Se connecter / S'enregistrer
Votre question

mon pc transforme les fichiers des cles qui y sont inserrés en raccourcis?

Tags :
  • Windows 7
  • Raccourcis
  • PC
Dernière réponse : dans Sécurité et virus
24 Octobre 2013 00:17:12

J'ai Windows 7 32bits, aidez svp à résoudre ce probléme car je crois que cette une infection virale vu que ça se propage sur ts les pc de mon établissement

Autres pages sur : transforme fichiers cles inserres raccourcis

a b $ Windows 7
24 Octobre 2013 10:37:37

Bonjour aussi ...

Citation :
je crois que cette une infection virale vu que ça se propage sur ts les pc de mon établissement


Oui, c'est un ver informatique se répandant via supports amovibles.

Tu parles "d’établissement" , tu es administrateur réseau ?
On parle de quel type d'établissement, de combien de poste, etc ?
Tu dois d'ailleurs si tu es l'administrateur, arrêter immédiatement l’utilisation des pc en cause, et les mettre en quarantaine du réseau déjà. (déconnecté et ne plus utiliser)
m
0
l
24 Octobre 2013 22:19:01

Par établissement je veux dire notre faculté, l'infection se propage car on s'échange les clés pour recupérer les cours
m
0
l
Contenus similaires
a b $ Windows 7
24 Octobre 2013 23:18:26

Re,

Ah, c'est pas le premier donc, on en a déjà traité de nombreux, tous lié à des clé usb échangée sur des campus ...
Soyez extrêmement prudent lorsque vous utilisez des clé usb sur des PC étranger.

Il faudra, si ce n'est pas déjà fait, prévenir l'administrateur/responsable informatique pour mettre en quarantaine et fermer les accès aux pc infecté sur le campus, sinon cela se reproduira encore ...

à faire pour ta part afin de nettoyer ton pc et ta clé usb :

1) Télécharge Farbar Recovery Scan Tool (de Farbar) sur ton Bureau.

Attention: Tu dois lancer la version compatible avec votre système : 32 ou 64bits.

Sous IE9 ou IE10, le filtre SmartScreen déclenche une alerte. Cliquer sur Actions puis sur Exécuter quand même

  • Double-clique sur l'outil pour le lancer. Quand l'outil se lance, clique sur Yes pour accepter le disclamer.
  • Clique sur le bouton Scan.
  • L'outil va créer un rapport nommé FRST.txt, enregistré dans le même dossier que l'outil.
  • A son premier lancement, l'outil va aussi créer un fichier nommé Addition.txt).


  • Poste les deux rapports générés.

    ~~~~~~~~~~~~~~

    2) Télécharge UsbFix (de El Desaparecido) sur ton Bureau.


    /!\ Déconnecte-toi et ferme toutes les applications en cours /!\
    /!\ Branche tous tes périphériques ayant pu être infectés (clés usb, disque dur externe, etc ...) /!\


  • Double-clique sur "UsbFix" pour lancer le programme
    (Utilisateur de Vista/Windows 7, clique-droit sur UsbFix > Exécuter en tant qu'administrateur)
  • Clique sur "Recherche" pour lancer le scan. Branche tes périphériques si ce n'est pas fait, puis valide l'avertissement.
  • Laisse travailler l'outil.
  • A la fin, un rapport apparaitra (sinon, il est situé ici C:\Usbfix.txt). Poste-le dans ta prochaine réponse

  • Pour les rapports, merci d'utiliser ce service de rapport en ligne : dépose le fichier via "parcourir" et poste simplement le lien obtenu dans ta réponse.
    Une aide à l'utilisation ici

    m
    0
    l
    25 Octobre 2013 22:35:53

    Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 25-10-2013
    Ran by Ditndongo (administrator) on DITNDONGO-PC on 25-10-2013 21:22:03
    Running from C:\Users\Ditndongo\Desktop
    Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X86) OS Language: French Standard
    Internet Explorer Version 10
    Boot Mode: Normal

    ==================== Processes (Whitelisted) ===================

    (AVG Technologies CZ, s.r.o.) C:\PROGRA~1\AVG\AVG2013\avgrsx.exe
    (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgcsrvx.exe
    (Microsoft Corporation) C:\Windows\system32\WLANExt.exe
    (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgidsagent.exe
    (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgwdsvc.exe
    () C:\Program Files\IB Updater\ExtensionUpdaterService.exe
    () C:\Windows\system32\dmwu.exe
    () C:\Program Files\InternetEverywhere\InternetEverywhere_Service.exe
    (Nitro PDF Software) C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
    () C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgnsx.exe
    (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgemcx.exe
    (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    (Intel Corporation) C:\Windows\System32\igfxtray.exe
    (Intel Corporation) C:\Windows\System32\hkcmd.exe
    (Intel Corporation) C:\Windows\System32\igfxpers.exe
    (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgui.exe
    (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
    (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
    (Microsoft Corporation) C:\Windows\System32\wscript.exe
    () C:\Program Files\InternetEverywhere\InternetEverywhere_Launcher.exe
    (Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
    () C:\Windows\System32\jmdp\stij.exe
    (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
    (Mozilla Corporation) C:\Program Files\Aurora\firefox.exe
    (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
    (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
    (Realsil Microelectronics Inc.) C:\Program Files\Realtek\Realtek PCIE Card Reader\RIconMan.exe
    (Mozilla Corporation) C:\Program Files\Aurora\plugin-container.exe
    (Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
    (Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
    (Microsoft Corporation) C:\Windows\system32\wscript.exe
    (Microsoft Corporation) C:\Windows\system32\cmd.exe
    (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
    (Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\WINWORD.EXE
    (L'Aventure Multimedia) C:\Program Files\Micro Application\38 Dictionnaires et Recueils de Correspondance\MediaDico38.exe
    (L'Aventure Multimedia) C:\Program Files\Micro Application\38 Dictionnaires et Recueils de Correspondance\RAC38.exe
    (Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
    (Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\POWERPNT.EXE
    (RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\update\realsched.exe

    ==================== Registry (Whitelisted) ==================

    HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
    HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1934632 2012-12-03] (Synaptics Incorporated)
    HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284480 2012-05-30] (Intel Corporation)
    HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
    HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2013\avgui.exe [4411952 2013-09-23] (AVG Technologies CZ, s.r.o.)
    HKLM\...\Run: [TkBellExe] - c:\program files\real\realplayer\Update\realsched.exe [295512 2013-07-05] (RealNetworks, Inc.)
    HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
    HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
    HKLM\...\Policies\Explorer\Run: [rescue] - C:\ProgramData\rescue.vbe [1890 2013-06-30] ( ())
    HKCU\...\Run: [rbuhhdgpds] - C:\Users\DITNDO~1\AppData\Local\Temp\rbuhhdgpds..vbs [92233 2013-07-30] () <===== ATTENTION
    MountPoints2: {3c3768dd-0fbb-11e3-be44-e89a8f54c09c} - H:\PTStart.exe Open-Me-First.html
    MountPoints2: {7a72d081-1033-11e3-8aa4-e89a8f54c09c} - H:\.\Setup.exe AUTORUN=1
    MountPoints2: {83935405-4830-11e2-8ec9-e89a8f54c09c} - H:\.\Setup.exe AUTORUN=1
    AppInit_DLLs: c:\progra~2\browse~1\25976~1.107\{c16c1~1\mngr.dll c:\progra~1\browse~1\sprote~1.dll [ 2009-07-14] ()
    Startup: C:\Users\Ditndongo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 - Capture d’écran et lancement.lnk
    ShortcutTarget: OneNote 2010 - Capture d’écran et lancement.lnk -> C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
    Startup: C:\Users\Ditndongo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\rbuhhdgpds..vbs ()

