Votre question

Cheval de Troie - impossible à supprimer

Tags :
  • Trojan
  • Sécurité
Dernière réponse : dans Sécurité et virus
10 Août 2009 21:21:19

Bonjour,
J'ai eu un soucis avec mon PC qui s'est soldé par l'achat et la mise en place d'un nouveau disque dur.
Cependant, après une réinstallation parfaite de Windows XP (pas par moi ;)  ), j'ai un cheval de Troie... Et je n'arrive pas à l'éliminer.
Je m'en suis rendue compte à cause d'un ralentissement net de mon ordinateur!
Après avoir lancé mon antivirus Avast celui-ci a trouvé un Cheval de Troie (au niveau du Système), puis 1 minute après, encore un et ainsi de suite. J'ai donc décidé d'arrêter le massacre (l'ordinateur avait déjà été déconnecté d'internet). J'ai ensuite lancé mon PC en mode sans échec, et il a trouvé quelques Chevaux de Troie mais j'ai bien peur qu'en repassant en mode normal, celui-ci se redéveloppe. Il m'est impossible de me connecter au net avec le PC infecté tellement celui-ci est lent.
Quelqu'un pourrait-il m'aider?
Je ne m'en sors vraiment pas!
Merci beaucoup d'avance!!

Autres pages sur : cheval troie impossible supprimer

a c 327 8 Sécurité
10 Août 2009 21:36:05

Bonjour,

  • Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.
  • Double-clique sur RSIT.exe afin de lancer le programme.
    (Sous Vista, il faut cliquer droit sur RSIT.exe et choisir Exécuter en tant qu'administrateur)
  • Clique sur Continue à l'écran Disclaimer.
  • Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
  • Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

    Note : les rapports sont sauvegardés dans le dossier C:\rsit.
    10 Août 2009 22:32:00

    J'ai réussi à faire ce que vous aviez écrit.
    Voilà ce que j'ai réussi à obtenir...

    log.txt
    Logfile of random's system information tool 1.06 (written by random/random)
    Run by tamara at 2009-08-10 22:15:40
    Microsoft Windows XP Professionnel Service Pack 3
    System drive C: has 67 GB (83%) free of 80 GB
    Total RAM: 1015 MB (57% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 22:22:37, on 10/08/2009
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
    C:\Program Files\OCS Inventory Agent\ocsservice.exe
    C:\Program Files\UPHClean\uphclean.exe
    C:\Program Files\USBDLM\USBDLM.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Program Files\Apoint\Apoint.exe
    C:\WINDOWS\system32\igfxtray.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\WINDOWS\system32\hkcmd.exe
    C:\WINDOWS\system32\igfxpers.exe
    C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
    C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
    C:\WINDOWS\system32\AccelerometerSt.exe
    C:\Program Files\Analog Devices\Core\smax4pnp.exe
    C:\WINDOWS\system32\igfxsrvc.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Search Settings\SearchSettings.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
    C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
    C:\Documents and Settings\tamara\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
    C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Apoint\ApMsgFwd.exe
    C:\Program Files\Apoint\HidFind.exe
    C:\Program Files\Apoint\Apntex.exe
    C:\Documents and Settings\tamara\Bureau\RSIT.exe
    C:\Program Files\trend micro\tamara.exe
    C:\Program Files\Alwil Software\Avast4\setup\avast.setup

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb128\SearchSettings.dll
    O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: PDF-XChange Viewer IE-Plugin - {C5D07EB6-BBCE-4DAE-ACBB-D13A8D28CB1F} - C:\Program Files\PDF\PDF Viewer\PDFXCviewIEPlugin.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb128\SearchSettings.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
    O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
    O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
    O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
    O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
    O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
    O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
    O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\WINDOWS\system32\AccelerometerSt.exe
    O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
    O4 - HKLM\..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [SearchSettings] C:\Program Files\Search Settings\SearchSettings.exe
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Startup: Notification de cadeaux MSN.lnk = C:\Documents and Settings\tamara\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe
    O4 - Global Startup: Cisco Systems VPN Client.lnk = C:\Program Files\Cisco Systems\VPN Client\vpngui.exe
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O15 - Trusted Zone: http://apogee.grenet.fr
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
    O16 - DPF: {CAFECAFE-0013-0001-0022-ABCDEFABCDEF} (JInitiator 1.3.1.22) - http://equiv.grenet.fr/forms/jinitiator/jinit.exe
    O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://wwwimages.adobe.com/www.adobe.com/products/acrob...
    O17 - HKLM\System\CCS\Services\Tcpip\..\{03C014A4-40E7-48D4-AE64-AD9959DC3E08}: Domain = univ-savoie.fr
    O17 - HKLM\System\CS1\Services\Tcpip\..\{03C014A4-40E7-48D4-AE64-AD9959DC3E08}: Domain = univ-savoie.fr
    O17 - HKLM\System\CS2\Services\Tcpip\..\{03C014A4-40E7-48D4-AE64-AD9959DC3E08}: Domain = univ-savoie.fr
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
    O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
    O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
    O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
    O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: OCS INVENTORY SERVICE (OCS INVENTORY) - http://ocsinventory.sourceforge.net - C:\Program Files\OCS Inventory Agent\ocsservice.exe
    O23 - Service: USBDLM - Uwe Sieber - www.uwe-sieber.de - C:\Program Files\USBDLM\USBDLM.exe

    --
    End of file - 10971 bytes

    ======Scheduled tasks folder======

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
    Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-09-15 1562960]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
    SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2009-04-01 320920]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C5D07EB6-BBCE-4DAE-ACBB-D13A8D28CB1F}]
    PDF-XChange Viewer IE-Plugin - C:\Program Files\PDF\PDF Viewer\PDFXCviewIEPlugin.dll [2009-07-14 1093400]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-04-01 35840]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]
    SearchSettings Class - C:\Program Files\Search Settings\kb128\SearchSettings.dll [2009-04-09 1091584]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
    JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-04-01 73728]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [2007-10-03 178712]
    "PDVDDXSrv"=C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe [2006-10-20 118784]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-04-01 148888]
    "Apoint"=C:\Program Files\Apoint\Apoint.exe [2007-01-25 159744]
    "IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2009-03-13 141336]
    "HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2009-03-13 173592]
    "Persistence"=C:\WINDOWS\system32\igfxpers.exe [2009-03-13 142360]
    "QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2009-04-15 181816]
    "hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2008-04-15 488752]
    "AccelerometerSysTrayApplet"=C:\WINDOWS\system32\AccelerometerSt.exe [2007-01-24 124928]
    "SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2007-01-05 872448]
    "SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2006-07-13 729088]
    "avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-02-05 81000]
    "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-01-31 385024]
    "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-02-19 267048]
    "SearchSettings"=C:\Program Files\Search Settings\SearchSettings.exe [2009-04-09 970240]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]
    "MsnMsgr"=C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2009-02-06 3885408]

    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
    Cisco Systems VPN Client.lnk - C:\Program Files\Cisco Systems\VPN Client\vpngui.exe

    C:\Documents and Settings\tamara\Menu Démarrer\Programmes\Démarrage
    Notification de cadeaux MSN.lnk - C:\Documents and Settings\tamara\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
    C:\WINDOWS\system32\igfxdev.dll [2009-03-09 205824]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\NavLogon]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
    C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265088]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=1
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1
    "DisableCAD"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=145
    "NoWelcomeScreen"=1

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "HonorAutoRunSetting"=
    "NoDriveTypeAutoRun"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
    "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

    ======List of files/folders created in the last 1 months======

    2009-08-10 22:15:59 ----D---- C:\Program Files\trend micro
    2009-08-10 22:15:39 ----D---- C:\rsit
    2009-08-10 18:49:37 ----A---- C:\WINDOWS\ntbtlog.txt
    2009-07-31 21:15:27 ----D---- C:\Program Files\Fichiers communs\Ciel
    2009-07-31 21:15:19 ----D---- C:\Documents and Settings\All Users\Application Data\Ciel
    2009-07-31 21:15:18 ----D---- C:\Program Files\Ciel
    2009-07-31 17:25:01 ----D---- C:\Program Files\Microsoft
    2009-07-31 17:24:33 ----D---- C:\Program Files\Windows Live SkyDrive
    2009-07-31 17:15:44 ----D---- C:\Program Files\Fichiers communs\Windows Live
    2009-07-31 15:20:52 ----D---- C:\Documents and Settings\tamara\Application Data\Search Settings
    2009-07-31 15:15:48 ----D---- C:\Program Files\PC Inspector File Recovery
    2009-07-31 15:13:26 ----D---- C:\Program Files\WorldOfGoo
    2009-07-31 15:13:25 ----D---- C:\Program Files\Search Settings
    2009-07-31 15:12:53 ----A---- C:\WINDOWS\system32\decdll.dll
    2009-07-31 15:12:51 ----D---- C:\Program Files\Free Video Converter
    2009-07-31 15:00:43 ----D---- C:\Documents and Settings\All Users\Application Data\Lavasoft
    2009-07-31 14:58:16 ----D---- C:\Documents and Settings\tamara\Application Data\EndNote
    2009-07-31 14:57:46 ----D---- C:\Program Files\Fichiers communs\Risxtd
    2009-07-31 14:57:38 ----D---- C:\Program Files\Fichiers communs\ResearchSoft
    2009-07-31 14:56:05 ----D---- C:\Program Files\EndNote X2
    2009-07-31 14:55:46 ----D---- C:\Documents and Settings\All Users\Application Data\Thomson.ResearchSoft.Installers
    2009-07-31 14:54:51 ----D---- C:\Program Files\Fichiers communs\Wise Installation Wizard
    2009-07-31 14:53:17 ----D---- C:\Program Files\PDF
    2009-07-31 14:52:48 ----D---- C:\Documents and Settings\All Users\Application Data\Memo Drive Vc Log
    2009-07-31 14:51:49 ----D---- C:\Program Files\iPod
    2009-07-31 14:51:44 ----D---- C:\Program Files\iTunes
    2009-07-31 14:51:26 ----D---- C:\Program Files\Bonjour
    2009-07-31 14:50:43 ----D---- C:\Program Files\QuickTime
    2009-07-31 14:49:47 ----D---- C:\Program Files\Fichiers communs\Apple
    2009-07-31 14:48:43 ----D---- C:\Documents and Settings\tamara\Application Data\vlc
    2009-07-31 14:47:18 ----D---- C:\Documents and Settings\All Users\Application Data\MailFrontier
    2009-07-31 14:47:06 ----A---- C:\WINDOWS\system32\SpOrder.dll
    2009-07-31 14:47:01 ----D---- C:\Program Files\VideoLAN
    2009-07-31 14:44:46 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
    2009-07-31 14:44:16 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
    2009-07-31 14:40:55 ----SHDC---- C:\Program Files\Fichiers communs\WindowsLiveInstaller
    2009-07-31 14:40:50 ----D---- C:\Program Files\Windows Live
    2009-07-31 14:40:37 ----D---- C:\Documents and Settings\All Users\Application Data\WLInstaller
    2009-07-31 14:34:17 ----A---- C:\WINDOWS\system32\aswBoot.exe
    2009-07-31 14:34:10 ----D---- C:\Program Files\Alwil Software
    2009-07-29 09:07:05 ----HDC---- C:\WINDOWS\$NtUninstallKB973346$
    2009-07-29 09:06:07 ----HDC---- C:\WINDOWS\$NtUninstallKB961371$
    2009-07-29 09:05:54 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
    2009-07-29 09:05:07 ----HDC---- C:\WINDOWS\ie8
    2009-07-29 09:03:33 ----D---- C:\Program Files\MSXML 4.0
    2009-07-29 09:02:30 ----D---- C:\Program Files\Mozilla Firefox
    2009-07-29 08:58:08 ----A---- C:\WINDOWS\system32\wuapi.dll.mui
    2009-07-29 08:54:45 ----D---- C:\Documents and Settings\tamara\Application Data\Yahoo!
    2009-07-29 08:54:44 ----D---- C:\Program Files\Yahoo!
    2009-07-29 08:48:32 ----N---- C:\WINDOWS\system32\wdmioctl.dll
    2009-07-29 08:48:32 ----N---- C:\WINDOWS\system32\SMMedia.dll
    2009-07-29 08:48:31 ----N---- C:\WINDOWS\system32\CleanUp.exe
    2009-07-29 08:48:31 ----A---- C:\WINDOWS\system32\DSndUp.exe
    2009-07-29 08:38:03 ----A---- C:\WINDOWS\system32\accelerometerST.exe
    2009-07-29 08:38:03 ----A---- C:\WINDOWS\system32\accelerometerdll.DLL
    2009-07-29 08:36:15 ----D---- C:\Documents and Settings\All Users\Application Data\HP
    2009-07-29 08:36:08 ----D---- C:\Program Files\HP
    2009-07-29 08:17:38 ----D---- C:\Program Files\Fingerprint Sensor
    2009-07-29 08:17:37 ----A---- C:\WINDOWS\FPDRV_Ver.dll
    2009-07-29 08:14:22 ----D---- C:\Documents and Settings\All Users\Application Data\LightScribe
    2009-07-29 08:09:05 ----D---- C:\Documents and Settings\tamara\Application Data\hpqLog
    2009-07-29 08:08:35 ----HDC---- C:\WINDOWS\$NtUninstallWdf01005$
    2009-07-29 08:07:44 ----A---- C:\WINDOWS\system32\wdfcoinstaller01005.dll
    2009-07-29 08:07:42 ----D---- C:\Program Files\Hewlett-Packard
    2009-07-29 08:07:42 ----A---- C:\WINDOWS\system32\BttnCmns.dll
    2009-07-29 08:07:42 ----A---- C:\WINDOWS\system32\BttnCmn.dll
    2009-07-29 08:07:19 ----D---- C:\Documents and Settings\tamara\Application Data\InstallShield
    2009-07-29 08:06:27 ----ASH---- C:\Documents and Settings\tamara\Application Data\desktop.ini
    2009-07-29 08:06:25 ----D---- C:\Documents and Settings\tamara\Application Data\Macromedia
    2009-07-29 08:06:25 ----D---- C:\Documents and Settings\tamara\Application Data\Identities
    2009-07-29 08:06:25 ----D---- C:\Documents and Settings\tamara\Application Data\FileZilla
    2009-07-29 08:06:25 ----D---- C:\Documents and Settings\tamara\Application Data\CyberLink
    2009-07-29 08:06:25 ----D---- C:\Documents and Settings\tamara\Application Data\Apple Computer
    2009-07-29 08:06:25 ----D---- C:\Documents and Settings\tamara\Application Data\Adobe
    2009-07-29 08:06:24 ----SD---- C:\Documents and Settings\tamara\Application Data\Microsoft
    2009-07-29 08:06:24 ----D---- C:\Documents and Settings\tamara\Application Data\Thunderbird
    2009-07-29 08:06:24 ----D---- C:\Documents and Settings\tamara\Application Data\Talkback
    2009-07-29 08:06:24 ----D---- C:\Documents and Settings\tamara\Application Data\Sun
    2009-07-29 08:06:24 ----D---- C:\Documents and Settings\tamara\Application Data\Real
    2009-07-29 08:06:24 ----D---- C:\Documents and Settings\tamara\Application Data\OpenOffice.org
    2009-07-29 08:06:24 ----D---- C:\Documents and Settings\tamara\Application Data\Mozilla
    2009-07-29 08:03:25 ----N---- C:\WINDOWS\HPModemVersion.dll
    2009-07-29 08:03:22 ----RA---- C:\WINDOWS\agrsmdel.exe
    2009-07-29 08:03:13 ----D---- C:\WINDOWS\Options
    2009-07-29 08:02:47 ----D---- C:\Program Files\HP PCMCIA Smart Card Reader
    2009-07-29 08:02:40 ----D---- C:\Program Files\SCM Microsystems driver
    2009-07-29 07:56:45 ----A---- C:\WINDOWS\system32\igxprd32.dll
    2009-07-29 07:56:44 ----A---- C:\WINDOWS\system32\igxpgd32.dll
    2009-07-29 07:56:44 ----A---- C:\WINDOWS\system32\igxpdx32.dll
    2009-07-29 07:56:44 ----A---- C:\WINDOWS\system32\igxpdv32.dll
    2009-07-29 07:56:44 ----A---- C:\WINDOWS\system32\igfxCoIn_v5043.dll
    2009-07-29 07:56:44 ----A---- C:\WINDOWS\system32\ig4icd32.dll
    2009-07-29 07:56:44 ----A---- C:\WINDOWS\system32\ig4dev32.dll
    2009-07-29 07:56:41 ----D---- C:\WINDOWS\system32\Lang
    2009-07-29 07:56:41 ----A---- C:\WINDOWS\system32\igxpun.exe
    2009-07-29 07:56:34 ----D---- C:\SWSetup
    2009-07-29 07:52:33 ----D---- C:\WINDOWS\SHELLNEW
    2009-07-29 07:52:33 ----A---- C:\WINDOWS\system32\WISPTIS.EXE
    2009-07-29 07:52:33 ----A---- C:\WINDOWS\system32\INKED.DLL
    2009-07-29 07:51:57 ----D---- C:\Program Files\Microsoft.NET
    2009-07-29 07:51:57 ----D---- C:\Program Files\Microsoft Works
    2009-07-29 07:51:07 ----D---- C:\Program Files\Fichiers communs\DESIGNER
    2009-07-29 07:37:12 ----RSHD---- C:\cmdcons
    2009-07-29 07:35:34 ----A---- C:\WINDOWS\system32\vsinit.dll
    2009-07-29 07:35:34 ----A---- C:\WINDOWS\system32\vsdata.dll
    2009-07-29 07:35:33 ----D---- C:\Program Files\Fichiers communs\Deterministic Networks
    2009-07-29 07:35:33 ----A---- C:\WINDOWS\system32\vpnapi.dll
    2009-07-29 07:33:33 ----D---- C:\Program Files\Apoint

