résolu Plus msn

Yop! On va regarder ça!  

/!\ Pour le bon déroulement de la désinfection:

N'ouvre pas le même sujet sur des forums différents, c'est une perte de temps pour tout le monde!

Évites les manipulations hasardeuses avec ton PC, mieux vaut demander!

Prends le temps de lire corectement et de comprendre l'ensemble des procédures qui te seront demandées.

Suis à la lettre chaque procédure qui te sera fournie.

Si tu as une quelconque question ou un quelconque problème, n'hésite pas à me demander.

Dans un souci de lisibilité du sujet, merci de bien vouloir héberger tous les rapports ici, et de poster les liens dans la discussion.  

*****

Télécharge OTL(de OldTimer) sur ton Bureau.

Double-clique sur OTL pour le lancer.

(Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)

Une fenêtre apparaît. Dans la section Rapport en haut de cette fenêtre, coche Rapport minimal.

Coche également les cases à côté de Recherche Lop et Recherche Purity.

Enfin, clique sur le bouton Analyse. Le scan ne prendra pas beaucoup de temps.

Une fois l'analyse terminée, deux fenêtres vont s'ouvrir dans le Bloc-notes : OTL.txt et Extras.txt. Ils se trouvent au même endroit que OTL (donc par défaut sur le Bureau).

Héberge les rapports, puis donne leurs liens.

bonsoir je vous remerci, d'avoir dépondu aussi vite,m'ais en faite je suis un peus niard, et j'ais pas trés bien compris la démarche a suivre,vous serait_il possible de m'éxpliqué plus préssisément le deroulement pressis,je vous remerci d'avance et excuser mon incompréention,, benoit

Je ne vois pas ce que tu n'as pas compris!   Tout est déjà détaillé justement, je peux pas plus détaillé.  

Dis ce que tu ne comprend pas.  

bonsoir merci d'étre a mon ecoute ben en fait c'est surtout la fin j'ais fait un copier colé ,,,,,Une fois l'analyse terminée, deux fenêtres vont s'ouvrir dans le Bloc-notes : OTL.txt et Extras.txt. Ils se trouvent au même endroit que OTL (donc par défaut sur le Bureau).
Héberge les rapports, puis donne leurs liens.
merci pour lexplication

bonsoir,, et j'ais un antivirus esque il faut le d'ésactivé; et faut_il fermer tout

bonsoir, déja je trouve pas ou télecharger otl,sa commence bien ! et le rapport c'est quoi? et je fait quoi avec ?? ESQUE QUIL FAUT D2SACTIV2 AVAST ? faut-il fermmé tout ? MERCI

Non, ne désactive rien.   Suis juste à la lettre ce qu'il y a de marqué!

Pour télécharger OTL, tu n'as qu'a cliqué sur OTL dans mon message précédent, c'est un lien qui te téléchargera le fichier  

bonsoir c bon j'ais lencer lanalise sa prend plusieur heures ??

bonsoir j'ais deposé lesfichier j'épereque j'ais bien procédé et m'intenent je fait quoi ?? MERCI

Il faut que tu me donnes les liens!   Après l'envoi des fichiers, tu as une page qui s'ouvre en t'indiquant les liens.  

Si tu n'arrives pas à les voir, fait un copier/coller des rapports directement dans une réponse.

NB: tu n'es pas obligé de citer mes messages pour répondre à chaque fois, tu n'as qu'à cliquer sur le bouton répondre en haut ou en bas de page.  

OTL Extras logfile created on: 03/06/2010 22:31:24 - Run 1
OTL by OldTimer - Version 3.2.5.3 Folder = C:\Users\Daniel\Desktop
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 55,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 77,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 220,88 Gb Total Space | 150,89 Gb Free Space | 68,31% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PC-DE-DANIEL
Current User Name: Daniel
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~3\Office12\ONENOTE.EXE "%L" File not found
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"UacDisableNotify" = 0
"InternetSettingsDisableNotify" = 0
"AutoUpdateDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\OrangeHSS\Connectivity\ConnectivityManager.exe" = C:\Program Files\OrangeHSS\Connectivity\ConnectivityManager.exe:*:enabled:CSS -- (France Telecom SA)


