Il y a actuellement 67 visiteurs
Samedi 20 Octobre 2018
accueilactualitésdossierscomparer les prixtélécharger gratuitement vos logicielsoffres d'emploiforum informatique
Connexion
Créer un compte

Mon Pc de bureau trés trés lent

Un ordinateur qui ralentit, des écrans publicitaires qui apparaissent, des applications qui refusent de démarrer ou encore votre navigateur qui s'obstine à ouvrir une page douteuse sont autant d'éléments qui indiquent que l'intégrité de votre ordinateur est menacée par un virus. Vous trouverez dans ce forum quelques conseils et logiciels pour surfer tranquillement.
Règles du forum
Pour afficher un rapport d'analyse ou un rapport d'infection (HijackThis, OTL, AdwCleaner etc...)‎, veuillez utiliser le système de fichiers joints interne au forum. Seuls les formats les .txt et .log de moins de 1Mo sont acceptés. Pour obtenir de l'aide pour insérer vos fichiers joints, veuillez consulter ce tutoriel

Mon Pc de bureau trés trés lent

Message le 09 Aoû 2010 17:35

  • salut, a tous bon ben voila j'ai un pc de bureau qui doit avec 5ans avec xp il est devenue trés long et je ne peut faire que une tache sinon il rame, je doit avoir pas mal de saloperie dedans. des fois j'ai mémoire virtuelle insufisante, et aussi un script qui plante je doit dire si je le laisse continue ou l'arrêter. 1 semaine avant il allais un peut plus vite depuis une semaine il en repos :wink:

voici mon rapport hyjackthis que j'ai récupéré du pc de xp:

Code: Tout sélectionner
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:48:57, on 09/08/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACService.exe
C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
C:\WINDOWS\System32\drivers\CDAC11BA.EXE
C:\WINDOWS\system32\cisvc.exe
C:\Program Files\Fichiers communs\EPSON\EBAPI\eEBSVC.exe
C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\Program Files\Securitoo\av_fw\fswsclds.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\PixArt\PAC207\Monitor.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\System32\hphmon05.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Securitoo\av_fw\backweb\1044199\Program\BackWeb-1044199.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE
C:\Program Files\HP\Digital Imaging\Unload\hpqcmon.exe
C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files\Fichiers communs\ACD Systems\FR\DevDetect.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\PRESAR~1\Presario\XPHWWRP4\plugin\bin\PCHButton.exe
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Documents and Settings\mumu\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jucheck.exe
C:\WINDOWS\system32\cidaemon.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe
C:\Documents and Settings\mumu\Bureau\Sniffle.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.wanadoo.fr/go/page_recherche/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-qfr10.hpwis.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Shareware.Pro-FR Toolbar - {280b5d37-4a76-467a-b3d6-942fca90acde} - C:\Program Files\Shareware.Pro-FR\tbSha1.dll
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Shareware.Pro-FR Toolbar - {280b5d37-4a76-467a-b3d6-942fca90acde} - C:\Program Files\Shareware.Pro-FR\tbSha1.dll
O2 - BHO: (no name) - {35A90E6E-F638-290D-8B24-5C6C5FAF804A} - C:\DOCUME~1\mumu\APPLIC~1\WEBIDL~1\litepop.exe (file missing)
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\ievkbd.dll
O2 - BHO: Click-to-Call BHO - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Windows Live\Messenger\wlchtc.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - (no file)
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Shareware.Pro-FR Toolbar - {280b5d37-4a76-467a-b3d6-942fca90acde} - C:\Program Files\Shareware.Pro-FR\tbSha1.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [ISUSPM] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe" -scheduler
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [OPTENET_GUI] C:\PROGRA~1\CONTRO~1\bin\optgui.exe
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [Monitor] C:\WINDOWS\PixArt\PAC207\Monitor.exe
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [EPSON Stylus CX3200] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P19 "EPSON Stylus CX3200" /O6 "USB001" /M "Stylus CX3200"
O4 - HKLM\..\Run: [dqegth] c:\windows\system32\dqegth.exe dqegth
O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [CamMonitor] c:\Program Files\HP\Digital Imaging\Unload\hpqcmon.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [Device Detector] DevDetect.exe -autorun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [about creative] C:\DOCUME~1\mumu\APPLIC~1\MEDIAN~1\BONEACTIVEBIND.exe
O4 - HKCU\..\Run: [VoipStunt] "c:\program files\voipstunt.com\voipstunt\voipstunt.exe" -nosplash -minimized
O4 - HKCU\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe
O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook
O4 - HKCU\..\Run: [Nero PhotoShow Media Manager] C:\PROGRA~1\Nero\NEROPH~1\data\Xtras\mssysmgr.exe
O4 - HKCU\..\Run: [BlazeServoTool] "C:\Program Files\BlazeVideo\BlazeDVD 5 Professional\MediaDetector.exe"
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Acme.PCHButton] C:\PROGRA~1\PRESAR~1\Presario\XPHWWRP4\plugin\bin\PCHButton.exe
O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - Startup: Notification de cadeaux MSN.lnk = C:\Documents and Settings\mumu\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Icône AOL.lnk = C:\Program Files\AOL 7.0\aoltray.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Liens de téléchargement avec Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm
O9 - Extra button: Clavier &virtuel - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll
O9 - Extra button: Analyse des &liens - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: www.team-racing59.forumactif.com
O15 - Trusted Zone: http://teamnevo.free.fr
O15 - Trusted Zone: www.google.fr
O15 - Trusted Zone: www.orange.fr
O16 - DPF: RaptisoftGameLoader - http://www.miniclip.com/hamsterball/raptisoftgameloader.cab
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {01347765-1965-426B-91A4-AA6BB342B9A3} (InstallerObj Class) - http://videohd.m6.fr.ipercast.net/installer-hidden.cab
O16 - DPF: {04CCFF26-7D52-4E42-BF6A-F8ECE0896EB7} - http://scripts.downloadv3.com/binaries/EGDAccess/EGDACCESS_1071_XP.cab
O16 - DPF: {07C9CFC7-DE33-4A0C-9FFB-CDFBA843B157} - http://akamai.downloadv3.com/binaries/EGDAccess/EGDACCESS_1063_XP.cab
O16 - DPF: {0835BC90-6ABC-4F52-A103-4FC3A61F2C33} (A18X Control) - http://www.albatross18.com/season2/cabs/A18X.ocx
O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} (InstallerObj Class) - http://www.1-click.com/common/files/installer2.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab50997.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {2A3DFC59-8A87-49A1-85D1-42903410911F} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1058_XP.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/installs/yinst0401.cab
O16 - DPF: {39EA2F6F-3F50-4F58-9C63-4B3D53B0926E} - http://scripts.downloadv3.com/binaries/P2EClient/EGAUTH_1049_FR_XP.cab
O16 - DPF: {3DAD912E-D2B9-4323-B7C9-7F2C5CC0C57B} - http://scripts.downloadv3.com/binaries/EGDAccess/EGDACCESS_1070_XP.cab
O16 - DPF: {3FE16C08-D6A7-4133-84FC-D5BFB4F7D886} (WebGameLoader Class) - http://www.miniclip.com/ricochet/ReflexiveWebGameLoader.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {6AA85413-165C-4200-8154-71166077B22E} - http://scripts.downloadv3.com/binaries/IA/sysiasvc32_FR_XP.cab
O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} (GSDACtl Class) - http://launch.gamespyarcade.com/software/launch/alaunch.cab
O16 - DPF: {87C1805D-C5AE-4455-AB39-E245BB516136} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1059_XP.cab
O16 - DPF: {88D758A3-D33B-45FD-91E3-67749B4057FA} - http://dm.screensavers.com/dm/installers/si/1/sinstaller.cab
O16 - DPF: {8B3B8135-9DAA-40E7-8941-962795F9C1CB} - http://scripts.downloadv3.com/binaries/IA/syswbsvc32_FR_XP.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {95460ABD-946A-46FF-9F56-268718323EEE} - http://scripts.downloadv3.com/binaries/EGDAccess/EGDACCESS_1068_XP.cab
O16 - DPF: {A13516A3-BE86-4517-813C-B5FF0C8ACDF3} (Toontown Installer ActiveX Control French) - http://idownload.french.toontown.com/sv1.5.8.12/ttinst-french.cab
O16 - DPF: {B2B0AEDF-7CDF-4792-BB67-7654AD1E1B13} - http://scripts.downloadv3.com/binaries/IA/sysinetsvc32_FR_XP.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab50997.cab
O16 - DPF: {BB47CA33-8B4D-11D0-9511-00C04FD9152D} (ExteriorSurround Object) - http://autos.msn.com/components/ocx/exterior/Outside.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game16.zylom.m6game.m6.fr/activex/zylomgamesplayer.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {C45B1500-7B63-47C2-AB25-C28CB46AFDEE} (Media Bar) - http://sib1.od2.com/common/musicmanager/installation/MusicManagerPlugin.CAB
O16 - DPF: {CB5D474E-A510-40A4-B5A4-838933BCBA64} - http://es6-scripts.dlv4.com/binaries/egaccess4/egaccess4_1065_XP.cab
O16 - DPF: {CD995117-98E5-4169-9920-6C12D4C0B548} (HGPlugin9USA Class) - http://gamedownload.ijjimax.com/gamedownload/dist/hgstart/HGPlugin9USA.cab
O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} (Zylom Loader Object) - http://eu.download.games.yahoo.com/zylom/activex/zylomloader.cab
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} (Virtools WebPlayer Class) - http://a532.g.akamai.net/f/532/6712/5m/virtools.download.akamai.com/6712/player/install3.5/installer.exe
O16 - DPF: {D719897A-B07A-4C0C-AEA9-9B663A28DFCB} - http://ax.phobos.apple.com.edgesuite.net/detection/ITDetector.cab
O16 - DPF: {D8B94E9A-A34B-4253-BF48-C7CB7F2CFDB0} - http://scripts.downloadv3.com/binaries/P2EClient/EGAUTH_1046_FR_XP.cab
O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object) - http://wanadoofr.oberon-media.com/online2/diner_dash/DinerDash.1.0.0.58.cab
O16 - DPF: {DD583921-A9E9-4FBF-9266-8DC2AB5EA0AF} (HGPlugin10USA Class) - http://gamedownload.ijjimax.com/gamedownload/dist/hgstart/HGPlugin10USA.cab
O16 - DPF: {E1342154-4889-42B5-BEF6-19237577048F} (OberongamesLoader Object) - http://jeuxentelechargement.orange.fr/online2/rocket_mania/Oberongamesloader.cab
O16 - DPF: {E1D20694-74D9-472D-AF03-08C26173A67F} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1063_em_XP.cab
O16 - DPF: {E24E8472-89B7-479F-8AD8-BBD7206A6A02} - http://scripts.downloadv3.com/binaries/EGDAccess/EGDACCESS_1067_XP.cab
O16 - DPF: {EFB23983-5803-4914-ADA3-C0EA2CFBDC37} - http://scripts.downloadv3.com/binaries/EGDAccess/EGDACCESS_1072_XP.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O16 - DPF: {F99973C8-43E7-48C4-9EF3-131B67301321} - http://scripts.dlv4.com/binaries/egaccess4/egaccess4_1065_em_XP.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{79B611BC-5434-4D95-9D3C-BA5D1904A414}: NameServer = 80.10.246.2,80.10.246.129
O17 - HKLM\System\CCS\Services\Tcpip\..\{82A4366F-2837-4BFD-90DD-BCAADF5CD384}: NameServer = 80.10.246.2,80.10.246.129
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: AMON - Unknown owner - C:\Documents and Settings\mumu\Bureau\ESET_NOD32_Anti-Virus_v.2.7.16_Portable_Edition_\ESET NOD32 Anti-Virus v.2.7.16 Portable Edition!\NOD32\antivrus\amon.sys (file missing)
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe
O23 - Service: Securitoo AntiVirus Firewall (BackWeb Client - 1044199) - Unknown owner - C:\PROGRA~1\SECURI~1\av_fw\backweb\1044199\Program\SERVIC~1.EXE
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE
O23 - Service: EpsonBidirectionalService - Unknown owner - C:\Program Files\Fichiers communs\EPSON\EBAPI\eEBSVC.exe
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
O23 - Service: F-Secure Gatekeeper Handler Starter - Unknown owner - C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe (file missing)
O23 - Service: F-Secure Authentication Agent (FSAA) - Unknown owner - C:\Program Files\Securitoo\av_fw\Common\FSAA.EXE (file missing)
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe
O23 - Service: F-Secure Distributed Firewall Daemon (FSDFWD) - Unknown owner - C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe (file missing)
O23 - Service: F-Secure Management Agent (FSMA) - Unknown owner - C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE (file missing)
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: F-Secure Windows Security Center Legacy Detection Service (Fswsclds) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\fswsclds.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Unknown owner - C:\Documents and Settings\mumu\Bureau\ESET_NOD32_Anti-Virus_v.2.7.16_Portable_Edition_\ESET NOD32 Anti-Virus v.2.7.16 Portable Edition!\NOD32\antivrus\nod32krn.exe (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O24 - Desktop Component 0: (no name) - http://tikoufr.free.fr/images/voitures/cars_opel_corsa%20tuning.jpg
O24 - Desktop Component 1: (no name) - http://staticns.ankama.com/ankamaaccount/www/img/dofus/mail/mail_confirmation_dinscription_01.jpg

--
End of file - 19897 bytes


jespére avoir été assez clair :wink:
Image
paradoxal
Sous Expert(e)
Sous Expert(e)
 
Messages: 97
Inscription: 15 Juil 2010 18:29
 


Re: Mon Pc de bureau trés trés lent

Message le 09 Aoû 2010 17:40

Salut ton pc est bien infecter / beaucoup de choses inutile ;)

/!\-Ne pas Cliquer sur les liens /!\

  • Lance -> Hijackthis -> Coches les cases a gauches ci-dessous

O2 - BHO: (no name) - {35A90E6E-F638-290D-8B24-5C6C5FAF804A} - C:\DOCUME~1\mumu\APPLIC~1\WEBIDL~1\litepop.exe (file missing)
O4 - HKLM\..\Run: [dqegth] c:\windows\system32\dqegth.exe dqegth => Infection MagicControl
O4 - HKCU\..\Run: [about creative] C:\DOCUME~1\mumu\APPLIC~1\MEDIAN~1\BONEACTIVEBIND.exe => Infection LOP
O16 - DPF: {04CCFF26-7D52-4E42-BF6A-F8ECE0896EB7} - http://scripts.downloadv3.com/binaries/ ... 071_XP.cab => Infection MagicControl
O16 - DPF: {07C9CFC7-DE33-4A0C-9FFB-CDFBA843B157} - http://akamai.downloadv3.com/binaries/E ... 063_XP.cab => Infection FakeAlert (EGDAccess.Adw)
O16 - DPF: {3DAD912E-D2B9-4323-B7C9-7F2C5CC0C57B} - http://scripts.downloadv3.com/binaries/ ... 070_XP.cab => Infection MagicControl
O16 - DPF: {88D758A3-D33B-45FD-91E3-67749B4057FA} - http://dm.screensavers.com/dm/installer ... taller.cab => Infection Diverse (IESPYADS Restricted Site)
O16 - DPF: {CB5D474E-A510-40A4-B5A4-838933BCBA64} - http://es6-scripts.dlv4.com/binaries/eg ... 065_XP.cab



O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: (no name) - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - (no file)
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE => Realtek®PilotesAC97.Spy
O16 - DPF: {2A3DFC59-8A87-49A1-85D1-42903410911F} - http://scripts.dlv4.com/binaries/egacce ... 058_XP.cab
O16 - DPF: {39EA2F6F-3F50-4F58-9C63-4B3D53B0926E} - http://scripts.downloadv3.com/binaries/ ... _FR_XP.cab
O16 - DPF: {6AA85413-165C-4200-8154-71166077B22E} - http://scripts.downloadv3.com/binaries/ ... _FR_XP.cab
O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} (GSDACtl Class) - http://launch.gamespyarcade.com/softwar ... launch.cab
O16 - DPF: {87C1805D-C5AE-4455-AB39-E245BB516136} - http://scripts.dlv4.com/binaries/egacce ... 059_XP.cab
O16 - DPF: {95460ABD-946A-46FF-9F56-268718323EEE} - http://scripts.downloadv3.com/binaries/ ... 068_XP.cab
O16 - DPF: {B2B0AEDF-7CDF-4792-BB67-7654AD1E1B13} - http://scripts.downloadv3.com/binaries/ ... _FR_XP.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game16.zylom.m6game.m6.fr/active ... player.cab => Zylom Games Player Online
O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} (Zylom Loader Object) - http://eu.download.games.yahoo.com/zylo ... loader.cab
O16 - DPF: {D8B94E9A-A34B-4253-BF48-C7CB7F2CFDB0} - http://scripts.downloadv3.com/binaries/ ... _FR_XP.cab
O16 - DPF: {E1D20694-74D9-472D-AF03-08C26173A67F} - http://scripts.dlv4.com/binaries/egacce ... _em_XP.cab
O16 - DPF: {E24E8472-89B7-479F-8AD8-BBD7206A6A02} - http://scripts.downloadv3.com/binaries/ ... 067_XP.cab
O16 - DPF: {EFB23983-5803-4914-ADA3-C0EA2CFBDC37} - http://scripts.downloadv3.com/binaries/ ... 072_XP.cab
O16 - DPF: {F99973C8-43E7-48C4-9EF3-131B67301321} - http://scripts.dlv4.com/binaries/egacce ... _em_XP.cab
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe => Boonty®Boonty Games


R3 - URLSearchHook: Shareware.Pro-FR Toolbar - {280b5d37-4a76-467a-b3d6-942fca90acde} - C:\Program Files\Shareware.Pro-FR\tbSha1.dll => Shareware.Pro-FR Toolbar
O2 - BHO: Shareware.Pro-FR Toolbar - {280b5d37-4a76-467a-b3d6-942fca90acde} - C:\Program Files\Shareware.Pro-FR\tbSha1.dll => Shareware.Pro-FR Toolbar
O3 - Toolbar: Shareware.Pro-FR Toolbar - {280b5d37-4a76-467a-b3d6-942fca90acde} - C:\Program Files\Shareware.Pro-FR\tbSha1.dll => Shareware.Pro-FR Toolbar


O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" => Adobe®Reader
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime => Apple®Quick Time
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect => NVidia®nView
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe => Ahead®Nero Burning Rom
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe => Microsoft®Windows CTF Loader
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe => Google®Toolbar
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') => Microsoft®Windows NT
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') => Microsoft®Windows NT
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE => Microsoft®Office


Tu a deux Antivirus sur ton PC ; pense a supprimer Securytoo ;)

Une fois toutes ses cases cocher clique sur " Fix Checked " est redémarre ton PC ;)


@ ++
Fabienne buffart 1969-2011 // Je t'aime Maman <3
Un Ange partit trop tôt...
Avatar de l'utilisateur
Del-crosseur
Expert(e)
Expert(e)
 
Messages: 1832
Inscription: 08 Juin 2009 07:46
Localisation: Nord-(59)
 

Re: Mon Pc de bureau trés trés lent

Message le 16 Aoû 2010 16:58

salut,aprés avoir décoché les ligne avec hyjackthis,puis apres avoir passer adware systeme car,je voudrais faire une analyse avec OTL mais je ne trouve pas le lien de ce logiciel pouvais vous me le donner, je pourrais ainsi poster mon rapport.

mon pc est plus rapide au démarrage mais long pour lancer firefox.des fois l'ecran se figue je doit attendre un long moment pour pouvoir l'utiliser. j'ai également le texte que j'écrit qui s'affiche un petit moment aprés avoir taper un nom,ca le fait pas toujours,

voila j'attend votre réponse :wink:
Image
paradoxal
Sous Expert(e)
Sous Expert(e)
 
Messages: 97
Inscription: 15 Juil 2010 18:29
 

Re: Mon Pc de bureau trés trés lent

Message le 16 Aoû 2010 17:11

Bonjour

tu peux mettre ton rapport OTL ici s'il prends trop de place.

http://www.cijoint.fr/index.php

par contre le fait de valider les lignes n'ont pas supprimer les intrus.

Fait plutot ceci et après seulement mets ton nouveau rapport OTL. fait après les deux demandes ce dessous

1-Télécharge Navilog1 :
http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe
Enregistrer la cible (du lien) sous... et enregistre-le sur ton bureau.

Fais un clic-droit sur le Navilog1.exe présent sur ton bureau et choisis :
"Exécuter en tant qu'administrateur". C'est impératif : "Pour Vista et Seven seulement"

Au menu principal, Fais le choix "1"
Laisse toi guider et patiente.
De nouveau choisis 1
Patiente jusqu'au message :
*** Analyse Termine le ..... ***
Appuie sur une touche le blocnote va s'ouvrir.

Copie-colle l'intégralité du rapport dans ta réponse.
Referme le blocnote.
Note : Il sera enregistré sous C:\cleannavi.txt


2-Télécharger LopS&D.exe sur ton Bureau
Tuto

• Double-clique dessus pour lancer l'installation

• Puis double-clique sur le raccourci Lop S&D présent sur ton bureau Image

• Sélectionne la langue souhaitée, puis choisis l'Option 2

• Patiente jusqu'à la fin du scan

• Poste le rapport généré (C:\lopR.txt)
Image
Avatar de l'utilisateur
bernard53
PC-Infopraticien
PC-Infopraticien
 
Messages: 12244
Inscription: 08 Déc 2009 20:51
 

Re: Mon Pc de bureau trés trés lent

Message le 16 Aoû 2010 19:15

je voudrais bien métre mon rapport mais pas OTL, pourrais tu me le donner
Image
paradoxal
Sous Expert(e)
Sous Expert(e)
 
Messages: 97
Inscription: 15 Juil 2010 18:29
 

Message le 16 Aoû 2010 19:20

Bonjour,

il se trouve ici : http://oldtimer.geekstogo.com/OTL.exe

Bonne continuation.
Avatar de l'utilisateur
Skynet
Moderateur
Moderateur
 
Messages: 14806
Inscription: 19 Juil 2007 22:12
 

Re:

Message le 16 Aoû 2010 19:51

Skynet a écrit:Bonjour,

il se trouve ici : http://oldtimer.geekstogo.com/OTL.exe

Bonne continuation.


Autant pour moi, merci Skynet :wink:
Image
Avatar de l'utilisateur
bernard53
PC-Infopraticien
PC-Infopraticien
 
Messages: 12244
Inscription: 08 Déc 2009 20:51
 

Re: Mon Pc de bureau trés trés lent

Message le 16 Aoû 2010 22:11

Voici mon rapport OTL :wink:

Code: Tout sélectionner
OTL logfile created on: 16/08/2010 21:08:24 - Run 1
OTL by OldTimer - Version 3.2.10.0     Folder = C:\Documents and Settings\mumu\Mes documents\Téléchargements
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
 
247,00 Mb Total Physical Memory | 50,00 Mb Available Physical Memory | 20,00% Memory free
869,00 Mb Paging File | 486,00 Mb Available in Paging File | 56,00% Paging File free
Paging file location(s): C:\pagefile.sys 372 744 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 70,45 Gb Total Space | 32,94 Gb Free Space | 46,76% Space Free | Partition Type: NTFS
Drive D: | 4,06 Gb Total Space | 0,57 Gb Free Space | 14,08% Space Free | Partition Type: FAT32
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: NOM-0OJXQHMBKUV
Current User Name: mumu
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2010/08/16 21:07:25 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\mumu\Mes documents\Téléchargements\OTL.exe
PRC - [2010/07/25 18:51:14 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009/12/07 13:38:14 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\mumu\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe
PRC - [2009/10/20 19:39:28 | 000,340,456 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe
PRC - [2009/10/20 19:34:38 | 000,207,376 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtblfs.exe
PRC - [2009/04/02 19:05:22 | 000,102,400 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
PRC - [2009/03/31 10:39:36 | 000,233,472 | ---- | M] (Teruten) -- C:\WINDOWS\system32\FsUsbExService.Exe
PRC - [2008/04/17 14:14:00 | 000,102,712 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACService.exe
PRC - [2008/04/17 14:14:00 | 000,098,616 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACDaemon.exe
PRC - [2008/04/14 04:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007/03/30 07:51:18 | 000,288,296 | ---- | M] (ACD Systems, Ltd.) -- C:\Program Files\Fichiers communs\ACD Systems\FR\DevDetect.exe
PRC - [2006/11/03 11:01:16 | 000,319,488 | ---- | M] (PixArt Imaging Incorporation) -- C:\WINDOWS\PixArt\PAC207\Monitor.exe
PRC - [2006/06/28 15:01:17 | 000,045,056 | ---- | M] (F-Secure Corporation) -- C:\Program Files\Securitoo\av_fw\fswsclds.exe
PRC - [2005/09/28 14:41:38 | 000,213,053 | ---- | M] (F-Secure Corp.) -- C:\Program Files\Securitoo\av_fw\backweb\1044199\Program\fsbwsys.exe
PRC - [2005/09/28 14:41:34 | 000,016,384 | ---- | M] () -- C:\Program Files\Securitoo\av_fw\backweb\1044199\Program\ServiceWrapper-1044199.exe
PRC - [2005/09/28 14:41:34 | 000,016,384 | ---- | M] () -- C:\Program Files\Securitoo\av_fw\backweb\1044199\Program\backWeb-1044199.exe
PRC - [2005/01/23 13:00:49 | 000,054,784 | ---- | M] (Macrovision) -- C:\WINDOWS\system32\drivers\CDAC11BA.EXE
PRC - [2003/05/23 03:56:42 | 000,483,328 | ---- | M] (Hewlett-Packard) -- C:\WINDOWS\system32\hphmon05.exe
PRC - [2003/01/02 01:27:08 | 000,159,744 | ---- | M] (Motive Communications, Inc.) -- C:\Program Files\Presario PC Help\Presario\XPHWWRP4\plugin\bin\PCHButton.exe
PRC - [2002/10/07 08:23:20 | 000,090,112 | ---- | M] () -- C:\Program Files\HP\Digital Imaging\Unload\HpqCmon.exe
PRC - [2002/07/17 02:03:00 | 000,094,208 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
PRC - [2002/07/01 05:05:00 | 000,074,752 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\E_S10IC2.EXE
PRC - [2002/01/29 13:33:14 | 000,077,824 | ---- | M] () -- C:\Program Files\Fichiers communs\EPSON\EBAPI\eEBSvc.exe
PRC - [2001/12/12 18:34:10 | 000,065,536 | ---- | M] (America Online, Inc.) -- C:\WINDOWS\wanmpsvc.exe
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - [2010/08/16 21:07:25 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\mumu\Mes documents\Téléchargements\OTL.exe
MOD - [2008/04/14 04:32:02 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2006/05/03 22:53:54 | 000,174,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\framedyn.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [On_Demand | Stopped] -- C:\Documents and Settings\mumu\Bureau\ESET_NOD32_Anti-Virus_v.2.7.16_Portable_Edition_\ESET NOD32 Anti-Virus v.2.7.16 Portable Edition!\NOD32\antivrus\nod32krn.exe -- (NOD32krn)
SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)
SRV - File not found [Auto | Stopped] -- C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE -- (FSMA)
SRV - File not found [Auto | Stopped] -- C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe -- (F-Secure Gatekeeper Handler Starter)
SRV - File not found [On_Demand | Stopped] -- C:\Program Files\Securitoo\av_fw\DFW\Program\fsdfwd.exe -- (FSDFWD)
SRV - File not found [Auto | Stopped] -- C:\Program Files\Securitoo\av_fw\Common\FSAA.EXE -- (FSAA)
SRV - File not found [On_Demand | Stopped] -- C:\WINDOWS\System32\appmgmts.dll -- (AppMgmt)
SRV - File not found [On_Demand | Stopped] -- C:\Documents and Settings\mumu\Bureau\ESET_NOD32_Anti-Virus_v.2.7.16_Portable_Edition_\ESET NOD32 Anti-Virus v.2.7.16 Portable Edition!\NOD32\antivrus\amon.sys -- (AMON)
SRV - [2009/10/20 19:39:28 | 000,340,456 | ---- | M] (Kaspersky Lab) [Auto | Running] -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe -- (AVP)
SRV - [2009/03/31 10:39:36 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2008/04/17 14:14:00 | 000,102,712 | ---- | M] (ArcSoft Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon)
SRV - [2008/04/07 10:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2006/06/28 15:01:17 | 000,045,056 | ---- | M] (F-Secure Corporation) [Auto | Running] -- C:\Program Files\Securitoo\av_fw\fswsclds.exe -- (Fswsclds)
SRV - [2005/09/28 14:41:38 | 000,213,053 | ---- | M] (F-Secure Corp.) [Auto | Running] -- C:\Program Files\Securitoo\av_fw\backweb\1044199\program\fsbwsys.exe -- (fsbwsys)
SRV - [2005/09/28 14:41:34 | 000,016,384 | ---- | M] () [Auto | Running] -- C:\Program Files\Securitoo\av_fw\backweb\1044199\Program\ServiceWrapper-1044199.exe -- (BackWeb Client - 1044199)
SRV - [2005/06/07 14:04:45 | 000,069,120 | ---- | M] (BOONTY) [Disabled | Stopped] -- C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe -- (Boonty Games)
SRV - [2005/04/04 01:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2005/01/23 13:00:49 | 000,054,784 | ---- | M] (Macrovision) [Auto | Running] -- C:\WINDOWS\system32\drivers\CDAC11BA.EXE -- (C-DillaCdaC11BA)
SRV - [2002/07/17 02:03:00 | 000,094,208 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe -- (EPSONStatusAgent2)
SRV - [2002/01/29 13:33:14 | 000,077,824 | ---- | M] () [Auto | Running] -- C:\Program Files\Fichiers communs\EPSON\EBAPI\eEBSvc.exe -- (EpsonBidirectionalService)
SRV - [2001/12/12 18:34:10 | 000,065,536 | ---- | M] (America Online, Inc.) [Auto | Running] -- C:\WINDOWS\wanmpsvc.exe -- (WANMiniportService) WAN Miniport (ATW)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\XTrapD12.sys -- (XTrapD12)
DRV - File not found [Kernel | Auto | Stopped] -- C:\Program Files\Securitoo\av_fw\Common\FSPM.SYS -- (FSpm)
DRV - File not found [Kernel | Auto | Stopped] -- C:\Program Files\Securitoo\av_fw\Anti-Virus\Win2K\FSrec.sys -- (F-Secure Recognizer)
DRV - File not found [Kernel | Auto | Stopped] -- C:\Program Files\Securitoo\av_fw\Anti-Virus\Win2K\FSgk.sys -- (F-Secure Gatekeeper)
DRV - File not found [Kernel | Auto | Stopped] -- C:\Program Files\Securitoo\av_fw\Anti-Virus\Win2K\FSfilter.sys -- (F-Secure Filter)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\CoachVid.sys -- (CoachVid)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\CoachUsb.sys -- (CoachUsb)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DRIVERS\CoachAud.sys -- (CoachAud)
DRV - [2010/08/09 15:08:11 | 000,315,408 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\klif.sys -- (KLIF)
DRV - [2009/10/14 20:18:34 | 000,036,880 | ---- | M] (Kaspersky Lab) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\klbg.sys -- (klbg)
DRV - [2009/10/02 18:39:44 | 000,019,472 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klmouflt.sys -- (klmouflt)
DRV - [2009/09/14 13:42:46 | 000,032,272 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klim5.sys -- (klim5)
DRV - [2009/09/01 14:29:50 | 000,128,016 | ---- | M] (Kaspersky Lab) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\kl1.sys -- (kl1)
DRV - [2009/03/31 10:39:36 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2009/03/20 11:01:26 | 000,121,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdm.sys -- (ss_bmdm)
DRV - [2009/03/20 11:01:26 | 000,090,112 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM)
DRV - [2009/03/20 11:01:26 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter)
DRV - [2008/12/21 12:08:32 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2008/04/13 20:46:20 | 000,038,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\avc.sys -- (Avc)
DRV - [2007/09/17 16:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2007/05/29 13:30:38 | 000,508,160 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PFC027.SYS -- (PAC207)
DRV - [2007/05/02 11:12:36 | 000,109,704 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssm_mdm.sys -- (ssm_mdm)
DRV - [2007/05/02 11:12:36 | 000,015,112 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssm_mdfl.sys -- (ssm_mdfl)
DRV - [2007/05/02 11:12:34 | 000,083,592 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssm_bus.sys -- (ssm_bus) SAMSUNG Mobile USB Device II 1.0 driver (WDM)
DRV - [2007/04/21 16:15:42 | 000,009,344 | ---- | M] (Hajo Krabbenhöft) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tenCapture.sys -- (tenCapture)
DRV - [2006/11/10 15:05:00 | 000,018,688 | ---- | M] (Arcsoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\afc.sys -- (Afc)
DRV - [2005/11/03 16:40:07 | 000,063,488 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfvfs02.sys -- (sfvfs02) StarForce Protection VFS Driver (version 2.x)
DRV - [2005/08/10 14:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2005/05/16 15:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2004/10/31 22:01:45 | 000,012,464 | ---- | M] (Macrovision Europe Ltd) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\CdaC15BA.SYS -- (CdaC15BA)
DRV - [2004/08/20 00:53:40 | 000,701,440 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2004/08/04 07:29:54 | 001,897,408 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2003/12/08 12:53:48 | 000,053,600 | ---- | M] (THOMSON) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\alcan5wn.sys -- (alcan5wn) SpeedTouch USB ADSL PPP Networking Driver (NDISWAN)
DRV - [2003/12/08 12:53:46 | 000,070,688 | ---- | M] (THOMSON) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\alcaudsl.sys -- (alcaudsl)
DRV - [2003/10/16 02:19:26 | 000,788,300 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2003/09/24 14:41:54 | 000,070,016 | ---- | M] (F-Secure Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\fsdfw.sys -- (FSDFW)
DRV - [2003/09/19 15:47:24 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
DRV - [2003/07/02 12:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\viaagp1.sys -- (viaagp1)
DRV - [2003/05/22 00:33:30 | 000,196,352 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWBS2.sys -- (HSFHWBS2)
DRV - [2003/05/22 00:32:32 | 000,631,296 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2003/05/22 00:31:22 | 001,063,040 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DP.sys -- (HSF_DP)
DRV - [2003/05/06 16:34:56 | 000,394,752 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sisgrp.sys -- (SiS315)
DRV - [2003/04/11 09:51:30 | 000,010,624 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\srvkp.sys -- (SiSkp)
DRV - [2003/02/20 17:18:36 | 000,036,608 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\SISAGPX.sys -- (SISAGP)
DRV - [2003/01/02 00:23:51 | 000,043,488 | ---- | M] (Oak Technology Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\AFS2K.SYS -- (AFS2K)
DRV - [2002/10/04 18:04:10 | 000,046,976 | ---- | M] (Realtek Semiconductor Corporation       ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\R8139n51.sys -- (rtl8139)
DRV - [2002/07/29 23:43:50 | 000,023,808 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\PS2.sys -- (Ps2)
DRV - [2001/09/27 11:58:20 | 000,028,396 | ---- | M] (America Online, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wanatw4.sys -- (wanatw) WAN Miniport (ATW)
DRV - [2001/08/18 04:11:06 | 000,066,591 | ---- | M] (3Com Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\el90xbc5.sys -- (EL90XBC)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = localhost
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultenginename: "Live Search"
FF - prefs.js..browser.search.defaulturl: "http://search.live.com/results.aspx?FORM=IEFM1&q="
FF - prefs.js..browser.search.order.1: "Yahoo"
FF - prefs.js..browser.search.param.yahoo-fr: "megaup"
FF - prefs.js..browser.search.param.yahoo-fr-cjkt: "megaup"
FF - prefs.js..browser.search.selectedEngine: "Bing"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.orange.fr/"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {9c51bd27-6ed8-4000-a2bf-36cb95c0c947}:10.1.0
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:1.6.5.200812101546
FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:9.0.0.736
FF - prefs.js..keyword.URL: "http://www.bing.com/search?mkt=fr-FR&form=MIMWA5&q="
FF - prefs.js..network.proxy.backup.ftp: "localhost"
FF - prefs.js..network.proxy.backup.ftp_port: 80
FF - prefs.js..network.proxy.backup.gopher: "localhost"
FF - prefs.js..network.proxy.backup.gopher_port: 80
FF - prefs.js..network.proxy.backup.socks: "localhost"
FF - prefs.js..network.proxy.backup.socks_port: 80
FF - prefs.js..network.proxy.backup.ssl: "localhost"
FF - prefs.js..network.proxy.backup.ssl_port: 80
FF - prefs.js..network.proxy.ftp: "localhost"
FF - prefs.js..network.proxy.ftp_port: 80
FF - prefs.js..network.proxy.gopher: "localhost"
FF - prefs.js..network.proxy.gopher_port: 80
FF - prefs.js..network.proxy.http: "localhost"
FF - prefs.js..network.proxy.http_port: 80
FF - prefs.js..network.proxy.share_proxy_settings: true
FF - prefs.js..network.proxy.socks: "localhost"
FF - prefs.js..network.proxy.socks_port: 80
FF - prefs.js..network.proxy.ssl: "localhost"
FF - prefs.js..network.proxy.ssl_port: 80
 
 
FF - HKLM\software\mozilla\Mozilla Firefox 3.1b1\extensions\\Components: C:\Program Files\Mozilla Firefox 3.1 Beta 1\components [2008/12/06 14:31:22 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.1b1\extensions\\Plugins: C:\Program Files\Mozilla Firefox 3.1 Beta 1\plugins [2008/12/06 14:31:18 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/07/28 18:15:28 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/08/12 19:03:53 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
 
[2008/07/16 11:53:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mumu\Application Data\Mozilla\Extensions
[2010/08/16 19:09:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mumu\Application Data\Mozilla\Firefox\Profiles\hcgnf59t.default\extensions
[2009/09/02 08:53:29 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\mumu\Application Data\Mozilla\Firefox\Profiles\hcgnf59t.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/07/09 10:25:31 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Documents and Settings\mumu\Application Data\Mozilla\Firefox\Profiles\hcgnf59t.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2008/02/17 01:34:33 | 000,000,000 | ---D | M] (Mega Manager Integration) -- C:\Documents and Settings\mumu\Application Data\Mozilla\Firefox\Profiles\hcgnf59t.default\extensions\{40a1f5d7-afc2-498f-b264-02668d616ff6}
[2009/05/08 16:38:31 | 000,000,000 | ---D | M] (FoxyTunes) -- C:\Documents and Settings\mumu\Application Data\Mozilla\Firefox\Profiles\hcgnf59t.default\extensions\{463F6CA5-EE3C-4be1-B7E6-7FEE11953374}
[2009/04/24 18:22:23 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\mumu\Application Data\Mozilla\Firefox\Profiles\hcgnf59t.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2009/07/26 14:08:08 | 000,000,000 | ---D | M] (ReloadEvery) -- C:\Documents and Settings\mumu\Application Data\Mozilla\Firefox\Profiles\hcgnf59t.default\extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}
[2008/02/16 00:01:24 | 000,000,000 | ---D | M] (Megaupload Toolbar) -- C:\Documents and Settings\mumu\Application Data\Mozilla\Firefox\Profiles\hcgnf59t.default\extensions\{991A772A-BA13-4c1d-A9EF-F897F31DEC7D}
[2008/12/05 22:03:52 | 000,000,000 | ---D | M] (Tamper Data) -- C:\Documents and Settings\mumu\Application Data\Mozilla\Firefox\Profiles\hcgnf59t.default\extensions\{9c51bd27-6ed8-4000-a2bf-36cb95c0c947}
[2009/05/19 16:43:56 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\mumu\Application Data\Mozilla\Firefox\Profiles\hcgnf59t.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2009/04/24 18:22:09 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Documents and Settings\mumu\Application Data\Mozilla\Firefox\Profiles\hcgnf59t.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2008/02/23 01:22:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mumu\Application Data\Mozilla\Firefox\Profiles\hcgnf59t.default\extensions\pbreak.br@gmail.com
[2010/03/12 00:16:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\mumu\Application Data\Mozilla\Firefox\Profiles\hcgnf59t.default\extensions\personas@christopher.beard
[2010/06/03 11:22:18 | 000,002,650 | ---- | M] () -- C:\Documents and Settings\mumu\Application Data\Mozilla\Firefox\Profiles\hcgnf59t.default\searchplugins\bing.xml
[2010/06/10 23:58:47 | 000,012,845 | ---- | M] () -- C:\Documents and Settings\mumu\Application Data\Mozilla\Firefox\Profiles\hcgnf59t.default\searchplugins\dilandau.xml
[2008/01/21 21:50:54 | 000,001,711 | ---- | M] () -- C:\Documents and Settings\mumu\Application Data\Mozilla\Firefox\Profiles\hcgnf59t.default\searchplugins\livecom.xml
[2010/08/16 19:09:50 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2008/01/21 21:50:01 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2010/08/09 15:33:36 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
[2010/03/25 01:41:10 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml
[2010/03/25 01:41:10 | 000,001,822 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml
[2010/03/25 01:41:10 | 000,000,757 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml
[2010/03/25 01:41:10 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml
[2010/03/25 01:41:10 | 000,000,956 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml
 
O1 HOSTS File: ([2008/04/02 16:42:23 | 000,222,270 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: 127.0.0.1 bin.errorprotector.com ## added by CiD
O1 - Hosts: 127.0.0.1 br.errorsafe.com ## added by CiD
O1 - Hosts: 127.0.0.1 br.winantivirus.com ## added by CiD
O1 - Hosts: 127.0.0.1 br.winfixer.com ## added by CiD
O1 - Hosts: 127.0.0.1 cdn.drivecleaner.com ## added by CiD
O1 - Hosts: 127.0.0.1 cdn.errorsafe.com ## added by CiD
O1 - Hosts: 127.0.0.1 cdn.winsoftware.com ## added by CiD
O1 - Hosts: 127.0.0.1 de.errorsafe.com ## added by CiD
O1 - Hosts: 127.0.0.1 de.winantivirus.com ## added by CiD
O1 - Hosts: 127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
O1 - Hosts: 127.0.0.1 download.cdn.errorsafe.com ## added by CiD
O1 - Hosts: 127.0.0.1 download.cdn.winsoftware.com ## added by CiD
O1 - Hosts: 127.0.0.1 download.errorsafe.com ## added by CiD
O1 - Hosts: 127.0.0.1 download.systemdoctor.com ## added by CiD
O1 - Hosts: 127.0.0.1 download.winantispyware.com ## added by CiD
O1 - Hosts: 127.0.0.1 download.windrivecleaner.com ## added by CiD
O1 - Hosts: 127.0.0.1 download.winfixer.com ## added by CiD
O1 - Hosts: 127.0.0.1 drivecleaner.com ## added by CiD
O1 - Hosts: 127.0.0.1 dynamique.drivecleaner.com ## added by CiD
O1 - Hosts: 127.0.0.1 errorprotector.com ## added by CiD
O1 - Hosts: 127.0.0.1 errorsafe.com ## added by CiD
O1 - Hosts: 127.0.0.1 es.winantivirus.com ## added by CiD
O1 - Hosts: 127.0.0.1 fr.winantivirus.com ## added by CiD
O1 - Hosts: 127.0.0.1 fr.winfixer.com ## added by CiD
O1 - Hosts: 7752 more lines...
O2 - BHO: (Aide pour le lien d'Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\ievkbd.dll (Kaspersky Lab)
O2 - BHO: (Click-to-Call BHO) - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Windows Live\Messenger\wlchtc.dll (Microsoft Corporation)
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll (Google Inc.)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll (Kaspersky Lab)
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {280B5D37-4A76-467A-B3D6-942FCA90ACDE} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found.
O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe (Kaspersky Lab)
O4 - HKLM..\Run: [CamMonitor] c:\Program Files\HP\Digital Imaging\Unload\HpqCmon.exe ()
O4 - HKLM..\Run: [Device Detector]  File not found
O4 - HKLM..\Run: [EPSON Stylus CX3200] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [HPHmon05] C:\WINDOWS\system32\hphmon05.exe (Hewlett-Packard)
O4 - HKLM..\Run: [Monitor] C:\WINDOWS\PixArt\PAC207\Monitor.exe (PixArt Imaging Incorporation)
O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [Recguard] C:\WINDOWS\SMINST\Recguard.exe ()
O4 - HKLM..\Run: [VTTimer]  File not found
O4 - HKCU..\Run: [Acme.PCHButton] C:\Program Files\Presario PC Help\Presario\XPHWWRP4\plugin\bin\PCHButton.exe (Motive Communications, Inc.)
O4 - HKCU..\Run: [Advanced SystemCare 3] C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe (IObit)
O4 - HKCU..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKCU..\Run: [NVIEW] C:\WINDOWS\System32\nview.dll (NVIDIA Corporation)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Icône AOL.lnk = C:\Program Files\AOL 7.0\aoltray.exe File not found
O4 - Startup: C:\Documents and Settings\mumu\Menu Démarrer\Programmes\Démarrage\Notification de cadeaux MSN.lnk = C:\Documents and Settings\mumu\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe (Microsoft Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O9 - Extra Button: Clavier &virtuel - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll (Kaspersky Lab)
O9 - Extra Button: Analyse des &liens - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll (Kaspersky Lab)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab (Checkers Class)
O16 - DPF: {01347765-1965-426B-91A4-AA6BB342B9A3} http://videohd.m6.fr.ipercast.net/installer-hidden.cab (InstallerObj Class)
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://www.apple.com/qtactivex/qtplugin.cab (Reg Error: Value error.)
O16 - DPF: {0835BC90-6ABC-4F52-A103-4FC3A61F2C33} http://www.albatross18.com/season2/cabs/A18X.ocx (A18X Control)
O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} http://www.1-click.com/common/files/installer2.cab (InstallerObj Class)
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab50997.cab (MessengerStatsClient Class)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab (Checkers Class)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab (Minesweeper Flags Class)
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} http://us.dl1.yimg.com/download.yahoo.com/dl/installs/yinst0401.cab (YInstStarter Class)
O16 - DPF: {3FE16C08-D6A7-4133-84FC-D5BFB4F7D886} http://www.miniclip.com/ricochet/ReflexiveWebGameLoader.cab (WebGameLoader Class)
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab (Solitaire Showdown Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab (MessengerStatsClient Class)
O16 - DPF: {A13516A3-BE86-4517-813C-B5FF0C8ACDF3} http://idownload.french.toontown.com/sv1.5.8.12/ttinst-french.cab (Toontown Installer ActiveX Control French)
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab (MsnMessengerSetupDownloadControl Class)
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} http://messenger.zone.msn.com/binary/ZIntro.cab50997.cab (ZoneIntro Class)
O16 - DPF: {BB47CA33-8B4D-11D0-9511-00C04FD9152D} http://autos.msn.com/components/ocx/exterior/Outside.cab (ExteriorSurround Object)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {C45B1500-7B63-47C2-AB25-C28CB46AFDEE} http://sib1.od2.com/common/musicmanager/installation/MusicManagerPlugin.CAB (Media Bar)
O16 - DPF: {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_02-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_08-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_09-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_11-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CD995117-98E5-4169-9920-6C12D4C0B548} http://gamedownload.ijjimax.com/gamedownload/dist/hgstart/HGPlugin9USA.cab (HGPlugin9USA Class)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} http://a532.g.akamai.net/f/532/6712/5m/virtools.download.akamai.com/6712/player/install3.5/installer.exe (Virtools WebPlayer Class)
O16 - DPF: {D719897A-B07A-4C0C-AEA9-9B663A28DFCB} http://ax.phobos.apple.com.edgesuite.net/detection/ITDetector.cab (Reg Error: Value error.)
O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} http://wanadoofr.oberon-media.com/online2/diner_dash/DinerDash.1.0.0.58.cab (CPlayFirstDinerDashControl Object)
O16 - DPF: {DD583921-A9E9-4FBF-9266-8DC2AB5EA0AF} http://gamedownload.ijjimax.com/gamedownload/dist/hgstart/HGPlugin10USA.cab (HGPlugin10USA Class)
O16 - DPF: {E1342154-4889-42B5-BEF6-19237577048F} http://jeuxentelechargement.orange.fr/online2/rocket_mania/Oberongamesloader.cab (OberongamesLoader Object)
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab (Minesweeper Flags Class)
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab (Solitaire Showdown Class)
O16 - DPF: RaptisoftGameLoader http://www.miniclip.com/hamsterball/raptisoftgameloader.cab (Reg Error: Key error.)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\mzvkbd3.dll (Kaspersky Lab)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxsrvc.dll - C:\WINDOWS\System32\igfxsrvc.dll (Intel Corporation)
O20 - Winlogon\Notify\klogon: DllName - C:\WINDOWS\system32\klogon.dll - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab)
O24 - Desktop Components:0 () - http://tikoufr.free.fr/images/voitures/cars_opel_corsa%20tuning.jpg
O24 - Desktop Components:1 () - http://staticns.ankama.com/ankamaaccount/www/img/dofus/mail/mail_confirmation_dinscription_01.jpg
O24 - Desktop Components:2 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\mumu\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\mumu\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O29 - HKLM SecurityProviders - (msnsspc.dll) -  File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2003/01/01 23:11:10 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2001/07/27 21:07:38 | 000,000,000 | -HS- | M] () - D:\AUTOEXEC.BAT -- [ FAT32 ]
O33 - MountPoints2\{65b45fc4-a4b7-11dc-b07e-00038a000015}\Shell - "" = AutoRun
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O34 - HKLM BootExecute: (stera) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2010/08/16 20:07:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2010/08/15 21:34:29 | 000,000,000 | ---D | C] -- C:\c00533a2877c747134
[2010/08/12 16:28:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\mumu\Application Data\IObit
[2010/08/12 16:28:42 | 000,000,000 | ---D | C] -- C:\Program Files\IObit
[2010/08/10 16:31:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\mumu\Bureau\backups
[2010/08/09 16:22:15 | 000,000,000 | ---D | C] -- C:\c96edfd7502d2de2368c
[2010/08/09 15:16:16 | 000,000,000 | ---D | C] -- C:\Program Files\Kaspersky Lab
[2010/08/09 15:16:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
[2010/08/09 15:08:11 | 000,315,408 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys
[2010/08/09 14:55:56 | 000,401,720 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\mumu\Bureau\Sniffle.exe
[2010/08/09 14:55:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\mumu\Bureau\600J_Crack_Kaspersky_2010_( IS - AV )_By_XeNON_+_KAV2010
[2003/09/22 04:00:00 | 000,077,508 | ---- | C] (Jordan Russell) -- C:\Program Files\Fichiers communs\unins000.exe
[6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2010/08/16 21:27:00 | 000,000,426 | ---- | M] () -- C:\WINDOWS\tasks\Symantec NetDetect.job
[2010/08/16 21:00:00 | 000,000,258 | -H-- | M] () -- C:\WINDOWS\tasks\ADC07543938BE913.job
[2010/08/16 16:25:16 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/08/16 16:23:28 | 000,001,000 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2010/08/16 16:23:01 | 000,000,248 | ---- | M] () -- C:\WINDOWS\System\hpsysdrv.dat
[2010/08/16 16:22:13 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/08/16 16:21:59 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/08/16 16:21:55 | 000,298,848 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/08/15 21:04:09 | 000,000,584 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010/08/14 23:13:09 | 000,000,184 | -HS- | M] () -- C:\Documents and Settings\mumu\ntuser.ini
[2010/08/14 23:13:07 | 011,272,192 | ---- | M] () -- C:\Documents and Settings\mumu\NTUSER.DAT
[2010/08/14 23:12:11 | 006,291,456 | -H-- | M] () -- C:\Documents and Settings\mumu\Local Settings\Application Data\IconCache.db
[2010/08/12 16:29:16 | 000,000,882 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Advanced SystemCare.lnk
[2010/08/09 15:58:55 | 000,113,933 | ---- | M] () -- C:\WINDOWS\System32\drivers\klin.dat
[2010/08/09 15:58:55 | 000,097,549 | ---- | M] () -- C:\WINDOWS\System32\drivers\klick.dat
[2010/08/09 15:08:11 | 000,315,408 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys
[2010/08/09 14:29:36 | 000,003,072 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010/08/07 16:41:36 | 000,401,720 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\mumu\Bureau\Sniffle.exe
[2010/07/30 12:47:50 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn
[2010/07/27 15:20:20 | 000,001,409 | ---- | M] () -- C:\WINDOWS\QTFont.for
[2010/07/27 08:30:01 | 008,518,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shell32.dll
[2010/07/25 16:54:47 | 000,064,512 | ---- | M] () -- C:\Documents and Settings\mumu\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2010/08/12 16:29:16 | 000,000,882 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Advanced SystemCare.lnk
[2010/08/09 15:29:35 | 000,113,933 | ---- | C] () -- C:\WINDOWS\System32\drivers\klin.dat
[2010/08/09 15:29:27 | 000,097,549 | ---- | C] () -- C:\WINDOWS\System32\drivers\klick.dat
[2010/07/27 15:20:20 | 000,054,156 | -H-- | C] () -- C:\WINDOWS\QTFont.qfn
[2010/07/27 15:20:20 | 000,001,409 | ---- | C] () -- C:\WINDOWS\QTFont.for
[2010/03/14 14:08:39 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll
[2010/03/14 14:08:39 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys
[2010/03/14 14:07:49 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\mumu\Application Data\$_hpcst$.hpc
[2008/09/05 22:42:27 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\LauncherAccess.dt
[2008/09/05 19:37:41 | 000,000,065 | ---- | C] () -- C:\WINDOWS\FISHUI.INI
[2008/09/05 19:16:03 | 000,299,008 | ---- | C] () -- C:\WINDOWS\System32\LAME_MP3.dll
[2008/09/05 18:40:24 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2008/05/17 23:46:48 | 000,131,072 | ---- | C] () -- C:\WINDOWS\SNVerifyDLL.dll
[2008/02/17 01:31:24 | 000,000,050 | ---- | C] () -- C:\WINDOWS\MegaManager.INI
[2007/10/18 10:59:53 | 000,000,408 | ---- | C] () -- C:\WINDOWS\System32\Remover.ini
[2007/03/05 18:13:44 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2007/02/07 09:39:47 | 000,000,182 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2007/02/05 19:54:29 | 000,000,067 | ---- | C] () -- C:\Documents and Settings\mumu\Application Data\nero_photoshow_express_4_eu_row.txt
[2006/11/02 09:27:46 | 000,000,518 | ---- | C] () -- C:\WINDOWS\System32\SP207.ini
[2006/09/04 19:24:25 | 000,000,014 | ---- | C] () -- C:\WINDOWS\System32\SysEngineDrive1.sys
[2005/12/17 13:53:17 | 000,000,052 | ---- | C] () -- C:\WINDOWS\GunzLauncher.INI
[2005/11/23 15:47:43 | 000,001,759 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2005/11/12 18:43:06 | 000,000,112 | ---- | C] () -- C:\WINDOWS\ActiveSkin.INI
[2005/10/24 19:44:34 | 000,000,225 | ---- | C] () -- C:\WINDOWS\WSST_Screen_Saver.ini
[2005/10/23 18:41:19 | 000,012,288 | ---- | C] () -- C:\WINDOWS\impborl.dll
[2005/09/10 15:31:23 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\MPDLL.DLL
[2005/09/10 15:31:22 | 000,000,085 | ---- | C] () -- C:\WINDOWS\megapfad.ini
[2005/08/17 16:36:00 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll
[2005/08/17 16:35:59 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll
[2005/08/17 16:35:59 | 000,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll
[2005/04/02 18:04:05 | 000,002,897 | ---- | C] () -- C:\Program Files\Fichiers communs\unins000.dat
[2005/03/30 12:41:06 | 000,000,021 | ---- | C] () -- C:\WINDOWS\kit.ini
[2005/03/28 10:57:44 | 000,094,208 | ---- | C] () -- C:\WINDOWS\WMCRRSAPI.DLL
[2005/02/26 12:23:22 | 000,000,164 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2005/01/28 19:30:25 | 000,003,439 | ---- | C] () -- C:\WINDOWS\SportballChallenge.ini
[2005/01/16 13:43:38 | 000,000,021 | ---- | C] () -- C:\WINDOWS\CS_SETUP.ini
[2004/12/20 11:08:28 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2004/12/20 11:03:26 | 000,679,936 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2004/11/25 15:47:01 | 000,005,606 | ---- | C] () -- C:\WINDOWS\System32\stci.dll
[2004/11/18 17:55:11 | 000,086,016 | ---- | C] () -- C:\WINDOWS\ccGetMgrAPI.dll
[2004/10/29 23:46:19 | 000,000,039 | ---- | C] () -- C:\WINDOWS\COMPTE.INI
[2004/10/17 14:19:40 | 000,000,118 | ---- | C] () -- C:\WINDOWS\pool.ini
[2004/10/16 12:15:49 | 000,000,102 | ---- | C] () -- C:\WINDOWS\boxworld.ini
[2004/09/29 20:13:27 | 000,000,029 | ---- | C] () -- C:\WINDOWS\DEBUGSM.INI
[2004/09/29 18:14:45 | 000,290,919 | ---- | C] () -- C:\WINDOWS\System32\pythoncom21.dll
[2004/09/29 18:14:45 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\PyWinTypes21.dll
[2004/09/29 18:12:10 | 000,096,768 | ---- | C] () -- C:\WINDOWS\SlantAdj.dll
[2004/09/29 18:12:10 | 000,000,072 | R--- | C] () -- C:\WINDOWS\System32\epDPE.ini
[2004/09/29 18:09:55 | 000,102,400 | ---- | C] () -- C:\WINDOWS\System32\EEBDSCVR.dll
[2004/09/29 18:09:54 | 000,122,880 | ---- | C] () -- C:\WINDOWS\System32\EEBAPI.dll
[2004/09/29 18:09:54 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\EBAPI.dll
[2004/07/16 15:49:29 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\rnaph.dll
[2004/07/15 14:37:19 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\iAlmcoin.dll
[2004/07/15 13:54:41 | 000,064,512 | ---- | C] () -- C:\Documents and Settings\mumu\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2004/07/15 13:54:41 | 000,000,127 | ---- | C] () -- C:\Documents and Settings\mumu\Local Settings\Application Data\fusioncache.dat
[2004/06/23 21:32:32 | 000,000,228 | ---- | C] () -- C:\WINDOWS\gfscore.ini
[2004/06/23 21:31:11 | 000,000,019 | ---- | C] () -- C:\WINDOWS\KNP.INI
[2004/06/22 18:18:17 | 000,000,297 | ---- | C] () -- C:\WINDOWS\cncscore.ini
[2004/06/22 18:17:39 | 000,000,018 | ---- | C] () -- C:\WINDOWS\cnc.ini
[2004/04/28 15:59:49 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2004/03/31 16:51:53 | 000,000,302 | ---- | C] () -- C:\WINDOWS\lexstat.ini
[2004/03/02 21:15:13 | 000,000,000 | ---- | C] () -- C:\WINDOWS\MSDraw.ini
[2004/02/29 16:04:59 | 000,000,385 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2003/09/23 02:20:08 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2003/01/02 07:01:31 | 000,000,639 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2003/01/02 01:26:15 | 000,167,936 | ---- | C] () -- C:\WINDOWS\System32\PCDrJNI_1_1.dll
[2003/01/02 01:14:13 | 000,026,377 | ---- | C] () -- C:\WINDOWS\System32\CHODDI.SYS
[2003/01/02 01:13:57 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\syscontr.dll
[2003/01/02 01:13:26 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\hpreg.dll
[2003/01/02 00:22:12 | 000,000,534 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log
[2003/01/02 00:13:09 | 000,003,712 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2003/01/02 00:06:44 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\ati2evxx.dll
[2003/01/01 23:46:35 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2003/01/01 23:38:17 | 000,299,073 | ---- | C] () -- C:\WINDOWS\System32\PythonCOM22.dll
[2003/01/01 23:38:17 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\PyWinTypes22.dll
[2003/01/01 23:38:01 | 000,016,896 | ---- | C] () -- C:\WINDOWS\System32\bcbmm.dll
[2003/01/01 23:32:01 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2003/01/01 23:14:14 | 000,000,910 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2003/01/01 20:20:12 | 000,000,438 | ---- | C] () -- C:\WINDOWS\System32\1_ssetup.ini
[2003/01/01 20:20:12 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\sunistlog.ini
[2002/03/21 15:39:02 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\UNACEV2.DLL
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:92C45D1A
@Alternate Data Stream - 111 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B3D74A13
< End of report >
Image
paradoxal
Sous Expert(e)
Sous Expert(e)
 
Messages: 97
Inscription: 15 Juil 2010 18:29
 

Re: Mon Pc de bureau trés trés lent

Message le 17 Aoû 2010 09:15

OK fait ceci.


* Fait un double-clic sur l'icône d'OTL pour le lancer
/!\ pour Vista/Seven fais un clic-droit sur l'icône d'OTL et choisis "Exécuter en tant qu'administrateur"

* Assure-toi d'avoir fermé toutes les applications en court de fonctionnement.

* Quand la fenêtre d'OTL apparaît, assure toi que dans la section "Rapport" (en haut à droite) la case " Rapport minimal" soit cochée.

* Copies et colles le contenue de cette citation dans la partie inférieure d'OTL "Personnalisation"

Code: Tout sélectionner
:OTL
PRC - [2009/12/07 13:38:14 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\mumu\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe
SRV - File not found [On_Demand | Stopped] -- C:\Documents and Settings\mumu\Bureau\ESET_NOD32_Anti-Virus_v.2.7.16_Portable_Edition_\ESET NOD32 Anti-Virus v.2.7.16 Portable Edition!\NOD32\antivrus\nod32krn.exe -- (NOD32krn)
SRV - File not found [On_Demand | Stopped] -- C:\Documents and Settings\mumu\Bureau\ESET_NOD32_Anti-Virus_v.2.7.16_Portable_Edition_\ESET NOD32 Anti-Virus v.2.7.16 Portable Edition!\NOD32\antivrus\amon.sys -- (AMON)
SRV - [2005/06/07 14:04:45 | 000,069,120 | ---- | M] (BOONTY) [Disabled | Stopped] -- C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe -- (Boonty Games) 
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\XTrapD12.sys -- (XTrapD12) 
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.     
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.       
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {280B5D37-4A76-467A-B3D6-942FCA90ACDE} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.       
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found.       
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found. 
O4 - HKLM\..\Run: [Device Detector]  File not found
O4 - HKLM\..\Run: [VTTimer]  File not found
O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\mzvkbd3.dll (Kaspersky Lab)
[2010/08/09 14:55:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\mumu\Bureau\600J_Crack_Kaspersky_2010_( IS - AV )_By_XeNON_+_KAV2010 
[2010/08/16 21:27:00 | 000,000,426 | ---- | M] () -- C:\WINDOWS\tasks\Symantec NetDetect.job 

:commands
[purity]
[emptytemp]
[emptyflash]
[resethosts]
[clearallrestorepoints]
[createrestorepoint]
[reboot]




* Cliques sur l'icône Correction (en haut à gauche) .
* Laisse le scan aller à son terme sans te servir du PC
* A la fin du scan un ou deux rapports vont s'ouvrir "OTL.Txt" et ( ou ) "Extras.Txt"( dans certains cas).
* Copie et colle le ou les rapports dans ta réponse stp...
* Au cas où, tu peux les retrouver dans le dossier C:\OTL ou sur ton bureau en fonction des cas rencontrés


Puis::


ATTENTION sous vista choisir "Exécuter en tant qu'administrateur"
Clique droit sur SmitfraudFix.exe Exécuter en tant qu'administrateur

Télécharger SmitfraudFix

Redémarrer l'ordinateur en mode sans échec (au démarrage de l'ordinateur, tapoter F8)
Double cliquer sur SmitfraudFix.exe
Sélectionner 2 et pressez Entrée dans le menu pour supprimer les fichiers responsables de l'infection.

Ensuite::

Installe Malewarebytes' Antimalware,
Téléchargement

Lien direct ne fonctionne plus fait donc ton téléchargement ici:

http://www.commentcamarche.net/download ... lwarebytes


*** Met-le à jour puis choisi, Exécuter un examen complet

*** Si une infection est trouvée, coche la case a coté et valides avec l’Onglet Supprimer la sélection

Poste le rapport final.
*** il est conseillé de désactivé Tea-Timer si tu as Spybot-S&D juste le temps du scan.
Voici comment faire: Lancez Spybot-S&D, passez en Mode avancé via le Menu Mode (en haut) → cliquez sur Oui--> choisissez Outils dans la barre de navigation sur la gauche -->Résident et là vous pouvez décocher les cases situées devant les deux outils.
Image
Avatar de l'utilisateur
bernard53
PC-Infopraticien
PC-Infopraticien
 
Messages: 12244
Inscription: 08 Déc 2009 20:51
 

Re: Mon Pc de bureau trés trés lent

Message le 17 Aoû 2010 14:34

voici le rapport OTL apres correction

Code: Tout sélectionner
All processes killed
========== OTL ==========
No active process named lsnfier.exe was found!
Service NOD32krn stopped successfully!
Service NOD32krn deleted successfully!
File C:\Documents and Settings\mumu\Bureau\ESET_NOD32_Anti-Virus_v.2.7.16_Portable_Edition_\ESET NOD32 Anti-Virus v.2.7.16 Portable Edition!\NOD32\antivrus\nod32krn.exe not found.
Service AMON stopped successfully!
Service AMON deleted successfully!
File C:\Documents and Settings\mumu\Bureau\ESET_NOD32_Anti-Virus_v.2.7.16_Portable_Edition_\ESET NOD32 Anti-Virus v.2.7.16 Portable Edition!\NOD32\antivrus\amon.sys not found.
Service Boonty Games stopped successfully!
Service Boonty Games deleted successfully!
C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe moved successfully.
Service XTrapD12 stopped successfully!
Service XTrapD12 deleted successfully!
File C:\WINDOWS\System32\XTrapD12.sys not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{280B5D37-4A76-467A-B3D6-942FCA90ACDE} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{280B5D37-4A76-467A-B3D6-942FCA90ACDE}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EF99BD32-C1FB-11D2-892F-0090271D4F88} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}\ not found.
Registry key HKEY_LOCAL_MACHINE\\Software\Microsoft\Windows\CurrentVersion\Run not found.
Registry key HKEY_LOCAL_MACHINE\\Software\Microsoft\Windows\CurrentVersion\Run not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll deleted successfully.
File move failed. C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\mzvkbd3.dll scheduled to be moved on reboot.
C:\Documents and Settings\mumu\Bureau\600J_Crack_Kaspersky_2010_( IS - AV )_By_XeNON_+_KAV2010 folder moved successfully.
C:\WINDOWS\tasks\Symantec NetDetect.job moved successfully.
File rity] not found.
File ptytemp] not found.
File ptyflash] not found.
File sethosts] not found.
File earallrestorepoints] not found.
File eaterestorepoint] not found.
File boot] not found.
 
OTL by OldTimer - Version 3.2.10.0 log created on 08172010_141451

Files\Folders moved on Reboot...
File move failed. C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\mzvkbd3.dll scheduled to be moved on reboot.

Registry entries deleted on Reboot...


hier j'ai égalemeny défragmenter le pc de bureau, puis fait analyse kaspersky 6virus,4 trojan.
je vais maintenant fait la suite, avec SmitfraudFix

SmitfraudFix me demande si je veut nettoyer le registre ? oui ou non
Image
paradoxal
Sous Expert(e)
Sous Expert(e)
 
Messages: 97
Inscription: 15 Juil 2010 18:29
 

Re: Mon Pc de bureau trés trés lent

Message le 17 Aoû 2010 14:56

Oui nettoie le registre :wink:
Image
Avatar de l'utilisateur
bernard53
PC-Infopraticien
PC-Infopraticien
 
Messages: 12244
Inscription: 08 Déc 2009 20:51
 

Re: Mon Pc de bureau trés trés lent

Message le 17 Aoû 2010 17:20

bon voila, j'ai nettoyer le registre, redémarrer le pc en mode normal la je fais l'analyse anti-malware je vous donnerais apres le rapport quand mon pc de bureau aura fini.

ps: j'ai 2 pc au cas ou vous vous demander comment je fais pour vous rep
Image
paradoxal
Sous Expert(e)
Sous Expert(e)
 
Messages: 97
Inscription: 15 Juil 2010 18:29
 

Re: Mon Pc de bureau trés trés lent

Message le 17 Aoû 2010 21:01

OK mets les rapports quand tu sera prêt :wink:
Image
Avatar de l'utilisateur
bernard53
PC-Infopraticien
PC-Infopraticien
 
Messages: 12244
Inscription: 08 Déc 2009 20:51
 

Re: Mon Pc de bureau trés trés lent

Message le 17 Aoû 2010 21:28

pour le rapport de SmitfraudFix je le trouve pas,
pour anti-malware il avait trouver 2 infection il en été a 3h20min cependant je descend voir le pc été entrain de séteindre mais en faite il beug et s'etein pas donc je suppose que le rapport n'est pas enregistrer ?
Image
paradoxal
Sous Expert(e)
Sous Expert(e)
 
Messages: 97
Inscription: 15 Juil 2010 18:29
 

Re: Mon Pc de bureau trés trés lent

Message le 18 Aoû 2010 10:45

Vérifies si tu n'as pas le rapport da MalwaresBytes dans l'onglet Rapports/logs.

Remets moi un nouveau rapport OTL et dis moi comment va ton pc.
Image
Avatar de l'utilisateur
bernard53
PC-Infopraticien
PC-Infopraticien
 
Messages: 12244
Inscription: 08 Déc 2009 20:51
 

Suivante


Sujets similaires

Message Bureau bloqué
Bonjour Je ne sais pas s'il faut se présenter car nouveau sur le forum?J'essaye de réparer un probleme sur 1 pc HP Envy x86.Le bureau est figé, pas de souris, réseau fermé.J'essaye de piloter avec 1 clavier sur usb, mais j'ai du malpar exemple à ouvrir l'invité de commandes en mode administrateur? ...
Réponses: 9

Message Enregistrement en live du bureau Windows
Salut rayounezJe te conseil Open Broadcaster Software https://obsproject.com il est open source et fonctionne sous Windows / Mac / Linux et te permet de diffuser sur différentes plateforme.Tu vas pouvoir une fois le logiciel ouvert faire un petit tour dans Setting, dans la colonne de gauche tu sélec ...
Réponses: 1

Message Volume sonnerie réveil iPhone très faible
Bonjour à toute la communauté. Je viens de découvrir la fonctionnalité réveil dans l?application Horloge sur ios11. J?ai trouvé la fonction interessante car on peut programmer la même heure de réveil pour les jours de la semaine ouvrables donc parfait pour le travail. Par contre le volume de la sonn ...
Réponses: 1

Message [réglé] Long écran noir au démarrage et ordinateur lent
Bonjour à tous ,Je constate depuis peu ( 1 semaine), un souci lors du démarrage de mon PC (ASUS R510L qui a 3 ans) :- long écran noir avant démarrage de windows (environ 3 min) + beaucoup de temps ensuite pour mettre en place le bureau (au final plusieurs minutes avant de pouvoir utiliser le PC)+ un ...
Réponses: 7

Message Pages internet longues à s'ouvrir, pc lent
Bonjour à tous, J'ai un petit problème avec mon ordinateur portable. Il a quelques années déjà mais me sert encore beaucoup et j'espère le garder encore quelques temps. Les pages internet sont relativement longues à s'ouvrir, il ne s'agit pas d'un souci de connection, mes autres pc n'ont pas ce prob ...
Réponses: 7

Message affichage lent sous Windows 8.1
Bonjour sur un pc sous Windows 8.1 le démarrage est assez lent et lorsque le bureau s'affiche, tous les icônes sont blancs et mettent du temps à prendre leur forme normal. Les éléments dans le systray mettent aussi assez longtemps à s'afficher. Après ça le pc fonctionne correctement mais de temps en ...
Réponses: 2

Message Très grand écran
Bonjour à tous,Je souhaite acheter un très grand écran pour mon PC qui se trouve dans mon salon, dans le but de regarder des films mais évidemment aussi de me servir normalement de mon ordi, bureautique, internet, retouche photo... J'hésite entre le Iiyama ProLite X4071UHSU-B1 et le Philips BDM4350U ...
Réponses: 1


Qui est en ligne

Utilisateurs parcourant ce forum: Bing [Bot], Jisop et 8 invités


.: Nous contacter :: Flux RSS :: Données personnelles :.