Tom's Guide > Forum > Sécurité - Virus > AntivirXP08- résolu

AntivirXP08- résolu

Forum Sécurité - Virus : AntivirXP08- résolu

TomsGuide.com : 800 000 inscrits répondent à toutes vos questions high-tech et informatique. Pour obtenir de l'aide, inscrivez-vous gratuitement !
Créer un nouveau sujet Répondre
Mot :    Pseudo :           
 
Caroanais   19-08-2008 à 02:47:44

Bonsoir,
Je viens d'installer Hijackthis car je suis infectée du virus AnrivirXP08. Voici mon rapport. Pouvez-vous m'aider?
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:36:08, on 2008-08-18
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Thomson\Lyra Jukebox\LyraHDTrayApp\LYRAHD2TrayApp.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe
C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
C:\Program Files\McAfee\Common Framework\UdaterUI.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\lphcruoj0erbg.exe
C:\Program Files\McAfee\Common Framework\McTray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe
C:\Program Files\NDAS\System\ndasmgmt.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Olympus\DeviceDetector\DM1Service.exe
C:\Program Files\McAfee\Common Framework\FrameworkService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\NDAS\System\ndassvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Alwil Software\Avast4\ashSimpl.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://sympatico.msn.ca/defaultf.aspx
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://proxy.uqtr.ca/uqtr.pac
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [LyraHD2TrayApp] "C:\Program Files\Thomson\Lyra Jukebox\LyraHDTrayApp\LYRAHD2TrayApp.exe"
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide
O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe"
O4 - HKLM\..\Run: [mmtask] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe"
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\McAfee\Common Framework\UdaterUI.exe" /StartedFromRunKey
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [lphcruoj0erbg] C:\WINDOWS\system32\lphcruoj0erbg.exe
O4 - HKLM\..\Run: [SMrhcvuoj0erbg] C:\Program Files\rhcvuoj0erbg\rhcvuoj0erbg.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Acrobat.lnk = ?
O4 - Global Startup: NDAS Device Management.lnk = C:\Program Files\NDAS\System\ndasmgmt.exe
O8 - Extra context menu item: Convertir en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir la cible du lien en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir la sélection en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la sélection en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convertir les liens sélectionnés en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Documents and Settings\Caroline et Dominic\Mes documents\PartyPoker\RunApp.exe
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Documents and Settings\Caroline et Dominic\Mes documents\PartyPoker\RunApp.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/ [...] hcImpl.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://carodom96.spaces.live.com// [...] nPUpld.cab
O16 - DPF: {F137B9BA-89EA-4B04-9C67-2074A9DF61FD} (Photo Upload Plugin Class) - http://walmart.pnimedia.com/upload [...] .0.10.cab?
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: DM1Service - OLYMPUS Corporation - C:\Program Files\Olympus\DeviceDetector\DM1Service.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe
O23 - Service: McAfee Framework Service (McAfeeFramework) - McAfee, Inc. - C:\Program Files\McAfee\Common Framework\FrameworkService.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NDAS Service (ndassvc) - XIMETA, Inc. - C:\Program Files\NDAS\System\ndassvc.exe
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe

--
End of file - 12578 bytes

Merci
Caroanais


Message édité par Caroanais le 20-09-2008 à 02:49:57
Répondre
Liens sponsorisés
Inscrivez-vous ou connectez-vous pour masquer ceci.
Egwene   19-08-2008 à 11:11:39
- 0 +

Bonjour,

Je vais m'occuper de toi. Merci de prendre en compte que je suis bénévole, que j'ai une vie privée et que j'aide plusieurs internautes à la fois, donc merci d'être patient. Cependant, je ne lâche jamais un internaute tant que son PC n'est pas propre ;)

Cette procédure doit être imprimée pour que tu puisses l’avoir sous les yeux quand tu seras en mode sans échec.

Télécharge SDFix (d’Andy Manchesta)

  • Enregistre le sur ton le bureau.
  • Lance le.
  • Fais install afin qu’il puisse s’extraire.

Fais redémarrer ton ordinateur en mode sans échec
- Au démarrage, après le chargement du bios, appuie successivement sur la touche F8 (ou F5) de ton clavier jusqu'à l'apparition d'un menu sur fond noir. Une fois arrivé à ce stade, sélectionne à l'aide du clavier Mode sans Echec.
-- Dans ce mode, tu n'as pas accès à Internet, et tu te retrouves avec une configuration visuelle différente (pas de fond d'écran, icônes très grosses). Ne sois donc pas étonné.
--- C'est pour ces différentes raisons que je t'invite à imprimer, noter, ou enregistrer dans un document texte les informations suivantes afin de ne pas être perdu.
---- ! Ne fais pas démarrer ton ordinateur en mode sans échec via MSConfig ! Pourquoi ? Certaines infections cassent les clefs du mode sans échec, ce qui ferait crasher ton ordinateur.

  • Ouvre le dossier SDFix qui vient d'être créé dans le répertoire C:\
  • Double clique sur RunThis.bat (L’extension bat peut ne pas apparaître)
  • Appuie sur Y pour le lancer.
  • Il te sera demandé d'appuyer sur une touche pour redemarrer , fais le
  • Il est probable que le redémarrage soit un peu plus long que d’habitude.
  • Une fois l’apparition de ton Bureau, il affichera Finished
  • Appuie sur une touche.
  • Un rapport est généré , poste le dans ta réponse.


Il se trouve également. dans le dossier SDFix >Report.txt<

Note : Si SDFix ne se lance pas (ça arrive!)

* Démarrer->Exécuter
* Copie/colle ceci:

Citation :

%systemroot%\system32\cmd.exe /K %systemdrive%\SDFix\apps\FixPath.exe


* Clique sur ok, et valide.
* Redémarre et essaye de nouveau de lancer SDFix.

Aide : Comment faire démarrer son ordinateur en mode sans échec.

;)

------------------------------ Prière de signaler si vous vous faites déjà aider sur un autre forum ou dans un autre topic.

Sécurité / Prévention
Répondre à Egwene
Caroanais   19-08-2008 à 14:26:53
- 0 +

Bonjour,

Merci pour votre aide. Je ne pourrai pas essayer la procédure avant plusieurs heures, puisque je suis au travail. Je vous redonne des nouvelles plus tard.

À bientôt

Répondre à Caroanais
Egwene   19-08-2008 à 21:01:40
- 0 +

Re,

Oki :)

Il se peut que tu n'arrives même pas à lancer SDfix, dans ce cas ne t'inquiète pas, je saurais pourquoi.

;)

------------------------------ Prière de signaler si vous vous faites déjà aider sur un autre forum ou dans un autre topic.

Sécurité / Prévention
Répondre à Egwene
Caroanais   20-08-2008 à 00:57:51
- 0 +

Bonsoir,

J'ai suivi la procédure avec SDFix. Voici le rapport.
Merci
Caroanais


SDFix: Version 1.218
Run by Administrateur on 2008-08-19 at 18:32

Microsoft Windows XP [version 5.1.2600]
Running From: C:\SDFix

Checking Services :


Restoring Default Security Values
Restoring Default Hosts File

Rebooting


Checking Files :

Trojan Files Found:

C:\WINDOWS\system32\lphcruoj0erbg.exe - Deleted
C:\Documents and Settings\All Users\Bureau\Antivirus XP 2008.lnk - Deleted



Folder C:\Documents and Settings\Caroline et Dominic\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#w*w.redtube.com - Removed


Removing Temp Files

ADS Check :



Final Check :

catchme 0.3.1361.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-19 18:43:01
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden services & system hive ...

scanning hidden registry entries ...

scanning hidden files ...

scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0


Remaining Services :




Authorized Application Key Export:

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\\Program Files\\EA GAMES\\MOHDA\\MOHAA.exe"="C:\\Program Files\\EA GAMES\\MOHDA\\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault(tm)"
"C:\\Program Files\\EA GAMES\\MOHDA\\moh_spearhead.exe"="C:\\Program Files\\EA GAMES\\MOHDA\\moh_spearhead.exe:*:Disabled:Medal of Honor Allied Assault(tm) Spearhead"
"C:\\StubInstaller.exe"="C:\\StubInstaller.exe:*:Enabled:LimeWire swarmed installer"
"C:\\Program Files\\LimeWire\\LimeWire.exe"="C:\\Program Files\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire"
"C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\\Program Files\\NetMeeting\\conf.exe"="C:\\Program Files\\NetMeeting\\conf.exe:*:Enabled:Windows© NetMeeting©"
"C:\\Program Files\\EA GAMES\\Battlefield 1942\\BF1942.exe"="C:\\Program Files\\EA GAMES\\Battlefield 1942\\BF1942.exe:*:Enabled:BF1942"
"C:\\Program Files\\Internet Explorer\\iexplore.exe"="C:\\Program Files\\Internet Explorer\\iexplore.exe:*:Enabled:Internet Explorer"
"C:\\Program Files\\McAfee\\Common Framework\\FrameworkService.exe"="C:\\Program Files\\McAfee\\Common Framework\\FrameworkService.exe:*:Enabled:McAfee Framework Service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

Remaining Files :


File Backups: - C:\SDFix\backups\backups.zip

Files with Hidden Attributes :

Mon 3 Apr 2006 4,348 A.SH. --- "C:\Documents and Settings\All Users\DRM\DRMv1.bak"
Wed 10 Jan 2007 0 A.SH. --- "C:\Documents and Settings\All Users\DRM\Cache\Indiv01.tmp"
Wed 23 Jan 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\523d056929e13eacf8392044f602e53e\BIT13.tmp"
Thu 8 May 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\71fa8e4b1f1c72b0e3a5d30a0a049f55\BIT13.tmp"
Fri 16 Feb 2007 201,216 ...H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Paysages marins\~WRL1020.tmp"
Sun 18 Feb 2007 227,328 ...H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Paysages marins\~WRL1204.tmp"
Sun 18 Feb 2007 219,136 ...H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Paysages marins\~WRL1808.tmp"
Sun 18 Feb 2007 207,872 ...H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Paysages marins\~WRL1849.tmp"
Thu 28 Apr 2005 312 A.SH. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Ma musique\Sauvegarde de la licence\drmv2key.bak"
Sun 29 Apr 2007 4,631,552 ...H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\MaŒtrise\M‚moire\~WRL1749.tmp"
Sat 19 Jan 2008 1,698,304 ...H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\MaŒtrise\M‚moire\~WRL3271.tmp"
Sat 28 Apr 2007 4,612,096 ...H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\MaŒtrise\M‚moire\~WRL3346.tmp"
Mon 7 May 2007 31,744 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Pr‚sentation et publications\ACFAS\~WRL0425.tmp"
Mon 7 May 2007 35,840 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Pr‚sentation et publications\ACFAS\~WRL0512.tmp"
Mon 7 May 2007 28,160 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Pr‚sentation et publications\ACFAS\~WRL0550.tmp"
Mon 7 May 2007 32,256 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Pr‚sentation et publications\ACFAS\~WRL0825.tmp"
Mon 7 May 2007 29,184 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Pr‚sentation et publications\ACFAS\~WRL1327.tmp"
Mon 7 May 2007 32,256 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Pr‚sentation et publications\ACFAS\~WRL2137.tmp"
Mon 7 May 2007 27,648 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Pr‚sentation et publications\ACFAS\~WRL2758.tmp"
Fri 1 Dec 2006 460,800 ...H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Soutien … l'apprentissage\Lecture efficace\~WRL3024.tmp"
Sat 29 Dec 2007 58,880 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Charges de cours\PDG1029\PDG1029-Hiver 2008\~WRL0003.tmp"
Sat 29 Dec 2007 63,488 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Charges de cours\PDG1029\PDG1029-Hiver 2008\~WRL0538.tmp"
Sat 29 Dec 2007 64,512 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Charges de cours\PDG1029\PDG1029-Hiver 2008\~WRL3198.tmp"
Sat 29 Dec 2007 58,880 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Charges de cours\PDG1029\PDG1029-Hiver 2008\~WRL3342.tmp"
Fri 25 Aug 2006 151,552 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\MaŒtrise\Projet de recherche\Analyse qualitative\~WRL3916.tmp"
Tue 16 Aug 2005 70,144 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Caroline V‚zina\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL0100.tmp"
Tue 16 Aug 2005 71,168 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Caroline V‚zina\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL0162.tmp"
Tue 16 Aug 2005 71,680 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Caroline V‚zina\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL0176.tmp"
Tue 16 Aug 2005 70,144 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Caroline V‚zina\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL0181.tmp"
Tue 16 Aug 2005 74,240 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Caroline V‚zina\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL0283.tmp"
Tue 16 Aug 2005 74,240 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Caroline V‚zina\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL0475.tmp"
Tue 16 Aug 2005 74,240 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Caroline V‚zina\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL0797.tmp"
Tue 16 Aug 2005 71,168 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Caroline V‚zina\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL0896.tmp"
Tue 16 Aug 2005 71,680 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Caroline V‚zina\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL1129.tmp"
Tue 16 Aug 2005 73,728 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Caroline V‚zina\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL1406.tmp"
Tue 16 Aug 2005 73,728 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Caroline V‚zina\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL1564.tmp"
Tue 16 Aug 2005 73,216 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Caroline V‚zina\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL1907.tmp"
Tue 16 Aug 2005 73,216 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Caroline V‚zina\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL2470.tmp"
Tue 16 Aug 2005 75,264 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Caroline V‚zina\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL2692.tmp"
Wed 19 Jul 2006 111,616 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Caroline V‚zina\Publications\Revue des sciences de l'‚ducation\~WRL0605.tmp"
Wed 19 Jul 2006 109,568 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Caroline V‚zina\Publications\Revue des sciences de l'‚ducation\~WRL1642.tmp"
Wed 19 Jul 2006 110,592 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Caroline V‚zina\Publications\Revue des sciences de l'‚ducation\~WRL1748.tmp"
Wed 19 Jul 2006 111,616 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Caroline V‚zina\Publications\Revue des sciences de l'‚ducation\~WRL1954.tmp"
Wed 19 Jul 2006 112,128 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Caroline V‚zina\Publications\Revue des sciences de l'‚ducation\~WRL3804.tmp"
Tue 16 Aug 2005 70,144 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Personnel\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL0100.tmp"
Tue 16 Aug 2005 71,168 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Personnel\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL0162.tmp"
Tue 16 Aug 2005 71,680 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Personnel\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL0176.tmp"
Tue 16 Aug 2005 70,144 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Personnel\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL0181.tmp"
Tue 16 Aug 2005 74,240 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Personnel\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL0283.tmp"
Tue 16 Aug 2005 74,240 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Personnel\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL0475.tmp"
Tue 16 Aug 2005 74,240 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Personnel\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL0797.tmp"
Tue 16 Aug 2005 71,168 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Personnel\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL0896.tmp"
Tue 16 Aug 2005 71,680 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Personnel\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL1129.tmp"
Tue 16 Aug 2005 73,728 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Personnel\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL1406.tmp"
Tue 16 Aug 2005 73,728 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Personnel\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL1564.tmp"
Tue 16 Aug 2005 73,216 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Personnel\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL1907.tmp"
Tue 16 Aug 2005 73,216 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Personnel\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL2470.tmp"
Tue 16 Aug 2005 75,264 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Personnel\Publications\L'innovation dans la formation … l'enseignement-collectif PUQ\~WRL2692.tmp"
Wed 19 Jul 2006 111,616 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Personnel\Publications\Revue des sciences de l'‚ducation\~WRL0605.tmp"
Wed 19 Jul 2006 109,568 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Personnel\Publications\Revue des sciences de l'‚ducation\~WRL1642.tmp"
Wed 19 Jul 2006 110,592 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Personnel\Publications\Revue des sciences de l'‚ducation\~WRL1748.tmp"
Wed 19 Jul 2006 111,616 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Personnel\Publications\Revue des sciences de l'‚ducation\~WRL1954.tmp"
Wed 19 Jul 2006 112,128 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Chaire\Personnel\Publications\Revue des sciences de l'‚ducation\~WRL3804.tmp"
Fri 15 Sep 2006 29,184 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Charges de cours\PDG1029\PDG1029-Hiver 2008\Cours 7\La syntaxe\~WRL3973.tmp"
Fri 15 Sep 2006 29,184 A..H. --- "C:\Documents and Settings\Caroline et Dominic\Mes documents\Caroline V‚zina\Charges de cours\PDG1029\PDG1029-Aut. 2006\Cours 2-aut. 2006\La syntaxe\~WRL3973.tmp"

Finished!

Répondre à Caroanais
Egwene   20-08-2008 à 01:10:18
- 0 +

Re,

Bien :super:

Télécharge SystemScan de la team SuspectFile

  • Double-clique dessus (Ignore les alertes de ton antivirus s'il y en a.)
  • Clique sur Unselect all
  • Coche :

-Recent Files, days old 60 days
-Sheduled jobs
-Services and drivers
-Suspicious files
-Include HijackThis log

  • Puis clique sur scan now, soit patient, le scan peut durer longtemps.
  • Une fois qu'il aura terminé, un rapport va s'ouvrir. Poste-le en entier.


;)


Message édité par Egwene le 20-08-2008 à 01:10:46
------------------------------ Prière de signaler si vous vous faites déjà aider sur un autre forum ou dans un autre topic.

Sécurité / Prévention
Répondre à Egwene
Caroanais   20-08-2008 à 14:33:41
- 0 +

Bonjour,

Encore une fois, je vais devoir attendre plus tard pour suivre la procédure, mais j'ai deux questions concernant le virus : Peut-il avoir infecté les fichiers sur mon disque dur externe? Si je copie des fichiers sur une clé USB, seront-ils infectés?

Merci

Répondre à Caroanais
Egwene   20-08-2008 à 19:56:12
- 0 +

Citation :

Peut-il avoir infecté les fichiers sur mon disque dur externe? Si je copie des fichiers sur une clé USB, seront-ils infectés?



Réponse 1 : C'est fort possible.

Réponse 2 : Si la clé usb n'est pas infectée et que les fichiers que tu copies sont sains, normalement non.

;)

------------------------------ Prière de signaler si vous vous faites déjà aider sur un autre forum ou dans un autre topic.

Sécurité / Prévention
Répondre à Egwene
Caroanais   21-08-2008 à 02:48:03
- 0 +

Bonjour,

J'apprécie votre aide! J'ai plusieurs questions : Savez-vous comment ce virus a pu s'introduire dans mon ordinateur? Est-ce par courriel ou simplement en naviguant sur Internet? Est-ce que les outils que vous me proposés réparent aussi les fichiers de mon disque dur externe? Est-ce que je risque de perdre des fichiers? Devrais-je donc faire une copie de mes fichiers?

J'ai fait la dernière procédure dont voici le rapport:
SystemScan - www.suspectfile.com - ver. 3.5.5 (code: holifay & bReAkdOWn)

Running on: Windows XP HOME Edition, Service Pack 2 (2600.5.1)
System directory: C:\WINDOWS
SystemScan file: C:\Documents and Settings\Caroline et Dominic\Bureau\sys1178.exe
Running in: User mode
Date: 2008-08-20
Time: 20:23:18

Output limited to:
-Recent files
-Scheduled jobs
-Services and Drivers (all)
-Suspicious Files
-Include HIJACKTHIS.log

===================== RECENT FILES =====================

Showing files newer than 60 days

----- recent files in C:\
05-07-2008 19:43:23 (DIR) 0 byte 46 days old -- Fête Anais
05-07-2008 20:49:24 244 byte 46 days old -- sqmnoopt13.sqm
05-07-2008 20:49:24 232 byte 46 days old -- sqmdata13.sqm
05-07-2008 20:50:51 244 byte 46 days old -- sqmnoopt14.sqm
05-07-2008 20:50:51 232 byte 46 days old -- sqmdata14.sqm
07-08-2008 23:31:41 268 byte 13 days old -- sqmdata15.sqm
07-08-2008 23:31:41 244 byte 13 days old -- sqmnoopt15.sqm
15-08-2008 08:35:14 (DIR) 0 byte 5 days old -- téléchargement
15-08-2008 08:53:10 7301 byte 5 days old -- lvcoinst.log
15-08-2008 15:10:22 244 byte 5 days old -- sqmnoopt17.sqm
15-08-2008 15:10:23 232 byte 5 days old -- sqmdata17.sqm
15-08-2008 15:11:24 232 byte 5 days old -- sqmdata18.sqm
15-08-2008 15:11:24 244 byte 5 days old -- sqmnoopt18.sqm
17-08-2008 09:24:34 232 byte 3 days old -- sqmdata19.sqm
17-08-2008 09:24:34 244 byte 3 days old -- sqmnoopt19.sqm
17-08-2008 09:25:37 232 byte 3 days old -- sqmdata00.sqm
17-08-2008 09:25:37 244 byte 3 days old -- sqmnoopt00.sqm
17-08-2008 09:29:56 232 byte 3 days old -- sqmdata01.sqm
17-08-2008 09:29:56 244 byte 3 days old -- sqmnoopt01.sqm
18-08-2008 20:35:26 (DIR) 0 byte 2 days old -- Program Files
19-08-2008 18:29:10 (DIR) 0 byte 1 days old -- WINDOWS
19-08-2008 18:46:13 (DIR) 0 byte 1 days old -- SDFix
20-08-2008 20:11:44 1610612736 byte 0 days old -- pagefile.sys
09-08-2008 13:45:56 232 byte 11 days old -- sqmdata16.sqm
09-08-2008 13:45:56 244 byte 11 days old -- sqmnoopt16.sqm
12-07-2008 19:45:26 (DIR) 0 byte 39 days old -- Config.Msi

----- recent files in C:\WINDOWS\
06-07-2008 21:35:28 7168 byte 45 days old -- Thumbs.db
23-06-2008 21:49:23 (DIR) 0 byte 58 days old -- $NtUninstallKB951376-v2$
23-06-2008 21:49:30 10018 byte 58 days old -- KB951376-v2.log
08-07-2008 20:25:00 (DIR) 0 byte 43 days old -- $NtUninstallKB951748$
08-07-2008 20:25:06 18019 byte 43 days old -- KB951748.log
14-08-2008 21:44:12 (DIR) 0 byte 6 days old -- $NtUninstallKB951066$
14-08-2008 21:44:20 8043 byte 6 days old -- KB951066.log
14-08-2008 21:44:27 (DIR) 0 byte 6 days old -- ie7updates
14-08-2008 21:44:47 18617 byte 6 days old -- KB953838-IE7.log
14-08-2008 21:44:52 (DIR) 0 byte 6 days old -- $NtUninstallKB952287$
14-08-2008 21:44:55 13764 byte 6 days old -- KB952287.log
14-08-2008 21:45:01 (DIR) 0 byte 6 days old -- $NtUninstallKB951072-v2$
14-08-2008 21:45:04 31799 byte 6 days old -- KB951072-v2.log
14-08-2008 21:46:18 (DIR) 0 byte 6 days old -- $NtUninstallKB950974$
14-08-2008 21:46:21 18943 byte 6 days old -- KB950974.log
14-08-2008 21:46:26 (DIR) 0 byte 6 days old -- $NtUninstallKB953839$
14-08-2008 21:46:28 12755 byte 6 days old -- KB953839.log
14-08-2008 21:46:31 (DIR) 0 byte 6 days old -- $hf_mig$
14-08-2008 21:46:33 (DIR) 0 byte 6 days old -- $NtUninstallKB946648$
14-08-2008 21:46:35 14287 byte 6 days old -- KB946648.log
14-08-2008 21:46:36 1374 byte 6 days old -- imsins.BAK
14-08-2008 21:46:41 (DIR) 0 byte 6 days old -- $NtUninstallKB952954$
14-08-2008 21:46:42 163603 byte 6 days old -- updspapi.log
14-08-2008 21:46:43 240836 byte 6 days old -- ntdtcsetup.log
14-08-2008 21:46:43 59221 byte 6 days old -- msgsocm.log
14-08-2008 21:46:43 400102 byte 6 days old -- comsetup.log
14-08-2008 21:46:43 452320 byte 6 days old -- tsoc.log
14-08-2008 21:46:43 65007 byte 6 days old -- ocmsn.log
14-08-2008 21:46:43 567405 byte 6 days old -- ocgen.log
14-08-2008 21:46:43 19472 byte 6 days old -- KB952954.log
14-08-2008 21:46:43 1174640 byte 6 days old -- FaxSetup.log
14-08-2008 21:46:43 1374 byte 6 days old -- imsins.log
14-08-2008 21:46:43 187392 byte 6 days old -- iis6.log
15-08-2008 08:52:27 (DIR) 0 byte 5 days old -- inf
15-08-2008 12:58:36 521 byte 5 days old -- dellstat.ini
15-08-2008 15:02:57 494221 byte 5 days old -- setupapi.log
18-08-2008 12:11:40 200234 byte 2 days old -- wmsetup.log
19-08-2008 18:29:21 (DIR) 0 byte 1 days old -- ERUNT
19-08-2008 18:31:57 370104 byte 1 days old -- ntbtlog.txt
19-08-2008 18:35:53 (DIR) 0 byte 1 days old -- system32
19-08-2008 18:40:40 (DIR) 0 byte 1 days old -- Prefetch
19-08-2008 18:58:32 32530 byte 1 days old -- SchedLgU.Txt
20-08-2008 20:11:47 2048 byte 0 days old -- bootstat.dat
20-08-2008 20:12:05 50 byte 0 days old -- wiaservc.log
20-08-2008 20:12:06 159 byte 0 days old -- wiadebug.log
20-08-2008 20:12:06 0 byte 0 days old -- 0.log
20-08-2008 20:12:08 (DIR) 0 byte 0 days old -- Microsoft.NET
20-08-2008 20:13:29 (DIR) 0 byte 0 days old -- Temp
20-08-2008 20:17:55 1812630 byte 0 days old -- WindowsUpdate.log
12-07-2008 19:45:29 (DIR) 0 byte 39 days old -- Installer

----- recent files in C:\WINDOWS\Downloaded Program Files\

----- recent files in C:\WINDOWS\system\

----- recent files in C:\WINDOWS\system32\
04-08-2008 20:16:57 3121 byte 16 days old -- CONFIG.NT
05-08-2008 14:11:01 15888504 byte 15 days old -- MRT.exe
06-07-2008 21:53:41 43520 byte 45 days old -- CmdLineExt03.dll
23-06-2008 05:20:26 13824 byte 58 days old -- ieudinit.exe
23-06-2008 05:21:30 70656 byte 58 days old -- ie4uinit.exe
23-06-2008 12:28:17 214528 byte 58 days old -- dxtrans.dll
23-06-2008 12:28:17 347136 byte 58 days old -- dxtmsft.dll
23-06-2008 12:28:17 63488 byte 58 days old -- icardie.dll
23-06-2008 12:28:17 133120 byte 58 days old -- extmgr.dll
23-06-2008 12:28:17 124928 byte 58 days old -- advpack.dll
23-06-2008 12:28:18 230400 byte 58 days old -- ieaksie.dll
23-06-2008 12:28:18 383488 byte 58 days old -- ieapfltr.dll
23-06-2008 12:28:18 153088 byte 58 days old -- ieakeng.dll
23-06-2008 12:28:18 384512 byte 58 days old -- iedkcs32.dll
23-06-2008 12:28:19 6066176 byte 58 days old -- ieframe.dll
23-06-2008 12:28:19 44544 byte 58 days old -- iernonce.dll
23-06-2008 12:28:20 27648 byte 58 days old -- jsproxy.dll
23-06-2008 12:28:20 1831424 byte 58 days old -- inetcpl.cpl
23-06-2008 12:28:20 267776 byte 58 days old -- iertutil.dll
23-06-2008 12:28:20 52224 byte 58 days old -- msfeedsbs.dll
23-06-2008 12:28:20 459264 byte 58 days old -- msfeeds.dll
23-06-2008 12:28:22 671232 byte 58 days old -- mstime.dll
23-06-2008 12:28:22 193024 byte 58 days old -- msrating.dll
23-06-2008 12:28:22 477696 byte 58 days old -- mshtmled.dll
23-06-2008 12:28:22 105984 byte 58 days old -- url.dll
23-06-2008 12:28:22 44544 byte 58 days old -- pngfilt.dll
23-06-2008 12:28:22 102912 byte 58 days old -- occache.dll
23-06-2008 12:28:23 233472 byte 58 days old -- webcheck.dll
23-06-2008 12:28:23 1159680 byte 58 days old -- urlmon.dll
23-06-2008 12:28:23 826368 byte 58 days old -- wininet.dll
24-06-2008 10:28:24 3592192 byte 57 days old -- mshtml.dll
24-06-2008 12:23:56 74240 byte 57 days old -- mscms.dll
07-07-2008 16:31:48 253952 byte 44 days old -- es.dll
14-07-2008 07:09:18 62976 byte 37 days old -- tzchange.exe
18-07-2008 19:18:05 (DIR) 0 byte 33 days old -- config
19-07-2008 10:30:53 94392 byte 32 days old -- AvastSS.scr
19-07-2008 10:43:08 1163960 byte 32 days old -- aswBoot.exe
14-08-2008 21:45:00 715326 byte 6 days old -- TZLog.log
14-08-2008 21:46:42 (DIR) 0 byte 6 days old -- dllcache
15-08-2008 08:52:44 (DIR) 0 byte 5 days old -- drivers
19-08-2008 18:20:55 625208 byte 1 days old -- phcruoj0erbg.bmp
19-08-2008 18:25:08 (DIR) 0 byte 1 days old -- CatRoot2
20-08-2008 20:12:30 2206 byte 0 days old -- wpa.dbl
12-07-2008 19:45:08 6762 byte 39 days old -- jupdate-1.6.0_07-b06.log

----- recent files in C:\WINDOWS\system32\drivers\
19-07-2008 10:32:15 26944 byte 32 days old -- aavmker4.sys
19-07-2008 10:32:36 42912 byte 32 days old -- aswTdi.sys
19-07-2008 10:33:42 23152 byte 32 days old -- aswRdr.sys
19-07-2008 10:35:18 78416 byte 32 days old -- aswSP.sys
19-07-2008 10:37:21 94416 byte 32 days old -- aswmon2.sys
19-07-2008 10:37:42 20560 byte 32 days old -- aswFsBlk.sys
19-08-2008 18:32:55 (DIR) 0 byte 1 days old -- etc

----- recent files in C:\WINDOWS\temp\
19-08-2008 18:35:55 (DIR) 0 byte 1 days old -- unz1FE.tmp
20-08-2008 20:11:51 255 byte 0 days old -- WGAErrLog.txt
20-08-2008 20:11:53 16384 byte 0 days old -- Perflib_Perfdata_614.dat
20-08-2008 20:12:31 409 byte 0 days old -- WGANotify.settings
20-08-2008 20:18:56 (DIR) 0 byte 0 days old -- _avast4_

----- recent files in C:\Program Files\
06-07-2008 21:27:19 (DIR) 0 byte 45 days old -- D-Tools
06-07-2008 21:58:44 (DIR) 0 byte 45 days old -- WinRAR
07-07-2008 09:11:21 (DIR) 0 byte 44 days old -- McAfee
07-07-2008 09:11:21 (DIR) 0 byte 44 days old -- Fichiers communs
15-07-2008 19:08:25 (DIR) 0 byte 36 days old -- Alwil Software
14-08-2008 21:44:40 (DIR) 0 byte 6 days old -- Internet Explorer
14-08-2008 21:46:34 (DIR) 0 byte 6 days old -- Messenger
18-08-2008 20:35:26 (DIR) 0 byte 2 days old -- Trend Micro
18-08-2008 22:06:15 (DIR) 0 byte 2 days old -- rhcvuoj0erbg
12-07-2008 19:45:08 (DIR) 0 byte 39 days old -- Java
12-07-2008 19:45:24 (DIR) 0 byte 39 days old -- Sun

----- recent files in C:\Program Files\Fichiers communs\

----- recent files in C:\Documents and Settings\Caroline et Dominic\Application Data\
15-07-2008 19:02:30 (DIR) 0 byte 36 days old -- Microsoft
18-08-2008 12:48:20 (DIR) 0 byte 2 days old -- rhcvuoj0erbg

----- recent files in C:\DOCUME~1\CAROLI~1\LOCALS~1\Temp\
01-07-2008 21:03:31 32768 byte 50 days old -- ~DF21EC.tmp
02-07-2008 21:55:41 62446 byte 49 days old -- f1cc_appcompat.txt
05-07-2008 20:49:05 90 byte 46 days old -- VSafeLogin.ini
06-07-2008 13:53:38 533 byte 45 days old -- pcfC.tmp
06-07-2008 13:57:50 533 byte 45 days old -- pcfD.tmp
06-07-2008 14:01:05 533 byte 45 days old -- pcfE.tmp
06-07-2008 18:48:58 20480 byte 45 days old -- Xl0000000.xls
06-07-2008 21:19:45 533 byte 45 days old -- pcfF.tmp
06-07-2008 21:22:08 (DIR) 0 byte 45 days old -- avgdiag
06-07-2008 21:27:23 294 byte 45 days old -- MSI2e74c.LOG
06-07-2008 21:53:33 296 byte 45 days old -- MSIb6acd.LOG
06-07-2008 21:53:43 24748 byte 45 days old -- SIntfNT.dll
06-07-2008 21:53:43 20020 byte 45 days old -- SIntf32.dll
06-07-2008 21:53:43 12305 byte 45 days old -- SIntf16.dll
06-07-2008 22:08:18 533 byte 45 days old -- pcf10.tmp
24-06-2008 09:18:03 109254 byte 57 days old -- 4aa7_appcompat.txt
07-07-2008 06:53:20 533 byte 44 days old -- pcf11.tmp
07-08-2008 19:34:17 63302 byte 13 days old -- d713_appcompat.txt
07-08-2008 19:34:18 58060 byte 13 days old -- 3D727.dmp
07-08-2008 20:42:53 (DIR) 0 byte 13 days old -- ZB
13-07-2008 15:11:07 259432 byte 38 days old -- 02K0GF5D.emf
13-07-2008 15:11:07 259432 byte 38 days old -- 9SNF5RXT.emf
13-07-2008 21:57:01 109254 byte 38 days old -- 9617_appcompat.txt
15-07-2008 19:04:49 127391 byte 36 days old -- avg8inst.log
15-07-2008 19:05:46 (DIR) 0 byte 36 days old -- ~nsu.tmp
15-07-2008 19:05:57 533 byte 36 days old -- pcf13.tmp
27-07-2008 19:21:28 49152 byte 24 days old -- ~DFCE5C.tmp
27-07-2008 22:31:20 109254 byte 24 days old -- 6e25_appcompat.txt
08-07-2008 20:23:52 109254 byte 43 days old -- 7b79_appcompat.txt
13-08-2008 10:52:17 (DIR) 0 byte 7 days old -- EN_DbLinks
13-08-2008 19:34:36 1572 byte 7 days old -- wmplog00.sqm
13-08-2008 19:55:14 (DIR) 0 byte 7 days old -- msohtml1
15-08-2008 08:52:06 533 byte 5 days old -- pcf15.tmp
15-08-2008 09:01:27 533 byte 5 days old -- pcf16.tmp
15-08-2008 20:50:35 59964 byte 5 days old -- Adobelm_Cleanup.0001
15-08-2008 21:02:42 4852 byte 5 days old -- java_install_reg.log
15-08-2008 21:05:01 (DIR) 0 byte 5 days old -- hsperfdata_Caroline et Dominic
15-08-2008 22:27:42 109254 byte 5 days old -- ba8d_appcompat.txt
16-08-2008 21:37:14 1464 byte 4 days old -- wmplog01.sqm
16-08-2008 21:39:59 1560 byte 4 days old -- wmplog02.sqm
17-08-2008 20:14:37 1444 byte 3 days old -- wmplog03.sqm
17-08-2008 20:22:56 1660 byte 3 days old -- wmplog04.sqm
17-08-2008 20:25:11 1364 byte 3 days old -- wmplog05.sqm
17-08-2008 20:34:58 1428 byte 3 days old -- wmplog06.sqm
17-08-2008 20:36:45 1396 byte 3 days old -- wmplog07.sqm
18-08-2008 11:54:08 1616 byte 2 days old -- wmplog08.sqm
18-08-2008 11:56:05 1488 byte 2 days old -- wmplog09.sqm
18-08-2008 12:10:32 1524 byte 2 days old -- wmplog10.sqm
18-08-2008 12:11:57 1476 byte 2 days old -- wmplog11.sqm
18-08-2008 12:14:28 1428 byte 2 days old -- wmplog12.sqm
18-08-2008 12:15:37 1428 byte 2 days old -- wmplog13.sqm
18-08-2008 12:20:24 0 byte 2 days old -- .tt4A.tmp
18-08-2008 12:20:25 49152 byte 2 days old -- ~DF2002.tmp
18-08-2008 12:37:03 1740 byte 2 days old -- wmplog14.sqm
18-08-2008 12:58:02 0 byte 2 days old -- .tt80.tmp
18-08-2008 13:00:05 1408 byte 2 days old -- wmplog15.sqm
18-08-2008 13:00:20 1396 byte 2 days old -- wmplog16.sqm
18-08-2008 13:00:39 1396 byte 2 days old -- wmplog17.sqm
18-08-2008 13:13:28 0 byte 2 days old -- .tt89.tmp
18-08-2008 14:01:23 0 byte 2 days old -- .ttA4.tmp
18-08-2008 14:11:25 0 byte 2 days old -- .ttA8.tmp
18-08-2008 14:20:44 0 byte 2 days old -- .tt1E.tmp
18-08-2008 14:20:49 49152 byte 2 days old -- ~DF926D.tmp
18-08-2008 14:21:31 0 byte 2 days old -- .tt20.tmp
18-08-2008 20:08:41 0 byte 2 days old -- .tt1F.tmp
18-08-2008 20:08:59 0 byte 2 days old -- .tt22.tmp
18-08-2008 20:19:01 0 byte 2 days old -- .tt26.tmp
18-08-2008 20:29:02 0 byte 2 days old -- .tt2A.tmp
18-08-2008 20:39:04 0 byte 2 days old -- .tt30.tmp
18-08-2008 20:49:05 0 byte 2 days old -- .tt4B.tmp
18-08-2008 20:59:06 0 byte 2 days old -- .tt50.tmp
18-08-2008 21:09:08 0 byte 2 days old -- .tt52.tmp
18-08-2008 21:19:10 0 byte 2 days old -- .tt54.tmp
18-08-2008 21:29:11 0 byte 2 days old -- .tt57.tmp
18-08-2008 21:29:16 156 byte 2 days old -- Twunk001.MTX
18-08-2008 21:29:17 5 byte 2 days old -- Twain001.Mtx
18-08-2008 21:29:17 1383 byte 2 days old -- TWAIN.LOG
18-08-2008 21:39:13 0 byte 2 days old -- .tt6E.tmp
18-08-2008 21:49:18 0 byte 2 days old -- .tt71.tmp
18-08-2008 21:59:20 0 byte 2 days old -- .tt73.tmp
18-08-2008 22:08:13 (DIR) 0 byte 2 days old -- _avast4_
19-08-2008 18:20:50 533 byte 1 days old -- pcf17.tmp
19-08-2008 18:20:55 0 byte 1 days old -- .tt21.tmp
19-08-2008 18:20:57 49152 byte 1 days old -- ~DFE3FF.tmp
19-08-2008 18:23:04 0 byte 1 days old -- .tt25.tmp
19-08-2008 18:55:24 533 byte 1 days old -- pcf18.tmp
20-08-2008 20:11:58 (DIR) 0 byte 0 days old -- WPDNSE
20-08-2008 20:12:12 36409 byte 0 days old -- LVCOMSX.LOG
20-08-2008 20:16:54 108653 byte 0 days old -- jusched.log
20-08-2008 20:20:14 49152 byte 0 days old -- ~DF26AC.tmp
20-08-2008 20:22:09 16384 byte 0 days old -- ~DF9C19.tmp
20-08-2008 20:22:09 (DIR) 0 byte 0 days old -- nsn26.tmp
20-08-2008 20:22:09 64 byte 0 days old -- systemscan.ini
09-07-2008 15:47:31 109254 byte 42 days old -- 7da6_appcompat.txt
09-08-2008 09:54:23 384368 byte 11 days old -- IC5KPU5B.emf
09-08-2008 09:54:23 300368 byte 11 days old -- J36K52YQ.emf
09-08-2008 09:54:23 262448 byte 11 days old -- PR1OBAV4.emf
09-08-2008 09:55:10 384368 byte 11 days old -- Z17UKZXJ.emf
09-08-2008 09:55:10 300368 byte 11 days old -- KCG82PSL.emf
09-08-2008 09:55:10 262448 byte 11 days old -- 4XQ5P5TJ.emf
10-07-2008 18:55:19 533 byte 41 days old -- pcf12.tmp
11-07-2008 08:50:50 (DIR) 0 byte 40 days old -- TCD91.tmp
11-07-2008 14:07:19 (DIR) 0 byte 40 days old -- Adobelm_Cleanup.0001.dir.0005
11-08-2008 18:46:59 109254 byte 9 days old -- 3809_appcompat.txt
12-07-2008 19:43:32 9594 byte 39 days old -- jinstall.cfg
12-07-2008 19:43:56 1164 byte 39 days old -- java_install_sp.log
12-08-2008 09:47:30 533 byte 8 days old -- pcf14.tmp
12-08-2008 09:47:33 63302 byte 8 days old -- d717_appcompat.txt
12-08-2008 09:47:34 58060 byte 8 days old -- 3D766.dmp
12-08-2008 22:06:39 109254 byte 8 days old -- 5e95_appcompat.txt

===================== SCHEDULED JOBS =====================

jobs found in C:\WINDOWS:

19-08-2004 16:01:55 65 byte 1462 days old -- C:\WINDOWS\tasks\desktop.ini
20-08-2008 20:11:52 6 byte 0 days old -- C:\WINDOWS\tasks\SA.DAT
~~~~~~~~~~~~~~~~~~~~~
Active jobs:

~~~~~~~~~~~~~~~~~~~~~
Most recent (50) lines in jobs scheduled log:


===================== LIST OF ALL SERVICES & DRIVERS =====================

-----HKLM\system\currentcontrolset\services-----

000) "Aavmker4" - avast! Asynchronous Virus Monitor
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

001) "Abiosdsk"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

002) "abp480n5"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

003) "ACPI" - Pilote ACPI Microsoft
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\ACPI.sys
---> TYPE = KERNEL_DRIVER

004) "ACPIEC"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

005) "adpu160m"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

006) "aec" - Suppresseur d'écho acoustique (Noyau Microsoft)
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\drivers\aec.sys
---> TYPE = KERNEL_DRIVER

007) "AFD" - AFD
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = \SystemRoot\System32\drivers\afd.sys
---> TYPE = KERNEL_DRIVER

008) "Aha154x"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

009) "aic78u2"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

010) "aic78xx"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

011) "AliIde"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

012) "amsint"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

013) "asc"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

014) "asc3350p"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

015) "asc3550"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

016) "aswFsBlk" - aswFsBlk
---> STAT = (RUNNING) Started automatically
---> FILE = system32\DRIVERS\aswFsBlk.sys
---> TYPE = FILE_SYSTEM_DRIVER

017) "aswMon2" - avast! Standard Shield Support
---> STAT = (RUNNING) Started automatically
---> TYPE = FILE_SYSTEM_DRIVER

018) "aswRdr" - aswRdr
---> STAT = (RUNNING) Started manually
---> TYPE = KERNEL_DRIVER

019) "aswSP" - avast! Self Protection
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

020) "aswTdi" - avast! Network Shield Support
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

021) "AsyncMac" - Pilote de média asynchrone RAS
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\asyncmac.sys
---> TYPE = KERNEL_DRIVER

022) "atapi" - Contrôleur de disque dur IDE/ESDI standard
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\atapi.sys
---> TYPE = KERNEL_DRIVER

023) "Atdisk"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

024) "ati2mtag"
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\ati2mtag.sys
---> TYPE = KERNEL_DRIVER

025) "Atmarpc" - Protocole client ATM ARP
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\atmarpc.sys
---> TYPE = KERNEL_DRIVER

026) "audstub" - Pilote audio Stub
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\audstub.sys
---> TYPE = KERNEL_DRIVER

027) "Beep"
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

028) "catchme"
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\DOCUME~1\CAROLI~1\LOCALS~1\Temp\catchme.sys
---> TYPE = KERNEL_DRIVER

029) "cbidf2k"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

030) "CCDECODE" - Décodeur sous-titre fermé
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\CCDECODE.sys
---> TYPE = KERNEL_DRIVER

031) "cd20xrnt"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

032) "Cdaudio"
---> STAT = (NOT RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

033) "Cdfs"
---> STAT = (RUNNING) Disabled
---> TYPE = FILE_SYSTEM_DRIVER

034) "Cdrom" - Pilote de CD-ROM
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\cdrom.sys
---> TYPE = KERNEL_DRIVER

035) "Changer"
---> STAT = (NOT RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

036) "CmdIde"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

037) "Cpqarray"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

038) "dac2w2k"
---> STAT = (RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

039) "dac960nt"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

040) "Disk" - Pilote de disque
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\disk.sys
---> TYPE = KERNEL_DRIVER

041) "dmboot"
---> STAT = (NOT RUNNING) Disabled
---> FILE = System32\drivers\dmboot.sys
---> TYPE = KERNEL_DRIVER

042) "dmio"
---> STAT = (NOT RUNNING) Disabled
---> FILE = System32\drivers\dmio.sys
---> TYPE = KERNEL_DRIVER

043) "dmload"
---> STAT = (NOT RUNNING) Disabled
---> FILE = System32\drivers\dmload.sys
---> TYPE = KERNEL_DRIVER

044) "DMusic" - Synthétiseur DLS du noyau Microsoft
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\drivers\DMusic.sys
---> TYPE = KERNEL_DRIVER

045) "dpti2o"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

046) "drmkaud" - Filtre de décodeur DRM (Noyau Microsoft)
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\drivers\drmkaud.sys
---> TYPE = KERNEL_DRIVER

047) "drvmcdb"
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\drivers\drvmcdb.sys
---> TYPE = KERNEL_DRIVER

048) "drvnddm"
---> STAT = (RUNNING) Started automatically
---> FILE = system32\drivers\drvnddm.sys
---> TYPE = FILE_SYSTEM_DRIVER

049) "DSSUSB1" - DSSUSB1 Device
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\DSSUSB1.sys
---> TYPE = KERNEL_DRIVER

050) "DSSUSBF" - DSSUSBF Device
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\DSSUSBF.sys
---> TYPE = KERNEL_DRIVER

051) "E100B" - Intel(R) PRO Network Connection Driver
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\e100b325.sys
---> TYPE = KERNEL_DRIVER

052) "Fastfat"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = FILE_SYSTEM_DRIVER

053) "Fdc" - Pilote de contrôleur de lecteur de disquettes
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\fdc.sys
---> TYPE = KERNEL_DRIVER

054) "Fips"
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

055) "Flpydisk" - Pilote de lecteur de disquettes
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\flpydisk.sys
---> TYPE = KERNEL_DRIVER

056) "FltMgr" - FltMgr
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\fltMgr.sys
---> TYPE = FILE_SYSTEM_DRIVER

057) "Ftdisk" - Pilote du Gestionnaire de volume
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\ftdisk.sys
---> TYPE = KERNEL_DRIVER

058) "GEARAspiWDM" - GEARAspiWDM
---> STAT = (RUNNING) Started manually
---> FILE = System32\Drivers\GEARAspiWDM.sys
---> TYPE = KERNEL_DRIVER

059) "Gpc" - Classificateur de paquets générique
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\msgpc.sys
---> TYPE = KERNEL_DRIVER

060) "hidusb" - Pilote de classe HID Microsoft
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\hidusb.sys
---> TYPE = KERNEL_DRIVER

061) "hpn"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

062) "HTTP" - HTTP
---> STAT = (RUNNING) Started manually
---> FILE = System32\Drivers\HTTP.sys
---> TYPE = KERNEL_DRIVER

063) "i2omgmt"
---> STAT = (NOT RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

064) "i2omp"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

065) "i8042prt"
---> STAT = (NOT RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

066) "Imapi" - Pilote de filtre de gravure CD
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\imapi.sys
---> TYPE = KERNEL_DRIVER

067) "ini910u"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

068) "IntelIde"
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\intelide.sys
---> TYPE = KERNEL_DRIVER

069) "intelppm" - Pilote de processeur Intel
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\intelppm.sys
---> TYPE = KERNEL_DRIVER

070) "Ip6Fw" - Pilote du pare-feu Windows IPv6
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\Ip6Fw.sys
---> TYPE = KERNEL_DRIVER

071) "IpFilterDriver" - Pilote de filtre de trafic IP
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\ipfltdrv.sys
---> TYPE = KERNEL_DRIVER

072) "IpInIp" - Pilote de tunnelage IP dans IP
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\ipinip.sys
---> TYPE = KERNEL_DRIVER

073) "IpNat" - Traducteur d'adresses réseau IP
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\ipnat.sys
---> TYPE = KERNEL_DRIVER

074) "IPSec" - Pilote IPSEC
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\ipsec.sys
---> TYPE = KERNEL_DRIVER

075) "IRENUM" - Service énumérateur IR
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\irenum.sys
---> TYPE = KERNEL_DRIVER

076) "isapnp" - Pilote de bus Plug-and-Play ISA/EISA
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\isapnp.sys
---> TYPE = KERNEL_DRIVER

077) "Kbdclass" - Pilote de la classe Clavier
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\kbdclass.sys
---> TYPE = KERNEL_DRIVER

078) "kbdhid" - Pilote HID de clavier
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\kbdhid.sys
---> TYPE = KERNEL_DRIVER

079) "kmixer" - Mélangeur audio Wave de noyau Microsoft
---> STAT = (RUNNING) Started manually
---> FILE = system32\drivers\kmixer.sys
---> TYPE = KERNEL_DRIVER

080) "KSecDD"
---> STAT = (RUNNING) Started by operating system loader
---> TYPE = KERNEL_DRIVER

081) "lbrtfdc"
---> STAT = (NOT RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

082) "lfsfilt" - Lean File Sharing
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\lfsfilt.sys
---> TYPE = KERNEL_DRIVER

083) "lpx" - LPX Protocol
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\lpx.sys
---> TYPE = KERNEL_DRIVER

084) "LVcKap" - Logitech AEC Driver
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\LVcKap.sys
---> TYPE = KERNEL_DRIVER

085) "LVMVDrv" - Logitech Machine Vision Engine Loader
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\LVMVDrv.sys
---> TYPE = KERNEL_DRIVER

086) "LVPr2Mon" - Logitech LVPr2Mon Driver
---> STAT = (RUNNING) Started manually
---> FILE = system32\drivers\LVPr2Mon.sys
---> TYPE = KERNEL_DRIVER

087) "LVUSBSta" - Logitech USB Monitor Filter
---> STAT = (RUNNING) Started manually
---> FILE = system32\drivers\lvusbsta.sys
---> TYPE = KERNEL_DRIVER

088) "mnmdd"
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

089) "Modem"
---> STAT = (NOT RUNNING) Started manually
---> TYPE = KERNEL_DRIVER

090) "Mouclass" - Pilote de la classe Souris
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\mouclass.sys
---> TYPE = KERNEL_DRIVER

091) "mouhid" - Pilote HID de souris
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\mouhid.sys
---> TYPE = KERNEL_DRIVER

092) "MountMgr"
---> STAT = (RUNNING) Started by operating system loader
---> TYPE = KERNEL_DRIVER

093) "mraid35x"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

094) "MRxDAV" - Redirecteur client WebDav
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\mrxdav.sys
---> TYPE = FILE_SYSTEM_DRIVER

095) "MRxSmb" - MRXSMB
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\mrxsmb.sys
---> TYPE = FILE_SYSTEM_DRIVER

096) "Msfs"
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> TYPE = FILE_SYSTEM_DRIVER

097) "MSKSSRV" - Proxy de service de répartition Microsoft
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\drivers\MSKSSRV.sys
---> TYPE = KERNEL_DRIVER

098) "MSPCLOCK" - Proxy d'horloge de répartition Microsoft
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\drivers\MSPCLOCK.sys
---> TYPE = KERNEL_DRIVER

099) "MSPQM" - Proxy de gestion de qualité de répartition Microsoft
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\drivers\MSPQM.sys
---> TYPE = KERNEL_DRIVER

100) "mssmbios" - Pilote BIOS de gestion de systèmes Microsoft
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\mssmbios.sys
---> TYPE = KERNEL_DRIVER

101) "MSTEE" - Convertisseur en T/site-à-site de répartition Microsoft
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\drivers\MSTEE.sys
---> TYPE = KERNEL_DRIVER

102) "Mup" - Mup
---> STAT = (RUNNING) Started by operating system loader
---> TYPE = FILE_SYSTEM_DRIVER

103) "NABTSFEC" - Codec NABTS/FEC VBI
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\NABTSFEC.sys
---> TYPE = KERNEL_DRIVER

104) "ndasbus" - NDAS Bus Driver
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\ndasbus.sys
---> TYPE = KERNEL_DRIVER

105) "ndasfat" - NDAS FAT
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = C:\WINDOWS\system32\DRIVERS\ndasfat.sys
---> TYPE = FILE_SYSTEM_DRIVER

106) "ndasscsi" - NDAS SCSI Miniport Driver
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\ndasscsi.sys
---> TYPE = KERNEL_DRIVER

107) "NDIS" - Pilote système NDIS
---> STAT = (RUNNING) Started by operating system loader
---> TYPE = KERNEL_DRIVER

108) "NdisIP" - Connection TV/vidéo Microsoft
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\NdisIP.sys
---> TYPE = KERNEL_DRIVER

109) "NdisTapi" - Pilote TAPI NDIS d'accès distant
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\ndistapi.sys
---> TYPE = KERNEL_DRIVER

110) "Ndisuio" - NDIS mode utilisateur E/S Protocole
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\ndisuio.sys
---> TYPE = KERNEL_DRIVER

111) "NdisWan" - Pilote réseau étendu NDIS d'accès distant
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\ndiswan.sys
---> TYPE = KERNEL_DRIVER

112) "NDProxy" - multi:Proxy NDIS\00\00
---> STAT = (RUNNING) Started manually
---> TYPE = KERNEL_DRIVER

113) "NetBIOS" - Interface NetBIOS
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\netbios.sys
---> TYPE = FILE_SYSTEM_DRIVER

114) "NetBT" - NetBIOS sur TCP/IP
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\netbt.sys
---> TYPE = KERNEL_DRIVER

115) "Npfs"
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> TYPE = FILE_SYSTEM_DRIVER

116) "Ntfs"
---> STAT = (RUNNING) Disabled
---> TYPE = FILE_SYSTEM_DRIVER

117) "Null"
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

118) "NwlnkFlt" - Pilote de filtre de trafic IPX
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\nwlnkflt.sys
---> TYPE = KERNEL_DRIVER

119) "NwlnkFwd" - Pilote de transfert de trafic IPX
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\nwlnkfwd.sys
---> TYPE = KERNEL_DRIVER

120) "OMCI" - OMCI
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = \SystemRoot\SYSTEM32\DRIVERS\OMCI.SYS
---> TYPE = KERNEL_DRIVER

121) "Parport" - Pilote de port parallèle
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\parport.sys
---> TYPE = KERNEL_DRIVER

122) "PartMgr"
---> STAT = (RUNNING) Started by operating system loader
---> TYPE = KERNEL_DRIVER

123) "ParVdm"
---> STAT = (RUNNING) Started automatically
---> TYPE = KERNEL_DRIVER

124) "PCI" - Pilote de bus PCI
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\pci.sys
---> TYPE = KERNEL_DRIVER

125) "PCIDump"
---> STAT = (NOT RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

126) "PCIIde"
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\pciide.sys
---> TYPE = KERNEL_DRIVER

127) "Pcmcia"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

128) "PDCOMP"
---> STAT = (NOT RUNNING) Started manually
---> TYPE = KERNEL_DRIVER

129) "PDFRAME"
---> STAT = (NOT RUNNING) Started manually
---> TYPE = KERNEL_DRIVER

130) "PDRELI"
---> STAT = (NOT RUNNING) Started manually
---> TYPE = KERNEL_DRIVER

131) "PDRFRAME"
---> STAT = (NOT RUNNING) Started manually
---> TYPE = KERNEL_DRIVER

132) "pepifilter" - Volume Adapter
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\lv302af.sys
---> TYPE = KERNEL_DRIVER

133) "perc2"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

134) "perc2hib"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

135) "PID_08A0" - Logitech QuickCam IM(PID_08A0)
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\LV302AV.SYS
---> TYPE = KERNEL_DRIVER

136) "PptpMiniport" - Miniport réseau étendu (PPTP)
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\raspptp.sys
---> TYPE = KERNEL_DRIVER

137) "PSched" - Planificateur de paquets QoS
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\psched.sys
---> TYPE = KERNEL_DRIVER

138) "Ptilink" - Pilote de liaison parallèle directe
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\ptilink.sys
---> TYPE = KERNEL_DRIVER

139) "PxHelp20" - PxHelp20
---> STAT = (RUNNING) Started by operating system loader
---> FILE = System32\Drivers\PxHelp20.sys
---> TYPE = KERNEL_DRIVER

140) "ql1080"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

141) "Ql10wnt"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

142) "ql12160"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

143) "ql1240"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

144) "ql1280"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

145) "RasAcd" - Pilote de connexion automatique d'accès distant
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\rasacd.sys
---> TYPE = KERNEL_DRIVER

146) "Rasl2tp" - Miniport réseau étendu (L2TP)
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\rasl2tp.sys
---> TYPE = KERNEL_DRIVER

147) "RasPppoe" - Pilote PPPOE d'accès à distance
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\raspppoe.sys
---> TYPE = KERNEL_DRIVER

148) "Raspti" - Parallèle direct
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\raspti.sys
---> TYPE = KERNEL_DRIVER

149) "Rdbss" - Rdbss
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\rdbss.sys
---> TYPE = FILE_SYSTEM_DRIVER

150) "RDPCDD"
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = System32\DRIVERS\RDPCDD.sys
---> TYPE = KERNEL_DRIVER

151) "RDPWD"
---> STAT = (NOT RUNNING) Started manually
---> TYPE = KERNEL_DRIVER

152) "redbook" - Pilote de filtre de lecture digitale de CD audio
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\redbook.sys
---> TYPE = KERNEL_DRIVER

153) "Secdrv" - Secdrv
---> STAT = (RUNNING) Started automatically
---> FILE = system32\DRIVERS\secdrv.sys
---> TYPE = KERNEL_DRIVER

154) "senfilt"
---> STAT = (RUNNING) Started manually
---> FILE = system32\drivers\senfilt.sys
---> TYPE = KERNEL_DRIVER

155) "serenum" - Pilote de filtre Serenum
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\serenum.sys
---> TYPE = KERNEL_DRIVER

156) "Serial" - Pilote de port série
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\serial.sys
---> TYPE = KERNEL_DRIVER

157) "Sfloppy"
---> STAT = (NOT RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

158) "Simbad"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

159) "SLIP" - Détrameur décalage BDA
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\SLIP.sys
---> TYPE = KERNEL_DRIVER

160) "smwdm"
---> STAT = (RUNNING) Started manually
---> FILE = system32\drivers\smwdm.sys
---> TYPE = KERNEL_DRIVER

161) "Sparrow"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

162) "splitter" - Splitter audio du noyau Microsoft
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\drivers\splitter.sys
---> TYPE = KERNEL_DRIVER

163) "sr" - Pilote de filtre de restauration système
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\sr.sys
---> TYPE = FILE_SYSTEM_DRIVER

164) "Srv" - Srv
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\srv.sys
---> TYPE = FILE_SYSTEM_DRIVER

165) "sscdbhk5"
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\drivers\sscdbhk5.sys
---> TYPE = FILE_SYSTEM_DRIVER

166) "ssrtln"
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\drivers\ssrtln.sys
---> TYPE = FILE_SYSTEM_DRIVER

167) "streamip" - BDA IPSink
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\StreamIP.sys
---> TYPE = KERNEL_DRIVER

168) "swenum" - Pilote de bus logiciel
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\swenum.sys
---> TYPE = KERNEL_DRIVER

169) "swmidi" - Synthétiseur de table de sons GC noyau Microsoft
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\drivers\swmidi.sys
---> TYPE = KERNEL_DRIVER

170) "symc810"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

171) "symc8xx"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

172) "sym_hi"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

173) "sym_u3"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

174) "sysaudio" - Périphérique audio système du noyau Microsoft
---> STAT = (RUNNING) Started manually
---> FILE = system32\drivers\sysaudio.sys
---> TYPE = KERNEL_DRIVER

175) "Tcpip" - Pilote du protocole TCP/IP
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\tcpip.sys
---> TYPE = KERNEL_DRIVER

176) "TDPIPE"
---> STAT = (NOT RUNNING) Started manually
---> TYPE = KERNEL_DRIVER

177) "TDTCP"
---> STAT = (NOT RUNNING) Started manually
---> TYPE = KERNEL_DRIVER

178) "TermDD" - Pilote de périphérique terminal
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\termdd.sys
---> TYPE = KERNEL_DRIVER

179) "tfsnboio"
---> STAT = (RUNNING) Started automatically
---> FILE = system32\dla\tfsnboio.sys
---> TYPE = FILE_SYSTEM_DRIVER

180) "tfsncofs"
---> STAT = (RUNNING) Started automatically
---> FILE = system32\dla\tfsncofs.sys
---> TYPE = FILE_SYSTEM_DRIVER

181) "tfsndrct"
---> STAT = (RUNNING) Started automatically
---> FILE = system32\dla\tfsndrct.sys
---> TYPE = FILE_SYSTEM_DRIVER

182) "tfsndres"
---> STAT = (RUNNING) Started automatically
---> FILE = system32\dla\tfsndres.sys
---> TYPE = FILE_SYSTEM_DRIVER

183) "tfsnifs"
---> STAT = (RUNNING) Started automatically
---> FILE = system32\dla\tfsnifs.sys
---> TYPE = FILE_SYSTEM_DRIVER

184) "tfsnopio"
---> STAT = (RUNNING) Started automatically
---> FILE = system32\dla\tfsnopio.sys
---> TYPE = FILE_SYSTEM_DRIVER

185) "tfsnpool"
---> STAT = (RUNNING) Started automatically
---> FILE = system32\dla\tfsnpool.sys
---> TYPE = FILE_SYSTEM_DRIVER

186) "tfsnudf"
---> STAT = (RUNNING) Started automatically
---> FILE = system32\dla\tfsnudf.sys
---> TYPE = FILE_SYSTEM_DRIVER

187) "tfsnudfa"
---> STAT = (RUNNING) Started automatically
---> FILE = system32\dla\tfsnudfa.sys
---> TYPE = FILE_SYSTEM_DRIVER

188) "TosIde"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

189) "Udfs"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = FILE_SYSTEM_DRIVER

190) "ultra"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

191) "Update" - Pilote de mise à jour microcode
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\update.sys
---> TYPE = KERNEL_DRIVER

192) "usbaudio" - Pilote USB audio (WDM)
---> STAT = (RUNNING) Started manually
---> FILE = system32\drivers\usbaudio.sys
---> TYPE = KERNEL_DRIVER

193) "usbccgp" - Pilote parent générique USB Microsoft
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\usbccgp.sys
---> TYPE = KERNEL_DRIVER

194) "usbehci" - Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\usbehci.sys
---> TYPE = KERNEL_DRIVER

195) "usbhub" - Pilote de concentrateur standard USB Microsoft
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\usbhub.sys
---> TYPE = KERNEL_DRIVER

196) "usbprint" - Classe d'imprimantes USB Microsoft
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\usbprint.sys
---> TYPE = KERNEL_DRIVER

197) "usbscan" - Pilote de scanneur USB
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\usbscan.sys
---> TYPE = KERNEL_DRIVER

198) "USBSTOR" - Pilote de stockage de masse USB
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\USBSTOR.SYS
---> TYPE = KERNEL_DRIVER

199) "usbuhci" - Pilote miniport de contrôleur hôte universel USB Microsoft
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\usbuhci.sys
---> TYPE = KERNEL_DRIVER

200) "VgaSave"
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = \SystemRoot\System32\drivers\vga.sys
---> TYPE = KERNEL_DRIVER

201) "ViaIde"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

202) "VolSnap"
---> STAT = (RUNNING) Started by operating system loader
---> TYPE = KERNEL_DRIVER

203) "Wanarp" - Pilote ARP IP d'accès distant
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\wanarp.sys
---> TYPE = KERNEL_DRIVER

204) "WDICA"
---> STAT = (NOT RUNNING) Started manually
---> TYPE = KERNEL_DRIVER

205) "wdmaud" - Pilote WINMM de compatibilité audio WDM Microsoft
---> STAT = (RUNNING) Started manually
---> FILE = system32\drivers\wdmaud.sys
---> TYPE = KERNEL_DRIVER

206) "WmBEnum" - Logitech Virtual Bus Enumerator Driver
---> STAT = (RUNNING) Started manually
---> FILE = system32\drivers\WmBEnum.sys
---> TYPE = KERNEL_DRIVER

207) "WmFilter" - Logitech WingMan HID Filter Driver
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\drivers\WmFilter.sys
---> TYPE = KERNEL_DRIVER

208) "WmVirHid" - Logitech Virtual Hid Device Driver
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\drivers\WmVirHid.sys
---> TYPE = KERNEL_DRIVER

209) "WmXlCore" - Logitech WingMan Translation Layer Driver
---> STAT = (RUNNING) Started manually
---> FILE = system32\drivers\WmXlCore.sys
---> TYPE = KERNEL_DRIVER

210) "WpdUsb" - WpdUsb
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\wpdusb.sys
---> TYPE = KERNEL_DRIVER

211) "WSTCODEC" - Codec Teletext standard
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\WSTCODEC.SYS
---> TYPE = KERNEL_DRIVER

212) "WudfPf" - Windows Driver Foundation - User-mode Driver Framework Platform Driver
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\WudfPf.sys
---> TYPE = KERNEL_DRIVER

213) "WudfRd" - Windows Driver Foundation - User-mode Driver Framework Reflector
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\wudfrd.sys
---> TYPE = KERNEL_DRIVER

-----HKLM\system\currentcontrolset\services-----

000) "Adobe LM Service" - Adobe LM Service
---> STAT = (NOT RUNNING) Started manually
---> FILE = \C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe\
---> TYPE = OWN_SERVICE

001) "Alerter" - Avertissement
---> STAT = (NOT RUNNING) Disabled
---> FILE = C:\WINDOWS\system32\svchost.exe -k LocalService
---> TYPE = SHARE_SERVICE

002) "ALG" - Service de la passerelle de la couche Application
---> STAT = (RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\alg.exe
---> TYPE = OWN_SERVICE

003) "AppMgmt" - Gestion d'applications
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

004) "aspnet_state" - Service d'état ASP.NET
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
---> TYPE = OWN_SERVICE

005) "aswUpdSv" - avast! iAVS4 Control Service
---> STAT = (RUNNING) Started automatically
---> FILE = \C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe\
---> TYPE = OWN_SERVICE

006) "Ati HotKey Poller"
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\Ati2evxx.exe
---> TYPE = OWN_SERVICE

007) "ATI Smart" - ATI Smart
---> STAT = (NOT RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\ati2sgag.exe
---> TYPE = OWN_SERVICE

008) "AudioSrv" - Audio Windows
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

009) "Autodesk Licensing Service" - Autodesk Licensing Service
---> STAT = (NOT RUNNING) Started manually
---> FILE = \C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe\
---> TYPE = OWN_SERVICE

010) "avast! Antivirus" - avast! Antivirus
---> STAT = (RUNNING) Started automatically
---> FILE = \C:\Program Files\Alwil Software\Avast4\ashServ.exe\
---> TYPE = OWN_SERVICE

011) "avast! Mail Scanner" - avast! Mail Scanner
---> STAT = (RUNNING) Started manually
---> FILE = \C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe\ /service
---> TYPE = OWN_SERVICE

012) "avast! Web Scanner" - avast! Web Scanner
---> STAT = (RUNNING) Started manually
---> FILE = \C:\Program Files\Alwil Software\Avast4\ashWebSv.exe\ /service
---> TYPE = OWN_SERVICE

013) "BITS" - Service de transfert intelligent en arrière-plan
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

014) "Browser" - Explorateur d'ordinateur
---> STAT = (NOT RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

015) "CiSvc" - Service d'indexation
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\cisvc.exe
---> TYPE = SHARE_SERVICE

016) "ClipSrv" - Gestionnaire de l'Album
---> STAT = (NOT RUNNING) Disabled
---> FILE = C:\WINDOWS\system32\clipsrv.exe
---> TYPE = OWN_SERVICE

017) "clr_optimization_v2.0.50727_32" - .NET Runtime Optimization Service v2.0.50727_X86
---> STAT = (NOT RUNNING) Started automatically
---> FILE = C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
---> TYPE = OWN_SERVICE

018) "COMSysApp" - Application système COM+
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
---> TYPE = OWN_SERVICE

019) "CryptSvc" - Services de cryptographie
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

020) "DcomLaunch" - Lanceur de processus serveur DCOM
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost -k DcomLaunch
---> TYPE = SHARE_SERVICE

021) "Dhcp" - Client DHCP
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

022) "DM1Service" - DM1Service
---> STAT = (RUNNING) Started automatically
---> FILE = C:\Program Files\Olympus\DeviceDetector\DM1Service.exe
---> TYPE = OWN_SERVICE

023) "dmadmin" - Service d'administration du Gestionnaire de disque logique
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\dmadmin.exe /com
---> TYPE = SHARE_SERVICE

024) "dmserver" - Gestionnaire de disque logique
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

025) "Dnscache" - Client DNS
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k NetworkService
---> TYPE = SHARE_SERVICE

026) "ERSvc" - Service de rapport d'erreurs
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

027) "Eventlog" - Journal des événements
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\services.exe
---> TYPE = SHARE_SERVICE

028) "EventSystem" - Système d'événements de COM+
---> STAT = (RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

029) "FastUserSwitchingCompatibility" - Compatibilité avec le Changement rapide d'utilisateur
---> STAT = (RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

030) "FontCache3.0.0.0" - Windows Presentation Foundation Font Cache 3.0.0.0
---> STAT = (NOT RUNNING) Started manually
---> FILE = c:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
---> TYPE = OWN_SERVICE

031) "gusvc" - Google Updater Service
---> STAT = (NOT RUNNING) Started manually
---> FILE = \C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe\
---> TYPE = OWN_SERVICE

032) "helpsvc" - Aide et support
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

033) "HidServ" - HID Input Service
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

034) "HTTPFilter" - HTTP SSL
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\svchost.exe -k HTTPFilter
---> TYPE = SHARE_SERVICE

035) "IDriverT" - InstallDriver Table Manager
---> STAT = (NOT RUNNING) Started manually
---> FILE = \C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe\
---> TYPE = OWN_SERVICE

036) "idsvc" - Windows CardSpace
---> STAT = (NOT RUNNING) Started manually
---> FILE = \C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe\
---> TYPE = SHARE_SERVICE

037) "ImapiService" - Service COM de gravage de CD IMAPI
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\imapi.exe
---> TYPE = OWN_SERVICE

038) "iPod Service" - iPod Service
---> STAT = (RUNNING) Started manually
---> FILE = \C:\Program Files\iPod\bin\iPodService.exe\
---> TYPE = OWN_SERVICE

039) "lanmanserver" - Serveur
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

040) "lanmanworkstation" - Station de travail
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

041) "LexBceS" - LexBce Server
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\LEXBCES.EXE
---> TYPE = OWN_SERVICE

042) "LmHosts" - Assistance TCP/IP NetBIOS
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k LocalService
---> TYPE = SHARE_SERVICE

043) "LVPrcSrv" - Logitech Process Monitor
---> STAT = (RUNNING) Started automatically
---> FILE = c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
---> TYPE = OWN_SERVICE

044) "LVSrvLauncher" - LVSrvLauncher
---> STAT = (NOT RUNNING) Started automatically
---> FILE = C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe
---> TYPE = OWN_SERVICE

045) "McAfeeFramework" - McAfee Framework Service
---> STAT = (RUNNING) Started automatically
---> FILE = \C:\Program Files\McAfee\Common Framework\FrameworkService.exe\ /ServiceStart
---> TYPE = OWN_SERVICE

046) "MDM" - Machine Debug Manager
---> STAT = (RUNNING) Started automatically
---> FILE = \C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe\
---> TYPE = OWN_SERVICE

047) "Messenger" - Affichage des messages
---> STAT = (NOT RUNNING) Disabled
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

048) "mnmsrvc" - Partage de Bureau à distance NetMeeting
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\mnmsrvc.exe
---> TYPE = OWN_SERVICE

049) "MSCSPTISRV" - MSCSPTISRV
---> STAT = (NOT RUNNING) Started manually
---> FILE = \C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe\
---> TYPE = OWN_SERVICE

050) "MSDTC" - Distributed Transaction Coordinator
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\msdtc.exe
---> TYPE = OWN_SERVICE

051) "MSIServer" - Windows Installer
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\msiexec.exe /V
---> TYPE = SHARE_SERVICE

052) "ndassvc" - NDAS Service
---> STAT = (RUNNING) Started automatically
---> FILE = \C:\Program Files\NDAS\System\ndassvc.exe\
---> TYPE = OWN_SERVICE

053) "NetDDE" - DDE réseau
---> STAT = (NOT RUNNING) Disabled
---> FILE = C:\WINDOWS\system32\netdde.exe
---> TYPE = SHARE_SERVICE

054) "NetDDEdsdm" - DSDM DDE réseau
---> STAT = (NOT RUNNING) Disabled
---> FILE = C:\WINDOWS\system32\netdde.exe
---> TYPE = SHARE_SERVICE

055) "Netlogon" - Ouverture de session réseau
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\lsass.exe
---> TYPE = SHARE_SERVICE

056) "Netman" - Connexions réseau
---> STAT = (RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

057) "NetTcpPortSharing" - Net.Tcp Port Sharing Service
---> STAT = (NOT RUNNING) Disabled
---> FILE = \C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe\
---> TYPE = SHARE_SERVICE

058) "Nla" - NLA (Network Location Awareness)
---> STAT = (RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

059) "NtLmSsp" - Fournisseur de la prise en charge de sécurité LM NT
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\lsass.exe
---> TYPE = SHARE_SERVICE

060) "NtmsSvc" - Stockage amovible
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

061) "PACSPTISVR" - PACSPTISVR
---> STAT = (NOT RUNNING) Started manually
---> FILE = \C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe\
---> TYPE = OWN_SERVICE

062) "PlugPlay" - Plug-and-Play
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\services.exe
---> TYPE = SHARE_SERVICE

063) "PolicyAgent" - Services IPSEC
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\lsass.exe
---> TYPE = SHARE_SERVICE

064) "ProtectedStorage" - Emplacement protégé
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\lsass.exe
---> TYPE = SHARE_SERVICE

065) "RasAuto" - Gestionnaire de connexion automatique d'accès distant
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

066) "RasMan" - Gestionnaire de connexions d'accès distant
---> STAT = (RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

067) "RDSessMgr" - Gestionnaire de session d'aide sur le Bureau à distance
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\sessmgr.exe
---> TYPE = OWN_SERVICE

068) "RemoteAccess" - Routage et accès distant
---> STAT = (NOT RUNNING) Disabled
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

069) "RpcLocator" - Localisateur d'appels de procédure distante (RPC)
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\locator.exe
---> TYPE = OWN_SERVICE

070) "RpcSs" - Appel de procédure distante (RPC)
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost -k rpcss
---> TYPE = SHARE_SERVICE

071) "RSVP" - QoS RSVP
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\rsvp.exe
---> TYPE = OWN_SERVICE

072) "SamSs" - Gestionnaire de comptes de sécurité
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\lsass.exe
---> TYPE = SHARE_SERVICE

073) "SCardSvr" - Carte à puce
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\SCardSvr.exe
---> TYPE = SHARE_SERVICE

074) "Schedule" - Planificateur de tâches
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

075) "seclogon" - Connexion secondaire
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

076) "SENS" - Notification d'événement système
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

077) "SharedAccess" - Pare-feu Windows / Partage de connexion Internet
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

078) "ShellHWDetection" - Détection matériel noyau
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

079) "Spooler" - Spouleur d'impression
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\spoolsv.exe
---> TYPE = OWN_SERVICE

080) "SPTISRV" - Sony SPTI Service
---> STAT = (NOT RUNNING) Started manually
---> FILE = \C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe\
---> TYPE = OWN_SERVICE

081) "srservice" - Service de restauration système
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

082) "SSDPSRV" - Service de découvertes SSDP
---> STAT = (RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\svchost.exe -k LocalService
---> TYPE = SHARE_SERVICE

083) "stisvc" - Acquisition d'image Windows (WIA)
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k imgsvc
---> TYPE = SHARE_SERVICE

084) "SwPrv" - MS Software Shadow Copy Provider
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\dllhost.exe /Processid:{E260BC38-5DA1-4580-BA1C-4765A6E84242}
---> TYPE = OWN_SERVICE

085) "SysmonLog" - Journaux et alertes de performance
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\smlogsvc.exe
---> TYPE = OWN_SERVICE

086) "TapiSrv" - Téléphonie
---> STAT = (RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

087) "TermService" - Services Terminal Server
---> STAT = (RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\svchost -k DComLaunch
---> TYPE = SHARE_SERVICE

088) "Themes" - Thèmes
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

089) "TrkWks" - Client de suivi de lien distribué
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

090) "upnphost" - Hôte de périphérique universel Plug-and-Play
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\svchost.exe -k LocalService
---> TYPE = SHARE_SERVICE

091) "UPS" - Onduleur
---> STAT = (NOT RUNNING)

Répondre à Caroanais
Egwene   21-08-2008 à 11:40:27
- 0 +

Re,

Le rapport semble ne pas passer en entier sur le forum, peux-tu le mettre sur mediafire ?

http://www.mediafire.com

;)

------------------------------ Prière de signaler si vous vous faites déjà aider sur un autre forum ou dans un autre topic.

Sécurité / Prévention
Répondre à Egwene
Caroanais   21-08-2008 à 16:56:27
- 0 +

Le rapport est-il toujours présent dans le logiciel même si j'ai fermé mon ordinateur depuis??

Répondre à Caroanais
Egwene   21-08-2008 à 18:00:53
- 0 +

Je ne sais pas vraiment, je n'utilise pas souvent ce logiciel, mais comme celui que j'utilise principalement est momentanément indisponible, j'ai recours à d'autres.

Regarde et sinon recommence :/

;)

------------------------------ Prière de signaler si vous vous faites déjà aider sur un autre forum ou dans un autre topic.

Sécurité / Prévention
Répondre à Egwene
Caroanais   22-08-2008 à 02:30:39
- 0 +

Voici le rapport à nouveau :

SystemScan - www.suspectfile.com - ver. 3.5.5 (code: holifay & bReAkdOWn)

Running on: Windows XP HOME Edition, Service Pack 2 (2600.5.1)
System directory: C:\WINDOWS
SystemScan file: C:\Documents and Settings\Caroline et Dominic\Bureau\sys1178.exe
Running in: User mode
Date: 2008-08-21
Time: 20:27:41

Output limited to:
-Recent files
-Scheduled jobs
-Services and Drivers (all)
-Suspicious Files
-Include HIJACKTHIS.log

===================== RECENT FILES =====================

Showing files newer than 60 days

----- recent files in C:\
05-07-2008 19:43:23 (DIR) 0 byte 47 days old -- Fête Anais
05-07-2008 20:49:24 244 byte 47 days old -- sqmnoopt13.sqm
05-07-2008 20:49:24 232 byte 47 days old -- sqmdata13.sqm
05-07-2008 20:50:51 244 byte 47 days old -- sqmnoopt14.sqm
05-07-2008 20:50:51 232 byte 47 days old -- sqmdata14.sqm
07-08-2008 23:31:41 268 byte 14 days old -- sqmdata15.sqm
07-08-2008 23:31:41 244 byte 14 days old -- sqmnoopt15.sqm
15-08-2008 08:35:14 (DIR) 0 byte 6 days old -- téléchargement
15-08-2008 08:53:10 7301 byte 6 days old -- lvcoinst.log
15-08-2008 15:10:22 244 byte 6 days old -- sqmnoopt17.sqm
15-08-2008 15:10:23 232 byte 6 days old -- sqmdata17.sqm
15-08-2008 15:11:24 232 byte 6 days old -- sqmdata18.sqm
15-08-2008 15:11:24 244 byte 6 days old -- sqmnoopt18.sqm
17-08-2008 09:24:34 232 byte 4 days old -- sqmdata19.sqm
17-08-2008 09:24:34 244 byte 4 days old -- sqmnoopt19.sqm
17-08-2008 09:25:37 232 byte 4 days old -- sqmdata00.sqm
17-08-2008 09:25:37 244 byte 4 days old -- sqmnoopt00.sqm
17-08-2008 09:29:56 232 byte 4 days old -- sqmdata01.sqm
17-08-2008 09:29:56 244 byte 4 days old -- sqmnoopt01.sqm
18-08-2008 20:35:26 (DIR) 0 byte 3 days old -- Program Files
19-08-2008 18:29:10 (DIR) 0 byte 2 days old -- WINDOWS
19-08-2008 18:46:13 (DIR) 0 byte 2 days old -- SDFix
21-08-2008 20:21:52 1610612736 byte 0 days old -- pagefile.sys
09-08-2008 13:45:56 232 byte 12 days old -- sqmdata16.sqm
09-08-2008 13:45:56 244 byte 12 days old -- sqmnoopt16.sqm
12-07-2008 19:45:26 (DIR) 0 byte 40 days old -- Config.Msi

----- recent files in C:\WINDOWS\
06-07-2008 21:35:28 7168 byte 46 days old -- Thumbs.db
23-06-2008 21:49:23 (DIR) 0 byte 59 days old -- $NtUninstallKB951376-v2$
23-06-2008 21:49:30 10018 byte 59 days old -- KB951376-v2.log
08-07-2008 20:25:00 (DIR) 0 byte 44 days old -- $NtUninstallKB951748$
08-07-2008 20:25:06 18019 byte 44 days old -- KB951748.log
14-08-2008 21:44:12 (DIR) 0 byte 7 days old -- $NtUninstallKB951066$
14-08-2008 21:44:20 8043 byte 7 days old -- KB951066.log
14-08-2008 21:44:27 (DIR) 0 byte 7 days old -- ie7updates
14-08-2008 21:44:47 18617 byte 7 days old -- KB953838-IE7.log
14-08-2008 21:44:52 (DIR) 0 byte 7 days old -- $NtUninstallKB952287$
14-08-2008 21:44:55 13764 byte 7 days old -- KB952287.log
14-08-2008 21:45:01 (DIR) 0 byte 7 days old -- $NtUninstallKB951072-v2$
14-08-2008 21:45:04 31799 byte 7 days old -- KB951072-v2.log
14-08-2008 21:46:18 (DIR) 0 byte 7 days old -- $NtUninstallKB950974$
14-08-2008 21:46:21 18943 byte 7 days old -- KB950974.log
14-08-2008 21:46:26 (DIR) 0 byte 7 days old -- $NtUninstallKB953839$
14-08-2008 21:46:28 12755 byte 7 days old -- KB953839.log
14-08-2008 21:46:31 (DIR) 0 byte 7 days old -- $hf_mig$
14-08-2008 21:46:33 (DIR) 0 byte 7 days old -- $NtUninstallKB946648$
14-08-2008 21:46:35 14287 byte 7 days old -- KB946648.log
14-08-2008 21:46:36 1374 byte 7 days old -- imsins.BAK
14-08-2008 21:46:41 (DIR) 0 byte 7 days old -- $NtUninstallKB952954$
14-08-2008 21:46:42 163603 byte 7 days old -- updspapi.log
14-08-2008 21:46:43 240836 byte 7 days old -- ntdtcsetup.log
14-08-2008 21:46:43 59221 byte 7 days old -- msgsocm.log
14-08-2008 21:46:43 400102 byte 7 days old -- comsetup.log
14-08-2008 21:46:43 452320 byte 7 days old -- tsoc.log
14-08-2008 21:46:43 65007 byte 7 days old -- ocmsn.log
14-08-2008 21:46:43 567405 byte 7 days old -- ocgen.log
14-08-2008 21:46:43 19472 byte 7 days old -- KB952954.log
14-08-2008 21:46:43 1174640 byte 7 days old -- FaxSetup.log
14-08-2008 21:46:43 1374 byte 7 days old -- imsins.log
14-08-2008 21:46:43 187392 byte 7 days old -- iis6.log
15-08-2008 08:52:27 (DIR) 0 byte 6 days old -- inf
15-08-2008 12:58:36 521 byte 6 days old -- dellstat.ini
15-08-2008 15:02:57 494221 byte 6 days old -- setupapi.log
18-08-2008 12:11:40 200234 byte 3 days old -- wmsetup.log
19-08-2008 18:29:21 (DIR) 0 byte 2 days old -- ERUNT
19-08-2008 18:31:57 370104 byte 2 days old -- ntbtlog.txt
19-08-2008 18:35:53 (DIR) 0 byte 2 days old -- system32
19-08-2008 18:40:40 (DIR) 0 byte 2 days old -- Prefetch
20-08-2008 21:44:19 32530 byte 1 days old -- SchedLgU.Txt
21-08-2008 20:21:55 2048 byte 0 days old -- bootstat.dat
21-08-2008 20:22:16 50 byte 0 days old -- wiaservc.log
21-08-2008 20:22:18 159 byte 0 days old -- wiadebug.log
21-08-2008 20:22:19 (DIR) 0 byte 0 days old -- Microsoft.NET
21-08-2008 20:22:19 0 byte 0 days old -- 0.log
21-08-2008 20:23:38 1831896 byte 0 days old -- WindowsUpdate.log
21-08-2008 20:23:47 (DIR) 0 byte 0 days old -- Temp
12-07-2008 19:45:29 (DIR) 0 byte 40 days old -- Installer

----- recent files in C:\WINDOWS\Downloaded Program Files\

----- recent files in C:\WINDOWS\system\

----- recent files in C:\WINDOWS\system32\
04-08-2008 20:16:57 3121 byte 17 days old -- CONFIG.NT
05-08-2008 14:11:01 15888504 byte 16 days old -- MRT.exe
06-07-2008 21:53:41 43520 byte 46 days old -- CmdLineExt03.dll
23-06-2008 05:20:26 13824 byte 59 days old -- ieudinit.exe
23-06-2008 05:21:30 70656 byte 59 days old -- ie4uinit.exe
23-06-2008 12:28:17 214528 byte 59 days old -- dxtrans.dll
23-06-2008 12:28:17 347136 byte 59 days old -- dxtmsft.dll
23-06-2008 12:28:17 63488 byte 59 days old -- icardie.dll
23-06-2008 12:28:17 133120 byte 59 days old -- extmgr.dll
23-06-2008 12:28:17 124928 byte 59 days old -- advpack.dll
23-06-2008 12:28:18 230400 byte 59 days old -- ieaksie.dll
23-06-2008 12:28:18 383488 byte 59 days old -- ieapfltr.dll
23-06-2008 12:28:18 153088 byte 59 days old -- ieakeng.dll
23-06-2008 12:28:18 384512 byte 59 days old -- iedkcs32.dll
23-06-2008 12:28:19 6066176 byte 59 days old -- ieframe.dll
23-06-2008 12:28:19 44544 byte 59 days old -- iernonce.dll
23-06-2008 12:28:20 27648 byte 59 days old -- jsproxy.dll
23-06-2008 12:28:20 1831424 byte 59 days old -- inetcpl.cpl
23-06-2008 12:28:20 267776 byte 59 days old -- iertutil.dll
23-06-2008 12:28:20 52224 byte 59 days old -- msfeedsbs.dll
23-06-2008 12:28:20 459264 byte 59 days old -- msfeeds.dll
23-06-2008 12:28:22 671232 byte 59 days old -- mstime.dll
23-06-2008 12:28:22 193024 byte 59 days old -- msrating.dll
23-06-2008 12:28:22 477696 byte 59 days old -- mshtmled.dll
23-06-2008 12:28:22 105984 byte 59 days old -- url.dll
23-06-2008 12:28:22 44544 byte 59 days old -- pngfilt.dll
23-06-2008 12:28:22 102912 byte 59 days old -- occache.dll
23-06-2008 12:28:23 233472 byte 59 days old -- webcheck.dll
23-06-2008 12:28:23 1159680 byte 59 days old -- urlmon.dll
23-06-2008 12:28:23 826368 byte 59 days old -- wininet.dll
24-06-2008 10:28:24 3592192 byte 58 days old -- mshtml.dll
24-06-2008 12:23:56 74240 byte 58 days old -- mscms.dll
07-07-2008 16:31:48 253952 byte 45 days old -- es.dll
14-07-2008 07:09:18 62976 byte 38 days old -- tzchange.exe
18-07-2008 19:18:05 (DIR) 0 byte 34 days old -- config
19-07-2008 10:30:53 94392 byte 33 days old -- AvastSS.scr
19-07-2008 10:43:08 1163960 byte 33 days old -- aswBoot.exe
14-08-2008 21:45:00 715326 byte 7 days old -- TZLog.log
14-08-2008 21:46:42 (DIR) 0 byte 7 days old -- dllcache
15-08-2008 08:52:44 (DIR) 0 byte 6 days old -- drivers
19-08-2008 18:20:55 625208 byte 2 days old -- phcruoj0erbg.bmp
19-08-2008 18:25:08 (DIR) 0 byte 2 days old -- CatRoot2
21-08-2008 20:22:34 2206 byte 0 days old -- wpa.dbl
12-07-2008 19:45:08 6762 byte 40 days old -- jupdate-1.6.0_07-b06.log

----- recent files in C:\WINDOWS\system32\drivers\
19-07-2008 10:32:15 26944 byte 33 days old -- aavmker4.sys
19-07-2008 10:32:36 42912 byte 33 days old -- aswTdi.sys
19-07-2008 10:33:42 23152 byte 33 days old -- aswRdr.sys
19-07-2008 10:35:18 78416 byte 33 days old -- aswSP.sys
19-07-2008 10:37:21 94416 byte 33 days old -- aswmon2.sys
19-07-2008 10:37:42 20560 byte 33 days old -- aswFsBlk.sys
19-08-2008 18:32:55 (DIR) 0 byte 2 days old -- etc

----- recent files in C:\WINDOWS\temp\
19-08-2008 18:35:55 (DIR) 0 byte 2 days old -- unz1FE.tmp
21-08-2008 20:22:00 255 byte 0 days old -- WGAErrLog.txt
21-08-2008 20:22:04 0 byte 0 days old -- Perflib_Perfdata_67c.dat
21-08-2008 20:22:35 409 byte 0 days old -- WGANotify.settings
21-08-2008 20:26:08 (DIR) 0 byte 0 days old -- _avast4_

----- recent files in C:\Program Files\
06-07-2008 21:27:19 (DIR) 0 byte 46 days old -- D-Tools
06-07-2008 21:58:44 (DIR) 0 byte 46 days old -- WinRAR
07-07-2008 09:11:21 (DIR) 0 byte 45 days old -- McAfee
07-07-2008 09:11:21 (DIR) 0 byte 45 days old -- Fichiers communs
15-07-2008 19:08:25 (DIR) 0 byte 37 days old -- Alwil Software
14-08-2008 21:44:40 (DIR) 0 byte 7 days old -- Internet Explorer
14-08-2008 21:46:34 (DIR) 0 byte 7 days old -- Messenger
18-08-2008 20:35:26 (DIR) 0 byte 3 days old -- Trend Micro
18-08-2008 22:06:15 (DIR) 0 byte 3 days old -- rhcvuoj0erbg
12-07-2008 19:45:08 (DIR) 0 byte 40 days old -- Java
12-07-2008 19:45:24 (DIR) 0 byte 40 days old -- Sun

----- recent files in C:\Program Files\Fichiers communs\

----- recent files in C:\Documents and Settings\Caroline et Dominic\Application Data\
15-07-2008 19:02:30 (DIR) 0 byte 37 days old -- Microsoft
18-08-2008 12:48:20 (DIR) 0 byte 3 days old -- rhcvuoj0erbg

----- recent files in C:\DOCUME~1\CAROLI~1\LOCALS~1\Temp\
01-07-2008 21:03:31 32768 byte 51 days old -- ~DF21EC.tmp
02-07-2008 21:55:41 62446 byte 50 days old -- f1cc_appcompat.txt
05-07-2008 20:49:05 90 byte 47 days old -- VSafeLogin.ini
06-07-2008 13:53:38 533 byte 46 days old -- pcfC.tmp
06-07-2008 13:57:50 533 byte 46 days old -- pcfD.tmp
06-07-2008 14:01:05 533 byte 46 days old -- pcfE.tmp
06-07-2008 18:48:58 20480 byte 46 days old -- Xl0000000.xls
06-07-2008 21:19:45 533 byte 46 days old -- pcfF.tmp
06-07-2008 21:22:08 (DIR) 0 byte 46 days old -- avgdiag
06-07-2008 21:27:23 294 byte 46 days old -- MSI2e74c.LOG
06-07-2008 21:53:33 296 byte 46 days old -- MSIb6acd.LOG
06-07-2008 21:53:43 12305 byte 46 days old -- SIntf16.dll
06-07-2008 21:53:43 24748 byte 46 days old -- SIntfNT.dll
06-07-2008 21:53:43 20020 byte 46 days old -- SIntf32.dll
06-07-2008 22:08:18 533 byte 46 days old -- pcf10.tmp
24-06-2008 09:18:03 109254 byte 58 days old -- 4aa7_appcompat.txt
07-07-2008 06:53:20 533 byte 45 days old -- pcf11.tmp
07-08-2008 19:34:17 63302 byte 14 days old -- d713_appcompat.txt
07-08-2008 19:34:18 58060 byte 14 days old -- 3D727.dmp
07-08-2008 20:42:53 (DIR) 0 byte 14 days old -- ZB
13-07-2008 15:11:07 259432 byte 39 days old -- 02K0GF5D.emf
13-07-2008 15:11:07 259432 byte 39 days old -- 9SNF5RXT.emf
13-07-2008 21:57:01 109254 byte 39 days old -- 9617_appcompat.txt
15-07-2008 19:04:49 127391 byte 37 days old -- avg8inst.log
15-07-2008 19:05:46 (DIR) 0 byte 37 days old -- ~nsu.tmp
15-07-2008 19:05:57 533 byte 37 days old -- pcf13.tmp
27-07-2008 19:21:28 49152 byte 25 days old -- ~DFCE5C.tmp
27-07-2008 22:31:20 109254 byte 25 days old -- 6e25_appcompat.txt
08-07-2008 20:23:52 109254 byte 44 days old -- 7b79_appcompat.txt
13-08-2008 10:52:17 (DIR) 0 byte 8 days old -- EN_DbLinks
13-08-2008 19:34:36 1572 byte 8 days old -- wmplog00.sqm
13-08-2008 19:55:14 (DIR) 0 byte 8 days old -- msohtml1
15-08-2008 08:52:06 533 byte 6 days old -- pcf15.tmp
15-08-2008 09:01:27 533 byte 6 days old -- pcf16.tmp
15-08-2008 20:50:35 59964 byte 6 days old -- Adobelm_Cleanup.0001
15-08-2008 21:02:42 4852 byte 6 days old -- java_install_reg.log
15-08-2008 21:05:01 (DIR) 0 byte 6 days old -- hsperfdata_Caroline et Dominic
15-08-2008 22:27:42 109254 byte 6 days old -- ba8d_appcompat.txt
16-08-2008 21:37:14 1464 byte 5 days old -- wmplog01.sqm
16-08-2008 21:39:59 1560 byte 5 days old -- wmplog02.sqm
17-08-2008 20:14:37 1444 byte 4 days old -- wmplog03.sqm
17-08-2008 20:22:56 1660 byte 4 days old -- wmplog04.sqm
17-08-2008 20:25:11 1364 byte 4 days old -- wmplog05.sqm
17-08-2008 20:34:58 1428 byte 4 days old -- wmplog06.sqm
17-08-2008 20:36:45 1396 byte 4 days old -- wmplog07.sqm
18-08-2008 11:54:08 1616 byte 3 days old -- wmplog08.sqm
18-08-2008 11:56:05 1488 byte 3 days old -- wmplog09.sqm
18-08-2008 12:10:32 1524 byte 3 days old -- wmplog10.sqm
18-08-2008 12:11:57 1476 byte 3 days old -- wmplog11.sqm
18-08-2008 12:14:28 1428 byte 3 days old -- wmplog12.sqm
18-08-2008 12:15:37 1428 byte 3 days old -- wmplog13.sqm
18-08-2008 12:20:24 0 byte 3 days old -- .tt4A.tmp
18-08-2008 12:20:25 49152 byte 3 days old -- ~DF2002.tmp
18-08-2008 12:37:03 1740 byte 3 days old -- wmplog14.sqm
18-08-2008 12:58:02 0 byte 3 days old -- .tt80.tmp
18-08-2008 13:00:05 1408 byte 3 days old -- wmplog15.sqm
18-08-2008 13:00:20 1396 byte 3 days old -- wmplog16.sqm
18-08-2008 13:00:39 1396 byte 3 days old -- wmplog17.sqm
18-08-2008 13:13:28 0 byte 3 days old -- .tt89.tmp
18-08-2008 14:01:23 0 byte 3 days old -- .ttA4.tmp
18-08-2008 14:11:25 0 byte 3 days old -- .ttA8.tmp
18-08-2008 14:20:44 0 byte 3 days old -- .tt1E.tmp
18-08-2008 14:20:49 49152 byte 3 days old -- ~DF926D.tmp
18-08-2008 14:21:31 0 byte 3 days old -- .tt20.tmp
18-08-2008 20:08:41 0 byte 3 days old -- .tt1F.tmp
18-08-2008 20:08:59 0 byte 3 days old -- .tt22.tmp
18-08-2008 20:19:01 0 byte 3 days old -- .tt26.tmp
18-08-2008 20:29:02 0 byte 3 days old -- .tt2A.tmp
18-08-2008 20:39:04 0 byte 3 days old -- .tt30.tmp
18-08-2008 20:49:05 0 byte 3 days old -- .tt4B.tmp
18-08-2008 20:59:06 0 byte 3 days old -- .tt50.tmp
18-08-2008 21:09:08 0 byte 3 days old -- .tt52.tmp
18-08-2008 21:19:10 0 byte 3 days old -- .tt54.tmp
18-08-2008 21:29:11 0 byte 3 days old -- .tt57.tmp
18-08-2008 21:29:16 156 byte 3 days old -- Twunk001.MTX
18-08-2008 21:29:17 5 byte 3 days old -- Twain001.Mtx
18-08-2008 21:29:17 1383 byte 3 days old -- TWAIN.LOG
18-08-2008 21:39:13 0 byte 3 days old -- .tt6E.tmp
18-08-2008 21:49:18 0 byte 3 days old -- .tt71.tmp
18-08-2008 21:59:20 0 byte 3 days old -- .tt73.tmp
19-08-2008 18:20:50 533 byte 2 days old -- pcf17.tmp
19-08-2008 18:20:55 0 byte 2 days old -- .tt21.tmp
19-08-2008 18:20:57 49152 byte 2 days old -- ~DFE3FF.tmp
19-08-2008 18:23:04 0 byte 2 days old -- .tt25.tmp
19-08-2008 18:55:24 533 byte 2 days old -- pcf18.tmp
20-08-2008 20:20:14 49152 byte 1 days old -- ~DF26AC.tmp
20-08-2008 20:49:45 (DIR) 0 byte 1 days old -- _avast4_
21-08-2008 20:22:07 (DIR) 0 byte 0 days old -- WPDNSE
21-08-2008 20:22:23 37719 byte 0 days old -- LVCOMSX.LOG
21-08-2008 20:25:37 49152 byte 0 days old -- ~DF962B.tmp
21-08-2008 20:25:50 16384 byte 0 days old -- ~DFAF40.tmp
21-08-2008 20:25:50 (DIR) 0 byte 0 days old -- nsn24.tmp
21-08-2008 20:25:50 64 byte 0 days old -- systemscan.ini
21-08-2008 20:27:04 108826 byte 0 days old -- jusched.log
09-07-2008 15:47:31 109254 byte 43 days old -- 7da6_appcompat.txt
09-08-2008 09:54:23 262448 byte 12 days old -- PR1OBAV4.emf
09-08-2008 09:54:23 384368 byte 12 days old -- IC5KPU5B.emf
09-08-2008 09:54:23 300368 byte 12 days old -- J36K52YQ.emf
09-08-2008 09:55:10 262448 byte 12 days old -- 4XQ5P5TJ.emf
09-08-2008 09:55:10 384368 byte 12 days old -- Z17UKZXJ.emf
09-08-2008 09:55:10 300368 byte 12 days old -- KCG82PSL.emf
10-07-2008 18:55:19 533 byte 42 days old -- pcf12.tmp
11-07-2008 08:50:50 (DIR) 0 byte 41 days old -- TCD91.tmp
11-07-2008 14:07:19 (DIR) 0 byte 41 days old -- Adobelm_Cleanup.0001.dir.0005
11-08-2008 18:46:59 109254 byte 10 days old -- 3809_appcompat.txt
12-07-2008 19:43:32 9594 byte 40 days old -- jinstall.cfg
12-07-2008 19:43:56 1164 byte 40 days old -- java_install_sp.log
12-08-2008 09:47:30 533 byte 9 days old -- pcf14.tmp
12-08-2008 09:47:33 63302 byte 9 days old -- d717_appcompat.txt
12-08-2008 09:47:34 58060 byte 9 days old -- 3D766.dmp
12-08-2008 22:06:39 109254 byte 9 days old -- 5e95_appcompat.txt

===================== SCHEDULED JOBS =====================

jobs found in C:\WINDOWS:

19-08-2004 16:01:55 65 byte 1463 days old -- C:\WINDOWS\tasks\desktop.ini
21-08-2008 20:22:04 6 byte 0 days old -- C:\WINDOWS\tasks\SA.DAT
~~~~~~~~~~~~~~~~~~~~~
Active jobs:

~~~~~~~~~~~~~~~~~~~~~
Most recent (50) lines in jobs scheduled log:


===================== LIST OF ALL SERVICES & DRIVERS =====================

-----HKLM\system\currentcontrolset\services-----

000) "Aavmker4" - avast! Asynchronous Virus Monitor
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

001) "Abiosdsk"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

002) "abp480n5"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

003) "ACPI" - Pilote ACPI Microsoft
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\ACPI.sys
---> TYPE = KERNEL_DRIVER

004) "ACPIEC"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

005) "adpu160m"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

006) "aec" - Suppresseur d'écho acoustique (Noyau Microsoft)
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\drivers\aec.sys
---> TYPE = KERNEL_DRIVER

007) "AFD" - AFD
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = \SystemRoot\System32\drivers\afd.sys
---> TYPE = KERNEL_DRIVER

008) "Aha154x"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

009) "aic78u2"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

010) "aic78xx"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

011) "AliIde"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

012) "amsint"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

013) "asc"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

014) "asc3350p"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

015) "asc3550"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

016) "aswFsBlk" - aswFsBlk
---> STAT = (RUNNING) Started automatically
---> FILE = system32\DRIVERS\aswFsBlk.sys
---> TYPE = FILE_SYSTEM_DRIVER

017) "aswMon2" - avast! Standard Shield Support
---> STAT = (RUNNING) Started automatically
---> TYPE = FILE_SYSTEM_DRIVER

018) "aswRdr" - aswRdr
---> STAT = (RUNNING) Started manually
---> TYPE = KERNEL_DRIVER

019) "aswSP" - avast! Self Protection
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

020) "aswTdi" - avast! Network Shield Support
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

021) "AsyncMac" - Pilote de média asynchrone RAS
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\asyncmac.sys
---> TYPE = KERNEL_DRIVER

022) "atapi" - Contrôleur de disque dur IDE/ESDI standard
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\atapi.sys
---> TYPE = KERNEL_DRIVER

023) "Atdisk"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

024) "ati2mtag"
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\ati2mtag.sys
---> TYPE = KERNEL_DRIVER

025) "Atmarpc" - Protocole client ATM ARP
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\atmarpc.sys
---> TYPE = KERNEL_DRIVER

026) "audstub" - Pilote audio Stub
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\audstub.sys
---> TYPE = KERNEL_DRIVER

027) "Beep"
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

028) "catchme"
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\DOCUME~1\CAROLI~1\LOCALS~1\Temp\catchme.sys
---> TYPE = KERNEL_DRIVER

029) "cbidf2k"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

030) "CCDECODE" - Décodeur sous-titre fermé
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\CCDECODE.sys
---> TYPE = KERNEL_DRIVER

031) "cd20xrnt"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

032) "Cdaudio"
---> STAT = (NOT RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

033) "Cdfs"
---> STAT = (RUNNING) Disabled
---> TYPE = FILE_SYSTEM_DRIVER

034) "Cdrom" - Pilote de CD-ROM
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\cdrom.sys
---> TYPE = KERNEL_DRIVER

035) "Changer"
---> STAT = (NOT RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

036) "CmdIde"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

037) "Cpqarray"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

038) "dac2w2k"
---> STAT = (RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

039) "dac960nt"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

040) "Disk" - Pilote de disque
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\disk.sys
---> TYPE = KERNEL_DRIVER

041) "dmboot"
---> STAT = (NOT RUNNING) Disabled
---> FILE = System32\drivers\dmboot.sys
---> TYPE = KERNEL_DRIVER

042) "dmio"
---> STAT = (NOT RUNNING) Disabled
---> FILE = System32\drivers\dmio.sys
---> TYPE = KERNEL_DRIVER

043) "dmload"
---> STAT = (NOT RUNNING) Disabled
---> FILE = System32\drivers\dmload.sys
---> TYPE = KERNEL_DRIVER

044) "DMusic" - Synthétiseur DLS du noyau Microsoft
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\drivers\DMusic.sys
---> TYPE = KERNEL_DRIVER

045) "dpti2o"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

046) "drmkaud" - Filtre de décodeur DRM (Noyau Microsoft)
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\drivers\drmkaud.sys
---> TYPE = KERNEL_DRIVER

047) "drvmcdb"
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\drivers\drvmcdb.sys
---> TYPE = KERNEL_DRIVER

048) "drvnddm"
---> STAT = (RUNNING) Started automatically
---> FILE = system32\drivers\drvnddm.sys
---> TYPE = FILE_SYSTEM_DRIVER

049) "DSSUSB1" - DSSUSB1 Device
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\DSSUSB1.sys
---> TYPE = KERNEL_DRIVER

050) "DSSUSBF" - DSSUSBF Device
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\DSSUSBF.sys
---> TYPE = KERNEL_DRIVER

051) "E100B" - Intel(R) PRO Network Connection Driver
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\e100b325.sys
---> TYPE = KERNEL_DRIVER

052) "Fastfat"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = FILE_SYSTEM_DRIVER

053) "Fdc" - Pilote de contrôleur de lecteur de disquettes
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\fdc.sys
---> TYPE = KERNEL_DRIVER

054) "Fips"
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

055) "Flpydisk" - Pilote de lecteur de disquettes
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\flpydisk.sys
---> TYPE = KERNEL_DRIVER

056) "FltMgr" - FltMgr
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\fltMgr.sys
---> TYPE = FILE_SYSTEM_DRIVER

057) "Ftdisk" - Pilote du Gestionnaire de volume
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\ftdisk.sys
---> TYPE = KERNEL_DRIVER

058) "GEARAspiWDM" - GEARAspiWDM
---> STAT = (RUNNING) Started manually
---> FILE = System32\Drivers\GEARAspiWDM.sys
---> TYPE = KERNEL_DRIVER

059) "Gpc" - Classificateur de paquets générique
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\msgpc.sys
---> TYPE = KERNEL_DRIVER

060) "hidusb" - Pilote de classe HID Microsoft
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\hidusb.sys
---> TYPE = KERNEL_DRIVER

061) "hpn"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

062) "HTTP" - HTTP
---> STAT = (RUNNING) Started manually
---> FILE = System32\Drivers\HTTP.sys
---> TYPE = KERNEL_DRIVER

063) "i2omgmt"
---> STAT = (NOT RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

064) "i2omp"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

065) "i8042prt"
---> STAT = (NOT RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

066) "Imapi" - Pilote de filtre de gravure CD
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\imapi.sys
---> TYPE = KERNEL_DRIVER

067) "ini910u"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

068) "IntelIde"
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\intelide.sys
---> TYPE = KERNEL_DRIVER

069) "intelppm" - Pilote de processeur Intel
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\intelppm.sys
---> TYPE = KERNEL_DRIVER

070) "Ip6Fw" - Pilote du pare-feu Windows IPv6
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\Ip6Fw.sys
---> TYPE = KERNEL_DRIVER

071) "IpFilterDriver" - Pilote de filtre de trafic IP
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\ipfltdrv.sys
---> TYPE = KERNEL_DRIVER

072) "IpInIp" - Pilote de tunnelage IP dans IP
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\ipinip.sys
---> TYPE = KERNEL_DRIVER

073) "IpNat" - Traducteur d'adresses réseau IP
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\ipnat.sys
---> TYPE = KERNEL_DRIVER

074) "IPSec" - Pilote IPSEC
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\ipsec.sys
---> TYPE = KERNEL_DRIVER

075) "IRENUM" - Service énumérateur IR
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\irenum.sys
---> TYPE = KERNEL_DRIVER

076) "isapnp" - Pilote de bus Plug-and-Play ISA/EISA
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\isapnp.sys
---> TYPE = KERNEL_DRIVER

077) "Kbdclass" - Pilote de la classe Clavier
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\kbdclass.sys
---> TYPE = KERNEL_DRIVER

078) "kbdhid" - Pilote HID de clavier
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\kbdhid.sys
---> TYPE = KERNEL_DRIVER

079) "kmixer" - Mélangeur audio Wave de noyau Microsoft
---> STAT = (RUNNING) Started manually
---> FILE = system32\drivers\kmixer.sys
---> TYPE = KERNEL_DRIVER

080) "KSecDD"
---> STAT = (RUNNING) Started by operating system loader
---> TYPE = KERNEL_DRIVER

081) "lbrtfdc"
---> STAT = (NOT RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

082) "lfsfilt" - Lean File Sharing
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\lfsfilt.sys
---> TYPE = KERNEL_DRIVER

083) "lpx" - LPX Protocol
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\lpx.sys
---> TYPE = KERNEL_DRIVER

084) "LVcKap" - Logitech AEC Driver
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\LVcKap.sys
---> TYPE = KERNEL_DRIVER

085) "LVMVDrv" - Logitech Machine Vision Engine Loader
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\LVMVDrv.sys
---> TYPE = KERNEL_DRIVER

086) "LVPr2Mon" - Logitech LVPr2Mon Driver
---> STAT = (RUNNING) Started manually
---> FILE = system32\drivers\LVPr2Mon.sys
---> TYPE = KERNEL_DRIVER

087) "LVUSBSta" - Logitech USB Monitor Filter
---> STAT = (RUNNING) Started manually
---> FILE = system32\drivers\lvusbsta.sys
---> TYPE = KERNEL_DRIVER

088) "mnmdd"
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

089) "Modem"
---> STAT = (NOT RUNNING) Started manually
---> TYPE = KERNEL_DRIVER

090) "Mouclass" - Pilote de la classe Souris
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\mouclass.sys
---> TYPE = KERNEL_DRIVER

091) "mouhid" - Pilote HID de souris
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\mouhid.sys
---> TYPE = KERNEL_DRIVER

092) "MountMgr"
---> STAT = (RUNNING) Started by operating system loader
---> TYPE = KERNEL_DRIVER

093) "mraid35x"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

094) "MRxDAV" - Redirecteur client WebDav
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\mrxdav.sys
---> TYPE = FILE_SYSTEM_DRIVER

095) "MRxSmb" - MRXSMB
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\mrxsmb.sys
---> TYPE = FILE_SYSTEM_DRIVER

096) "Msfs"
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> TYPE = FILE_SYSTEM_DRIVER

097) "MSKSSRV" - Proxy de service de répartition Microsoft
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\drivers\MSKSSRV.sys
---> TYPE = KERNEL_DRIVER

098) "MSPCLOCK" - Proxy d'horloge de répartition Microsoft
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\drivers\MSPCLOCK.sys
---> TYPE = KERNEL_DRIVER

099) "MSPQM" - Proxy de gestion de qualité de répartition Microsoft
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\drivers\MSPQM.sys
---> TYPE = KERNEL_DRIVER

100) "mssmbios" - Pilote BIOS de gestion de systèmes Microsoft
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\mssmbios.sys
---> TYPE = KERNEL_DRIVER

101) "MSTEE" - Convertisseur en T/site-à-site de répartition Microsoft
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\drivers\MSTEE.sys
---> TYPE = KERNEL_DRIVER

102) "Mup" - Mup
---> STAT = (RUNNING) Started by operating system loader
---> TYPE = FILE_SYSTEM_DRIVER

103) "NABTSFEC" - Codec NABTS/FEC VBI
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\NABTSFEC.sys
---> TYPE = KERNEL_DRIVER

104) "ndasbus" - NDAS Bus Driver
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\ndasbus.sys
---> TYPE = KERNEL_DRIVER

105) "ndasfat" - NDAS FAT
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = C:\WINDOWS\system32\DRIVERS\ndasfat.sys
---> TYPE = FILE_SYSTEM_DRIVER

106) "ndasscsi" - NDAS SCSI Miniport Driver
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\ndasscsi.sys
---> TYPE = KERNEL_DRIVER

107) "NDIS" - Pilote système NDIS
---> STAT = (RUNNING) Started by operating system loader
---> TYPE = KERNEL_DRIVER

108) "NdisIP" - Connection TV/vidéo Microsoft
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\NdisIP.sys
---> TYPE = KERNEL_DRIVER

109) "NdisTapi" - Pilote TAPI NDIS d'accès distant
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\ndistapi.sys
---> TYPE = KERNEL_DRIVER

110) "Ndisuio" - NDIS mode utilisateur E/S Protocole
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\ndisuio.sys
---> TYPE = KERNEL_DRIVER

111) "NdisWan" - Pilote réseau étendu NDIS d'accès distant
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\ndiswan.sys
---> TYPE = KERNEL_DRIVER

112) "NDProxy" - multi:Proxy NDIS\00\00
---> STAT = (RUNNING) Started manually
---> TYPE = KERNEL_DRIVER

113) "NetBIOS" - Interface NetBIOS
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\netbios.sys
---> TYPE = FILE_SYSTEM_DRIVER

114) "NetBT" - NetBIOS sur TCP/IP
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\netbt.sys
---> TYPE = KERNEL_DRIVER

115) "Npfs"
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> TYPE = FILE_SYSTEM_DRIVER

116) "Ntfs"
---> STAT = (RUNNING) Disabled
---> TYPE = FILE_SYSTEM_DRIVER

117) "Null"
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

118) "NwlnkFlt" - Pilote de filtre de trafic IPX
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\nwlnkflt.sys
---> TYPE = KERNEL_DRIVER

119) "NwlnkFwd" - Pilote de transfert de trafic IPX
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\nwlnkfwd.sys
---> TYPE = KERNEL_DRIVER

120) "OMCI" - OMCI
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = \SystemRoot\SYSTEM32\DRIVERS\OMCI.SYS
---> TYPE = KERNEL_DRIVER

121) "Parport" - Pilote de port parallèle
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\parport.sys
---> TYPE = KERNEL_DRIVER

122) "PartMgr"
---> STAT = (RUNNING) Started by operating system loader
---> TYPE = KERNEL_DRIVER

123) "ParVdm"
---> STAT = (RUNNING) Started automatically
---> TYPE = KERNEL_DRIVER

124) "PCI" - Pilote de bus PCI
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\pci.sys
---> TYPE = KERNEL_DRIVER

125) "PCIDump"
---> STAT = (NOT RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

126) "PCIIde"
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\pciide.sys
---> TYPE = KERNEL_DRIVER

127) "Pcmcia"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

128) "PDCOMP"
---> STAT = (NOT RUNNING) Started manually
---> TYPE = KERNEL_DRIVER

129) "PDFRAME"
---> STAT = (NOT RUNNING) Started manually
---> TYPE = KERNEL_DRIVER

130) "PDRELI"
---> STAT = (NOT RUNNING) Started manually
---> TYPE = KERNEL_DRIVER

131) "PDRFRAME"
---> STAT = (NOT RUNNING) Started manually
---> TYPE = KERNEL_DRIVER

132) "pepifilter" - Volume Adapter
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\lv302af.sys
---> TYPE = KERNEL_DRIVER

133) "perc2"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

134) "perc2hib"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

135) "PID_08A0" - Logitech QuickCam IM(PID_08A0)
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\LV302AV.SYS
---> TYPE = KERNEL_DRIVER

136) "PptpMiniport" - Miniport réseau étendu (PPTP)
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\raspptp.sys
---> TYPE = KERNEL_DRIVER

137) "PSched" - Planificateur de paquets QoS
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\psched.sys
---> TYPE = KERNEL_DRIVER

138) "Ptilink" - Pilote de liaison parallèle directe
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\ptilink.sys
---> TYPE = KERNEL_DRIVER

139) "PxHelp20" - PxHelp20
---> STAT = (RUNNING) Started by operating system loader
---> FILE = System32\Drivers\PxHelp20.sys
---> TYPE = KERNEL_DRIVER

140) "ql1080"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

141) "Ql10wnt"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

142) "ql12160"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

143) "ql1240"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

144) "ql1280"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

145) "RasAcd" - Pilote de connexion automatique d'accès distant
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\rasacd.sys
---> TYPE = KERNEL_DRIVER

146) "Rasl2tp" - Miniport réseau étendu (L2TP)
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\rasl2tp.sys
---> TYPE = KERNEL_DRIVER

147) "RasPppoe" - Pilote PPPOE d'accès à distance
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\raspppoe.sys
---> TYPE = KERNEL_DRIVER

148) "Raspti" - Parallèle direct
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\raspti.sys
---> TYPE = KERNEL_DRIVER

149) "Rdbss" - Rdbss
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\rdbss.sys
---> TYPE = FILE_SYSTEM_DRIVER

150) "RDPCDD"
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = System32\DRIVERS\RDPCDD.sys
---> TYPE = KERNEL_DRIVER

151) "RDPWD"
---> STAT = (NOT RUNNING) Started manually
---> TYPE = KERNEL_DRIVER

152) "redbook" - Pilote de filtre de lecture digitale de CD audio
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\redbook.sys
---> TYPE = KERNEL_DRIVER

153) "Secdrv" - Secdrv
---> STAT = (RUNNING) Started automatically
---> FILE = system32\DRIVERS\secdrv.sys
---> TYPE = KERNEL_DRIVER

154) "senfilt"
---> STAT = (RUNNING) Started manually
---> FILE = system32\drivers\senfilt.sys
---> TYPE = KERNEL_DRIVER

155) "serenum" - Pilote de filtre Serenum
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\serenum.sys
---> TYPE = KERNEL_DRIVER

156) "Serial" - Pilote de port série
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\serial.sys
---> TYPE = KERNEL_DRIVER

157) "Sfloppy"
---> STAT = (NOT RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

158) "Simbad"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

159) "SLIP" - Détrameur décalage BDA
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\SLIP.sys
---> TYPE = KERNEL_DRIVER

160) "smwdm"
---> STAT = (RUNNING) Started manually
---> FILE = system32\drivers\smwdm.sys
---> TYPE = KERNEL_DRIVER

161) "Sparrow"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

162) "splitter" - Splitter audio du noyau Microsoft
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\drivers\splitter.sys
---> TYPE = KERNEL_DRIVER

163) "sr" - Pilote de filtre de restauration système
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\sr.sys
---> TYPE = FILE_SYSTEM_DRIVER

164) "Srv" - Srv
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\srv.sys
---> TYPE = FILE_SYSTEM_DRIVER

165) "sscdbhk5"
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\drivers\sscdbhk5.sys
---> TYPE = FILE_SYSTEM_DRIVER

166) "ssrtln"
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\drivers\ssrtln.sys
---> TYPE = FILE_SYSTEM_DRIVER

167) "streamip" - BDA IPSink
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\StreamIP.sys
---> TYPE = KERNEL_DRIVER

168) "swenum" - Pilote de bus logiciel
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\swenum.sys
---> TYPE = KERNEL_DRIVER

169) "swmidi" - Synthétiseur de table de sons GC noyau Microsoft
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\drivers\swmidi.sys
---> TYPE = KERNEL_DRIVER

170) "symc810"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

171) "symc8xx"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

172) "sym_hi"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

173) "sym_u3"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

174) "sysaudio" - Périphérique audio système du noyau Microsoft
---> STAT = (RUNNING) Started manually
---> FILE = system32\drivers\sysaudio.sys
---> TYPE = KERNEL_DRIVER

175) "Tcpip" - Pilote du protocole TCP/IP
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\tcpip.sys
---> TYPE = KERNEL_DRIVER

176) "TDPIPE"
---> STAT = (NOT RUNNING) Started manually
---> TYPE = KERNEL_DRIVER

177) "TDTCP"
---> STAT = (NOT RUNNING) Started manually
---> TYPE = KERNEL_DRIVER

178) "TermDD" - Pilote de périphérique terminal
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\termdd.sys
---> TYPE = KERNEL_DRIVER

179) "tfsnboio"
---> STAT = (RUNNING) Started automatically
---> FILE = system32\dla\tfsnboio.sys
---> TYPE = FILE_SYSTEM_DRIVER

180) "tfsncofs"
---> STAT = (RUNNING) Started automatically
---> FILE = system32\dla\tfsncofs.sys
---> TYPE = FILE_SYSTEM_DRIVER

181) "tfsndrct"
---> STAT = (RUNNING) Started automatically
---> FILE = system32\dla\tfsndrct.sys
---> TYPE = FILE_SYSTEM_DRIVER

182) "tfsndres"
---> STAT = (RUNNING) Started automatically
---> FILE = system32\dla\tfsndres.sys
---> TYPE = FILE_SYSTEM_DRIVER

183) "tfsnifs"
---> STAT = (RUNNING) Started automatically
---> FILE = system32\dla\tfsnifs.sys
---> TYPE = FILE_SYSTEM_DRIVER

184) "tfsnopio"
---> STAT = (RUNNING) Started automatically
---> FILE = system32\dla\tfsnopio.sys
---> TYPE = FILE_SYSTEM_DRIVER

185) "tfsnpool"
---> STAT = (RUNNING) Started automatically
---> FILE = system32\dla\tfsnpool.sys
---> TYPE = FILE_SYSTEM_DRIVER

186) "tfsnudf"
---> STAT = (RUNNING) Started automatically
---> FILE = system32\dla\tfsnudf.sys
---> TYPE = FILE_SYSTEM_DRIVER

187) "tfsnudfa"
---> STAT = (RUNNING) Started automatically
---> FILE = system32\dla\tfsnudfa.sys
---> TYPE = FILE_SYSTEM_DRIVER

188) "TosIde"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

189) "Udfs"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = FILE_SYSTEM_DRIVER

190) "ultra"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

191) "Update" - Pilote de mise à jour microcode
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\update.sys
---> TYPE = KERNEL_DRIVER

192) "usbaudio" - Pilote USB audio (WDM)
---> STAT = (RUNNING) Started manually
---> FILE = system32\drivers\usbaudio.sys
---> TYPE = KERNEL_DRIVER

193) "usbccgp" - Pilote parent générique USB Microsoft
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\usbccgp.sys
---> TYPE = KERNEL_DRIVER

194) "usbehci" - Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\usbehci.sys
---> TYPE = KERNEL_DRIVER

195) "usbhub" - Pilote de concentrateur standard USB Microsoft
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\usbhub.sys
---> TYPE = KERNEL_DRIVER

196) "usbprint" - Classe d'imprimantes USB Microsoft
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\usbprint.sys
---> TYPE = KERNEL_DRIVER

197) "usbscan" - Pilote de scanneur USB
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\usbscan.sys
---> TYPE = KERNEL_DRIVER

198) "USBSTOR" - Pilote de stockage de masse USB
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\USBSTOR.SYS
---> TYPE = KERNEL_DRIVER

199) "usbuhci" - Pilote miniport de contrôleur hôte universel USB Microsoft
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\usbuhci.sys
---> TYPE = KERNEL_DRIVER

200) "VgaSave"
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = \SystemRoot\System32\drivers\vga.sys
---> TYPE = KERNEL_DRIVER

201) "ViaIde"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

202) "VolSnap"
---> STAT = (RUNNING) Started by operating system loader
---> TYPE = KERNEL_DRIVER

203) "Wanarp" - Pilote ARP IP d'accès distant
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\wanarp.sys
---> TYPE = KERNEL_DRIVER

204) "WDICA"
---> STAT = (NOT RUNNING) Started manually
---> TYPE = KERNEL_DRIVER

205) "wdmaud" - Pilote WINMM de compatibilité audio WDM Microsoft
---> STAT = (RUNNING) Started manually
---> FILE = system32\drivers\wdmaud.sys
---> TYPE = KERNEL_DRIVER

206) "WmBEnum" - Logitech Virtual Bus Enumerator Driver
---> STAT = (RUNNING) Started manually
---> FILE = system32\drivers\WmBEnum.sys
---> TYPE = KERNEL_DRIVER

207) "WmFilter" - Logitech WingMan HID Filter Driver
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\drivers\WmFilter.sys
---> TYPE = KERNEL_DRIVER

208) "WmVirHid" - Logitech Virtual Hid Device Driver
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\drivers\WmVirHid.sys
---> TYPE = KERNEL_DRIVER

209) "WmXlCore" - Logitech WingMan Translation Layer Driver
---> STAT = (RUNNING) Started manually
---> FILE = system32\drivers\WmXlCore.sys
---> TYPE = KERNEL_DRIVER

210) "WpdUsb" - WpdUsb
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\wpdusb.sys
---> TYPE = KERNEL_DRIVER

211) "WSTCODEC" - Codec Teletext standard
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\WSTCODEC.SYS
---> TYPE = KERNEL_DRIVER

212) "WudfPf" - Windows Driver Foundation - User-mode Driver Framework Platform Driver
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\WudfPf.sys
---> TYPE = KERNEL_DRIVER

213) "WudfRd" - Windows Driver Foundation - User-mode Driver Framework Reflector
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\wudfrd.sys
---> TYPE = KERNEL_DRIVER

-----HKLM\system\currentcontrolset\services-----

000) "Adobe LM Service" - Adobe LM Service
---> STAT = (NOT RUNNING) Started manually
---> FILE = \C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe\
---> TYPE = OWN_SERVICE

001) "Alerter" - Avertissement
---> STAT = (NOT RUNNING) Disabled
---> FILE = C:\WINDOWS\system32\svchost.exe -k LocalService
---> TYPE = SHARE_SERVICE

002) "ALG" - Service de la passerelle de la couche Application
---> STAT = (RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\alg.exe
---> TYPE = OWN_SERVICE

003) "AppMgmt" - Gestion d'applications
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

004) "aspnet_state" - Service d'état ASP.NET
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
---> TYPE = OWN_SERVICE

005) "aswUpdSv" - avast! iAVS4 Control Service
---> STAT = (RUNNING) Started automatically
---> FILE = \C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe\
---> TYPE = OWN_SERVICE

006) "Ati HotKey Poller"
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\Ati2evxx.exe
---> TYPE = OWN_SERVICE

007) "ATI Smart" - ATI Smart
---> STAT = (NOT RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\ati2sgag.exe
---> TYPE = OWN_SERVICE

008) "AudioSrv" - Audio Windows
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

009) "Autodesk Licensing Service" - Autodesk Licensing Service
---> STAT = (NOT RUNNING) Started manually
---> FILE = \C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe\
---> TYPE = OWN_SERVICE

010) "avast! Antivirus" - avast! Antivirus
---> STAT = (RUNNING) Started automatically
---> FILE = \C:\Program Files\Alwil Software\Avast4\ashServ.exe\
---> TYPE = OWN_SERVICE

011) "avast! Mail Scanner" - avast! Mail Scanner
---> STAT = (RUNNING) Started manually
---> FILE = \C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe\ /service
---> TYPE = OWN_SERVICE

012) "avast! Web Scanner" - avast! Web Scanner
---> STAT = (RUNNING) Started manually
---> FILE = \C:\Program Files\Alwil Software\Avast4\ashWebSv.exe\ /service
---> TYPE = OWN_SERVICE

013) "BITS" - Service de transfert intelligent en arrière-plan
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

014) "Browser" - Explorateur d'ordinateur
---> STAT = (NOT RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

015) "CiSvc" - Service d'indexation
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\cisvc.exe
---> TYPE = SHARE_SERVICE

016) "ClipSrv" - Gestionnaire de l'Album
---> STAT = (NOT RUNNING) Disabled
---> FILE = C:\WINDOWS\system32\clipsrv.exe
---> TYPE = OWN_SERVICE

017) "clr_optimization_v2.0.50727_32" - .NET Runtime Optimization Service v2.0.50727_X86
---> STAT = (NOT RUNNING) Started automatically
---> FILE = C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
---> TYPE = OWN_SERVICE

018) "COMSysApp" - Application système COM+
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
---> TYPE = OWN_SERVICE

019) "CryptSvc" - Services de cryptographie
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

020) "DcomLaunch" - Lanceur de processus serveur DCOM
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost -k DcomLaunch
---> TYPE = SHARE_SERVICE

021) "Dhcp" - Client DHCP
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

022) "DM1Service" - DM1Service
---> STAT = (RUNNING) Started automatically
---> FILE = C:\Program Files\Olympus\DeviceDetector\DM1Service.exe
---> TYPE = OWN_SERVICE

023) "dmadmin" - Service d'administration du Gestionnaire de disque logique
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\dmadmin.exe /com
---> TYPE = SHARE_SERVICE

024) "dmserver" - Gestionnaire de disque logique
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

025) "Dnscache" - Client DNS
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k NetworkService
---> TYPE = SHARE_SERVICE

026) "ERSvc" - Service de rapport d'erreurs
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

027) "Eventlog" - Journal des événements
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\services.exe
---> TYPE = SHARE_SERVICE

028) "EventSystem" - Système d'événements de COM+
---> STAT = (RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

029) "FastUserSwitchingCompatibility" - Compatibilité avec le Changement rapide d'utilisateur
---> STAT = (RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

030) "FontCache3.0.0.0" - Windows Presentation Foundation Font Cache 3.0.0.0
---> STAT = (NOT RUNNING) Started manually
---> FILE = c:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
---> TYPE = OWN_SERVICE

031) "gusvc" - Google Updater Service
---> STAT = (NOT RUNNING) Started manually
---> FILE = \C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe\
---> TYPE = OWN_SERVICE

032) "helpsvc" - Aide et support
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

033) "HidServ" - HID Input Service
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

034) "HTTPFilter" - HTTP SSL
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\svchost.exe -k HTTPFilter
---> TYPE = SHARE_SERVICE

035) "IDriverT" - InstallDriver Table Manager
---> STAT = (NOT RUNNING) Started manually
---> FILE = \C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe\
---> TYPE = OWN_SERVICE

036) "idsvc" - Windows CardSpace
---> STAT = (NOT RUNNING) Started manually
---> FILE = \C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe\
---> TYPE = SHARE_SERVICE

037) "ImapiService" - Service COM de gravage de CD IMAPI
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\imapi.exe
---> TYPE = OWN_SERVICE

038) "iPod Service" - iPod Service
---> STAT = (RUNNING) Started manually
---> FILE = \C:\Program Files\iPod\bin\iPodService.exe\
---> TYPE = OWN_SERVICE

039) "lanmanserver" - Serveur
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

040) "lanmanworkstation" - Station de travail
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

041) "LexBceS" - LexBce Server
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\LEXBCES.EXE
---> TYPE = OWN_SERVICE

042) "LmHosts" - Assistance TCP/IP NetBIOS
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k LocalService
---> TYPE = SHARE_SERVICE

043) "LVPrcSrv" - Logitech Process Monitor
---> STAT = (RUNNING) Started automatically
---> FILE = c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
---> TYPE = OWN_SERVICE

044) "LVSrvLauncher" - LVSrvLauncher
---> STAT = (NOT RUNNING) Started automatically
---> FILE = C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe
---> TYPE = OWN_SERVICE

045) "McAfeeFramework" - McAfee Framework Service
---> STAT = (RUNNING) Started automatically
---> FILE = \C:\Program Files\McAfee\Common Framework\FrameworkService.exe\ /ServiceStart
---> TYPE = OWN_SERVICE

046) "MDM" - Machine Debug Manager
---> STAT = (RUNNING) Started automatically
---> FILE = \C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe\
---> TYPE = OWN_SERVICE

047) "Messenger" - Affichage des messages
---> STAT = (NOT RUNNING) Disabled
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

048) "mnmsrvc" - Partage de Bureau à distance NetMeeting
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\mnmsrvc.exe
---> TYPE = OWN_SERVICE

049) "MSCSPTISRV" - MSCSPTISRV
---> STAT = (NOT RUNNING) Started manually
---> FILE = \C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe\
---> TYPE = OWN_SERVICE

050) "MSDTC" - Distributed Transaction Coordinator
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\msdtc.exe
---> TYPE = OWN_SERVICE

051) "MSIServer" - Windows Installer
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\msiexec.exe /V
---> TYPE = SHARE_SERVICE

052) "ndassvc" - NDAS Service
---> STAT = (RUNNING) Started automatically
---> FILE = \C:\Program Files\NDAS\System\ndassvc.exe\
---> TYPE = OWN_SERVICE

053) "NetDDE" - DDE réseau
---> STAT = (NOT RUNNING) Disabled
---> FILE = C:\WINDOWS\system32\netdde.exe
---> TYPE = SHARE_SERVICE

054) "NetDDEdsdm" - DSDM DDE réseau
---> STAT = (NOT RUNNING) Disabled
---> FILE = C:\WINDOWS\system32\netdde.exe
---> TYPE = SHARE_SERVICE

055) "Netlogon" - Ouverture de session réseau
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\lsass.exe
---> TYPE = SHARE_SERVICE

056) "Netman" - Connexions réseau
---> STAT = (RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

057) "NetTcpPortSharing" - Net.Tcp Port Sharing Service
---> STAT = (NOT RUNNING) Disabled
---> FILE = \C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe\
---> TYPE = SHARE_SERVICE

058) "Nla" - NLA (Network Location Awareness)
---> STAT = (RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

059) "NtLmSsp" - Fournisseur de la prise en charge de sécurité LM NT
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\lsass.exe
---> TYPE = SHARE_SERVICE

060) "NtmsSvc" - Stockage amovible
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

061) "PACSPTISVR" - PACSPTISVR
---> STAT = (NOT RUNNING) Started manually
---> FILE = \C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe\
---> TYPE = OWN_SERVICE

062) "PlugPlay" - Plug-and-Play
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\services.exe
---> TYPE = SHARE_SERVICE

063) "PolicyAgent" - Services IPSEC
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\lsass.exe
---> TYPE = SHARE_SERVICE

064) "ProtectedStorage" - Emplacement protégé
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\lsass.exe
---> TYPE = SHARE_SERVICE

065) "RasAuto" - Gestionnaire de connexion automatique d'accès distant
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

066) "RasMan" - Gestionnaire de connexions d'accès distant
---> STAT = (RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

067) "RDSessMgr" - Gestionnaire de session d'aide sur le Bureau à distance
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\sessmgr.exe
---> TYPE = OWN_SERVICE

068) "RemoteAccess" - Routage et accès distant
---> STAT = (NOT RUNNING) Disabled
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

069) "RpcLocator" - Localisateur d'appels de procédure distante (RPC)
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\locator.exe
---> TYPE = OWN_SERVICE

070) "RpcSs" - Appel de procédure distante (RPC)
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost -k rpcss
---> TYPE = SHARE_SERVICE

071) "RSVP" - QoS RSVP
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\rsvp.exe
---> TYPE = OWN_SERVICE

072) "SamSs" - Gestionnaire de comptes de sécurité
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\lsass.exe
---> TYPE = SHARE_SERVICE

073) "SCardSvr" - Carte à puce
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\SCardSvr.exe
---> TYPE = SHARE_SERVICE

074) "Schedule" - Planificateur de tâches
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

075) "seclogon" - Connexion secondaire
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

076) "SENS" - Notification d'événement système
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

077) "SharedAccess" - Pare-feu Windows / Partage de connexion Internet
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

078) "ShellHWDetection" - Détection matériel noyau
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

079) "Spooler" - Spouleur d'impression
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\spoolsv.exe
---> TYPE = OWN_SERVICE

080) "SPTISRV" - Sony SPTI Service
---> STAT = (NOT RUNNING) Started manually
---> FILE = \C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe\
---> TYPE = OWN_SERVICE

081) "srservice" - Service de restauration système
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

082) "SSDPSRV" - Service de découvertes SSDP
---> STAT = (RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\svchost.exe -k LocalService
---> TYPE = SHARE_SERVICE

083) "stisvc" - Acquisition d'image Windows (WIA)
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k imgsvc
---> TYPE = SHARE_SERVICE

084) "SwPrv" - MS Software Shadow Copy Provider
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\dllhost.exe /Processid:{E260BC38-5DA1-4580-BA1C-4765A6E84242}
---> TYPE = OWN_SERVICE

085) "SysmonLog" - Journaux et alertes de performance
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\smlogsvc.exe
---> TYPE = OWN_SERVICE

086) "TapiSrv" - Téléphonie
---> STAT = (RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

087) "TermService" - Services Terminal Server
---> STAT = (RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\svchost -k DComLaunch
---> TYPE = SHARE_SERVICE

088) "Themes" - Thèmes
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

089) "TrkWks" - Client de suivi de lien distribué
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

090) "upnphost" - Hôte de périphérique universel Plug-and-Play
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\svchost.exe -k LocalService
---> TYPE = SHARE_SERVICE

091) "UPS" - Onduleur
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\ups.exe
---> TYPE = OWN_SERVICE

092) "usnjsvc" - Service Messenger Sharing Folders USN Journal Reader
---> STAT = (NOT RUNNING) Started manually
---> FILE = \C:\Program Files\MSN Messenger\usnsvc.exe\
---> TYPE = OWN_SERVICE

093) "VSS" - Cliché instantané de volume
---> STAT =

Répondre à Caroanais
Caroanais   22-08-2008 à 02:32:16
- 0 +

Le rapport est encore incomplet. Voici la suite :


094) "W32Time" - Horloge Windows
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

095) "WebClient" - WebClient
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k LocalService
---> TYPE = SHARE_SERVICE

096) "winmgmt" - Infrastructure de gestion Windows
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

097) "Winsock"
---> STAT = (RUNNING) Started manually
---> TYPE = ADAPTER

098) "WmdmPmSN" - Service de numéro de série du lecteur multimédia portable
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

099) "WmiApSrv" - Carte de performance WMI
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\wbem\wmiapsrv.exe
---> TYPE = OWN_SERVICE

100) "WMPNetworkSvc" - Service Partage réseau du Lecteur Windows Media
---> STAT = (NOT RUNNING) Started manually
---> FILE = \C:\Program Files\Windows Media Player\WMPNetwk.exe\
---> TYPE = OWN_SERVICE

101) "wscsvc" - Centre de sécurité
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

102) "wuauserv" - Mises à jour automatiques
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

103) "WudfSvc" - Windows Driver Foundation - User-mode Driver Framework
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
---> TYPE = SHARE_SERVICE

104) "WZCSVC" - Configuration automatique sans fil
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

105) "xmlprov" - Service d'approvisionnement réseau
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

===================== SUSPICIOUS FILES =====================
EXE and DLL files packed with runtime packers, found in: C:\; C:\WINDOWS\; C:\WINDOWS\system32\

C:\WINDOWS\daemon.dll --> is compressed with UPX

===================== HIJACKTHIS LOG =====================

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:29:24, on 2008-08-21
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Thomson\Lyra Jukebox\LyraHDTrayApp\LYRAHD2TrayApp.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe
C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\McAfee\Common Framework\UdaterUI.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\McAfee\Common Framework\McTray.exe
C:\Program Files\NDAS\System\ndasmgmt.exe
C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe
C:\Program Files\Olympus\DeviceDetector\DM1Service.exe
C:\Program Files\McAfee\Common Framework\FrameworkService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\NDAS\System\ndassvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Logitech\QuickCam10\COCIManager.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Documents and Settings\Caroline et Dominic\Bureau\sys1178.exe
C:\DOCUME~1\CAROLI~1\LOCALS~1\Temp\nsn24.tmp\runme.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://sympatico.msn.ca/defaultf.aspx
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://proxy.uqtr.ca/uqtr.pac
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [LyraHD2TrayApp] "C:\Program Files\Thomson\Lyra Jukebox\LyraHDTrayApp\LYRAHD2TrayApp.exe"
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide
O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe"
O4 - HKLM\..\Run: [mmtask] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe"
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\McAfee\Common Framework\UdaterUI.exe" /StartedFromRunKey
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Acrobat.lnk = ?
O4 - Global Startup: NDAS Device Management.lnk = C:\Program Files\NDAS\System\ndasmgmt.exe
O8 - Extra context menu item: Convertir en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir la cible du lien en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir la sélection en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la sélection en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convertir les liens sélectionnés en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Documents and Settings\Caroline et Dominic\Mes documents\PartyPoker\RunApp.exe
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Documents and Settings\Caroline et Dominic\Mes documents\PartyPoker\RunApp.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: http://www.suspectfile.com
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/ [...] hcImpl.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://carodom96.spaces.live.com// [...] nPUpld.cab
O16 - DPF: {F137B9BA-89EA-4B04-9C67-2074A9DF61FD} (Photo Upload Plugin Class) - http://walmart.pnimedia.com/upload [...] .0.10.cab?
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: DM1Service - OLYMPUS Corporation - C:\Program Files\Olympus\DeviceDetector\DM1Service.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe
O23 - Service: McAfee Framework Service (McAfeeFramework) - McAfee, Inc. - C:\Program Files\McAfee\Common Framework\FrameworkService.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NDAS Service (ndassvc) - XIMETA, Inc. - C:\Program Files\NDAS\System\ndassvc.exe
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe

--
End of file - 12538 bytes

==========================================
Scan completed in 1,7 minutes
End of report


~~~~~~~~~~~~~~~~~~~~~-----CREDITS-----~~~~~~~~~~~~~~~~~~~~~
SystemScan uses some freeware tools that remain property of their authors:

* SteelWerX Registry Console Tool, Who Am I (Bobby Flekman: www.xs4all.nl/~fstaal01) --> "Registry scan", "PC accounts "
* dumphive (Markus Stephany)--> "Registry scan"
* Listdlls (M.Russinovich, B.Cogswell: www.sysinternals.com) --> "Loaded modules"
* Catchme & MBR Rootkit detector (gmer: www.gmer.net) --> "Hidden objects", "Alternate Data Streams" & "Master Boot Record"
---> NOTE: SystemScan integrates "The Avenger" from Swandog46 (http://swandog46.geekstogo.com) to allow you to remove malwares found in this log

Thanks to all of them for their hard work

Répondre à Caroanais
Caroanais   22-08-2008 à 02:34:16
- 0 +

C'est complet! J'ai encore quelques questions pour vous :
Savez-vous comment ce virus a pu s'introduire dans mon ordinateur? Est-ce par courriel ou simplement en naviguant sur Internet? Est-ce que les outils que vous me proposés réparent aussi les fichiers de mon disque dur externe? Est-ce que je risque de perdre des fichiers? Devrais-je donc faire une copie de mes fichiers?
Merci!

Répondre à Caroanais
Egwene   22-08-2008 à 12:27:31
- 0 +

Re,

Peux-tu me poster la partie 58) à 94) et uniquement elle dans un nouveau message, car je ne la vois pas (bug forum).

Citation :

Savez-vous comment ce virus a pu s'introduire dans mon ordinateur? Est-ce par courriel ou simplement en naviguant sur Internet?



Clique sur le lien dans ma signature.

Citation :


Est-ce que les outils que vous me proposés réparent aussi les fichiers de mon disque dur externe?



Si tu le laisses brancher pendant nos manip', oui.

Citation :

Est-ce que je risque de perdre des fichiers?



Non.

Citation :

Devrais-je donc faire une copie de mes fichiers?



Il faut toujours avoir des sauvegardes.

;)

------------------------------ Prière de signaler si vous vous faites déjà aider sur un autre forum ou dans un autre topic.

Sécurité / Prévention
Répondre à Egwene
Caroanais   22-08-2008 à 15:35:38
- 0 +

Voici :
058) "GEARAspiWDM" - GEARAspiWDM
---> STAT = (RUNNING) Started manually
---> FILE = System32\Drivers\GEARAspiWDM.sys
---> TYPE = KERNEL_DRIVER

059) "Gpc" - Classificateur de paquets générique
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\msgpc.sys
---> TYPE = KERNEL_DRIVER

060) "hidusb" - Pilote de classe HID Microsoft
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\hidusb.sys
---> TYPE = KERNEL_DRIVER

061) "hpn"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

062) "HTTP" - HTTP
---> STAT = (RUNNING) Started manually
---> FILE = System32\Drivers\HTTP.sys
---> TYPE = KERNEL_DRIVER

063) "i2omgmt"
---> STAT = (NOT RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

064) "i2omp"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

065) "i8042prt"
---> STAT = (NOT RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

066) "Imapi" - Pilote de filtre de gravure CD
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\imapi.sys
---> TYPE = KERNEL_DRIVER

067) "ini910u"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

068) "IntelIde"
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\intelide.sys
---> TYPE = KERNEL_DRIVER

069) "intelppm" - Pilote de processeur Intel
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\intelppm.sys
---> TYPE = KERNEL_DRIVER

070) "Ip6Fw" - Pilote du pare-feu Windows IPv6
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\Ip6Fw.sys
---> TYPE = KERNEL_DRIVER

071) "IpFilterDriver" - Pilote de filtre de trafic IP
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\ipfltdrv.sys
---> TYPE = KERNEL_DRIVER

072) "IpInIp" - Pilote de tunnelage IP dans IP
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\ipinip.sys
---> TYPE = KERNEL_DRIVER

073) "IpNat" - Traducteur d'adresses réseau IP
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\ipnat.sys
---> TYPE = KERNEL_DRIVER

074) "IPSec" - Pilote IPSEC
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\ipsec.sys
---> TYPE = KERNEL_DRIVER

075) "IRENUM" - Service énumérateur IR
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\irenum.sys
---> TYPE = KERNEL_DRIVER

076) "isapnp" - Pilote de bus Plug-and-Play ISA/EISA
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\isapnp.sys
---> TYPE = KERNEL_DRIVER

077) "Kbdclass" - Pilote de la classe Clavier
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\kbdclass.sys
---> TYPE = KERNEL_DRIVER

078) "kbdhid" - Pilote HID de clavier
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\kbdhid.sys
---> TYPE = KERNEL_DRIVER

079) "kmixer" - Mélangeur audio Wave de noyau Microsoft
---> STAT = (RUNNING) Started manually
---> FILE = system32\drivers\kmixer.sys
---> TYPE = KERNEL_DRIVER

080) "KSecDD"
---> STAT = (RUNNING) Started by operating system loader
---> TYPE = KERNEL_DRIVER

081) "lbrtfdc"
---> STAT = (NOT RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

082) "lfsfilt" - Lean File Sharing
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\lfsfilt.sys
---> TYPE = KERNEL_DRIVER

083) "lpx" - LPX Protocol
---> STAT = (RUNNING) Started by operating system loader
---> FILE = system32\DRIVERS\lpx.sys
---> TYPE = KERNEL_DRIVER

084) "LVcKap" - Logitech AEC Driver
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\LVcKap.sys
---> TYPE = KERNEL_DRIVER

085) "LVMVDrv" - Logitech Machine Vision Engine Loader
---> STAT = (NOT RUNNING) Started manually
---> FILE = system32\DRIVERS\LVMVDrv.sys
---> TYPE = KERNEL_DRIVER

086) "LVPr2Mon" - Logitech LVPr2Mon Driver
---> STAT = (RUNNING) Started manually
---> FILE = system32\drivers\LVPr2Mon.sys
---> TYPE = KERNEL_DRIVER

087) "LVUSBSta" - Logitech USB Monitor Filter
---> STAT = (RUNNING) Started manually
---> FILE = system32\drivers\lvusbsta.sys
---> TYPE = KERNEL_DRIVER

088) "mnmdd"
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> TYPE = KERNEL_DRIVER

089) "Modem"
---> STAT = (NOT RUNNING) Started manually
---> TYPE = KERNEL_DRIVER

090) "Mouclass" - Pilote de la classe Souris
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\mouclass.sys
---> TYPE = KERNEL_DRIVER

091) "mouhid" - Pilote HID de souris
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\mouhid.sys
---> TYPE = KERNEL_DRIVER

092) "MountMgr"
---> STAT = (RUNNING) Started by operating system loader
---> TYPE = KERNEL_DRIVER

093) "mraid35x"
---> STAT = (NOT RUNNING) Disabled
---> TYPE = KERNEL_DRIVER

094) "MRxDAV" - Redirecteur client WebDav
---> STAT = (RUNNING) Started manually
---> FILE = system32\DRIVERS\mrxdav.sys
---> TYPE = FILE_SYSTEM_DRIVER

095) "MRxSmb" - MRXSMB
---> STAT = (RUNNING) Started by "IoInitSystem" function
---> FILE = system32\DRIVERS\mrxsmb.sys
---> TYPE = FILE_SYSTEM_DRIVER

ET voici encore :


058) "Nla" - NLA (Network Location Awareness)
---> STAT = (RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

059) "NtLmSsp" - Fournisseur de la prise en charge de sécurité LM NT
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\lsass.exe
---> TYPE = SHARE_SERVICE

060) "NtmsSvc" - Stockage amovible
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

061) "PACSPTISVR" - PACSPTISVR
---> STAT = (NOT RUNNING) Started manually
---> FILE = \C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe\
---> TYPE = OWN_SERVICE

062) "PlugPlay" - Plug-and-Play
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\services.exe
---> TYPE = SHARE_SERVICE

063) "PolicyAgent" - Services IPSEC
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\lsass.exe
---> TYPE = SHARE_SERVICE

064) "ProtectedStorage" - Emplacement protégé
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\lsass.exe
---> TYPE = SHARE_SERVICE

065) "RasAuto" - Gestionnaire de connexion automatique d'accès distant
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

066) "RasMan" - Gestionnaire de connexions d'accès distant
---> STAT = (RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

067) "RDSessMgr" - Gestionnaire de session d'aide sur le Bureau à distance
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\sessmgr.exe
---> TYPE = OWN_SERVICE

068) "RemoteAccess" - Routage et accès distant
---> STAT = (NOT RUNNING) Disabled
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

069) "RpcLocator" - Localisateur d'appels de procédure distante (RPC)
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\locator.exe
---> TYPE = OWN_SERVICE

070) "RpcSs" - Appel de procédure distante (RPC)
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost -k rpcss
---> TYPE = SHARE_SERVICE

071) "RSVP" - QoS RSVP
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\rsvp.exe
---> TYPE = OWN_SERVICE

072) "SamSs" - Gestionnaire de comptes de sécurité
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\lsass.exe
---> TYPE = SHARE_SERVICE

073) "SCardSvr" - Carte à puce
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\SCardSvr.exe
---> TYPE = SHARE_SERVICE

074) "Schedule" - Planificateur de tâches
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

075) "seclogon" - Connexion secondaire
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

076) "SENS" - Notification d'événement système
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

077) "SharedAccess" - Pare-feu Windows / Partage de connexion Internet
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

078) "ShellHWDetection" - Détection matériel noyau
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

079) "Spooler" - Spouleur d'impression
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\spoolsv.exe
---> TYPE = OWN_SERVICE

080) "SPTISRV" - Sony SPTI Service
---> STAT = (NOT RUNNING) Started manually
---> FILE = \C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe\
---> TYPE = OWN_SERVICE

081) "srservice" - Service de restauration système
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

082) "SSDPSRV" - Service de découvertes SSDP
---> STAT = (RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\svchost.exe -k LocalService
---> TYPE = SHARE_SERVICE

083) "stisvc" - Acquisition d'image Windows (WIA)
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k imgsvc
---> TYPE = SHARE_SERVICE

084) "SwPrv" - MS Software Shadow Copy Provider
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\dllhost.exe /Processid:{E260BC38-5DA1-4580-BA1C-4765A6E84242}
---> TYPE = OWN_SERVICE

085) "SysmonLog" - Journaux et alertes de performance
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\smlogsvc.exe
---> TYPE = OWN_SERVICE

086) "TapiSrv" - Téléphonie
---> STAT = (RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

087) "TermService" - Services Terminal Server
---> STAT = (RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\svchost -k DComLaunch
---> TYPE = SHARE_SERVICE

088) "Themes" - Thèmes
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

089) "TrkWks" - Client de suivi de lien distribué
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\system32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

090) "upnphost" - Hôte de périphérique universel Plug-and-Play
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\system32\svchost.exe -k LocalService
---> TYPE = SHARE_SERVICE

091) "UPS" - Onduleur
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\ups.exe
---> TYPE = OWN_SERVICE

092) "usnjsvc" - Service Messenger Sharing Folders USN Journal Reader
---> STAT = (NOT RUNNING) Started manually
---> FILE = \C:\Program Files\MSN Messenger\usnsvc.exe\
---> TYPE = OWN_SERVICE

093) "VSS" - Cliché instantané de volume
---> STAT = (NOT RUNNING) Started manually
---> FILE = C:\WINDOWS\System32\vssvc.exe
---> TYPE = OWN_SERVICE

094) "W32Time" - Horloge Windows
---> STAT = (RUNNING) Started automatically
---> FILE = C:\WINDOWS\System32\svchost.exe -k netsvcs
---> TYPE = SHARE_SERVICE

Répondre à Caroanais
Egwene   22-08-2008 à 18:40:12
- 0 +

Re,

Télécharge MalwareByte's Anti-Malware sur ton Bureau.
Installe-le en double-cliquant sur le fichier Download_mbam-setup.exe.

Une fois l'installation et la mise à jour effectuées, redémarre en mode sans échec.
AIDE : Redémarrer en mode sans échec

  • Exécute maintenant MalwareByte's Anti-Malware. Si cela n'est pas déjà fait, sélectionne "Exécuter un examen complet".
  • Afin de lancer la recherche, clic sur"Rechercher".
  • Une fois le scan terminé, une fenêtre s'ouvre, clic sur OK. Deux possibilités s'offrent à toi :

-- si le programme n'a rien trouvé, appuie sur OK. Un rapport va apparaître, ferme-le.
-- si des infections sont présentes, clic sur "Afficher les résultats" puis sur "Supprimer la sélection". Enregistre le rapport sur ton Bureau afin de le poster dans ta prochaine réponse.
REMARQUE : Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok.

AIDE : Tuto en images sur MBAM

;)

------------------------------ Prière de signaler si vous vous faites déjà aider sur un autre forum ou dans un autre topic.

Sécurité / Prévention
Répondre à Egwene
Caroanais   22-08-2008 à 19:10:09
- 0 +

Je ne trouve pas comment télécharger sur le site que vous me donnez en lien.

Répondre à Caroanais
Caroanais   22-08-2008 à 19:12:50
- 0 +

Ok, j'ai réussi. Je poursuis!

Répondre à Caroanais
Caroanais   22-08-2008 à 23:20:22
- 0 +

Bonjour,
Voici le rapport MalwareByte's Anti-Malware. Il ne m'a pas demandé de scanner mon disque dur externe et celui-ci est branché.

Malwarebytes' Anti-Malware 1.25
Version de la base de données: 1077
Windows 5.1.2600 Service Pack 2

17:15:59 2008-08-22
mbam-log-08-22-2008 (17-15-59).txt

Type de recherche: Examen complet (A:\|C:\|E:\|F:\|)
Eléments examinés: 149617
Temps écoulé: 2 hour(s), 22 minute(s), 59 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 3
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 12
Fichier(s) infecté(s): 10

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Security Tools (Trojan.Zlob) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\Control Panel\Desktop\wallpaper (Hijack.Wallpaper) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Control Panel\Desktop\originalwallpaper (Hijack.Wallpaper) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Control Panel\Desktop\convertedwallpaper (Hijack.Wallpaper) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\Program Files\rhcvuoj0erbg (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\Caroline et Dominic\Application Data\rhcvuoj0erbg (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\Caroline et Dominic\Application Data\rhcvuoj0erbg\Quarantine (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\Caroline et Dominic\Application Data\rhcvuoj0erbg\Quarantine\Autorun (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\Caroline et Dominic\Application Data\rhcvuoj0erbg\Quarantine\Autorun\HKCU (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\Caroline et Dominic\Application Data\rhcvuoj0erbg\Quarantine\Autorun\HKCU\RunOnce (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\Caroline et Dominic\Application Data\rhcvuoj0erbg\Quarantine\Autorun\HKLM (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\Caroline et Dominic\Application Data\rhcvuoj0erbg\Quarantine\Autorun\HKLM\RunOnce (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\Caroline et Dominic\Application Data\rhcvuoj0erbg\Quarantine\Autorun\StartMenuAllUsers (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\Caroline et Dominic\Application Data\rhcvuoj0erbg\Quarantine\Autorun\StartMenuCurrentUser (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\Caroline et Dominic\Application Data\rhcvuoj0erbg\Quarantine\BrowserObjects (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\Caroline et Dominic\Application Data\rhcvuoj0erbg\Quarantine\Packages (Rogue.Multiple) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Program Files\rhcvuoj0erbg\license.txt (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Program Files\rhcvuoj0erbg\MFC71.dll (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Program Files\rhcvuoj0erbg\MFC71ENU.DLL (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Program Files\rhcvuoj0erbg\msvcp71.dll (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Program Files\rhcvuoj0erbg\msvcr71.dll (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Program Files\rhcvuoj0erbg\rhcvuoj0erbg.exe (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Program Files\rhcvuoj0erbg\rhcvuoj0erbg.exe.local (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Program Files\rhcvuoj0erbg\Uninstall.exe (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\Caroline et Dominic\Application Data\Microsoft\Internet Explorer\Quick Launch\Antivirus XP 2008.lnk (Rogue.Antivirus2008) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\phcruoj0erbg.bmp (Trojan.FakeAlert) -> Quarantined and deleted successfully.

Répondre à Caroanais
Egwene   23-08-2008 à 01:03:37
- 0 +

Re,

Citation :

Voici le rapport MalwareByte's Anti-Malware. Il ne m'a pas demandé de scanner mon disque dur externe et celui-ci est branché.



Et bien fais-le ;)

Ensuite :

  • Fais un scan en ligne Kaspersky avec Internet Explorer :
  • Clique sur http://pictures.kaspersky.fr/bouton-scann1.jpg
  • Clique maintenant sur J'accepte.
  • Valide l'installation d'un ou de plusieurs ActiveX si c'est nécessaire.
  • Patiente pendant l'installation des Mises à jour.
  • Choisis par la suite l'analyse du Poste de travail
  • Sauvegarde puis colle le rapport généré en fin d'analyse.


AIDE : Tuto sur le scan en ligne

NOTE : Si tu reçois le message "La licence de Kaspersky On-line Scanner est périmée", va dans Ajout/Suppression de programmes puis désinstalle On-Line Scanner, reconnecte toi sur le site de Kaspersky pour retenter le scan en ligne.

;)

------------------------------ Prière de signaler si vous vous faites déjà aider sur un autre forum ou dans un autre topic.

Sécurité / Prévention
Répondre à Egwene
Caroanais   23-08-2008 à 02:19:19
- 0 +

Le message de l'antivirus n'est plus sur l'écran du bureau et l'icone a disparu de la barre des lancements rapides.

Message cité 1 fois
Répondre à Caroanais
Egwene   23-08-2008 à 12:37:30
- 0 +

Caroanais a écrit :

Le message de l'antivirus n'est plus sur l'écran du bureau et l'icone a disparu de la barre des lancements rapides.



Fais les manip' demandées stp :)

------------------------------ Prière de signaler si vous vous faites déjà aider sur un autre forum ou dans un autre topic.

Sécurité / Prévention
Répondre à Egwene
Caroanais   23-08-2008 à 20:11:59
- 0 +

En mode sans échec, MalwareByte's Anti-Malware ne détecte pas mon disque dur externe. J'ai donc fait le scan en mode normal. Je fais Kaspersky maintenant.

Voici le rapport MalwareByte's Anti-Malware du disque dur externe:
Malwarebytes' Anti-Malware 1.25
Version de la base de données: 1077
Windows 5.1.2600 Service Pack 2

14:02:24 2008-08-23
mbam-log-08-23-2008 (14-02-24).txt

Type de recherche: Examen complet (J:\|)
Eléments examinés: 58102
Temps écoulé: 25 minute(s), 15 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)

Répondre à Caroanais
Egwene   24-08-2008 à 18:35:25
- 0 +

Re,

Oki, j'attends le Kaspersky.

;)

------------------------------ Prière de signaler si vous vous faites déjà aider sur un autre forum ou dans un autre topic.

Sécurité / Prévention
Répondre à Egwene
Caroanais   24-08-2008 à 19:54:26
- 0 +

C,est bizarre, car il y a 24 heures je vous avais envoyé le rapport Kaspersky, mais il n'apparaît pas dans le forum. Pourtant, j'ai reçu une confirmation de mon message et je le voyais. Voici donc le rapport à nouveau.

<html>
<head>
<title>KASPERSKY ON-LINE SCANNER REPORT</title>
<meta http-equiv='Content-Type' content='text/html; charset=utf-8'>
</head>

<style>
.pagetitle { font-size:20px; color:#FFFFFF; font-family: Arial, Geneva, sans-serif; }
.text { font-size:11px; font-family: Arial, Geneva, sans-serif; }
TD { font-size:11px; font-family: Arial, Geneva, sans-serif; }
</style>

<body>
<table width='100%' height='110' border='0'>
<tr height='30' align='center' bgcolor='#005447'>
<td colspan='2' height='30' class='pagetitle'>
<b>KASPERSKY ON-LINE SCANNER REPORT</b>
</td>
</tr>
<tr height='70'>
<td colspan='2' height='70'>
Saturday, August 23, 2008 6:52:34 PM<br>
Système d'exploitation : Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)<br>
Kaspersky On-line Scanner version : 5.0.84.2<br>
Dernière mise à jour de la base antivirus Kaspersky : 23/08/2008<br>
Enregistrements dans la base antivirus Kaspersky : 1008901<br>
</td>
</tr>
<tr height='10'>
<td colspan='2' height='10'>
</td>
</tr>
</table>
<table width='100%' height='145' border='0'>
<tr height='20' bgcolor='#EFEBDE'>
<td colspan='2' height='20'><b>Paramètres d'analyse</b></td>
</tr>
<tr height='15'>
<td height='15' width='250'>Analyser avec la base antivirus suivante</td>
<td>standard</td>
</tr>
<tr height='15'>
<td height='15'>Analyser les archives</td>
<td>vrai</td>
</tr>
<tr height='15'>
<td height='15'>Analyser les bases de messagerie</td>
<td>vrai</td>
</tr>
<tr height='10'>
<td colspan='2' height='10'>
</td>
</tr>
<tr height='20' bgcolor='#EFEBDE'>
<td height='20'><b>Cible de l'analyse</b></td>
<td>Poste de travail</td>
</tr>
<tr height='20'>
<td colspan='2' height='20'>
A:\<br>
C:\<br>
E:\<br>
F:\<br>
J:\
</td>
</tr>
<tr height='10'>
<td colspan='2' height='10'>
</td>
</tr>
<tr height='20' bgcolor='#EFEBDE'>
<td colspan='2' height='20'><b>Statistiques de l'analyse</b></td>
</tr>
<tr height='15'>
<td height='15'>Total d'objets analysés</td>
<td>132063</td>
</tr>
<tr height='15'>
<td height='15'>Nombre de virus trouvés</td>
<td>6</td>
</tr>
<tr height='15'>
<td height='15'>Nombre d'objets infectés</td>
<td>48 / 0</td>
</tr>
<tr height='15'>
<td height='15'>Nombre d'objets suspects</td>
<td>0</td>
</tr>
<tr height='15'>
<td height='15'>Durée de l'analyse</td>
<td>01:38:07</td>
</tr>
</table>
<br>
<table width='100%' border='0'>
<tr height='20' bgcolor='#EFEBDE'>
<td height='20'><b>Nom de l'objet infecté</b></td>
<td width='200'><b>Nom du virus</b></td>
<td width='100'><b>Dernière action</b></td>
</tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\All Users\Application Data\McAfee\Common Framework\Db\Agent_CAROLINE.log </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\15a03ce.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\1f5212.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0080020.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0080033.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0081034.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0081050.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0081071.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0081109.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0081163.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0081194.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0081213.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0081259.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0082258.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0082269.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0082283.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0082306.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0082339.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0082409.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0082426.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0082478.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0082515.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0082581.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0082594.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0082622.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0082688.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0082720.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0082734.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0082747.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0082756.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0083510.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0083514.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0083515.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0088049.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\A0088050.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\hole surf platform.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\hxjynxdp.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\jar_cache18080.tmp.Vir.bac_a01500/BB.class </td>
<td>Infecté : Trojan.Java.ClassLoader.a </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\jar_cache18080.tmp.Vir.bac_a01500/VerifierBug.class </td>
<td>Infecté : Trojan.Java.ClassLoader.u </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\jar_cache18080.tmp.Vir.bac_a01500/Dummy.class </td>
<td>Infecté : Trojan.Java.Nocheat </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\jar_cache18080.tmp.Vir.bac_a01500 </td>
<td>ZIP: infecté - 3 </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\jar_cache18080.tmp.Vir.bac_a01500 </td>
<td>CryptFF.b: infecté - 3 </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\sta21.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\.housecall6.6\Quarantine\staF.exe.bac_a01500 </td>
<td>Infecté : Trojan.Win32.Obfuscated.en </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\Application Data\Adobe\Acrobat\7.0\caroline.err </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\Application Data\Adobe\Acrobat\7.0\organizer70\files.MYD </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\Application Data\Adobe\Acrobat\7.0\organizer70\files.MYI </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\Cookies\index.dat </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\Local Settings\Application Data\Identities\{474B1028-F1FD-4516-9CD9-AE5C0C03C148}\Microsoft\Outlook Express\Folders.dbx </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\Local Settings\Application Data\Identities\{474B1028-F1FD-4516-9CD9-AE5C0C03C148}\Microsoft\Outlook Express\Hotmail - Boîte de réception.dbx </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\Local Settings\Application Data\Identities\{474B1028-F1FD-4516-9CD9-AE5C0C03C148}\Microsoft\Outlook Express\Offline.dbx </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\Local Settings\Application Data\Identities\{474B1028-F1FD-4516-9CD9-AE5C0C03C148}\Microsoft\Outlook Express\Pop3uidl.dbx </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\Local Settings\Historique\History.IE5\index.dat </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\Local Settings\Temp\Acr914A.tmp </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\Local Settings\Temp\Adobelm_Cleanup.0001.dir.0003\~efe2.tmp </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\Local Settings\Temp\Adobelm_Cleanup.0001.dir.0004\~efe2.tmp </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\Local Settings\Temp\NAILogs\UpdaterUI_CAROLINE.log </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\Local Settings\Temporary Internet Files\Content.IE5\index.dat </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\ntuser.dat </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\Caroline et Dominic\ntuser.dat.LOG </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\LocalService\Cookies\index.dat </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\LocalService\NTUSER.DAT </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\LocalService\ntuser.dat.LOG </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\NetworkService\NTUSER.DAT </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Documents and Settings\NetworkService\ntuser.dat.LOG </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Program Files\Alwil Software\Avast4\DATA\aswResp.dat </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Program Files\Alwil Software\Avast4\DATA\Avast4.db </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Program Files\Alwil Software\Avast4\DATA\log\AshWebSv.ws </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Program Files\Alwil Software\Avast4\DATA\log\aswMaiSv.log </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Program Files\Alwil Software\Avast4\DATA\log\nshield.log </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Program Files\Alwil Software\Avast4\DATA\log\selfdef.log </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\Program Files\Alwil Software\Avast4\DATA\report\Protection résidente.txt </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\SDFix\backups\backups.zip/backups/lphcruoj0erbg.exe </td>
<td>Infecté : Trojan-Downloader.Win32.Small.abka </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\SDFix\backups\backups.zip </td>
<td>ZIP: infecté - 1 </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\System Volume Information\MountPointManagerRemoteDatabase </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\System Volume Information\_restore{2D63D8F0-C5BB-4B0B-97C6-67359D2C80F2}\RP1031\A0102198.exe </td>
<td>Infecté : Trojan-Downloader.Win32.Small.abka </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\System Volume Information\_restore{2D63D8F0-C5BB-4B0B-97C6-67359D2C80F2}\RP1031\A0102208.exe </td>
<td>Infecté : Trojan-Downloader.Win32.Small.abka </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\System Volume Information\_restore{2D63D8F0-C5BB-4B0B-97C6-67359D2C80F2}\RP1033\A0102334.exe </td>
<td>Infecté : Trojan.Win32.Agent.zpu </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\System Volume Information\_restore{2D63D8F0-C5BB-4B0B-97C6-67359D2C80F2}\RP1033\change.log </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\Debug\PASSWD.LOG </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\SchedLgU.Txt </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\SoftwareDistribution\ReportingEvents.log </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\Sti_Trace.log </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\CatRoot2\edb.log </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\CatRoot2\tmp.edb </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\Antivirus.Evt </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\AppEvent.Evt </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\default </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\default.LOG </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\Internet.evt </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\SAM </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\SAM.LOG </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\SecEvent.Evt </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\SECURITY </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\SECURITY.LOG </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\software </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\software.LOG </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\SysEvent.Evt </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\system </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\config\system.LOG </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\h323log.txt </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\LogFiles\WUDF\WUDFTrace.etl </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\Temp\Perflib_Perfdata_614.dat </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\Temp\_avast4_\Webshlock.txt </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\wiadebug.log </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\wiaservc.log </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td height='20'>C:\WINDOWS\WindowsUpdate.log </td>
<td>L'objet est verrouillé </td>
<td>ignoré </td>
</tr>
<tr><td colspan='3' height='1' bgcolor='#EFEBDE'></td></tr>
<tr height='20'>
<td colspan='3' height='20'><b>Analyse terminée.</b></td>
</tr>
</table>
</body>
</html>

Répondre à Caroanais
Egwene   25-08-2008 à 12:36:47
- 0 +

:hello: Bonjour,

Télécharge OTViewIt et sauvegarde-le sur ton bureau.

  • Ferme toutes les fenêtres et double-clique sur l'icône d'OTviewIT pour l'ouvrir.
  • Clique sur le bouton Run Scan et laisse le programme travailler sans l'interrompre.
  • Il va produire deux rapports, l'un nommé OTViewIt.txt, et un autre nommé Extras qui sera sauvegardé sur ton bureau. Merci de me poster les deux rapports dans ta prochaine réponse.
  • Un rapport par message ! Merci. ;)


Comment va le PC sinon ?

;)

------------------------------ Prière de signaler si vous vous faites déjà aider sur un autre forum ou dans un autre topic.

Sécurité / Prévention
Répondre à Egwene
Caroanais   30-08-2008 à 15:26:32
- 0 +

Bonjour,
J'étais absente pendant quelques jours, alors J'ai pris du temps à effectuer les manipulations. Mon pc se porte mieux. Il n'y a plus de traces de virus.

Voici le rapport OTViewIt.txt:
OTViewIt logfile created on: 2008-08-30 08:51:14 - Run 1
OTViewIt by OldTimer - Version 1.0.1.5 Folder = C:\Documents and Settings\Caroline et Dominic\Bureau
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000C0C | Country: Canada | Language: FRC | Date Format: yyyy-MM-dd

1022,07 Mb Total Physical Memory | 625,25 Mb Available Physical Memory | 61,18% Memory free
2,40 Gb Paging File | 2,11 Gb Available in Paging File | 87,96% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 148,93 Gb Total Space | 92,57 Gb Free Space | 62,16% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive J: | 465,75 Gb Total Space | 446,36 Gb Free Space | 95,84% Space Free | Partition Type: NTFS

Computer Name: CAROLINE
Current User Name: Caroline et Dominic
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Whitelist: On

===== Processes - Non-Microsoft Only =====

[08-25-2004 03:26 PM | 00,389,120 | ---- | M] () - C:\WINDOWS\system32\ati2evxx.exe
[07-19-2008 10:25 AM | 00,016,056 | ---- | M] (ALWIL Software) - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
[07-19-2008 10:38 AM | 00,147,640 | ---- | M] (ALWIL Software) - C:\Program Files\Alwil Software\Avast4\ashServ.exe
[12-06-2004 02:22 PM | 00,290,816 | ---- | M] (Thomson Inc.) - C:\Program Files\Thomson\Lyra Jukebox\LyraHDTrayApp\LYRAHD2TrayApp.exe
[01-17-2006 01:03 PM | 00,135,168 | ---- | M] (Musicmatch, Inc.) - C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
[09-24-2006 03:24 AM | 00,282,624 | ---- | M] (Apple Computer, Inc.) - C:\Program Files\QuickTime\qttask.exe
[04-23-2008 02:08 AM | 00,483,328 | ---- | M] (Adobe Systems Inc.) - C:\Program Files\Adobe\Acrobat 7.0\Distillr\acrotray.exe
[06-26-2006 09:46 AM | 00,497,200 | ---- | M] (Logitech Inc.) - C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe
[06-26-2006 10:34 AM | 00,614,960 | ---- | M] () - C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
[06-26-2006 10:33 AM | 00,243,248 | ---- | M] (Logitech Inc.) - C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe
[01-17-2006 01:03 PM | 00,053,248 | ---- | M] (Musicmatch Inc.) - C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe
[01-02-2008 09:15 PM | 00,103,712 | R--- | M] (MacroGaming LTD.) - C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
[07-19-2008 10:38 AM | 00,078,008 | ---- | M] (ALWIL Software) - C:\Program Files\Alwil Software\Avast4\ashDisp.exe
[06-26-2006 10:33 AM | 00,099,888 | ---- | M] (Logitech Inc.) - c:\Program Files\Fichiers communs\Logitech\LVMVFM\LVPrcSrv.exe
[06-29-2007 05:32 PM | 00,236,520 | ---- | M] (XIMETA, Inc.) - C:\Program Files\NDAS\System\ndasmgmt.exe
[03-01-2004 02:39 PM | 00,065,536 | ---- | M] (OLYMPUS Corporation) - C:\Program Files\Olympus\DeviceDetector\DM1Service.exe
[06-29-2007 05:32 PM | 00,236,520 | ---- | M] (XIMETA, Inc.) - C:\Program Files\NDAS\System\ndassvc.exe
[07-19-2008 10:38 AM | 00,250,040 | ---- | M] (ALWIL Software) - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
[07-23-2008 10:25 AM | 00,348,344 | ---- | M] (ALWIL Software) - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
[09-25-2006 02:54 PM | 00,451,136 | ---- | M] (Apple Computer, Inc.) - C:\Program Files\iPod\bin\iPodService.exe
[06-26-2006 10:34 AM | 00,166,448 | ---- | M] (Logitech Inc.) - C:\Program Files\Logitech\QuickCam10\COCIManager.exe

===== Win32 Services - Non-Microsoft Only =====

(Adobe LM Service) Adobe LM Service [On_Demand | Stopped]
[01-11-2007 12:06 PM | 00,069,632 | ---- | M] (Adobe Systems) - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe

(aswUpdSv) avast! iAVS4 Control Service [Auto | Running]
[07-19-2008 10:25 AM | 00,016,056 | ---- | M] (ALWIL Software) - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

(Ati HotKey Poller) Ati HotKey Poller [Auto | Running]
[08-25-2004 03:26 PM | 00,389,120 | ---- | M] () - C:\WINDOWS\system32\ati2evxx.exe

(ATI Smart) ATI Smart [Auto | Stopped]
[08-25-2004 02:52 PM | 00,516,096 | ---- | M] () - C:\WINDOWS\system32\ati2sgag.exe

(Autodesk Licensing Service) Autodesk Licensing Service [On_Demand | Stopped]
[05-03-2007 08:01 PM | 00,077,944 | ---- | M] (Autodesk) - C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe

(avast! Antivirus) avast! Antivirus [Auto | Running]
[07-19-2008 10:38 AM | 00,147,640 | ---- | M] (ALWIL Software) - C:\Program Files\Alwil Software\Avast4\ashServ.exe

(avast! Mail Scanner) avast! Mail Scanner [On_Demand | Running]
[07-19-2008 10:38 AM | 00,250,040 | ---- | M] (ALWIL Software) - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

(avast! Web Scanner) avast! Web Scanner [On_Demand | Running]
[07-23-2008 10:25 AM | 00,348,344 | ---- | M] (ALWIL Software) - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

(DM1Service) DM1Service [Auto | Running]
[03-01-2004 02:39 PM | 00,065,536 | ---- | M] (OLYMPUS Corporation) - C:\Program Files\Olympus\DeviceDetector\DM1Service.exe

(iPod Service) iPod Service [On_Demand | Running]
[09-25-2006 02:54 PM | 00,451,136 | ---- | M] (Apple Computer, Inc.) - C:\Program Files\iPod\bin\iPodService.exe

(LVPrcSrv) Logitech Process Monitor [Auto | Running]
[06-26-2006 10:33 AM | 00,099,888 | ---- | M] (Logitech Inc.) - c:\Program Files\Fichiers communs\Logitech\LVMVFM\LVPrcSrv.exe

(LVSrvLauncher) LVSrvLauncher [Auto | Stopped]
[06-26-2006 10:33 AM | 00,091,696 | ---- | M] (Logitech Inc.) - C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe

(ndassvc) NDAS Service [Auto | Running]
[06-29-2007 05:32 PM | 00,236,520 | ---- | M] (XIMETA, Inc.) - C:\Program Files\NDAS\System\ndassvc.exe

(PACSPTISVR) PACSPTISVR [On_Demand | Stopped]
[12-14-2006 01:46 AM | 00,057,344 | ---- | M] () - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe

===== Driver Services - Non-Microsoft Only =====

(Aavmker4) avast! Asynchronous Virus Monitor [System | Running]
[07-19-2008 10:32 AM | 00,026,944 | ---- | M] (ALWIL Software) - C:\WINDOWS\System32\drivers\aavmker4.sys

(aswFsBlk) aswFsBlk [Auto | Running]
[07-19-2008 10:37 AM | 00,020,560 | ---- | M] (ALWIL Software) - C:\WINDOWS\system32\drivers\aswFsBlk.sys

(aswMon2) avast! Standard Shield Support [Auto | Running]
[07-19-2008 10:37 AM | 00,094,416 | ---- | M] (ALWIL Software) - C:\WINDOWS\System32\drivers\aswmon2.sys

(aswRdr) aswRdr [On_Demand | Running]
[07-19-2008 10:33 AM | 00,023,152 | ---- | M] (ALWIL Software) - C:\WINDOWS\System32\drivers\aswRdr.sys

(aswSP) avast! Self Protection [System | Running]
[07-19-2008 10:35 AM | 00,078,416 | ---- | M] (ALWIL Software) - C:\WINDOWS\System32\drivers\aswSP.sys

(aswTdi) avast! Network Shield Support [System | Running]
[07-19-2008 10:32 AM | 00,042,912 | ---- | M] (ALWIL Software) - C:\WINDOWS\System32\drivers\aswTdi.sys

(catchme) catchme [On_Demand | Stopped]
File not found - C:\DOCUME~1\CAROLI~1\LOCALS~1\Temp\catchme.sys

(DSSUSB1) DSSUSB1 Device [On_Demand | Stopped]
[01-29-2001 02:32 PM | 00,039,071 | ---- | M] (OLYMPUS OPTICAL CO.,LTD.) - C:\WINDOWS\system32\drivers\DSSUSB1.SYS

(DSSUSBF) DSSUSBF Device [On_Demand | Stopped]
[01-30-2001 05:34 PM | 00,025,381 | ---- | M] (OLYMPUS OPTICAL CO.,LTD.) - C:\WINDOWS\system32\drivers\DSSUSBF.sys

(E100B) Intel(R) PRO Network Connection Driver [On_Demand | Running]
[10-14-2004 04:30 PM | 00,155,648 | ---- | M] (Intel Corporation) - C:\WINDOWS\system32\drivers\e100b325.sys

(lfsfilt) Lean File Sharing [Boot | Running]
[06-29-2007 05:32 PM | 00,254,440 | ---- | M] (XIMETA, Inc.) - C:\WINDOWS\system32\drivers\lfsfilt.sys

(lpx) LPX Protocol [Boot | Running]
[06-29-2007 05:32 PM | 00,062,056 | ---- | M] (XIMETA, Inc.) - C:\WINDOWS\system32\drivers\lpx.sys

(LVcKap) Logitech AEC Driver [On_Demand | Running]
[06-26-2006 10:33 AM | 01,587,632 | ---- | M] (Logitech Inc.) - C:\WINDOWS\system32\drivers\Lvckap.sys

(LVMVDrv) Logitech Machine Vision Engine Loader [On_Demand | Stopped]
[06-26-2006 10:33 AM | 01,952,816 | ---- | M] (Logitech Inc.) - C:\WINDOWS\system32\drivers\LVMVdrv.sys

(LVPr2Mon) Logitech LVPr2Mon Driver [On_Demand | Running]
[06-26-2006 10:33 AM | 00,023,472 | ---- | M] () - C:\WINDOWS\system32\drivers\LVPr2Mon.sys

(LVUSBSta) Logitech USB Monitor Filter [On_Demand | Running]
[06-22-2006 06:29 PM | 00,038,960 | R--- | M] (Logitech Inc.) - C:\WINDOWS\system32\drivers\LVUSBSta.sys

(ndasbus) NDAS Bus Driver [On_Demand | Running]
[06-29-2007 05:32 PM | 00,075,880 | ---- | M] (XIMETA, Inc.) - C:\WINDOWS\system32\drivers\ndasbus.sys

(ndasfat) NDAS FAT [System | Running]
[06-29-2007 05:32 PM | 00,372,584 | ---- | M] (XIMETA, Inc.) - C:\WINDOWS\system32\drivers\ndasfat.sys

(ndasscsi) NDAS SCSI Miniport Driver [On_Demand | Running]
[06-29-2007 05:32 PM | 00,187,368 | ---- | M] (XIMETA, Inc.) - C:\WINDOWS\system32\drivers\ndasscsi.sys

(pepifilter) Volume Adapter [On_Demand | Running]
[06-22-2006 06:29 PM | 00,012,080 | R--- | M] (Logitech Inc.) - C:\WINDOWS\system32\drivers\lv302af.sys

(PID_08A0) Logitech QuickCam IM(PID_08A0) [On_Demand | Running]
[06-22-2006 06:29 PM | 00,720,176 | R--- | M] (Logitech Inc.) - C:\WINDOWS\system32\drivers\LV302AV.SYS

(senfilt) senfilt [On_Demand | Running]
[09-17-2004 12:02 PM | 00,732,928 | ---- | M] (Creative Technology Ltd.) - C:\WINDOWS\system32\drivers\senfilt.sys

(WmBEnum) Logitech Virtual Bus Enumerator Driver [On_Demand | Running]
[03-25-2003 05:37 AM | 00,010,144 | ---- | M] (Logitech Inc.) - C:\WINDOWS\system32\drivers\WmBEnum.sys

(WmFilter) Logitech WingMan HID Filter Driver [On_Demand | Stopped]
[03-25-2003 05:37 AM | 00,021,216 | ---- | M] (Logitech Inc.) - C:\WINDOWS\system32\drivers\WmFilter.sys

(WmVirHid) Logitech Virtual Hid Device Driver [On_Demand | Stopped]
[03-25-2003 05:37 AM | 00,005,728 | ---- | M] (Logitech Inc.) - C:\WINDOWS\system32\drivers\WmVirHid.sys

(WmXlCore) Logitech WingMan Translation Layer Driver [On_Demand | Running]
[03-25-2003 05:37 AM | 00,040,256 | ---- | M] (Logitech Inc.) - C:\WINDOWS\system32\drivers\WmXlCore.sys

========== Run Keys ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Acrobat Assistant 7.0" = "C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe" [04-23-2008 02:08 AM | 00,483,328 | ---- | M] (Adobe Systems Inc.)
"Adobe Photo Downloader" = "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe" [06-23-2005 08:33 PM | 00,057,344 | ---- | M] (Adobe Systems Incorporated)
"ATIPTA" = C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [08-25-2004 02:52 PM | 00,339,968 | ---- | M] (ATI Technologies, Inc.)
"avast!" = C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [07-19-2008 10:38 AM | 00,078,008 | ---- | M] (ALWIL Software)
"dla" = C:\WINDOWS\system32\dla\tfswctrl.exe [08-13-2004 02:05 AM | 00,122,939 | ---- | M] (Sonic Solutions)
"DVDLauncher" = "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe" [10-12-2004 05:54 PM | 00,057,344 | ---- | M] (CyberLink Corp.)
"iTunesHelper" = "C:\Program Files\iTunes\iTunesHelper.exe" [09-25-2006 02:54 PM | 00,229,952 | ---- | M] (Apple Computer, Inc.)
"LogitechCommunicationsManager" = "C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe" [06-26-2006 09:46 AM | 00,497,200 | ---- | M] (Logitech Inc.)
"LogitechQuickCamRibbon" = "C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide [06-26-2006 10:34 AM | 00,614,960 | ---- | M] ()
"LVCOMSX" = "C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe" [06-26-2006 10:33 AM | 00,243,248 | ---- | M] (Logitech Inc.)
"LyraHD2TrayApp" = "C:\Program Files\Thomson\Lyra Jukebox\LyraHDTrayApp\LYRAHD2TrayApp.exe" [12-06-2004 02:22 PM | 00,290,816 | ---- | M] (Thomson Inc.)
"McAfeeUpdaterUI" = "C:\Program Files\McAfee\Common Framework\UdaterUI.exe" /StartedFromRunKey [12-19-2006 11:27 AM | 00,136,768 | ---- | M] (McAfee, Inc.)
"mmtask" = "C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe" [01-17-2006 01:03 PM | 00,053,248 | ---- | M] (Musicmatch Inc.)
"MMTray" = "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe" [01-17-2006 01:03 PM | 00,135,168 | ---- | M] (Musicmatch, Inc.)
"QuickTime Task" = "C:\Program Files\QuickTime\qttask.exe" -atboottime [09-24-2006 03:24 AM | 00,282,624 | ---- | M] (Apple Computer, Inc.)
"RealTray" = C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER [07-09-2007 02:32 PM | 00,020,480 | ---- | M] (RealNetworks, Inc.)
"SoundMAXPnP" = C:\Program Files\Analog Devices\Core\smax4pnp.exe [10-14-2004 05:42 PM | 01,404,928 | ---- | M] (Analog Devices, Inc.)
"SunJavaUpdateSched" = "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" [06-10-2008 04:27 AM | 00,144,784 | ---- | M] (Sun Microsystems, Inc.)
"SweetIM" = C:\Program Files\Macrogaming\SweetIM\SweetIM.exe [01-02-2008 09:15 PM | 00,103,712 | R--- | M] (MacroGaming LTD.)
"UpdateManager" = "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r [01-07-2004 02:01 AM | 00,110,592 | ---- | M] (Sonic Solutions)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"load" = Reg Error: Value load does not exist or could not be read.
"run" = Reg Error: Value run does not exist or could not be read.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SweetIM" = C:\Program Files\Macrogaming\SweetIM\SweetIM.exe [01-02-2008 09:15 PM | 00,103,712 | R--- | M] (MacroGaming LTD.)
"swg" = C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [08-23-2007 11:23 AM | 00,068,856 | ---- | M] (Google Inc.)
"WebCamRT.exe" = File not found

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"load" =
"run" = Reg Error: Value run does not exist or could not be read.

========== Startup Folders ==========

[All Users Startup Folder - C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage]
[05-27-2008 12:09 PM | 00,025,214 | R--- | M] () - C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide d'Adobe Acrobat.lnk = C:\WINDOWS\Installer\{AC76BA86-1033-F400-7760-000000000002}\SC_Acrobat.exe
[06-29-2007 05:32 PM | 00,236,520 | ---- | M] (XIMETA, Inc.) - C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\NDAS Device Management.lnk = C:\Program Files\NDAS\System\ndasmgmt.exe

[Caroline et Dominic Startup Folder - C:\Documents and Settings\Caroline et Dominic\Menu Démarrer\Programmes\Démarrage]

========== BHO's ==========

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
HKLM CLSID: (Adobe PDF Reader Link Helper) - [12-18-2006 05:16 AM | 00,059,032 | ---- | M] (Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
HKLM CLSID: (AVG Safe Search) - File not found C:\Program Files\AVG\AVG8\avgssie.dll

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}]
HKLM CLSID: (DriveLetterAccess) - [08-13-2004 02:05 AM | 00,118,842 | ---- | M] (Sonic Solutions) C:\WINDOWS\system32\dla\tfswshx.dll

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
HKLM CLSID: (SSVHelper Class) - [06-10-2008 04:27 AM | 00,509,328 | ---- | M] (Sun Microsystems, Inc.) C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
HKLM CLSID: (Reg Error: Key does not exist or could not be opened.) - File not found Reg Error: Key does not exist or could not be opened.

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
HKLM CLSID: (Google Toolbar Helper) - [08-15-2007 12:04 PM | 02,436,160 | R--- | M] (Google Inc.) c:\Program Files\Google\GoogleToolbar2.dll

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
HKLM CLSID: (Adobe PDF Conversion Toolbar Helper) - [12-18-2006 05:18 AM | 00,231,160 | ---- | M] (Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
HKLM CLSID: (Google Toolbar Notifier BHO) - [08-23-2007 11:23 AM | 00,325,048 | ---- | M] (Google Inc.) C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll

========== Toolbars ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar]
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}"
HKLM CLSID: (&Google) - [08-15-2007 12:04 PM | 02,436,160 | R--- | M] (Google Inc.) c:\Program Files\Google\GoogleToolbar2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar]
"{47833539-D0C5-4125-9FA8-0819E2EAAC93}"
HKLM CLSID: (Adobe PDF) - [12-18-2006 05:18 AM | 00,231,160 | ---- | M] (Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]

"{0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7}"
HKLM CLSID: (Reg Error: Key does not exist or could not be opened.) - File not found Reg Error: Key does not exist or could not be opened.

"{2318C2B1-4965-11D4-9B18-009027A5CD4F}"
HKLM CLSID: (&Google) - [08-15-2007 12:04 PM | 02,436,160 | R--- | M] (Google Inc.) c:\Program Files\Google\GoogleToolbar2.dll

"{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6}"
HKLM CLSID: (Reg Error: Key does not exist or could not be opened.) - File not found Reg Error: Key does not exist or could not be opened.

"{47833539-D0C5-4125-9FA8-0819E2EAAC93}"
HKLM CLSID: (Adobe PDF) - [12-18-2006 05:18 AM | 00,231,160 | ---- | M] (Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll

"{A057A204-BACC-4D26-9990-79A187E2698E}"
HKLM CLSID: (Reg Error: Key does not exist or could not be opened.) - File not found Reg Error: Key does not exist or could not be opened.

"{BC4FFE41-DE9F-46FA-B455-AAD49B9F9938}"
HKLM CLSID: (Reg Error: Key does not exist or could not be opened.) - File not found Reg Error: Key does not exist or could not be opened.

========== AppInit_Dlls ==========

========== SSODL Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
"CDBurn" = {fbeb8a05-beee-4442-804e-409d6c4515e9}

========== Shell Execute Hooks ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{EDB0E980-90BD-11D4-8599-0008C7D3B6F8}" = Eudora's Shell Extension
HKLM CLSID: (Eudora's Shell Extension) - File not found C:\Program Files\Qualcomm\Eudora\EuShlExt.dll

========== HKLM Security Providers ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\\SecurityProviders]
"msapsspc.dll schannel.dll digest.dll msnsspc.dll" - File not found

========== HKLM Winlogon Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell]
"Explorer.exe" - [06-13-2007 09:22 AM | 01,037,312 | ---- | M] (Microsoft Corporation) C:\WINDOWS\explorer.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UserInit]
"C:\WINDOWS\system32\userinit.exe" - [08-19-2004 04:09 PM | 00,025,088 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\userinit.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UIHost]
"logonui.exe" - [08-19-2004 03:59 PM | 00,515,584 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\logonui.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet]
"rundll32 shell32" - [10-25-2007 12:43 PM | 08,516,608 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
"Control_RunDLL "sysdm.cpl"" - [08-19-2004 04:08 PM | 00,305,152 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\sysdm.cpl

========== User's Winlogon Settings ==========

========== Winlogon Notify Settings ==========

========== Policies ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]
"NoCDBurning" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]
"dontdisplaylastusername" = 0
"legalnoticecaption" =
"legalnoticetext" =
"shutdownwithoutlogon" = 1
"undockwithoutlogon" = 1

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]
"NoDriveTypeAutoRun" = 91 00 00 00 [binary data]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]

========== Lsa Authentication Packages ==========

========== Lsa Security Packages ==========

========== Desktop Components ==========

========== Safeboot Options ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot]
"AlternateShell" = cmd.exe

========== Disabled MsConfig Items ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\services]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Logitech Desktop Messenger.lnk]
"path" = C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech Desktop Messenger.lnk File not found
"backup" = C:\WINDOWS\pss\Logitech Desktop Messenger.lnk File not found
"location" = Common Startup
"command" = C:\PROGRA~1\Logitech\DESKTO~1\8876480\Program\LDMConf.exe File not found
"item" = Logitech Desktop Messenger

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]
"key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run
"item" =
"hkey" = HKLM
"command" =
"inimapping" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LDM]
"key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run
"item" = BackWeb-8876480
"hkey" = HKCU
"command" = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe File not found
"inimapping" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LogitechGalleryRepair]
"key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run
"item" = ISStart
"hkey" = HKLM
"command" = C:\Program Files\Logitech\ImageStudio\ISStart.exe File not found
"inimapping" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LogitechImageStudioTray]
"key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run
"item" = LogiTray
"hkey" = HKLM
"command" = C:\Program Files\Logitech\ImageStudio\LogiTray.exe File not found
"inimapping" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LogitechSoftwareUpdate]
"key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run
"item" = ManifestEngine
"hkey" = HKCU
"command" = C:\Program Files\Logitech\Video\ManifestEngine.exe File not found
"inimapping" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LogitechVideoRepair]
"key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run
"item" = ISStart
"hkey" = HKLM
"command" = C:\Program Files\Logitech\Video\ISStart.exe File not found
"inimapping" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LogitechVideoTray]
"key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run
"item" = LogiTray
"hkey" = HKLM
"command" = C:\Program Files\Logitech\Video\LogiTray.exe File not found
"inimapping" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LVCOMS]
"key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run
"item" = LVCOMS
"hkey" = HKLM
"command" = C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVComS.exe [12-10-2002 05:54 PM | 00,127,022 | ---- | M] (Logitech Inc.)
"inimapping" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LVCOMSX]
"key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run
"item" = C:\WINDOWS\system32\LVCOMSX.EXE [07-19-2005 05:32 PM | 00,221,184 | ---- | M] (Logitech Inc.)
"hkey" = HKLM
"command" = C:\WINDOWS\system32\LVCOMSX.EXE [07-19-2005 05:32 PM | 00,221,184 | ---- | M] (Logitech Inc.)
"inimapping" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\state]
"system.ini" = 0
"win.ini" = 0
"bootini" = 0
"services" = 0
"startup" = 2

========== CDRom AutoRun Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom]
"AutoRun" = 1

========== Autorun Files on Drives ==========

AUTOEXEC.BAT []
[03-11-2005 10:00 PM | 00,000,000 | ---- | M] () C:\AUTOEXEC.BAT [ NTFS ]

========== MountPoints2 ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1148abcc-9b35-11d9-a11b-001111cfb952}\Shell]
"" = None

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1bd1bd9a-4af5-11dd-81ac-001111cfb952}\Shell]
"" = None

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{81940cf5-9e68-11db-a458-001111cfb952}\Shell]
"" = None

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{936388de-39f8-11dc-a587-001111cfb952}\Shell]
"" = None

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{936388df-39f8-11dc-a587-001111cfb952}\Shell]
"" = None

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9885c87e-acc0-11dc-a627-001111cfb952}\Shell]
"" = None

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9c559dba-02b8-11db-a36a-001111cfb952}\Shell]
"" = None

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b569f68a-6afc-11dd-81e7-001111cfb952}\Shell]
"" = None

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d59551de-3542-11dc-a578-001111cfb952}\Shell]
"" = None

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d59551df-3542-11dc-a578-001111cfb952}\Shell]
"" = None

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d59551e0-3542-11dc-a578-001111cfb952}\Shell]
"" = None

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d59551e1-3542-11dc-a578-001111cfb952}\Shell]
"" = None

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f0f6459e-4ae2-11dd-81aa-001111cfb952}\Shell]
"" = None

========== DNS Name Servers ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\{015009BB-AFE0-42D2-B7C1-FCE002F42339}]
Servers: | Description:

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\{5745AB68-B06A-45C3-93EA-62CEAA1FBAED}]
Servers: | Description: Intel(R) PRO/100 VE Network Connection

========== Hosts File ==========

HOSTS File = (686 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
First 25 entries...
127.0.0.1 localhost



========== Files/Folders - Created Within 30 days ==========

[08-07-2008 11:31 PM | 00,000,244 | -H-- | C] () - C:\sqmnoopt15.sqm
[08-07-2008 11:31 PM | 00,000,268 | -H-- | C] () - C:\sqmdata15.sqm
[08-09-2008 01:45 PM | 00,000,232 | -H-- | C] () - C:\sqmdata16.sqm
[08-09-2008 01:45 PM | 00,000,244 | -H-- | C] () - C:\sqmnoopt16.sqm
[08-15-2008 03:10 PM | 00,000,232 | -H-- | C] () - C:\sqmdata17.sqm
[08-15-2008 03:10 PM | 00,000,244 | -H-- | C] () - C:\sqmnoopt17.sqm
[08-15-2008 03:11 PM | 00,000,232 | -H-- | C] () - C:\sqmdata18.sqm
[08-15-2008 03:11 PM | 00,000,244 | -H-- | C] () - C:\sqmnoopt18.sqm
[08-17-2008 09:24 AM | 00,000,232 | -H-- | C] () - C:\sqmdata19.sqm
[08-17-2008 09:24 AM | 00,000,244 | -H-- | C] () - C:\sqmnoopt19.sqm
[08-19-2008 06:24 PM | ---D | C] - C:\SDFix
[10 C:\WINDOWS\System32\*.tmp files]
[08-23-2008 02:04 PM | ---D | C] - C:\WINDOWS\System32\Kaspersky Lab
[4 C:\WINDOWS\*.tmp files]
[08-19-2008 06:29 PM | ---D | C] - C:\WINDOWS\ERUNT
[08-22-2008 01:13 PM | ---D | C] - C:\Documents and Settings\All Users\Application Data\Malwarebytes
[08-22-2008 01:13 PM | ---D | C] - C:\Documents and Settings\Caroline et Dominic\Application Data\Malwarebytes
[08-22-2008 01:13 PM | 00,000,696 | ---- | C] () - C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk
[08-11-2008 03:15 PM | 00,002,022 | ---- | C] () - C:\Documents and Settings\Caroline et Dominic\Bureau\Mémoire-BrunoRoy.eml
[08-18-2008 08:35 PM | 00,001,734 | ---- | C] () - C:\Documents and Settings\Caroline et Dominic\Bureau\HijackThis.lnk
[08-19-2008 06:24 PM | 01,463,521 | ---- | C] () - C:\Documents and Settings\Caroline et Dominic\Bureau\SDFix.exe
[08-20-2008 08:19 PM | 00,708,333 | ---- | C] () - C:\Documents and Settings\Caroline et Dominic\Bureau\sys1178.exe
[08-23-2008 06:52 PM | 00,072,214 | ---- | C] () - C:\Documents and Settings\Caroline et Dominic\Bureau\Kaspersky.html
[08-18-2008 08:35 PM | ---D | C] - C:\Program Files\Trend Micro
[08-22-2008 01:13 PM | ---D | C] - C:\Program Files\Malwarebytes' Anti-Malware

========== Files/Folders - Modified Within 30 days ==========

[08-07-2008 11:31 PM | 00,000,244 | -H-- | M] () - C:\sqmnoopt15.sqm
[08-07-2008 11:31 PM | 00,000,268 | -H-- | M] () - C:\sqmdata15.sqm
[08-09-2008 01:45 PM | 00,000,232 | -H-- | M] () - C:\sqmdata16.sqm
[08-09-2008 01:45 PM | 00,000,244 | -H-- | M] () - C:\sqmnoopt16.sqm
[08-15-2008 03:10 PM | 00,000,232 | -H-- | M] () - C:\sqmdata17.sqm
[08-15-2008 03:10 PM | 00,000,244 | -H-- | M] () - C:\sqmnoopt17.sqm
[08-15-2008 03:11 PM | 00,000,232 | -H-- | M] () - C:\sqmdata18.sqm
[08-15-2008 03:11 PM | 00,000,244 | -H-- | M] () - C:\sqmnoopt18.sqm
[08-17-2008 09:24 AM | 00,000,232 | -H-- | M] () - C:\sqmdata19.sqm
[08-17-2008 09:24 AM | 00,000,244 | -H-- | M] () - C:\sqmnoopt19.sqm
[08-17-2008 09:25 AM | 00,000,232 | -H-- | M] () - C:\sqmdata00.sqm
[08-17-2008 09:25 AM | 00,000,244 | -H-- | M] () - C:\sqmnoopt00.sqm
[08-17-2008 09:29 AM | 00,000,232 | -H-- | M] () - C:\sqmdata01.sqm
[08-17-2008 09:29 AM | 00,000,244 | -H-- | M] () - C:\sqmnoopt01.sqm
[08-19-2008 06:32 PM | 00,000,686 | ---- | M] () - C:\WINDOWS\System32\drivers\etc\HOSTS
[10 C:\WINDOWS\System32\*.tmp files]
[08-04-2008 08:16 PM | 00,003,121 | ---- | M] () - C:\WINDOWS\System32\CONFIG.NT
[08-30-2008 08:34 AM | 00,002,206 | ---- | M] () - C:\WINDOWS\System32\wpa.dbl
[4 C:\WINDOWS\*.tmp files]
[08-14-2008 09:46 PM | 00,001,374 | ---- | M] () - C:\WINDOWS\imsins.BAK
[08-30-2008 08:34 AM | 00,002,048 | --S- | M] () - C:\WINDOWS\bootstat.dat
[08-30-2008 08:50 AM | 00,000,521 | ---- | M] () - C:\WINDOWS\dellstat.ini
[08-30-2008 08:34 AM | 00,000,006 | -H-- | M] () - C:\WINDOWS\tasks\SA.DAT
[08-16-2008 09:41 PM | 00,238,592 | ---- | M] () - C:\Documents and Settings\Caroline et Dominic\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[08-18-2008 10:09 PM | 02,111,710 | -H-- | M] () - C:\Documents and Settings\Caroline et Dominic\Local Settings\Application Data\IconCache.db
[08-22-2008 01:13 PM | 00,000,696 | ---- | M] () - C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk
[08-11-2008 03:15 PM | 00,002,022 | ---- | M] () - C:\Documents and Settings\Caroline et Dominic\Bureau\Mémoire-BrunoRoy.eml
[08-16-2008 09:10 PM | 00,083,968 | -HS- | M] () - C:\Documents and Settings\Caroline et Dominic\Bureau\Thumbs.db
@Alternate Data Stream - 0 bytes -> %UserProfile%\Bureau\Thumbs.db:encryptable
[08-18-2008 08:35 PM | 00,001,734 | ---- | M] () - C:\Documents and Settings\Caroline et Dominic\Bureau\HijackThis.lnk
[08-19-2008 06:24 PM | 01,463,521 | ---- | M] () - C:\Documents and Settings\Caroline et Dominic\Bureau\SDFix.exe
[08-20-2008 08:19 PM | 00,708,333 | ---- | M] () - C:\Documents and Settings\Caroline et Dominic\Bureau\sys1178.exe
[08-23-2008 06:52 PM | 00,072,214 | ---- | M] () - C:\Documents and Settings\Caroline et Dominic\Bureau\Kaspersky.html
[08-30-2008 08:34 AM | 00,002,335 | ---- | M] () - C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide d'Adobe Acrobat.lnk

< End of report >

Répondre à Caroanais
Caroanais   30-08-2008 à 15:27:30
- 0 +

Voici le rapport Extras.txt:
OTViewIt Extras logfile created on: 2008-08-30 08:51:23 - Run 1
OTViewIt by OldTimer - Version 1.0.1.5 Folder = C:\Documents and Settings\Caroline et Dominic\Bureau
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000C0C | Country: Canada | Language: FRC | Date Format: yyyy-MM-dd

1022,07 Mb Total Physical Memory | 625,25 Mb Available Physical Memory | 61,18% Memory free
2,40 Gb Paging File | 2,11 Gb Available in Paging File | 87,96% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 148,93 Gb Total Space | 92,57 Gb Free Space | 62,16% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive J: | 465,75 Gb Total Space | 446,36 Gb Free Space | 95,84% Space Free | Partition Type: NTFS

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019
[08-19-2004 04:05 PM | 00,142,336 | ---- | M] (Microsoft Corporation)

"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000
[10-10-2006 08:44 AM | 00,557,568 | ---- | M] (Microsoft Corporation)

"C:\Program Files\MSN Messenger\msnmsgr.exe" = C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1
[01-19-2007 01:55 PM | 05,674,352 | ---- | M] (Microsoft Corporation)

"C:\Program Files\MSN Messenger\livecall.exe" = C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)
[01-04-2007 05:10 PM | 00,297,752 | ---- | M] (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019
[08-19-2004 04:05 PM | 00,142,336 | ---- | M] (Microsoft Corporation)

"C:\Program Files\Messenger\msmsgs.exe" = C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger
[10-13-2004 12:24 PM | 01,694,208 | ---- | M] (Microsoft Corporation)

"C:\Program Files\EA GAMES\MOHDA\MOHAA.exe" = C:\Program Files\EA GAMES\MOHDA\MOHAA.exe:*:Enabled:Medal of Honor Allied Assault(tm)
[04-20-2002 02:17 AM | 02,870,026 | ---- | M] (Electronic Arts Inc.)

"C:\Program Files\EA GAMES\MOHDA\moh_spearhead.exe" = C:\Program Files\EA GAMES\MOHDA\moh_spearhead.exe:*:Disabled:Medal of Honor Allied Assault(tm) Spearhead
File not found

"C:\StubInstaller.exe" = C:\StubInstaller.exe:*:Enabled:LimeWire swarmed installer
[10-31-2005 11:56 AM | 00,700,416 | ---- | M] (LimeWire)

"C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire
[06-05-2008 02:52 PM | 00,147,456 | ---- | M] (Lime Wire, LLC)

"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes
[09-25-2006 02:54 PM | 15,262,784 | ---- | M] (Apple Computer, Inc.)

"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000
[10-10-2006 08:44 AM | 00,557,568 | ---- | M] (Microsoft Corporation)

"C:\Program Files\MSN Messenger\msnmsgr.exe" = C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1
[01-19-2007 01:55 PM | 05,674,352 | ---- | M] (Microsoft Corporation)

"C:\Program Files\MSN Messenger\livecall.exe" = C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)
[01-04-2007 05:10 PM | 00,297,752 | ---- | M] (Microsoft Corporation)

"C:\Program Files\NetMeeting\conf.exe" = C:\Program Files\NetMeeting\conf.exe:*:Enabled:Windows® NetMeeting®
[08-19-2004 03:57 PM | 01,044,480 | ---- | M] (Microsoft Corporation)

"C:\Program Files\EA GAMES\Battlefield 1942\BF1942.exe" = C:\Program Files\EA GAMES\Battlefield 1942\BF1942.exe:*:Enabled:BF1942
File not found

"C:\Program Files\Internet Explorer\iexplore.exe" = C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer
[06-23-2008 05:21 AM | 00,625,664 | ---- | M] (Microsoft Corporation)

"C:\Program Files\McAfee\Common Framework\FrameworkService.exe" = C:\Program Files\McAfee\Common Framework\FrameworkService.exe:*:Enabled:McAfee Framework Service
[12-19-2006 11:24 AM | 00,104,000 | ---- | M] (McAfee, Inc.)

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.bat [@ = batfile] - File not found -
.cmd [@ = cmdfile] - File not found -
.com [@ = comfile] - File not found -
.exe [@ = exefile] - File not found -
.pif [@ = piffile] - File not found -
.scr [@ = scrfile] - File not found -

========== Winsock2 Catalogs ==========

========== HKEY_LOCAL_MACHINE Protocol Defaults ==========


========== HKEY_CURRENT_USER Protocol Defaults ==========


========== Protocol Handlers ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\]
ipp: [HKLM - No CLSID value]
msdaipp: [HKLM - No CLSID value]

========== Protocol Filters ==========

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{07C16B8B-AE11-4515-888F-0BD2E0A9F2AD}" = NDAS Software 3.20.1523
"{0878E100-C0BB-41E8-B4C6-C486B61FDA7B}" = Canon PhotoRecord
"{09DA4F91-2A09-4232-AB8C-6BC740096DE3}" = Sonic Update Manager
"{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}" = MSXML 6.0 Parser (KB933579)
"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATI Control Panel
"{0DEA94ED-915A-4834-A87E-388D012C8E02}" = Medal of Honor débarquement allié
"{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}" = Sonic DLA
"{15095BF3-A3D7-4DDF-B193-3A496881E003}" = Microsoft .NET Framework 3.0
"{21657574-BD54-48A2-9450-EB03B2C7FC29}" = Sonic MyDVD
"{218BBBE3-FE63-4BB2-81A8-7435575A84FA}" = PhotoStitch
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{28291BD5-92D2-4685-82DC-CCA925C53CCA}" = RemoteCapture Task 1.1
"{3248F0A8-6813-11D6-A77B-00B0D0150010}" = J2SE Runtime Environment 5.0 Update 1
"{3248F0A8-6813-11D6-A77B-00B0D0150020}" = J2SE Runtime Environment 5.0 Update 2
"{3248F0A8-6813-11D6-A77B-00B0D0150040}" = J2SE Runtime Environment 5.0 Update 4
"{3248F0A8-6813-11D6-A77B-00B0D0150060}" = J2SE Runtime Environment 5.0 Update 6
"{3248F0A8-6813-11D6-A77B-00B0D0150090}" = J2SE Runtime Environment 5.0 Update 9
"{3248F0A8-6813-11D6-A77B-00B0D0150100}" = J2SE Runtime Environment 5.0 Update 10
"{3248F0A8-6813-11D6-A77B-00B0D0160010}" = Java(TM) SE Runtime Environment 6 Update 1
"{3248F0A8-6813-11D6-A77B-00B0D0160020}" = Java(TM) 6 Update 2
"{3248F0A8-6813-11D6-A77B-00B0D0160030}" = Java(TM) 6 Update 3
"{3248F0A8-6813-11D6-A77B-00B0D0160050}" = Java(TM) 6 Update 5
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7
"{3374B4A6-5595-4667-882D-755ABE093806}" = Lyra Jukebox Applications
"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{37477865-A3F1-4772-AD43-AAFC6BCFF99F}" = MSXML 4.0 SP2 (KB927978)
"{3A2AF807-9F9F-43C9-A24A-17B617238B74}" = OpenOffice.org Installer 1.0
"{3DE5E7D4-7B88-403C-A3FD-2017A8240C5B}" = Google Earth
"{45EF4EE3-F591-4B74-A477-0CAE12934CE7}" = RAW Image Task 1.2
"{491DD792-AD81-429C-9EB4-86DD3D22E333}" = Windows Communication Foundation
"{4BDFD2CE-6329-42E4-9801-9B3D1F10D79B}" = Adobe® Photoshop® Album Edition Découverte 3.0
"{4C96958A-6562-4143-B820-FF4890D3B734}" = Camera Window DVC
"{502358FB-0718-45BC-B142-7511F1694D58}" = Macrogaming SweetIM 2.1
"{55BF0E5F-EA8E-4C13-A8B4-9E4857F5A2DE}" = QuickTime
"{5783F2D7-5001-0409-0002-0060B0CE6BBA}" = AutoCAD 2007 - English
"{5878FF02-3B8F-4309-B4E5-0D3DB6F2E8E6}" = iTunes
"{63569CE9-FA00-469C-AF5C-E5D4D93ACF91}" = Windows Genuine Advantage v1.3.0254.0
"{65F1CF63-31E0-450B-96F3-4A88BE7361A6}" = AGEIA PhysX v7.07.09
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD 5.3
"{6901DD22-527A-41EF-9059-E81FEDE9E494}" = Windows Presentation Foundation Language Pack (FRA)
"{6994491D-D491-48F1-AE1F-E179C1FFFC2F}" = HP Photosmart Essential
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{78CC3BAB-DE2A-4FB4-8FBB-E4DADDC26747}" = Ad-Aware SE Personal
"{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}" = Windows Workflow Foundation
"{81A34902-9D0B-4920-A25C-4CDC5D14B328}" = Jasc Paint Shop Pro 8
"{8479D8D6-D1FE-45EB-8F8D-A5126D70B467}" = Décorateur Virtuel Xpert 1.0
"{8AC049F7-1383-45C3-9E7D-F93CA667F9E1}" = UMVPLStandalone
"{8AF1E098-1A5C-4336-BBE2-D047ABB401ED}" = MovieEdit Task
"{8E35083D-B04F-4823-A260-C07FDD3D40FD}" = Olympus DSS Player Pro
"{8EF1122E-E90C-4EE9-AB0C-7FDE2BA42C26}" = Musicmatch® Jukebox
"{9011040C-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{9030040C-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Media Content
"{909F8EBC-EC7F-48FF-0085-475D818F0F31}" = Need for Speed Underground 2
"{91203BD3-6C3E-472F-ADBD-F60FDC7C4010}" = Camera Window DS
"{91F1A0D6-23AD-49FE-8D4E-379485652214}" = Camera Support Core Library
"{9541FED0-327F-4DF0-8B96-EF57EF622F19}" = Sonic RecordNow!
"{9A394342-4A68-4EBA-85A6-55B559F4E700}" = Microsoft .NET Framework 1.1 French Language Pack
"{9CD9AA8B-E6A4-4199-8DDD-43C6A57273C2}" = EndNote 8.0.2
"{A46C3CC2-B6F2-492D-83BF-52EB320307CC}" = Microsoft Office XP - Autoformation Interactive
"{AC76BA86-1033-F400-7760-000000000002}" = Adobe Acrobat 7.0 Professional - English, Français, Deutsch
"{AC76BA86-7AD7-1036-7B44-A70000000000}" = Adobe Reader 7.0.8 - Français
"{B168C59D-5FCF-4EEC-B464-BFA7A8266150}" = Windows Communication Foundation Language Pack - FRA
"{B508B3F1-A24A-32C0-B310-85786919EF28}" = Microsoft .NET Framework 2.0 Service Pack 1
"{B84C141C-9A13-44BE-9A69-301D7B11D836}" = Windows Workflow Foundation FR Language Pack
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{BEF726DD-4037-4214-8C6A-E625C02D2870}" = Logitech Audio Echo Cancellation Component
"{C04E32E0-0416-434D-AFB9-6969D703A9EF}" = MSXML 4.0 SP2 (KB936181)
"{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}" = Canon ZoomBrowser EX
"{C7281207-4AA4-425E-B57A-0E9EF8445635}" = Camera Window MC
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC000127-5E5D-4A1C-90CB-EEAAAC1E3AC0}" = Jasc Paint Shop Photo Album
"{CCD663AE-610D-4BDF-AAB0-E914B044527D}" = OpenMG Secure Module 4.7.00
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240B5}" = WinZip 11.1
"{D78653C3-A8FF-415F-92E6-D774E634FF2D}" = Dell ResourceCD
"{DBEA1034-5882-4A88-8033-81C4EF0CFA29}" = Google Toolbar for Internet Explorer
"{E3C080B0-23F5-49AF-89F8-8E8DBC89E659}" = Microsoft .NET Framework 3.0 French Language Pack
"{EA516024-D84D-41F1-814F-83175A6188F2}" = Logitech Video Enumerator
"{EC42ED6A-751D-45C0-A4F9-8CD00E4690FC}" = Logitech QuickCam
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F196AC50-7C95-42E1-9947-BDAB18BF3C8C}" = Microsoft .NET Framework 2.0 Language Pack - FRA
"{F6326B60-1B1D-4ABF-BFCD-7B7404F44411}" = Windows Live Messenger
"{F6D63A65-BD23-46F3-B9A3-87F442423481}" = SweetIM For Internet Explorer 3.0b
"{FCE65C4E-B0E8-4FBD-AD16-EDCBE6CD591F}" = Extension HighMAT pour l'Assistant Graver un CD de Microsoft Windows XP
"Adobe Acrobat 7.0 Professional - EFG" = Adobe Acrobat 7.1.0 Professional - English, Français, Deutsch
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"All ATI Software" = ATI - Utilitaire de désinstallation du logiciel
"Any Video Converter Professional_is1" = Any Video Converter Professional 2.5.9
"ATI Display Driver" = ATI Display Driver
"ATLASti" = ATLAS/ti 4.1 for Windows 95
"avast!" = avast! Antivirus
"B991B020-2968-11D8-AF23-444553540000_is1" = FreeMind
"Décorateur Virtuel Xpert 1.0 : Crown Diamond_is1" = Décorateur Virtuel Xpert : Crown Diamond
"Décorateur Virtuel Xpert 1.0 : Laurentien_is1" = Décorateur Virtuel Xpert : Laurentien
"Décorateur Virtuel Xpert 1.0 : Sico_is1" = Décorateur Virtuel Xpert : Sico
"Décorateur Virtuel Xpert 1.0 : Touprêt_is1" = Décorateur Virtuel Xpert : Touprêt
"Décorateur Virtuel Xpert 1.0 : V33_is1" = Décorateur Virtuel Xpert : V33
"Dell Photo Printer 720" = Dell Photo Printer 720
"DVD Shrink_is1" = DVD Shrink 3.2
"Excentrix.exe" = Excentrix
"HijackThis" = HijackThis 2.0.2
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"Indeo® software" = Indeo® software
"InstallShield_{218BBBE3-FE63-4BB2-81A8-7435575A84FA}" = Canon Utilities PhotoStitch 3.1
"InstallShield_{28291BD5-92D2-4685-82DC-CCA925C53CCA}" = Canon RemoteCapture Task for ZoomBrowser EX
"InstallShield_{45EF4EE3-F591-4B74-A477-0CAE12934CE7}" = Canon RAW Image Task for ZoomBrowser EX
"InstallShield_{4C96958A-6562-4143-B820-FF4890D3B734}" = Canon Camera Window DVC for ZoomBrowser EX
"InstallShield_{8AF1E098-1A5C-4336-BBE2-D047ABB401ED}" = Canon MovieEdit Task for ZoomBrowser EX
"InstallShield_{91203BD3-6C3E-472F-ADBD-F60FDC7C4010}" = Canon Camera Window DS for ZoomBrowser EX
"InstallShield_{91F1A0D6-23AD-49FE-8D4E-379485652214}" = Canon Camera Support Core Library
"InstallShield_{C7281207-4AA4-425E-B57A-0E9EF8445635}" = Canon Camera Window for ZoomBrowser EX
"InstallShield_{CCD663AE-610D-4BDF-AAB0-E914B044527D}" = OpenMG Secure Module 4.7.00
"ISI ResearchSoft - Export Helper" = ISI ResearchSoft - Export Helper
"Kaspersky Online Scanner" = Kaspersky Online Scanner
"Kaspersky On-line Scanner" = Kaspersky On-line Scanner
"KB867282" = Correctif Windows XP - KB867282
"KB873333" = Correctif Windows XP - KB873333
"KB873339" = Correctif Windows XP - KB873339
"KB883939" = Mise à jour de sécurité pour Windows XP (KB883939)
"KB885250" = Correctif Windows XP - KB885250
"KB885835" = Correctif Windows XP - KB885835
"KB885836" = Correctif Windows XP - KB885836
"KB885884" = Correctif Windows XP - KB885884
"KB886185" = Correctif Windows XP - KB886185
"KB887472" = Correctif Windows XP - KB887472
"KB887742" = Correctif Windows XP - KB887742
"KB887797" = Correctif Windows XP - KB887797
"KB888113" = Correctif Windows XP - KB888113
"KB888302" = Correctif Windows XP - KB888302
"KB890046" = Mise à jour de sécurité pour Windows XP (KB890046)
"KB890047" = Correctif Windows XP - KB890047
"KB890175" = Correctif Windows XP - KB890175
"KB890859" = Correctif Windows XP - KB890859
"KB890923" = Correctif Windows XP - KB890923
"KB891781" = Correctif Windows XP - KB891781
"KB892130" = Windows Genuine Advantage Validation Tool (KB892130)
"KB893066" = Correctif Windows XP - KB893066
"KB893086" = Correctif Windows XP - KB893086
"KB893756" = Mise à jour de sécurité pour Windows XP (KB893756)
"KB893803" = Windows Installer 3.1 (KB893803)
"KB893803v2" = Windows Installer 3.1 (KB893803)
"KB894391" = Mise à jour pour Windows XP (KB894391)
"KB896358" = Mise à jour de sécurité pour Windows XP (KB896358)
"KB896422" = Mise à jour de sécurité pour Windows XP (KB896422)
"KB896423" = Mise à jour de sécurité pour Windows XP (KB896423)
"KB896424" = Mise à jour de sécurité pour Windows XP (KB896424)
"KB896428" = Mise à jour de sécurité pour Windows XP (KB896428)
"KB896688" = Mise à jour de sécurité pour Windows XP (KB896688)
"KB896727" = Mise à jour pour Windows XP (KB896727)
"KB898461" = Mise à jour pour Windows XP (KB898461)
"KB899587" = Mise à jour de sécurité pour Windows XP (KB899587)
"KB899588" = Mise à jour de sécurité pour Windows XP (KB899588)
"KB899591" = Mise à jour de sécurité pour Windows XP (KB899591)
"KB900485" = Mise à jour pour Windows XP (KB900485)
"KB900725" = Mise à jour de sécurité pour Windows XP (KB900725)
"KB900930" = Mise à jour pour Windows XP (KB900930)
"KB901017" = Mise à jour de sécurité pour Windows XP (KB901017)
"KB901214" = Mise à jour de sécurité pour Windows XP (KB901214)
"KB902344" = Hotfix for Windows Media Format SDK (KB902344)
"KB902400" = Mise à jour de sécurité pour Windows XP (KB902400)
"KB903235" = Mise à jour de sécurité pour Windows XP (KB903235)
"KB904706" = Mise à jour de sécurité pour Windows XP (KB904706)
"KB904942" = Mise à jour pour Windows XP (KB904942)
"KB905414" = Mise à jour de sécurité pour Windows XP (KB905414)
"KB905749" = Mise à jour de sécurité pour Windows XP (KB905749)
"KB905915" = Mise à jour de sécurité pour Windows XP (KB905915)
"KB908519" = Mise à jour de sécurité pour Windows XP (KB908519)
"KB908531" = Mise à jour de sécurité pour Windows XP (KB908531)
"KB909520" = Package de base Microsoft de service de chiffrement pour cartes à puce
"KB910437" = Mise à jour pour Windows XP (KB910437)
"KB911280" = Mise à jour pour Windows XP (KB911280)
"KB911562" = Mise à jour de sécurité pour Windows XP (KB911562)
"KB911564" = Mise à jour de sécurité pour Lecteur Windows Media (KB911564)
"KB911565" = Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)
"KB911567" = Mise à jour de sécurité pour Windows XP (KB911567)
"KB911927" = Mise à jour de sécurité pour Windows XP (KB911927)
"KB912812" = Mise à jour de sécurité pour Windows XP (KB912812)
"KB912919" = Mise à jour de sécurité pour Windows XP (KB912919)
"KB913446" = Mise à jour de sécurité pour Windows XP (KB913446)
"KB913580" = Mise à jour de sécurité pour Windows XP (KB913580)
"KB914388" = Mise à jour de sécurité pour Windows XP (KB914388)
"KB914389" = Mise à jour de sécurité pour Windows XP (KB914389)
"KB914440" = Correctif pour Windows XP (KB914440)
"KB915865" = Hotfix for Windows XP (KB915865)
"KB916281" = Mise à jour de sécurité pour Windows XP (KB916281)
"KB916595" = Mise à jour pour Windows XP (KB916595)
"KB917159" = Mise à jour de sécurité pour Windows XP (KB917159)
"KB917344" = Mise à jour de sécurité pour Windows XP (KB917344)
"KB917422" = Mise à jour de sécurité pour Windows XP (KB917422)
"KB917734_WMP10" = Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)
"KB917953" = Mise à jour de sécurité pour Windows XP (KB917953)
"KB918118" = Mise à jour de sécurité pour Windows XP (KB918118)
"KB918439" = Mise à jour de sécurité pour Windows XP (KB918439)
"KB918899" = Mise à jour de sécurité pour Windows XP (KB918899)
"KB919007" = Mise à jour de sécurité pour Windows XP (KB919007)
"KB920213" = Mise à jour de sécurité pour Windows XP (KB920213)
"KB920214" = Mise à jour de sécurité pour Windows XP (KB920214)
"KB920342" = Mise à jour pour Windows XP (KB920342)
"KB920670" = Mise à jour de sécurité pour Windows XP (KB920670)
"KB920683" = Mise à jour de sécurité pour Windows XP (KB920683)
"KB920685" = Mise à jour de sécurité pour Windows XP (KB920685)
"KB920872" = Mise à jour pour Windows XP (KB920872)
"KB921398" = Mise à jour de sécurité pour Windows XP (KB921398)
"KB921503" = Mise à jour de sécurité pour Windows XP (KB921503)
"KB921883" = Mise à jour de sécurité pour Windows XP (KB921883)
"KB922582" = Mise à jour pour Windows XP (KB922582)
"KB922616" = Mise à jour de sécurité pour Windows XP (KB922616)
"KB922760" = Mise à jour de sécurité pour Windows XP (KB922760)
"KB922819" = Mise à jour de sécurité pour Windows XP (KB922819)
"KB923191" = Mise à jour de sécurité pour Windows XP (KB923191)
"KB923414" = Mise à jour de sécurité pour Windows XP (KB923414)
"KB923689" = Mise à jour de sécurité pour Windows XP (KB923689)
"KB923694" = Mise à jour de sécurité pour Windows XP (KB923694)
"KB923980" = Mise à jour de sécurité pour Windows XP (KB923980)
"KB924191" = Mise à jour de sécurité pour Windows XP (KB924191)
"KB924270" = Mise à jour de sécurité pour Windows XP (KB924270)
"KB924496" = Mise à jour de sécurité pour Windows XP (KB924496)
"KB924667" = Mise à jour de sécurité pour Windows XP (KB924667)
"KB925398_WMP64" = Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)
"KB925454" = Mise à jour de sécurité pour Windows XP (KB925454)
"KB925486" = Mise à jour de sécurité pour Windows XP (KB925486)
"KB925720" = Mise à jour pour Windows XP (KB925720)
"KB925876" = Mise à jour pour Windows XP (KB925876)
"KB925902" = Mise à jour de sécurité pour Windows XP (KB925902)
"KB926239" = Hotfix for Windows XP (KB926239)
"KB926255" = Mise à jour de sécurité pour Windows XP (KB926255)
"KB926436" = Mise à jour de sécurité pour Windows XP (KB926436)
"KB927779" = Mise à jour de sécurité pour Windows XP (KB927779)
"KB927802" = Mise à jour de sécurité pour Windows XP (KB927802)
"KB927891" = Mise à jour pour Windows XP (KB927891)
"KB928090-IE7" = Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090)
"KB928255" = Mise à jour de sécurité pour Windows XP (KB928255)
"KB928388" = Correctif pour Windows XP (KB928388)
"KB928843" = Mise à jour de sécurité pour Windows XP (KB928843)
"KB929120" = Correctif pour Windows XP (KB929120)
"KB929123" = Mise à jour de sécurité pour Windows XP (KB929123)
"KB929338" = Mise à jour pour Windows XP (KB929338)
"KB929399" = Hotfix for Windows Media Format 11 SDK (KB929399)
"KB929969" = Mise à jour de sécurité pour Windows Internet Explorer 7 (KB929969)
"KB930178" = Mise à jour de sécurité pour Windows XP (KB930178)
"KB930916" = Mise à jour pour Windows XP (KB930916)
"KB931261" = Mise à jour de sécurité pour Windows XP (KB931261)
"KB931768-IE7" = Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768)
"KB931784" = Mise à jour de sécurité pour Windows XP (KB931784)
"KB931836" = Mise à jour pour Windows XP (KB931836)
"KB932168" = Mise à jour de sécurité pour Windows XP (KB932168)
"KB932823-v3" = Mise à jour pour Windows XP (KB932823-v3)
"KB933360" = Mise à jour pour Windows XP (KB933360)
"KB933566-IE7" = Mise à jour de sécurité pour Windows Internet Explorer 7 (KB933566)
"KB933729" = Mise à jour de sécurité pour Windows XP (KB933729)
"KB935839" = Mise à jour de sécurité pour Windows XP (KB935839)
"KB935840" = Mise à jour de sécurité pour Windows XP (KB935840)
"KB936021" = Mise à jour de sécurité pour Windows XP (KB936021)
"KB936357" = Mise à jour pour Windows XP (KB936357)
"KB936782_WMP11" = Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)
"KB937143-IE7" = Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143)
"KB938127-IE7" = Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)
"KB938828" = Mise à jour pour Windows XP (KB938828)
"KB938829" = Mise à jour de sécurité pour Windows XP (KB938829)
"KB939653-IE7" = Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)
"KB939683" = Correctif pour Lecteur Windows Media 11 (KB939683)
"KB941202" = Mise à jour de sécurité pour Windows XP (KB941202)
"KB941568" = Mise à jour de sécurité pour Windows XP (KB941568)
"KB941569" = Mise à jour de sécurité pour Windows XP (KB941569)
"KB941644" = Mise à jour de sécurité pour Windows XP (KB941644)
"KB941693" = Mise à jour de sécurité pour Windows XP (KB941693)
"KB942615-IE7" = Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)
"KB942763" = Mise à jour pour Windows XP (KB942763)
"KB943055" = Mise à jour de sécurité pour Windows XP (KB943055)
"KB943460" = Mise à jour de sécurité pour Windows XP (KB943460)
"KB943485" = Mise à jour de sécurité pour Windows XP (KB943485)
"KB944533-IE7" = Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)
"KB944653" = Mise à jour de sécurité pour Windows XP (KB944653)
"KB945553" = Mise à jour de sécurité pour Windows XP (KB945553)
"KB946026" = Mise à jour de sécurité pour Windows XP (KB946026)
"KB946648" = Mise à jour de sécurité pour Windows XP (KB946648)
"KB947864-IE7" = Correctif pour Windows Internet Explorer 7 (KB947864)
"KB948590" = Mise à jour de sécurité pour Windows XP (KB948590)
"KB948881" = Mise à jour de sécurité pour Windows XP (KB948881)
"KB950749" = Mise à jour de sécurité pour Windows XP (KB950749)
"KB950759-IE7" = Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)
"KB950760" = Mise à jour de sécurité pour Windows XP (KB950760)
"KB950762" = Mise à jour de sécurité pour Windows XP (KB950762)
"KB950974" = Mise à jour de sécurité pour Windows XP (KB950974)
"KB951066" = Mise à jour de sécurité pour Windows XP (KB951066)
"KB951072-v2" = Mise à jour pour Windows XP (KB951072-v2)
"KB951376" = Mise à jour de sécurité pour Windows XP (KB951376)
"KB951376-v2" = Mise à jour de sécurité pour Windows XP (KB951376-v2)
"KB951698" = Mise à jour de sécurité pour Windows XP (KB951698)
"KB951748" = Mise à jour de sécurité pour Windows XP (KB951748)
"KB952287" = Correctif pour Windows XP (KB952287)
"KB952954" = Mise à jour de sécurité pour Windows XP (KB952954)
"KB953838-IE7" = Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)
"KB953839" = Mise à jour de sécurité pour Windows XP (KB953839)
"LimeWire" = LimeWire 4.18.2
"M928366" = Microsoft .NET Framework 1.1 Hotfix (KB928366)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 2.0 Language Pack - FRA" = Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA
"Microsoft .NET Framework 3.0" = Microsoft .NET Framework 3.0
"Microsoft .NET Framework 3.0 French Language Pack" = Module de prise en charge linguistique du français de Microsoft .NET Framework 3.0
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"PartyPoker" = PartyPoker
"PROSet" = Intel(R) PRO Network Connections Drivers
"QcDrv" = Programme de gestion Camera de Logitech®
"RealPlayer 6.0" = RealPlayer 7 Basic
"SereneScreen Aquarium" = SereneScreen Aquarium
"ShockwaveFlash" = Macromedia Flash Player 8
"TBass4.exe" = Field & Stream® Trophy Bass 4
"WGA" = Windows Genuine Advantage Validation Tool (KB892130)
"WgaNotify" = Windows Genuine Advantage Notifications (KB905474)
"WIC" = Windows Imaging Component
"Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Lecteur Windows Media 11
"WinMX" = WinMX
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

========== Event Log Errors ==========

[ Application Events ]

Error - 2008-01-25 14:43:00 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-01-25 14:43:22 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-01-25 14:43:40 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-01-26 14:40:35 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-01-26 14:40:52 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-01-26 14:41:12 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-01-27 14:28:40 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-01-27 14:29:01 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-01-27 14:29:19 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-01-28 13:51:45 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-01-28 13:52:04 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-01-28 13:52:25 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-01-29 17:51:33 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-01-29 17:51:54 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-01-29 17:52:15 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-01-29 19:07:41 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante acrobat.exe, version 7.0.8.218, module défaillant
acrobat.dll, version 7.0.8.218, adresse de défaillance 0x0006a229.

Error - 2008-01-29 19:08:03 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante acrobat.exe, version 7.0.8.218, module défaillant
acrobat.dll, version 7.0.8.218, adresse de défaillance 0x0006a229.

Error - 2008-01-31 00:25:45 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-01-31 00:26:08 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-01-31 00:26:27 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-01-31 00:27:47 - Computer Name = CAROLINE - User Name = User SID not found - Source = SecurityCenter
Description = Le service Centre de sécurité de Windows n'a pas pu établir de requêtes
d'événements avec WMI pour contrôler le programme antivirus et le pare-feu tiers.

Error - 2008-02-01 00:56:12 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-01 00:56:30 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-01 00:56:51 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-01 14:24:00 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-01 14:24:20 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-01 14:24:40 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-02 14:21:00 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-02 14:21:22 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-02 14:21:43 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-03 04:37:57 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Hang
Description = Application bloquée wmplayer.exe, version 11.0.5721.5145, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 2008-02-03 16:34:08 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-03 16:34:27 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-03 16:34:46 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-04 14:37:26 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-04 14:37:48 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-04 14:38:05 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-04 15:41:37 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-04 15:41:56 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-04 15:42:17 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-05 15:26:42 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-05 15:31:50 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-05 15:31:51 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-06 13:45:34 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-06 13:45:56 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-06 13:46:14 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-06 19:23:04 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-06 19:23:25 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-06 19:23:45 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-07 17:49:28 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-07 17:49:30 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-07 17:49:49 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-08 14:09:55 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-08 14:10:15 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-08 14:10:35 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-09 05:26:40 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-09 05:27:03 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-09 05:27:20 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-09 07:20:49 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Hang
Description = Application bloquée iexplore.exe, version 7.0.6000.16574, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 2008-02-09 14:47:34 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-09 14:47:55 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-09 14:48:16 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-10 13:39:46 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-10 13:40:10 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-10 13:40:30 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-10 13:41:35 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Hang
Description = Application bloquée MyDVD.exe, version 5.3.0.0, module bloqué hungapp,
version 0.0.0.0, adresse de blocage 0x00000000.

Error - 2008-02-11 13:44:39 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-11 13:45:01 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-11 13:45:19 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-12 17:34:48 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-12 17:35:11 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-12 17:35:29 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-12 18:04:30 - Computer Name = CAROLINE - User Name = User SID not found - Source = Microsoft Office 10
Description = Faulting application powerpnt.exe, version 10.0.2623.0, faulting module
mso.dll, version 10.0.2625.0, fault address 0x000151fb.

Error - 2008-02-13 23:41:57 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-13 23:42:15 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-13 23:42:36 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-14 23:56:07 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-14 23:56:14 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-14 23:56:33 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-15 14:51:58 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-15 14:52:18 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-15 14:52:37 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-16 12:48:48 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-16 12:49:11 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-16 12:49:31 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-17 13:58:57 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-17 13:59:13 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-17 13:59:36 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-18 15:19:24 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-18 15:19:44 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-18 15:20:04 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-19 09:35:36 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-19 09:36:03 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-19 09:36:25 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-19 18:31:58 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-19 18:32:23 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-19 18:32:43 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-20 16:27:03 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-20 16:27:24 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-20 16:27:41 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-21 18:25:38 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-21 18:25:54 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-21 18:26:16 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-22 13:40:55 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-22 13:41:17 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-22 13:41:35 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-22 14:03:56 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante winword.exe, version 10.0.2627.0, module défaillant
winword.exe, version 10.0.2627.0, adresse de défaillance 0x0001b53f.

Error - 2008-02-23 05:24:12 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-23 05:24:36 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-23 05:24:56 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-23 06:34:10 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-24 13:44:12 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-24 13:44:29 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-24 13:44:50 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-24 13:46:14 - Computer Name = CAROLINE - User Name = User SID not found - Source = SecurityCenter
Description = Le service Centre de sécurité de Windows n'a pas pu établir de requêtes
d'événements avec WMI pour contrôler le programme antivirus et le pare-feu tiers.

Error - 2008-02-25 14:06:49 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-25 14:07:12 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-25 14:07:30 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-26 17:35:46 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-26 17:36:08 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-26 17:36:23 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-27 13:35:18 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-27 13:35:35 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-27 13:35:57 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-29 00:10:37 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-02-29 00:10:39 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-02-29 00:11:01 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-02 20:08:35 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-02 20:08:53 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-02 20:09:14 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-03 16:47:18 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-03 16:47:37 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-03 16:47:58 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-04 09:33:56 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-04 09:34:17 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-04 09:34:37 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-04 13:16:51 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-04 13:17:10 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-04 13:17:30 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-05 18:47:41 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-05 18:48:03 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-05 18:48:21 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-05 19:34:09 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Hang
Description = Application bloquée iexplore.exe, version 7.0.6000.16608, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 2008-03-06 19:16:03 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-06 19:16:26 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-06 19:16:45 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-07 14:04:26 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-07 14:04:44 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-07 14:05:06 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-08 05:22:56 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-08 05:23:19 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-08 05:23:34 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-08 14:07:24 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-08 14:07:49 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-08 14:08:08 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-09 14:30:00 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-09 14:30:21 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-09 14:30:41 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-10 14:47:15 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-10 14:47:39 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-10 14:47:58 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-11 23:10:28 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-11 23:10:48 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-11 23:11:08 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-12 12:43:28 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-12 12:43:49 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-12 12:44:06 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-12 15:31:18 - Computer Name = CAROLINE - User Name = User SID not found - Source = Microsoft Office 10
Description = Faulting application winword.exe, version 10.0.2627.0, faulting module
mso.dll, version 10.0.2625.0, fault address 0x00134cfa.

Error - 2008-03-12 15:31:52 - Computer Name = CAROLINE - User Name = User SID not found - Source = Microsoft Office 10
Description = Accepted Safe Mode action : Microsoft Word.

Error - 2008-03-12 15:34:10 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-12 15:34:25 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-12 15:34:48 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-13 23:38:10 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-13 23:38:28 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-13 23:38:50 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-14 14:04:46 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-14 14:05:09 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-14 14:05:29 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-15 14:49:08 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-15 14:49:31 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-15 14:49:50 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-

Répondre à Caroanais
Caroanais   30-08-2008 à 15:48:24
- 0 +

Voici la suite du rapport Extras :

Error - 2008-03-15 14:49:50 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-16 14:54:52 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-16 14:55:13 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-16 14:55:30 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-16 17:55:54 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Hang
Description = Application bloquée iexplore.exe, version 7.0.6000.16608, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 2008-03-17 13:11:28 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-17 13:11:48 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-17 13:12:08 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-18 16:42:41 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-18 16:43:02 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-18 16:43:20 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-18 19:49:11 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Hang
Description = Application bloquée AutoRun.exe, version 1.3.0.335, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 2008-03-19 15:51:20 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-19 15:51:38 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-19 15:51:59 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-20 16:51:23 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-20 16:51:46 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-20 16:52:06 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-21 04:21:47 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-21 04:21:51 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-21 04:22:09 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-21 13:46:56 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-21 13:47:17 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-21 13:47:38 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-21 13:58:21 - Computer Name = CAROLINE - User Name = User SID not found - Source = crypt32
Description = Échec de l'extraction de la liste racine tierce partie depuis le fichier
CAB de mise à jour automatique à : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
avec l'erreur : Un certificat requis n'est pas dans sa période de validité selon
la vérification par rapport à l'horloge système en cours ou le tampon daté dans
le fichier signé.


Error - 2008-03-21 14:00:37 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-21 14:00:55 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-21 14:01:20 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-21 20:17:23 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-21 20:17:23 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-21 22:48:30 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-21 22:48:50 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-21 22:52:11 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-22 13:37:44 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-22 13:38:03 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-22 13:38:24 - Computer Name = CAROLINE - User Name = User SID not found - Source = Alert Manager Event Interface
Description =

Error - 2008-03-22 13:46:54 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-23 12:48:06 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-24 16:19:36 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-25 23:25:48 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-26 23:13:32 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-27 22:33:14 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-28 12:22:26 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-28 20:53:18 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-03-28 20:53:24 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante iexplore.exe, version 7.0.6000.16608, module
défaillant ieframe.dll, version 7.0.6000.16608, adresse de défaillance 0x00095721.

Error - 2008-03-28 23:30:18 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-03-28 23:30:44 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-03-29 00:08:58 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-03-29 00:09:11 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-03-29 00:13:58 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pokertrainer.exe, version 0.0.0.0, module
défaillant pokertrainer.exe, version 0.0.0.0, adresse de défaillance 0x0001a2ca.

Error - 2008-03-29 13:16:55 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-29 15:30:09 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-03-29 15:30:21 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-03-29 22:32:07 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-03-29 22:32:18 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-03-30 00:05:46 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-03-30 00:05:57 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-03-30 14:45:25 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-30 15:16:50 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-31 00:11:46 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-03-31 00:11:59 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-03-31 12:56:44 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-03-31 22:43:34 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante iexplore.exe, version 7.0.6000.16608, module
défaillant comctl32.dll, version 6.0.2900.2982, adresse de défaillance 0x00011733.

Error - 2008-03-31 22:43:40 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante drwtsn32.exe, version 5.1.2600.0, module défaillant
dbghelp.dll, version 5.1.2600.2180, adresse de défaillance 0x0001295d.

Error - 2008-03-31 22:43:57 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Hang
Description = Application bloquée iexplore.exe, version 7.0.6000.16608, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 2008-04-01 05:20:49 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-01 17:00:44 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-02 17:58:47 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-03 00:43:37 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Hang
Description = Application bloquée WINWORD.EXE, version 10.0.2627.0, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 2008-04-03 16:29:39 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-03 16:39:35 - Computer Name = CAROLINE - User Name = User SID not found - Source = Microsoft Office 10
Description = Rejected Safe Mode action : Microsoft Word.

Error - 2008-04-03 17:50:26 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-03 20:05:36 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-03 20:05:49 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-04 12:17:17 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-05 04:41:15 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-05 04:57:40 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-05 04:57:53 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-05 17:52:47 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-05 17:55:03 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-05 17:55:16 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-06 00:02:20 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-06 00:02:32 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-06 13:50:53 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-06 23:49:24 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-06 23:49:38 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-07 01:40:33 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-07 13:57:47 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-08 23:01:49 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-09 23:06:06 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-10 00:21:49 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-10 00:22:03 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-10 23:02:11 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-12 13:03:41 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-12 15:43:56 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-12 15:50:23 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-13 14:23:41 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-14 13:47:01 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-14 19:29:38 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-14 19:29:53 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-15 17:35:14 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-15 18:35:08 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-15 18:35:22 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-16 17:47:31 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-18 07:17:09 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-18 15:26:05 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-19 04:53:02 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-19 12:17:20 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-20 01:56:54 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-20 01:57:07 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-20 13:46:19 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-20 23:13:32 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-20 23:13:44 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-21 23:02:52 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-22 23:24:52 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-23 22:48:57 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-24 00:07:48 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-24 00:08:01 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-26 13:55:40 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-27 00:05:21 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Hang
Description = Application bloquée explorer.exe, version 6.0.2900.3156, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 2008-04-27 02:18:37 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-27 02:18:50 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-04-27 13:15:04 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-28 00:50:13 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-28 16:56:49 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-29 01:00:44 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-29 16:17:10 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-04-30 15:50:24 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-01 22:40:02 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-02 02:24:28 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Hang
Description = Application bloquée iexplore.exe, version 7.0.6000.16640, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 2008-05-02 23:04:53 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-03 01:32:42 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-03 01:39:47 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Hang
Description = Application bloquée rundll32.exe, version 5.1.2600.2180, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 2008-05-03 11:57:47 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-04 15:02:57 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-04 17:31:45 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-06 00:00:00 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-06 00:43:51 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-05-06 00:44:07 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-05-08 00:26:25 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-08 00:44:24 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Hang
Description = Application bloquée WINWORD.EXE, version 10.0.2627.0, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 2008-05-08 23:58:11 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-09 13:32:49 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-10 11:24:08 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-11 00:14:37 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-05-11 12:15:56 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-12 16:09:39 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-13 15:08:22 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-14 15:04:10 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-15 14:06:40 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-15 15:02:41 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante msimn.exe, version 6.0.2900.2180, module défaillant
msctfime.ime, version 5.1.2600.2180, adresse de défaillance 0x0000b995.

Error - 2008-05-15 15:03:13 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Hang
Description = Application bloquée iexplore.exe, version 7.0.6000.16640, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 2008-05-15 15:04:54 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-16 13:46:33 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-17 13:19:30 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-17 16:55:21 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-17 20:47:19 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-18 11:39:01 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-19 15:03:11 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-20 22:57:32 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-21 13:28:30 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-23 23:24:27 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-24 12:28:36 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-25 23:15:32 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-26 18:55:19 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-26 19:30:15 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-27 13:57:14 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-27 16:13:09 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-27 16:20:00 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-27 23:57:44 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-28 16:56:49 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-28 19:24:15 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-29 23:59:40 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-30 15:14:44 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-05-31 14:00:02 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-01 13:49:11 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-02 23:56:15 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-03 23:49:13 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-04 11:04:59 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-06 00:07:07 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-06 13:24:39 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-07 13:12:02 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-07 13:28:14 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-07 17:54:12 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante pprekop.exe, version 4.2.0.172, module défaillant
ole32.dll, version 5.1.2600.2182, adresse de défaillance 0x10017bed.

Error - 2008-06-08 20:26:14 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-09 11:34:38 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-10 14:33:31 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-11 17:51:23 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-12 00:39:03 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-12 15:00:19 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-13 17:37:04 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-14 19:05:14 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-15 18:54:37 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Hang
Description = Application bloquée iexplore.exe, version 7.0.6000.16674, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 2008-06-15 18:54:58 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Hang
Description = Application bloquée LimeWire.exe, version 1.0.0.2, module bloqué hungapp,
version 0.0.0.0, adresse de blocage 0x00000000.

Error - 2008-06-15 18:56:36 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-16 13:38:01 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-16 21:09:45 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-17 12:25:50 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-24 00:54:42 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-24 12:05:10 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-24 23:24:37 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-25 12:21:07 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-26 14:59:20 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-27 00:16:05 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-27 16:08:43 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-28 12:06:20 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-06-29 18:41:45 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-02 00:36:42 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-02 16:33:53 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-04 12:34:37 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-05 22:34:43 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-05 23:35:11 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-06 00:46:25 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-06 12:32:40 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-06 17:12:28 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-06 17:53:52 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-06 17:58:06 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-06 18:01:18 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-06 21:05:13 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-06 22:33:40 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-06 22:34:22 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante avgwdsvc.exe, version 8.0.0.123, module défaillant
ntdll.dll, version 5.1.2600.2180, adresse de défaillance 0x000106c3.

Error - 2008-07-06 22:46:07 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-07 01:20:02 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-07 01:24:22 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-07 01:27:11 - Computer Name = CAROLINE - User Name = CAROLINE\Caroline et Dominic - Source = MsiInstaller
Description = Product: DAEMON Tools -- Error 25001. Device setup error: code 25040
(0x61D0), 80 (0x50) . Contact your support personnel.

Error - 2008-07-07 01:53:33 - Computer Name = CAROLINE - User Name = CAROLINE\Caroline et Dominic - Source = MsiInstaller
Description = Product: Leisure Suit Larry - Magna Cum Laude -- 1: This installation
cannot be run by directly launching the MSI package. You must run setup.exe.

Error - 2008-07-07 02:08:28 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-07 10:44:01 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-07 10:53:36 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-07 11:22:48 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-08 15:23:28 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-08 18:53:00 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Hang
Description = Application bloquée iexplore.exe, version 7.0.6000.16674, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 2008-07-08 18:53:41 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Hang
Description = Application bloquée wmplayer.exe, version 11.0.5721.5145, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 2008-07-08 18:53:42 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Hang
Description = Application bloquée wmplayer.exe, version 11.0.5721.5145, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 2008-07-09 00:13:06 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-09 17:18:17 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-10 22:55:34 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will sto

Répondre à Caroanais
Caroanais   30-08-2008 à 16:03:25
- 0 +

La suite 2 :
Error - 2008-07-10 22:55:34 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-10 22:55:57 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante msimn.exe, version 6.0.2900.2180, module défaillant
msctfime.ime, version 5.1.2600.2180, adresse de défaillance 0x0000823e.

Error - 2008-07-10 22:56:08 - Computer Name = CAROLINE - User Name = User SID not found - Source = Application Error
Description = Application défaillante msimn.exe, version 6.0.2900.2180, module défaillant
msctfime.ime, version 5.1.2600.2180, adresse de défaillance 0x0000823e.

Error - 2008-07-10 22:57:51 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-11 12:13:30 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-12 23:37:34 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-13 13:01:26 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-14 23:57:22 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-15 11:45:23 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-15 23:06:08 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-16 00:27:06 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-18 23:18:39 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-20 23:38:08 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-21 12:07:14 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-21 17:15:55 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-22 10:34:05 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-23 19:00:01 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-24 17:34:56 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-24 19:19:50 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-25 05:20:18 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-25 17:54:38 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-26 12:59:57 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-27 15:40:34 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-07-28 17:16:34 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-05 00:14:45 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-05 01:02:38 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-05 12:42:58 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-05 14:14:43 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-06 12:30:53 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-06 17:13:09 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-07 12:34:42 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-08 00:34:53 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-08 18:57:10 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-09 13:47:25 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-10 23:18:16 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-11 12:41:11 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-12 13:56:27 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-13 12:24:58 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-14 12:23:25 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-15 12:25:17 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-15 12:52:25 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-15 13:01:38 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-15 16:29:13 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-15 19:01:59 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-16 14:18:27 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-17 01:05:03 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-17 13:22:30 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-17 23:28:53 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-18 00:08:02 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-18 00:27:22 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-18 00:40:19 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-18 15:18:35 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-18 18:20:51 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-19 00:08:57 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-19 22:21:09 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-19 22:40:00 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-21 00:12:08 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-22 00:22:19 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-22 13:28:43 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-22 17:19:26 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-22 18:04:09 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-22 21:17:37 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-23 00:41:03 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-23 17:30:04 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-24 13:19:11 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-25 23:19:01 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-28 00:23:55 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-29 00:04:45 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-29 23:36:50 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


Error - 2008-08-30 12:34:26 - Computer Name = CAROLINE - User Name = User SID not found - Source = .NET Runtime Optimization Service
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Service Manager returned a fatal error (0x80004002). Will stop service


[ System Events ]

Error - 2008-07-07 10:48:33 - Computer Name = CAROLINE - User Name = User SID not found - Source = Dhcp
Description = Le bail de l'adresse IP 192.168.0.100 pour la carte réseau dont l'adresse
réseau est 001111CFB952
a été refusé par le serveur DHCP 24.200.242.19 (celui-ci
a envoyé un message DHCPNACK).

Error - 2008-07-07 10:48:50 - Computer Name = CAROLINE - User Name = User SID not found - Source = PlugPlayManager
Description = Le périphérique 'NDAS WDC WD5000AAJB-0 SCSI Disk Device' (SCSI\Disk&Ven_NDAS&Prod_WDC_WD5000AAJB-0&Rev_1.1\2&2d26e6a6&0&000)
a disparu du système sans que sa suppression ait tout d'abord été préparée.

Error - 2008-07-07 10:49:01 - Computer Name = CAROLINE - User Name = User SID not found - Source = PlugPlayManager
Description = Le périphérique 'NDAS SCSI Controller' (NDAS\SCSIAdapter_R01\1&431a56f&0&10)
a disparu du système sans que sa suppression ait tout d'abord été préparée.

Error - 2008-07-07 10:53:14 - Computer Name = CAROLINE - User Name = User SID not found - Source = Dhcp
Description = Le bail de l'adresse IP 70.82.207.210 pour la carte réseau dont l'adresse
réseau est 001111CFB952
a été refusé par le serveur DHCP 192.168.0.1 (celui-ci
a envoyé un message DHCPNACK).

Error - 2008-07-07 13:11:25 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:25 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:25 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:25 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:25 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:25 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:25 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:25 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:25 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:26 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:26 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:26 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:26 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:26 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:26 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:26 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:26 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:26 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:27 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:27 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:27 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:27 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:27 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:27 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:27 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:27 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:27 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:27 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:28 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:28 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:28 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:28 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:28 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:28 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:28 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:28 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:28 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:29 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:29 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:29 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:29 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:29 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:29 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:29 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:29 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:29 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:30 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:30 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:30 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:30 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:30 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:30 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:30 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:30 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:30 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:31 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:31 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:31 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:31 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:31 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:31 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:31 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:31 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:31 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:32 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:32 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:32 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:32 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:32 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:32 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:32 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:32 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:32 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:33 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:33 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:33 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:33 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:33 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:33 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:33 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:33 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:33 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:34 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:34 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:34 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:34 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:34 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:34 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:34 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:34 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:34 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:34 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:35 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:35 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:35 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:35 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:35 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:35 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:35 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:35 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-07 13:11:35 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Gestion d'applications s'est arrêté avec l'erreur :
%%126

Error - 2008-07-09 00:12:59 - Computer Name = CAROLINE - User Name = User SID not found - Source = sr
Description = Le filtre de restauration du système à rencontré l'erreur inattendue
'0xC0000243' pendant le traitement du fichier 'avgcorex.dll.old' sur le volume
'HarddiskVolume2'. Ceci a entraîné l'arrêt de la surveillance du volume.

Error - 2008-08-19 22:28:16 - Computer Name = CAROLINE - User Name = AUTORITE NT\SYSTEM - Source = DCOM
Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service EventSystem
avec les arguments ""
pour démarrer le serveur :
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 2008-08-19 22:28:19 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Client DHCP dépend du service NetBIOS sur TCP/IP qui n'a
pas pu démarrer en raison de l'erreur :
%%31

Error - 2008-08-19 22:28:19 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Client DNS dépend du service Pilote du protocole TCP/IP
qui n'a pas pu démarrer en raison de l'erreur :
%%31

Error - 2008-08-19 22:28:19 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Assistance TCP/IP NetBIOS dépend du service AFD qui n'a
pas pu démarrer en raison de l'erreur :
%%31

Error - 2008-08-19 22:28:19 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Services IPSEC dépend du service Pilote IPSEC qui n'a pas
pu démarrer en raison de l'erreur :
%%31

Error - 2008-08-19 22:28:19 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se
charger :
Aavmker4
AFD
aswSP
aswTdi
Fips
intelppm
IPSec
MRxSmb
ndasfat
NetBIOS
NetBT
OMCI
RasAcd
Rdbss
Tcpip

Error - 2008-08-19 22:28:20 - Computer Name = CAROLINE - User Name = CAROLINE\Administrateur - Source = DCOM
Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service netman
avec les arguments ""
pour démarrer le serveur :
{BA126AE5-2166-11D1-B1D0-00805FC1270E}

Error - 2008-08-19 22:28:33 - Computer Name = CAROLINE - User Name = CAROLINE\Administrateur - Source = DCOM
Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service StiSvc
avec les arguments ""
pour démarrer le serveur :
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 2008-08-22 17:17:21 - Computer Name = CAROLINE - User Name = AUTORITE NT\SYSTEM - Source = DCOM
Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service EventSystem
avec les arguments ""
pour démarrer le serveur :
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 2008-08-22 17:17:24 - Computer Name = CAROLINE - User Name = CAROLINE\Administrateur - Source = DCOM
Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service netman
avec les arguments ""
pour démarrer le serveur :
{BA126AE5-2166-11D1-B1D0-00805FC1270E}

Error - 2008-08-22 17:18:09 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Client DHCP dépend du service NetBIOS sur TCP/IP qui n'a
pas pu démarrer en raison de l'erreur :
%%31

Error - 2008-08-22 17:18:09 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Client DNS dépend du service Pilote du protocole TCP/IP
qui n'a pas pu démarrer en raison de l'erreur :
%%31

Error - 2008-08-22 17:18:09 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Assistance TCP/IP NetBIOS dépend du service AFD qui n'a
pas pu démarrer en raison de l'erreur :
%%31

Error - 2008-08-22 17:18:09 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Services IPSEC dépend du service Pilote IPSEC qui n'a pas
pu démarrer en raison de l'erreur :
%%31

Error - 2008-08-22 17:18:09 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se
charger :
Aavmker4
AFD
aswSP
aswTdi
Fips
intelppm
IPSec
MRxSmb
ndasfat
NetBIOS
NetBT
OMCI
RasAcd
Rdbss
Tcpip

Error - 2008-08-22 17:18:17 - Computer Name = CAROLINE - User Name = AUTORITE NT\SYSTEM - Source = DCOM
Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service EventSystem
avec les arguments ""
pour démarrer le serveur :
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 2008-08-22 17:22:08 - Computer Name = CAROLINE - User Name = AUTORITE NT\SYSTEM - Source = DCOM
Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service EventSystem
avec les arguments ""
pour démarrer le serveur :
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 2008-08-22 17:22:54 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Client DHCP dépend du service NetBIOS sur TCP/IP qui n'a
pas pu démarrer en raison de l'erreur :
%%31

Error - 2008-08-22 17:22:54 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Client DNS dépend du service Pilote du protocole TCP/IP
qui n'a pas pu démarrer en raison de l'erreur :
%%31

Error - 2008-08-22 17:22:54 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Assistance TCP/IP NetBIOS dépend du service AFD qui n'a
pas pu démarrer en raison de l'erreur :
%%31

Error - 2008-08-22 17:22:54 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Services IPSEC dépend du service Pilote IPSEC qui n'a pas
pu démarrer en raison de l'erreur :
%%31

Error - 2008-08-22 17:22:54 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se
charger :
Aavmker4
AFD
aswSP
aswTdi
Fips
intelppm
IPSec
MRxSmb
ndasfat
NetBIOS
NetBT
OMCI
RasAcd
Rdbss
Tcpip

Error - 2008-08-22 18:02:55 - Computer Name = CAROLINE - User Name = AUTORITE NT\SYSTEM - Source = DCOM
Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service EventSystem
avec les arguments ""
pour démarrer le serveur :
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 2008-08-22 18:07:08 - Computer Name = CAROLINE - User Name = AUTORITE NT\SYSTEM - Source = DCOM
Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service EventSystem
avec les arguments ""
pour démarrer le serveur :
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 2008-08-22 18:07:38 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Client DHCP dépend du service NetBIOS sur TCP/IP qui n'a
pas pu démarrer en raison de l'erreur :
%%31

Error - 2008-08-22 18:07:38 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Client DNS dépend du service Pilote du protocole TCP/IP
qui n'a pas pu démarrer en raison de l'erreur :
%%31

Error - 2008-08-22 18:07:38 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Assistance TCP/IP NetBIOS dépend du service AFD qui n'a
pas pu démarrer en raison de l'erreur :
%%31

Error - 2008-08-22 18:07:38 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le service Services IPSEC dépend du service Pilote IPSEC qui n'a pas
pu démarrer en raison de l'erreur :
%%31

Error - 2008-08-22 18:07:38 - Computer Name = CAROLINE - User Name = User SID not found - Source = Service Control Manager
Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se
charger :
Aavmker4
AFD
aswSP
aswTdi
Fips
intelppm
IPSec
MRxSmb
ndasfat
NetBIOS
NetBT
OMCI
RasAcd
Rdbss
Tcpip

Error - 2008-08-22 21:16:25 - Computer Name = CAROLINE - User Name = AUTORITE NT\SYSTEM - Source = DCOM
Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service EventSystem
avec les arguments ""
pour démarrer le serveur :
{1BE1F766-5536-11D1-B726-00C04FB926AF}

[ Security Events ]

[ Anti-Virus Events ]


< End of report >

Répondre à Caroanais
Caroanais   05-09-2008 à 02:19:58
- 0 +

Êtes-vous toujours prêt à m'aider? Est-ce que je dois considérer que mon PC est correct?
Merci

Répondre à Caroanais
Sham_Rock   05-09-2008 à 22:37:14
- 0 +

bonsoir
je vais remplaces Egwene qui est absent pour le moment. :)
comment se comporte ton pc?
reposte un log hijackthis stp

------------------------------ Prévention et protection
/!\Marre de la pub: Firefox sécurisé/!\
 Répondre à Sham_Rock
Caroanais   08-09-2008 à 15:34:58
- 0 +

Bonjour,

Mon Pc va mieux. Tout semble est redevenu normal.
Voilà le rapport :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:33:49, on 2008-09-08
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Thomson\Lyra Jukebox\LyraHDTrayApp\LYRAHD2TrayApp.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe
C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
C:\Program Files\McAfee\Common Framework\UdaterUI.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\McAfee\Common Framework\McTray.exe
C:\Program Files\NDAS\System\ndasmgmt.exe
C:\Program Files\Olympus\DeviceDetector\DM1Service.exe
C:\Program Files\McAfee\Common Framework\FrameworkService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\NDAS\System\ndassvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Logitech\QuickCam10\COCIManager.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://sympatico.msn.ca/defaultf.aspx
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://proxy.uqtr.ca/uqtr.pac
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [LyraHD2TrayApp] "C:\Program Files\Thomson\Lyra Jukebox\LyraHDTrayApp\LYRAHD2TrayApp.exe"
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide
O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe"
O4 - HKLM\..\Run: [mmtask] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe"
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\McAfee\Common Framework\UdaterUI.exe" /StartedFromRunKey
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Acrobat.lnk = ?
O4 - Global Startup: NDAS Device Management.lnk = C:\Program Files\NDAS\System\ndasmgmt.exe
O8 - Extra context menu item: Convertir en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir la cible du lien en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir la sélection en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la sélection en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convertir les liens sélectionnés en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Documents and Settings\Caroline et Dominic\Mes documents\PartyPoker\RunApp.exe
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Documents and Settings\Caroline et Dominic\Mes documents\PartyPoker\RunApp.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: http://www.suspectfile.com
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/ [...] hcImpl.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://carodom96.spaces.live.com// [...] nPUpld.cab
O16 - DPF: {F137B9BA-89EA-4B04-9C67-2074A9DF61FD} (Photo Upload Plugin Class) - http://walmart.pnimedia.com/upload [...] .0.10.cab?
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: DM1Service - OLYMPUS Corporation - C:\Program Files\Olympus\DeviceDetector\DM1Service.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe
O23 - Service: McAfee Framework Service (McAfeeFramework) - McAfee, Inc. - C:\Program Files\McAfee\Common Framework\FrameworkService.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NDAS Service (ndassvc) - XIMETA, Inc. - C:\Program Files\NDAS\System\ndassvc.exe
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe

--
End of file - 12482 bytes

Répondre à Caroanais
Sham_Rock   08-09-2008 à 21:01:36
- 0 +

bonsoir

~Lance Hijackthis “Do a system scan only”.
Coche les lignes qui suivent si encore présentes et uniquement celles-là.
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://carodom96.spaces.live.com// [...] nPUpld.cab
O16 - DPF: {F137B9BA-89EA-4B04-9C67-2074A9DF61FD} (Photo Upload Plugin Class) - http://walmart.pnimedia.com/upload [...] .0.10.cab?




Clique sur Fix checked (en bas à gauche)

supprime le dossier en gras:
C:\Program Files\AVG

supprime les restes de McAfee
désinstaller -antivirus

++++++++++++++


Voilà ce que je te propose, tu vas remplacer Avast! par Antivir, qui est gratuit aussi mais beaucoup plus efficace, tu vas faire un scan avec et poster le rapport. :)


Désinstalle correctement Avast!


Pour le remplacer par Antivir.

-->Tuto<--


Pourquoi changer ? : Avast! vs Antivir
mais aussi:
14 antivirus au banc d'essai

Citation :

Antivir : le plus efficace des gratuits








Message édité par Sham_Rock le 08-09-2008 à 21:02:06
------------------------------ Prévention et protection
/!\Marre de la pub: Firefox sécurisé/!\
 Répondre à Sham_Rock
Caroanais   12-09-2008 à 02:47:18
- 0 +

Bonsoir,

J'ai refait Hijackthis et c'est correct.

Je n'ai pas le fichier AVG, alors je n'ai pu le supprimer.

Je n,arrive pas à supprimer les restes de McAfee. Le logiciel n'est pas inscrit dans le paneau de configuration - ajout et suppression de programme. Si je veux le supprimer par C:\Program Files\McAfee, j'ai des erreurs et cela ne fonctionne pas.

J'ai un lien nommé "Antivirus XP 2008" dans Démarrer-programme. Est-ce le virus qui est encore dans mon ordi.

Comme je n'ai pas réussi à faire les autres manipulations, je n'ai pas encore désintallé Avast et installé Antivir.

Merci

Répondre à Caroanais
Sham_Rock   12-09-2008 à 19:19:28
- 0 +

bonsoir
utilise ce lien:
désinstaller -antivirus

après, tu cherches ce que tu veux supprimer et tu utilises les exécutables fournis par les dev d'antivirus.

------------------------------ Prévention et protection
/!\Marre de la pub: Firefox sécurisé/!\
 Répondre à Sham_Rock
Caroanais   15-09-2008 à 17:05:05
- 0 +

Bonjour,

Comme le logiciel McAfee n'est pas inscrit dans le paneau de configuration - ajout et suppression de programme, je ne peux suivre les consignes proposées dans votre lien. Jai supprimé les fichiers manuellement, mais il y en a quelques-uns qui étaient protégés en écriture.

Je n'ai pas le fichier AVG, alors je n'ai pu le supprimer.

J'ai un lien nommé "Antivirus XP 2008" dans Démarrer-programme. Est-ce le virus qui est encore dans mon ordi ou est-ce un logiciel sécuritaire?

J'ai installé Antivir

Répondre à Caroanais
Sham_Rock   15-09-2008 à 21:46:15
- 0 +

bonsoir

Citation :

J'ai un lien nommé "Antivirus XP 2008" dans Démarrer-programme. Est-ce le virus qui est encore dans mon ordi ou est-ce un logiciel sécuritaire?


supprime ce lien, oui, c'est le rogue, ce n'est pas un logiciel de sécurité, c'est une arnaque.

fais un scan avec antivir et poste le rapport

ajoute un log hijackthis, on va enlever les restes de McAfee à la main.

------------------------------ Prévention et protection
/!\Marre de la pub: Firefox sécurisé/!\
 Répondre à Sham_Rock
Caroanais   17-09-2008 à 16:12:38
- 0 +

Que voulez-vous dire par unlog hijackthis? Est-ce la même chose que dans les messages précédents?

Je sais où sont les restes de McAfee (du moins quelques fichiers), car je les ai placé dans un dossier sur le bureau.

Je fais le scan et je vous poste le rapport.

Répondre à Caroanais
Sham_Rock   17-09-2008 à 20:14:10
- 0 +

bonsoir

Citation :

Que voulez-vous dire par unlog hijackthis? Est-ce la même chose que dans les messages précédents?


oui :)

------------------------------ Prévention et protection
/!\Marre de la pub: Firefox sécurisé/!\
 Répondre à Sham_Rock
Caroanais   18-09-2008 à 03:54:48
- 0 +

Voici le rapport Antivir :



Avira AntiVir Personal
Report file date: 17 septembre 2008 10:13

Scanning for 1621264 virus strains and unwanted programs.

Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 3) [5.1.2600]
Boot mode: Normally booted
Username: SYSTEM
Computer name: CAROLINE

Version information:
BUILD.DAT : 8.1.0.331 16934 Bytes 2008-08-12 11:46:00
AVSCAN.EXE : 8.1.4.7 315649 Bytes 2008-06-26 14:57:53
AVSCAN.DLL : 8.1.4.0 40705 Bytes 2008-05-26 13:56:40
LUKE.DLL : 8.1.4.5 164097 Bytes 2008-06-12 18:44:19
LUKERES.DLL : 8.1.4.0 12033 Bytes 2008-05-26 13:58:52
ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 2007-07-18 16:33:34
ANTIVIR1.VDF : 7.0.5.1 8182784 Bytes 2008-06-24 19:54:15
ANTIVIR2.VDF : 7.0.6.153 3341312 Bytes 2008-09-12 13:15:55
ANTIVIR3.VDF : 7.0.6.170 133120 Bytes 2008-09-17 13:40:58
Engineversion : 8.1.1.28
AEVDF.DLL : 8.1.0.5 102772 Bytes 2008-02-25 15:58:21
AESCRIPT.DLL : 8.1.0.70 319866 Bytes 2008-09-15 13:16:03
AESCN.DLL : 8.1.0.23 119156 Bytes 2008-07-10 18:44:49
AERDL.DLL : 8.1.1.1 397683 Bytes 2008-09-15 13:16:02
AEPACK.DLL : 8.1.2.1 364917 Bytes 2008-07-15 18:58:35
AEOFFICE.DLL : 8.1.0.23 196987 Bytes 2008-09-15 13:16:01
AEHEUR.DLL : 8.1.0.51 1397111 Bytes 2008-09-15 13:16:00
AEHELP.DLL : 8.1.0.15 115063 Bytes 2008-07-10 18:44:48
AEGEN.DLL : 8.1.0.36 315764 Bytes 2008-09-15 13:15:58
AEEMU.DLL : 8.1.0.7 430452 Bytes 2008-07-31 14:33:21
AECORE.DLL : 8.1.1.11 172406 Bytes 2008-09-15 13:15:57
AEBB.DLL : 8.1.0.1 53617 Bytes 2008-07-10 18:44:48
AVWINLL.DLL : 1.0.0.12 15105 Bytes 2008-07-09 14:40:05
AVPREF.DLL : 8.0.2.0 38657 Bytes 2008-05-16 15:28:01
AVREP.DLL : 8.0.0.2 98344 Bytes 2008-09-15 13:15:56
AVREG.DLL : 8.0.0.1 33537 Bytes 2008-05-09 17:26:40
AVARKT.DLL : 1.0.0.23 307457 Bytes 2008-02-12 14:29:23
AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 2008-06-12 18:27:49
SQLITE3.DLL : 3.3.17.1 339968 Bytes 2008-01-22 23:28:02
SMTPLIB.DLL : 1.2.0.23 28929 Bytes 2008-06-12 18:49:40
NETNT.DLL : 8.0.0.1 7937 Bytes 2008-01-25 18:05:10
RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 2008-06-12 19:48:07
RCTEXT.DLL : 8.0.52.0 86273 Bytes 2008-06-27 19:34:37

Configuration settings for the scan:
Jobname..........................: Complete system scan
Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: on
Scan boot sector.................: on
Boot sectors.....................: C:, J:,
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: All files
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium
Deviating risk categories........: +APPL,+GAME,+JOKE,+PCK,+SPR,

Start of the scan: 17 septembre 2008 10:13

The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'iexplore.exe' - '1' Module(s) have been scanned
Scan process 'COCIManager.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'iPodService.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'ndassvc.exe' - '1' Module(s) have been scanned
Scan process 'ndasmgmt.exe' - '1' Module(s) have been scanned
Scan process 'mdm.exe' - '1' Module(s) have been scanned
Scan process 'DM1Service.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'GoogleToolbarNotifier.exe' - '1' Module(s) have been scanned
Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'SweetIM.exe' - '1' Module(s) have been scanned
Scan process 'mmtask.exe' - '1' Module(s) have been scanned
Scan process 'LVComSX.exe' - '1' Module(s) have been scanned
Scan process 'QuickCam10.exe' - '1' Module(s) have been scanned
Scan process 'Communications_Helper.exe' - '1' Module(s) have been scanned
Scan process 'realplay.exe' - '1' Module(s) have been scanned
Scan process 'acrotray.exe' - '1' Module(s) have been scanned
Scan process 'qttask.exe' - '1' Module(s) have been scanned
Scan process 'apdproxy.exe' - '1' Module(s) have been scanned
Scan process 'mm_tray.exe' - '1' Module(s) have been scanned
Scan process 'LYRAHD2TrayApp.exe' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'DVDLauncher.exe' - '1' Module(s) have been scanned
Scan process 'tfswctrl.exe' - '1' Module(s) have been scanned
Scan process 'smax4pnp.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'LVPrcSrv.exe' - '1' Module(s) have been scanned
Scan process 'LEXPPS.EXE' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'LEXBCES.EXE' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'ati2evxx.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
48 processes with 48 modules were scanned

Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!
Master boot sector HD1
[INFO] No virus was found!

Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Boot sector 'J:\'
[INFO] No virus was found!

Starting to scan the registry.
The registry was scanned ( '62' files ).


Starting the file scan:

Begin scan in 'C:\'
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\Program Files\Any Video Converter Professional\avcdrm.dll
[DETECTION] This file has been compressed using unusual runtime compression (PCK/Armadillo). Please verify the origin of this file.
[NOTE] The file was moved to '493451be.qua'!
C:\System Volume Information\_restore{2D63D8F0-C5BB-4B0B-97C6-67359D2C80F2}\RP1031\A0102162.scr
[DETECTION] Contains recognition pattern of the JOKE/BlueScreen.B joke
[NOTE] The file was moved to '49029c78.qua'!
C:\System Volume Information\_restore{2D63D8F0-C5BB-4B0B-97C6-67359D2C80F2}\RP1031\A0102176.scr
[DETECTION] Contains recognition pattern of the JOKE/BlueScreen.B joke
[NOTE] The file was moved to '49029c82.qua'!
C:\System Volume Information\_restore{2D63D8F0-C5BB-4B0B-97C6-67359D2C80F2}\RP1031\A0102194.scr
[DETECTION] Contains recognition pattern of the JOKE/BlueScreen.B joke
[NOTE] The file was moved to '49029c86.qua'!
C:\System Volume Information\_restore{2D63D8F0-C5BB-4B0B-97C6-67359D2C80F2}\RP1033\A0102333.exe
[DETECTION] Contains recognition pattern of the APPL/Fraud.XPAntivirus.PE application
[NOTE] The file was moved to '49029c91.qua'!
C:\System Volume Information\_restore{2D63D8F0-C5BB-4B0B-97C6-67359D2C80F2}\RP1053\A0106786.dll
[DETECTION] This file has been compressed using unusual runtime compression (PCK/Armadillo). Please verify the origin of this file.
[NOTE] The file was moved to '49029d4b.qua'!
Begin scan in 'J:\' <Disque dur externe>


End of the scan: 17 septembre 2008 20:36
Used time: 10:23:42 Hour(s)

The scan has been done completely.

10399 Scanning directories
542185 Files were scanned
6 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
0 files were deleted
0 files were repaired
6 files were moved to quarantine
0 files were renamed
1 Files cannot be scanned
542178 Files not concerned
1845 Archives were scanned
1 Warnings
6 Notes

Répondre à Caroanais
Caroanais   18-09-2008 à 03:56:43
- 0 +

Voici l'autre :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:55:40, on 2008-09-17
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Thomson\Lyra Jukebox\LyraHDTrayApp\LYRAHD2TrayApp.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe
C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Olympus\DeviceDetector\DM1Service.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\NDAS\System\ndasmgmt.exe
C:\Program Files\NDAS\System\ndassvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Logitech\QuickCam10\COCIManager.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avcenter.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avscan.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://sympatico.msn.ca/defaultf.aspx
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://proxy.uqtr.ca/uqtr.pac
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [LyraHD2TrayApp] "C:\Program Files\Thomson\Lyra Jukebox\LyraHDTrayApp\LYRAHD2TrayApp.exe"
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide
O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe"
O4 - HKLM\..\Run: [mmtask] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe"
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\McAfee\Common Framework\UdaterUI.exe" /StartedFromRunKey
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Acrobat.lnk = ?
O4 - Global Startup: NDAS Device Management.lnk = C:\Program Files\NDAS\System\ndasmgmt.exe
O8 - Extra context menu item: Convertir en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir la cible du lien en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir la sélection en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la sélection en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convertir les liens sélectionnés en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Documents and Settings\Caroline et Dominic\Mes documents\PartyPoker\RunApp.exe
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Documents and Settings\Caroline et Dominic\Mes documents\PartyPoker\RunApp.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: http://www.download.com
O15 - Trusted Zone: http://www.suspectfile.com
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/ [...] hcImpl.cab
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: DM1Service - OLYMPUS Corporation - C:\Program Files\Olympus\DeviceDetector\DM1Service.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe
O23 - Service: McAfee Framework Service (McAfeeFramework) - Unknown owner - C:\Program Files\McAfee\Common Framework\FrameworkService.exe (file missing)
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NDAS Service (ndassvc) - XIMETA, Inc. - C:\Program Files\NDAS\System\ndassvc.exe
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe

--
End of file - 11857 bytes

Répondre à Caroanais
Sham_Rock   18-09-2008 à 21:11:36
- 0 +

bonsoir

Etape 1

Tu cliques sur démarrer, tu cliques executer et tu tapes dans la boîte de dialogue: services.msc , tu recherches la ligne de service McAfee Framework Service et tu fais" type de démarrage désactivé" puis et "type de démarrage" sur arrêter.

Etape 2


Lance Hijackthis, choisir Open the Misc.Tools section
la fenêtre "Configuration va s'ouvrir
clique sur Delete a NT service...
la fenêtre "Delete a Windows NT service" va s'ouvrir
Entre dans la zone de dialogue :

McAfeeFramework




Note : assure-toi de ne pas mettre d'espace, ni avant, ni après !
clique OK

Une autre fenêtre devrait s'ouvrir, donnant des informations sur le service et demandant si tu souhaites re-démarrer.
Clique NO


Etape 3

Ensuite tu n'a plus qu'à supprimer les fichiers et les dossiers.

~Supprime
Le dossiers en gras qui suit si encore présent :
C:\Program Files\McAfee


+++++++++++

d'autres soucis?

------------------------------ Prévention et protection
/!\Marre de la pub: Firefox sécurisé/!\
 Répondre à Sham_Rock
Caroanais   19-09-2008 à 02:46:38
- 0 +

Tout a fonctionné!! Mille fois merci!!!

Est-ce que je dois supprimer tous les logiciels que nous avons utilisés dans les manipulations?

J'ai lu que l'Antivir ne filtrait pas les courriels dans la version gratuite. Je me demande s'il ne serait pas préférable que j'achète un Antivirus plus efficace. Qu'en pensez-vous?

Répondre à Caroanais
Sham_Rock   19-09-2008 à 23:07:49
- 0 +

bonsoir
la version gratuite suffit amplement ;)

Supprime tous les programmes installés pour la désinfection.


Merci de consulter ce dossier (en pdf) pour en connaître davantage sur les risques du Net.

http://www.malekal.com/fichiers/projetantimalwares/reagir_miniban.gif

Si tu trouves ce document intéressant, n'hésite pas à le transmettre à tes contacts.

Si tu en as assez d'être assailli de publicités durant ta navigation, installe Firefox sécurisé avec les extensions noscript et AdBlock Plus.

~Edite ton premier message (en cliquant sur la gomme) et marque [résolu] dans le titre.

:hello:

------------------------------ Prévention et protection
/!\Marre de la pub: Firefox sécurisé/!\
 Répondre à Sham_Rock
Créer un nouveau sujet Répondre
Tom's Guide > Forum > Sécurité - Virus > AntivirXP08- résolu
Aller à :

Il y a 1310 utilisateurs connus et inconnus. Pour voir la liste des connectés connus, cliquez ici.

Plan du forum
Forum Bestofmedia ©
2000-2009 Bestofmedia Group
Page générée en 3,533 secondes
Attention

Vous allez répondre sur un sujet resté inactif pendant plus de 6 mois.
Assurez-vous d'apporter des éléments nouveaux à la discussion avant de poursuivre.

Répondre Annuler
Liens