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{4F4CD114-967A-4EDF-960E-5DCEC8DB2F4B}" = lport=445 | protocol=6 | dir=in | app=system |
"{5A988C69-402B-4006-A2B4-2FC042AF3FBB}" = rport=445 | protocol=6 | dir=out | app=system |
"{62FE754D-12DB-4BCE-A1D6-CA696E47F9AE}" = lport=138 | protocol=17 | dir=in | app=system |
"{6D203279-4C16-4EDA-8F5C-9828635D8916}" = lport=139 | protocol=6 | dir=in | app=system |
"{76B461E8-74E1-463E-8B21-323F8A9751E0}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{8F19B3E7-0D00-4E8F-9E85-7629DCAC9736}" = rport=138 | protocol=17 | dir=out | app=system |
"{9A5E6720-E152-4CAB-9FBC-A8C34FC9E1CB}" = lport=137 | protocol=17 | dir=in | app=system |
"{A8D61081-5405-4540-B104-163C0CB488B6}" = lport=2869 | protocol=6 | dir=in | app=system |
"{B29D2CAD-4E61-46A4-B0DE-E23B547DCAA3}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{B9E440A2-5CFD-4F33-A709-6C6E2784D793}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{C07C4D57-26C2-444C-8CDF-7CD67FCB983C}" = rport=139 | protocol=6 | dir=out | app=system |
"{EC406B67-95FE-45D1-8517-B40C924796BC}" = rport=137 | protocol=17 | dir=out | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0B09BB0D-6ED8-49DC-A155-EB36ED5A3ACD}" = dir=in | app=c:\program files\windows live\messenger\wlcsdk.exe |
"{31B6D27B-E391-4107-95CD-2BFC1B018B85}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{86743569-F752-48D1-9225-FDF508CFAA2E}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{B48B3ED4-5769-4570-AEDC-CB2EA4019894}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{BA3E20A6-81E5-4E3D-94BF-7812A907F0F4}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{BA946CBB-7C7C-4041-A173-A1C9A4337D32}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{BC44962C-4AA7-44A8-A97E-408B0632E03F}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{CAF9FAAD-1ABA-443A-94BC-BB3490284A50}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{FA02505C-B8C0-4DBB-8B9E-5997D3DFC671}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe |
"TCP Query User{B6526946-500F-42AB-9676-60C2F3B2647C}C:\program files\vuze\azureus.exe" = protocol=6 | dir=in | app=c:\program files\vuze\azureus.exe |
"TCP Query User{D694C838-C69C-4FF8-B12F-BD73C128A286}C:\program files\vuze\azureus.exe" = protocol=6 | dir=in | app=c:\program files\vuze\azureus.exe |
"UDP Query User{1B11964D-E059-48EF-A4C6-E943A823960D}C:\program files\vuze\azureus.exe" = protocol=17 | dir=in | app=c:\program files\vuze\azureus.exe |
"UDP Query User{F820CEEA-5D52-4D21-8BF8-1D7E768AB871}C:\program files\vuze\azureus.exe" = protocol=17 | dir=in | app=c:\program files\vuze\azureus.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00549AEA-C848-4F02-F362-A8F1D1788C3A}" = Catalyst Control Center Localization Czech
"{0214A441-A4AB-43A8-8DEF-2F73C5364673}" = Microsoft Works
"{02EA9110-972B-2B48-7382-9B6047077B3C}" = Catalyst Control Center Localization Portuguese
"{05AE422A-502B-8468-43C2-54DD474899B5}" = CCC Help Turkish
"{079A1DB4-209F-879F-374A-84E5A96DF338}" = Catalyst Control Center Localization Italian
"{0C43A18C-0936-672A-C2C0-02F15150F64F}" = CCC Help Hungarian
"{0C8A037B-90F5-6AA7-5EC2-B07CCCDFB141}" = Catalyst Control Center Localization Dutch
"{0C8EA3FD-F006-EAEA-79C4-2D217FD379DB}" = Catalyst Control Center Localization Chinese Standard
"{0ED40D2A-7131-4FE7-941E-5C329336F712}" = HDReg France
"{10C74936-0C0A-06BA-D824-716CE52601B1}" = CCC Help Korean
"{165C3ED5-3876-E7C3-85BC-8467E3CE0F70}" = Catalyst Control Center Localization German
"{1796FCDD-C72C-314A-E8FF-5C66F275BEFF}" = Catalyst Control Center Localization Chinese Traditional
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1AFE2819-1217-1CCF-3486-B8D96C743FDA}" = CCC Help Czech
"{1B347F2A-B755-4F30-0062-48CFD72D1176}" = CCC Help Dutch
"{1D4BA533-9783-AF5F-B13C-85F2DDB9D3A8}" = CCC Help English
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live
"{2075CB0A-D26F-4DAA-B424-5079296B43BA}" = Windows Live FolderShare
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{2621588B-04F1-F477-0572-EBB0B48010A4}" = Catalyst Control Center Graphics Light
"{3048FFC3-44DB-DED5-0AEF-A8F4D6BE7E44}" = CCC Help Chinese Standard
"{36A95FCC-0D0A-B711-BADE-F14733A71CF7}" = Catalyst Control Center Core Implementation
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3E31821C-7917-367E-938E-E65FC413EA31}" = Microsoft .NET Framework 3.5 Language Pack SP1 - fra
"{3EE33958-7381-4E7B-A4F3-6E43098E9E9C}" = Browser Address Error Redirector
"{4634B21A-CC07-4396-890C-2B8168661FEA}" = Windows Live Writer
"{46ABBC54-1872-4AA3-95E2-F2C063A63F31}" = Installation Windows Live
"{4A74E946-7C5E-6F6F-8104-ACB90D679720}" = CCC Help Spanish
"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
"{4FFDDDF1-9D56-44C0-792D-D5C64DFC529E}" = Catalyst Control Center Localization Spanish
"{50CF5A0E-6FC1-5DF1-FDD6-79D5CFC1151B}" = Catalyst Control Center Localization Finnish
"{521D0313-4184-C6DE-8E4B-CBC40BDE4D55}" = CCC Help German
"{53B20C18-D8D4-4588-8737-9BBFE303C354}" = Windows Live Movie Maker
"{56872F20-55EE-335D-BE86-DFD12B32F36A}" = Catalyst Control Center Localization Japanese
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3
"{5B496CEF-CCC4-61E3-39F3-3DFEF6B6FB49}" = CCC Help Portuguese
"{5C2578B9-2362-5D8E-997B-2123ED2DF2A2}" = Catalyst Control Center Graphics Full Existing
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.6
"{5DD76286-9BE7-4894-A990-E905E91AC818}" = Windows Live Mail
"{61E8B062-51F9-4BBB-B1FC-E2A4A40944F5}" = Adobe Flash Player 9 Plugin
"{626FEA24-2B91-DA81-3C11-304001F25843}" = CCC Help Norwegian
"{6EBA529D-BF46-ABED-1CCF-70C7C2B70473}" = Catalyst Control Center Localization Danish
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{770F1BEC-2871-4E70-B837-FB8525FFA3B1}" = Windows Live Messenger
"{7EB0E475-2E9F-E094-03DB-4F2CD5B62934}" = Catalyst Control Center Localization Thai
"{813CB27B-AD46-3C9B-A606-FB08C3B2B1A0}" = Catalyst Control Center Localization French
"{81CAA963-C45B-9F3F-41F3-4A96E5CE5998}" = CCC Help Greek
"{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}" = Windows Live Call
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8169 8168 8101E 8102E Ethernet Driver
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{90120000-0016-040C-0000-0000000FF1CE}" = Microsoft Office Excel MUI (French) 2007
"{90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007
"{90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-040C-0000-0000000FF1CE}" = Microsoft Office Word MUI (French) 2007
"{90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2007
"{90120000-001F-0401-0000-0000000FF1CE}_HOMESTUDENTR_{14809F99-C601-4D4A-9391-F1E8FAA964C5}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007
"{90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-0020-040C-0000-0000000FF1CE}" = Module de compatibilité pour Microsoft Office System 2007
"{90120000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2007
"{90120000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2007
"{90120000-006E-040C-0000-0000000FF1CE}_HOMESTUDENTR_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-040C-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (French) 2007
"{90120000-00A1-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{9075350B-5B82-5764-F41D-7D00EE2EF674}" = Catalyst Control Center Localization Russian
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{926AD087-C20B-96D6-6956-453018AD1875}" = CCC Help Danish
"{95120000-00AF-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (French)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{980B9958-1239-4FC5-8C88-AC5650321036}" = Nero 8 Essentials
"{98191369-6008-58B7-3C14-CDBF12874C43}" = CCC Help Polish
"{98613C99-1399-416C-A07C-1EE1C585D872}" = SeaTools for Windows
"{9C1278D8-046C-909A-60C5-01A7A5090E58}" = CCC Help Italian
"{9C1EF1BD-F063-B546-7BE9-5BC8C9D0F2FF}" = ccc-core-static
"{9EB67045-12A7-40C0-3E45-9C057912692E}" = ccc-utility
"{A4EA72C4-DBBB-B518-F77F-6FA9D4789E4F}" = Catalyst Control Center Graphics Previews Vista
"{A61DF933-0C64-DECD-2CFD-15C69545DAB4}" = Catalyst Control Center Graphics Full New
"{A7E3A91A-45A6-A9B6-5609-B055F2D8B3D3}" = CCC Help French
"{A8523530-9702-C804-5EF7-5C4DB0E08572}" = CCC Help Chinese Traditional
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1036-7B44-A81300000003}" = Adobe Reader 8.1.3 - Français
"{AC76BA86-7AD7-5464-3428-800000000003}" = Spelling Dictionaries Support For Adobe Reader 8
"{B131E59D-202C-43C6-84C9-68F0C37541F1}" = Galerie de photos Windows Live
"{B180AB61-CE1E-92A4-DEB4-CA83F920DBC4}" = Catalyst Control Center Localization Greek
"{B19D375A-E1C8-F9AB-1A33-EBE471FB770B}" = Catalyst Control Center Localization Polish
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C2E20A5A-CDEE-FEDA-F742-B3C273563AAF}" = CCC Help Finnish
"{C4A4722E-79F9-417C-BD72-8D359A090C97}" = Samsung PC Studio 3
"{C79A37F3-C076-48BE-B290-F4C8676ABD74}" = Samsung PC Studio 3
"{CADBED42-4242-36E3-1EDD-2A7CC440C873}" = Catalyst Control Center Localization Norwegian
"{CD647571-CAF5-5DC2-D7C7-9DC8CEAC661E}" = CCC Help Thai
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D2321C46-CC24-D0C4-1363-0AA32D665290}" = CCC Help Swedish
"{D642E38E-0D24-486C-9A2D-E316DD696F4B}" = Microsoft XML Parser
"{DBF4F732-2E2F-66D2-D7C6-CCBED6B34905}" = Catalyst Control Center Localization Swedish
"{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}" = Assistant de connexion Windows Live
"{DD647C03-0DDB-ABB8-9A18-5DA8F6873FBC}" = Skins
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E4304CE6-86D7-440E-FC3D-63CB77862AF7}" = CCC Help Russian
"{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant
"{E9FCE60C-8926-46B6-BB1E-40BA2B99EC8E}" = O2Micro Flash Memory Card Reader Driver (x86)
"{EABCA81A-E96B-6163-CF2B-1A7DF959BEB4}" = Catalyst Control Center InstallProxy
"{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}" = Samsung PC Studio 3 USB Driver Installer
"{EBC73B8D-5DC5-92F0-0F2C-B4476DA45E0F}" = Catalyst Control Center Localization Hungarian
"{EDA5C0FD-656E-7311-9CC7-7B46C3A23FDC}" = Catalyst Control Center Localization Turkish
"{EEF2C08D-C070-D3AD-4A56-B3094A2990DC}" = CCC Help Japanese
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F54AC413-D2C6-4A24-B324-370C223C6250}" = Adobe Photoshop Elements 6.0
"{F7B0939E-58DF-11DF-B3A6-005056806466}" = Google Earth
"{F7D27C70-90F5-49B9-B188-0A133C0CE353}" = Windows Live Toolbar
"{F8BBD906-76D4-EC1F-7200-C192C5135069}" = ATI Catalyst Install Manager
"{FCA73084-4918-1FAD-8550-A72EC233E4F3}" = Catalyst Control Center Localization Korean
"{ORAHSS}.UninstallSuite" = Orange - Logiciels Internet
"8461-7759-5462-8226" = Vuze
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Photoshop Elements 6" = Adobe Photoshop Elements 6.0
"Adobe Shockwave Player" = Adobe Shockwave Player
"AdobePE6" = Adobe Photoshop Elements 6
"AdobeReader" = Adobe Reader 8
"Ask Toolbar_is1" = Vuze Toolbar
"AUDIO" = AUDIO DRIVER V6.0.1.5559
"avast!" = avast! Antivirus
"CARDREADER" = cardreader Driver V1.0.2.906 for MMC/SD v1.1.1.301 for MS/XD
"Chipset" = Intel Chipset software V8.7.0.1007
"Google Desktop" = Google Desktop
"Google Updater" = Outil de mise à jour Google
"GoogleBAE" = Google BAE
"GoogleDesktop_XX" = GoogleDesktop
"GoogleToolbar" = GoogleToolbar
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"ImageWriter" = Packard Bell ImageWriter
"Infocentre" = Infocentre Rev. 2.0.0.1
"LAN" = Realtek RTL8102 Driver V6.200.1130.2007
"LCDTest" = Packard Bell LCD Test
"METABOLI" = Metaboli
"Microsoft .NET Framework 3.5 Language Pack SP1 - fra" = Module linguistique Microsoft .NET Framework 3.5 SP1- fra
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"myBabylon_English Toolbar" = myBabylon_English Toolbar
"Nero8" = Nero 8 Essentials
"OFF2k7_FR" = Microsoft® Office Trial 2007
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"SETUPMYPC_FR" = SetUp My PC
"ShockwaveFlash" = Adobe Flash Player 9 ActiveX
"SKYPE" = Skype 3.6.2.248
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"TOUCHPAD" = TOUCHPAD DRIVER V10.0.1.0
"Updator" = Packard Bell Updator
"VGA" = VGA DRIVERS V8.476.0.0
"VLC media player" = VLC media player 0.9.9
"WinLiveSuite_Wave3" = Installation Windows Live
"works9se" = Microsoft Works 9 SE

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Notification de cadeaux MSN" = Notification de cadeaux MSN

========== Last 10 Event Log Errors ==========

[ Antivirus Events ]
Error - 31/12/2009 09:59:25 | Computer Name = PC-de-Daniel | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Users\Daniel\AppData\Local\Google\Google Desktop\65bdacc104e8\dbc2e.ht1 failed,
00000005.