    ======List of files/folders modified in the last 1 months======

    2009-08-10 22:19:36 ----D---- C:\Temp
    2009-08-10 22:15:59 ----RD---- C:\Program Files
    2009-08-10 22:08:07 ----D---- C:\WINDOWS\system32
    2009-08-10 22:08:00 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-08-10 22:00:26 ----D---- C:\MDT
    2009-08-10 21:58:42 ----D---- C:\WINDOWS\system32\drivers
    2009-08-10 18:49:37 ----D---- C:\WINDOWS
    2009-08-10 18:46:37 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-08-10 09:20:35 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
    2009-08-10 09:06:16 ----D---- C:\WINDOWS\ERDNT
    2009-08-09 23:17:26 ----D---- C:\WINDOWS\Debug
    2009-08-09 19:17:39 ----D---- C:\Program Files\DIEGO
    2009-08-08 22:06:01 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-08-08 15:08:09 ----SHD---- C:\WINDOWS\Installer
    2009-08-08 14:26:22 ----D---- C:\WINDOWS\Internet Logs
    2009-08-08 13:26:20 ----D---- C:\Documents and Settings
    2009-07-31 21:15:27 ----D---- C:\Program Files\Fichiers communs
    2009-07-31 17:28:37 ----D---- C:\WINDOWS\WinSxS
    2009-07-31 17:27:38 ----D---- C:\WINDOWS\Temp
    2009-07-31 17:27:38 ----D---- C:\WINDOWS\system32\DirectX
    2009-07-31 17:24:40 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
    2009-07-31 17:24:40 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
    2009-07-31 17:23:54 ----RSD---- C:\WINDOWS\Fonts
    2009-07-31 17:23:21 ----HD---- C:\WINDOWS\inf
    2009-07-31 16:26:15 ----D---- C:\WINDOWS\Microsoft.NET
    2009-07-31 16:26:03 ----RSD---- C:\WINDOWS\assembly
    2009-07-31 16:03:54 ----D---- C:\WINDOWS\system32\CatRoot
    2009-07-31 15:34:30 ----D---- C:\WINDOWS\system32\config
    2009-07-31 15:31:13 ----D---- C:\Program Files\OCS Inventory Agent
    2009-07-31 15:15:48 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-07-31 15:02:22 ----D---- C:\Program Files\PowerArchiver
    2009-07-31 14:53:01 ----SD---- C:\WINDOWS\Tasks
    2009-07-31 14:51:44 ----D---- C:\Documents and Settings\All Users\Application Data\Apple Computer
    2009-07-31 14:49:58 ----DC---- C:\WINDOWS\system32\DRVSTORE
    2009-07-31 14:45:14 ----D---- C:\Program Files\Spybot - Search & Destroy
    2009-07-31 14:36:43 ----D---- C:\WINDOWS\system32\appmgmt
    2009-07-31 14:36:34 ----D---- C:\Documents and Settings\All Users\Application Data\Symantec
    2009-07-29 09:10:33 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-07-29 09:08:45 ----D---- C:\WINDOWS\system32\fr-fr
    2009-07-29 09:08:42 ----D---- C:\WINDOWS\Media
    2009-07-29 09:08:42 ----D---- C:\WINDOWS\Help
    2009-07-29 09:08:42 ----D---- C:\Program Files\Internet Explorer
    2009-07-29 09:07:05 ----HD---- C:\WINDOWS\$hf_mig$
    2009-07-29 08:58:12 ----D---- C:\WINDOWS\SoftwareDistribution
    2009-07-29 08:57:39 ----SD---- C:\WINDOWS\Downloaded Program Files
    2009-07-29 08:48:36 ----D---- C:\WINDOWS\system
    2009-07-29 08:48:31 ----D---- C:\Program Files\Analog Devices
    2009-07-29 08:34:53 ----SHD---- C:\RECYCLER
    2009-07-29 08:03:25 ----D---- C:\WINDOWS\Driver Cache
    2009-07-29 08:00:45 ----D---- C:\WINDOWS\security
    2009-07-29 07:51:54 ----D---- C:\Program Files\Microsoft Office
    2009-07-29 07:49:39 ----D---- C:\Program Files\Fichiers communs\System
    2009-07-29 07:37:25 ----RASH---- C:\boot.ini
    2009-07-29 07:37:12 ----A---- C:\WINDOWS\UPGRADE.TXT
    2009-07-29 07:35:44 ----SHD---- C:\System Volume Information
    2009-07-29 07:35:33 ----D---- C:\Program Files\Cisco Systems
    2009-07-29 07:34:51 ----D---- C:\WINDOWS\Registration
    2009-07-29 07:33:25 ----A---- C:\WINDOWS\system.ini

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-02-05 26944]
    R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-02-05 114768]
    R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-02-05 51376]
    R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-13 40576]
    R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-13 14720]
    R1 WmiAcpi;Interface de gestion Microsoft Windows pour ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
    R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]
    R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-02-05 94032]
    R2 CVPNDRVA;Cisco Systems IPsec Driver; \??\C:\WINDOWS\system32\Drivers\CVPNDRVA.sys []
    R3 Accelerometer;Accelerometer; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2006-10-17 22016]
    R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2008-02-05 281600]
    R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2007-07-13 94976]
    R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2007-01-02 1160320]
    R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows 2000/XP/Vista; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2007-02-17 132608]
    R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
    R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-02-05 23152]
    R3 ATSWPDRV;AuthenTec TruePrint USB Driver (SwipeSensor); C:\WINDOWS\system32\DRIVERS\ATSwpDrv.sys [2007-08-28 146560]
    R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2007-06-06 161792]
    R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
    R3 DNE;Deterministic Network Enhancer Miniport; C:\WINDOWS\system32\DRIVERS\dne2000.sys [2007-01-24 127376]
    R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2006-09-19 15664]
    R3 HBtnKey;HBtnKey; C:\WINDOWS\system32\DRIVERS\cpqbttn.sys [2009-03-19 9216]
    R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
    R3 HpqKbFiltr;HpqKbFilter Driver; C:\WINDOWS\system32\DRIVERS\HpqKbFiltr.sys [2007-06-18 16768]
    R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2009-03-09 6278016]
    R3 IFXTPM;IFXTPM; C:\WINDOWS\system32\DRIVERS\IFXTPM.SYS [2008-07-23 44800]
    R3 NETw5x32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw5x32.sys [2008-06-26 3630080]
    R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
    R3 usbhub;Concentrateur USB2; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
    R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
    R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
    R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
    S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2008-11-24 47272]
    S3 CVirtA;Cisco Systems VPN Adapter; C:\WINDOWS\system32\DRIVERS\CVirtA.sys [2007-01-18 5275]
    S3 e1express;Intel(R) PRO/1000 PCI Express Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e1e5132.sys [2007-04-13 254872]
    S3 HECI;Intel(R) Management Engine Interface; C:\WINDOWS\system32\DRIVERS\HECI.sys [2007-06-12 45056]
    S3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
    S3 HP24X;HP PC Card Smart Card Reader; C:\WINDOWS\system32\DRIVERS\HP24X.sys [2006-10-19 33024]
    S3 mouhid;Pilote HID de souris; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-09-28 12288]
    S3 senfilt;senfilt; C:\WINDOWS\system32\drivers\senfilt.sys []
    S3 SenFiltService;SenFilt Service; C:\WINDOWS\system32\drivers\Senfilt.sys []
    S3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2005-03-22 260224]
    S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]
    S3 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2008-07-09 394952]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-02-18 110592]
    R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-02-05 18752]
    R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-02-05 138680]
    R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2007-07-24 229376]
    R2 CVPND;Cisco Systems, Inc. VPN Service; C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe [2007-07-16 1524512]
    R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe [2007-10-03 358936]
    R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
    R2 OCS INVENTORY;OCS INVENTORY SERVICE; C:\Program Files\OCS Inventory Agent\ocsservice.exe [2007-02-27 61440]
    R2 UPHClean;User Profile Hive Cleanup; C:\Program Files\UPHClean\uphclean.exe [2005-04-27 241725]
    R2 USBDLM;USBDLM; C:\Program Files\USBDLM\USBDLM.exe [2007-10-19 134656]
    R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-02-05 254040]
    R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-02-05 352920]
    R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-04-23 239160]
    R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2008-10-21 228656]
    R3 iPod Service;Service de l'iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-02-19 504104]
    S2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-04-01 152984]
    S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
    S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
    S3 getPlus(R) Helper;getPlus(R) Helper; C:\Program Files\NOS\bin\getPlus_HelperSvc.exe [2009-03-03 33176]
    S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
    S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
    S4 NetTcpPortSharing;Service de partage de ports Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

    -----------------EOF-----------------


    info.txt
    info.txt logfile of random's system information tool 1.06 2009-08-10 22:23:24

    ======Uninstall list======

    -->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
    -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
    Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
    Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
    Adobe Reader 9.1 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
    Adobe Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
    Agere Systems HDA Modem-->agrsmdel
    Apple Mobile Device Support-->MsiExec.exe /I{44734179-8A79-4DEE-BB08-73037F065543}
    Apple Software Update-->MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}
    Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
    AuthenTec Fingerprint Sensor Minimum Install-->MsiExec.exe /X{7F362F06-A9A3-440F-8B19-6A01A72723C4}
    avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
    Bonjour-->MsiExec.exe /I{47BF1BD6-DCAC-468F-A0AD-E5DECC2211C3}
    CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
    Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
    Ciel Comptes Personnels 7.0-->MsiExec.exe /I{727BF6FB-E3D2-4277-8B9F-5BE7C20C9E5E}
    Compatibility Pack for the 2007 Office system-->MsiExec.exe /X{90120000-0020-040C-0000-0000000FF1CE}
    Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
    Correctif pour Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
    Dell Touchpad-->C:\Program Files\Apoint\Uninstap.exe ADDREMOVE
    EndNote X2-->MsiExec.exe /I{002B1E90-3241-4D45-8831-E89020F8E7E6}
    ERUNT 1.1h-->"C:\Program Files\ERUNT\unins000.exe"
    FileZilla Client 3.2.3.1-->C:\Program Files\FileZilla Client\uninstall.exe
    Free Video Converter V 2.0-->"C:\Program Files\Free Video Converter\unins000.exe"
    Galerie de photos Windows Live-->MsiExec.exe /X{44E54A81-9D91-4AA1-9417-80AFF134F5FF}
    getPlus(R) for Adobe-->"C:\Program Files\NOS\bin\getPlus_HelperSvc.exe" /UninstallGet1
    HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
    HP 3D DriveGuard-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{429E92A4-159F-4AEC-85A1-D693E1E4274D}\Setup.exe" -l0x40c UNINSTALL
    HP PCMCIA Smart Card Reader-->MsiExec.exe /I{24B3DF86-75B9-4DBD-AC39-C0C041583E6F}
    HP Quick Launch Buttons-->C:\Program Files\InstallShield Installation Information\{34D2AB40-150D-475D-AE32-BD23FB5EE355}\setup.exe -runfromtemp -l0x040c -removeonly uninst
    HP SoftPaq Download Manager-->MsiExec.exe /I{352AB263-2FF5-44DE-8DC7-ABD8BE81EF85}
    HP Wireless Assistant-->MsiExec.exe /I{9ADABDDE-9644-461B-9E73-83FA3EFCAB50}
    Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
    Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
    Intel(R) Graphics Media Accelerator Driver-->C:\WINDOWS\system32\igxpun.exe -uninstall
    Intel(R) Matrix Storage Manager-->C:\WINDOWS\System32\Imsmudlg.exe
    Intel(R) PRO Network Connections Drivers-->Prounstl.exe
    ISI ResearchSoft - Export Helper-->C:\PROGRA~1\FICHIE~1\Risxtd\_UNINST.EXE
    iTunes-->MsiExec.exe /I{80FD852F-5AAC-4129-B931-06AAFFA43138}
    Java(TM) 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF}
    Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{72AD53CC-CCC0-3757-8480-9EE176866A7C}
    Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
    Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{0BD83598-C2EF-3343-847B-7D2E84599128}
    Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
    Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31}
    Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
    Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
    Microsoft Kernel-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe"
    Microsoft Office Professional Edition 2003-->MsiExec.exe /I{9011040C-6000-11D3-8CFE-0150048383C9}
    Microsoft redistributable runtime DLLs VS2005 SP1(x86)-->MsiExec.exe /I{8E770F99-CF23-4BF9-BF4E-E3A2924FEB27}
    Microsoft redistributable runtime DLLs VS2005(x86)-->MsiExec.exe /I{C0DB380B-97B5-4BB8-AC8D-1835E61439B6}
    Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB963027)-->"C:\WINDOWS\ie7updates\KB963027-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB969897)-->"C:\WINDOWS\ie7updates\KB969897-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB972260)-->"C:\WINDOWS\ie7updates\KB972260-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
    Mise à jour de sécurité pour Windows XP (KB961371)-->"C:\WINDOWS\$NtUninstallKB961371$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB968537)-->"C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB969898)-->"C:\WINDOWS\$NtUninstallKB969898$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB973346)-->"C:\WINDOWS\$NtUninstallKB973346$\spuninst\spuninst.exe"
    Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe
    Mozilla Firefox (3.5.1)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
    Mozilla Thunderbird (2.0.0.21)-->C:\Program Files\Mozilla Thunderbird\uninstall\helper.exe
    MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
    MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
    MSXML 6.0 Parser (KB933579)-->MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
    MSXML4.0 redistributable-->MsiExec.exe /I{44D66AD9-AE19-4AFD-BE7E-A1B44C856697}
    OCS Inventory Agent 4.0.3.2-->C:\Program Files\OCS Inventory Agent\uninst.exe
    OpenOffice.org 3.0-->MsiExec.exe /I{1572F66F-F9AD-4D45-B0D2-0F45A0D5A0F6}
    Oracle JInitiator 1.3.1.22-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CAFECAFE-0013-0001-0122-ABCDEFABCDEF}\Setup.exe" -l0x9 -uninst
    Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
    PC Inspector File Recovery-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0DD140D3-9563-481E-AA75-BA457CBDAEF2}\Setup.exe" -l0x40c
    PDFCreator-->C:\Program Files\PDFCreator\unins000.exe
    PDF-Viewer-->"C:\Program Files\PDF\PDF Viewer\unins000.exe"
    PowerArchiver 2009 French-->MsiExec.exe /I{18A59CF2-76D3-4031-A380-6B05F4A9B190}
    PowerDVD-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{281ECE39-F043-492B-8337-F2E546B5604A}\Setup.exe" -l0x40c -cluninstall
    QLBCASL-->MsiExec.exe /I{F1D7AC58-554A-4A58-B784-B61558B1449A}
    QuickTime-->MsiExec.exe /I{BFD96B89-B769-4CD6-B11E-E79FFD46F067}
    RealPlayer-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
    Search Settings 1.2.1-->MsiExec.exe /X{0B1AAC97-8563-41D9-AE47-58E6A222F0E1}
    Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
    SoundMAX-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\Setup.exe" -l0x40c -removeonly
    Spelling Dictionaries Support For Adobe Reader 9-->MsiExec.exe /I{AC76BA86-7AD7-5464-3428-900000000004}
    Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
    User Profile Hive Cleanup Service-->MsiExec.exe /I{FF77941A-2BFA-4A18-BE2E-69B9498E4D55}
    VideoLAN VLC media player 0.8.6d-->C:\Program Files\VideoLAN\VLC\uninstall.exe
    VPN Client-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5624C000-B109-11D4-9DB4-00E0290FCAC5}\Setup.exe" -l0x9 VpnUninstall
    Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"
    Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
    Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
    Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
    Windows Live Sync-->MsiExec.exe /X{9C5EB781-0D37-44B8-9A58-77B3E4BF5F5E}
    Windows XP Service Pack 2-->C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe
    Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"

    ======Hosts File======

    127.0.0.1 007guard.com
    127.0.0.1 www.007guard.com
    127.0.0.1 008i.com
    127.0.0.1 008k.com
    127.0.0.1 www.008k.com
    127.0.0.1 00hq.com
    127.0.0.1 www.00hq.com
    127.0.0.1 010402.com
    127.0.0.1 032439.com
    127.0.0.1 www.032439.com

    ======Security center information======

    AV: avast! antivirus 4.8.1335 [VPS 090808-0]

    ======System event log======

    Computer Name: 6510B-TAMARA
    Event Code: 4202
    Message: Le système a détecté que la carte réseau \DEVICE\TCPIP_{E79FFA78-AB82-4C22-8721-8AAD9202C399} était déconnectée du réseau,
    et la configuration réseau de la carte a été abandonnée. Si la carte
    réseau n'était pas déconnectée, ceci peut indiquer un disfonctionnement.
    Contactez le fabricant pour des pilotes mis à jour.

    Record Number: 5
    Source Name: Tcpip
    Time Written: 20090729073706.000000+120
    Event Type: Informations
    User:

    Computer Name: 6510B-TAMARA
    Event Code: 7036
    Message: Le service est entré dans l'état : \DEVICE\{E79FFA78-AB82-4C22-8721-8AAD9202C399}.

