Comment remettre a zéro mon pc • page 4

Ask to Old Man · le 03 Sep 2011 10:45

à Dr.w4n1x ,

Malgré ton jeune age, tu ne sais pas comprendre & executer les consignes que l'on te donne ??

Le bouton Éditer... NdDdBdM :evil:

A relire:

AtOM a écrit:Quand donc allez vous penser à utiliser le bouton "Editer" situé en haut à droite de votre dernier message ???

Tant que personne n'a répondu à votre dernier message, vous pouvez y rajouter les commentaires souhaités
pour la clarté du sujet.

Dr.w4n1x a écrit: (tout le monde sais sa sauf moi mais en meme temps j'ai 11ans ...) arrangez-vous pour que je n'aie pas à fusionner
autant de messages d'un seul coup, c'est totalement improductif & tous ces mess.successifs
encombrent la bande passante de notre site.

jeanmimigab · le 03 Sep 2011 11:08

Salut,

Es-tu sûre d'avoir fais le mode suppression avec ADremover, car c'est un rapport de "scan" et non de suppression que tu m'as posté ?

refais un scan otl comme tu l'as fais la première fois stp et poste moi le rapport car à mon avis il en reste encore a virer :wink:

Dr.w4n1x · le 03 Sep 2011 13:23

Tu m'as demander un scan je crois , désoler je te donne le rapport de nettoyage , : ->

Code: Tout sélectionner: ======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 ======= Mis à jour par TeamXscript le 12/04/11 Contact: AdRemover[DOT]contact[AT]gmail[DOT]com Site web: http://www.teamxscript.org C:\Program Files\Ad-Remover\main.exe (CLEAN [3]) -> Lancé à 14:19:14 le 03/09/2011, Mode normal Microsoft Windows XP Édition familiale Service Pack 3 (X86) Dr.w4n1x@NAUGHTY-GUY ( ) ============== ACTION(S) ============== (!) -- Fichiers temporaires supprimés. ============== SCAN ADDITIONNEL ============== **** Mozilla Firefox Version [6.0.1 (fr)] **** Searchplugins\bing.xml ( hxxp://www.bing.com/search) Components\browsercomps.dll (Mozilla Foundation) HKLM_Extensions|{B7082FAA-CB62-4872-9106-E42DD88EDE45} - C:\Program Files\McAfee\SiteAdvisor Enterprise\ -- C:\Documents and Settings\Parent\Application Data\Mozilla\FireFox\Profiles\d2u9r9ty.default -- Prefs.js - browser.startup.homepage_override.buildID, 20110830092941 Prefs.js - browser.startup.homepage_override.mstone, rv:6.0.1 ======================================== **** Internet Explorer Version [6.0.2900.5512] **** HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896 HKCU_Main|Start Page - hxxp://fr.msn.com/ HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM_Main|Start Page - hxxp://fr.msn.com/ HKLM_URLSearchHooks|{57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - "Winamp Search Class" (C:\Program Files\Winamp Toolbar\winamptb.dll) (x) HKCU_Toolbar\WebBrowser|{3D681970-489B-4C1C-A2AD-29DBA7BC3A31} (C:\Program Files\freetrialdownloads-FR\tbfre1.dll) (x) HKCU_Toolbar\WebBrowser|{4DAAC69C-CBA7-45E2-9BC8-1044483D3352} (C:\Program Files\Softonic_France\tbSof1.dll) (x) HKCU_Toolbar\WebBrowser|{A8F9752D-E2B8-4E7A-86B5-499F4330E2FE} (C:\Program Files\Eazel-FR\tbEaz1.dll) (x) HKCU_Toolbar\WebBrowser|{08CB157C-3862-4B24-B113-3A5AA5CF5C47} (C:\Program Files\HabboFR\tbHab1.dll) (x) HKLM_Toolbar|{3d681970-489b-4c1c-a2ad-29dba7bc3a31} (C:\Program Files\freetrialdownloads-FR\tbfre1.dll) (x) HKLM_Toolbar|{4daac69c-cba7-45e2-9bc8-1044483d3352} (C:\Program Files\Softonic_France\tbSof1.dll) (x) HKLM_Toolbar|{08cb157c-3862-4b24-b113-3a5aa5cf5c47} (C:\Program Files\HabboFR\tbHab1.dll) (x) HKLM_Toolbar|{a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} (C:\Program Files\Eazel-FR\tbEaz1.dll) (x) HKLM_Toolbar|{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} (C:\Program Files\McAfee\SiteAdvisor Enterprise\McIEPlg.dll) HKLM_Toolbar|{f4e6547e-325b-403c-a3bb-ad29ed37a92f} (C:\Program Files\SearchElf_1.2\tbSear.dll) (x) HKLM_Toolbar|{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} (C:\Program Files\Winamp Toolbar\winamptb.dll) (x) HKLM_ElevationPolicy\25e9f049-aa35-4e82-b5f3-bc571a3764d1 - C:\Program Files\freetrialdownloads-FR\freetrialdownloads-FRToolbarHelper.exe (x) HKLM_ElevationPolicy\5b5d7033-d7bc-4a4c-b92f-82dac7099d13 - C:\Program Files\Eazel-FR\Eazel-FRToolbarHelper.exe (x) HKLM_ElevationPolicy\5cde08d8-8157-4e9b-9a86-e8ee27505779 - C:\Program Files\HabboFR\HabboFRToolbarHelper.exe (x) HKLM_ElevationPolicy\759b8470-9657-4e48-95ae-3dc52f741e83 - C:\Program Files\Eazel-FR\Eazel-FRToolbarHelper.exe (x) HKLM_ElevationPolicy\b7a9dd1e-d07d-4309-a1a6-6a12e37da014 - C:\Program Files\HabboFR\HabboFRToolbarHelper.exe (x) HKLM_ElevationPolicy\bc1a0b94-9f06-46de-b4d4-19c99012d4bf - C:\Program Files\freetrialdownloads-FR\freetrialdownloads-FRToolbarHelper.exe (x) HKLM_ElevationPolicy\e8c7a4a8-43ec-4670-bfe1-f6c7c627235f - C:\Program Files\Eazel-FR\Eazel-FRToolbarHelper.exe (x) HKLM_ElevationPolicy\{2E2DA678-5F03-48A2-873B-3A0AA20A6A84} - C:\Program Files\SearchElf_1.2\SearchElf_1.2ToolbarHelper.exe (x) HKLM_ElevationPolicy\{ADADAEE2-457A-4984-A57C-E01C3A2BA612} - c:\program files\winamp toolbar\WinampTbServer.exe (x) HKLM_Extensions\{5067A26B-1337-4436-8AFE-EE169C2DA79F} - "?" (?) HKLM_Extensions\{e2e2dd38-d088-4134-82b7-f2ba38496583} - "?" (?) BHO\{02C1B427-6EBB-4405-8DAA-11C2DCB9112e} - "?" (C:\WINDOWS\system32\dmintf32.dll) (x) BHO\{05552263-DC16-45EC-A825-518579DADB92} - "?" (C:\WINDOWS\system32\dmintf32.dll) (x) BHO\{08cb157c-3862-4b24-b113-3a5aa5cf5c47} - "HabboFR Toolbar" (C:\Program Files\HabboFR\tbHab1.dll) (x) BHO\{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - "Winamp Toolbar Loader" (C:\Program Files\Winamp Toolbar\winamptb.dll) (x) BHO\{3d681970-489b-4c1c-a2ad-29dba7bc3a31} - "freetrialdownloads-FR Toolbar" (C:\Program Files\freetrialdownloads-FR\tbfre1.dll) (x) BHO\{4daac69c-cba7-45e2-9bc8-1044483d3352} - "Softonic_France Toolbar" (C:\Program Files\Softonic_France\tbSof1.dll) (x) BHO\{5C255C8A-E604-49b4-9D64-90988571CECB} (?) BHO\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - "Search Helper" (C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll) BHO\{a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} - "Eazel-FR Toolbar" (C:\Program Files\Eazel-FR\tbEaz1.dll) (x) BHO\{AA619383-78A1-F033-DBE4-D881E5D13347} - "bc33a3da" (c:\windows\system32\csseqchk32.dll) (x) BHO\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} - "McAfee SiteAdvisor BHO" (C:\Program Files\McAfee\SiteAdvisor Enterprise\McIEPlg.dll) BHO\{f4e6547e-325b-403c-a3bb-ad29ed37a92f} - "SearchElf 1.2 Toolbar" (C:\Program Files\SearchElf_1.2\tbSear.dll) (x) ======================================== C:\Program Files\Ad-Remover\Quarantine: 84 Fichier(s) C:\Program Files\Ad-Remover\Backup: 17 Fichier(s) C:\Ad-Report-CLEAN[1].txt - 03/09/2011 14:19:33 (1078 Octet(s)) Fin à: 14:21:47, 03/09/2011 ============== E.O.F ==============