Error - 02/01/2010 08:58:20 | Computer Name = PC-de-Daniel | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Users\Daniel\AppData\Local\Google\Google Desktop\65bdacc104e8\rpmh.ht1 failed,
00000005.

Error - 03/01/2010 07:21:17 | Computer Name = PC-de-Daniel | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Users\Daniel\AppData\Local\Google\Google Desktop\65bdacc104e8\rpm1mh.ht1 failed,
00000005.

Error - 18/03/2010 08:34:04 | Computer Name = PC-de-Daniel | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Users\Daniel\AppData\Local\Google\Google Desktop\65bdacc104e8\rpm1mh.ht1 failed,
00000005.

Error - 21/03/2010 17:39:47 | Computer Name = PC-de-Daniel | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Users\Daniel\AppData\Local\Google\Google Desktop\65bdacc104e8\rpm1mh.ht1 failed,
00000005.

Error - 02/04/2010 17:00:25 | Computer Name = PC-de-Daniel | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Users\Daniel\AppData\Local\Google\Google Desktop\65bdacc104e8\hpt2i.ht1 failed,
00000005.

Error - 02/06/2010 07:28:29 | Computer Name = PC-de-Daniel | Source = avast! | ID = 33554522
Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of
C:\Windows\System32\conime.exe failed, 00000005.

[ Application Events ]
Error - 25/05/2010 14:11:17 | Computer Name = PC-de-Daniel | Source = WinMgmt | ID = 10
Description =

Error - 26/05/2010 01:09:41 | Computer Name = PC-de-Daniel | Source = WinMgmt | ID = 10
Description =

Error - 26/05/2010 07:06:52 | Computer Name = PC-de-Daniel | Source = WinMgmt | ID = 10
Description =

Error - 26/05/2010 14:26:10 | Computer Name = PC-de-Daniel | Source = WinMgmt | ID = 10
Description =

Error - 27/05/2010 01:08:03 | Computer Name = PC-de-Daniel | Source = WinMgmt | ID = 10
Description =

Error - 27/05/2010 01:37:54 | Computer Name = PC-de-Daniel | Source = EventSystem | ID = 4621
Description =

Error - 27/05/2010 06:49:08 | Computer Name = PC-de-Daniel | Source = WinMgmt | ID = 10
Description =

Error - 27/05/2010 13:15:23 | Computer Name = PC-de-Daniel | Source = WinMgmt | ID = 10
Description =

Error - 28/05/2010 01:05:10 | Computer Name = PC-de-Daniel | Source = WinMgmt | ID = 10
Description =

Error - 28/05/2010 07:04:17 | Computer Name = PC-de-Daniel | Source = WinMgmt | ID = 10
Description =

[ System Events ]
Error - 02/06/2010 13:01:44 | Computer Name = PC-de-Daniel | Source = Service Control Manager | ID = 7000
Description =

Error - 02/06/2010 14:11:55 | Computer Name = PC-de-Daniel | Source = HTTP | ID = 15016
Description =

Error - 02/06/2010 14:12:14 | Computer Name = PC-de-Daniel | Source = Service Control Manager | ID = 7000
Description =

Error - 03/06/2010 01:10:57 | Computer Name = PC-de-Daniel | Source = Dhcp | ID = 1002
Description = Le bail de l'adresse IP 192.168.1.10 pour la carte réseau dont l'adresse
réseau est 0017C442EAD4 a été refusé par le serveur DHCP 192.168.1.1 (celui-ci
a envoyé un message DHCPNACK).

Error - 03/06/2010 01:10:58 | Computer Name = PC-de-Daniel | Source = HTTP | ID = 15016
Description =

Error - 03/06/2010 01:11:20 | Computer Name = PC-de-Daniel | Source = Service Control Manager | ID = 7000
Description =

Error - 03/06/2010 06:41:57 | Computer Name = PC-de-Daniel | Source = HTTP | ID = 15016
Description =

Error - 03/06/2010 06:42:24 | Computer Name = PC-de-Daniel | Source = Service Control Manager | ID = 7000
Description =

Error - 03/06/2010 14:14:09 | Computer Name = PC-de-Daniel | Source = HTTP | ID = 15016
Description =

Error - 03/06/2010 14:15:41 | Computer Name = PC-de-Daniel | Source = Service Control Manager | ID = 7000
Description =


< End of report >

Il me faut l'autre aussi   Le OTL.txt

***

Son rapport:

OTL logfile created on: 03/06/2010 22:31:24 - Run 1
OTL by OldTimer - Version 3.2.5.3 Folder = C:\Users\Daniel\Desktop
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 55,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 77,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 220,88 Gb Total Space | 150,89 Gb Free Space | 68,31% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PC-DE-DANIEL
Current User Name: Daniel
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - C:\Users\Daniel\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Users\Daniel\AppData\Local\Temp\explorer.exe (Yrg9tP4CPuQ)
PRC - C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe (Google Inc.)
PRC - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
PRC - C:\Users\Daniel\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe (Microsoft Corporation)
PRC - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
PRC - C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe ()
PRC - C:\Program Files\AskBarDis\bar\bin\AskService.exe ()
PRC - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
PRC - C:\Program Files\Windows Live\Toolbar\wltuser.exe (Microsoft Corporation)
PRC - C:\Program Files\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation)
PRC - C:\Windows\System32\Macromed\Flash\FlashUtil10b.exe (Adobe Systems, Inc.)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe (Packard Bell BV)
PRC - C:\Program Files\Internet Explorer\IEUser.exe (Microsoft Corporation)
PRC - C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
PRC - C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
PRC - C:\Program Files\OrangeHSS\systray\systrayapp.exe (France Telecom SA)
PRC - C:\Program Files\OrangeHSS\Launcher\Launcher.exe (France Telecom SA)
PRC - C:\Program Files\OrangeHSS\Deskboard\deskboard.exe ()
PRC - C:\Program Files\OrangeHSS\connectivity\connectivitymanager.exe (France Telecom SA)
PRC - C:\Program Files\OrangeHSS\connectivity\CoreCom\OraConfigRecover.exe (France Telecom SA)
PRC - C:\Program Files\OrangeHSS\connectivity\CoreCom\CoreCom.exe (France Telecom SA)
PRC - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe (France Telecom SA)
PRC - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe (France Telecom SA)
PRC - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe (France Telecom SA)
PRC - C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe ()
PRC - C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe (O2Micro International)


========== Modules (SafeList) ==========

MOD - C:\Users\Daniel\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Windows\System32\msscript.ocx (Microsoft Corporation)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (Microsoft Corporation)


========== Win32 Services (SafeList) ==========

SRV - (GoogleDesktopManager-110309-193829) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
SRV - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
SRV - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
SRV - (aswUpdSv) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
SRV - (SeaPort) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
SRV - (ASKUpgrade) -- C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe ()
SRV - (ASKService) -- C:\Program Files\AskBarDis\bar\bin\AskService.exe ()
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV - (FTRTSVC) -- C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe (France Telecom SA)
SRV - (AdobeActiveFileMonitor6.0) -- C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe ()
SRV - (o2flash) -- C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe (O2Micro International)