    Record Number: 4
    Source Name: NETw5x32
    Time Written: 20090729073706.000000+120
    Event Type: Informations
    User:

    Computer Name: 6510B-TAMARA
    Event Code: 6005
    Message: Le service d'Enregistrement d'événement a démarré.

    Record Number: 3
    Source Name: EventLog
    Time Written: 20090729073643.000000+120
    Event Type: Informations
    User:

    Computer Name: 6510B-TAMARA
    Event Code: 6009
    Message: Microsoft (R) Windows (R) 5.01. 2600 Service Pack 3 Uniprocessor Free.

    Record Number: 2
    Source Name: EventLog
    Time Written: 20090729073643.000000+120
    Event Type: Informations
    User:

    Computer Name: 6510B-TAMARA
    Event Code: 115
    Message: Le suivi de la Restauration système a été activé sur tous les lecteurs.

    Record Number: 1
    Source Name: SRService
    Time Written: 20090729073548.000000+120
    Event Type: Informations
    User:

    =====Application event log=====

    Computer Name: 6510B-TAMARA
    Event Code: 19
    Message: OCS INFO: Service started successfully with parameters FREQ: 24, OLD_FREQ: 24, TTO_WAIT: 10500.

    Record Number: 5
    Source Name: OCS INVENTORY SERVICE
    Time Written: 20090729073701.000000+120
    Event Type: Informations
    User:

    Computer Name: 6510B-TAMARA
    Event Code: 35
    Message:
    Record Number: 4
    Source Name: ccEvtMgr
    Time Written: 20090729073647.000000+120
    Event Type: Informations
    User: AUTORITE NT\SYSTEM

    Computer Name: 6510B-TAMARA
    Event Code: 34
    Message:
    Record Number: 3
    Source Name: ccEvtMgr
    Time Written: 20090729073646.000000+120
    Event Type: Informations
    User: AUTORITE NT\SYSTEM

    Computer Name: 6510B-TAMARA
    Event Code: 35
    Message:
    Record Number: 2
    Source Name: ccSetMgr
    Time Written: 20090729073646.000000+120
    Event Type: Informations
    User: AUTORITE NT\SYSTEM

    Computer Name: 6510B-TAMARA
    Event Code: 34
    Message:
    Record Number: 1
    Source Name: ccSetMgr
    Time Written: 20090729073646.000000+120
    Event Type: Informations
    User: AUTORITE NT\SYSTEM

    ======Environment variables======

    "ComSpec"=%SystemRoot%\system32\cmd.exe
    "FP_NO_HOST_CHECK"=NO
    "NUMBER_OF_PROCESSORS"=2
    "OS"=Windows_NT
    "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\
    "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
    "PROCESSOR_ARCHITECTURE"=x86
    "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 10, GenuineIntel
    "PROCESSOR_LEVEL"=6
    "PROCESSOR_REVISION"=0f0a
    "TEMP"=C:\TEMP
    "TMP"=C:\TEMP
    "windir"=%SystemRoot%
    "CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
    "QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip

    -----------------EOF-----------------

    Un beau charabia pour quelqu'un qui n'y connait rien... ;) 

    Contenus similaires
    a c 327 8 Sécurité
    10 Août 2009 22:33:47

  • Désinstalle Search Settings.

  • Télécharge Lop S&D sur ton Bureau.
  • Double-clique dessus pour lancer l'installation.
  • Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau.
    (Sous Vista, il faut cliquer droit sur le raccourci Lop S&D et choisir Exécuter en tant qu'administrateur)
  • Sélectionne la langue souhaitée, puis choisis l'option 1 (Recherche) .
  • Patiente jusqu'à la fin du scan.
  • Poste le rapport généré (C:\lopR.txt).
    10 Août 2009 23:54:40

    Après un certain temps, le rapport est enfin tombé.
    Le voici :


    --------------------\\ Lop S&D 4.2.5-0 XP/Vista

    Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
    X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU T7300 @ 2.00GHz )
    BIOS : KBC Version 71.2E
    USER : tamara ( Administrator )
    BOOT : Normal boot
    Antivirus : avast! antivirus 4.8.1335 [VPS 090808-0] 4.8.1335 (Activated)
    C:\ (Local Disk) - NTFS - Total:78 Go (Free:65 Go)
    D:\ (Local Disk) - NTFS - Total:70 Go (Free:29 Go)
    E:\ (CD or DVD)
    F:\ (USB) - FAT32 - Total:3828 Mo (Free:1 Go)

    "C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
    Option : [1] ( 10/08/2009|23:06 )

    --------------------\\ Listing des dossiers dans APPLIC~1

    [19/03/2008|09:17] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
    [27/11/2007|14:48] C:\DOCUME~1\ADMINI~1\APPLIC~1\Apple Computer
    [07/04/2008|14:43] C:\DOCUME~1\ADMINI~1\APPLIC~1\CyberLink
    [16/04/2009|16:33] C:\DOCUME~1\ADMINI~1\APPLIC~1\FileZilla
    [15/11/2007|11:33] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
    [08/01/2008|17:24] C:\DOCUME~1\ADMINI~1\APPLIC~1\InstallShield
    [26/11/2007|17:44] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
    [30/04/2009|09:16] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
    [27/11/2007|09:44] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft Web Folders
    [18/03/2008|17:54] C:\DOCUME~1\ADMINI~1\APPLIC~1\Mozilla
    [20/04/2009|14:31] C:\DOCUME~1\ADMINI~1\APPLIC~1\OfficeUpdate12
    [18/03/2008|17:54] C:\DOCUME~1\ADMINI~1\APPLIC~1\OpenOffice.org2
    [27/11/2007|14:45] C:\DOCUME~1\ADMINI~1\APPLIC~1\Real
    [27/11/2007|10:43] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sun
    [18/03/2008|17:54] C:\DOCUME~1\ADMINI~1\APPLIC~1\Talkback
    [17/04/2009|10:18] C:\DOCUME~1\ADMINI~1\APPLIC~1\Thunderbird

    [28/04/2009|16:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [28/04/2009|16:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
    [31/07/2009|14:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
    [31/07/2009|21:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ciel
    [28/04/2009|16:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ConeXware
    [28/04/2009|16:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
    [28/04/2009|16:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Dell
    [29/07/2009|08:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
    [31/07/2009|15:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
    [29/07/2009|08:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LightScribe
    [31/07/2009|14:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
    [31/07/2009|14:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Memo Drive Vc Log
    [31/07/2009|17:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [28/04/2009|16:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NOS
    [10/08/2009|09:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
    [31/07/2009|14:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
    [31/07/2009|14:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Thomson.ResearchSoft.Installers
    [28/04/2009|16:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    [31/07/2009|14:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

    [28/04/2009|17:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Adobe
    [28/04/2009|17:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
    [28/04/2009|17:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\CyberLink
    [28/04/2009|17:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\FileZilla
    [28/04/2009|17:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
    [28/04/2009|17:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
    [28/04/2009|17:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
    [28/04/2009|17:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Mozilla
    [28/04/2009|17:04] C:\DOCUME~1\DEFAUL~1\APPLIC~1\OpenOffice.org
    [28/04/2009|17:04] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
    [28/04/2009|17:04] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun
    [28/04/2009|17:04] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Talkback
    [28/04/2009|17:04] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Thunderbird

    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\Adobe
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\Apple Computer
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\CyberLink
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\FileZilla
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\Identities
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\Macromedia
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\Microsoft
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\Mozilla
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\OpenOffice.org
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\Real
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\Sun
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\Talkback
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\Thunderbird

    [15/11/2007|11:17] C:\DOCUME~1\DEFAUL~1.ORI\APPLIC~1\Microsoft

    [24/10/2007|10:17] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

    [28/04/2009|17:05] C:\DOCUME~1\MAXOUD~1\APPLIC~1\Adobe
    [28/04/2009|17:05] C:\DOCUME~1\MAXOUD~1\APPLIC~1\Apple Computer
    [28/04/2009|17:05] C:\DOCUME~1\MAXOUD~1\APPLIC~1\CyberLink
    [28/04/2009|17:05] C:\DOCUME~1\MAXOUD~1\APPLIC~1\FileZilla
    [28/04/2009|17:05] C:\DOCUME~1\MAXOUD~1\APPLIC~1\Identities
    [28/04/2009|17:05] C:\DOCUME~1\MAXOUD~1\APPLIC~1\Macromedia
    [08/08/2009|13:28] C:\DOCUME~1\MAXOUD~1\APPLIC~1\Microsoft
    [28/04/2009|17:05] C:\DOCUME~1\MAXOUD~1\APPLIC~1\Mozilla
    [28/04/2009|17:04] C:\DOCUME~1\MAXOUD~1\APPLIC~1\OpenOffice.org
    [28/04/2009|17:04] C:\DOCUME~1\MAXOUD~1\APPLIC~1\Real
    [28/04/2009|17:04] C:\DOCUME~1\MAXOUD~1\APPLIC~1\Sun
    [28/04/2009|17:04] C:\DOCUME~1\MAXOUD~1\APPLIC~1\Talkback
    [28/04/2009|17:04] C:\DOCUME~1\MAXOUD~1\APPLIC~1\Thunderbird

    [24/10/2007|10:17] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    [28/04/2009|17:05] C:\DOCUME~1\tamara\APPLIC~1\Adobe
    [31/07/2009|14:52] C:\DOCUME~1\tamara\APPLIC~1\Apple Computer
    [28/04/2009|17:05] C:\DOCUME~1\tamara\APPLIC~1\CyberLink
    [09/08/2009|19:17] C:\DOCUME~1\tamara\APPLIC~1\EndNote
    [28/04/2009|17:05] C:\DOCUME~1\tamara\APPLIC~1\FileZilla
    [29/07/2009|08:09] C:\DOCUME~1\tamara\APPLIC~1\hpqLog
    [28/04/2009|17:05] C:\DOCUME~1\tamara\APPLIC~1\Identities
    [29/07/2009|08:07] C:\DOCUME~1\tamara\APPLIC~1\InstallShield
    [28/04/2009|17:05] C:\DOCUME~1\tamara\APPLIC~1\Macromedia
    [31/07/2009|17:15] C:\DOCUME~1\tamara\APPLIC~1\Microsoft
    [28/04/2009|17:05] C:\DOCUME~1\tamara\APPLIC~1\Mozilla
    [28/04/2009|17:04] C:\DOCUME~1\tamara\APPLIC~1\OpenOffice.org
    [28/04/2009|17:04] C:\DOCUME~1\tamara\APPLIC~1\Real
    [28/04/2009|17:04] C:\DOCUME~1\tamara\APPLIC~1\Sun
    [28/04/2009|17:04] C:\DOCUME~1\tamara\APPLIC~1\Talkback
    [28/04/2009|17:04] C:\DOCUME~1\tamara\APPLIC~1\Thunderbird
    [31/07/2009|14:48] C:\DOCUME~1\tamara\APPLIC~1\vlc
    [29/07/2009|08:54] C:\DOCUME~1\tamara\APPLIC~1\Yahoo!

    --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

    [27/04/2009 08:42][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [10/08/2009 22:40][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [28/09/2001 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    --------------------\\ Listing des dossiers dans C:\Program Files

    [16/04/2009|16:16] C:\Program Files\Adobe
    [31/07/2009|14:34] C:\Program Files\Alwil Software
    [29/07/2009|08:48] C:\Program Files\Analog Devices
    [29/07/2009|07:33] C:\Program Files\Apoint
    [26/11/2007|17:53] C:\Program Files\Apple Software Update
    [31/07/2009|14:51] C:\Program Files\Bonjour
    [16/04/2009|16:32] C:\Program Files\CCleaner
    [31/07/2009|21:15] C:\Program Files\Ciel
    [29/07/2009|07:35] C:\Program Files\Cisco Systems
    [24/10/2007|10:10] C:\Program Files\ComPlus Applications
    [20/03/2008|16:34] C:\Program Files\CyberLink
    [09/08/2009|19:17] C:\Program Files\DIEGO
    [31/07/2009|14:57] C:\Program Files\EndNote X2
    [14/11/2007|15:18] C:\Program Files\ERUNT
    [31/07/2009|21:15] C:\Program Files\Fichiers communs
    [16/04/2009|16:32] C:\Program Files\FileZilla Client
    [29/07/2009|08:17] C:\Program Files\Fingerprint Sensor
    [31/07/2009|15:12] C:\Program Files\Free Video Converter
    [29/07/2009|08:37] C:\Program Files\Hewlett-Packard
    [29/07/2009|08:36] C:\Program Files\HP
    [29/07/2009|08:02] C:\Program Files\HP PCMCIA Smart Card Reader
    [31/07/2009|15:15] C:\Program Files\InstallShield Installation Information
    [08/01/2008|17:25] C:\Program Files\Intel
    [29/07/2009|09:08] C:\Program Files\Internet Explorer
    [31/07/2009|14:51] C:\Program Files\iPod
    [31/07/2009|14:51] C:\Program Files\iTunes
    [01/04/2009|14:39] C:\Program Files\Java
    [01/04/2009|15:07] C:\Program Files\Messenger
    [31/07/2009|17:25] C:\Program Files\Microsoft
    [24/10/2007|10:14] C:\Program Files\microsoft frontpage
    [29/07/2009|07:51] C:\Program Files\Microsoft Office
    [31/07/2009|14:44] C:\Program Files\Microsoft SQL Server Compact Edition
    [29/04/2009|15:17] C:\Program Files\Microsoft Visual Studio
    [29/07/2009|07:52] C:\Program Files\Microsoft Works
    [29/07/2009|07:51] C:\Program Files\Microsoft.NET
    [01/04/2009|15:01] C:\Program Files\Movie Maker
    [08/08/2009|15:49] C:\Program Files\Mozilla Firefox
    [28/04/2009|11:14] C:\Program Files\Mozilla Thunderbird
    [03/04/2008|18:17] C:\Program Files\MSBuild
    [27/11/2007|14:25] C:\Program Files\MSECache
    [01/04/2009|15:01] C:\Program Files\msn
    [24/10/2007|10:10] C:\Program Files\MSN Gaming Zone
    [29/07/2009|09:03] C:\Program Files\MSXML 4.0
    [03/04/2008|18:13] C:\Program Files\MSXML 6.0
    [01/04/2009|14:58] C:\Program Files\NetMeeting
    [16/04/2009|16:13] C:\Program Files\NOS
    [31/07/2009|15:31] C:\Program Files\OCS Inventory Agent
    [16/04/2009|17:03] C:\Program Files\OpenOffice.org 3
    [10/04/2008|07:51] C:\Program Files\Oracle
    [01/04/2009|14:58] C:\Program Files\Outlook Express
    [31/07/2009|15:15] C:\Program Files\PC Inspector File Recovery
    [31/07/2009|14:53] C:\Program Files\PDF
    [16/04/2009|16:36] C:\Program Files\PDFCreator
    [31/07/2009|15:02] C:\Program Files\PowerArchiver
    [27/11/2007|14:17] C:\Program Files\putty
    [31/07/2009|14:51] C:\Program Files\QuickTime
    [26/11/2007|17:50] C:\Program Files\Real
    [03/04/2008|18:17] C:\Program Files\Reference Assemblies
    [29/07/2009|08:02] C:\Program Files\SCM Microsystems driver
    [24/10/2007|10:12] C:\Program Files\Services en ligne
    [31/07/2009|14:45] C:\Program Files\Spybot - Search & Destroy
    [10/08/2009|22:22] C:\Program Files\trend micro
    [24/10/2007|10:18] C:\Program Files\Uninstall Information
    [04/04/2008|11:15] C:\Program Files\UPHClean
    [03/04/2008|18:09] C:\Program Files\USBDLM
    [31/07/2009|14:47] C:\Program Files\VideoLAN
    [31/07/2009|17:28] C:\Program Files\Windows Live
    [31/07/2009|17:24] C:\Program Files\Windows Live SkyDrive
    [01/04/2009|15:01] C:\Program Files\Windows Media Player
    [01/04/2009|14:58] C:\Program Files\Windows NT
    [24/10/2007|11:05] C:\Program Files\WindowsUpdate
    [31/07/2009|15:13] C:\Program Files\WorldOfGoo
    [24/10/2007|10:14] C:\Program Files\xerox
    [29/07/2009|08:56] C:\Program Files\Yahoo!

    --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

    [27/11/2007|11:01] C:\Program Files\Fichiers communs\Adobe
    [31/07/2009|14:49] C:\Program Files\Fichiers communs\Apple
    [31/07/2009|21:15] C:\Program Files\Fichiers communs\Ciel
    [29/07/2009|07:52] C:\Program Files\Fichiers communs\DESIGNER
    [29/07/2009|07:35] C:\Program Files\Fichiers communs\Deterministic Networks
    [10/04/2008|07:51] C:\Program Files\Fichiers communs\InstallShield
    [31/07/2009|17:24] C:\Program Files\Fichiers communs\Microsoft Shared
    [24/10/2007|10:11] C:\Program Files\Fichiers communs\MSSoap
    [24/10/2007|10:59] C:\Program Files\Fichiers communs\ODBC
    [16/04/2009|16:56] C:\Program Files\Fichiers communs\Real
    [31/07/2009|14:57] C:\Program Files\Fichiers communs\ResearchSoft
    [31/07/2009|14:57] C:\Program Files\Fichiers communs\Risxtd
    [24/10/2007|10:11] C:\Program Files\Fichiers communs\Services
    [24/10/2007|10:59] C:\Program Files\Fichiers communs\SpeechEngines
    [29/07/2009|07:49] C:\Program Files\Fichiers communs\System
    [31/07/2009|17:15] C:\Program Files\Fichiers communs\Windows Live
    [31/07/2009|14:43] C:\Program Files\Fichiers communs\WindowsLiveInstaller
    [08/08/2009|15:08] C:\Program Files\Fichiers communs\Wise Installation Wizard
    [16/04/2009|16:56] C:\Program Files\Fichiers communs\xing shared

    --------------------\\ Process

    ( 59 Processes )

    ... OK !