    ==================== Internet (Whitelisted) ====================

    HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.sn/
    HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp
    HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xFF59CDD98FCDCD01
    HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr
    HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
    HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
    HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com/?utm_source=b&utm_medium=fox&from=fox...
    SearchScopes: HKCU - DefaultScope {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = http://mystart.incredibar.com/mb203?a=6PQWpmb8Qe&search...{searchTerms}&i=26
    SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
    SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?FORM=BDKTDF&PC=BDT3&q={searchTerms}&src=IE-SearchBox
    SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://search.babylon.com/?q={searchTerms}&affID=113357&tt=4912_1&babsrc=SP_ss&mntrId=9e63ff1c000000000000e89a8f54c09c
    SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.v9.com/web/?q={searchTerms}
    SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear
    SearchScopes: HKCU - {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = http://mystart.incredibar.com/mb203?a=6PQWpmb8Qe&search...{searchTerms}&i=26
    BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
    BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
    BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL (Microsoft Corporation)
    BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
    BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
    BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
    BHO: SpecialSavings.Addon - {bb184e6d-26d1-461a-9226-b93ca8da2af9} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
    BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
    BHO: Proxy Help - {F386E548-C533-472E-8C61-C026FB14FEA9} - C:\Windows\system32\Newtabs_v9.dll (Newtabs. inc)
    Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
    Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
    Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

    FireFox:
    ========
    FF ProfilePath: C:\Users\Ditndongo\AppData\Roaming\Mozilla\Firefox\Profiles\ayfo9jmt.default
    FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
    FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
    FF Plugin: @google.com/npPicasa3,version=3.0.0 - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
    FF Plugin: @java.com/DTPlugin,version=10.13.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
    FF Plugin: @java.com/JavaPlugin,version=10.13.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
    FF Plugin: @ma-config.com/HardwareDetection - C:\Program Files\ma-config.com\nphardwaredetection.dll (Cybelsoft)
    FF Plugin: @microsoft.com/GENUINE - disabled No File
    FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
    FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
    FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
    FF Plugin: @nitropdf.com/NitroPDF - C:\Program Files\Nitro\Reader 3\npnitromozilla.dll (Nitro PDF)
    FF Plugin: @real.com/nppl3260;version=16.0.2.32 - c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
    FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
    FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
    FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
    FF Plugin: @real.com/nprpplugin;version=16.0.2.32 - c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
    FF Plugin: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
    FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
    FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
    FF Plugin: @videolan.org/vlc,version=2.0.4 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
    FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
    FF SearchPlugin: C:\Users\Ditndongo\AppData\Roaming\Mozilla\Firefox\Profiles\ayfo9jmt.default\searchplugins\MyStart Search.xml
    FF HKLM\...\Firefox\Extensions: [statuswinks@StatusWinks] - C:\Users\Ditndongo\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks
    FF Extension: Smiley Bar for Facebook - C:\Users\Ditndongo\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks
    FF HKLM\...\Firefox\Extensions: [{336D0C35-8A85-403a-B9D2-65C292C39087}] - C:\Program Files\IB Updater\Firefox
    FF Extension: IB Updater - C:\Program Files\IB Updater\Firefox
    FF HKLM\...\Firefox\Extensions: [510cb3bcb096d@510cb3bcb09a7.com] - C:\Users\Ditndongo\AppData\Roaming\Mozilla\Firefox\Profiles\zn07bf7d.default-1357370347854\extensions\510cb3bcb096d@510cb3bcb09a7.com
    FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
    FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
    FF HKLM\...\Firefox\Extensions: [chqa@cfghrdd.edu] - C:\Users\Ditndongo\AppData\Roaming\Mozilla\Firefox\Profiles\zn07bf7d.default-1357370347854\extensions\chqa@cfghrdd.edu
    FF HKLM\...\Firefox\Extensions: [oaiyayeuay@u-kje.com] - C:\Users\Ditndongo\AppData\Roaming\Mozilla\Firefox\Profiles\zn07bf7d.default-1357370347854\extensions\oaiyayeuay@u-kje.com
    FF HKLM\...\Firefox\Extensions: [{FE1DEEEA-DB6D-44b8-83F0-34FC0F9D1052}] - C:\Program Files\IB Updater\Firefox
    FF Extension: IB Updater - C:\Program Files\IB Updater\Firefox
    FF HKLM\...\Firefox\Extensions: [ecz4gvie@uyyk-.co.uk] - C:\Users\Ditndongo\AppData\Roaming\Mozilla\Firefox\Profiles\zn07bf7d.default-1357370347854\extensions\ecz4gvie@uyyk-.co.uk
    FF HKLM\...\Firefox\Extensions: [oioestgp@eeuyuo.co.uk] - C:\Users\Ditndongo\AppData\Roaming\Mozilla\Firefox\Profiles\zn07bf7d.default-1357370347854\extensions\oioestgp@eeuyuo.co.uk
    FF HKLM\...\Firefox\Extensions: [{FCE04E1F-9378-4f39-96F6-5689A9159E45}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
    FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
    FF HKCU\...\Firefox\Extensions: [specialsavings@vshsolutions.com] - C:\Users\Ditndongo\AppData\Roaming\Mozilla\Extensions\specialsavings@vshsolutions.com
    FF Extension: Special Savings - C:\Users\Ditndongo\AppData\Roaming\Mozilla\Extensions\specialsavings@vshsolutions.com
    FF HKCU\...\Firefox\Extensions: [statuswinks@StatusWinks] - C:\Users\Ditndongo\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks
    FF Extension: Smiley Bar for Facebook - C:\Users\Ditndongo\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks
    FF HKCU\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Ditndongo\AppData\Roaming\IDM\idmmzcc3
    FF Extension: IDM CC - C:\Users\Ditndongo\AppData\Roaming\IDM\idmmzcc3
    FF HKCU\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Ditndongo\AppData\Roaming\IDM\idmmzcc3
    FF Extension: IDM CC - C:\Users\Ditndongo\AppData\Roaming\IDM\idmmzcc3
    FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Aurora\firefox.exe

