pour Lecteur Windows Media (KB911564)
"KB911565"=Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)
"KB913800"=Mise à jour pour Lecteur Windows Media 10 (KB913800)
"KB917734_WMP10"=Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)
"KB925398_WMP64"=Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)
"KB925766"=Windows XP Media Center Edition 2005 KB925766
"KB926251"=Mise à jour pour Lecteur Windows Media 10 (KB926251)
"KB929399"=Hotfix for Windows Media Format 11 SDK (KB929399)
"KB930494"=Microsoft .NET Framework 1.0 Hotfix (KB930494)
"KB931906"=Security Update for CAPICOM (KB931906)
"KB936782_WMP11"=Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)
"KB938127-IE7"=Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)
"KB938127-v2-IE7"=Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127-v2)
"KB939683"=Correctif pour Lecteur Windows Media 11 (KB939683)
"KB953838-IE7"=Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)
"KB954154_WM11"=Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)
"KC Softwares VideoInspector_is1"=KC Softwares VideoInspector
"Keycraft"=Keycraft (remove only)
"KLiteCodecPack_is1"=K-Lite Codec Pack 2.71 Full
"Ludiclub.com"=Ludiclub.com
"M928366"=Microsoft .NET Framework 1.1 Hotfix (KB928366)
"MEDUSA"=MEDUSA - Subtitling Station (remove only)
"Messenger Plus! Live"=Messenger Plus! Live
"Microsoft .NET Framework 1.1 (1033)"=Microsoft .NET Framework 1.1
"mIRC"=mIRC
"Mozilla Firefox (3.0.1)"=Mozilla Firefox (3.0.1)
"MSCompPackV1"=Microsoft Compression Client Pack 1.0 for Windows XP
"MsgPlus! Plugin"=Messenger Plus! 3
"MSNINST"=MSN
"NLSDownlevelMapping"=Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers"=NVIDIA Drivers
"OcaHistoryUpd"=OCA Client history tool install
"Pharaoh"=Pharaon
"PokerStars"=PokerStars
"QcDrv"=Programme de gestion Camera de Logitech
"RealPlayer 6.0"=RealOne Player
"ShockwaveFlash"=Adobe Flash Player 9 ActiveX
"Skype_is1"=Skype 3.0
"Spybot - Search & Destroy_is1"=Spybot - Search & Destroy 1.4
"Starcraft"=Starcraft
"Steam"=Steam
"SUPER ©"=SUPER © Version 2007.bld.22 (Mar 14, 2007)
"Switch"=Switch
"Teamspeak 2 RC2_is1"=TeamSpeak 2 RC2
"VLC media player"=VideoLAN VLC media player 0.8.4a
"Warkeys"=Warkeys 1.3.1.0b
"WgaNotify"=Windows Genuine Advantage Notifications (KB905474)
"Windows Media Format Runtime"=Windows Media Format 11 runtime
"Windows Media Player"=Lecteur Windows Media 11
"WinRAR archiver"=Archiveur WinRAR
"WMFDist11"=Windows Media Format 11 runtime
"wmp11"=Windows Media Player 11
"World of Warcraft"=World of Warcraft
"Wudf01000"=Microsoft User-Mode Driver Framework Feature Pack 1.0
"Xilisoft MP4 Converter"=Xilisoft MP4 Converter
"Yahoo! Toolbar"=Yahoo! Toolbar
"YInstHelper"=Yahoo! Install Manager
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Steam App 80"=Condition Zero
"Warcraft III"=Warcraft III: All Products
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 16/09/2008 17:58:36 | Computer Name = YANN | Source = ESENT | ID = 482
Description = wuauclt (3876) Une tentative d'écriture dans le fichier "C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb"
à l'adresse relative 0 (0x0000000000000000) de 8192 (0x00002000) octets a échoué
en indiquant l'erreur système 112 (0x00000070) : "Espace insuffisant sur le disque.
". L'opération d'écriture échouera en indiquant l'erreur -1808 (0xfffff8f0). Si
le problème persiste, ceci signifie que le fichier est sans doute endommagé et
qu'il faut le restaurer à partir d'une version de sauvegarde antérieure.
Error - 16/09/2008 17:58:36 | Computer Name = YANN | Source = ESENT | ID = 439
Description = wuauclt (3876) Impossible d'écrire un en-tête de sauvegarde pour le
fichier C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb. Erreur -1808.
Error - 16/09/2008 17:58:36 | Computer Name = YANN | Source = ESENT | ID = 482
Description = wuauclt (3492) Une tentative d'écriture dans le fichier "C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb"
à l'adresse relative 0 (0x0000000000000000) de 8192 (0x00002000) octets a échoué
en indiquant l'erreur système 112 (0x00000070) : "Espace insuffisant sur le disque.
". L'opération d'écriture échouera en indiquant l'erreur -1808 (0xfffff8f0). Si
le problème persiste, ceci signifie que le fichier est sans doute endommagé et
qu'il faut le restaurer à partir d'une version de sauvegarde antérieure.
Error - 16/09/2008 17:58:36 | Computer Name = YANN | Source = ESENT | ID = 439
Description = wuauclt (3492) Impossible d'écrire un en-tête de sauvegarde pour le
fichier C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb. Erreur -1808.
Error - 16/09/2008 17:58:36 | Computer Name = YANN | Source = ESENT | ID = 482
Description = wuauclt (188) Une tentative d'écriture dans le fichier "C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb"
à l'adresse relative 0 (0x0000000000000000) de 8192 (0x00002000) octets a échoué
en indiquant l'erreur système 112 (0x00000070) : "Espace insuffisant sur le disque.
". L'opération d'écriture échouera en indiquant l'erreur -1808 (0xfffff8f0). Si
le problème persiste, ceci signifie que le fichier est sans doute endommagé et
qu'il faut le restaurer à partir d'une version de sauvegarde antérieure.
Error - 16/09/2008 17:58:36 | Computer Name = YANN | Source = ESENT | ID = 439
Description = wuauclt (188) Impossible d'écrire un en-tête de sauvegarde pour le
fichier C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb. Erreur -1808.
Error - 16/09/2008 17:58:37 | Computer Name = YANN | Source = ESENT | ID = 482
Description = wuauclt (636) Une tentative d'écriture dans le fichier "C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb"
à l'adresse relative 0 (0x0000000000000000) de 8192 (0x00002000) octets a échoué
en indiquant l'erreur système 112 (0x00000070) : "Espace insuffisant sur le disque.
". L'opération d'écriture échouera en indiquant l'erreur -1808 (0xfffff8f0). Si
le problème persiste, ceci signifie que le fichier est sans doute endommagé et
qu'il faut le restaurer à partir d'une version de sauvegarde antérieure.
Error - 16/09/2008 17:58:37 | Computer Name = YANN | Source = ESENT | ID = 439
Description = wuauclt (636) Impossible d'écrire un en-tête de sauvegarde pour le
fichier C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb. Erreur -1808.
Error - 16/09/2008 17:58:37 | Computer Name = YANN | Source = ESENT | ID = 482
Description = wuauclt (3404) Une tentative d'écriture dans le fichier "C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb"
à l'adresse relative 0 (0x0000000000000000) de 8192 (0x00002000) octets a échoué
en indiquant l'erreur système 112 (0x00000070) : "Espace insuffisant sur le disque.
". L'opération d'écriture échouera en indiquant l'erreur -1808 (0xfffff8f0). Si
le problème persiste, ceci signifie que le fichier est sans doute endommagé et
qu'il faut le restaurer à partir d'une version de sauvegarde antérieure.
Error - 16/09/2008 17:58:37 | Computer Name = YANN | Source = ESENT | ID = 439
Description = wuauclt (3404) Impossible d'écrire un en-tête de sauvegarde pour le
fichier C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb. Erreur -1808.
[ System Events ]
Error - 14/09/2008 14:25:27 | Computer Name = YANN | Source = Service Control Manager | ID = 7000
Description = Le service Planificateur LiveUpdate automatique n'a pas pu démarrer
en raison de l'erreur : %%3
Error - 15/09/2008 12:07:05 | Computer Name = YANN | Source = Dhcp | ID = 1002
Description = Le bail de l'adresse IP 192.168.0.6 pour la carte réseau dont l'adresse
réseau est 00184D422F18 a été refusé par le serveur DHCP 192.168.0.1 (celui-ci a
envoyé un message DHCPNACK).
Error - 15/09/2008 12:07:17 | Computer Name = YANN | Source = Service Control Manager | ID = 7000
Description = Le service Planificateur LiveUpdate automatique n'a pas pu démarrer
en raison de l'erreur : %%3
Error - 16/09/2008 10:52:52 | Computer Name = YANN | Source = Service Control Manager | ID = 7000
Description = Le service Planificateur LiveUpdate automatique n'a pas pu démarrer
en raison de l'erreur : %%3
Error - 16/09/2008 16:49:30 | Computer Name = YANN | Source = Service Control Manager | ID = 7000
Description = Le service Planificateur LiveUpdate automatique n'a pas pu démarrer
en raison de l'erreur : %%3
Error - 17/09/2008 08:38:44 | Computer Name = YANN | Source = Service Control Manager | ID = 7000
Description = Le service Planificateur LiveUpdate automatique n'a pas pu démarrer
en raison de l'erreur : %%3
Error - 18/09/2008 10:02:06 | Computer Name = YANN | Source = Service Control Manager | ID = 7000
Description = Le service Planificateur LiveUpdate automatique n'a pas pu démarrer
en raison de l'erreur : %%3
Error - 18/09/2008 10:33:49 | Computer Name = YANN | Source = Dhcp | ID = 1002
Description = Le bail de l'adresse IP 192.168.0.6 pour la carte réseau dont l'adresse
réseau est 00184D422F18 a été refusé par le serveur DHCP 192.168.0.1 (celui-ci a
envoyé un message DHCPNACK).
Error - 19/09/2008 11:38:49 | Computer Name = YANN | Source = Dhcp | ID = 1002
Description = Le bail de l'adresse IP 192.168.0.6 pour la carte réseau dont l'adresse
réseau est 00184D422F18 a été refusé par le serveur DHCP 192.168.0.1 (celui-ci a
envoyé un message DHCPNACK).
Error - 19/09/2008 11:39:01 | Computer Name = YANN | Source = Service Control Manager | ID = 7000
Description = Le service Planificateur LiveUpdate automatique n'a pas pu démarrer
en raison de l'erreur : %%3
< End of report >
OTViewIt Extras logfile created on: 19/09/2008 21:03:26 - Run YANN
OTViewIt by OldTimer - Version 1.0.6.0 Folder = C:\Documents and Settings\YANN\Bureau
Windows XP Media Center Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
767,48 Mb Total Physical Memory | 426,36 Mb Available Physical Memory | 55,55% Memory free
1,83 Gb Paging File | 1,33 Gb Available in Paging File | 72,38% Paging File free
Paging file location(s): C:\pagefile.sys 1152 2304;
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 48,83 Gb Total Space | 13,28 Gb Free Space | 27,21% Space Free | Partition Type: NTFS
Drive D: | 113,76 Gb Total Space | 42,54 Gb Free Space | 37,39% Space Free | Partition Type: NTFS
Drive E: | 1,89 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive K: | 64,45 Gb Total Space | 31,55 Gb Free Space | 48,95% Space Free | Partition Type: NTFS
Computer Name: YANN
Current User Name: YANN
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Whitelist: On
Files within: 30 Days
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled"=1
"AntiVirusDisableNotify"=0
"FirewallDisableNotify"=0
"UpdatesDisableNotify"=0
"AntiVirusOverride"=0
"FirewallOverride"=0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
File not found -- K:\Warcraft III\War3.exe:*:Enabled:Warcraft III
File not found -- K:\World of Warcraft\WoW-1.12.0-frFR-downloader.exe:*:Enabled:Blizzard Downloader
File not found -- K:\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III
File not found -- K:\World of Warcraft\WoW-1.12.x-to-2.0.1-frFR-patch-downloader.exe:*:Enabled:Blizzard Downloader
File not found -- J:\Yann\WoW-2.0.0.5991-frFR-Installer-downloader.exe:*:Enabled:Blizzard Downloader
File not found -- K:\Steam\SteamApps\bea31\counter-strike\hl.exe:*:Enabled:Half-Life Launcher
File not found -- J:\patch\WoW-2.0.10.6448-to-2.0.12.6546-frFR-downloader.exe:*:Enabled:Blizzard Downloader
[2004/10/07 20:46:52 | 00,077,896 | ---- | M] () -- K:\Cs source\hl2.exe:*:Enabled:hl2
[1999/11/30 01:19:46 | 00,233,472 | ---- | M] () -- K:\Unreal\System\UnrealTournament.exe:*:Enabled:UnrealTournament
File not found -- C:\Program Files\DAP\DAP.exe:*:Enabled
ownload Accelerator Plus (DAP)File not found -- C:\Program Files\eMule\eMule.exe:*:Enabled:eMule Plus
"\\PARENT\WARCRAFT III\Warcraft III.exe"=\\PARENT\WARCRAFT III\Warcraft III.exe:*:Enabled:Warcraft III.exe
File not found -- C:\Program Files\Azureus\Azureus.exe:*:Enabled:Azureus
File not found -- C:\Documents and Settings\YANN\Local Settings\Temp\WZSE0.TMP\SymNRT.exe:*:Enabled:Norton Removal Tool
File not found -- C:\Program Files\Free Music Zilla\FMZilla.exe:*:Enabled:FMZilla Module
========== (O18) Protocol Handlers ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\]
ipp: [HKLM - No CLSID value]
msdaipp: [HKLM - No CLSID value]
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01A8838A-9469-425F-A5FB-FC14D4CF93B9}"=Rappelz
"{0CB98AC0-D691-4B21-AD3D-95982517021D}"=Acer WLAN 11g USB Dongle
"{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}"=Security Update for CAPICOM (KB931906)
"{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}"=NTI CD & DVD-Maker
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}"=Google Toolbar for Internet Explorer
"{3248F0A8-6813-11D6-A77B-00B0D0160070}"=Java(TM) 6 Update 7
"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}"=WebFldrs XP
"{385979FE-DC4F-4140-8EAD-A59625000D72}"=NTI Backup NOW! 4
"{38C65D12-79E3-49C0-B211-DE3BE0A7AB39}"=commercial
"{38E0C491-5230-4373-B62E-F1A6E94B1036}"=Nero 7 Ultra Edition
"{3D5E5C0A-5B36-4F98-99A7-287F7DBDCE03}"=Skype Plugin Manager
"{4312AB5F-7C43-461E-B48B-EDFA6B9CD3D6}"=Kptic
"{4AD13F68-CADA-4C6B-9759-C33753F89908}"=Acer eDataSecurity Management
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}"=PowerDVD
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}"=Windows Media Player Firefox Plugin
"{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}"=PartitionMagic
"{7057702F-6D71-4F30-8000-9E72BC771887}"=Acer ePerformance Management
"{90AF040C-6000-11D3-8CFE-0150048383C9}"=Microsoft Office PowerPoint Viewer 2003
"{9941F0AA-B903-4AF4-A055-83A9815CC011}"=Sonic Encoders
"{9A394342-4A68-4EBA-85A6-55B559F4E700}"=Microsoft .NET Framework 1.1 French Language Pack
"{A260B422-70E1-41E2-957D-F76FA21266D5}"=Apple Software Update
"{AB6097D9-D722-4987-BD9E-A076E2848EE2}"=Acer Empowering Technology
"{AC76BA86-7AD7-1033-7B44-A70000000000}"=Adobe Reader 7.0
"{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}"=Assistant de connexion Windows Live
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1"=Spybot - Search & Destroy
"{B7050CBDB2504B34BC2A9CA0A692CC29}"=DivX Web Player
"{BADF6744-3787-48F6-B8C9-4C4995401D65}"=Windows Live Messenger
"{C04E32E0-0416-434D-AFB9-6969D703A9EF}"=MSXML 4.0 SP2 (KB936181)
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}"=Microsoft .NET Framework 1.1
"{D050D7362D214723AD585B541FFB6C11}"=DivX Content Uploader
"{D755C7A3-C03E-4460-8C00-AC6E55505FB5}"=LightScribe 1.4.74.1
"{E0F252A6-DE85-4E93-A93B-DFC3537B3965}"=NETGEAR WG111v2 wireless USB 2.0 adapter
"{EF1B5DF7-8DF5-4D38-BFF0-FDC7B7847C00}"=Logiciel QuickCam de Logitech
"{F07B861C-72B9-40A4-8B1A-AAED4C06A7E8}"=QuickTime
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}"=Realtek High Definition Audio Driver
"{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}"=Windows Live installer
"3BEF1AFDE8303306594E2ADA27520E6E700820AE"=Package de pilotes Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
"Adobe Flash Player Plugin"=Adobe Flash Player Plugin
"Adobe Shockwave Player"=Adobe Shockwave Player
"Age of Empires 2.0"=Microsoft Age of Empires II
"Age of Empires II: The Conquerors Expansion 1.0"=Microsoft Age of Empires II : The Conquerors Expansion
"AntiVir PersonalEdition Classic"=Avira AntiVir Personal - Free Antivirus
"Audacity_is1"=Audacity 1.2.6
"AVGAntiSpyware75"=AVG Anti-Spyware 7.5
"Blender"=Blender (remove only)
"CCleaner"=CCleaner (remove only)
"Client_Fix_1.9.2"=Client Hack 1.9.2d
"Counter-Strike Source"=Counter-Strike Source
"dBpoweramp Music Converter"=dBpoweramp Music Converter
"Diablo II"=Diablo II
"F3B506E1FDAEA4DC6669B53B2D3F0B68FBA20C2D"=Package de pilotes Windows - AMD System (04/06/2006 1.0.1.0)
"FlashGet"=FlashGet 1.9.6.1073
"GoldWave v5.22"=GoldWave v5.22
"Guild Wars"=GUILD WARS
"HijackThis"=HijackThis 2.0.2
"IDNMitigationAPIs"=Microsoft Internationalized Domain Names Mitigation APIs
"ie7"=Windows Internet Explorer 7
"InstallShield_{0CB98AC0-D691-4B21-AD3D-95982517021D}"=Acer WLAN 11g USB Dongle
"InstallShield_{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}"=NTI CD & DVD-Maker
"InstallShield_{385979FE-DC4F-4140-8EAD-A59625000D72}"=NTI Backup NOW! 4
"InstallShield_{4AD13F68-CADA-4C6B-9759-C33753F89908}"=Acer eDataSecurity Management 2.0.3077
"InstallShield_{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}"=PowerQuest PartitionMagic 8.0
"InstallShield_{E0F252A6-DE85-4E93-A93B-DFC3537B3965}"=NETGEAR WG111v2 wireless USB 2.0 adapter
"KB867282"=Correctif Windows XP - KB867282
"KB873333"=Correctif Windows XP - KB873333
"KB873339"=Correctif Windows XP - KB873339
"KB885250"=Correctif Windows XP - KB885250
"KB885835"=Correctif Windows XP - KB885835
"KB885836"=Correctif Windows XP - KB885836
"KB886185"=Correctif Windows XP - KB886185
"KB887472"=Correctif Windows XP - KB887472
"KB887998"=Microsoft .NET Framework 1.0 Hotfix (KB887998)
"KB888111WXPSP2"=High Definition Audio Driver Package - KB888111
"KB888113"=Correctif Windows XP - KB888113
"KB888239"=Correctif Windows XP - KB888239
"KB888302"=Correctif Windows XP - KB888302
"KB890047"=Correctif Windows XP - KB890047
"KB890175"=Correctif Windows XP - KB890175
"KB890859"=Correctif Windows XP - KB890859
"KB890923"=Correctif Windows XP - KB890923
"KB891781"=Correctif Windows XP - KB891781
"KB893086"=Correctif Windows XP - KB893086
"KB893803v2"=Windows Installer 3.1 (KB893803)
"KB895961"=Correctif Windows XP - KB895961
"KB898458"=Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)
"KB900325"=Correctif n° 2 pour Windows XP Édition Media Center 2005
"KB903157"=Hotfix for Windows Media Player 10 (KB903157)
"KB908246"=Windows XP Media Center Edition 2005 KB908246
"KB910393"=Mise à jour pour Lecteur Windows Media 10 (KB910393)
"KB911564"=Mise à jour de sécurité pour Lecteur Windows Media (KB911564)
"KB911565"=Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)
"KB913800"=Mise à jour pour Lecteur Windows Media 10 (KB913800)
"KB917734_WMP10"=Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)
"KB925398_WMP64"=Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)
"KB925766"=Windows XP Media Center Edition 2005 KB925766
"KB926251"=Mise à jour pour Lecteur Windows Media 10 (KB926251)
"KB929399"=Hotfix for Windows Media Format 11 SDK (KB929399)
"KB930494"=Microsoft .NET Framework 1.0 Hotfix (KB930494)
"KB931906"=Security Update for CAPICOM (KB931906)
"KB936782_WMP11"=Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)
"KB938127-IE7"=Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)
"KB938127-v2-IE7"=Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127-v2)
"KB939683"=Correctif pour Lecteur Windows Media 11 (KB939683)
"KB953838-IE7"=Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)
"KB954154_WM11"=Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)
"KC Softwares VideoInspector_is1"=KC Softwares VideoInspector
"Keycraft"=Keycraft (remove only)
"KLiteCodecPack_is1"=K-Lite Codec Pack 2.71 Full
"Ludiclub.com"=Ludiclub.com
"M928366"=Microsoft .NET Framework 1.1 Hotfix (KB928366)
"MEDUSA"=MEDUSA - Subtitling Station (remove only)
"Messenger Plus! Live"=Messenger Plus! Live
"Microsoft .NET Framework 1.1 (1033)"=Microsoft .NET Framework 1.1
"mIRC"=mIRC
"Mozilla Firefox (3.0.1)"=Mozilla Firefox (3.0.1)
"MSCompPackV1"=Microsoft Compression Client Pack 1.0 for Windows XP
"MsgPlus! Plugin"=Messenger Plus! 3
"MSNINST"=MSN
"NLSDownlevelMapping"=Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers"=NVIDIA Drivers
"OcaHistoryUpd"=OCA Client history tool install
"Pharaoh"=Pharaon
"PokerStars"=PokerStars
"QcDrv"=Programme de gestion Camera de Logitech
"RealPlayer 6.0"=RealOne Player
"ShockwaveFlash"=Adobe Flash Player 9 ActiveX
"Skype_is1"=Skype 3.0
"Spybot - Search & Destroy_is1"=Spybot - Search & Destroy 1.4
"Starcraft"=Starcraft
"Steam"=Steam
"SUPER ©"=SUPER © Version 2007.bld.22 (Mar 14, 2007)
"Switch"=Switch
"Teamspeak 2 RC2_is1"=TeamSpeak 2 RC2
"VLC media player"=VideoLAN VLC media player 0.8.4a
"Warkeys"=Warkeys 1.3.1.0b
"WgaNotify"=Windows Genuine Advantage Notifications (KB905474)
"Windows Media Format Runtime"=Windows Media Format 11 runtime
"Windows Media Player"=Lecteur Windows Media 11
"WinRAR archiver"=Archiveur WinRAR
"WMFDist11"=Windows Media Format 11 runtime
"wmp11"=Windows Media Player 11
"World of Warcraft"=World of Warcraft
"Wudf01000"=Microsoft User-Mode Driver Framework Feature Pack 1.0
"Xilisoft MP4 Converter"=Xilisoft MP4 Converter
"Yahoo! Toolbar"=Yahoo! Toolbar
"YInstHelper"=Yahoo! Install Manager
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Steam App 80"=Condition Zero
"Warcraft III"=Warcraft III: All Products
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 16/09/2008 17:58:36 | Computer Name = YANN | Source = ESENT | ID = 482
Description = wuauclt (3876) Une tentative d'écriture dans le fichier "C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb"
à l'adresse relative 0 (0x0000000000000000) de 8192 (0x00002000) octets a échoué
en indiquant l'erreur système 112 (0x00000070) : "Espace insuffisant sur le disque.
". L'opération d'écriture échouera en indiquant l'erreur -1808 (0xfffff8f0). Si
le problème persiste, ceci signifie que le fichier est sans doute endommagé et
qu'il faut le restaurer à partir d'une version de sauvegarde antérieure.