========== Driver Services (SafeList) ==========

DRV - (aswSP) -- C:\Windows\System32\drivers\aswSP.sys (ALWIL Software)
DRV - (aswFsBlk) -- C:\Windows\System32\drivers\aswFsBlk.sys (ALWIL Software)
DRV - (aswMonFlt) -- C:\Windows\System32\drivers\aswMonFlt.sys (ALWIL Software)
DRV - (aswTdi) -- C:\Windows\System32\drivers\aswTdi.sys (ALWIL Software)
DRV - (aswRdr) -- C:\Windows\System32\drivers\aswRdr.sys (ALWIL Software)
DRV - (StarOpen) -- C:\Windows\System32\drivers\StarOpen.sys ()
DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.)
DRV - (RTHDMIAzAudService) -- C:\Windows\System32\drivers\RtHDMIV.sys (Realtek Semiconductor Corp.)
DRV - (O2MDRDR) -- C:\Windows\System32\drivers\o2media.sys (O2Micro )
DRV - (O2SDRDR) -- C:\Windows\System32\drivers\o2sd.sys (O2Micro )
DRV - (RTL8169) -- C:\Windows\System32\drivers\Rtlh86.sys (Realtek Corporation )
DRV - (MegaSR) -- C:\Windows\system32\drivers\megasr.sys (LSI Corporation, Inc.)
DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.)
DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Corporation)
DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.)
DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems)
DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company)
DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.)
DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic)
DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation)
DRV - (E1G60) Intel(R) -- C:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation)
DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.)
DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation)
DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.)
DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic)
DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic)
DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.)
DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex)
DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.)
DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation)
DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation)
DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.)
DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.)
DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.)
DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.)
DRV - (RTL8187B) -- C:\Windows\System32\drivers\RTL8187B.sys (Realtek Semiconductor Corporation )
DRV - (SynTP) -- C:\Windows\System32\drivers\SynTP.sys (Synaptics, Inc.)
DRV - (ssm_mdm) -- C:\Windows\System32\drivers\ssm_mdm.sys (MCCI Corporation)
DRV - (ssm_mdfl) -- C:\Windows\System32\drivers\ssm_mdfl.sys (MCCI Corporation)
DRV - (ssm_bus) SAMSUNG Mobile USB Device II 1.0 driver (WDM) -- C:\Windows\System32\drivers\ssm_bus.sys (MCCI Corporation)
DRV - (PCAMp50) -- C:\Windows\System32\drivers\PCAMp50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (PCASp50) -- C:\Windows\System32\drivers\PCASp50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation)
DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.)
DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation)
DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.)
DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.)
DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic)
DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic)
DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation)
DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic)
DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.)
DRV - (BrFiltUp) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.)
DRV - (BrFiltLo) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.)
DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.)
DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.)
DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.packardbell.com/?id=9136
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\..\URLSearchHook: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Program Files\myBabylon_English\tbmyBa.dll (Conduit Ltd.)

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.packardbell.com/?id=9136
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll ()
IE - HKCU\..\URLSearchHook: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Program Files\myBabylon_English\tbmyBa.dll (Conduit Ltd.)
IE - HKCU\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[2010/01/22 22:03:49 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\mozilla\Firefox\extensions
[2010/01/22 22:03:49 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Daniel\AppData\Roaming\mozilla\Firefox\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}

O1 HOSTS File: ([2006/09/18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Aide pour le lien d'Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AskBar BHO) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5104.1546\swg.dll (Google Inc.)
O2 - BHO: (myBabylon English Toolbar) - {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Program Files\myBabylon_English\tbmyBa.dll (Conduit Ltd.)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll (Packard Bell)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (myBabylon English Toolbar) - {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Program Files\myBabylon_English\tbmyBa.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {3041D03E-FD4B-44E0-B742-2D9B88305F98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
O3 - HKCU\..\Toolbar\WebBrowser: (myBabylon English Toolbar) - {B2E293EE-FD7E-4C71-A714-5F4750D8D7B7} - C:\Program Files\myBabylon_English\tbmyBa.dll (Conduit Ltd.)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [Google Desktop Search] C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
O4 - HKLM..\Run: [ORAHSSSessionManager] C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe (France Telecom SA)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Skytel] C:\Windows\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [toolbar_eula_launcher] C:\Program Files\Packard Bell\GOOGLE_EULA\EULALauncher.exe ( )
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
O4 - HKCU..\Run: [Microsoft Windows Hosting Service Login] C:\Users\Daniel\AppData\Local\Temp\explorer.exe (Yrg9tP4CPuQ)
O4 - HKCU..\Run: [SmpcSys] C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe (Packard Bell BV)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Notification de cadeaux MSN.lnk = C:\Users\Daniel\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe (Microsoft Corporation)
O4 - Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 - Capture d'écran et lancement.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll (Google Inc.)
O9 - Extra Button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL (Microsoft Corporation)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: localhost ([]http in Local intranet)
O15 - HKCU\..Trusted Domains: mappy.com ([]http in Trusted sites)
O15 - HKCU\..Trusted Domains: orange.fr ([]http in Trusted sites)
O15 - HKCU\..Trusted Domains: voila.fr ([rw.search.ke] http in Trusted sites)
O15 - HKCU\..Trusted Domains: weborama.fr ([orange] http in Trusted sites)
O15 - HKCU\..Trusted Ranges: GD ([http] in Local intranet)
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} http://gfx1.hotmail.com/mail/w3/re [...] dfr-fr.cab (MSN Photo Upload Tool)
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} http://gfx1.hotmail.com/mail/w4/pr [...] dfr-fr.cab (Windows Live Hotmail Photo Upload Tool)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL) - C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL (Google)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Daniel\Pictures\SP_A0305.jpg
O24 - Desktop BackupWallPaper: C:\Users\Daniel\Pictures\SP_A0305.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010/06/03 22:28:43 | 000,571,904 | ---- | C] (OldTimer Tools) -- C:\Users\Daniel\Desktop\OTL.exe
[2010/05/26 07:21:58 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll

========== Files - Modified Within 30 Days ==========

[2010/06/03 22:34:22 | 002,883,584 | -HS- | M] () -- C:\Users\Daniel\ntuser.dat
[2010/06/03 22:30:00 | 000,000,342 | ---- | M] () -- C:\Windows\tasks\Extension de garantie-Daniel.job
[2010/06/03 22:28:46 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Users\Daniel\Desktop\OTL.exe
[2010/06/03 22:16:20 | 000,010,240 | ---- | M] () -- C:\Users\Daniel\Documents\LISTE CONTACT MSN.wps
[2010/06/03 22:16:20 | 000,003,418 | ---- | M] () -- C:\Users\Daniel\AppData\Roaming\wklnhst.dat
[2010/06/03 22:14:04 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010/06/03 22:14:04 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010/06/03 22:10:00 | 000,001,054 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010/06/03 21:10:00 | 000,001,050 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010/06/03 20:27:14 | 000,001,000 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2010/06/03 20:20:25 | 001,470,810 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010/06/03 20:20:25 | 000,669,566 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2010/06/03 20:20:25 | 000,587,178 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010/06/03 20:20:25 | 000,123,556 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2010/06/03 20:20:25 | 000,101,250 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010/06/03 20:16:30 | 000,524,288 | -HS- | M] () -- C:\Users\Daniel\ntuser.dat{a5fa1f55-6e5b-11df-be7e-001e68f5cd8a}.TMContainer00000000000000000001.regtrans-ms
[2010/06/03 20:16:30 | 000,065,536 | -HS- | M] () -- C:\Users\Daniel\ntuser.dat{a5fa1f55-6e5b-11df-be7e-001e68f5cd8a}.TM.blf
[2010/06/03 20:14:09 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/06/03 20:14:02 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/06/03 20:13:57 | 3215,556,608 | -HS- | M] () -- C:\hiberfil.sys
[2010/06/02 17:33:32 | 000,524,288 | -HS- | M] () -- C:\Users\Daniel\ntuser.dat{a5fa1f55-6e5b-11df-be7e-001e68f5cd8a}.TMContainer00000000000000000002.regtrans-ms
[2010/06/02 13:28:33 | 000,524,288 | -HS- | M] () -- C:\Users\Daniel\NTUSER.DAT{e606b3f4-46e8-11df-9c3c-001e68f5cd8a}.TMContainer00000000000000000001.regtrans-ms
[2010/06/02 13:28:33 | 000,065,536 | -HS- | M] () -- C:\Users\Daniel\NTUSER.DAT{e606b3f4-46e8-11df-9c3c-001e68f5cd8a}.TM.blf
[2010/06/01 22:23:46 | 003,617,043 | -H-- | M] () -- C:\Users\Daniel\AppData\Local\IconCache.db
[2010/05/20 20:28:53 | 000,000,000 | ---- | M] () -- C:\ProgramData\LauncherAccess.dt
[2010/05/18 21:13:33 | 000,002,076 | ---- | M] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2010/05/15 13:24:50 | 000,001,001 | ---- | M] () -- C:\Users\Daniel\Desktop\PhotoFiltre.ini
[2010/05/12 11:21:16 | 000,221,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe

========== Files Created - No Company Name ==========

[2010/06/03 13:08:22 | 000,010,240 | ---- | C] () -- C:\Users\Daniel\Documents\LISTE CONTACT MSN.wps
[2010/06/02 17:30:15 | 000,524,288 | -HS- | C] () -- C:\Users\Daniel\ntuser.dat{a5fa1f55-6e5b-11df-be7e-001e68f5cd8a}.TMContainer00000000000000000002.regtrans-ms
[2010/06/02 17:30:15 | 000,524,288 | -HS- | C] () -- C:\Users\Daniel\ntuser.dat{a5fa1f55-6e5b-11df-be7e-001e68f5cd8a}.TMContainer00000000000000000001.regtrans-ms
[2010/06/02 17:30:15 | 000,065,536 | -HS- | C] () -- C:\Users\Daniel\ntuser.dat{a5fa1f55-6e5b-11df-be7e-001e68f5cd8a}.TM.blf
[2010/05/18 21:13:33 | 000,002,076 | ---- | C] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2010/02/11 14:38:47 | 000,000,118 | ---- | C] () -- C:\Windows\System32\MRT.INI
[2009/03/22 19:34:39 | 000,005,632 | ---- | C] () -- C:\Windows\System32\drivers\StarOpen.sys
[2008/08/05 10:08:05 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2008/06/05 11:31:46 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2008/05/22 13:21:21 | 000,000,144 | ---- | C] () -- C:\Windows\RtDefLvl.ini
[2006/11/02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini

========== LOP Check ==========

[2010/01/31 00:26:37 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Azureus
[2009/12/13 22:06:41 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Icones
[2009/03/08 18:00:09 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Packard Bell
[2009/03/22 21:07:30 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Samsung
[2009/03/01 18:29:53 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Template
[2010/06/03 22:30:00 | 000,000,342 | ---- | M] () -- C:\Windows\Tasks\Extension de garantie-Daniel.job
[2010/01/20 23:53:06 | 000,000,314 | ---- | M] () -- C:\Windows\Tasks\Install_NSS.job
[2010/06/03 13:08:50 | 000,032,562 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========


< End of report >

*****

Fait ça maintenant:

Télécharge sur le bureau « AD-Remover »

Double clique sur Ad-R.exe

Au menu principal choisi l'option Scanner

Un rapport s'ouvre.

Héberge le et donne son lien.

Note: le rapport se situe aussi dans « C:\Ad-Report-SCAN.log »

C:\Program Files\AskBarDis
C:\Program Files\Mozilla FireFox\Components\AskSearch.js
C:\Program Files\Winsudate
C:\Users\Jessica\AppData\Local\Temp\AskBarDis
C:\Users\Jessica\AppData\Local\Temp\Low\AskBarDis
C:\Users\Jessica\AppData\LocalLow\SweetIM
.
HKCU\Software\AppDataLow\AskBarDis
HKCU\Software\AskBarDis
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{201f27d4-3704-41d6-89c1-aa35e39143ed}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3041d03e-fd4b-44e0-b742-2d9b88305f98}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
HKCU\Software\SweetIM
HKLM\Software\AppDataLow\AskBarDis
HKLM\Software\Classes\AskIBar.PopSwatterBarButton
HKLM\Software\Classes\AskIBar.PopSwatterBarButton.1
HKLM\Software\Classes\AskIBar.PopSwatterSettingsControl
HKLM\Software\Classes\AskIBar.PopSwatterSettingsControl.1
HKLM\Software\Classes\AskToolBar.SettingsPlugin
HKLM\Software\Classes\AskToolBar.SettingsPlugin.1
HKLM\Software\Classes\CLSID\{0702a2b6-13aa-4090-9e01-bcdc85dd933f}
HKLM\Software\Classes\CLSID\{08993A7C-E764-4172-9627-BFB5EA6897B2}
HKLM\Software\Classes\CLSID\{128A6C66-AC6A-4617-8268-AB7F47B7215E}
HKLM\Software\Classes\CLSID\{201f27d4-3704-41d6-89c1-aa35e39143ed}
HKLM\Software\Classes\CLSID\{3041d03e-fd4b-44e0-b742-2d9b88305f98}
HKLM\Software\Classes\CLSID\{571715D7-3395-4DF0-B43C-784836209E60}
HKLM\Software\Classes\CLSID\{622fd888-4e91-4d68-84d4-7262fd0811bf}
HKLM\Software\Classes\CLSID\{b0de3308-5d5a-470d-81b9-634fc078393b}
HKLM\Software\Classes\Interface\{4634804A-F0B0-4A74-A550-FC0EEF8A4362}
HKLM\Software\Classes\Interface\{4C07EA4F-5F52-4222-B170-4CD9ED33BAEA}
HKLM\Software\Classes\Interface\{C44FEFF4-EF0C-4CF7-83D0-92B4266A32B9}
HKLM\Software\Classes\Interface\{F131923C-381D-4E4C-A472-4A17118FD742}
HKLM\Software\Classes\TypeLib\{4B1C1E16-6B34-430E-B074-5928ECA4C150}
HKLM\Software\Classes\TypeLib\{D2E5FA06-DCC7-46F9-BEFF-BFD06F69B9B2}
HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Ask Toolbar_is1
HKLM\Software\SweetIM
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{3041D03E-FD4B-44E0-B742-2D9B88305F98}
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{EEE6C35B-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks|{EEE6C35D-6118-11DC-9C72-001320C79847}
HKLM\Software\Microsoft\Internet Explorer\Toolbar|{3041D03E-FD4B-44E0-B742-2D9B88305F98}
.
.
============== SCAN ADDITIONNEL ==============
.
.
* Internet Explorer Version 7.0.6001.18000 *
.
[HKCU\Software\Microsoft\Internet Explorer\Main]
.
Default_Page_URL: hxxp://go.packardbell.com/?id=9136
Do404Search: 0x01000000
Enable Browser Extensions: yes
Local Page: C:\Windows\system32\blank.htm
Show_ToolBar: yes
Start Page: hxxp://fr.msn.com/
Use Custom Search URL: 1
.
[HKLM\Software\Microsoft\Internet Explorer\Main]
.
AutoHide: yes
Default_Page_URL: hxxp://go.packardbell.com/?id=9136
Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Delete_Temp_Files_On_Exit: yes
Enable Browser Extensions: yes
Local Page: %SystemRoot%\system32\blank.htm
Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Start Page: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Use Search Asst: no
.
[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]
.
Tabs: res://ieframe.dll/tabswelcome.htm
Blank: res://mshtml.dll/blank.htm
.
========================================
.
C:\Ad-Remover\Quarantine: 0 Fichier(s)
C:\Ad-Remover\Backup: 1 Fichier(s)
.
C:\Ad-Report-SCAN[1].txt - 4637 Octet(s)
.
Fin à: 20:48:52, 04/06/2010
.
============== E.O.F - SCAN[1] ==========

Ok!

Relances « AD-R.exe » : au menu principal choisi l'option Nettoyer

Un rapport s'ouvre.

Héberge le et donne son lien.

Note: le rapport se situe aussi dans « C:\Ad-Report-CLEAN.log »

bonjour je ne trouve pas ou ce situe le raport en question,donnez moi plus de préssision merci d'avance

Note: le rapport se situe aussi dans « C:\Ad-Report-CLEAN.log »

.....

Tu doubles cliques sur ordinateur (sur ton bureau), ensuite pareil sur le disque C, et tu auras un fichier qui s'appelle Ad-Report-CLEAN.log
Tu doubles cliques dessus pour l'ouvrir, et tu copies/colles son contenu ici.

======= RAPPORT D'AD-REMOVER 2.0.0.0,D | UNIQUEMENT XP/VISTA/7 =======
.
Mis à jour par C_XX le 19/05/10 à 19:20
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 23:03:57 le 05/06/2010 | Mode normal | Option: CLEAN
Exécuté de: C:\Ad-Remover\ADR.exe
SE: Microsoft® Windows Vista™ Édition Familiale Premium (Service Pack 1 - X86)
Nom du PC: PC-DE-DANIEL (Packard Bell BV EASYNOTE SL65)
Utilisateur actuel: Daniel
.
============== ÉLÉMENT(S) NEUTRALISÉ(S) ==============
.
Service: *ASKService*
Service: *ASKUpgrade*
.
C:\Program Files\AskBarDis
C:\Program Files\Mozilla FireFox\Components\AskSearch.js
C:\Program Files\Winsudate
C:\Users\Jessica\AppData\Local\Temp\AskBarDis
C:\Users\Jessica\AppData\Local\Temp\Low\AskBarDis
C:\Users\Jessica\AppData\LocalLow\SweetIM