    Chrome:
    =======
    CHR HomePage: hxxp://search.babylon.com/?affID=124202&babsrc=HP_ss&mntrId=9E63CCAF78508EDC
    CHR RestoreOnStartup: "hxxp://search.babylon.com/?affID=124202&babsrc=HP_ss&mntrId=9E63CCAF78508EDC", "hxxp://www.google.com/"
    CHR DefaultSearchURL: (Bing) - http://www.bing.com/search?setmkt=fr-FR&q={searchTerms}
    CHR DefaultSuggestURL: (Bing) - http://api.bing.com/osjson.aspx?query={searchTerms}&language={language}
    CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\29.0.1547.62\PepperFlash\pepflashplayer.dll No File
    CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
    CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\29.0.1547.62\ppGoogleNaClPluginChrome.dll No File
    CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\29.0.1547.62\pdf.dll No File
    CHR Plugin: (Injovo Extension Plugin) - C:\Users\Ditndongo\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd\2.0.0.578_0\npbrowserext.dll (Injovo)
    CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
    CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
    CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
    CHR Plugin: (Foxit Reader Plugin for Mozilla) - C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
    CHR Plugin: (Picasa) - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
    CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
    CHR Plugin: (Java(TM) Platform SE 7 U13) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
    CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
    CHR Plugin: (VLC Web Plugin) - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
    CHR Plugin: (Ma-Config.com plugin) - C:\Program Files\ma-config.com\nphardwaredetection.dll (Cybelsoft)
    CHR Plugin: (RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
    CHR Plugin: (RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
    CHR Plugin: (RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
    CHR Plugin: (RealDownloader Plugin) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
    CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw_1200112.dll No File
    CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_171.dll No File
    CHR Plugin: (Java Deployment Toolkit 7.0.130.20) - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
    CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
    CHR Plugin: (RealPlayer Download Plugin) - c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
    CHR Extension: (SpecialSavings.com) - C:\Users\DITNDO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aidbbndgjnlaclnmhkdimcdjiebjpdel\2.0.0_0
    CHR Extension: (YouTube) - C:\Users\DITNDO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
    CHR Extension: (Google Search) - C:\Users\DITNDO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
    CHR Extension: (IB Updater) - C:\Users\DITNDO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd\2.0.0.578_0
    CHR Extension: (Browsee2saave) - C:\Users\DITNDO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\eghakpmhdafhefnmmiiedmclllmeenng\1
    CHR Extension: (Browsee2saave) - C:\Users\DITNDO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjifjngofkgcilcpojbdkkndandkcenm\1
    CHR Extension: (Barrowase2saave) - C:\Users\DITNDO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbappbmocfpdliadbjdicefkppeclcmd\1
    CHR Extension: (Smiley Bar for Facebook) - C:\Users\DITNDO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgojaaaiddhmiiakpejiklijbalpckih\1.0.1.0_0
    CHR Extension: (Barrowase2saave) - C:\Users\DITNDO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\hibdbicogjabholgocicppnhcejlhpeb\1
    CHR Extension: (RealDownloader) - C:\Users\DITNDO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.2_0
    CHR Extension: (Chrome In-App Payments service) - C:\Users\DITNDO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
    CHR Extension: (Browse2save) - C:\Users\DITNDO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnkegbpkaohehdaaadcpgnijknadedmp\1
    CHR Extension: (Gmail) - C:\Users\DITNDO~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
    CHR HKLM\...\Chrome\Extension: [aidbbndgjnlaclnmhkdimcdjiebjpdel] - C:\Users\Ditndongo\AppData\Roaming\SpecialSavings\SpecialSavings_2.0.0.crx
    CHR HKLM\...\Chrome\Extension: [dlnembnfbcpjnepmfjmngjenhhajpdfd] - C:\Program Files\IB Updater\source.crx
    CHR HKLM\...\Chrome\Extension: [hgojaaaiddhmiiakpejiklijbalpckih] - C:\Users\Ditndongo\AppData\Roaming\StatusWinks\statuswinks.crx
    CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx
    CHR HKLM\...\Chrome\Extension: [ijblflkdjdopkpdgllkmlbgcffjbnfda] - \User Data\Default\Extensions\v9.crx

    ========================== Services (Whitelisted) =================

    R2 AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe [4939312 2013-07-04] (AVG Technologies CZ, s.r.o.)
    R2 avgwd; C:\Program Files\AVG\AVG2013\avgwdsvc.exe [283136 2013-07-23] (AVG Technologies CZ, s.r.o.)
    R2 IB Updater; C:\Program Files\IB Updater\ExtensionUpdaterService.exe [188760 2013-01-29] ()
    R2 IBUpdaterService; C:\Windows\system32\dmwu.exe [1432368 2013-10-15] ()
    R2 IconMan_R; C:\Program Files\Realtek\Realtek PCIE Card Reader\RIconMan.exe [1822352 2012-12-06] (Realsil Microelectronics Inc.)
    R2 InternetEverywhere_Service; C:\Program Files\InternetEverywhere\InternetEverywhere_Service.exe [316880 2010-07-16] ()
    S3 maconfservice; C:\Program Files\ma-config.com\maconfservice.exe [312704 2013-02-05] (CybelSoft)
    R2 NitroReaderDriverReadSpool3; C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe [196624 2012-10-30] (Nitro PDF Software)
    R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-04-16] ()

    ==================== Drivers (Whitelisted) ====================

    R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [208184 2013-07-20] (AVG Technologies CZ, s.r.o.)
    R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [60216 2013-07-20] (AVG Technologies CZ, s.r.o.)
    R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22328 2013-09-10] (AVG Technologies CZ, s.r.o.)
    R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [171320 2013-07-20] (AVG Technologies CZ, s.r.o.)
    R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [246072 2013-07-20] (AVG Technologies CZ, s.r.o.)
    R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [96568 2013-07-01] (AVG Technologies CZ, s.r.o.)
    R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [39224 2013-09-05] (AVG Technologies CZ, s.r.o.)
    R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [182072 2013-03-21] (AVG Technologies CZ, s.r.o.)
    S3 driverhardwarev2; C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys [16640 2011-07-21] (CybelSoft)
    S3 ewsercd; C:\Windows\System32\DRIVERS\ewsercd.sys [100224 2013-08-31] (Huawei Technologies Co., Ltd.)
    S3 hwusbfake; C:\Windows\System32\DRIVERS\ewusbfake.sys [103040 2013-08-31] (Huawei Technologies Co., Ltd.)
    R3 RSPCIESTOR; C:\Windows\System32\DRIVERS\RtsPStor.sys [254608 2012-12-06] (Realtek Semiconductor Corp.)
    S3 AthBTPort; system32\DRIVERS\btath_flt.sys [x]
    S3 BTATH_A2DP; system32\drivers\btath_a2dp.sys [x]
    S3 BTATH_BUS; system32\DRIVERS\btath_bus.sys [x]
    S3 BTATH_HCRP; system32\DRIVERS\btath_hcrp.sys [x]
    S3 BTATH_RCP; system32\DRIVERS\btath_rcp.sys [x]
    U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [112128 2013-08-31] (Huawei Technologies Co., Ltd.)
    S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [x]

    ==================== NetSvcs (Whitelisted) ===================


    ==================== One Month Created Files and Folders ========

    2013-10-25 21:26 - 2013-10-25 21:26 - 01542361 _____ (El Desaparecido - SosVirus.net - UsbFix.net) C:\Users\Ditndongo\Downloads\UsbFix.exe
    2013-10-25 21:21 - 2013-10-25 21:21 - 00000000 ____D C:\FRST
    2013-10-25 21:19 - 2013-10-25 21:19 - 01088465 _____ (Farbar) C:\Users\Ditndongo\Desktop\FRST.exe
    2013-10-24 23:06 - 2013-10-24 23:06 - 00001951 _____ C:\Users\Public\Desktop\Adobe Reader 9.lnk
    2013-10-24 21:08 - 2013-10-24 21:08 - 00000000 ____D C:\Windows\system32\jmdp
    2013-10-24 21:07 - 2013-10-24 21:07 - 00000056 _____ C:\Windows\setupact.log
    2013-10-24 21:07 - 2013-10-24 21:07 - 00000000 _____ C:\Windows\setuperr.log
    2013-10-23 14:46 - 2013-10-24 23:40 - 00000000 ____D C:\Users\Ditndongo\Desktop\atelier clinique
    2013-10-22 00:20 - 2013-10-23 00:06 - 00000000 ____D C:\Users\Ditndongo\Desktop\Troisieme année
    2013-10-16 14:44 - 2013-09-04 02:15 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
    2013-10-16 14:44 - 2013-09-04 02:14 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
    2013-10-16 14:44 - 2013-09-04 02:14 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
    2013-10-16 14:44 - 2013-09-04 02:14 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
    2013-10-16 14:44 - 2013-09-04 02:14 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
    2013-10-16 14:44 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
    2013-10-16 14:43 - 2013-09-04 02:14 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
    2013-10-16 14:43 - 2013-09-04 02:14 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
    2013-10-16 14:43 - 2013-07-03 04:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
    2013-10-16 14:43 - 2013-07-03 04:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
    2013-10-16 14:42 - 2013-09-14 01:48 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
    2013-10-16 14:42 - 2013-09-08 03:07 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
    2013-10-16 14:42 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
    2013-10-16 14:37 - 2013-08-01 12:03 - 00729024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
    2013-10-16 14:36 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
    2013-10-16 14:36 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
    2013-10-16 14:36 - 2013-08-29 02:50 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
    2013-10-16 14:36 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
    2013-10-16 14:36 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
    2013-10-16 14:35 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
    2013-10-16 14:35 - 2013-06-06 05:52 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
    2013-10-16 14:35 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
    2013-10-16 14:35 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
    2013-10-16 14:35 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
    2013-10-16 14:35 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
    2013-10-16 14:34 - 2013-08-28 01:57 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
    2013-10-16 14:21 - 2013-09-23 00:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
    2013-10-16 14:21 - 2013-09-23 00:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
    2013-10-16 14:21 - 2013-09-23 00:28 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
    2013-10-16 14:21 - 2013-09-23 00:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
    2013-10-16 14:21 - 2013-09-23 00:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
    2013-10-16 14:21 - 2013-09-23 00:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
    2013-10-16 14:21 - 2013-09-23 00:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
    2013-10-16 14:21 - 2013-09-23 00:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
    2013-10-16 14:21 - 2013-09-23 00:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
    2013-10-16 14:21 - 2013-09-23 00:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
    2013-10-16 14:21 - 2013-09-23 00:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
    2013-10-16 14:21 - 2013-09-23 00:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
    2013-10-16 14:21 - 2013-09-23 00:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
    2013-10-16 14:21 - 2013-09-23 00:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
    2013-10-16 14:21 - 2013-09-21 04:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
    2013-10-16 14:21 - 2013-09-21 03:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
    2013-10-16 11:40 - 2013-08-28 02:04 - 02348544 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
    2013-10-16 11:40 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
    2013-10-16 11:40 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
    2013-10-16 11:40 - 2013-07-04 10:48 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
    2013-10-16 11:39 - 2013-07-12 11:08 - 00146816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
    2013-10-16 11:39 - 2013-07-12 11:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
    2013-10-16 11:39 - 2013-06-25 23:56 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
    2013-09-30 23:15 - 2013-09-30 23:15 - 00000000 ____D C:\Users\Ditndongo\AppData\Local\Babylon
    2013-09-30 23:15 - 2013-09-30 23:15 - 00000000 ____D C:\Program Files\UnZIPExpress
    2013-09-29 18:42 - 2013-09-30 20:57 - 00000440 _____ C:\Windows\system32\Drivers\etc\hosts.ics
    2013-09-29 13:14 - 2013-10-17 18:54 - 00000000 ____D C:\Users\Ditndongo\Desktop\etudes

    ==================== One Month Modified Files and Folders =======

    2013-10-25 21:26 - 2013-10-25 21:26 - 01542361 _____ (El Desaparecido - SosVirus.net - UsbFix.net) C:\Users\Ditndongo\Downloads\UsbFix.exe
    2013-10-25 21:24 - 2012-12-07 12:52 - 00000000 ____D C:\Users\Ditndongo\AppData\Roaming\Skype
    2013-10-25 21:21 - 2013-10-25 21:21 - 00000000 ____D C:\FRST
    2013-10-25 21:21 - 2012-11-28 17:44 - 01292796 _____ C:\Windows\WindowsUpdate.log
    2013-10-25 21:19 - 2013-10-25 21:19 - 01088465 _____ (Farbar) C:\Users\Ditndongo\Desktop\FRST.exe
    2013-10-25 21:10 - 2013-02-01 22:08 - 00001062 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
    2013-10-25 21:09 - 2013-04-22 10:19 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
    2013-10-24 23:40 - 2013-10-23 14:46 - 00000000 ____D C:\Users\Ditndongo\Desktop\atelier clinique
    2013-10-24 23:06 - 2013-10-24 23:06 - 00001951 _____ C:\Users\Public\Desktop\Adobe Reader 9.lnk
    2013-10-24 23:04 - 2013-06-12 08:12 - 00000000 ____D C:\Program Files\Aurora
    2013-10-24 22:59 - 2013-07-02 14:11 - 00000382 _____ C:\Windows\Tasks\ReclaimerUpdateXML_Ditndongo.job
    2013-10-24 22:55 - 2013-02-01 22:08 - 00001058 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
    2013-10-24 22:49 - 2013-07-02 15:44 - 00000000 ___RD C:\Program Files\Skype
    2013-10-24 22:49 - 2012-11-30 23:07 - 00000000 ____D C:\ProgramData\Skype
    2013-10-24 22:08 - 2013-07-02 14:11 - 00000386 _____ C:\Windows\Tasks\ReclaimerUpdateFiles_Ditndongo.job
    2013-10-24 21:15 - 2009-07-14 05:34 - 00019520 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    2013-10-24 21:15 - 2009-07-14 05:34 - 00019520 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    2013-10-24 21:14 - 2013-02-11 23:06 - 00000000 ____D C:\ProgramData\MFAData
    2013-10-24 21:08 - 2013-10-24 21:08 - 00000000 ____D C:\Windows\system32\jmdp
    2013-10-24 21:08 - 2013-02-02 07:39 - 00000000 ____D C:\Program Files\BrowseToSave
    2013-10-24 21:07 - 2013-10-24 21:07 - 00000056 _____ C:\Windows\setupact.log
    2013-10-24 21:07 - 2013-10-24 21:07 - 00000000 _____ C:\Windows\setuperr.log
    2013-10-24 21:07 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
    2013-10-24 21:03 - 2013-01-20 21:24 - 00000000 ____D C:\Windows\system32\ARFC
    2013-10-24 21:02 - 2013-01-20 21:24 - 00000000 ____D C:\Windows\system32\WNLT
    2013-10-23 22:49 - 2012-11-28 17:40 - 00000000 ____D C:\Windows\Panther
    2013-10-23 22:48 - 2013-01-02 00:04 - 00000000 ____D C:\Users\Ditndongo\AppData\Local\CrashDumps
    2013-10-23 21:09 - 2012-11-28 18:07 - 01549700 _____ C:\Windows\system32\PerfStringBackup.INI
    2013-10-23 00:06 - 2013-10-22 00:20 - 00000000 ____D C:\Users\Ditndongo\Desktop\Troisieme année
    2013-10-21 23:22 - 2013-02-19 23:42 - 00000000 ____D C:\Users\Ditndongo\AppData\Roaming\vlc
    2013-10-20 22:46 - 2012-11-30 22:40 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
    2013-10-20 22:46 - 2012-11-30 22:40 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
    2013-10-17 18:54 - 2013-09-29 13:14 - 00000000 ____D C:\Users\Ditndongo\Desktop\etudes
    2013-10-17 18:31 - 2012-12-12 19:26 - 00000000 ____D C:\Users\Ditndongo\Downloads\Video
    2013-10-17 11:29 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Microsoft.NET
    2013-10-16 14:50 - 2013-02-15 09:44 - 00000000 ____D C:\Program Files\Microsoft Silverlight
    2013-10-16 14:50 - 2009-07-14 05:33 - 00417176 _____ C:\Windows\system32\FNTCACHE.DAT
    2013-10-16 14:47 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\fr-FR
    2013-10-16 14:42 - 2012-11-28 18:47 - 00000000 ____D C:\ProgramData\Microsoft Help
    2013-10-16 14:34 - 2013-07-30 12:25 - 00000000 ____D C:\Windows\system32\MRT
    2013-10-16 14:28 - 2012-12-01 10:52 - 78106760 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
    2013-10-15 09:43 - 2013-01-20 21:24 - 01432368 _____ C:\Windows\system32\dmwu.exe
    2013-10-15 09:35 - 2013-01-20 21:24 - 00027136 _____ (IncrediMail, Ltd.) C:\Windows\system32\ImHttpComm.dll
    2013-10-13 14:48 - 2012-01-06 09:29 - 00000000 ____D C:\Users\Ditndongo\Documents\Dossier Echanges Bluetooth
    2013-10-11 21:22 - 2013-04-20 22:52 - 00000000 ____D C:\Users\Ditndongo\Documents\Fichiers Outlook
    2013-10-02 12:20 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\NDF
    2013-10-01 09:31 - 2009-07-14 05:53 - 00032482 _____ C:\Windows\Tasks\SCHEDLGU.TXT
    2013-09-30 23:15 - 2013-09-30 23:15 - 00000000 ____D C:\Users\Ditndongo\AppData\Local\Babylon
    2013-09-30 23:15 - 2013-09-30 23:15 - 00000000 ____D C:\Program Files\UnZIPExpress
    2013-09-30 20:57 - 2013-09-29 18:42 - 00000440 _____ C:\Windows\system32\Drivers\etc\hosts.ics
    2013-09-30 16:53 - 2013-01-20 21:24 - 00632656 _____ (Microsoft Corporation) C:\Windows\system32\msvcr80.dll
    2013-09-30 16:53 - 2013-01-20 21:24 - 00554832 _____ (Microsoft Corporation) C:\Windows\system32\msvcp80.dll
    2013-09-30 16:53 - 2013-01-20 21:24 - 00479232 _____ (Microsoft Corporation) C:\Windows\system32\msvcm80.dll
    2013-09-30 16:53 - 2013-01-20 21:24 - 00001870 _____ C:\Windows\system32\Microsoft.VC80.CRT.manifest

    Files to move or delete:
    ====================
    C:\Users\DITNDO~1\AppData\Local\Temp\rbuhhdgpds..vbs


    Some content of TEMP:
    ====================
    C:\Users\Ditndongo\AppData\Local\Temp\SkypeSetup.exe


    ==================== Bamital & volsnap Check =================

    C:\Windows\explorer.exe => MD5 is legit
    C:\Windows\System32\winlogon.exe => MD5 is legit
    C:\Windows\System32\wininit.exe => MD5 is legit
    C:\Windows\System32\svchost.exe => MD5 is legit
    C:\Windows\System32\services.exe => MD5 is legit
    C:\Windows\System32\User32.dll => MD5 is legit
    C:\Windows\System32\userinit.exe => MD5 is legit
    C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


    LastRegBack: 2013-10-12 14:17

    ==================== End Of Log ============================



    Additional scan result of Farbar Recovery Scan Tool (x86) Version: 25-10-2013
    Ran by Ditndongo at 2013-10-25 21:27:45
    Running from C:\Users\Ditndongo\Desktop
    Boot Mode: Normal
    ==========================================================


    ==================== Security Center ========================

    AV: AVG AntiVirus Free Edition 2013 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
    AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    AS: AVG AntiVirus Free Edition 2013 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}