    --------------------\\ Recherche avec S_Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Recherche de Fichiers / Dossiers Lop

    C:\DOCUME~1\ALLUSE~1\APPLIC~1\Memo Drive Vc Log
    C:\DOCUME~1\ALLUSE~1\APPLIC~1\Memo Drive Vc Log\Blah Style.dat

    --------------------\\ Verification du Registre

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

    ..... OK !

    --------------------\\ Verification du fichier Hosts

    Fichier Hosts PROPRE


    --------------------\\ Recherche de fichiers avec Catchme

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2009-08-10 23:39:31
    Windows 5.1.2600 Service Pack 3 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 0

    --------------------\\ Recherche d'autres infections


    Aucune autre infection trouvée !

    [F:66][D:23]-> C:\Temp
    [F:8][D:0]-> C:\DOCUME~1\tamara\Cookies
    [F:9][D:5]-> C:\Temp\FICHIE~1\content.IE5

    1 - "C:\Lop SD\LopR_1.txt" - 10/08/2009|23:47 - Option : [1]

    --------------------\\ Fin du rapport a 23:47:55

    Un grand merci de votre aide!
    a c 327 8 Sécurité
    10 Août 2009 23:55:39

  • Relance Lop S&D.
    (Sous Vista, il faut cliquer droit sur le raccourci Lop S&D et choisir Exécuter en tant qu'administrateur)
  • Choisis cette fois-ci l'option 2 (Suppression).
  • Ne ferme pas la fenêtre lors de la suppression !
  • Poste le rapport généré (C:\lopR.txt).

    (Si le Bureau ne réapparaît pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)
    11 Août 2009 00:52:24

    Le rapport généré est le suivant :


    --------------------\\ Lop S&D 4.2.5-0 XP/Vista

    Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
    X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU T7300 @ 2.00GHz )
    BIOS : KBC Version 71.2E
    USER : tamara ( Administrator )
    BOOT : Normal boot
    Antivirus : avast! antivirus 4.8.1335 [VPS 090810-0] 4.8.1335 (Activated)
    C:\ (Local Disk) - NTFS - Total:78 Go (Free:65 Go)
    D:\ (Local Disk) - NTFS - Total:70 Go (Free:29 Go)
    E:\ (CD or DVD)

    "C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
    Option : [2] ( 11/08/2009| 0:07 )


    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

    Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Memo Drive Vc Log\Blah Style.dat
    Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Memo Drive Vc Log
    -
    [ Fichier Hosts ] .. Restaure!

    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


    --------------------\\ Listing des dossiers dans APPLIC~1

    [19/03/2008|09:17] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
    [27/11/2007|14:48] C:\DOCUME~1\ADMINI~1\APPLIC~1\Apple Computer
    [07/04/2008|14:43] C:\DOCUME~1\ADMINI~1\APPLIC~1\CyberLink
    [16/04/2009|16:33] C:\DOCUME~1\ADMINI~1\APPLIC~1\FileZilla
    [15/11/2007|11:33] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
    [08/01/2008|17:24] C:\DOCUME~1\ADMINI~1\APPLIC~1\InstallShield
    [26/11/2007|17:44] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
    [30/04/2009|09:16] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
    [27/11/2007|09:44] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft Web Folders
    [18/03/2008|17:54] C:\DOCUME~1\ADMINI~1\APPLIC~1\Mozilla
    [20/04/2009|14:31] C:\DOCUME~1\ADMINI~1\APPLIC~1\OfficeUpdate12
    [18/03/2008|17:54] C:\DOCUME~1\ADMINI~1\APPLIC~1\OpenOffice.org2
    [27/11/2007|14:45] C:\DOCUME~1\ADMINI~1\APPLIC~1\Real
    [27/11/2007|10:43] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sun
    [18/03/2008|17:54] C:\DOCUME~1\ADMINI~1\APPLIC~1\Talkback
    [17/04/2009|10:18] C:\DOCUME~1\ADMINI~1\APPLIC~1\Thunderbird

    [28/04/2009|16:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [28/04/2009|16:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
    [31/07/2009|14:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
    [31/07/2009|21:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ciel
    [28/04/2009|16:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ConeXware
    [28/04/2009|16:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
    [28/04/2009|16:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Dell
    [29/07/2009|08:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
    [31/07/2009|15:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
    [29/07/2009|08:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LightScribe
    [31/07/2009|14:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
    [31/07/2009|17:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [28/04/2009|16:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NOS
    [10/08/2009|09:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
    [31/07/2009|14:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
    [31/07/2009|14:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Thomson.ResearchSoft.Installers
    [28/04/2009|16:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    [31/07/2009|14:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

    [28/04/2009|17:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Adobe
    [28/04/2009|17:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
    [28/04/2009|17:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\CyberLink
    [28/04/2009|17:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\FileZilla
    [28/04/2009|17:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
    [28/04/2009|17:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
    [28/04/2009|17:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
    [28/04/2009|17:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Mozilla
    [28/04/2009|17:04] C:\DOCUME~1\DEFAUL~1\APPLIC~1\OpenOffice.org
    [28/04/2009|17:04] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
    [28/04/2009|17:04] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun
    [28/04/2009|17:04] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Talkback
    [28/04/2009|17:04] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Thunderbird

    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\Adobe
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\Apple Computer
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\CyberLink
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\FileZilla
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\Identities
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\Macromedia
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\Microsoft
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\Mozilla
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\OpenOffice.org
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\Real
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\Sun
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\Talkback
    [28/04/2009|11:18] C:\DOCUME~1\DEFAUL~3\APPLIC~1\Thunderbird

    [15/11/2007|11:17] C:\DOCUME~1\DEFAUL~1.ORI\APPLIC~1\Microsoft

    [24/10/2007|10:17] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

    [28/04/2009|17:05] C:\DOCUME~1\MAXOUD~1\APPLIC~1\Adobe
    [28/04/2009|17:05] C:\DOCUME~1\MAXOUD~1\APPLIC~1\Apple Computer
    [28/04/2009|17:05] C:\DOCUME~1\MAXOUD~1\APPLIC~1\CyberLink
    [28/04/2009|17:05] C:\DOCUME~1\MAXOUD~1\APPLIC~1\FileZilla
    [28/04/2009|17:05] C:\DOCUME~1\MAXOUD~1\APPLIC~1\Identities
    [28/04/2009|17:05] C:\DOCUME~1\MAXOUD~1\APPLIC~1\Macromedia
    [08/08/2009|13:28] C:\DOCUME~1\MAXOUD~1\APPLIC~1\Microsoft
    [28/04/2009|17:05] C:\DOCUME~1\MAXOUD~1\APPLIC~1\Mozilla
    [28/04/2009|17:04] C:\DOCUME~1\MAXOUD~1\APPLIC~1\OpenOffice.org
    [28/04/2009|17:04] C:\DOCUME~1\MAXOUD~1\APPLIC~1\Real
    [28/04/2009|17:04] C:\DOCUME~1\MAXOUD~1\APPLIC~1\Sun
    [28/04/2009|17:04] C:\DOCUME~1\MAXOUD~1\APPLIC~1\Talkback
    [28/04/2009|17:04] C:\DOCUME~1\MAXOUD~1\APPLIC~1\Thunderbird

    [24/10/2007|10:17] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    [28/04/2009|17:05] C:\DOCUME~1\tamara\APPLIC~1\Adobe
    [31/07/2009|14:52] C:\DOCUME~1\tamara\APPLIC~1\Apple Computer
    [28/04/2009|17:05] C:\DOCUME~1\tamara\APPLIC~1\CyberLink
    [09/08/2009|19:17] C:\DOCUME~1\tamara\APPLIC~1\EndNote
    [28/04/2009|17:05] C:\DOCUME~1\tamara\APPLIC~1\FileZilla
    [29/07/2009|08:09] C:\DOCUME~1\tamara\APPLIC~1\hpqLog
    [28/04/2009|17:05] C:\DOCUME~1\tamara\APPLIC~1\Identities
    [29/07/2009|08:07] C:\DOCUME~1\tamara\APPLIC~1\InstallShield
    [28/04/2009|17:05] C:\DOCUME~1\tamara\APPLIC~1\Macromedia
    [31/07/2009|17:15] C:\DOCUME~1\tamara\APPLIC~1\Microsoft
    [28/04/2009|17:05] C:\DOCUME~1\tamara\APPLIC~1\Mozilla
    [28/04/2009|17:04] C:\DOCUME~1\tamara\APPLIC~1\OpenOffice.org
    [28/04/2009|17:04] C:\DOCUME~1\tamara\APPLIC~1\Real
    [28/04/2009|17:04] C:\DOCUME~1\tamara\APPLIC~1\Sun
    [28/04/2009|17:04] C:\DOCUME~1\tamara\APPLIC~1\Talkback
    [28/04/2009|17:04] C:\DOCUME~1\tamara\APPLIC~1\Thunderbird
    [31/07/2009|14:48] C:\DOCUME~1\tamara\APPLIC~1\vlc
    [29/07/2009|08:54] C:\DOCUME~1\tamara\APPLIC~1\Yahoo!

    --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

    [27/04/2009 08:42][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [10/08/2009 22:40][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [28/09/2001 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    --------------------\\ Listing des dossiers dans C:\Program Files

    [16/04/2009|16:16] C:\Program Files\Adobe
    [31/07/2009|14:34] C:\Program Files\Alwil Software
    [29/07/2009|08:48] C:\Program Files\Analog Devices
    [29/07/2009|07:33] C:\Program Files\Apoint
    [26/11/2007|17:53] C:\Program Files\Apple Software Update
    [31/07/2009|14:51] C:\Program Files\Bonjour
    [16/04/2009|16:32] C:\Program Files\CCleaner
    [31/07/2009|21:15] C:\Program Files\Ciel
    [29/07/2009|07:35] C:\Program Files\Cisco Systems
    [24/10/2007|10:10] C:\Program Files\ComPlus Applications
    [20/03/2008|16:34] C:\Program Files\CyberLink
    [09/08/2009|19:17] C:\Program Files\DIEGO
    [31/07/2009|14:57] C:\Program Files\EndNote X2
    [14/11/2007|15:18] C:\Program Files\ERUNT
    [31/07/2009|21:15] C:\Program Files\Fichiers communs
    [16/04/2009|16:32] C:\Program Files\FileZilla Client
    [29/07/2009|08:17] C:\Program Files\Fingerprint Sensor
    [31/07/2009|15:12] C:\Program Files\Free Video Converter
    [29/07/2009|08:37] C:\Program Files\Hewlett-Packard
    [29/07/2009|08:36] C:\Program Files\HP
    [29/07/2009|08:02] C:\Program Files\HP PCMCIA Smart Card Reader
    [31/07/2009|15:15] C:\Program Files\InstallShield Installation Information
    [08/01/2008|17:25] C:\Program Files\Intel
    [29/07/2009|09:08] C:\Program Files\Internet Explorer
    [31/07/2009|14:51] C:\Program Files\iPod
    [31/07/2009|14:51] C:\Program Files\iTunes
    [01/04/2009|14:39] C:\Program Files\Java
    [01/04/2009|15:07] C:\Program Files\Messenger
    [31/07/2009|17:25] C:\Program Files\Microsoft
    [24/10/2007|10:14] C:\Program Files\microsoft frontpage
    [29/07/2009|07:51] C:\Program Files\Microsoft Office
    [31/07/2009|14:44] C:\Program Files\Microsoft SQL Server Compact Edition
    [29/04/2009|15:17] C:\Program Files\Microsoft Visual Studio
    [29/07/2009|07:52] C:\Program Files\Microsoft Works
    [29/07/2009|07:51] C:\Program Files\Microsoft.NET
    [01/04/2009|15:01] C:\Program Files\Movie Maker
    [08/08/2009|15:49] C:\Program Files\Mozilla Firefox
    [28/04/2009|11:14] C:\Program Files\Mozilla Thunderbird
    [03/04/2008|18:17] C:\Program Files\MSBuild
    [27/11/2007|14:25] C:\Program Files\MSECache
    [01/04/2009|15:01] C:\Program Files\msn
    [24/10/2007|10:10] C:\Program Files\MSN Gaming Zone
    [29/07/2009|09:03] C:\Program Files\MSXML 4.0
    [03/04/2008|18:13] C:\Program Files\MSXML 6.0
    [01/04/2009|14:58] C:\Program Files\NetMeeting
    [16/04/2009|16:13] C:\Program Files\NOS
    [31/07/2009|15:31] C:\Program Files\OCS Inventory Agent
    [16/04/2009|17:03] C:\Program Files\OpenOffice.org 3
    [10/04/2008|07:51] C:\Program Files\Oracle
    [01/04/2009|14:58] C:\Program Files\Outlook Express
    [31/07/2009|15:15] C:\Program Files\PC Inspector File Recovery
    [31/07/2009|14:53] C:\Program Files\PDF
    [16/04/2009|16:36] C:\Program Files\PDFCreator
    [31/07/2009|15:02] C:\Program Files\PowerArchiver
    [27/11/2007|14:17] C:\Program Files\putty
    [31/07/2009|14:51] C:\Program Files\QuickTime
    [26/11/2007|17:50] C:\Program Files\Real
    [03/04/2008|18:17] C:\Program Files\Reference Assemblies
    [29/07/2009|08:02] C:\Program Files\SCM Microsystems driver
    [24/10/2007|10:12] C:\Program Files\Services en ligne
    [31/07/2009|14:45] C:\Program Files\Spybot - Search & Destroy
    [10/08/2009|22:22] C:\Program Files\trend micro
    [24/10/2007|10:18] C:\Program Files\Uninstall Information
    [04/04/2008|11:15] C:\Program Files\UPHClean
    [03/04/2008|18:09] C:\Program Files\USBDLM
    [31/07/2009|14:47] C:\Program Files\VideoLAN
    [31/07/2009|17:28] C:\Program Files\Windows Live
    [31/07/2009|17:24] C:\Program Files\Windows Live SkyDrive
    [01/04/2009|15:01] C:\Program Files\Windows Media Player
    [01/04/2009|14:58] C:\Program Files\Windows NT
    [24/10/2007|11:05] C:\Program Files\WindowsUpdate
    [31/07/2009|15:13] C:\Program Files\WorldOfGoo
    [24/10/2007|10:14] C:\Program Files\xerox
    [29/07/2009|08:56] C:\Program Files\Yahoo!

    --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

    [27/11/2007|11:01] C:\Program Files\Fichiers communs\Adobe
    [31/07/2009|14:49] C:\Program Files\Fichiers communs\Apple
    [31/07/2009|21:15] C:\Program Files\Fichiers communs\Ciel
    [29/07/2009|07:52] C:\Program Files\Fichiers communs\DESIGNER
    [29/07/2009|07:35] C:\Program Files\Fichiers communs\Deterministic Networks
    [10/04/2008|07:51] C:\Program Files\Fichiers communs\InstallShield
    [31/07/2009|17:24] C:\Program Files\Fichiers communs\Microsoft Shared
    [24/10/2007|10:11] C:\Program Files\Fichiers communs\MSSoap
    [24/10/2007|10:59] C:\Program Files\Fichiers communs\ODBC
    [16/04/2009|16:56] C:\Program Files\Fichiers communs\Real
    [31/07/2009|14:57] C:\Program Files\Fichiers communs\ResearchSoft
    [31/07/2009|14:57] C:\Program Files\Fichiers communs\Risxtd
    [24/10/2007|10:11] C:\Program Files\Fichiers communs\Services
    [24/10/2007|10:59] C:\Program Files\Fichiers communs\SpeechEngines
    [29/07/2009|07:49] C:\Program Files\Fichiers communs\System
    [31/07/2009|17:15] C:\Program Files\Fichiers communs\Windows Live
    [31/07/2009|14:43] C:\Program Files\Fichiers communs\WindowsLiveInstaller
    [08/08/2009|15:08] C:\Program Files\Fichiers communs\Wise Installation Wizard
    [16/04/2009|16:56] C:\Program Files\Fichiers communs\xing shared

    --------------------\\ Process

    ( 59 Processes )

    ... OK !

    --------------------\\ Recherche avec S_Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Recherche de Fichiers / Dossiers Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Verification du Registre

    ..... OK !

    --------------------\\ Verification du fichier Hosts

    Fichier Hosts PROPRE


    --------------------\\ Recherche de fichiers avec Catchme

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2009-08-11 00:39:46
    Windows 5.1.2600 Service Pack 3 NTFS
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 0

    --------------------\\ Recherche d'autres infections


    Aucune autre infection trouvée !