(!) -- Fichiers temporaires supprimés.
.
HKCU\Software\AppDataLow\AskBarDis
HKCU\Software\AskBarDis
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{201f27d4-3704-41d6-89c1-aa35e39143ed}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3041d03e-fd4b-44e0-b742-2d9b88305f98}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
HKCU\Software\SweetIM
HKLM\Software\AppDataLow\AskBarDis
HKLM\Software\Classes\AskIBar.PopSwatterBarButton
HKLM\Software\Classes\AskIBar.PopSwatterBarButton.1
HKLM\Software\Classes\AskIBar.PopSwatterSettingsControl
HKLM\Software\Classes\AskIBar.PopSwatterSettingsControl.1
HKLM\Software\Classes\AskToolBar.SettingsPlugin
HKLM\Software\Classes\AskToolBar.SettingsPlugin.1
HKLM\Software\Classes\CLSID\{0702a2b6-13aa-4090-9e01-bcdc85dd933f}
HKLM\Software\Classes\CLSID\{08993A7C-E764-4172-9627-BFB5EA6897B2}
HKLM\Software\Classes\CLSID\{128A6C66-AC6A-4617-8268-AB7F47B7215E}
HKLM\Software\Classes\CLSID\{201f27d4-3704-41d6-89c1-aa35e39143ed}
HKLM\Software\Classes\CLSID\{3041d03e-fd4b-44e0-b742-2d9b88305f98}
HKLM\Software\Classes\CLSID\{571715D7-3395-4DF0-B43C-784836209E60}
HKLM\Software\Classes\CLSID\{622fd888-4e91-4d68-84d4-7262fd0811bf}
HKLM\Software\Classes\CLSID\{b0de3308-5d5a-470d-81b9-634fc078393b}
HKLM\Software\Classes\Interface\{4634804A-F0B0-4A74-A550-FC0EEF8A4362}
HKLM\Software\Classes\Interface\{4C07EA4F-5F52-4222-B170-4CD9ED33BAEA}
HKLM\Software\Classes\Interface\{C44FEFF4-EF0C-4CF7-83D0-92B4266A32B9}
HKLM\Software\Classes\Interface\{F131923C-381D-4E4C-A472-4A17118FD742}
HKLM\Software\Classes\TypeLib\{4B1C1E16-6B34-430E-B074-5928ECA4C150}
HKLM\Software\Classes\TypeLib\{D2E5FA06-DCC7-46F9-BEFF-BFD06F69B9B2}
HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Ask Toolbar_is1
HKLM\Software\SweetIM
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{3041D03E-FD4B-44E0-B742-2D9B88305F98}
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{EEE6C35B-6118-11DC-9C72-001320C79847}
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks|{EEE6C35D-6118-11DC-9C72-001320C79847}
HKLM\Software\Microsoft\Internet Explorer\Toolbar|{3041D03E-FD4B-44E0-B742-2D9B88305F98}
.
.
============== SCAN ADDITIONNEL ==============
.
.
* Internet Explorer Version 7.0.6001.18000 *
.
[HKCU\Software\Microsoft\Internet Explorer\Main]
.
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Do404Search: 0x01000000
Enable Browser Extensions: yes
Local Page: C:\Windows\system32\blank.htm
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Show_ToolBar: yes
Start Page: hxxp://fr.msn.com/
Use Custom Search URL: 1
.
[HKLM\Software\Microsoft\Internet Explorer\Main]
.
AutoHide: yes
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Delete_Temp_Files_On_Exit: yes
Enable Browser Extensions: yes
Local Page: %SystemRoot%\system32\blank.htm
Search bar: hxxp://search.msn.com/spbasic.htm
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start Page: hxxp://fr.msn.com/
Use Search Asst: no
.
[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]
.
Tabs: res://ieframe.dll/tabswelcome.htm
Blank: res://mshtml.dll/blank.htm
.
========================================
.
C:\Ad-Remover\Quarantine: 24 Fichier(s)
C:\Ad-Remover\Backup: 15 Fichier(s)
.
C:\Ad-Report-CLEAN[1].txt - 4938 Octet(s)
C:\Ad-Report-SCAN[1].txt - 4761 Octet(s)
.
Fin à: 23:11:47, 05/06/2010
.
============== E.O.F - CLEAN[1] ==============

bonjour c normale que je n'ais plus msn sur mon bureaux

Il a juste du supprimer le raccourci.  

On continue!

*****

Télécharger sur le bureau Malwarebyte's Anti-Malware

Double-clic sur « mbam-setup » pour lancer l'installation.

Installer simplement sans rien modifier.

Quand le programme lancé ==> onglet « Mise à jour » cliquer sur ==> « Recherche de mise à jour. »

Onglet « Recherche » ==> cocher « Exécuter un examen complet ».

Clic « Rechercher »,

Cocher tous les disque dur,

Clic « Lancer l'examen ».

En fin de scan , si infection trouvée,

==> Clic « Afficher résultat ».

Fermer vos applications en cours,

Vérifier si tout est coché et clic « Supprimer la sélection ».

Un rapport s'ouvre l'héberger et donner son lien.

06/06/2010 18:21:59
mbam-log-2010-06-06 (18-21-59).txt

Type d'examen: Examen complet (C:\|D:\|)
Elément(s) analysé(s): 257913
Temps écoulé: 1 heure(s), 1 minute(s), 51 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 6

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\Software\Winsudate (Adware.GibMedia) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\microsoft windows hosting service login (Backdoor.Bot) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\Ad-Remover\Quarantine\C\Program Files\Winsudate\gibcom.dll.vir (Adware.Gibmedia) -> Quarantined and deleted successfully.
C:\Ad-Remover\Quarantine\C\Program Files\Winsudate\gibidl.dll.vir (Adware.Gibmedia) -> Quarantined and deleted successfully.
C:\Ad-Remover\Quarantine\C\Program Files\Winsudate\gibupt.exe.vir (Adware.Gibmedia) -> Quarantined and deleted successfully.
C:\Users\Daniel\AppData\Roaming\Icones\icones_pa.ico (Adware.GibMedia) -> Quarantined and deleted successfully.
C:\Users\Daniel\Desktop\Pages Annuaire.lnk (Adware.GibMedia) -> Quarantined and deleted successfully.
C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Pages Annuaire.lnk (Adware.GibMedia) -> Quarantined and deleted successfully.

bonsoir,et maintenent sa ce passe comment ?

Refais un scan OTL.

OTL logfile created on: 06/06/2010 20:28:15 - Run 2
OTL by OldTimer - Version 3.2.5.3 Folder = C:\Users\Daniel\Desktop
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 60,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 78,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 220,88 Gb Total Space | 153,82 Gb Free Space | 69,64% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PC-DE-DANIEL
Current User Name: Daniel
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - C:\Users\Daniel\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Windows Live\Toolbar\wltuser.exe (Microsoft Corporation)
PRC - C:\Program Files\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation)
PRC - C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe (Google Inc.)
PRC - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
PRC - C:\Users\Daniel\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe (Microsoft Corporation)
PRC - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
PRC - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
PRC - C:\Windows\System32\Macromed\Flash\FlashUtil10b.exe (Adobe Systems, Inc.)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe (Packard Bell BV)
PRC - C:\Program Files\Internet Explorer\IEUser.exe (Microsoft Corporation)
PRC - C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
PRC - C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
PRC - C:\Program Files\OrangeHSS\systray\systrayapp.exe (France Telecom SA)
PRC - C:\Program Files\OrangeHSS\Launcher\Launcher.exe (France Telecom SA)
PRC - C:\Program Files\OrangeHSS\Deskboard\deskboard.exe ()
PRC - C:\Program Files\OrangeHSS\connectivity\connectivitymanager.exe (France Telecom SA)
PRC - C:\Program Files\OrangeHSS\connectivity\CoreCom\OraConfigRecover.exe (France Telecom SA)
PRC - C:\Program Files\OrangeHSS\connectivity\CoreCom\CoreCom.exe (France Telecom SA)
PRC - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe (France Telecom SA)
PRC - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe (France Telecom SA)
PRC - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe (France Telecom SA)
PRC - C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe ()
PRC - C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe (O2Micro International)


========== Modules (SafeList) ==========

MOD - C:\Users\Daniel\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Windows\System32\msscript.ocx (Microsoft Corporation)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (Microsoft Corporation)


========== Win32 Services (SafeList) ==========

SRV - (fsssvc) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe (Microsoft Corporation)
SRV - (GoogleDesktopManager-110309-193829) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
SRV - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
SRV - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
SRV - (aswUpdSv) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
SRV - (SeaPort) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV - (FTRTSVC) -- C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe (France Telecom SA)
SRV - (AdobeActiveFileMonitor6.0) -- C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe ()
SRV - (o2flash) -- C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe (O2Micro International)


========== Driver Services (SafeList) ==========

DRV - (fssfltr) -- C:\Windows\System32\drivers\fssfltr.sys (Microsoft Corporation)
DRV - (aswSP) -- C:\Windows\System32\drivers\aswSP.sys (ALWIL Software)
DRV - (aswFsBlk) -- C:\Windows\System32\drivers\aswFsBlk.sys (ALWIL Software)
DRV - (aswMonFlt) -- C:\Windows\System32\drivers\aswMonFlt.sys (ALWIL Software)
DRV - (aswTdi) -- C:\Windows\System32\drivers\aswTdi.sys (ALWIL Software)
DRV - (aswRdr) -- C:\Windows\System32\drivers\aswRdr.sys (ALWIL Software)
DRV - (StarOpen) -- C:\Windows\System32\drivers\StarOpen.sys ()
DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.)
DRV - (RTHDMIAzAudService) -- C:\Windows\System32\drivers\RtHDMIV.sys (Realtek Semiconductor Corp.)
DRV - (O2MDRDR) -- C:\Windows\System32\drivers\o2media.sys (O2Micro )
DRV - (O2SDRDR) -- C:\Windows\System32\drivers\o2sd.sys (O2Micro )
DRV - (RTL8169) -- C:\Windows\System32\drivers\Rtlh86.sys (Realtek Corporation )
DRV - (MegaSR) -- C:\Windows\system32\drivers\megasr.sys (LSI Corporation, Inc.)
DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.)
DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Corporation)
DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.)
DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems)
DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company)
DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.)
DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic)
DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation)
DRV - (E1G60) Intel(R) -- C:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation)
DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.)
DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation)
DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.)
DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic)
DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic)
DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.)
DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex)
DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.)
DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation)
DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation)
DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.)
DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.)
DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.)
DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.)
DRV - (RTL8187B) -- C:\Windows\System32\drivers\RTL8187B.sys (Realtek Semiconductor Corporation )
DRV - (SynTP) -- C:\Windows\System32\drivers\SynTP.sys (Synaptics, Inc.)
DRV - (ssm_mdm) -- C:\Windows\System32\drivers\ssm_mdm.sys (MCCI Corporation)
DRV - (ssm_mdfl) -- C:\Windows\System32\drivers\ssm_mdfl.sys (MCCI Corporation)
DRV - (ssm_bus) SAMSUNG Mobile USB Device II 1.0 driver (WDM) -- C:\Windows\System32\drivers\ssm_bus.sys (MCCI Corporation)
DRV - (PCAMp50) -- C:\Windows\System32\drivers\PCAMp50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (PCASp50) -- C:\Windows\System32\drivers\PCASp50.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation)
DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.)
DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation)
DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.)
DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.)
DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic)
DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic)
DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation)
DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic)
DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.)
DRV - (BrFiltUp) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.)
DRV - (BrFiltLo) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.)
DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.)
DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.)
DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - HKLM\..\URLSearchHook: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Program Files\myBabylon_English\tbmyBa.dll (Conduit Ltd.)