    ==================== Installed Programs ======================

    Acer Crystal Eye Webcam (Version: 1.5.3018.00)
    Acrobat.com (Version: 1.6.65)
    Adobe AIR (Version: 1.5.0.7220)
    Adobe Flash Player 11 ActiveX (Version: 11.9.900.117)
    Adobe Flash Player 11 Plugin (Version: 11.9.900.117)
    Adobe Reader 9.5.5 MUI (Version: 9.5.5)
    Adobe Shockwave Player 12.0 (Version: 12.0.2.122)
    Apple Application Support (Version: 2.3)
    Apple Software Update (Version: 2.1.3.127)
    Aurora 23.0a2 (x86 fr) (Version: 23.0a2)
    AVG 2013 (Version: 13.0.3222)
    AVG 2013 (Version: 13.0.3426)
    AVG 2013 (Version: 2013.0.3426)
    Barrowase2saave (Version: )
    BrowseToSave 1.74
    CCleaner (Version: 4.02)
    Code de la Route Pratic (Version: 4.00.0000)
    Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
    DupliTop 5 (Version: 5.0.4.3)
    Foxit Reader (Version: 5.4.4.1023)
    GOM Player (Version: 2.1.50.5145)
    Google Chrome (Version: 30.0.1599.101)
    Google Update Helper (Version: 1.3.21.165)
    IB Updater 2.0.0.578 (Version: 2.0.0.578)
    IB Updater Service (Version: 4.0.8.7)
    Intel(R) Graphics Media Accelerator Driver (Version: 8.14.10.2230)
    Intel(R) Rapid Storage Technology (Version: 11.2.0.1006)
    Internet Everywhere (Version: 1.1)
    Java 7 Update 13 (Version: 7.0.130)
    Java Auto Updater (Version: 2.1.9.0)
    Larousse Médical
    Ma-Config.com (Version: 6.5.028)
    Macromedia Flash Player 8 (Version: 8.0.22.0)
    Micro Application - 38 Dictionnaires et Recueils de Correspondance (Version: 1.0.0.0)
    Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
    Microsoft .NET Framework 4 Client Profile FRA Language Pack (Version: 4.0.30319)
    Microsoft Office Access MUI (French) 2010 (Version: 14.0.7015.1000)
    Microsoft Office Excel MUI (French) 2010 (Version: 14.0.7015.1000)
    Microsoft Office Groove MUI (French) 2010 (Version: 14.0.7015.1000)
    Microsoft Office InfoPath MUI (French) 2010 (Version: 14.0.7015.1000)
    Microsoft Office OneNote MUI (French) 2010 (Version: 14.0.7015.1000)
    Microsoft Office Outlook MUI (French) 2010 (Version: 14.0.7015.1000)
    Microsoft Office PowerPoint MUI (French) 2010 (Version: 14.0.7015.1000)
    Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000)
    Microsoft Office Professionnel Plus 2010 (Version: 14.0.7015.1000)
    Microsoft Office Proof (Arabic) 2010 (Version: 14.0.7015.1000)
    Microsoft Office Proof (Dutch) 2010 (Version: 14.0.7015.1000)
    Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000)
    Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000)
    Microsoft Office Proof (German) 2010 (Version: 14.0.7015.1000)
    Microsoft Office Proof (Spanish) 2010 (Version: 14.0.7015.1000)
    Microsoft Office Proofing (French) 2010 (Version: 14.0.7015.1000)
    Microsoft Office Publisher MUI (French) 2010 (Version: 14.0.7015.1000)
    Microsoft Office Shared MUI (French) 2010 (Version: 14.0.7015.1000)
    Microsoft Office Word MUI (French) 2010 (Version: 14.0.7015.1000)
    Microsoft Silverlight (Version: 5.1.20913.0)
    Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
    Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
    Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
    Module linguistique Microsoft .NET Framework 4 Client Profile FRA (Version: 4.0.30319)
    Mozilla Maintenance Service (Version: 23.0a2)
    NewTabs Uninstall
    Nitro Reader 3 (Version: 3.0.6.3)
    Picasa 3 (Version: 3.9)
    RealDownloader (Version: 1.3.2)
    RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
    RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0)
    Realtek Ethernet Controller Driver (Version: 7.65.1025.2012)
    Realtek PCIE Card Reader (Version: 6.2.8400.28124)
    RealUpgrade 1.1 (Version: 1.1.0)
    Scrabble™ Interactive 2009 Edition
    Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
    SES Driver (Version: 1.0.0)
    Skype™ 6.9 (Version: 6.9.106)
    SpecialSavings (Version: 2.0.0)
    swMSM (Version: 12.0.0.1)
    Synaptics Pointing Device Driver (Version: 15.1.18.0)
    Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
    Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
    Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
    Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
    Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3)
    Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition
    Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition
    Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition
    Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition
    Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition
    Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
    Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition
    Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition
    Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition
    Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition
    Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition
    Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition
    Update for Microsoft Word 2010 (KB2827323) 32-Bit Edition
    Updater Service (Version: 14,12,8,9)
    VLC media player 2.0.4 (Version: 2.0.4)
    WinDjView 1.0.3 (Version: 1.0.3)
    Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
    WinRAR 4.20 (32-bit) (Version: 4.20.0)

    ==================== Restore Points =========================

    30-09-2013 08:31:03 Sauvegarde Windows
    06-10-2013 18:00:21 Sauvegarde Windows
    13-10-2013 08:18:23 Windows Update
    13-10-2013 18:00:09 Sauvegarde Windows
    16-10-2013 13:06:01 Windows Update
    20-10-2013 21:22:31 Sauvegarde Windows

    ==================== Hosts content: ==========================

    2009-07-14 03:04 - 2012-12-03 14:02 - 00000878 ____A C:\Windows\system32\Drivers\etc\hosts
    127.0.0.1 localhost
    127.0.0.1 localhost


    ==================== Scheduled Tasks (whitelisted) =============

    Task: {026FE012-E635-49A6-B263-F07B08E64189} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-2432197384-4252551229-1321144471-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
    Task: {109DF180-C17B-4EF9-B9DD-1BAF070E633D} - System32\Tasks\{58DFC71E-F9D7-4CC0-BC66-E8AEB1384E48} => Firefox.exe http://www.skype.com/go/downloading?source=lightinstall...
    Task: {1365EBD2-E601-4C3D-9BBC-2F60E2FECEC5} - System32\Tasks\ReclaimerUpdateFiles_Ditndongo => C:\Users\Ditndongo\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe [2013-07-02] (RealNetworks, Inc.)
    Task: {2356A34B-7DD0-4965-B352-E4B942BEEA8B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-05-24] (Piriform Ltd)
    Task: {28D880E4-48E5-422E-B7FF-EB476578D635} - System32\Tasks\RNUpgradeHelperResumePrompt_Ditndongo => C:\Users\Ditndongo\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe [2013-07-02] (RealNetworks, Inc.)
    Task: {29780F7E-95A9-4533-8547-74B9714645A8} - System32\Tasks\{9AAD7CB3-A525-4EFC-90DC-B61F2AB8E7D0} => C:\Program Files\InternetEverywhere\InternetEverywhere.exe [2010-07-16] (WebToGo Mobiles Internet GmbH)
    Task: {30BC18C8-24B3-404A-B48E-39FE7113990B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-02-01] (Google Inc.)
    Task: {5E88F503-4B48-4CCA-B9E6-DABFF043D310} - System32\Tasks\RNUpgradeHelperLogonPrompt_Ditndongo => C:\Users\Ditndongo\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe [2013-07-02] (RealNetworks, Inc.)
    Task: {5ECC629E-8DA9-4091-9ABA-DBA3B0CE25FD} - System32\Tasks\Programme de mise à jour en ligne de Adobe => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04] (Adobe Systems Incorporated)
    Task: {69605EEF-67E6-4E46-9BA2-BABBCF9B1197} - System32\Tasks\Programme de mise à jour en ligne de Real Player => c:\program files\real\realplayer\Update\realsched.exe [2013-07-05] (RealNetworks, Inc.)
    Task: {72CDB866-0595-430F-A9E7-085F7D23E467} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-02-01] (Google Inc.)
    Task: {76EF5658-F01A-47B8-9A5C-E7F79C42B49C} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2432197384-4252551229-1321144471-1000 => C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe [2013-04-16] (RealNetworks, Inc.)
    Task: {7E2ECA7A-96F7-432E-817C-71924B7F66BB} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
    Task: {837C7177-1D72-462F-B8A0-BEBC75547446} - System32\Tasks\{12E586E3-DC4E-44B6-8F70-83EA5BF9F667} => Firefox.exe http://www.skype.com/go/downloading?source=lightinstall...
    Task: {8F31CFEC-AE61-4D2E-8BF3-0F2C0EA26454} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2432197384-4252551229-1321144471-1000 => C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe [2013-04-16] (RealNetworks, Inc.)
    Task: {A938016E-52F7-4209-A923-58A080AB1A23} - System32\Tasks\ReclaimerUpdateXML_Ditndongo => C:\Users\Ditndongo\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe [2013-07-02] (RealNetworks, Inc.)
    Task: {AE30FF76-81B3-4199-B0DB-22FDA12FC7C2} - System32\Tasks\{1ED1B4EE-0EFF-49DA-A8B1-39D8D29A0E2A} => Firefox.exe http://www.skype.com/go/downloading?source=lightinstall...
    Task: {C8528ED7-F923-4BCC-A2B5-105C06B7E1E3} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2432197384-4252551229-1321144471-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
    Task: {C98CFD9D-09DF-40B8-B9EE-5CF48FDB89CA} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03] (Sun Microsystems, Inc.)
    Task: {DFBD89F7-2271-435C-8EFD-DCAEDB7051E4} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-2432197384-4252551229-1321144471-1000 => C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe [2013-04-16] (RealNetworks, Inc.)
    Task: {E4F8D08B-4006-4BF0-88E3-B48C8EFCC62B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-20] (Adobe Systems Incorporated)
    Task: {EC9C9DF4-ADD5-4F41-ADB1-A6F679437931} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-2432197384-4252551229-1321144471-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
    Task: {F196E428-1C21-4556-B0A0-AE86538C1DB1} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2432197384-4252551229-1321144471-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
    Task: {F296A536-40BE-4279-B777-2FB16A6E35BA} - System32\Tasks\schedule!3036567561 => C:\ProgramData\BetterSoft\OptimizerPro\OptimizerPro.exe
    Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\ReclaimerUpdateFiles_Ditndongo.job => C:\Users\Ditndongo\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe
    Task: C:\Windows\Tasks\ReclaimerUpdateXML_Ditndongo.job => C:\Users\Ditndongo\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe
    Task: C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Ditndongo.job => C:\Users\Ditndongo\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe

    ==================== Loaded Modules (whitelisted) =============

    2013-04-04 01:09 - 2013-04-04 01:09 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
    2013-10-15 10:03 - 2013-10-15 10:03 - 01057792 _____ () C:\Windows\System32\jmdp\lmrn.dll
    2013-06-12 08:12 - 2013-06-12 08:12 - 03542952 _____ () C:\Program Files\Aurora\mozjs.dll
    2013-10-20 22:46 - 2013-10-20 22:46 - 16233864 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll
    2013-04-04 01:09 - 2013-04-04 01:09 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\office14\Cultures\office.odf
    2013-04-17 08:25 - 2003-07-17 09:53 - 00217152 _____ () C:\Program Files\Micro Application\38 Dictionnaires et Recueils de Correspondance\SoundDll.DLL
    2009-01-18 15:50 - 2009-01-18 15:50 - 00417792 _____ () C:\Program Files\Adobe\Reader 9.0\Reader\adobexmp.dll
    2007-11-16 16:02 - 2007-11-16 16:02 - 00401408 ____R () C:\Program Files\Adobe\Reader 9.0\Reader\cryptocme2.dll
    2007-11-16 16:02 - 2007-11-16 16:02 - 00479232 ____R () C:\Program Files\Adobe\Reader 9.0\Reader\ccme_base.dll

    ==================== Alternate Data Streams (whitelisted) =========


    ==================== Safe Mode (whitelisted) ===================


    ==================== Faulty Device Manager Devices =============


    ==================== Event log errors: =========================

    Application errors:
    ==================
    Error: (10/24/2013 09:08:46 PM) (Source: Windows Search Service) (User: )
    Description: Impossible d’initialiser l’index.

    Détails :
    Le catalogue d’index des contenus est endommagé. (HRESULT : 0xc0041801) (0xc0041801)

    Error: (10/24/2013 09:08:46 PM) (Source: Windows Search Service) (User: )
    Description: Impossible d’initialiser l’application.

    Contexte : Application Windows

    Détails :
    Le catalogue d’index des contenus est endommagé. (HRESULT : 0xc0041801) (0xc0041801)

    Error: (10/24/2013 09:08:46 PM) (Source: Windows Search Service) (User: )
    Description: Impossible d’initialiser l’objet rassembleur.

    Contexte : Application Windows, Catalogue SystemIndex

    Détails :
    Le catalogue d’index des contenus est endommagé. (HRESULT : 0xc0041801) (0xc0041801)

    Error: (10/24/2013 09:08:46 PM) (Source: Windows Search Service) (User: )
    Description: Impossible d’initialiser le plug-in dans <Search.TripoliIndexer>.

    Contexte : Application Windows, Catalogue SystemIndex

    Détails :
    Élément introuvable. (HRESULT : 0x80070490) (0x80070490)

    Error: (10/24/2013 09:08:46 PM) (Source: Windows Search Service) (User: )
    Description: Impossible d’initialiser le plug-in dans <Search.JetPropStore>.

    Contexte : Application Windows, Catalogue SystemIndex

    Détails :
    Le catalogue d’index des contenus est endommagé. (HRESULT : 0xc0041801) (0xc0041801)

    Error: (10/24/2013 09:08:46 PM) (Source: Windows Search Service) (User: )
    Description: Le service Windows Search ne peut pas charger les informations de la banque de propriétés.

    Contexte : Application Windows, Catalogue SystemIndex

    Détails :
    La base de données d’index des contenus est endommagée. (HRESULT : 0xc0041800) (0xc0041800)

    Error: (10/24/2013 09:08:46 PM) (Source: Windows Search Service) (User: )
    Description: Le service de recherche Windows a été arrêté à cause d’un problème avec l’indexeur : The catalog is corrupt.

    Détails :
    Le catalogue d’index des contenus est endommagé. (HRESULT : 0xc0041801) (0xc0041801)

    Error: (10/24/2013 09:08:46 PM) (Source: Windows Search Service) (User: )
    Description: Le service de recherche a détecté des fichiers de données endommagés dans l’index {id=4700}. Le service tentera de corriger automatiquement ce problème en recréant l’index.

