Comme demandé par synthexe, voici les rapports DSS :
main.txt
Deckard's System Scanner v20071014.68
Run by bob on 2008-07-02 11:50:06
Computer is in Normal Mode.
--------------------------------------------------------------------------------
-- System Restore --------------------------------------------------------------
System Restore is disabled; attempting to re-enable...success.
-- Last 1 Restore Point(s) --
1: 2008-07-02 09:50:11 UTC - RP1 - Point de vérification système
Backed up registry hives.
Performed disk cleanup.
[color=red]Percentage of Memory in Use: 76% (more than 75%).[/color]
[color=red]Total Physical Memory: 256 MiB (512 MiB recommended).[/color]
[color=red]System Drive C: has 0.26 GiB (less than 15%) free.[/color]
-- HijackThis (run as bob.exe) -------------------------------------------------
Unable to find log (file not found); running clone.
-- HijackThis Clone ------------------------------------------------------------
Emulating logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2008-07-02 11:51:26
Platform: Windows XP Service Pack 2 (5.01.2600)
MSIE: Internet Explorer (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
G:\Program Files\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Microsoft LifeCam\MSCamS32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Orange\Systray\SystrayApp.exe
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\Program Files\Fichiers communs\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\WINDOWS\vVX1000.exe
G:\Program Files\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\LClock.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Documents and Settings\bob\Local Settings\Application Data\imkgy.exe
C:\Program Files\OpenOffice.org 2.1\program\soffice.exe
C:\Program Files\OpenOffice.org 2.1\program\soffice.bin
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\bob\Bureau\dss.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.com/search?q=%s
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://lstard.stormcorp.net/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\SearchURLHook\SearchPageURL.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\GoogleToolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\GoogleToolbar1.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: SYSTRAN Web Translator 5.0 - {A5899B52-3AF9-4F56-85FE-AD7B3BE8490F} - D:\IEPlugIn.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "F:\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\Orange\Systray\SystrayApp.exe"
O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\Orange\SessionManager\SessionManager.exe
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: [IndexSearch] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe"
O4 - HKLM\..\Run: [VX1000] C:\WINDOWS\vVX1000.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "G:\Program Files\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LClock] lclock.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [imkgy] c:\documents and settings\bob\local settings\application data\imkgy.exe imkgy
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [LSD_III] %systemroot%\LSD\end.cmd (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [LSD_III] %systemroot%\LSD\end.cmd (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [LSD_III] %systemroot%\LSD\end.cmd (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [LSD_III] %systemroot%\LSD\end.cmd (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O4 - Startup: OpenOffice.org 2.1.lnk = C:\Program Files\OpenOffice.org 2.1\program\quickstart.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?618048af6f6d4ad3a54df88003524702
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?618048af6f6d4ad3a54df88003524702
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - ProtocolDefaults: Unknown 'about' protocol is in Restricted Zone (HKLM)
O15 - ProtocolDefaults: Unknown 'about:' protocol is in Restricted Zone (HKLM)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} () - http://fpdownload.macromedia.com/g [...] rashim.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub [...] wflash.cab
O17 - HKLM\SYSTEM\CCS\Services\Tcpip\..\{A6E7255F-0826-43E5-B703-E1E7714C104A}: NameServer = 192.168.1.1
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - G:\Program Files\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\Program Files\Fichiers communs\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
--
End of file - 9922 bytes
-- File Associations -----------------------------------------------------------
All associations okay.
-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------
S3 PCAMPR5 (PCAMPR5 NDIS Protocol Driver) - c:\windows\system32\pcampr5.sys <Not Verified; Printing Communications Assoc., Inc. (PCAUSA); PCAUSA Rawether for Windows>
S3 PCANDIS5 (PCANDIS5 NDIS Protocol Driver) - c:\windows\system32\pcandis5.sys <Not Verified; Printing Communications Assoc., Inc. (PCAUSA); PCAUSA Rawether for Windows>
-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------
R2 AntiVirScheduler (AntiVir PersonalEdition Classic Scheduler) - "c:\program files\avira\antivir personaledition classic\sched.exe" <Not Verified; Avira GmbH; AntiVir Workstation>
R2 FTRTSVC (France Telecom Routing Table Service) - "c:\progra~1\fichie~1\france telecom\shared modules\ftrtsvc\0\ftrtsvc.exe" <Not Verified; France Telecom SA; CSS-Corporate>
-- Device Manager: Disabled ----------------------------------------------------
No disabled devices found.
