Votre question

(resolu) Probleme fenetre pop up

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
11 Mai 2010 21:04:22

bonjours j ai une souci des fenêtre pop
internet explorer ouvre tous seul avec des pub
est ce que qu elle qu un peu m aider
je vous remet le raport de HijackThis

je vous remercie d avance

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:47:28, on 11/05/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18904)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\ltmoh\ltmoh.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\TOSHIBA\Utilities\VolControl.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe
C:\Program Files\Soft2PC\soft2pc.exe
C:\Windows\WindowsMobile\wmdSync.exe
C:\Program Files\Epson Software\Event Manager\EEventManager.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\Neuf\Kit\9props.exe
C:\Program Files\SpiderMessenger\SpiderMessenger.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Users\auchan.PC-de-auchan\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe
C:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE
C:\Users\auchan.PC-de-auchan\AppData\Roaming\Microsoft\Live Search\Mise-a-jour-LiveSearch.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Synaptics\SynTP\SynToshiba.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\auchan.PC-de-auchan\Downloads\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS02
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.incredimail.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://securityresponse.symantec.com/avcenter/fix_homep...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homep...
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Aide à la navigation SFR - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} - C:\Program Files\Neuf\Kit\SFRNavErrorHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: SOFT2PCBHO - {3475D2C4-BBD1-4255-A70D-4125A4D30956} - C:\Program Files\Soft2PC\soft2pcBHO.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll
O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton 360\Engine\3.8.0.41\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton 360\Engine\3.8.0.41\IPSBHO.DLL
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: SpiderMessenger_BHO - {ADE49752-DBBC-43A3-9498-379A82F574BF} - C:\Program Files\SpiderMessenger\SpiderMessenger.BHO.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\3.8.0.41\coIEPlg.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe"
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [TOSHIBA Volume Indicator] "C:\Program Files\Toshiba\Utilities\VolControl.exe"
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [topi] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup
O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [soft2PC] "C:\Program Files\Soft2PC\soft2pc.exe"
O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdSync.exe
O4 - HKLM\..\Run: [EEventManager] C:\PROGRA~1\EPSONS~1\EVENTM~1\EEventManager.exe
O4 - HKLM\..\RunOnce: [Helper] C:\Users\auchan.PC-de-auchan\AppData\Roaming\Soft2PC\Software\SoftwareHP.exe -runonce
O4 - HKLM\..\RunOnce: [SoftwareHelper] C:\Users\auchan.PC-de-auchan\AppData\Roaming\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe -runonce
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [TOSCDSPD] TOSCDSPD.EXE
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Connexion SFR 9props.exe] "C:\Program Files\Neuf\Kit\9props.exe" /trayicon
O4 - HKCU\..\Run: [SpiderMessenger] "C:\Program Files\SpiderMessenger\SpiderMessenger.exe" -startrun
O4 - HKCU\..\Run: [EPSON SX210 Series] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE /FU "C:\Windows\TEMP\E_S889D.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [EPSON SX210 Series NB4] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE /FU "C:\Windows\TEMP\E_SE23E.tmp" /EF "HKCU"
O4 - Startup: Outil de notification Live Search.lnk = C:\Users\auchan.PC-de-auchan\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe
O8 - Extra context menu item: Tout télécharger avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Télécharger avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: Télécharger toutes les vidéos avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra button: eBay - {C08CAF1D-C0A3-40D5-9970-06D067EAC017} - http://www.webtip.ch/cgi-bin/toshiba/tracker_url.pl?FR (file missing)
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll/206 (file missing)
O13 - Gopher Prefix:
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scanner/sourc...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O18 - Protocol: symres - {AA1061FE-6C41-421F-9344-69640C9732AB} - C:\Program Files\Norton 360\Engine\3.8.0.41\coIEPlg.dll
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Autodata Limited License Service - Autodata Limited - C:\Program Files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Norton 360 (N360) - Symantec Corporation - C:\Program Files\Norton 360\Engine\3.8.0.41\ccSvcHst.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

--
End of file - 11007 bytes

Autres pages sur : resolu probleme fenetre pop

a c 295 8 Sécurité
11 Mai 2010 21:19:56

Bonjour,

  • Télécharge Ad-Remover (de C_XX) sur ton Bureau.
  • Déconnecte-toi et ferme toutes applications en cours.
  • Double-clique sur AD-R situé sur ton Bureau pour le lancer.
  • Choisis Nettoyer puis valide.
  • Poste le rapport qui apparaît à la fin (C:\Ad-Report-CLEAN.log).

    (CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)
    11 Mai 2010 21:45:06

    voici le rappotr ad r

    .
    ======= RAPPORT D'AD-REMOVER 2.0.0.0,D | UNIQUEMENT XP/VISTA/7 =======
    .
    Mis à jour par C_XX le 07/05/10 à 16:50
    Contact: AdRemover.contact@gmail.com
    Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
    .
    Lancé à: 21:25:03 le 11/05/2010 | Mode normal | Option: CLEAN
    Exécuté de: C:\Ad-Remover\ADR.exe
    SE: Microsoft® Windows Vista™ HomeBasic Service Pack 2 - X86
    Nom du PC: TITEUF-PC (TOSHIBA Satellite L30)
    Utilisateur actuel: auchan
    .
    ============== ÉLÉMENT(S) NEUTRALISÉ(S) ==============
    .
    .
    C:\Program Files\Soft2PC
    C:\Users\auchan.PC-de-auchan\AppData\Local\Soft2PC
    C:\Users\auchan.PC-de-auchan\AppData\Roaming\EoRezo
    C:\Users\auchan.PC-de-auchan\AppData\Roaming\Soft2PC
    C:\Windows\pack.epk

    (!) -- Fichiers temporaires supprimés.
    .
    HKCU\Software\EoRezo
    HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3475D2C4-BBD1-4255-A70D-4125A4D30956}
    HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3475D2C4-BBD1-4255-A70D-4125A4D30956}
    HKCU\Software\soft2PC
    HKLM\Software\Classes\AppID\{AB67D16D-3824-4683-B81A-D66DBA61B1AF}
    HKLM\Software\Classes\AppID\Soft2PCBHO.DLL
    HKLM\Software\Classes\CLSID\{3475D2C4-BBD1-4255-A70D-4125A4D30956}
    HKLM\Software\Classes\Interface\{CC883F50-95BB-4A25-9DBF-B801506F1BC4}
    HKLM\Software\Classes\SoftwareBHO.SOFT2PCBHO
    HKLM\Software\Classes\SoftwareBHO.SOFT2PCBHO.1
    HKLM\Software\Classes\TypeLib\{B52F3553-49FA-4599-81A4-F98951E0B53B}
    HKLM\Software\EoRezo
    HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3475D2C4-BBD1-4255-A70D-4125A4D30956}
    HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Soft2PC_is1
    HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Software_is1
    HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdate_is1
    HKLM\Software\soft2PC
    HKLM\Software\Microsoft\Windows\CurrentVersion\Run|Eoengine
    HKLM\Software\Microsoft\Windows\CurrentVersion\Run|Eorezo
    HKLM\Software\Microsoft\Windows\CurrentVersion\Run|soft2PC
    .
    (Orpheline) HKCU,Run - EPSON SX210 Series - C:\Windows\TEMP\E_S889D.tmp (Fichier manquant)
    (Orpheline) HKCU,Run - EPSON SX210 Series NB4 - C:\Windows\TEMP\E_SE23E.tmp (Fichier manquant)
    (Orpheline) BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} (CLSID manquant)
    .
    ============== SCAN ADDITIONNEL ==============
    .
    * Mozilla FireFox Version 3.6.3 (fr) *
    .
    C:\Users\auchan.PC-de-auchan\..\lbquakpe.default\prefs.js - browser.download.dir: C:\\Users\\auchan.PC-de-auchan\\Downloads
    C:\Users\auchan.PC-de-auchan\..\lbquakpe.default\prefs.js - browser.download.lastDir: C:\\Users\\auchan.PC-de-auchan\\Documents\\wii
    C:\Users\auchan.PC-de-auchan\..\lbquakpe.default\prefs.js - browser.search.defaultenginename: MyStart Search
    C:\Users\auchan.PC-de-auchan\..\lbquakpe.default\prefs.js - browser.search.defaulturl: hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2233703&SearchSource=3&q={searchTerms}
    C:\Users\auchan.PC-de-auchan\..\lbquakpe.default\prefs.js - browser.search.selectedEngine: MyStart Search
    C:\Users\auchan.PC-de-auchan\..\lbquakpe.default\prefs.js - browser.startup.homepage: hxxp://mystart.incredimail.com/
    C:\Users\auchan.PC-de-auchan\..\lbquakpe.default\prefs.js - browser.startup.homepage_override.mstone: rv:1.9.2.3
    C:\Users\auchan.PC-de-auchan\..\lbquakpe.default\prefs.js - keyword.URL: hxxp://redirecterror.sfr.fr/?q=
    C:\Users\auchan.PC-de-auchan\..\lbquakpe.default\user.js - keyword.URL: hxxp://redirecterror.sfr.fr/?q=
    .
    .
    * Internet Explorer Version 8.0.6001.18904 *
    .
    [HKCU\Software\Microsoft\Internet Explorer\Main]
    .
    AutoHide: yes
    Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
    Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    Do404Search: 0x01000000
    Enable Browser Extensions: yes
    Local Page: C:\Windows\system32\blank.htm
    Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
    Show_ToolBar: yes
    Start Page: hxxp://fr.msn.com/
    .
    [HKLM\Software\Microsoft\Internet Explorer\Main]
    .
    AutoHide: yes
    Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
    Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    Delete_Temp_Files_On_Exit: yes
    Local Page: C:\Windows\System32\blank.htm
    Search bar: hxxp://search.msn.com/spbasic.htm
    Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    Start Page: hxxp://fr.msn.com/
    .
    [HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]
    .
    Tabs: res://ieframe.dll/tabswelcome.htm
    Blank: res://mshtml.dll/blank.htm
    .
    ========================================
    .
    C:\Ad-Remover\Quarantine: 32 Fichier(s)
    C:\Ad-Remover\Backup: 15 Fichier(s)
    .
    C:\Ad-Report-CLEAN[1].txt - 4681 Octet(s)
    .
    Fin à: 21:30:55, 11/05/2010
    .
    ============== E.O.F - CLEAN[1] ==============
    Contenus similaires
    a c 295 8 Sécurité
    11 Mai 2010 22:54:22

    Bien.

  • Relance Ad-Remover et choisis Désinstaller.

  • Télécharge OTL (de OldTimer) sur ton Bureau.
  • Double-clique sur OTL pour le lancer.
    (Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)
  • Une fenêtre apparaît. Dans la section Rapport en haut de cette fenêtre, coche Rapport minimal.
  • Coche également les cases à côté de Recherche Lop et Recherche Purity.
  • Enfin, clique sur le bouton Analyse. Le scan ne prendra pas beaucoup de temps.
  • Une fois l'analyse terminée, deux fenêtres vont s'ouvrir dans le Bloc-notes : OTL.txt et Extras.txt. Ils se trouvent au même endroit que OTL (donc par défaut sur le Bureau).

    Pour me transmettre les rapports :
  • Clique sur ce lien : http://www.cijoint.fr/
  • Clique sur Parcourir... et cherche le fichier du rapport que tu souhaites me transmettre.
  • Clique sur Ouvrir.
  • Clique sur Cliquez ici pour déposer le fichier.
  • Un lien de cette forme, hxxp://www.cijoint.fr/cjlink.php?file=cj200905/cijSKAP5fU.txt, est ajouté dans la page.
  • Copie-colle ce lien dans ta réponse.
    12 Mai 2010 13:18:28