    [F:65][D:22]-> C:\Temp
    [F:8][D:0]-> C:\DOCUME~1\tamara\Cookies
    [F:9][D:5]-> C:\Temp\FICHIE~1\content.IE5

    1 - "C:\Lop SD\LopR_1.txt" - 10/08/2009|23:47 - Option : [1]
    2 - "C:\Lop SD\LopR_2.txt" - 11/08/2009| 0:48 - Option : [2]

    --------------------\\ Fin du rapport a 0:48:06

    Aucun soucis avec le Bureau.
    a c 327 8 Sécurité
    11 Août 2009 00:56:02

  • Télécharge Malwarebytes' Anti-Malware (MBAM) sur ton Bureau.
  • Double-clique sur le fichier téléchargé pour lancer le processus d'installation.
  • Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.
  • Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.
  • Sélectionne Exécuter un examen rapide.
  • Clique sur Rechercher. L'analyse démarre.
  • A la fin de l'analyse, un message s'affiche :
    Citation :
    L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.

  • Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
  • Ferme tes navigateurs.
  • Si des malwares ont été détectés, clique sur Afficher les résultats.
  • Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.
  • MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.
    11 Août 2009 10:32:15

    Bonjour,
    J'ai laissé tourner durant la nuit car la fatigue s'est fait sentir...
    Voici le rapport :

    Malwarebytes' Anti-Malware 1.40
    Version de la base de données: 2594
    Windows 5.1.2600 Service Pack 3

    11/08/2009 07:34:46
    mbam-log-2009-08-11 (07-34-46).txt

    Type de recherche: Examen rapide
    Eléments examinés: 112405
    Temps écoulé: 56 minute(s), 53 second(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 0
    Valeur(s) du Registre infectée(s): 0
    Elément(s) de données du Registre infecté(s): 2
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 0

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Valeur(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Elément(s) de données du Registre infecté(s):
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    (Aucun élément nuisible détecté)
    a c 327 8 Sécurité
    11 Août 2009 16:47:00

    Plus de souci ?

  • Refais un scan RSIT et poste le rapport log.
    11 Août 2009 17:34:34

    Tout d'abord un grand merci pour votre aide!

    Je trouve que mon ordinateur a encore dû mal à exécuter les différentes actions demandées...

    Voilà le rapport obtenu :

    Logfile of random's system information tool 1.06 (written by random/random)
    Run by tamara at 2009-08-11 17:15:18
    Microsoft Windows XP Professionnel Service Pack 3
    System drive C: has 67 GB (83%) free of 80 GB
    Total RAM: 1015 MB (64% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 17:23:58, on 11/08/2009
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
    C:\Program Files\OCS Inventory Agent\ocsservice.exe
    C:\Program Files\UPHClean\uphclean.exe
    C:\Program Files\USBDLM\USBDLM.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\System32\wbem\wmiapsrv.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
    C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Documents and Settings\tamara\Bureau\RSIT.exe
    C:\Program Files\Apoint\Apoint.exe
    C:\WINDOWS\system32\igfxtray.exe
    C:\WINDOWS\system32\hkcmd.exe
    C:\WINDOWS\system32\igfxpers.exe
    C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
    C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
    C:\WINDOWS\system32\igfxsrvc.exe
    C:\WINDOWS\system32\AccelerometerSt.exe
    C:\Program Files\Analog Devices\Core\smax4pnp.exe
    C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
    C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
    C:\Documents and Settings\tamara\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
    C:\Program Files\trend micro\tamara.exe
    C:\Program Files\Apoint\ApMsgFwd.exe
    C:\Program Files\Apoint\HidFind.exe
    C:\Program Files\Apoint\Apntex.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: PDF-XChange Viewer IE-Plugin - {C5D07EB6-BBCE-4DAE-ACBB-D13A8D28CB1F} - C:\Program Files\PDF\PDF Viewer\PDFXCviewIEPlugin.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
    O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
    O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
    O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
    O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
    O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
    O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
    O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\WINDOWS\system32\AccelerometerSt.exe
    O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
    O4 - HKLM\..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Startup: Notification de cadeaux MSN.lnk = C:\Documents and Settings\tamara\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe
    O4 - Global Startup: Cisco Systems VPN Client.lnk = C:\Program Files\Cisco Systems\VPN Client\vpngui.exe
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O15 - Trusted Zone: http://apogee.grenet.fr
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
    O16 - DPF: {CAFECAFE-0013-0001-0022-ABCDEFABCDEF} (JInitiator 1.3.1.22) - http://equiv.grenet.fr/forms/jinitiator/jinit.exe
    O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://wwwimages.adobe.com/www.adobe.com/products/acrob...
    O17 - HKLM\System\CCS\Services\Tcpip\..\{03C014A4-40E7-48D4-AE64-AD9959DC3E08}: Domain = univ-savoie.fr
    O17 - HKLM\System\CS1\Services\Tcpip\..\{03C014A4-40E7-48D4-AE64-AD9959DC3E08}: Domain = univ-savoie.fr
    O17 - HKLM\System\CS2\Services\Tcpip\..\{03C014A4-40E7-48D4-AE64-AD9959DC3E08}: Domain = univ-savoie.fr
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
    O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
    O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
    O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
    O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: OCS INVENTORY SERVICE (OCS INVENTORY) - http://ocsinventory.sourceforge.net - C:\Program Files\OCS Inventory Agent\ocsservice.exe
    O23 - Service: USBDLM - Uwe Sieber - www.uwe-sieber.de - C:\Program Files\USBDLM\USBDLM.exe

    --
    End of file - 10444 bytes

    ======Scheduled tasks folder======

    C:\WINDOWS\tasks\AppleSoftwareUpdate.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
    Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-09-15 1562960]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
    SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2009-04-01 320920]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C5D07EB6-BBCE-4DAE-ACBB-D13A8D28CB1F}]
    PDF-XChange Viewer IE-Plugin - C:\Program Files\PDF\PDF Viewer\PDFXCviewIEPlugin.dll [2009-07-14 1093400]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-04-01 35840]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
    JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-04-01 73728]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [2007-10-03 178712]
    "PDVDDXSrv"=C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe [2006-10-20 118784]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-04-01 148888]
    "Apoint"=C:\Program Files\Apoint\Apoint.exe [2007-01-25 159744]
    "IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2009-03-13 141336]
    "HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2009-03-13 173592]
    "Persistence"=C:\WINDOWS\system32\igfxpers.exe [2009-03-13 142360]
    "QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2009-04-15 181816]
    "hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2008-04-15 488752]
    "AccelerometerSysTrayApplet"=C:\WINDOWS\system32\AccelerometerSt.exe [2007-01-24 124928]
    "SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2007-01-05 872448]
    "SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2006-07-13 729088]
    "avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-02-05 81000]
    "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-01-31 385024]
    "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-02-19 267048]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]
    "MsnMsgr"=C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2009-02-06 3885408]

    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
    Cisco Systems VPN Client.lnk - C:\Program Files\Cisco Systems\VPN Client\vpngui.exe

    C:\Documents and Settings\tamara\Menu Démarrer\Programmes\Démarrage
    Notification de cadeaux MSN.lnk - C:\Documents and Settings\tamara\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
    C:\WINDOWS\system32\igfxdev.dll [2009-03-09 205824]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\NavLogon]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
    C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265088]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=1
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1
    "DisableCAD"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=145
    "NoWelcomeScreen"=1

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "HonorAutoRunSetting"=
    "NoDriveTypeAutoRun"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
    "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
    "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
    "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

    ======List of files/folders created in the last 1 months======

    2009-08-11 01:03:51 ----D---- C:\Documents and Settings\tamara\Application Data\Malwarebytes
    2009-08-11 01:02:45 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
    2009-08-11 01:02:40 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
    2009-08-10 23:04:05 ----A---- C:\lopR.txt
    2009-08-10 22:57:45 ----D---- C:\Lop SD
    2009-08-10 22:15:59 ----D---- C:\Program Files\trend micro
    2009-08-10 22:15:39 ----D---- C:\rsit
    2009-08-10 18:49:37 ----A---- C:\WINDOWS\ntbtlog.txt
    2009-07-31 21:15:27 ----D---- C:\Program Files\Fichiers communs\Ciel
    2009-07-31 21:15:19 ----D---- C:\Documents and Settings\All Users\Application Data\Ciel
    2009-07-31 21:15:18 ----D---- C:\Program Files\Ciel
    2009-07-31 17:25:01 ----D---- C:\Program Files\Microsoft
    2009-07-31 17:24:33 ----D---- C:\Program Files\Windows Live SkyDrive
    2009-07-31 17:15:44 ----D---- C:\Program Files\Fichiers communs\Windows Live
    2009-07-31 15:15:48 ----D---- C:\Program Files\PC Inspector File Recovery
    2009-07-31 15:13:26 ----D---- C:\Program Files\WorldOfGoo
    2009-07-31 15:12:53 ----A---- C:\WINDOWS\system32\decdll.dll
    2009-07-31 15:12:51 ----D---- C:\Program Files\Free Video Converter
    2009-07-31 15:00:43 ----D---- C:\Documents and Settings\All Users\Application Data\Lavasoft
    2009-07-31 14:58:16 ----D---- C:\Documents and Settings\tamara\Application Data\EndNote
    2009-07-31 14:57:46 ----D---- C:\Program Files\Fichiers communs\Risxtd
    2009-07-31 14:57:38 ----D---- C:\Program Files\Fichiers communs\ResearchSoft
    2009-07-31 14:56:05 ----D---- C:\Program Files\EndNote X2
    2009-07-31 14:55:46 ----D---- C:\Documents and Settings\All Users\Application Data\Thomson.ResearchSoft.Installers
    2009-07-31 14:54:51 ----D---- C:\Program Files\Fichiers communs\Wise Installation Wizard
    2009-07-31 14:53:17 ----D---- C:\Program Files\PDF
    2009-07-31 14:51:49 ----D---- C:\Program Files\iPod
    2009-07-31 14:51:44 ----D---- C:\Program Files\iTunes
    2009-07-31 14:51:26 ----D---- C:\Program Files\Bonjour
    2009-07-31 14:50:43 ----D---- C:\Program Files\QuickTime
    2009-07-31 14:49:47 ----D---- C:\Program Files\Fichiers communs\Apple
    2009-07-31 14:48:43 ----D---- C:\Documents and Settings\tamara\Application Data\vlc
    2009-07-31 14:47:18 ----D---- C:\Documents and Settings\All Users\Application Data\MailFrontier
    2009-07-31 14:47:06 ----A---- C:\WINDOWS\system32\SpOrder.dll
    2009-07-31 14:47:01 ----D---- C:\Program Files\VideoLAN
    2009-07-31 14:44:46 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
    2009-07-31 14:44:16 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
    2009-07-31 14:40:55 ----SHDC---- C:\Program Files\Fichiers communs\WindowsLiveInstaller
    2009-07-31 14:40:50 ----D---- C:\Program Files\Windows Live
    2009-07-31 14:40:37 ----D---- C:\Documents and Settings\All Users\Application Data\WLInstaller
    2009-07-31 14:34:17 ----A---- C:\WINDOWS\system32\aswBoot.exe
    2009-07-31 14:34:10 ----D---- C:\Program Files\Alwil Software
    2009-07-29 09:07:05 ----HDC---- C:\WINDOWS\$NtUninstallKB973346$
    2009-07-29 09:06:07 ----HDC---- C:\WINDOWS\$NtUninstallKB961371$
    2009-07-29 09:05:54 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
    2009-07-29 09:05:07 ----HDC---- C:\WINDOWS\ie8
    2009-07-29 09:03:33 ----D---- C:\Program Files\MSXML 4.0
    2009-07-29 09:02:30 ----D---- C:\Program Files\Mozilla Firefox
    2009-07-29 08:58:08 ----A---- C:\WINDOWS\system32\wuapi.dll.mui
    2009-07-29 08:54:45 ----D---- C:\Documents and Settings\tamara\Application Data\Yahoo!
    2009-07-29 08:54:44 ----D---- C:\Program Files\Yahoo!
    2009-07-29 08:48:32 ----N---- C:\WINDOWS\system32\wdmioctl.dll
    2009-07-29 08:48:32 ----N---- C:\WINDOWS\system32\SMMedia.dll
    2009-07-29 08:48:31 ----N---- C:\WINDOWS\system32\CleanUp.exe
    2009-07-29 08:48:31 ----A---- C:\WINDOWS\system32\DSndUp.exe
    2009-07-29 08:38:03 ----A---- C:\WINDOWS\system32\accelerometerST.exe
    2009-07-29 08:38:03 ----A---- C:\WINDOWS\system32\accelerometerdll.DLL
    2009-07-29 08:36:15 ----D---- C:\Documents and Settings\All Users\Application Data\HP
    2009-07-29 08:36:08 ----D---- C:\Program Files\HP
    2009-07-29 08:17:38 ----D---- C:\Program Files\Fingerprint Sensor
    2009-07-29 08:17:37 ----A---- C:\WINDOWS\FPDRV_Ver.dll
    2009-07-29 08:14:22 ----D---- C:\Documents and Settings\All Users\Application Data\LightScribe
    2009-07-29 08:09:05 ----D---- C:\Documents and Settings\tamara\Application Data\hpqLog
    2009-07-29 08:08:35 ----HDC---- C:\WINDOWS\$NtUninstallWdf01005$
    2009-07-29 08:07:44 ----A---- C:\WINDOWS\system32\wdfcoinstaller01005.dll
    2009-07-29 08:07:42 ----D---- C:\Program Files\Hewlett-Packard
    2009-07-29 08:07:42 ----A---- C:\WINDOWS\system32\BttnCmns.dll
    2009-07-29 08:07:42 ----A---- C:\WINDOWS\system32\BttnCmn.dll
    2009-07-29 08:07:19 ----D---- C:\Documents and Settings\tamara\Application Data\InstallShield
    2009-07-29 08:06:27 ----ASH---- C:\Documents and Settings\tamara\Application Data\desktop.ini
    2009-07-29 08:06:25 ----D---- C:\Documents and Settings\tamara\Application Data\Macromedia
    2009-07-29 08:06:25 ----D---- C:\Documents and Settings\tamara\Application Data\Identities
    2009-07-29 08:06:25 ----D---- C:\Documents and Settings\tamara\Application Data\FileZilla
    2009-07-29 08:06:25 ----D---- C:\Documents and Settings\tamara\Application Data\CyberLink
    2009-07-29 08:06:25 ----D---- C:\Documents and Settings\tamara\Application Data\Apple Computer
    2009-07-29 08:06:25 ----D---- C:\Documents and Settings\tamara\Application Data\Adobe
    2009-07-29 08:06:24 ----SD---- C:\Documents and Settings\tamara\Application Data\Microsoft
    2009-07-29 08:06:24 ----D---- C:\Documents and Settings\tamara\Application Data\Thunderbird
    2009-07-29 08:06:24 ----D---- C:\Documents and Settings\tamara\Application Data\Talkback
    2009-07-29 08:06:24 ----D---- C:\Documents and Settings\tamara\Application Data\Sun
    2009-07-29 08:06:24 ----D---- C:\Documents and Settings\tamara\Application Data\Real
    2009-07-29 08:06:24 ----D---- C:\Documents and Settings\tamara\Application Data\OpenOffice.org
    2009-07-29 08:06:24 ----D---- C:\Documents and Settings\tamara\Application Data\Mozilla
    2009-07-29 08:03:25 ----N---- C:\WINDOWS\HPModemVersion.dll
    2009-07-29 08:03:22 ----RA---- C:\WINDOWS\agrsmdel.exe
    2009-07-29 08:03:13 ----D---- C:\WINDOWS\Options
    2009-07-29 08:02:47 ----D---- C:\Program Files\HP PCMCIA Smart Card Reader
    2009-07-29 08:02:40 ----D---- C:\Program Files\SCM Microsystems driver
    2009-07-29 07:56:45 ----A---- C:\WINDOWS\system32\igxprd32.dll
    2009-07-29 07:56:44 ----A---- C:\WINDOWS\system32\igxpgd32.dll
    2009-07-29 07:56:44 ----A---- C:\WINDOWS\system32\igxpdx32.dll
    2009-07-29 07:56:44 ----A---- C:\WINDOWS\system32\igxpdv32.dll
    2009-07-29 07:56:44 ----A---- C:\WINDOWS\system32\igfxCoIn_v5043.dll
    2009-07-29 07:56:44 ----A---- C:\WINDOWS\system32\ig4icd32.dll
    2009-07-29 07:56:44 ----A---- C:\WINDOWS\system32\ig4dev32.dll
    2009-07-29 07:56:41 ----D---- C:\WINDOWS\system32\Lang
    2009-07-29 07:56:41 ----A---- C:\WINDOWS\system32\igxpun.exe
    2009-07-29 07:56:34 ----D---- C:\SWSetup
    2009-07-29 07:52:33 ----D---- C:\WINDOWS\SHELLNEW
    2009-07-29 07:52:33 ----A---- C:\WINDOWS\system32\WISPTIS.EXE
    2009-07-29 07:52:33 ----A---- C:\WINDOWS\system32\INKED.DLL
    2009-07-29 07:51:57 ----D---- C:\Program Files\Microsoft.NET
    2009-07-29 07:51:57 ----D---- C:\Program Files\Microsoft Works
    2009-07-29 07:51:07 ----D---- C:\Program Files\Fichiers communs\DESIGNER
    2009-07-29 07:37:12 ----RSHD---- C:\cmdcons
    2009-07-29 07:35:34 ----A---- C:\WINDOWS\system32\vsinit.dll
    2009-07-29 07:35:34 ----A---- C:\WINDOWS\system32\vsdata.dll
    2009-07-29 07:35:33 ----D---- C:\Program Files\Fichiers communs\Deterministic Networks
    2009-07-29 07:35:33 ----A---- C:\WINDOWS\system32\vpnapi.dll
    2009-07-29 07:33:33 ----D---- C:\Program Files\Apoint

    ======List of files/folders modified in the last 1 months======

    2009-08-11 17:19:28 ----D---- C:\Temp
    2009-08-11 17:15:25 ----D---- C:\MDT
    2009-08-11 17:10:32 ----D---- C:\WINDOWS\system32\drivers
    2009-08-11 17:07:03 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-08-11 07:38:20 ----D---- C:\WINDOWS\ERDNT
    2009-08-11 01:15:04 ----D---- C:\Program Files\OCS Inventory Agent
    2009-08-11 01:02:40 ----RD---- C:\Program Files
    2009-08-10 22:55:58 ----SHD---- C:\WINDOWS\Installer
    2009-08-10 22:46:56 ----D---- C:\WINDOWS\system32
    2009-08-10 22:46:55 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-08-10 18:49:37 ----D---- C:\WINDOWS
    2009-08-10 09:20:35 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
    2009-08-09 23:17:26 ----D---- C:\WINDOWS\Debug
    2009-08-09 19:17:39 ----D---- C:\Program Files\DIEGO
    2009-08-08 22:06:01 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-08-08 14:26:22 ----D---- C:\WINDOWS\Internet Logs
    2009-08-08 13:26:20 ----D---- C:\Documents and Settings
    2009-07-31 21:15:27 ----D---- C:\Program Files\Fichiers communs
    2009-07-31 17:28:37 ----D---- C:\WINDOWS\WinSxS
    2009-07-31 17:27:38 ----D---- C:\WINDOWS\Temp
    2009-07-31 17:27:38 ----D---- C:\WINDOWS\system32\DirectX
    2009-07-31 17:24:40 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
    2009-07-31 17:24:40 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
    2009-07-31 17:23:54 ----RSD---- C:\WINDOWS\Fonts
    2009-07-31 17:23:21 ----HD---- C:\WINDOWS\inf
    2009-07-31 16:26:15 ----D---- C:\WINDOWS\Microsoft.NET
    2009-07-31 16:26:03 ----RSD---- C:\WINDOWS\assembly
    2009-07-31 16:03:54 ----D---- C:\WINDOWS\system32\CatRoot
    2009-07-31 15:34:30 ----D---- C:\WINDOWS\system32\config
    2009-07-31 15:15:48 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-07-31 15:02:22 ----D---- C:\Program Files\PowerArchiver
    2009-07-31 14:53:01 ----SD---- C:\WINDOWS\Tasks
    2009-07-31 14:51:44 ----D---- C:\Documents and Settings\All Users\Application Data\Apple Computer
    2009-07-31 14:49:58 ----DC---- C:\WINDOWS\system32\DRVSTORE
    2009-07-31 14:45:14 ----D---- C:\Program Files\Spybot - Search & Destroy
    2009-07-31 14:36:43 ----D---- C:\WINDOWS\system32\appmgmt
    2009-07-31 14:36:34 ----D---- C:\Documents and Settings\All Users\Application Data\Symantec
    2009-07-29 09:10:33 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-07-29 09:08:45 ----D---- C:\WINDOWS\system32\fr-fr
    2009-07-29 09:08:42 ----D---- C:\WINDOWS\Media
    2009-07-29 09:08:42 ----D---- C:\WINDOWS\Help
    2009-07-29 09:08:42 ----D---- C:\Program Files\Internet Explorer
    2009-07-29 09:07:05 ----HD---- C:\WINDOWS\$hf_mig$
    2009-07-29 08:58:12 ----D---- C:\WINDOWS\SoftwareDistribution
    2009-07-29 08:57:39 ----SD---- C:\WINDOWS\Downloaded Program Files
    2009-07-29 08:48:36 ----D---- C:\WINDOWS\system
    2009-07-29 08:48:31 ----D---- C:\Program Files\Analog Devices
    2009-07-29 08:34:53 ----SHD---- C:\RECYCLER
    2009-07-29 08:03:25 ----D---- C:\WINDOWS\Driver Cache
    2009-07-29 08:00:45 ----D---- C:\WINDOWS\security
    2009-07-29 07:51:54 ----D---- C:\Program Files\Microsoft Office
    2009-07-29 07:49:39 ----D---- C:\Program Files\Fichiers communs\System
    2009-07-29 07:37:25 ----RASH---- C:\boot.ini
    2009-07-29 07:37:12 ----A---- C:\WINDOWS\UPGRADE.TXT
    2009-07-29 07:35:44 ----SHD---- C:\System Volume Information
    2009-07-29 07:35:33 ----D---- C:\Program Files\Cisco Systems
    2009-07-29 07:34:51 ----D---- C:\WINDOWS\Registration
    2009-07-29 07:33:25 ----A---- C:\WINDOWS\system.ini

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-02-05 26944]
    R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-02-05 114768]
    R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-02-05 51376]
    R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-13 40576]
    R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-13 14720]
    R1 WmiAcpi;Interface de gestion Microsoft Windows pour ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
    R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]
    R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-02-05 94032]
    R2 CVPNDRVA;Cisco Systems IPsec Driver; \??\C:\WINDOWS\system32\Drivers\CVPNDRVA.sys []
    R3 Accelerometer;Accelerometer; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2006-10-17 22016]
    R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2008-02-05 281600]
    R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2007-07-13 94976]
    R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2007-01-02 1160320]
    R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows 2000/XP/Vista; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2007-02-17 132608]
    R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
    R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-02-05 23152]
    R3 ATSWPDRV;AuthenTec TruePrint USB Driver (SwipeSensor); C:\WINDOWS\system32\DRIVERS\ATSwpDrv.sys [2007-08-28 146560]
    R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2007-06-06 161792]
    R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
    R3 DNE;Deterministic Network Enhancer Miniport; C:\WINDOWS\system32\DRIVERS\dne2000.sys [2007-01-24 127376]
    R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2006-09-19 15664]
    R3 HBtnKey;HBtnKey; C:\WINDOWS\system32\DRIVERS\cpqbttn.sys [2009-03-19 9216]
    R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
    R3 HpqKbFiltr;HpqKbFilter Driver; C:\WINDOWS\system32\DRIVERS\HpqKbFiltr.sys [2007-06-18 16768]
    R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2009-03-09 6278016]
    R3 IFXTPM;IFXTPM; C:\WINDOWS\system32\DRIVERS\IFXTPM.SYS [2008-07-23 44800]
    R3 NETw5x32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw5x32.sys [2008-06-26 3630080]
    R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
    R3 usbhub;Concentrateur USB2; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
    R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
    R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
    S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2008-11-24 47272]
    S3 CVirtA;Cisco Systems VPN Adapter; C:\WINDOWS\system32\DRIVERS\CVirtA.sys [2007-01-18 5275]
    S3 e1express;Intel(R) PRO/1000 PCI Express Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e1e5132.sys [2007-04-13 254872]
    S3 HECI;Intel(R) Management Engine Interface; C:\WINDOWS\system32\DRIVERS\HECI.sys [2007-06-12 45056]
    S3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
    S3 HP24X;HP PC Card Smart Card Reader; C:\WINDOWS\system32\DRIVERS\HP24X.sys [2006-10-19 33024]
    S3 mouhid;Pilote HID de souris; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-09-28 12288]
    S3 senfilt;senfilt; C:\WINDOWS\system32\drivers\senfilt.sys []
    S3 SenFiltService;SenFilt Service; C:\WINDOWS\system32\drivers\Senfilt.sys []
    S3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2005-03-22 260224]
    S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]
    S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
    S3 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2008-07-09 394952]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-02-18 110592]
    R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-02-05 18752]
    R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-02-05 138680]
    R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2007-07-24 229376]
    R2 CVPND;Cisco Systems, Inc. VPN Service; C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe [2007-07-16 1524512]
    R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe [2007-10-03 358936]
    R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-04-01 152984]
    R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
    R2 OCS INVENTORY;OCS INVENTORY SERVICE; C:\Program Files\OCS Inventory Agent\ocsservice.exe [2007-02-27 61440]
    R2 UPHClean;User Profile Hive Cleanup; C:\Program Files\UPHClean\uphclean.exe [2005-04-27 241725]
    R2 USBDLM;USBDLM; C:\Program Files\USBDLM\USBDLM.exe [2007-10-19 134656]
    R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-02-05 254040]
    R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-02-05 352920]
    R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-04-23 239160]
    R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2008-10-21 228656]
    R3 iPod Service;Service de l'iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-02-19 504104]
    S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
    S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
    S3 getPlus(R) Helper;getPlus(R) Helper; C:\Program Files\NOS\bin\getPlus_HelperSvc.exe [2009-03-03 33176]
    S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
    S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
    S4 NetTcpPortSharing;Service de partage de ports Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

    -----------------EOF-----------------
    a c 327 8 Sécurité
    11 Août 2009 17:38:54

    Tu souhaites conserver Avast ?
    11 Août 2009 18:18:41

    Non pas forcément, il y a un bout de temps où l'on m'a conseillé cet anti-virus, ainsi que de mettre spybot, zonealarm, mais je ne sais pas ce qui est nécessaire...
    Auriez-vous un conseil à me donner... car j'ai acheté un nouveau PC où j'ai aussi mis avast car je ne connais pas d'autre antivirus gratuit... mais j'aimerais que mon PC soit correctement protégé!
    Merci de votre aide!!
    a c 327 8 Sécurité
    11 Août 2009 18:22:54

  • Désinstalle Avast.

  • Installe AntiVir et mets-le à jour.
  • Double-clique sur l'icône d'AntiVir (Parapluie) dans la barre des tâches.
  • Dans AntiVir, choisis Outils puis Configuration.
  • Coche Mode Expert et coche Rech. Rootkit au dém. de la recherche à droite dans Autres réglages puis valide.
  • Fais un scan complet, clique sur Tout réparer si AntiVir trouve quelque chose et poste le rapport.

    Tutoriel : Scanner le(s) disque(s) dur(s)
    12 Août 2009 08:16:36

    Bonjour,
    Aprés quelques difficultés pour faire la mise à jour, j'ai réussi à faire le scan et voici le rapport :



    Avira AntiVir Personal
    Date de création du fichier de rapport : mardi 11 août 2009 20:49

    La recherche porte sur 1633055 souches de virus.

    Détenteur de la licence : Avira AntiVir Personal - FREE Antivirus
    Numéro de série : 0000149996-ADJIE-0000001
    Plateforme : Windows XP
    Version de Windows : (Service Pack 3) [5.1.2600]
    Mode Boot : Démarré normalement
    Identifiant : SYSTEM
    Nom de l'ordinateur : 6510B-TAMARA

    Informations de version :
    BUILD.DAT : 9.0.0.66 17958 Bytes 17/06/2009 14:44:00
    AVSCAN.EXE : 9.0.3.6 466689 Bytes 21/04/2009 12:20:54
    AVSCAN.DLL : 9.0.3.0 49409 Bytes 03/03/2009 09:21:02
    LUKE.DLL : 9.0.3.2 209665 Bytes 20/02/2009 10:35:11
    LUKERES.DLL : 9.0.2.0 13569 Bytes 03/03/2009 09:21:31
    ANTIVIR0.VDF : 7.1.0.0 15603712 Bytes 27/10/2008 11:30:36
    ANTIVIR1.VDF : 7.1.4.132 5707264 Bytes 24/06/2009 18:38:48
    ANTIVIR2.VDF : 7.1.5.88 2668032 Bytes 10/08/2009 18:38:52
    ANTIVIR3.VDF : 7.1.5.100 207872 Bytes 11/08/2009 18:38:52
    Version du moteur : 8.2.1.0
    AEVDF.DLL : 8.1.1.1 106868 Bytes 11/08/2009 18:39:07
    AESCRIPT.DLL : 8.1.2.24 459131 Bytes 11/08/2009 18:39:06
    AESCN.DLL : 8.1.2.4 127348 Bytes 11/08/2009 18:39:05
    AERDL.DLL : 8.1.2.4 430452 Bytes 11/08/2009 18:39:04
    AEPACK.DLL : 8.1.3.18 401783 Bytes 11/08/2009 18:39:02
    AEOFFICE.DLL : 8.1.0.38 196987 Bytes 11/08/2009 18:39:01
    AEHEUR.DLL : 8.1.0.154 1917302 Bytes 11/08/2009 18:38:59
    AEHELP.DLL : 8.1.5.3 233846 Bytes 11/08/2009 18:38:55
    AEGEN.DLL : 8.1.1.56 356725 Bytes 11/08/2009 18:38:54
    AEEMU.DLL : 8.1.0.9 393588 Bytes 09/10/2008 13:32:40
    AECORE.DLL : 8.1.7.6 184694 Bytes 11/08/2009 18:38:52
    AEBB.DLL : 8.1.0.3 53618 Bytes 09/10/2008 13:32:40
    AVWINLL.DLL : 9.0.0.3 18177 Bytes 12/12/2008 07:47:30
    AVPREF.DLL : 9.0.0.1 43777 Bytes 03/12/2008 10:39:26
    AVREP.DLL : 8.0.0.3 155905 Bytes 20/01/2009 13:34:28
    AVREG.DLL : 9.0.0.0 36609 Bytes 07/11/2008 14:24:42
    AVARKT.DLL : 9.0.0.3 292609 Bytes 24/03/2009 14:05:22
    AVEVTLOG.DLL : 9.0.0.7 167169 Bytes 30/01/2009 09:36:37
    SQLITE3.DLL : 3.6.1.0 326401 Bytes 28/01/2009 14:03:49
    SMTPLIB.DLL : 9.2.0.25 28417 Bytes 02/02/2009 07:20:57
    NETNT.DLL : 9.0.0.0 11521 Bytes 07/11/2008 14:40:59
    RCIMAGE.DLL : 9.0.0.25 2438913 Bytes 11/08/2009 18:38:41
    RCTEXT.DLL : 9.0.37.0 88321 Bytes 15/04/2009 09:07:05

    Configuration pour la recherche actuelle :
    Nom de la tâche...............................: Contrôle intégral du système
    Fichier de configuration......................: C:\Program Files\Avira\AntiVir Desktop\sysscan.avp
    Documentation.................................: bas
    Action principale.............................: interactif
    Action secondaire.............................: ignorer
    Recherche sur les secteurs d'amorçage maître..: marche
    Recherche sur les secteurs d'amorçage.........: marche
    Secteurs d'amorçage...........................: C:, D:,
    Recherche dans les programmes actifs..........: marche
    Recherche en cours sur l'enregistrement.......: marche
    Recherche de Rootkits.........................: marche
    Contrôle d'intégrité de fichiers système......: arrêt
    Fichier mode de recherche.....................: Tous les fichiers
    Recherche sur les archives....................: marche
    Limiter la profondeur de récursivité..........: 20
    Archive Smart Extensions......................: marche
    Heuristique de macrovirus.....................: marche
    Heuristique fichier...........................: moyen
    Catégories de dangers divergentes.............: +APPL,+GAME,+JOKE,+PCK,+SPR,

    Début de la recherche : mardi 11 août 2009 20:49

    La recherche d'objets cachés commence.
    '39912' objets ont été contrôlés, '0' objets cachés ont été trouvés.

    La recherche sur les processus démarrés commence :
    Processus de recherche 'avscan.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'avcenter.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'sched.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'avguard.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'avgnt.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'taskmgr.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'ApntEx.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'hidfind.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'ApMsgFwd.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'Com4QLBEx.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'iPodService.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'lsnfier.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'HpqToaster.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'msnmsgr.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'ctfmon.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'iTunesHelper.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'ashDisp.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'hpqWmiEx.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'smax4pnp.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'accelerometerST.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'igfxsrvc.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'HPWAMain.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'QLBCtrl.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'igfxpers.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'hkcmd.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'igfxtray.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'Apoint.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'jusched.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'PDVDDXSrv.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'IAAnotif.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'wmiprvse.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'wmiapsrv.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'alg.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'explorer.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'ashWebSv.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'ashMaiSv.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'USBDLM.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'uphclean.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'OcsService.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'MDM.EXE' - '1' module(s) sont contrôlés
    Processus de recherche 'jqs.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'IAANTmon.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'cvpnd.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'mDNSResponder.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'AppleMobileDeviceService.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'scardsvr.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'spoolsv.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'ashServ.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'aswUpdSv.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'lsass.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'services.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'winlogon.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'csrss.exe' - '1' module(s) sont contrôlés
    Processus de recherche 'smss.exe' - '1' module(s) sont contrôlés
    '61' processus ont été contrôlés avec '61' modules

    La recherche sur les secteurs d'amorçage maître commence :
    Secteur d'amorçage maître HD0
    [INFO] Aucun virus trouvé !

    La recherche sur les secteurs d'amorçage commence :
    Secteur d'amorçage 'C:\'
    [INFO] Aucun virus trouvé !
    Secteur d'amorçage 'D:\'
    [INFO] Aucun virus trouvé !

    La recherche sur les renvois aux fichiers exécutables (registre) commence :
    Le registre a été contrôlé ( '59' fichiers).


    La recherche sur les fichiers sélectionnés commence :

    Recherche débutant dans 'C:\' <Systeme>
    C:\pagefile.sys
    [AVERTISSEMENT] Impossible d'ouvrir le fichier !
    [REMARQUE] Ce fichier est un fichier système Windows.
    [REMARQUE] Il est correct que ce fichier ne puisse pas être ouvert pour la recherche.
    C:\System Volume Information\_restore{D48EAC5C-35CD-45C4-9F34-3BA0BF8EECDB}\RP30\A0007662.exe
    [RESULTAT] Contient le cheval de Troie TR/Dldr.Swizzor.Gen
    Recherche débutant dans 'D:\' <Donnees>

    Début de la désinfection :
    C:\System Volume Information\_restore{D48EAC5C-35CD-45C4-9F34-3BA0BF8EECDB}\RP30\A0007662.exe
    [RESULTAT] Contient le cheval de Troie TR/Dldr.Swizzor.Gen
    [REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4ab2396c.qua' !


    Fin de la recherche : mercredi 12 août 2009 05:38
    Temps nécessaire: 7:27:55 Heure(s)

    La recherche a été effectuée intégralement

    9083 Les répertoires ont été contrôlés
    343933 Des fichiers ont été contrôlés
    1 Des virus ou programmes indésirables ont été trouvés
    0 Des fichiers ont été classés comme suspects
    0 Des fichiers ont été supprimés
    0 Des virus ou programmes indésirables ont été réparés
    1 Les fichiers ont été déplacés dans la quarantaine
    0 Les fichiers ont été renommés
    1 Impossible de contrôler des fichiers
    343931 Fichiers non infectés
    10176 Les archives ont été contrôlées
    1 Avertissements
    2 Consignes
    39912 Des objets ont été contrôlés lors du Rootkitscan
    0 Des objets cachés ont été trouvés

    a c 327 8 Sécurité
    12 Août 2009 09:20:48

  • Désinstalle Java(TM) 6 Update 13.

  • Mets à jour Java.

    Plus de souci ?
    12 Août 2009 16:46:04

    J'ai bel et bien désinstaller Java(TM) 6 Update 13 mais il m'est impossible de mettre à jour Java...
    Que faire?
    a c 327 8 Sécurité
    12 Août 2009 17:00:17

    Tu as un message d'erreur ?
    12 Août 2009 17:26:46

    Tout compte fait, après un nouvel essai (en téléchargeant le fichier à installer via un autre PC), j'ai enfin pu mettre à jour Java.
    Cependant, le PC est toujours lent à répondre...
    12 Août 2009 18:13:59

    Et bien tout était comme il fallait que cela soit...
    Je vais relancer un scan antivirus...
    Qu'en pensez-vous?
    a c 327 8 Sécurité
    12 Août 2009 18:19:44

    Que ça ne servira pas à grand chose.
    12 Août 2009 18:22:13

    bon... et bien... C'est bien plus compliqué que le virus où j'avais déjà mis quelques jours à voir...
    a c 327 8 Sécurité
    12 Août 2009 18:27:03

    Ton Windows ne doit plus être très "frais".
    12 Août 2009 18:32:01

    Pourtant il a été remis à "neuf" avec la mise en place d'un nouveau disque dur, une semaine avant ce problème de virus que j'ai décellé à mon retour de vacances en allumant mon PC après une semaine où il n'a pas servi...
    a c 327 8 Sécurité
    12 Août 2009 18:37:11

    Ok, je n'avais pas très bien compris ce que tu avais expliqué dans ton premier message.
    12 Août 2009 18:40:07

    Pas de soucis.
    C'est bien pour cela que ça m'embête tellement, car je n'arrive pas à comprendre (hormis le virus) pourquoi il est dans cet état...
    a c 327 8 Sécurité
    12 Août 2009 18:42:15

    Afin d'en connaître un peu plus sur ta config', fais ce qui suit :

  • Télécharge et installe Everest Ultimate.
  • Lance-le, va dans Ordinateur puis Résumé et donne-moi le résumé. Pour prendre le résumé, utilise la fonction Rapport en haut de ton écran :



    PS : supprime ton adresse mail si elle apparaît dans le rapport.
    12 Août 2009 19:32:54

    Le rapport obtenu :

    --------[ EVEREST Ultimate Edition ]------------------------------------------------------------------------------------

    Version EVEREST v4.50.1330/fr
    Module de benchmark 2.3.224.0
    Site web http://www.lavalys.com/
    Type de rapport Rapport rapide [ TRIAL VERSION ]
    Ordinateur 6510B-TAMARA
    Générateur tamara
    Système d'exploitation Microsoft Windows XP Professional 5.1.2600 (WinXP Retail)
    Date 2009-08-12
    Heure 19:23


    --------[ Résumé ]------------------------------------------------------------------------------------------------------

    Ordinateur:
    Type de système PC multiprocesseur ACPI (Mobile)
    Système d'exploitation Microsoft Windows XP Professional
    Service Pack du système [ TRIAL VERSION ]
    Internet Explorer 8.0.6001.18702
    DirectX 4.09.00.0904 (DirectX 9.0c)
    Nom du système 6510B-TAMARA
    Nom de l'utilisateur tamara
    Domaine de connexion [ TRIAL VERSION ]
    Date / Heure 2009-08-12 / 19:23

    Carte mère:
    Type de processeur Mobile DualCore Intel Core 2 Duo T7300, 83 MHz (10 x 8)
    Nom de la carte mère Hewlett-Packard HP Compaq 6510b (GB873ET#ABF)
    Chipset de la carte mère Intel Crestline-GM GM965
    Mémoire système [ TRIAL VERSION ]
    DIMM1: Qimonda 64T128021HDL3SB 1 Go DDR2-667 DDR2 SDRAM (5-5-5-15 @ 333 MHz) (4-4-4-12 @ 266 MHz) (3-3-3-9 @ 200 MHz)
    Type de BIOS Compaq (01/15/09)
    Port de communication Port imprimante ECP (LPT1)

    Moniteur:
    Carte vidéo Mobile Intel(R) 965 Express Chipset Family (384 Mo)
    Carte vidéo Mobile Intel(R) 965 Express Chipset Family (384 Mo)
    Accélérateur 3D Intel GMA X3100
    Moniteur LG Philips LP141WX1-TLA1 [14.1" LCD]
    Moniteur LG Philips LP141WX1-TLA1 [14.1" LCD]
    Moniteur LG Philips LP141WX1-TLA1 [14.1" LCD]

    Multimédia:
    Carte audio Analog Devices AD1981HD @ Intel 82801HBM ICH8M - High Definition Audio Controller

    Stockage:
    Contrôleur IDE Intel(R) 82801HEM/HBM SATA AHCI Controller
    Contrôleur IDE Intel(R) ICH8M Ultra ATA Storage Controllers - 2850
    Disque dur Kingston DataTraveler 2.0 USB Device (3 Go, USB)
    Disque dur ST9160412AS (149 Go, IDE)
    Lecteur optique HL-DT-ST DVDRAM GSA-T20N (DVD+R9:4x, DVD-R9:4x, DVD+RW:8x/8x, DVD-RW:8x/6x, DVD-RAM:5x, DVD-ROM:8x, CD:24x/24x/24x DVD+RW/DVD-RW/DVD-RAM)
    État des disques durs SMART FAIL

    Partitions:
    C: (NTFS) [ TRIAL VERSION ]
    D: (NTFS) 72574 Mo (59245 Mo libre)
    Taille totale [ TRIAL VERSION ]

    Entrée:
    Clavier Périphérique clavier PIH
    Clavier Standard 101/102-Key or Microsoft Natural PS/2 Keyboard with HP QLB
    Souris Dell Touchpad

    Réseau:
    Adresse IP principale [ TRIAL VERSION ]
    Adresse MAC principale 00-1A-4B-63-91-63
    Carte réseau Broadcom NetLink (TM) Gigabit Ethernet (192. [ TRIAL VERSION ])
    Carte réseau Intel(R) PRO/Wireless 3945ABG Network Connection
    Modem Agere Systems HDA Modem

    Périphériques:
    Imprimante Microsoft Office Document Image Writer
    Imprimante Microsoft XPS Document Writer
    Imprimante PDFCreator
    Contrôleur FireWire Ricoh RL5C832 IEEE1394 Controller (PHY: Ricoh RL5C832)
    Contrôleur USB1 Intel 82801HBM ICH8M - USB Universal Host Controller
    Contrôleur USB1 Intel 82801HBM ICH8M - USB Universal Host Controller
    Contrôleur USB1 Intel 82801HBM ICH8M - USB Universal Host Controller
    Contrôleur USB1 Intel 82801HBM ICH8M - USB Universal Host Controller
    Contrôleur USB1 Intel 82801HBM ICH8M - USB Universal Host Controller
    Contrôleur USB2 Intel 82801HBM ICH8M - USB2 Enhanced Host Controller
    Contrôleur USB2 Intel 82801HBM ICH8M - USB2 Enhanced Host Controller
    Périphérique USB AuthenTec Inc. AES2501A
    Périphérique USB Périphérique de stockage de masse USB
    Batterie Adaptateur secteur Microsoft
    Batterie Batterie à méthode de contrôle compatible ACPI Microsoft
    Batterie Batterie à méthode de contrôle compatible ACPI Microsoft

    DMI:
    Distributeur du BIOS Hewlett-Packard
    Version du BIOS 68DDU Ver. F.15
    Fabricant du système Hewlett-Packard
    Nom du système HP Compaq 6510b (GB873ET#ABF)
    Version du système F.15
    Numéro de série du système [ TRIAL VERSION ]
    UUID du système [ TRIAL VERSION ]
    Fabricant de la carte mère Hewlett-Packard
    Nom de la carte mère 30C0
    Version de la carte mère KBC Version 71.2E
    Numéro de série de la carte mère [ TRIAL VERSION ]
    Fabricant du châssis Hewlett-Packard
    Version du châssis
    Numéro de série du châssis [ TRIAL VERSION ]
    Identifiant du châssis [ TRIAL VERSION ]
    Type du châssis Notebook


    --------[ Debug - PCI ]-------------------------------------------------------------------------------------------------

    B00 D00 F00: Intel GL960/GM965/PM965 Chipset - Memory Controller Hub

    Offset 000: 86 80 00 2A 06 00 90 20 0C 00 00 06 00 00 00 00
    Offset 010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 C0 30
    Offset 030: 00 00 00 00 E0 00 00 00 00 00 00 00 00 00 00 00
    Offset 040: 01 90 D9 FE 00 00 00 00 01 40 D9 FE 00 00 00 00
    Offset 050: 00 00 30 00 19 03 00 00 00 00 00 00 00 00 00 00
    Offset 060: 05 00 00 F8 00 00 00 00 01 80 D9 FE 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 01 10 00 00 00 00 00 00
    Offset 080: 00 00 00 E0 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 10 11 11 01 00 13 11 00 FF 03 00 00 00 1A B8 00
    Offset 0A0: 08 00 00 04 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 00 00 00 00 00 20 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 03 01 00 00
    Offset 0E0: 09 00 0A 91 28 64 00 30 04 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 90 0F 03 00 10 00 00 00

    B00 D02 F00: Intel GL960/GM965 Chipset - Graphics Controller 0

    Offset 000: 86 80 02 2A 07 00 90 00 0C 00 00 03 00 00 80 00
    Offset 010: 04 00 60 E4 00 00 00 00 0C 00 00 D0 00 00 00 00
    Offset 020: 01 40 00 00 00 00 00 00 00 00 00 00 3C 10 C0 30
    Offset 030: 00 00 00 00 90 00 00 00 00 00 00 00 10 01 00 00
    Offset 040: 00 00 00 00 48 00 00 00 09 00 0A 91 28 64 00 30
    Offset 050: 04 00 30 00 19 00 00 00 00 00 00 00 00 00 80 3F
    Offset 060: 00 00 00 00 00 00 02 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 05 D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 01 01 01 01 00 00 00 00 4D 01 00 00
    Offset 0D0: 01 00 23 00 00 00 01 01 01 01 00 94 34 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 80 00 00 00 00 00 00
    Offset 0F0: 05 02 34 07 FF 00 00 00 90 0F 03 00 00 54 7C 3F

    B00 D02 F01: Intel GL960/GM965 Chipset - Graphics Controller 1

    Offset 000: 86 80 03 2A 07 00 90 00 0C 00 80 03 00 00 80 00
    Offset 010: 04 00 70 E4 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 C0 30
    Offset 030: 00 00 00 00 D0 00 00 00 00 00 00 00 00 00 00 00
    Offset 040: 00 00 00 00 48 00 00 00 09 00 0A 91 28 64 00 30
    Offset 050: 04 00 30 00 19 00 00 00 00 00 00 00 00 00 80 3F
    Offset 060: 00 00 00 00 00 00 02 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 01 01 01 01 00 00 00 00 4D 01 00 00
    Offset 0D0: 01 00 23 00 00 00 01 01 01 01 00 94 34 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 80 00 00 00 00 00 00
    Offset 0F0: 05 02 34 07 FF 00 00 00 90 0F 03 00 00 00 00 00

    B00 D1A F00: Intel 82801HBM ICH8M - USB Universal Host Controller

    Offset 000: 86 80 34 28 05 00 80 02 03 00 03 0C 00 00 80 00
    Offset 010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 21 40 00 00 00 00 00 00 00 00 00 00 3C 10 C0 30
    Offset 030: 00 00 00 00 00 00 00 00 00 00 00 00 10 01 00 00
    Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 060: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 2F 00 00 00 00 00 00 00 00 01 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 05 00 00 00 00 00

    B00 D1A F01: Intel 82801HBM ICH8M - USB Universal Host Controller

    Offset 000: 86 80 35 28 05 00 80 02 03 00 03 0C 00 00 00 00
    Offset 010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 41 40 00 00 00 00 00 00 00 00 00 00 3C 10 C0 30
    Offset 030: 00 00 00 00 00 00 00 00 00 00 00 00 11 02 00 00
    Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 060: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 2F 00 00 00 00 00 00 00 00 01 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 05 00 00 00 00 00

    B00 D1A F07: Intel 82801HBM ICH8M - USB2 Enhanced Host Controller

    Offset 000: 86 80 3A 28 06 00 90 02 03 20 03 0C 00 00 00 00
    Offset 010: 00 00 80 E4 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 C0 30
    Offset 030: 00 00 00 00 50 00 00 00 00 00 00 00 12 03 00 00
    Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 01 58 C2 C9 00 00 00 00 0A 00 A0 20 00 00 00 00
    Offset 060: 20 20 FD 00 00 00 00 00 01 00 00 00 00 00 00 C0
    Offset 070: 00 00 C7 03 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 AA FF 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 88 85 40 00 86 0F 05 00 0A 17 02 20

    B00 D1B F00: Intel 82801HBM ICH8M - High Definition Audio Controller

    Offset 000: 86 80 4B 28 06 00 10 00 03 00 03 04 10 00 00 00
    Offset 010: 04 40 80 E4 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 C0 30
    Offset 030: 00 00 00 00 50 00 00 00 00 00 00 00 10 01 00 00
    Offset 040: 01 00 00 03 07 00 00 00 00 00 00 00 00 80 00 00
    Offset 050: 01 60 42 C8 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 060: 05 70 80 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 10 00 91 00 C0 0F 00 00 00 08 10 00 00 00 00 00
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 05 00 00 00 00 00

    B00 D1C F00: Intel 82801HBM ICH8M - PCI Express Root Port 1

    Offset 000: 86 80 3F 28 07 00 10 00 03 00 04 06 10 00 81 00
    Offset 010: 00 00 00 00 00 00 00 00 00 08 08 00 F0 00 00 20
    Offset 020: F0 FF 00 00 F1 FF 01 00 00 00 00 00 00 00 00 00
    Offset 030: 00 00 00 00 40 00 00 00 00 00 00 00 10 01 04 00
    Offset 040: 10 80 41 00 C0 8F 00 00 00 00 10 00 11 4C 11 01
    Offset 050: 00 00 01 10 60 05 10 00 00 00 40 00 00 00 00 00
    Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 05 90 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 0D A0 00 00 3C 10 C0 30 00 00 00 00 00 00 00 00
    Offset 0A0: 01 00 02 C8 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 11 88 00 00 00 00
    Offset 0E0: 00 0F C7 00 06 07 08 00 31 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 05 00 00 00 00 00

    B00 D1C F01: Intel 82801HBM ICH8M - PCI Express Root Port 2

    Offset 000: 86 80 41 28 07 00 10 00 03 00 04 06 10 00 81 00
    Offset 010: 00 00 00 00 00 00 00 00 00 10 10 00 F0 00 00 00
    Offset 020: 10 E4 10 E4 F1 FF 01 00 00 00 00 00 00 00 00 00
    Offset 030: 00 00 00 00 40 00 00 00 00 00 00 00 11 02 04 00
    Offset 040: 10 80 41 01 C0 8F 00 00 00 00 11 00 11 2C 11 02
    Offset 050: 42 00 11 30 60 08 11 00 00 00 40 01 00 00 00 00
    Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 05 90 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 0D A0 00 00 3C 10 C0 30 00 00 00 00 00 00 00 00
    Offset 0A0: 01 00 02 C8 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 11 88 00 00 00 00
    Offset 0E0: 00 0F C7 04 06 07 08 00 33 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 05 00 00 00 00 00

    B00 D1C F02: Intel 82801HBM ICH8M - PCI Express Root Port 3

    Offset 000: 86 80 43 28 07 00 10 00 03 00 04 06 10 00 81 00
    Offset 010: 00 00 00 00 00 00 00 00 00 18 18 00 F0 00 00 00
    Offset 020: 00 E4 00 E4 F1 FF 01 00 00 00 00 00 00 00 00 00
    Offset 030: 00 00 00 00 40 00 00 00 00 00 00 00 12 03 04 00
    Offset 040: 10 80 41 01 C0 8F 00 00 00 00 10 00 11 2C 11 03
    Offset 050: 42 00 11 30 60 05 18 00 09 00 40 01 00 00 00 00
    Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 05 90 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 0D A0 00 00 3C 10 C0 30 00 00 00 00 00 00 00 00
    Offset 0A0: 01 00 02 C8 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 11 C8 00 00 00 00
    Offset 0E0: 00 0F C7 00 06 07 08 00 33 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 05 00 00 00 00 00

    B00 D1C F04: Intel 82801HBM ICH8M - PCI Express Root Port 5

    Offset 000: 86 80 47 28 07 00 10 00 03 00 04 06 10 00 81 00
    Offset 010: 00 00 00 00 00 00 00 00 00 28 28 00 20 30 00 20
    Offset 020: 00 E0 F0 E3 F1 FF 01 00 00 00 00 00 00 00 00 00
    Offset 030: 00 00 00 00 40 00 00 00 00 00 00 00 10 01 04 00
    Offset 040: 10 80 41 01 C0 8F 00 00 00 00 10 00 11 4C 11 05
    Offset 050: 00 00 01 10 60 08 29 00 09 00 00 00 00 00 00 00
    Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 05 90 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 0D A0 00 00 3C 10 C0 30 00 00 00 00 00 00 00 00
    Offset 0A0: 01 00 02 C8 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 11 C8 00 00 00 00
    Offset 0E0: 00 0F C7 00 06 07 08 00 31 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 05 00 00 00 00 00

    B00 D1D F00: Intel 82801HBM ICH8M - USB Universal Host Controller

    Offset 000: 86 80 30 28 05 00 80 02 03 00 03 0C 00 00 80 00
    Offset 010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 61 40 00 00 00 00 00 00 00 00 00 00 3C 10 C0 30
    Offset 030: 00 00 00 00 00 00 00 00 00 00 00 00 14 01 00 00
    Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 060: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 2F 00 00 00 00 00 00 00 00 01 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 05 00 00 00 00 00

    B00 D1D F01: Intel 82801HBM ICH8M - USB Universal Host Controller

    Offset 000: 86 80 31 28 05 00 80 02 03 00 03 0C 00 00 00 00
    Offset 010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 81 40 00 00 00 00 00 00 00 00 00 00 3C 10 C0 30
    Offset 030: 00 00 00 00 00 00 00 00 00 00 00 00 15 02 00 00
    Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 060: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 2F 00 00 00 00 00 00 00 00 01 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 05 00 00 00 00 00

    B00 D1D F02: Intel 82801HBM ICH8M - USB Universal Host Controller

    Offset 000: 86 80 32 28 05 00 80 02 03 00 03 0C 00 00 00 00
    Offset 010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: A1 40 00 00 00 00 00 00 00 00 00 00 3C 10 C0 30
    Offset 030: 00 00 00 00 00 00 00 00 00 00 00 00 12 03 00 00
    Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 060: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 2F 00 00 00 00 00 00 00 00 01 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 05 00 00 00 00 00

    B00 D1D F07: Intel 82801HBM ICH8M - USB2 Enhanced Host Controller

    Offset 000: 86 80 36 28 06 00 90 02 03 20 03 0C 00 00 00 00
    Offset 010: 00 80 80 E4 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 C0 30
    Offset 030: 00 00 00 00 50 00 00 00 00 00 00 00 14 01 00 00
    Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 01 58 C2 C9 00 00 00 00 0A 00 A0 20 00 00 00 00
    Offset 060: 20 20 FB 00 00 00 00 00 01 00 00 00 00 00 00 C0
    Offset 070: 00 00 DF 3F 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 AA FF 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 88 85 40 00 86 0F 05 00 0A 17 02 20

    B00 D1E F00: Intel 82801HBM I/O Controller Hub 8 (ICH8M)

    Offset 000: 86 80 48 24 07 01 10 00 F3 01 04 06 00 00 01 00
    Offset 010: 00 00 00 00 00 00 00 00 00 02 03 20 F0 00 80 22
    Offset 020: 20 E4 50 E4 F1 FF 01 00 00 00 00 00 00 00 00 00
    Offset 030: 00 00 00 00 50 00 00 00 00 00 00 00 FF 00 06 00
    Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 12 00 00
    Offset 050: 0D 00 00 00 3C 10 C0 30 00 00 00 00 00 00 00 00
    Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 05 00 00 00 00 00

    B00 D1F F00: Intel 82801HBM ICH8M-DO - LPC Bridge

    Offset 000: 86 80 15 28 07 00 10 02 03 00 01 06 00 00 80 00
    Offset 010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 C0 30
    Offset 030: 00 00 00 00 E0 00 00 00 00 00 00 00 00 00 00 00
    Offset 040: 01 10 00 00 80 00 00 00 01 11 00 00 10 00 00 00
    Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 060: 80 80 80 80 92 00 00 00 80 80 80 80 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 10 00 04 3C 01 05 7C 00 00 00 00 00 00 00 00 00
    Offset 090: E9 02 04 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 24 0E 00 00 E1 00 03 00 01 1C 0A 00 00 03 00 00
    Offset 0B0: 00 00 F0 00 00 00 00 00 04 A0 62 00 00 00 00 00
    Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 33 22 11 00 67 45 00 00 00 C0 00 00 00 00 00 00
    Offset 0E0: 09 00 0C 10 20 02 4C C3 60 00 00 00 00 00 00 00
    Offset 0F0: 01 00 D9 FE 20 06 20 00 86 0F 05 00 00 00 00 00

    B00 D1F F01: Intel 82801HBM ICH8M - PATA Controller

    Offset 000: 86 80 50 28 05 00 80 02 03 8A 01 01 00 00 00 00
    Offset 010: 01 00 00 00 01 00 00 00 01 00 00 00 01 00 00 00
    Offset 020: C1 40 00 00 00 00 00 00 00 00 00 00 3C 10 C0 30
    Offset 030: 00 00 00 00 00 00 00 00 00 00 00 00 0A 01 00 00
    Offset 040: 07 A3 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 03 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 05 00 00 00 00 00

    B00 D1F F02: Intel 82801HBM ICH8M - SATA AHCI Controller

    Offset 000: 86 80 29 28 07 00 B0 02 03 01 06 01 00 00 00 00
    Offset 010: F1 13 00 00 F5 15 00 00 71 13 00 00 75 15 00 00
    Offset 020: 01 41 00 00 00 90 80 E4 00 00 00 00 3C 10 C0 30
    Offset 030: 00 00 00 00 80 00 00 00 00 00 00 00 11 02 00 00
    Offset 040: 07 A3 00 80 00 00 00 00 01 00 01 00 00 00 00 00
    Offset 050: 00 00 00 00 11 10 00 00 00 00 00 00 00 00 00 00
    Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 01 A8 03 40 08 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 05 70 04 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 40 00 03 01 80 01 00 7E 00 00 00 00 0C 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 12 00 10 00 48 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 05 00 00 00 00 00

    B00 D1F F03: Intel 82801HBM ICH8M - SMBus Controller

    Offset 000: 86 80 3E 28 01 00 80 02 03 00 05 0C 00 00 00 00
    Offset 010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 01 12 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 030: 00 00 00 00 00 00 00 00 00 00 00 00 00 03 00 00
    Offset 040: 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 060: 03 04 04 00 00 00 08 08 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 04 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 05 00 00 00 00 00

    B02 D04 F00: Ricoh RL5C476 CardBus Controller

    Offset 000: 80 11 76 04 07 00 10 02 B6 00 07 06 00 40 82 00
    Offset 010: 00 00 20 E4 DC 00 00 02 02 03 03 00 00 F0 EF FF
    Offset 020: 00 F0 EF FF 00 00 00 F4 00 F0 FF F7 00 FF 00 00
    Offset 030: FC FF 00 00 00 FE 00 00 FC FE 00 00 10 01 80 04
    Offset 040: 3C 10 C0 30 01 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 01 00 A0 30 00 00 00 00 63 04 63 04 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 08 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 BB 00 30 00 00 00 00 00 00
    Offset 0C0: 3C 10 C0 30 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 01 00 0A FE
    Offset 0E0: 00 40 C0 24 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

    B02 D04 F01: Ricoh RL5C832 IEEE1394 Controller

    Offset 000: 80 11 32 08 06 00 10 02 02 10 00 0C 10 40 80 00
    Offset 010: 00 10 20 E4 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 C0 30
    Offset 030: 00 00 00 00 DC 00 00 00 00 00 00 00 11 02 02 04
    Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 80 16 00 00 00 00 00 20 00 00 66 66 32 12
    Offset 090: 48 60 66 10 00 00 02 00 03 80 00 00 00 01 18 00
    Offset 0A0: 00 00 00 00 00 00 00 00 20 00 00 00 3C 10 C0 30
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 02 04
    Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 01 00 02 FE
    Offset 0E0: 00 C0 00 48 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

    B10 D00 F00: Intel PRO/Wireless 3945ABG Network Adapter

    Offset 000: 86 80 22 42 06 00 10 00 02 00 80 02 10 00 00 00
    Offset 010: 00 00 10 E4 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 5C 13
    Offset 030: 00 00 00 00 C8 00 00 00 00 00 00 00 11 01 00 00
    Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 00 00 00 00 01 D0 22 C8 00 00 00 0D
    Offset 0D0: 05 E0 80 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 0E0: 10 00 11 00 C0 0E 00 00 10 08 1B 00 11 1C 07 00
    Offset 0F0: 42 01 11 10 00 00 00 00 00 00 00 00 00 00 00 00

    B18 D00 F00: Broadcom NetLink BCM5787M PCI-E Gigabit Ethernet Controller

    Offset 000: E4 14 93 16 06 00 10 00 02 00 00 02 10 00 00 00
    Offset 010: 04 00 00 E4 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 3C 10 C0 30
    Offset 030: 00 00 00 00 48 00 00 00 00 00 00 00 12 01 00 00
    Offset 040: 00 00 00 00 00 00 00 00 01 50 03 C0 08 20 00 64
    Offset 050: 03 58 FC 00 62 04 3C C2 09 E8 78 00 01 F3 DF 1F
    Offset 060: 00 00 00 00 00 00 00 00 98 02 02 B0 00 00 1B 76
    Offset 070: 92 10 00 00 C0 00 00 06 2C 00 00 00 08 02 00 00
    Offset 080: 3C 10 C0 30 00 00 00 00 34 00 13 04 82 40 08 04
    Offset 090: 29 02 00 01 00 00 00 00 00 00 00 00 D5 00 00 00
    Offset 0A0: 00 00 00 00 0D 00 00 00 00 00 00 00 80 00 00 00
    Offset 0B0: 00 00 00 00 00 00 00 69 00 00 00 00 00 00 00 00
    Offset 0C0: 00 00 00 00 00 80 00 00 0E 00 00 00 00 00 00 00
    Offset 0D0: 10 00 01 00 A0 8F 28 00 00 50 10 00 11 6C 07 00
    Offset 0E0: 42 01 11 10 00 00 00 00 05 D0 80 00 B8 07 89 02
    Offset 0F0: 51 FE 09 E0 3A 9F 00 00 00 00 00 00 00 00 00 00

    PCI-8086-2A00: Intel i965M/ME MCHBAR

    Offset C00: 42 43 00 00 01 01 01 01 00 80 00 00 00 00 00 01
    Offset C10: 00 00 00 00 31 00 90 34 00 00 00 00 00 00 00 00
    Offset C20: 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset C30: 00 00 00 00 00 00 00 00 94 11 5C 12 00 00 00 00
    Offset C40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset C50: 01 01 01 01 00 00 00 00 00 00 00 00 00 00 00 00
    Offset C60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset C70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset C80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset C90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset CA0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset CB0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset CC0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset CD0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset CE0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset CF0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

    PCI-8086-2A00: Intel i965M/ME MCHBAR

    Offset 1000: 72 00 93 00 00 04 75 00 75 00 00 00 00 75 75 00
    Offset 1010: 17 22 00 80 00 00 00 00 FD 00 00 00 99 FD 00 00
    Offset 1020: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 1030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 1040: 7F 00 01 00 00 00 FF 00 FF 00 00 40 40 00 00 00
    Offset 1050: 00 00 00 80 00 00 00 00 80 00 00 00 99 80 00 00
    Offset 1060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 1070: 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 1080: 0E 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 1090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 10A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 10B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 10C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 10D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 10E0: 01 01 01 01 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 10F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

    PCI-8086-2A00: Intel i965M/ME MCHBAR

    Offset 1200: 10 00 20 00 20 00 20 00 33 00 00 00 03 00 00 00
    Offset 1210: 41 08 B1 34 63 84 E0 11 50 10 22 22 82 62 04 01
    Offset 1220: 64 30 4E 41 42 40 C6 62 00 68 00 00 00 00 00 00
    Offset 1230: 0A 02 00 40 00 18 0C 91 00 10 00 0C 00 00 00 00

    PCI-8086-2A00: Intel i965M/ME MCHBAR

    Offset 1300: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
    Offset 1310: 41 08 B1 34 63 84 E0 11 50 10 22 22 02 61 04 01
    Offset 1320: 64 30 4E 41 22 40 C6 62 00 68 00 00 00 00 00 00
    Offset 1330: 0A 02 00 40 00 18 0F 00 00 10 00 0F 00 00 00 00


    --------[ Debug - Video BIOS ]------------------------------------------------------------------------------------------

    C000:0000 U.w...000000000000,".E!.@...00IBM VGA Compatible BIOS. .Z.j.x...
    C000:0040 PCIR...*................................t.............\.........
    C000:0080 ...................................d......d......d.....0d......d
    C000:00C0 ......d......d......d.....0d......d.....0d......d......d......d.
    C000:0100 .....d.....0d......d......d.....0$......$......d.......... ....`
    C000:0140 ".......N... ....@............ ...88.......... .1X. (.........V.
    C000:0180 .1X. .P.......... .0X. @........d..@A.&0..6.......... A. 0.`..
    C000:01C0 .......$.`A.(00`........0*..Q.*@0p.........4..Q.*@...........=..
    C000:0200 Q.0@@.........H?@0b.2@@..........O@0b.2@@..........Y@0b.2@@.....
    C000:0240 ....h[..r.<P...........t..r.<P..........0.6..2.l..4....8....:...
    C000:0280 .<.D..A.6..C.l..E....I....K....M.D..P 6..R l..T ...X ...Z ...\ D
    C000:02C0 ..`....a....b ...c....d....e ...f....g....h ...i....j....k ...l.
    C000:0300 ...m....n ...o....p....q .......................................
    C000:0340 ........................................................For Eval
    C000:0380 uation Use Only....(........c-'(.+..............................
    C000:03C0 ...................(........c-'(.+..............................


    --------[ Debug - Unknown ]---------------------------------------------------------------------------------------------

    HDD ST9160412AS


    ------------------------------------------------------------------------------------------------------------------------

    The names of actual companies and products mentioned herein may be the trademarks of their respective owners.
    a c 327 8 Sécurité
    12 Août 2009 19:35:58

    Ok, ce PC était sous Vista avant ?

    As-tu fait une défragmentation ?
    12 Août 2009 19:57:39

    Oui j'ai acheté ce PC avec Vista mais le PC ramait tellement, que je suis passée sous XP. Après mon problème de disque dur, on m'a donc réinstallé XP.

    Je lance de suite une défragmentation...
    12 Août 2009 22:04:47

    J'ai fait une défragmentation, il me disait d'ailleurs qu'il était nécessaire de le faire sur le disque C.
    L'ordinateur rame un peu moins.
    Ce qui est étrange c'est que la souris se déplace rapidement mais lorsqu'il s'agit de lancer un programme, celui-ci met du temps à s'ouvrir, mais par contre, il est capable une fois lancé de faire par exemple une analyse rapidement et d'autres fois il a plus de mal à la lancer...
    C'est assez étrange...
    a c 327 8 Sécurité
    14 Août 2009 13:38:58

    Ton ancien disque dur a grillé ?
    14 Août 2009 14:18:24

    Bah il fonctionnait encore un peu... Il était très lent! A priori, il ressortait qu'il n'avait aucun problème (après je ne sais quel test) mais on m'a dit que c'était effectivement ça! C'est pour cela que je l'ai changé et que la personne m'a réinstallé ce nouveau disque dur interne. L'ordinateur fonctionnait alors très bien et tournait rapidement, ce qui n'est plus le cas.
    L'ancien disque dur a été gardé pour pièce de dépannage...
    a c 327 8 Sécurité
    14 Août 2009 14:22:59

    Tu devrais tester ton ancien disque dur sur un autre PC pour voir si ça venait vraiment du disque dur.
    14 Août 2009 14:27:36

    D'accord, il me faut donc le récupérer, merci du conseil!
    Merci beaucoup de ton aide qui me fut précieuse!
    Je te souhaite une agréable journée.
    a c 327 8 Sécurité
    14 Août 2009 14:28:53

    Tiens-moi au courant ;) 
    14 Août 2009 14:31:22

    Pas de soucis, je le ferai!
    Encore merci :) 
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS