Echec du mode... sans échec [Résolu]

[Spoutnik]

Bonjour,

A propos de la BR et des clefs contenues dans le fichier .reg j'ai été voir de plus près avec regedit et il semblerait que les autorisations de modification des clefs concernées ne soient pas attribuées aux administrateurs sur mon poste.

En effet si je prends la clef suivante:
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}]
... et que je clique droit sur cette clef pour lire les autorisations, je vois que "système" et "administrateurs" n'ont pas le contrôle total mais uniquement la lecture. Seul le compte "TrustedInstaller" dispose du contrôle total.
Est-ce normal pour ce type de clef

Quand j'essaye de forcer les droits en attribuant le contrôle total aux administrateurs par exemple, j'obtiens le message d'erreur suivant:
"impossible d'enregistrer etc... Accès refusé"

Je crois donc qu'effectivement les problème d'accès du mode "safeboot" viennent de ce problème d'autorisation des comptes.
Mais comment rétablir ces droits si c'est bien le problème

@+

[Spoutnik]

Bonjour

Oui je suis administrateur et l'UAC est désactivé.

Libre à toi de faire ce choix qui ne me semble pas une très bonne chose.

Je n'ai désactivé l'UAC que depuis le début de ce problème et pour être sûr que le dysfonctionnement du fichier .reg ne venait pas de là.

As-tu fait un sfc /scannow ?

Oui, juste avant de publier ici et il n'y avait pas de problème.
Je viens d'en refaire un et ce coup-ci j'ai un message de réparation!
Je ne le joins pas, le log fait plus de 2 Mo mais il se termine par "All files and registry keys listed in this transaction have been successfully repaired"
Je reboote
@+

[Spoutnik]

bonjour,

Aucun changement après reboot.
Le pb du MBR ne me pose pas vraiment de pb en fait.

Pour résumer les investigations, le vrai problème est en fait dans l'autorisation des clefs de registre de l'arborescence:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal

Ces clefs ne sont pas autorisées en écriture pour les administrateurs et il m'est impossible de les modifier à ce jour.

Une idée

@+

[Spoutnik]

Bonjour,

Du nouveau sans grand changement.
J'ai pu modifier les autorisations de la hiérarchie de la BR suivante:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\
Tout simplement en virant le propriétaire "trustedInstaller" de cette arbo pour le remplacer par "administrateurs". (clic droit\propriétés\bouton Avancé\onglet propriétaire\cocher "remplacer le propriétaire des sous-cont...")
Une fois cette opération faite, on peut distribuer facilement sur toutes les clefs l'autorisation "contrôle total" aux administrateurs.

Donc, cette fois, le fichier le safeboot_win7.reg a parfaitement fonctionné et la fusion s'est faite sans message d'erreur.

Mais... Toujours pas de reboot en mode sans échec. Redémarrage de l'ordi au même endroit, j'ai à peine le temps de mettre le mot de passe du compte choisi et ça redémarre. Dommage, j'étais persuadé que le pb venait du verrouillage de l'arbo des clefs de la BR concernant le safeboot...
Le mode "normal" fonctionne lui toujours parfaitement.

[nardino]

Bonjour
Essaie cette solution.
Télécharge Combofix
IMPORTANT. Enregistre ComboFix.exe sur le Bureau.
Désactive les applications antivirus et anti-malware résidentes, en général via un clic droit sur l'icône de la Zone de notification, sinon elles risquent d'interférer avec l'outil.
Fais un double clic sur l'icône et suis les invites.

Lorsque l'outil aura terminé, il affichera un rapport.
Surtout ne lance aucune application pendant le scan et après le redémarrage parfois nécessaire et provoqué.
Attends l'affichage du rapport
Copie le contenu dans ta prochaine réponse.
Il sera enregistré sous C:\Combofix.txt

@+

[Spoutnik]

Bonjour,

Voici donc le rapport in-extenso de ComboFix:
--

ComboFix 11-02-21.02 - Peter 22/02/2011 16:13:14.1.4 - x64
Microsoft Windows 7 Professionnel 6.1.7600.0.1252.33.1036.18.6142.4008 [GMT 1:00]
Lancé depuis: c:\users\Peter\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {C37D8F93-0602-E43C-40AA-47DAD597F308}
SP: avast! Antivirus *Disabled/Updated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files\Common Files\Temp
c:\program files\Common Files\Temp\{389b10eb-c21e-4b3d-8052-f44da38cde4c}\DrvVista.exe
c:\program files\Common Files\Temp\{389b10eb-c21e-4b3d-8052-f44da38cde4c}\ndistgb.inf
c:\program files\Common Files\Temp\{389b10eb-c21e-4b3d-8052-f44da38cde4c}\ndistgb.sys
c:\program files\Common Files\Temp\{389b10eb-c21e-4b3d-8052-f44da38cde4c}\ndistgb_X64.cat
c:\users\Peter\AppData\Local\Temp\sfamcc00001.dll
c:\users\Peter\AppData\Local\Temp\sfareca00001.dll
c:\users\Peter\AppData\Roaming\Microsoft\AdjMmsVista.dll
c:\windows\UNWISE.EXE

.
((((((((((((((((((((((((((((( Fichiers créés du 2011-01-22 au 2011-02-22 ))))))))))))))))))))))))))))))))))))
.

2011-02-22 08:48 . 2011-01-13 10:20 7844688 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{1293CAFE-FEB7-49F8-BA02-367294DF8E54}\mpengine.dll
2011-02-20 22:29 . 2011-02-20 22:29 -------- d-----w- c:\users\Peter\AppData\Roaming\GHISLER
2011-02-20 16:00 . 2011-02-21 08:42 -------- d-----w- c:\program files (x86)\ZHPDiag
2011-02-20 01:31 . 2011-02-20 03:38 -------- d-----w- C:\Diskeeper
2011-02-20 01:24 . 2011-02-20 01:45 -------- d-----w- c:\program files\Diskeeper
2011-02-20 01:24 . 2011-02-20 01:24 -------- d-----w- c:\programdata\Diskeeper Corporation
2011-02-20 01:24 . 2011-02-20 01:24 -------- d-----w- c:\program files\Common Files\Diskeeper Corporation
2011-02-20 01:22 . 2011-02-20 01:24 -------- d-----w- c:\program files (x86)\Diskeeper Setup Files
2011-02-20 01:10 . 2011-02-20 01:11 -------- d-----w- c:\program files (x86)\DVDFab 8
2011-02-19 10:33 . 2011-02-19 10:33 -------- d-----w- c:\users\Administrateur
2011-02-18 11:08 . 2011-02-18 14:28 -------- d-----w- c:\programdata\DVD Shrink
2011-02-18 11:08 . 2011-02-18 11:25 -------- d-----w- c:\program files (x86)\DVD Shrink
2011-02-18 10:40 . 2009-09-04 16:29 1892184 ----a-w- c:\windows\SysWow64\D3DX9_42.dll
2011-02-16 16:02 . 2011-02-16 16:02 -------- d-----w- c:\users\Peter\AppData\Local\DDMSettings
2011-02-14 00:48 . 2011-02-20 03:37 -------- d-----w- c:\users\Peter\AppData\Local\LiveGBoost
2011-02-14 00:48 . 2011-02-14 00:48 -------- d-----w- c:\users\Peter\AppData\Local\GZero
2011-02-14 00:48 . 2011-02-14 00:48 -------- d-----w- c:\users\Peter\AppData\Roaming\GZero
2011-02-14 00:48 . 2011-02-14 00:48 -------- d-----w- c:\program files (x86)\GBoost
2011-02-13 18:45 . 2011-02-13 18:45 -------- d-----w- c:\program files (x86)\PC Chrono
2011-02-13 17:47 . 2011-02-13 18:07 -------- d-----w- c:\users\Peter\AppData\Roaming\dvdcss
2011-02-13 14:12 . 2011-02-13 14:12 -------- d-----w- c:\program files (x86)\BurnAware Free
2011-02-13 13:48 . 2011-02-13 13:50 -------- d-----w- c:\users\Peter\AppData\Roaming\EasyBurner
2011-02-12 17:12 . 2011-02-12 17:13 -------- d-----w- c:\users\Peter\AppData\Roaming\HTC
2011-02-12 17:03 . 2011-02-12 17:03 -------- d-----w- c:\program files (x86)\Spirent Communications
2011-02-11 20:40 . 2009-08-19 21:50 24416 ----a-r- c:\windows\system32\AdobePDFUI.dll
2011-02-08 16:31 . 2011-02-08 16:31 -------- d-----w- c:\users\Peter\AppData\Roaming\Flight One Software
2011-02-07 14:21 . 2011-02-07 14:21 -------- d-----w- c:\programdata\Tarma Installer
2011-02-06 13:08 . 2011-02-06 13:08 -------- d-----w- c:\users\Peter\AppData\Local\Peter_van_der_Veen
2011-02-05 14:21 . 2011-02-05 14:21 -------- d-----w- c:\users\Peter\AppData\Local\EA Games
2011-01-31 15:49 . 2010-04-19 16:04 12032 ----a-w- c:\windows\system32\drivers\dadder.sys
2011-01-29 21:59 . 2011-01-29 22:07 -------- d-----w- c:\program files (x86)\TheGreenBow VPN
2011-01-28 19:53 . 2011-01-28 19:53 -------- d-----w- c:\program files\7-Zip
2011-01-27 10:38 . 2011-01-27 23:25 -------- d-----w- c:\program files (x86)\NETGEAR
2011-01-24 17:36 . 2011-01-24 17:36 -------- d-----w- c:\users\Peter\AppData\Roaming\GrabIt
2011-01-24 17:35 . 2011-01-24 17:35 -------- d-----w- c:\program files (x86)\GrabIt
2011-01-24 17:15 . 2010-12-08 12:12 60800 ----a-w- c:\windows\system32\Spool\prtprocs\x64\LMIproc.dll
2011-01-24 17:15 . 2010-12-08 12:12 33152 ----a-w- c:\windows\system32\LMIport.dll
2011-01-24 17:15 . 2010-12-08 12:12 87456 ----a-w- c:\windows\system32\LMIRfsClientNP.dll
2011-01-24 17:15 . 2010-09-17 14:40 72216 ----a-w- c:\windows\system32\drivers\LMIRfsDriver.sys
2011-01-24 17:15 . 2010-12-08 12:12 80768 ----a-w- c:\windows\system32\LMIinit.dll
2011-01-24 17:15 . 2011-01-29 18:03 -------- d-----w- c:\programdata\LogMeIn
2011-01-24 14:55 . 2010-11-09 13:35 21992 ----a-w- c:\windows\system32\drivers\cpuz135_x64.sys
2011-01-24 14:43 . 2011-01-24 18:49 -------- d-----w- c:\program files (x86)\AIDA64 Extreme Edition
2011-01-23 16:08 . 2011-01-23 16:08 -------- d-----w- c:\users\Peter\AppData\Local\Apple Computer
2011-01-23 16:08 . 2011-01-23 16:10 -------- d-----w- c:\users\Peter\AppData\Roaming\Apple Computer
2011-01-23 16:08 . 2009-05-18 12:17 34152 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2011-01-23 16:08 . 2008-04-17 11:12 126312 ----a-w- c:\windows\system32\GEARAspi64.dll
2011-01-23 16:08 . 2008-04-17 11:12 107368 ----a-w- c:\windows\SysWow64\GEARAspi.dll
2011-01-23 16:07 . 2011-01-23 16:08 -------- d-----w- c:\programdata\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
2011-01-23 16:07 . 2011-01-23 16:08 -------- d-----w- c:\program files\iTunes
2011-01-23 16:07 . 2011-01-23 16:08 -------- d-----w- c:\program files (x86)\iTunes
2011-01-23 16:06 . 2011-01-23 16:06 -------- d-----w- c:\programdata\Apple

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-01-13 08:47 . 2010-05-26 22:49 38848 ----a-w- c:\windows\avastSS.scr
2011-01-13 08:47 . 2010-05-03 14:19 188216 ----a-w- c:\windows\SysWow64\aswBoot.exe
2011-01-13 08:47 . 2011-01-19 17:05 237168 ----a-w- c:\windows\system32\aswBoot.exe
2011-01-13 08:41 . 2010-05-03 14:20 273488 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-01-13 08:40 . 2010-05-03 14:19 51792 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-01-13 08:37 . 2010-05-03 14:20 29264 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-01-13 08:37 . 2010-05-03 14:19 62032 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-01-13 08:37 . 2010-05-03 14:20 20560 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-12-20 17:09 . 2010-05-14 00:34 38224 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2010-12-20 17:08 . 2010-05-14 00:34 24152 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-12-15 13:32 . 2003-10-17 11:44 499712 ----a-w- c:\windows\SysWow64\msvcp71.dll
2010-12-15 13:32 . 2003-10-17 11:44 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll
2010-12-01 09:27 . 2010-12-01 09:27 28728 ----a-w- c:\windows\system32\drivers\ndistgb.sys
2010-11-29 16:38 . 2010-11-29 16:38 94208 ----a-w- c:\windows\SysWow64\QuickTimeVR.qtx
2010-11-29 16:38 . 2010-11-29 16:38 69632 ----a-w- c:\windows\SysWow64\QuickTime.qts
2010-11-26 04:20 . 2010-11-26 04:20 8120320 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2010-11-26 03:19 . 2010-11-26 03:19 21610496 ----a-w- c:\windows\system32\atio6axx.dll
2010-11-26 03:02 . 2010-11-26 03:02 16702976 ----a-w- c:\windows\SysWow64\atioglxx.dll
2010-11-26 02:58 . 2010-11-26 02:58 143360 ----a-w- c:\windows\system32\atiapfxx.exe
2010-11-26 02:58 . 2010-11-01 18:54 550400 ----a-w- c:\windows\SysWow64\aticfx32.dll
2010-11-26 02:57 . 2010-04-07 02:15 648704 ----a-w- c:\windows\system32\aticfx64.dll
2010-11-26 02:54 . 2010-11-26 02:54 462848 ----a-w- c:\windows\system32\ATIDEMGX.dll
2010-11-26 02:54 . 2010-11-26 02:54 478720 ----a-w- c:\windows\system32\atieclxx.exe
2010-11-26 02:54 . 2010-11-26 02:54 203776 ----a-w- c:\windows\system32\atiesrxx.exe
2010-11-26 02:53 . 2010-11-26 02:53 120320 ----a-w- c:\windows\system32\atitmm64.dll
2010-11-26 02:52 . 2010-11-26 02:52 423424 ----a-w- c:\windows\system32\atipdl64.dll
2010-11-26 02:52 . 2010-11-26 02:52 356352 ----a-w- c:\windows\SysWow64\atipdlxx.dll
2010-11-26 02:52 . 2010-11-26 02:52 278528 ----a-w- c:\windows\SysWow64\Oemdspif.dll
2010-11-26 02:52 . 2010-11-26 02:52 16384 ----a-w- c:\windows\system32\atimuixx.dll
2010-11-26 02:52 . 2010-11-26 02:52 59392 ----a-w- c:\windows\system32\atiedu64.dll
2010-11-26 02:52 . 2010-11-26 02:52 43520 ----a-w- c:\windows\SysWow64\ati2edxx.dll
2010-11-26 02:49 . 2010-11-26 02:49 4066816 ----a-w- c:\windows\SysWow64\atidxx32.dll
2010-11-26 02:40 . 2010-04-07 01:54 4794368 ----a-w- c:\windows\system32\atidxx64.dll
2010-11-26 02:30 . 2010-11-26 02:30 51200 ----a-w- c:\windows\system32\aticalrt64.dll
2010-11-26 02:30 . 2010-11-01 18:54 4122624 ----a-w- c:\windows\SysWow64\atiumdag.dll
2010-11-26 02:30 . 2010-11-26 02:30 46080 ----a-w- c:\windows\SysWow64\aticalrt.dll
2010-11-26 02:30 . 2010-11-26 02:30 44544 ----a-w- c:\windows\system32\aticalcl64.dll
2010-11-26 02:30 . 2010-11-26 02:30 44032 ----a-w- c:\windows\SysWow64\aticalcl.dll
2010-11-26 02:29 . 2010-11-26 02:29 6815232 ----a-w- c:\windows\system32\aticaldd64.dll
2010-11-26 02:29 . 2010-10-14 16:55 3217408 ----a-w- c:\windows\system32\atiumd6a.dll
2010-11-26 02:28 . 2010-11-26 02:28 5441024 ----a-w- c:\windows\SysWow64\aticaldd.dll
2010-11-26 02:24 . 2010-04-07 01:46 58880 ----a-w- c:\windows\system32\coinst.dll
2010-11-26 02:24 . 2010-10-14 16:55 5258240 ----a-w- c:\windows\system32\atiumd64.dll
2010-11-26 02:22 . 2010-11-01 18:54 3460096 ----a-w- c:\windows\SysWow64\atiumdva.dll
2010-11-26 02:17 . 2010-09-13 22:51 351232 ----a-w- c:\windows\system32\atiadlxx.dll
2010-11-26 02:17 . 2010-11-26 02:17 249856 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2010-11-26 02:17 . 2010-11-26 02:17 14848 ----a-w- c:\windows\system32\atig6pxx.dll
2010-11-26 02:17 . 2010-11-26 02:17 12800 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2010-11-26 02:17 . 2010-11-26 02:17 12800 ----a-w- c:\windows\system32\atiglpxx.dll
2010-11-26 02:17 . 2010-11-26 02:17 31744 ----a-w- c:\windows\system32\atig6txx.dll
2010-11-26 02:16 . 2010-11-26 02:16 27136 ----a-w- c:\windows\SysWow64\atigktxx.dll
2010-11-26 02:16 . 2010-11-26 02:16 289792 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2010-11-26 02:16 . 2010-04-07 01:22 39936 ----a-w- c:\windows\system32\atiuxp64.dll
2010-11-26 02:15 . 2010-11-26 02:15 30720 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2010-11-26 02:15 . 2010-09-13 22:51 37888 ----a-w- c:\windows\system32\atiu9p64.dll
2010-11-26 02:15 . 2010-11-01 18:54 28672 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2010-11-26 02:15 . 2010-11-26 02:15 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2010-11-26 02:09 . 2010-11-26 02:09 53760 ----a-w- c:\windows\system32\atimpc64.dll
2010-11-26 02:09 . 2010-11-26 02:09 53760 ----a-w- c:\windows\system32\amdpcom64.dll
2010-11-26 02:09 . 2010-11-26 02:09 52736 ----a-w- c:\windows\SysWow64\atimpc32.dll
2010-11-26 02:09 . 2010-11-26 02:09 52736 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2010-05-11 17:15 . 2010-05-11 17:11 640192 ----a-w- c:\program files (x86)\UninstallNA.exe
2010-05-05 20:54 . 2010-05-05 20:50 514517 ----a-w- c:\program files (x86)\UninstalEurope.exe
.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Google Update"="c:\users\Peter\AppData\Local\Google\Update\GoogleUpdate.exe" [2010-05-03 136176]
"DU Meter"="c:\program files (x86)\DU Meter\DUMeter.exe" [2010-08-21 2931744]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]
"OfficeSyncProcess"="c:\program files\Microsoft Office\Office14\MSOSYNC.EXE" [2010-03-16 908160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NUSB3MON"="c:\program files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-01-22 106496]
"Lycosa"="c:\program files (x86)\Razer\Lycosa\razerhid.exe" [2009-10-08 232960]
"ATICustomerCare"="c:\program files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe" [2010-03-04 311296]
"HDAudDeck"="c:\program files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" [2010-06-08 2441328]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-11-25 336384]
"DeathAdder"="c:\program files (x86)\Razer\DeathAdder\razerhid.exe" [2010-05-05 251392]
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2011-01-10 1230704]

c:\users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Rainmeter.lnk - c:\program files\Rainmeter\Rainmeter.exe [2011-1-16 117248]
SpeedFan.lnk - c:\program files (x86)\SpeedFan\speedfan.exe [2010-11-3 4360896]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-disabled]
"AdobeCS4ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
"Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
"Adobe_ID0ENQBO"=c:\progra~2\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
"MRUTray"=c:\program files (x86)\Marvell\raid\tray\MarvellTray.exe
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"THX Audio Control Panel"="c:\program files (x86)\Creative\THX TruStudio PRO\THXAudioCP\THXAudio.exe" /r
"TkBellExe"="c:\program files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
"AudioDrvEmulator"="c:\program files (x86)\Creative\Shared Files\Module Loader\DLLML.exe" -1 AudioDrvEmulator "c:\program files (x86)\Creative\Shared Files\Module Loader\Audio Emulator\AudDrvEm.dll"
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe"
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"HTC Sync Loader"="c:\program files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup

R2 CanalPlus.VOD;CanalPlus.VOD;c:\program files (x86)\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe [2010-05-03 188416]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Service Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-13 136176]
R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files (x86)\LogMeIn\x64\RaInfo.sys [x]
R3 Adobe Version Cue CS4;Adobe Version Cue CS4;c:\program files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [2008-08-15 284016]
R3 ALSysIO;ALSysIO;c:\users\Peter\AppData\Local\Temp\ALSysIO64.sys [x]
R3 CT20XUT.SYS;CT20XUT.SYS;c:\windows\System32\drivers\CT20XUT.SYS [2009-06-04 202776]
R3 CT20XUT;CT20XUT;c:\windows\system32\drivers\CT20XUT.SYS [2009-06-04 202776]
R3 CTEXFIFX.SYS;CTEXFIFX.SYS;c:\windows\System32\drivers\CTEXFIFX.SYS [2009-06-04 1417240]
R3 CTEXFIFX;CTEXFIFX;c:\windows\system32\drivers\CTEXFIFX.SYS [2009-06-04 1417240]
R3 CTHWIUT.SYS;CTHWIUT.SYS;c:\windows\System32\drivers\CTHWIUT.SYS [2009-06-04 94744]
R3 CTHWIUT;CTHWIUT;c:\windows\system32\drivers\CTHWIUT.SYS [2009-06-04 94744]
R3 CYUSB;Cypress Generic USB Driver;c:\windows\system32\Drivers\CYUSB.sys [2009-08-10 47104]
R3 DUMeterDrv;Hagel Technologies DU Meter traffic accounting driver;c:\program files (x86)\DU Meter\DUMETR64.SYS [2010-08-19 20904]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2010-05-03 1038088]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [2009-11-01 33736]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [2010-06-25 36928]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 51456888]
R3 nmwcdcx64;Nokia USB Generic;c:\windows\system32\drivers\nmwcdcx64.sys [2007-06-28 12288]
R3 nmwcdx64;Nokia USB Phone Parent;c:\windows\system32\drivers\nmwcdx64.sys [2007-06-28 173056]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-18 1255736]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 mv91cons;Marvell 91xx Config Device Driver;c:\windows\system32\DRIVERS\mv91cons.sys [2009-10-27 22568]
S0 mv91xx;mv91xx;c:\windows\system32\DRIVERS\mv91xx.sys [2009-12-25 297512]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2010-03-31 55024]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 aswSP;aswSP; [x]
S1 ndistgb;TheGreenBow NDIS filter driver;c:\windows\system32\DRIVERS\ndistgb.sys [2010-12-01 28728]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-11-26 203776]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2011-01-13 62032]
S2 cpuz133;cpuz133;c:\windows\system32\drivers\cpuz133_x64.sys [2010-03-10 20456]
S2 cpuz134;cpuz134;c:\windows\system32\drivers\cpuz134_x64.sys [2010-07-09 21480]
S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x64.sys [2010-11-09 21992]
S2 DUMeterSvc;DU Meter Service;c:\program files (x86)\DU Meter\DUMeterSvc.exe [2010-08-21 1411616]
S2 HssWd;Hotspot Shield Monitoring Service;c:\program files (x86)\Hotspot Shield\bin\hsswd.exe [2010-10-15 326704]
S2 Marvell RAID;Marvell RAID Event Agent;c:\program files (x86)\Marvell\raid\svc\mvraidsvc.exe [2009-10-14 151552]
S2 mi-raysat_3dsmax2010_64;mental ray 3.7 Satellite for Autodesk 3ds Max 2010 64-bit 64-bit;c:\program files\Autodesk\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_64server.exe [2009-03-12 86016]
S2 MRUWebService;MRU Web Service;c:\program files (x86)\Marvell\raid\Apache2\bin\httpd.exe [2008-06-12 24635]
S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2010-09-16 80896]
S2 SaiDOutput;Saitek DirectOutput;c:\program files\Saitek\DirectOutput\DirectOutputService.exe [2008-04-04 241152]
S2 TabletServicePen;TabletServicePen;c:\program files\Tablet\Pen\Pen_Tablet.exe [2010-07-13 7329648]
S2 TgbIke Starter;TgbIke Starter;c:\windows\System32\tgbstarter.exe [2009-11-20 162872]
S2 TouchServicePen;Wacom Consumer Touch Service;c:\program files\Tablet\Pen\Pen_TouchService.exe [2010-07-13 719216]
S2 WinRing0_1_2_0;WinRing0_1_2_0;c:\users\Peter\AppData\Local\Microsoft\Windows Sidebar\Gadgets\IntelCoreSeries24.gadget\WinRing0x64.sys [2010-09-18 14544]
S2 Winstep Xtreme Service;Winstep Xtreme Service;c:\program files (x86)\Winstep\WsxService [x]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2010-11-26 8120320]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-11-26 289792]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2010-11-17 115216]
S3 DAdderFltr;DeathAdder Mouse;c:\windows\system32\drivers\dadder.sys [2010-04-19 12032]
S3 DKRtWrt;DKRtWrt;c:\windows\system32\DRIVERS\DKRtWrt.sys [2010-03-10 52144]
S3 Lycosa;Lycosa Keyboard;c:\windows\system32\drivers\Lycosa.sys [2009-09-30 20352]
S3 npusbio;npusbio;c:\windows\system32\Drivers\npusbio_x64.sys [2008-04-25 55328]
S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2010-01-22 77824]
S3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2010-01-22 180224]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-08-20 239616]
S3 SaiH0762;SaiH0762;c:\windows\system32\DRIVERS\SaiH0762.sys [2008-04-04 178560]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2010-05-15 1327520]
S3 wacmoumonitor;Wacom Mode Helper;c:\windows\system32\DRIVERS\wacmoumonitor.sys [2010-05-19 18288]


--- Autres Services/Pilotes en mémoire ---

*Deregistered* - TgbIpSec
.
Contenu du dossier 'Tâches planifiées'

2011-02-22 c:\windows\Tasks\GlaryInitialize.job
- c:\program files (x86)\Glary Utilities\initialize.exe [2010-05-03 10:28]

2011-02-22 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-13 23:39]

2011-02-22 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-13 23:39]

2011-02-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2236456825-1794628635-445577372-1001Core.job
- c:\users\Peter\AppData\Local\Google\Update\GoogleUpdate.exe [2010-05-03 12:10]

2011-02-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2236456825-1794628635-445577372-1001UA.job
- c:\users\Peter\AppData\Local\Google\Update\GoogleUpdate.exe [2010-05-03 12:10]
.

--------- x86-64 -----------


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}]
2010-09-22 19:19 284208 ----a-w- c:\program files (x86)\Hotspot Shield\HssIE\HssIE_64.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="c:\program files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-04 186904]
"ProfilerU"="c:\program files\Saitek\SD6\Software\ProfilerU.exe" [2009-06-03 357888]
"SaiMfd"="c:\program files\Saitek\SD6\Software\SaiMfd.exe" [2009-06-03 194560]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]
"THXCfg64"="c:\windows\system32\RunDLL32.exe" [2009-07-14 45568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Examen supplémentaire -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: &Envoyer à OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Add to &Evernote - c:\program files (x86)\Evernote3.5\enbar.dll/2000
IE: Ajouter la cible du lien à un fichier PDF existant - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Ajouter à un fichier PDF existant - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convertir au format Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Convertir la cible du lien au format Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: E&xporter vers Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
TCP: {5C390903-C08D-4CA8-A545-DA16AD5ED3FE} = 212.27.40.240,212.27.40.241
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
.
.
------- Associations de fichier -------
.
.txt=Notepad++_file
.
- - - - ORPHELINS SUPPRIMES - - - -

URLSearchHooks-{e84cc2c1-b722-48fc-a39c-edb8b525c777} - (no file)
WebBrowser-{E84CC2C1-B722-48FC-A39C-EDB8B525C777} - (no file)
AddRemove-A2A Accusim for the Wings of POWER 3 Razorback - c:\windows\UNWISE.EXE
AddRemove-A2A Wings of POWER 3 P47 Razorback - c:\windows\UNWISE.EXE
AddRemove-dBpoweramp CD Writer - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBpoweramp Dalet Codec - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBpoweramp DSP Effects - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBpoweramp FLAC Codec - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBpoweramp m4a Codec - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBpoweramp Monkeys Audio Codec - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBPowerAMP Mp2 and BwfMp2 codec - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBpoweramp mp3 (Fraunhofer IIS) Codec - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBpoweramp Musepack Codec - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBpoweramp Music Converter - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBpoweramp Ogg Vorbis Codec - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBPowerAMP Real Audio (Helix) Encoder - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBPoweramp tooLame MP2 codec - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBpoweramp Wave64 Codec - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBpoweramp WavPack Codec - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBpoweramp Windows Media Audio 10 Codec - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBpoweramp [Arrange Audio] Codec - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBpoweramp [Calculate Audio CRC] Codec - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBpoweramp [ID Tag Update] Codec - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBpoweramp [Multi Encoder] Codec - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBpoweramp [Tag From Filename] Codec - c:\windows\system32\SpoonUninstall.exe
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc_moh.exe
AddRemove-JustFlight TrafficPlus Pack Military 1 [FSX] - c:\program files\Microsoft Games\Microsoft Flight Simulator X\Uninstal.exe
AddRemove-JustFlight TrafficPlus Pack Military 2 [FSX] - c:\program files\Microsoft Games\Microsoft Flight Simulator X\Uninstal.exe



[HKEY_LOCAL_MACHINE\system\ControlSet001\services\DUMeterSvc]
"ImagePath"="c:\program files (x86)\DU Meter\DUMeterSvc.exe /startedbyscm:E1F6D4BE-40E33354-DUMeterService"

[HKEY_LOCAL_MACHINE\system\ControlSet001\services\Winstep Xtreme Service]
"ImagePath"="c:\program files (x86)\Winstep\WsxService"
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------

[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (LocalSystem)
"{47833539-D0C5-4125-9FA8-0819E2EAAC93}"=hex:51,66,7a,6c,4c,1d,38,12,57,36,90,
43,f7,9e,4b,04,e0,be,4b,59,e7,b4,e8,87
"{18DF081C-E8AD-4283-A596-FA578C2EBDC3}"=hex:51,66,7a,6c,4c,1d,38,12,72,0b,cc,
1c,9f,a6,ed,07,da,80,b9,17,89,70,f9,d7
"{AE7CD045-E861-484F-8273-0445EE161910}"=hex:51,66,7a,6c,4c,1d,38,12,2b,d3,6f,
aa,53,a6,21,0d,fd,65,47,05,eb,48,5d,04
"{F4971EE7-DAA0-4053-9964-665D8EE6A077}"=hex:51,66,7a,6c,4c,1d,38,12,89,1d,84,
f0,92,94,3d,05,e6,72,25,1d,8b,b8,e4,63
"{9FDDE16B-836F-4806-AB1F-1455CBEFF289}"=hex:51,66,7a,6c,4c,1d,38,12,05,e2,ce,
9b,5d,cd,68,0d,d4,09,57,15,ce,b1,b6,9d
"{517BDDE4-E3A7-4570-B21E-2B52B6139FC7}"=hex:51,66,7a,6c,4c,1d,38,12,8a,de,68,
55,95,ad,1e,00,cd,08,68,12,b3,4d,db,d3
"{074C1DC5-9320-4A9A-947D-C042949C6216}"=hex:51,66,7a,6c,4c,1d,38,12,ab,1e,5f,
03,12,dd,f4,0f,eb,6b,83,02,91,c2,26,02
"{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}"=hex:51,66,7a,6c,4c,1d,38,12,3a,a3,f7,
fd,83,a7,ad,0e,fc,b5,35,e1,ab,2d,25,64
"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,38,12,2a,03,db,
df,77,ea,35,06,c3,62,df,65,c4,9b,cc,bd
"{B4F3A835-0E21-4959-BA22-42B3008E02FF}"=hex:51,66,7a,6c,4c,1d,38,12,5b,ab,e0,
b0,13,40,37,0c,c5,34,01,f3,05,d0,46,eb
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,38,12,0a,d7,23,
94,30,02,d1,0f,f1,da,12,24,73,56,27,d2
"{3049C3E9-B461-4BC5-8870-4C09146192CA}"=hex:51,66,7a,6c,4c,1d,38,12,87,c0,5a,
34,53,fa,ab,0e,f7,66,0f,49,11,3f,d6,de

[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration]
@Denied: (2) (LocalSystem)
"Timestamp"=hex:aa,5b,ba,10,63,cd,cb,01

[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,e3,cf,d0,f8,34,58,64,4b,86,6b,0a,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,e3,cf,d0,f8,34,58,64,4b,86,6b,0a,\

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.arw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.arw"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bmp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.bmp"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cr2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.cr2"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.crw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.crw"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.dcr"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dib\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.dib"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dng\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.dng"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.emf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.emf"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.erf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.erf"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fpx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.fpx"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.gif"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.hdr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.hdr"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icl\UserChoice]
@Denied: (2) (S-1-5-21-2236456825-1794628635-445577372-1001)
@Denied: (2) (LocalSystem)
"Progid"="Axialis.IconWorkshop.6.Library"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jfif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.jfif"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpe\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.jpe"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.jpeg"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.JPG\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.jpg"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.kdc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.kdc"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mos\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.mos"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mrw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.mrw"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.nef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.nef"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.orf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.orf"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.pbm"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.pcd"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.pcx"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.pef"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\UserChoice]
@Denied: (2) (S-1-5-21-2236456825-1794628635-445577372-1001)
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.png"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.psd"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.raf"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.raw"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rle\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.rle"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sr2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.sr2"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.srf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.srf"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tga\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.tga"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.tif"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tiff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.tiff"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.ttc"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.ttf"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Gestionnaire de photos 12.wmf"

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)

[HKEY_USERS\S-1-5-21-2236456825-1794628635-445577372-1001\Software\SecuROM\License information*]
"datasecu"=hex:78,85,62,85,f7,1f,0c,5d,b4,59,ee,29,83,fe,7b,db,e7,59,6b,68,91,
da,eb,4d,af,6d,ea,5d,2e,1e,54,43,2c,7f,e8,27,6b,78,ec,3c,d4,43,0e,09,93,1c,\
"rkeysecu"=hex:fc,6e,b7,ae,44,3c,9a,5e,63,92,be,c4,03,83,b9,a7

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_10_3_162_ActiveX.exe,-101"

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_10_3_162_ActiveX.exe"

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe,-101"

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe"

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx"
"ThreadingModel"="Apartment"

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1"

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx"
"ThreadingModel"="Apartment"

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1"

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"

[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"

[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)

[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Autres processus actifs ------------------------
.
c:\program files\Avast5\AvastSvc.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
c:\program files (x86)\Bonjour\mDNSResponder.exe
c:\program files (x86)\Hotspot Shield\bin\openvpnas.exe
c:\program files (x86)\Hotspot Shield\HssWPR\hsssrv.exe
c:\program files (x86)\Autodesk\3ds Max 9\mentalray\satellite\raysat_3dsmax9_32server.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\windows\SysWOW64\PnkBstrB.exe
c:\program files (x86)\Winstep\WsxService.exe
c:\program files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\progra~2\DUMETE~1\DUMeter.exe
c:\users\Peter\AppData\Local\Google\Update\1.2.183.39\GoogleCrashHandler.exe
c:\program files (x86)\Razer\Lycosa\razertra.exe
c:\program files (x86)\Razer\DeathAdder\razertra.exe
c:\program files (x86)\Razer\DeathAdder\razerofa.exe
.
**************************************************************************
.
Heure de fin: 2011-02-22 16:30:35 - La machine a redémarré
ComboFix-quarantined-files.txt 2011-02-22 15:30

Avant-CF: 471 022 813 184 octets libres
Après-CF: 470 899 568 640 octets libres

- - End Of File - - 0AD2C955468A3EA23810E98921497470

[Spoutnik]

Re,

Je viens de constater un autre problème. Je ne sais pas si c'est lié mais je n'ai que le dernier point de restauration disponible dans la fenêtre "restauration du système" alors que j'en ai fait quelques unes avant que j'ai laissé pas mal d'espace pour les faire. Sans parler de combofix qui était censé m'en faire un et qui n'a pas accroché car le seul point dispo remonte à ce matin.

-> Ca sent vraiment le roussi et la réinstalle pour le coup...

[nardino]

Bonjour,
Le mode sans échec est toujours HS ?
@+

[Spoutnik]

Bonjour,

Oui le mode Sans échec est toujours HS
J'ai même été assez drastique puisque je suis allé jusqu'à supprimer (après sauvegarde) les deux sous-arbo de clefs de BR "Minimal" et "Network" pour les reconstituer avec safeboot_win7.reg
Rien n'y fait, après plantage du mode SE ça reboote toujours vers le mode normal qui fonctionne (on marche sur la tête)

@+

[nardino]

Bonsoir,
Il y a des moments où il faut savoir prendre la décision de réinstaller.
Un sfc /scannow et une réparation du démarrage en dernier recours.
@+