![]() ![]() ![]() ![]() ![]() ![]() ![]() |
%systemroot%\system32\drivers\*.sys /lockedfiles
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
Par MP, pprahan a écrit:bonjour voici le rapport
- Code: Tout sélectionner
Version de la base de données: 5618
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
27/01/2011 17:07:35
mbam-log-2011-01-27 (17-07-35).txt
Type d'examen: Examen rapide
Elément(s) analysé(s): 145970
Temps écoulé: 6 minute(s), 33 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 3
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\cs41275 (Malware.Trace) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Terminal Server\Install\Software\Microsoft\Windows\CurrentVersion\Run\Firevall Administrating (Trojan.Backdoor) -> Value: Firevall Administrating -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
Dossier(s) infecté(s):
c:\documents and settings\propriétaire\application data\Twain (Trojan.Matcash) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
j essaie de faire de mon mieux pas tres doué merci d avance
%systemroot%\system32\drivers\*.sys /lockedfiles
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
pprahan a écrit:OTL logfile created on: 27/01/2011 17:20:36 - Run 2
- Code: Tout sélectionner
OTL by OldTimer - Version Folder = F:\Mes documents\pascal.poupart833
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
1 023,00 Mb Total Physical Memory | 322,00 Mb Available Physical Memory | 31,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 79,00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,06 Gb Total Space | 10,67 Gb Free Space | 27,33% Space Free | Partition Type: NTFS
Drive F: | 148,82 Gb Total Space | 146,07 Gb Free Space | 98,15% Space Free | Partition Type: NTFS
Computer Name: PASCAL-C182C5EE | User Name: Propriétaire | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - F:\Mes documents\pascal.poupart833\otl.exe (OldTimer Tools)
PRC - C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
PRC - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe (TomTom)
PRC - C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe (TomTom)
PRC - C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
PRC - C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
PRC - C:\Program Files\Micro Application\LauncherMA.exe (Micro Application)
PRC - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Logitech Inc.)
PRC - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
PRC - C:\Program Files\Logitech\QuickCam\Quickcam.exe ()
PRC - C:\Program Files\Fichiers communs\Logishrd\LComMgr\Communications_Helper.exe ()
PRC - C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe (Logitech Inc.)
PRC - C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.)
PRC - C:\Program Files\Fichiers communs\Logishrd\LVCOMSER\LVComSer.exe (Logitech Inc.)
PRC - F:\Mes documents\Nouveau dossier\SetPoint\SetPoint.exe (Logitech, Inc.)
PRC - C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.exe (Logitech, Inc.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe (Nero AG)
PRC - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe (Nero AG)
PRC - C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe (Nero AG)
PRC - C:\Program Files\FinePixViewer\QuickDCF2.exe (FUJIFILM Corporation)
PRC - C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
PRC - C:\Program Files\Analog Devices\SoundMAX\SMax4.exe (Analog Devices, Inc.)
PRC - C:\WINDOWS\system32\SHVRTF.EXE (SoftThinks)
PRC - C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mm_tray.exe (Musicmatch, Inc.)
PRC - C:\Program Files\Wanadoo\GestionnaireInternet.exe (France Télécom R&D)
PRC - C:\Program Files\Wanadoo\ComComp.exe (France Télécom R&D)
PRC - C:\WINDOWS\system32\bgsvcgen.exe (B.H.A Corporation)
PRC - C:\Program Files\Wanadoo\WOOBrowser\WOOBrowser.exe ()
PRC - C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe (Cyberlink Corp.)
PRC - C:\Program Files\Wanadoo\Toaster.exe (France Telecom R&D)
PRC - C:\Program Files\Wanadoo\Inactivity.exe ()
PRC - C:\Program Files\Wanadoo\PollingModule.exe ()
PRC - C:\WINDOWS\system32\AlertModule\AlertModule.exe ()
PRC - C:\Program Files\Wanadoo\TaskBarIcon.exe (France Télécom R&D)
PRC - C:\Program Files\Wanadoo\Watch.exe (France Télécom R&D)
PRC - C:\WINDOWS\system32\FTRTSVC.exe (France Telecom)
PRC - C:\Program Files\CyberLink DVD Solution\Multimedia Launcher\PowerBar.exe (Cyberlink, Corp.)
========== Modules (SafeList) ==========
MOD - F:\Mes documents\pascal.poupart833\otl.exe (OldTimer Tools)
MOD - C:\Program Files\Alwil Software\Avast5\snxhk.dll (AVAST Software)
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll (Microsoft Corporation)
MOD - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Chrome\Hook\rpchromebrowserrecordhelper.dll ()
MOD - C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\logishrd\LVPrcInj01.dll (Logitech Inc.)
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcr80.dll (Microsoft Corporation)
MOD - F:\Mes documents\Nouveau dossier\SetPoint\lgscroll.dll (Logitech, Inc.)
MOD - C:\WINDOWS\system32\mlang.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\framedyn.dll (Microsoft Corporation)
MOD - C:\Program Files\Wanadoo\Inactivity.dll ()
========== Win32 Services (SafeList) ==========
SRV - (AppMgmt) -- File not found
SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
SRV - (TomTomHOMEService) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe (TomTom)
SRV - (fsssvc) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe (Microsoft Corporation)
SRV - (SeaPort) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
SRV - (Apple Mobile Device) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (LVPrcSrv) -- C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.)
SRV - (LVCOMSer) -- C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe (Logitech Inc.)
SRV - (LBTServ) -- C:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTServ.exe (Logitech, Inc.)
SRV - (NMIndexingService) -- C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe (Nero AG)
SRV - (MSCSPTISRV) -- C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe (Sony Corporation)
SRV - (SPTISRV) -- C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe (Sony Corporation)
SRV - (PACSPTISVR) -- C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe ()
SRV - (IDriverT) -- C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe (Macrovision Corporation)
SRV - (bgsvcgen) -- C:\WINDOWS\system32\bgsvcgen.exe (B.H.A Corporation)
SRV - (FTRTSVC) -- C:\WINDOWS\system32\FTRTSVC.exe (France Telecom)
SRV - (ose) -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
========== Driver Services (SafeList) ==========
DRV - (aswSP) -- C:\WINDOWS\System32\drivers\aswSP.sys (AVAST Software)
DRV - (aswTdi) -- C:\WINDOWS\System32\drivers\aswTdi.sys (AVAST Software)
DRV - (aswMon2) -- C:\WINDOWS\System32\drivers\aswmon2.sys (AVAST Software)
DRV - (aswRdr) -- C:\WINDOWS\System32\drivers\aswRdr.sys (AVAST Software)
DRV - (Aavmker4) -- C:\WINDOWS\System32\drivers\aavmker4.sys (AVAST Software)
DRV - (aswFsBlk) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys (AVAST Software)
DRV - (fssfltr) -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys (Microsoft Corporation)
DRV - (FilterService) -- C:\WINDOWS\system32\drivers\lvuvcflt.sys (Logitech Inc.)
DRV - (LVUVC) Logitech QuickCam S5500(UVC) -- C:\WINDOWS\system32\drivers\lvuvc.sys (Logitech Inc.)
DRV - (LVUSBSta) -- C:\WINDOWS\system32\drivers\LVUSBSta.sys (Logitech Inc.)
DRV - (LVRS) -- C:\WINDOWS\system32\drivers\lvrs.sys (Logitech Inc.)
DRV - (LVPr2Mon) -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys ()
DRV - (usbaudio) Pilote USB audio (WDM) -- C:\WINDOWS\system32\drivers\USBAUDIO.sys (Microsoft Corporation)
DRV - (USB_RNDIS) -- C:\WINDOWS\system32\drivers\usb8023.sys (Microsoft Corporation)
DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\hdaudbus.sys (Windows (R) Server 2003 DDK provider)
DRV - (LMouFilt) -- C:\WINDOWS\system32\drivers\LMouFilt.Sys (Logitech, Inc.)
DRV - (LHidFilt) -- C:\WINDOWS\system32\drivers\LHidFilt.Sys (Logitech, Inc.)
DRV - (BlueletAudio) -- C:\WINDOWS\system32\drivers\blueletaudio.sys (IVT Corporation.)
DRV - (Btcsrusb) -- C:\WINDOWS\system32\drivers\btcusb.sys (IVT Corporation.)
DRV - (BlueletSCOAudio) -- C:\WINDOWS\system32\drivers\BlueletSCOAudio.sys (IVT Corporation.)
DRV - (BT) -- C:\WINDOWS\system32\drivers\btnetdrv.sys (IVT Corporation.)
DRV - (BTHidMgr) -- C:\WINDOWS\System32\Drivers\BTHidMgr.sys (IVT Corporation.)
DRV - (BTHidEnum) -- C:\WINDOWS\System32\Drivers\vbtenum.sys (IVT Corporation.)
DRV - (VcommMgr) -- C:\WINDOWS\system32\drivers\VcommMgr.sys (IVT Corporation.)
DRV - (VComm) -- C:\WINDOWS\system32\drivers\VComm.sys (IVT Corporation.)
DRV - (BTNetFilter) -- C:\Program Files\IVT Corporation\BlueSoleil\device\Win2k\BTNetFilter.sys (IVT Corporation.)
DRV - (nv) -- C:\WINDOWS\system32\drivers\nv4_mini.sys (NVIDIA Corporation)
DRV - (RTLE8023xp) -- C:\WINDOWS\system32\drivers\Rtenicxp.sys (Realtek Semiconductor Corporation )
DRV - (StarOpen) -- C:\WINDOWS\System32\drivers\StarOpen.sys ()
DRV - (LBeepKE) -- C:\WINDOWS\system32\drivers\LBeepKE.sys (Logitech, Inc.)
DRV - (LHidKe) -- C:\WINDOWS\system32\drivers\LHidKE.Sys (Logitech, Inc.)
DRV - (LMouKE) -- C:\WINDOWS\system32\drivers\LMouKE.Sys (Logitech, Inc.)
DRV - (L8042mou) -- C:\WINDOWS\system32\drivers\L8042MOU.SYS (Logitech, Inc.)
DRV - (L8042Kbd) -- C:\WINDOWS\system32\drivers\L8042Kbd.SYS (Logitech, Inc.)
DRV - (ADIHdAudAddService) -- C:\WINDOWS\system32\drivers\ADIHdAud.sys (Analog Devices, Inc.)
DRV - (SenFiltService) -- C:\WINDOWS\system32\drivers\senfilt.sys (Sensaura)
DRV - (sscdmdm) -- C:\WINDOWS\system32\drivers\sscdmdm.sys (MCCI)
DRV - (sscdmdfl) -- C:\WINDOWS\system32\drivers\sscdmdfl.sys (MCCI)
DRV - (sscdbus) SAMSUNG USB Composite Device driver (WDM) -- C:\WINDOWS\system32\drivers\sscdbus.sys (MCCI)
DRV - (QCMerced) -- C:\WINDOWS\system32\drivers\lvcm.sys ()
DRV - (MTsensor) -- C:\WINDOWS\system32\drivers\ASACPI.sys ()
DRV - (PCANDIS5) -- C:\WINDOWS\system32\PCANDIS5.SYS (Printing Communications Assoc., Inc. (PCAUSA))
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1547161642-839522115-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-1547161642-839522115-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2776682
IE - HKU\S-1-5-21-1547161642-839522115-725345543-1003\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Wanadoo\SearchPageURL.dll ()
IE - HKU\S-1-5-21-1547161642-839522115-725345543-1003\..\URLSearchHook: {472734EA-242A-422b-ADF8-83D1E48CC825} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-1547161642-839522115-725345543-1003\..\URLSearchHook: {51a86bb3-6602-4c85-92a5-130ee4864f13} - C:\Program Files\BrotherSoft_Extreme\tbBrot.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-1547161642-839522115-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1547161642-839522115-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" =
IE - HKU\S-1-5-21-1547161642-839522115-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" =
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "Google"
FF - prefs.js..browser.search.defaulturl: "http://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q="
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://french.eazel.com/fr/index.php?rvs=hompag&d=79919294"
FF - prefs.js..browser.startup.homepage: "http://www.msn.fr/"
FF - prefs.js..keyword.URL: "http://search.live.com/results.aspx?mkt=fr-FR&FORM=MIMWA2&q="
FF - prefs.js..browser.search.selectedEngine: "Live Search"
FF - prefs.js..browser.startup.homepage: "http://www.ustart.org"
FF - prefs.js..browser.search.selectedEngine: "uStart"
FF - prefs.js..browser.startup.homepage: "http://www.msn.fr/"
FF - prefs.js..keyword.URL: "http://search.live.com/results.aspx?mkt=fr-FR&FORM=MIMWA2&q="
FF - prefs.js..browser.search.selectedEngine: "Live Search"
FF - prefs.js..browser.startup.homepage: "http://www.msn.fr/"
FF - prefs.js..keyword.URL: "http://search.live.com/results.aspx?mkt=fr-FR&FORM=MIMWA2&q="
FF - prefs.js..browser.search.selectedEngine: "Live Search"
FF - prefs.js..browser.startup.homepage: "http://www.msn.fr/"
FF - prefs.js..keyword.URL: "http://search.live.com/results.aspx?mkt=fr-FR&FORM=MIMWA2&q="
FF - prefs.js..browser.search.selectedEngine: "Live Search"
FF - prefs.js..browser.startup.homepage: "http://www.searcheo.fr/recherche"
FF - prefs.js..keyword.URL: "http://www.searcheo.fr/recherche?search&q="
FF - prefs.js..browser.startup.homepage: "Searcheo");user_pref("browser.startup.homepage", "http://www.ustart.org"
FF - prefs.js..browser.search.selectedEngine: "uStart"
FF - prefs.js..browser.startup.homepage: "http://www.ustart.org"
FF - prefs.js..browser.search.selectedEngine: "uStart"
FF - prefs.js..browser.startup.homepage: "http://www.ustart.org"
FF - prefs.js..browser.search.selectedEngine: "uStart"
FF - prefs.js..browser.startup.homepage: "http://www.ustart.org"
FF - prefs.js..browser.search.selectedEngine: "uStart"
FF - prefs.js..browser.startup.homepage: "http://www.ustart.org"
FF - prefs.js..browser.search.selectedEngine: "uStart"
FF - HKLM\software\mozilla\Firefox\Extensions\\{3112ca9c-de6d-4884-a869-9855de68056c}: C:\Documents and Settings\All Users\Application Data\Mozilla\Firefox Extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2007/09/29 13:21:26 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/08/10 06:02:23 | 000,000,000 | ---D | M]
[2009/04/12 15:56:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Extensions
[2009/04/12 15:56:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Extensions\home2@tomtom.com
[2007/09/29 16:16:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\kakcniku.default\extensions
[2007/09/29 16:16:26 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\kakcniku.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2008/11/30 21:27:04 | 000,001,775 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\kakcniku.default\searchplugins\live-search.xml
[2009/06/28 19:27:31 | 000,003,721 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\kakcniku.default\searchplugins\Searcheo.xml
[2010/02/17 11:08:10 | 000,005,254 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\kakcniku.default\searchplugins\ustart.xml
[2008/01/02 07:58:51 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
O1 HOSTS File: ([2011/01/21 20:33:04 | 000,428,693 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: localhost
O1 - Hosts: http://www.007guard.com
O1 - Hosts: 007guard.com
O1 - Hosts: 008i.com
O1 - Hosts: http://www.008k.com
O1 - Hosts: 008k.com
O1 - Hosts: http://www.00hq.com
O1 - Hosts: 00hq.com
O1 - Hosts: 010402.com
O1 - Hosts: http://www.032439.com
O1 - Hosts: 032439.com
O1 - Hosts: http://www.0scan.com
O1 - Hosts: 0scan.com
O1 - Hosts: 1000gratisproben.com
O1 - Hosts: http://www.1000gratisproben.com
O1 - Hosts: 1001namen.com
O1 - Hosts: http://www.1001namen.com
O1 - Hosts: 100888290cs.com
O1 - Hosts: http://www.100888290cs.com
O1 - Hosts: http://www.100sexlinks.com
O1 - Hosts: 100sexlinks.com
O1 - Hosts: 10sek.com
O1 - Hosts: http://www.10sek.com
O1 - Hosts: http://www.1-2005-search.com
O1 - Hosts: 1-2005-search.com
O1 - Hosts: 14760 more lines...
O2 - BHO: (Aide pour le lien d'Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (dsWebAllowBHO Class) - {2F85D76C-0569-466F-A488-493E6BD0E955} - C:\Program Files\Windows Desktop Search\dsWebAllow.dll (Microsoft Corporation)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (BrotherSoft Extreme Toolbar) - {51a86bb3-6602-4c85-92a5-130ee4864f13} - C:\Program Files\BrotherSoft_Extreme\tbBrot.dll (Conduit Ltd.)
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (BrotherSoft Extreme Toolbar) - {51a86bb3-6602-4c85-92a5-130ee4864f13} - C:\Program Files\BrotherSoft_Extreme\tbBrot.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKU\S-1-5-21-1547161642-839522115-725345543-1003\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKU\S-1-5-21-1547161642-839522115-725345543-1003\..\Toolbar\WebBrowser: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [LogitechCommunicationsManager] C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe ()
O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\QuickCam\Quickcam.exe ()
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [MMTray] C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe (Musicmatch, Inc.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [Protect] C:\WINDOWS\System32\SHVRTF.EXE (SoftThinks)
O4 - HKLM..\Run: [RemoteControl] C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe (Cyberlink Corp.)
O4 - HKLM..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [WOOTASKBARICON] File not found
O4 - HKLM..\Run: [WOOWATCH] C:\Program Files\Wanadoo\Watch.exe (France Télécom R&D)
O4 - HKU\S-1-5-21-1547161642-839522115-725345543-1003..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-1547161642-839522115-725345543-1003..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Logitech Inc.)
O4 - HKU\S-1-5-21-1547161642-839522115-725345543-1003..\Run: [PowerBar] C:\Program Files\CyberLink DVD Solution\Multimedia Launcher\PowerBar.exe (Cyberlink, Corp.)
O4 - HKU\S-1-5-21-1547161642-839522115-725345543-1003..\Run: [TomTomHOME.exe] C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe (TomTom)
O4 - HKU\S-1-5-21-1547161642-839522115-725345543-1003..\Run: [WOOKIT] C:\Program Files\Wanadoo\Shell.exe ()
O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\ExifLauncher2.lnk = C:\Program Files\FinePixViewer\QuickDCF2.exe (FUJIFILM Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Logitech Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech SetPoint.lnk = F:\Mes documents\Nouveau dossier\SetPoint\SetPoint.exe (Logitech, Inc.)
O4 - Startup: C:\Documents and Settings\Propriétaire\Menu Démarrer\Programmes\Démarrage\Lanceur.lnk = C:\Program Files\Micro Application\LauncherMA.exe (Micro Application)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1547161642-839522115-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95 00 00 00 [binary data]
O9 - Extra Button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/Fac ... oader5.cab (Facebook Photo Uploader 5)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} http://messenger.zone.msn.com/FR-FR/a-U ... E_UNO1.cab (UnoCtrl Class)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupda ... 7989642234 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/Me ... b56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/pub/s ... wflash.cab (Shockwave Flash Object)
O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (c:\progra~1\bandoo\bndhook.dll) - File not found
O20 - AppInit_DLLs: (ehtwuu.dll) - File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\LBTWlgn: DllName - c:\program files\fichiers communs\logitech\bluetooth\LBTWlgn.dll - c:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - CLSID or File not found.
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007/01/05 09:53:36 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{b8ccf123-185f-11dc-9b06-0018f3089fa0}\Shell\Auto\command - "" = AdobeR.exe e
O33 - MountPoints2\{b8ccf123-185f-11dc-9b06-0018f3089fa0}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdobeR.exe e
O33 - MountPoints2\{c76c987e-dcad-11dd-9f71-0018f3089fa0}\Shell\AutoRun\command - "" = G:\InstallTomTomHOME.exe
O33 - MountPoints2\{fe6e8484-bc49-11dc-9c5e-0018f3089fa0}\Shell\AutoRun\command - "" = G:\InstallTomTomHOME.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
SafeBootMin: AppMgmt - File not found
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vds - Service
SafeBootMin: vga.sys - Driver
SafeBootMin: WdfLoadGroup -
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: AppMgmt - File not found
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: WdfLoadGroup -
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Rendu VML (Vector Graphics Rendering)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2A3320D6-C805-4280-B423-B665BDE33D8F} - Microsoft .NET Framework 1.1 Security Update (KB979906)
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {2F6EFCE6-10DF-49F9-9E64-9AE3775B2588} - Microsoft .NET Framework 1.1 Security Update (KB2416447)
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Liaison de données Dynamic HTML pour Java
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Création avancée
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - Classes Java DirectAnimation
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Dossiers Web
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINDOWS\system32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {9A394342-4A68-4EBA-85A6-55B559F4E700} - .NET Framework
ActiveX: {B508B3F1-A24A-32C0-B310-85786919EF28} - .NET Framework
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Planificateur de tâches
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Macromedia Shockwave Flash
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {F196AC50-7C95-42E1-9947-BDAB18BF3C8C} - .NET Framework
ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE
ActiveX: >{CB58DED6-4AF3-4080-9DF1-DEE72075169F} - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: Microsoft Base Smart Card Crypto Provider Package -
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: VIDC.I420 - C:\WINDOWS\System32\LVCodec2.dll (Logitech Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.SP54 - C:\WINDOWS\System32\SP5X_32.DLL (Sunplus)
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
========== Files/Folders - Created Within 30 Days ==========
[2011/01/27 16:54:49 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011/01/27 16:54:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Malwarebytes' Anti-Malware
[2011/01/27 16:54:45 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011/01/27 16:54:45 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/01/24 22:11:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\clp
[2011/01/24 22:11:02 | 000,000,000 | ---D | C] -- C:\Program Files\Fighters
[2011/01/24 21:44:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PC Tools
[2011/01/24 21:42:38 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Propriétaire\Recent
[2011/01/24 19:59:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\CCleaner
[2011/01/24 19:59:02 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011/01/24 18:16:40 | 000,098,392 | ---- | C] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2011/01/24 18:14:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Sunbelt Software
[2011/01/24 18:13:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft
[2011/01/24 16:54:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Application Data\Uniblue
[2011/01/24 16:53:38 | 000,000,000 | ---D | C] -- C:\Program Files\Uniblue
[2011/01/24 16:53:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\PackageAware
[2011/01/22 12:50:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\BrotherSoft_Extreme
[2011/01/22 12:50:45 | 000,000,000 | ---D | C] -- C:\Program Files\BrotherSoft_Extreme
[2011/01/22 12:50:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Application Data\GetRightToGo
[2011/01/22 11:37:59 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Softwin
[2011/01/21 20:08:22 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2011/01/21 20:08:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
[2011/01/20 06:36:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis
[2011/01/08 12:15:31 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2011/01/08 12:15:31 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2011/01/08 12:15:31 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2007/11/10 14:04:25 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Propriétaire\Application Data\pcouffin.sys
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2011/01/27 17:10:00 | 000,001,054 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/01/27 17:07:52 | 000,054,016 | ---- | M] () -- C:\WINDOWS\System32\drivers\magw.sys
[2011/01/27 16:54:50 | 000,000,791 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk
[2011/01/27 16:20:14 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/01/27 16:19:22 | 000,088,566 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2011/01/27 16:19:16 | 000,000,292 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-1547161642-839522115-725345543-1003.job
[2011/01/27 16:19:15 | 000,001,050 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/01/27 16:19:08 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/01/27 16:19:04 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\drivers\lvuvc.hs
[2011/01/27 16:19:02 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\drivers\logiflt.iad
[2011/01/25 20:27:42 | 000,053,248 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/01/24 21:47:20 | 000,717,548 | ---- | M] () -- C:\WINDOWS\System32\drivers\Cat.DB
[2011/01/24 21:44:15 | 000,512,992 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Bureau\sdsetup.exe
[2011/01/24 21:33:00 | 000,000,036 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\housecall.guid.cache
[2011/01/24 19:59:05 | 000,000,689 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\CCleaner.lnk
[2011/01/24 18:23:49 | 000,000,478 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2011/01/24 18:16:37 | 000,098,392 | ---- | M] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2011/01/22 11:50:55 | 000,081,984 | ---- | M] () -- C:\WINDOWS\System32\bdod.bin
[2011/01/21 22:24:17 | 000,000,300 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-1547161642-839522115-725345543-1003.job
[2011/01/21 20:33:04 | 000,428,693 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011/01/20 06:38:25 | 000,001,741 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Bureau\HijackThis.lnk
[2011/01/19 22:30:30 | 000,000,041 | ---- | M] () -- C:\WINDOWS\Kit.ini
[2011/01/19 21:22:20 | 000,001,736 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Adobe Reader 8.lnk
[2011/01/19 17:10:12 | 000,001,547 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Gestionnaire Internet.lnk
[2011/01/19 17:09:43 | 000,001,545 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Navigateur Orange.lnk
[2011/01/17 22:17:57 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011/01/17 17:11:57 | 000,001,820 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Google Chrome.lnk
[2011/01/17 16:26:35 | 000,003,121 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011/01/13 09:47:35 | 000,038,848 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011/01/13 09:47:32 | 000,188,216 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011/01/13 09:41:16 | 000,294,608 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011/01/13 09:40:16 | 000,047,440 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011/01/13 09:40:04 | 000,100,176 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011/01/13 09:39:50 | 000,094,544 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011/01/13 09:37:30 | 000,023,632 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011/01/13 09:37:11 | 000,029,392 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011/01/13 09:37:09 | 000,017,744 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011/01/12 06:16:55 | 000,249,496 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011/01/27 17:07:52 | 000,054,016 | ---- | C] () -- C:\WINDOWS\System32\drivers\magw.sys
[2011/01/27 16:54:50 | 000,000,791 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk
[2011/01/24 21:47:06 | 000,717,548 | ---- | C] () -- C:\WINDOWS\System32\drivers\Cat.DB
[2011/01/24 21:44:22 | 000,512,992 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Bureau\sdsetup.exe
[2011/01/24 21:33:00 | 000,000,036 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\housecall.guid.cache
[2011/01/24 19:59:05 | 000,000,689 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\CCleaner.lnk
[2011/01/24 18:18:38 | 000,000,478 | ---- | C] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2011/01/22 11:44:25 | 000,081,984 | ---- | C] () -- C:\WINDOWS\System32\bdod.bin
[2011/01/20 06:36:25 | 000,001,741 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Bureau\HijackThis.lnk
[2011/01/19 17:17:47 | 000,000,041 | ---- | C] () -- C:\WINDOWS\Kit.ini
[2011/01/19 17:10:12 | 000,001,547 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Gestionnaire Internet.lnk
[2009/02/22 09:02:59 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\aqhmpwbn.dll
[2009/02/21 21:10:15 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\pyejfygo.dll
[2009/02/20 06:31:03 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\gbncyhvr.dll
[2009/02/18 18:45:19 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ptyirmgt.dll
[2009/02/18 06:19:37 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\dghieehe.dll
[2009/02/17 18:18:23 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\gwhjgfyo.dll
[2009/02/14 10:39:10 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\qdartixn.dll
[2009/02/13 06:27:41 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\iprcntfm.dll
[2009/02/12 06:29:54 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\latycadp.dll
[2009/02/11 18:04:45 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\lduakarl.dll
[2009/02/11 06:07:33 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\gtbvfive.dll
[2009/02/08 19:33:38 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\jcxfvrgo.dll
[2009/02/07 19:31:06 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\uxpvqwni.dll
[2009/02/06 17:41:20 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\skuapeps.dll
[2009/02/05 21:33:38 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\juxsyrdq.dll
[2009/02/05 20:04:01 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\qanowyod.dll
[2009/02/04 20:01:08 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\wvttcdhp.dll
[2009/02/03 18:26:06 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\vchdqrcu.dll
[2009/02/03 16:42:58 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ylwpohhy.dll
[2009/02/01 12:08:28 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\kuoratka.dll
[2009/01/31 19:09:16 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\iurkdqka.dll
[2009/01/30 19:08:30 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\bdlkpsge.dll
[2009/01/29 20:00:39 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\agulnidt.dll
[2009/01/28 19:57:44 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\neqnmdit.dll
[2009/01/28 19:55:37 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ipxdsaoa.dll
[2009/01/27 19:56:26 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\scikioni.dll
[2009/01/26 19:55:51 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\vjfloenl.dll
[2009/01/22 06:02:16 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\htsgglnc.dll
[2009/01/21 05:52:09 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\prvltooh.dll
[2009/01/20 19:17:35 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\nunohfnh.dll
[2009/01/19 19:15:53 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\vkcsigsl.dll
[2009/01/19 06:06:03 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\haemeyni.dll
[2009/01/18 13:49:13 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\pibdmwyn.dll
[2009/01/17 14:18:26 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\iljbxjbk.dll
[2009/01/17 09:26:05 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\psdtakcg.dll
[2009/01/16 06:39:21 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\lemqhmon.dll
[2009/01/16 06:09:17 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\awuatjsa.dll
[2009/01/15 19:01:51 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\vgduthrh.dll
[2009/01/14 19:00:59 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ipktohht.dll
[2009/01/13 16:47:33 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\eqwpxyff.dll
[2009/01/13 06:07:20 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\fmjepfeu.dll
[2009/01/12 06:07:06 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\qnsuejhh.dll
[2009/01/11 18:33:11 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\jiquvdbo.dll
[2009/01/10 18:32:44 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ltckjedc.dll
[2009/01/09 18:28:36 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\wfuovptk.dll
[2009/01/07 12:27:01 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\nrambjst.dll
[2009/01/06 13:38:08 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\iqrhjklr.dll
[2009/01/05 16:22:34 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\ghylvpwx.dll
[2009/01/05 16:20:58 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\aupgfxrm.dll
[2009/01/04 15:54:00 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\yqsomwpm.dll
[2009/01/04 15:53:57 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\dxktsonl.dll
[2009/01/04 10:08:43 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\rtbmmguo.dll
[2009/01/04 10:05:43 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\xctvojrg.dll
[2009/01/03 10:03:23 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\cbiheniw.dll
[2009/01/03 10:03:23 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\wsfhekml.dll
[2009/01/03 09:51:07 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\yeiwfdcj.dll
[2009/01/03 09:49:25 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\hyubcxue.dll
[2009/01/02 18:54:04 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\srumkgai.dll
[2009/01/02 18:51:07 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\jgeavpbh.dll
[2009/01/01 18:52:12 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\cbywqawq.dll
[2009/01/01 18:51:02 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\uppqgitd.dll
[2008/12/30 18:33:50 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ybugifrf.dll
[2008/12/30 18:30:52 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\rwehborh.dll
[2008/12/30 18:28:09 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\glpfelto.dll
[2008/12/30 18:28:05 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\fmepcvxr.dll
[2008/12/30 16:58:34 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\ikskbqap.dll
[2008/12/29 16:47:50 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\gixjwjkl.dll
[2008/12/29 16:44:37 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\grkgpgud.dll
[2008/12/28 11:19:04 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\pprkbjld.dll
[2008/12/28 11:19:01 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\qlmiynbj.dll
[2008/12/27 22:51:50 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\kgpxvbds.dll
[2008/12/27 22:51:47 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\esowvuok.dll
[2008/12/27 20:51:07 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\rarwuvdi.dll
[2008/12/27 20:51:04 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\uxhsdowm.dll
[2008/12/27 08:15:06 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\emfobaux.dll
[2008/12/27 08:14:41 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\qaumpmap.dll
[2008/12/26 08:29:17 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\fswvtusr.dll
[2008/12/26 08:27:03 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\xnwudxml.dll
[2008/12/25 22:21:24 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\njddmfpe.dll
[2008/12/25 22:21:20 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\xirilpkq.dll
[2008/12/25 17:17:00 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\adrmssgx.dll
[2008/12/24 14:32:26 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\driuqrdl.dll
[2008/12/24 14:29:49 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\hyykvplg.dll
[2008/12/23 20:35:51 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\vjrxcvot.dll
[2008/12/23 20:34:01 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\squgwdoq.dll
[2008/12/23 16:44:01 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\yhxasseq.dll
[2008/12/23 16:19:28 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\wwhqwmou.dll
[2008/12/23 08:20:38 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\loujmehq.dll
[2008/12/23 08:18:25 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ftnmfmvt.dll
[2008/12/23 08:02:25 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\qqqtcuak.dll
[2008/12/21 13:54:43 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ehgymwdf.dll
[2008/12/21 13:52:23 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\bwooxtft.dll
[2008/12/21 10:17:03 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\wdyyrpmb.dll
[2008/12/21 10:14:03 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\uwubjehr.dll
[2008/12/20 10:15:22 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\cduqtacj.dll
[2008/12/20 10:12:21 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\uxrimvmy.dll
[2008/12/20 09:09:22 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\rxbncdgd.dll
[2008/12/17 22:27:17 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\vgdoriht.dll
[2008/12/17 20:07:33 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\avewwmpv.dll
[2008/12/17 20:06:23 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\dfdslnih.dll
[2008/12/16 20:05:52 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\tntbksbd.dll
[2008/12/16 20:03:36 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\mehuntdv.dll
[2008/12/16 19:39:16 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\dfrnophe.dll
[2008/12/16 19:38:22 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\abajihth.dll
[2008/12/16 18:38:26 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\avgpscuv.dll
[2008/12/16 18:35:26 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\oklpmiwj.dll
[2008/12/15 18:34:01 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\lpufmeqt.dll
[2008/12/15 18:33:57 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\lgiqdcra.dll
[2008/12/14 18:50:31 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\kspgrhwf.dll
[2008/12/14 18:48:11 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\rbcabjfj.dll
[2008/12/14 11:32:14 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\ovqaxlvx.dll
[2008/12/14 11:29:14 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\guosdjat.dll
[2008/12/13 13:34:15 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\outwndjg.dll
[2008/12/13 11:23:44 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\tsmrvgen.dll
[2008/12/12 15:21:27 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\brdlcoku.dll
[2008/12/12 15:19:13 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\dntpapxs.dll
[2008/12/11 20:31:58 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\lmpourec.dll
[2008/12/11 20:31:55 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\jtgyrsjl.dll
[2008/12/11 18:18:28 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\nunubeoe.dll
[2008/12/11 18:16:11 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\yvdfjoup.dll
[2008/12/11 06:40:34 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\bsjrebsm.dll
[2008/12/11 06:38:13 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\oolxlqcf.dll
[2008/12/10 18:51:13 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\wjpnyvdi.dll
[2008/12/10 18:48:56 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\tjqopqnp.dll
[2008/12/10 16:49:13 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\gfjoeiso.dll
[2008/12/09 16:41:14 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\gfiopndl.dll
[2008/12/09 16:41:11 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\jtlsdvca.dll
[2008/12/09 13:31:14 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\iltmwqby.dll
[2008/12/09 13:28:14 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\irtmuwnp.dll
[2008/08/25 10:33:58 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2008/07/26 08:25:02 | 000,025,624 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPr2Mon.sys
[2007/12/24 18:55:16 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\akrip32.dll
[2007/12/24 18:55:14 | 002,965,504 | ---- | C] () -- C:\WINDOWS\System32\TranscodingDLL.dll
[2007/12/24 18:55:13 | 000,864,256 | ---- | C] () -- C:\WINDOWS\System32\FreeImage.dll
[2007/12/24 18:55:13 | 000,172,032 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2007/12/24 18:55:13 | 000,055,808 | ---- | C] () -- C:\WINDOWS\System32\zlib1.dll
[2007/12/24 18:53:38 | 000,000,423 | ---- | C] () -- C:\WINDOWS\System32\dext536.ini
[2007/12/24 18:53:37 | 000,001,611 | ---- | C] () -- C:\WINDOWS\Remove.ini
[2007/12/20 06:35:28 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\LauncherAccess.dt
[2007/12/20 06:31:46 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2007/11/10 14:04:42 | 000,000,034 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Application Data\pcouffin.log
[2007/11/10 14:04:25 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Application Data\inst.exe
[2007/11/10 14:04:25 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Application Data\pcouffin.cat
[2007/11/10 14:04:25 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Application Data\pcouffin.inf
[2007/05/17 17:25:36 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini
[2007/05/17 17:24:30 | 000,000,025 | ---- | C] () -- C:\WINDOWS\CDE DX5000EFDG.ini
[2007/03/31 22:58:53 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI
[2007/01/27 10:25:53 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll
[2007/01/27 10:25:53 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll
[2007/01/27 10:25:53 | 000,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll
[2007/01/24 17:19:44 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2007/01/12 20:58:04 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2007/01/11 22:04:44 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\xmltok.dll
[2007/01/11 22:04:44 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\xmlparse.dll
[2007/01/09 22:18:52 | 000,053,248 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/01/09 21:06:11 | 001,317,152 | R--- | C] () -- C:\WINDOWS\System32\drivers\lvcm.sys
[2007/01/09 21:06:11 | 000,066,482 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
[2007/01/09 18:21:13 | 000,000,385 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2007/01/05 12:55:56 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\PCA_VSS.DLL
[2007/01/05 12:55:56 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\PCA_EXT.DLL
[2007/01/05 12:55:56 | 000,003,674 | ---- | C] () -- C:\WINDOWS\System32\MBR.INI
[2007/01/05 12:55:56 | 000,001,683 | ---- | C] () -- C:\WINDOWS\System32\START.INI
[2007/01/05 12:55:56 | 000,000,381 | ---- | C] () -- C:\WINDOWS\EXT.INI
[2007/01/05 12:55:56 | 000,000,283 | ---- | C] () -- C:\WINDOWS\System32\STARTREC.INI
[2007/01/05 12:55:56 | 000,000,246 | ---- | C] () -- C:\WINDOWS\System32\RECGUARD.INI
[2007/01/05 11:29:54 | 000,000,021 | ---- | C] () -- C:\WINDOWS\pccillin.ini
[2007/01/05 11:27:15 | 000,000,135 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\fusioncache.dat
[2007/01/05 10:44:19 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2007/01/05 10:27:45 | 000,040,960 | ---- | C] () -- C:\Program Files\Uninstall_CDS.exe
[2007/01/05 10:06:24 | 000,019,946 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2007/01/05 10:06:11 | 000,019,908 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2007/01/05 10:06:08 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2007/01/05 10:06:04 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2006/10/22 12:22:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006/10/22 12:22:00 | 001,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2006/10/22 12:22:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006/10/22 12:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006/10/22 12:22:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2006/10/22 12:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006/10/22 12:22:00 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2003/04/01 10:58:02 | 000,005,260 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[1999/01/27 13:39:06 | 000,065,024 | ---- | C] () -- C:\WINDOWS\System32\indounin.dll
[1997/06/13 07:56:08 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll
========== LOP Check ==========
[2010/12/14 06:37:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2007/09/02 11:58:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Bluetooth
[2011/01/24 22:41:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\clp
[2010/12/25 10:32:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Micro Application
[2011/01/24 22:03:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2009/04/12 15:56:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TomTom
[2007/05/31 13:07:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\UDL
[2009/08/21 07:20:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WindowsLiveInstaller
[2007/10/22 17:59:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\EPSON
[2007/01/09 21:03:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\FotoWire
[2008/06/02 15:56:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\FUJIFILM
[2011/01/24 18:03:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\GetRightToGo
[2009/06/28 19:27:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Icones
[2007/07/09 15:05:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Leadertech
[2007/01/07 21:22:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\MSNInstaller
[2007/02/21 17:42:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Musicmatch
[2007/01/05 13:49:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\SampleView
[2007/12/20 06:36:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Samsung
[2010/12/25 10:38:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\TitanicMystery
[2008/01/06 12:42:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\TomTom
[2011/01/24 16:54:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Uniblue
[2008/02/05 21:26:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Vso
[2007/01/05 13:02:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Windows Desktop Search
[2011/01/24 18:23:49 | 000,000,478 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
========== Purity Check ==========
========== Custom Scans ==========
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %ALLUSERSPROFILE%\Application Data\*. >
[2010/01/14 20:45:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2007/08/15 13:41:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ahead
[2010/12/14 06:37:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2008/12/19 15:15:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Apple
[2008/12/19 15:49:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Apple Computer
[2007/09/02 11:58:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Bluetooth
[2011/01/24 22:41:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\clp
[2007/08/19 09:48:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\CyberLink
[2007/09/29 16:16:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Google
[2011/01/24 19:24:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Lavasoft
[2008/11/11 20:14:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LogiShrd
[2008/11/11 20:14:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Logitech
[2009/02/22 09:31:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010/12/25 10:32:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Micro Application
[2010/06/07 17:27:07 | 000,000,000 | --SD | M] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2007/09/29 13:21:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Mozilla
[2007/11/10 12:11:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nero
[2011/01/24 22:03:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Tools
[2010/12/13 16:19:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Real
[2011/01/21 22:20:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
[2010/04/02 14:09:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sun
[2011/01/24 22:03:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2009/04/12 15:56:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TomTom
[2009/12/26 11:15:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Trend Micro
[2007/05/31 13:07:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\UDL
[2007/01/05 13:02:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2007/01/05 19:06:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Windows Live Toolbar
[2009/08/21 07:20:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WindowsLiveInstaller
[2008/03/17 19:59:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WLInstaller
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
[2007/09/29 13:21:13 | 000,072,704 | ---- | M] (Google) -- C:\Documents and Settings\All Users\Application Data\Mozilla\Firefox Extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\uninstaller.exe
[2011/01/24 21:45:59 | 065,317,024 | ---- | M] (PC Tools ) -- C:\Documents and Settings\All Users\Application Data\PC Tools\DownloadManager\Spyware Doctor8.0\sdsetup_dl.exe
< %APPDATA%\*. >
[2009/09/20 12:05:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Adobe
[2007/04/05 18:53:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\AdobeUM
[2007/08/16 11:48:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Ahead
[2008/12/19 15:52:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Apple Computer
[2007/08/19 09:48:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\CyberLink
[2007/09/29 13:20:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\DivX
[2007/10/22 17:59:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\EPSON
[2007/01/09 21:03:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\FotoWire
[2008/06/02 15:56:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\FUJIFILM
[2011/01/24 18:03:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\GetRightToGo
[2007/04/14 07:34:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Google
[2011/01/19 16:46:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Help
[2009/06/28 19:27:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Icones
[2007/01/05 13:02:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Identities
[2007/12/17 07:05:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\InstallShield
[2007/07/09 15:05:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Leadertech
[2007/01/05 15:04:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Logitech
[2009/09/20 12:05:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Macromedia
[2009/02/22 09:31:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Malwarebytes
[2009/08/24 06:38:49 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Propriétaire\Application Data\Microsoft
[2009/04/12 15:56:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla
[2007/01/07 21:22:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\MSNInstaller
[2007/02/21 17:42:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Musicmatch
[2010/12/13 16:19:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Real
[2007/01/05 13:49:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\SampleView
[2007/12/20 06:36:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Samsung
[2007/04/29 16:50:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Sun
[2007/09/29 13:23:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Talkback
[2010/12/25 10:38:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\TitanicMystery
[2008/01/06 12:42:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\TomTom
[2011/01/24 16:54:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Uniblue
[2007/08/08 11:18:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\vlc
[2008/02/05 21:26:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Vso
[2007/01/05 13:02:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Windows Desktop Search
[2007/12/18 06:37:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Yahoo!
< %APPDATA%\*.exe /s >
[2007/11/10 14:04:25 | 000,087,608 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Application Data\inst.exe
[2007/01/24 18:54:03 | 023,489,040 | ---- | M] ( ) -- C:\Documents and Settings\Propriétaire\Application Data\Adobe\Acrobat\7.0\Updater\AdbeRdr709_fr_FR.exe
[2007/05/17 19:13:54 | 001,214,696 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\Propriétaire\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\fpupdateax\fpupdateax.exe
[2008/09/26 05:45:40 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\Propriétaire\Application Data\Microsoft\Installer\{3101CB58-3482-4D21-AF1A-7057FC935355}\ARPPRODUCTICON.exe
[2010/12/25 10:32:53 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\Propriétaire\Application Data\Microsoft\Installer\{C06EFB22-B5DB-46C5-9215-BCB5C19C0858}\ARPPRODUCTICON.exe
[2010/12/25 10:32:53 | 000,053,248 | R--- | M] (Macrovision Corporation) -- C:\Documents and Settings\Propriétaire\Application Data\Microsoft\Installer\{C06EFB22-B5DB-46C5-9215-BCB5C19C0858}\NewShortcut1_C06EFB22B5DB46C59215BCB5C19C0858.exe
[2009/03/20 20:02:27 | 000,000,000 | R--- | M] () -- C:\Documents and Settings\Propriétaire\Application Data\Microsoft\Live Search\Notification-LiveSearch.exe
[2009/06/12 17:54:37 | 000,086,576 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Propriétaire\Application Data\Microsoft\Services Windows Live\Raccourci Galerie de Photos Windows Live.exe
[2009/06/12 17:54:37 | 000,132,672 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Propriétaire\Application Data\Microsoft\Services Windows Live\Raccourci Windows Live Messenger.exe
[2007/01/07 21:22:17 | 000,826,856 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Propriétaire\Application Data\MSNInstaller\msnauins.exe
[2011/01/25 18:49:33 | 000,510,120 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\Propriétaire\Application Data\Real\Update\setup3.13\setup.exe
< %SYSTEMDRIVE%\*.exe >
[2005/10/31 16:56:00 | 000,700,416 | ---- | M] (LimeWire) -- C:\StubInstaller.exe
[2008/12/11 17:10:10 | 000,001,025 | ---- | M] () -- C:\wax.exe
< %SYSTEMDRIVE%\*.exe >
[2005/10/31 16:56:00 | 000,700,416 | ---- | M] (LimeWire) -- C:\StubInstaller.exe
[2008/12/11 17:10:10 | 000,001,025 | ---- | M] () -- C:\wax.exe
< MD5 for: AGP440.SYS >
[2006/12/21 15:30:17 | 016,707,531 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008/04/13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008/04/13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
< MD5 for: ATAPI.SYS >
[2006/12/21 15:30:17 | 016,707,531 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008/04/13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008/04/13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2006/12/21 14:36:56 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2006/03/02 13:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\system32\DRIVERS\atapi.sys
[2006/03/02 13:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0008\DriverFiles\i386\atapi.sys
[2006/12/21 14:36:56 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0009\DriverFiles\i386\atapi.sys
< MD5 for: CDROM.SYS >
[2006/12/21 15:30:17 | 016,707,531 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008/04/13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008/04/13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2006/03/02 13:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
< MD5 for: CHANGER.SYS >
[2006/12/21 15:30:17 | 016,707,531 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008/04/13 19:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
< MD5 for: DISK.SYS >
[2006/12/21 15:30:17 | 016,707,531 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:disk.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:disk.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:disk.sys
[2006/03/02 13:00:00 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=00CA44E4534865F8A3B64F7C0984BFF0 -- C:\WINDOWS\$NtServicePackUninstall$\disk.sys
[2008/04/13 19:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\ServicePackFiles\i386\disk.sys
[2008/04/13 19:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\system32\drivers\disk.sys
[2006/03/02 13:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=49B1376885340BF9EA0D99F71557B59A -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
[2008/04/14 03:33:24 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008/04/14 03:33:24 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\system32\eventlog.dll
[2006/03/02 13:00:00 | 001,036,288 | ---- | M] (Microsoft Corporation) MD5=2A7BD330924252A2FD80344FC949BB72 -- C:\WINDOWS\$NtUninstallKB938828$\explorer.exe
[2007/06/13 14:10:53 | 001,037,312 | ---- | M] (Microsoft Corporation) MD5=B795475444D6D57A572C14B9E1A29839 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007/06/13 14:22:28 | 001,037,312 | ---- | M] (Microsoft Corporation) MD5=D0288319660EDCFED07C7E74C4EA38A5 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
[2008/04/14 03:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\explorer.exe
[2008/04/14 03:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
< MD5 for: NDIS.SYS >
[2008/04/13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008/04/13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2006/03/02 13:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys
[2008/04/14 03:33:34 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008/04/14 03:33:34 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\system32\netlogon.dll
[2006/03/02 13:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=D4CFAC76926C24E32B7F25A35C31BC6E -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
< MD5 for: RASACD.SYS >
[2006/03/02 13:00:00 | 000,008,832 | ---- | M] (Microsoft Corporation) MD5=FE0D99D6F31E4FAD8159F690D68DED9C -- C:\WINDOWS\system32\dllcache\rasacd.sys
[2006/03/02 13:00:00 | 000,008,832 | ---- | M] (Microsoft Corporation) MD5=FE0D99D6F31E4FAD8159F690D68DED9C -- C:\WINDOWS\system32\drivers\rasacd.sys
< MD5 for: RDPWD.SYS >
[2006/12/21 14:39:27 | 000,139,528 | ---- | M] (Microsoft Corporation) MD5=047BEA21274C8A4A233674A76C958C2C -- C:\WINDOWS\$NtServicePackUninstall$\rdpwd.sys
[2008/04/14 03:34:54 | 000,139,656 | ---- | M] (Microsoft Corporation) MD5=6728E45B66F93C08F11DE2E316FC70DD -- C:\WINDOWS\ServicePackFiles\i386\rdpwd.sys
[2008/04/14 03:34:54 | 000,139,656 | ---- | M] (Microsoft Corporation) MD5=6728E45B66F93C08F11DE2E316FC70DD -- C:\WINDOWS\system32\drivers\rdpwd.sys
< MD5 for: SCECLI.DLL >
[2006/03/02 13:00:00 | 000,186,368 | ---- | M] (Microsoft Corporation) MD5=58D439F6EF73A2D9288B204E819F4BBD -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008/04/14 03:33:40 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008/04/14 03:33:40 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\system32\scecli.dll
< MD5 for: SFLOPPY.SYS >
[2006/12/21 15:30:17 | 016,707,531 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Sfloppy.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Sfloppy.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Sfloppy.sys
[2006/03/02 13:00:00 | 000,011,392 | ---- | M] (Microsoft Corporation) MD5=0D13B6DF6E9E101013A7AFB0CE629FE0 -- C:\WINDOWS\$NtServicePackUninstall$\sfloppy.sys
[2008/04/13 19:40:48 | 000,011,392 | ---- | M] (Microsoft Corporation) MD5=8E6B8C671615D126FDC553D1E2DE5562 -- C:\WINDOWS\ServicePackFiles\i386\sfloppy.sys
[2008/04/13 19:40:48 | 000,011,392 | ---- | M] (Microsoft Corporation) MD5=8E6B8C671615D126FDC553D1E2DE5562 -- C:\WINDOWS\system32\drivers\sfloppy.sys
[2006/12/21 15:30:17 | 016,707,531 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:splitter.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:splitter.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:splitter.sys
[2006/12/21 14:36:56 | 000,006,272 | ---- | M] (Microsoft Corporation) MD5=9BB1DD670CB7505A90FC4E61D4AA8227 -- C:\WINDOWS\$NtServicePackUninstall$\splitter.sys
[2008/04/13 19:45:07 | 000,006,272 | ---- | M] (Microsoft Corporation) MD5=AB8B92451ECB048A4D1DE7C3FFCB4A9F -- C:\WINDOWS\ServicePackFiles\i386\splitter.sys
[2008/04/13 19:45:07 | 000,006,272 | ---- | M] (Microsoft Corporation) MD5=AB8B92451ECB048A4D1DE7C3FFCB4A9F -- C:\WINDOWS\system32\drivers\splitter.sys
< MD5 for: SWMIDI.SYS >
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:swmidi.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:swmidi.sys
[2008/04/13 19:45:09 | 000,056,576 | ---- | M] (Microsoft Corporation) MD5=8CE882BCC6CF8A62F2B2323D95CB3D01 -- C:\WINDOWS\ServicePackFiles\i386\swmidi.sys
[2008/04/13 19:45:09 | 000,056,576 | ---- | M] (Microsoft Corporation) MD5=8CE882BCC6CF8A62F2B2323D95CB3D01 -- C:\WINDOWS\system32\drivers\swmidi.sys
[2006/12/21 14:36:40 | 000,054,272 | ---- | M] (Microsoft Corporation) MD5=94ABC808FC4B6D7D2BBF42B85E25BB4D -- C:\WINDOWS\$NtServicePackUninstall$\swmidi.sys
< MD5 for: TCPIP.SYS >
[2007/10/30 17:53:32 | 000,360,832 | ---- | M] (Microsoft Corporation) MD5=64798ECFA43D78C7178375FCDD16D8C8 -- C:\WINDOWS\$NtUninstallKB951748_0$\tcpip.sys
[2008/06/20 11:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008/04/13 20:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008/04/13 20:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008/06/20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2008/06/20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008/06/20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2008/06/20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[2006/12/21 14:43:28 | 000,360,576 | ---- | M] (Microsoft Corporation) MD5=B2220C618B42A2212A59D91EBD6FC4B4 -- C:\WINDOWS\$NtUninstallKB941644$\tcpip.sys
< MD5 for: TDPIPE.SYS >
[2006/03/02 13:00:00 | 000,012,040 | ---- | M] (Microsoft Corporation) MD5=38D437CF2D98965F239B0ABCD66DCB0F -- C:\WINDOWS\$NtServicePackUninstall$\tdpipe.sys
[2008/04/14 03:34:52 | 000,012,040 | ---- | M] (Microsoft Corporation) MD5=6471A66807F5E104E4885F5B67349397 -- C:\WINDOWS\ServicePackFiles\i386\tdpipe.sys
[2008/04/14 03:34:52 | 000,012,040 | ---- | M] (Microsoft Corporation) MD5=6471A66807F5E104E4885F5B67349397 -- C:\WINDOWS\system32\drivers\tdpipe.sys
< MD5 for: TDTCP.SYS >
[2008/04/14 03:34:53 | 000,021,896 | ---- | M] (Microsoft Corporation) MD5=C56B6D0402371CF3700EB322EF3AAF61 -- C:\WINDOWS\ServicePackFiles\i386\tdtcp.sys
[2008/04/14 03:34:53 | 000,021,896 | ---- | M] (Microsoft Corporation) MD5=C56B6D0402371CF3700EB322EF3AAF61 -- C:\WINDOWS\system32\drivers\tdtcp.sys
[2006/03/02 13:00:00 | 000,021,896 | ---- | M] (Microsoft Corporation) MD5=ED0580AF02502D00AD8C4C066B156BE9 -- C:\WINDOWS\$NtServicePackUninstall$\tdtcp.sys
[2006/12/21 15:30:17 | 016,707,531 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:usbprint.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:usbprint.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:usbprint.sys
[2006/12/21 14:36:56 | 000,025,856 | ---- | M] (Microsoft Corporation) MD5=A42369B7CD8886CD7C70F33DA6FCBCF5 -- C:\WINDOWS\$NtServicePackUninstall$\usbprint.sys
[2008/04/13 19:47:37 | 000,025,856 | ---- | M] (Microsoft Corporation) MD5=A717C8721046828520C9EDF31288FC00 -- C:\WINDOWS\ServicePackFiles\i386\usbprint.sys
[2008/04/13 19:47:37 | 000,025,856 | ---- | M] (Microsoft Corporation) MD5=A717C8721046828520C9EDF31288FC00 -- C:\WINDOWS\system32\drivers\usbprint.sys
< MD5 for: USBSCAN.SYS >
[2006/12/21 15:30:17 | 016,707,531 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:usbscan.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:usbscan.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:usbscan.sys
[2008/04/13 19:45:34 | 000,015,104 | ---- | M] (Microsoft Corporation) MD5=A0B8CF9DEB1184FBDD20784A58FA75D4 -- C:\WINDOWS\ServicePackFiles\i386\usbscan.sys
[2008/04/13 19:45:34 | 000,015,104 | ---- | M] (Microsoft Corporation) MD5=A0B8CF9DEB1184FBDD20784A58FA75D4 -- C:\WINDOWS\system32\drivers\usbscan.sys
[2006/12/21 13:37:00 | 000,015,104 | ---- | M] (Microsoft Corporation) MD5=A6BC71402F4F7DD5B77FD7F4A8DDBA85 -- C:\WINDOWS\$NtServicePackUninstall$\usbscan.sys
[2011/01/24 18:22:44 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=84717891F0734C611721F56C60B5FBC3 -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
[2008/04/14 03:34:26 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008/04/14 03:34:26 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\system32\userinit.exe
[2006/03/02 13:00:00 | 000,506,368 | ---- | M] (Microsoft Corporation) MD5=123EEA158F74D0F67A51DCDF065D1091 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008/04/14 03:34:28 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008/04/14 03:34:28 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\system32\winlogon.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[2009/03/08 03:31:44 | 000,348,160 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\dxtmsft.dll
[2009/03/08 03:31:38 | 000,216,064 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\dxtrans.dll
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job /lockedfiles >
< >
< >
========== Alternate Data Streams ==========
@Alternate Data Stream - 171 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:BB24555F
< End of report >
OTL Extras logfile created on: 27/01/2011 19:47:22 - Run 1
OTL by OldTimer - Version Folder = C:\Documents and Settings\Propriétaire\Bureau
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
1 023,00 Mb Total Physical Memory | 465,00 Mb Available Physical Memory | 45,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 82,00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,06 Gb Total Space | 10,92 Gb Free Space | 27,97% Space Free | Partition Type: NTFS
Drive F: | 148,82 Gb Total Space | 146,07 Gb Free Space | 98,15% Space Free | Partition Type: NTFS
Computer Name: PASCAL-C182C5EE | User Name: Propriétaire | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
[color=#E56717]========== File Associations ==========[/color]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = htmlfile] -- Reg Error: Key error. File not found
.url [@ = InternetShortcut] -- Reg Error: Key error. File not found
[color=#E56717]========== Shell Spawning ==========[/color]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
http [open] -- "C:\PROGRA~1\Wanadoo\WOOBrowser\WOOBrowser.exe" %1 ()
https [open] -- "C:\PROGRA~1\Wanadoo\WOOBrowser\WOOBrowser.exe" %1 ()
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [FinePix] -- "C:\Program Files\FinePixViewer\FinePixViewer.exe" "%1" (FUJIFILM Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[color=#E56717]========== Security Center Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[color=#E56717]========== System Restore Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
"Start" = 0
"Start" = 2
[color=#E56717]========== Firewall Settings ==========[/color]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
[color=#E56717]========== Authorized Applications List ==========[/color]
"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger -- (Logitech Inc.)
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare -- (Microsoft Corporation)
"C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe" = C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil -- (IVT Corporation.)
"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger -- (Logitech Inc.)
"C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\IXP000.TMP\ryreyp.exe" = C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\IXP000.TMP\ryreyp.exe:*:Enabled:Firevall Administrating
"C:\Program Files\NetMeeting\conf.exe" = C:\Program Files\NetMeeting\conf.exe:*:Enabled:Windows® NetMeeting® -- (Microsoft Corporation)
"C:\WINDOWS\system32\rtcshare.exe" = C:\WINDOWS\system32\rtcshare.exe:*:Enabled:Partage de l'application RTC -- (Microsoft Corporation)
"C:\Program Files\eChanblard\lang\eChanblard\emule.exe" = C:\Program Files\eChanblard\lang\eChanblard\emule.exe:*:Enabled:eMule -- (http://www.emule-project.net)
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare -- (Microsoft Corporation)
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{0CA6047C-D28B-4295-834A-07C52BA20C2D}" = Extension de Windows Live Toolbar (Windows Live Toolbar)
"{0CC70FEF-5068-4CD5-B4DE-86FFD98EC929}" = Menus intelligents (Windows Live Toolbar)
"{133742BA-6F46-4D3E-85AF-78631D9AD8B8}" = Installation Windows Live
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{17342E3B-0818-4A6F-BFF8-99476605ADD6}" = livebox
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{1D13221B-42DE-4B3C-A43F-0F6AF3CF3DA2}" = Client Windows Rights Management avec Service Pack 2
"{1EE04769-91C4-4A06-92B7-FCAFE6BABDD9}" = Galerie de photos Windows Live
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = Multimedia Launcher
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live
"{20C45B32-5AB6-46A4-94EF-58950CAF05E5}" = EPSON Attach To Email
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{24ED4D80-8294-11D5-96CD-0040266301AD}" = FinePixViewer Ver.5.5
"{26A24AE4-039D-4CA4-87B4-2F83216010FF}" = Java(TM) 6 Update 23
"{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}" = EPSON Scan Assistant
"{3101CB58-3482-4D21-AF1A-7057FC935355}" = KhalInstallWrapper
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{3248F0A8-6813-11D6-A77B-00B0D0150030}" = J2SE Runtime Environment 5.0 Update 3
"{3248F0A8-6813-11D6-A77B-00B0D0160010}" = Java(TM) SE Runtime Environment 6 Update 1
"{3248F0A8-6813-11D6-A77B-00B0D0160020}" = Java(TM) 6 Update 2
"{3248F0A8-6813-11D6-A77B-00B0D0160030}" = Java(TM) 6 Update 3
"{3248F0A8-6813-11D6-A77B-00B0D0160050}" = Java(TM) 6 Update 5
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7
"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3A2AF807-9F9F-43C9-A24A-17B617238B74}" = OpenOffice.org Installer 1.0
"{3AF8FCCD-F51A-4014-9002-F195E1CBC876}" = Logitech QuickCam
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{438BB9B4-65FE-4626-91D9-A8F57B18001D}" = Bluesoleil2.6.0.8 Release 070517
"{445B183D-F4F1-45C8-B9DB-F11355CA657B}" = Windows Live Messenger
"{4634B21A-CC07-4396-890C-2B8168661FEA}" = Windows Live Writer
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack
"{55F502E5-6E86-4321-8D35-D9F9C794E58E}" = SunPlus PMP Transcoding
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3
"{5DD76286-9BE7-4894-A990-E905E91AC818}" = Windows Live Mail
"{67EDD823-135A-4D59-87BD-950616D6E857}" = EPSON Copy Utility 3
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{73590C42-483E-421C-A394-CF153D4AD7B4}" = Sunplus Spca536
"{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762
"{76810709-A7D3-468D-9167-A1780C1E766C}" = Windows Live FolderShare
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7AC15160-A49B-4A89-B181-D4619C025FFF}" = Samsung Samples Installer
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}" = EPSON Web-To-Page
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}" = Bonjour
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
"{8EF1122E-E90C-4EE9-AB0C-7FDE2BA42C26}" = Musicmatch® Jukebox
"{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules
"{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}" = Logitech Desktop Messenger
"{9085040C-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Word Viewer 2003
"{91CA040C-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Small Business Edition 2003
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95120000-0122-040C-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A394342-4A68-4EBA-85A6-55B559F4E700}" = Microsoft .NET Framework 1.1 French Language Pack
"{9D6524E6-15CF-4852-BF70-04FE973A3DE1}" = Windows Live Toolbar
"{9FF9FDF7-F84A-4F99-B4BB-066B6F95F33D}" = Windows Live Contrôle parental
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A654A805-41D9-40C7-AA46-4AF04F044D61}" = Adobe® Photoshop® Album Edition Découverte 3.2
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A96E97134CA649888820BCDE5E300BBD}" = H.264 Decoder
"{AAC389499AEF40428987B3D30CFC76C9}" = MKV Splitter
"{AC76BA86-7AD7-1036-7B44-A82000000003}" = Adobe Reader 8.2.5 - Français
"{AC76BA86-7AD7-5464-3428-800000000003}" = Spelling Dictionaries Support For Adobe Reader 8
"{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint
"{AEF9DC35ADDF4825B049ACBFD1C6EB37}" = AAC Decoder
"{B093990A-AAF2-44AC-9216-14BB7A2189B6}" = ImageMixer VCD2 LE for FinePix
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B3B487E7-6171-4376-9074-B28082CEB504}" = Windows Live Call
"{B44529FF-501E-47CD-A06D-223C161BE058}" = FinePixViewer Resource
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = PowerProducer
"{B90450DF-E781-46FD-B1F1-0C86DA40E443}" = PIF DESIGNER
"{B97CF5C3-0487-11D8-A36E-0050BAE317E1}" = DVD Solution
"{BB406CEB-6207-4512-9BB2-89950DC9D6B6}_is1" = ConvertXtoDVD
"{BC69DDB8-4840-4D9B-BB31-0D4DB2BA1312}" = EPSON Easy Photo Print
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C06EFB22-B5DB-46C5-9215-BCB5C19C0858}" = LauncherMA
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CCD663AE-610D-4BDF-AAB0-E914B044527D}" = OpenMG Secure Module 4.7.00
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CF097717-F174-4144-954A-FBC4BF301036}" = Nero 7 Premium
"{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}" = Assistant de connexion Windows Live
"{E3B3AB03-8ABC-46CF-8CA9-DB5581E1F368}" = FinePix Studio
"{E86BC406-944E-41F6-ADE6-2C136734C96B}" = EPSON File Manager
"{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}" = Samsung PC Studio 3 USB Driver Installer
"{EC4455AB-F155-4CC1-A4C5-88F3777F9886}" = Apple Mobile Device Support
"{EC905264-BCFE-423B-9C42-C3A106266790}" = SP2 de compatibilité descendante du client Windows Rights Management
"{EFFCB0F1-CFEC-48D4-B793-EBFCAE852976}" = Détecteur de flux Windows Live Toolbar (Windows Live Toolbar)
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F196AC50-7C95-42E1-9947-BDAB18BF3C8C}" = Microsoft .NET Framework 2.0 Language Pack - FRA
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F4F4F84E-804F-4E9A-84D7-C34283F0088F}" = RealUpgrade 1.0
"{F958CA02-BB40-4007-894B-258729456EE4}" = QuickTime
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Adobe® Photoshop® Album Edition Découverte 3.2" = Adobe® Photoshop® Album Edition Découverte 3.2
"Avanquest_FR Toolbar" = Avanquest_FR Toolbar
"avast5" = avast! Free Antivirus
"BrotherSoft_Extreme Toolbar" = BrotherSoft Extreme Toolbar
"CCleaner" = CCleaner
"conduitEngine" = Conduit Engine
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"DVDFab Platinum_is1" = DVDFab Platinum
"EPSON Printer and Utilities" = EPSON Logiciel imprimante
"EPSON Scanner" = EPSON Scan
"ESDX5000_CX4900 Guide d’utilisation" = ESDX5000_CX4900 Guide d’utilisation
"FranceTelecomUninstall_FTBrowser" = Navigateur Orange
"GestionnaireInternet.exe" = Gestionnaire Internet
"Google Chrome" = Google Chrome
"HijackThis" = HijackThis 2.0.2
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"InstallShield_{20C45B32-5AB6-46A4-94EF-58950CAF05E5}" = EPSON Attach To Email
"InstallShield_{CCD663AE-610D-4BDF-AAB0-E914B044527D}" = OpenMG Secure Module 4.7.00
"InterActual Player" = InterActual Player
"Logitech Print Service" = Logitech Print Service
"lvdrivers_11.80" = Coffret de pilotes Logitech QuickCam
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 2.0 Language Pack - FRA" = Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MIKSOFT Mobile 3GP converter_is1" = MIKSOFT Mobile 3GP converter
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Navilog1_is1" = Navilog1 3.7.4
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"PC Angel Standard Edition" = PC Angel Standard Edition
"PhotoFiltre" = PhotoFiltre
"QcDrv" = Programme de gestion Camera de Logitech®
"RealPlayer 12.0" = RealPlayer
"SAMSUNG CDMA Modem" = SAMSUNG CDMA Modem Driver Set
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"TiGatesworld" = Outils Tools Informatique Gatesworld
"TomTom HOME" = TomTom HOME
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Lecteur Windows Media 11
"Windows XP Service" = Windows XP Service Pack 3
"WinLiveSuite_Wave3" = Installation Windows Live
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]
"Notification de cadeaux MSN" = Notification de cadeaux MSN
[color=#E56717]========== Last 10 Event Log Errors ==========[/color]
[ Application Events ]
Error - 17/01/2011 14:41:00 | Computer Name = PASCAL-C182C5EE | Source = Application Error | ID = 1000
Description = Application défaillante woobrowser.exe, version, module défaillant
unknown, version, adresse de défaillance 0x00000006.
Error - 19/01/2011 16:11:40 | Computer Name = PASCAL-C182C5EE | Source = Application Error | ID = 1000
Description = Application défaillante woobrowser.exe, version, module défaillant
jvm.dll, version, adresse de défaillance 0x000ca9b4.
Error - 23/01/2011 07:55:42 | Computer Name = PASCAL-C182C5EE | Source = Windows Live Messenger | ID = 1000
Description =
Error - 24/01/2011 13:14:39 | Computer Name = PASCAL-C182C5EE | Source = Lavasoft Ad-Aware Service | ID = 0
Description =
Error - 24/01/2011 13:18:16 | Computer Name = PASCAL-C182C5EE | Source = crypt32 | ID = 131083
Description = Échec de l'extraction de la liste racine tierce partie depuis le fichier
CAB de mise à jour automatique à : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
avec l'erreur : Un certificat requis n'est pas dans sa période de validité selon
la vérification par rapport à l'horloge système en cours ou le tampon daté dans
le fichier signé.
Error - 24/01/2011 13:18:16 | Computer Name = PASCAL-C182C5EE | Source = crypt32 | ID = 131083
Description = Échec de l'extraction de la liste racine tierce partie depuis le fichier
CAB de mise à jour automatique à : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
avec l'erreur : Un certificat requis n'est pas dans sa période de validité selon
la vérification par rapport à l'horloge système en cours ou le tampon daté dans
le fichier signé.
Error - 24/01/2011 15:08:45 | Computer Name = PASCAL-C182C5EE | Source = Application Hang | ID = 1002
Description = Application bloquée wmplayer.exe, version 11.0.5721.5145, module bloqué
hungapp, version, adresse de blocage 0x00000000.
Error - 24/01/2011 15:08:48 | Computer Name = PASCAL-C182C5EE | Source = Application Hang | ID = 1001
Description = Détecteur d'erreurs 337816799.
Error - 25/01/2011 01:48:31 | Computer Name = PASCAL-C182C5EE | Source = Application Hang | ID = 1002
Description = Application bloquée WOOBrowser.exe, version, module bloqué
hungapp, version, adresse de blocage 0x00000000.
Error - 27/01/2011 13:34:02 | Computer Name = PASCAL-C182C5EE | Source = sdCoreService | ID = 0
Description =
[ System Events ]
Error - 22/01/2011 07:44:42 | Computer Name = PASCAL-C182C5EE | Source = Service Control Manager | ID = 7001
Description = Le service Apple Mobile Device dépend du service Pilote du protocole
TCP/IP qui n'a pas pu démarrer en raison de l'erreur : %%31
Error - 22/01/2011 07:44:42 | Computer Name = PASCAL-C182C5EE | Source = Service Control Manager | ID = 7001
Description = Le service Service Bonjour dépend du service Pilote du protocole TCP/IP
qui n'a pas pu démarrer en raison de l'erreur : %%31
Error - 22/01/2011 07:44:42 | Computer Name = PASCAL-C182C5EE | Source = Service Control Manager | ID = 7001
Description = Le service Services IPSEC dépend du service Pilote IPSEC qui n'a pas
pu démarrer en raison de l'erreur : %%31
Error - 22/01/2011 07:44:42 | Computer Name = PASCAL-C182C5EE | Source = Service Control Manager | ID = 7026
Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se
charger : Aavmker4 AFD aswRdr aswSP aswTdi Fips intelppm IPSec MRxSmb NetBIOS NetBT RasAcd
Error - 22/01/2011 07:45:19 | Computer Name = PASCAL-C182C5EE | Source = DCOM | ID = 10005
Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service EventSystem
avec les arguments "" pour démarrer le serveur : {1BE1F766-5536-11D1-B726-00C04FB926AF}
Error - 24/01/2011 13:21:53 | Computer Name = PASCAL-C182C5EE | Source = Service Control Manager | ID = 7000
Description = Le service Lbd n'a pas pu démarrer en raison de l'erreur : %%2
Error - 24/01/2011 17:00:24 | Computer Name = PASCAL-C182C5EE | Source = System Error | ID = 1003
Description = Code erreur 000000f4, paramètre 1 00000003, paramètre 2 8697f950,
paramètre 3 8697fac4, paramètre 4 805d2954.
Error - 24/01/2011 17:03:13 | Computer Name = PASCAL-C182C5EE | Source = DCOM | ID = 10010
Description = Le serveur {4991D34B-80A1-4291-83B6-3328366B9097} ne s'est pas enregistré
sur DCOM avant la fin du temps imparti.
Error - 24/01/2011 17:04:19 | Computer Name = PASCAL-C182C5EE | Source = Service Control Manager | ID = 7032
Description = Le Gestionnaire de services de contrôle a essayé d'entreprendre une
action corrective (Redémarrer le service) après la fin inattendue du service Service
de transfert intelligent en arrière-plan, mais cette action a échoué en raison
de l'erreur suivante : %%1056
Error - 24/01/2011 17:04:19 | Computer Name = PASCAL-C182C5EE | Source = Service Control Manager | ID = 7032
Description = Le Gestionnaire de services de contrôle a essayé d'entreprendre une
action corrective (Redémarrer le service) après la fin inattendue du service Infrastructure
de gestion Windows, mais cette action a échoué en raison de l'erreur suivante :
< End of report >
OTL logfile created on: 27/01/2011 19:47:22 - Run 1
OTL by OldTimer - Version Folder = C:\Documents and Settings\Propriétaire\Bureau
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
1 023,00 Mb Total Physical Memory | 465,00 Mb Available Physical Memory | 45,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 82,00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,06 Gb Total Space | 10,92 Gb Free Space | 27,97% Space Free | Partition Type: NTFS
Drive F: | 148,82 Gb Total Space | 146,07 Gb Free Space | 98,15% Space Free | Partition Type: NTFS
Computer Name: PASCAL-C182C5EE | User Name: Propriétaire | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - C:\Documents and Settings\Propriétaire\Bureau\otl.exe (OldTimer Tools)
PRC - C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
PRC - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe (TomTom)
PRC - C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe (TomTom)
PRC - C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
PRC - C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
PRC - C:\Program Files\Micro Application\LauncherMA.exe (Micro Application)
PRC - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
PRC - C:\Program Files\Logitech\QuickCam\Quickcam.exe ()
PRC - C:\Program Files\Fichiers communs\Logishrd\LComMgr\Communications_Helper.exe ()
PRC - C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe (Logitech Inc.)
PRC - C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.)
PRC - C:\Program Files\Fichiers communs\Logishrd\LVCOMSER\LVComSer.exe (Logitech Inc.)
PRC - F:\Mes documents\Nouveau dossier\SetPoint\SetPoint.exe (Logitech, Inc.)
PRC - C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.exe (Logitech, Inc.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe (Nero AG)
PRC - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe (Nero AG)
PRC - C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe (Nero AG)
PRC - C:\Program Files\FinePixViewer\QuickDCF2.exe (FUJIFILM Corporation)
PRC - C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
PRC - C:\Program Files\Analog Devices\SoundMAX\SMax4.exe (Analog Devices, Inc.)
PRC - C:\WINDOWS\system32\SHVRTF.EXE (SoftThinks)
PRC - C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mm_tray.exe (Musicmatch, Inc.)
PRC - C:\Program Files\Wanadoo\GestionnaireInternet.exe (France Télécom R&D)
PRC - C:\Program Files\Wanadoo\ComComp.exe (France Télécom R&D)
PRC - C:\WINDOWS\system32\bgsvcgen.exe (B.H.A Corporation)
PRC - C:\Program Files\Wanadoo\WOOBrowser\WOOBrowser.exe ()
PRC - C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe (Cyberlink Corp.)
PRC - C:\Program Files\Wanadoo\Toaster.exe (France Telecom R&D)
PRC - C:\Program Files\Wanadoo\Inactivity.exe ()
PRC - C:\Program Files\Wanadoo\PollingModule.exe ()
PRC - C:\WINDOWS\system32\AlertModule\AlertModule.exe ()
PRC - C:\Program Files\Wanadoo\TaskBarIcon.exe (France Télécom R&D)
PRC - C:\Program Files\Wanadoo\Watch.exe (France Télécom R&D)
PRC - C:\WINDOWS\system32\FTRTSVC.exe (France Telecom)
PRC - C:\Program Files\CyberLink DVD Solution\Multimedia Launcher\PowerBar.exe (Cyberlink, Corp.)
[color=#E56717]========== Modules (SafeList) ==========[/color]
MOD - C:\Documents and Settings\Propriétaire\Bureau\otl.exe (OldTimer Tools)
MOD - C:\Program Files\Alwil Software\Avast5\snxhk.dll (AVAST Software)
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll (Microsoft Corporation)
MOD - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Chrome\Hook\rpchromebrowserrecordhelper.dll ()
MOD - C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\logishrd\LVPrcInj01.dll (Logitech Inc.)
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcr80.dll (Microsoft Corporation)
MOD - F:\Mes documents\Nouveau dossier\SetPoint\lgscroll.dll (Logitech, Inc.)
MOD - C:\WINDOWS\system32\mlang.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\framedyn.dll (Microsoft Corporation)
MOD - C:\Program Files\Wanadoo\Inactivity.dll ()
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV - (AppMgmt) -- File not found
SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
SRV - (TomTomHOMEService) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe (TomTom)
SRV - (fsssvc) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe (Microsoft Corporation)
SRV - (SeaPort) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
SRV - (Apple Mobile Device) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (LVPrcSrv) -- C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.)
SRV - (LVCOMSer) -- C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe (Logitech Inc.)
SRV - (LBTServ) -- C:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTServ.exe (Logitech, Inc.)
SRV - (NMIndexingService) -- C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe (Nero AG)
SRV - (MSCSPTISRV) -- C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe (Sony Corporation)
SRV - (SPTISRV) -- C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe (Sony Corporation)
SRV - (PACSPTISVR) -- C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe ()
SRV - (IDriverT) -- C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe (Macrovision Corporation)
SRV - (bgsvcgen) -- C:\WINDOWS\system32\bgsvcgen.exe (B.H.A Corporation)
SRV - (FTRTSVC) -- C:\WINDOWS\system32\FTRTSVC.exe (France Telecom)
SRV - (ose) -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - (aswSP) -- C:\WINDOWS\System32\drivers\aswSP.sys (AVAST Software)
DRV - (aswTdi) -- C:\WINDOWS\System32\drivers\aswTdi.sys (AVAST Software)
DRV - (aswMon2) -- C:\WINDOWS\System32\drivers\aswmon2.sys (AVAST Software)
DRV - (aswRdr) -- C:\WINDOWS\System32\drivers\aswRdr.sys (AVAST Software)
DRV - (Aavmker4) -- C:\WINDOWS\System32\drivers\aavmker4.sys (AVAST Software)
DRV - (aswFsBlk) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys (AVAST Software)
DRV - (fssfltr) -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys (Microsoft Corporation)
DRV - (FilterService) -- C:\WINDOWS\system32\drivers\lvuvcflt.sys (Logitech Inc.)
DRV - (LVUVC) Logitech QuickCam S5500(UVC) -- C:\WINDOWS\system32\drivers\lvuvc.sys (Logitech Inc.)
DRV - (LVUSBSta) -- C:\WINDOWS\system32\drivers\LVUSBSta.sys (Logitech Inc.)
DRV - (LVRS) -- C:\WINDOWS\system32\drivers\lvrs.sys (Logitech Inc.)
DRV - (LVPr2Mon) -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys ()
DRV - (usbaudio) Pilote USB audio (WDM) -- C:\WINDOWS\system32\drivers\USBAUDIO.sys (Microsoft Corporation)
DRV - (USB_RNDIS) -- C:\WINDOWS\system32\drivers\usb8023.sys (Microsoft Corporation)
DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\hdaudbus.sys (Windows (R) Server 2003 DDK provider)
DRV - (LMouFilt) -- C:\WINDOWS\system32\drivers\LMouFilt.Sys (Logitech, Inc.)
DRV - (LHidFilt) -- C:\WINDOWS\system32\drivers\LHidFilt.Sys (Logitech, Inc.)
DRV - (BlueletAudio) -- C:\WINDOWS\system32\drivers\blueletaudio.sys (IVT Corporation.)
DRV - (Btcsrusb) -- C:\WINDOWS\system32\drivers\btcusb.sys (IVT Corporation.)
DRV - (BlueletSCOAudio) -- C:\WINDOWS\system32\drivers\BlueletSCOAudio.sys (IVT Corporation.)
DRV - (BT) -- C:\WINDOWS\system32\drivers\btnetdrv.sys (IVT Corporation.)
DRV - (BTHidMgr) -- C:\WINDOWS\System32\Drivers\BTHidMgr.sys (IVT Corporation.)
DRV - (BTHidEnum) -- C:\WINDOWS\System32\Drivers\vbtenum.sys (IVT Corporation.)
DRV - (VcommMgr) -- C:\WINDOWS\system32\drivers\VcommMgr.sys (IVT Corporation.)
DRV - (VComm) -- C:\WINDOWS\system32\drivers\VComm.sys (IVT Corporation.)
DRV - (BTNetFilter) -- C:\Program Files\IVT Corporation\BlueSoleil\device\Win2k\BTNetFilter.sys (IVT Corporation.)
DRV - (nv) -- C:\WINDOWS\system32\drivers\nv4_mini.sys (NVIDIA Corporation)
DRV - (RTLE8023xp) -- C:\WINDOWS\system32\drivers\Rtenicxp.sys (Realtek Semiconductor Corporation )
DRV - (StarOpen) -- C:\WINDOWS\System32\drivers\StarOpen.sys ()
DRV - (LBeepKE) -- C:\WINDOWS\system32\drivers\LBeepKE.sys (Logitech, Inc.)
DRV - (LHidKe) -- C:\WINDOWS\system32\drivers\LHidKE.Sys (Logitech, Inc.)
DRV - (LMouKE) -- C:\WINDOWS\system32\drivers\LMouKE.Sys (Logitech, Inc.)
DRV - (L8042mou) -- C:\WINDOWS\system32\drivers\L8042MOU.SYS (Logitech, Inc.)
DRV - (L8042Kbd) -- C:\WINDOWS\system32\drivers\L8042Kbd.SYS (Logitech, Inc.)
DRV - (ADIHdAudAddService) -- C:\WINDOWS\system32\drivers\ADIHdAud.sys (Analog Devices, Inc.)
DRV - (SenFiltService) -- C:\WINDOWS\system32\drivers\senfilt.sys (Sensaura)
DRV - (sscdmdm) -- C:\WINDOWS\system32\drivers\sscdmdm.sys (MCCI)
DRV - (sscdmdfl) -- C:\WINDOWS\system32\drivers\sscdmdfl.sys (MCCI)
DRV - (sscdbus) SAMSUNG USB Composite Device driver (WDM) -- C:\WINDOWS\system32\drivers\sscdbus.sys (MCCI)
DRV - (QCMerced) -- C:\WINDOWS\system32\drivers\lvcm.sys ()
DRV - (MTsensor) -- C:\WINDOWS\system32\drivers\ASACPI.sys ()
DRV - (PCANDIS5) -- C:\WINDOWS\system32\PCANDIS5.SYS (Printing Communications Assoc., Inc. (PCAUSA))
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1547161642-839522115-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-1547161642-839522115-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2776682
IE - HKU\S-1-5-21-1547161642-839522115-725345543-1003\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Wanadoo\SearchPageURL.dll ()
IE - HKU\S-1-5-21-1547161642-839522115-725345543-1003\..\URLSearchHook: {472734EA-242A-422b-ADF8-83D1E48CC825} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-1547161642-839522115-725345543-1003\..\URLSearchHook: {51a86bb3-6602-4c85-92a5-130ee4864f13} - C:\Program Files\BrotherSoft_Extreme\tbBrot.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-1547161642-839522115-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
[color=#E56717]========== FireFox ==========[/color]
FF - prefs.js..browser.search.defaultenginename: "Google"
FF - prefs.js..browser.search.defaulturl: "http://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q="
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://french.eazel.com/fr/index.php?rvs=hompag&d=79919294"
FF - prefs.js..browser.startup.homepage: "http://www.msn.fr/"
FF - prefs.js..keyword.URL: "http://search.live.com/results.aspx?mkt=fr-FR&FORM=MIMWA2&q="
FF - prefs.js..browser.search.selectedEngine: "Live Search"
FF - prefs.js..browser.startup.homepage: "http://www.ustart.org"
FF - prefs.js..browser.search.selectedEngine: "uStart"
FF - prefs.js..browser.startup.homepage: "http://www.msn.fr/"
FF - prefs.js..keyword.URL: "http://search.live.com/results.aspx?mkt=fr-FR&FORM=MIMWA2&q="
FF - prefs.js..browser.search.selectedEngine: "Live Search"
FF - prefs.js..browser.startup.homepage: "http://www.msn.fr/"
FF - prefs.js..keyword.URL: "http://search.live.com/results.aspx?mkt=fr-FR&FORM=MIMWA2&q="
FF - prefs.js..browser.search.selectedEngine: "Live Search"
FF - prefs.js..browser.startup.homepage: "http://www.msn.fr/"
FF - prefs.js..keyword.URL: "http://search.live.com/results.aspx?mkt=fr-FR&FORM=MIMWA2&q="
FF - prefs.js..browser.search.selectedEngine: "Live Search"
FF - prefs.js..browser.startup.homepage: "http://www.searcheo.fr/recherche"
FF - prefs.js..keyword.URL: "http://www.searcheo.fr/recherche?search&q="
FF - prefs.js..browser.startup.homepage: "Searcheo");user_pref("browser.startup.homepage", "http://www.ustart.org"
FF - prefs.js..browser.search.selectedEngine: "uStart"
FF - prefs.js..browser.startup.homepage: "http://www.ustart.org"
FF - prefs.js..browser.search.selectedEngine: "uStart"
FF - prefs.js..browser.startup.homepage: "http://www.ustart.org"
FF - prefs.js..browser.search.selectedEngine: "uStart"
FF - prefs.js..browser.startup.homepage: "http://www.ustart.org"
FF - prefs.js..browser.search.selectedEngine: "uStart"
FF - prefs.js..browser.startup.homepage: "http://www.ustart.org"
FF - prefs.js..browser.search.selectedEngine: "uStart"
FF - HKLM\software\mozilla\Firefox\Extensions\\{3112ca9c-de6d-4884-a869-9855de68056c}: C:\Documents and Settings\All Users\Application Data\Mozilla\Firefox Extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2007/09/29 13:21:26 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/08/10 06:02:23 | 000,000,000 | ---D | M]
[2009/04/12 15:56:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Extensions
[2009/04/12 15:56:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Extensions\home2@tomtom.com
[2007/09/29 16:16:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\kakcniku.default\extensions
[2007/09/29 16:16:26 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\kakcniku.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2008/11/30 21:27:04 | 000,001,775 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\kakcniku.default\searchplugins\live-search.xml
[2009/06/28 19:27:31 | 000,003,721 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\kakcniku.default\searchplugins\Searcheo.xml
[2010/02/17 11:08:10 | 000,005,254 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\kakcniku.default\searchplugins\ustart.xml
[2008/01/02 07:58:51 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
O1 HOSTS File: ([2011/01/21 20:33:04 | 000,428,693 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: localhost
O1 - Hosts: http://www.007guard.com
O1 - Hosts: 007guard.com
O1 - Hosts: 008i.com
O1 - Hosts: http://www.008k.com
O1 - Hosts: 008k.com
O1 - Hosts: http://www.00hq.com
O1 - Hosts: 00hq.com
O1 - Hosts: 010402.com
O1 - Hosts: http://www.032439.com
O1 - Hosts: 032439.com
O1 - Hosts: http://www.0scan.com
O1 - Hosts: 0scan.com
O1 - Hosts: 1000gratisproben.com
O1 - Hosts: http://www.1000gratisproben.com
O1 - Hosts: 1001namen.com
O1 - Hosts: http://www.1001namen.com
O1 - Hosts: 100888290cs.com
O1 - Hosts: http://www.100888290cs.com
O1 - Hosts: http://www.100sexlinks.com
O1 - Hosts: 100sexlinks.com
O1 - Hosts: 10sek.com
O1 - Hosts: http://www.10sek.com
O1 - Hosts: http://www.1-2005-search.com
O1 - Hosts: 1-2005-search.com
O1 - Hosts: 14760 more lines...
O2 - BHO: (Aide pour le lien d'Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (dsWebAllowBHO Class) - {2F85D76C-0569-466F-A488-493E6BD0E955} - C:\Program Files\Windows Desktop Search\dsWebAllow.dll (Microsoft Corporation)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (BrotherSoft Extreme Toolbar) - {51a86bb3-6602-4c85-92a5-130ee4864f13} - C:\Program Files\BrotherSoft_Extreme\tbBrot.dll (Conduit Ltd.)
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (BrotherSoft Extreme Toolbar) - {51a86bb3-6602-4c85-92a5-130ee4864f13} - C:\Program Files\BrotherSoft_Extreme\tbBrot.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O3 - HKU\S-1-5-21-1547161642-839522115-725345543-1003\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKU\S-1-5-21-1547161642-839522115-725345543-1003\..\Toolbar\WebBrowser: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [LogitechCommunicationsManager] C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe ()
O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\QuickCam\Quickcam.exe ()
O4 - HKLM..\Run: [MMTray] C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe (Musicmatch, Inc.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [Protect] C:\WINDOWS\System32\SHVRTF.EXE (SoftThinks)
O4 - HKLM..\Run: [RemoteControl] C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe (Cyberlink Corp.)
O4 - HKLM..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [WOOTASKBARICON] File not found
O4 - HKLM..\Run: [WOOWATCH] C:\Program Files\Wanadoo\Watch.exe (France Télécom R&D)
O4 - HKU\S-1-5-21-1547161642-839522115-725345543-1003..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-1547161642-839522115-725345543-1003..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Logitech Inc.)
O4 - HKU\S-1-5-21-1547161642-839522115-725345543-1003..\Run: [PowerBar] C:\Program Files\CyberLink DVD Solution\Multimedia Launcher\PowerBar.exe (Cyberlink, Corp.)
O4 - HKU\S-1-5-21-1547161642-839522115-725345543-1003..\Run: [Spyware Doctor] File not found
O4 - HKU\S-1-5-21-1547161642-839522115-725345543-1003..\Run: [TomTomHOME.exe] C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe (TomTom)
O4 - HKU\S-1-5-21-1547161642-839522115-725345543-1003..\Run: [WOOKIT] C:\Program Files\Wanadoo\Shell.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\ExifLauncher2.lnk = C:\Program Files\FinePixViewer\QuickDCF2.exe (FUJIFILM Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Logitech Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech SetPoint.lnk = F:\Mes documents\Nouveau dossier\SetPoint\SetPoint.exe (Logitech, Inc.)
O4 - Startup: C:\Documents and Settings\Propriétaire\Menu Démarrer\Programmes\Démarrage\Lanceur.lnk = C:\Program Files\Micro Application\LauncherMA.exe (Micro Application)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1547161642-839522115-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95 00 00 00 [binary data]
O9 - Extra Button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/FacebookPhotoUploader5.cab (Facebook Photo Uploader 5)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab (UnoCtrl Class)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1167989642234 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_03-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer =
O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (c:\progra~1\bandoo\bndhook.dll) - File not found
O20 - AppInit_DLLs: (ehtwuu.dll) - File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\LBTWlgn: DllName - c:\program files\fichiers communs\logitech\bluetooth\LBTWlgn.dll - c:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - CLSID or File not found.
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007/01/05 09:53:36 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{b8ccf123-185f-11dc-9b06-0018f3089fa0}\Shell\Auto\command - "" = AdobeR.exe e
O33 - MountPoints2\{b8ccf123-185f-11dc-9b06-0018f3089fa0}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdobeR.exe e
O33 - MountPoints2\{c76c987e-dcad-11dd-9f71-0018f3089fa0}\Shell\AutoRun\command - "" = G:\InstallTomTomHOME.exe
O33 - MountPoints2\{fe6e8484-bc49-11dc-9c5e-0018f3089fa0}\Shell\AutoRun\command - "" = G:\InstallTomTomHOME.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
SafeBootMin: AppMgmt - File not found
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vds - Service
SafeBootMin: vga.sys - Driver
SafeBootMin: WdfLoadGroup -
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: AppMgmt - File not found
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: WdfLoadGroup -
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Rendu VML (Vector Graphics Rendering)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2A3320D6-C805-4280-B423-B665BDE33D8F} - Microsoft .NET Framework 1.1 Security Update (KB979906)
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {2F6EFCE6-10DF-49F9-9E64-9AE3775B2588} - Microsoft .NET Framework 1.1 Security Update (KB2416447)
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Liaison de données Dynamic HTML pour Java
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Création avancée
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - Classes Java DirectAnimation
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Dossiers Web
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINDOWS\system32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {9A394342-4A68-4EBA-85A6-55B559F4E700} - .NET Framework
ActiveX: {B508B3F1-A24A-32C0-B310-85786919EF28} - .NET Framework
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Planificateur de tâches
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Macromedia Shockwave Flash
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {F196AC50-7C95-42E1-9947-BDAB18BF3C8C} - .NET Framework
ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE
ActiveX: >{CB58DED6-4AF3-4080-9DF1-DEE72075169F} - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: Microsoft Base Smart Card Crypto Provider Package -
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: VIDC.I420 - C:\WINDOWS\System32\LVCodec2.dll (Logitech Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.SP54 - C:\WINDOWS\System32\SP5X_32.DLL (Sunplus)
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2011/01/27 19:44:00 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Propriétaire\Bureau\otl.exe
[2011/01/27 17:53:25 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Propriétaire\Recent
[2011/01/27 16:54:49 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011/01/27 16:54:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Malwarebytes' Anti-Malware
[2011/01/27 16:54:45 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011/01/27 16:54:45 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/01/24 22:11:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\clp
[2011/01/24 22:11:02 | 000,000,000 | ---D | C] -- C:\Program Files\Fighters
[2011/01/24 21:44:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PC Tools
[2011/01/24 19:59:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\CCleaner
[2011/01/24 19:59:02 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011/01/24 18:16:40 | 000,098,392 | ---- | C] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2011/01/24 18:14:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\Sunbelt Software
[2011/01/24 18:13:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft
[2011/01/24 16:54:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Application Data\Uniblue
[2011/01/24 16:53:38 | 000,000,000 | ---D | C] -- C:\Program Files\Uniblue
[2011/01/24 16:53:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\PackageAware
[2011/01/22 12:50:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\BrotherSoft_Extreme
[2011/01/22 12:50:45 | 000,000,000 | ---D | C] -- C:\Program Files\BrotherSoft_Extreme
[2011/01/22 12:50:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Propriétaire\Application Data\GetRightToGo
[2011/01/22 11:37:59 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Softwin
[2011/01/21 20:08:22 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2011/01/21 20:08:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
[2011/01/20 06:36:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis
[2011/01/08 12:15:31 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2011/01/08 12:15:31 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2011/01/08 12:15:31 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2007/11/10 14:04:25 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\Propriétaire\Application Data\pcouffin.sys
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2011/01/27 19:43:59 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Propriétaire\Bureau\otl.exe
[2011/01/27 19:37:22 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/01/27 19:36:33 | 000,088,566 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2011/01/27 19:36:24 | 000,001,050 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/01/27 19:36:24 | 000,000,292 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-1547161642-839522115-725345543-1003.job
[2011/01/27 19:36:16 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/01/27 19:36:15 | 000,249,496 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/01/27 19:36:12 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\drivers\lvuvc.hs
[2011/01/27 19:36:10 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\drivers\logiflt.iad
[2011/01/27 19:10:00 | 000,001,054 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/01/27 18:16:01 | 000,000,492 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2011/01/27 18:07:46 | 000,717,784 | ---- | M] () -- C:\WINDOWS\System32\drivers\Cat.DB
[2011/01/27 16:54:50 | 000,000,791 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk
[2011/01/25 20:27:42 | 000,053,248 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/01/24 21:33:00 | 000,000,036 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\housecall.guid.cache
[2011/01/24 19:59:05 | 000,000,689 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\CCleaner.lnk
[2011/01/24 18:16:37 | 000,098,392 | ---- | M] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2011/01/22 11:50:55 | 000,081,984 | ---- | M] () -- C:\WINDOWS\System32\bdod.bin
[2011/01/21 22:24:17 | 000,000,300 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-1547161642-839522115-725345543-1003.job
[2011/01/21 20:33:04 | 000,428,693 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011/01/20 06:38:25 | 000,001,741 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Bureau\HijackThis.lnk
[2011/01/19 22:30:30 | 000,000,041 | ---- | M] () -- C:\WINDOWS\Kit.ini
[2011/01/19 21:22:20 | 000,001,736 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Adobe Reader 8.lnk
[2011/01/19 17:10:12 | 000,001,547 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Gestionnaire Internet.lnk
[2011/01/19 17:09:43 | 000,001,545 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Navigateur Orange.lnk
[2011/01/17 22:17:57 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011/01/17 17:11:57 | 000,001,820 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Google Chrome.lnk
[2011/01/17 16:26:35 | 000,003,121 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011/01/13 09:47:35 | 000,038,848 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011/01/13 09:47:32 | 000,188,216 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011/01/13 09:41:16 | 000,294,608 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011/01/13 09:40:16 | 000,047,440 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011/01/13 09:40:04 | 000,100,176 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011/01/13 09:39:50 | 000,094,544 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011/01/13 09:37:30 | 000,023,632 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011/01/13 09:37:11 | 000,029,392 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011/01/13 09:37:09 | 000,017,744 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2011/01/27 16:54:50 | 000,000,791 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk
[2011/01/24 21:47:06 | 000,717,784 | ---- | C] () -- C:\WINDOWS\System32\drivers\Cat.DB
[2011/01/24 21:33:00 | 000,000,036 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\housecall.guid.cache
[2011/01/24 19:59:05 | 000,000,689 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\CCleaner.lnk
[2011/01/24 18:18:38 | 000,000,492 | ---- | C] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2011/01/22 11:44:25 | 000,081,984 | ---- | C] () -- C:\WINDOWS\System32\bdod.bin
[2011/01/20 06:36:25 | 000,001,741 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Bureau\HijackThis.lnk
[2011/01/19 17:17:47 | 000,000,041 | ---- | C] () -- C:\WINDOWS\Kit.ini
[2011/01/19 17:10:12 | 000,001,547 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Gestionnaire Internet.lnk
[2009/02/22 09:02:59 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\aqhmpwbn.dll
[2009/02/21 21:10:15 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\pyejfygo.dll
[2009/02/20 06:31:03 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\gbncyhvr.dll
[2009/02/18 18:45:19 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ptyirmgt.dll
[2009/02/18 06:19:37 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\dghieehe.dll
[2009/02/17 18:18:23 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\gwhjgfyo.dll
[2009/02/14 10:39:10 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\qdartixn.dll
[2009/02/13 06:27:41 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\iprcntfm.dll
[2009/02/12 06:29:54 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\latycadp.dll
[2009/02/11 18:04:45 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\lduakarl.dll
[2009/02/11 06:07:33 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\gtbvfive.dll
[2009/02/08 19:33:38 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\jcxfvrgo.dll
[2009/02/07 19:31:06 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\uxpvqwni.dll
[2009/02/06 17:41:20 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\skuapeps.dll
[2009/02/05 21:33:38 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\juxsyrdq.dll
[2009/02/05 20:04:01 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\qanowyod.dll
[2009/02/04 20:01:08 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\wvttcdhp.dll
[2009/02/03 18:26:06 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\vchdqrcu.dll
[2009/02/03 16:42:58 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ylwpohhy.dll
[2009/02/01 12:08:28 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\kuoratka.dll
[2009/01/31 19:09:16 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\iurkdqka.dll
[2009/01/30 19:08:30 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\bdlkpsge.dll
[2009/01/29 20:00:39 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\agulnidt.dll
[2009/01/28 19:57:44 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\neqnmdit.dll
[2009/01/28 19:55:37 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ipxdsaoa.dll
[2009/01/27 19:56:26 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\scikioni.dll
[2009/01/26 19:55:51 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\vjfloenl.dll
[2009/01/22 06:02:16 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\htsgglnc.dll
[2009/01/21 05:52:09 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\prvltooh.dll
[2009/01/20 19:17:35 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\nunohfnh.dll
[2009/01/19 19:15:53 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\vkcsigsl.dll
[2009/01/19 06:06:03 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\haemeyni.dll
[2009/01/18 13:49:13 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\pibdmwyn.dll
[2009/01/17 14:18:26 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\iljbxjbk.dll
[2009/01/17 09:26:05 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\psdtakcg.dll
[2009/01/16 06:39:21 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\lemqhmon.dll
[2009/01/16 06:09:17 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\awuatjsa.dll
[2009/01/15 19:01:51 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\vgduthrh.dll
[2009/01/14 19:00:59 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ipktohht.dll
[2009/01/13 16:47:33 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\eqwpxyff.dll
[2009/01/13 06:07:20 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\fmjepfeu.dll
[2009/01/12 06:07:06 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\qnsuejhh.dll
[2009/01/11 18:33:11 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\jiquvdbo.dll
[2009/01/10 18:32:44 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ltckjedc.dll
[2009/01/09 18:28:36 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\wfuovptk.dll
[2009/01/07 12:27:01 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\nrambjst.dll
[2009/01/06 13:38:08 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\iqrhjklr.dll
[2009/01/05 16:22:34 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\ghylvpwx.dll
[2009/01/05 16:20:58 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\aupgfxrm.dll
[2009/01/04 15:54:00 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\yqsomwpm.dll
[2009/01/04 15:53:57 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\dxktsonl.dll
[2009/01/04 10:08:43 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\rtbmmguo.dll
[2009/01/04 10:05:43 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\xctvojrg.dll
[2009/01/03 10:03:23 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\cbiheniw.dll
[2009/01/03 10:03:23 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\wsfhekml.dll
[2009/01/03 09:51:07 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\yeiwfdcj.dll
[2009/01/03 09:49:25 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\hyubcxue.dll
[2009/01/02 18:54:04 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\srumkgai.dll
[2009/01/02 18:51:07 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\jgeavpbh.dll
[2009/01/01 18:52:12 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\cbywqawq.dll
[2009/01/01 18:51:02 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\uppqgitd.dll
[2008/12/30 18:33:50 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ybugifrf.dll
[2008/12/30 18:30:52 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\rwehborh.dll
[2008/12/30 18:28:09 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\glpfelto.dll
[2008/12/30 18:28:05 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\fmepcvxr.dll
[2008/12/30 16:58:34 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\ikskbqap.dll
[2008/12/29 16:47:50 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\gixjwjkl.dll
[2008/12/29 16:44:37 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\grkgpgud.dll
[2008/12/28 11:19:04 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\pprkbjld.dll
[2008/12/28 11:19:01 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\qlmiynbj.dll
[2008/12/27 22:51:50 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\kgpxvbds.dll
[2008/12/27 22:51:47 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\esowvuok.dll
[2008/12/27 20:51:07 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\rarwuvdi.dll
[2008/12/27 20:51:04 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\uxhsdowm.dll
[2008/12/27 08:15:06 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\emfobaux.dll
[2008/12/27 08:14:41 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\qaumpmap.dll
[2008/12/26 08:29:17 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\fswvtusr.dll
[2008/12/26 08:27:03 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\xnwudxml.dll
[2008/12/25 22:21:24 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\njddmfpe.dll
[2008/12/25 22:21:20 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\xirilpkq.dll
[2008/12/25 17:17:00 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\adrmssgx.dll
[2008/12/24 14:32:26 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\driuqrdl.dll
[2008/12/24 14:29:49 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\hyykvplg.dll
[2008/12/23 20:35:51 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\vjrxcvot.dll
[2008/12/23 20:34:01 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\squgwdoq.dll
[2008/12/23 16:44:01 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\yhxasseq.dll
[2008/12/23 16:19:28 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\wwhqwmou.dll
[2008/12/23 08:20:38 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\loujmehq.dll
[2008/12/23 08:18:25 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ftnmfmvt.dll
[2008/12/23 08:02:25 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\qqqtcuak.dll
[2008/12/21 13:54:43 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ehgymwdf.dll
[2008/12/21 13:52:23 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\bwooxtft.dll
[2008/12/21 10:17:03 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\wdyyrpmb.dll
[2008/12/21 10:14:03 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\uwubjehr.dll
[2008/12/20 10:15:22 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\cduqtacj.dll
[2008/12/20 10:12:21 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\uxrimvmy.dll
[2008/12/20 09:09:22 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\rxbncdgd.dll
[2008/12/17 22:27:17 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\vgdoriht.dll
[2008/12/17 20:07:33 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\avewwmpv.dll
[2008/12/17 20:06:23 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\dfdslnih.dll
[2008/12/16 20:05:52 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\tntbksbd.dll
[2008/12/16 20:03:36 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\mehuntdv.dll
[2008/12/16 19:39:16 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\dfrnophe.dll
[2008/12/16 19:38:22 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\abajihth.dll
[2008/12/16 18:38:26 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\avgpscuv.dll
[2008/12/16 18:35:26 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\oklpmiwj.dll
[2008/12/15 18:34:01 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\lpufmeqt.dll
[2008/12/15 18:33:57 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\lgiqdcra.dll
[2008/12/14 18:50:31 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\kspgrhwf.dll
[2008/12/14 18:48:11 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\rbcabjfj.dll
[2008/12/14 11:32:14 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\ovqaxlvx.dll
[2008/12/14 11:29:14 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\guosdjat.dll
[2008/12/13 13:34:15 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\outwndjg.dll
[2008/12/13 11:23:44 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\tsmrvgen.dll
[2008/12/12 15:21:27 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\brdlcoku.dll
[2008/12/12 15:19:13 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\dntpapxs.dll
[2008/12/11 20:31:58 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\lmpourec.dll
[2008/12/11 20:31:55 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\jtgyrsjl.dll
[2008/12/11 18:18:28 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\nunubeoe.dll
[2008/12/11 18:16:11 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\yvdfjoup.dll
[2008/12/11 06:40:34 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\bsjrebsm.dll
[2008/12/11 06:38:13 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\oolxlqcf.dll
[2008/12/10 18:51:13 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\wjpnyvdi.dll
[2008/12/10 18:48:56 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\tjqopqnp.dll
[2008/12/10 16:49:13 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\gfjoeiso.dll
[2008/12/09 16:41:14 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\gfiopndl.dll
[2008/12/09 16:41:11 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\jtlsdvca.dll
[2008/12/09 13:31:14 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\iltmwqby.dll
[2008/12/09 13:28:14 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\irtmuwnp.dll
[2008/08/25 10:33:58 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2008/07/26 08:25:02 | 000,025,624 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPr2Mon.sys
[2007/12/24 18:55:16 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\akrip32.dll
[2007/12/24 18:55:14 | 002,965,504 | ---- | C] () -- C:\WINDOWS\System32\TranscodingDLL.dll
[2007/12/24 18:55:13 | 000,864,256 | ---- | C] () -- C:\WINDOWS\System32\FreeImage.dll
[2007/12/24 18:55:13 | 000,172,032 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2007/12/24 18:55:13 | 000,055,808 | ---- | C] () -- C:\WINDOWS\System32\zlib1.dll
[2007/12/24 18:53:38 | 000,000,423 | ---- | C] () -- C:\WINDOWS\System32\dext536.ini
[2007/12/24 18:53:37 | 000,001,611 | ---- | C] () -- C:\WINDOWS\Remove.ini
[2007/12/20 06:35:28 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\LauncherAccess.dt
[2007/12/20 06:31:46 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2007/11/10 14:04:42 | 000,000,034 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Application Data\pcouffin.log
[2007/11/10 14:04:25 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Application Data\inst.exe
[2007/11/10 14:04:25 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Application Data\pcouffin.cat
[2007/11/10 14:04:25 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Application Data\pcouffin.inf
[2007/05/17 17:25:36 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini
[2007/05/17 17:24:30 | 000,000,025 | ---- | C] () -- C:\WINDOWS\CDE DX5000EFDG.ini
[2007/03/31 22:58:53 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI
[2007/01/27 10:25:53 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll
[2007/01/27 10:25:53 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll
[2007/01/27 10:25:53 | 000,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll
[2007/01/24 17:19:44 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2007/01/12 20:58:04 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2007/01/11 22:04:44 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\xmltok.dll
[2007/01/11 22:04:44 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\xmlparse.dll
[2007/01/09 22:18:52 | 000,053,248 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/01/09 21:06:11 | 001,317,152 | R--- | C] () -- C:\WINDOWS\System32\drivers\lvcm.sys
[2007/01/09 21:06:11 | 000,066,482 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
[2007/01/09 18:21:13 | 000,000,385 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2007/01/05 12:55:56 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\PCA_VSS.DLL
[2007/01/05 12:55:56 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\PCA_EXT.DLL
[2007/01/05 12:55:56 | 000,003,674 | ---- | C] () -- C:\WINDOWS\System32\MBR.INI
[2007/01/05 12:55:56 | 000,001,683 | ---- | C] () -- C:\WINDOWS\System32\START.INI
[2007/01/05 12:55:56 | 000,000,381 | ---- | C] () -- C:\WINDOWS\EXT.INI
[2007/01/05 12:55:56 | 000,000,283 | ---- | C] () -- C:\WINDOWS\System32\STARTREC.INI
[2007/01/05 12:55:56 | 000,000,246 | ---- | C] () -- C:\WINDOWS\System32\RECGUARD.INI
[2007/01/05 11:29:54 | 000,000,021 | ---- | C] () -- C:\WINDOWS\pccillin.ini
[2007/01/05 11:27:15 | 000,000,135 | ---- | C] () -- C:\Documents and Settings\Propriétaire\Local Settings\Application Data\fusioncache.dat
[2007/01/05 10:44:19 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2007/01/05 10:27:45 | 000,040,960 | ---- | C] () -- C:\Program Files\Uninstall_CDS.exe
[2007/01/05 10:06:24 | 000,019,946 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2007/01/05 10:06:11 | 000,019,908 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2007/01/05 10:06:08 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2007/01/05 10:06:04 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2006/10/22 12:22:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006/10/22 12:22:00 | 001,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2006/10/22 12:22:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006/10/22 12:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006/10/22 12:22:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2006/10/22 12:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006/10/22 12:22:00 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2003/04/01 10:58:02 | 000,005,260 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[1999/01/27 13:39:06 | 000,065,024 | ---- | C] () -- C:\WINDOWS\System32\indounin.dll
[1997/06/13 07:56:08 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll
[color=#E56717]========== LOP Check ==========[/color]
[2010/12/14 06:37:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2007/09/02 11:58:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Bluetooth
[2011/01/24 22:41:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\clp
[2010/12/25 10:32:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Micro Application
[2011/01/27 19:13:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2009/04/12 15:56:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TomTom
[2007/05/31 13:07:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\UDL
[2009/08/21 07:20:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WindowsLiveInstaller
[2007/10/22 17:59:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\EPSON
[2007/01/09 21:03:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\FotoWire
[2008/06/02 15:56:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\FUJIFILM
[2011/01/24 18:03:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\GetRightToGo
[2009/06/28 19:27:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Icones
[2007/07/09 15:05:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Leadertech
[2007/01/07 21:22:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\MSNInstaller
[2007/02/21 17:42:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Musicmatch
[2007/01/05 13:49:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\SampleView
[2007/12/20 06:36:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Samsung
[2010/12/25 10:38:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\TitanicMystery
[2008/01/06 12:42:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\TomTom
[2011/01/24 16:54:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Uniblue
[2008/02/05 21:26:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Vso
[2007/01/05 13:02:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Windows Desktop Search
[2011/01/27 18:16:01 | 000,000,492 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
[color=#E56717]========== Purity Check ==========[/color]
[color=#E56717]========== Custom Scans ==========[/color]
[color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color]
[color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*. >[/color]
[2010/01/14 20:45:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2007/08/15 13:41:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ahead
[2010/12/14 06:37:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2008/12/19 15:15:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Apple
[2008/12/19 15:49:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Apple Computer
[2007/09/02 11:58:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Bluetooth
[2011/01/24 22:41:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\clp
[2007/08/19 09:48:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\CyberLink
[2007/09/29 16:16:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Google
[2011/01/24 19:24:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Lavasoft
[2008/11/11 20:14:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LogiShrd
[2008/11/11 20:14:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Logitech
[2009/02/22 09:31:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010/12/25 10:32:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Micro Application
[2010/06/07 17:27:07 | 000,000,000 | --SD | M] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2007/09/29 13:21:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Mozilla
[2007/11/10 12:11:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nero
[2011/01/27 18:52:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Tools
[2010/12/13 16:19:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Real
[2011/01/21 22:20:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
[2010/04/02 14:09:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sun
[2011/01/27 19:13:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2009/04/12 15:56:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TomTom
[2009/12/26 11:15:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Trend Micro
[2007/05/31 13:07:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\UDL
[2007/01/05 13:02:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2007/01/05 19:06:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Windows Live Toolbar
[2009/08/21 07:20:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WindowsLiveInstaller
[2008/03/17 19:59:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WLInstaller
[color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*.exe /s >[/color]
[2007/09/29 13:21:13 | 000,072,704 | ---- | M] (Google) -- C:\Documents and Settings\All Users\Application Data\Mozilla\Firefox Extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\uninstaller.exe
[2011/01/24 21:45:59 | 065,317,024 | ---- | M] (PC Tools ) -- C:\Documents and Settings\All Users\Application Data\PC Tools\DownloadManager\Spyware Doctor8.0\sdsetup_dl.exe
[color=#A23BEC]< %APPDATA%\*. >[/color]
[2009/09/20 12:05:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Adobe
[2007/04/05 18:53:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\AdobeUM
[2007/08/16 11:48:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Ahead
[2008/12/19 15:52:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Apple Computer
[2007/08/19 09:48:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\CyberLink
[2007/09/29 13:20:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\DivX
[2007/10/22 17:59:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\EPSON
[2007/01/09 21:03:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\FotoWire
[2008/06/02 15:56:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\FUJIFILM
[2011/01/24 18:03:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\GetRightToGo
[2007/04/14 07:34:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Google
[2011/01/19 16:46:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Help
[2009/06/28 19:27:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Icones
[2007/01/05 13:02:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Identities
[2007/12/17 07:05:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\InstallShield
[2007/07/09 15:05:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Leadertech
[2007/01/05 15:04:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Logitech
[2009/09/20 12:05:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Macromedia
[2009/02/22 09:31:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Malwarebytes
[2009/08/24 06:38:49 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Propriétaire\Application Data\Microsoft
[2009/04/12 15:56:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Mozilla
[2007/01/07 21:22:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\MSNInstaller
[2007/02/21 17:42:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Musicmatch
[2010/12/13 16:19:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Real
[2007/01/05 13:49:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\SampleView
[2007/12/20 06:36:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Samsung
[2007/04/29 16:50:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Sun
[2007/09/29 13:23:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Talkback
[2010/12/25 10:38:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\TitanicMystery
[2008/01/06 12:42:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\TomTom
[2011/01/24 16:54:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Uniblue
[2007/08/08 11:18:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\vlc
[2008/02/05 21:26:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Vso
[2007/01/05 13:02:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Windows Desktop Search
[2007/12/18 06:37:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Propriétaire\Application Data\Yahoo!
[color=#A23BEC]< %APPDATA%\*.exe /s >[/color]
[2007/11/10 14:04:25 | 000,087,608 | ---- | M] () -- C:\Documents and Settings\Propriétaire\Application Data\inst.exe
[2007/01/24 18:54:03 | 023,489,040 | ---- | M] ( ) -- C:\Documents and Settings\Propriétaire\Application Data\Adobe\Acrobat\7.0\Updater\AdbeRdr709_fr_FR.exe
[2007/05/17 19:13:54 | 001,214,696 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\Propriétaire\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\fpupdateax\fpupdateax.exe
[2008/09/26 05:45:40 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\Propriétaire\Application Data\Microsoft\Installer\{3101CB58-3482-4D21-AF1A-7057FC935355}\ARPPRODUCTICON.exe
[2010/12/25 10:32:53 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\Propriétaire\Application Data\Microsoft\Installer\{C06EFB22-B5DB-46C5-9215-BCB5C19C0858}\ARPPRODUCTICON.exe
[2010/12/25 10:32:53 | 000,053,248 | R--- | M] (Macrovision Corporation) -- C:\Documents and Settings\Propriétaire\Application Data\Microsoft\Installer\{C06EFB22-B5DB-46C5-9215-BCB5C19C0858}\NewShortcut1_C06EFB22B5DB46C59215BCB5C19C0858.exe
[2009/03/20 20:02:27 | 000,000,000 | R--- | M] () -- C:\Documents and Settings\Propriétaire\Application Data\Microsoft\Live Search\Notification-LiveSearch.exe
[2009/06/12 17:54:37 | 000,086,576 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Propriétaire\Application Data\Microsoft\Services Windows Live\Raccourci Galerie de Photos Windows Live.exe
[2009/06/12 17:54:37 | 000,132,672 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Propriétaire\Application Data\Microsoft\Services Windows Live\Raccourci Windows Live Messenger.exe
[2007/01/07 21:22:17 | 000,826,856 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Propriétaire\Application Data\MSNInstaller\msnauins.exe
[2011/01/25 18:49:33 | 000,510,120 | ---- | M] (RealNetworks, Inc.) -- C:\Documents and Settings\Propriétaire\Application Data\Real\Update\setup3.13\setup.exe
[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
[2005/10/31 16:56:00 | 000,700,416 | ---- | M] (LimeWire) -- C:\StubInstaller.exe
[2008/12/11 17:10:10 | 000,001,025 | ---- | M] () -- C:\wax.exe
[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
[2005/10/31 16:56:00 | 000,700,416 | ---- | M] (LimeWire) -- C:\StubInstaller.exe
[2008/12/11 17:10:10 | 000,001,025 | ---- | M] () -- C:\wax.exe
[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2006/12/21 15:30:17 | 016,707,531 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008/04/13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008/04/13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2006/12/21 15:30:17 | 016,707,531 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008/04/13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008/04/13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2006/12/21 14:36:56 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2006/03/02 13:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\system32\DRIVERS\atapi.sys
[2006/03/02 13:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0008\DriverFiles\i386\atapi.sys
[2006/12/21 14:36:56 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0009\DriverFiles\i386\atapi.sys
[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2006/12/21 15:30:17 | 016,707,531 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008/04/13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008/04/13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2006/03/02 13:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
[color=#A23BEC]< MD5 for: CHANGER.SYS >[/color]
[2006/12/21 15:30:17 | 016,707,531 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Changer.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Changer.sys
[2008/04/13 19:40:58 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=2A5815CA6FFF24B688C01F828B96819C -- C:\WINDOWS\ServicePackFiles\i386\changer.sys
[color=#A23BEC]< MD5 for: DISK.SYS >[/color]
[2006/12/21 15:30:17 | 016,707,531 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:disk.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:disk.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:disk.sys
[2006/03/02 13:00:00 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=00CA44E4534865F8A3B64F7C0984BFF0 -- C:\WINDOWS\$NtServicePackUninstall$\disk.sys
[2008/04/13 19:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\ServicePackFiles\i386\disk.sys
[2008/04/13 19:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\system32\drivers\disk.sys
[color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
[2006/03/02 13:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=49B1376885340BF9EA0D99F71557B59A -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
[2008/04/14 03:33:24 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008/04/14 03:33:24 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\system32\eventlog.dll
[color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
[2006/03/02 13:00:00 | 001,036,288 | ---- | M] (Microsoft Corporation) MD5=2A7BD330924252A2FD80344FC949BB72 -- C:\WINDOWS\$NtUninstallKB938828$\explorer.exe
[2007/06/13 14:10:53 | 001,037,312 | ---- | M] (Microsoft Corporation) MD5=B795475444D6D57A572C14B9E1A29839 -- C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[2007/06/13 14:22:28 | 001,037,312 | ---- | M] (Microsoft Corporation) MD5=D0288319660EDCFED07C7E74C4EA38A5 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
[2008/04/14 03:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\explorer.exe
[2008/04/14 03:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2008/04/13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008/04/13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2006/03/02 13:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys
[color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color]
[2008/04/14 03:33:34 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008/04/14 03:33:34 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\system32\netlogon.dll
[2006/03/02 13:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=D4CFAC76926C24E32B7F25A35C31BC6E -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[color=#A23BEC]< MD5 for: RASACD.SYS >[/color]
[2006/03/02 13:00:00 | 000,008,832 | ---- | M] (Microsoft Corporation) MD5=FE0D99D6F31E4FAD8159F690D68DED9C -- C:\WINDOWS\system32\dllcache\rasacd.sys
[2006/03/02 13:00:00 | 000,008,832 | ---- | M] (Microsoft Corporation) MD5=FE0D99D6F31E4FAD8159F690D68DED9C -- C:\WINDOWS\system32\drivers\rasacd.sys
[color=#A23BEC]< MD5 for: RDPWD.SYS >[/color]
[2006/12/21 14:39:27 | 000,139,528 | ---- | M] (Microsoft Corporation) MD5=047BEA21274C8A4A233674A76C958C2C -- C:\WINDOWS\$NtServicePackUninstall$\rdpwd.sys
[2008/04/14 03:34:54 | 000,139,656 | ---- | M] (Microsoft Corporation) MD5=6728E45B66F93C08F11DE2E316FC70DD -- C:\WINDOWS\ServicePackFiles\i386\rdpwd.sys
[2008/04/14 03:34:54 | 000,139,656 | ---- | M] (Microsoft Corporation) MD5=6728E45B66F93C08F11DE2E316FC70DD -- C:\WINDOWS\system32\drivers\rdpwd.sys
[color=#A23BEC]< MD5 for: SCECLI.DLL >[/color]
[2006/03/02 13:00:00 | 000,186,368 | ---- | M] (Microsoft Corporation) MD5=58D439F6EF73A2D9288B204E819F4BBD -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[2008/04/14 03:33:40 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008/04/14 03:33:40 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\system32\scecli.dll
[color=#A23BEC]< MD5 for: SFLOPPY.SYS >[/color]
[2006/12/21 15:30:17 | 016,707,531 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:Sfloppy.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Sfloppy.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:Sfloppy.sys
[2006/03/02 13:00:00 | 000,011,392 | ---- | M] (Microsoft Corporation) MD5=0D13B6DF6E9E101013A7AFB0CE629FE0 -- C:\WINDOWS\$NtServicePackUninstall$\sfloppy.sys
[2008/04/13 19:40:48 | 000,011,392 | ---- | M] (Microsoft Corporation) MD5=8E6B8C671615D126FDC553D1E2DE5562 -- C:\WINDOWS\ServicePackFiles\i386\sfloppy.sys
[2008/04/13 19:40:48 | 000,011,392 | ---- | M] (Microsoft Corporation) MD5=8E6B8C671615D126FDC553D1E2DE5562 -- C:\WINDOWS\system32\drivers\sfloppy.sys
[color=#A23BEC]< MD5 for: SPLITTER.SYS >[/color]
[2006/12/21 15:30:17 | 016,707,531 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:splitter.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:splitter.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:splitter.sys
[2006/12/21 14:36:56 | 000,006,272 | ---- | M] (Microsoft Corporation) MD5=9BB1DD670CB7505A90FC4E61D4AA8227 -- C:\WINDOWS\$NtServicePackUninstall$\splitter.sys
[2008/04/13 19:45:07 | 000,006,272 | ---- | M] (Microsoft Corporation) MD5=AB8B92451ECB048A4D1DE7C3FFCB4A9F -- C:\WINDOWS\ServicePackFiles\i386\splitter.sys
[2008/04/13 19:45:07 | 000,006,272 | ---- | M] (Microsoft Corporation) MD5=AB8B92451ECB048A4D1DE7C3FFCB4A9F -- C:\WINDOWS\system32\drivers\splitter.sys
[color=#A23BEC]< MD5 for: SWMIDI.SYS >[/color]
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:swmidi.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:swmidi.sys
[2008/04/13 19:45:09 | 000,056,576 | ---- | M] (Microsoft Corporation) MD5=8CE882BCC6CF8A62F2B2323D95CB3D01 -- C:\WINDOWS\ServicePackFiles\i386\swmidi.sys
[2008/04/13 19:45:09 | 000,056,576 | ---- | M] (Microsoft Corporation) MD5=8CE882BCC6CF8A62F2B2323D95CB3D01 -- C:\WINDOWS\system32\drivers\swmidi.sys
[2006/12/21 14:36:40 | 000,054,272 | ---- | M] (Microsoft Corporation) MD5=94ABC808FC4B6D7D2BBF42B85E25BB4D -- C:\WINDOWS\$NtServicePackUninstall$\swmidi.sys
[color=#A23BEC]< MD5 for: TCPIP.SYS >[/color]
[2007/10/30 17:53:32 | 000,360,832 | ---- | M] (Microsoft Corporation) MD5=64798ECFA43D78C7178375FCDD16D8C8 -- C:\WINDOWS\$NtUninstallKB951748_0$\tcpip.sys
[2008/06/20 11:44:42 | 000,360,960 | ---- | M] (Microsoft Corporation) MD5=744E57C99232201AE98C49168B918F48 -- C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
[2008/04/13 20:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[2008/04/13 20:20:16 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\ServicePackFiles\i386\tcpip.sys
[2008/06/20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[2008/06/20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys
[2008/06/20 12:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys
[2008/06/20 12:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[2006/12/21 14:43:28 | 000,360,576 | ---- | M] (Microsoft Corporation) MD5=B2220C618B42A2212A59D91EBD6FC4B4 -- C:\WINDOWS\$NtUninstallKB941644$\tcpip.sys
[color=#A23BEC]< MD5 for: TDPIPE.SYS >[/color]
[2006/03/02 13:00:00 | 000,012,040 | ---- | M] (Microsoft Corporation) MD5=38D437CF2D98965F239B0ABCD66DCB0F -- C:\WINDOWS\$NtServicePackUninstall$\tdpipe.sys
[2008/04/14 03:34:52 | 000,012,040 | ---- | M] (Microsoft Corporation) MD5=6471A66807F5E104E4885F5B67349397 -- C:\WINDOWS\ServicePackFiles\i386\tdpipe.sys
[2008/04/14 03:34:52 | 000,012,040 | ---- | M] (Microsoft Corporation) MD5=6471A66807F5E104E4885F5B67349397 -- C:\WINDOWS\system32\drivers\tdpipe.sys
[color=#A23BEC]< MD5 for: TDTCP.SYS >[/color]
[2008/04/14 03:34:53 | 000,021,896 | ---- | M] (Microsoft Corporation) MD5=C56B6D0402371CF3700EB322EF3AAF61 -- C:\WINDOWS\ServicePackFiles\i386\tdtcp.sys
[2008/04/14 03:34:53 | 000,021,896 | ---- | M] (Microsoft Corporation) MD5=C56B6D0402371CF3700EB322EF3AAF61 -- C:\WINDOWS\system32\drivers\tdtcp.sys
[2006/03/02 13:00:00 | 000,021,896 | ---- | M] (Microsoft Corporation) MD5=ED0580AF02502D00AD8C4C066B156BE9 -- C:\WINDOWS\$NtServicePackUninstall$\tdtcp.sys
[color=#A23BEC]< MD5 for: USBPRINT.SYS >[/color]
[2006/12/21 15:30:17 | 016,707,531 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:usbprint.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:usbprint.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:usbprint.sys
[2006/12/21 14:36:56 | 000,025,856 | ---- | M] (Microsoft Corporation) MD5=A42369B7CD8886CD7C70F33DA6FCBCF5 -- C:\WINDOWS\$NtServicePackUninstall$\usbprint.sys
[2008/04/13 19:47:37 | 000,025,856 | ---- | M] (Microsoft Corporation) MD5=A717C8721046828520C9EDF31288FC00 -- C:\WINDOWS\ServicePackFiles\i386\usbprint.sys
[2008/04/13 19:47:37 | 000,025,856 | ---- | M] (Microsoft Corporation) MD5=A717C8721046828520C9EDF31288FC00 -- C:\WINDOWS\system32\drivers\usbprint.sys
[color=#A23BEC]< MD5 for: USBSCAN.SYS >[/color]
[2006/12/21 15:30:17 | 016,707,531 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:usbscan.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:usbscan.sys
[2008/08/30 07:19:55 | 023,892,017 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:usbscan.sys
[2008/04/13 19:45:34 | 000,015,104 | ---- | M] (Microsoft Corporation) MD5=A0B8CF9DEB1184FBDD20784A58FA75D4 -- C:\WINDOWS\ServicePackFiles\i386\usbscan.sys
[2008/04/13 19:45:34 | 000,015,104 | ---- | M] (Microsoft Corporation) MD5=A0B8CF9DEB1184FBDD20784A58FA75D4 -- C:\WINDOWS\system32\drivers\usbscan.sys
[2006/12/21 13:37:00 | 000,015,104 | ---- | M] (Microsoft Corporation) MD5=A6BC71402F4F7DD5B77FD7F4A8DDBA85 -- C:\WINDOWS\$NtServicePackUninstall$\usbscan.sys
[color=#A23BEC]< MD5 for: USERINIT.EXE >[/color]
[2011/01/24 18:22:44 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=84717891F0734C611721F56C60B5FBC3 -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe
[2008/04/14 03:34:26 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008/04/14 03:34:26 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\system32\userinit.exe
[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2006/03/02 13:00:00 | 000,506,368 | ---- | M] (Microsoft Corporation) MD5=123EEA158F74D0F67A51DCDF065D1091 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008/04/14 03:34:28 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008/04/14 03:34:28 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\system32\winlogon.exe
[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[2009/03/08 03:31:44 | 000,348,160 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\dxtmsft.dll
[2009/03/08 03:31:38 | 000,216,064 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\dxtrans.dll
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
[color=#E56717]========== Alternate Data Streams ==========[/color]
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:BB24555F
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2
< End of report >
C:\Program Files\BrotherSoft_Extreme
C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\kakcniku.default\searchplugins\Searcheo.xml
C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\kakcniku.default\searchplugins\ustart.xml
C:\Program Files\ConduitEngine
C:\Documents and Settings\Propriétaire\Local Settings\Application Data\BrotherSoft_Extreme
C:\Documents and Settings\Propriétaire\Application Data\inst.exe
C:\Documents and Settings\Propriétaire\Application Data\inst.exe
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
IE - HKU\S-1-5-21-1547161642-839522115-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2776682
IE - HKU\S-1-5-21-1547161642-839522115-725345543-1003\..\URLSearchHook: {472734EA-242A-422b-ADF8-83D1E48CC825} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-1547161642-839522115-725345543-1003\..\URLSearchHook: {51a86bb3-6602-4c85-92a5-130ee4864f13} - C:\Program Files\BrotherSoft_Extreme\tbBrot.dll (Conduit Ltd.)
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://www.ustart.org"
FF - prefs.js..keyword.URL: "http://www.searcheo.fr/recherche?search&q="
FF - prefs.js..browser.startup.homepage: "Searcheo");user_pref("browser.startup.homepage", "http://www.ustart.org"
FF - prefs.js..browser.search.selectedEngine: "uStart"
FF - prefs.js..browser.startup.homepage: "http://www.ustart.org"
FF - prefs.js..browser.search.selectedEngine: "uStart"
FF - prefs.js..browser.startup.homepage: "http://www.ustart.org"
FF - prefs.js..browser.search.selectedEngine: "uStart"
FF - prefs.js..browser.startup.homepage: "http://www.ustart.org"
FF - prefs.js..browser.search.selectedEngine: "uStart"
FF - prefs.js..browser.startup.homepage: "http://www.ustart.org"
FF - prefs.js..browser.search.selectedEngine: "uStart"
O2 - BHO: (BrotherSoft Extreme Toolbar) - {51a86bb3-6602-4c85-92a5-130ee4864f13} - C:\Program Files\BrotherSoft_Extreme\tbBrot.dll (Conduit Ltd.)
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (BrotherSoft Extreme Toolbar) - {51a86bb3-6602-4c85-92a5-130ee4864f13} - C:\Program Files\BrotherSoft_Extreme\tbBrot.dll (Conduit Ltd.)
O4 - HKU\S-1-5-21-1547161642-839522115-725345543-1003..\Run: [Spyware Doctor] File not found
O20 - AppInit_DLLs: (c:\progra~1\bandoo\bndhook.dll) - File not found
O20 - AppInit_DLLs: (ehtwuu.dll) - File not found
O33 - MountPoints2\{b8ccf123-185f-11dc-9b06-0018f3089fa0}\Shell\Auto\command - "" = AdobeR.exe e
O33 - MountPoints2\{b8ccf123-185f-11dc-9b06-0018f3089fa0}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdobeR.exe e
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2009/02/22 09:02:59 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\aqhmpwbn.dll
[2009/02/21 21:10:15 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\pyejfygo.dll
[2009/02/20 06:31:03 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\gbncyhvr.dll
[2009/02/18 18:45:19 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ptyirmgt.dll
[2009/02/18 06:19:37 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\dghieehe.dll
[2009/02/17 18:18:23 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\gwhjgfyo.dll
[2009/02/14 10:39:10 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\qdartixn.dll
[2009/02/13 06:27:41 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\iprcntfm.dll
[2009/02/12 06:29:54 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\latycadp.dll
[2009/02/11 18:04:45 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\lduakarl.dll
[2009/02/11 06:07:33 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\gtbvfive.dll
[2009/02/08 19:33:38 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\jcxfvrgo.dll
[2009/02/07 19:31:06 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\uxpvqwni.dll
[2009/02/06 17:41:20 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\skuapeps.dll
[2009/02/05 21:33:38 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\juxsyrdq.dll
[2009/02/05 20:04:01 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\qanowyod.dll
[2009/02/04 20:01:08 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\wvttcdhp.dll
[2009/02/03 18:26:06 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\vchdqrcu.dll
[2009/02/03 16:42:58 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ylwpohhy.dll
[2009/02/01 12:08:28 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\kuoratka.dll
[2009/01/31 19:09:16 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\iurkdqka.dll
[2009/01/30 19:08:30 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\bdlkpsge.dll
[2009/01/29 20:00:39 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\agulnidt.dll
[2009/01/28 19:57:44 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\neqnmdit.dll
[2009/01/28 19:55:37 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ipxdsaoa.dll
[2009/01/27 19:56:26 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\scikioni.dll
[2009/01/26 19:55:51 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\vjfloenl.dll
[2009/01/22 06:02:16 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\htsgglnc.dll
[2009/01/21 05:52:09 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\prvltooh.dll
[2009/01/20 19:17:35 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\nunohfnh.dll
[2009/01/19 19:15:53 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\vkcsigsl.dll
[2009/01/19 06:06:03 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\haemeyni.dll
[2009/01/18 13:49:13 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\pibdmwyn.dll
[2009/01/17 14:18:26 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\iljbxjbk.dll
[2009/01/17 09:26:05 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\psdtakcg.dll
[2009/01/16 06:39:21 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\lemqhmon.dll
[2009/01/16 06:09:17 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\awuatjsa.dll
[2009/01/15 19:01:51 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\vgduthrh.dll
[2009/01/14 19:00:59 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ipktohht.dll
[2009/01/13 16:47:33 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\eqwpxyff.dll
[2009/01/13 06:07:20 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\fmjepfeu.dll
[2009/01/12 06:07:06 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\qnsuejhh.dll
[2009/01/11 18:33:11 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\jiquvdbo.dll
[2009/01/10 18:32:44 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ltckjedc.dll
[2009/01/09 18:28:36 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\wfuovptk.dll
[2009/01/07 12:27:01 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\nrambjst.dll
[2009/01/06 13:38:08 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\iqrhjklr.dll
[2009/01/05 16:22:34 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\ghylvpwx.dll
[2009/01/05 16:20:58 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\aupgfxrm.dll
[2009/01/04 15:54:00 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\yqsomwpm.dll
[2009/01/04 15:53:57 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\dxktsonl.dll
[2009/01/04 10:08:43 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\rtbmmguo.dll
[2009/01/04 10:05:43 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\xctvojrg.dll
[2009/01/03 10:03:23 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\cbiheniw.dll
[2009/01/03 10:03:23 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\wsfhekml.dll
[2009/01/03 09:51:07 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\yeiwfdcj.dll
[2009/01/03 09:49:25 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\hyubcxue.dll
[2009/01/02 18:54:04 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\srumkgai.dll
[2009/01/02 18:51:07 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\jgeavpbh.dll
[2009/01/01 18:52:12 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\cbywqawq.dll
[2009/01/01 18:51:02 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\uppqgitd.dll
[2008/12/30 18:33:50 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ybugifrf.dll
[2008/12/30 18:30:52 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\rwehborh.dll
[2008/12/30 18:28:09 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\glpfelto.dll
[2008/12/30 18:28:05 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\fmepcvxr.dll
[2008/12/30 16:58:34 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\ikskbqap.dll
[2008/12/29 16:47:50 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\gixjwjkl.dll
[2008/12/29 16:44:37 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\grkgpgud.dll
[2008/12/28 11:19:04 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\pprkbjld.dll
[2008/12/28 11:19:01 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\qlmiynbj.dll
[2008/12/27 22:51:50 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\kgpxvbds.dll
[2008/12/27 22:51:47 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\esowvuok.dll
[2008/12/27 20:51:07 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\rarwuvdi.dll
[2008/12/27 20:51:04 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\uxhsdowm.dll
[2008/12/27 08:15:06 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\emfobaux.dll
[2008/12/27 08:14:41 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\qaumpmap.dll
[2008/12/26 08:29:17 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\fswvtusr.dll
[2008/12/26 08:27:03 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\xnwudxml.dll
[2008/12/25 22:21:24 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\njddmfpe.dll
[2008/12/25 22:21:20 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\xirilpkq.dll
[2008/12/25 17:17:00 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\adrmssgx.dll
[2008/12/24 14:32:26 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\driuqrdl.dll
[2008/12/24 14:29:49 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\hyykvplg.dll
[2008/12/23 20:35:51 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\vjrxcvot.dll
[2008/12/23 20:34:01 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\squgwdoq.dll
[2008/12/23 16:44:01 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\yhxasseq.dll
[2008/12/23 16:19:28 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\wwhqwmou.dll
[2008/12/23 08:20:38 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\loujmehq.dll
[2008/12/23 08:18:25 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ftnmfmvt.dll
[2008/12/23 08:02:25 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\qqqtcuak.dll
[2008/12/21 13:54:43 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\ehgymwdf.dll
[2008/12/21 13:52:23 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\bwooxtft.dll
[2008/12/21 10:17:03 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\wdyyrpmb.dll
[2008/12/21 10:14:03 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\uwubjehr.dll
[2008/12/20 10:15:22 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\cduqtacj.dll
[2008/12/20 10:12:21 | 000,005,778 | ---- | C] () -- C:\WINDOWS\System32\uxrimvmy.dll
[2008/12/20 09:09:22 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\rxbncdgd.dll
[2008/12/17 22:27:17 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\vgdoriht.dll
[2008/12/17 20:07:33 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\avewwmpv.dll
[2008/12/17 20:06:23 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\dfdslnih.dll
[2008/12/16 20:05:52 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\tntbksbd.dll
[2008/12/16 20:03:36 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\mehuntdv.dll
[2008/12/16 19:39:16 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\dfrnophe.dll
[2008/12/16 19:38:22 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\abajihth.dll
[2008/12/16 18:38:26 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\avgpscuv.dll
[2008/12/16 18:35:26 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\oklpmiwj.dll
[2008/12/15 18:34:01 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\lpufmeqt.dll
[2008/12/15 18:33:57 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\lgiqdcra.dll
[2008/12/14 18:50:31 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\kspgrhwf.dll
[2008/12/14 18:48:11 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\rbcabjfj.dll
[2008/12/14 11:32:14 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\ovqaxlvx.dll
[2008/12/14 11:29:14 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\guosdjat.dll
[2008/12/13 13:34:15 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\outwndjg.dll
[2008/12/13 11:23:44 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\tsmrvgen.dll
[2008/12/12 15:21:27 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\brdlcoku.dll
[2008/12/12 15:19:13 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\dntpapxs.dll
[2008/12/11 20:31:58 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\lmpourec.dll
[2008/12/11 20:31:55 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\jtgyrsjl.dll
[2008/12/11 18:18:28 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\nunubeoe.dll
[2008/12/11 18:16:11 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\yvdfjoup.dll
[2008/12/11 06:40:34 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\bsjrebsm.dll
[2008/12/11 06:38:13 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\oolxlqcf.dll
[2008/12/10 18:51:13 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\wjpnyvdi.dll
[2008/12/10 18:48:56 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\tjqopqnp.dll
[2008/12/10 16:49:13 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\gfjoeiso.dll
[2008/12/09 16:41:14 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\gfiopndl.dll
[2008/12/09 16:41:11 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\jtlsdvca.dll
[2008/12/09 13:31:14 | 000,005,776 | ---- | C] () -- C:\WINDOWS\System32\iltmwqby.dll
[2008/12/09 13:28:14 | 000,005,780 | ---- | C] () -- C:\WINDOWS\System32\irtmuwnp.dll
All processes killed
Error: Unable to interpret <C:\Program Files\BrotherSoft_Extreme> in the current context!
Error: Unable to interpret <C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\kakcniku.default\searchplugins\Searcheo.xml > in the current context!
Error: Unable to interpret <C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\kakcniku.default\searchplugins\ustart.xml > in the current context!
Error: Unable to interpret <C:\Program Files\ConduitEngine> in the current context!
Error: Unable to interpret <C:\Documents and Settings\Propriétaire\Local Settings\Application Data\BrotherSoft_Extreme > in the current context!
Error: Unable to interpret <C:\WINDOWS\System32\drivers\lvuvc.hs > in the current context!
Error: Unable to interpret <C:\Documents and Settings\Propriétaire\Application Data\inst.exe > in the current context!
Error: Unable to interpret <C:\wax.exe > in the current context!
Error: Unable to interpret <C:\Documents and Settings\Propriétaire\Application Data\inst.exe > in the current context!
========== OTL ==========
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKU\S-1-5-21-1547161642-839522115-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-21-1547161642-839522115-725345543-1003\Software\Microsoft\Internet Explorer\URLSearchHooks\\{472734EA-242A-422b-ADF8-83D1E48CC825} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{472734EA-242A-422b-ADF8-83D1E48CC825}\ not found.
Registry value HKEY_USERS\S-1-5-21-1547161642-839522115-725345543-1003\Software\Microsoft\Internet Explorer\URLSearchHooks\\{51a86bb3-6602-4c85-92a5-130ee4864f13} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{51a86bb3-6602-4c85-92a5-130ee4864f13}\ deleted successfully.
C:\Program Files\BrotherSoft_Extreme\tbBrot.dll moved successfully.
Prefs.js: "Google" removed from browser.search.selectedEngine
Prefs.js: "http://www.ustart.org" removed from browser.startup.homepage
Prefs.js: "http://www.searcheo.fr/recherche?search&q=" removed from keyword.URL
Prefs.js: "Searcheo");user_pref("browser.startup.homepage", "http://www.ustart.org" removed from browser.startup.homepage
Prefs.js: "uStart" removed from browser.search.selectedEngine
Prefs.js: "http://www.ustart.org" removed from browser.startup.homepage
Prefs.js: "uStart" removed from browser.search.selectedEngine
Prefs.js: "http://www.ustart.org" removed from browser.startup.homepage
Prefs.js: "uStart" removed from browser.search.selectedEngine
Prefs.js: "http://www.ustart.org" removed from browser.startup.homepage
Prefs.js: "uStart" removed from browser.search.selectedEngine
Prefs.js: "http://www.ustart.org" removed from browser.startup.homepage
Prefs.js: "uStart" removed from browser.search.selectedEngine
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{51a86bb3-6602-4c85-92a5-130ee4864f13}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{51a86bb3-6602-4c85-92a5-130ee4864f13}\ not found.
File C:\Program Files\BrotherSoft_Extreme\tbBrot.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}\ deleted successfully.
C:\Program Files\ConduitEngine\ConduitEngine.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}\ not found.
File C:\Program Files\ConduitEngine\ConduitEngine.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{51a86bb3-6602-4c85-92a5-130ee4864f13} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{51a86bb3-6602-4c85-92a5-130ee4864f13}\ not found.
File C:\Program Files\BrotherSoft_Extreme\tbBrot.dll not found.
Registry value HKEY_USERS\S-1-5-21-1547161642-839522115-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Run\\Spyware Doctor not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:c:\progra~1\bandoo\bndhook.dll deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:ehtwuu.dll deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b8ccf123-185f-11dc-9b06-0018f3089fa0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b8ccf123-185f-11dc-9b06-0018f3089fa0}\ not found.
File AdobeR.exe e not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b8ccf123-185f-11dc-9b06-0018f3089fa0}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{b8ccf123-185f-11dc-9b06-0018f3089fa0}\ not found.
File C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdobeR.exe e not found.
C:\WINDOWS\002734_.tmp deleted successfully.
C:\WINDOWS\msdownld.tmp folder deleted successfully.
C:\WINDOWS\SET3.tmp deleted successfully.
C:\WINDOWS\SET4.tmp deleted successfully.
C:\WINDOWS\SET8.tmp deleted successfully.
C:\WINDOWS\System32\ConduitEngine.tmp deleted successfully.
C:\WINDOWS\System32\CONFIG.TMP deleted successfully.
C:\WINDOWS\system32\aqhmpwbn.dll moved successfully.
C:\WINDOWS\system32\pyejfygo.dll moved successfully.
C:\WINDOWS\system32\gbncyhvr.dll moved successfully.
C:\WINDOWS\system32\ptyirmgt.dll moved successfully.
C:\WINDOWS\system32\dghieehe.dll moved successfully.
C:\WINDOWS\system32\gwhjgfyo.dll moved successfully.
C:\WINDOWS\system32\qdartixn.dll moved successfully.
C:\WINDOWS\system32\iprcntfm.dll moved successfully.
C:\WINDOWS\system32\latycadp.dll moved successfully.
C:\WINDOWS\system32\lduakarl.dll moved successfully.
C:\WINDOWS\system32\gtbvfive.dll moved successfully.
C:\WINDOWS\system32\jcxfvrgo.dll moved successfully.
C:\WINDOWS\system32\uxpvqwni.dll moved successfully.
C:\WINDOWS\system32\skuapeps.dll moved successfully.
C:\WINDOWS\system32\juxsyrdq.dll moved successfully.
C:\WINDOWS\system32\qanowyod.dll moved successfully.
C:\WINDOWS\system32\wvttcdhp.dll moved successfully.
C:\WINDOWS\system32\vchdqrcu.dll moved successfully.
C:\WINDOWS\system32\ylwpohhy.dll moved successfully.
C:\WINDOWS\system32\kuoratka.dll moved successfully.
C:\WINDOWS\system32\iurkdqka.dll moved successfully.
C:\WINDOWS\system32\bdlkpsge.dll moved successfully.
C:\WINDOWS\system32\agulnidt.dll moved successfully.
C:\WINDOWS\system32\neqnmdit.dll moved successfully.
C:\WINDOWS\system32\ipxdsaoa.dll moved successfully.
C:\WINDOWS\system32\scikioni.dll moved successfully.
C:\WINDOWS\system32\vjfloenl.dll moved successfully.
C:\WINDOWS\system32\htsgglnc.dll moved successfully.
C:\WINDOWS\system32\prvltooh.dll moved successfully.
C:\WINDOWS\system32\nunohfnh.dll moved successfully.
C:\WINDOWS\system32\vkcsigsl.dll moved successfully.
C:\WINDOWS\system32\haemeyni.dll moved successfully.
C:\WINDOWS\system32\pibdmwyn.dll moved successfully.
C:\WINDOWS\system32\iljbxjbk.dll moved successfully.
C:\WINDOWS\system32\psdtakcg.dll moved successfully.
C:\WINDOWS\system32\lemqhmon.dll moved successfully.
C:\WINDOWS\system32\awuatjsa.dll moved successfully.
C:\WINDOWS\system32\vgduthrh.dll moved successfully.
C:\WINDOWS\system32\ipktohht.dll moved successfully.
C:\WINDOWS\system32\eqwpxyff.dll moved successfully.
C:\WINDOWS\system32\fmjepfeu.dll moved successfully.
C:\WINDOWS\system32\qnsuejhh.dll moved successfully.
C:\WINDOWS\system32\jiquvdbo.dll moved successfully.
C:\WINDOWS\system32\ltckjedc.dll moved successfully.
C:\WINDOWS\system32\wfuovptk.dll moved successfully.
C:\WINDOWS\system32\nrambjst.dll moved successfully.
C:\WINDOWS\system32\iqrhjklr.dll moved successfully.
C:\WINDOWS\system32\ghylvpwx.dll moved successfully.
C:\WINDOWS\system32\aupgfxrm.dll moved successfully.
C:\WINDOWS\system32\yqsomwpm.dll moved successfully.
C:\WINDOWS\system32\dxktsonl.dll moved successfully.
C:\WINDOWS\system32\rtbmmguo.dll moved successfully.
C:\WINDOWS\system32\xctvojrg.dll moved successfully.
C:\WINDOWS\system32\cbiheniw.dll moved successfully.
C:\WINDOWS\system32\wsfhekml.dll moved successfully.
C:\WINDOWS\system32\yeiwfdcj.dll moved successfully.
C:\WINDOWS\system32\hyubcxue.dll moved successfully.
C:\WINDOWS\system32\srumkgai.dll moved successfully.
C:\WINDOWS\system32\jgeavpbh.dll moved successfully.
C:\WINDOWS\system32\cbywqawq.dll moved successfully.
C:\WINDOWS\system32\uppqgitd.dll moved successfully.
C:\WINDOWS\system32\ybugifrf.dll moved successfully.
C:\WINDOWS\system32\rwehborh.dll moved successfully.
C:\WINDOWS\system32\glpfelto.dll moved successfully.
C:\WINDOWS\system32\fmepcvxr.dll moved successfully.
C:\WINDOWS\system32\ikskbqap.dll moved successfully.
C:\WINDOWS\system32\gixjwjkl.dll moved successfully.
C:\WINDOWS\system32\grkgpgud.dll moved successfully.
C:\WINDOWS\system32\pprkbjld.dll moved successfully.
C:\WINDOWS\system32\qlmiynbj.dll moved successfully.
C:\WINDOWS\system32\kgpxvbds.dll moved successfully.
C:\WINDOWS\system32\esowvuok.dll moved successfully.
C:\WINDOWS\system32\rarwuvdi.dll moved successfully.
C:\WINDOWS\system32\uxhsdowm.dll moved successfully.
C:\WINDOWS\system32\emfobaux.dll moved successfully.
C:\WINDOWS\system32\qaumpmap.dll moved successfully.
C:\WINDOWS\system32\fswvtusr.dll moved successfully.
C:\WINDOWS\system32\xnwudxml.dll moved successfully.
C:\WINDOWS\system32\njddmfpe.dll moved successfully.
C:\WINDOWS\system32\xirilpkq.dll moved successfully.
C:\WINDOWS\system32\adrmssgx.dll moved successfully.
C:\WINDOWS\system32\driuqrdl.dll moved successfully.
C:\WINDOWS\system32\hyykvplg.dll moved successfully.
C:\WINDOWS\system32\vjrxcvot.dll moved successfully.
C:\WINDOWS\system32\squgwdoq.dll moved successfully.
C:\WINDOWS\system32\yhxasseq.dll moved successfully.
C:\WINDOWS\system32\wwhqwmou.dll moved successfully.
C:\WINDOWS\system32\loujmehq.dll moved successfully.
C:\WINDOWS\system32\ftnmfmvt.dll moved successfully.
C:\WINDOWS\system32\qqqtcuak.dll moved successfully.
C:\WINDOWS\system32\ehgymwdf.dll moved successfully.
C:\WINDOWS\system32\bwooxtft.dll moved successfully.
C:\WINDOWS\system32\wdyyrpmb.dll moved successfully.
C:\WINDOWS\system32\uwubjehr.dll moved successfully.
C:\WINDOWS\system32\cduqtacj.dll moved successfully.
C:\WINDOWS\system32\uxrimvmy.dll moved successfully.
C:\WINDOWS\system32\rxbncdgd.dll moved successfully.
C:\WINDOWS\system32\vgdoriht.dll moved successfully.
C:\WINDOWS\system32\avewwmpv.dll moved successfully.
C:\WINDOWS\system32\dfdslnih.dll moved successfully.
C:\WINDOWS\system32\tntbksbd.dll moved successfully.
C:\WINDOWS\system32\mehuntdv.dll moved successfully.
C:\WINDOWS\system32\dfrnophe.dll moved successfully.
C:\WINDOWS\system32\abajihth.dll moved successfully.
C:\WINDOWS\system32\avgpscuv.dll moved successfully.
C:\WINDOWS\system32\oklpmiwj.dll moved successfully.
C:\WINDOWS\system32\lpufmeqt.dll moved successfully.
C:\WINDOWS\system32\lgiqdcra.dll moved successfully.
C:\WINDOWS\system32\kspgrhwf.dll moved successfully.
C:\WINDOWS\system32\rbcabjfj.dll moved successfully.
C:\WINDOWS\system32\ovqaxlvx.dll moved successfully.
C:\WINDOWS\system32\guosdjat.dll moved successfully.
C:\WINDOWS\system32\outwndjg.dll moved successfully.
C:\WINDOWS\system32\tsmrvgen.dll moved successfully.
C:\WINDOWS\system32\brdlcoku.dll moved successfully.
C:\WINDOWS\system32\dntpapxs.dll moved successfully.
C:\WINDOWS\system32\lmpourec.dll moved successfully.
C:\WINDOWS\system32\jtgyrsjl.dll moved successfully.
C:\WINDOWS\system32\nunubeoe.dll moved successfully.
C:\WINDOWS\system32\yvdfjoup.dll moved successfully.
C:\WINDOWS\system32\bsjrebsm.dll moved successfully.
C:\WINDOWS\system32\oolxlqcf.dll moved successfully.
C:\WINDOWS\system32\wjpnyvdi.dll moved successfully.
C:\WINDOWS\system32\tjqopqnp.dll moved successfully.
C:\WINDOWS\system32\gfjoeiso.dll moved successfully.
C:\WINDOWS\system32\gfiopndl.dll moved successfully.
C:\WINDOWS\system32\jtlsdvca.dll moved successfully.
C:\WINDOWS\system32\iltmwqby.dll moved successfully.
C:\WINDOWS\system32\irtmuwnp.dll moved successfully.
========== COMMANDS ==========
User: All Users
User: Default User
->Temp folder emptied: 4539221 bytes
->Temporary Internet Files folder emptied: 4538861 bytes
User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 135695 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 422946 bytes
User: Propriétaire
->Temp folder emptied: 151298837 bytes
->Temporary Internet Files folder emptied: 23566111 bytes
->Java cache emptied: 60398325 bytes
->FireFox cache emptied: 4655261 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 1226741 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 69744520 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 6874043 bytes
Total Files Cleaned = 312,00 mb
User: All Users
User: Default User
User: LocalService
User: NetworkService
User: Propriétaire
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
OTL by OldTimer - Version log created on 01272011_211853
Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\Propriétaire\Local Settings\Temporary Internet Files\Content.IE5\TMF8RG3D\FW_ Savoir g_rer les priorit_s. not found!
File move failed. C:\WINDOWS\System32\config\systemprofile\Local Settings\Temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.
File\Folder C:\WINDOWS\System32\config\systemprofile\Local Settings\Temp\logishrd\LVPrcInj01.dll not found!
Registry entries deleted on Reboot...
C:\Program Files\BrotherSoft_Extreme
C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\kakcniku.default\searchplugins\Searcheo.xml
C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\kakcniku.default\searchplugins\ustart.xml
C:\Program Files\ConduitEngine
C:\Documents and Settings\Propriétaire\Local Settings\Application Data\BrotherSoft_Extreme
C:\Documents and Settings\Propriétaire\Application Data\inst.exe
C:\Program Files\BrotherSoft_Extreme
C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\kakcniku.default\searchplugins\Searcheo.xml
C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\kakcniku.default\searchplugins\ustart.xml
C:\Program Files\ConduitEngine
C:\Documents and Settings\Propriétaire\Local Settings\Application Data\BrotherSoft_Extreme
C:\Documents and Settings\Propriétaire\Application Data\inst.exe
========== FILES ==========
C:\Program Files\BrotherSoft_Extreme folder moved successfully.
C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\kakcniku.default\searchplugins\Searcheo.xml moved successfully.
C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\kakcniku.default\searchplugins\ustart.xml moved successfully.
C:\Program Files\ConduitEngine folder moved successfully.
C:\Documents and Settings\Propriétaire\Local Settings\Application Data\BrotherSoft_Extreme\Logs folder moved successfully.
C:\Documents and Settings\Propriétaire\Local Settings\Application Data\BrotherSoft_Extreme folder moved successfully.
C:\WINDOWS\System32\drivers\lvuvc.hs moved successfully.
C:\Documents and Settings\Propriétaire\Application Data\inst.exe moved successfully.
C:\wax.exe moved successfully.
========== FILES ==========
File\Folder C:\Program Files\BrotherSoft_Extreme not found.
File\Folder C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\kakcniku.default\searchplugins\Searcheo.xml not found.
File\Folder C:\Documents and Settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\kakcniku.default\searchplugins\ustart.xml not found.
File\Folder C:\Program Files\ConduitEngine not found.
File\Folder C:\Documents and Settings\Propriétaire\Local Settings\Application Data\BrotherSoft_Extreme not found.
File\Folder C:\WINDOWS\System32\drivers\lvuvc.hs not found.
File\Folder C:\Documents and Settings\Propriétaire\Application Data\inst.exe not found.
File\Folder C:\wax.exe not found.
OTL by OldTimer - Version log created on 01272011_215233
Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 2 invités
![]() .: Nous contacter :: Flux RSS :: Données personnelles :. ![]() |