    bonjours voici les raport de olt

    OTL Extras logfile created on: 12/05/2010 12:52:31 - Run 1 OTL by OldTimer - Version 3.2.4.1 Folder = C:\Users\auchan.PC-de-auchan\Desktop Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18904) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 893,00 Mb Total Physical Memory | 191,00 Mb Available Physical Memory | 21,00% Memory free 2,00 Gb Paging File | 1,00 Gb Available in Paging File | 32,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 72,57 Gb Total Space | 25,18 Gb Free Space | 34,69% Space Free | Partition Type: NTFS Drive D: | 1,96 Gb Total Space | 1,77 Gb Free Space | 90,09% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: TITEUF-PC Current User Name: auchan Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Minimal ========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation) .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation) .html [@ = FirefoxHTML] -- Reg Error: Key error. File not found ========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation) htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" File not found https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" File not found inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 "UacDisableNotify" = 1 "InternetSettingsDisableNotify" = 1 "AutoUpdateDisableNotify" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 "VistaSp1" = Reg Error: Unknown registry data type -- File not found "VistaSp2" = Reg Error: Unknown registry data type -- File not found [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 0 ========== Authorized Applications List ========== ========== Vista Active Open Ports Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{15278BEB-82A6-400B-A9FF-946B583E69B3}" = lport=139 | protocol=6 | dir=in | app=system | "{16BED170-0B5D-4459-9260-CA4C53A39F89}" = lport=137 | protocol=17 | dir=in | app=system | "{3CB5DF85-0DFB-454C-A44D-93C353653C40}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{48C96B8F-5BA4-480A-A15B-519142EDE137}" = rport=137 | protocol=17 | dir=out | app=system | "{49CB2C61-24CB-4C57-A931-7209499E21DD}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{6038CC53-841C-44AF-98E0-C6BC117D3294}" = lport=138 | protocol=17 | dir=in | app=system | "{6D56B14C-2041-4693-9F22-31A39283655E}" = rport=445 | protocol=6 | dir=out | app=system | "{82E586C4-523B-439E-BD59-9B9AA7140E76}" = rport=138 | protocol=17 | dir=out | app=system | "{94103259-F09B-4C50-817D-DAD71ED300E4}" = rport=139 | protocol=6 | dir=out | app=system | "{B73551B9-8852-472F-8B90-ADC15A99399A}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe | "{DA0DF841-521E-4FCE-8BBD-560B726C6FB1}" = lport=2869 | protocol=6 | dir=in | app=system | "{E40E5E6D-DF7A-41B4-8437-E2405D742021}" = lport=445 | protocol=6 | dir=in | app=system | ========== Vista Active Application Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{22ED5A2F-8DE8-427C-94B5-AFC8374E60A9}" = protocol=6 | dir=in | app=c:\program files\bitcomet\bitcomet.exe | "{4DBAE8A4-5FF6-414E-B807-15FD3FA2CA6A}" = protocol=17 | dir=in | app=c:\program files\avira\antivir desktop\avcenter.exe | "{63854F4E-BC4D-4D24-A189-D4F6AF47788D}" = protocol=6 | dir=in | app=c:\program files\avira\antivir desktop\avcenter.exe | "{6464BB77-0856-426E-B806-D55354546256}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{759DC6CD-C91D-4C63-9B3E-A82D18653DE4}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{765D49D2-1E55-4A3E-A1A7-24F0E6E9FD17}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{A3B6FB87-B3FF-4383-9C53-5AFD32BD6F3C}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{BB3D55F7-6A14-4415-A70D-92477E910F7C}" = protocol=17 | dir=in | app=c:\program files\bitcomet\bitcomet.exe | "{C32FBF9C-2F9E-4F5D-9AEF-AA6639790E6B}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe | "{D1D1AAA0-4AD9-4FE4-8424-8E6D720DA966}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe | "TCP Query User{21EF1D18-740D-4D7E-AA8E-F779F5E068F4}C:\program files\emule\emule.exe" = protocol=6 | dir=in | app=c:\program files\emule\emule.exe | "TCP Query User{91F6666C-BBE3-460A-8743-FF5941AC27E5}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe | "UDP Query User{64839563-79D8-45E2-8C83-54E1C539DC60}C:\program files\emule\emule.exe" = protocol=17 | dir=in | app=c:\program files\emule\emule.exe | "UDP Query User{65B7F081-2C29-4237-8553-A1AF52EE3669}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe | ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 "{12B3A009-A080-4619-9A2A-C6DB151D8D67}" = TOSHIBA Assist "{15382D89-6EF6-4D21-9484-B500F2B10E46}" = PhotoMail Maker "{1967D67C-6F3F-4001-9644-BAC704F7EE84}" = Samsung PC Studio "{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = WinDVD for TOSHIBA "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live "{2075CB0A-D26F-4DAA-B424-5079296B43BA}" = Windows Live FolderShare "{2290A680-4083-410A-ADCC-7092C67FC052}" = Toshiba Online Product Information "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT "{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Programme d’installation d’Atheros Driver "{29D59BE2-C15F-4835-B113-121D73924979}" = Manuels TOSHIBA "{3248F0A8-6813-11D6-A77B-00B0D0160000}" = Java(TM) SE Runtime Environment 6 "{3868A8EE-5051-4DB0-8DF6-4F4B8A98D083}" = QuickTime "{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform "{3E31821C-7917-367E-938E-E65FC413EA31}" = Microsoft .NET Framework 3.5 Language Pack SP1 - fra "{4160DC5B-4C56-D0C3-C5FD-F5BDAD3C882B}" = ATI Catalyst Install Manager "{44FEBA8C-2C89-E2A9-1423-AE5E5A42F472}" = ATI Catalyst Control Center Ex "{4634B21A-CC07-4396-890C-2B8168661FEA}" = Windows Live Writer "{46ABBC54-1872-4AA3-95E2-F2C063A63F31}" = Installation Windows Live "{48F22622-1CC2-4A83-9C1E-644DD96F832D}" = Epson Event Manager "{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack "{53B20C18-D8D4-4588-8737-9BBFE303C354}" = Windows Live Movie Maker "{5DA0E02F-970B-424B-BF41-513A5018E4C0}" = TOSHIBA Disc Creator "{5DD76286-9BE7-4894-A990-E905E91AC818}" = Windows Live Mail "{5E97F3BD-CDDC-4188-9D98-532E14FABB5D}" = IncrediMail "{5ECC9DD7-5EB0-4E81-BA8D-34B831191036}" = Nero 8 Essentials "{617C36FD-0CBE-4600-84B2-441CEB12FADF}" = TOSHIBA Extended Tiles for Windows Mobility Center "{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{75ADEFA2-D4FF-4B37-9E93-4306E6AC176B}_is1" = ImgBurn 2.3.2.0 Fr "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{770F1BEC-2871-4E70-B837-FB8525FFA3B1}" = Windows Live Messenger "{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}" = Windows Live Call "{87C2248A-C7DD-49ED-9BCD-B312A9D0819E}" = Epson Easy Photo Print 2 "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86) "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{98708E86-46E1-479D-B897-9802E591E762}" = TOSHIBA Volume Indicator "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D}" = Réducteur de bruit lect. CD/DVD "{A250D351-A07F-4D5D-AB6C-693C69B9BFAF}" = Hercules Webcam "{AC76BA86-7AD7-1036-7B44-A93000000001}" = Adobe Reader 9.3.2 - Français "{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint "{B131E59D-202C-43C6-84C9-68F0C37541F1}" = Galerie de photos Windows Live "{B5FDA445-CAC4-4BA6-A8FB-A7212BD439DE}" = Microsoft XML Parser "{B6A98E5F-D6A7-46FB-9E9D-1F7BF4434001}" = Epson Printer Software Downloader "{B96DB037-DBEA-4186-9081-9CBD537F82E8}" = 3D-Viewer-innoPlus "{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86) "{BDD83DC9-BEE9-4654-A5DA-CC46C250088D}" = TOSHIBA ConfigFree "{BE998F99-4CEB-4E64-B717-493A2E9797F4}" = TOSHIBA Supervisor Password "{BF516A44-48E3-4319-BBF6-B4B66E9F76FA}" = OpenOffice.org 2.2 "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D5D81435-B8DE-4CAF-867F-7998F2B92CFC}" = Windows Live Contrôle parental "{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}" = Assistant de connexion Windows Live "{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update "{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Codeur Windows Media Série 9 "{E3A093D6-AE67-4B9B-AB6D-4DF26E313A2A}" = ImageMixer 3 for TOSHIBA "{EB0B41B1-E84F-483C-91FF-BB83019EE127}" = TOSHIBA Hardware Setup "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU] "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F214EAA4-A069-4BAF-9DA4-4DB8BEEDE485}" = DVD MovieFactory for TOSHIBA "{F7D27C70-90F5-49B9-B188-0A133C0CE353}" = Windows Live Toolbar "{FEDD27A0-B306-45EF-BF58-B527406B42C8}" = TOSHIBA Value Added Package "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Agere Systems Soft Modem" = TOSHIBA Software Modem "AtomixMP3 v2.2" = AtomixMP3 v2.2 "BitComet" = BitComet 1.12 "CCleaner" = CCleaner (remove only) "Epson Printer Software Downloader" = Epson Printer Software Downloader "EPSON Scanner" = EPSON Scan "Epson Stylus SX210_SX410_TX210_TX410 Guide d'utilisation" = Epson Stylus SX210_SX410_TX210_TX410 Manuel "EPSON SX210 Series" = EPSON SX210 Series Printer Uninstall "HijackThis" = HijackThis 2.0.2 "IncrediMail" = IncrediMail 2.0 "InstallShield_{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = WinDVD for TOSHIBA "InstallShield_{3868A8EE-5051-4DB0-8DF6-4F4B8A98D083}" = QuickTime "InstallShield_{617C36FD-0CBE-4600-84B2-441CEB12FADF}" = TOSHIBA Extended Tiles for Windows Mobility Center "InstallShield_{98708E86-46E1-479D-B897-9802E591E762}" = TOSHIBA Volume Indicator "InstallShield_{BE998F99-4CEB-4E64-B717-493A2E9797F4}" = TOSHIBA Supervisor Password "InstallShield_{EB0B41B1-E84F-483C-91FF-BB83019EE127}" = TOSHIBA Hardware Setup "InstallShield_{FEDD27A0-B306-45EF-BF58-B527406B42C8}" = TOSHIBA Value Added Package "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 3.5 Language Pack SP1 - fra" = Module linguistique Microsoft .NET Framework 3.5 SP1- fra "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "N360" = Norton 360 "PhotoMail" = PhotoMail Maker "SFR_Kit" = SFR - Kit de connexion "SpiderMessenger_is1" = SpiderMessenger 1.0 "Sweet Home 3D_is1" = Sweet Home 3D version 1.8 "SynTPDeinstKey" = Synaptics Pointing Device Driver "UnityWebPlayer" = Unity Web Player "VLC media player" = VideoLAN VLC media player 0.8.6b "Vodafone WCDMA Composite Device Drive" = Vodafone WCDMA Composite Device Drive Software "Windows Media Encoder 9" = Codeur Windows Media Série 9 "WinLiveSuite_Wave3" = Installation Windows Live "WinRAR archiver" = WinRAR archiver ========== HKEY_CURRENT_USER Uninstall List ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Live Search" = Notification Live Search ========== Last 10 Event Log Errors ========== [ Application Events ] Error - 09/05/2009 21:06:58 | Computer Name = PC-de-auchan | Source = System Restore | ID = 8210 Description = Error - 16/05/2009 02:04:55 | Computer Name = PC-de-auchan | Source = Application Hang | ID = 1002 Description = Le programme firefox.exe version 1.9.0.3399 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans l’application Rapports et solutions aux problèmes du Panneau de configuration. ID de processus : 738 Heure de début : 01c9d5ebd3667cda Heure de fin : 327 Error - 19/05/2009 07:04:58 | Computer Name = PC-de-auchan | Source = Application Error | ID = 1000 Description = Application défaillante vsserv.exe, version 12.0.12.69, horodatage 0x49ccc577, module défaillant ntdll.dll, version 6.0.6001.18000, horodatage 0x4791a7a6, code d’exception 0xc0000005, décalage d’erreur 0x0003d0cd, ID du processus 0x418, heure de début de l’application 0x01c9d4c6e2392ec2. Error - 24/05/2009 02:56:33 | Computer Name = PC-de-auchan | Source = Application Error | ID = 1000 Description = Application défaillante msnmsgr.exe, version 14.0.8064.206, horodatage 0x498cf586, module défaillant UXCore.dll, version 14.0.8064.206, horodatage 0x498cdee0, code d’exception 0xc0000005, décalage d’erreur 0x00069bda, ID du processus 0x980, heure de début de l’application 0x01c9dc3be8f9829e. Error - 24/05/2009 08:48:57 | Computer Name = PC-de-auchan | Source = ESENT | ID = 215 Description = wlcomm (4672) C:\Users\auchan.PC-de-auchan\AppData\Local\Microsoft\Windows Live Contacts\{e5f72cf1-5d26-48ee-92a2-95ef43a786a2}\: La sauvegarde a été arrêtée car elle a été interrompue par le client ou la connexion avec le client a échoué. Error - 26/05/2009 16:00:18 | Computer Name = PC-de-auchan | Source = Application Error | ID = 1000 Description = Application défaillante iexplore.exe, version 7.0.6001.18226, horodatage 0x49ac95d6, module défaillant mshtml.dll, version 7.0.6001.18226, horodatage 0x49acb49d, code d’exception 0xc0000005, décalage d’erreur 0x0008c055, ID du processus 0xd44, heure de début de l’application 0x01c9de35f598fb00. Error - 26/05/2009 16:03:55 | Computer Name = PC-de-auchan | Source = Application Error | ID = 1000 Description = Application défaillante iexplore.exe, version 7.0.6001.18226, horodatage 0x49ac95d6, module défaillant IEToolbar.dll, version 12.0.12.15, horodatage 0x49ba25a0, code d’exception 0xc0000005, décalage d’erreur 0x00005bd2, ID du processus 0xd44, heure de début de l’application 0x01c9de35f598fb00. Error - 27/05/2009 06:44:14 | Computer Name = PC-de-auchan | Source = Application Error | ID = 1000 Description = Application défaillante firefox.exe, version 1.9.0.3399, horodatage 0x49f1091d, module défaillant js3250.dll, version 4.0.0.0, horodatage 0x49f10981, code d’exception 0xc0000005, décalage d’erreur 0x000471cb, ID du processus 0x14c4, heure de début de l’application 0x01c9de3e3dfb30ef. Error - 27/05/2009 14:59:08 | Computer Name = PC-de-auchan | Source = VSS | ID = 8194 Description = Error - 27/05/2009 16:42:42 | Computer Name = PC-de-auchan | Source = Application Error | ID = 1000 Description = Application défaillante msnmsgr.exe, version 14.0.8064.206, horodatage 0x498cf586, module défaillant UXCore.dll, version 14.0.8064.206, horodatage 0x498cdee0, code d’exception 0xc0000005, décalage d’erreur 0x0003d606, ID du processus 0x8d8, heure de début de l’application 0x01c9df0b5913c851. [ System Events ] Error - 11/05/2010 15:26:10 | Computer Name = titeuf-PC | Source = Service Control Manager | ID = 7034 Description = Error - 11/05/2010 15:26:10 | Computer Name = titeuf-PC | Source = Service Control Manager | ID = 7034 Description = Error - 11/05/2010 15:26:10 | Computer Name = titeuf-PC | Source = Service Control Manager | ID = 7031 Description = Error - 11/05/2010 15:26:27 | Computer Name = titeuf-PC | Source = Service Control Manager | ID = 7031 Description = Error - 11/05/2010 15:26:43 | Computer Name = titeuf-PC | Source = Service Control Manager | ID = 7032 Description = Error - 11/05/2010 15:34:06 | Computer Name = titeuf-PC | Source = R300 | ID = 43015 Description = I2c return failed Error - 11/05/2010 15:34:06 | Computer Name = titeuf-PC | Source = R300 | ID = 43015 Description = I2c return failed Error - 11/05/2010 16:33:34 | Computer Name = titeuf-PC | Source = DCOM | ID = 10010 Description = Error - 12/05/2010 06:18:19 | Computer Name = titeuf-PC | Source = R300 | ID = 43015 Description = I2c return failed Error - 12/05/2010 06:18:19 | Computer Name = titeuf-PC | Source = R300 | ID = 43015 Description = I2c return failed < End of report >

    OTL logfile created on: 12/05/2010 12:52:31 - Run 1 OTL by OldTimer - Version 3.2.4.1 Folder = C:\Users\auchan.PC-de-auchan\Desktop Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18904) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 893,00 Mb Total Physical Memory | 191,00 Mb Available Physical Memory | 21,00% Memory free 2,00 Gb Paging File | 1,00 Gb Available in Paging File | 32,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 72,57 Gb Total Space | 25,18 Gb Free Space | 34,69% Space Free | Partition Type: NTFS Drive D: | 1,96 Gb Total Space | 1,77 Gb Free Space | 90,09% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: TITEUF-PC Current User Name: auchan Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Minimal ========== Processes (SafeList) ========== PRC - C:\Users\auchan.PC-de-auchan\Desktop\OTL.exe (OldTimer Tools) PRC - C:\Program Files\IncrediMail\bin\IncMail.exe (IncrediMail, Ltd.) PRC - C:\Program Files\IncrediMail\bin\IMApp.exe (IncrediMail, Ltd.) PRC - C:\Program Files\SpiderMessenger\SpiderMessenger.exe (Agence Exclusive) PRC - C:\Program Files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe (Autodata Limited) PRC - C:\Program Files\Norton 360\Engine\3.8.0.41\ccSvcHst.exe (Symantec Corporation) PRC - C:\Program Files\Neuf\Kit\9props.exe (SFR) PRC - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation) PRC - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com) PRC - C:\Windows\explorer.exe (Microsoft Corporation) PRC - C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) PRC - C:\Users\auchan.PC-de-auchan\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe (Microsoft Corporation) PRC - C:\Users\auchan.PC-de-auchan\AppData\Roaming\Microsoft\Live Search\Mise-a-jour-LiveSearch.exe (Microsoft Corporation) PRC - C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) PRC - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE (SEIKO EPSON CORPORATION) PRC - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE (SEIKO EPSON CORPORATION) PRC - C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe (TOSHIBA) PRC - C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe (TOSHIBA Corporation) PRC - C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe (TOSHIBA Corporation) PRC - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe (TOSHIBA Corporation) PRC - C:\Program Files\TOSHIBA\Utilities\VolControl.exe (TOSHIBA Inc.) PRC - C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe (TOSHIBA Corporation) PRC - C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe (TOSHIBA CORPORATION) PRC - C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe (TOSHIBA CORPORATION) PRC - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe (TOSHIBA CORPORATION) PRC - C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe (TOSHIBA) PRC - C:\Windows\WindowsMobile\wmdSync.exe (Microsoft Corporation) PRC - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor) PRC - C:\Program Files\Synaptics\SynTP\SynToshiba.exe (Synaptics, Inc.) PRC - C:\Windows\System32\agrsmsvc.exe (Agere Systems) PRC - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe (Ulead Systems, Inc.) PRC - C:\Windows\System32\TODDSrv.exe (TOSHIBA Corporation) PRC - C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe (ATI Technologies Inc.) PRC - C:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE (ATI Technologies Inc.) PRC - C:\Program Files\ltmoh\ltmoh.exe (Agere Systems) ========== Modules (SafeList) ========== MOD - C:\Users\auchan.PC-de-auchan\Desktop\OTL.exe (OldTimer Tools) MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll (Microsoft Corporation) MOD - C:\Windows\System32\msscript.ocx (Microsoft Corporation) ========== Win32 Services (SafeList) ========== SRV - (CLTNetCnService) -- File not found SRV - (Autodata Limited License Service) -- C:\Program Files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe (Autodata Limited) SRV - (N360) -- C:\Program Files\Norton 360\Engine\3.8.0.41\ccSvcHst.exe (Symantec Corporation) SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation) SRV - (fsssvc) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe (Microsoft Corporation) SRV - (SeaPort) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation) SRV - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation) SRV - (WcesComm) -- C:\Windows\WindowsMobile\wcescomm.dll (Microsoft Corporation) SRV - (RapiMgr) -- C:\Windows\WindowsMobile\rapimgr.dll (Microsoft Corporation) SRV - (EPSON_EB_RPCV4_01) EPSON V5 Service4(01) -- C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE (SEIKO EPSON CORPORATION) SRV - (EPSON_PM_RPCV4_01) EPSON V3 Service4(01) -- C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE (SEIKO EPSON CORPORATION) SRV - (TosCoSrv) -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe (TOSHIBA Corporation) SRV - (CFSvcs) -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe (TOSHIBA CORPORATION) SRV - (AgereModemAudio) -- C:\Windows\System32\agrsmsvc.exe (Agere Systems) SRV - (UleadBurningHelper) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe (Ulead Systems, Inc.) SRV - (TODDSrv) -- C:\Windows\System32\TODDSrv.exe (TOSHIBA Corporation) SRV - (IDriverT) -- C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe (Macrovision Corporation) ========== Driver Services (SafeList) ========== DRV - (NAVEX15) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20100511.023\NAVEX15.SYS (Symantec Corporation) DRV - (NAVENG) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20100511.023\NAVENG.SYS (Symantec Corporation) DRV - (SymEvent) -- C:\Windows\System32\drivers\SYMEVENT.SYS (Symantec Corporation) DRV - (SymEFA) -- C:\Windows\system32\drivers\N360\0308000.029\SYMEFA.SYS (Symantec Corporation) DRV - (SRTSP) -- C:\Windows\System32\Drivers\N360\0308000.029\SRTSP.SYS (Symantec Corporation) DRV - (SYMTDI) -- C:\Windows\System32\Drivers\N360\0308000.029\SYMTDI.SYS (Symantec Corporation) DRV - (SYMFW) -- C:\Windows\System32\Drivers\N360\0308000.029\SYMFW.SYS (Symantec Corporation) DRV - (SYMNDISV) -- C:\Windows\System32\Drivers\N360\0308000.029\SYMNDISV.SYS (Symantec Corporation) DRV - (SRTSPX) Symantec Real Time Storage Protection (PEL) -- C:\Windows\system32\drivers\N360\0308000.029\SRTSPX.SYS (Symantec Corporation) DRV - (SymIM) -- C:\Windows\System32\drivers\SymIMV.sys (Symantec Corporation) DRV - (ccHP) -- C:\Windows\System32\Drivers\N360\0308000.029\ccHPx86.sys (Symantec Corporation) DRV - (BHDrvx86) -- C:\Windows\System32\Drivers\N360\0308000.029\BHDrvx86.sys (Symantec Corporation) DRV - (eeCtrl) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys (Symantec Corporation) DRV - (EraserUtilRebootDrv) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys (Symantec Corporation) DRV - (IDSVix86) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20100505.001\IDSvix86.sys (Symantec Corporation) DRV - (fssfltr) -- C:\Windows\System32\drivers\fssfltr.sys (Microsoft Corporation) DRV - (usbaudio) Pilote USB audio (WDM) -- C:\Windows\System32\drivers\USBAUDIO.sys (Microsoft Corporation) DRV - (winusb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation) DRV - (StarOpen) -- C:\Windows\System32\drivers\StarOpen.sys () DRV - (R300) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.) DRV - (qkbfiltr) -- C:\Windows\System32\drivers\qkbfiltr.sys (TOSHIBA) DRV - (athr) -- C:\Windows\System32\drivers\athr.sys (Atheros Communications, Inc.) DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation) DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.) DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex) DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.) DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.) DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation) DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.) DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.) DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd) DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation) DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.) DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.) DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation) DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation) DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH) DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems) DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation) DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.) DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.) DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic) DRV - (SiSRaid2) -- C:\Windows\system32\drivers\sisraid2.sys (Silicon Integrated Systems Corp.) DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company) DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.) DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.) DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.) DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic) DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic) DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic) DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic) DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation) DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic) DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Logic Corporation) DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.) DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.) DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.) DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.) DRV - (BrUsbSer) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.) DRV - (BrFiltUp) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.) DRV - (BrFiltLo) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.) DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.) DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.) DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies) DRV - (RTL8023xp) -- C:\Windows\System32\drivers\Rtnicxp.sys (Realtek Semiconductor Corporation ) DRV - (E1G60) Intel(R) -- C:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation) DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.) DRV - (SynTP) -- C:\Windows\System32\drivers\SynTP.sys (Synaptics, Inc.) DRV - (tdcmdpst) -- C:\Windows\System32\drivers\tdcmdpst.sys (TOSHIBA Corporation.) DRV - (BoiHwsetup) -- C:\Windows\System32\drivers\BoiHwSetup.sys (Quanta Computer Corp) DRV - (TVALZ) -- C:\Windows\system32\DRIVERS\TVALZ_O.SYS (TOSHIBA Corporation) DRV - (AgereSoftModem) -- C:\Windows\System32\drivers\AGRSM.sys (Agere Systems) DRV - (KR10I) -- C:\Windows\system32\drivers\kr10i.sys (TOSHIBA CORPORATION) DRV - (KR10N) -- C:\Windows\system32\drivers\kr10n.sys (TOSHIBA CORPORATION) DRV - (QCMerced) -- C:\Windows\System32\drivers\lvcm.sys () ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://meteo.msn.com/local.aspx?wealocations=wc:8521857... IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0C FE BF E8 C5 B0 CA 01 [binary data] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "MyStart Search" FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT223370...{searchTerms}" FF - prefs.js..browser.search.selectedEngine: "MyStart Search" FF - prefs.js..browser.search.update: false FF - prefs.js..browser.startup.homepage: "http://mystart.incredimail.com/" FF - prefs.js..keyword.URL: "http://redirecterror.sfr.fr/?q=" FF - user.js..keyword.URL: "http://redirecterror.sfr.fr/?q=" FF - HKLM\software\mozilla\Firefox\Extensions\\{7BA52691-1876-45ce-9EE6-54BCB3B04BBC}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\coFFPlgn\ [2010/04/27 12:34:59 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\SpiderMessengerHelper@spidermessenger.com: C:\Program Files\SpiderMessenger [2010/04/05 06:48:23 | 000,000,000 | ---D | M] [2008/12/18 14:05:34 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\mozilla\Extensions [2010/04/27 20:41:14 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\mozilla\Firefox\Profiles\lbquakpe.default\extensions [2010/01/19 00:19:04 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\mozilla\Firefox\Profiles\lbquakpe.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2008/12/18 14:06:01 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\mozilla\Firefox\Profiles\lbquakpe.default\extensions\fr@dictionaries.addons.mozilla.org [2009/07/23 13:36:07 | 000,000,897 | ---- | M] () -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\Mozilla\FireFox\Profiles\lbquakpe.default\searchplugins\conduit.xml [2009/01/11 23:39:55 | 000,001,775 | ---- | M] () -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\Mozilla\FireFox\Profiles\lbquakpe.default\searchplugins\live-search.xml [2010/05/04 23:41:52 | 000,002,149 | ---- | M] () -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\Mozilla\FireFox\Profiles\lbquakpe.default\searchplugins\MyStart Search.xml [2009/03/05 18:08:04 | 000,049,664 | ---- | M] () -- C:\Program Files\mozilla firefox\components\FFComm.dll [2008/11/11 09:38:54 | 000,663,552 | ---- | M] (BitComet) -- C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll O1 HOSTS File: ([2009/08/02 21:39:15 | 000,000,686 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Objet d'aide à la navigation SFR) - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} - C:\Program Files\Neuf\Kit\SFRNavErrorHelper.dll (SFR) O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll (BitComet) O2 - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation) O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton 360\Engine\3.8.0.41\coIEPlg.dll (Symantec Corporation) O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton 360\Engine\3.8.0.41\IPSBHO.DLL (Symantec Corporation) O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation) O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O2 - BHO: (SpiderMessenger_BHO Class) - {ADE49752-DBBC-43A3-9498-379A82F574BF} - C:\Program Files\SpiderMessenger\SpiderMessenger.BHO.dll (Soft2PC) O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\3.8.0.41\coIEPlg.dll (Symantec Corporation) O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation) O3 - HKCU\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\3.8.0.41\coIEPlg.dll (Symantec Corporation) O4 - HKLM..\Run: [00TCrdMain] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe (TOSHIBA Corporation) O4 - HKLM..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe () O4 - HKLM..\Run: [EEventManager] C:\PROGRA~1\EPSONS~1\EVENTM~1\EEventManager.exe (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [fssui] C:\Program Files\Windows Live\Family Safety\fsui.exe (Microsoft Corporation) O4 - HKLM..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe (Agere Systems) O4 - HKLM..\Run: [NDSTray.exe] File not found O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor) O4 - HKLM..\Run: [SmoothView] C:\Program Files\Toshiba\SmoothView\SmoothView.exe (TOSHIBA Corporation) O4 - HKLM..\Run: [SpiderMessenger] File not found O4 - HKLM..\Run: [topi] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe (TOSHIBA) O4 - HKLM..\Run: [TOSHIBA Volume Indicator] C:\Program Files\Toshiba\Utilities\VolControl.exe (TOSHIBA Inc.) O4 - HKLM..\Run: [TPwrMain] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE (TOSHIBA Corporation) O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - HKLM..\Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdSync.exe (Microsoft Corporation) O4 - HKCU..\Run: [Connexion SFR 9props.exe] C:\Program Files\Neuf\Kit\9props.exe (SFR) O4 - HKCU..\Run: [SpiderMessenger] C:\Program Files\SpiderMessenger\SpiderMessenger.exe (Agence Exclusive) O4 - HKCU..\Run: [TOSCDSPD] File not found O4 - HKLM..\RunOnce: [] File not found O4 - Startup: C:\Users\auchan.PC-de-auchan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Outil de notification Live Search.lnk = C:\Users\auchan.PC-de-auchan\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe (Microsoft Corporation) O8 - Extra context menu item: Télécharger avec BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com) O8 - Extra context menu item: Télécharger toutes les vidéos avec BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com) O8 - Extra context menu item: Tout télécharger avec BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com) O9 - Extra 'Tools' menuitem : Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll (Sun Microsystems, Inc.) O9 - Extra Button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra Button: eBay - {C08CAF1D-C0A3-40D5-9970-06D067EAC017} - File not found O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll (BitComet) O13 - gopher Prefix: missing O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resources/scanner/sourc... (BDSCANONLINE Control) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/fl... (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation) O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation) O18 - Protocol\Handler\symres {AA1061FE-6C41-421f-9344-69640C9732AB} - C:\Program Files\Norton 360\Engine\3.8.0.41\coIEPlg.dll (Symantec Corporation) O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\Users\Public\Pictures\Sample Pictures\Tree.jpg O24 - Desktop BackupWallPaper: C:\Users\Public\Pictures\Sample Pictures\Tree.jpg O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2010/05/12 12:48:18 | 000,570,880 | ---- | C] (OldTimer Tools) -- C:\Users\auchan.PC-de-auchan\Desktop\OTL.exe [2010/05/08 22:56:13 | 000,000,000 | ---D | C] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\Epson [2010/05/08 22:18:38 | 000,342,016 | ---- | C] (Seiko Epson Corporation) -- C:\Windows\System32\eswiaud.dll [2010/05/08 22:18:38 | 000,128,392 | ---- | C] (Seiko Epson Corporation) -- C:\Windows\System32\esdevapp.exe [2010/05/08 22:18:38 | 000,015,872 | ---- | C] (SEIKO EPSON CORP.) -- C:\Windows\System32\escdev.dll [2010/05/08 20:43:47 | 000,000,000 | ---D | C] -- C:\ProgramData\UDL [2010/05/08 20:37:52 | 000,000,000 | ---D | C] -- C:\Program Files\Epson Software [2010/05/08 20:36:24 | 000,000,000 | ---D | C] -- C:\Program Files\ABBYY FineReader 6.0 Sprint [2010/05/08 20:33:15 | 000,501,912 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\PICSDK2.dll [2010/05/08 20:33:15 | 000,120,992 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\EpPicPrt.dll [2010/05/08 20:33:15 | 000,108,704 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\PICEntry.dll [2010/05/08 20:33:15 | 000,080,024 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\PICSDK.dll [2010/05/08 20:33:14 | 000,071,840 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\EPPicMgr.dll [2010/05/08 20:33:12 | 000,000,000 | ---D | C] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\InstallShield [2010/05/08 20:30:19 | 000,008,192 | ---- | C] (SEIKO EPSON CORP.) -- C:\Windows\System32\E_DCINST.DLL [2010/05/08 20:29:55 | 000,086,528 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\E_FLBFDE.DLL [2010/05/08 20:29:49 | 000,078,848 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\E_FD4BFDE.DLL [2010/05/08 20:29:17 | 000,000,000 | ---D | C] -- C:\ProgramData\EPSON [2010/05/08 20:26:16 | 000,000,000 | ---D | C] -- C:\Program Files\epson [2010/05/04 23:47:22 | 000,000,000 | ---D | C] -- C:\ProgramData\PhotoMail [2010/05/04 23:47:19 | 000,000,000 | ---D | C] -- C:\Program Files\PhotoMail Maker [2010/05/02 20:23:49 | 000,000,000 | ---D | C] -- C:\Users\auchan.PC-de-auchan\Documents\Nouveau dossier [2010/05/01 13:30:30 | 000,000,000 | ---D | C] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\innoPlus [2010/05/01 13:29:17 | 000,000,000 | ---D | C] -- C:\Program Files\INNOVA-engineering GmbH [2010/04/28 13:36:53 | 000,000,000 | ---D | C] -- C:\Windows\System32\N360_BACKUP [2010/04/28 13:25:10 | 000,000,000 | ---D | C] -- C:\Users\auchan.PC-de-auchan\Documents\Symantec [2010/04/15 12:30:10 | 003,548,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe [2010/04/15 12:30:08 | 003,600,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe [2010/04/15 12:30:05 | 000,420,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll [2010/04/15 12:30:01 | 000,062,464 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm [2010/04/15 12:30:00 | 000,220,672 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codecp.acm [2010/04/15 12:18:54 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe [2010/04/13 21:09:32 | 000,000,000 | ---D | C] -- C:\Program Files\Sweet Home 3D [1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ] [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2010/05/12 12:58:56 | 000,000,420 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{94694E5D-26FB-407A-BD58-1A107CCFD8F0}.job [2010/05/12 12:54:39 | 005,505,024 | -HS- | M] () -- C:\Users\auchan.PC-de-auchan\NTUSER.DAT [2010/05/12 12:48:22 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Users\auchan.PC-de-auchan\Desktop\OTL.exe [2010/05/12 12:18:39 | 000,003,552 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2010/05/12 12:18:38 | 000,003,552 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2010/05/12 12:18:34 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2010/05/12 12:18:25 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2010/05/11 22:34:41 | 000,524,288 | -HS- | M] () -- C:\Users\auchan.PC-de-auchan\NTUSER.DAT{9bd992b5-c88b-11dd-8a13-001636d2000a}.TMContainer00000000000000000001.regtrans-ms [2010/05/11 22:34:41 | 000,065,536 | -HS- | M] () -- C:\Users\auchan.PC-de-auchan\NTUSER.DAT{9bd992b5-c88b-11dd-8a13-001636d2000a}.TM.blf [2010/05/11 22:32:33 | 003,092,047 | -H-- | M] () -- C:\Users\auchan.PC-de-auchan\AppData\Local\IconCache.db [2010/05/10 22:40:01 | 000,000,242 | ---- | M] () -- C:\Windows\tasks\Epson Printer Software Downloader.job [2010/05/08 23:30:57 | 000,089,088 | ---- | M] () -- C:\Users\auchan.PC-de-auchan\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010/05/08 22:39:41 | 000,001,953 | ---- | M] () -- C:\Users\Public\Desktop\Epson Easy Photo Print.lnk [2010/05/08 22:25:41 | 000,002,112 | ---- | M] () -- C:\Users\Public\Desktop\Epson Stylus SX210_SX410_TX210_TX410 Manuel.lnk [2010/05/08 22:18:43 | 000,000,770 | ---- | M] () -- C:\Users\Public\Desktop\EPSON Scan.lnk [2010/05/08 21:29:34 | 001,592,070 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI [2010/05/08 21:29:34 | 000,713,542 | ---- | M] () -- C:\Windows\System32\perfh00C.dat [2010/05/08 21:29:34 | 000,625,582 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2010/05/08 21:29:34 | 000,143,542 | ---- | M] () -- C:\Windows\System32\perfc00C.dat [2010/05/08 21:29:34 | 000,117,144 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2010/05/06 10:36:38 | 000,221,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe [2010/05/04 23:44:21 | 000,002,095 | ---- | M] () -- C:\Users\Public\Desktop\Wallpapers by IncrediMail.lnk [2010/05/04 23:44:21 | 000,002,062 | ---- | M] () -- C:\Users\Public\Desktop\Animations for Messenger.lnk [2010/05/04 23:44:16 | 000,001,895 | ---- | M] () -- C:\Users\Public\Desktop\IncrediMail.lnk [2010/04/30 12:23:13 | 000,087,992 | ---- | M] () -- C:\Users\auchan.PC-de-auchan\AppData\Local\GDIPFONTCACHEV1.DAT [2010/04/30 12:20:29 | 000,312,736 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2010/04/29 13:30:39 | 000,001,892 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk [2010/04/23 21:22:37 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdRapi_01_00_00.Wdf [2010/04/13 21:09:48 | 000,000,875 | ---- | M] () -- C:\Users\auchan.PC-de-auchan\Desktop\Sweet Home 3D.lnk [1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ] [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files Created - No Company Name ========== [2010/05/08 22:40:18 | 000,000,242 | ---- | C] () -- C:\Windows\tasks\Epson Printer Software Downloader.job [2010/05/08 22:39:40 | 000,001,953 | ---- | C] () -- C:\Users\Public\Desktop\Epson Easy Photo Print.lnk [2010/05/08 22:25:41 | 000,002,112 | ---- | C] () -- C:\Users\Public\Desktop\Epson Stylus SX210_SX410_TX210_TX410 Manuel.lnk [2010/05/08 22:18:43 | 000,000,770 | ---- | C] () -- C:\Users\Public\Desktop\EPSON Scan.lnk [2010/05/08 20:33:15 | 000,111,932 | ---- | C] () -- C:\Windows\System32\EPPICPrinterDB.dat [2010/05/08 20:33:15 | 000,031,053 | ---- | C] () -- C:\Windows\System32\EPPICPattern131.dat [2010/05/08 20:33:15 | 000,027,417 | ---- | C] () -- C:\Windows\System32\EPPICPattern121.dat [2010/05/08 20:33:15 | 000,026,154 | ---- | C] () -- C:\Windows\System32\EPPICPattern1.dat [2010/05/08 20:33:15 | 000,024,903 | ---- | C] () -- C:\Windows\System32\EPPICPattern3.dat [2010/05/08 20:33:15 | 000,021,390 | ---- | C] () -- C:\Windows\System32\EPPICPattern5.dat [2010/05/08 20:33:15 | 000,020,148 | ---- | C] () -- C:\Windows\System32\EPPICPattern2.dat [2010/05/08 20:33:15 | 000,011,811 | ---- | C] () -- C:\Windows\System32\EPPICPattern4.dat [2010/05/08 20:33:15 | 000,004,943 | ---- | C] () -- C:\Windows\System32\EPPICPattern6.dat [2010/05/08 20:33:15 | 000,001,146 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_DU.dat [2010/05/08 20:33:15 | 000,001,139 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_PT.dat [2010/05/08 20:33:15 | 000,001,139 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_BP.dat [2010/05/08 20:33:15 | 000,001,136 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_ES.dat [2010/05/08 20:33:15 | 000,001,129 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_FR.dat [2010/05/08 20:33:15 | 000,001,129 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_CF.dat [2010/05/08 20:33:15 | 000,001,120 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_IT.dat [2010/05/08 20:33:15 | 000,001,107 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_GE.dat [2010/05/08 20:33:15 | 000,001,104 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_EN.dat [2010/05/08 20:33:15 | 000,000,097 | ---- | C] () -- C:\Windows\System32\PICSDK.ini [2010/05/08 20:33:14 | 000,013,732 | ---- | C] () -- C:\Windows\System32\EPPICLocal_EN.cfg [2010/05/08 20:33:14 | 000,006,442 | ---- | C] () -- C:\Windows\System32\EPPICLocal_IT.cfg [2010/05/08 20:33:14 | 000,006,347 | ---- | C] () -- C:\Windows\System32\EPPICLocal_PT.cfg [2010/05/08 20:33:14 | 000,006,347 | ---- | C] () -- C:\Windows\System32\EPPICLocal_BP.cfg [2010/05/08 20:33:14 | 000,006,335 | ---- | C] () -- C:\Windows\System32\EPPICLocal_GE.cfg [2010/05/08 20:33:14 | 000,006,195 | ---- | C] () -- C:\Windows\System32\EPPICLocal_FR.cfg [2010/05/08 20:33:14 | 000,006,195 | ---- | C] () -- C:\Windows\System32\EPPICLocal_CF.cfg [2010/05/08 20:33:14 | 000,006,122 | ---- | C] () -- C:\Windows\System32\EPPICLocal_DU.cfg [2010/05/08 20:33:14 | 000,006,103 | ---- | C] () -- C:\Windows\System32\EPPICLocal_ES.cfg [2010/05/08 20:33:14 | 000,005,817 | ---- | C] () -- C:\Windows\System32\EPPICLocal_KO.cfg [2010/05/08 20:33:14 | 000,005,436 | ---- | C] () -- C:\Windows\System32\EPPICLocal_SC.cfg [2010/05/08 20:33:14 | 000,002,889 | ---- | C] () -- C:\Windows\System32\EPPICLocal_RU.cfg [2010/05/08 20:33:14 | 000,002,426 | ---- | C] () -- C:\Windows\System32\EPPICLocal_TC.cfg [2010/05/04 23:44:21 | 000,002,095 | ---- | C] () -- C:\Users\Public\Desktop\Wallpapers by IncrediMail.lnk [2010/05/04 23:44:21 | 000,002,062 | ---- | C] () -- C:\Users\Public\Desktop\Animations for Messenger.lnk [2010/04/23 21:22:37 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdRapi_01_00_00.Wdf [2010/04/13 21:09:48 | 000,000,875 | ---- | C] () -- C:\Users\auchan.PC-de-auchan\Desktop\Sweet Home 3D.lnk [2009/10/20 12:20:09 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll [2009/10/04 13:21:15 | 000,053,248 | ---- | C] () -- C:\Windows\System32\CommonDL.dll [2009/10/04 13:21:15 | 000,002,412 | ---- | C] () -- C:\Windows\System32\lgAxconfig.ini [2009/08/02 17:50:36 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini [2009/01/05 15:44:10 | 000,000,453 | ---- | C] () -- C:\Windows\bdoscandellang.ini [2008/08/17 15:37:17 | 000,005,632 | ---- | C] () -- C:\Windows\System32\drivers\StarOpen.sys [2008/08/14 13:17:15 | 000,000,059 | ---- | C] () -- C:\Windows\wininit.ini [2008/07/16 00:41:43 | 000,469,696 | ---- | C] () -- C:\Windows\System32\drivers\lvcm.sys [2008/07/16 00:41:43 | 000,019,968 | ---- | C] () -- C:\Windows\System32\drivers\LVUSBSta.sys [2008/07/16 00:41:43 | 000,005,993 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini [2008/05/14 18:41:56 | 002,729,472 | ---- | C] () -- C:\Windows\System32\fun_avcodec.dll [2006/12/20 15:30:38 | 000,204,800 | ---- | C] () -- C:\Windows\System32\IVIresizeW7.dll [2006/12/20 15:30:38 | 000,200,704 | ---- | C] () -- C:\Windows\System32\IVIresizeA6.dll [2006/12/20 15:30:38 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeP6.dll [2006/12/20 15:30:38 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeM6.dll [2006/12/20 15:30:38 | 000,188,416 | ---- | C] () -- C:\Windows\System32\IVIresizePX.dll [2006/12/20 15:30:38 | 000,020,480 | ---- | C] () -- C:\Windows\System32\IVIresize.dll [2006/12/20 15:12:40 | 000,000,000 | ---- | C] () -- C:\Windows\NDSTray.INI [2006/12/20 14:58:42 | 000,128,113 | ---- | C] () -- C:\Windows\System32\csellang.ini [2006/12/20 14:58:42 | 000,045,056 | ---- | C] () -- C:\Windows\System32\csellang.dll [2006/12/20 14:58:42 | 000,010,162 | ---- | C] () -- C:\Windows\System32\tosmreg.ini [2006/12/20 14:58:42 | 000,007,671 | ---- | C] () -- C:\Windows\System32\cseltbl.ini [2006/12/20 14:12:21 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll [2006/11/02 12:25:44 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll [2006/11/02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini [1999/01/27 13:39:06 | 000,065,024 | ---- | C] () -- C:\Windows\System32\indounin.dll [1997/06/13 07:56:08 | 000,056,832 | ---- | C] () -- C:\Windows\System32\Iyvu9_32.dll ========== LOP Check ========== [2009/07/26 10:23:14 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\Anuman Interactive [2010/05/08 23:13:37 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\Epson [2008/08/04 21:22:57 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\Hemera [2009/08/12 20:27:23 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\ImgBurn [2010/05/01 13:30:30 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\innoPlus [2009/10/04 14:22:25 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\LG Electronics [2007/03/06 14:20:41 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\PeerNetworking [2009/04/05 16:55:45 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\Samsung [2008/08/18 20:37:15 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\TomTom [2007/02/24 14:51:11 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\Toshiba [2007/06/27 18:38:12 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\Ulead Systems [2010/05/10 22:40:01 | 000,000,242 | ---- | M] () -- C:\Windows\Tasks\Epson Printer Software Downloader.job [2010/05/11 22:34:12 | 000,032,476 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [2010/05/12 12:58:56 | 000,000,420 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{94694E5D-26FB-407A-BD58-1A107CCFD8F0}.job ========== Purity Check ========== ========== Alternate Data Streams ========== @Alternate Data Stream - 106 bytes -> C:\ProgramData\TEMP:7E95B6FD < End of report >