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll ()
IE - HKCU\..\URLSearchHook: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Program Files\myBabylon_English\tbmyBa.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[2010/01/22 22:03:49 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\mozilla\Firefox\extensions
[2010/01/22 22:03:49 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Daniel\AppData\Roaming\mozilla\Firefox\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}

O1 HOSTS File: ([2006/09/18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Aide pour le lien d'Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5104.1546\swg.dll (Google Inc.)
O2 - BHO: (myBabylon English Toolbar) - {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Program Files\myBabylon_English\tbmyBa.dll (Conduit Ltd.)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll (Packard Bell)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (myBabylon English Toolbar) - {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Program Files\myBabylon_English\tbmyBa.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (myBabylon English Toolbar) - {B2E293EE-FD7E-4C71-A714-5F4750D8D7B7} - C:\Program Files\myBabylon_English\tbmyBa.dll (Conduit Ltd.)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [Google Desktop Search] C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [ORAHSSSessionManager] C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe (France Telecom SA)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Skytel] C:\Windows\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [toolbar_eula_launcher] C:\Program Files\Packard Bell\GOOGLE_EULA\EULALauncher.exe ( )
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
O4 - HKCU..\Run: [SmpcSys] C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe (Packard Bell BV)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Notification de cadeaux MSN.lnk = C:\Users\Daniel\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe (Microsoft Corporation)
O4 - Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 - Capture d'écran et lancement.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll (Google Inc.)
O9 - Extra Button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL (Microsoft Corporation)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: localhost ([]http in Local intranet)
O15 - HKCU\..Trusted Domains: mappy.com ([]http in Trusted sites)
O15 - HKCU\..Trusted Domains: orange.fr ([]http in Trusted sites)
O15 - HKCU\..Trusted Domains: voila.fr ([rw.search.ke] http in Trusted sites)
O15 - HKCU\..Trusted Domains: weborama.fr ([orange] http in Trusted sites)
O15 - HKCU\..Trusted Ranges: GD ([http] in Local intranet)
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} http://gfx1.hotmail.com/mail/w3/resources/VistaMSNPUpld... (MSN Photo Upload Tool)
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} http://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol... (Windows Live Hotmail Photo Upload Tool)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL) - C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL (Google)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Daniel\Pictures\SP_A0305.jpg
O24 - Desktop BackupWallPaper: C:\Users\Daniel\Pictures\SP_A0305.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010/06/06 17:17:04 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\Malwarebytes
[2010/06/06 17:16:52 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010/06/06 17:16:50 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2010/06/06 17:16:50 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/06/06 17:16:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010/06/06 13:25:55 | 000,054,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\fssfltr.sys
[2010/06/06 13:25:55 | 000,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
[2010/06/05 21:52:32 | 001,266,512 | ---- | C] (Microsoft Corporation) -- C:\Users\Daniel\Desktop\wlsetup-custom.exe
[2010/06/04 22:30:56 | 021,959,512 | ---- | C] (Microsoft Corporation) -- C:\Users\Daniel\Desktop\installation_ie8msn-xp.exe
[2010/06/04 20:41:37 | 000,000,000 | ---D | C] -- C:\Ad-Remover
[2010/06/04 20:40:42 | 001,344,041 | ---- | C] (C_XX) -- C:\Users\Daniel\Desktop\AD-R.exe
[2010/06/03 22:28:43 | 000,571,904 | ---- | C] (OldTimer Tools) -- C:\Users\Daniel\Desktop\OTL.exe
[2010/05/26 07:21:58 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll

========== Files - Modified Within 30 Days ==========

[2010/06/06 20:31:11 | 002,883,584 | -HS- | M] () -- C:\Users\Daniel\ntuser.dat
[2010/06/06 20:30:00 | 000,000,342 | ---- | M] () -- C:\Windows\tasks\Extension de garantie-Daniel.job
[2010/06/06 20:25:38 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010/06/06 20:25:38 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010/06/06 20:23:37 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/06/06 20:10:00 | 000,001,054 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010/06/06 18:31:11 | 001,470,810 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010/06/06 18:31:11 | 000,669,566 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2010/06/06 18:31:11 | 000,587,178 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010/06/06 18:31:11 | 000,123,556 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2010/06/06 18:31:11 | 000,101,250 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010/06/06 18:28:07 | 000,001,000 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2010/06/06 18:25:56 | 000,001,050 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010/06/06 18:25:45 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/06/06 18:25:31 | 3215,556,608 | -HS- | M] () -- C:\hiberfil.sys
[2010/06/06 18:24:28 | 000,524,288 | -HS- | M] () -- C:\Users\Daniel\ntuser.dat{a5fa1f55-6e5b-11df-be7e-001e68f5cd8a}.TMContainer00000000000000000001.regtrans-ms
[2010/06/06 18:24:28 | 000,065,536 | -HS- | M] () -- C:\Users\Daniel\ntuser.dat{a5fa1f55-6e5b-11df-be7e-001e68f5cd8a}.TM.blf
[2010/06/06 18:24:27 | 003,808,641 | -H-- | M] () -- C:\Users\Daniel\AppData\Local\IconCache.db
[2010/06/06 17:16:54 | 000,000,821 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/06/06 11:03:07 | 000,003,634 | ---- | M] () -- C:\Users\Daniel\AppData\Roaming\wklnhst.dat
[2010/06/05 21:52:35 | 001,266,512 | ---- | M] (Microsoft Corporation) -- C:\Users\Daniel\Desktop\wlsetup-custom.exe
[2010/06/04 22:30:58 | 021,959,512 | ---- | M] (Microsoft Corporation) -- C:\Users\Daniel\Desktop\installation_ie8msn-xp.exe
[2010/06/04 20:57:30 | 000,015,872 | ---- | M] () -- C:\Users\Daniel\Documents\RAPPOORT DE AD-RENOVER.wps
[2010/06/04 20:40:46 | 001,344,041 | ---- | M] (C_XX) -- C:\Users\Daniel\Desktop\AD-R.exe
[2010/06/03 22:50:03 | 000,186,952 | ---- | M] () -- C:\Users\Daniel\Documents\analise virus.wps
[2010/06/03 22:28:46 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Users\Daniel\Desktop\OTL.exe
[2010/06/03 22:16:20 | 000,010,240 | ---- | M] () -- C:\Users\Daniel\Documents\LISTE CONTACT MSN.wps
[2010/06/02 17:33:32 | 000,524,288 | -HS- | M] () -- C:\Users\Daniel\ntuser.dat{a5fa1f55-6e5b-11df-be7e-001e68f5cd8a}.TMContainer00000000000000000002.regtrans-ms
[2010/06/02 13:28:33 | 000,524,288 | -HS- | M] () -- C:\Users\Daniel\NTUSER.DAT{e606b3f4-46e8-11df-9c3c-001e68f5cd8a}.TMContainer00000000000000000001.regtrans-ms
[2010/06/02 13:28:33 | 000,065,536 | -HS- | M] () -- C:\Users\Daniel\NTUSER.DAT{e606b3f4-46e8-11df-9c3c-001e68f5cd8a}.TM.blf
[2010/05/20 20:28:53 | 000,000,000 | ---- | M] () -- C:\ProgramData\LauncherAccess.dt
[2010/05/18 21:13:33 | 000,002,076 | ---- | M] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2010/05/15 13:24:50 | 000,001,001 | ---- | M] () -- C:\Users\Daniel\Desktop\PhotoFiltre.ini
[2010/05/12 11:21:16 | 000,221,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe

========== Files Created - No Company Name ==========

[2010/06/06 17:16:54 | 000,000,821 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/06/04 20:57:30 | 000,015,872 | ---- | C] () -- C:\Users\Daniel\Documents\RAPPOORT DE AD-RENOVER.wps
[2010/06/03 22:50:03 | 000,186,952 | ---- | C] () -- C:\Users\Daniel\Documents\analise virus.wps
[2010/06/03 13:08:22 | 000,010,240 | ---- | C] () -- C:\Users\Daniel\Documents\LISTE CONTACT MSN.wps
[2010/06/02 17:30:15 | 000,524,288 | -HS- | C] () -- C:\Users\Daniel\ntuser.dat{a5fa1f55-6e5b-11df-be7e-001e68f5cd8a}.TMContainer00000000000000000002.regtrans-ms
[2010/06/02 17:30:15 | 000,524,288 | -HS- | C] () -- C:\Users\Daniel\ntuser.dat{a5fa1f55-6e5b-11df-be7e-001e68f5cd8a}.TMContainer00000000000000000001.regtrans-ms
[2010/06/02 17:30:15 | 000,065,536 | -HS- | C] () -- C:\Users\Daniel\ntuser.dat{a5fa1f55-6e5b-11df-be7e-001e68f5cd8a}.TM.blf
[2010/05/18 21:13:33 | 000,002,076 | ---- | C] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2010/02/11 14:38:47 | 000,000,118 | ---- | C] () -- C:\Windows\System32\MRT.INI
[2009/03/22 19:34:39 | 000,005,632 | ---- | C] () -- C:\Windows\System32\drivers\StarOpen.sys
[2008/08/05 10:08:05 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2008/06/05 11:31:46 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2008/05/22 13:21:21 | 000,000,144 | ---- | C] () -- C:\Windows\RtDefLvl.ini
[2006/11/02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini

========== LOP Check ==========

[2010/01/31 00:26:37 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Azureus
[2010/06/06 18:21:59 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Icones
[2009/03/08 18:00:09 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Packard Bell
[2009/03/22 21:07:30 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Samsung
[2009/03/01 18:29:53 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Template
[2010/06/06 20:30:00 | 000,000,342 | ---- | M] () -- C:\Windows\Tasks\Extension de garantie-Daniel.job
[2010/01/20 23:53:06 | 000,000,314 | ---- | M] () -- C:\Windows\Tasks\Install_NSS.job
[2010/06/06 18:24:32 | 000,032,562 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========


< End of report >

Tu peux désinstaller ces programmes via ajout/suppression de programme, voir ce lien au sujet des toolbars
-> http://forum.malekal.com/les-toolbars-est-pas-obligatoi...

Ask Toolbar_is1

GoogleToolbar

myBabylon_English Toolbar

Windows Live Toolbar

*****

Tu as encore des soucis?

bojour!
oui c super tout fonctionne merci,pour les programes a suprimer,je n'ais pas trouver ""ask toolbar_is1"" j'ais suprimer google toolbar,mybabylon_english toolbar,et j'ais intalation windows live m'ais jais pas windows live toolbar,autrement une petite question,tout les liens que je vous ais envoyer seront suprimer du cite ??parceque j'ais vu quil y avais mon adresse "ip" merci encore !!!

bonjour il me reste aussi que je vien de voir " google toolbar for internet exploreur"

Ok! Tu peux la virer aussi. Pour ton adresse IP, tout le monde s'en fou un peu beaucoup, c'est pas avec ça qu'on peut faire grand chose...

Enfin, si tu veux, tu peux éditer tes messages et retirer les liens ou supprimer les rapports.  

***

Si tu n'as plus de soucis:

1/ Pour supprimer les utilitaires téléchargés:

Télécharge ToolsCleaner2 sur ton bureau

Double-clique sur Toolscleaner.exe,

Clique sur restauration pour créer un point de restauration.

Puis clique sur recherche.

Quand la recherche sera terminée, clique sur suppression.

A la fin (il y aura des indications dans le cadre en-dessous), clique sur quitter et poste le rapport qui se trouve dans C:\Tcleaner.txt.

Clique droit sur son icône => supprimer.


2/ Pour supprimer les fichiers temporaires (à utiliser régulièrement!):

Télécharge sur le bureau « CCleaner »

Installe le en refusant la Yahoo! Toolbar,

Puis lance le.

Va dans Options, puis Avancé et décoche la case Effacer uniquement les fichiers etc...

Retourne dans Nettoyeur, puis choisis Analyse.

Une fois cette dernière terminée, clique sur Nettoyer

-----

3/ Désactiver et réactiver la restauration système:

- sous xp:

Clique-Droit sur Poste de Travail

Clique Propriétés,

Clique Restauration du système.

Cocher : Désactiver la restauration système sur tous les lecteurs,

Valider en cliquant sur OK.

Redémarrer le pc.

Et même manoeuvre en décochant pour rétablir la restauration.

Puis Menu Démarrer ==> Tous les programmes ==> Accessoires ==> Outils système ==> Restauration système,

Clique Créer un nouveau point de restauration.

note => le nom donné n’a aucune importance.

- sous vista:

Clique sur Démarrer,

Clique-droit sur Ordinateur,

Clique Propriétés,

Clique Protection du système.

Décocher : C,

Valider en cliquant sur OK.

Redémarrer le pc.

Et même manoeuvre en recochant pour rétablir la restauration.

Puis de même et cliquer créer pour établir un nouveau point de restauration.

- sous seven:

Clique sur Démarrer,

Clique-droit sur Ordinateur,

Clique Propriétés,

Clique Protection du système,

Clique sur l'onglet Protection du système.

Sélectionne : C,

Clique Configurer...,

Coche : Désactiver la protection du système.

Valider en cliquant sur OK.

Redémarrer le pc.

Et même manoeuvre en recochant : Restaurer les paramètres système et les versions précédentes des fichiers pour rétablir la restauration.

Puis de même et cliquer créer pour établir un nouveau point de restauration.

-----

4/Anti-spyware/malware

Garder malwarebytes' et penser à faire des scans réguliers avec ce dernier! => Tuto malwarebytes'

Antispyware gratuit : ça sert à rien!

-----

5/Protection

Un dossier sur les infections.

Sécuriser son ordinateur (version courte).

Surfer sécurisé.

Les idées reçues en sécurité logicielle.

-----

6/ Problème résolu?

Alors penser à mettre le sujet en résolu en éditant ton titre!

Clique sur le bouton Éditer dans ton premier message (en bas à droite du message).

Ajoute [Résolu] devant le titre.

Clique ensuite sur Valider votre message  

sa me mais aussi impossiblede crer les fichier

bonsoir jais téléchargé toolscleaner-exe pius restauratio et recherche et suppresion et a la fin quand je met quiter same met que je peut pas quiter

Ok, supprime son icone et ça sera bon.  

il se trouve ou licone ? et pour les autre logiciel que jais teléchargé pour la recherche je l'ais garde ou pas?et pour c leaner je le télécharge? et pour tuto malware bytes je le garde il et sur mon bureaux

et pour"" google toolbart for internet exploreur"" je le d"ésinstale ?

L'icône elle se trouve là ou tu la téléchargé, et où tu as double cliquer pour le lancer.  
Normalement, les logiciels ont été supprimé par toolscleaner.
CCleaner tu peux le télécharger si tu ne l'as pas.
Et oui désinstalle la toolbar.

bonjour,je ne trouve pastools clener 2,je suis allé aussi dans panneua de configuration,il n'y et pas, J’ais aussi un petit problème, depuis que j’ais mon pc, rien de grave; mais la ou je l’ais acheter il ont pas su me repondre,voila !, c’est quand je le m’ais en marche, il y a en bas mon petit écran qui deviens bleu comme quoi je suis bien connecter en wifi, mais mon serveur « orange » luis n’ais pas connecter, donc aux bout de quelque minute ,je suis plus connecter en wifi,mon petit ecran devient rouge,et la orange se connecte,et je suis obliger de me reconnecter manuellement en wifi,et cela a chaque fois que je m’ais en marche mon pc,

Ça doit être bon alors pour toolscleaner.  

Pour ton wifi je n'ai aucune idée, mais je ne pense pas que ça soit un virus.  

bonjour ,ok merci pour conclure c'est quoi que je dois faire reguliérement ? et avec quel logiciel ? merci

bonjour,excuser moi encore j'aurais ne petite question !! y a le pc fixe, de ma copine ,qui m'ais un temps indefinit pour tout faire ,méme quand on le m'ais en marche,ques-que je pourais faire,, merci

bonsoir tous les 10mn,j'ais "programe de remarage bloqué" qui s'affiche

Si c'est pour le PC de ta copine, ouvre un nouveau sujet.  

non sait sur le mien depuis quelon a fait tout ca

Ok, et tu pourrais expliquer un peu plus? Car là c'est très vague...

bonjour,ben en faite c'est d'ais que je m'ais en marche mon pc, ily a une petite fénétre en bas a droite qui s'ouvre et c'est marqué; "windows a bloqué certain programe aux d"émarage"

bonsoir,mais il n'y a pas que quand je demare mon pc que c'ette icone aparait,""programe de démarage bloque par windooos"" c'est tout les 10mn en bas a droite c plutot génent

Regarde par ici
-> http://www.vista-xp.fr/forum/topic886.html