nanoua971 a écrit:Non, je n'arrive toujours pas a démarrer en mode normal.
quand je démarre sa démarre normalement mais au moment d'afficher le bureau sa ne donne rien, juste un écran noir. et c tout.
Même le logo Windows n'apparait pas
Il y a actuellement 1143 visiteurs
Vendredi 05 Décembre 2025
       |
Probleme internet explorer • page 3
Règles du forum
Pour afficher un rapport d'analyse ou un rapport d'infection (HijackThis, OTL, AdwCleaner etc...), veuillez utiliser le système de fichiers joints interne au forum. Seuls les formats les .txt et .log de moins de 1Mo sont acceptés. Pour obtenir de l'aide pour insérer vos fichiers joints, veuillez consulter ce tutoriel
Pour afficher un rapport d'analyse ou un rapport d'infection (HijackThis, OTL, AdwCleaner etc...), veuillez utiliser le système de fichiers joints interne au forum. Seuls les formats les .txt et .log de moins de 1Mo sont acceptés. Pour obtenir de l'aide pour insérer vos fichiers joints, veuillez consulter ce tutoriel
Re: Probleme internet explorer
le 20 Avr 2010 21:18
Même le logo Windows n'apparait pas
- nanoua971
- Apprenti(e)
- Messages: 35
- Inscription: 22 Mar 2010 03:41
Re: Probleme internet explorer
le 20 Avr 2010 21:36
yop,
un petit renseignement stp...
Tu as eu les problèmes de démarrage juste après que je t'ai préconisé le passage de combofix,....
est ce que c'est après avoir lancer combofix que le mode normal est devenue inopérant ??
Si tu as exécuter combofix ce jours là, regarde si tu as un rapport nommé combofix.txt à la racine du disque c:\ ( C:\combofix.txt)
Si tu n'as pas lancer combofix dit le moi...
ensuite...
* Copier et colle le contenue de cette citation dans la partie inférieure d'OTL "custom scan...."
* Cliques sur l'icône "RunScan" (en haut à gauche) /!\ ( pas runfix) /!\
* Laisse le scan aller à son terme sans te servir du PC
* A la fin du scan un ou deux rapports vont s'ouvrir "OTL.Txt" et ( ou ) "Extras.Txt"( dans certains cas).
* Copie et colle le ou les rapports dans ta réponse stp...
* Au cas où, tu peux les retrouver dans le dossier C:\OTL ou sur ton bureau en fonction des cas rencontrés
@++
un petit renseignement stp...
Tu as eu les problèmes de démarrage juste après que je t'ai préconisé le passage de combofix,....
est ce que c'est après avoir lancer combofix que le mode normal est devenue inopérant ??
Si tu as exécuter combofix ce jours là, regarde si tu as un rapport nommé combofix.txt à la racine du disque c:\ ( C:\combofix.txt)
Si tu n'as pas lancer combofix dit le moi...
ensuite...
* Copier et colle le contenue de cette citation dans la partie inférieure d'OTL "custom scan...."
%SYSTEMDRIVE%\winload.exe /s /md5
%SYSTEMDRIVE%\winlogon.exe /S /md5
%SYSTEMDRIVE%\ntoskrnl.exe /S /md5
%SYSTEMDRIVE%\bootvid.dll /s /md5
%SYSTEMDRIVE%\hal.dll /s /md5
%SYSTEMDRIVE%\tpm.sys /s /md5
%SYSTEMDRIVE%\ksecdd.sys /s /md5
%SYSTEMDRIVE%\clfs.sys /s /md5
%SYSTEMDRIVE%\ci.dll /s /md5
%SYSTEMDRIVE%\kdcom.dll /s /md5
%SYSTEMDRIVE%\kdusb.dll /s /md5
%SYSTEMDRIVE%\kd1394.dll /s /md5
%SYSTEMDRIVE%\spldr.sys /s /md5
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\ /s
* Cliques sur l'icône "RunScan" (en haut à gauche) /!\ ( pas runfix) /!\
* Laisse le scan aller à son terme sans te servir du PC
* A la fin du scan un ou deux rapports vont s'ouvrir "OTL.Txt" et ( ou ) "Extras.Txt"( dans certains cas).
* Copie et colle le ou les rapports dans ta réponse stp...
* Au cas où, tu peux les retrouver dans le dossier C:\OTL ou sur ton bureau en fonction des cas rencontrés
@++
-
jeanmimigab - PC-Infopraticien
- Messages: 2986
- Inscription: 29 Nov 2009 12:05
Re: Probleme internet explorer
le 21 Avr 2010 15:22
OTL logfile created on: 21/04/2010 09:40:07 - Run 2
OTL by OldTimer - Version 3.2.1.3 Folder = C:\Windows\system32\config\systemprofile\Downloads
Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18882)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 51,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 73,00% Paging File free
Paging file location(s): c:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 149,05 Gb Total Space | 55,17 Gb Free Space | 37,02% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: PC-DE-USER
Current User Name: USER
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Minimal
Quick Scan
========== Processes (SafeList) ==========
PRC - C:\Windows\System32\config\systemprofile\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
PRC - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation)
PRC - C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
PRC - C:\Program Files\VIA\VIAudioi\VistaADeck\HDAudioCPL.exe (VIA.)
PRC - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe (Rocket Division Software)
PRC - C:\Windows\System32\s3trayp.exe (S3 Graphics Co., Ltd.)
PRC - C:\Windows\vsnpstd3.exe ()
PRC - C:\Windows\tsnpstd3.exe ()
PRC - C:\Windows\FixCamera.exe ()
========== Modules (SafeList) ==========
MOD - C:\Windows\System32\config\systemprofile\Downloads\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll (Microsoft Corporation)
========== Win32 Services (SafeList) ==========
SRV - (CLTNetCnService) -- File not found
SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
SRV - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
SRV - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
SRV - (aswUpdSv) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation)
SRV - (WinHttpAutoProxySvc) -- winhttp.dll (Microsoft Corporation)
SRV - (fsssvc) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe (Microsoft Corporation)
SRV - (SeaPort) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV - (StarWindServiceAE) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe (Rocket Division Software)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/av ... x_homepage
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 64 1F 7B 00 03 14 E6 41 80 CC 16 A6 78 7C A6 76 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..extensions.enabledItems: {9CE11043-9A15-4207-A565-0C94C42D590D}:2.0
FF - prefs.js..extensions.enabledItems: {f3c12911-3343-c59a-8c82-74b377b2737f}:4.6.6.7
FF - prefs.js..extensions.enabledItems: treestyletab@piro.sakura.ne.jp:0.10.2010040201
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/04/19 19:55:53 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/04/17 15:30:08 | 000,000,000 | ---D | M]
[2010/04/19 20:22:18 | 000,000,000 | ---D | M] -- C:\Windows\System32\config\systemprofile\AppData\Roaming\Mozilla\Extensions
[2010/04/21 09:09:17 | 000,000,000 | ---D | M] -- C:\Windows\System32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\hsscauah.default\extensions
[2010/04/21 09:09:17 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Windows\System32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\hsscauah.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2010/04/19 21:44:50 | 000,000,000 | ---D | M] -- C:\Windows\System32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\hsscauah.default\extensions\treestyletab@piro.sakura.ne.jp
[2010/04/21 09:09:00 | 000,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2008/12/12 19:02:02 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Program Files\mozilla firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2010/03/29 01:48:12 | 000,000,000 | ---D | M] (Firefox security) -- C:\Program Files\mozilla firefox\extensions\{9CE11043-9A15-4207-A565-0C94C42D590D}
[2010/04/15 12:36:44 | 000,000,000 | ---D | M] (LoudMo Contextual Ad Assistant) -- C:\Program Files\mozilla firefox\extensions\{f3c12911-3343-c59a-8c82-74b377b2737f}
[2006/09/26 06:03:14 | 000,098,304 | ---- | M] (Zylom) -- C:\Program Files\mozilla firefox\plugins\npzylomgamesplayer.dll
[2010/04/01 13:07:29 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2010/04/01 13:07:29 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2010/04/01 13:07:29 | 000,000,757 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2010/04/01 13:07:29 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2010/04/01 13:07:29 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml
O1 HOSTS File: ([2006/09/18 17:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O4 - HKLM..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [ezLife] File not found
O4 - HKLM..\Run: [FixCamera] C:\Windows\FixCamera.exe ()
O4 - HKLM..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\VistaADeck\HDAudioCPL.exe (VIA.)
O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (Macrovision Corporation)
O4 - HKLM..\Run: [S3Trayp] C:\Windows\System32\s3trayp.exe (S3 Graphics Co., Ltd.)
O4 - HKLM..\Run: [snpstd3] C:\Windows\vsnpstd3.exe ()
O4 - HKLM..\Run: [tsnpstd3] C:\Windows\tsnpstd3.exe ()
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [zpkulydleetxdhle] C:\Windows\System32\aknqvjjjggvqx.dll File not found
O4 - HKLM..\RunOnce: [NSSInstallation] C:\Program Files\DivX\Symantec\scstubinstaller.exe (Symantec Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 255
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\Yinsthelper.dll (Installation Support)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter\x-sdch {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.)
O20 - AppInit_DLLs: (c:\windows\system32\dnssd32.dll) - C:\Windows\System32\dnssd32.dll File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img24.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img24.jpg
O29 - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/03/24 01:08:42 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ]
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 14 Days ==========
[2010/04/21 07:39:59 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\AppData\Roaming\HpUpdate
[2010/04/21 07:33:49 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\AppData\Roaming\Identities
[2010/04/20 23:03:53 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\AppData\Roaming\WinRAR
[2010/04/20 19:45:21 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\AppData\Roaming\vlc
[2010/04/20 18:29:52 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\AppData\Local\Adobe
[2010/04/20 16:29:26 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\AppData\Roaming\DivX
[2010/04/19 21:58:16 | 000,000,000 | -HSD | C] -- C:\Windows\System32\%APPDATA%
[2010/04/19 21:45:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\Tracing
[2010/04/19 20:51:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\AppData\Roaming\Macromedia
[2010/04/19 20:51:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\AppData\Roaming\Adobe
[2010/04/19 20:22:37 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\AppData\Local\Temp
[2010/04/19 20:22:04 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\AppData\Roaming\Mozilla
[2010/04/19 20:22:04 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\AppData\Local\Mozilla
[2010/04/19 19:55:52 | 000,000,000 | ---D | C] -- C:\_OTL
[2010/04/17 20:40:53 | 000,000,000 | ---D | C] -- C:\Program Files\Laura Jones and the Gates of Good and Evil
[2010/04/17 20:29:12 | 000,000,000 | ---D | C] -- C:\Program Files\bfgclient
[2010/04/17 15:25:25 | 000,000,000 | ---D | C] -- C:\ProgramData\DivX
[2010/04/14 13:38:41 | 000,000,000 | ---D | C] -- C:\$WINDOWS.~LS
[2010/04/14 13:37:39 | 000,000,000 | ---D | C] -- C:\$WINDOWS.~BT
[2008/12/18 13:12:39 | 000,172,032 | ---- | C] ( ) -- C:\Windows\System32\rsnpstd3.dll
[2008/12/18 13:12:39 | 000,057,344 | ---- | C] ( ) -- C:\Windows\System32\vsnpstd3.dll
[2008/12/18 13:12:38 | 000,053,248 | ---- | C] ( ) -- C:\Windows\System32\csnpstd3.dll
[2008/12/18 13:12:38 | 000,053,248 | ---- | C] ( ) -- C:\Windows\csnpstd3.dll
========== Files - Modified Within 14 Days ==========
[2010/04/21 09:30:59 | 000,003,648 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010/04/21 09:30:59 | 000,003,648 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010/04/21 09:09:34 | 000,007,168 | ---- | M] () -- C:\Windows\system32\config\systemprofile\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/04/21 08:45:55 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/04/21 07:33:29 | 000,001,838 | ---- | M] () -- C:\Windows\system32\config\systemprofile\Desktop\Install_NSS.lnk
[2010/04/21 07:33:29 | 000,000,362 | ---- | M] () -- C:\Windows\tasks\Install_NSS.job
[2010/04/20 23:53:44 | 000,002,032 | ---- | M] () -- C:\Windows\system32\config\systemprofile\AppData\Local\d3d9caps.dat
[2010/04/20 16:09:34 | 000,008,012 | ---- | M] () -- C:\2187 - Pokemon - Version Emeraude (F).clt
[2010/04/19 21:45:06 | 000,108,768 | ---- | M] () -- C:\Windows\system32\config\systemprofile\AppData\Local\GDIPFONTCACHEV1.DAT
[2010/04/19 20:15:12 | 000,399,928 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010/04/18 18:19:10 | 003,467,376 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2010/04/18 18:19:10 | 001,476,972 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010/04/18 18:19:10 | 001,084,950 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2010/04/18 18:19:10 | 000,955,716 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010/04/18 18:19:10 | 000,004,926 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010/04/18 00:44:56 | 000,021,840 | ---- | M] () -- C:\Windows\System32\SIntfNT.dll
[2010/04/18 00:44:56 | 000,017,212 | ---- | M] () -- C:\Windows\System32\SIntf32.dll
[2010/04/18 00:44:56 | 000,012,067 | ---- | M] () -- C:\Windows\System32\SIntf16.dll
[2010/04/17 20:41:08 | 000,001,990 | ---- | M] () -- C:\Users\Public\Desktop\Jouer à Laura Jones and the Gates of Good and Evil.lnk
[2010/04/17 20:41:08 | 000,001,250 | ---- | M] () -- C:\Users\Public\Desktop\Encore plus de jeux.lnk
[2010/04/17 20:29:13 | 000,001,700 | ---- | M] () -- C:\Users\Public\Desktop\Game Manager.lnk
[2010/04/17 15:29:14 | 000,000,917 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
[2010/04/17 15:28:31 | 000,000,957 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
[2010/04/15 13:03:47 | 000,524,288 | -HS- | M] () -- C:\Windows\system32\config\systemprofile\ntuser.dat{be3ce39b-7a5b-11da-96a4-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms
[2010/04/15 13:03:47 | 000,262,144 | ---- | M] () -- C:\Windows\system32\config\systemprofile\ntuser.dat
[2010/04/15 13:03:47 | 000,065,536 | -HS- | M] () -- C:\Windows\system32\config\systemprofile\ntuser.dat{be3ce39b-7a5b-11da-96a4-806e6f6e6963}.TM.blf
[2010/04/15 12:51:46 | 000,001,724 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010/04/14 18:10:00 | 000,000,416 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{334A4BE3-F41F-44AD-887E-AFD029110187}.job
[2010/04/14 18:10:00 | 000,000,400 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{000EE505-DF96-49B3-A96A-C4275A922361}.job
[2010/04/14 17:36:06 | 000,001,054 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010/04/14 14:40:44 | 000,001,050 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010/04/14 14:40:44 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/04/14 14:06:11 | 000,012,288 | ---- | M] () -- C:\Windows\System32\umstartup000.etl
[2010/04/14 14:04:28 | 000,001,905 | ---- | M] () -- C:\Windows\diagwrn.xml
[2010/04/14 14:04:28 | 000,001,905 | ---- | M] () -- C:\Windows\diagerr.xml
[2010/04/14 13:01:34 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
========== Files Created - No Company Name ==========
[2010/04/21 07:33:29 | 000,001,838 | ---- | C] () -- C:\Windows\system32\config\systemprofile\Desktop\Install_NSS.lnk
[2010/04/20 16:29:25 | 000,007,168 | ---- | C] () -- C:\Windows\System32\config\systemprofile\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/04/17 20:41:08 | 000,001,990 | ---- | C] () -- C:\Users\Public\Desktop\Jouer à Laura Jones and the Gates of Good and Evil.lnk
[2010/04/17 20:29:13 | 000,001,700 | ---- | C] () -- C:\Users\Public\Desktop\Game Manager.lnk
[2010/04/17 20:29:12 | 000,001,250 | ---- | C] () -- C:\Users\Public\Desktop\Encore plus de jeux.lnk
[2010/04/17 15:29:14 | 000,000,917 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
[2010/04/17 15:28:31 | 000,000,957 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
[2010/04/17 15:26:36 | 000,000,362 | ---- | C] () -- C:\Windows\tasks\Install_NSS.job
[2010/04/15 16:18:27 | 000,008,012 | ---- | C] () -- C:\2187 - Pokemon - Version Emeraude (F).clt
[2010/04/14 14:06:11 | 000,012,288 | ---- | C] () -- C:\Windows\System32\umstartup000.etl
[2010/04/14 12:46:28 | 000,000,400 | -H-- | C] () -- C:\Windows\tasks\User_Feed_Synchronization-{000EE505-DF96-49B3-A96A-C4275A922361}.job
[2010/03/24 14:58:48 | 000,203,776 | -HS- | C] () -- C:\ProgramData\unrar.exe
[2009/09/30 10:08:42 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/08/18 09:05:34 | 000,000,040 | ---- | C] () -- C:\Windows\NAVIGMA.INI
[2009/08/04 07:20:06 | 000,000,026 | ---- | C] () -- C:\Windows\System32\satsukidecodersettings.ini
[2009/02/03 08:05:01 | 000,717,296 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2009/01/15 08:59:55 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2008/12/18 13:12:41 | 000,015,498 | ---- | C] () -- C:\Windows\snpstd3.ini
[2008/12/01 11:20:09 | 000,000,079 | ---- | C] () -- C:\Windows\few-oneclick-repertoire.ini
[2008/12/01 11:19:57 | 000,000,079 | ---- | C] () -- C:\Windows\few-repertoire-1024.ini
[2008/11/30 22:23:06 | 000,058,792 | ---- | C] () -- C:\Windows\System32\wbload.dll
[2008/11/21 02:51:05 | 000,000,064 | ---- | C] () -- C:\Windows\yesmessenger.ini
[2008/11/08 21:36:04 | 000,043,520 | ---- | C] () -- C:\Windows\System32\CmdLineExt03.dll
[2008/10/28 12:23:40 | 000,021,840 | ---- | C] () -- C:\Windows\System32\SIntfNT.dll
[2008/10/28 12:23:40 | 000,017,212 | ---- | C] () -- C:\Windows\System32\SIntf32.dll
[2008/10/28 12:23:40 | 000,012,067 | ---- | C] () -- C:\Windows\System32\SIntf16.dll
[2008/10/22 09:03:28 | 000,003,660 | ---- | C] () -- C:\ProgramData\hpzinstall.log
[2008/03/05 09:28:28 | 000,286,208 | ---- | C] () -- C:\Windows\System32\cncs232.dll
[2007/07/23 09:03:32 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelTraditionalChinese.dll
[2007/07/23 09:03:32 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelSwedish.dll
[2007/07/23 09:03:32 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelSpanish.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelSimplifiedChinese.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelPortugese.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelKorean.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelJapanese.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelGerman.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelFrench.dll
[2006/11/02 11:19:49 | 000,001,024 | -H-- | C] () -- C:\Windows\System32\config\systemprofile\ntuser.dat.LOG
[2006/11/02 08:59:50 | 000,002,032 | ---- | C] () -- C:\Windows\System32\config\systemprofile\AppData\Local\d3d9caps.dat
[2006/11/02 08:40:55 | 000,262,144 | -H-- | C] () -- C:\Windows\System32\config\systemprofile\ntuser.dat.LOG1
[2006/11/02 08:40:55 | 000,262,144 | ---- | C] () -- C:\Windows\System32\config\systemprofile\ntuser.dat
[2006/11/02 08:40:55 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\config\systemprofile\ntuser.dat.LOG2
[2006/11/02 03:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/01/01 11:51:22 | 000,069,632 | ---- | C] () -- C:\Windows\System32\vuins32.dll
[2006/01/01 11:51:21 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2005/12/31 20:15:58 | 000,524,288 | -HS- | C] () -- C:\Windows\System32\config\systemprofile\ntuser.dat{be3ce39b-7a5b-11da-96a4-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms
[2005/12/31 20:15:58 | 000,524,288 | -HS- | C] () -- C:\Windows\System32\config\systemprofile\ntuser.dat{be3ce39b-7a5b-11da-96a4-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms
[2005/12/31 20:15:58 | 000,065,536 | -HS- | C] () -- C:\Windows\System32\config\systemprofile\ntuser.dat{be3ce39b-7a5b-11da-96a4-806e6f6e6963}.TM.blf
[1999/01/22 08:46:58 | 000,065,536 | ---- | C] () -- C:\Windows\System32\MSRTEDIT.DLL
========== LOP Check ==========
[2010/04/21 07:33:29 | 000,000,362 | ---- | M] () -- C:\Windows\Tasks\Install_NSS.job
[2010/04/14 13:01:34 | 000,032,572 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2010/04/14 18:10:00 | 000,000,400 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{000EE505-DF96-49B3-A96A-C4275A922361}.job
[2010/04/14 18:10:00 | 000,000,416 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{334A4BE3-F41F-44AD-887E-AFD029110187}.job
========== Purity Check ==========
========== Custom Scans ==========
< %SYSTEMDRIVE%\winload.exe /s /md5 >
[2009/04/11 02:33:19 | 000,986,600 | ---- | M] (Microsoft Corporation) MD5=074DF633D8C15656560F0388AA7F6237 -- C:\Windows\System32\winload.exe
[2009/04/11 02:33:19 | 000,986,600 | ---- | M] (Microsoft Corporation) MD5=074DF633D8C15656560F0388AA7F6237 -- C:\Windows\System32\Boot\winload.exe
[2006/11/02 05:52:01 | 000,940,648 | ---- | M] (Microsoft Corporation) MD5=00D439AB54A9FEB59F94B15C03FF4277 -- C:\Windows\winsxs\x86_microsoft-windows-b..environment-windows_31bf3856ad364e35_6.0.6000.16386_none_6701d52e8fdf8d45\winload.exe
[2008/01/19 03:44:08 | 000,986,680 | ---- | M] (Microsoft Corporation) MD5=8C5CF5E594B696DEC0B6BC791EB0371A -- C:\Windows\winsxs\x86_microsoft-windows-b..environment-windows_31bf3856ad364e35_6.0.6001.18000_none_6938972a8cca9e19\winload.exe
[2008/10/22 21:08:39 | 000,988,216 | ---- | M] (Microsoft Corporation) MD5=BB82A604FCC5A930696962A27F1C9760 -- C:\Windows\winsxs\x86_microsoft-windows-b..environment-windows_31bf3856ad364e35_6.0.6001.18027_none_6929f9588cd4875c\winload.exe
[2008/10/22 21:08:38 | 000,988,216 | ---- | M] (Microsoft Corporation) MD5=B014C9768E1A7E12D7F1EA8B4294EE7E -- C:\Windows\winsxs\x86_microsoft-windows-b..environment-windows_31bf3856ad364e35_6.0.6001.22125_none_69b1958fa5f3f478\winload.exe
[2009/04/11 02:33:19 | 000,986,600 | ---- | M] (Microsoft Corporation) MD5=074DF633D8C15656560F0388AA7F6237 -- C:\Windows\winsxs\x86_microsoft-windows-b..environment-windows_31bf3856ad364e35_6.0.6002.18005_none_6b24103689ec6965\winload.exe
[2008/10/22 21:09:01 | 000,944,184 | ---- | M] (Microsoft Corporation) MD5=2FE80A1F41E18B07FC00C94EC316E164 -- C:\Windows\winsxs\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6000.16646_none_591b3d986f9b5725\winload.exe
[2008/10/22 21:09:00 | 000,944,696 | ---- | M] (Microsoft Corporation) MD5=651D59AE69715F62D7D7D9F4746B1195 -- C:\Windows\winsxs\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6000.20782_none_5975998b88dd0157\winload.exe
[2008/01/19 03:44:08 | 000,986,680 | ---- | M] (Microsoft Corporation) MD5=8C5CF5E594B696DEC0B6BC791EB0371A -- C:\Windows\winsxs\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.18000_none_5b26ba326ca6e048\winload.exe
[2008/10/22 21:08:42 | 000,988,216 | ---- | M] (Microsoft Corporation) MD5=BB82A604FCC5A930696962A27F1C9760 -- C:\Windows\winsxs\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.18027_none_5b181c606cb0c98b\winload.exe
[2008/10/22 21:08:42 | 000,988,216 | ---- | M] (Microsoft Corporation) MD5=B014C9768E1A7E12D7F1EA8B4294EE7E -- C:\Windows\winsxs\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.22125_none_5b9fb89785d036a7\winload.exe
[2009/04/11 02:33:19 | 000,986,600 | ---- | M] (Microsoft Corporation) MD5=074DF633D8C15656560F0388AA7F6237 -- C:\Windows\winsxs\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6002.18005_none_5d12333e69c8ab94\winload.exe
< %SYSTEMDRIVE%\winlogon.exe /S /md5 >
[2009/04/11 02:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe
[2006/11/02 05:45:57 | 000,308,224 | ---- | M] (Microsoft Corporation) MD5=9F75392B9128A91ABAFB044EA350BAAD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6000.16386_none_6d8c3f1ad8066b21\winlogon.exe
[2008/01/19 03:33:37 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe
[2009/04/11 02:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
< %SYSTEMDRIVE%\ntoskrnl.exe /S /md5 >
[2009/12/08 16:01:02 | 003,548,216 | ---- | M] (Microsoft Corporation) MD5=664CA09C523FAB9D01BE6C4028C1B58B -- C:\Windows\System32\ntoskrnl.exe
[2006/11/02 05:51:48 | 003,467,880 | ---- | M] (Microsoft Corporation) MD5=883D5B644BFA3DC7298D4731B13AF499 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16386_none_69f99fa4b7380194\ntoskrnl.exe
[2008/11/10 22:13:40 | 003,470,008 | ---- | M] (Microsoft Corporation) MD5=4F2488EC5D0EBFE868F47681BCF315D3 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16514_none_6a435250b701059d\ntoskrnl.exe
[2008/10/23 21:41:39 | 003,471,032 | ---- | M] (Microsoft Corporation) MD5=0E8F7801D17C7437CEE216099B975163 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16551_none_6a1511c2b724295c\ntoskrnl.exe
[2008/10/23 21:25:15 | 003,470,392 | ---- | M] (Microsoft Corporation) MD5=A0BF353A68B434F2BBFF238FEEB51486 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16584_none_69f7a2dcb739c934\ntoskrnl.exe
[2008/10/23 21:09:08 | 003,470,904 | ---- | M] (Microsoft Corporation) MD5=03279407E78F76BA1131DAB35A5E55C0 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16754_none_6a18166cb7216faf\ntoskrnl.exe
[2009/03/03 00:24:50 | 003,469,280 | ---- | M] (Microsoft Corporation) MD5=3910FE042C707E6BACD0FEC5AB9ECDE6 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16830_none_6a29b702b714cf98\ntoskrnl.exe
[2009/08/05 10:28:44 | 003,467,864 | ---- | M] (Microsoft Corporation) MD5=4765C66A89E7151626FF3545B01D2601 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16901_none_6a4b28f6b6fb9243\ntoskrnl.exe
[2009/12/08 16:54:53 | 003,467,848 | ---- | M] (Microsoft Corporation) MD5=CD2EEBFA39E742C8C066CCE09382A19B -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16973_none_6a017a16b7328888\ntoskrnl.exe
[2008/11/10 22:13:46 | 003,470,520 | ---- | M] (Microsoft Corporation) MD5=99B743BE7149970EB8D9C48FB0A41BF7 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20629_none_6ac720a1d022400b\ntoskrnl.exe
[2008/10/23 21:41:38 | 003,471,544 | ---- | M] (Microsoft Corporation) MD5=9E6991F557248A5E6E742D1081583969 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20670_none_6a880e6bd052e7b1\ntoskrnl.exe
[2008/10/23 21:25:14 | 003,471,928 | ---- | M] (Microsoft Corporation) MD5=B23072AE0FD60A2BE57FD48F81DDB5BB -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20707_none_6adac1cbd013d2a2\ntoskrnl.exe
[2008/10/23 21:09:05 | 003,472,952 | ---- | M] (Microsoft Corporation) MD5=1E09CE4D9BB7B6521FB023CAE2E55F63 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20921_none_6abf2403d0296cc8\ntoskrnl.exe
[2009/03/03 00:22:43 | 003,471,328 | ---- | M] (Microsoft Corporation) MD5=808C86316AED98716C5F305A6265F393 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21023_none_6ac0fcb9d027d2b8\ntoskrnl.exe
[2009/08/05 10:10:15 | 003,469,896 | ---- | M] (Microsoft Corporation) MD5=D8DCA438CE571DB20BD8C4915CAC0760 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21101_none_6ad49de3d019654f\ntoskrnl.exe
[2009/12/08 18:29:12 | 003,469,912 | ---- | M] (Microsoft Corporation) MD5=2972EEF8E834883EEC7C1995639341EF -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21175_none_6a8cef97d04e8e42\ntoskrnl.exe
[2008/01/19 03:43:47 | 003,548,728 | ---- | M] (Microsoft Corporation) MD5=6700F35EBA206E5C89AC27C9A124DC01 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18000_none_6c3061a0b4231268\ntoskrnl.exe
[2008/04/26 04:25:54 | 003,549,240 | ---- | M] (Microsoft Corporation) MD5=C9CD31B3CBA8134F2B47FB5E78376ACC -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18063_none_6bf282f6b4510613\ntoskrnl.exe
[2008/10/23 21:09:03 | 003,549,240 | ---- | M] (Microsoft Corporation) MD5=1FD3E8BFFD38F9B145E4B2B238B692F7 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18145_none_6c0a2548b43efe06\ntoskrnl.exe
[2009/03/03 00:46:01 | 003,547,632 | ---- | M] (Microsoft Corporation) MD5=393BB8FE05D66ABA7B091E6032179272 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18226_none_6c20c750b42ddca2\ntoskrnl.exe
[2009/08/05 10:22:41 | 003,546,184 | ---- | M] (Microsoft Corporation) MD5=5302026B0FADB0819009798D3F6BCD77 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18304_none_6c34687ab41f6f39\ntoskrnl.exe
[2009/12/08 16:52:16 | 003,546,200 | ---- | M] (Microsoft Corporation) MD5=20D040ECE9A8F578D1D938256F34B663 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18377_none_6bebb9e4b4557ed5\ntoskrnl.exe
[2008/04/26 04:11:33 | 003,549,240 | ---- | M] (Microsoft Corporation) MD5=22D444D3D88A4C299894B3638A114BF7 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22167_none_6c8020e9cd6b0b39\ntoskrnl.exe
[2008/10/23 21:09:02 | 003,549,752 | ---- | M] (Microsoft Corporation) MD5=DEA801F2D9FD1DB35ED6B9BC4A6657F1 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22269_none_6c822363cd693b0e\ntoskrnl.exe
[2009/03/03 00:37:19 | 003,548,656 | ---- | M] (Microsoft Corporation) MD5=DFF34C5D66AB4BF1EED47BF19D1267BB -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22389_none_6c6c8571cd797017\ntoskrnl.exe
[2009/08/05 13:15:59 | 003,547,736 | ---- | M] (Microsoft Corporation) MD5=3EEEDCCFB587BCB0E2DE075332498C11 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22489_none_6c6c8757cd796d3e\ntoskrnl.exe
[2009/12/08 16:36:58 | 003,548,760 | ---- | M] (Microsoft Corporation) MD5=D32E95B17477E183F6019A99BE799BA9 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22577_none_6c755895cd731bc6\ntoskrnl.exe
[2009/04/11 02:32:49 | 003,549,672 | ---- | M] (Microsoft Corporation) MD5=6798DBF3F25721637AEF5B6C69911C9C -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18005_none_6e1bdaacb144ddb4\ntoskrnl.exe
[2009/08/04 08:34:19 | 003,548,216 | ---- | M] (Microsoft Corporation) MD5=575DD16BF4C21C2F7E2BBE203AC1E957 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18082_none_6dc25a6eb1887137\ntoskrnl.exe
[2009/12/08 16:01:02 | 003,548,216 | ---- | M] (Microsoft Corporation) MD5=664CA09C523FAB9D01BE6C4028C1B58B -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18160_none_6dd5fb98b17a03ce\ntoskrnl.exe
[2009/08/05 10:10:22 | 003,548,216 | ---- | M] (Microsoft Corporation) MD5=09C5FB44F152EFF551A112C931DDE640 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22191_none_6e402703caaf139b\ntoskrnl.exe
[2009/12/08 16:14:53 | 003,550,264 | ---- | M] (Microsoft Corporation) MD5=FB82B0147B7D93379B68F8A6A5828C70 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22283_none_6e4cf969caa5277f\ntoskrnl.exe
< %SYSTEMDRIVE%\bootvid.dll /s /md5 >
[2008/01/19 03:41:34 | 000,024,120 | ---- | M] (Microsoft Corporation) MD5=F0821E18CAFC7135CCF6DE3D306E97CD -- C:\Windows\System32\BOOTVID.DLL
[2006/11/02 05:49:40 | 000,021,608 | ---- | M] (Microsoft Corporation) MD5=0768D11CC2D93AC875B3E39AB65E1E34 -- C:\Windows\winsxs\x86_microsoft-windows-bootvid_31bf3856ad364e35_6.0.6000.16386_none_3642b97d89494bc7\BOOTVID.DLL
[2008/01/19 03:41:34 | 000,024,120 | ---- | M] (Microsoft Corporation) MD5=F0821E18CAFC7135CCF6DE3D306E97CD -- C:\Windows\winsxs\x86_microsoft-windows-bootvid_31bf3856ad364e35_6.0.6001.18000_none_38797b7986345c9b\BOOTVID.DLL
< %SYSTEMDRIVE%\hal.dll /s /md5 >
[2009/04/11 02:32:46 | 000,177,128 | ---- | M] (Microsoft Corporation) MD5=B8D52005181A15D7D1470CBF2AF214DD -- C:\Windows\System32\hal.dll
< %SYSTEMDRIVE%\tpm.sys /s /md5 >
[2008/01/19 03:42:12 | 000,045,624 | ---- | M] (Microsoft Corporation) MD5=CB258C2F726F1BE73C507022BE33EBB3 -- C:\Windows\System32\DriverStore\FileRepository\tpm.inf_469d361b\tpm.sys
[2006/11/02 05:50:17 | 000,041,064 | ---- | M] (Microsoft Corporation) MD5=6D9AD3534A9CF7E4B86C6EAE8BC335F6 -- C:\Windows\System32\DriverStore\FileRepository\tpm.inf_601dc269\tpm.sys
[2008/01/19 03:42:12 | 000,045,624 | ---- | M] (Microsoft Corporation) MD5=CB258C2F726F1BE73C507022BE33EBB3 -- C:\Windows\winsxs\x86_tpm.inf_31bf3856ad364e35_6.0.6001.18000_none_ac22eb370727a62a\tpm.sys
< %SYSTEMDRIVE%\ksecdd.sys /s /md5 >
[2009/06/15 19:15:25 | 000,439,864 | ---- | M] (Microsoft Corporation) MD5=86165728AF9BF72D6442A894FDFB4F8B -- C:\Windows\System32\drivers\ksecdd.sys
[2006/11/02 05:51:38 | 000,407,144 | ---- | M] (Microsoft Corporation) MD5=11D0BC1F2AFD8ABBB5A3DC47A042DE54 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16386_none_a413c8c65fe02762\ksecdd.sys
[2006/11/02 05:51:38 | 000,407,144 | ---- | M] (Microsoft Corporation) MD5=11D0BC1F2AFD8ABBB5A3DC47A042DE54 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16820_none_a44eb0105fb4d975\ksecdd.sys
[2009/06/15 14:12:26 | 000,408,136 | ---- | M] (Microsoft Corporation) MD5=0A829977B078DEA11641FC2AF87CEADE -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\ksecdd.sys
[2006/11/02 05:51:38 | 000,407,144 | ---- | M] (Microsoft Corporation) MD5=11D0BC1F2AFD8ABBB5A3DC47A042DE54 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21010_none_a4e2f4e978ca9090\ksecdd.sys
[2009/06/15 19:20:33 | 000,408,136 | ---- | M] (Microsoft Corporation) MD5=B6FAC1FF7D4A05C06DA9E53DBF5E9E7A -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21067_none_a4b3e75378eccda6\ksecdd.sys
[2009/06/15 19:20:33 | 000,408,136 | ---- | M] (Microsoft Corporation) MD5=B6FAC1FF7D4A05C06DA9E53DBF5E9E7A -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21125_none_a4dd285578ce285b\ksecdd.sys
[2008/01/19 03:43:25 | 000,441,400 | ---- | M] (Microsoft Corporation) MD5=5367DC846CAE9639B899BFD13B97A8C9 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18000_none_a64a8ac25ccb3836\ksecdd.sys
[2008/01/19 03:43:25 | 000,441,400 | ---- | M] (Microsoft Corporation) MD5=5367DC846CAE9639B899BFD13B97A8C9 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18215_none_a644c0145ccecd28\ksecdd.sys
[2009/06/15 14:20:59 | 000,439,896 | ---- | M] (Microsoft Corporation) MD5=7A0CF7908B6824D6A2A1D313E5AE3DCA -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\ksecdd.sys
[2009/01/29 20:29:44 | 000,441,400 | ---- | M] (Microsoft Corporation) MD5=F583C418A4AF3780A288AF7A0CEE4A80 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22376_none_a68e7da1761c2def\ksecdd.sys
[2009/06/15 14:40:04 | 000,439,880 | ---- | M] (Microsoft Corporation) MD5=94A784B96BC6A15382065C48B38D2432 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22450_none_a69e1da376115b2a\ksecdd.sys
[2009/06/15 14:40:04 | 000,439,880 | ---- | M] (Microsoft Corporation) MD5=94A784B96BC6A15382065C48B38D2432 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22518_none_a6d1618975e9b345\ksecdd.sys
[2009/04/11 02:32:48 | 000,439,784 | ---- | M] (Microsoft Corporation) MD5=EA7F1D605518486269F45BD80FA00907 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18005_none_a83603ce59ed0382\ksecdd.sys
[2009/06/15 19:15:25 | 000,439,864 | ---- | M] (Microsoft Corporation) MD5=86165728AF9BF72D6442A894FDFB4F8B -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\ksecdd.sys
[2009/06/15 17:17:42 | 000,439,880 | ---- | M] (Microsoft Corporation) MD5=BD3D6E0E3346DB5C2E725326843AE289 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22152_none_a886901f7335e2fc\ksecdd.sys
[2009/06/15 17:17:42 | 000,439,880 | ---- | M] (Microsoft Corporation) MD5=BD3D6E0E3346DB5C2E725326843AE289 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22223_none_a8a80213731ca5a7\ksecdd.sys
< %SYSTEMDRIVE%\clfs.sys /s /md5 >
[2009/04/11 02:32:46 | 000,245,736 | ---- | M] (Microsoft Corporation) MD5=D7659D3B5B92C31E84E53C1431F35132 -- C:\Windows\System32\clfs.sys
[2006/11/02 05:51:25 | 000,221,800 | ---- | M] (Microsoft Corporation) MD5=51B4B82560E49C415AE5B1337D635C3F -- C:\Windows\winsxs\x86_microsoft-windows-commonlog_31bf3856ad364e35_6.0.6000.16386_none_7c4bd8b12aa0f521\clfs.sys
[2008/10/22 21:08:58 | 000,224,824 | ---- | M] (Microsoft Corporation) MD5=1B84FD0937D3B99AF9BA38DDFF3DAF54 -- C:\Windows\winsxs\x86_microsoft-windows-commonlog_31bf3856ad364e35_6.0.6000.16609_none_7ca55ea12a5d5913\clfs.sys
[2008/10/22 21:08:58 | 000,224,824 | ---- | M] (Microsoft Corporation) MD5=8DA2B3C19FD4853A48F4D90390F8A94C -- C:\Windows\winsxs\x86_microsoft-windows-commonlog_31bf3856ad364e35_6.0.6000.20734_none_7d098a364397cdfd\clfs.sys
[2008/01/19 03:42:58 | 000,247,352 | ---- | M] (Microsoft Corporation) MD5=465745561C832B29F7C48B488AAB3842 -- C:\Windows\winsxs\x86_microsoft-windows-commonlog_31bf3856ad364e35_6.0.6001.18000_none_7e829aad278c05f5\clfs.sys
[2009/04/11 02:32:46 | 000,245,736 | ---- | M] (Microsoft Corporation) MD5=D7659D3B5B92C31E84E53C1431F35132 -- C:\Windows\winsxs\x86_microsoft-windows-commonlog_31bf3856ad364e35_6.0.6002.18005_none_806e13b924add141\clfs.sys
< %SYSTEMDRIVE%\ci.dll /s /md5 >
[2009/04/11 02:33:02 | 000,614,376 | ---- | M] (Microsoft Corporation) MD5=22F73612087430A94DBE912AB58E0C79 -- C:\Windows\System32\ci.dll
[2006/11/02 05:51:44 | 000,615,528 | ---- | M] (Microsoft Corporation) MD5=FC98035D5F751E7CD67841917105E8FA -- C:\Windows\winsxs\x86_microsoft-windows-codeintegrity_31bf3856ad364e35_6.0.6000.16386_none_9e412f4207d4d372\ci.dll
[2008/10/22 21:09:00 | 000,620,088 | ---- | M] (Microsoft Corporation) MD5=8356A02DD1B2783987134FDF8B71633F -- C:\Windows\winsxs\x86_microsoft-windows-codeintegrity_31bf3856ad364e35_6.0.6000.16642_none_9e68737c07b7f5c7\ci.dll
[2008/10/22 21:08:59 | 000,620,088 | ---- | M] (Microsoft Corporation) MD5=3036739D51AFA5269CA90F639BE8BCF4 -- C:\Windows\winsxs\x86_microsoft-windows-codeintegrity_31bf3856ad364e35_6.0.6000.20775_none_9ed4a16120eb3569\ci.dll
[2008/01/19 03:43:38 | 000,614,968 | ---- | M] (Microsoft Corporation) MD5=3306EBD850AFD024CAB46EA74E5E9B2F -- C:\Windows\winsxs\x86_microsoft-windows-codeintegrity_31bf3856ad364e35_6.0.6001.18000_none_a077f13e04bfe446\ci.dll
[2008/10/22 21:08:38 | 000,615,992 | ---- | M] (Microsoft Corporation) MD5=F935DF6F39BC274DEA31BA84071ED89D -- C:\Windows\winsxs\x86_microsoft-windows-codeintegrity_31bf3856ad364e35_6.0.6001.18023_none_a065524404cd682d\ci.dll
[2008/10/22 21:08:37 | 000,615,992 | ---- | M] (Microsoft Corporation) MD5=E87980ED14B617354EF392A84E7DC224 -- C:\Windows\winsxs\x86_microsoft-windows-codeintegrity_31bf3856ad364e35_6.0.6001.22120_none_a0ebee311dedbbf2\ci.dll
[2009/04/11 02:33:02 | 000,614,376 | ---- | M] (Microsoft Corporation) MD5=22F73612087430A94DBE912AB58E0C79 -- C:\Windows\winsxs\x86_microsoft-windows-codeintegrity_31bf3856ad364e35_6.0.6002.18005_none_a2636a4a01e1af92\ci.dll
< %SYSTEMDRIVE%\kdcom.dll /s /md5 >
[2009/04/11 02:32:26 | 000,017,384 | ---- | M] (Microsoft Corporation) MD5=48E083898FE5611006725796B055011B -- C:\Windows\System32\kdcom.dll
[2006/11/02 05:49:30 | 000,017,000 | ---- | M] (Microsoft Corporation) MD5=A0B182998EEAB02D739A57384637E5E0 -- C:\Windows\winsxs\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.0.6000.16386_none_0f7ecb22afbfde41\kdcom.dll
[2008/01/19 03:41:25 | 000,019,512 | ---- | M] (Microsoft Corporation) MD5=12AC40A1E551A07A121551AA66B9E32E -- C:\Windows\winsxs\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.0.6001.18000_none_11b58d1eacaaef15\kdcom.dll
[2009/04/11 02:32:26 | 000,017,384 | ---- | M] (Microsoft Corporation) MD5=48E083898FE5611006725796B055011B -- C:\Windows\winsxs\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.0.6002.18005_none_13a1062aa9ccba61\kdcom.dll
< %SYSTEMDRIVE%\kdusb.dll /s /md5 >
[2009/04/11 02:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=FC9EF8CC90B8524FA0FC8526FF9F9C2F -- C:\Windows\System32\kdusb.dll
[2006/11/02 05:49:37 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=6935803FCEBA91D03B1B5D83C8190EB5 -- C:\Windows\winsxs\x86_microsoft-windows-b..buggertransport-usb_31bf3856ad364e35_6.0.6000.16386_none_9b46e79f0d9c56ff\kdusb.dll
[2008/01/19 03:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=F2425B21257F0968CA09DB79677E8B3E -- C:\Windows\winsxs\x86_microsoft-windows-b..buggertransport-usb_31bf3856ad364e35_6.0.6001.18000_none_9d7da99b0a8767d3\kdusb.dll
[2009/04/11 02:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=FC9EF8CC90B8524FA0FC8526FF9F9C2F -- C:\Windows\winsxs\x86_microsoft-windows-b..buggertransport-usb_31bf3856ad364e35_6.0.6002.18005_none_9f6922a707a9331f\kdusb.dll
< %SYSTEMDRIVE%\kd1394.dll /s /md5 >
[2009/04/11 02:32:27 | 000,017,896 | ---- | M] (Microsoft Corporation) MD5=CF9BA9125C32978B33A1E6D5D34A2884 -- C:\Windows\System32\kd1394.dll
[2006/11/02 04:30:44 | 000,008,704 | ---- | M] (Microsoft Corporation) MD5=20BF823A6237FA1CDBC46D5B1AEB77B1 -- C:\Windows\winsxs\x86_microsoft-windows-b..uggertransport-1394_31bf3856ad364e35_6.0.6000.16386_none_61949536f6f76e24\kd1394.dll
[2008/10/22 21:09:02 | 000,019,000 | ---- | M] (Microsoft Corporation) MD5=FD308A87619907BC3DA390A4FFA2D874 -- C:\Windows\winsxs\x86_microsoft-windows-b..uggertransport-1394_31bf3856ad364e35_6.0.6000.16646_none_61bfda98f6d6f5d5\kd1394.dll
[2008/10/22 21:09:02 | 000,019,000 | ---- | M] (Microsoft Corporation) MD5=C71A8334ED1C6DDF9F9711EDCC978EB1 -- C:\Windows\winsxs\x86_microsoft-windows-b..uggertransport-1394_31bf3856ad364e35_6.0.6000.20782_none_621a368c1018a007\kd1394.dll
[2008/01/19 01:27:55 | 000,008,704 | ---- | M] (Microsoft Corporation) MD5=950E6E5FA4A22FE862A58A0BA521146C -- C:\Windows\winsxs\x86_microsoft-windows-b..uggertransport-1394_31bf3856ad364e35_6.0.6001.18000_none_63cb5732f3e27ef8\kd1394.dll
[2008/10/22 21:08:40 | 000,019,000 | ---- | M] (Microsoft Corporation) MD5=5EDD3BE18A80158E1CDD70E9721B614E -- C:\Windows\winsxs\x86_microsoft-windows-b..uggertransport-1394_31bf3856ad364e35_6.0.6001.18027_none_63bcb960f3ec683b\kd1394.dll
[2008/10/22 21:08:40 | 000,019,000 | ---- | M] (Microsoft Corporation) MD5=35D0F68095E985B6B0A06C90D7D1572B -- C:\Windows\winsxs\x86_microsoft-windows-b..uggertransport-1394_31bf3856ad364e35_6.0.6001.22125_none_644455980d0bd557\kd1394.dll
[2009/04/11 02:32:27 | 000,017,896 | ---- | M] (Microsoft Corporation) MD5=CF9BA9125C32978B33A1E6D5D34A2884 -- C:\Windows\winsxs\x86_microsoft-windows-b..uggertransport-1394_31bf3856ad364e35_6.0.6002.18005_none_65b6d03ef1044a44\kd1394.dll
< %SYSTEMDRIVE%\spldr.sys /s /md5 >
[2008/01/19 03:41:30 | 000,021,048 | ---- | M] (Microsoft Corporation) MD5=7AEBDEEF071FE28B0EEF2CDD69102BFF -- C:\Windows\System32\drivers\spldr.sys
[2006/11/02 05:49:35 | 000,018,536 | ---- | M] (Microsoft Corporation) MD5=426F9B029AA9162CECCF65369457D046 -- C:\Windows\winsxs\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6000.16386_none_68fc663d5430d3de\spldr.sys
[2008/01/19 03:41:30 | 000,021,048 | ---- | M] (Microsoft Corporation) MD5=7AEBDEEF071FE28B0EEF2CDD69102BFF -- C:\Windows\winsxs\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6001.18000_none_6b332839511be4b2\spldr.sys
< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\ /s >
"ReportBootOk" = 1
"Shell" = explorer.exe -- [2009/04/11 02:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation)
"Userinit" = C:\Windows\system32\userinit.exe, -- File not found
"VmApplet" = rundll32 shell32,Control_RunDLL "sysdm.cpl" -- [2008/01/19 03:32:57 | 000,242,688 | ---- | M] (Microsoft Corporation)
"AutoRestartShell" = 1
"LegalNoticeCaption" =
"LegalNoticeText" =
"PowerdownAfterShutdown" = 0
"ShutdownWithoutLogon" = 0
"cachedlogonscount" = 10
"forceunlocklogon" = 0
"passwordexpirywarning" = 14
"Background" = 0 0 0
"DebugServerCommand" = no
"WinStationsDisabled" = 0
"DisableCAD" = 1
"scremoveoption" = 0
"ShutdownFlags" = 39
"AutoAdminLogon" = 0
"SFCDisable" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{0ACDD40C-75AC-47ab-BAA0-BF6DE7E7FE63}]
"" = Wireless Group Policy
"DisplayName" = @wlgpclnt.dll,-100
"ProcessGroupPolicyEx" = ProcessWLANPolicyEx
"GenerateGroupPolicy" = GenerateWLANPolicy
"DllName" = wlgpclnt.dll -- [2009/04/11 02:28:25 | 000,083,456 | ---- | M] (Microsoft Corporation)
"NoUserPolicy" = 1
"NoGPOListChanges" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{25537BA6-77A8-11D2-9B6C-0000F8080861}]
"" = Folder Redirection
"ProcessGroupPolicyEx" = ProcessGroupPolicyEx
"DllName" = fdeploy.dll -- [2009/04/11 02:28:19 | 000,053,760 | ---- | M] (Microsoft Corporation)
"NoMachinePolicy" = 1
"NoSlowLink" = 1
"PerUserLocalSettings" = 1
"NoGPOListChanges" = 0
"NoBackgroundPolicy" = 0
"GenerateGroupPolicy" = GenerateGroupPolicy
"EventSources" = (Folder Redirection,Application) [binary data]
"DisplayName" = @fdeploy.dll,-261
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{3610eda5-77ef-11d2-8dc5-00c04fa31a66}]
"" = Microsoft Disk Quota -- [2006/11/02 08:45:01 | 000,000,000 | --SD | M]
"DisplayName" = @%SystemRoot%\System32\dskquota.dll,-100
"NoMachinePolicy" = 0
"NoUserPolicy" = 1
"NoSlowLink" = 1
"NoBackgroundPolicy" = 1
"NoGPOListChanges" = 1
"PerUserLocalSettings" = 0
"RequiresSuccessfulRegistry" = 1
"EnableAsynchronousProcessing" = 0
"DllName" = %SystemRoot%\System32\dskquota.dll -- [2008/01/19 03:34:06 | 000,086,528 | ---- | M] (Microsoft Corporation)
"ProcessGroupPolicy" = ProcessGroupPolicy
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{426031c0-0b47-4852-b0ca-ac3d37bfcb39}]
"" = QoS Packet Scheduler
"DisplayName" = @gptext.dll,-201
"ProcessGroupPolicy" = ProcessPSCHEDPolicy
"DllName" = gptext.dll -- [2006/11/02 05:46:05 | 000,016,896 | ---- | M] (Microsoft Corporation)
"NoUserPolicy" = 1
"NoGPOListChanges" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{4CFB60C1-FAA6-47f1-89AA-0B18730C9FD3}]
"ProcessGroupPolicy" = ProcessGroupPolicyForZoneMap
"DllName" = C:\Windows\System32\iedkcs32.dll -- [2010/01/02 02:32:26 | 000,387,584 | ---- | M] (Microsoft Corporation)
"" = Internet Explorer Zonemapping
"NoGPOListChanges" = 1
"DisplayName" = @C:\Windows\System32\iedkcs32.dll,-3051
"RequiresSuccessfulRegistry" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{7933F41E-56F8-41d6-A31C-4148A711EE93}]
"" = Windows Search Group Policy Extension
"DllName" = %SystemRoot%\System32\srchadmin.dll -- [2009/04/11 02:28:24 | 000,301,568 | ---- | M] (Microsoft Corporation)
"EnableAsynchronousProcessing" = 1
"NoBackgroundPolicy" = 0
"NoGPOListChanges" = 1
"NoMachinePolicy" = 0
"NoSlowLink" = 0
"NoUserPolicy" = 0
"PerUserLocalSettings" = 0
"ProcessGroupPolicy" = ProcessGroupPolicy
"RequiresSuccessfulRegistry" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{7B849a69-220F-451E-B3FE-2CB811AF94AE}]
"" = Internet Explorer User Accelerators
"ProcessGroupPolicy" = ProcessGroupPolicyForActivities
"DllName" = C:\Windows\System32\iedkcs32.dll -- [2010/01/02 02:32:26 | 000,387,584 | ---- | M] (Microsoft Corporation)
"RequiresSuccessfulRegistry" = 1
"ProcessGroupPolicyEx" = ProcessGroupPolicyForActivitiesEx
"NoGPOListChanges" = 1
"DisplayName" = @C:\Windows\System32\iedkcs32.dll,-3051
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{827D319E-6EAC-11D2-A4EA-00C04F79F83A}]
"" = Security -- [2006/11/02 05:43:08 | 000,005,120 | ---- | M] (Microsoft Corporation)
"DisplayName" = @(runtime.system32)\scecli.dll,-7650
"ProcessGroupPolicy" = SceProcessSecurityPolicyGPO
"GenerateGroupPolicy" = SceGenerateGroupPolicy
"ExtensionRsopPlanningDebugLevel" = 1
"ProcessGroupPolicyEx" = SceProcessSecurityPolicyGPOEx
"ExtensionDebugLevel" = 1
"DllName" = scecli.dll -- [2009/04/11 02:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation)
"NoUserPolicy" = 1
"NoGPOListChanges" = 1
"EnableAsynchronousProcessing" = 1
"MaxNoGPOListChangesInterval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{A2E30F80-D7DE-11d2-BBDE-00C04F86AE3B}]
"ProcessGroupPolicyEx" = ProcessGroupPolicyEx
"GenerateGroupPolicy" = GenerateGroupPolicy
"ProcessGroupPolicy" = ProcessGroupPolicy
"DllName" = C:\Windows\System32\iedkcs32.dll -- [2010/01/02 02:32:26 | 000,387,584 | ---- | M] (Microsoft Corporation)
"" = Internet Explorer Branding
"NoSlowLink" = 1
"NoBackgroundPolicy" = 0
"NoGPOListChanges" = 1
"NoMachinePolicy" = 1
"DisplayName" = @C:\Windows\System32\iedkcs32.dll,-3014
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{B1BE8D72-6EAC-11D2-A4EA-00C04F79F83A}]
"ProcessGroupPolicy" = SceProcessEFSRecoveryGPO
"DllName" = scecli.dll -- [2009/04/11 02:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation)
"" = EFS recovery
"DisplayName" = @(runtime.system32)\scecli.dll,-7651
"NoUserPolicy" = 1
"NoGPOListChanges" = 1
"RequiresSuccessfulRegistry" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{B587E2B1-4D59-4e7e-AED9-22B9DF11D053}]
"" = 802.3 Group Policy
"DisplayName" = @dot3gpclnt.dll,-100
"ProcessGroupPolicyEx" = ProcessLANPolicyEx
"GenerateGroupPolicy" = GenerateLANPolicy
"DllName" = dot3gpclnt.dll -- [2008/01/19 03:34:05 | 000,043,008 | ---- | M] (Microsoft Corporation)
"NoUserPolicy" = 1
"NoGPOListChanges" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}]
"" = Internet Explorer Machine Accelerators
"ProcessGroupPolicy" = ProcessGroupPolicyForActivities
"DllName" = C:\Windows\System32\iedkcs32.dll -- [2010/01/02 02:32:26 | 000,387,584 | ---- | M] (Microsoft Corporation)
"RequiresSuccessfulRegistry" = 1
"ProcessGroupPolicyEx" = ProcessGroupPolicyForActivitiesEx
"NoGPOListChanges" = 1
"DisplayName" = @C:\Windows\System32\iedkcs32.dll,-3051
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{e437bc1c-aa7d-11d2-a382-00c04f991e27}]
"" = IP Security
"ProcessGroupPolicyEx" = ProcessIPSECPolicyEx
"GenerateGroupPolicy" = GenerateIPSECPolicy
"DllName" = %SystemRoot%\System32\polstore.dll -- [2008/10/23 21:44:21 | 000,272,896 | ---- | M] (Microsoft Corporation)
"NoUserPolicy" = 1
"NoGPOListChanges" = 0
"DisplayName" = @C:\Windows\system32\polstore.dll,-5012
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{FB2CA36D-0B40-4307-821B-A13B252DE56C}]
"" = Enterprise QoS
"DisplayName" = @gptext.dll,-203
"ProcessGroupPolicy" = ProcessEQoSPolicy
"DllName" = gptext.dll -- [2006/11/02 05:46:05 | 000,016,896 | ---- | M] (Microsoft Corporation)
"RequiresSuccessfulRegistry" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\AutoLogonChecked]
========== Alternate Data Streams ==========
@Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:B623B5B8
@Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:7F66BF58
@Alternate Data Stream - 100 bytes -> C:\ProgramData\TEMP:ADF211B1
< End of report >
OTL by OldTimer - Version 3.2.1.3 Folder = C:\Windows\system32\config\systemprofile\Downloads
Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18882)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 51,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 73,00% Paging File free
Paging file location(s): c:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 149,05 Gb Total Space | 55,17 Gb Free Space | 37,02% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: PC-DE-USER
Current User Name: USER
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Minimal
Quick Scan
========== Processes (SafeList) ==========
PRC - C:\Windows\System32\config\systemprofile\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
PRC - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation)
PRC - C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
PRC - C:\Program Files\VIA\VIAudioi\VistaADeck\HDAudioCPL.exe (VIA.)
PRC - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe (Rocket Division Software)
PRC - C:\Windows\System32\s3trayp.exe (S3 Graphics Co., Ltd.)
PRC - C:\Windows\vsnpstd3.exe ()
PRC - C:\Windows\tsnpstd3.exe ()
PRC - C:\Windows\FixCamera.exe ()
========== Modules (SafeList) ==========
MOD - C:\Windows\System32\config\systemprofile\Downloads\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll (Microsoft Corporation)
========== Win32 Services (SafeList) ==========
SRV - (CLTNetCnService) -- File not found
SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
SRV - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
SRV - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
SRV - (aswUpdSv) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation)
SRV - (WinHttpAutoProxySvc) -- winhttp.dll (Microsoft Corporation)
SRV - (fsssvc) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe (Microsoft Corporation)
SRV - (SeaPort) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV - (StarWindServiceAE) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe (Rocket Division Software)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/av ... x_homepage
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 64 1F 7B 00 03 14 E6 41 80 CC 16 A6 78 7C A6 76 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..extensions.enabledItems: {9CE11043-9A15-4207-A565-0C94C42D590D}:2.0
FF - prefs.js..extensions.enabledItems: {f3c12911-3343-c59a-8c82-74b377b2737f}:4.6.6.7
FF - prefs.js..extensions.enabledItems: treestyletab@piro.sakura.ne.jp:0.10.2010040201
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/04/19 19:55:53 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/04/17 15:30:08 | 000,000,000 | ---D | M]
[2010/04/19 20:22:18 | 000,000,000 | ---D | M] -- C:\Windows\System32\config\systemprofile\AppData\Roaming\Mozilla\Extensions
[2010/04/21 09:09:17 | 000,000,000 | ---D | M] -- C:\Windows\System32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\hsscauah.default\extensions
[2010/04/21 09:09:17 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Windows\System32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\hsscauah.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2010/04/19 21:44:50 | 000,000,000 | ---D | M] -- C:\Windows\System32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\hsscauah.default\extensions\treestyletab@piro.sakura.ne.jp
[2010/04/21 09:09:00 | 000,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2008/12/12 19:02:02 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Program Files\mozilla firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2010/03/29 01:48:12 | 000,000,000 | ---D | M] (Firefox security) -- C:\Program Files\mozilla firefox\extensions\{9CE11043-9A15-4207-A565-0C94C42D590D}
[2010/04/15 12:36:44 | 000,000,000 | ---D | M] (LoudMo Contextual Ad Assistant) -- C:\Program Files\mozilla firefox\extensions\{f3c12911-3343-c59a-8c82-74b377b2737f}
[2006/09/26 06:03:14 | 000,098,304 | ---- | M] (Zylom) -- C:\Program Files\mozilla firefox\plugins\npzylomgamesplayer.dll
[2010/04/01 13:07:29 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2010/04/01 13:07:29 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2010/04/01 13:07:29 | 000,000,757 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2010/04/01 13:07:29 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2010/04/01 13:07:29 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml
O1 HOSTS File: ([2006/09/18 17:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O4 - HKLM..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [ezLife] File not found
O4 - HKLM..\Run: [FixCamera] C:\Windows\FixCamera.exe ()
O4 - HKLM..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\VistaADeck\HDAudioCPL.exe (VIA.)
O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (Macrovision Corporation)
O4 - HKLM..\Run: [S3Trayp] C:\Windows\System32\s3trayp.exe (S3 Graphics Co., Ltd.)
O4 - HKLM..\Run: [snpstd3] C:\Windows\vsnpstd3.exe ()
O4 - HKLM..\Run: [tsnpstd3] C:\Windows\tsnpstd3.exe ()
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [zpkulydleetxdhle] C:\Windows\System32\aknqvjjjggvqx.dll File not found
O4 - HKLM..\RunOnce: [NSSInstallation] C:\Program Files\DivX\Symantec\scstubinstaller.exe (Symantec Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 255
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\Yinsthelper.dll (Installation Support)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter\x-sdch {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.)
O20 - AppInit_DLLs: (c:\windows\system32\dnssd32.dll) - C:\Windows\System32\dnssd32.dll File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img24.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img24.jpg
O29 - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/03/24 01:08:42 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ]
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 14 Days ==========
[2010/04/21 07:39:59 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\AppData\Roaming\HpUpdate
[2010/04/21 07:33:49 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\AppData\Roaming\Identities
[2010/04/20 23:03:53 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\AppData\Roaming\WinRAR
[2010/04/20 19:45:21 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\AppData\Roaming\vlc
[2010/04/20 18:29:52 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\AppData\Local\Adobe
[2010/04/20 16:29:26 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\AppData\Roaming\DivX
[2010/04/19 21:58:16 | 000,000,000 | -HSD | C] -- C:\Windows\System32\%APPDATA%
[2010/04/19 21:45:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\Tracing
[2010/04/19 20:51:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\AppData\Roaming\Macromedia
[2010/04/19 20:51:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\AppData\Roaming\Adobe
[2010/04/19 20:22:37 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\AppData\Local\Temp
[2010/04/19 20:22:04 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\AppData\Roaming\Mozilla
[2010/04/19 20:22:04 | 000,000,000 | ---D | C] -- C:\Windows\System32\config\systemprofile\AppData\Local\Mozilla
[2010/04/19 19:55:52 | 000,000,000 | ---D | C] -- C:\_OTL
[2010/04/17 20:40:53 | 000,000,000 | ---D | C] -- C:\Program Files\Laura Jones and the Gates of Good and Evil
[2010/04/17 20:29:12 | 000,000,000 | ---D | C] -- C:\Program Files\bfgclient
[2010/04/17 15:25:25 | 000,000,000 | ---D | C] -- C:\ProgramData\DivX
[2010/04/14 13:38:41 | 000,000,000 | ---D | C] -- C:\$WINDOWS.~LS
[2010/04/14 13:37:39 | 000,000,000 | ---D | C] -- C:\$WINDOWS.~BT
[2008/12/18 13:12:39 | 000,172,032 | ---- | C] ( ) -- C:\Windows\System32\rsnpstd3.dll
[2008/12/18 13:12:39 | 000,057,344 | ---- | C] ( ) -- C:\Windows\System32\vsnpstd3.dll
[2008/12/18 13:12:38 | 000,053,248 | ---- | C] ( ) -- C:\Windows\System32\csnpstd3.dll
[2008/12/18 13:12:38 | 000,053,248 | ---- | C] ( ) -- C:\Windows\csnpstd3.dll
========== Files - Modified Within 14 Days ==========
[2010/04/21 09:30:59 | 000,003,648 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010/04/21 09:30:59 | 000,003,648 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010/04/21 09:09:34 | 000,007,168 | ---- | M] () -- C:\Windows\system32\config\systemprofile\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/04/21 08:45:55 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/04/21 07:33:29 | 000,001,838 | ---- | M] () -- C:\Windows\system32\config\systemprofile\Desktop\Install_NSS.lnk
[2010/04/21 07:33:29 | 000,000,362 | ---- | M] () -- C:\Windows\tasks\Install_NSS.job
[2010/04/20 23:53:44 | 000,002,032 | ---- | M] () -- C:\Windows\system32\config\systemprofile\AppData\Local\d3d9caps.dat
[2010/04/20 16:09:34 | 000,008,012 | ---- | M] () -- C:\2187 - Pokemon - Version Emeraude (F).clt
[2010/04/19 21:45:06 | 000,108,768 | ---- | M] () -- C:\Windows\system32\config\systemprofile\AppData\Local\GDIPFONTCACHEV1.DAT
[2010/04/19 20:15:12 | 000,399,928 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010/04/18 18:19:10 | 003,467,376 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2010/04/18 18:19:10 | 001,476,972 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010/04/18 18:19:10 | 001,084,950 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2010/04/18 18:19:10 | 000,955,716 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010/04/18 18:19:10 | 000,004,926 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010/04/18 00:44:56 | 000,021,840 | ---- | M] () -- C:\Windows\System32\SIntfNT.dll
[2010/04/18 00:44:56 | 000,017,212 | ---- | M] () -- C:\Windows\System32\SIntf32.dll
[2010/04/18 00:44:56 | 000,012,067 | ---- | M] () -- C:\Windows\System32\SIntf16.dll
[2010/04/17 20:41:08 | 000,001,990 | ---- | M] () -- C:\Users\Public\Desktop\Jouer à Laura Jones and the Gates of Good and Evil.lnk
[2010/04/17 20:41:08 | 000,001,250 | ---- | M] () -- C:\Users\Public\Desktop\Encore plus de jeux.lnk
[2010/04/17 20:29:13 | 000,001,700 | ---- | M] () -- C:\Users\Public\Desktop\Game Manager.lnk
[2010/04/17 15:29:14 | 000,000,917 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
[2010/04/17 15:28:31 | 000,000,957 | ---- | M] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
[2010/04/15 13:03:47 | 000,524,288 | -HS- | M] () -- C:\Windows\system32\config\systemprofile\ntuser.dat{be3ce39b-7a5b-11da-96a4-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms
[2010/04/15 13:03:47 | 000,262,144 | ---- | M] () -- C:\Windows\system32\config\systemprofile\ntuser.dat
[2010/04/15 13:03:47 | 000,065,536 | -HS- | M] () -- C:\Windows\system32\config\systemprofile\ntuser.dat{be3ce39b-7a5b-11da-96a4-806e6f6e6963}.TM.blf
[2010/04/15 12:51:46 | 000,001,724 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010/04/14 18:10:00 | 000,000,416 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{334A4BE3-F41F-44AD-887E-AFD029110187}.job
[2010/04/14 18:10:00 | 000,000,400 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{000EE505-DF96-49B3-A96A-C4275A922361}.job
[2010/04/14 17:36:06 | 000,001,054 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010/04/14 14:40:44 | 000,001,050 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010/04/14 14:40:44 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/04/14 14:06:11 | 000,012,288 | ---- | M] () -- C:\Windows\System32\umstartup000.etl
[2010/04/14 14:04:28 | 000,001,905 | ---- | M] () -- C:\Windows\diagwrn.xml
[2010/04/14 14:04:28 | 000,001,905 | ---- | M] () -- C:\Windows\diagerr.xml
[2010/04/14 13:01:34 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
========== Files Created - No Company Name ==========
[2010/04/21 07:33:29 | 000,001,838 | ---- | C] () -- C:\Windows\system32\config\systemprofile\Desktop\Install_NSS.lnk
[2010/04/20 16:29:25 | 000,007,168 | ---- | C] () -- C:\Windows\System32\config\systemprofile\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/04/17 20:41:08 | 000,001,990 | ---- | C] () -- C:\Users\Public\Desktop\Jouer à Laura Jones and the Gates of Good and Evil.lnk
[2010/04/17 20:29:13 | 000,001,700 | ---- | C] () -- C:\Users\Public\Desktop\Game Manager.lnk
[2010/04/17 20:29:12 | 000,001,250 | ---- | C] () -- C:\Users\Public\Desktop\Encore plus de jeux.lnk
[2010/04/17 15:29:14 | 000,000,917 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Player.lnk
[2010/04/17 15:28:31 | 000,000,957 | ---- | C] () -- C:\Users\Public\Desktop\DivX Plus Converter.lnk
[2010/04/17 15:26:36 | 000,000,362 | ---- | C] () -- C:\Windows\tasks\Install_NSS.job
[2010/04/15 16:18:27 | 000,008,012 | ---- | C] () -- C:\2187 - Pokemon - Version Emeraude (F).clt
[2010/04/14 14:06:11 | 000,012,288 | ---- | C] () -- C:\Windows\System32\umstartup000.etl
[2010/04/14 12:46:28 | 000,000,400 | -H-- | C] () -- C:\Windows\tasks\User_Feed_Synchronization-{000EE505-DF96-49B3-A96A-C4275A922361}.job
[2010/03/24 14:58:48 | 000,203,776 | -HS- | C] () -- C:\ProgramData\unrar.exe
[2009/09/30 10:08:42 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/08/18 09:05:34 | 000,000,040 | ---- | C] () -- C:\Windows\NAVIGMA.INI
[2009/08/04 07:20:06 | 000,000,026 | ---- | C] () -- C:\Windows\System32\satsukidecodersettings.ini
[2009/02/03 08:05:01 | 000,717,296 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2009/01/15 08:59:55 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2008/12/18 13:12:41 | 000,015,498 | ---- | C] () -- C:\Windows\snpstd3.ini
[2008/12/01 11:20:09 | 000,000,079 | ---- | C] () -- C:\Windows\few-oneclick-repertoire.ini
[2008/12/01 11:19:57 | 000,000,079 | ---- | C] () -- C:\Windows\few-repertoire-1024.ini
[2008/11/30 22:23:06 | 000,058,792 | ---- | C] () -- C:\Windows\System32\wbload.dll
[2008/11/21 02:51:05 | 000,000,064 | ---- | C] () -- C:\Windows\yesmessenger.ini
[2008/11/08 21:36:04 | 000,043,520 | ---- | C] () -- C:\Windows\System32\CmdLineExt03.dll
[2008/10/28 12:23:40 | 000,021,840 | ---- | C] () -- C:\Windows\System32\SIntfNT.dll
[2008/10/28 12:23:40 | 000,017,212 | ---- | C] () -- C:\Windows\System32\SIntf32.dll
[2008/10/28 12:23:40 | 000,012,067 | ---- | C] () -- C:\Windows\System32\SIntf16.dll
[2008/10/22 09:03:28 | 000,003,660 | ---- | C] () -- C:\ProgramData\hpzinstall.log
[2008/03/05 09:28:28 | 000,286,208 | ---- | C] () -- C:\Windows\System32\cncs232.dll
[2007/07/23 09:03:32 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelTraditionalChinese.dll
[2007/07/23 09:03:32 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelSwedish.dll
[2007/07/23 09:03:32 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelSpanish.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelSimplifiedChinese.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelPortugese.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelKorean.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelJapanese.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelGerman.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelFrench.dll
[2006/11/02 11:19:49 | 000,001,024 | -H-- | C] () -- C:\Windows\System32\config\systemprofile\ntuser.dat.LOG
[2006/11/02 08:59:50 | 000,002,032 | ---- | C] () -- C:\Windows\System32\config\systemprofile\AppData\Local\d3d9caps.dat
[2006/11/02 08:40:55 | 000,262,144 | -H-- | C] () -- C:\Windows\System32\config\systemprofile\ntuser.dat.LOG1
[2006/11/02 08:40:55 | 000,262,144 | ---- | C] () -- C:\Windows\System32\config\systemprofile\ntuser.dat
[2006/11/02 08:40:55 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\config\systemprofile\ntuser.dat.LOG2
[2006/11/02 03:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/01/01 11:51:22 | 000,069,632 | ---- | C] () -- C:\Windows\System32\vuins32.dll
[2006/01/01 11:51:21 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2005/12/31 20:15:58 | 000,524,288 | -HS- | C] () -- C:\Windows\System32\config\systemprofile\ntuser.dat{be3ce39b-7a5b-11da-96a4-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms
[2005/12/31 20:15:58 | 000,524,288 | -HS- | C] () -- C:\Windows\System32\config\systemprofile\ntuser.dat{be3ce39b-7a5b-11da-96a4-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms
[2005/12/31 20:15:58 | 000,065,536 | -HS- | C] () -- C:\Windows\System32\config\systemprofile\ntuser.dat{be3ce39b-7a5b-11da-96a4-806e6f6e6963}.TM.blf
[1999/01/22 08:46:58 | 000,065,536 | ---- | C] () -- C:\Windows\System32\MSRTEDIT.DLL
========== LOP Check ==========
[2010/04/21 07:33:29 | 000,000,362 | ---- | M] () -- C:\Windows\Tasks\Install_NSS.job
[2010/04/14 13:01:34 | 000,032,572 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2010/04/14 18:10:00 | 000,000,400 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{000EE505-DF96-49B3-A96A-C4275A922361}.job
[2010/04/14 18:10:00 | 000,000,416 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{334A4BE3-F41F-44AD-887E-AFD029110187}.job
========== Purity Check ==========
========== Custom Scans ==========
< %SYSTEMDRIVE%\winload.exe /s /md5 >
[2009/04/11 02:33:19 | 000,986,600 | ---- | M] (Microsoft Corporation) MD5=074DF633D8C15656560F0388AA7F6237 -- C:\Windows\System32\winload.exe
[2009/04/11 02:33:19 | 000,986,600 | ---- | M] (Microsoft Corporation) MD5=074DF633D8C15656560F0388AA7F6237 -- C:\Windows\System32\Boot\winload.exe
[2006/11/02 05:52:01 | 000,940,648 | ---- | M] (Microsoft Corporation) MD5=00D439AB54A9FEB59F94B15C03FF4277 -- C:\Windows\winsxs\x86_microsoft-windows-b..environment-windows_31bf3856ad364e35_6.0.6000.16386_none_6701d52e8fdf8d45\winload.exe
[2008/01/19 03:44:08 | 000,986,680 | ---- | M] (Microsoft Corporation) MD5=8C5CF5E594B696DEC0B6BC791EB0371A -- C:\Windows\winsxs\x86_microsoft-windows-b..environment-windows_31bf3856ad364e35_6.0.6001.18000_none_6938972a8cca9e19\winload.exe
[2008/10/22 21:08:39 | 000,988,216 | ---- | M] (Microsoft Corporation) MD5=BB82A604FCC5A930696962A27F1C9760 -- C:\Windows\winsxs\x86_microsoft-windows-b..environment-windows_31bf3856ad364e35_6.0.6001.18027_none_6929f9588cd4875c\winload.exe
[2008/10/22 21:08:38 | 000,988,216 | ---- | M] (Microsoft Corporation) MD5=B014C9768E1A7E12D7F1EA8B4294EE7E -- C:\Windows\winsxs\x86_microsoft-windows-b..environment-windows_31bf3856ad364e35_6.0.6001.22125_none_69b1958fa5f3f478\winload.exe
[2009/04/11 02:33:19 | 000,986,600 | ---- | M] (Microsoft Corporation) MD5=074DF633D8C15656560F0388AA7F6237 -- C:\Windows\winsxs\x86_microsoft-windows-b..environment-windows_31bf3856ad364e35_6.0.6002.18005_none_6b24103689ec6965\winload.exe
[2008/10/22 21:09:01 | 000,944,184 | ---- | M] (Microsoft Corporation) MD5=2FE80A1F41E18B07FC00C94EC316E164 -- C:\Windows\winsxs\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6000.16646_none_591b3d986f9b5725\winload.exe
[2008/10/22 21:09:00 | 000,944,696 | ---- | M] (Microsoft Corporation) MD5=651D59AE69715F62D7D7D9F4746B1195 -- C:\Windows\winsxs\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6000.20782_none_5975998b88dd0157\winload.exe
[2008/01/19 03:44:08 | 000,986,680 | ---- | M] (Microsoft Corporation) MD5=8C5CF5E594B696DEC0B6BC791EB0371A -- C:\Windows\winsxs\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.18000_none_5b26ba326ca6e048\winload.exe
[2008/10/22 21:08:42 | 000,988,216 | ---- | M] (Microsoft Corporation) MD5=BB82A604FCC5A930696962A27F1C9760 -- C:\Windows\winsxs\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.18027_none_5b181c606cb0c98b\winload.exe
[2008/10/22 21:08:42 | 000,988,216 | ---- | M] (Microsoft Corporation) MD5=B014C9768E1A7E12D7F1EA8B4294EE7E -- C:\Windows\winsxs\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.22125_none_5b9fb89785d036a7\winload.exe
[2009/04/11 02:33:19 | 000,986,600 | ---- | M] (Microsoft Corporation) MD5=074DF633D8C15656560F0388AA7F6237 -- C:\Windows\winsxs\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6002.18005_none_5d12333e69c8ab94\winload.exe
< %SYSTEMDRIVE%\winlogon.exe /S /md5 >
[2009/04/11 02:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe
[2006/11/02 05:45:57 | 000,308,224 | ---- | M] (Microsoft Corporation) MD5=9F75392B9128A91ABAFB044EA350BAAD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6000.16386_none_6d8c3f1ad8066b21\winlogon.exe
[2008/01/19 03:33:37 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe
[2009/04/11 02:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
< %SYSTEMDRIVE%\ntoskrnl.exe /S /md5 >
[2009/12/08 16:01:02 | 003,548,216 | ---- | M] (Microsoft Corporation) MD5=664CA09C523FAB9D01BE6C4028C1B58B -- C:\Windows\System32\ntoskrnl.exe
[2006/11/02 05:51:48 | 003,467,880 | ---- | M] (Microsoft Corporation) MD5=883D5B644BFA3DC7298D4731B13AF499 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16386_none_69f99fa4b7380194\ntoskrnl.exe
[2008/11/10 22:13:40 | 003,470,008 | ---- | M] (Microsoft Corporation) MD5=4F2488EC5D0EBFE868F47681BCF315D3 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16514_none_6a435250b701059d\ntoskrnl.exe
[2008/10/23 21:41:39 | 003,471,032 | ---- | M] (Microsoft Corporation) MD5=0E8F7801D17C7437CEE216099B975163 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16551_none_6a1511c2b724295c\ntoskrnl.exe
[2008/10/23 21:25:15 | 003,470,392 | ---- | M] (Microsoft Corporation) MD5=A0BF353A68B434F2BBFF238FEEB51486 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16584_none_69f7a2dcb739c934\ntoskrnl.exe
[2008/10/23 21:09:08 | 003,470,904 | ---- | M] (Microsoft Corporation) MD5=03279407E78F76BA1131DAB35A5E55C0 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16754_none_6a18166cb7216faf\ntoskrnl.exe
[2009/03/03 00:24:50 | 003,469,280 | ---- | M] (Microsoft Corporation) MD5=3910FE042C707E6BACD0FEC5AB9ECDE6 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16830_none_6a29b702b714cf98\ntoskrnl.exe
[2009/08/05 10:28:44 | 003,467,864 | ---- | M] (Microsoft Corporation) MD5=4765C66A89E7151626FF3545B01D2601 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16901_none_6a4b28f6b6fb9243\ntoskrnl.exe
[2009/12/08 16:54:53 | 003,467,848 | ---- | M] (Microsoft Corporation) MD5=CD2EEBFA39E742C8C066CCE09382A19B -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16973_none_6a017a16b7328888\ntoskrnl.exe
[2008/11/10 22:13:46 | 003,470,520 | ---- | M] (Microsoft Corporation) MD5=99B743BE7149970EB8D9C48FB0A41BF7 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20629_none_6ac720a1d022400b\ntoskrnl.exe
[2008/10/23 21:41:38 | 003,471,544 | ---- | M] (Microsoft Corporation) MD5=9E6991F557248A5E6E742D1081583969 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20670_none_6a880e6bd052e7b1\ntoskrnl.exe
[2008/10/23 21:25:14 | 003,471,928 | ---- | M] (Microsoft Corporation) MD5=B23072AE0FD60A2BE57FD48F81DDB5BB -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20707_none_6adac1cbd013d2a2\ntoskrnl.exe
[2008/10/23 21:09:05 | 003,472,952 | ---- | M] (Microsoft Corporation) MD5=1E09CE4D9BB7B6521FB023CAE2E55F63 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20921_none_6abf2403d0296cc8\ntoskrnl.exe
[2009/03/03 00:22:43 | 003,471,328 | ---- | M] (Microsoft Corporation) MD5=808C86316AED98716C5F305A6265F393 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21023_none_6ac0fcb9d027d2b8\ntoskrnl.exe
[2009/08/05 10:10:15 | 003,469,896 | ---- | M] (Microsoft Corporation) MD5=D8DCA438CE571DB20BD8C4915CAC0760 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21101_none_6ad49de3d019654f\ntoskrnl.exe
[2009/12/08 18:29:12 | 003,469,912 | ---- | M] (Microsoft Corporation) MD5=2972EEF8E834883EEC7C1995639341EF -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21175_none_6a8cef97d04e8e42\ntoskrnl.exe
[2008/01/19 03:43:47 | 003,548,728 | ---- | M] (Microsoft Corporation) MD5=6700F35EBA206E5C89AC27C9A124DC01 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18000_none_6c3061a0b4231268\ntoskrnl.exe
[2008/04/26 04:25:54 | 003,549,240 | ---- | M] (Microsoft Corporation) MD5=C9CD31B3CBA8134F2B47FB5E78376ACC -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18063_none_6bf282f6b4510613\ntoskrnl.exe
[2008/10/23 21:09:03 | 003,549,240 | ---- | M] (Microsoft Corporation) MD5=1FD3E8BFFD38F9B145E4B2B238B692F7 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18145_none_6c0a2548b43efe06\ntoskrnl.exe
[2009/03/03 00:46:01 | 003,547,632 | ---- | M] (Microsoft Corporation) MD5=393BB8FE05D66ABA7B091E6032179272 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18226_none_6c20c750b42ddca2\ntoskrnl.exe
[2009/08/05 10:22:41 | 003,546,184 | ---- | M] (Microsoft Corporation) MD5=5302026B0FADB0819009798D3F6BCD77 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18304_none_6c34687ab41f6f39\ntoskrnl.exe
[2009/12/08 16:52:16 | 003,546,200 | ---- | M] (Microsoft Corporation) MD5=20D040ECE9A8F578D1D938256F34B663 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18377_none_6bebb9e4b4557ed5\ntoskrnl.exe
[2008/04/26 04:11:33 | 003,549,240 | ---- | M] (Microsoft Corporation) MD5=22D444D3D88A4C299894B3638A114BF7 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22167_none_6c8020e9cd6b0b39\ntoskrnl.exe
[2008/10/23 21:09:02 | 003,549,752 | ---- | M] (Microsoft Corporation) MD5=DEA801F2D9FD1DB35ED6B9BC4A6657F1 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22269_none_6c822363cd693b0e\ntoskrnl.exe
[2009/03/03 00:37:19 | 003,548,656 | ---- | M] (Microsoft Corporation) MD5=DFF34C5D66AB4BF1EED47BF19D1267BB -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22389_none_6c6c8571cd797017\ntoskrnl.exe
[2009/08/05 13:15:59 | 003,547,736 | ---- | M] (Microsoft Corporation) MD5=3EEEDCCFB587BCB0E2DE075332498C11 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22489_none_6c6c8757cd796d3e\ntoskrnl.exe
[2009/12/08 16:36:58 | 003,548,760 | ---- | M] (Microsoft Corporation) MD5=D32E95B17477E183F6019A99BE799BA9 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22577_none_6c755895cd731bc6\ntoskrnl.exe
[2009/04/11 02:32:49 | 003,549,672 | ---- | M] (Microsoft Corporation) MD5=6798DBF3F25721637AEF5B6C69911C9C -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18005_none_6e1bdaacb144ddb4\ntoskrnl.exe
[2009/08/04 08:34:19 | 003,548,216 | ---- | M] (Microsoft Corporation) MD5=575DD16BF4C21C2F7E2BBE203AC1E957 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18082_none_6dc25a6eb1887137\ntoskrnl.exe
[2009/12/08 16:01:02 | 003,548,216 | ---- | M] (Microsoft Corporation) MD5=664CA09C523FAB9D01BE6C4028C1B58B -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18160_none_6dd5fb98b17a03ce\ntoskrnl.exe
[2009/08/05 10:10:22 | 003,548,216 | ---- | M] (Microsoft Corporation) MD5=09C5FB44F152EFF551A112C931DDE640 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22191_none_6e402703caaf139b\ntoskrnl.exe
[2009/12/08 16:14:53 | 003,550,264 | ---- | M] (Microsoft Corporation) MD5=FB82B0147B7D93379B68F8A6A5828C70 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22283_none_6e4cf969caa5277f\ntoskrnl.exe
< %SYSTEMDRIVE%\bootvid.dll /s /md5 >
[2008/01/19 03:41:34 | 000,024,120 | ---- | M] (Microsoft Corporation) MD5=F0821E18CAFC7135CCF6DE3D306E97CD -- C:\Windows\System32\BOOTVID.DLL
[2006/11/02 05:49:40 | 000,021,608 | ---- | M] (Microsoft Corporation) MD5=0768D11CC2D93AC875B3E39AB65E1E34 -- C:\Windows\winsxs\x86_microsoft-windows-bootvid_31bf3856ad364e35_6.0.6000.16386_none_3642b97d89494bc7\BOOTVID.DLL
[2008/01/19 03:41:34 | 000,024,120 | ---- | M] (Microsoft Corporation) MD5=F0821E18CAFC7135CCF6DE3D306E97CD -- C:\Windows\winsxs\x86_microsoft-windows-bootvid_31bf3856ad364e35_6.0.6001.18000_none_38797b7986345c9b\BOOTVID.DLL
< %SYSTEMDRIVE%\hal.dll /s /md5 >
[2009/04/11 02:32:46 | 000,177,128 | ---- | M] (Microsoft Corporation) MD5=B8D52005181A15D7D1470CBF2AF214DD -- C:\Windows\System32\hal.dll
< %SYSTEMDRIVE%\tpm.sys /s /md5 >
[2008/01/19 03:42:12 | 000,045,624 | ---- | M] (Microsoft Corporation) MD5=CB258C2F726F1BE73C507022BE33EBB3 -- C:\Windows\System32\DriverStore\FileRepository\tpm.inf_469d361b\tpm.sys
[2006/11/02 05:50:17 | 000,041,064 | ---- | M] (Microsoft Corporation) MD5=6D9AD3534A9CF7E4B86C6EAE8BC335F6 -- C:\Windows\System32\DriverStore\FileRepository\tpm.inf_601dc269\tpm.sys
[2008/01/19 03:42:12 | 000,045,624 | ---- | M] (Microsoft Corporation) MD5=CB258C2F726F1BE73C507022BE33EBB3 -- C:\Windows\winsxs\x86_tpm.inf_31bf3856ad364e35_6.0.6001.18000_none_ac22eb370727a62a\tpm.sys
< %SYSTEMDRIVE%\ksecdd.sys /s /md5 >
[2009/06/15 19:15:25 | 000,439,864 | ---- | M] (Microsoft Corporation) MD5=86165728AF9BF72D6442A894FDFB4F8B -- C:\Windows\System32\drivers\ksecdd.sys
[2006/11/02 05:51:38 | 000,407,144 | ---- | M] (Microsoft Corporation) MD5=11D0BC1F2AFD8ABBB5A3DC47A042DE54 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16386_none_a413c8c65fe02762\ksecdd.sys
[2006/11/02 05:51:38 | 000,407,144 | ---- | M] (Microsoft Corporation) MD5=11D0BC1F2AFD8ABBB5A3DC47A042DE54 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16820_none_a44eb0105fb4d975\ksecdd.sys
[2009/06/15 14:12:26 | 000,408,136 | ---- | M] (Microsoft Corporation) MD5=0A829977B078DEA11641FC2AF87CEADE -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\ksecdd.sys
[2006/11/02 05:51:38 | 000,407,144 | ---- | M] (Microsoft Corporation) MD5=11D0BC1F2AFD8ABBB5A3DC47A042DE54 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21010_none_a4e2f4e978ca9090\ksecdd.sys
[2009/06/15 19:20:33 | 000,408,136 | ---- | M] (Microsoft Corporation) MD5=B6FAC1FF7D4A05C06DA9E53DBF5E9E7A -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21067_none_a4b3e75378eccda6\ksecdd.sys
[2009/06/15 19:20:33 | 000,408,136 | ---- | M] (Microsoft Corporation) MD5=B6FAC1FF7D4A05C06DA9E53DBF5E9E7A -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21125_none_a4dd285578ce285b\ksecdd.sys
[2008/01/19 03:43:25 | 000,441,400 | ---- | M] (Microsoft Corporation) MD5=5367DC846CAE9639B899BFD13B97A8C9 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18000_none_a64a8ac25ccb3836\ksecdd.sys
[2008/01/19 03:43:25 | 000,441,400 | ---- | M] (Microsoft Corporation) MD5=5367DC846CAE9639B899BFD13B97A8C9 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18215_none_a644c0145ccecd28\ksecdd.sys
[2009/06/15 14:20:59 | 000,439,896 | ---- | M] (Microsoft Corporation) MD5=7A0CF7908B6824D6A2A1D313E5AE3DCA -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\ksecdd.sys
[2009/01/29 20:29:44 | 000,441,400 | ---- | M] (Microsoft Corporation) MD5=F583C418A4AF3780A288AF7A0CEE4A80 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22376_none_a68e7da1761c2def\ksecdd.sys
[2009/06/15 14:40:04 | 000,439,880 | ---- | M] (Microsoft Corporation) MD5=94A784B96BC6A15382065C48B38D2432 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22450_none_a69e1da376115b2a\ksecdd.sys
[2009/06/15 14:40:04 | 000,439,880 | ---- | M] (Microsoft Corporation) MD5=94A784B96BC6A15382065C48B38D2432 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22518_none_a6d1618975e9b345\ksecdd.sys
[2009/04/11 02:32:48 | 000,439,784 | ---- | M] (Microsoft Corporation) MD5=EA7F1D605518486269F45BD80FA00907 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18005_none_a83603ce59ed0382\ksecdd.sys
[2009/06/15 19:15:25 | 000,439,864 | ---- | M] (Microsoft Corporation) MD5=86165728AF9BF72D6442A894FDFB4F8B -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\ksecdd.sys
[2009/06/15 17:17:42 | 000,439,880 | ---- | M] (Microsoft Corporation) MD5=BD3D6E0E3346DB5C2E725326843AE289 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22152_none_a886901f7335e2fc\ksecdd.sys
[2009/06/15 17:17:42 | 000,439,880 | ---- | M] (Microsoft Corporation) MD5=BD3D6E0E3346DB5C2E725326843AE289 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22223_none_a8a80213731ca5a7\ksecdd.sys
< %SYSTEMDRIVE%\clfs.sys /s /md5 >
[2009/04/11 02:32:46 | 000,245,736 | ---- | M] (Microsoft Corporation) MD5=D7659D3B5B92C31E84E53C1431F35132 -- C:\Windows\System32\clfs.sys
[2006/11/02 05:51:25 | 000,221,800 | ---- | M] (Microsoft Corporation) MD5=51B4B82560E49C415AE5B1337D635C3F -- C:\Windows\winsxs\x86_microsoft-windows-commonlog_31bf3856ad364e35_6.0.6000.16386_none_7c4bd8b12aa0f521\clfs.sys
[2008/10/22 21:08:58 | 000,224,824 | ---- | M] (Microsoft Corporation) MD5=1B84FD0937D3B99AF9BA38DDFF3DAF54 -- C:\Windows\winsxs\x86_microsoft-windows-commonlog_31bf3856ad364e35_6.0.6000.16609_none_7ca55ea12a5d5913\clfs.sys
[2008/10/22 21:08:58 | 000,224,824 | ---- | M] (Microsoft Corporation) MD5=8DA2B3C19FD4853A48F4D90390F8A94C -- C:\Windows\winsxs\x86_microsoft-windows-commonlog_31bf3856ad364e35_6.0.6000.20734_none_7d098a364397cdfd\clfs.sys
[2008/01/19 03:42:58 | 000,247,352 | ---- | M] (Microsoft Corporation) MD5=465745561C832B29F7C48B488AAB3842 -- C:\Windows\winsxs\x86_microsoft-windows-commonlog_31bf3856ad364e35_6.0.6001.18000_none_7e829aad278c05f5\clfs.sys
[2009/04/11 02:32:46 | 000,245,736 | ---- | M] (Microsoft Corporation) MD5=D7659D3B5B92C31E84E53C1431F35132 -- C:\Windows\winsxs\x86_microsoft-windows-commonlog_31bf3856ad364e35_6.0.6002.18005_none_806e13b924add141\clfs.sys
< %SYSTEMDRIVE%\ci.dll /s /md5 >
[2009/04/11 02:33:02 | 000,614,376 | ---- | M] (Microsoft Corporation) MD5=22F73612087430A94DBE912AB58E0C79 -- C:\Windows\System32\ci.dll
[2006/11/02 05:51:44 | 000,615,528 | ---- | M] (Microsoft Corporation) MD5=FC98035D5F751E7CD67841917105E8FA -- C:\Windows\winsxs\x86_microsoft-windows-codeintegrity_31bf3856ad364e35_6.0.6000.16386_none_9e412f4207d4d372\ci.dll
[2008/10/22 21:09:00 | 000,620,088 | ---- | M] (Microsoft Corporation) MD5=8356A02DD1B2783987134FDF8B71633F -- C:\Windows\winsxs\x86_microsoft-windows-codeintegrity_31bf3856ad364e35_6.0.6000.16642_none_9e68737c07b7f5c7\ci.dll
[2008/10/22 21:08:59 | 000,620,088 | ---- | M] (Microsoft Corporation) MD5=3036739D51AFA5269CA90F639BE8BCF4 -- C:\Windows\winsxs\x86_microsoft-windows-codeintegrity_31bf3856ad364e35_6.0.6000.20775_none_9ed4a16120eb3569\ci.dll
[2008/01/19 03:43:38 | 000,614,968 | ---- | M] (Microsoft Corporation) MD5=3306EBD850AFD024CAB46EA74E5E9B2F -- C:\Windows\winsxs\x86_microsoft-windows-codeintegrity_31bf3856ad364e35_6.0.6001.18000_none_a077f13e04bfe446\ci.dll
[2008/10/22 21:08:38 | 000,615,992 | ---- | M] (Microsoft Corporation) MD5=F935DF6F39BC274DEA31BA84071ED89D -- C:\Windows\winsxs\x86_microsoft-windows-codeintegrity_31bf3856ad364e35_6.0.6001.18023_none_a065524404cd682d\ci.dll
[2008/10/22 21:08:37 | 000,615,992 | ---- | M] (Microsoft Corporation) MD5=E87980ED14B617354EF392A84E7DC224 -- C:\Windows\winsxs\x86_microsoft-windows-codeintegrity_31bf3856ad364e35_6.0.6001.22120_none_a0ebee311dedbbf2\ci.dll
[2009/04/11 02:33:02 | 000,614,376 | ---- | M] (Microsoft Corporation) MD5=22F73612087430A94DBE912AB58E0C79 -- C:\Windows\winsxs\x86_microsoft-windows-codeintegrity_31bf3856ad364e35_6.0.6002.18005_none_a2636a4a01e1af92\ci.dll
< %SYSTEMDRIVE%\kdcom.dll /s /md5 >
[2009/04/11 02:32:26 | 000,017,384 | ---- | M] (Microsoft Corporation) MD5=48E083898FE5611006725796B055011B -- C:\Windows\System32\kdcom.dll
[2006/11/02 05:49:30 | 000,017,000 | ---- | M] (Microsoft Corporation) MD5=A0B182998EEAB02D739A57384637E5E0 -- C:\Windows\winsxs\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.0.6000.16386_none_0f7ecb22afbfde41\kdcom.dll
[2008/01/19 03:41:25 | 000,019,512 | ---- | M] (Microsoft Corporation) MD5=12AC40A1E551A07A121551AA66B9E32E -- C:\Windows\winsxs\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.0.6001.18000_none_11b58d1eacaaef15\kdcom.dll
[2009/04/11 02:32:26 | 000,017,384 | ---- | M] (Microsoft Corporation) MD5=48E083898FE5611006725796B055011B -- C:\Windows\winsxs\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.0.6002.18005_none_13a1062aa9ccba61\kdcom.dll
< %SYSTEMDRIVE%\kdusb.dll /s /md5 >
[2009/04/11 02:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=FC9EF8CC90B8524FA0FC8526FF9F9C2F -- C:\Windows\System32\kdusb.dll
[2006/11/02 05:49:37 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=6935803FCEBA91D03B1B5D83C8190EB5 -- C:\Windows\winsxs\x86_microsoft-windows-b..buggertransport-usb_31bf3856ad364e35_6.0.6000.16386_none_9b46e79f0d9c56ff\kdusb.dll
[2008/01/19 03:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=F2425B21257F0968CA09DB79677E8B3E -- C:\Windows\winsxs\x86_microsoft-windows-b..buggertransport-usb_31bf3856ad364e35_6.0.6001.18000_none_9d7da99b0a8767d3\kdusb.dll
[2009/04/11 02:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=FC9EF8CC90B8524FA0FC8526FF9F9C2F -- C:\Windows\winsxs\x86_microsoft-windows-b..buggertransport-usb_31bf3856ad364e35_6.0.6002.18005_none_9f6922a707a9331f\kdusb.dll
< %SYSTEMDRIVE%\kd1394.dll /s /md5 >
[2009/04/11 02:32:27 | 000,017,896 | ---- | M] (Microsoft Corporation) MD5=CF9BA9125C32978B33A1E6D5D34A2884 -- C:\Windows\System32\kd1394.dll
[2006/11/02 04:30:44 | 000,008,704 | ---- | M] (Microsoft Corporation) MD5=20BF823A6237FA1CDBC46D5B1AEB77B1 -- C:\Windows\winsxs\x86_microsoft-windows-b..uggertransport-1394_31bf3856ad364e35_6.0.6000.16386_none_61949536f6f76e24\kd1394.dll
[2008/10/22 21:09:02 | 000,019,000 | ---- | M] (Microsoft Corporation) MD5=FD308A87619907BC3DA390A4FFA2D874 -- C:\Windows\winsxs\x86_microsoft-windows-b..uggertransport-1394_31bf3856ad364e35_6.0.6000.16646_none_61bfda98f6d6f5d5\kd1394.dll
[2008/10/22 21:09:02 | 000,019,000 | ---- | M] (Microsoft Corporation) MD5=C71A8334ED1C6DDF9F9711EDCC978EB1 -- C:\Windows\winsxs\x86_microsoft-windows-b..uggertransport-1394_31bf3856ad364e35_6.0.6000.20782_none_621a368c1018a007\kd1394.dll
[2008/01/19 01:27:55 | 000,008,704 | ---- | M] (Microsoft Corporation) MD5=950E6E5FA4A22FE862A58A0BA521146C -- C:\Windows\winsxs\x86_microsoft-windows-b..uggertransport-1394_31bf3856ad364e35_6.0.6001.18000_none_63cb5732f3e27ef8\kd1394.dll
[2008/10/22 21:08:40 | 000,019,000 | ---- | M] (Microsoft Corporation) MD5=5EDD3BE18A80158E1CDD70E9721B614E -- C:\Windows\winsxs\x86_microsoft-windows-b..uggertransport-1394_31bf3856ad364e35_6.0.6001.18027_none_63bcb960f3ec683b\kd1394.dll
[2008/10/22 21:08:40 | 000,019,000 | ---- | M] (Microsoft Corporation) MD5=35D0F68095E985B6B0A06C90D7D1572B -- C:\Windows\winsxs\x86_microsoft-windows-b..uggertransport-1394_31bf3856ad364e35_6.0.6001.22125_none_644455980d0bd557\kd1394.dll
[2009/04/11 02:32:27 | 000,017,896 | ---- | M] (Microsoft Corporation) MD5=CF9BA9125C32978B33A1E6D5D34A2884 -- C:\Windows\winsxs\x86_microsoft-windows-b..uggertransport-1394_31bf3856ad364e35_6.0.6002.18005_none_65b6d03ef1044a44\kd1394.dll
< %SYSTEMDRIVE%\spldr.sys /s /md5 >
[2008/01/19 03:41:30 | 000,021,048 | ---- | M] (Microsoft Corporation) MD5=7AEBDEEF071FE28B0EEF2CDD69102BFF -- C:\Windows\System32\drivers\spldr.sys
[2006/11/02 05:49:35 | 000,018,536 | ---- | M] (Microsoft Corporation) MD5=426F9B029AA9162CECCF65369457D046 -- C:\Windows\winsxs\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6000.16386_none_68fc663d5430d3de\spldr.sys
[2008/01/19 03:41:30 | 000,021,048 | ---- | M] (Microsoft Corporation) MD5=7AEBDEEF071FE28B0EEF2CDD69102BFF -- C:\Windows\winsxs\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6001.18000_none_6b332839511be4b2\spldr.sys
< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\ /s >
"ReportBootOk" = 1
"Shell" = explorer.exe -- [2009/04/11 02:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation)
"Userinit" = C:\Windows\system32\userinit.exe, -- File not found
"VmApplet" = rundll32 shell32,Control_RunDLL "sysdm.cpl" -- [2008/01/19 03:32:57 | 000,242,688 | ---- | M] (Microsoft Corporation)
"AutoRestartShell" = 1
"LegalNoticeCaption" =
"LegalNoticeText" =
"PowerdownAfterShutdown" = 0
"ShutdownWithoutLogon" = 0
"cachedlogonscount" = 10
"forceunlocklogon" = 0
"passwordexpirywarning" = 14
"Background" = 0 0 0
"DebugServerCommand" = no
"WinStationsDisabled" = 0
"DisableCAD" = 1
"scremoveoption" = 0
"ShutdownFlags" = 39
"AutoAdminLogon" = 0
"SFCDisable" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{0ACDD40C-75AC-47ab-BAA0-BF6DE7E7FE63}]
"" = Wireless Group Policy
"DisplayName" = @wlgpclnt.dll,-100
"ProcessGroupPolicyEx" = ProcessWLANPolicyEx
"GenerateGroupPolicy" = GenerateWLANPolicy
"DllName" = wlgpclnt.dll -- [2009/04/11 02:28:25 | 000,083,456 | ---- | M] (Microsoft Corporation)
"NoUserPolicy" = 1
"NoGPOListChanges" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{25537BA6-77A8-11D2-9B6C-0000F8080861}]
"" = Folder Redirection
"ProcessGroupPolicyEx" = ProcessGroupPolicyEx
"DllName" = fdeploy.dll -- [2009/04/11 02:28:19 | 000,053,760 | ---- | M] (Microsoft Corporation)
"NoMachinePolicy" = 1
"NoSlowLink" = 1
"PerUserLocalSettings" = 1
"NoGPOListChanges" = 0
"NoBackgroundPolicy" = 0
"GenerateGroupPolicy" = GenerateGroupPolicy
"EventSources" = (Folder Redirection,Application) [binary data]
"DisplayName" = @fdeploy.dll,-261
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{3610eda5-77ef-11d2-8dc5-00c04fa31a66}]
"" = Microsoft Disk Quota -- [2006/11/02 08:45:01 | 000,000,000 | --SD | M]
"DisplayName" = @%SystemRoot%\System32\dskquota.dll,-100
"NoMachinePolicy" = 0
"NoUserPolicy" = 1
"NoSlowLink" = 1
"NoBackgroundPolicy" = 1
"NoGPOListChanges" = 1
"PerUserLocalSettings" = 0
"RequiresSuccessfulRegistry" = 1
"EnableAsynchronousProcessing" = 0
"DllName" = %SystemRoot%\System32\dskquota.dll -- [2008/01/19 03:34:06 | 000,086,528 | ---- | M] (Microsoft Corporation)
"ProcessGroupPolicy" = ProcessGroupPolicy
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{426031c0-0b47-4852-b0ca-ac3d37bfcb39}]
"" = QoS Packet Scheduler
"DisplayName" = @gptext.dll,-201
"ProcessGroupPolicy" = ProcessPSCHEDPolicy
"DllName" = gptext.dll -- [2006/11/02 05:46:05 | 000,016,896 | ---- | M] (Microsoft Corporation)
"NoUserPolicy" = 1
"NoGPOListChanges" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{4CFB60C1-FAA6-47f1-89AA-0B18730C9FD3}]
"ProcessGroupPolicy" = ProcessGroupPolicyForZoneMap
"DllName" = C:\Windows\System32\iedkcs32.dll -- [2010/01/02 02:32:26 | 000,387,584 | ---- | M] (Microsoft Corporation)
"" = Internet Explorer Zonemapping
"NoGPOListChanges" = 1
"DisplayName" = @C:\Windows\System32\iedkcs32.dll,-3051
"RequiresSuccessfulRegistry" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{7933F41E-56F8-41d6-A31C-4148A711EE93}]
"" = Windows Search Group Policy Extension
"DllName" = %SystemRoot%\System32\srchadmin.dll -- [2009/04/11 02:28:24 | 000,301,568 | ---- | M] (Microsoft Corporation)
"EnableAsynchronousProcessing" = 1
"NoBackgroundPolicy" = 0
"NoGPOListChanges" = 1
"NoMachinePolicy" = 0
"NoSlowLink" = 0
"NoUserPolicy" = 0
"PerUserLocalSettings" = 0
"ProcessGroupPolicy" = ProcessGroupPolicy
"RequiresSuccessfulRegistry" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{7B849a69-220F-451E-B3FE-2CB811AF94AE}]
"" = Internet Explorer User Accelerators
"ProcessGroupPolicy" = ProcessGroupPolicyForActivities
"DllName" = C:\Windows\System32\iedkcs32.dll -- [2010/01/02 02:32:26 | 000,387,584 | ---- | M] (Microsoft Corporation)
"RequiresSuccessfulRegistry" = 1
"ProcessGroupPolicyEx" = ProcessGroupPolicyForActivitiesEx
"NoGPOListChanges" = 1
"DisplayName" = @C:\Windows\System32\iedkcs32.dll,-3051
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{827D319E-6EAC-11D2-A4EA-00C04F79F83A}]
"" = Security -- [2006/11/02 05:43:08 | 000,005,120 | ---- | M] (Microsoft Corporation)
"DisplayName" = @(runtime.system32)\scecli.dll,-7650
"ProcessGroupPolicy" = SceProcessSecurityPolicyGPO
"GenerateGroupPolicy" = SceGenerateGroupPolicy
"ExtensionRsopPlanningDebugLevel" = 1
"ProcessGroupPolicyEx" = SceProcessSecurityPolicyGPOEx
"ExtensionDebugLevel" = 1
"DllName" = scecli.dll -- [2009/04/11 02:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation)
"NoUserPolicy" = 1
"NoGPOListChanges" = 1
"EnableAsynchronousProcessing" = 1
"MaxNoGPOListChangesInterval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{A2E30F80-D7DE-11d2-BBDE-00C04F86AE3B}]
"ProcessGroupPolicyEx" = ProcessGroupPolicyEx
"GenerateGroupPolicy" = GenerateGroupPolicy
"ProcessGroupPolicy" = ProcessGroupPolicy
"DllName" = C:\Windows\System32\iedkcs32.dll -- [2010/01/02 02:32:26 | 000,387,584 | ---- | M] (Microsoft Corporation)
"" = Internet Explorer Branding
"NoSlowLink" = 1
"NoBackgroundPolicy" = 0
"NoGPOListChanges" = 1
"NoMachinePolicy" = 1
"DisplayName" = @C:\Windows\System32\iedkcs32.dll,-3014
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{B1BE8D72-6EAC-11D2-A4EA-00C04F79F83A}]
"ProcessGroupPolicy" = SceProcessEFSRecoveryGPO
"DllName" = scecli.dll -- [2009/04/11 02:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation)
"" = EFS recovery
"DisplayName" = @(runtime.system32)\scecli.dll,-7651
"NoUserPolicy" = 1
"NoGPOListChanges" = 1
"RequiresSuccessfulRegistry" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{B587E2B1-4D59-4e7e-AED9-22B9DF11D053}]
"" = 802.3 Group Policy
"DisplayName" = @dot3gpclnt.dll,-100
"ProcessGroupPolicyEx" = ProcessLANPolicyEx
"GenerateGroupPolicy" = GenerateLANPolicy
"DllName" = dot3gpclnt.dll -- [2008/01/19 03:34:05 | 000,043,008 | ---- | M] (Microsoft Corporation)
"NoUserPolicy" = 1
"NoGPOListChanges" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}]
"" = Internet Explorer Machine Accelerators
"ProcessGroupPolicy" = ProcessGroupPolicyForActivities
"DllName" = C:\Windows\System32\iedkcs32.dll -- [2010/01/02 02:32:26 | 000,387,584 | ---- | M] (Microsoft Corporation)
"RequiresSuccessfulRegistry" = 1
"ProcessGroupPolicyEx" = ProcessGroupPolicyForActivitiesEx
"NoGPOListChanges" = 1
"DisplayName" = @C:\Windows\System32\iedkcs32.dll,-3051
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{e437bc1c-aa7d-11d2-a382-00c04f991e27}]
"" = IP Security
"ProcessGroupPolicyEx" = ProcessIPSECPolicyEx
"GenerateGroupPolicy" = GenerateIPSECPolicy
"DllName" = %SystemRoot%\System32\polstore.dll -- [2008/10/23 21:44:21 | 000,272,896 | ---- | M] (Microsoft Corporation)
"NoUserPolicy" = 1
"NoGPOListChanges" = 0
"DisplayName" = @C:\Windows\system32\polstore.dll,-5012
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{FB2CA36D-0B40-4307-821B-A13B252DE56C}]
"" = Enterprise QoS
"DisplayName" = @gptext.dll,-203
"ProcessGroupPolicy" = ProcessEQoSPolicy
"DllName" = gptext.dll -- [2006/11/02 05:46:05 | 000,016,896 | ---- | M] (Microsoft Corporation)
"RequiresSuccessfulRegistry" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\AutoLogonChecked]
========== Alternate Data Streams ==========
@Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:B623B5B8
@Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:7F66BF58
@Alternate Data Stream - 100 bytes -> C:\ProgramData\TEMP:ADF211B1
< End of report >
- nanoua971
- Apprenti(e)
- Messages: 35
- Inscription: 22 Mar 2010 03:41
Re: Probleme internet explorer
le 21 Avr 2010 16:00
EUH NON MINCE G PARLER TROP VITE OUI YA TOUJOURS UN PROBLÈME; LE SON DE L'ORDINATEUR NE FONCTIONNE PAS ;
YA UNE CROIX ROUGE SUR L'ICÔNE DE SON PRES DE LA DATE; ET SA DIT QUE LE SERVICE AUDIO NE FONCTIONNE PAS;
DONC J'AI VÉRIFIER SI LE SERVICE FONCTIONNAIS MAIS EFFECTIVEMENT IL ÉTAIS ARRÊTE DONC J'AI DÉMARRER LE SERVICE ET A CE MOMENT ON ME DIT QUE "LES SERVICES OU GROUPES DE DÉPENDANCE N'A PAS PU DÉMARRER"
YA UNE CROIX ROUGE SUR L'ICÔNE DE SON PRES DE LA DATE; ET SA DIT QUE LE SERVICE AUDIO NE FONCTIONNE PAS;
DONC J'AI VÉRIFIER SI LE SERVICE FONCTIONNAIS MAIS EFFECTIVEMENT IL ÉTAIS ARRÊTE DONC J'AI DÉMARRER LE SERVICE ET A CE MOMENT ON ME DIT QUE "LES SERVICES OU GROUPES DE DÉPENDANCE N'A PAS PU DÉMARRER"
- nanoua971
- Apprenti(e)
- Messages: 35
- Inscription: 22 Mar 2010 03:41
Re: Probleme internet explorer
le 21 Avr 2010 17:33
hello,
je jette un œil à tout cela...
Apriori les fichiers servant au démarrage de Vista sont sain et bien en place...
Mais il y a un truc de louche..
peut tu me dire si tu as ce fichier présent sur ton pc C:\WINDOWS\System32\userinit.exe << celui là
Dit moi aussi quel est le nom exact du service qui pose problème
@++
je jette un œil à tout cela...
Apriori les fichiers servant au démarrage de Vista sont sain et bien en place...
Mais il y a un truc de louche..
peut tu me dire si tu as ce fichier présent sur ton pc C:\WINDOWS\System32\userinit.exe << celui là
Dit moi aussi quel est le nom exact du service qui pose problème
@++
-
jeanmimigab - PC-Infopraticien
- Messages: 2986
- Inscription: 29 Nov 2009 12:05
Re: Probleme internet explorer
le 21 Avr 2010 18:46
nanoua971 a écrit: je ne trouve même pas le dossier systeme32.
Si tu n'avais pas de dossier System32 ton pc ne serait pas en marche actuellement...
peut être que sur ton pc le dossier est caché, fais cela....
>clic sur menu démarrer > ordinateur > clic en haut à gauche sur organiser et choisie option des dossiers et de recherche
>dans la fenêtre qui s'ouvre clic sur l'onglet affichage
>coche Afficher les Fichiers et dossiers cachés
>décoche Masquer les fichiers protégés du système d'exploitation (recommandé)
>décoche Masquer les extensions dont le type est connu
ensuite clic sur appliquer > ok > et ferme la fenêtre.
ensuite dit moi si tu vois bien le dossier system32 et si le fichier userinit.exe se trouve dedans stp...
-
jeanmimigab - PC-Infopraticien
- Messages: 2986
- Inscription: 29 Nov 2009 12:05
Re: Probleme internet explorer
le 21 Avr 2010 18:48
oups, on c'est croisés, ne tient pas compte de mon message précédent
je te donne la suite dans un instant
je te donne la suite dans un instant
-
jeanmimigab - PC-Infopraticien
- Messages: 2986
- Inscription: 29 Nov 2009 12:05
Sujets similaires
Probleme d'affichage : haut de l'écran qui apparait en basBonjour/BonsoirJ'ai un probleme lorsque mes jeux sont lancés (pas tous en meme temps, je rassure)Lorsque j'allume minecraft ou Hogwards Legacy que j'utilise en ce moment, j'ai un bug d'affichage qui est le suivant ... Le haut de mon écran apparait en bas en sautant. Peu importe que je suis en plein ...
Réponses: 1
[Réglé] Problème sur écran neufBonjour,j'ai encore un souci suite au sujet de mon écran ICI. Etant donné qu'il est noté réglé, peut-être qu'il n'est plus trop "visible".Mon ancien écran ayant rendu l'âme après 17 ans, j'ai acheté un écran Acer 24 pouces cba242yabir trouvé en solde à 109? chez Leclerc. Je le trouve franc ...
Réponses: 14
connexion routeur sans internetBonjour,Est-il possible d'ouvrir l'interface routeur tplink sans avoir internet ( je n'ai pas d'internet en ce moment).Cdt
Réponses: 5
[Résolu]probleme Ads by Images+Depuis quelque jours avec mon moteur de recherche Google sur Firefox, c'est ajouté Ads by Images+merci
Réponses: 16
AVS Video Converter problèmeBonsoir à tous, J'esaie d'installer AVS Video COnverter, un vieux programme sont je stockais le dossier compressé .rar, mais Win 10 (ou 11 mnt je sais même plus lol) refuse de l'ouvrir. Il m'indique en rouge le message suivant : ''Cette application a été bloqué pour ma protection, un administrateur ...
Réponses: 4
problème d'installation Windows 11 sur pc AsusBonjour,Pourriez-vous m'aider pour effectuer l'installation de Windows 11 sur un pc gamer " Asus G11 CD K" acheté en 2018 car je n'arrive pas à la finaliser car à 77 %, il redémarre et ensuite cela m'affiche "reboot and select proper boot device or insert boot media in selected boot ...
Réponses: 5
[Résolu] probleme ecran noir de 1 à 2 secondesSalut tout le monde Décidément......... J'ai un problème sur mon pc qui n'est pas grave, mais qui est perturbant. Je m'explique lorsque je fais un clic droit sur un fichier ou dossier dans l'explorateur de fichier ou sur le bureau, j'ai un écran noir qui apparait brièvement et qui fait redémarrer t ...
Réponses: 42
Qui est en ligne
Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 48 invités
|
.: Nous contacter :: Flux RSS :: Données personnelles :. |