    cordialement christophe
    a c 295 8 Sécurité
    12 Mai 2010 17:35:06

    Peux-tu suivre la procédure entièrement ?

    Il est hors de question que je déchiffre ce pâté ^^
    12 Mai 2010 19:05:48

    voici les rapport

    OTL Extras logfile created on: 12/05/2010 12:52:31 - Run 1
    OTL by OldTimer - Version 3.2.4.1 Folder = C:\Users\auchan.PC-de-auchan\Desktop
    Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.6001.18904)
    Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

    893,00 Mb Total Physical Memory | 191,00 Mb Available Physical Memory | 21,00% Memory free
    2,00 Gb Paging File | 1,00 Gb Available in Paging File | 32,00% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
    Drive C: | 72,57 Gb Total Space | 25,18 Gb Free Space | 34,69% Space Free | Partition Type: NTFS
    Drive D: | 1,96 Gb Total Space | 1,77 Gb Free Space | 90,09% Space Free | Partition Type: NTFS
    E: Drive not present or media not loaded
    F: Drive not present or media not loaded
    G: Drive not present or media not loaded
    H: Drive not present or media not loaded
    I: Drive not present or media not loaded

    Computer Name: TITEUF-PC
    Current User Name: auchan
    Logged in as Administrator.

    Current Boot Mode: Normal
    Scan Mode: Current user
    Company Name Whitelist: Off
    Skip Microsoft Files: Off
    File Age = 30 Days
    Output = Minimal

    ========== Extra Registry (SafeList) ==========


    ========== File Associations ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
    .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
    .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
    .html [@ = FirefoxHTML] -- Reg Error: Key error. File not found

    ========== Shell Spawning ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
    batfile [open] -- "%1" %*
    cmdfile [open] -- "%1" %*
    comfile [open] -- "%1" %*
    cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
    exefile [open] -- "%1" %*
    helpfile [open] -- Reg Error: Key error.
    hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
    htmlfile [edit] -- Reg Error: Key error.
    htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
    http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" File not found
    https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" File not found
    inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
    piffile [open] -- "%1" %*
    regfile [merge] -- Reg Error: Key error.
    scrfile [config] -- "%1"
    scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
    scrfile [open] -- "%1" /S
    txtfile [edit] -- Reg Error: Key error.
    Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
    Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
    Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
    Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
    Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

    ========== Security Center Settings ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
    "cval" = 1
    "UacDisableNotify" = 1
    "InternetSettingsDisableNotify" = 1
    "AutoUpdateDisableNotify" = 1

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
    "DisableMonitoring" = 1

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
    "DisableMonitoring" = 1

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
    "DisableMonitoring" = 1

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
    "AntiVirusOverride" = 0
    "AntiSpywareOverride" = 0
    "FirewallOverride" = 0
    "VistaSp1" = Reg Error: Unknown registry data type -- File not found
    "VistaSp2" = Reg Error: Unknown registry data type -- File not found

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
    "DisableNotifications" = 0
    "EnableFirewall" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
    "DisableNotifications" = 0
    "EnableFirewall" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
    "DisableNotifications" = 0
    "EnableFirewall" = 0

    ========== Authorized Applications List ==========


    ========== Vista Active Open Ports Exception List ==========

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
    "{15278BEB-82A6-400B-A9FF-946B583E69B3}" = lport=139 | protocol=6 | dir=in | app=system |
    "{16BED170-0B5D-4459-9260-CA4C53A39F89}" = lport=137 | protocol=17 | dir=in | app=system |
    "{3CB5DF85-0DFB-454C-A44D-93C353653C40}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
    "{48C96B8F-5BA4-480A-A15B-519142EDE137}" = rport=137 | protocol=17 | dir=out | app=system |
    "{49CB2C61-24CB-4C57-A931-7209499E21DD}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
    "{6038CC53-841C-44AF-98E0-C6BC117D3294}" = lport=138 | protocol=17 | dir=in | app=system |
    "{6D56B14C-2041-4693-9F22-31A39283655E}" = rport=445 | protocol=6 | dir=out | app=system |
    "{82E586C4-523B-439E-BD59-9B9AA7140E76}" = rport=138 | protocol=17 | dir=out | app=system |
    "{94103259-F09B-4C50-817D-DAD71ED300E4}" = rport=139 | protocol=6 | dir=out | app=system |
    "{B73551B9-8852-472F-8B90-ADC15A99399A}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
    "{DA0DF841-521E-4FCE-8BBD-560B726C6FB1}" = lport=2869 | protocol=6 | dir=in | app=system |
    "{E40E5E6D-DF7A-41B4-8437-E2405D742021}" = lport=445 | protocol=6 | dir=in | app=system |

    ========== Vista Active Application Exception List ==========

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
    "{22ED5A2F-8DE8-427C-94B5-AFC8374E60A9}" = protocol=6 | dir=in | app=c:\program files\bitcomet\bitcomet.exe |
    "{4DBAE8A4-5FF6-414E-B807-15FD3FA2CA6A}" = protocol=17 | dir=in | app=c:\program files\avira\antivir desktop\avcenter.exe |
    "{63854F4E-BC4D-4D24-A189-D4F6AF47788D}" = protocol=6 | dir=in | app=c:\program files\avira\antivir desktop\avcenter.exe |
    "{6464BB77-0856-426E-B806-D55354546256}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
    "{759DC6CD-C91D-4C63-9B3E-A82D18653DE4}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
    "{765D49D2-1E55-4A3E-A1A7-24F0E6E9FD17}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
    "{A3B6FB87-B3FF-4383-9C53-5AFD32BD6F3C}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
    "{BB3D55F7-6A14-4415-A70D-92477E910F7C}" = protocol=17 | dir=in | app=c:\program files\bitcomet\bitcomet.exe |
    "{C32FBF9C-2F9E-4F5D-9AEF-AA6639790E6B}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
    "{D1D1AAA0-4AD9-4FE4-8424-8E6D720DA966}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe |
    "TCP Query User{21EF1D18-740D-4D7E-AA8E-F779F5E068F4}C:\program files\emule\emule.exe" = protocol=6 | dir=in | app=c:\program files\emule\emule.exe |
    "TCP Query User{91F6666C-BBE3-460A-8743-FF5941AC27E5}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
    "UDP Query User{64839563-79D8-45E2-8C83-54E1C539DC60}C:\program files\emule\emule.exe" = protocol=17 | dir=in | app=c:\program files\emule\emule.exe |
    "UDP Query User{65B7F081-2C29-4237-8553-A1AF52EE3669}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |

    ========== HKEY_LOCAL_MACHINE Uninstall List ==========

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
    "{12B3A009-A080-4619-9A2A-C6DB151D8D67}" = TOSHIBA Assist
    "{15382D89-6EF6-4D21-9484-B500F2B10E46}" = PhotoMail Maker
    "{1967D67C-6F3F-4001-9644-BAC704F7EE84}" = Samsung PC Studio
    "{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = WinDVD for TOSHIBA
    "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live
    "{2075CB0A-D26F-4DAA-B424-5079296B43BA}" = Windows Live FolderShare
    "{2290A680-4083-410A-ADCC-7092C67FC052}" = Toshiba Online Product Information
    "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
    "{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Programme d’installation d’Atheros Driver
    "{29D59BE2-C15F-4835-B113-121D73924979}" = Manuels TOSHIBA
    "{3248F0A8-6813-11D6-A77B-00B0D0160000}" = Java(TM) SE Runtime Environment 6
    "{3868A8EE-5051-4DB0-8DF6-4F4B8A98D083}" = QuickTime
    "{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
    "{3E31821C-7917-367E-938E-E65FC413EA31}" = Microsoft .NET Framework 3.5 Language Pack SP1 - fra
    "{4160DC5B-4C56-D0C3-C5FD-F5BDAD3C882B}" = ATI Catalyst Install Manager
    "{44FEBA8C-2C89-E2A9-1423-AE5E5A42F472}" = ATI Catalyst Control Center Ex
    "{4634B21A-CC07-4396-890C-2B8168661FEA}" = Windows Live Writer
    "{46ABBC54-1872-4AA3-95E2-F2C063A63F31}" = Installation Windows Live
    "{48F22622-1CC2-4A83-9C1E-644DD96F832D}" = Epson Event Manager
    "{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
    "{53B20C18-D8D4-4588-8737-9BBFE303C354}" = Windows Live Movie Maker
    "{5DA0E02F-970B-424B-BF41-513A5018E4C0}" = TOSHIBA Disc Creator
    "{5DD76286-9BE7-4894-A990-E905E91AC818}" = Windows Live Mail
    "{5E97F3BD-CDDC-4188-9D98-532E14FABB5D}" = IncrediMail
    "{5ECC9DD7-5EB0-4E81-BA8D-34B831191036}" = Nero 8 Essentials
    "{617C36FD-0CBE-4600-84B2-441CEB12FADF}" = TOSHIBA Extended Tiles for Windows Mobility Center
    "{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
    "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
    "{75ADEFA2-D4FF-4B37-9E93-4306E6AC176B}_is1" = ImgBurn 2.3.2.0 Fr
    "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    "{770F1BEC-2871-4E70-B837-FB8525FFA3B1}" = Windows Live Messenger
    "{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}" = Windows Live Call
    "{87C2248A-C7DD-49ED-9BCD-B312A9D0819E}" = Epson Easy Photo Print 2
    "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
    "{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
    "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
    "{98708E86-46E1-479D-B897-9802E591E762}" = TOSHIBA Volume Indicator
    "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    "{9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D}" = Réducteur de bruit lect. CD/DVD
    "{A250D351-A07F-4D5D-AB6C-693C69B9BFAF}" = Hercules Webcam
    "{AC76BA86-7AD7-1036-7B44-A93000000001}" = Adobe Reader 9.3.2 - Français
    "{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint
    "{B131E59D-202C-43C6-84C9-68F0C37541F1}" = Galerie de photos Windows Live
    "{B5FDA445-CAC4-4BA6-A8FB-A7212BD439DE}" = Microsoft XML Parser
    "{B6A98E5F-D6A7-46FB-9E9D-1F7BF4434001}" = Epson Printer Software Downloader
    "{B96DB037-DBEA-4186-9081-9CBD537F82E8}" = 3D-Viewer-innoPlus
    "{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
    "{BDD83DC9-BEE9-4654-A5DA-CC46C250088D}" = TOSHIBA ConfigFree
    "{BE998F99-4CEB-4E64-B717-493A2E9797F4}" = TOSHIBA Supervisor Password
    "{BF516A44-48E3-4319-BBF6-B4B66E9F76FA}" = OpenOffice.org 2.2
    "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
    "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
    "{D5D81435-B8DE-4CAF-867F-7998F2B92CFC}" = Windows Live Contrôle parental
    "{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}" = Assistant de connexion Windows Live
    "{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
    "{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Codeur Windows Media Série 9
    "{E3A093D6-AE67-4B9B-AB6D-4DF26E313A2A}" = ImageMixer 3 for TOSHIBA
    "{EB0B41B1-E84F-483C-91FF-BB83019EE127}" = TOSHIBA Hardware Setup
    "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
    "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
    "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
    "{F214EAA4-A069-4BAF-9DA4-4DB8BEEDE485}" = DVD MovieFactory for TOSHIBA
    "{F7D27C70-90F5-49B9-B188-0A133C0CE353}" = Windows Live Toolbar
    "{FEDD27A0-B306-45EF-BF58-B527406B42C8}" = TOSHIBA Value Added Package
    "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
    "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
    "Agere Systems Soft Modem" = TOSHIBA Software Modem
    "AtomixMP3 v2.2" = AtomixMP3 v2.2
    "BitComet" = BitComet 1.12
    "CCleaner" = CCleaner (remove only)
    "Epson Printer Software Downloader" = Epson Printer Software Downloader
    "EPSON Scanner" = EPSON Scan
    "Epson Stylus SX210_SX410_TX210_TX410 Guide d'utilisation" = Epson Stylus SX210_SX410_TX210_TX410 Manuel
    "EPSON SX210 Series" = EPSON SX210 Series Printer Uninstall
    "HijackThis" = HijackThis 2.0.2
    "IncrediMail" = IncrediMail 2.0
    "InstallShield_{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = WinDVD for TOSHIBA
    "InstallShield_{3868A8EE-5051-4DB0-8DF6-4F4B8A98D083}" = QuickTime
    "InstallShield_{617C36FD-0CBE-4600-84B2-441CEB12FADF}" = TOSHIBA Extended Tiles for Windows Mobility Center
    "InstallShield_{98708E86-46E1-479D-B897-9802E591E762}" = TOSHIBA Volume Indicator
    "InstallShield_{BE998F99-4CEB-4E64-B717-493A2E9797F4}" = TOSHIBA Supervisor Password
    "InstallShield_{EB0B41B1-E84F-483C-91FF-BB83019EE127}" = TOSHIBA Hardware Setup
    "InstallShield_{FEDD27A0-B306-45EF-BF58-B527406B42C8}" = TOSHIBA Value Added Package
    "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
    "Microsoft .NET Framework 3.5 Language Pack SP1 - fra" = Module linguistique Microsoft .NET Framework 3.5 SP1- fra
    "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
    "N360" = Norton 360
    "PhotoMail" = PhotoMail Maker
    "SFR_Kit" = SFR - Kit de connexion
    "SpiderMessenger_is1" = SpiderMessenger 1.0
    "Sweet Home 3D_is1" = Sweet Home 3D version 1.8
    "SynTPDeinstKey" = Synaptics Pointing Device Driver
    "UnityWebPlayer" = Unity Web Player
    "VLC media player" = VideoLAN VLC media player 0.8.6b
    "Vodafone WCDMA Composite Device Drive" = Vodafone WCDMA Composite Device Drive Software
    "Windows Media Encoder 9" = Codeur Windows Media Série 9
    "WinLiveSuite_Wave3" = Installation Windows Live
    "WinRAR archiver" = WinRAR archiver

    ========== HKEY_CURRENT_USER Uninstall List ==========

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "Live Search" = Notification Live Search

    ========== Last 10 Event Log Errors ==========

    [ Application Events ]
    Error - 09/05/2009 21:06:58 | Computer Name = PC-de-auchan | Source = System Restore | ID = 8210
    Description =

    Error - 16/05/2009 02:04:55 | Computer Name = PC-de-auchan | Source = Application Hang | ID = 1002
    Description = Le programme firefox.exe version 1.9.0.3399 a cessé d’interagir avec
    Windows et a été fermé. Pour déterminer si des informations supplémentaires sont
    disponibles, consultez l’historique du problème dans l’application Rapports et
    solutions aux problèmes du Panneau de configuration. ID de processus : 738 Heure de
    début : 01c9d5ebd3667cda Heure de fin : 327

    Error - 19/05/2009 07:04:58 | Computer Name = PC-de-auchan | Source = Application Error | ID = 1000
    Description = Application défaillante vsserv.exe, version 12.0.12.69, horodatage
    0x49ccc577, module défaillant ntdll.dll, version 6.0.6001.18000, horodatage 0x4791a7a6,
    code d’exception 0xc0000005, décalage d’erreur 0x0003d0cd, ID du processus 0x418,
    heure de début de l’application 0x01c9d4c6e2392ec2.

    Error - 24/05/2009 02:56:33 | Computer Name = PC-de-auchan | Source = Application Error | ID = 1000
    Description = Application défaillante msnmsgr.exe, version 14.0.8064.206, horodatage
    0x498cf586, module défaillant UXCore.dll, version 14.0.8064.206, horodatage 0x498cdee0,
    code d’exception 0xc0000005, décalage d’erreur 0x00069bda, ID du processus 0x980,
    heure de début de l’application 0x01c9dc3be8f9829e.

    Error - 24/05/2009 08:48:57 | Computer Name = PC-de-auchan | Source = ESENT | ID = 215
    Description = wlcomm (4672) C:\Users\auchan.PC-de-auchan\AppData\Local\Microsoft\Windows
    Live Contacts\{e5f72cf1-5d26-48ee-92a2-95ef43a786a2}\: La sauvegarde a été arrêtée
    car elle a été interrompue par le client ou la connexion avec le client a échoué.

    Error - 26/05/2009 16:00:18 | Computer Name = PC-de-auchan | Source = Application Error | ID = 1000
    Description = Application défaillante iexplore.exe, version 7.0.6001.18226, horodatage
    0x49ac95d6, module défaillant mshtml.dll, version 7.0.6001.18226, horodatage 0x49acb49d,
    code d’exception 0xc0000005, décalage d’erreur 0x0008c055, ID du processus 0xd44,
    heure de début de l’application 0x01c9de35f598fb00.

    Error - 26/05/2009 16:03:55 | Computer Name = PC-de-auchan | Source = Application Error | ID = 1000
    Description = Application défaillante iexplore.exe, version 7.0.6001.18226, horodatage
    0x49ac95d6, module défaillant IEToolbar.dll, version 12.0.12.15, horodatage 0x49ba25a0,
    code d’exception 0xc0000005, décalage d’erreur 0x00005bd2, ID du processus 0xd44,
    heure de début de l’application 0x01c9de35f598fb00.

    Error - 27/05/2009 06:44:14 | Computer Name = PC-de-auchan | Source = Application Error | ID = 1000
    Description = Application défaillante firefox.exe, version 1.9.0.3399, horodatage
    0x49f1091d, module défaillant js3250.dll, version 4.0.0.0, horodatage 0x49f10981,
    code d’exception 0xc0000005, décalage d’erreur 0x000471cb, ID du processus 0x14c4,
    heure de début de l’application 0x01c9de3e3dfb30ef.

    Error - 27/05/2009 14:59:08 | Computer Name = PC-de-auchan | Source = VSS | ID = 8194
    Description =

    Error - 27/05/2009 16:42:42 | Computer Name = PC-de-auchan | Source = Application Error | ID = 1000
    Description = Application défaillante msnmsgr.exe, version 14.0.8064.206, horodatage
    0x498cf586, module défaillant UXCore.dll, version 14.0.8064.206, horodatage 0x498cdee0,
    code d’exception 0xc0000005, décalage d’erreur 0x0003d606, ID du processus 0x8d8,
    heure de début de l’application 0x01c9df0b5913c851.

    [ System Events ]
    Error - 11/05/2010 15:26:10 | Computer Name = titeuf-PC | Source = Service Control Manager | ID = 7034
    Description =

    Error - 11/05/2010 15:26:10 | Computer Name = titeuf-PC | Source = Service Control Manager | ID = 7034
    Description =

    Error - 11/05/2010 15:26:10 | Computer Name = titeuf-PC | Source = Service Control Manager | ID = 7031
    Description =

    Error - 11/05/2010 15:26:27 | Computer Name = titeuf-PC | Source = Service Control Manager | ID = 7031
    Description =

    Error - 11/05/2010 15:26:43 | Computer Name = titeuf-PC | Source = Service Control Manager | ID = 7032
    Description =

    Error - 11/05/2010 15:34:06 | Computer Name = titeuf-PC | Source = R300 | ID = 43015
    Description = I2c return failed

    Error - 11/05/2010 15:34:06 | Computer Name = titeuf-PC | Source = R300 | ID = 43015
    Description = I2c return failed

    Error - 11/05/2010 16:33:34 | Computer Name = titeuf-PC | Source = DCOM | ID = 10010
    Description =

    Error - 12/05/2010 06:18:19 | Computer Name = titeuf-PC | Source = R300 | ID = 43015
    Description = I2c return failed

    Error - 12/05/2010 06:18:19 | Computer Name = titeuf-PC | Source = R300 | ID = 43015
    Description = I2c return failed


    < End of report >





    OTL logfile created on: 12/05/2010 12:52:31 - Run 1
    OTL by OldTimer - Version 3.2.4.1 Folder = C:\Users\auchan.PC-de-auchan\Desktop
    Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.6001.18904)
    Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

    893,00 Mb Total Physical Memory | 191,00 Mb Available Physical Memory | 21,00% Memory free
    2,00 Gb Paging File | 1,00 Gb Available in Paging File | 32,00% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
    Drive C: | 72,57 Gb Total Space | 25,18 Gb Free Space | 34,69% Space Free | Partition Type: NTFS
    Drive D: | 1,96 Gb Total Space | 1,77 Gb Free Space | 90,09% Space Free | Partition Type: NTFS
    E: Drive not present or media not loaded
    F: Drive not present or media not loaded
    G: Drive not present or media not loaded
    H: Drive not present or media not loaded
    I: Drive not present or media not loaded

    Computer Name: TITEUF-PC
    Current User Name: auchan
    Logged in as Administrator.

    Current Boot Mode: Normal
    Scan Mode: Current user
    Company Name Whitelist: Off
    Skip Microsoft Files: Off
    File Age = 30 Days
    Output = Minimal

    ========== Processes (SafeList) ==========

    PRC - C:\Users\auchan.PC-de-auchan\Desktop\OTL.exe (OldTimer Tools)
    PRC - C:\Program Files\IncrediMail\bin\IncMail.exe (IncrediMail, Ltd.)
    PRC - C:\Program Files\IncrediMail\bin\IMApp.exe (IncrediMail, Ltd.)
    PRC - C:\Program Files\SpiderMessenger\SpiderMessenger.exe (Agence Exclusive)
    PRC - C:\Program Files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe (Autodata Limited)
    PRC - C:\Program Files\Norton 360\Engine\3.8.0.41\ccSvcHst.exe (Symantec Corporation)
    PRC - C:\Program Files\Neuf\Kit\9props.exe (SFR)
    PRC - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
    PRC - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
    PRC - C:\Windows\explorer.exe (Microsoft Corporation)
    PRC - C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION)
    PRC - C:\Users\auchan.PC-de-auchan\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe (Microsoft Corporation)
    PRC - C:\Users\auchan.PC-de-auchan\AppData\Roaming\Microsoft\Live Search\Mise-a-jour-LiveSearch.exe (Microsoft Corporation)
    PRC - C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
    PRC - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE (SEIKO EPSON CORPORATION)
    PRC - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE (SEIKO EPSON CORPORATION)
    PRC - C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe (TOSHIBA)
    PRC - C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe (TOSHIBA Corporation)
    PRC - C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe (TOSHIBA Corporation)
    PRC - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe (TOSHIBA Corporation)
    PRC - C:\Program Files\TOSHIBA\Utilities\VolControl.exe (TOSHIBA Inc.)
    PRC - C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe (TOSHIBA Corporation)
    PRC - C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe (TOSHIBA CORPORATION)
    PRC - C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe (TOSHIBA CORPORATION)
    PRC - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe (TOSHIBA CORPORATION)
    PRC - C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe (TOSHIBA)
    PRC - C:\Windows\WindowsMobile\wmdSync.exe (Microsoft Corporation)
    PRC - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
    PRC - C:\Program Files\Synaptics\SynTP\SynToshiba.exe (Synaptics, Inc.)
    PRC - C:\Windows\System32\agrsmsvc.exe (Agere Systems)
    PRC - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe (Ulead Systems, Inc.)
    PRC - C:\Windows\System32\TODDSrv.exe (TOSHIBA Corporation)
    PRC - C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe (ATI Technologies Inc.)
    PRC - C:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE (ATI Technologies Inc.)
    PRC - C:\Program Files\ltmoh\ltmoh.exe (Agere Systems)


    ========== Modules (SafeList) ==========

    MOD - C:\Users\auchan.PC-de-auchan\Desktop\OTL.exe (OldTimer Tools)
    MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll (Microsoft Corporation)
    MOD - C:\Windows\System32\msscript.ocx (Microsoft Corporation)


    ========== Win32 Services (SafeList) ==========

    SRV - (CLTNetCnService) -- File not found
    SRV - (Autodata Limited License Service) -- C:\Program Files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe (Autodata Limited)
    SRV - (N360) -- C:\Program Files\Norton 360\Engine\3.8.0.41\ccSvcHst.exe (Symantec Corporation)
    SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation)
    SRV - (fsssvc) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe (Microsoft Corporation)
    SRV - (SeaPort) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
    SRV - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
    SRV - (WcesComm) -- C:\Windows\WindowsMobile\wcescomm.dll (Microsoft Corporation)
    SRV - (RapiMgr) -- C:\Windows\WindowsMobile\rapimgr.dll (Microsoft Corporation)
    SRV - (EPSON_EB_RPCV4_01) EPSON V5 Service4(01) -- C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE (SEIKO EPSON CORPORATION)
    SRV - (EPSON_PM_RPCV4_01) EPSON V3 Service4(01) -- C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE (SEIKO EPSON CORPORATION)
    SRV - (TosCoSrv) -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe (TOSHIBA Corporation)
    SRV - (CFSvcs) -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe (TOSHIBA CORPORATION)
    SRV - (AgereModemAudio) -- C:\Windows\System32\agrsmsvc.exe (Agere Systems)
    SRV - (UleadBurningHelper) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe (Ulead Systems, Inc.)
    SRV - (TODDSrv) -- C:\Windows\System32\TODDSrv.exe (TOSHIBA Corporation)
    SRV - (IDriverT) -- C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe (Macrovision Corporation)


    ========== Driver Services (SafeList) ==========

    DRV - (NAVEX15) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20100511.023\NAVEX15.SYS (Symantec Corporation)
    DRV - (NAVENG) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20100511.023\NAVENG.SYS (Symantec Corporation)
    DRV - (SymEvent) -- C:\Windows\System32\drivers\SYMEVENT.SYS (Symantec Corporation)
    DRV - (SymEFA) -- C:\Windows\system32\drivers\N360\0308000.029\SYMEFA.SYS (Symantec Corporation)
    DRV - (SRTSP) -- C:\Windows\System32\Drivers\N360\0308000.029\SRTSP.SYS (Symantec Corporation)
    DRV - (SYMTDI) -- C:\Windows\System32\Drivers\N360\0308000.029\SYMTDI.SYS (Symantec Corporation)
    DRV - (SYMFW) -- C:\Windows\System32\Drivers\N360\0308000.029\SYMFW.SYS (Symantec Corporation)
    DRV - (SYMNDISV) -- C:\Windows\System32\Drivers\N360\0308000.029\SYMNDISV.SYS (Symantec Corporation)
    DRV - (SRTSPX) Symantec Real Time Storage Protection (PEL) -- C:\Windows\system32\drivers\N360\0308000.029\SRTSPX.SYS (Symantec Corporation)
    DRV - (SymIM) -- C:\Windows\System32\drivers\SymIMV.sys (Symantec Corporation)
    DRV - (ccHP) -- C:\Windows\System32\Drivers\N360\0308000.029\ccHPx86.sys (Symantec Corporation)
    DRV - (BHDrvx86) -- C:\Windows\System32\Drivers\N360\0308000.029\BHDrvx86.sys (Symantec Corporation)
    DRV - (eeCtrl) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys (Symantec Corporation)
    DRV - (EraserUtilRebootDrv) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys (Symantec Corporation)
    DRV - (IDSVix86) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20100505.001\IDSvix86.sys (Symantec Corporation)
    DRV - (fssfltr) -- C:\Windows\System32\drivers\fssfltr.sys (Microsoft Corporation)
    DRV - (usbaudio) Pilote USB audio (WDM) -- C:\Windows\System32\drivers\USBAUDIO.sys (Microsoft Corporation)
    DRV - (winusb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
    DRV - (StarOpen) -- C:\Windows\System32\drivers\StarOpen.sys ()
    DRV - (R300) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
    DRV - (qkbfiltr) -- C:\Windows\System32\drivers\qkbfiltr.sys (TOSHIBA)
    DRV - (athr) -- C:\Windows\System32\drivers\athr.sys (Atheros Communications, Inc.)
    DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation)
    DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.)
    DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex)
    DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.)
    DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.)
    DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation)
    DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.)
    DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.)
    DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
    DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation)
    DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.)
    DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.)
    DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation)
    DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation)
    DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
    DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems)
    DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation)
    DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.)
    DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.)
    DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic)
    DRV - (SiSRaid2) -- C:\Windows\system32\drivers\sisraid2.sys (Silicon Integrated Systems Corp.)
    DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company)
    DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.)
    DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.)
    DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
    DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic)
    DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic)
    DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic)
    DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic)
    DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation)
    DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic)
    DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Logic Corporation)
    DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.)
    DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.)
    DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.)
    DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.)
    DRV - (BrUsbSer) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.)
    DRV - (BrFiltUp) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.)
    DRV - (BrFiltLo) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.)
    DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.)
    DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.)
    DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies)
    DRV - (RTL8023xp) -- C:\Windows\System32\drivers\Rtnicxp.sys (Realtek Semiconductor Corporation )
    DRV - (E1G60) Intel(R) -- C:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation)
    DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.)
    DRV - (SynTP) -- C:\Windows\System32\drivers\SynTP.sys (Synaptics, Inc.)
    DRV - (tdcmdpst) -- C:\Windows\System32\drivers\tdcmdpst.sys (TOSHIBA Corporation.)
    DRV - (BoiHwsetup) -- C:\Windows\System32\drivers\BoiHwSetup.sys (Quanta Computer Corp)
    DRV - (TVALZ) -- C:\Windows\system32\DRIVERS\TVALZ_O.SYS (TOSHIBA Corporation)
    DRV - (AgereSoftModem) -- C:\Windows\System32\drivers\AGRSM.sys (Agere Systems)
    DRV - (KR10I) -- C:\Windows\system32\drivers\kr10i.sys (TOSHIBA CORPORATION)
    DRV - (KR10N) -- C:\Windows\system32\drivers\kr10n.sys (TOSHIBA CORPORATION)
    DRV - (QCMerced) -- C:\Windows\System32\drivers\lvcm.sys ()


    ========== Standard Registry (SafeList) ==========


    ========== Internet Explorer ==========

    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/

    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://meteo.msn.com/local.aspx?wealocations=wc:8521857...
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0C FE BF E8 C5 B0 CA 01 [binary data]
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    ========== FireFox ==========

    FF - prefs.js..browser.search.defaultenginename: "MyStart Search"
    FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT223370...{searchTerms}"
    FF - prefs.js..browser.search.selectedEngine: "MyStart Search"
    FF - prefs.js..browser.search.update: false
    FF - prefs.js..browser.startup.homepage: "http://mystart.incredimail.com/"
    FF - prefs.js..keyword.URL: "http://redirecterror.sfr.fr/?q="

    FF - user.js..keyword.URL: "http://redirecterror.sfr.fr/?q="

    FF - HKLM\software\mozilla\Firefox\Extensions\\{7BA52691-1876-45ce-9EE6-54BCB3B04BBC}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\coFFPlgn\ [2010/04/27 12:34:59 | 000,000,000 | ---D | M]
    FF - HKLM\software\mozilla\Firefox\Extensions\\SpiderMessengerHelper@spidermessenger.com: C:\Program Files\SpiderMessenger [2010/04/05 06:48:23 | 000,000,000 | ---D | M]

    [2008/12/18 14:05:34 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\mozilla\Extensions
    [2010/04/27 20:41:14 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\mozilla\Firefox\Profiles\lbquakpe.default\extensions
    [2010/01/19 00:19:04 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\mozilla\Firefox\Profiles\lbquakpe.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
    [2008/12/18 14:06:01 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\mozilla\Firefox\Profiles\lbquakpe.default\extensions\fr@dictionaries.addons.mozilla.org
    [2009/07/23 13:36:07 | 000,000,897 | ---- | M] () -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\Mozilla\FireFox\Profiles\lbquakpe.default\searchplugins\conduit.xml
    [2009/01/11 23:39:55 | 000,001,775 | ---- | M] () -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\Mozilla\FireFox\Profiles\lbquakpe.default\searchplugins\live-search.xml
    [2010/05/04 23:41:52 | 000,002,149 | ---- | M] () -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\Mozilla\FireFox\Profiles\lbquakpe.default\searchplugins\MyStart Search.xml
    [2009/03/05 18:08:04 | 000,049,664 | ---- | M] () -- C:\Program Files\mozilla firefox\components\FFComm.dll
    [2008/11/11 09:38:54 | 000,663,552 | ---- | M] (BitComet) -- C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll

    O1 HOSTS File: ([2009/08/02 21:39:15 | 000,000,686 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
    O1 - Hosts: 127.0.0.1 localhost
    O2 - BHO: (Objet d'aide à la navigation SFR) - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} - C:\Program Files\Neuf\Kit\SFRNavErrorHelper.dll (SFR)
    O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll (BitComet)
    O2 - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
    O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton 360\Engine\3.8.0.41\coIEPlg.dll (Symantec Corporation)
    O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton 360\Engine\3.8.0.41\IPSBHO.DLL (Symantec Corporation)
    O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
    O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll (Sun Microsystems, Inc.)
    O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
    O2 - BHO: (SpiderMessenger_BHO Class) - {ADE49752-DBBC-43A3-9498-379A82F574BF} - C:\Program Files\SpiderMessenger\SpiderMessenger.BHO.dll (Soft2PC)
    O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
    O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
    O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\3.8.0.41\coIEPlg.dll (Symantec Corporation)
    O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
    O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
    O3 - HKCU\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\3.8.0.41\coIEPlg.dll (Symantec Corporation)
    O4 - HKLM..\Run: [00TCrdMain] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe (TOSHIBA Corporation)
    O4 - HKLM..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe ()
    O4 - HKLM..\Run: [EEventManager] C:\PROGRA~1\EPSONS~1\EVENTM~1\EEventManager.exe (SEIKO EPSON CORPORATION)
    O4 - HKLM..\Run: [fssui] C:\Program Files\Windows Live\Family Safety\fsui.exe (Microsoft Corporation)
    O4 - HKLM..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe (Agere Systems)
    O4 - HKLM..\Run: [NDSTray.exe] File not found
    O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
    O4 - HKLM..\Run: [SmoothView] C:\Program Files\Toshiba\SmoothView\SmoothView.exe (TOSHIBA Corporation)
    O4 - HKLM..\Run: [SpiderMessenger] File not found
    O4 - HKLM..\Run: [topi] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe (TOSHIBA)
    O4 - HKLM..\Run: [TOSHIBA Volume Indicator] C:\Program Files\Toshiba\Utilities\VolControl.exe (TOSHIBA Inc.)
    O4 - HKLM..\Run: [TPwrMain] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE (TOSHIBA Corporation)
    O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
    O4 - HKLM..\Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdSync.exe (Microsoft Corporation)
    O4 - HKCU..\Run: [Connexion SFR 9props.exe] C:\Program Files\Neuf\Kit\9props.exe (SFR)
    O4 - HKCU..\Run: [SpiderMessenger] C:\Program Files\SpiderMessenger\SpiderMessenger.exe (Agence Exclusive)
    O4 - HKCU..\Run: [TOSCDSPD] File not found
    O4 - HKLM..\RunOnce: [] File not found
    O4 - Startup: C:\Users\auchan.PC-de-auchan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Outil de notification Live Search.lnk = C:\Users\auchan.PC-de-auchan\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe (Microsoft Corporation)
    O8 - Extra context menu item: Télécharger avec BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
    O8 - Extra context menu item: Télécharger toutes les vidéos avec BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
    O8 - Extra context menu item: Tout télécharger avec BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
    O9 - Extra 'Tools' menuitem : Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll (Sun Microsystems, Inc.)
    O9 - Extra Button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
    O9 - Extra 'Tools' menuitem : &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
    O9 - Extra Button: eBay - {C08CAF1D-C0A3-40D5-9970-06D067EAC017} - File not found
    O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll (BitComet)
    O13 - gopher Prefix: missing
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resources/scanner/sourc... (BDSCANONLINE Control)
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/fl... (Shockwave Flash Object)
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
    O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\symres {AA1061FE-6C41-421f-9344-69640C9732AB} - C:\Program Files\Norton 360\Engine\3.8.0.41\coIEPlg.dll (Symantec Corporation)
    O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
    O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
    O24 - Desktop WallPaper: C:\Users\Public\Pictures\Sample Pictures\Tree.jpg
    O24 - Desktop BackupWallPaper: C:\Users\Public\Pictures\Sample Pictures\Tree.jpg
    O32 - HKLM CDRom: AutoRun - 1
    O34 - HKLM BootExecute: (autocheck autochk *) - File not found
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37 - HKLM\...com [@ = comfile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*

    ========== Files/Folders - Created Within 30 Days ==========

    [2010/05/12 12:48:18 | 000,570,880 | ---- | C] (OldTimer Tools) -- C:\Users\auchan.PC-de-auchan\Desktop\OTL.exe
    [2010/05/08 22:56:13 | 000,000,000 | ---D | C] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\Epson
    [2010/05/08 22:18:38 | 000,342,016 | ---- | C] (Seiko Epson Corporation) -- C:\Windows\System32\eswiaud.dll
    [2010/05/08 22:18:38 | 000,128,392 | ---- | C] (Seiko Epson Corporation) -- C:\Windows\System32\esdevapp.exe
    [2010/05/08 22:18:38 | 000,015,872 | ---- | C] (SEIKO EPSON CORP.) -- C:\Windows\System32\escdev.dll
    [2010/05/08 20:43:47 | 000,000,000 | ---D | C] -- C:\ProgramData\UDL
    [2010/05/08 20:37:52 | 000,000,000 | ---D | C] -- C:\Program Files\Epson Software
    [2010/05/08 20:36:24 | 000,000,000 | ---D | C] -- C:\Program Files\ABBYY FineReader 6.0 Sprint
    [2010/05/08 20:33:15 | 000,501,912 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\PICSDK2.dll
    [2010/05/08 20:33:15 | 000,120,992 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\EpPicPrt.dll
    [2010/05/08 20:33:15 | 000,108,704 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\PICEntry.dll
    [2010/05/08 20:33:15 | 000,080,024 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\PICSDK.dll
    [2010/05/08 20:33:14 | 000,071,840 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\EPPicMgr.dll
    [2010/05/08 20:33:12 | 000,000,000 | ---D | C] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\InstallShield
    [2010/05/08 20:30:19 | 000,008,192 | ---- | C] (SEIKO EPSON CORP.) -- C:\Windows\System32\E_DCINST.DLL
    [2010/05/08 20:29:55 | 000,086,528 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\E_FLBFDE.DLL
    [2010/05/08 20:29:49 | 000,078,848 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\E_FD4BFDE.DLL
    [2010/05/08 20:29:17 | 000,000,000 | ---D | C] -- C:\ProgramData\EPSON
    [2010/05/08 20:26:16 | 000,000,000 | ---D | C] -- C:\Program Files\epson
    [2010/05/04 23:47:22 | 000,000,000 | ---D | C] -- C:\ProgramData\PhotoMail
    [2010/05/04 23:47:19 | 000,000,000 | ---D | C] -- C:\Program Files\PhotoMail Maker
    [2010/05/02 20:23:49 | 000,000,000 | ---D | C] -- C:\Users\auchan.PC-de-auchan\Documents\Nouveau dossier
    [2010/05/01 13:30:30 | 000,000,000 | ---D | C] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\innoPlus
    [2010/05/01 13:29:17 | 000,000,000 | ---D | C] -- C:\Program Files\INNOVA-engineering GmbH
    [2010/04/28 13:36:53 | 000,000,000 | ---D | C] -- C:\Windows\System32\N360_BACKUP
    [2010/04/28 13:25:10 | 000,000,000 | ---D | C] -- C:\Users\auchan.PC-de-auchan\Documents\Symantec
    [2010/04/15 12:30:10 | 003,548,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
    [2010/04/15 12:30:08 | 003,600,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
    [2010/04/15 12:30:05 | 000,420,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
    [2010/04/15 12:30:01 | 000,062,464 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm
    [2010/04/15 12:30:00 | 000,220,672 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codecp.acm
    [2010/04/15 12:18:54 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe
    [2010/04/13 21:09:32 | 000,000,000 | ---D | C] -- C:\Program Files\Sweet Home 3D
    [1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
    [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

    ========== Files - Modified Within 30 Days ==========

    [2010/05/12 12:58:56 | 000,000,420 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{94694E5D-26FB-407A-BD58-1A107CCFD8F0}.job
    [2010/05/12 12:54:39 | 005,505,024 | -HS- | M] () -- C:\Users\auchan.PC-de-auchan\NTUSER.DAT
    [2010/05/12 12:48:22 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Users\auchan.PC-de-auchan\Desktop\OTL.exe
    [2010/05/12 12:18:39 | 000,003,552 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
    [2010/05/12 12:18:38 | 000,003,552 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
    [2010/05/12 12:18:34 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
    [2010/05/12 12:18:25 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
    [2010/05/11 22:34:41 | 000,524,288 | -HS- | M] () -- C:\Users\auchan.PC-de-auchan\NTUSER.DAT{9bd992b5-c88b-11dd-8a13-001636d2000a}.TMContainer00000000000000000001.regtrans-ms
    [2010/05/11 22:34:41 | 000,065,536 | -HS- | M] () -- C:\Users\auchan.PC-de-auchan\NTUSER.DAT{9bd992b5-c88b-11dd-8a13-001636d2000a}.TM.blf
    [2010/05/11 22:32:33 | 003,092,047 | -H-- | M] () -- C:\Users\auchan.PC-de-auchan\AppData\Local\IconCache.db
    [2010/05/10 22:40:01 | 000,000,242 | ---- | M] () -- C:\Windows\tasks\Epson Printer Software Downloader.job
    [2010/05/08 23:30:57 | 000,089,088 | ---- | M] () -- C:\Users\auchan.PC-de-auchan\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2010/05/08 22:39:41 | 000,001,953 | ---- | M] () -- C:\Users\Public\Desktop\Epson Easy Photo Print.lnk
    [2010/05/08 22:25:41 | 000,002,112 | ---- | M] () -- C:\Users\Public\Desktop\Epson Stylus SX210_SX410_TX210_TX410 Manuel.lnk
    [2010/05/08 22:18:43 | 000,000,770 | ---- | M] () -- C:\Users\Public\Desktop\EPSON Scan.lnk
    [2010/05/08 21:29:34 | 001,592,070 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
    [2010/05/08 21:29:34 | 000,713,542 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
    [2010/05/08 21:29:34 | 000,625,582 | ---- | M] () -- C:\Windows\System32\perfh009.dat
    [2010/05/08 21:29:34 | 000,143,542 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
    [2010/05/08 21:29:34 | 000,117,144 | ---- | M] () -- C:\Windows\System32\perfc009.dat
    [2010/05/06 10:36:38 | 000,221,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
    [2010/05/04 23:44:21 | 000,002,095 | ---- | M] () -- C:\Users\Public\Desktop\Wallpapers by IncrediMail.lnk
    [2010/05/04 23:44:21 | 000,002,062 | ---- | M] () -- C:\Users\Public\Desktop\Animations for Messenger.lnk
    [2010/05/04 23:44:16 | 000,001,895 | ---- | M] () -- C:\Users\Public\Desktop\IncrediMail.lnk
    [2010/04/30 12:23:13 | 000,087,992 | ---- | M] () -- C:\Users\auchan.PC-de-auchan\AppData\Local\GDIPFONTCACHEV1.DAT
    [2010/04/30 12:20:29 | 000,312,736 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
    [2010/04/29 13:30:39 | 000,001,892 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
    [2010/04/23 21:22:37 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdRapi_01_00_00.Wdf
    [2010/04/13 21:09:48 | 000,000,875 | ---- | M] () -- C:\Users\auchan.PC-de-auchan\Desktop\Sweet Home 3D.lnk
    [1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
    [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