-- Scheduled Tasks -------------------------------------------------------------
2008-06-10 16:35:39 178 --ah----- C:\WINDOWS\Tasks\Microsoft_Hardware_Launch_vVX1000_exe.job
2008-06-10 16:34:31 268 --ah----- C:\WINDOWS\Tasks\Microsoft_Hardware_Launch_LifeExp_exe.job
2007-10-06 17:36:55 250 --a------ C:\WINDOWS\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job
-- Files created between 2008-06-02 and 2008-07-02 -----------------------------
2008-07-02 11:23:05 0 d-------- C:\Program Files\Navilog1
2008-07-02 10:42:09 0 dr-h----- C:\Documents and Settings\bob\Recent
2008-07-01 10:41:33 0 d-------- C:\Documents and Settings\bob\Application Data\Grisoft
2008-07-01 10:41:18 0 d-------- C:\Documents and Settings\All Users\Application Data\Grisoft
2008-06-29 11:26:08 0 d-------- C:\Documents and Settings\bob\Application Data\WinRAR
2008-06-25 14:27:55 0 d-------- C:\WINDOWS\system32\Adobe
2008-06-10 23:30:23 34816 -----n--- C:\WINDOWS\system32\BrWiaNCp.dll <Not Verified; Brother Industries,Ltd.; Brother MFC Network Scanner>
2008-06-10 23:30:23 31744 -----n--- C:\WINDOWS\system32\Brnsplg.dll <Not Verified; Brother Industries,Ltd; Brother Insustries,Ltd>
2008-06-10 23:30:22 53248 -----n--- C:\WINDOWS\system32\BrNetSti.dll <Not Verified; Brother Industries, Ltd.; Brother Industries, Ltd.>
2008-06-10 23:30:15 0 d-------- C:\Brother
2008-06-10 23:30:13 122880 -----n--- C:\WINDOWS\system32\BrfxD05a.dll <Not Verified; Brother Industries,LTD; Brother PC-FAX DIAL Dynamic Link Library>
2008-06-10 23:30:13 0 --a------ C:\WINDOWS\brdfxspd.dat
2008-06-10 23:17:40 163840 -----n--- C:\WINDOWS\system32\NSSearch.dll <Not Verified; brother; brother NSSearch>
2008-06-10 23:17:40 106496 -----n--- C:\WINDOWS\system32\BrMuSNMP.dll
2008-06-10 23:17:40 53248 -r------- C:\WINDOWS\system32\BrMfNt.dll <Not Verified; Brother Industries,LTD.; Brother BrMfNt>
2008-06-10 22:11:35 0 d-------- C:\Program Files\Brother
2008-06-10 16:31:57 0 d-------- C:\Program Files\Microsoft LifeCam
2008-06-10 16:31:11 0 d-------- C:\WINDOWS\system32\drivers\umdf
2008-06-10 16:29:59 0 d-------- C:\WINDOWS\system32\DirectX
-- Find3M Report ---------------------------------------------------------------
2008-07-02 10:48:40 0 d-------- C:\Documents and Settings\bob\Application Data\OpenOffice.org2
2008-07-02 00:05:59 0 d-------- C:\Documents and Settings\bob\Application Data\LimeWire
2008-06-25 14:28:30 0 d-------- C:\Documents and Settings\bob\Application Data\Adobe
2008-06-25 14:28:29 0 d-------- C:\Documents and Settings\bob\Application Data\Macromedia
2008-06-25 14:28:07 1408 --a------ C:\WINDOWS\mozver.dat
2008-06-10 23:30:50 50 --a------ C:\WINDOWS\system32\bridf05a.dat
2008-05-25 18:36:27 0 d-------- C:\Program Files\Common Files
2008-05-25 18:36:22 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-05-25 18:35:47 0 d-------- C:\Program Files\Fichiers communs\InstallShield
2008-05-25 18:34:25 0 d-------- C:\Program Files\Fichiers communs\ScanSoft Shared
2008-05-25 18:34:22 0 d-------- C:\Program Files\Fichiers communs
2008-05-25 18:34:18 0 d-------- C:\Program Files\ScanSoft
2008-05-23 13:38:15 0 d-------- C:\Documents and Settings\bob\Application Data\Google
2008-05-23 13:37:28 0 d-------- C:\Program Files\Google
2008-05-19 11:16:55 0 d-------- C:\Program Files\Orange
2008-05-19 11:15:00 0 d-------- C:\Program Files\Fichiers communs\France Telecom
2008-05-19 11:12:17 0 d-------- C:\Program Files\SAGEM
2008-05-19 11:12:15 0 d-------- C:\Documents and Settings\bob\Application Data\InstallShield
2008-05-19 11:11:54 0 d-------- C:\Program Files\Securitoo
-- Registry Dump ---------------------------------------------------------------
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="F:\Reader\Reader_sl.exe" [11/05/2007 03:06]
"avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [23/04/2008 18:08]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [22/02/2008 05:25]
"TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [27/02/2008 23:42]
"SystrayORAHSS"="C:\Program Files\Orange\Systray\SystrayApp.exe" [25/09/2007 20:08]
"ORAHSSSessionManager"="C:\Program Files\Orange\SessionManager\SessionManager.exe" [25/09/2007 19:10]
"SSBkgdUpdate"="C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [14/10/2003 10:22]
"PaperPort PTD"="C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe" [17/03/2005 19:17]
"IndexSearch"="C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe" [17/03/2005 19:30]
"LifeCam"="C:\Program Files\Microsoft LifeCam\LifeExp.exe" [17/05/2007 23:45]
"VX1000"="C:\WINDOWS\vVX1000.exe" [10/04/2007 23:46]
"!AVG Anti-Spyware"="G:\Program Files\AVG Anti-Spyware 7.5\avgas.exe" [11/06/2007 11:25]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [04/08/2004 02:54]
"LClock"="lclock.exe" [08/12/2004 18:06 C:\WINDOWS\LClock.exe]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [19/10/2007 19:08]
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.exe" [19/01/2007 12:55]
"imkgy"="c:\documents and settings\bob\local settings\application data\imkgy.exe" [01/07/2008 15:13]
[HKEY_USERS\.default\software\microsoft\windows\currentversion\runonce]
"LSD_III"=%systemroot%\LSD\end.cmd
"tscuninstall"=%systemroot%\system32\tscupgrd.exe
C:\Documents and Settings\bob\Menu D‚marrer\Programmes\D‚marrage\
OpenOffice.org 2.1.lnk - C:\Program Files\OpenOffice.org 2.1\program\quickstart.exe [27/11/2006 16:45:48]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"DisableRegistryTools"=0 (0x0)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"ForceClassicControlPanel"=1 (0x1)
"NoLowDiskSpaceChecks"=1 (0x1)
"ClearRecentDocsOnExit"=64 (0x40)
"NoSMBalloonTip"=0 (0x0)
-- End of Deckard's System Scanner: finished at 2008-07-02 11:53:31 ------------
-------------------------------------------------------------------------------------
et voici extra.txt
Deckard's System Scanner v20071014.68
Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------
-- System Information ----------------------------------------------------------
Microsoft Windows XP Professionnel (build 2600) SP 2.0
Architecture: X86; Language: French
CPU 0: Intel(R) Pentium(R) 4 CPU 1300MHz
Percentage of Memory in Use: 82%
Physical Memory (total/avail): 255.48 MiB / 45.27 MiB
Pagefile Memory (total/avail): 618.18 MiB / 226.16 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1930.09 MiB
A: is Removable (No Media)
C: is Fixed (NTFS) - 3 GiB total, 0.26 GiB free.
D: is Fixed (NTFS) - 15.63 GiB total, 12.97 GiB free.
E: is CDROM (No Media)
F: is Fixed (NTFS) - 7.84 GiB total, 4.42 GiB free.
G: is Fixed (NTFS) - 25.43 GiB total, 23.23 GiB free.
H: is Fixed (NTFS) - 4 GiB total, 2.81 GiB free.
\\.\PHYSICALDRIVE0 - ST320014A - 18.65 GiB - 2 partitions
\PARTITION0 (bootable) - Système de fichiers installable - 3 GiB - C:
\PARTITION1 - Étendu avec Inter. 13 étendue - 15.63 GiB - D:
\\.\PHYSICALDRIVE1 - ST340823A - 37.27 GiB - 3 partitions
\PARTITION0 (bootable) - Système de fichiers installable - 7.84 GiB - F:
\PARTITION1 - Système de fichiers installable - 4 GiB - H:
\PARTITION2 - Étendu avec Inter. 13 étendue - 25.43 GiB - G:
-- Security Center -------------------------------------------------------------
AUOptions is disabled.
AUState says computer has updates disabled.
Windows Internal Firewall is disabled.
FirstRunDisabled is set.
UpdatesDisableNotify is set.
AV: Avira AntiVir PersonalEdition v8.0.1.18 (Avira GmbH)
[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"G:\\Program Files\\LimeWire\\LimeWire.exe"="G:\\Program Files\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire"
"C:\\Program Files\\Orange\\Connectivity\\ConnectivityManager.exe"="C:\\Program Files\\Orange\\Connectivity\\ConnectivityManager.exe:*:enabled:CSS"
"C:\\Program Files\\Microsoft LifeCam\\LifeCam.exe"="C:\\Program Files\\Microsoft LifeCam\\LifeCam.exe:*:Enabled:LifeCam.exe"
"C:\\Program Files\\Microsoft LifeCam\\LifeExp.exe"="C:\\Program Files\\Microsoft LifeCam\\LifeExp.exe:*:Enabled:LifeExp.exe"
-- Environment Variables -------------------------------------------------------
ALLUSERSPROFILE=C:\Documents and Settings\All Users
APPDATA=C:\Documents and Settings\bob\Application Data
CLIENTNAME=Console
CommonProgramFiles=C:\Program Files\Fichiers communs
COMPUTERNAME=KOSVOCORE
ComSpec=C:\WINDOWS\system32\cmd.exe
DEVMGR_SHOW_DETAILS=1
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Documents and Settings\bob
LOGONSERVER=\\KOSVOCORE
NUMBER_OF_PROCESSORS=1
OS=Windows_NT
Path=C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 15 Model 0 Stepping 7, GenuineIntel
PROCESSOR_LEVEL=15
PROCESSOR_REVISION=0007
ProgramFiles=C:\Program Files
PROMPT=$P$G
SESSIONNAME=Console
SystemDrive=C:
SystemRoot=C:\WINDOWS
TEMP=C:\DOCUME~1\bob\LOCALS~1\Temp
TMP=C:\DOCUME~1\bob\LOCALS~1\Temp
USERDOMAIN=KOSVOCORE
USERNAME=bob
USERPROFILE=C:\Documents and Settings\bob
windir=C:\WINDOWS
-- User Profiles ---------------------------------------------------------------
bob [I](admin)[/I]
-- Add/Remove Programs ---------------------------------------------------------
--> C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
--> MsiExec.exe /I{8A42F680-2DD6-11D4-9A8C-0040F6982C20}
--> MsiExec.exe /I{A2529672-574A-4A99-86A5-C1770A0E31FE}
--> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 9 ActiveX --> C:\WINDOWS\system32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
Adobe Flash Player ActiveX --> C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player Plugin --> C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 8.1.0 - Français --> MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81000000003}
Adobe Shockwave Player --> C:\WINDOWS\system32\Adobe\Shockwave 11\UNWISE.EXE C:\WINDOWS\system32\Adobe\Shockwave 11\Install.log
Archiveur WinRAR --> C:\Program Files\WinRAR\uninstall.exe
AVG Anti-Spyware 7.5 --> G:\Program Files\AVG Anti-Spyware 7.5\Uninstall.exe
Avira AntiVir Personal – Free Antivirus --> C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE
Barre d'outils Outlook de Windows Live (Windows Live Toolbar) --> MsiExec.exe /X{4002F73D-EBB3-4EA1-A2FF-DBCB4529759E}
Bloqueur de fenêtres pop-up (Windows Live Toolbar) --> MsiExec.exe /X{51F366F4-C2E4-429A-866A-59C885ED42FD}
Correctif Windows XP - KB834707 -->
Correctif Windows XP - KB873339 -->
Correctif Windows XP - KB884020 -->
Correctif Windows XP - KB885222 -->
Correctif Windows XP - KB885523 -->
Correctif Windows XP - KB885626 -->
Correctif Windows XP - KB885835 -->
Correctif Windows XP - KB885836 -->
Correctif Windows XP - KB886185 -->
Correctif Windows XP - KB886677 -->
Correctif Windows XP - KB887742 -->
Détecteur de flux Windows Live Toolbar (Windows Live Toolbar) --> MsiExec.exe /X{175B7C4A-CAF8-437A-B597-73E0D2D970FE}
Extension de Windows Live Toolbar (Windows Live Toolbar) --> MsiExec.exe /X{D518AD32-C710-4616-BA0D-D4B1FA5F82E8}
Favorit --> "c:\documents and settings\bob\local settings\application data\imkgy.exe" -uninstall
Gimp Pack Mode 2.2.17 --> "H:\Program Files\Gimp Pack Mode\unins000.exe"
Google Earth --> MsiExec.exe /I{97C0EA4A-1A0B-4C53-ACEB-49984DA79C90}
Google Toolbar for Internet Explorer --> MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}
Google Toolbar for Internet Explorer --> regsvr32 /u /s "c:\program files\google\googletoolbar1.dll"
Guitar Pro 5.0 --> "G:\Program Files\Guitar Pro 5\unins000.exe"
HijackThis 1.99.1 --> C:\Documents and Settings\bob\Bureau\hijackthis\HijackThis.exe /uninstall
Java(TM) 6 Update 3 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Java(TM) 6 Update 5 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050}
LimeWire 4.16.7 --> "G:\Program Files\LimeWire\uninstall.exe"
livebox --> C:\Program Files\InstallShield Installation Information\{17342E3B-0818-4A6F-BFF8-99476605ADD6}\Setup.exe -runfromtemp -l0x040c -removeonly
Menus intelligents (Windows Live Toolbar) --> MsiExec.exe /X{3585ED1C-74C5-43B0-A232-831B96A12A2B}
Microsoft LifeCam --> MsiExec.exe /X{968D41C3-25BB-4632-A6DF-2E1C8F0143A4}
Mozilla Firefox (2.0.0.14) --> C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Navigateur Orange --> C:\Program Files\Orange\Uninstall\Browser\Shell.exe MainUninstall.shl
Navigation par onglets (Windows Live Toolbar) --> MsiExec.exe /X{E74559C2-BB47-45AD-83DD-0D66B67E7811}
Navilog1 3.6.0 --> "C:\Program Files\Navilog1\unins000.exe"
OneCare Advisor (Windows Live Toolbar) --> MsiExec.exe /X{F242B06B-517F-4D62-B654-16B11564A912}
OpenOffice.org 2.1 --> MsiExec.exe /I{E5430A11-6799-41E0-A9D5-F68BDC67AAD8}
Orange - Logiciels Internet --> C:\Program Files\Orange\installation\core\Installgui.exe -u
Outil de mise à jour Google --> "C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -uninstall
PaperPort --> MsiExec.exe /I{A17EABB6-D0C6-44E5-820C-72DC7F495064}
RealPlayer --> C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
SYSTRAN Web Translator 5.0 --> MsiExec.exe /I{26092005-1129-0001-3530-01706572736F}
VideoLAN VLC media player 0.8.6 --> C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Live Favorites pour Windows Live Toolbar --> MsiExec.exe /X{DCE65B11-710D-4C54-9DE5-1A6A0BD2186B}
Windows Live Messenger --> MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411}
Windows Live Sign-in Assistant --> MsiExec.exe /I{49672EC2-171B-47B4-8CE7-50D7806360D7}
Windows Live Toolbar --> "C:\Program Files\Windows Live Toolbar\UnInstall.exe" {05AE605F-3146-46ED-BC52-0A14EBF57962}
Windows Live Toolbar --> MsiExec.exe /X{05AE605F-3146-46ED-BC52-0A14EBF57962}
Windows Media Format 11 runtime --> "C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
-- Application Event Log -------------------------------------------------------
Event Record #/Type3326 / Success
Event Submitted/Written: 07/02/2008 10:49:40 AM
Event ID/Source: 12001 / usnjsvc
Event Description:
The Messenger Sharing USN Journal Reader service started successfully.
Event Record #/Type3319 / Success
Event Submitted/Written: 07/02/2008 10:01:59 AM
Event ID/Source: 12001 / usnjsvc
Event Description:
The Messenger Sharing USN Journal Reader service started successfully.
Event Record #/Type3310 / Success
Event Submitted/Written: 07/01/2008 09:11:23 AM
Event ID/Source: 12001 / usnjsvc
Event Description:
The Messenger Sharing USN Journal Reader service started successfully.
Event Record #/Type3301 / Success
Event Submitted/Written: 07/01/2008 07:58:23 AM
Event ID/Source: 12001 / usnjsvc
Event Description:
The Messenger Sharing USN Journal Reader service started successfully.
Event Record #/Type3291 / Success
Event Submitted/Written: 06/30/2008 09:08:14 AM
Event ID/Source: 12001 / usnjsvc
Event Description:
The Messenger Sharing USN Journal Reader service started successfully.
-- Security Event Log ----------------------------------------------------------
No Errors/Warnings found.
-- System Event Log ------------------------------------------------------------
Event Record #/Type2622 / Error
Event Submitted/Written: 06/19/2008 11:50:03 AM / 06/19/2008 11:52:22 AM
Event ID/Source: 4 / E100B
Event Description:
Carte Carte Intel à base de 8255x Ethernet PCI (10/100) : Le lien à la carte est hors service
Event Record #/Type2619 / Error
Event Submitted/Written: 06/19/2008 11:49:40 AM / 06/19/2008 11:52:22 AM
Event ID/Source: 4 / E100B
Event Description:
Carte Carte Intel à base de 8255x Ethernet PCI (10/100) : Le lien à la carte est hors service
Event Record #/Type2595 / Error
Event Submitted/Written: 06/17/2008 05:44:48 PM / 06/17/2008 05:47:10 PM
Event ID/Source: 4 / E100B
Event Description:
Carte Carte Intel à base de 8255x Ethernet PCI (10/100) : Le lien à la carte est hors service
Event Record #/Type2591 / Error
Event Submitted/Written: 06/17/2008 05:44:24 PM / 06/17/2008 05:47:10 PM
Event ID/Source: 4 / E100B
Event Description:
Carte Carte Intel à base de 8255x Ethernet PCI (10/100) : Le lien à la carte est hors service
Event Record #/Type2588 / Error
Event Submitted/Written: 06/17/2008 05:44:10 PM / 06/17/2008 05:47:10 PM
Event ID/Source: 4 / E100B
Event Description:
Carte Carte Intel à base de 8255x Ethernet PCI (10/100) : Le lien à la carte est hors service
-- End of Deckard's System Scanner: finished at 2008-07-02 11:53:31 ------------