Error - 16/09/2008 17:58:36 | Computer Name = YANN | Source = ESENT | ID = 439
Description = wuauclt (3876) Impossible d'écrire un en-tête de sauvegarde pour le
fichier C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb. Erreur -1808.
Error - 16/09/2008 17:58:36 | Computer Name = YANN | Source = ESENT | ID = 482
Description = wuauclt (3492) Une tentative d'écriture dans le fichier "C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb"
à l'adresse relative 0 (0x0000000000000000) de 8192 (0x00002000) octets a échoué
en indiquant l'erreur système 112 (0x00000070) : "Espace insuffisant sur le disque.
". L'opération d'écriture échouera en indiquant l'erreur -1808 (0xfffff8f0). Si
le problème persiste, ceci signifie que le fichier est sans doute endommagé et
qu'il faut le restaurer à partir d'une version de sauvegarde antérieure.
Error - 16/09/2008 17:58:36 | Computer Name = YANN | Source = ESENT | ID = 439
Description = wuauclt (3492) Impossible d'écrire un en-tête de sauvegarde pour le
fichier C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb. Erreur -1808.
Error - 16/09/2008 17:58:36 | Computer Name = YANN | Source = ESENT | ID = 482
Description = wuauclt (188) Une tentative d'écriture dans le fichier "C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb"
à l'adresse relative 0 (0x0000000000000000) de 8192 (0x00002000) octets a échoué
en indiquant l'erreur système 112 (0x00000070) : "Espace insuffisant sur le disque.
". L'opération d'écriture échouera en indiquant l'erreur -1808 (0xfffff8f0). Si
le problème persiste, ceci signifie que le fichier est sans doute endommagé et
qu'il faut le restaurer à partir d'une version de sauvegarde antérieure.
Error - 16/09/2008 17:58:36 | Computer Name = YANN | Source = ESENT | ID = 439
Description = wuauclt (188) Impossible d'écrire un en-tête de sauvegarde pour le
fichier C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb. Erreur -1808.
Error - 16/09/2008 17:58:37 | Computer Name = YANN | Source = ESENT | ID = 482
Description = wuauclt (636) Une tentative d'écriture dans le fichier "C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb"
à l'adresse relative 0 (0x0000000000000000) de 8192 (0x00002000) octets a échoué
en indiquant l'erreur système 112 (0x00000070) : "Espace insuffisant sur le disque.
". L'opération d'écriture échouera en indiquant l'erreur -1808 (0xfffff8f0). Si
le problème persiste, ceci signifie que le fichier est sans doute endommagé et
qu'il faut le restaurer à partir d'une version de sauvegarde antérieure.
Error - 16/09/2008 17:58:37 | Computer Name = YANN | Source = ESENT | ID = 439
Description = wuauclt (636) Impossible d'écrire un en-tête de sauvegarde pour le
fichier C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb. Erreur -1808.
Error - 16/09/2008 17:58:37 | Computer Name = YANN | Source = ESENT | ID = 482
Description = wuauclt (3404) Une tentative d'écriture dans le fichier "C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb"
à l'adresse relative 0 (0x0000000000000000) de 8192 (0x00002000) octets a échoué
en indiquant l'erreur système 112 (0x00000070) : "Espace insuffisant sur le disque.
". L'opération d'écriture échouera en indiquant l'erreur -1808 (0xfffff8f0). Si
le problème persiste, ceci signifie que le fichier est sans doute endommagé et
qu'il faut le restaurer à partir d'une version de sauvegarde antérieure.
Error - 16/09/2008 17:58:37 | Computer Name = YANN | Source = ESENT | ID = 439
Description = wuauclt (3404) Impossible d'écrire un en-tête de sauvegarde pour le
fichier C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb. Erreur -1808.
[ System Events ]
Error - 14/09/2008 14:25:27 | Computer Name = YANN | Source = Service Control Manager | ID = 7000
Description = Le service Planificateur LiveUpdate automatique n'a pas pu démarrer
en raison de l'erreur : %%3
Error - 15/09/2008 12:07:05 | Computer Name = YANN | Source = Dhcp | ID = 1002
Description = Le bail de l'adresse IP 192.168.0.6 pour la carte réseau dont l'adresse
réseau est 00184D422F18 a été refusé par le serveur DHCP 192.168.0.1 (celui-ci a
envoyé un message DHCPNACK).
Error - 15/09/2008 12:07:17 | Computer Name = YANN | Source = Service Control Manager | ID = 7000
Description = Le service Planificateur LiveUpdate automatique n'a pas pu démarrer
en raison de l'erreur : %%3
Error - 16/09/2008 10:52:52 | Computer Name = YANN | Source = Service Control Manager | ID = 7000
Description = Le service Planificateur LiveUpdate automatique n'a pas pu démarrer
en raison de l'erreur : %%3
Error - 16/09/2008 16:49:30 | Computer Name = YANN | Source = Service Control Manager | ID = 7000
Description = Le service Planificateur LiveUpdate automatique n'a pas pu démarrer
en raison de l'erreur : %%3
Error - 17/09/2008 08:38:44 | Computer Name = YANN | Source = Service Control Manager | ID = 7000
Description = Le service Planificateur LiveUpdate automatique n'a pas pu démarrer
en raison de l'erreur : %%3
Error - 18/09/2008 10:02:06 | Computer Name = YANN | Source = Service Control Manager | ID = 7000
Description = Le service Planificateur LiveUpdate automatique n'a pas pu démarrer
en raison de l'erreur : %%3
Error - 18/09/2008 10:33:49 | Computer Name = YANN | Source = Dhcp | ID = 1002
Description = Le bail de l'adresse IP 192.168.0.6 pour la carte réseau dont l'adresse
réseau est 00184D422F18 a été refusé par le serveur DHCP 192.168.0.1 (celui-ci a
envoyé un message DHCPNACK).
Error - 19/09/2008 11:38:49 | Computer Name = YANN | Source = Dhcp | ID = 1002
Description = Le bail de l'adresse IP 192.168.0.6 pour la carte réseau dont l'adresse
réseau est 00184D422F18 a été refusé par le serveur DHCP 192.168.0.1 (celui-ci a
envoyé un message DHCPNACK).
Error - 19/09/2008 11:39:01 | Computer Name = YANN | Source = Service Control Manager | ID = 7000
Description = Le service Planificateur LiveUpdate automatique n'a pas pu démarrer
en raison de l'erreur : %%3
< End of report >
bonjour
Met à jour Adobe Reader.
Rends toi sur ce lien : Virus Total
Clique sur Parcourir
Rends toi jusque sur ce fichier si tu le trouves :
C:\Documents and Settings\YANN\Bureau\sys60656.exe
Clique sur Envoyer le fichier et laisse travailler tant que "Situation actuelle : en cours d'analyse" est affiché.
Il est possible que le fichier soit mis en file d'attente en raison d'un grand nombre de demandes d'analyses. En ce cas, il te faudra patienter sans actualiser la page.
Lorsque l'analyse est terminée ("Situation actuelle: terminé"), clique sur Formaté
Une nouvelle fenêtre de ton navigateur va apparaître
Clique alors sur cette image : ![]()
Fais un clic droit sur la page, et choisis Sélectionner tout, puis copier
Enfin colle le résultat dans ta prochaine réponse.
Note : Peu importe le résultat, il est important de me communiquer le résultat de toute l'analyse.
Il est possible que tes outils de sécurité réagissent à l'envoi du fichier, en ce cas il te faudra ignorer les alertes.
Met à jour Adobe Reader.
Rends toi sur ce lien : Virus Total
C:\Documents and Settings\YANN\Bureau\sys60656.exe
Note : Peu importe le résultat, il est important de me communiquer le résultat de toute l'analyse.
Il est possible que tes outils de sécurité réagissent à l'envoi du fichier, en ce cas il te faudra ignorer les alertes.
Fichier sys13286.exe reçu le 2008.09.19 14:36:04 (CET)
Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 2008.9.19.2 2008.09.19 -
AntiVir 7.8.1.34 2008.09.19 -
Authentium 5.1.0.4 2008.09.19 -
Avast 4.8.1195.0 2008.09.18 Win32:Trojan-gen {Other}
AVG 8.0.0.161 2008.09.19 -
BitDefender 7.2 2008.09.19 DeepScan:Generic.Zlob.38B68927
CAT-QuickHeal 9.50 2008.09.19 Backdoor.Small.eum
ClamAV 0.93.1 2008.09.19 -
DrWeb 4.44.0.09170 2008.09.19 -
eSafe 7.0.17.0 2008.09.18 -
eTrust-Vet 31.6.6091 2008.09.16 -
Ewido 4.0 2008.09.19 -
F-Prot 4.4.4.56 2008.09.19 -
F-Secure 8.0.14332.0 2008.09.19 -
Fortinet 3.113.0.0 2008.09.19 -
GData 19 2008.09.19 -
Ikarus T3.1.1.34.0 2008.09.19 -
K7AntiVirus 7.10.461 2008.09.18 -
Kaspersky 7.0.0.125 2008.09.19 -
McAfee 5387 2008.09.18 -
Microsoft 1.3903 2008.09.19 -
NOD32v2 3455 2008.09.19 -
Norman 5.80.02 2008.09.18 -
Panda 9.0.0.4 2008.09.19 -
PCTools 4.4.2.0 2008.09.18 -
Prevx1 V2 2008.09.19 -
Rising 20.62.42.00 2008.09.19 -
Sophos 4.33.0 2008.09.19 Mal/VB-A
Sunbelt 3.1.1647.1 2008.09.18 -
Symantec 10 2008.09.19 -
TheHacker 6.3.0.9.087 2008.09.18 -
VBA32 3.12.8.5 2008.09.18 Trojan.Proxy.2804
ViRobot 2008.9.19.1383 2008.09.19 -
VirusBuster 4.5.11.0 2008.09.18 -
Webwasher-Gateway 6.6.2 2008.09.19 -
Information additionnelle
File size: 708333 bytes
MD5...: 489de26b8b2b0b9cbea20f6e8327ff1f
SHA1..: bb8b01d2e1c9ec47ca6c6e46487e1e6146036283
SHA256: 355b91fa48a38ca2cd76f15420715eedde1a54334b773e1321f3ab831479e62f
SHA512: ce6d8ddf3fff20fc70db0fe710ef9e04361f39dead2c75baa2bbb9e21b963ed2<br>805920307062297019f82d05a993897c5d984e0f4b7e4cd22b85ab02608118f2
PEiD..: -
TrID..: File type identification<br>Win32 Executable MS Visual C++ (generic) (65.2%)<br>Win32 Executable Generic (14.7%)<br>Win32 Dynamic Link Library (generic) (13.1%)<br>Generic Win/DOS Executable (3.4%)<br>DOS Executable Generic (3.4%)
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0x4030e3<br>timedatestamp.....: 0x47eebf34 (Sat Mar 29 22:14:12 2008)<br>machinetype.......: 0x14c (I386)<br><br>( 5 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.text 0x1000 0x5b26 0x5c00 6.48 f0de10bb55b85eded92a9cfc8ba8c846<br>.rdata 0x7000 0x129c 0x1400 5.05 165e3e874dc59c8a96748c6f4d0f4207<br>.data 0x9000 0x25c58 0x400 4.77 07ff028e3597dab438e7a69328411961<br>.ndata 0x2f000 0x8000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e<br>.rsrc 0x37000 0x1288 0x1400 4.78 533b0b34e4b40f5f9ea9c706c705a195<br><br>( 8 imports ) <br>> KERNEL32.dll: CompareFileTime, SearchPathA, GetShortPathNameA, GetFullPathNameA, MoveFileA, SetCurrentDirectoryA, GetFileAttributesA, GetLastError, CreateDirectoryA, SetFileAttributesA, Sleep, GetTickCount, GetFileSize, GetModuleFileNameA, GetCurrentProcess, CopyFileA, ExitProcess, GetWindowsDirectoryA, SetFileTime, GetCommandLineA, SetErrorMode, LoadLibraryA, lstrcpynA, GetDiskFreeSpaceA, GlobalUnlock, GlobalLock, CreateThread, CreateProcessA, RemoveDirectoryA, CreateFileA, GetTempFileNameA, lstrlenA, lstrcatA, GetSystemDirectoryA, GetVersion, CloseHandle, lstrcmpiA, lstrcmpA, ExpandEnvironmentStringsA, GlobalFree, GlobalAlloc, WaitForSingleObject, GetExitCodeProcess, GetModuleHandleA, LoadLibraryExA, GetProcAddress, FreeLibrary, MultiByteToWideChar, WritePrivateProfileStringA, GetPrivateProfileStringA, WriteFile, ReadFile, MulDiv, SetFilePointer, FindClose, FindNextFileA, FindFirstFileA, DeleteFileA, GetTempPathA<br>> USER32.dll: EndDialog, ScreenToClient, GetWindowRect, EnableMenuItem, GetSystemMenu, SetClassLongA, IsWindowEnabled, SetWindowPos, GetSysColor, GetWindowLongA, SetCursor, LoadCursorA, CheckDlgButton, GetMessagePos, LoadBitmapA, CallWindowProcA, IsWindowVisible, CloseClipboard, SetClipboardData, EmptyClipboard, RegisterClassA, TrackPopupMenu, AppendMenuA, CreatePopupMenu, GetSystemMetrics, SetDlgItemTextA, GetDlgItemTextA, MessageBoxIndirectA, CharPrevA, DispatchMessageA, PeekMessageA, DestroyWindow, CreateDialogParamA, SetTimer, SetWindowTextA, PostQuitMessage, SetForegroundWindow, wsprintfA, SendMessageTimeoutA, FindWindowExA, SystemParametersInfoA, CreateWindowExA, GetClassInfoA, DialogBoxParamA, CharNextA, OpenClipboard, ExitWindowsEx, IsWindow, GetDlgItem, SetWindowLongA, LoadImageA, GetDC, EnableWindow, InvalidateRect, SendMessageA, DefWindowProcA, BeginPaint, GetClientRect, FillRect, DrawTextA, EndPaint, ShowWindow<br>> GDI32.dll: SetBkColor, GetDeviceCaps, DeleteObject, CreateBrushIndirect, CreateFontIndirectA, SetBkMode, SetTextColor, SelectObject<br>> SHELL32.dll: SHGetPathFromIDListA, SHBrowseForFolderA, SHGetFileInfoA, ShellExecuteA, SHFileOperationA, SHGetSpecialFolderLocation<br>> ADVAPI32.dll: RegQueryValueExA, RegSetValueExA, RegEnumKeyA, RegEnumValueA, RegOpenKeyExA, RegDeleteKeyA, RegDeleteValueA, RegCloseKey, RegCreateKeyExA<br>> COMCTL32.dll: ImageList_AddMasked, ImageList_Destroy, -, ImageList_Create<br>> ole32.dll: CoTaskMemFree, OleInitialize, OleUninitialize, CoCreateInstance<br>> VERSION.dll: GetFileVersionInfoSizeA, GetFileVersionInfoA, VerQueryValueA<br><br>( 0 exports ) <br>
packers (Kaspersky): PE_Patch.UPX, UPX, UPX, UPX, PE_Patch, TeLock, PE_Patch.UPX, UPX, PE_Patch.UPX, UPX, PE_Patch.UPX, UPX
Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 2008.9.19.2 2008.09.19 -
AntiVir 7.8.1.34 2008.09.19 -
Authentium 5.1.0.4 2008.09.19 -
Avast 4.8.1195.0 2008.09.18 Win32:Trojan-gen {Other}
AVG 8.0.0.161 2008.09.19 -
BitDefender 7.2 2008.09.19 DeepScan:Generic.Zlob.38B68927
CAT-QuickHeal 9.50 2008.09.19 Backdoor.Small.eum
ClamAV 0.93.1 2008.09.19 -
DrWeb 4.44.0.09170 2008.09.19 -
eSafe 7.0.17.0 2008.09.18 -
eTrust-Vet 31.6.6091 2008.09.16 -
Ewido 4.0 2008.09.19 -
F-Prot 4.4.4.56 2008.09.19 -
F-Secure 8.0.14332.0 2008.09.19 -
Fortinet 3.113.0.0 2008.09.19 -
GData 19 2008.09.19 -
Ikarus T3.1.1.34.0 2008.09.19 -
K7AntiVirus 7.10.461 2008.09.18 -
Kaspersky 7.0.0.125 2008.09.19 -
McAfee 5387 2008.09.18 -
Microsoft 1.3903 2008.09.19 -
NOD32v2 3455 2008.09.19 -
Norman 5.80.02 2008.09.18 -
Panda 9.0.0.4 2008.09.19 -
PCTools 4.4.2.0 2008.09.18 -
Prevx1 V2 2008.09.19 -
Rising 20.62.42.00 2008.09.19 -
Sophos 4.33.0 2008.09.19 Mal/VB-A
Sunbelt 3.1.1647.1 2008.09.18 -
Symantec 10 2008.09.19 -
TheHacker 6.3.0.9.087 2008.09.18 -
VBA32 3.12.8.5 2008.09.18 Trojan.Proxy.2804
ViRobot 2008.9.19.1383 2008.09.19 -
VirusBuster 4.5.11.0 2008.09.18 -
Webwasher-Gateway 6.6.2 2008.09.19 -
Information additionnelle
File size: 708333 bytes
MD5...: 489de26b8b2b0b9cbea20f6e8327ff1f
SHA1..: bb8b01d2e1c9ec47ca6c6e46487e1e6146036283
SHA256: 355b91fa48a38ca2cd76f15420715eedde1a54334b773e1321f3ab831479e62f
SHA512: ce6d8ddf3fff20fc70db0fe710ef9e04361f39dead2c75baa2bbb9e21b963ed2<br>805920307062297019f82d05a993897c5d984e0f4b7e4cd22b85ab02608118f2
PEiD..: -
TrID..: File type identification<br>Win32 Executable MS Visual C++ (generic) (65.2%)<br>Win32 Executable Generic (14.7%)<br>Win32 Dynamic Link Library (generic) (13.1%)<br>Generic Win/DOS Executable (3.4%)<br>DOS Executable Generic (3.4%)
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0x4030e3<br>timedatestamp.....: 0x47eebf34 (Sat Mar 29 22:14:12 2008)<br>machinetype.......: 0x14c (I386)<br><br>( 5 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.text 0x1000 0x5b26 0x5c00 6.48 f0de10bb55b85eded92a9cfc8ba8c846<br>.rdata 0x7000 0x129c 0x1400 5.05 165e3e874dc59c8a96748c6f4d0f4207<br>.data 0x9000 0x25c58 0x400 4.77 07ff028e3597dab438e7a69328411961<br>.ndata 0x2f000 0x8000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e<br>.rsrc 0x37000 0x1288 0x1400 4.78 533b0b34e4b40f5f9ea9c706c705a195<br><br>( 8 imports ) <br>> KERNEL32.dll: CompareFileTime, SearchPathA, GetShortPathNameA, GetFullPathNameA, MoveFileA, SetCurrentDirectoryA, GetFileAttributesA, GetLastError, CreateDirectoryA, SetFileAttributesA, Sleep, GetTickCount, GetFileSize, GetModuleFileNameA, GetCurrentProcess, CopyFileA, ExitProcess, GetWindowsDirectoryA, SetFileTime, GetCommandLineA, SetErrorMode, LoadLibraryA, lstrcpynA, GetDiskFreeSpaceA, GlobalUnlock, GlobalLock, CreateThread, CreateProcessA, RemoveDirectoryA, CreateFileA, GetTempFileNameA, lstrlenA, lstrcatA, GetSystemDirectoryA, GetVersion, CloseHandle, lstrcmpiA, lstrcmpA, ExpandEnvironmentStringsA, GlobalFree, GlobalAlloc, WaitForSingleObject, GetExitCodeProcess, GetModuleHandleA, LoadLibraryExA, GetProcAddress, FreeLibrary, MultiByteToWideChar, WritePrivateProfileStringA, GetPrivateProfileStringA, WriteFile, ReadFile, MulDiv, SetFilePointer, FindClose, FindNextFileA, FindFirstFileA, DeleteFileA, GetTempPathA<br>> USER32.dll: EndDialog, ScreenToClient, GetWindowRect, EnableMenuItem, GetSystemMenu, SetClassLongA, IsWindowEnabled, SetWindowPos, GetSysColor, GetWindowLongA, SetCursor, LoadCursorA, CheckDlgButton, GetMessagePos, LoadBitmapA, CallWindowProcA, IsWindowVisible, CloseClipboard, SetClipboardData, EmptyClipboard, RegisterClassA, TrackPopupMenu, AppendMenuA, CreatePopupMenu, GetSystemMetrics, SetDlgItemTextA, GetDlgItemTextA, MessageBoxIndirectA, CharPrevA, DispatchMessageA, PeekMessageA, DestroyWindow, CreateDialogParamA, SetTimer, SetWindowTextA, PostQuitMessage, SetForegroundWindow, wsprintfA, SendMessageTimeoutA, FindWindowExA, SystemParametersInfoA, CreateWindowExA, GetClassInfoA, DialogBoxParamA, CharNextA, OpenClipboard, ExitWindowsEx, IsWindow, GetDlgItem, SetWindowLongA, LoadImageA, GetDC, EnableWindow, InvalidateRect, SendMessageA, DefWindowProcA, BeginPaint, GetClientRect, FillRect, DrawTextA, EndPaint, ShowWindow<br>> GDI32.dll: SetBkColor, GetDeviceCaps, DeleteObject, CreateBrushIndirect, CreateFontIndirectA, SetBkMode, SetTextColor, SelectObject<br>> SHELL32.dll: SHGetPathFromIDListA, SHBrowseForFolderA, SHGetFileInfoA, ShellExecuteA, SHFileOperationA, SHGetSpecialFolderLocation<br>> ADVAPI32.dll: RegQueryValueExA, RegSetValueExA, RegEnumKeyA, RegEnumValueA, RegOpenKeyExA, RegDeleteKeyA, RegDeleteValueA, RegCloseKey, RegCreateKeyExA<br>> COMCTL32.dll: ImageList_AddMasked, ImageList_Destroy, -, ImageList_Create<br>> ole32.dll: CoTaskMemFree, OleInitialize, OleUninitialize, CoCreateInstance<br>> VERSION.dll: GetFileVersionInfoSizeA, GetFileVersionInfoA, VerQueryValueA<br><br>( 0 exports ) <br>
packers (Kaspersky): PE_Patch.UPX, UPX, UPX, UPX, PE_Patch, TeLock, PE_Patch.UPX, UPX, PE_Patch.UPX, UPX, PE_Patch.UPX, UPX
re
Insère ton CD de windows dans ton lecteur ( il faut que le CD corresponde à ta version de windows ).
Ferme toutes les programmes, fenêtres et applications en cours.
Déconnecte-toi d'internet.
Menu démarrer > exécuter.
Dans la fenêtre qui apparaît, tape : sfc /scannow puis valide par entrée.
Le PC va travailler, laisse-le tourner, cela peut prendre un bon moment.
Reviens me dire quand cela est fait.
re
demande qu'on te prête un cd et répare windows:
http://www.informatruc.com/reparer.php
tu peux le faire avec n'importe-quel cd. (légal)
demande qu'on te prête un cd et répare windows:
http://www.informatruc.com/reparer.php
tu peux le faire avec n'importe-quel cd. (légal)
. 
Lassé par la pub ? Créez un compte
- Contenus similaires :
- solutionsRésoluRalentissement important pc [Résolu]
- ForumBlocage de Explorer et ralentissement de l’ordinateur lors de l'ouverture de la corbeille et fichier téléchargment
- Forumcomment nettoyer mon pc des publicitées intempestives ralentissement ect ..
- ForumRalentissement PC / Form 1
- Forumabdos , tractions , pompes = ralentissement de croissance ou non ?
- ForumEcran Bleu, ralentissement performance, redémarrage intempestif
- Forumralentissement et bug sur certain site(resolu)
- ForumRalentissement portable surement du à µtorrent
- ForumEnorme ralentissement de mon pc [RESOLU]
- ForumPub + Ralentissement + Bug > Analyse hijackthis
- Voir plus