    ========== Files Created - No Company Name ==========

    [2010/05/08 22:40:18 | 000,000,242 | ---- | C] () -- C:\Windows\tasks\Epson Printer Software Downloader.job
    [2010/05/08 22:39:40 | 000,001,953 | ---- | C] () -- C:\Users\Public\Desktop\Epson Easy Photo Print.lnk
    [2010/05/08 22:25:41 | 000,002,112 | ---- | C] () -- C:\Users\Public\Desktop\Epson Stylus SX210_SX410_TX210_TX410 Manuel.lnk
    [2010/05/08 22:18:43 | 000,000,770 | ---- | C] () -- C:\Users\Public\Desktop\EPSON Scan.lnk
    [2010/05/08 20:33:15 | 000,111,932 | ---- | C] () -- C:\Windows\System32\EPPICPrinterDB.dat
    [2010/05/08 20:33:15 | 000,031,053 | ---- | C] () -- C:\Windows\System32\EPPICPattern131.dat
    [2010/05/08 20:33:15 | 000,027,417 | ---- | C] () -- C:\Windows\System32\EPPICPattern121.dat
    [2010/05/08 20:33:15 | 000,026,154 | ---- | C] () -- C:\Windows\System32\EPPICPattern1.dat
    [2010/05/08 20:33:15 | 000,024,903 | ---- | C] () -- C:\Windows\System32\EPPICPattern3.dat
    [2010/05/08 20:33:15 | 000,021,390 | ---- | C] () -- C:\Windows\System32\EPPICPattern5.dat
    [2010/05/08 20:33:15 | 000,020,148 | ---- | C] () -- C:\Windows\System32\EPPICPattern2.dat
    [2010/05/08 20:33:15 | 000,011,811 | ---- | C] () -- C:\Windows\System32\EPPICPattern4.dat
    [2010/05/08 20:33:15 | 000,004,943 | ---- | C] () -- C:\Windows\System32\EPPICPattern6.dat
    [2010/05/08 20:33:15 | 000,001,146 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_DU.dat
    [2010/05/08 20:33:15 | 000,001,139 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_PT.dat
    [2010/05/08 20:33:15 | 000,001,139 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_BP.dat
    [2010/05/08 20:33:15 | 000,001,136 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_ES.dat
    [2010/05/08 20:33:15 | 000,001,129 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_FR.dat
    [2010/05/08 20:33:15 | 000,001,129 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_CF.dat
    [2010/05/08 20:33:15 | 000,001,120 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_IT.dat
    [2010/05/08 20:33:15 | 000,001,107 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_GE.dat
    [2010/05/08 20:33:15 | 000,001,104 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_EN.dat
    [2010/05/08 20:33:15 | 000,000,097 | ---- | C] () -- C:\Windows\System32\PICSDK.ini
    [2010/05/08 20:33:14 | 000,013,732 | ---- | C] () -- C:\Windows\System32\EPPICLocal_EN.cfg
    [2010/05/08 20:33:14 | 000,006,442 | ---- | C] () -- C:\Windows\System32\EPPICLocal_IT.cfg
    [2010/05/08 20:33:14 | 000,006,347 | ---- | C] () -- C:\Windows\System32\EPPICLocal_PT.cfg
    [2010/05/08 20:33:14 | 000,006,347 | ---- | C] () -- C:\Windows\System32\EPPICLocal_BP.cfg
    [2010/05/08 20:33:14 | 000,006,335 | ---- | C] () -- C:\Windows\System32\EPPICLocal_GE.cfg
    [2010/05/08 20:33:14 | 000,006,195 | ---- | C] () -- C:\Windows\System32\EPPICLocal_FR.cfg
    [2010/05/08 20:33:14 | 000,006,195 | ---- | C] () -- C:\Windows\System32\EPPICLocal_CF.cfg
    [2010/05/08 20:33:14 | 000,006,122 | ---- | C] () -- C:\Windows\System32\EPPICLocal_DU.cfg
    [2010/05/08 20:33:14 | 000,006,103 | ---- | C] () -- C:\Windows\System32\EPPICLocal_ES.cfg
    [2010/05/08 20:33:14 | 000,005,817 | ---- | C] () -- C:\Windows\System32\EPPICLocal_KO.cfg
    [2010/05/08 20:33:14 | 000,005,436 | ---- | C] () -- C:\Windows\System32\EPPICLocal_SC.cfg
    [2010/05/08 20:33:14 | 000,002,889 | ---- | C] () -- C:\Windows\System32\EPPICLocal_RU.cfg
    [2010/05/08 20:33:14 | 000,002,426 | ---- | C] () -- C:\Windows\System32\EPPICLocal_TC.cfg
    [2010/05/04 23:44:21 | 000,002,095 | ---- | C] () -- C:\Users\Public\Desktop\Wallpapers by IncrediMail.lnk
    [2010/05/04 23:44:21 | 000,002,062 | ---- | C] () -- C:\Users\Public\Desktop\Animations for Messenger.lnk
    [2010/04/23 21:22:37 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdRapi_01_00_00.Wdf
    [2010/04/13 21:09:48 | 000,000,875 | ---- | C] () -- C:\Users\auchan.PC-de-auchan\Desktop\Sweet Home 3D.lnk
    [2009/10/20 12:20:09 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
    [2009/10/04 13:21:15 | 000,053,248 | ---- | C] () -- C:\Windows\System32\CommonDL.dll
    [2009/10/04 13:21:15 | 000,002,412 | ---- | C] () -- C:\Windows\System32\lgAxconfig.ini
    [2009/08/02 17:50:36 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
    [2009/01/05 15:44:10 | 000,000,453 | ---- | C] () -- C:\Windows\bdoscandellang.ini
    [2008/08/17 15:37:17 | 000,005,632 | ---- | C] () -- C:\Windows\System32\drivers\StarOpen.sys
    [2008/08/14 13:17:15 | 000,000,059 | ---- | C] () -- C:\Windows\wininit.ini
    [2008/07/16 00:41:43 | 000,469,696 | ---- | C] () -- C:\Windows\System32\drivers\lvcm.sys
    [2008/07/16 00:41:43 | 000,019,968 | ---- | C] () -- C:\Windows\System32\drivers\LVUSBSta.sys
    [2008/07/16 00:41:43 | 000,005,993 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini
    [2008/05/14 18:41:56 | 002,729,472 | ---- | C] () -- C:\Windows\System32\fun_avcodec.dll
    [2006/12/20 15:30:38 | 000,204,800 | ---- | C] () -- C:\Windows\System32\IVIresizeW7.dll
    [2006/12/20 15:30:38 | 000,200,704 | ---- | C] () -- C:\Windows\System32\IVIresizeA6.dll
    [2006/12/20 15:30:38 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeP6.dll
    [2006/12/20 15:30:38 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeM6.dll
    [2006/12/20 15:30:38 | 000,188,416 | ---- | C] () -- C:\Windows\System32\IVIresizePX.dll
    [2006/12/20 15:30:38 | 000,020,480 | ---- | C] () -- C:\Windows\System32\IVIresize.dll
    [2006/12/20 15:12:40 | 000,000,000 | ---- | C] () -- C:\Windows\NDSTray.INI
    [2006/12/20 14:58:42 | 000,128,113 | ---- | C] () -- C:\Windows\System32\csellang.ini
    [2006/12/20 14:58:42 | 000,045,056 | ---- | C] () -- C:\Windows\System32\csellang.dll
    [2006/12/20 14:58:42 | 000,010,162 | ---- | C] () -- C:\Windows\System32\tosmreg.ini
    [2006/12/20 14:58:42 | 000,007,671 | ---- | C] () -- C:\Windows\System32\cseltbl.ini
    [2006/12/20 14:12:21 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
    [2006/11/02 12:25:44 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
    [2006/11/02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
    [1999/01/27 13:39:06 | 000,065,024 | ---- | C] () -- C:\Windows\System32\indounin.dll
    [1997/06/13 07:56:08 | 000,056,832 | ---- | C] () -- C:\Windows\System32\Iyvu9_32.dll

    ========== LOP Check ==========

    [2009/07/26 10:23:14 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\Anuman Interactive
    [2010/05/08 23:13:37 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\Epson
    [2008/08/04 21:22:57 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\Hemera
    [2009/08/12 20:27:23 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\ImgBurn
    [2010/05/01 13:30:30 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\innoPlus
    [2009/10/04 14:22:25 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\LG Electronics
    [2007/03/06 14:20:41 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\PeerNetworking
    [2009/04/05 16:55:45 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\Samsung
    [2008/08/18 20:37:15 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\TomTom
    [2007/02/24 14:51:11 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\Toshiba
    [2007/06/27 18:38:12 | 000,000,000 | ---D | M] -- C:\Users\auchan.PC-de-auchan\AppData\Roaming\Ulead Systems
    [2010/05/10 22:40:01 | 000,000,242 | ---- | M] () -- C:\Windows\Tasks\Epson Printer Software Downloader.job
    [2010/05/11 22:34:12 | 000,032,476 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
    [2010/05/12 12:58:56 | 000,000,420 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{94694E5D-26FB-407A-BD58-1A107CCFD8F0}.job

    ========== Purity Check ==========



    ========== Alternate Data Streams ==========

    @Alternate Data Stream - 106 bytes -> C:\ProgramData\TEMP:7E95B6FD
    < End of report >
    a c 295 8 Sécurité
    12 Mai 2010 19:35:05

  • Télécharge Malwarebytes' Anti-Malware (MBAM) sur ton Bureau.
  • Double-clique sur le fichier téléchargé pour lancer le processus d'installation.
  • Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.
  • Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.
  • Sélectionne Exécuter un examen rapide.
  • Clique sur Rechercher. L'analyse démarre.
  • A la fin de l'analyse, un message s'affiche :
    Citation :
    L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.

  • Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
  • Ferme tes navigateurs.
  • Si des malwares ont été détectés, clique sur Afficher les résultats.
  • Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.
  • MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.
    13 Mai 2010 06:20:47

    bonjours voici le rapport de malware


    Malwarebytes' Anti-Malware 1.46
    www.malwarebytes.org

    Version de la base de données: 4094

    Windows 6.0.6002 Service Pack 2
    Internet Explorer 8.0.6001.18904

    13/05/2010 06:08:25
    mbam-log-2010-05-13 (06-08-25).txt

    Type d'examen: Examen rapide
    Elément(s) analysé(s): 116534
    Temps écoulé: 3 heure(s), 10 minute(s), 31 seconde(s)

    Processus mémoire infecté(s): 1
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 0
    Valeur(s) du Registre infectée(s): 1
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 1

    Processus mémoire infecté(s):
    C:\Program Files\SpiderMessenger\SpiderMessenger.exe (Spyware.AgenceExclusive) -> Unloaded process successfully.

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Valeur(s) du Registre infectée(s):
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\spidermessenger (Spyware.AgenceExclusive) -> Quarantined and deleted successfully.

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    C:\Program Files\SpiderMessenger\SpiderMessenger.exe (Spyware.AgenceExclusive) -> Quarantined and deleted successfully.
    13 Mai 2010 09:17:38

    Bonjour,
    Il semblerait que j'ai un problème similaire depuis hier. J'ai d'abord eu un gros problème avec l'impossibilité de d'ouvrir plusieurs IE en même temps, je j'ai fini par regler avec UsbFix. Mais depuis j'ai des fenetres IE qui s'ouvrent régulièrement avec des pages de publicités. Ce sont de nouvelles sessions d'IE, pas de simple pop-up.
    J'ai lancé les anti-spyware suivants: AD-R et MalwareByte Anti Malware. Rien n'y fait. J'ai toujours ces pub qui apparaissent toutes les minutes environ. Et là en ce moment (qd j'écris ce post), j'ai le clavier très lent, je ne vois pas les lettres s'afficher qd j'écris. Cela devient infernal.

    Quelqu'un pourrait-il m'aider à me débarasser de cette vérole !!!

    Merci d'avance.
    a c 295 8 Sécurité
    13 Mai 2010 10:35:03

    Le PC va mieux ?

  • Relance MBAM, va dans Quarantaine et supprime tout.

  • Mets à jour Java.
    13 Mai 2010 12:04:48

    J'ouvre un autre post pour ne pas perturber, dsl.
    13 Mai 2010 13:54:14

    bonjour j ai suprimer les fichier en quarantaine

    j ai mis la derniere version de java

    que dois je faire maintenent
    cordialement christophe
    a c 295 8 Sécurité
    13 Mai 2010 14:48:22

    Peux-tu répondre à ma question ?
    13 Mai 2010 18:44:48

    excuse oui mon pc va mieux j ai pu de fenetre qui s ouvre tous seul
    mais je trouve qu il est encore un peut lent

    cordialement christophe
    a c 295 8 Sécurité
    13 Mai 2010 18:47:49

    Pour Vista, mieux vaut avoir au moins 2Go de RAM et apparemment, tu en as moins d'1Go.
    14 Mai 2010 11:24:17

    bonjours ok pour la memoire vive
    dois je retirer le logiciel que tu ma fait telecharger
    cordialement christophe
    a c 295 8 Sécurité
    14 Mai 2010 12:23:00

    1/

  • Télécharge OTC sur ton Bureau.
  • Clique droit sur OTC et choisis Exécuter en tant qu'administrateur.
  • Clique sur CleanUp! puis clique sur Yes à la fenêtre Confirm.
  • Redémarre ton PC comme demandé.


    2/

  • Télécharge et installe CCleaner (N'installe pas la Yahoo! Toolbar).
  • Lance-le. Va dans Options puis Avancé et décoche la case Effacer uniquement les fichiers etc....
  • Va dans Nettoyeur, choisis Analyse. Une fois terminé, lance le nettoyage.


    3/

  • Il est nécessaire de désactiver puis réactiver la restauration système pour la purger.


    ==Prévention==

    Conserve MBAM. Il te servira à scanner les fichiers douteux en complément de l'antivirus et scanne le disque dur régulièrement.

    Par rapport au P2P : Lien

    Voici un dossier complet (A lire avec Adobe Reader ou Foxit Reader) : Lien


    ==Problème résolu ?==

    --> Si tu estimes que ton problème est résolu, ajoute [Résolu] au titre. Pour cela :
  • Clique, dans ton premier message, sur le bouton Editer .
  • Ajoute la mention [Résolu] devant le titre.
  • Clique ensuite sur Valider votre message.


    Sois plus vigilant(e) sur Internet ;) 
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS