Re: Infecté Trojan Generic mon PC fonctionne plus.
le 23 Avr 2010 11:44
Je te colle les 2 rapports OTL.txt et Extras.txt
OTL logfile created on: 23/04/2010 17:35:12 - Run 2
OTL by OldTimer - Version 3.2.2.0 Folder = C:\Documents and Settings\Karim\Bureau
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
446,00 Mb Total Physical Memory | 240,00 Mb Available Physical Memory | 54,00% Memory free
1,00 Gb Paging File | 1,00 Gb Available in Paging File | 87,00% Paging File free
Paging file location(s): C:\pagefile.sys 672 1344 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 74,52 Gb Total Space | 72,37 Gb Free Space | 97,12% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 3,68 Gb Total Space | 1,00 Gb Free Space | 27,17% Space Free | Partition Type: FAT32
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: KARIM-35F86A49F
Current User Name: Karim
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
========== Processes (SafeList) ==========
PRC - C:\Documents and Settings\Karim\Bureau\OTL.exe (OldTimer Tools)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Microsoft Office\OFFICE11\WORDVIEW.EXE (Microsoft Corporation)
PRC - C:\WINDOWS\system32\S3Trayp.exe (S3 Graphics Co., Ltd.)
PRC - C:\WINDOWS\system32\VTTimer.exe (S3 Graphics, Inc.)
========== Modules (SafeList) ==========
MOD - C:\Documents and Settings\Karim\Bureau\OTL.exe (OldTimer Tools)
MOD - C:\WINDOWS\system32\cabinet.dll (Microsoft Corporation)
========== Win32 Services (SafeList) ==========
SRV - (ose) -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
========== Driver Services (SafeList) ==========
DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\hdaudbus.sys (Windows (R) Server 2003 DDK provider)
DRV - (HdAudAddService) -- C:\WINDOWS\system32\drivers\viahduaa.sys (VIA Technologies, Inc.)
DRV - (S3GIGP) -- C:\WINDOWS\system32\drivers\S3gIGPm.sys (S3 Graphics Co., Ltd.)
DRV - (SIS163u) -- C:\WINDOWS\system32\drivers\sis163u.sys (SiS Corporation)
DRV - (AmdK8) -- C:\WINDOWS\system32\drivers\AmdK8.sys (Advanced Micro Devices)
DRV - (viaagp1) -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys (VIA Technologies, Inc.)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
O1 HOSTS File: ([2008/04/14 18:30:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O4 - HKLM..\Run: [S3Trayp] C:\WINDOWS\System32\S3Trayp.exe (S3 Graphics Co., Ltd.)
O4 - HKLM..\Run: [VTTimer] C:\WINDOWS\System32\VTTimer.exe (S3 Graphics, Inc.)
O4 - HKLM..\RunOnce: [DriverPacks Finisher final cleanup] C:\WINDOWS\System32\cmd.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyDocs = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuPinnedList = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMyMusic = 1
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\Antiwpa: DllName - antiwpa.dll - C:\WINDOWS\System32\AntiWPA.dll ()
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Karim\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Karim\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/04/23 16:49:47 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2010/04/23 18:42:44 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys
[2010/04/23 18:42:44 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax
[2010/04/23 18:42:44 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys
[2010/04/23 18:42:44 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll
[2010/04/23 18:41:46 | 000,028,672 | ---- | C] (VIA) -- C:\WINDOWS\System32\VModes.exe
[2010/04/23 18:41:15 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll
[2010/04/23 18:40:54 | 000,014,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\battc.sys
[2010/04/23 18:38:50 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\Ma musique
[2010/04/23 18:38:32 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2010/04/23 18:38:31 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\ODBC
[2010/04/23 18:38:27 | 000,000,000 | R--D | C] -- C:\Program Files
[2010/04/23 18:38:27 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\SpeechEngines
[2010/04/23 18:38:27 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Microsoft Shared
[2010/04/23 18:38:27 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs
[2010/04/23 18:38:23 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll
[2010/04/23 18:38:23 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll
[2010/04/23 18:38:23 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll
[2010/04/23 18:38:21 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll
[2010/04/23 18:38:21 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll
[2010/04/23 18:38:21 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll
[2010/04/23 18:38:21 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll
[2010/04/23 18:38:21 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll
[2010/04/23 18:38:21 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll
[2010/04/23 18:38:21 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll
[2010/04/23 18:38:21 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll
[2010/04/23 18:38:21 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll
[2010/04/23 18:38:21 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll
[2010/04/23 18:38:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll
[2010/04/23 18:38:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll
[2010/04/23 18:38:19 | 000,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll
[2010/04/23 18:38:19 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll
[2010/04/23 18:38:19 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll
[2010/04/23 18:38:19 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll
[2010/04/23 18:38:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll
[2010/04/23 18:38:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll
[2010/04/23 18:38:18 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll
[2010/04/23 18:38:17 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll
[2010/04/23 18:38:17 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll
[2010/04/23 18:38:17 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll
[2010/04/23 18:38:17 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll
[2010/04/23 18:38:17 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll
[2010/04/23 18:38:15 | 000,007,168 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz.dll
[2010/04/23 18:38:15 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll
[2010/04/23 18:38:15 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll
[2010/04/23 18:38:15 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll
[2010/04/23 18:38:15 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll
[2010/04/23 18:38:15 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll
[2010/04/23 18:38:15 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz2.dll
[2010/04/23 18:38:15 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz1.dll
[2010/04/23 18:38:15 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll
[2010/04/23 18:38:15 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL
[2010/04/23 18:38:15 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll
[2010/04/23 18:38:15 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll
[2010/04/23 18:38:15 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll
[2010/04/23 18:38:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood.Tmp
[2010/04/23 18:38:10 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll
[2010/04/23 18:38:10 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll
[2010/04/23 18:38:10 | 000,086,044 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll
[2010/04/23 18:38:10 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2010/04/23 18:38:10 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2010/04/23 18:38:09 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL
[2010/04/23 18:38:09 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL
[2010/04/23 18:38:09 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV
[2010/04/23 18:38:09 | 000,009,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL
[2010/04/23 18:38:09 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL
[2010/04/23 18:38:09 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV
[2010/04/23 18:38:09 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV
[2010/04/23 18:38:09 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV
[2010/04/23 18:38:09 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV
[2010/04/23 18:38:08 | 000,127,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL
[2010/04/23 18:38:08 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL
[2010/04/23 18:38:08 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL
[2010/04/23 18:38:08 | 000,073,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV
[2010/04/23 18:38:08 | 000,070,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL
[2010/04/23 18:38:08 | 000,033,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL
[2010/04/23 18:38:08 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV
[2010/04/23 18:38:08 | 000,025,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV
[2010/04/23 18:38:08 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL
[2010/04/23 18:38:08 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV
[2010/04/23 18:38:08 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV
[2010/04/23 18:38:08 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK
[2010/04/23 18:38:07 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WINSPOOL.DRV
[2010/04/23 18:38:07 | 000,070,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL
[2010/04/23 18:38:07 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE
[2010/04/23 18:38:07 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll
[2010/04/23 18:38:06 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll
[2010/04/23 18:37:57 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Démarrer
[2010/04/23 18:37:57 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents
[2010/04/23 18:37:57 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Modèles
[2010/04/23 18:37:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Favoris
[2010/04/23 18:37:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Bureau
[2010/04/23 18:37:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2010/04/23 18:37:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2010/04/23 18:37:37 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2010/04/23 18:37:37 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data
[2010/04/23 18:37:05 | 000,196,608 | ---- | C] (SiS Corporation) -- C:\WINDOWS\System32\drivers\sis163u.sys
[2010/04/23 18:35:19 | 000,201,216 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\drivers\viahduaa.sys
[2010/04/23 18:32:51 | 000,713,728 | ---- | C] (S3 Graphics Co., Ltd.) -- C:\WINDOWS\System32\drivers\S3gIGPm.sys
[2010/04/23 18:32:49 | 000,200,704 | ---- | C] (S3 Graphics Co., Ltd.) -- C:\WINDOWS\System32\S3minset.exe
[2010/04/23 18:32:49 | 000,176,128 | ---- | C] (S3 Graphics Co., Ltd.) -- C:\WINDOWS\System32\S3Trayp.exe
[2010/04/23 18:32:49 | 000,053,248 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\VTTimer.exe
[2010/04/23 18:32:34 | 000,544,768 | ---- | C] (S3 Graphics Co., Ltd.) -- C:\WINDOWS\System32\S3ovrlay.dll
[2010/04/23 18:32:34 | 000,327,680 | ---- | C] (S3 Graphics Co., Ltd.) -- C:\WINDOWS\System32\S3Info2.dll
[2010/04/23 18:32:34 | 000,258,048 | ---- | C] (S3 Graphics Co., Ltd.) -- C:\WINDOWS\System32\S3iset32.dll
[2010/04/23 18:32:33 | 004,022,272 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\s3gIGPgl.dll
[2010/04/23 18:32:33 | 002,192,384 | ---- | C] (S3 Graphics Co., Ltd.) -- C:\WINDOWS\System32\s3ginv.dll
[2010/04/23 18:32:33 | 000,844,288 | ---- | C] (S3 Graphics Co., Ltd.) -- C:\WINDOWS\System32\S3gIGP.dll
[2010/04/23 18:32:33 | 000,647,168 | ---- | C] (S3 Graphics Co., Ltd.) -- C:\WINDOWS\System32\S3Disply.dll
[2010/04/23 18:32:33 | 000,462,848 | ---- | C] (S3 Graphics Co., Ltd.) -- C:\WINDOWS\System32\S3Gamma2.dll
[2010/04/23 18:32:33 | 000,421,888 | ---- | C] (S3 Graphics Co., Ltd.) -- C:\WINDOWS\System32\S3Cfg3d.dll
[2010/04/23 18:29:46 | 000,036,864 | ---- | C] (Advanced Micro Devices) -- C:\WINDOWS\System32\drivers\AmdK8.sys
[2010/04/23 18:29:45 | 000,027,904 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\drivers\VIAAGP1.SYS
[2010/04/23 18:29:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2010/04/23 18:29:22 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2010/04/23 18:23:04 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2010/04/23 18:23:04 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2010/04/23 18:23:04 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2010/04/23 18:23:04 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Offline Web Pages
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\fr-fr
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\fr
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1036
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2010/04/23 18:23:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2010/04/23 17:27:36 | 000,562,176 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Karim\Bureau\OTL.exe
[2010/04/23 17:22:31 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010/04/23 17:22:20 | 000,000,000 | ---D | C] -- C:\Program Files\MSECache
[2010/04/23 16:55:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Karim\Application Data\Identities
[2010/04/23 16:55:32 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Karim\Mes documents\Mes images
[2010/04/23 16:55:32 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Karim\Mes documents\Ma musique
[2010/04/23 16:55:32 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2010/04/23 16:55:11 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Karim\Local Settings\Application Data\Microsoft
[2010/04/23 16:55:11 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Karim\Application Data\Microsoft
[2010/04/23 16:55:11 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Karim\SendTo
[2010/04/23 16:55:11 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Karim\Recent
[2010/04/23 16:55:11 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Karim\Application Data
[2010/04/23 16:55:11 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Karim\Mes documents
[2010/04/23 16:55:11 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Karim\Menu Démarrer
[2010/04/23 16:55:11 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Karim\Favoris
[2010/04/23 16:55:11 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Karim\Cookies
[2010/04/23 16:55:11 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Karim\Voisinage réseau
[2010/04/23 16:55:11 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Karim\Voisinage d'impression
[2010/04/23 16:55:11 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Karim\Modèles
[2010/04/23 16:55:11 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Karim\Local Settings
[2010/04/23 16:55:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Karim\Bureau
[2010/04/23 16:52:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2010/04/23 16:52:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010/04/23 16:52:15 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2010/04/23 16:52:14 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2010/04/23 16:52:14 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2010/04/23 16:52:04 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2010/04/23 16:52:04 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2010/04/23 16:50:27 | 000,022,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe
[2010/04/23 16:50:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2010/04/23 16:50:10 | 001,048,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll.mui
[2010/04/23 16:50:10 | 000,671,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstime.dll
[2010/04/23 16:50:10 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtmled.dll
[2010/04/23 16:50:10 | 000,384,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedkcs32.dll
[2010/04/23 16:50:10 | 000,383,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dll
[2010/04/23 16:50:10 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2010/04/23 16:50:10 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieaksie.dll
[2010/04/23 16:50:10 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrating.dll
[2010/04/23 16:50:10 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieakui.dll
[2010/04/23 16:50:10 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieakeng.dll
[2010/04/23 16:50:10 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\occache.dll
[2010/04/23 16:50:10 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iernonce.dll
[2010/04/23 16:50:09 | 002,455,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dat
[2010/04/23 16:50:09 | 001,159,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll
[2010/04/23 16:50:09 | 000,826,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wininet.dll
[2010/04/23 16:50:09 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe
[2010/04/23 16:50:09 | 000,459,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2010/04/23 16:50:09 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxtmsft.dll
[2010/04/23 16:50:09 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\webcheck.dll
[2010/04/23 16:50:09 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\advpack.dll
[2010/04/23 16:50:09 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\url.dll
[2010/04/23 16:50:09 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pngfilt.dll
[2010/04/23 16:50:09 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsproxy.dll
[2010/04/23 16:50:09 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieudinit.exe
[2010/04/23 16:50:08 | 006,066,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2010/04/23 16:50:08 | 001,831,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcpl.cpl
[2010/04/23 16:50:08 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxtrans.dll
[2010/04/23 16:50:08 | 000,133,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\extmgr.dll
[2010/04/23 16:50:08 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ie4uinit.exe
[2010/04/23 16:50:08 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icardie.dll
[2010/04/23 16:50:08 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2010/04/23 16:50:01 | 000,018,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2010/04/23 16:50:00 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2010/04/23 16:49:24 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll
[2010/04/23 16:49:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dllcache
[2010/04/23 16:48:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2010/04/23 16:48:21 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\Mes images
[2010/04/23 16:48:15 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2010/04/23 16:48:11 | 000,000,000 | ---D | C] -- C:\Program Files\Services en ligne
[2010/04/23 16:47:58 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll
[2010/04/23 16:47:53 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmevtmsg.dll
[2010/04/23 16:47:52 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll
[2010/04/23 16:47:51 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Services
[2010/04/23 16:47:49 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll
[2010/04/23 16:47:49 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2010/04/23 16:47:48 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\MSSoap
[2010/04/23 16:47:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2010/04/23 16:47:43 | 000,432,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll
[2010/04/23 16:47:43 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll
[2010/04/23 16:47:43 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe
[2010/04/23 16:47:43 | 000,114,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll
[2010/04/23 16:47:43 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll
[2010/04/23 16:47:42 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll
[2010/04/23 16:47:42 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll
[2010/04/23 16:47:42 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll
[2010/04/23 16:47:42 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll
[2010/04/23 16:47:39 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2010/04/23 16:47:21 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll
[2010/04/23 16:47:21 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll
[2010/04/23 16:47:21 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll
[2010/04/23 16:47:21 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll
[2010/04/23 16:47:17 | 000,241,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll
[2010/04/23 16:47:17 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltMc.exe
[2010/04/23 16:47:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2010/04/23 16:47:16 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll
[2010/04/23 16:47:16 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll
[2010/04/23 16:47:16 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\isrdbg32.dll
[2010/04/23 16:47:16 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll
[2010/04/23 16:47:15 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll
[2010/04/23 16:47:13 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll
[2010/04/23 16:47:13 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2010/04/23 16:47:12 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll
[2010/04/23 16:47:11 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll
[2010/04/23 16:47:09 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe
[2010/04/23 16:47:09 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2010/04/23 16:47:08 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll
[2010/04/23 16:47:08 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll
[2010/04/23 16:47:08 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll
[2010/04/23 16:47:08 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll
[2010/04/23 16:47:03 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\System
[2010/04/23 16:46:57 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2010/04/23 16:46:09 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2010/04/23 16:46:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2010/04/23 16:45:42 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2010/04/23 16:45:41 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2010/04/23 16:45:37 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe
[2010/04/23 16:45:37 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2010/04/23 16:45:29 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe
[2010/04/23 16:45:29 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll
[2010/04/23 16:45:29 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll
[2010/04/23 16:45:28 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll
[2010/04/23 16:45:28 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe
[2010/04/23 16:45:28 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll
[2010/04/23 16:45:23 | 000,634,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll
[2010/04/23 16:45:22 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe
[2010/04/23 16:45:22 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe
[2010/04/23 16:45:22 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe
[2010/04/23 16:45:22 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe
[2010/04/23 16:45:22 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe
[2010/04/23 16:45:21 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe
[2010/04/23 16:45:21 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe
[2010/04/23 16:45:21 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe
[2010/04/23 16:45:21 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe
[2010/04/23 16:45:21 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe
[2010/04/23 16:45:21 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe
[2010/04/23 16:45:21 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe
[2010/04/23 16:45:21 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe
[2010/04/23 16:45:20 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe
[2010/04/23 16:45:20 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe
[2010/04/23 16:45:20 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe
[2010/04/23 16:45:20 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe
[2010/04/23 16:45:20 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe
[2010/04/23 16:45:20 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll
[2010/04/23 16:45:20 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll
[2010/04/23 16:45:14 | 000,190,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe
[2010/04/23 16:45:14 | 000,133,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe
[2010/04/23 16:45:14 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl
[2010/04/23 16:45:13 | 000,354,304 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll
[2010/04/23 16:45:13 | 000,347,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe
[2010/04/23 16:45:13 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe
[2010/04/23 16:45:13 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2010/04/23 16:45:12 | 000,539,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe
[2010/04/23 16:45:12 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe
[2010/04/23 16:45:11 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll
[2010/04/23 16:45:11 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll
[2010/04/23 16:45:11 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll
[2010/04/23 16:45:11 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll
[2010/04/23 16:45:10 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe
[2010/04/23 16:45:09 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll
[2010/04/23 16:45:09 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll
[2010/04/23 16:45:09 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe
[2010/04/23 16:45:09 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe
[2010/04/23 16:45:09 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll
[2010/04/23 16:45:09 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe
[2010/04/23 16:45:09 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll
[2010/04/23 16:45:09 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icaapi.dll
[2010/04/23 16:45:08 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll
[2010/04/23 16:45:08 | 000,427,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll
[2010/04/23 16:45:08 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll
[2010/04/23 16:45:08 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxoci.dll
[2010/04/23 16:45:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2010/04/23 16:45:07 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll
[2010/04/23 16:45:07 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll
[2010/04/23 16:45:06 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll
[2010/04/23 16:45:06 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll
[2010/04/23 16:45:06 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll
[2010/04/23 16:45:06 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\colbact.dll
[2010/04/23 16:45:06 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll
[2010/04/23 16:45:06 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll
[2010/04/23 16:45:06 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll
[2010/04/23 16:45:06 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll
[2010/04/23 16:45:06 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe
[2010/04/23 16:45:06 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll
[2010/04/23 16:45:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2010/04/23 16:45:05 | 001,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsvcs.dll
[2010/04/23 16:45:05 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvut.dll
[2010/04/23 16:45:05 | 000,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll
[2010/04/23 16:45:05 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrv.dll
[2010/04/23 16:45:05 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll
[2010/04/23 16:44:58 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll
[2010/04/23 16:44:58 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll
[2010/04/23 16:44:58 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll
[2010/04/23 16:44:58 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll
[2010/04/23 16:44:51 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\Mes vidéos
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010/04/23 18:38:37 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2010/04/23 18:38:26 | 000,000,231 | ---- | M] () -- C:\WINDOWS\system.ini
[2010/04/23 17:35:41 | 000,786,432 | -H-- | M] () -- C:\Documents and Settings\Karim\NTUSER.DAT
[2010/04/23 16:59:09 | 000,775,210 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010/04/23 16:59:09 | 000,368,226 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2010/04/23 16:59:09 | 000,311,938 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/04/23 16:59:09 | 000,049,018 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2010/04/23 16:59:09 | 000,040,326 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010/04/23 16:55:40 | 000,000,782 | ---- | M] () -- C:\Documents and Settings\Karim\Bureau\Windows Media Player.lnk
[2010/04/23 16:55:12 | 000,000,020 | -HS- | M] () -- C:\Documents and Settings\Karim\ntuser.ini
[2010/04/23 16:55:10 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/04/23 16:55:09 | 467,841,024 | -HS- | M] () -- C:\hiberfil.sys
[2010/04/23 16:52:16 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/04/23 16:52:09 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2010/04/23 16:51:59 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/04/23 16:51:52 | 000,090,296 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/04/23 16:50:55 | 000,001,065 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2010/04/23 16:49:47 | 000,003,072 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010/04/23 16:49:47 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010/04/23 16:49:47 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010/04/23 16:49:47 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini
[2010/04/23 16:49:47 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010/04/23 16:49:47 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010/04/23 16:49:37 | 000,000,507 | ---- | M] () -- C:\WINDOWS\win.ini
[2010/04/23 16:49:32 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010/04/23 16:49:32 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010/04/23 16:49:30 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010/04/23 16:49:24 | 000,004,205 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2010/04/23 16:48:25 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010/04/23 16:48:25 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010/04/23 16:48:21 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010/04/23 16:48:21 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest
[2010/04/23 16:48:21 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010/04/23 16:48:21 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010/04/23 16:48:21 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010/04/23 16:48:21 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010/04/23 16:46:25 | 000,021,892 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010/04/23 16:46:07 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini
[2010/04/23 16:46:07 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini
[2010/04/23 16:43:27 | 000,000,212 | -HS- | M] () -- C:\boot.ini
[2010/04/23 12:14:42 | 000,024,576 | ---- | M] () -- C:\Documents and Settings\Karim\Bureau\netsvcs.doc
[2010/04/22 04:30:02 | 000,562,176 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Karim\Bureau\OTL.exe
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010/04/23 18:38:37 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF
[2010/04/23 18:38:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls
[2010/04/23 18:38:23 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls
[2010/04/23 18:38:23 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls
[2010/04/23 18:38:22 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls
[2010/04/23 18:38:20 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS
[2010/04/23 18:38:20 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls
[2010/04/23 18:38:20 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls
[2010/04/23 18:38:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls
[2010/04/23 18:38:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls
[2010/04/23 18:38:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls
[2010/04/23 18:38:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS
[2010/04/23 18:38:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls
[2010/04/23 18:38:17 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls
[2010/04/23 18:38:17 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls
[2010/04/23 18:38:17 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS
[2010/04/23 18:38:15 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_852.nls
[2010/04/23 18:38:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls
[2010/04/23 18:38:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls
[2010/04/23 18:38:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls
[2010/04/23 18:38:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls
[2010/04/23 18:38:07 | 000,001,896 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2010/04/23 18:37:17 | 000,364,721 | ---- | C] () -- C:\DPsFnshr.exe
[2010/04/23 18:36:56 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\unwlsdrv.exe
[2010/04/23 18:31:42 | 000,059,327 | ---- | C] () -- C:\WINDOWS\System32\S3ovrlay.cfg
[2010/04/23 18:31:42 | 000,051,124 | ---- | C] () -- C:\WINDOWS\System32\S3Trayp.cfg
[2010/04/23 18:31:42 | 000,044,076 | ---- | C] () -- C:\WINDOWS\System32\S3Info2.cfg
[2010/04/23 18:31:42 | 000,037,162 | ---- | C] () -- C:\WINDOWS\System32\S3TrayP2.cfg
[2010/04/23 18:31:42 | 000,034,375 | ---- | C] () -- C:\WINDOWS\System32\S3Ovrly2.cfg
[2010/04/23 18:31:41 | 000,063,489 | ---- | C] () -- C:\WINDOWS\System32\S3Disply.cfg
[2010/04/23 18:31:41 | 000,056,619 | ---- | C] () -- C:\WINDOWS\System32\S3Displ2.cfg
[2010/04/23 18:31:41 | 000,052,037 | ---- | C] () -- C:\WINDOWS\System32\S3Displ3.cfg
[2010/04/23 18:31:41 | 000,050,215 | ---- | C] () -- C:\WINDOWS\System32\S3Gamma2.cfg
[2010/04/23 18:31:41 | 000,043,390 | ---- | C] () -- C:\WINDOWS\System32\S3Cfg3d.cfg
[2010/04/23 18:31:41 | 000,036,546 | ---- | C] () -- C:\WINDOWS\System32\S3Gama_2.cfg
[2010/04/23 18:29:22 | 000,090,296 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/04/23 18:26:24 | 000,000,212 | -HS- | C] () -- C:\boot.ini
[2010/04/23 18:26:20 | 000,001,065 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2010/04/23 17:27:42 | 000,024,576 | ---- | C] () -- C:\Documents and Settings\Karim\Bureau\netsvcs.doc
[2010/04/23 16:55:39 | 000,000,782 | ---- | C] () -- C:\Documents and Settings\Karim\Bureau\Windows Media Player.lnk
[2010/04/23 16:55:12 | 000,001,024 | -H-- | C] () -- C:\Documents and Settings\Karim\ntuser.dat.LOG
[2010/04/23 16:55:12 | 000,000,020 | -HS- | C] () -- C:\Documents and Settings\Karim\ntuser.ini
[2010/04/23 16:55:11 | 000,786,432 | -H-- | C] () -- C:\Documents and Settings\Karim\NTUSER.DAT
[2010/04/23 16:55:09 | 467,841,024 | -HS- | C] () -- C:\hiberfil.sys
[2010/04/23 16:52:09 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2010/04/23 16:50:55 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010/04/23 16:49:47 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2010/04/23 16:49:47 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010/04/23 16:49:47 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010/04/23 16:49:47 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2010/04/23 16:49:47 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2010/04/23 16:49:32 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2010/04/23 16:49:32 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2010/04/23 16:49:30 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2010/04/23 16:48:25 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010/04/23 16:48:25 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010/04/23 16:48:21 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010/04/23 16:48:21 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest
[2010/04/23 16:48:21 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010/04/23 16:48:21 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010/04/23 16:48:21 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010/04/23 16:48:21 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010/04/23 16:46:25 | 000,021,892 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010/04/23 16:45:23 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce
[2010/04/23 16:45:23 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce
[2010/04/23 16:45:23 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce
[2010/04/23 16:45:23 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce
[2010/04/23 16:45:23 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce
[2010/04/23 16:45:23 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce
[2010/04/23 16:45:23 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce
[2010/04/23 16:45:23 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce
[2010/04/23 16:45:21 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2010/04/23 16:45:21 | 000,001,263 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2010/04/23 16:45:20 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2010/04/23 16:45:15 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2005/12/30 00:56:48 | 000,005,376 | ---- | C] () -- C:\WINDOWS\System32\AntiWPA.dll
========== Custom Scans ==========
< %SYSTEMDRIVE%\*.exe >
[2008/05/02 13:41:10 | 000,364,721 | ---- | M] () -- C:\DPsFnshr.exe
< MD5 for: AGP440.SYS >
[2008/06/21 13:26:59 | 018,261,056 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
< MD5 for: ATAPI.SYS >
[2008/06/21 13:26:59 | 018,261,056 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008/04/14 18:30:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
< MD5 for: EVENTLOG.DLL >
[2008/04/14 18:30:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\system32\eventlog.dll
< MD5 for: NETLOGON.DLL >
[2008/04/14 18:30:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\system32\netlogon.dll
< MD5 for: SCECLI.DLL >
[2008/04/14 18:30:00 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\system32\scecli.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job /lockedfiles >
< End of report >
L'autre rapport (extras) :
OTL Extras logfile created on: 23/04/2010 17:26:40 - Run 1
OTL by OldTimer - Version 3.2.2.0 Folder = E:\
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
446,00 Mb Total Physical Memory | 218,00 Mb Available Physical Memory | 49,00% Memory free
1,00 Gb Paging File | 1,00 Gb Available in Paging File | 87,00% Paging File free
Paging file location(s): C:\pagefile.sys 672 1344 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 74,52 Gb Total Space | 72,37 Gb Free Space | 97,12% Space Free | Partition Type: NTFS
Drive D: | 1,73 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive E: | 3,68 Gb Total Space | 1,00 Gb Free Space | 27,18% Space Free | Partition Type: FAT32
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: KARIM-35F86A49F
Current User Name: Karim
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 1
"AntiVirusOverride" = 1
"FirewallDisableNotify" = 1
"FirewallOverride" = 1
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
"DisableUnicastResponsesToMulticastBroadcast" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
"DisableUnicastResponsesToMulticastBroadcast" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{9085040C-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Word Viewer 2003
"SiS163u" = Fujitsu Siemens Computers WLAN 802.11b/g D1705/D1706
"VIA Chrome9 HC IGP Family Display" = VIA Chrome9 HC IGP Family Display
< End of report >
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 1
"AntiVirusOverride" = 1
"FirewallDisableNotify" = 1
"FirewallOverride" = 1
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
"DisableUnicastResponsesToMulticastBroadcast" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
"DisableUnicastResponsesToMulticastBroadcast" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{9085040C-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Word Viewer 2003
"SiS163u" = Fujitsu Siemens Computers WLAN 802.11b/g D1705/D1706
"VIA Chrome9 HC IGP Family Display" = VIA Chrome9 HC IGP Family Display
< End of report >