    Détails :
    Le catalogue d’index des contenus est endommagé. (HRESULT : 0xc0041801) (0xc0041801)

    Error: (10/24/2013 09:08:46 PM) (Source: Windows Search Service) (User: )
    Description: Le service Windows Search ne peut pas ouvrir la banque de propriétés Jet.

    Détails :
    0x%08x (0xc0041800 - La base de données d’index des contenus est endommagée. (HRESULT : 0xc0041800))

    Error: (10/24/2013 09:08:46 PM) (Source: ESENT) (User: )
    Description: Windows (3512) Windows: L'Erreur -1811 s'est produite lors de l'ouverture du fichier journal C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS00651.log.


    System errors:
    =============
    Error: (10/25/2013 09:09:18 PM) (Source: DCOM) (User: )
    Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

    Error: (10/24/2013 09:08:46 PM) (Source: Service Control Manager) (User: )
    Description: Le service Windows Search s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service.

    Error: (10/24/2013 09:08:46 PM) (Source: Service Control Manager) (User: )
    Description: Le service Windows Search s’est arrêté avec l’erreur service particulière %%-1073473535.

    Error: (10/24/2013 09:08:05 PM) (Source: Service Control Manager) (User: )
    Description: Le pilote de démarrage système ou d’amorçage suivant n’a pas pu se charger :
    cdrom

    Error: (10/24/2013 09:07:56 PM) (Source: EventLog) (User: )
    Description: L’arrêt système précédant à 21:05:50 le ‎24/‎10/‎2013 n’était pas prévu.

    Error: (10/23/2013 02:44:31 PM) (Source: Disk) (User: )
    Description: Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk1\DR1.

    Error: (10/23/2013 02:44:30 PM) (Source: Disk) (User: )
    Description: Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk1\DR1.

    Error: (10/23/2013 02:44:30 PM) (Source: Disk) (User: )
    Description: Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk1\DR1.

    Error: (10/23/2013 02:44:29 PM) (Source: Disk) (User: )
    Description: Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk1\DR1.

    Error: (10/23/2013 02:44:24 PM) (Source: Disk) (User: )
    Description: Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk1\DR1.


    Microsoft Office Sessions:
    =========================
    Error: (10/24/2013 09:08:46 PM) (Source: Windows Search Service)(User: )
    Description: Détails :
    Le catalogue d’index des contenus est endommagé. (HRESULT : 0xc0041801) (0xc0041801)

    Error: (10/24/2013 09:08:46 PM) (Source: Windows Search Service)(User: )
    Description: Contexte : Application Windows

    Détails :
    Le catalogue d’index des contenus est endommagé. (HRESULT : 0xc0041801) (0xc0041801)

    Error: (10/24/2013 09:08:46 PM) (Source: Windows Search Service)(User: )
    Description: Contexte : Application Windows, Catalogue SystemIndex

    Détails :
    Le catalogue d’index des contenus est endommagé. (HRESULT : 0xc0041801) (0xc0041801)

    Error: (10/24/2013 09:08:46 PM) (Source: Windows Search Service)(User: )
    Description: Contexte : Application Windows, Catalogue SystemIndex

    Détails :
    Élément introuvable. (HRESULT : 0x80070490) (0x80070490)
    Search.TripoliIndexer

    Error: (10/24/2013 09:08:46 PM) (Source: Windows Search Service)(User: )
    Description: Contexte : Application Windows, Catalogue SystemIndex

    Détails :
    Le catalogue d’index des contenus est endommagé. (HRESULT : 0xc0041801) (0xc0041801)
    Search.JetPropStore

    Error: (10/24/2013 09:08:46 PM) (Source: Windows Search Service)(User: )
    Description: Contexte : Application Windows, Catalogue SystemIndex

    Détails :
    La base de données d’index des contenus est endommagée. (HRESULT : 0xc0041800) (0xc0041800)

    Error: (10/24/2013 09:08:46 PM) (Source: Windows Search Service)(User: )
    Description: Détails :
    Le catalogue d’index des contenus est endommagé. (HRESULT : 0xc0041801) (0xc0041801)
    The catalog is corrupt

    Error: (10/24/2013 09:08:46 PM) (Source: Windows Search Service)(User: )
    Description: Détails :
    Le catalogue d’index des contenus est endommagé. (HRESULT : 0xc0041801) (0xc0041801)
    4700

    Error: (10/24/2013 09:08:46 PM) (Source: Windows Search Service)(User: )
    Description: Détails :
    0x%08x (0xc0041800 - La base de données d’index des contenus est endommagée. (HRESULT : 0xc0041800))

    Error: (10/24/2013 09:08:46 PM) (Source: ESENT)(User: )
    Description: Windows3512Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS00651.log-1811


    CodeIntegrity Errors:
    ===================================
    Date: 2013-10-16 14:37:05.658
    Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume4\Windows\SoftwareDistribution\Download\6b407cd86ae71d015c05a77e0e9eb140\inst\x86_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22436_none_59c95d2a29958ebe\appidapi.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

    Date: 2013-10-16 14:37:04.750
    Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume4\Windows\SoftwareDistribution\Download\6b407cd86ae71d015c05a77e0e9eb140\inst\x86_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22436_none_59c95d2a29958ebe\appidapi.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système.


    ==================== Memory info ===========================

    Percentage of memory in use: 76%
    Total physical RAM: 2035.87 MB
    Available physical RAM: 469.43 MB
    Total Pagefile: 4071.73 MB
    Available Pagefile: 1896.1 MB
    Total Virtual: 2047.88 MB
    Available Virtual: 1910.11 MB

    ==================== Drives ================================

    Drive c: (Ahmadou) (Fixed) (Total:272.78 GB) (Free:124.17 GB) NTFS
    Drive d: () (Fixed) (Total:4.1 GB) (Free:1.44 GB) FAT32
    Drive e: (Ndongo) (Fixed) (Total:146.48 GB) (Free:23.32 GB) NTFS
    Drive f: (Sauvegarde) (Fixed) (Total:29.3 GB) (Free:29.13 GB) NTFS
    Drive g: (SYSTEM RESERVED) (Fixed) (Total:0.1 GB) (Free:0.05 GB) NTFS ==>[System with boot components (obtained from reading drive)]

    ==================== MBR & Partition Table ==================

    ========================================================
    Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: F1A9F6C9)
    Partition 1: (Not Active) - (Size=13 GB) - (Type=27)
    Partition 2: (Not Active) - (Size=4 GB) - (Type=0C)
    Partition 3: (Active) - (Size=100 MB) - (Type=07 NTFS)
    Partition 4: (Not Active) - (Size=449 GB) - (Type=OF Extended)

    ==================== End Of Log ============================
    m
    0
    l
    a b $ Windows 7
    25 Octobre 2013 22:39:04

    Re ...

    J'avais demandé d'héberger les rapports ...

    Et il me manque le rapport usbfix aussi ...

    Merci de bien lire nos procédures ;) 
    m
    0
    l
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS