Il y a actuellement 269 visiteurs
Jeudi 28 Mars 2024
accueilactualitésdossierscomparer les prixtélécharger gratuitement vos logicielsoffres d'emploiforum informatique
Connexion
Créer un compte

Trojan.NetBus [Résolu]

Un ordinateur qui ralentit, des écrans publicitaires qui apparaissent, des applications qui refusent de démarrer ou encore votre navigateur qui s'obstine à ouvrir une page douteuse sont autant d'éléments qui indiquent que l'intégrité de votre ordinateur est menacée par un virus. Vous trouverez dans ce forum quelques conseils et logiciels pour surfer tranquillement.
Règles du forum
Pour afficher un rapport d'analyse ou un rapport d'infection (HijackThis, OTL, AdwCleaner etc...)‎, veuillez utiliser le système de fichiers joints interne au forum. Seuls les formats les .txt et .log de moins de 1Mo sont acceptés. Pour obtenir de l'aide pour insérer vos fichiers joints, veuillez consulter ce tutoriel

Trojan.NetBus [Résolu]

Message le 28 Jan 2011 18:38

Bonsoir,

J'avais posté un sujet là blocage-ordinateur-vt-55645.html
Mais on m'a conseillé de venir dans cette section pour obtenir de l'aide.

Voici mon rapport OTL

http://www.cijoint.fr/cjlink.php?file=c ... 2VNxHc.txt

Symptômes:
Ralentissement du PC
Blocage ou lenteur pour ouvrir le menu démarrer (jusqu'à 10s) ainsi que pour lancer des programmes.
Blocage dans la lecture vidéos.

Hardware:
PC assemblé par mes soins il va y avoir 2 ans

Software:
KIS 2010 ; Spybot S&D ; antimalware ; ad-aware
XP Pro SP3

Le pc est défragmenté.

Je possède le cd original.

Pouvez-vous m'aider?

Merci :)
Thunder1810
Apprenti(e) Expert(e)
Apprenti(e) Expert(e)
 
Messages: 204
Inscription: 07 Déc 2008 10:59
Localisation: 127.0.0.1
 


Re: Aide pour désinfection

Message le 28 Jan 2011 18:51

Salut!

Relance OTL et clique sur le bouton Purge Outils > Cela va le désinstaller entièrement ainsi que ses rapports.

.. ensuite tu le réinstalles ...

Télécharge OTL sur ton Bureau.
• Fait un double-clic sur l'icône d'OTL pour le lancer. (Sous Vista > Clic droit > Exécuter en tant qu'Administrateur).
• Assure toi d'avoir fermé toutes les applications en court de fonctionnement.
• Quand la fenêtre d'OTL apparaît, assure toi que dans la section "Rapport" (en haut à droite) la case "Rapport Minimal" soit cochée.
•Copies et colles le contenu de cette citation dans la partie inférieure d'OTL "Personalisation" :
Code: Tout sélectionner
netsvcs
msconfig
safebootminimal
drivers32
/md5start
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
vaxscsi.sys
nvatabus.sys
SiSRaid.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
/md5stop
%SYSTEMDRIVE%\*.exe
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles

• Cliques sur l'icône "Analyse" (en haut à gauche) .
• Laisse le scan aller à son terme sans te servir du PC.
• A la fin du scan un ou deux rapports vont s'ouvrir "OTL.Txt" et ( ou ) "Extras.Txt"( dans certains cas).
• Copie et colle le ou les rapports dans ta réponse en les posant entre les balises Code > bouton situé en haut de ta fenêtre de réponse.
Avatar de l'utilisateur
danakil
Expert(e)
Expert(e)
 
Messages: 1363
Inscription: 16 Juil 2009 09:47
 

Re: Aide pour désinfection

Message le 29 Jan 2011 15:04

Voila les rapports:

OTL.txt
Code: Tout sélectionner
OTL logfile created on: 29/01/2011 14:39:06 - Run 1
OTL by OldTimer - Version 3.2.20.6     Folder = C:\Documents and Settings\Clément\Bureau
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
 
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 56,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 81,00% Paging File free
Paging file location(s): c:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 596,17 Gb Total Space | 519,46 Gb Free Space | 87,13% Space Free | Partition Type: NTFS
Drive D: | 233,75 Gb Total Space | 233,68 Gb Free Space | 99,97% Space Free | Partition Type: NTFS
Drive E: | 465,76 Gb Total Space | 77,01 Gb Free Space | 16,53% Space Free | Partition Type: NTFS
Drive Y: | 464,68 Gb Total Space | 41,45 Gb Free Space | 8,92% Space Free | Partition Type: NTFS
Drive Z: | 464,68 Gb Total Space | 41,45 Gb Free Space | 8,92% Space Free | Partition Type: NTFS
 
Computer Name: FIXE-CLEMENT | User Name: Clément | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - C:\Documents and Settings\Clément\Bureau\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Steam\Steam.exe (Valve Corporation)
PRC - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.)
PRC - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe (Kaspersky Lab)
PRC - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft)
PRC - C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe (Lavasoft)
PRC - C:\Program Files\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation)
PRC - C:\Program Files\CDBurnerXP\NMSAccessU.exe ()
PRC - C:\Program Files\Raxco\PerfectDisk10\PDAgent.exe (Raxco Software, Inc.)
PRC - C:\Program Files\FileZilla Server\FileZilla server.exe (FileZilla Project)
PRC - C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe (Nero AG)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Logitech\Video\FxSvr2.exe (Logitech Inc.)
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - C:\Documents and Settings\Clément\Bureau\OTL.exe (OldTimer Tools)
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll (Microsoft Corporation)
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - (hpdj) --  File not found
SRV - (Apple Mobile Device) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (AVP) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe (Kaspersky Lab)
SRV - (Lavasoft Ad-Aware Service) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)
SRV - (NMSAccess) -- C:\Program Files\CDBurnerXP\NMSAccessU.exe ()
SRV - (PDEngine) -- C:\Program Files\Raxco\PerfectDisk10\PDEngine.exe (Raxco Software, Inc.)
SRV - (PDAgent) -- C:\Program Files\Raxco\PerfectDisk10\PDAgent.exe (Raxco Software, Inc.)
SRV - (Macromedia Licensing Service) -- C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe ()
SRV - (FileZilla Server) -- C:\Program Files\FileZilla Server\FileZilla Server.exe (FileZilla Project)
SRV - (Nero BackItUp Scheduler 4.0) -- C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe (Nero AG)
SRV - (p2pgasvc) -- C:\WINDOWS\system32\p2pgasvc.dll (Microsoft Corporation)
SRV - (Iprip) -- C:\WINDOWS\system32\iprip.dll (Microsoft Corporation)
SRV - (odserv) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (ose) -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - (sptd) -- C:\WINDOWS\System32\Drivers\sptd.sys ()
DRV - (ati2mtag) -- C:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.)
DRV - (SCREAMINGBDRIVER) -- C:\WINDOWS\system32\drivers\ScreamingBAudio.sys (Screaming Bee LLC)
DRV - (Lbd) -- C:\WINDOWS\system32\DRIVERS\Lbd.sys (Lavasoft AB)
DRV - (StarOpen) -- C:\WINDOWS\System32\drivers\StarOpen.sys ()
DRV - (KLIF) -- C:\WINDOWS\system32\drivers\klif.sys (Kaspersky Lab)
DRV - (klbg) -- C:\WINDOWS\system32\drivers\klbg.sys (Kaspersky Lab)
DRV - (klmouflt) -- C:\WINDOWS\system32\drivers\klmouflt.sys (Kaspersky Lab)
DRV - (klim5) -- C:\WINDOWS\system32\drivers\klim5.sys (Kaspersky Lab)
DRV - (kl1) -- C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Lab)
DRV - (DefragFS) -- C:\WINDOWS\System32\drivers\DefragFs.sys (Raxco Software, Inc.)
DRV - (L1e) -- C:\WINDOWS\system32\drivers\l1e51x86.sys (Atheros Communications, Inc.)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
DRV - (AtiHdmiService) -- C:\WINDOWS\system32\drivers\AtiHdmi.sys (ATI Research Inc.)
DRV - (adfs) -- C:\WINDOWS\System32\drivers\adfs.sys (Adobe Systems, Inc.)
DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative)
DRV - (RTL8023xp) -- C:\WINDOWS\system32\drivers\Rtnicxp.sys (Dynex                                                       )
DRV - (Tcpip6) -- C:\WINDOWS\system32\drivers\tcpip6.sys (Microsoft Corporation)
DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\hdaudbus.sys (Windows (R) Server 2003 DDK provider)
DRV - (usbaudio) Pilote USB audio (WDM) -- C:\WINDOWS\system32\drivers\USBAUDIO.sys (Microsoft Corporation)
DRV - (AsIO) -- C:\WINDOWS\system32\drivers\AsIO.sys ()
DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.)
DRV - (sfvfs02) StarForce Protection VFS Driver (version 2.x) -- C:\WINDOWS\System32\drivers\sfvfs02.sys (Protection Technology)
DRV - (HDJMidi) -- C:\WINDOWS\system32\drivers\hdjmidi.sys (Hercules Technologies)
DRV - (HDJCtrl) -- C:\WINDOWS\system32\drivers\HDJCTRL.sys (Hercules (R))
DRV - (sfdrv01) StarForce Protection Environment Driver (version 1.x) -- C:\WINDOWS\System32\drivers\sfdrv01.sys (Protection Technology)
DRV - (sfhlp02) StarForce Protection Helper Driver (version 2.x) -- C:\WINDOWS\System32\drivers\sfhlp02.sys (Protection Technology)
DRV - (MTsensor) -- C:\WINDOWS\system32\drivers\ASACPI.sys ()
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = local;*.local
 
[color=#E56717]========== FireFox ==========[/color]
 
 
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/01/27 17:14:22 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/01/27 17:14:22 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0b8\extensions\\Components: C:\Program Files\Mozilla Firefox 4.0 Beta 8\components
FF - HKLM\software\mozilla\Mozilla Firefox 4.0b8\extensions\\Plugins: C:\Program Files\Mozilla Firefox 4.0 Beta 8\plugins
FF - HKLM\software\mozilla\Thunderbird\Extensions\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\THBExt [2010/11/22 18:28:54 | 000,000,000 | ---D | M]
 
[2010/03/30 17:59:42 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Clément\Application Data\Mozilla\Extensions
[2010/03/30 17:59:42 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Clément\Application Data\Mozilla\Extensions\maxtv4@labs.max-tv.be
[2011/01/28 20:20:05 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Clément\Application Data\Mozilla\Firefox\Profiles\6z62zaiw.default\extensions
[2010/07/31 10:05:27 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Clément\Application Data\Mozilla\Firefox\Profiles\6z62zaiw.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/12/26 08:12:36 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Documents and Settings\Clément\Application Data\Mozilla\Firefox\Profiles\6z62zaiw.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2011/01/07 15:01:58 | 000,000,000 | ---D | M] (DVDVideoSoftTB Community Toolbar) -- C:\Documents and Settings\Clément\Application Data\Mozilla\Firefox\Profiles\6z62zaiw.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
[2010/10/21 21:42:06 | 000,000,000 | ---D | M] ("DVDVideoSoft Menu") -- C:\Documents and Settings\Clément\Application Data\Mozilla\Firefox\Profiles\6z62zaiw.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2011/01/17 21:18:15 | 000,000,000 | ---D | M] (Easy Youtube Video Downloader) -- C:\Documents and Settings\Clément\Application Data\Mozilla\Firefox\Profiles\6z62zaiw.default\extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}
[2011/01/07 15:01:56 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Documents and Settings\Clément\Application Data\Mozilla\Firefox\Profiles\6z62zaiw.default\extensions\engine@conduit.com
[2010/06/23 08:19:41 | 000,000,000 | ---D | M] (LogMeIn, Inc. Remote Access Plugin) -- C:\Documents and Settings\Clément\Application Data\Mozilla\Firefox\Profiles\6z62zaiw.default\extensions\LogMeInClient@logmein.com
[2011/01/28 20:20:05 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/11/22 18:29:21 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
[2010/12/22 11:05:39 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml
[2010/12/22 11:05:39 | 000,001,822 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml
[2010/12/22 11:05:39 | 000,000,757 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml
[2010/12/22 11:05:40 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml
[2010/12/22 11:05:40 | 000,000,956 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml
 
O1 HOSTS File: ([2010/12/31 16:25:58 | 000,370,717 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: ::1             localhost
O1 - Hosts: 127.0.0.1            activate.adobe.com
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll (Kaspersky Lab)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O3 - HKLM\..\Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe (Kaspersky Lab)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [Megakey]  File not found
O4 - HKCU..\Run: [MegakeyUpdater]  File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMBalloonTip = 0
O8 - Extra context menu item: Ajouter à l'Anti-bannière - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ie_banner_deny.htm ()
O9 - Extra Button: Clavier &virtuel - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O9 - Extra Button: Analyse des &liens - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1290344913140 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O18 - Protocol\Handler\cetihpz {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll (Hewlett-Packard Company)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\mzvkbd3.dll (Kaspersky Lab)
O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\kloehk.dll (Kaspersky Lab)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\klogon: DllName - C:\WINDOWS\system32\klogon.dll - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab)
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Clément\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Clément\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/12/29 17:47:35 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (PDBoot.exe) - C:\WINDOWS\System32\PDBoot.exe (Raxco Software, Inc.)
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O34 - HKLM BootExecute: (lsdelete) - C:\WINDOWS\System32\lsdelete.exe ()
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
NetSvcs: Ias -  File not found
NetSvcs: Iprip - C:\WINDOWS\system32\iprip.dll (Microsoft Corporation)
NetSvcs: Irmon -  File not found
NetSvcs: NWCWorkstation -  File not found
NetSvcs: Nwsapagent -  File not found
NetSvcs: WmdmPmSp -  File not found
 
MsConfig - StartUpReg: [b]AdobeCS4ServiceManager[/b] - hkey= - key= - C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
MsConfig - StartUpReg: [b]DivXUpdate[/b] - hkey= - key= - C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
MsConfig - StartUpReg: [b]QuickTime Task[/b] - hkey= - key= - C:\Program Files\QuickTime\qttask.exe (Apple Inc.)
MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 0
 
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: Lavasoft Ad-Aware Service - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft)
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
 
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lhacm - C:\WINDOWS\System32\lhacm.acm (Microsoft Corporation)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2011/01/29 14:38:23 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Clément\Bureau\OTL.exe
[2011/01/29 12:37:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2011/01/28 20:36:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Megamedia
[2011/01/27 21:39:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Clément\Application Data\Scooter Software
[2011/01/25 19:14:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Clément\Menu Démarrer\Programmes\MoM
[2011/01/25 19:14:50 | 000,000,000 | ---D | C] -- C:\Program Files\OVH
[2011/01/21 20:14:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Clément\Mes documents\LimeWire
[2011/01/21 20:11:45 | 000,000,000 | ---D | C] -- C:\Program Files\LimeWire
[2011/01/18 19:12:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\iTunes
[2011/01/18 19:09:35 | 000,000,000 | ---D | C] -- C:\Serveurs
[2011/01/18 19:08:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Clément\Bureau\From ipod
[2011/01/18 19:07:57 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011/01/18 19:06:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Apple Computer
[2011/01/18 18:50:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\QuickTime
[2011/01/18 18:49:53 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2011/01/18 18:40:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Clément\Local Settings\Application Data\Macroplant,_LLC
[2011/01/18 18:31:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Clément\Local Settings\Application Data\Wide Angle Software
[2011/01/17 21:14:51 | 000,131,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSADODC.ocx
[2011/01/17 21:14:50 | 002,267,368 | ---- | C] (Adobe Systems, Inc.) -- C:\WINDOWS\System32\Flash.ocx
[2011/01/01 18:18:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\DAEMON Tools Lite
[2011/01/01 18:18:33 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2011/01/01 17:45:22 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP
[2011/01/01 17:24:59 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime
[2011/01/01 17:24:58 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime
[2011/01/01 17:24:58 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime
[2011/01/01 17:24:58 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime
[2011/01/01 17:24:58 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime
[2011/01/01 17:24:57 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime
[2011/01/01 17:24:57 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll
[2011/01/01 17:24:57 | 000,031,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys
[2011/01/01 17:24:56 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svc.dll
[2011/01/01 17:24:56 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wam51.dll
[2011/01/01 17:24:56 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll
[2011/01/01 17:24:56 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamreg51.dll
[2011/01/01 17:24:56 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll
[2011/01/01 17:24:56 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll
[2011/01/01 17:24:56 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll
[2011/01/01 17:24:56 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll
[2011/01/01 17:24:55 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll
[2011/01/01 17:24:55 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll
[2011/01/01 17:24:53 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uihelper.dll
[2011/01/01 17:24:53 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll
[2011/01/01 17:24:53 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime
[2011/01/01 17:24:52 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tools.dll
[2011/01/01 17:24:52 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe
[2011/01/01 17:24:52 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll
[2011/01/01 17:24:51 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime
[2011/01/01 17:24:51 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe
[2011/01/01 17:24:51 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll
[2011/01/01 17:24:51 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe
[2011/01/01 17:24:51 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys
[2011/01/01 17:24:51 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys
[2011/01/01 17:24:51 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys
[2011/01/01 17:24:49 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svcext51.dll
[2011/01/01 17:24:49 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sspifilt.dll
[2011/01/01 17:24:49 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssinc51.dll
[2011/01/01 17:24:49 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll
[2011/01/01 17:24:48 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll
[2011/01/01 17:24:47 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll
[2011/01/01 17:24:47 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpthrd.dll
[2011/01/01 17:24:47 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmptrap.exe
[2011/01/01 17:24:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll
[2011/01/01 17:24:46 | 000,466,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsvc.dll
[2011/01/01 17:24:46 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpincl.dll
[2011/01/01 17:24:46 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpcl.dll
[2011/01/01 17:24:46 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpsmir.dll
[2011/01/01 17:24:46 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmp.exe
[2011/01/01 17:24:46 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll
[2011/01/01 17:24:46 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll
[2011/01/01 17:24:46 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpmib.dll
[2011/01/01 17:24:45 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smi2smir.exe
[2011/01/01 17:24:45 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll
[2011/01/01 17:24:45 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll
[2011/01/01 17:24:45 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll
[2011/01/01 17:24:45 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll
[2011/01/01 17:24:45 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll
[2011/01/01 17:24:45 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll
[2011/01/01 17:24:45 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll
[2011/01/01 17:24:45 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll
[2011/01/01 17:24:45 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll
[2011/01/01 17:24:45 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll
[2011/01/01 17:24:45 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpapi.dll
[2011/01/01 17:24:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll
[2011/01/01 17:24:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll
[2011/01/01 17:24:44 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll
[2011/01/01 17:24:44 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll
[2011/01/01 17:24:44 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll
[2011/01/01 17:24:44 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll
[2011/01/01 17:24:42 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seo.dll
[2011/01/01 17:24:42 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll
[2011/01/01 17:24:42 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll
[2011/01/01 17:24:41 | 000,081,408 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2011/01/01 17:24:41 | 000,081,408 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2011/01/01 17:24:41 | 000,029,184 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2011/01/01 17:24:41 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rw001ext.dll
[2011/01/01 17:24:41 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwnh.dll
[2011/01/01 17:24:40 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime
[2011/01/01 17:24:40 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe
[2011/01/01 17:24:40 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcref.dll
[2011/01/01 17:24:39 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe
[2011/01/01 17:24:38 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime
[2011/01/01 17:24:38 | 000,020,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ramdisk.sys
[2011/01/01 17:24:38 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe
[2011/01/01 17:24:38 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe
[2011/01/01 17:24:37 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pwsdata.dll
[2011/01/01 17:24:36 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll
[2011/01/01 17:24:36 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll
[2011/01/01 17:24:36 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll
[2011/01/01 17:24:36 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll
[2011/01/01 17:24:35 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime
[2011/01/01 17:24:35 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime
[2011/01/01 17:24:35 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe
[2011/01/01 17:24:35 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll
[2011/01/01 17:24:35 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll
[2011/01/01 17:24:34 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll
[2011/01/01 17:24:34 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll
[2011/01/01 17:24:34 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll
[2011/01/01 17:24:34 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll
[2011/01/01 17:24:34 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll
[2011/01/01 17:24:31 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsepm.dll
[2011/01/01 17:24:31 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll
[2011/01/01 17:24:30 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll
[2011/01/01 17:24:29 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll
[2011/01/01 17:24:28 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtstocom.exe
[2011/01/01 17:24:26 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex
[2011/01/01 17:24:26 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll
[2011/01/01 17:24:21 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys
[2011/01/01 17:24:21 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll
[2011/01/01 17:24:21 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migregdb.exe
[2011/01/01 17:24:20 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\metada51.dll
[2011/01/01 17:24:20 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\md5filt.dll
[2011/01/01 17:24:20 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll
[2011/01/01 17:24:19 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll
[2011/01/01 17:24:19 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lpdsvc.dll
[2011/01/01 17:24:19 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll
[2011/01/01 17:24:19 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lprmon.dll
[2011/01/01 17:24:19 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lonsint.dll
[2011/01/01 17:24:18 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lmmib2.dll
[2011/01/01 17:24:17 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll
[2011/01/01 17:24:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll
[2011/01/01 17:24:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll
[2011/01/01 17:24:16 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll
[2011/01/01 17:24:16 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll
[2011/01/01 17:24:16 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll
[2011/01/01 17:24:16 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll
[2011/01/01 17:24:16 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll
[2011/01/01 17:24:16 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll
[2011/01/01 17:24:16 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll
[2011/01/01 17:24:16 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll
[2011/01/01 17:24:16 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll
[2011/01/01 17:24:16 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll
[2011/01/01 17:24:15 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdibm02.dll
[2011/01/01 17:24:15 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41a.dll
[2011/01/01 17:24:15 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41j.dll
[2011/01/01 17:24:15 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll
[2011/01/01 17:24:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll
[2011/01/01 17:24:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll
[2011/01/01 17:24:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll
[2011/01/01 17:24:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll
[2011/01/01 17:24:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll
[2011/01/01 17:24:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll
[2011/01/01 17:24:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll
[2011/01/01 17:24:14 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdax2.dll
[2011/01/01 17:24:14 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll
[2011/01/01 17:24:14 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll
[2011/01/01 17:24:14 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll
[2011/01/01 17:24:14 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll
[2011/01/01 17:24:14 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll
[2011/01/01 17:24:14 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll
[2011/01/01 17:24:14 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll
[2011/01/01 17:24:14 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll
[2011/01/01 17:24:13 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iscomlog.dll
[2011/01/01 17:24:13 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll
[2011/01/01 17:24:13 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll
[2011/01/01 17:24:13 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll
[2011/01/01 17:24:13 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106n.dll
[2011/01/01 17:24:13 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll
[2011/01/01 17:24:13 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101.dll
[2011/01/01 17:24:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll
[2011/01/01 17:24:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll
[2011/01/01 17:24:11 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll
[2011/01/01 17:24:11 | 000,315,455 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll
[2011/01/01 17:24:11 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infocomm.dll
[2011/01/01 17:24:11 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetin51.exe
[2011/01/01 17:24:11 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll
[2011/01/01 17:24:10 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe
[2011/01/01 17:24:10 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll
[2011/01/01 17:24:10 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe
[2011/01/01 17:24:10 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe
[2011/01/01 17:24:10 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe
[2011/01/01 17:24:10 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe
[2011/01/01 17:24:10 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll
[2011/01/01 17:24:10 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe
[2011/01/01 17:24:10 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe
[2011/01/01 17:24:09 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll
[2011/01/01 17:24:09 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll
[2011/01/01 17:24:09 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll
[2011/01/01 17:24:09 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime
[2011/01/01 17:24:09 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe
[2011/01/01 17:24:09 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll
[2011/01/01 17:24:09 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll
[2011/01/01 17:24:09 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime
[2011/01/01 17:24:09 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll
[2011/01/01 17:24:09 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll
[2011/01/01 17:24:09 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe
[2011/01/01 17:24:09 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe
[2011/01/01 17:24:08 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iische51.dll
[2011/01/01 17:24:08 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iislog51.dll
[2011/01/01 17:24:08 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll
[2011/01/01 17:24:08 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisadmin.dll
[2011/01/01 17:24:08 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll
[2011/01/01 17:24:08 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisfecnv.dll
[2011/01/01 17:24:08 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe
[2011/01/01 17:24:08 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll
[2011/01/01 17:24:05 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll
[2011/01/01 17:24:01 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll
[2011/01/01 17:24:01 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpod51.dll
[2011/01/01 17:24:01 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpmb51.dll
[2011/01/01 17:24:00 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpext.dll
[2011/01/01 17:24:00 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hostmib.dll
[2011/01/01 17:23:59 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll
[2011/01/01 17:23:59 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gzip.dll
[2011/01/01 17:23:58 | 000,563,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsst.dll
[2011/01/01 17:23:58 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsxp32.dll
[2011/01/01 17:23:58 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxstiff.dll
[2011/01/01 17:23:58 | 000,268,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssvc.exe
[2011/01/01 17:23:58 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxst30.dll
[2011/01/01 17:23:58 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxswzrd.dll
[2011/01/01 17:23:58 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsui.dll
[2011/01/01 17:23:58 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll
[2011/01/01 17:23:58 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe
[2011/01/01 17:23:58 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsres.dll
[2011/01/01 17:23:57 | 000,451,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsapi.dll
[2011/01/01 17:23:57 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscomex.dll
[2011/01/01 17:23:57 | 000,238,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscover.exe
[2011/01/01 17:23:57 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclnt.exe
[2011/01/01 17:23:57 | 000,141,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll
[2011/01/01 17:23:57 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsv251.dll
[2011/01/01 17:23:57 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll
[2011/01/01 17:23:57 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscom.dll
[2011/01/01 17:23:57 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsevent.dll
[2011/01/01 17:23:57 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsdrv.dll
[2011/01/01 17:23:57 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsmon.dll
[2011/01/01 17:23:57 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsext32.dll
[2011/01/01 17:23:57 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsperf.dll
[2011/01/01 17:23:56 | 000,024,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmcgi.exe
[2011/01/01 17:23:56 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmdll.dll
[2011/01/01 17:23:56 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll
[2011/01/01 17:23:56 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpmib.dll
[2011/01/01 17:23:56 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll
[2011/01/01 17:23:55 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll
[2011/01/01 17:23:55 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe
[2011/01/01 17:23:55 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\f3ahvoas.dll
[2011/01/01 17:23:54 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntagnt.dll
[2011/01/01 17:23:54 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntwin.exe
[2011/01/01 17:23:54 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll
[2011/01/01 17:23:54 | 000,045,568 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll
[2011/01/01 17:23:54 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll
[2011/01/01 17:23:54 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntcmd.exe
[2011/01/01 17:23:54 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys
[2011/01/01 17:23:54 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exstrace.dll
[2011/01/01 17:23:48 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime
[2011/01/01 17:23:48 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\davcdata.exe
[2011/01/01 17:23:47 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe
[2011/01/01 17:23:47 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe
[2011/01/01 17:23:46 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe
[2011/01/01 17:23:46 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll
[2011/01/01 17:23:46 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compfilt.dll
[2011/01/01 17:23:46 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll
[2011/01/01 17:23:45 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe
[2011/01/01 17:23:45 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime
[2011/01/01 17:23:44 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll
[2011/01/01 17:23:44 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll
[2011/01/01 17:23:44 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll
[2011/01/01 17:23:44 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll
[2011/01/01 17:23:44 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll
[2011/01/01 17:23:43 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime
[2011/01/01 17:23:43 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe
[2011/01/01 17:23:43 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe
[2011/01/01 17:23:43 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe
[2011/01/01 17:23:43 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe
[2011/01/01 17:23:42 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_g18030.dll
[2011/01/01 17:23:42 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2011/01/01 17:23:42 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll
[2011/01/01 17:23:42 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll
[2011/01/01 17:23:37 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll
[2011/01/01 17:23:36 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll
[2011/01/01 17:23:35 | 000,377,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asp51.dll
[2011/01/01 17:23:35 | 000,334,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aqueue.dll
[2011/01/01 17:23:35 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll
[2011/01/01 17:23:35 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll
[2011/01/01 17:23:35 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll
[2011/01/01 17:23:34 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\appconf.dll
[2011/01/01 17:23:34 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0804.dll
[2011/01/01 17:23:34 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0412.dll
[2011/01/01 17:23:34 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0411.dll
[2011/01/01 17:23:34 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040d.dll
[2011/01/01 17:23:34 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0404.dll
[2011/01/01 17:23:34 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0401.dll
[2011/01/01 17:23:33 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll
[2011/01/01 17:23:32 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll
[2011/01/01 17:23:32 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admexs.dll
[2011/01/01 17:23:32 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll
[2011/01/01 17:23:30 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll
[2011/01/01 17:23:29 | 002,134,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsnap.dll
[2011/01/01 17:23:29 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpadm.dll
[2011/01/01 17:23:29 | 000,032,827 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptest.exe
[2011/01/01 17:23:29 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll
[2011/01/01 17:23:29 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\staxmem.dll
[2011/01/01 17:23:28 | 000,020,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.dll
[2011/01/01 17:23:28 | 000,016,437 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.exe
[2011/01/01 17:23:26 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logui.ocx
[2011/01/01 17:23:25 | 000,842,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.dll
[2011/01/01 17:23:25 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll
[2011/01/01 17:23:25 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrtl.dll
[2011/01/01 17:23:25 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isatq.dll
[2011/01/01 17:23:25 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstas.exe
[2011/01/01 17:23:25 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll
[2011/01/01 17:23:25 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoadmn.dll
[2011/01/01 17:23:25 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe
[2011/01/01 17:23:25 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll
[2011/01/01 17:23:24 | 000,598,071 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmc.dll
[2011/01/01 17:23:24 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll
[2011/01/01 17:23:24 | 000,188,494 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpcount.exe
[2011/01/01 17:23:24 | 000,109,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98swin.exe
[2011/01/01 17:23:24 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisext51.dll
[2011/01/01 17:23:24 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismap.dll
[2011/01/01 17:23:24 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpexedll.dll
[2011/01/01 17:23:24 | 000,020,538 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpremadm.exe
[2011/01/01 17:23:24 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe
[2011/01/01 17:23:24 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll
[2011/01/01 17:23:23 | 000,876,653 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awel.dll
[2011/01/01 17:23:23 | 000,184,435 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4amsft.dll
[2011/01/01 17:23:23 | 000,147,513 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4apws.dll
[2011/01/01 17:23:23 | 000,102,509 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4atxt.dll
[2011/01/01 17:23:23 | 000,082,035 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4anscp.dll
[2011/01/01 17:23:23 | 000,049,212 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awebs.dll
[2011/01/01 17:23:23 | 000,049,210 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4areg.dll
[2011/01/01 17:23:23 | 000,041,020 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avnb.dll
[2011/01/01 17:23:23 | 000,032,826 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avss.dll
[2011/01/01 17:23:23 | 000,014,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98sadm.exe
[2011/01/01 17:23:22 | 000,281,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certwiz.ocx
[2011/01/01 17:23:22 | 000,188,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgwiz.exe
[2011/01/01 17:23:22 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx
[2011/01/01 17:23:22 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnfgprts.ocx
[2011/01/01 17:23:22 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\coadmin.dll
[2011/01/01 17:23:22 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.exe
[2011/01/01 17:23:21 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adsiis51.dll
[2011/01/01 17:23:21 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admwprox.dll
[2011/01/01 17:23:21 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.dll
[2011/01/01 17:23:21 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.exe
[2011/01/01 17:23:20 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.dll
[2011/01/01 17:02:51 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2011/01/01 17:02:51 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll
[2011/01/01 17:02:51 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2011/01/01 17:02:51 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll
[2010/12/31 19:51:16 | 000,000,000 | ---D | C] -- C:\Program Files\Steam
[2010/12/31 13:29:17 | 000,000,000 | ---D | C] -- C:\Program Files\Warcraft III
[2010/12/30 20:52:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Clément\Local Settings\Application Data\TeamSpeak 3 Client
[2010/12/30 15:47:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Clément\Bureau\Gestion MB
[2010/12/30 14:51:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Clément\Local Settings\Application Data\Logitech
[2010/12/30 14:50:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Logitech
[6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2011/01/29 14:38:23 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Clément\Bureau\OTL.exe
[2011/01/29 12:40:59 | 000,000,492 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2011/01/29 12:38:53 | 000,002,422 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/01/29 12:37:47 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/01/29 12:37:42 | 002,183,136 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/01/28 20:38:14 | 000,000,050 | ---- | M] () -- C:\WINDOWS\Megakey.INI
[2011/01/27 15:31:37 | 000,001,768 | -H-- | M] () -- C:\Documents and Settings\Clément\Mes documents\Default.rdp
[2011/01/26 20:03:31 | 000,149,504 | ---- | M] () -- C:\Documents and Settings\Clément\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/01/25 19:14:55 | 000,000,706 | ---- | M] () -- C:\Documents and Settings\Clément\Bureau\MoM.lnk
[2011/01/22 12:59:30 | 000,057,396 | -H-- | M] () -- C:\WINDOWS\System32\mlfcache.dat
[2011/01/18 19:12:03 | 000,001,552 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\iTunes.lnk
[2011/01/12 07:52:01 | 000,503,656 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2011/01/12 07:52:01 | 000,435,396 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/01/12 07:52:01 | 000,081,626 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2011/01/12 07:52:01 | 000,068,292 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/01/08 10:05:18 | 000,000,907 | ---- | M] () -- C:\Documents and Settings\Clément\Bureau\Raccourci vers Dreamweaver.lnk
[2011/01/07 09:26:49 | 000,000,802 | ---- | M] () -- C:\Documents and Settings\Clément\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Outlook.lnk
[2011/01/04 10:04:02 | 000,000,213 | -HS- | M] () -- C:\boot.ini
[2011/01/01 18:18:40 | 000,691,696 | ---- | M] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2011/01/01 17:26:35 | 000,000,288 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2011/01/01 17:23:05 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2011/01/01 17:23:04 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2011/01/01 17:23:04 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2011/01/01 17:22:55 | 000,004,205 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2011/01/01 17:20:55 | 000,023,064 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2011/01/01 16:09:26 | 001,249,393 | ---- | M] () -- C:\WINDOWS\setupapi.old
[2010/12/31 20:01:24 | 000,000,653 | ---- | M] () -- C:\Documents and Settings\Clément\Bureau\Steam.lnk
[2010/12/31 16:25:58 | 000,370,717 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010/12/31 13:29:44 | 000,000,722 | ---- | M] () -- C:\Documents and Settings\Clément\Bureau\Frozen Throne.lnk
[2010/12/30 20:52:31 | 000,001,243 | ---- | M] () -- C:\Documents and Settings\Clément\Bureau\TeamSpeak 3 Client.lnk
[6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2011/01/28 20:38:14 | 000,000,050 | ---- | C] () -- C:\WINDOWS\Megakey.INI
[2011/01/25 19:14:55 | 000,000,706 | ---- | C] () -- C:\Documents and Settings\Clément\Bureau\MoM.lnk
[2011/01/18 19:12:03 | 000,001,552 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\iTunes.lnk
[2011/01/08 10:05:18 | 000,000,907 | ---- | C] () -- C:\Documents and Settings\Clément\Bureau\Raccourci vers Dreamweaver.lnk
[2011/01/07 09:26:49 | 000,000,802 | ---- | C] () -- C:\Documents and Settings\Clément\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Outlook.lnk
[2011/01/01 17:45:23 | 000,001,566 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\CDBurnerXP.lnk
[2011/01/01 17:45:22 | 000,007,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2011/01/01 17:24:35 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2011/01/01 17:24:17 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2011/01/01 17:24:10 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2011/01/01 17:24:10 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2011/01/01 17:24:08 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2011/01/01 17:24:03 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2011/01/01 17:23:59 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2011/01/01 17:23:56 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll
[2011/01/01 17:23:44 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2011/01/01 17:02:35 | 000,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat
[2011/01/01 17:02:34 | 002,037,681 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2011/01/01 17:02:34 | 001,246,130 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT
[2011/01/01 17:02:34 | 000,809,394 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2011/01/01 17:02:34 | 000,636,042 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2011/01/01 17:02:34 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2011/01/01 17:02:34 | 000,105,926 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat
[2011/01/01 17:02:34 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2011/01/01 17:02:34 | 000,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat
[2011/01/01 17:02:34 | 000,033,765 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2011/01/01 17:02:34 | 000,022,351 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn7.cat
[2011/01/01 17:02:34 | 000,016,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2011/01/01 17:02:34 | 000,014,433 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn9.cat
[2011/01/01 17:02:34 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2011/01/01 17:02:34 | 000,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2011/01/01 17:02:34 | 000,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2011/01/01 17:02:34 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2011/01/01 17:02:34 | 000,007,407 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2010/12/30 20:52:31 | 000,001,243 | ---- | C] () -- C:\Documents and Settings\Clément\Bureau\TeamSpeak 3 Client.lnk
[2010/12/29 15:19:26 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini
[2010/12/27 08:49:55 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\AsIO.dll
[2010/12/27 08:49:55 | 000,012,400 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys
[2010/12/27 08:49:41 | 000,011,832 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp64.sys
[2010/12/27 08:49:41 | 000,010,216 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp32.sys
[2010/12/27 08:48:13 | 000,005,810 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2010/12/22 12:34:35 | 000,000,010 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2010/10/23 08:08:03 | 000,196,768 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2010/10/05 16:19:16 | 000,000,038 | ---- | C] () -- C:\WINDOWS\AviSplitter.INI
[2010/07/28 07:45:36 | 000,000,272 | ---- | C] () -- C:\WINDOWS\_delis32.ini
[2010/04/09 20:05:43 | 000,004,767 | ---- | C] () -- C:\WINDOWS\Irremote.ini
[2010/04/02 19:23:11 | 000,001,024 | ---- | C] () -- C:\Documents and Settings\Clément\Application Data\WavCodec.wff
[2010/03/10 19:58:23 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010/03/09 21:45:41 | 000,015,620 | ---- | C] () -- C:\WINDOWS\System32\SystemRes10.b30.SYS
[2010/03/05 23:14:02 | 000,000,050 | ---- | C] () -- C:\WINDOWS\MegaManager.INI
[2010/02/22 16:24:37 | 000,000,187 | ---- | C] () -- C:\Documents and Settings\Clément\Application Data\default.rss
[2010/02/22 16:24:15 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010/02/21 16:52:37 | 000,000,336 | ---- | C] () -- C:\WINDOWS\hpntwksetup.ini
[2010/02/21 16:49:17 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log
[2010/02/03 13:24:23 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll
[2009/12/30 11:23:41 | 000,010,219 | ---- | C] () -- C:\WINDOWS\hpdj3600.ini
[2009/12/29 19:31:15 | 000,149,504 | ---- | C] () -- C:\Documents and Settings\Clément\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/12/29 18:38:43 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2009/12/29 18:01:52 | 000,001,769 | ---- | C] () -- C:\WINDOWS\Language_trs.ini
[2008/10/22 04:29:06 | 000,173,550 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2008/04/13 20:33:40 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[1996/04/03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys
 
[color=#E56717]========== Custom Scans ==========[/color]
 
 
 
[color=#A23BEC]< MD5 for: ATAPI.SYS  >[/color]
[2008/04/14 13:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008/04/14 13:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
 
[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
 
[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
 
[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[2008/04/14 13:00:00 | 000,380,445 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\expsrv.dll
[2008/04/14 13:00:00 | 001,355,776 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\msvbvm50.dll
[2008/04/14 13:00:00 | 001,384,479 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\msvbvm60.dll
[6 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
 
[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]

< End of report >


Extras.txt

Code: Tout sélectionner
OTL Extras logfile created on: 29/01/2011 14:39:07 - Run 1
OTL by OldTimer - Version 3.2.20.6     Folder = C:\Documents and Settings\Clément\Bureau
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
 
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 56,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 81,00% Paging File free
Paging file location(s): c:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 596,17 Gb Total Space | 519,46 Gb Free Space | 87,13% Space Free | Partition Type: NTFS
Drive D: | 233,75 Gb Total Space | 233,68 Gb Free Space | 99,97% Space Free | Partition Type: NTFS
Drive E: | 465,76 Gb Total Space | 77,01 Gb Free Space | 16,53% Space Free | Partition Type: NTFS
Drive Y: | 464,68 Gb Total Space | 41,45 Gb Free Space | 8,92% Space Free | Partition Type: NTFS
Drive Z: | 464,68 Gb Total Space | 41,45 Gb Free Space | 8,92% Space Free | Partition Type: NTFS
 
Computer Name: FIXE-CLEMENT | User Name: Clément | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== File Associations ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
 
[color=#E56717]========== Shell Spawning ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[color=#E56717]========== Security Center Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring" = 1
"" =
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
 
[color=#E56717]========== System Restore Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
 
[color=#E56717]========== Firewall Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"3587:TCP" = 3587:TCP:*:Enabled:Groupement homologue Windows
"3540:UDP" = 3540:UDP:*:Enabled:Protocole PNRP (Peer Name Resolution Protocol)
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"5353:TCP" = 5353:TCP:*:Enabled:Adobe CSI CS4
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"3587:TCP" = 3587:TCP:*:Enabled:Groupement homologue Windows
"3540:UDP" = 3540:UDP:*:Enabled:Protocole PNRP (Peer Name Resolution Protocol)
"3138:TCP" = 3138:TCP:*:Enabled:Akamai NetSession Interface
"5000:UDP" = 5000:UDP:*:Enabled:Akamai NetSession Interface
 
[color=#E56717]========== Authorized Applications List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Microsoft Games\Age of Empires III\age3.exe" = C:\Program Files\Microsoft Games\Age of Empires III\age3.exe:*:Enabled:Age of Empires III -- (Ensemble Studios)
"D:\Steam\steamapps\common\zero gear\ZeroGear.bat" = D:\Steam\steamapps\common\zero gear\ZeroGear.bat:*:Enabled:Zero Gear
"H:\setup\HPZNET01.EXE" = H:\setup\HPZNET01.EXE:*:Enabled:hpznet01.exe
"H:\setup\hppapd.exe" = H:\setup\hppapd.exe:*:Enabled:hppapd.exe
"H:\setup\HPPNICIFS01.EXE" = H:\setup\HPPNICIFS01.EXE:*:Enabled:hppnicifs01.exe
"H:\setup\HPNTWKEXE.EXE" = H:\setup\HPNTWKEXE.EXE:*:Enabled:hpntwkexe.exe
"C:\Program Files\Microsoft Office\Office14\GROOVE.EXE" = C:\Program Files\Microsoft Office\Office14\GROOVE.EXE:*:Enabled:Microsoft SharePoint Workspace
"C:\Program Files\MaxTV\MaxTV4\maxtv.exe" = C:\Program Files\MaxTV\MaxTV4\maxtv.exe:*:Enabled:MaxTV
"C:\Program Files\MaxTV\MaxTV4\core\maxtv_xul.exe" = C:\Program Files\MaxTV\MaxTV4\core\maxtv_xul.exe:*:Enabled:MaxTV GUI
"C:\Program Files\MaxTV\MaxTV4\recorder.exe" = C:\Program Files\MaxTV\MaxTV4\recorder.exe:*:Enabled:MaxTV Recorder
"C:\Program Files\MaxTV\MaxTV4\task_scheduler.exe" = C:\Program Files\MaxTV\MaxTV4\task_scheduler.exe:*:Enabled:MaxTV Recorder Manager
"C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe" = C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4 -- (Adobe Systems Incorporated)
"D:\Steam\steamapps\common\call of duty modern warfare 2\iw4sp.exe" = D:\Steam\steamapps\common\call of duty modern warfare 2\iw4sp.exe:*:Enabled:Call of Duty: Modern Warfare 2
"D:\Steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe" = D:\Steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe:*:Enabled:Call of Duty: Modern Warfare 2 - Multiplayer
"D:\Steam\steamapps\clems1810\counter-strike source\hl2.exe" = D:\Steam\steamapps\clems1810\counter-strike source\hl2.exe:*:Enabled:Counter-Strike: Source
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent
"D:\Steam\steamapps\clems1810\condition zero\hl.exe" = D:\Steam\steamapps\clems1810\condition zero\hl.exe:*:Enabled:Counter-Strike: Condition Zero
"D:\Steam\steamapps\common\call of duty black ops\BlackOps.exe" = D:\Steam\steamapps\common\call of duty black ops\BlackOps.exe:*:Enabled:Call of Duty: Black Ops
"D:\Steam\steamapps\common\call of duty black ops\BlackOpsMP.exe" = D:\Steam\steamapps\common\call of duty black ops\BlackOpsMP.exe:*:Enabled:Call of Duty: Black Ops - Multiplayer
"C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe" = C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) -- ()
"D:\Steam\steamapps\clems1810\counter-strike\hl.exe" = D:\Steam\steamapps\clems1810\counter-strike\hl.exe:*:Enabled:Counter-Strike
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\Program Files\Steam\steamapps\common\call of duty black ops\BlackOpsMP.exe" = C:\Program Files\Steam\steamapps\common\call of duty black ops\BlackOpsMP.exe:*:Enabled:Call of Duty: Black Ops - Multiplayer -- ()
"C:\Program Files\Steam\steamapps\common\call of duty black ops\BlackOps.exe" = C:\Program Files\Steam\steamapps\common\call of duty black ops\BlackOps.exe:*:Enabled:Call of Duty: Black Ops -- ()
"C:\Program Files\Steam\steamapps\clems1810\counter-strike\hl.exe" = C:\Program Files\Steam\steamapps\clems1810\counter-strike\hl.exe:*:Enabled:Counter-Strike -- (Valve)
 
 
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{044F9133-B8D7-4d11-BF39-803FA20F5C8B}" = Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for Win32
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{0711500B-9912-4D60-9A49-C577B4503D42}" = Nero Recode Help
"{07FF7593-9DEA-40B5-9F87-F557E65BBF60}" = Nero Recode
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{098A2A49-7CF3-4F08-A38D-FB879117152A}" = Adobe Color NA Extra Settings CS4
"{0BD83598-C2EF-3343-847B-7D2E84599128}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}" = Adobe Setup
"{0DC0E85F-36E4-463B-B3EA-4CD8ED2222A1}" = Adobe Color EU Recommended Settings CS4
"{0ED98038-0885-F902-C419-669ADE471A46}" = ATI Stream SDK v2 Developer
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}" = ATI Catalyst Registration
"{1122AAC4-AAAA-43BF-B2D4-3C8C12378952}" = Nero InfoTool
"{11A84FCA-C3C7-4AFD-A797-111DB8569DBC}" = Nero BurningROM
"{12345674-DE9A-677A-CCEE-666356D89777}" = Nero BurnRights
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}" = Adobe AIR
"{1B040683-C390-4711-ABC7-DA8D85E470E7}" = NeroBurningROM
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 17
"{2BE013D0-4CF4-AA57-05E1-19F9FACCF622}" = CCC Help English
"{2D3455A8-3B15-41A8-99F8-0D4215746463}" = Nero StartSmart
"{308B6AEA-DE50-4666-996D-0FA461719D6B}" = Apple Mobile Device Support
"{3097B151-1F61-4211-A4CC-D70127B226AE}" = SoundTrax
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver
"{310BC5E2-31AF-49BB-904D-E71EB93645DC}" = AI Suite
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{338F08AB-C262-42C7-B000-34DE1A475273}" = Ad-Aware Email Scanner for Outlook
"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{3E31821C-7917-367E-938E-E65FC413EA31}" = Microsoft .NET Framework 3.5 Language Pack SP1 - fra
"{3F30CC51-0788-487B-AA83-7214A239C0C0}" = Nero Disc Copy Gadget Help
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{474F25F5-BDC9-40E5-B1B6-F6BF23FC106F}" = Windows Live Essentials
"{484AB636-ADBC-3A85-AB82-41873BDD1083}" = Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for .NET Framework - fra
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{4D42353B-533F-4306-AD0B-7FEF292ADE04}" = Nero CoverDesigner Help
"{4E8C27C2-D727-4C00-A90E-C3F6376EEE70}" = Nero ControlCenter
"{548F99E0-14CC-4D53-A7D6-4A62A5F2C748}" = Nero PhotoSnap
"{56BE5CC9-95E6-4128-ABEA-968414CA9C80}" = DolbyFiles
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{59E4543A-D49D-4489-B445-473D763C79AF}" = Microsoft Games for Windows - LIVE Redistributable
"{5A080213-5AEC-4BF2-BB32-796EB0E421EC}" = Logitech G-series Keyboard Software
"{5A62A775-A29A-4CE1-BBC2-4A9CD0B211EF}" = Nero Live Help
"{5AE12194-3EAA-40DF-B2BF-FE1D6B78BBF4}" = Nero Vision
"{5C2E8A0F-80E2-4C68-8CC0-D8D16E7196BF}" = Nero RescueAgent Help
"{5C42EAB8-54F9-423A-948C-1CBEF25F8DB4}" = Nero PhotoSnap Help
"{5C9BB0B3-E830-4814-BBA4-D93535E1C7B9}" = Nero Live
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{6AB57823-3580-4CE0-9CF0-072E2A39460C}" = Catalyst Control Center - Branding
"{70F8B183-99EB-4304-BA35-080E2DFFD2A3}" = Age of Empires III
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72AD53CC-CCC0-3757-8480-9EE176866A7C}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA
"{75321954-2589-11DC-DDCC-E98356D81493}" = Nero DriveSpeed
"{753973C4-B961-43BF-B2D4-3C8C92F7216E}" = Nero DriveSpeed
"{75801941-d4ad-4018-acd7-e220e1457a1a}" = Nero 9
"{766273C1-A39B-47EB-ACE8-DEBDD8094BCC}" = overland
"{78523651-D8B1-11DC-CCEE-741589645873}" = Nero DiscSpeed
"{788F45B5-816D-2294-33DD-BF080093D54D}" = Catalyst Control Center Graphics Previews Common
"{790F6156-B231-F7D6-BAE4-741E7CB0ACB1}" = ccc-utility
"{7B738CD9-D107-48C7-8E65-2E6639A39C8D}" = PerfectDisk 10 Professional
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{810AD6B3-C830-A74C-300E-D14820CE1850}" = Catalyst Control Center InstallProxy
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{842FAF7C-50EF-4463-9B8F-6222E1384D7D}" = Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries
"{881F5DE8-9367-4B81-A325-E91BBC6472F9}" = iTunes
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}" = The Lord of the Rings FREE Trial
"{8C654BD0-1949-43DE-84F2-EC2A1ABB0CB4}" = Nero ShowTime
"{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
"{90120000-0010-040C-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders  (French) 12
"{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007
"{90120000-0015-040C-0000-0000000FF1CE}" = Microsoft Office Access MUI (French) 2007
"{90120000-0016-040C-0000-0000000FF1CE}" = Microsoft Office Excel MUI (French) 2007
"{90120000-0018-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007
"{90120000-0019-040C-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (French) 2007
"{90120000-001A-040C-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (French) 2007
"{90120000-001B-040C-0000-0000000FF1CE}" = Microsoft Office Word MUI (French) 2007
"{90120000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2007
"{90120000-0044-040C-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (French) 2007
"{90120000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2007
"{91A5B6C0-EF4E-4830-AC7D-6761C0A9B292}" = hp deskjet 3600
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{943CC0C0-2253-4FE0-9493-DD386F7857FD}" = Nero Express
"{948FFAAE-C57F-447B-9B07-3721E950BFDC}" = Nero ShowTime
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{961D53EA-40DC-4156-AD74-25684CE05F81}" = Nero Installer
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A875B56-A35C-46BA-A3AA-DF8D03EE9F2F}" = Nero ControlCenter
"{9D8B0949-7C47-476F-9F06-F900D3B078EA}" = Kaspersky Internet Security 2010
"{9F3523F8-DAD7-AE52-6DA7-45CDDDF33726}" = Advertising Center
"{A13C84F5-B2FC-823B-ADB2-6F5B2A6EE9DE}" = ccc-utility
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A36579B4-313E-DC6B-D817-41824D46EF5D}" = CCC Help English
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A71D5E81-B967-43DB-93D7-FD31BFB95748}" = MobileMe Control Panel
"{A73BEC3C-40A0-480E-87EF-EFCD33629088}" = NeroExpress
"{A8399F58-234A-48C6-BA55-30C15738BF3C}" = Nero CoverDesigner
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AAA12554-2589-11DC-92EF-E98356D81493}" = Nero InfoTool
"{AABBCC54-D8B1-11DC-92EF-E98356D81493}" = Nero DiscSpeed
"{AC76BA86-7AD7-1036-7B44-A92000000001}" = Adobe Reader 9.2 - Français
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B1E9CB0F-7227-489A-B7E2-A685D60993FF}" = Crystal Reports Basic Runtime French Language Pack for Visual Studio 2008
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B2C12C8D-65DC-40BD-B309-5ADB0C6C8D8F}" = Nero WaveEditor
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B57EAFF2-D6EE-4C6C-9175-ED9F17BFC1BC}" = Windows Live Messenger
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{B9060398-FB64-2A4C-C4E6-D1236447E026}" = ATI Catalyst Install Manager
"{B96C2601-52F5-4D5D-816A-63469EA311EF}" = "Nero SoundTrax Help
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{BCD82AB5-670D-4242-90FA-1F97103C16CD}" = Movie Templates - Starter Kit
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{C43048A9-742C-4DAD-90D2-E3B53C9DB825}" = Logiciel QuickCam de Logitech
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{C94D0C97-8A5D-428A-B40B-98EBBDBBA36B}" = Hercules DJ Control MP3 drivers
"{C99C89A3-119A-45E6-B26E-DD5643CAA0C5}" = Menu Templates - Starter Kit
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CD1826A5-CFCC-4C6E-9F9D-E181876162EA}" = Nero Rescue Agent
"{CE26F10F-C80F-4377-908B-1B7882AE2CE3}" = Crystal Reports Basic Runtime for Visual Studio 2008
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D3B1C799-CB73-42DE-BA0F-2344793A095C}" = Catalyst Control Center - Branding
"{D3BA6488-5C3E-A4EF-BA64-74C54ABCEE03}" = ccc-core-static
"{D7C206B6-1A63-4389-A8B1-8F607D0BFF1F}" = Nero StartSmart Help
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{E4848436-0345-47E2-B648-8B522FCDA623}" = Adobe Photoshop CS4
"{E4A8DD87-A746-4443-BF25-CAF99CED6767}" = Nero Disc Copy Gadget
"{E6158D07-2637-4ECF-B576-37C489669174}" = Windows Live Call
"{E86156E5-9859-440D-8876-26CED1349802}" = Nero WaveEditor Help
"{EA9FFE54-D8B1-11DC-92EF-E98356D81493}" = Nero BurnRights
"{EDD654B3-6FE9-67AC-CE7D-5FE3698439DB}" = Catalyst Control Center Graphics Previews Common
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F53F6769-AC46-49E3-ABE3-2C8AFD39D0DD}" = Nero Vision
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"{FF1C31AE-0CDC-40CE-AB85-406F8B70D643}" = Bonjour
"7-Zip" = 7-Zip 4.65
"Ad-Aware" = Ad-Aware
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe_faf656ef605427ee2f42989c3ad31b8" = Adobe Photoshop CS4
"CCleaner" = CCleaner (remove only)
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"DivX Setup.divx.com" = Configuration DivX
"FileZilla Client" = FileZilla Client 3.3.5.1
"FileZilla Server" = FileZilla Server (remove only)
"FormatFactory" = FormatFactory 2.50
"Google Chrome" = Google Chrome
"Guitar Pro 5_is1" = Guitar Pro 5.2
"Half-Life Dedicated Server Update Tool" = Half-Life Dedicated Server Update Tool
"InstallShield_{70F8B183-99EB-4304-BA35-080E2DFFD2A3}" = Age of Empires III
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"InstallWIX_{9D8B0949-7C47-476F-9F06-F900D3B078EA}" = Kaspersky Internet Security 2010
"JDownloader" = JDownloader
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 Language Pack SP1 - fra" = Module linguistique Microsoft .NET Framework 3.5 SP1- fra
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"mIRC" = mIRC
"Mozilla Firefox (3.6.13)" = Mozilla Firefox (3.6.13)
"Mozilla Firefox 4.0b8 (x86 fr)" = Mozilla Firefox 4.0b8 (x86 fr)
"OVH MoM" = OVH MoM
"PROPLUS" = Microsoft Office Professional Plus 2007
"Revo Uninstaller" = Revo Uninstaller 1.85
"Steam App 10" = Counter-Strike
"Steam App 100" = Counter-Strike: Condition Zero Deleted Scenes
"Steam App 10180" = Call of Duty: Modern Warfare 2
"Steam App 10190" = Call of Duty: Modern Warfare 2 - Multiplayer
"Steam App 18820" = Zero Gear
"Steam App 240" = Counter-Strike: Source
"Steam App 260" = Counter-Strike: Source Beta
"Steam App 42700" = Call of Duty: Black Ops
"Steam App 42710" = Call of Duty: Black Ops - Multiplayer
"Steam App 80" = Counter-Strike: Condition Zero
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"TmNations_is1" = TrackMania Nations ESWC 0.1.7.5
"uTorrent" = µTorrent
"VLC media player" = VLC media player 1.1.1
"VSO DivxToDVD_is1" = DivxToDVD 0.5.2
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Lecteur Windows Media 11
"WinLiveSuite_Wave3" = Windows Live Essentials
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wubi" = Kubuntu
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
 
[color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"0c2c3e3e5a6e3917" = GDT07
"TeamSpeak 3 Client" = TeamSpeak 3 Client
 
[color=#E56717]========== Last 10 Event Log Errors ==========[/color]
 
[ Application Events ]
Error - 19/01/2011 12:19:05 | Computer Name = FIXE-CLEMENT | Source = Bonjour Service | ID = 100
Description = 224: ERROR: read_msg errno 10054 (Une connexion existante a dû être
 fermée par l'hôte distant.)
 
Error - 19/01/2011 12:19:05 | Computer Name = FIXE-CLEMENT | Source = Bonjour Service | ID = 100
Description = 240: ERROR: read_msg errno 10054 (Une connexion existante a dû être
 fermée par l'hôte distant.)
 
Error - 19/01/2011 12:19:05 | Computer Name = FIXE-CLEMENT | Source = Bonjour Service | ID = 100
Description = 236: ERROR: read_msg errno 10054 (Une connexion existante a dû être
 fermée par l'hôte distant.)
 
Error - 20/01/2011 12:01:49 | Computer Name = FIXE-CLEMENT | Source = crypt32 | ID = 131080
Description = Échec de la récupération de la mise à jour automatique du numéro de
 séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
 avec l'erreur : Cette opération s'est terminée car le délai d'attente a expiré.

 
Error - 20/01/2011 12:01:49 | Computer Name = FIXE-CLEMENT | Source = crypt32 | ID = 131080
Description = Échec de la récupération de la mise à jour automatique du numéro de
 séquence de la liste racine tierce partie à partir de : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
 avec l'erreur : Le serveur spécifié ne peut pas exécuter l'opération demandée. 
 
Error - 22/01/2011 09:50:49 | Computer Name = FIXE-CLEMENT | Source = Bonjour Service | ID = 100
Description = 236: ERROR: read_msg errno 10054 (Une connexion existante a dû être
 fermée par l'hôte distant.)
 
Error - 22/01/2011 11:04:41 | Computer Name = FIXE-CLEMENT | Source = Bonjour Service | ID = 100
Description = 224: ERROR: read_msg errno 10054 (Une connexion existante a dû être
 fermée par l'hôte distant.)
 
Error - 22/01/2011 11:04:41 | Computer Name = FIXE-CLEMENT | Source = Bonjour Service | ID = 100
Description = 240: ERROR: read_msg errno 10054 (Une connexion existante a dû être
 fermée par l'hôte distant.)
 
Error - 24/01/2011 14:21:28 | Computer Name = FIXE-CLEMENT | Source = Bonjour Service | ID = 100
Description = WSARecvMsg failed (10022)
 
Error - 28/01/2011 14:49:30 | Computer Name = FIXE-CLEMENT | Source = Application Error | ID = 1000
Description = Application défaillante moviemk.exe, version 2.1.4026.0, module défaillant
 moviemk.exe, version 2.1.4026.0, adresse de défaillance 0x0004969a.
 
[ OSession Events ]
Error - 08/01/2011 12:48:56 | Computer Name = FIXE-CLEMENT | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 1
 seconds with 0 seconds of active time.  This session ended with a crash.
 
Error - 13/01/2011 14:28:43 | Computer Name = FIXE-CLEMENT | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 2783
 seconds with 240 seconds of active time.  This session ended with a crash.
 
Error - 13/01/2011 14:29:18 | Computer Name = FIXE-CLEMENT | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 27
 seconds with 0 seconds of active time.  This session ended with a crash.
 
[ System Events ]
Error - 28/01/2011 14:25:03 | Computer Name = FIXE-CLEMENT | Source = Cdrom | ID = 262155
Description = Le pilote a détecté une erreur du contrôleur sur \Device\CdRom0.
 
Error - 28/01/2011 14:25:03 | Computer Name = FIXE-CLEMENT | Source = Cdrom | ID = 262155
Description = Le pilote a détecté une erreur du contrôleur sur \Device\CdRom0.
 
Error - 28/01/2011 14:25:03 | Computer Name = FIXE-CLEMENT | Source = Cdrom | ID = 262155
Description = Le pilote a détecté une erreur du contrôleur sur \Device\CdRom0.
 
Error - 28/01/2011 14:25:03 | Computer Name = FIXE-CLEMENT | Source = Cdrom | ID = 262155
Description = Le pilote a détecté une erreur du contrôleur sur \Device\CdRom0.
 
Error - 28/01/2011 14:25:03 | Computer Name = FIXE-CLEMENT | Source = Cdrom | ID = 262155
Description = Le pilote a détecté une erreur du contrôleur sur \Device\CdRom0.
 
Error - 28/01/2011 14:25:03 | Computer Name = FIXE-CLEMENT | Source = Cdrom | ID = 262155
Description = Le pilote a détecté une erreur du contrôleur sur \Device\CdRom0.
 
Error - 28/01/2011 14:25:03 | Computer Name = FIXE-CLEMENT | Source = Cdrom | ID = 262155
Description = Le pilote a détecté une erreur du contrôleur sur \Device\CdRom0.
 
Error - 28/01/2011 14:25:03 | Computer Name = FIXE-CLEMENT | Source = Cdrom | ID = 262155
Description = Le pilote a détecté une erreur du contrôleur sur \Device\CdRom0.
 
Error - 28/01/2011 14:25:03 | Computer Name = FIXE-CLEMENT | Source = Cdrom | ID = 262155
Description = Le pilote a détecté une erreur du contrôleur sur \Device\CdRom0.
 
Error - 29/01/2011 07:38:21 | Computer Name = FIXE-CLEMENT | Source = Service Control Manager | ID = 7000
Description = Le service hpdj n'a pas pu démarrer en raison de l'erreur :   %%2
 
 
< End of report >


Bonne journée ;)
Thunder1810
Apprenti(e) Expert(e)
Apprenti(e) Expert(e)
 
Messages: 204
Inscription: 07 Déc 2008 10:59
Localisation: 127.0.0.1
 

Re: Aide pour désinfection

Message le 29 Jan 2011 18:57

Re,

Effectue ceci dans l'ordre :
1/
Ferme toutes les fenêtres actives sur ton PC.
Relance OTL par un double-clics
Dans l'interface d'OTL, vérifie que la case "Rapport minimal" soit bien cochée.
Copie (TOUT SELECTIONNER) et colle le contenue de cette citation dans la fenêtre "Personnalisation"
Code: Tout sélectionner
:files
C:\windows\_delis32.ini
C:\Documents and Settings\Clément\Mes documents\LimeWire
C:\Program Files\LimeWire

:OTL
O3 - HKLM\..\Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.     
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.     
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.     
[2010/07/28 07:45:36 | 000,000,272 | ---- | C] () -- C:\WINDOWS\_delis32.ini     
[2011/01/07 15:01:58 | 000,000,000 | ---D | M] (DVDVideoSoftTB Community Toolbar) -- C:\Documents and Settings\Clément\Application Data\Mozilla\Firefox\Profiles\6z62zaiw.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}     
[2011/01/07 15:01:56 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Documents and Settings\Clément\Application Data\Mozilla\Firefox\Profiles\6z62zaiw.default\extensions\engine@conduit.com
[2011/01/21 20:14:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Clément\Mes documents\LimeWire
[2011/01/21 20:11:45 | 000,000,000 | ---D | C] -- C:\Program Files\LimeWire     

:Commands
[emptytemp]
[emptyflash]
[resethosts]
[reboot]


Clique sur le bouton Correction.
Ne touche plus au PC avant son redémarrage.
A l'ouverture du PC un rapport va s'ouvrir --> OTL.txt ... Si ce n'est le cas tu le retrouveras sous le même nom sur le Bureau ou alors dans son dossier --> C:\OTL
Copie et colle ici en réponse le contenu de ce rapport.

2/
Applique cette procédure décrite en images :
tutoriel-malwarebytes-anti-malware-vt-46564.html
/!\ Important/!\ > Effectue une mise à jour du logiciel avant de lancer un scan complet.
> Poste moi le Rapport de Suppression que tu auras.

3/
Profites en pour passer à la version 8 de IE. Actuellement tu as la version 6 et celle-ci est une passoire.
http://www.01net.com/telecharger/window ... 43564.html
> Télécharge sur ton Bureau l'exécutable > Double-clics dessus pour l'installer > Redémarre à l'issue ton PC.
Avatar de l'utilisateur
danakil
Expert(e)
Expert(e)
 
Messages: 1363
Inscription: 16 Juil 2009 09:47
 

Re: Aide pour désinfection

Message le 05 Fév 2011 10:48

Bonjour,

Je viens d'appliquer la procédure que vous m'indiquiez.
Cependant, une erreur se produit lors de l'exécution de la commande:
Code: Tout sélectionner
[resethosts]


Une boite de dialogue apparait: Cannot create file C:\WINDOWS\System32\drivers\etc\Hosts
Avec comme seule possibilité de cliquer sur un bouton "OK"

Je n'ai pas encore cliqué sur ce bouton.
Que dois-je faire ?

Merci ;)
Thunder1810
Apprenti(e) Expert(e)
Apprenti(e) Expert(e)
 
Messages: 204
Inscription: 07 Déc 2008 10:59
Localisation: 127.0.0.1
 

Re: Aide pour désinfection

Message le 05 Fév 2011 12:14

Salut!

Valide par OK et dans la foulée relance un scan avec OTL, cela fait une semaine que les rapports sont en places donc de forte chance que l'infection s'est propagée à d'autres secteurs du PC.

Pour OTL regarde ici --> preparer-demande-aide-desinfection-vt-55699.html <-- deuxième étape!
Avatar de l'utilisateur
danakil
Expert(e)
Expert(e)
 
Messages: 1363
Inscription: 16 Juil 2009 09:47
 

Re: Aide pour désinfection

Message le 06 Fév 2011 12:14

Salut

Voici les nouveaux rapports générés ce matin par OTL:

OTL.txt
Code: Tout sélectionner
OTL logfile created on: 06/02/2011 11:15:40 - Run 1
OTL by OldTimer - Version 3.2.20.6     Folder = C:\Documents and Settings\Clément\Bureau
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
 
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 72,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 89,00% Paging File free
Paging file location(s): c:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 596,17 Gb Total Space | 525,18 Gb Free Space | 88,09% Space Free | Partition Type: NTFS
Drive D: | 233,75 Gb Total Space | 233,68 Gb Free Space | 99,97% Space Free | Partition Type: NTFS
Drive E: | 465,76 Gb Total Space | 58,32 Gb Free Space | 12,52% Space Free | Partition Type: NTFS
 
Computer Name: FIXE-CLEMENT | User Name: Clément | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2011/02/06 11:14:58 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Clément\Bureau\OTL.exe
PRC - [2010/10/16 00:40:40 | 000,037,664 | ---- | M] (Apple Inc.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2010/08/18 17:09:04 | 000,340,520 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe
PRC - [2010/03/04 22:38:00 | 000,071,096 | ---- | M] () -- C:\Program Files\CDBurnerXP\NMSAccessU.exe
PRC - [2010/01/26 13:46:14 | 000,939,272 | ---- | M] (Raxco Software, Inc.) -- C:\Program Files\Raxco\PerfectDisk10\PDAgent.exe
PRC - [2009/12/31 00:24:34 | 000,703,488 | ---- | M] (FileZilla Project) -- C:\Program Files\FileZilla Server\FileZilla server.exe
PRC - [2008/09/24 13:32:48 | 000,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
PRC - [2008/04/14 13:00:00 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - [2011/02/06 11:14:58 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Clément\Bureau\OTL.exe
MOD - [2010/08/23 17:12:39 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2009/11/06 23:04:36 | 000,109,072 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\mzvkbd3.dll
MOD - [2009/11/06 23:04:24 | 000,017,936 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\kloehk.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [On_Demand | Stopped] --  -- (WMPNetworkSvc)
SRV - File not found [Auto | Stopped] --  -- (hpdj)
SRV - [2010/10/16 00:40:40 | 000,037,664 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/08/18 17:09:04 | 000,340,520 | ---- | M] (Kaspersky Lab) [Auto | Running] -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe -- (AVP)
SRV - [2010/06/12 12:44:34 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010/03/04 22:38:00 | 000,071,096 | ---- | M] () [Auto | Running] -- C:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccess)
SRV - [2010/01/26 13:46:16 | 001,033,480 | ---- | M] (Raxco Software, Inc.) [On_Demand | Stopped] -- C:\Program Files\Raxco\PerfectDisk10\PDEngine.exe -- (PDEngine)
SRV - [2010/01/26 13:46:14 | 000,939,272 | ---- | M] (Raxco Software, Inc.) [Auto | Running] -- C:\Program Files\Raxco\PerfectDisk10\PDAgent.exe -- (PDAgent)
SRV - [2010/01/03 09:50:07 | 000,068,096 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe -- (Macromedia Licensing Service)
SRV - [2009/12/31 00:24:34 | 000,703,488 | ---- | M] (FileZilla Project) [Auto | Running] -- C:\Program Files\FileZilla Server\FileZilla Server.exe -- (FileZilla Server)
SRV - [2008/09/24 13:32:48 | 000,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2008/04/14 13:00:00 | 000,105,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\system32\p2pgasvc.dll -- (p2pgasvc)
SRV - [2008/04/14 13:00:00 | 000,036,864 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\iprip.dll -- (Iprip)
SRV - [2006/10/26 19:49:34 | 000,441,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2006/10/26 14:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2011/01/01 18:18:40 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010/11/26 05:17:40 | 005,555,712 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2010/07/01 14:21:14 | 000,034,896 | ---- | M] (Screaming Bee LLC) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ScreamingBAudio.sys -- (SCREAMINGBDRIVER)
DRV - [2009/11/12 13:48:56 | 000,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2009/11/11 16:35:34 | 000,315,408 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\klif.sys -- (KLIF)
DRV - [2009/10/14 20:18:34 | 000,036,880 | ---- | M] (Kaspersky Lab) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\klbg.sys -- (klbg)
DRV - [2009/10/02 18:39:44 | 000,019,472 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klmouflt.sys -- (klmouflt)
DRV - [2009/09/14 13:42:46 | 000,032,272 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\klim5.sys -- (klim5)
DRV - [2009/09/01 14:29:50 | 000,128,016 | ---- | M] (Kaspersky Lab) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\kl1.sys -- (kl1)
DRV - [2009/08/20 11:11:30 | 000,073,232 | ---- | M] (Raxco Software, Inc.) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\DefragFs.sys -- (DefragFS)
DRV - [2009/08/05 14:16:42 | 000,039,424 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\l1e51x86.sys -- (L1e)
DRV - [2009/05/22 23:37:50 | 005,082,624 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008/10/31 19:52:16 | 000,093,184 | R--- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - [2008/08/14 06:57:42 | 000,074,720 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\adfs.sys -- (adfs)
DRV - [2008/08/05 20:10:12 | 001,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2008/05/06 02:30:40 | 000,104,704 | ---- | M] (Dynex                                                       ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2008/04/14 13:00:00 | 000,225,664 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2008/04/14 13:00:00 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2008/04/13 11:45:14 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Pilote USB audio (WDM)
DRV - [2007/12/17 17:14:06 | 000,012,400 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AsIO.sys -- (AsIO)
DRV - [2006/01/04 15:41:48 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2005/11/03 15:40:07 | 000,063,488 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfvfs02.sys -- (sfvfs02) StarForce Protection VFS Driver (version 2.x)
DRV - [2005/08/10 13:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2005/05/16 14:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2004/08/13 10:56:20 | 000,005,810 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-1078081533-1450960922-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-1078081533-1450960922-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-1078081533-1450960922-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-1078081533-1450960922-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-1078081533-1450960922-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKU\S-1-5-21-1078081533-1450960922-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = local;*.local
 
[color=#E56717]========== FireFox ==========[/color]
 
 
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/01/27 17:14:22 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/01/27 17:14:22 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0b8\extensions\\Components: C:\Program Files\Mozilla Firefox 4.0 Beta 8\components
FF - HKLM\software\mozilla\Mozilla Firefox 4.0b8\extensions\\Plugins: C:\Program Files\Mozilla Firefox 4.0 Beta 8\plugins
FF - HKLM\software\mozilla\Thunderbird\Extensions\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\THBExt [2010/11/22 18:28:54 | 000,000,000 | ---D | M]
 
[2010/03/30 17:59:42 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Clément\Application Data\Mozilla\Extensions
[2010/03/30 17:59:42 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Clément\Application Data\Mozilla\Extensions\maxtv4@labs.max-tv.be
[2011/02/05 22:55:14 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Clément\Application Data\Mozilla\Firefox\Profiles\6z62zaiw.default\extensions
[2010/07/31 10:05:27 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Clément\Application Data\Mozilla\Firefox\Profiles\6z62zaiw.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/12/26 08:12:36 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Documents and Settings\Clément\Application Data\Mozilla\Firefox\Profiles\6z62zaiw.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2010/10/21 21:42:06 | 000,000,000 | ---D | M] ("DVDVideoSoft Menu") -- C:\Documents and Settings\Clément\Application Data\Mozilla\Firefox\Profiles\6z62zaiw.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2011/01/17 21:18:15 | 000,000,000 | ---D | M] (Easy Youtube Video Downloader) -- C:\Documents and Settings\Clément\Application Data\Mozilla\Firefox\Profiles\6z62zaiw.default\extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}
[2010/06/23 08:19:41 | 000,000,000 | ---D | M] (LogMeIn, Inc. Remote Access Plugin) -- C:\Documents and Settings\Clément\Application Data\Mozilla\Firefox\Profiles\6z62zaiw.default\extensions\LogMeInClient@logmein.com
[2011/02/01 18:45:04 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/11/22 18:29:21 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
[2010/12/22 11:05:39 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml
[2010/12/22 11:05:39 | 000,001,822 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml
[2010/12/22 11:05:39 | 000,000,757 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml
[2010/12/22 11:05:40 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml
[2010/12/22 11:05:40 | 000,000,956 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml
 
Hosts file not found
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll (Kaspersky Lab)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe (Kaspersky Lab)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1078081533-1450960922-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1078081533-1450960922-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMBalloonTip = 0
O8 - Extra context menu item: Ajouter à l'Anti-bannière - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ie_banner_deny.htm ()
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Documents and Settings\Clément\Application Data\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
O9 - Extra Button: Clavier &virtuel - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O9 - Extra Button: Analyse des &liens - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1290344913140 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\cetihpz {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll (Hewlett-Packard Company)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\mzvkbd3.dll (Kaspersky Lab)
O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\kloehk.dll (Kaspersky Lab)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\klogon: DllName - C:\WINDOWS\system32\klogon.dll - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - CLSID or File not found.
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Clément\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Clément\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/12/29 17:47:35 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (PDBoot.exe) - C:\WINDOWS\System32\PDBoot.exe (Raxco Software, Inc.)
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
NetSvcs: Ias -  File not found
NetSvcs: Iprip - C:\WINDOWS\system32\iprip.dll (Microsoft Corporation)
NetSvcs: Irmon -  File not found
NetSvcs: NWCWorkstation -  File not found
NetSvcs: Nwsapagent -  File not found
NetSvcs: WmdmPmSp -  File not found
 
MsConfig - StartUpReg: [b]AdobeCS4ServiceManager[/b] - hkey= - key= - C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
MsConfig - StartUpReg: [b]DivXUpdate[/b] - hkey= - key= -  File not found
MsConfig - StartUpReg: [b]QuickTime Task[/b] - hkey= - key= - C:\Program Files\QuickTime\qttask.exe (Apple Inc.)
MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 0
 
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
 
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
 
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Rendu VML (Vector Graphics Rendering)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Lecteur Windows Media Microsoft 6.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Liaison de données Dynamic HTML pour Java
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Logiciel de navigation hors connexion
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Création avancée
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015C} - Microsoft DirectX
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Aide sur Internet Explorer
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - Classes Java DirectAnimation
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.7
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Outils d'installation Internet Explorer
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Améliorations pour la navigation
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - Accès au site MSN
ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework
ActiveX: {72AD53CC-CCC0-3757-8480-9EE176866A7C} - .NET Framework
ActiveX: {73fa19d0-2d75-11d2-995d-00c04f98bbc9} - Web Folders
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {7E4C580A-BA0C-DE5C-5D7C-CA08557323D1} - Themes Setup
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - %SystemRoot%\system32\ie4uinit.exe
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Liaison de données Dynamic HTML
ActiveX: {A879350A-068B-CFFD-7712-70950EA09FE9} - NetShow
ActiveX: {ACC563BC-4266-43f0-B6ED-9D38C4202C7E} -
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Polices de base Internet Explorer
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Planificateur de tâches
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Macromedia Shockwave Flash
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - Aide HTML
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE
 
Drivers32: msacm.divxa32 - C:\WINDOWS\System32\msaud32_divx.acm (Microsoft Corporation)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lhacm - C:\WINDOWS\System32\lhacm.acm (Microsoft Corporation)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2011/02/06 11:15:00 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Clément\Bureau\OTL.exe
[2011/02/06 09:27:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Google Earth
[2011/02/05 17:42:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Clément\Application Data\GRETECH
[2011/02/05 17:31:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\GOM Player
[2011/02/05 17:31:05 | 000,000,000 | ---D | C] -- C:\Program Files\GRETECH
[2011/02/05 16:37:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Clément\Application Data\Local
[2011/02/01 18:40:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Clément\Mes documents\DVDVideoSoft
[2011/02/01 18:40:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\DVDVideoSoft
[2011/02/01 18:40:00 | 000,000,000 | ---D | C] -- C:\Program Files\DVDVideoSoft
[2011/01/29 12:37:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2011/01/28 20:36:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Megamedia
[2011/01/27 21:39:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Clément\Application Data\Scooter Software
[2011/01/18 19:12:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\iTunes
[2011/01/18 19:09:35 | 000,000,000 | ---D | C] -- C:\Serveurs
[2011/01/18 19:08:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Clément\Bureau\From ipod
[2011/01/18 19:07:57 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011/01/18 19:06:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Apple Computer
[2011/01/18 18:50:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\QuickTime
[2011/01/18 18:49:53 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2011/01/18 18:40:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Clément\Local Settings\Application Data\Macroplant,_LLC
[2011/01/18 18:31:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Clément\Local Settings\Application Data\Wide Angle Software
[2011/01/17 21:14:51 | 000,131,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSADODC.ocx
[2011/01/17 21:14:50 | 002,267,368 | ---- | C] (Adobe Systems, Inc.) -- C:\WINDOWS\System32\Flash.ocx
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2011/02/06 11:14:58 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Clément\Bureau\OTL.exe
[2011/02/06 11:13:16 | 000,002,422 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/02/06 11:12:50 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/02/06 11:12:49 | 002,183,136 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/02/06 10:20:49 | 000,001,061 | ---- | M] () -- C:\Documents and Settings\Clément\Bureau\Free YouTube to MP3 Converter.lnk
[2011/02/06 10:01:48 | 000,155,648 | ---- | M] () -- C:\Documents and Settings\Clément\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/02/05 17:31:16 | 000,000,790 | ---- | M] () -- C:\Documents and Settings\Clément\Application Data\Microsoft\Internet Explorer\Quick Launch\GOM Player.lnk
[2011/02/05 13:20:40 | 000,000,492 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2011/02/04 18:27:48 | 000,001,768 | -H-- | M] () -- C:\Documents and Settings\Clément\Mes documents\Default.rdp
[2011/01/28 20:38:14 | 000,000,050 | ---- | M] () -- C:\WINDOWS\Megakey.INI
[2011/01/22 12:59:30 | 000,057,396 | -H-- | M] () -- C:\WINDOWS\System32\mlfcache.dat
[2011/01/18 19:12:03 | 000,001,552 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\iTunes.lnk
[2011/01/12 07:52:01 | 000,503,656 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2011/01/12 07:52:01 | 000,435,396 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/01/12 07:52:01 | 000,081,626 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2011/01/12 07:52:01 | 000,068,292 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/01/08 10:05:18 | 000,000,907 | ---- | M] () -- C:\Documents and Settings\Clément\Bureau\Raccourci vers Dreamweaver.lnk
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2011/02/06 10:20:49 | 000,001,061 | ---- | C] () -- C:\Documents and Settings\Clément\Bureau\Free YouTube to MP3 Converter.lnk
[2011/02/05 17:31:16 | 000,000,790 | ---- | C] () -- C:\Documents and Settings\Clément\Application Data\Microsoft\Internet Explorer\Quick Launch\GOM Player.lnk
[2011/01/28 20:38:14 | 000,000,050 | ---- | C] () -- C:\WINDOWS\Megakey.INI
[2011/01/18 19:12:03 | 000,001,552 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\iTunes.lnk
[2011/01/08 10:05:18 | 000,000,907 | ---- | C] () -- C:\Documents and Settings\Clément\Bureau\Raccourci vers Dreamweaver.lnk
[2011/01/01 17:45:22 | 000,007,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2010/12/29 15:19:26 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini
[2010/12/27 08:49:55 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\AsIO.dll
[2010/12/27 08:49:55 | 000,012,400 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys
[2010/12/27 08:48:13 | 000,005,810 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2010/12/22 12:34:35 | 000,000,010 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2010/10/23 08:08:03 | 000,196,768 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2010/10/05 16:19:16 | 000,000,038 | ---- | C] () -- C:\WINDOWS\AviSplitter.INI
[2010/04/09 20:05:43 | 000,004,767 | ---- | C] () -- C:\WINDOWS\Irremote.ini
[2010/04/02 19:23:11 | 000,001,024 | ---- | C] () -- C:\Documents and Settings\Clément\Application Data\WavCodec.wff
[2010/03/10 19:58:23 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010/03/09 21:45:41 | 000,015,620 | ---- | C] () -- C:\WINDOWS\System32\SystemRes10.b30.SYS
[2010/03/05 23:14:02 | 000,000,050 | ---- | C] () -- C:\WINDOWS\MegaManager.INI
[2010/02/22 16:24:37 | 000,000,187 | ---- | C] () -- C:\Documents and Settings\Clément\Application Data\default.rss
[2010/02/22 16:24:15 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010/02/21 16:52:37 | 000,000,336 | ---- | C] () -- C:\WINDOWS\hpntwksetup.ini
[2010/02/21 16:49:17 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log
[2010/02/03 13:24:23 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll
[2009/12/30 11:23:41 | 000,010,219 | ---- | C] () -- C:\WINDOWS\hpdj3600.ini
[2009/12/29 19:31:15 | 000,155,648 | ---- | C] () -- C:\Documents and Settings\Clément\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/12/29 18:38:43 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2009/12/29 18:01:52 | 000,001,769 | ---- | C] () -- C:\WINDOWS\Language_trs.ini
[2008/10/22 04:29:06 | 000,173,550 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2008/04/13 20:33:40 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[1996/04/03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2009/12/30 10:57:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Age of Empires 3
[2009/12/29 19:27:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited
[2010/03/10 19:58:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2010/07/28 07:44:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
[2010/03/07 17:19:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Pinnacle
[2010/11/20 20:41:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Screaming Bee
[2010/11/20 12:39:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SPAMfighter
[2010/12/21 12:29:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WindSolutions
[2010/09/15 21:18:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2010/09/18 09:43:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Canneverbe Limited
[2009/12/30 15:03:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\CoSoSys
[2010/03/10 20:12:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\DAEMON Tools Lite
[2010/05/02 19:11:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\DisplayFusion
[2010/11/20 09:13:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\DNA
[2011/02/01 18:40:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\DVDVideoSoftIEHelpers
[2011/02/06 09:56:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\FileZilla
[2010/04/04 16:38:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\FreeAudioPack
[2010/09/14 20:54:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\gtk-2.0
[2010/01/06 19:15:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\HLSW
[2010/08/31 14:13:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\inkscape
[2010/10/14 16:44:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Jasc
[2011/02/05 16:37:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Local
[2010/03/30 17:58:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\MaxTV Technologies
[2010/04/02 19:18:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\NCH Swift Sound
[2010/07/28 07:30:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\OpenOffice.org
[2010/01/10 17:56:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\PhotoFiltre
[2010/10/23 07:56:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\PriceGong
[2010/04/02 19:18:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Recordpad
[2011/01/27 21:39:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Scooter Software
[2010/11/20 20:41:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Screaming Bee
[2010/03/24 16:45:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\SPAMfighter
[2010/12/22 11:06:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\SystemRequirementsLab
[2010/01/02 12:04:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\TS3Client
[2011/02/05 17:22:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\uTorrent
[2010/02/28 18:00:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\VSRevoGroup
[2010/12/21 12:30:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\WindSolutions
[2010/09/25 17:28:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Xilisoft Corporation
[2011/01/28 20:36:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\Megamedia
[2011/02/05 13:20:40 | 000,000,492 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Custom Scans ==========[/color]
 
 
[color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color]
[2011/01/01 18:18:40 | 000,691,696 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\drivers\sptd.sys
 
[color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*. >[/color]
[2010/06/12 12:57:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2009/12/30 10:57:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Age of Empires 3
[2010/09/24 15:41:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Apple
[2010/09/15 21:16:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Apple Computer
[2010/12/22 12:43:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ATI
[2010/04/09 19:30:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVS4YOU
[2009/12/29 19:27:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited
[2010/03/10 19:58:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2011/02/05 17:26:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DivX
[2011/01/30 10:06:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FLEXnet
[2010/02/28 17:39:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Google
[2011/02/06 11:13:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
[2010/01/17 12:44:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files
[2011/02/05 16:57:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Lavasoft
[2010/11/20 12:39:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Macrovision
[2009/12/29 18:22:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010/07/26 18:35:35 | 000,000,000 | --SD | M] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2010/11/06 10:26:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Microsoft Help
[2010/07/28 07:44:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
[2010/04/09 18:59:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nero
[2010/03/07 17:19:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Pinnacle
[2009/12/29 18:35:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Raxco
[2010/11/20 20:41:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Screaming Bee
[2010/08/31 21:51:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Skype
[2010/11/20 12:39:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SPAMfighter
[2010/11/20 12:47:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
[2010/01/06 21:41:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2010/12/21 12:29:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WindSolutions
[2010/09/15 21:18:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
 
[color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*.exe /s >[/color]
[2009/02/04 13:56:14 | 000,075,112 | ---- | M] (GEAR Software, Inc.) -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}\x86\DifXInstall32.exe
[2011/01/18 18:55:39 | 000,073,000 | ---- | M] (Apple Inc.) -- C:\Documents and Settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 10.1.1.4\SetupAdmin.exe
[2009/11/14 14:26:08 | 000,064,088 | ---- | M] (Kaspersky Lab) -- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files\Kaspersky Internet Security 2010 9.0.0.736\French\setup.exe
[2010/08/18 17:08:54 | 000,340,520 | ---- | M] (Kaspersky Lab) -- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav9exec\9.0.0.736\avp.exe
[2011/01/30 09:17:09 | 006,153,352 | ---- | M] (Malwarebytes Corporation                                    ) -- C:\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe
 
[color=#A23BEC]< %APPDATA%\*. >[/color]
[2010/02/03 13:59:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\AccurateRip
[2010/06/14 15:40:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Adobe
[2010/09/24 15:41:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Apple Computer
[2009/12/29 18:04:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\ATI
[2010/04/09 19:30:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\AVS4YOU
[2010/09/18 09:43:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Canneverbe Limited
[2010/03/09 21:59:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\codeblocks
[2009/12/30 15:03:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\CoSoSys
[2010/03/10 20:12:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\DAEMON Tools Lite
[2010/05/02 19:11:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\DisplayFusion
[2010/07/01 11:08:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\DivX
[2010/11/20 09:13:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\DNA
[2010/03/07 08:18:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Download Manager
[2010/12/18 12:34:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\dvdcss
[2011/02/01 18:40:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\DVDVideoSoftIEHelpers
[2011/02/06 09:56:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\FileZilla
[2010/04/04 16:38:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\FreeAudioPack
[2010/07/27 08:36:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Google
[2011/02/05 17:42:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\GRETECH
[2010/09/14 20:54:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\gtk-2.0
[2010/01/06 19:15:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\HLSW
[2009/12/29 17:50:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Identities
[2010/08/31 14:13:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\inkscape
[2010/10/14 16:44:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Jasc
[2011/02/05 16:37:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Local
[2011/01/26 22:41:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Macromedia
[2009/12/29 18:22:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Malwarebytes
[2010/03/30 17:58:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\MaxTV Technologies
[2010/06/20 21:18:05 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Clément\Application Data\Microsoft
[2010/12/30 21:35:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\mIRC
[2010/01/30 18:21:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Mozilla
[2010/04/02 19:18:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\NCH Swift Sound
[2010/05/24 14:37:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Nero
[2010/07/28 07:30:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\OpenOffice.org
[2010/01/10 17:56:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\PhotoFiltre
[2010/10/23 07:56:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\PriceGong
[2010/04/02 19:18:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Recordpad
[2011/01/27 21:39:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Scooter Software
[2010/11/20 20:41:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Screaming Bee
[2010/10/22 17:08:01 | 000,000,000 | RH-D | M] -- C:\Documents and Settings\Clément\Application Data\SecuROM
[2010/09/14 20:51:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Skype
[2010/09/14 20:49:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\skypePM
[2010/03/24 16:45:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\SPAMfighter
[2009/12/31 11:29:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Sun
[2010/12/22 11:06:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\SystemRequirementsLab
[2010/02/03 13:52:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\teamspeak2
[2010/01/02 12:04:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\TS3Client
[2011/02/05 17:22:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\uTorrent
[2011/01/17 21:13:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\vlc
[2010/02/28 18:00:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\VSRevoGroup
[2010/12/21 12:30:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\WindSolutions
[2010/03/08 23:44:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\WinRAR
[2010/09/25 17:28:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Clément\Application Data\Xilisoft Corporation
 
[color=#A23BEC]< %APPDATA%\*.exe /s >[/color]
[2010/01/15 13:25:04 | 000,372,736 | ---- | M] (LogMeIn, Inc.) -- C:\Documents and Settings\Clément\Application Data\Mozilla\Firefox\Profiles\6z62zaiw.default\extensions\LogMeInClient@logmein.com\plugins\LMIGuardian.exe
[2010/01/15 13:26:54 | 000,070,984 | ---- | M] () -- C:\Documents and Settings\Clément\Application Data\Mozilla\Firefox\Profiles\6z62zaiw.default\extensions\LogMeInClient@logmein.com\plugins\LMIProxyHelper.exe
 
[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
 
 
[color=#A23BEC]< MD5 for: AGP440.SYS  >[/color]
[2008/04/14 13:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008/04/14 13:00:00 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
 
[color=#A23BEC]< MD5 for: ATAPI.SYS  >[/color]
[2008/04/14 13:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008/04/14 13:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
 
[color=#A23BEC]< MD5 for: CDROM.SYS  >[/color]
[2008/04/14 13:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008/04/14 13:00:00 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
 
[color=#A23BEC]< MD5 for: CHANGER.SYS  >[/color]
[2008/04/14 13:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
 
[color=#A23BEC]< MD5 for: DISK.SYS  >[/color]
[2008/04/14 13:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:disk.sys
[2008/04/14 13:00:00 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\system32\drivers\disk.sys
 
[color=#A23BEC]< MD5 for: EVENTLOG.DLL  >[/color]
[2008/04/14 13:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2008/04/14 13:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\system32\eventlog.dll
 
[color=#A23BEC]< MD5 for: EXPLORER.EXE  >[/color]
[2008/04/14 13:00:00 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\explorer.exe
[2008/04/14 13:00:00 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\system32\dllcache\explorer.exe
 
[color=#A23BEC]< MD5 for: NDIS.SYS  >[/color]
[2008/04/14 13:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys
[2008/04/14 13:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
 
[color=#A23BEC]< MD5 for: NETLOGON.DLL  >[/color]
[2008/04/14 13:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\system32\dllcache\netlogon.dll
[2008/04/14 13:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\system32\netlogon.dll
 
[color=#A23BEC]< MD5 for: RASACD.SYS  >[/color]
[2008/04/14 13:00:00 | 000,008,832 | ---- | M] (Microsoft Corporation) MD5=FE0D99D6F31E4FAD8159F690D68DED9C -- C:\WINDOWS\system32\dllcache\rasacd.sys
[2008/04/14 13:00:00 | 000,008,832 | ---- | M] (Microsoft Corporation) MD5=FE0D99D6F31E4FAD8159F690D68DED9C -- C:\WINDOWS\system32\drivers\rasacd.sys
 
[color=#A23BEC]< MD5 for: RDPWD.SYS  >[/color]
[2008/04/14 13:00:00 | 000,139,656 | ---- | M] (Microsoft Corporation) MD5=6728E45B66F93C08F11DE2E316FC70DD -- C:\WINDOWS\system32\dllcache\rdpwd.sys
[2008/04/14 13:00:00 | 000,139,656 | ---- | M] (Microsoft Corporation) MD5=6728E45B66F93C08F11DE2E316FC70DD -- C:\WINDOWS\system32\drivers\rdpwd.sys
 
[color=#A23BEC]< MD5 for: SCECLI.DLL  >[/color]
[2008/04/14 13:00:00 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\system32\dllcache\scecli.dll
[2008/04/14 13:00:00 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\system32\scecli.dll
 
[color=#A23BEC]< MD5 for: SFLOPPY.SYS  >[/color]
[2008/04/14 13:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Sfloppy.sys
[2008/04/14 13:00:00 | 000,011,392 | ---- | M] (Microsoft Corporation) MD5=8E6B8C671615D126FDC553D1E2DE5562 -- C:\WINDOWS\system32\drivers\sfloppy.sys
 
[color=#A23BEC]< MD5 for: SPLITTER.SYS  >[/color]
[2008/04/14 13:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:splitter.sys
[2008/04/13 11:45:08 | 000,006,272 | ---- | M] (Microsoft Corporation) MD5=AB8B92451ECB048A4D1DE7C3FFCB4A9F -- C:\WINDOWS\system32\drivers\splitter.sys
 
[color=#A23BEC]< MD5 for: SPTD.SYS  >[/color]
[2011/01/01 18:18:40 | 000,691,696 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\drivers\sptd.sys
 
[color=#A23BEC]< MD5 for: SWMIDI.SYS  >[/color]
[2008/04/14 13:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:swmidi.sys
[2008/04/14 13:00:00 | 000,056,576 | ---- | M] (Microsoft Corporation) MD5=8CE882BCC6CF8A62F2B2323D95CB3D01 -- C:\WINDOWS\system32\drivers\swmidi.sys
 
[color=#A23BEC]< MD5 for: TCPIP.SYS  >[/color]
[2008/04/14 13:00:00 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008/04/14 13:00:00 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\system32\drivers\tcpip.sys
[2008/06/20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
 
[color=#A23BEC]< MD5 for: TDPIPE.SYS  >[/color]
[2008/04/14 13:00:00 | 000,012,040 | ---- | M] (Microsoft Corporation) MD5=6471A66807F5E104E4885F5B67349397 -- C:\WINDOWS\system32\dllcache\tdpipe.sys
[2008/04/14 13:00:00 | 000,012,040 | ---- | M] (Microsoft Corporation) MD5=6471A66807F5E104E4885F5B67349397 -- C:\WINDOWS\system32\drivers\tdpipe.sys
 
[color=#A23BEC]< MD5 for: TDTCP.SYS  >[/color]
[2008/04/14 13:00:00 | 000,021,896 | ---- | M] (Microsoft Corporation) MD5=C56B6D0402371CF3700EB322EF3AAF61 -- C:\WINDOWS\system32\dllcache\tdtcp.sys
[2008/04/14 13:00:00 | 000,021,896 | ---- | M] (Microsoft Corporation) MD5=C56B6D0402371CF3700EB322EF3AAF61 -- C:\WINDOWS\system32\drivers\tdtcp.sys
 
[color=#A23BEC]< MD5 for: USBPRINT.SYS  >[/color]
[2008/04/14 13:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:usbprint.sys
[2008/04/13 12:47:38 | 000,025,856 | ---- | M] (Microsoft Corporation) MD5=A717C8721046828520C9EDF31288FC00 -- C:\WINDOWS\system32\drivers\usbprint.sys
 
[color=#A23BEC]< MD5 for: USBSCAN.SYS  >[/color]
[2008/04/14 13:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:usbscan.sys
[2008/04/13 11:45:36 | 000,015,104 | ---- | M] (Microsoft Corporation) MD5=A0B8CF9DEB1184FBDD20784A58FA75D4 -- C:\WINDOWS\system32\drivers\usbscan.sys
 
[color=#A23BEC]< MD5 for: USERINIT.EXE  >[/color]
[2008/04/14 13:00:00 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\system32\dllcache\userinit.exe
[2008/04/14 13:00:00 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\system32\userinit.exe
 
[color=#A23BEC]< MD5 for: WINLOGON.EXE  >[/color]
[2008/04/14 13:00:00 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2008/04/14 13:00:00 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\system32\winlogon.exe
 
[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
 
[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[2008/04/14 13:00:00 | 000,380,445 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\expsrv.dll
[2008/04/14 13:00:00 | 001,355,776 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\msvbvm50.dll
[2008/04/14 13:00:00 | 001,384,479 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\msvbvm60.dll
 
[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]

< End of report >


Extras.txt
Code: Tout sélectionner
OTL Extras logfile created on: 06/02/2011 11:15:40 - Run 1
OTL by OldTimer - Version 3.2.20.6     Folder = C:\Documents and Settings\Clément\Bureau
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
 
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 72,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 89,00% Paging File free
Paging file location(s): c:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 596,17 Gb Total Space | 525,18 Gb Free Space | 88,09% Space Free | Partition Type: NTFS
Drive D: | 233,75 Gb Total Space | 233,68 Gb Free Space | 99,97% Space Free | Partition Type: NTFS
Drive E: | 465,76 Gb Total Space | 58,32 Gb Free Space | 12,52% Space Free | Partition Type: NTFS
 
Computer Name: FIXE-CLEMENT | User Name: Clément | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== File Associations ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
 
[HKEY_USERS\S-1-5-21-1078081533-1450960922-682003330-1003\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
 
[color=#E56717]========== Shell Spawning ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[color=#E56717]========== Security Center Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring" = 1
"" =
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
 
[color=#E56717]========== System Restore Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
 
[color=#E56717]========== Firewall Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"3587:TCP" = 3587:TCP:*:Enabled:Groupement homologue Windows
"3540:UDP" = 3540:UDP:*:Enabled:Protocole PNRP (Peer Name Resolution Protocol)
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"5353:TCP" = 5353:TCP:*:Enabled:Adobe CSI CS4
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"3587:TCP" = 3587:TCP:*:Enabled:Groupement homologue Windows
"3540:UDP" = 3540:UDP:*:Enabled:Protocole PNRP (Peer Name Resolution Protocol)
"3138:TCP" = 3138:TCP:*:Enabled:Akamai NetSession Interface
"5000:UDP" = 5000:UDP:*:Enabled:Akamai NetSession Interface
 
[color=#E56717]========== Authorized Applications List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Microsoft Games\Age of Empires III\age3.exe" = C:\Program Files\Microsoft Games\Age of Empires III\age3.exe:*:Enabled:Age of Empires III -- (Ensemble Studios)
"D:\Steam\steamapps\common\zero gear\ZeroGear.bat" = D:\Steam\steamapps\common\zero gear\ZeroGear.bat:*:Enabled:Zero Gear
"H:\setup\HPZNET01.EXE" = H:\setup\HPZNET01.EXE:*:Enabled:hpznet01.exe
"H:\setup\hppapd.exe" = H:\setup\hppapd.exe:*:Enabled:hppapd.exe
"H:\setup\HPPNICIFS01.EXE" = H:\setup\HPPNICIFS01.EXE:*:Enabled:hppnicifs01.exe
"H:\setup\HPNTWKEXE.EXE" = H:\setup\HPNTWKEXE.EXE:*:Enabled:hpntwkexe.exe
"C:\Program Files\Microsoft Office\Office14\GROOVE.EXE" = C:\Program Files\Microsoft Office\Office14\GROOVE.EXE:*:Enabled:Microsoft SharePoint Workspace
"C:\Program Files\MaxTV\MaxTV4\maxtv.exe" = C:\Program Files\MaxTV\MaxTV4\maxtv.exe:*:Enabled:MaxTV
"C:\Program Files\MaxTV\MaxTV4\core\maxtv_xul.exe" = C:\Program Files\MaxTV\MaxTV4\core\maxtv_xul.exe:*:Enabled:MaxTV GUI
"C:\Program Files\MaxTV\MaxTV4\recorder.exe" = C:\Program Files\MaxTV\MaxTV4\recorder.exe:*:Enabled:MaxTV Recorder
"C:\Program Files\MaxTV\MaxTV4\task_scheduler.exe" = C:\Program Files\MaxTV\MaxTV4\task_scheduler.exe:*:Enabled:MaxTV Recorder Manager
"C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe" = C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4 -- (Adobe Systems Incorporated)
"D:\Steam\steamapps\common\call of duty modern warfare 2\iw4sp.exe" = D:\Steam\steamapps\common\call of duty modern warfare 2\iw4sp.exe:*:Enabled:Call of Duty: Modern Warfare 2
"D:\Steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe" = D:\Steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe:*:Enabled:Call of Duty: Modern Warfare 2 - Multiplayer
"D:\Steam\steamapps\clems1810\counter-strike source\hl2.exe" = D:\Steam\steamapps\clems1810\counter-strike source\hl2.exe:*:Enabled:Counter-Strike: Source
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent
"D:\Steam\steamapps\clems1810\condition zero\hl.exe" = D:\Steam\steamapps\clems1810\condition zero\hl.exe:*:Enabled:Counter-Strike: Condition Zero
"D:\Steam\steamapps\common\call of duty black ops\BlackOps.exe" = D:\Steam\steamapps\common\call of duty black ops\BlackOps.exe:*:Enabled:Call of Duty: Black Ops
"D:\Steam\steamapps\common\call of duty black ops\BlackOpsMP.exe" = D:\Steam\steamapps\common\call of duty black ops\BlackOpsMP.exe:*:Enabled:Call of Duty: Black Ops - Multiplayer
"D:\Steam\steamapps\clems1810\counter-strike\hl.exe" = D:\Steam\steamapps\clems1810\counter-strike\hl.exe:*:Enabled:Counter-Strike
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:\Program Files\Steam\steamapps\common\call of duty black ops\BlackOpsMP.exe" = C:\Program Files\Steam\steamapps\common\call of duty black ops\BlackOpsMP.exe:*:Enabled:Call of Duty: Black Ops - Multiplayer -- ()
"C:\Program Files\Steam\steamapps\common\call of duty black ops\BlackOps.exe" = C:\Program Files\Steam\steamapps\common\call of duty black ops\BlackOps.exe:*:Enabled:Call of Duty: Black Ops -- ()
"C:\Program Files\Steam\steamapps\clems1810\counter-strike\hl.exe" = C:\Program Files\Steam\steamapps\clems1810\counter-strike\hl.exe:*:Enabled:Counter-Strike -- (Valve)
 
 
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{044F9133-B8D7-4d11-BF39-803FA20F5C8B}" = Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for Win32
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{0711500B-9912-4D60-9A49-C577B4503D42}" = Nero Recode Help
"{07FF7593-9DEA-40B5-9F87-F557E65BBF60}" = Nero Recode
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{098A2A49-7CF3-4F08-A38D-FB879117152A}" = Adobe Color NA Extra Settings CS4
"{0BD83598-C2EF-3343-847B-7D2E84599128}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}" = Adobe Setup
"{0DC0E85F-36E4-463B-B3EA-4CD8ED2222A1}" = Adobe Color EU Recommended Settings CS4
"{0ED98038-0885-F902-C419-669ADE471A46}" = ATI Stream SDK v2 Developer
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}" = ATI Catalyst Registration
"{1122AAC4-AAAA-43BF-B2D4-3C8C12378952}" = Nero InfoTool
"{11A84FCA-C3C7-4AFD-A797-111DB8569DBC}" = Nero BurningROM
"{12345674-DE9A-677A-CCEE-666356D89777}" = Nero BurnRights
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}" = Adobe AIR
"{1B040683-C390-4711-ABC7-DA8D85E470E7}" = NeroBurningROM
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 17
"{2BE013D0-4CF4-AA57-05E1-19F9FACCF622}" = CCC Help English
"{2D3455A8-3B15-41A8-99F8-0D4215746463}" = Nero StartSmart
"{308B6AEA-DE50-4666-996D-0FA461719D6B}" = Apple Mobile Device Support
"{3097B151-1F61-4211-A4CC-D70127B226AE}" = SoundTrax
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{3E31821C-7917-367E-938E-E65FC413EA31}" = Microsoft .NET Framework 3.5 Language Pack SP1 - fra
"{3F30CC51-0788-487B-AA83-7214A239C0C0}" = Nero Disc Copy Gadget Help
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{474F25F5-BDC9-40E5-B1B6-F6BF23FC106F}" = Windows Live Essentials
"{484AB636-ADBC-3A85-AB82-41873BDD1083}" = Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for .NET Framework - fra
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{4D42353B-533F-4306-AD0B-7FEF292ADE04}" = Nero CoverDesigner Help
"{4E8C27C2-D727-4C00-A90E-C3F6376EEE70}" = Nero ControlCenter
"{548F99E0-14CC-4D53-A7D6-4A62A5F2C748}" = Nero PhotoSnap
"{56BE5CC9-95E6-4128-ABEA-968414CA9C80}" = DolbyFiles
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{59E4543A-D49D-4489-B445-473D763C79AF}" = Microsoft Games for Windows - LIVE Redistributable
"{5A62A775-A29A-4CE1-BBC2-4A9CD0B211EF}" = Nero Live Help
"{5AE12194-3EAA-40DF-B2BF-FE1D6B78BBF4}" = Nero Vision
"{5C2E8A0F-80E2-4C68-8CC0-D8D16E7196BF}" = Nero RescueAgent Help
"{5C42EAB8-54F9-423A-948C-1CBEF25F8DB4}" = Nero PhotoSnap Help
"{5C9BB0B3-E830-4814-BBA4-D93535E1C7B9}" = Nero Live
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{6AB57823-3580-4CE0-9CF0-072E2A39460C}" = Catalyst Control Center - Branding
"{70F8B183-99EB-4304-BA35-080E2DFFD2A3}" = Age of Empires III
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72AD53CC-CCC0-3757-8480-9EE176866A7C}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA
"{75321954-2589-11DC-DDCC-E98356D81493}" = Nero DriveSpeed
"{753973C4-B961-43BF-B2D4-3C8C92F7216E}" = Nero DriveSpeed
"{75801941-d4ad-4018-acd7-e220e1457a1a}" = Nero 9
"{766273C1-A39B-47EB-ACE8-DEBDD8094BCC}" = overland
"{78523651-D8B1-11DC-CCEE-741589645873}" = Nero DiscSpeed
"{788F45B5-816D-2294-33DD-BF080093D54D}" = Catalyst Control Center Graphics Previews Common
"{790F6156-B231-F7D6-BAE4-741E7CB0ACB1}" = ccc-utility
"{7B738CD9-D107-48C7-8E65-2E6639A39C8D}" = PerfectDisk 10 Professional
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{810AD6B3-C830-A74C-300E-D14820CE1850}" = Catalyst Control Center InstallProxy
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{842FAF7C-50EF-4463-9B8F-6222E1384D7D}" = Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries
"{881F5DE8-9367-4B81-A325-E91BBC6472F9}" = iTunes
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}" = The Lord of the Rings FREE Trial
"{8C654BD0-1949-43DE-84F2-EC2A1ABB0CB4}" = Nero ShowTime
"{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
"{90120000-0010-040C-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders  (French) 12
"{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007
"{90120000-0015-040C-0000-0000000FF1CE}" = Microsoft Office Access MUI (French) 2007
"{90120000-0016-040C-0000-0000000FF1CE}" = Microsoft Office Excel MUI (French) 2007
"{90120000-0018-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007
"{90120000-0019-040C-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (French) 2007
"{90120000-001A-040C-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (French) 2007
"{90120000-001B-040C-0000-0000000FF1CE}" = Microsoft Office Word MUI (French) 2007
"{90120000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2007
"{90120000-0044-040C-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (French) 2007
"{90120000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2007
"{91A5B6C0-EF4E-4830-AC7D-6761C0A9B292}" = hp deskjet 3600
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{943CC0C0-2253-4FE0-9493-DD386F7857FD}" = Nero Express
"{948FFAAE-C57F-447B-9B07-3721E950BFDC}" = Nero ShowTime
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{961D53EA-40DC-4156-AD74-25684CE05F81}" = Nero Installer
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A875B56-A35C-46BA-A3AA-DF8D03EE9F2F}" = Nero ControlCenter
"{9D8B0949-7C47-476F-9F06-F900D3B078EA}" = Kaspersky Internet Security 2010
"{9F3523F8-DAD7-AE52-6DA7-45CDDDF33726}" = Advertising Center
"{A13C84F5-B2FC-823B-ADB2-6F5B2A6EE9DE}" = ccc-utility
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A36579B4-313E-DC6B-D817-41824D46EF5D}" = CCC Help English
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A73BEC3C-40A0-480E-87EF-EFCD33629088}" = NeroExpress
"{A8399F58-234A-48C6-BA55-30C15738BF3C}" = Nero CoverDesigner
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AAA12554-2589-11DC-92EF-E98356D81493}" = Nero InfoTool
"{AABBCC54-D8B1-11DC-92EF-E98356D81493}" = Nero DiscSpeed
"{AC76BA86-7AD7-1036-7B44-A92000000001}" = Adobe Reader 9.2 - Français
"{B1E9CB0F-7227-489A-B7E2-A685D60993FF}" = Crystal Reports Basic Runtime French Language Pack for Visual Studio 2008
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B2C12C8D-65DC-40BD-B309-5ADB0C6C8D8F}" = Nero WaveEditor
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B57EAFF2-D6EE-4C6C-9175-ED9F17BFC1BC}" = Windows Live Messenger
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{B9060398-FB64-2A4C-C4E6-D1236447E026}" = ATI Catalyst Install Manager
"{B96C2601-52F5-4D5D-816A-63469EA311EF}" = "Nero SoundTrax Help
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{BCD82AB5-670D-4242-90FA-1F97103C16CD}" = Movie Templates - Starter Kit
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{C99C89A3-119A-45E6-B26E-DD5643CAA0C5}" = Menu Templates - Starter Kit
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CD1826A5-CFCC-4C6E-9F9D-E181876162EA}" = Nero Rescue Agent
"{CE26F10F-C80F-4377-908B-1B7882AE2CE3}" = Crystal Reports Basic Runtime for Visual Studio 2008
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D3B1C799-CB73-42DE-BA0F-2344793A095C}" = Catalyst Control Center - Branding
"{D3BA6488-5C3E-A4EF-BA64-74C54ABCEE03}" = ccc-core-static
"{D7C206B6-1A63-4389-A8B1-8F607D0BFF1F}" = Nero StartSmart Help
"{E4848436-0345-47E2-B648-8B522FCDA623}" = Adobe Photoshop CS4
"{E4A8DD87-A746-4443-BF25-CAF99CED6767}" = Nero Disc Copy Gadget
"{E6158D07-2637-4ECF-B576-37C489669174}" = Windows Live Call
"{E86156E5-9859-440D-8876-26CED1349802}" = Nero WaveEditor Help
"{EA9FFE54-D8B1-11DC-92EF-E98356D81493}" = Nero BurnRights
"{EDD654B3-6FE9-67AC-CE7D-5FE3698439DB}" = Catalyst Control Center Graphics Previews Common
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F53F6769-AC46-49E3-ABE3-2C8AFD39D0DD}" = Nero Vision
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FB4F9000-04FC-11E0-85D2-001AA037B01E}" = Google Earth Plug-in
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"{FF1C31AE-0CDC-40CE-AB85-406F8B70D643}" = Bonjour
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"7-Zip" = 7-Zip 4.65
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe_faf656ef605427ee2f42989c3ad31b8" = Adobe Photoshop CS4
"CCleaner" = CCleaner (remove only)
"FileZilla Client" = FileZilla Client 3.3.5.1
"FileZilla Server" = FileZilla Server (remove only)
"FormatFactory" = FormatFactory 2.50
"Free Audio CD Burner_is1" = Free Audio CD Burner version 1.4.7
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.9.32
"GOM Player" = GOM Player
"Google Chrome" = Google Chrome
"Guitar Pro 5_is1" = Guitar Pro 5.2
"Half-Life Dedicated Server Update Tool" = Half-Life Dedicated Server Update Tool
"InstallShield_{70F8B183-99EB-4304-BA35-080E2DFFD2A3}" = Age of Empires III
"InstallWIX_{9D8B0949-7C47-476F-9F06-F900D3B078EA}" = Kaspersky Internet Security 2010
"JDownloader" = JDownloader
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 Language Pack SP1 - fra" = Module linguistique Microsoft .NET Framework 3.5 SP1- fra
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"mIRC" = mIRC
"Mozilla Firefox (3.6.13)" = Mozilla Firefox (3.6.13)
"PROPLUS" = Microsoft Office Professional Plus 2007
"Revo Uninstaller" = Revo Uninstaller 1.85
"Steam App 10" = Counter-Strike
"Steam App 100" = Counter-Strike: Condition Zero Deleted Scenes
"Steam App 10180" = Call of Duty: Modern Warfare 2
"Steam App 10190" = Call of Duty: Modern Warfare 2 - Multiplayer
"Steam App 18820" = Zero Gear
"Steam App 240" = Counter-Strike: Source
"Steam App 260" = Counter-Strike: Source Beta
"Steam App 42700" = Call of Duty: Black Ops
"Steam App 42710" = Call of Duty: Black Ops - Multiplayer
"Steam App 80" = Counter-Strike: Condition Zero
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"TmNations_is1" = TrackMania Nations ESWC 0.1.7.5
"Uninstall_is1" = Uninstall 1.0.0.1
"VLC media player" = VLC media player 1.1.1
"VSO DivxToDVD_is1" = DivxToDVD 0.5.2
"Windows Media Player" = Lecteur Windows Media 11
"WinLiveSuite_Wave3" = Windows Live Essentials
"wmp11" = Windows Media Player 11
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
 
[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]
 
[HKEY_USERS\S-1-5-21-1078081533-1450960922-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"TeamSpeak 3 Client" = TeamSpeak 3 Client
 
[color=#E56717]========== Last 10 Event Log Errors ==========[/color]
 
[ Application Events ]
Error - 28/01/2011 14:49:30 | Computer Name = FIXE-CLEMENT | Source = Application Error | ID = 1000
Description = Application défaillante moviemk.exe, version 2.1.4026.0, module défaillant
 moviemk.exe, version 2.1.4026.0, adresse de défaillance 0x0004969a.
 
Error - 30/01/2011 11:58:14 | Computer Name = FIXE-CLEMENT | Source = MsiInstaller | ID = 10005
Description = Produit : Bonjour -- Une version ultérieure de Bonjour est déjà installée
 sur cet ordinateur.
 
Error - 30/01/2011 12:01:23 | Computer Name = FIXE-CLEMENT | Source = Application Error | ID = 1000
Description = Application défaillante lacie network assistant.exe, version 1.4.5.45,
 module défaillant lacie network assistant.exe, version 1.4.5.45, adresse de défaillance
 0x0000b37a.
 
Error - 30/01/2011 12:01:25 | Computer Name = FIXE-CLEMENT | Source = Bonjour Service | ID = 100
Description = 232: ERROR: read_msg errno 10054 (Une connexion existante a dû être
 fermée par l'hôte distant.)
 
Error - 30/01/2011 12:02:03 | Computer Name = FIXE-CLEMENT | Source = Application Error | ID = 1000
Description = Application défaillante lacie network assistant.exe, version 1.4.5.45,
 module défaillant lacie network assistant.exe, version 1.4.5.45, adresse de défaillance
 0x00025131.
 
Error - 30/01/2011 12:02:05 | Computer Name = FIXE-CLEMENT | Source = Bonjour Service | ID = 100
Description = 232: ERROR: read_msg errno 10054 (Une connexion existante a dû être
 fermée par l'hôte distant.)
 
Error - 30/01/2011 12:04:28 | Computer Name = FIXE-CLEMENT | Source = Application Error | ID = 1000
Description = Application défaillante lacie network assistant.exe, version 1.4.5.45,
 module défaillant lacie network assistant.exe, version 1.4.5.45, adresse de défaillance
 0x00145291.
 
Error - 30/01/2011 12:04:35 | Computer Name = FIXE-CLEMENT | Source = Application Error | ID = 1001
Description = Détecteur d'erreurs -2088815350.
 
Error - 30/01/2011 12:04:37 | Computer Name = FIXE-CLEMENT | Source = Bonjour Service | ID = 100
Description = 232: ERROR: read_msg errno 10054 (Une connexion existante a dû être
 fermée par l'hôte distant.)
 
Error - 30/01/2011 12:05:26 | Computer Name = FIXE-CLEMENT | Source = Application Error | ID = 1000
Description = Application défaillante lacie network assistant.exe, version 1.4.5.45,
 module défaillant lacie network assistant.exe, version 1.4.5.45, adresse de défaillance
 0x00145291.
 
[ OSession Events ]
Error - 08/01/2011 12:48:56 | Computer Name = FIXE-CLEMENT | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 1
 seconds with 0 seconds of active time.  This session ended with a crash.
 
Error - 13/01/2011 14:28:43 | Computer Name = FIXE-CLEMENT | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 2783
 seconds with 240 seconds of active time.  This session ended with a crash.
 
Error - 13/01/2011 14:29:18 | Computer Name = FIXE-CLEMENT | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 27
 seconds with 0 seconds of active time.  This session ended with a crash.
 
[ System Events ]
Error - 05/02/2011 14:10:11 | Computer Name = FIXE-CLEMENT | Source = Service Control Manager | ID = 7000
Description = Le service hpdj n'a pas pu démarrer en raison de l'erreur :   %%2
 
Error - 05/02/2011 14:10:11 | Computer Name = FIXE-CLEMENT | Source = Service Control Manager | ID = 7026
Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se
 charger :   Lbd
 
Error - 06/02/2011 03:04:52 | Computer Name = FIXE-CLEMENT | Source = Service Control Manager | ID = 7000
Description = Le service hpdj n'a pas pu démarrer en raison de l'erreur :   %%2
 
Error - 06/02/2011 03:04:53 | Computer Name = FIXE-CLEMENT | Source = Service Control Manager | ID = 7026
Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se
 charger :   Lbd
 
Error - 06/02/2011 05:47:18 | Computer Name = FIXE-CLEMENT | Source = Service Control Manager | ID = 7000
Description = Le service hpdj n'a pas pu démarrer en raison de l'erreur :   %%2
 
Error - 06/02/2011 05:47:20 | Computer Name = FIXE-CLEMENT | Source = Service Control Manager | ID = 7026
Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se
 charger :   Lbd
 
Error - 06/02/2011 05:49:36 | Computer Name = FIXE-CLEMENT | Source = Service Control Manager | ID = 7000
Description = Le service hpdj n'a pas pu démarrer en raison de l'erreur :   %%2
 
Error - 06/02/2011 05:49:38 | Computer Name = FIXE-CLEMENT | Source = Service Control Manager | ID = 7026
Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se
 charger :   Lbd
 
Error - 06/02/2011 06:13:13 | Computer Name = FIXE-CLEMENT | Source = Service Control Manager | ID = 7000
Description = Le service hpdj n'a pas pu démarrer en raison de l'erreur :   %%2
 
Error - 06/02/2011 06:13:16 | Computer Name = FIXE-CLEMENT | Source = Service Control Manager | ID = 7026
Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se
 charger :   Lbd
 
 
< End of report >
Thunder1810
Apprenti(e) Expert(e)
Apprenti(e) Expert(e)
 
Messages: 204
Inscription: 07 Déc 2008 10:59
Localisation: 127.0.0.1
 

Re: Aide pour désinfection

Message le 07 Fév 2011 16:26

Bonjour,

Voici le rapport de Anti-malwares:
Code: Tout sélectionner
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Version de la base de données: 5363

Windows 5.1.2600 Service Pack 3
Internet Explorer 6.0.2900.5512

06/02/2011 15:12:14
mbam-log-2011-02-06 (15-12-14).txt

Type d'examen: Examen complet (C:\|D:\|E:\|F:\|)
Elément(s) analysé(s): 272862
Temps écoulé: 1 heure(s), 28 minute(s), 33 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)


Bonne fin d'aprem.
PS: Dois-je quand même changer IE6 en IE8 si je ne l'utilise pas?
Thunder1810
Apprenti(e) Expert(e)
Apprenti(e) Expert(e)
 
Messages: 204
Inscription: 07 Déc 2008 10:59
Localisation: 127.0.0.1
 

Re: Aide pour désinfection

Message le 07 Fév 2011 17:43

Salut!

Pour IE8 cela est plus par mesure de "roue de secours" en cas de problème avec FF. Pas la version IE6 qui est truffée de failles.

Il est reste encore un peu de monde sur ton PC ainsi que sur tes autres disques.

Fais ceci :
Télécharge Combofix.exe de sUBs sur ton Bureau et pas ailleurs.

/!\Important/!\
> Désactive ton Antivirus et antispyware avant le scan avec Combofix :
http://forum.pcastuces.com/desactiver_l ... -f31s4.htm

> Ferme toutes les fenêtres actives avant de lancer le scan.

> Double clique sur combofix.exe pour le lancer et valide par OUI
* Si l'installation de la Console est demandée > Valide!
* Le scan reprendra après son installation.
* Durant celui-ci, ne touche plus à ton PC tant que celui-ci ne sera pas terminé.
Il peut y avoir un redémarrage du PC afin de finaliser les suppressions.

> Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.

NOTE : Le rapport se trouve également ici : C:\Combofix.txt

Aide en images.
Avatar de l'utilisateur
danakil
Expert(e)
Expert(e)
 
Messages: 1363
Inscription: 16 Juil 2009 09:47
 

Re: Aide pour désinfection

Message le 07 Fév 2011 19:45

Voici le rapport:

Code: Tout sélectionner
ComboFix 11-02-06.02 - Clément 07/02/2011  19:29:05.1.4 - x86
Microsoft Windows XP Professionnel  5.1.2600.3.1252.33.1036.18.2047.1421 [GMT 1:00]
Lancé depuis: c:\documents and settings\Clément\Bureau\ComboFix.exe
AV: Kaspersky Internet Security *Disabled/Updated* {2C4D4BC6-0793-4956-A9F9-E252435469C0}
FW: Kaspersky Internet Security *Disabled* {2C4D4BC6-0793-4956-A9F9-E252435469C0}
.

((((((((((((((((((((((((((((((((((((   Autres suppressions   ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\docume~1\CLMENT~1\LOCALS~1\Temp\DivXWebPlayerInstaller.exe~RF122bb6d.TMP
c:\documents and settings\Clément\Application Data\Local
c:\documents and settings\Clément\Application Data\PriceGong
c:\documents and settings\Clément\Application Data\PriceGong\Data\1.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\a.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\b.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\c.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\d.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\e.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\f.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\g.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\h.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\i.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\J.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\k.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\l.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\m.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\mru.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\n.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\o.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\p.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\q.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\r.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\s.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\t.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\u.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\v.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\w.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\x.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\y.xml
c:\documents and settings\Clément\Application Data\PriceGong\Data\z.xml
c:\documents and settings\Clément\Local Settings\Temp\DivXWebPlayerInstaller.exe~RF122bb6d.TMP

.
(((((((((((((((((((((((((((((   Fichiers créés du 2011-01-07 au 2011-02-07  ))))))))))))))))))))))))))))))))))))
.

2011-02-07 15:12 . 2011-02-07 15:12   --------   d-----w-   c:\program files\Mozilla Firefox 4.0 Beta 8
2011-02-07 15:04 . 2011-02-07 15:06   --------   d-----w-   c:\program files\Fichiers communs\DivX Shared
2011-02-05 16:42 . 2011-02-05 16:42   --------   d-----w-   c:\documents and settings\Clément\Application Data\GRETECH
2011-02-05 16:31 . 2011-02-05 16:31   --------   d-----w-   c:\program files\GRETECH
2011-02-01 17:40 . 2011-02-06 09:20   --------   d-----w-   c:\program files\DVDVideoSoft
2011-01-28 19:36 . 2011-01-28 19:36   --------   d-----w-   c:\documents and settings\LocalService\Application Data\Megamedia
2011-01-27 20:39 . 2011-01-27 20:39   --------   d-----w-   c:\documents and settings\Clément\Application Data\Scooter Software
2011-01-18 18:09 . 2011-01-18 18:09   --------   d-----w-   C:\Serveurs
2011-01-18 18:07 . 2011-01-18 18:07   --------   d-----w-   c:\program files\iPod
2011-01-18 18:06 . 2011-01-18 18:06   --------   d-----w-   c:\documents and settings\LocalService\Application Data\Apple Computer
2011-01-18 17:40 . 2011-01-18 17:40   --------   d-----w-   c:\documents and settings\Clément\Local Settings\Application Data\Macroplant,_LLC
2011-01-18 17:31 . 2011-01-18 17:37   --------   d-----w-   c:\documents and settings\Clément\Local Settings\Application Data\Wide Angle Software
2011-01-17 20:14 . 2004-03-08 23:00   131856   ----a-w-   c:\windows\system32\MSADODC.ocx
2011-01-17 20:14 . 2007-06-11 22:04   2267368   ----a-w-   c:\windows\system32\Flash.ocx

.
((((((((((((((((((((((((((((((((((   Compte-rendu de Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-01-01 17:18 . 2010-03-10 18:58   691696   ----a-w-   c:\windows\system32\drivers\sptd.sys
2010-12-20 17:09 . 2009-12-29 17:22   38224   ----a-w-   c:\windows\system32\drivers\mbamswissarmy.sys
2010-12-20 17:08 . 2009-12-29 17:22   20952   ----a-w-   c:\windows\system32\drivers\mbam.sys
2010-12-07 11:14 . 2010-12-07 11:14   51200   ----a-w-   c:\windows\system32\OpenCL.dll
2010-11-30 16:26 . 2010-11-30 16:26   720896   ----a-w-   c:\windows\iun6002.exe
2010-11-29 16:38 . 2010-11-29 16:38   94208   ----a-w-   c:\windows\system32\QuickTimeVR.qtx
2010-11-29 16:38 . 2010-11-29 16:38   69632   ----a-w-   c:\windows\system32\QuickTime.qts
2010-11-26 04:17 . 2008-12-01 22:13   5555712   ----a-w-   c:\windows\system32\drivers\ati2mtag.sys
2010-11-26 03:57 . 2010-12-22 11:40   16748544   ----a-w-   c:\windows\system32\atioglxx.dll
2010-11-26 03:23 . 2010-12-22 11:40   471040   ----a-w-   c:\windows\system32\atiok3x2.dll
2010-11-26 03:12 . 2010-07-23 13:55   311296   ----a-w-   c:\windows\system32\atiiiexx.dll
2010-11-26 03:07 . 2010-07-23 12:02   57344   ----a-w-   c:\windows\system32\aticalrt.dll
2010-11-26 03:07 . 2010-07-23 12:02   53248   ----a-w-   c:\windows\system32\aticalcl.dll
2010-11-26 03:06 . 2010-07-23 12:02   4489216   ----a-w-   c:\windows\system32\aticaldd.dll
2010-11-26 02:55 . 2010-07-23 13:55   462848   ----a-w-   c:\windows\system32\ATIDEMGX.dll
2010-11-26 02:54 . 2008-12-01 20:51   302080   ----a-w-   c:\windows\system32\ati2dvag.dll
2010-11-26 02:48 . 2008-12-01 20:27   3984864   ----a-w-   c:\windows\system32\ati3duag.dll
2010-11-26 02:39 . 2010-12-22 11:40   53248   ----a-w-   c:\windows\system32\drivers\ati2erec.dll
2010-11-26 02:34 . 2010-12-22 11:40   212992   ----a-w-   c:\windows\system32\atipdlxx.dll
2010-11-26 02:34 . 2010-12-22 11:40   155648   ----a-w-   c:\windows\system32\Oemdspif.dll
2010-11-26 02:34 . 2010-12-22 11:40   26112   ----a-w-   c:\windows\system32\Ati2mdxx.exe
2010-11-26 02:34 . 2010-12-22 11:40   43520   ----a-w-   c:\windows\system32\ati2edxx.dll
2010-11-26 02:34 . 2010-12-22 11:40   159744   ----a-w-   c:\windows\system32\ati2evxx.dll
2010-11-26 02:32 . 2010-12-22 11:40   614400   ----a-w-   c:\windows\system32\ati2evxx.exe
2010-11-26 02:32 . 2008-12-01 20:11   2669696   ----a-w-   c:\windows\system32\ativvaxx.dll
2010-11-26 02:31 . 2010-12-22 11:40   53248   ----a-w-   c:\windows\system32\ATIDDC.DLL
2010-11-26 02:30 . 2010-07-23 12:02   143360   ----a-w-   c:\windows\system32\atiapfxx.exe
2010-11-26 02:26 . 2010-12-22 11:40   651264   ----a-w-   c:\windows\system32\atikvmag.dll
2010-11-26 02:24 . 2010-12-22 11:40   196608   ----a-w-   c:\windows\system32\atiadlxx.dll
2010-11-26 02:24 . 2010-12-22 11:40   17408   ----a-w-   c:\windows\system32\atitvo32.dll
2010-11-26 02:18 . 2008-12-01 19:45   765952   ----a-w-   c:\windows\system32\ati2cqag.dll
2010-11-26 02:16 . 2010-12-22 11:40   64512   ----a-w-   c:\windows\system32\amdpcom32.dll
2010-11-26 02:16 . 2010-07-23 12:02   64512   ----a-w-   c:\windows\system32\atimpc32.dll
2010-11-12 00:44 . 2010-11-12 00:44   94208   ----a-w-   c:\windows\system32\dpl100.dll
.

(((((((((((((((((((((((((((((((((   Points de chargement Reg   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-04-16 3872080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe" [2010-08-18 340520]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-11-25 98304]
"RTHDCPL"="RTHDCPL.EXE" [2009-05-21 17881600]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2011-01-10 1230704]
"DivX Download Manager"="c:\program files\DivX\DivX Plus Web Player\DDmService.exe" [2010-12-08 63360]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSMBalloonTip"= 0 (0x0)

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute   REG_MULTI_SZ      PDBoot.exe\0autocheck autochk *

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager]
2008-08-14 05:58   611712   ----a-w-   c:\program files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
2011-01-10 23:25   1230704   ----a-w-   c:\program files\DivX\DivX Update\DivXUpdate.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2010-11-29 16:38   421888   ----a-w-   c:\program files\QuickTime\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Microsoft Games\\Age of Empires III\\age3.exe"=
"c:\\Program Files\\Fichiers communs\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty black ops\\BlackOpsMP.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\call of duty black ops\\BlackOps.exe"=
"c:\\Program Files\\Steam\\steamapps\\clems1810\\counter-strike\\hl.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5353:TCP"= 5353:TCP:Adobe CSI CS4
"3587:TCP"= 3587:TCP:Groupement homologue Windows
"3540:UDP"= 3540:UDP:Protocole PNRP (Peer Name Resolution Protocol)
"3138:TCP"= 3138:TCP:Akamai NetSession Interface
"5000:UDP"= 5000:UDP:Akamai NetSession Interface

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)

R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [14/10/2009 20:18 36880]
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [10/03/2010 19:58 691696]
R2 Iprip;Écouteur RIP;c:\windows\System32\svchost.exe -k netsvcs [14/04/2008 13:00 14336]
R3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\drivers\klmouflt.sys [02/10/2009 18:39 19472]
S0 Lbd;Lbd;c:\windows\system32\DRIVERS\Lbd.sys --> c:\windows\system32\DRIVERS\Lbd.sys [?]
S2 gupdate1ca88ab26ed2e86;Service Google Update (gupdate1ca88ab26ed2e86);c:\program files\Google\Update\GoogleUpdate.exe [29/12/2009 18:19 133104]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [29/12/2009 17:53 1684736]
S3 HDJCtrl;Hercules DJ Control MP3 Service;c:\windows\system32\Drivers\HDJCtrl.sys --> c:\windows\system32\Drivers\HDJCtrl.sys [?]
S3 HDJMidi;Hercules DJ Console MIDI;c:\windows\system32\DRIVERS\HDJMidi.sys --> c:\windows\system32\DRIVERS\HDJMidi.sys [?]
S3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [14/09/2009 13:42 32272]
S3 SCREAMINGBDRIVER;Screaming Bee Audio;c:\windows\system32\drivers\ScreamingBAudio.sys [01/07/2010 14:21 34896]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
p2psvc   REG_MULTI_SZ      p2psvc p2pimsvc p2pgasvc PNRPSvc
.
Contenu du dossier 'Tâches planifiées'
.
.
------- Examen supplémentaire -------
.
uDefault_Search_URL = hxxp://www.google.com/ie
uInternet Settings,ProxyOverride = local;*.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: &Envoyer à OneNote - /105
IE: Ajouter à l'Anti-bannière - c:\program files\Kaspersky Lab\Kaspersky Internet Security 2010\ie_banner_deny.htm
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Free YouTube to MP3 Converter - c:\documents and settings\Clément\Application Data\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
TCP: {3481B0FC-F1B3-477D-81B6-178A2884453F} = 8.8.8.8,8.8.4.4
TCP: {41B3A5AB-9A6D-41D7-85B5-96529086BFF1} = 8.8.8.8,8.8.4.4
TCP: {B3A71A8B-16EF-4AA7-8CAF-580B03F1ABBC} = 8.8.8.8,8.8.4.4
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-02-07 19:34
Windows 5.1.2600 Service Pack 3 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------

[HKEY_USERS\S-1-5-21-1078081533-1450960922-682003330-1003\Software\SecuROM\License information*]
"datasecu"=hex:55,3c,45,92,f8,1a,2e,a8,c8,1e,0a,e5,a2,9e,ee,bf,49,5a,63,ad,be,
   9e,71,e7,78,12,39,2f,e8,f1,e0,86,dc,bd,f2,9f,26,71,15,f5,bf,e0,74,af,61,5c,\
"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{11B5C8DC-3FEA-1682-D4F0355518481497}\{414E0745-768E-27E6-1A22BEEA50FFC306}\{0F77990A-A8C5-E83C-A2DEB9098A2A23DE}*]
"NRDFOBLVNAUE2QOGEQXAH1Y2DD1"=hex:01,00,01,00,00,00,00,00,b0,0a,ac,41,7a,16,04,
   de,35,81,92,71,e8,29,5a,84,14,35,16,70,d8,6e,ff,61

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{5B0B6C35-3AEA-9EAE-179EBB09B20EA2F1}\{75565C86-DCE5-4077-B0F3502E93E7104E}\{6B409343-0D15-4A1C-46DBD99A1375331F}*]
"NRDFOBLVNAUE2QOGEQXAH1Y2DD1"=hex:01,00,01,00,00,00,00,00,b0,0a,ac,41,7a,16,04,
   de,35,81,92,71,e8,29,5a,84,14,35,16,70,d8,6e,ff,61

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A76448FF-EA59-23D3-98F3B9C94A7EC293}\{51B7BFF3-30C4-3859-72DBC6993BF1721D}\{60FC5D85-3D13-ED0E-8811CBE6817E353D}*]
"NRDFOBLVNAUE2QOGEQXAH1Y2DD1"=hex:01,00,01,00,00,00,00,00,b0,0a,ac,41,7a,16,04,
   de,35,81,92,71,e8,29,5a,84,14,35,16,70,d8,6e,ff,61

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{DCB42C02-2C7E-50EC-E2B5A792F7765BFB}\{38286259-1A12-EDE0-84E2CD6A1D76E8F7}\{2C2658AF-F73E-73C6-89D45D0D6FCCCFF2}*]
"NRDFOBLVNAUE2QOGEQXAH1Y2DD1"=hex:01,00,01,00,00,00,00,00,b0,0a,ac,41,7a,16,04,
   de,35,81,92,71,e8,29,5a,84,14,35,16,70,d8,6e,ff,61
.
--------------------- DLLs chargées dans les processus actifs ---------------------

- - - - - - - > 'winlogon.exe'(1212)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
c:\program files\Fichiers communs\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll

- - - - - - - > 'explorer.exe'(584)
c:\program files\Fichiers communs\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll
c:\windows\system32\wpdshext.dll
c:\windows\system32\PortableDeviceApi.dll
c:\windows\system32\Audiodev.dll
c:\windows\system32\DRMClien.DLL
c:\windows\system32\eappprxy.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
.
------------------------ Autres processus actifs ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\FileZilla Server\FileZilla Server.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
c:\program files\CDBurnerXP\NMSAccessU.exe
c:\program files\Raxco\PerfectDisk10\PDAgent.exe
c:\windows\system32\tcpsvcs.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\system32\wscntfy.exe
c:\windows\RTHDCPL.EXE
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
.
**************************************************************************
.
Heure de fin: 2011-02-07  19:37:57 - La machine a redémarré
ComboFix-quarantined-files.txt  2011-02-07 18:37

Avant-CF: 555 389 272 064 octets libres
Après-CF: 555 338 027 008 octets libres

WindowsXP-KB310994-SP2-Pro-BootDisk-FRA.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professionnel" /noexecute=optin /fastdetect

Current=1 Default=1 Failed=0 LastKnownGood=4 Sets=1,2,3,4
- - End Of File - - B8BA837249417F48489B3960C851C9F4


Bonne soirée et merci ;)
Thunder1810
Apprenti(e) Expert(e)
Apprenti(e) Expert(e)
 
Messages: 204
Inscription: 07 Déc 2008 10:59
Localisation: 127.0.0.1
 

Re: Aide pour désinfection

Message le 09 Fév 2011 04:22

Salut !

Télécharge UsbFix sur ton Bureau.

• Lance l'installation avec les paramètres par défaut.
/!\ Branche tes sources de données externes à ton PC (clé USB,disque dur externe,etc...) sans les ouvrir /!\

• Double-clique sur le raccourci UsbFix sur ton Bureau pour le lancer.

• Choisis l'option 1.Recherche

• Laisse travailler l'outil.

• Poste le rapport UsbFix.txt
Note : le rapport UsbFix.txt est sauvegardé à la racine du disque (C:\UsbFix.txt).
Avatar de l'utilisateur
danakil
Expert(e)
Expert(e)
 
Messages: 1363
Inscription: 16 Juil 2009 09:47
 

Re: Aide pour désinfection

Message le 09 Fév 2011 13:11

Bonjour,

Voici le rapport:
Code: Tout sélectionner
############################## | UsbFix 7.038 | [Recherche]

Utilisateur: Clément (Administrateur) # FIXE-CLEMENT [ ]
Mis à jour le 14/01/2011 par El Desaparecido / C_XX
Lancé à 13:00:41 | 09/02/2011
Site Web: http://www.teamxscript.org
Contact: eldesaparecido@teamxscript.org

CPU: Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz
CPU 2: Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz
Microsoft Windows XP Professionnel (5.1.2600 32-Bit) # Service Pack 3
Internet Explorer 6.0.2900.5512

Pare-feu Windows: Désactivé /!\
Antivirus: Kaspersky Internet Security 9.0.0.736 [(!) Disabled | Updated]
Firewall: Kaspersky Internet Security 9.0.0.736 [(!) Disabled]
RAM -> 2047 Mo
C:\ (%systemdrive%) -> Disque fixe # 596 Go (516 Go libre(s) - 86%) [XP Pro SP3] # NTFS
D:\ -> Disque fixe # 234 Go (234 Go libre(s) - 100%) [Data 2] # NTFS
E:\ -> Disque fixe # 466 Go (71 Go libre(s) - 15%) [Data Disk] # NTFS
F:\ -> CD-ROM
H:\ -> CD-ROM
J:\ -> Disque amovible # 4 Go (2 Go libre(s) - 52%) [] # FAT32

################## | Éléments infectieux |



################## | Registre |

Présent! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System|DisableRegistryTools
Présent! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoDrives
Présent! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoDrives

################## | Mountpoints2 |


################## | Vaccin |

(!) Cet ordinateur n'est pas vacciné!

################## | E.O.F |


Note: Le pare-feu est désactivé car Usbfix m'a demandé de le faire avant de lancer la recherche.
De plus, mon HDD réseau n'est pas repris dans la liste des HDD du rapport.

Merci
Thunder1810
Apprenti(e) Expert(e)
Apprenti(e) Expert(e)
 
Messages: 204
Inscription: 07 Déc 2008 10:59
Localisation: 127.0.0.1
 

Re: Aide pour désinfection

Message le 09 Fév 2011 17:36

Re,

Relance UsbFix

/!\Branche tes sources de données externes à ton PC (clé USB,disque dur externe,carte SD,etc...) sans les ouvrir /!\

• Double-clique sur le raccourci UsbFix présent sur ton Bureau.
• Choisis l'option 2 (Suppression).
• Ton Bureau disparaîtra et le PC redémarrera.

• Au redémarrage ...

UsbFix scannera ton PC
> laisse travailler l'outil.
• Poste le rapport UsbFix.txt qui apparaîtra avec le Bureau .

Tu vas vacciner le PC maintenant.

/!\ Branche tes sources de données externes à ton PC
(clé USB,disque dur externe,etc...) susceptible d'avoir été infectées sans les ouvrirs /!\

• Double-clique sur le raccourci UsbFix présent sur ton bureau .
• Choisis l'option 3 (Vaccination).
> Laisse travailler l'outil.
• Poste le rapport UsbFix.txt qui apparaîtra.

Note : le rapport UsbFix.txt est sauvegardé à la racine du disque (C:\UsbFix.txt).

...
mon HDD réseau n'est pas repris dans la liste des HDD du rapport.

Il était bien allumé avant le scan?
Avatar de l'utilisateur
danakil
Expert(e)
Expert(e)
 
Messages: 1363
Inscription: 16 Juil 2009 09:47
 

Re: Aide pour désinfection

Message le 09 Fév 2011 20:24

Bonsoir,

Voici le rapport après suppresion
Code: Tout sélectionner
############################## | UsbFix 7.038 | [Suppression]

Utilisateur: Clément (Administrateur) # FIXE-CLEMENT [ ]
Mis à jour le 14/01/2011 par El Desaparecido / C_XX
Lancé à 20:05:04 | 09/02/2011
Site Web: http://www.teamxscript.org
Contact: eldesaparecido@teamxscript.org

CPU: Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz
CPU 2: Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz
Microsoft Windows XP Professionnel (5.1.2600 32-Bit) # Service Pack 3
Internet Explorer 6.0.2900.5512

Pare-feu Windows: Désactivé /!\
Antivirus: Kaspersky Internet Security 9.0.0.736 [(!) Disabled | Updated]
Firewall: Kaspersky Internet Security 9.0.0.736 [(!) Disabled]
RAM -> 2047 Mo
C:\ (%systemdrive%) -> Disque fixe # 596 Go (519 Go libre(s) - 87%) [XP Pro SP3] # NTFS
D:\ -> Disque fixe # 234 Go (234 Go libre(s) - 100%) [Data 2] # NTFS
E:\ -> Disque fixe # 466 Go (72 Go libre(s) - 16%) [Data Disk] # NTFS
F:\ -> CD-ROM
H:\ -> CD-ROM
J:\ -> Disque amovible # 4 Go (2 Go libre(s) - 52%) [] # FAT32

################## | Éléments infectieux |


Supprimé! C:\Recycler\S-1-5-21-1078081533-1450960922-682003330-1003
Supprimé! D:\Recycler\S-1-5-21-1078081533-1450960922-682003330-1003
Supprimé! E:\$RECYCLE.BIN\S-1-5-20
Supprimé! E:\$RECYCLE.BIN\S-1-5-21-1198910972-167086946-3316889369-1000
Supprimé! E:\$RECYCLE.BIN\S-1-5-21-2226452108-3321340830-4149156228-1001
Supprimé! E:\$RECYCLE.BIN\S-1-5-21-2297446284-3798331393-929218399-1001
Supprimé! E:\Recycler\S-1-5-21-1060284298-602609370-682003330-1003
Supprimé! E:\Recycler\S-1-5-21-1078081533-1450960922-682003330-1003
Supprimé! E:\Recycler\S-1-5-21-1078081533-1450960922-682003330-500
Supprimé! E:\Recycler\S-1-5-21-1417001333-776561741-682003330-1003
Supprimé! E:\Recycler\S-1-5-21-1606980848-2025429265-839522115-1003

################## | Registre |

Supprimé! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System|DisableRegistryTools
Supprimé! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoDrives
Supprimé! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoDrives

################## | Mountpoints2 |


################## | Listing |

[05/02/2011 - 13:18:57 | N | 47260]    C:\aaw7boot.log
[23/07/2010 - 14:38:26 | D ]    C:\ATI
[29/12/2009 - 17:47:35 | N | 0]    C:\AUTOEXEC.BAT
[04/01/2011 - 10:04:02 | N | 213]    C:\Boot.bak
[07/02/2011 - 19:28:02 | N | 328]    C:\boot.ini
[14/04/2008 - 13:00:00 | N | 4952]    C:\Bootfont.bin
[07/02/2011 - 19:28:02 | D ]    C:\cmdcons
[03/08/2004 - 23:00:08 | N | 263488]    C:\cmldr
[09/02/2011 - 12:53:37 | D ]    C:\Config.Msi
[29/12/2009 - 17:47:35 | N | 0]    C:\CONFIG.SYS
[16/01/2010 - 18:41:22 | D ]    C:\Documents and Settings
[03/02/2011 - 20:09:27 | N | 2490]    C:\hpfr3600.log
[29/12/2009 - 18:02:00 | D ]    C:\Intel
[29/12/2009 - 17:47:35 | N | 0]    C:\IO.SYS
[29/12/2009 - 17:47:35 | N | 0]    C:\MSDOS.SYS
[06/11/2010 - 10:19:38 | RHD ]    C:\MSOCache
[14/04/2008 - 13:00:00 | N | 47564]    C:\NTDETECT.COM
[14/04/2008 - 13:00:00 | N | 252240]    C:\ntldr
[09/02/2011 - 12:53:37 | ASH | 2145386496]    C:\pagefile.sys
[09/02/2011 - 14:58:21 | D ]    C:\Program Files
[07/02/2011 - 19:48:20 | D ]    C:\Qoobox
[09/02/2011 - 20:12:04 | SHD ]    C:\RECYCLER
[18/01/2011 - 19:09:49 | D ]    C:\Serveurs
[01/01/2011 - 17:31:53 | SHD ]    C:\System Volume Information
[09/02/2011 - 20:12:04 | D ]    C:\UsbFix
[09/02/2011 - 20:12:04 | A | 1832]    C:\UsbFix.txt
[07/02/2011 - 19:34:50 | D ]    C:\WINDOWS
[09/02/2011 - 20:12:04 | SHD ]    D:\RECYCLER
[03/01/2011 - 08:41:55 | SHD ]    D:\System Volume Information
[09/02/2011 - 20:12:01 | HD ]    E:\$RECYCLE.BIN
[28/01/2011 - 20:01:35 | D ]    E:\convertis mp4
[05/02/2011 - 17:22:49 | D ]    E:\Musique
[09/02/2011 - 20:12:04 | SHD ]    E:\RECYCLER
[07/02/2011 - 16:31:00 | D ]    E:\Series
[01/01/2011 - 17:42:22 | SHD ]    E:\System Volume Information
[30/12/2010 - 00:09:32 | D ]    J:\Warcraft III
[17/01/2011 - 21:23:10 | N | 9832360]    J:\Michel Daerden in de Senaat.flv
[18/01/2011 - 18:32:48 | N | 15585216]    J:\Michel Daerden in de Senaat.mp4
[19/01/2011 - 10:27:10 | N | 4096]    J:\._.Trashes
[19/01/2011 - 10:27:10 | D ]    J:\.Trashes
[19/01/2011 - 10:27:10 | D ]    J:\.fseventsd
[06/05/2010 - 14:07:38 | D ]    J:\Polices diverses
[07/03/2010 - 08:13:24 | N | 165]    J:\~$Présentation1.pptx
[06/05/2010 - 12:33:28 | D ]    J:\CD de Mariane
[19/01/2011 - 10:27:12 | D ]    J:\.Spotlight-V100
[05/02/2008 - 03:59:36 | N | 737986560]    Y:\21 Grammes.avi
[06/06/2002 - 23:13:30 | N | 732387328]    Y:\10000 BC.avi
[22/11/2007 - 04:50:52 | N | 733542400]    Y:\28 Semaines Plus Tard.avi
[23/09/2007 - 15:40:18 | N | 730169344]    Y:\28 Jours Plus Tard.avi
[05/02/2008 - 06:15:16 | N | 734529536]    Y:\30 Days of Night.avi
[23/12/2006 - 00:14:48 | N | 688975872]    Y:\60 Secondes Chrono.avi
[26/05/2008 - 15:47:42 | N | 731871232]    Y:\300.avi
[25/12/2008 - 12:35:22 | N | 734404608]    Y:\A History of  Violence.avi
[08/11/2006 - 08:32:10 | N | 735240192]    Y:\Accepted.avi
[05/05/2006 - 22:59:42 | N | 734627840]    Y:\Aeon.avi
[30/04/2005 - 00:34:36 | N | 729520128]    Y:\After.The.Sunset.avi
[14/04/2007 - 05:40:18 | N | 734347264]    Y:\Alpahadog.avi
[12/02/2008 - 01:13:28 | N | 730507264]    Y:\American History X.avi
[13/12/2007 - 22:40:24 | N | 734285824]    Y:\American pie 6.avi
[09/12/2006 - 17:21:54 | N | 734027776]    Y:\American Pie string academy.avi
[23/07/2006 - 09:18:54 | N | 734545920]    Y:\Animal.avi
[29/10/2005 - 19:39:10 | N | 734537728]    Y:\Anthony Zimmer.avi
[10/10/2007 - 03:34:56 | N | 733620224]    Y:\Apocalypto.avi
[14/03/2008 - 07:47:00 | N | 733988864]    Y:\Armageddon CD1.avi
[14/03/2008 - 07:47:56 | N | 729020416]    Y:\Armageddon CD2.avi
[18/10/2007 - 13:32:14 | N | 695404544]    Y:\Arnaques, Crimes Et Botanique.AVI
[27/03/2003 - 00:51:42 | N | 732655616]    Y:\Arrête-Moi Si Tu Peux.avi
[12/02/2008 - 04:24:26 | N | 733566976]    Y:\Arthur Et Les Minimoys.avi
[09/02/2011 - 18:03:49 | D ]    Y:\New depuis 2009
[11/01/2008 - 12:35:38 | N | 728631296]    Y:\Back to school.avi
[15/11/2005 - 08:52:54 | N | 733802496]    Y:\Backstage.avi
[06/09/2004 - 15:30:08 | N | 734183424]    Y:\Bad Boys 1.avi
[24/11/2007 - 03:02:46 | N | 731486208]    Y:\Bandits.avi
[13/02/2008 - 09:32:58 | N | 733181952]    Y:\Alarme Fatale.avi
[09/10/2006 - 19:32:16 | N | 729010176]    Y:\Apocalypse Now.AVI
[29/10/2006 - 23:30:08 | N | 2126306666]    Y:\Aviator.avi
[18/12/2007 - 06:40:34 | N | 649526784]    Y:\Basic Instinct 1.avi
[20/05/2006 - 10:21:02 | N | 734115840]    Y:\Basic Instinct 2.avi
[14/06/2007 - 15:10:26 | N | 734040064]    Y:\Blood Diamond.avi
[13/02/2007 - 23:54:36 | N | 727854616]    Y:\Borat.avi
[30/03/2006 - 10:53:48 | N | 732706816]    Y:\Braqueurs Amateurs.avi
[19/06/2000 - 06:23:32 | N | 733673472]    Y:\DISCO.avi
[03/08/2007 - 11:50:02 | N | 732467912]    Y:\C'est Arrivé Près De Chez Vous.avi
[12/09/2006 - 18:54:24 | N | 733456384]    Y:\Charlie Et La Chocolaterie.avi
[18/04/2006 - 20:54:22 | N | 733980672]    Y:\Combien Tu M'Aimes.avi
[20/12/2007 - 04:38:58 | N | 690513920]    Y:\Destination Finale 1.avi
[06/04/2006 - 04:55:52 | N | 730984448]    Y:\Destination Finale 2.avi
[19/07/2006 - 18:53:42 | N | 732581888]    Y:\Destination Finale 3.avi
[07/02/2008 - 10:37:44 | N | 734050304]    Y:\Die Hard 1.avi
[07/02/2008 - 11:00:52 | N | 724963328]    Y:\Die Hard 2.avi
[19/02/2008 - 06:21:42 | N | 730861568]    Y:\Die Hard 3.avi
[10/02/2008 - 12:45:02 | N | 734269440]    Y:\Die Hard 4.avi
[22/04/2007 - 18:06:54 | N | 679118848]    Y:\Dikkenek.avi
[30/06/2007 - 16:23:20 | N | 734038016]    Y:\Edward Aux Mains D'argent.avi
[18/12/2007 - 06:22:48 | N | 734498816]    Y:\Fast And Furious 1.avi
[22/02/2005 - 23:09:58 | N | 726452500]    Y:\Fast And Furious 2.avi
[17/06/2006 - 10:39:12 | N | 730417152]    Y:\Fast And Furious 3.avi
[03/09/2006 - 03:01:42 | N | 733673712]    Y:\Fight Club.avi
[02/03/2006 - 15:34:56 | N | 659920896]    Y:\Full Metal Jacket.avi
[18/07/2008 - 21:03:40 | N | 734064640]    Y:\Jumper.avi
[19/12/2008 - 17:02:22 | N | 736489666]    Y:\Death Race.avi
[08/02/2008 - 20:45:24 | N | 733896704]    Y:\Hitch.avi
[06/04/2006 - 17:05:56 | N | 734193664]    Y:\Hostel 1.avi
[16/02/2008 - 03:31:18 | N | 732338176]    Y:\Hostel 2.avi
[12/06/2000 - 05:30:14 | N | 672950896]    Y:\Into_the_blue_2_by__pyr0technicien.avi
[29/01/2008 - 03:05:30 | N | 731312128]    Y:\Je Suis Une Légende.avi
[17/03/2008 - 22:23:17 | N | 954335232]    Y:\Jean-Philippe le Vrai avec Johnny et Fabrice Lucchini Certifié par ratatium.avi
[12/02/2008 - 20:42:58 | N | 732717056]    Y:\Kill Bill 1.avi
[28/09/2007 - 07:52:46 | N | 733698048]    Y:\Kill Bill 2.avi
[19/12/2006 - 20:10:32 | N | 733724672]    Y:\La Colline A Des Yeux 1.avi
[08/08/2007 - 01:10:26 | N | 726351872]    Y:\La Colline A Des Yeux 2.avi
[24/12/2008 - 22:36:02 | N | 736299290]    Y:\La Grande Vadrouille.avi
[26/11/2005 - 19:17:14 | N | 734545920]    Y:\La Guerre Des Mondes.avi
[30/09/2007 - 01:56:34 | N | 733292544]    Y:\La Môme.avi
[05/01/2006 - 07:25:46 | N | 734001152]    Y:\Le Cercle 1.avi
[06/09/2006 - 20:36:20 | N | 721659904]    Y:\Le Cercle 2.avi
[27/10/2006 - 19:35:48 | N | 2222875762]    Y:\Le Parrain 1.avi
[30/10/2006 - 13:00:32 | N | 2024601974]    Y:\Le Parrain 2.avi
[31/10/2006 - 18:20:54 | N | 2222751234]    Y:\Le Parrain 3.avi
[14/02/2006 - 10:06:46 | N | 737947648]    Y:\Le Roi Arthur.avi
[22/08/2005 - 22:59:02 | N | 2086850798]    Y:\Le Silence Des Agneaux.avi
[11/02/2008 - 15:59:08 | N | 646610944]    Y:\Le Sixième Sens.avi
[17/11/2007 - 17:59:56 | N | 731641856]    Y:\Le Village.avi
[19/12/2007 - 20:06:42 | N | 733657088]    Y:\Les Infiltrés.avi
[21/01/2007 - 14:38:06 | N | 730433536]    Y:\Les Sous-Doués.avi
[21/02/2007 - 08:42:38 | N | 732407808]    Y:\Let's Go To Prison.avi
[11/09/2006 - 01:37:04 | N | 734119424]    Y:\L'Orange Mécanique.avi
[09/01/2006 - 20:41:16 | N | 733837312]    Y:\Lord Of War.avi
[19/02/2008 - 20:01:56 | N | 917954560]    Y:\Man On Fire.avi
[09/01/2006 - 20:04:38 | N | 1733882822]    Y:\Massacre À La Tronçonneuse.avi
[20/07/2006 - 14:33:26 | N | 734545920]    Y:\Match Point.avi
[22/04/2007 - 19:27:01 | N | 734117888]    Y:\mr bean 2007_xvid.avi
[09/10/2007 - 16:29:20 | N | 731838464]    Y:\Ocean's Thirteen.avi
[15/03/2008 - 23:43:08 | N | 733614080]    Y:\Pirates Des Caraïbes 3.avi
[24/04/2007 - 21:40:18 | N | 734234624]    Y:\Rocky 1.avi
[24/04/2007 - 21:41:34 | N | 738353136]    Y:\Rocky 2.avi
[18/02/2008 - 20:57:33 | N | 679464960]    Y:\Rocky 3.avi
[24/04/2007 - 21:37:46 | N | 711168000]    Y:\Rocky 4.avi
[25/02/2008 - 09:07:21 | N | 734914560]    Y:\Rocky 5.avi
[22/12/2006 - 20:49:02 | N | 733722624]    Y:\Rocky 6.avi
[13/02/2005 - 01:38:20 | N | 731709440]    Y:\Saw 1.avi
[22/12/2005 - 01:38:52 | N | 710327652]    Y:\Saw 2.avi
[06/05/2007 - 19:57:40 | N | 725735424]    Y:\Saw 3.avi
[18/02/2008 - 04:36:54 | N | 734169088]    Y:\Saw 4.avi
[11/01/2006 - 18:23:40 | N | 735586304]    Y:\Sin City.avi
[18/10/2006 - 15:32:04 | N | 2165437434]    Y:\Tanguy.avi
[13/03/2007 - 07:14:25 | N | 731590656]    Y:\Taxi.4.FRENCH.TS.XviD-CiNEFOX.avi
[12/02/2008 - 10:44:50 | N | 720687104]    Y:\The Simpsons.avi
[31/01/2007 - 05:51:46 | N | 728979456]    Y:\V For Vendetta.avi
[13/11/2008 - 18:06:40 |  | 730320896]    Y:\-_MAX.PAYNE.French.READFNO.CAM.MD.KiNG.avi
[16/01/2000 - 09:40:02 | N | 734025728]    Y:\Saw 5 TS by Gokou.avi
[23/07/2008 - 15:43:52 | N | 732442624]    Y:\The.Dark.Knight.2008.French.CAM.XviD-Mtl.Upload.(Steph53).Mininova.org..avi
[31/08/2004 - 12:56:18 | N | 737501184]    Y:\Bad Boys 2.avi
[01/12/2006 - 23:42:08 | N | 733982720]    Y:\Beerfest.avi
[29/09/2006 - 01:10:46 | N | 731402240]    Y:\Crank.avi
[05/07/2007 - 02:30:28 | N | 728143872]    Y:\Pulp Fiction.avi
[23/10/2006 - 21:19:22 | N | 730734846]    Y:\Batman Begins.avi
[01/12/2007 - 19:52:32 | N | 730558464]    Y:\Battlestar gallactica.avi
[07/06/2008 - 09:47:56 | N | 735383552]    Y:\Be kind Rewind.avi
[04/10/2006 - 13:26:12 | N | 728381440]    Y:\Behind Enemy Lines 2.avi
[23/03/2008 - 22:40:58 | N | 735604736]    Y:\Bienvenue Chez Les Chti's.avi
[18/10/2007 - 03:45:28 | N | 725154490]    Y:\Bienvenue Chez Les Robinson.avi
[21/11/2004 - 01:18:58 | N | 735807488]    Y:\Big Fish.avi
[27/04/2006 - 08:20:46 | N | 733335552]    Y:\Big Mommas House 2.avi
[04/09/2006 - 09:46:58 | N | 732497920]    Y:\Bleu D'Enfer.avi
[25/12/2006 - 08:25:28 | N | 734932992]    Y:\Bloody Sunday.avi
[22/02/2008 - 04:37:58 | N | 733720576]    Y:\Boulevard De La Mort.avi
[25/11/2004 - 17:47:52 | N | 718887936]    Y:\Bowling For Columbine.avi
[08/10/2008 - 14:28:38 | N | 734105600]    Y:\Braquage à l'anglaise.avi
[10/05/2005 - 15:16:32 | N | 728166400]    Y:\Braquage à l'Italienne.avi
[23/11/2007 - 15:49:34 | N | 734582784]    Y:\Bratz.avi
[15/12/2006 - 22:51:44 | N | 2221266686]    Y:\Braveheart.avi
[13/04/2007 - 16:49:02 | N | 1889149394]    Y:\Brokeback Mountain.avi
[26/09/2006 - 17:09:42 | N | 733966336]    Y:\Bunker Paradise.avi
[30/08/2006 - 14:15:56 | N | 730560512]    Y:\Celibataire.avi
[17/01/2005 - 11:31:58 | N | 733710336]    Y:\Cellular.avi
[18/07/2006 - 18:28:14 | N | 733968384]    Y:\Chaos.avi
[13/12/2008 - 19:24:54 | N | 732561408]    Y:\Cloverfield.avi
[09/08/2007 - 22:04:24 | N | 734019584]    Y:\Code 46.avi
[28/10/2006 - 12:38:42 | N | 1302449236]    Y:\Collateral.avi
[05/08/2005 - 00:03:06 | N | 738096174]    Y:\Collision.avi
[21/02/2007 - 21:41:14 | N | 732565504]    Y:\Constantine.avi
[19/04/2007 - 19:11:16 | N | 732350464]    Y:\Déjà Vu.avi
[18/10/2007 - 10:15:50 | N | 733413376]    Y:\Demandez La Permission Aux Enfants.avi
[04/11/2005 - 01:27:42 | N | 736360448]    Y:\Domino.avi
[19/10/2008 - 12:02:46 | N | 723113984]    Y:\Doomsday.avi
[03/07/2006 - 11:39:46 | N | 734171136]    Y:\Edison.avi
[19/11/2003 - 14:38:10 | N | 699351040]    Y:\Elle Est Trop Bien.AVI
[08/09/2007 - 17:16:46 | N | 732160346]    Y:\En Cloque, Mode D'emploi.avi
[13/02/2008 - 01:38:40 | N | 733978624]    Y:\Enfermés Dehors.avi
[18/02/2008 - 16:12:24 | N | 736059392]    Y:\Ensemble, C'est Tout.avi
[08/02/2007 - 17:13:58 | N | 733659136]    Y:\Eragon.avi
[25/07/2006 - 03:00:50 | N | 733052928]    Y:\Et Si C'était Vrai.avi
[13/01/2007 - 12:27:08 | N | 733179904]    Y:\Facing the giants.avi
[01/08/2008 - 17:35:44 | N | 733687808]    Y:\Flashback.avi
[18/11/2006 - 14:58:24 | N | 719917056]    Y:\Forest Gump.avi
[09/08/2008 - 22:31:32 | N | 735072256]    Y:\Forgetting Sarah Marshall.avi
[07/08/2007 - 16:33:12 | N | 733734912]    Y:\Fracture.avi
[20/12/2007 - 15:50:20 | N | 1473871872]    Y:\Gangs Of New York.avi
[16/12/2007 - 22:04:08 | N | 734138368]    Y:\Garage Babes.avi
[08/03/2008 - 09:03:10 | N | 730672614]    Y:\Germinal.avi
[25/10/2006 - 13:35:08 | N | 2175994000]    Y:\Gladiator.avi
[24/01/2008 - 08:21:46 | N | 731897856]    Y:\Gone baby Gone.avi
[23/10/2007 - 21:27:48 | N | 732424192]    Y:\Good luck chuck.avi
[06/01/2007 - 16:15:38 | N | 733431808]    Y:\Guardian CD2.avi
[06/01/2007 - 16:14:10 | N | 734648320]    Y:\Guardian CD 1.avi
[24/01/2009 - 13:06:24 | N | 734109696]    Y:\Hancock.avi
[15/06/2006 - 15:24:30 | N | 739246080]    Y:\Heat.avi
[02/10/2007 - 18:31:28 | N | 731387904]    Y:\Hellphone.avi
[13/06/2007 - 00:41:16 | N | 733945856]    Y:\Hors De Prix.avi
[12/02/2008 - 14:49:48 | N | 732121088]    Y:\Hotel Rwanda.avi
[25/12/2008 - 11:59:56 | N | 731312128]    Y:\I am a legend.avi
[19/09/2004 - 10:32:12 | N | 728135680]    Y:\Identity.avi
[19/07/2006 - 23:12:46 | N | 733460480]    Y:\Ils.avi
[08/10/2008 - 19:26:16 | N | 732065792]    Y:\In.The.Name Of The King A Dungeon Siege tale.avi
[14/11/2005 - 03:14:44 | N | 735350784]    Y:\Indiana Jones et l'arc perdu.avi
[24/12/2008 - 16:25:54 | N | 732739584]    Y:\Iron Man.avi
[29/06/2008 - 22:03:34 | N | 729022464]    Y:\Iznogoud.avi
[29/12/2008 - 00:47:12 | N | 733575168]    Y:\Jackass 2.avi
[07/03/2007 - 04:38:30 | N | 735143936]    Y:\Je Vais Bien, Ne T'en Fais Pas.avi
[17/03/2008 - 22:23:18 | N | 954335232]    Y:\Jean-Phillipe.avi
[29/04/2006 - 20:23:08 | N | 730767360]    Y:\Jeux D'Enfants.avi
[08/01/2006 - 11:00:00 | N | 729873114]    Y:\Joyeux Noël.avi
[30/11/2008 - 18:56:00 | N | 739194994]    Y:\Jurassic Park 3.AVI
[01/03/2008 - 09:51:04 | N | 734347264]    Y:\King Kong.avi
[14/02/2008 - 14:50:22 | N | 737251328]    Y:\Kingdom Of Heaven.avi
[24/05/2006 - 04:52:48 | N | 734806016]    Y:\KissKiss BangBang.avi
[21/12/2007 - 05:21:14 | N | 718003730]    Y:\La Boum 1.mp4
[21/12/2007 - 05:21:12 | N | 718546290]    Y:\La Boum 2.mp4
[09/02/2006 - 16:11:56 | N | 734230422]    Y:\La chute du faucon noir.avi
[21/12/2007 - 05:51:20 | N | 734255104]    Y:\La Cité De La Peur.avi
[02/04/2007 - 06:41:26 | N | 726644736]    Y:\La Cité Interdite.avi
[20/10/2006 - 15:48:48 | N | 733956096]    Y:\La Doublure.avi
[15/09/2005 - 21:08:28 | N | 724590592]    Y:\La Ligue des Gentlemen Extraordinaires.avi
[31/05/2006 - 15:17:00 | N | 731908096]    Y:\La Liste De Schindler CD1.avi
[01/06/2006 - 15:00:02 | N | 728276992]    Y:\La Liste De Schindler CD2.avi
[19/10/2003 - 13:31:46 | N | 731975680]    Y:\La Mémoire Dans La Peau.avi
[29/09/2007 - 04:22:58 | N | 734978048]    Y:\La Mort Dans La Peau.avi
[12/10/2007 - 10:50:18 | N | 732383232]    Y:\La Nuit Au Musée.avi
[30/01/2008 - 08:35:14 | N | 731893760]    Y:\La Nuit Nous Appartient.avi
[08/11/2007 - 07:31:36 | N | 731793408]    Y:\La Vengeance Dans La Peau.avi
[29/05/2007 - 03:05:20 | N | 742557316]    Y:\La Vie Des Autres.avi
[11/05/2007 - 14:55:10 | N | 739600384]    Y:\Labyrinthe De Pan.avi
[18/02/2008 - 14:56:14 | N | 730218496]    Y:\L'Age De Glace 1.avi
[19/02/2008 - 07:40:00 | N | 733812736]    Y:\L'Age De Glace 2.avi
[20/10/2006 - 20:37:48 | N | 2124858668]    Y:\L'Aile Ou La Cuisse.avi
[26/01/2009 - 19:13:32 | N | 725649408]    Y:\L'associé du diable.avi
[30/11/2003 - 01:41:58 | N | 731355742]    Y:\L'Auberge Espagnole.avi
[13/02/2008 - 09:35:28 | N | 734220288]    Y:\Layer Cake.avi
[13/06/2005 - 04:27:16 | N | 705138688]    Y:\Le baiser mortel du dragon.avi
[22/02/2007 - 14:29:54 | N | 731289600]    Y:\Le Boulet.avi
[28/09/2005 - 17:22:04 | N | 730073088]    Y:\Le chevalier black.avi
[07/10/2007 - 13:02:56 | N | 733696000]    Y:\Le Convoyeur.avi
[23/10/2004 - 05:06:10 | N | 737024000]    Y:\Le Dernier Samouraï.avi
[08/01/2003 - 20:13:44 | N | 663977984]    Y:\Le Détonateur.avi
[27/02/2008 - 15:33:26 | N | 725993862]    Y:\Le Fabuleux Destin D'Amélie Poulain.AVI
[17/06/2008 - 12:36:16 | N | 855026894]    Y:\Le Jour D'après.avi
[26/06/2005 - 12:59:46 | N | 1303981160]    Y:\Le Journal De Bridget Jones.avi
[16/11/2007 - 13:23:36 | N | 731009024]    Y:\Le Journal D'une Baby-Sitter.avi
[23/10/2005 - 12:12:40 | N | 733394944]    Y:\Le Masque De Fer.avi
[31/12/2005 - 15:16:36 | N | 726830824]    Y:\Le Masque.avi
[19/12/2007 - 22:49:22 | N | 732262400]    Y:\Le Monde De Nemo.avi
[12/01/2009 - 17:50:50 | N | 689473536]    Y:\Le monde ne suffit pas.divx
[18/10/2007 - 10:16:28 | N | 731889664]    Y:\Le Nombre 23.avi
[12/10/2008 - 20:54:10 | N | 728772608]    Y:\Le nouveau protocole.avi
[18/02/2008 - 18:04:50 | N | 731654144]    Y:\Le Pianiste.avi
[18/10/2007 - 13:22:22 | N | 735084544]    Y:\Le Secret De Terabithia.avi
[29/10/2006 - 22:07:14 | N | 2222102114]    Y:\Le Seigneur Des Anneaux - La Communauté De L'Anneau.avi
[19/02/2008 - 10:08:52 | N | 735836160]    Y:\Le Seigneur Des Anneaux - Le Retour Du Roi.avi
[29/10/2006 - 20:56:52 | N | 2221683392]    Y:\Le Seigneur Des Anneaux - Les Deux Tours.avi
[19/05/2007 - 03:28:54 | N | 688164864]    Y:\Le Tombeau Des Lucioles.avi
[21/03/2006 - 21:04:24 | N | 706574174]    Y:\Le transporteur 2.avi
[06/03/2006 - 02:20:20 | N | 719001600]    Y:\Le transporteur.avi
[18/12/2007 - 08:11:02 | N | 712981624]    Y:\L'Effet Papillon 1.divx
[07/10/2006 - 15:36:34 | N | 734683136]    Y:\L'Effet Papillon 2.avi
[03/02/2006 - 10:52:24 | N | 1766325382]    Y:\L'Enquête Corse.avi
[21/12/2004 - 11:58:24 | N | 734914560]    Y:\Léon.avi
[12/07/2007 - 09:58:04 | N | 722282496]    Y:\Les 4 Fantastiques Et Le Surfeur D'argent.avi
[12/07/2007 - 07:11:32 | N | 719415296]    Y:\Les 4 Fantastiques.avi
[21/11/2003 - 09:35:58 | N | 723501056]    Y:\Les Ailes De L'Enfer.AVI
[08/08/2005 - 18:09:32 | N | 1767336842]    Y:\Les Choristes.avi
[22/06/2005 - 20:03:52 | N | 740691968]    Y:\Les chroniques de Riddicks.avi
[30/03/2001 - 21:01:42 | N | 727754752]    Y:\Les Dents De La Mer.avi
[03/06/2003 - 08:03:12 | N | 734623744]    Y:\Les Larmes Du Soleil.avi
[22/02/2008 - 05:14:22 | N | 735082496]    Y:\Les Poupées Russes.avi
[26/02/2004 - 07:56:30 | N | 729909248]    Y:\Les Rivières Pourpres 1.avi
[30/09/2006 - 11:31:16 | N | 733943808]    Y:\Les Rivières Pourpres 2.avi
[13/02/2008 - 04:03:40 | N | 711780352]    Y:\Les Rois De La Glisse.avi
[28/10/2006 - 15:01:38 | N | 1322663800]    Y:\Les Sentiers De La Perdition.avi
[31/03/2007 - 16:30:22 | N | 705602028]    Y:\L'Étrange Noël De Monsieur Jack.avi
[12/02/2008 - 10:21:04 | N | 731033600]    Y:\L'Experience.avi
[23/01/2009 - 22:36:24 | N | 732956672]    Y:\L'illusionniste.mpg
[26/01/2009 - 18:24:08 | N | 732631040]    Y:\L'incroyable Hulk.avi
[09/08/2006 - 06:16:36 | N | 735318016]    Y:\Little Manhattan.avi
[18/12/2007 - 07:20:34 | N | 783142912]    Y:\Little Miss Sunshine.avi
[27/01/2007 - 15:46:56 | N | 732981248]    Y:\Massacre À La Tronçonneuse - Le Commencement.avi
[01/12/2007 - 17:50:08 | N | 700880896]    Y:\Matrix 1.avi
[03/12/2007 - 03:02:14 | N | 736806912]    Y:\Matrix 2.AVI
[03/12/2007 - 03:00:50 | N | 737452032]    Y:\Matrix 3.avi
[13/11/2008 - 18:06:40 | N | 730320896]    Y:\Max Payne.avi
[20/12/2007 - 03:59:44 | N | 733296640]    Y:\Mémoires De Nos Pères.avi
[22/02/2007 - 13:59:14 | N | 735309824]    Y:\Mémoires D'Une Geisha.avi
[24/12/2008 - 18:27:28 | N | 734482432]    Y:\Men In Black 2.avi
[24/12/2008 - 17:38:18 | N | 718594048]    Y:\Men In Black.avi
[20/01/2007 - 12:08:30 | N | 732788736]    Y:\Meurt un autre jour.avi
[11/06/2006 - 16:25:50 | N | 732381184]    Y:\Midnight Express.avi
[26/06/2005 - 22:39:30 | N | 733706240]    Y:\Million Dollar Baby.avi
[20/12/2007 - 03:26:54 | N | 732643554]    Y:\Minority Report.avi
[06/01/2008 - 09:37:52 | N | 733949952]    Y:\Mission Impossible 1.avi
[19/02/2008 - 07:55:34 | N | 708950016]    Y:\Mission Impossible 2.AVI
[15/11/2006 - 22:04:00 | N | 730847232]    Y:\Mission Impossible 3.avi
[22/10/2006 - 15:47:10 | N | 1820352324]    Y:\Mon Beau-Père Et Moi.avi
[09/06/2005 - 20:04:18 | N | 3819916382]    Y:\Mon Beau-Père, Mes Parents Et Moi.avi
[29/03/2006 - 08:42:04 | N | 728166400]    Y:\Mon Nom Est Personne.avi
[22/04/2007 - 19:27:02 | N | 734117888]    Y:\Mr Bean.avi
[11/02/2006 - 23:30:36 | N | 738463384]    Y:\Munich.avi
[08/06/2005 - 19:23:12 | N | 1958103474]    Y:\Mystic River.avi
[07/06/2007 - 23:19:14 | N | 732344320]    Y:\Ne Le Dis À Personne.avi
[19/10/2008 - 10:57:30 | N | 733179904]    Y:\Never.Back.Down.FRENCH.DVDRiP.XviD-EXECUTiON.avi
[15/03/2008 - 23:40:02 | N | 731881472]    Y:\No Country For Old Men.avi
[12/04/2007 - 11:55:00 | N | 733353984]    Y:\Nous Etions Soldats.avi
[02/04/2003 - 23:13:38 | N | 622786560]    Y:\Ocean's Eleven.avi
[28/11/2007 - 13:12:38 | N | 734248960]    Y:\Ocean's Twelve.avi
[22/02/2004 - 23:54:10 | N | 729899008]    Y:\Out Of Time.avi
[02/01/2008 - 13:24:56 | N | 733962240]    Y:\Outlaw.avi
[30/04/2008 - 22:52:36 | N | 734504960]    Y:\P.S. I Love You.avi
[19/05/2006 - 00:41:28 | N | 732876800]    Y:\Palais Royal.avi
[23/09/2005 - 16:26:34 | N | 731893760]    Y:\Piège En Haute Mer.avi
[05/10/2007 - 17:26:30 | N | 731607040]    Y:\Planète Terreur.avi
[01/11/2004 - 10:45:00 | N | 733298688]    Y:\Podium.avi
[30/04/2007 - 14:38:48 | N | 733958144]    Y:\Prête-Moi Ta Main.divx
[14/08/2009 - 01:34:55 | N | 733747200]    Y:\Hot.Babes.avi
[27/05/2008 - 14:21:00 | N | 734920704]    Y:\Rambo.avi
[26/10/2007 - 19:17:36 | N | 733663232]    Y:\Ratatouille.avi
[14/12/2008 - 17:47:38 | N | 732555264]    Y:\Requiem For A Dream.avi
[11/10/2008 - 23:06:58 | N | 733550592]    Y:\Rescue dawn .avi
[15/12/2006 - 23:59:58 | N | 2221140770]    Y:\Retour À Cold Mountain.avi
[14/02/2008 - 12:32:54 | N | 732241920]    Y:\Réussir Ou Mourir.avi
[08/10/2008 - 18:53:18 | N | 700661760]    Y:\Rogues l'ultime affrontement.avi
[13/02/2008 - 01:38:48 | N | 734513152]    Y:\Rush Hour 3.avi
[16/01/2000 - 09:40:04 | N | 734025728]    Y:\Saw 5.avi
[31/08/2006 - 21:12:58 | N | 752384000]    Y:\Scarface.avi
[24/12/2008 - 19:10:58 | N | 734070784]    Y:\Scary movie.avi
[27/12/2008 - 21:03:02 | N | 719648768]    Y:\Seul Two.avi
[28/05/2008 - 12:01:18 | N | 734482432]    Y:\Shooter.avi
[22/10/2006 - 05:02:00 | N | 729530368]    Y:\Show girls.avi
[12/01/2009 - 18:37:42 | N | 731301574]    Y:\Skate or Die.avi
[02/07/2006 - 04:47:18 | N | 728438784]    Y:\Slevin.avi
[18/12/2007 - 17:07:26 | N | 734027776]    Y:\Spiderman 1.avi
[18/12/2007 - 10:35:08 | N | 633094144]    Y:\Spiderman 2.avi
[21/10/2007 - 13:52:44 | N | 740192564]    Y:\Spiderman 3.avi
[02/10/2006 - 16:30:58 | N | 717320192]    Y:\Stalingrad.avi
[25/12/2008 - 13:42:28 | N | 735553536]    Y:\Star wars 4.avi
[01/12/2007 - 01:06:34 | N | 734099456]    Y:\Stardust CD 1.avi
[01/12/2007 - 01:08:20 | N | 728557568]    Y:\Stardust CD 2.avi
[03/09/2004 - 22:10:38 | N | 731389952]    Y:\SWAT unité d'élite.AVI
[19/02/2008 - 07:28:44 | N | 735076352]    Y:\Taxi 1.avi
[16/09/2006 - 16:52:38 | N | 733897734]    Y:\Taxi 2.avi
[15/04/2005 - 09:22:54 | N | 2018610036]    Y:\Taxi 3.avi
[19/04/2007 - 18:36:18 | N | 734343168]    Y:\Taxi 4.avi
[18/12/2007 - 11:56:12 | N | 730994688]    Y:\The Grudge 1.avi
[01/11/2007 - 00:30:52 | N | 734580992]    Y:\The Grudge 2.avi
[28/12/2008 - 15:07:08 | N | 733718528]    Y:\The Happening.avi
[10/10/2007 - 20:06:50 | N | 733384704]    Y:\The Hoax.avi
[17/12/2005 - 20:53:38 | N | 741011456]    Y:\The pledge.avi
[05/11/2008 - 18:18:40 | N | 734922752]    Y:\Tonerre sous les tropiques.avi
[02/12/2008 - 19:36:34 | N | 732000256]    Y:\Transformers.avi
[17/07/2007 - 17:54:18 | N | 733939712]    Y:\Truands.avi
[27/06/2006 - 10:01:50 | N | 728242176]    Y:\Ultraviolet.avi
[12/01/2007 - 22:21:32 | N | 732997632]    Y:\Undisputed 2.avi
[26/01/2007 - 03:49:14 | N | 734158848]    Y:\Unknow.avi
[04/10/2006 - 10:53:30 | N | 731355136]    Y:\vfc-blackhawkxvid1.avi
[04/10/2006 - 10:54:04 | N | 734504960]    Y:\vfc-blackhawkxvid2.avi
[19/03/2005 - 00:19:22 | N | 732874752]    Y:\Viens voir papa.avi
[23/12/2006 - 00:29:06 | N | 654188544]    Y:\Volte Face.avi
[01/07/2008 - 00:22:10 | N | 733716480]    Y:\Wanted.avi
[18/05/2005 - 12:18:48 | N | 734007296]    Y:\Wild Wild West.avi
[22/02/2007 - 13:19:18 | N | 734929835]    Y:\X-Men 1.avi
[19/02/2008 - 17:51:40 | N | 733720576]    Y:\X-Men 2.avi
[19/02/2008 - 01:49:04 | N | 734230528]    Y:\X-Men 3.avi
[15/12/2005 - 04:46:10 | N | 735356928]    Y:\XXX2.avi
[01/09/2004 - 18:42:16 | N | 728352432]    Y:\XXX.AVI
[03/06/2000 - 07:37:22 | N | 734099456]    Y:\Babylon.a.D.bounty113.avi
[04/06/2000 - 07:26:50 | N | 734160896]    Y:\Jackass.2.5.-.WaWa-MaNia.-.By.CoolTy.avi
[05/06/2000 - 04:40:37 | N | 733575168]    Y:\jackass par alpatch zonepirate.com.avi
[05/06/2000 - 05:51:51 | N | 735365120]    Y:\La derniere maison sur la gauche.avi
[09/04/2010 - 09:28:41 | D ]    Y:\James Bond
[15/05/2005 - 00:13:54 | N | 712193024]    Y:\Star Wars - Episode 1 - La menace fantome.avi
[17/05/2005 - 05:25:20 | N | 734246912]    Y:\Star Wars - Episode 2 - L'Attaque des Clones.avi
[10/07/2005 - 18:23:18 | N | 735553536]    Y:\Star Wars - Episode 4 - Un Nouvel Espoir.avi
[11/07/2005 - 16:49:24 | N | 733650944]    Y:\Star Wars - Episode 5 - L'Empire Contre-Attaque.avi
[06/07/2005 - 02:33:54 | N | 731289600]    Y:\Star Wars - Episode 6 - Le Retour Du Jedi.avi
[08/04/2008 - 23:11:44 | N | 734594160]    Y:\StarWars - Episode 3 - la revanche des sith.avi
[12/12/2009 - 08:41:47 | N | 734507008]    Y:\Bad Lieutenant_[VOSTFR] .avi
[17/09/2008 - 08:41:56 | N | 730652672]    Y:\OSS 117 Le Caire nid d'espions.avi
[04/09/2000 - 06:11:45 | D ]    Z:\Fichier du gsm
[04/09/2000 - 06:11:45 | D ]    Z:\Le petit spirou
[09/01/2011 - 16:10:40 | D ]    Z:\Mes images
[30/03/2010 - 07:18:43 | D ]    Z:\Albums Musicaux
[04/09/2000 - 06:32:56 | D ]    Z:\Clips Musicaux
[12/12/2010 - 20:32:49 | D ]    Z:\Divers
[05/03/2010 - 05:45:30 | D ]    Z:\Humour
[30/12/2010 - 14:29:34 | D ]    Z:\Video CS
[25/10/2009 - 09:11:46 | D ]    Z:\Demo HLTV & Records 2
[22/01/2011 - 07:17:34 | D ]    Z:\Ecole
[25/10/2009 - 09:08:15 | D ]    Z:\Configs CS
[30/12/2010 - 14:37:53 | D ]    Z:\Réalisation de sites 2

################## | Vaccin |

C:\Autorun.inf -> Dossier créé par UsbFix (El Desaparecido & C_XX)
D:\Autorun.inf -> Dossier créé par UsbFix (El Desaparecido & C_XX)
E:\Autorun.inf -> Dossier créé par UsbFix (El Desaparecido & C_XX)
J:\Autorun.inf -> Dossier créé par UsbFix (El Desaparecido & C_XX)
Y:\Autorun.inf -> Dossier créé par UsbFix (El Desaparecido & C_XX)
Z:\Autorun.inf -> Dossier créé par UsbFix (El Desaparecido & C_XX)

################## | Upload |

Veuillez envoyer le fichier: C:\UsbFix_Upload_Me_FIXE-CLEMENT.zip
http://www.teamxscript.org/Upload.php
Merci de votre contribution.

################## | E.O.F |


Par contre, le fichier est vide après la vaccination.
Mais j'ai eu des boites de dialogues m'indiquant chaque fois que le fichier autorun.inf (il me semble que c'est celui-là) était vacciné (sur tous les disques)
Thunder1810
Apprenti(e) Expert(e)
Apprenti(e) Expert(e)
 
Messages: 204
Inscription: 07 Déc 2008 10:59
Localisation: 127.0.0.1
 

Re: Aide pour désinfection

Message le 10 Fév 2011 19:16

Salut!

Comment se comporte ton PC?
Toujours des ralentissements ... au démarrage, à l'exécution d'un logiciel, en naviguant sur la toile?
Avatar de l'utilisateur
danakil
Expert(e)
Expert(e)
 
Messages: 1363
Inscription: 16 Juil 2009 09:47
 

Suivante


Sujets similaires

Message [Réglé] recherche antivirus et anti trojan pour tel android
Salut tout le mondeje possede un Samsung GALAXY S23 ULTRA, système Android version 14 et version One Ui 6.0 je ne sais pas trop à quoi cela correspond exactement, c'est juste pour information il y a bien dessus maintenance de l'application un onglet protection des applications, mais comme je fais ...
Réponses: 5

Message [Résolu] comment utiliser opera
Bonjour J'ai installé opera, je n'arrive pas à le mettre en français ? Il y a aussi la page d'accueil qui me gêne, pleine de petites fenêtres qui ne m'intéressèrent pas. Merci
Réponses: 13

Message [Résolu] Impossible lancer Windows défender hors ligne WIN10
Salut à vous j'ai voulu lancer Windows Defender hors ligne et malgré plusieurs tentatives et démarrages, il ne se passe rien je suis allé sur mon disque dur C où est installé Windows Defender et puis sur offline j'ai cliqué sur en administrateur : OfflineScannerShellet voici le message Je précis ...
Réponses: 64

Message mot de pass [Résolu]
bonjour quand j'allume le pc il demande un mot de passe et option de connexion ..comment je peu supprimé ça pour que l'ordi s'allume sans cet option ...si y a moyen ça sera bien ps: installation Windows car j'ai remplacé mon DD par un SSD ce week-endmerci
Réponses: 23

Message [Résolu]Paramètrage de mon profil
Bonjour, Lorsque je veux ajouter une signature dans mon profil ==> Modifier la signature, la visualisation de celle-ci se fait bien mais lorsque je valide, rien apparait sous mes messages. Il y a t-il un temps de délai pour voir apparaitre ma signature en bas de mes messages (normalement cela do ...
Réponses: 4

Message [Résolu] Le fameux soucis du "voile blanc" sur un écran.
Bonjour/Bonsoir, je viens à vous aujourd'hui car j'ai acheter un écran LG 24M47VQ-P ( Je crois qu'il s'âgit la de la réph mais je ne suis pas sur ) et lorsque je le branche il fonctionne parfaitement cependant il y a une chose qui me dérange fortement c'est un voile blanc qui viens se mettre sur l'é ...
Réponses: 15


Qui est en ligne

Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 18 invités


.: Nous contacter :: Flux RSS :: Données personnelles :.