jeanmimigab · le 03 Sep 2011 15:44

Ok, cette fois ci c'est bon pour ADRemover, fais un scan otl comme tu l'as fais la première fois et postes moi le rapport pour que l'on vire tout ce qu'il reste de néfaste :wink:

courage, on en vois le bout

Dr.w4n1x · le 04 Sep 2011 10:02

Bonjour , désoler pour l'attente pour une si petite réponse ; OTL se bloque a chaque fois que je clique sur "analyser"! Merci de donner une autre soluss'

jeanmimigab · le 04 Sep 2011 11:46

coucou,

Ha, si tu essais cette manière la...
télécharge ce ficier "rogue killer" de tigzy renommer en "winlogon", exécute-le et fais le choix "N°2 suppression".
http://jeanmimigab.perso.neuf.fr/winlogon.exe

dès que tu as fais cela, retente le scan OTL, et laisse bien travailler OTL et sois patient car cela peux mettre 20 à 30 minutes (même si cela te marque en haut de la fenêtre que le programme ne répond pas, laisse-le bosser tranquillement)

Dr.w4n1x · le 04 Sep 2011 17:06

Ok(winlogon) , je vais réessayer avec OTL , après quand il n'y aura plus de virus je mettrais Xubuntu .

____________________________Scan de RogueKiller______________________________________________________________

Code: Tout sélectionner: RogueKiller V5.3.4 [30/08/2011] par Tigzy contact sur http://www.sur-la-toile.com mail: tigzyRK<at>gmail<dot>com Remontees: http://www.sur-la-toile.com/discussion-193725-1-BRogueKillerD-Remontees.html Systeme d'exploitation: Windows XP (5.1.2600 Service Pack 3) 32 bits version Demarrage : Mode normal Utilisateur: Parent [Droits d'admin] Mode: Suppression -- Date : 04/09/2011 18:07:42 Processus malicieux: 1 [SUSP PATH] runservice.exe -- c:\windows\runservice.exe -> KILLED [TermProc] Entrees de registre: 1 [HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0) Fichiers / Dossiers particuliers: Fichier HOSTS: 127.0.0.1 localhost Termine : << RKreport[1].txt >> RKreport[1].txt

__________________________scan de OTL___________________________________________________

Code: Tout sélectionner: OTL logfile created on: 04/09/2011 18:19:16 - Run 3 OTL by OldTimer - Version 3.2.27.0 Folder = C:\Documents and Settings\Parent\Mes documents\Téléchargements Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 1015,17 Mb Total Physical Memory | 347,01 Mb Available Physical Memory | 34,18% Memory free 2,39 Gb Paging File | 1,83 Gb Available in Paging File | 76,74% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 72,06 Gb Total Space | 44,25 Gb Free Space | 61,41% Space Free | Partition Type: NTFS Drive D: | 72,05 Gb Total Space | 71,86 Gb Free Space | 99,73% Space Free | Partition Type: NTFS Drive E: | 689,26 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: NAUGHTY-GUY | User Name: Parent | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011/09/04 18:11:28 | 000,581,120 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Parent\Mes documents\Téléchargements\OTL.exe PRC - [2011/08/31 01:21:39 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2011/07/06 19:52:38 | 000,449,584 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe PRC - [2011/07/06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe PRC - [2011/07/04 13:43:54 | 003,493,720 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe PRC - [2011/07/04 13:43:51 | 000,042,184 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe PRC - [2010/10/16 01:40:40 | 000,037,664 | ---- | M] (Apple Inc.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe PRC - [2010/02/18 11:43:18 | 000,248,040 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe PRC - [2009/12/16 20:31:06 | 000,222,528 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\SiteAdvisor Enterprise\McSACore.exe PRC - [2009/08/25 16:00:00 | 000,226,624 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Common Framework\naPrdMgr.exe PRC - [2009/08/25 16:00:00 | 000,136,512 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Common Framework\UdaterUI.exe PRC - [2009/08/25 16:00:00 | 000,103,744 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Common Framework\FrameworkService.exe PRC - [2009/08/25 16:00:00 | 000,091,456 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Common Framework\McTray.exe PRC - [2009/07/27 16:58:38 | 000,397,312 | ---- | M] () -- C:\Program Files\ASUS\Eee Docking\Eee Docking.exe PRC - [2009/06/25 11:25:40 | 000,712,704 | ---- | M] () -- C:\Program Files\ASUS\LiveUpdate\LiveUpdate.exe PRC - [2009/04/16 19:46:30 | 000,630,784 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe PRC - [2009/04/16 18:58:54 | 000,118,784 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\EeePC\ACPI\AsTray.exe PRC - [2009/03/25 10:43:40 | 000,376,832 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\ASUS\EeePC\Super Hybrid Engine\SuperHybridEngine.exe PRC - [2009/03/13 16:15:02 | 000,098,304 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\EeePC\ACPI\AsEPCMon.exe PRC - [2008/04/14 14:00:00 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2011/09/04 10:53:47 | 001,384,960 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\11090400\algo.dll MOD - [2011/09/03 10:46:00 | 000,208,544 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\11090400\aswRep.dll MOD - [2011/08/31 01:21:39 | 001,846,232 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll MOD - [2010/03/15 16:57:20 | 000,067,872 | ---- | M] () -- C:\Program Files\Fichiers communs\Apple\Apple Application Support\zlib1.dll MOD - [2010/01/27 03:07:32 | 003,884,312 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll MOD - [2009/08/25 16:00:00 | 000,057,344 | ---- | M] () -- C:\Program Files\McAfee\Common Framework\boost_thread-vc71-mt-1_32.dll MOD - [2009/07/27 16:58:38 | 000,397,312 | ---- | M] () -- C:\Program Files\ASUS\Eee Docking\Eee Docking.exe MOD - [2009/06/25 11:25:40 | 000,712,704 | ---- | M] () -- C:\Program Files\ASUS\LiveUpdate\LiveUpdate.exe MOD - [2009/06/25 10:15:22 | 000,135,168 | ---- | M] () -- C:\Program Files\ASUS\LiveUpdate\Enumeration.dll MOD - [2009/03/23 17:55:50 | 000,176,128 | ---- | M] () -- C:\Program Files\ASUS\LiveUpdate\Parser.dll MOD - [2009/03/23 17:53:46 | 000,106,496 | ---- | M] () -- C:\Program Files\ASUS\LiveUpdate\ClientSocket.dll MOD - [2008/04/14 14:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll MOD - [2005/08/22 16:38:16 | 003,264,512 | ---- | M] () -- C:\Program Files\McAfee\Common Framework\cryptocme2.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Auto | Stopped] -- -- (mysql) SRV - File not found [On_Demand | Stopped] -- -- (McComponentHostService) SRV - File not found [On_Demand | Stopped] -- -- (getPlusHelper) getPlus(R) SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt) SRV - File not found [Auto | Stopped] -- -- (Apache2.2) SRV - [2011/07/06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService) SRV - [2011/07/04 13:43:51 | 000,042,184 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus) SRV - [2010/10/16 01:40:40 | 000,037,664 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device) SRV - [2010/02/10 20:07:44 | 000,016,384 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\runservice.exe -- (LicCtrlService) SRV - [2009/12/16 20:31:06 | 000,222,528 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\SiteAdvisor Enterprise\McSACore.exe -- (McAfee SiteAdvisor Enterprise Service) SRV - [2009/08/25 16:00:00 | 000,103,744 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\Common Framework\FrameworkService.exe -- (McAfeeFramework) SRV - [2008/11/04 02:06:28 | 000,441,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv) SRV - [2006/10/26 14:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2011/07/06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector) DRV - [2011/07/04 13:36:43 | 000,441,176 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx) DRV - [2011/07/04 13:36:32 | 000,309,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP) DRV - [2011/07/04 13:35:23 | 000,043,608 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi) DRV - [2011/07/04 13:35:12 | 000,102,616 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2) DRV - [2011/07/04 13:32:32 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr) DRV - [2011/07/04 13:32:13 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4) DRV - [2011/07/04 13:32:12 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2010/02/03 15:56:56 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi) DRV - [2009/08/24 14:22:58 | 000,034,688 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcampr5.sys -- (PCAMPR5) DRV - [2009/08/24 14:22:58 | 000,032,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcandis5.sys -- (PCANDIS5) DRV - [2009/08/05 23:48:42 | 000,054,752 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys -- (fssfltr) DRV - [2009/07/10 21:33:36 | 001,015,424 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rt2860.sys -- (RT80x86) DRV - [2009/04/27 13:26:44 | 005,074,944 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2009/03/13 16:32:18 | 001,759,616 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC) DRV - [2009/03/02 07:03:47 | 000,038,912 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\l1c51x86.sys -- (L1c) DRV - [2008/11/19 10:21:28 | 000,039,040 | ---- | M] (GenesysLogic Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\uvclf.sys -- (uvclf) DRV - [2008/08/05 14:10:12 | 001,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt) DRV - [2008/04/14 14:00:00 | 000,088,320 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx) DRV - [2008/04/14 14:00:00 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb) DRV - [2008/04/14 14:00:00 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx) DRV - [2008/04/08 15:59:28 | 000,010,752 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASUSACPI.SYS -- (AsusACPI) DRV - [2006/01/04 09:41:48 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt) DRV - [2004/11/30 12:10:00 | 000,161,792 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sdpiosys.sys -- (sdpiosys) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search bar = http://search.msn.com/spbasic.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ IE - HKLM\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - File not found IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 09 6D B0 00 BB 6E 05 44 8D AA 11 C2 DC B9 11 2E [binary data] IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 09 6D B0 00 BB 6E 05 44 8D AA 11 C2 DC B9 11 2E [binary data] IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 09 6D B0 00 BB 6E 05 44 8D AA 11 C2 DC B9 11 2E [binary data] IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 09 6D B0 00 BB 6E 05 44 8D AA 11 C2 DC B9 11 2E [binary data] IE - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ IE - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp IE - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr IE - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0A DF C0 28 55 BA CB 01 [binary data] IE - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local> [color=#E56717]========== FireFox ==========[/color] FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\Program Files\McAfee\SiteAdvisor Enterprise\ [2011/09/03 10:05:47 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/09/04 00:16:50 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/09/01 19:27:22 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Parent\Application Data\Mozilla\Extensions [2011/09/01 19:26:59 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2010/04/28 22:11:13 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2010/01/19 13:26:45 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION [2011/08/31 01:21:40 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2011/08/30 23:09:39 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml [2011/08/30 22:29:49 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml [2011/08/30 23:09:39 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml [2011/08/30 23:09:39 | 000,001,154 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml [2011/08/30 23:09:39 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml [2011/08/30 23:09:39 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml O1 HOSTS File: ([2008/04/14 14:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (no name) - {02C1B427-6EBB-4405-8DAA-11C2DCB9112e} - File not found O2 - BHO: (no name) - {05552263-DC16-45EC-A825-518579DADB92} - File not found O2 - BHO: (Aide pour le lien d'Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (HabboFR Toolbar) - {08cb157c-3862-4b24-b113-3a5aa5cf5c47} - File not found O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - File not found O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - File not found O2 - BHO: (freetrialdownloads-FR Toolbar) - {3d681970-489b-4c1c-a2ad-29dba7bc3a31} - File not found O2 - BHO: (Softonic_France Toolbar) - {4daac69c-cba7-45e2-9bc8-1044483d3352} - File not found O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2 - BHO: (Eazel-FR Toolbar) - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} - File not found O2 - BHO: (bc33a3da) - {AA619383-78A1-F033-DBE4-D881E5D13347} - File not found O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\SiteAdvisor Enterprise\McIEPlg.dll (McAfee, Inc.) O2 - BHO: (SearchElf 1.2 Toolbar) - {f4e6547e-325b-403c-a3bb-ad29ed37a92f} - File not found O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found. O3 - HKLM\..\Toolbar: (HabboFR Toolbar) - {08cb157c-3862-4b24-b113-3a5aa5cf5c47} - File not found O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files\McAfee\SiteAdvisor Enterprise\McIEPlg.dll (McAfee, Inc.) O3 - HKLM\..\Toolbar: (freetrialdownloads-FR Toolbar) - {3d681970-489b-4c1c-a2ad-29dba7bc3a31} - File not found O3 - HKLM\..\Toolbar: (Softonic_France Toolbar) - {4daac69c-cba7-45e2-9bc8-1044483d3352} - File not found O3 - HKLM\..\Toolbar: (Eazel-FR Toolbar) - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} - File not found O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - File not found O3 - HKLM\..\Toolbar: (SearchElf 1.2 Toolbar) - {f4e6547e-325b-403c-a3bb-ad29ed37a92f} - File not found O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..\Toolbar\WebBrowser: (HabboFR Toolbar) - {08CB157C-3862-4B24-B113-3A5AA5CF5C47} - File not found O3 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..\Toolbar\WebBrowser: (freetrialdownloads-FR Toolbar) - {3D681970-489B-4C1C-A2AD-29DBA7BC3A31} - File not found O3 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..\Toolbar\WebBrowser: (Softonic_France Toolbar) - {4DAAC69C-CBA7-45E2-9BC8-1044483D3352} - File not found O3 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..\Toolbar\WebBrowser: (Eazel-FR Toolbar) - {A8F9752D-E2B8-4E7A-86B5-499F4330E2FE} - File not found O4 - HKLM..\Run: [AsusACPIServer] C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe (ASUSTeK Computer Inc.) O4 - HKLM..\Run: [AsusEPCMonitor] C:\Program Files\EeePC\ACPI\AsEPCMon.exe (ASUSTeK Computer Inc.) O4 - HKLM..\Run: [AsusTray] C:\Program Files\EeePC\ACPI\AsTray.exe (ASUSTeK Computer Inc.) O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [EEESplendidAR] C:\Program Files\ASUS\EPC\EeeSplendid\AutoRun.exe () O4 - HKLM..\Run: [KernelFaultCheck] File not found O4 - HKLM..\Run: [LiveUpdate] C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe () O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) O4 - HKLM..\Run: [McAfeeUpdaterUI] C:\Program Files\McAfee\Common Framework\udaterui.exe (McAfee, Inc.) O4 - HKLM..\Run: [ORAHSSSessionManager] File not found O4 - HKLM..\Run: [snp2uvc] File not found O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.) O4 - HKLM..\Run: [SynAsusAcpi] C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe (Synaptics Incorporated) O4 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007..\Run: [EA Core] File not found O4 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007..\Run: [Eee Docking] C:\Program Files\ASUS\Eee Docking\Eee Docking.exe () O4 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007..\Run: [WebcamMaxAutoRun] File not found O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\ SuperHybridEngine.lnk = C:\Program Files\ASUS\EeePC\Super Hybrid Engine\SuperHybridEngine.exe (ASUSTeK Computer Inc.) O4 - Startup: C:\Documents and Settings\Mael\Menu Démarrer\Programmes\Démarrage\LimeWire On Startup.lnk = File not found O4 - Startup: C:\Documents and Settings\Mael\Menu Démarrer\Programmes\Démarrage\Notification de cadeaux MSN.lnk = File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - File not found O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - File not found O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O15 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..Trusted Domains: facebook.com ([www] http in Sites de confiance) O15 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..Trusted Domains: google.com ([www] http in Sites de confiance) O15 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..Trusted Domains: habbo.fr ([www] http in Sites de confiance) O15 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..Trusted Domains: youtube.com ([www] http in Sites de confiance) O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control) O16 - DPF: {50DC58D0-C870-4BE6-BC41-971ED2D5F022} http://www.super-messenger.fr/tab/HookWlmEx.exe (HookWlmEx Control) O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} http://messenger.zone.msn.com/MessengerGamesContent/GameContent/fr/uno1/GAME_UNO1.cab (UnoCtrl Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab (PhotoPickConvert Class) O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8BF2436B-DBFE-48D7-B65B-770ABAFE6CEC}: DhcpNameServer = 192.168.1.1 192.168.1.1 O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor Enterprise\McIEPlg.dll (McAfee, Inc.) O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation) O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor Enterprise\McIEPlg.dll (McAfee, Inc.) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - File not found O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - AppInit_DLLs: (c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\progra~1\bandoo\bndhook.dll) - File not found O20 - AppInit_DLLs: (c:\windows\system32\csseqchk32.dll) - File not found O20 - AppInit_DLLs: (c:\windows\system32\csseqchk32.dll) - File not found O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop Components:0 (Ma page d'accueil) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Eee PC Seashell_2.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Eee PC Seashell_2.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009/08/18 09:16:52 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2011/04/27 11:54:54 | 000,000,144 | R--- | M] () - E:\autorun.inf -- [ CDFS ] O33 - MountPoints2\{4a201048-c17c-11df-bd8b-e7ed7a9b5adb}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{4a201048-c17c-11df-bd8b-e7ed7a9b5adb}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{4df5a81c-4572-11df-bd0a-0025d353be93}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{4df5a81c-4572-11df-bd0a-0025d353be93}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{62681ef4-296c-11e0-bdc5-e537b8b82e01}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{62681ef4-296c-11e0-bdc5-e537b8b82e01}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{a051d0d4-3155-11e0-bdcd-c8bb8c25963e}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{a051d0d4-3155-11e0-bdcd-c8bb8c25963e}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{a1279f61-13ee-11df-bcab-0025d353be93}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{a1279f61-13ee-11df-bcab-0025d353be93}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{b05cc236-0ffe-11e0-bdae-a71e5442ec60}\Shell\AutoRun\command - "" = F:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{b05cc236-0ffe-11e0-bdae-a71e5442ec60}\Shell\open\command - "" = F:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{e6aa81b3-11ee-11e0-bdb2-9542a65dbcca}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{e6aa81b3-11ee-11e0-bdb2-9542a65dbcca}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: AppMgmt - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: WmdmPmSp - File not found MsConfig - StartUpReg: [b]Adobe Reader Speed Launcher[/b] - hkey= - key= - C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated) MsConfig - StartUpReg: [b]MsnMsgr[/b] - hkey= - key= - C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe (Microsoft Corporation) SafeBootMin: 98253591.sys - File not found SafeBootMin: AppMgmt - File not found SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: 98253591.sys - File not found SafeBootNet: AppMgmt - File not found SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun) ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Rendu VML (Vector Graphics Rendering) ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4 ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation ActiveX: {2A3320D6-C805-4280-B423-B665BDE33D8F} - Microsoft .NET Framework 1.1 Security Update (KB979906) ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll ActiveX: {2F6EFCE6-10DF-49F9-9E64-9AE3775B2588} - Microsoft .NET Framework 1.1 Security Update (KB2416447) ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Liaison de données Dynamic HTML pour Java ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Logiciel de navigation hors connexion ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe ActiveX: {3F7924B9-D148-3141-87B1-68F36043A940} - .NET Framework ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460) ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Création avancée ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Aide sur Internet Explorer ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - Classes Java DirectAnimation ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.7 ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Outils d'installation Internet Explorer ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Améliorations pour la navigation ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - Accès au site MSN ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework ActiveX: {73fa19d0-2d75-11d2-995d-00c04f98bbc9} - Web Folders ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - %SystemRoot%\system32\ie4uinit.exe ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Liaison de données Dynamic HTML ActiveX: {ACC563BC-4266-43f0-B6ED-9D38C4202C7E} - ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Polices de base Internet Explorer ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Planificateur de tâches ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1 ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Adobe Flash Player 9 ActiveX ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - Aide HTML ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE ActiveX: D27CDB6E-AE6D-11CF-96B8-444553540000 - Adobe Flash Player 9 ActiveX Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation) Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.) Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.) Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation) Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.) Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation) Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation) Drivers32: vidc.VP60 - C:\WINDOWS\system32\vp6vfw.dll (On2.com) Drivers32: vidc.VP61 - C:\WINDOWS\system32\vp6vfw.dll (On2.com) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2011/09/04 17:53:59 | 000,000,000 | ---D | C] -- C:\ubuntu [2011/09/03 10:07:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Parent\Menu Démarrer\Programmes\Ad-Remover [2011/09/03 09:57:01 | 000,000,000 | -HSD | C] -- C:\found.000 [2011/09/02 22:29:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited [2011/09/02 22:29:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Parent\Application Data\Canneverbe Limited [2011/09/02 21:20:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Parent\Application Data\Auslogics [2011/09/02 21:20:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Auslogics [2011/09/02 21:20:09 | 000,000,000 | ---D | C] -- C:\Program Files\Auslogics [2011/09/02 21:10:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Defraggler [2011/09/02 21:10:04 | 000,000,000 | ---D | C] -- C:\Program Files\Defraggler [2011/09/02 20:29:23 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Remover [2011/09/02 13:45:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Parent\Mes documents\Téléchargements [2011/09/02 12:42:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Parent\Menu Démarrer\Programmes\Outils d'administration [2011/09/01 19:34:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ZHP [2011/09/01 19:27:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Parent\Local Settings\Application Data\Mozilla [2011/09/01 19:27:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Parent\Application Data\Mozilla [2011/09/01 19:26:57 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2011/09/01 12:38:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Parent\Application Data\Malwarebytes [2011/09/01 12:38:37 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2011/09/01 12:38:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Malwarebytes' Anti-Malware [2011/09/01 12:38:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes [2011/09/01 12:38:31 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2011/09/01 12:38:30 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2011/09/01 10:18:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Atheros Ethernet Utility [2011/09/01 10:18:23 | 000,000,000 | ---D | C] -- C:\Program Files\Atheros Communications Inc [2011/09/01 10:13:41 | 000,000,000 | R--D | C] -- C:\WINDOWS\AsDmiHtm [2011/09/01 00:12:29 | 000,441,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys [2009/08/18 13:41:21 | 000,196,608 | ---- | C] ( ) -- C:\WINDOWS\System32\csnp2uvc.dll [2009/08/18 13:41:19 | 000,225,280 | ---- | C] ( ) -- C:\WINDOWS\System32\rsnp2uvc.dll [24 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\WINDOWS\Fonts\*.tmp files -> C:\WINDOWS\Fonts\*.tmp -> ] [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\Documents and Settings\Parent\*.tmp files -> C:\Documents and Settings\Parent\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2011/09/04 18:06:00 | 000,001,054 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2011/09/04 18:01:46 | 000,000,049 | -HS- | M] () -- C:\WINDOWS\System32\mmf.sys [2011/09/04 18:01:06 | 000,001,052 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1cc682775c9da75.job [2011/09/04 18:00:44 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011/09/04 17:57:45 | 000,000,244 | RHS- | M] () -- C:\boot.ini [2011/09/04 17:57:41 | 000,148,209 | ---- | M] () -- C:\wubildr [2011/09/04 17:57:41 | 000,008,192 | ---- | M] () -- C:\wubildr.mbr [2011/09/04 15:51:24 | 000,000,000 | RHS- | M] () -- C:\CONFIG.SYS [2011/09/04 11:12:33 | 000,511,312 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat [2011/09/04 11:12:33 | 000,085,312 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat [2011/09/04 11:12:32 | 000,441,772 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2011/09/04 11:12:32 | 000,071,708 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2011/09/04 00:06:35 | 000,249,496 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011/09/03 21:39:03 | 000,001,355 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2011/09/03 12:50:17 | 000,018,988 | ---- | M] () -- C:\WINDOWS\Ascd_tmp.ini [2011/09/02 21:20:11 | 000,000,899 | ---- | M] () -- C:\Documents and Settings\Parent\Bureau\Auslogics Disk Defrag.lnk [2011/09/02 17:56:51 | 000,000,000 | ---- | M] () -- C:\PhysicalDisk0_MBR.bin [2011/09/01 19:27:02 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\Parent\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk [2011/09/01 19:27:02 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Mozilla Firefox.lnk [2011/09/01 12:38:38 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk [2011/09/01 10:18:37 | 000,048,244 | ---- | M] () -- C:\WINDOWS\Ascd_log.ini [2011/09/01 10:15:30 | 000,000,977 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\ SuperHybridEngine.lnk [2011/09/01 10:12:15 | 000,001,746 | ---- | M] () -- C:\WINDOWS\Language_trs.ini [2011/09/01 00:17:43 | 000,072,704 | ---- | M] () -- C:\Documents and Settings\Parent\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011/09/01 00:12:29 | 000,003,121 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2011/08/31 23:44:58 | 000,000,148 | -HS- | M] () -- C:\WINDOWS\System32\470852575 [2011/08/31 23:44:57 | 000,001,185 | ---- | M] () -- C:\WINDOWS\System32\1010469107 [2011/08/31 23:44:31 | 000,000,165 | ---- | M] () -- C:\WINDOWS\System32\sl2112958797 [2011/08/31 23:38:11 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [24 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\Documents and Settings\Parent\*.tmp files -> C:\Documents and Settings\Parent\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011/09/04 17:57:41 | 000,148,209 | ---- | C] () -- C:\wubildr [2011/09/04 17:57:41 | 000,008,192 | ---- | C] () -- C:\wubildr.mbr [2011/09/02 21:20:11 | 000,000,899 | ---- | C] () -- C:\Documents and Settings\Parent\Bureau\Auslogics Disk Defrag.lnk [2011/09/01 19:44:28 | 000,000,000 | ---- | C] () -- C:\PhysicalDisk0_MBR.bin [2011/09/01 19:27:02 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\Parent\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk [2011/09/01 19:27:02 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk [2011/09/01 19:27:02 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Mozilla Firefox.lnk [2011/09/01 12:38:38 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk [2011/09/01 10:12:57 | 000,048,244 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini [2011/09/01 10:12:15 | 000,001,746 | ---- | C] () -- C:\WINDOWS\Language_trs.ini [2011/09/01 10:12:11 | 000,018,988 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini [2011/09/01 10:12:11 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS [2011/08/31 23:46:37 | 000,001,052 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1cc682775c9da75.job [2011/01/12 19:02:35 | 000,040,602 | ---- | C] () -- C:\WINDOWS\System32\api_hook_list.dat [2010/12/23 16:20:30 | 000,001,041 | ---- | C] () -- C:\WINDOWS\videoimp.ini [2010/12/23 16:19:53 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll [2010/08/10 22:32:53 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat [2010/07/10 12:25:55 | 000,072,704 | ---- | C] () -- C:\Documents and Settings\Parent\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010/07/03 20:31:13 | 000,203,776 | -HS- | C] () -- C:\WINDOWS\System32\unrar.exe [2010/06/27 18:11:47 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll [2010/06/27 16:24:40 | 000,522,672 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat [2010/04/05 08:35:07 | 000,033,148 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat [2010/03/11 09:23:14 | 000,000,206 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI [2010/02/10 20:07:45 | 000,000,049 | -HS- | C] () -- C:\WINDOWS\System32\mmf.sys [2010/02/10 20:07:44 | 000,048,640 | ---- | C] () -- C:\WINDOWS\mmfs.dll [2010/02/10 20:07:44 | 000,016,384 | ---- | C] () -- C:\WINDOWS\runservice.exe [2010/02/09 14:32:58 | 000,000,030 | ---- | C] () -- C:\WINDOWS\mscpt.dat [2010/01/20 22:29:15 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2010/01/13 19:51:02 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\Parent\Local Settings\Application Data\fusioncache.dat [2009/11/06 11:58:04 | 000,178,975 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat [2009/08/18 15:10:09 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini [2009/08/18 14:08:53 | 000,040,960 | ---- | C] () -- C:\WINDOWS\uvcrecordfix.exe [2009/08/18 14:08:53 | 000,024,576 | ---- | C] () -- C:\WINDOWS\Sleep.exe [2009/08/18 13:41:21 | 001,759,616 | ---- | C] () -- C:\WINDOWS\System32\drivers\snp2uvc.sys [2009/08/18 13:41:21 | 000,028,544 | ---- | C] () -- C:\WINDOWS\System32\drivers\sncduvc.sys [2009/08/18 13:41:21 | 000,015,497 | ---- | C] () -- C:\WINDOWS\snp2uvc.ini [2009/08/18 13:38:22 | 000,021,864 | ---- | C] () -- C:\WINDOWS\AsAcpiSvrLang.ini [2009/08/18 13:38:22 | 000,012,208 | ---- | C] () -- C:\WINDOWS\AsTrayLang.ini [2009/08/18 12:03:52 | 000,013,930 | ---- | C] () -- C:\WINDOWS\System32\RaCoInst.dat [2009/08/18 12:01:03 | 000,000,712 | ---- | C] () -- C:\WINDOWS\System32\drivers\SamSfPa.dat [2009/08/18 12:01:03 | 000,000,008 | ---- | C] () -- C:\WINDOWS\System32\drivers\rtkhdaud.dat [2009/08/18 11:57:17 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4906.dll [2009/08/18 11:11:08 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2009/08/18 11:10:22 | 000,249,496 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2009/08/18 11:04:18 | 000,005,312 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI [2009/08/18 11:04:12 | 000,511,312 | ---- | C] () -- C:\WINDOWS\System32\perfh00C.dat [2009/08/18 11:04:12 | 000,322,810 | ---- | C] () -- C:\WINDOWS\System32\perfi00C.dat [2009/08/18 11:04:12 | 000,085,312 | ---- | C] () -- C:\WINDOWS\System32\perfc00C.dat [2009/08/18 11:04:12 | 000,034,108 | ---- | C] () -- C:\WINDOWS\System32\perfd00C.dat [2009/08/18 11:04:06 | 000,028,400 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys [2009/08/18 11:04:06 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2009/08/18 11:04:05 | 000,441,772 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2009/08/18 11:04:05 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2009/08/18 11:04:05 | 000,071,708 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2009/08/18 11:04:05 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2009/08/18 11:04:04 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2009/08/18 11:04:04 | 000,004,562 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat [2009/08/18 11:04:04 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat [2009/08/18 11:04:02 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2009/08/18 11:04:02 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2009/08/18 11:04:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2009/08/18 11:03:58 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin [2009/08/18 09:19:07 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2009/08/18 09:14:51 | 000,021,892 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2008/10/07 10:13:30 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll [2008/10/07 10:13:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll [2008/10/07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll [2008/10/07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll [2008/10/07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll [2008/10/07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll [2008/10/07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll [2008/10/07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll [2008/10/07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll [2008/10/07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll [2004/11/30 12:10:00 | 000,161,792 | ---- | C] () -- C:\WINDOWS\System32\drivers\SDPIOSYS.SYS [color=#E56717]========== LOP Check ==========[/color] [2011/02/21 18:11:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software [2011/09/02 22:29:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited [2010/09/27 17:00:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Electronic Arts [2011/02/19 18:41:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FXhome [2010/12/25 13:33:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\QuickMediaConverter [2009/08/18 12:03:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ralink Driver [2010/04/04 18:35:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521} [2010/04/04 19:24:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mael\Application Data\Pioneer [2010/03/23 18:06:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mael\Application Data\Tific [2010/07/03 22:01:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mael\Application Data\Unity [2010/12/25 12:00:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\ALLCapture [2011/09/02 21:20:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Auslogics [2011/09/02 22:29:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Canneverbe Limited [2010/12/25 13:33:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\CocoonSoftware [2011/01/15 14:55:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\ManyCam [2011/02/05 20:51:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\MP-Manager [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color] [color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*. >[/color] [2010/01/31 10:46:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Adobe [2011/02/21 18:11:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software [2010/04/04 18:30:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Apple [2010/04/04 18:34:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Apple Computer [2009/08/18 13:37:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Atheros [2010/12/29 15:47:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVS4YOU [2011/09/02 22:29:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited [2010/09/27 17:00:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Electronic Arts [2011/02/19 18:41:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FXhome [2011/09/01 12:38:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes [2011/09/02 17:35:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\McAfee [2010/07/18 12:28:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\McAfee Security Scan [2010/06/05 03:02:12 | 000,000,000 | --SD | M] -- C:\Documents and Settings\All Users\Application Data\Microsoft [2011/09/03 21:38:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Microsoft Help [2010/03/24 18:49:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Norton [2010/02/16 18:43:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NortonInstaller [2010/12/29 19:54:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NOS [2010/12/25 13:33:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\QuickMediaConverter [2009/08/18 12:03:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ralink Driver [2009/08/18 14:18:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Skype [2010/04/28 22:12:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sun [2010/02/16 18:43:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Symantec [2010/12/29 15:59:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Winamp Toolbar [2010/01/14 16:39:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage [2010/04/04 18:35:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521} [color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*.exe /s >[/color] [2009/02/04 13:56:14 | 000,075,112 | ---- | M] (GEAR Software, Inc.) -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}\x86\DifXInstall32.exe [2010/03/26 01:48:24 | 000,073,000 | ---- | M] (Apple Inc.) -- C:\Documents and Settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 9.1.0.79\SetupAdmin.exe [2008/08/06 16:31:14 | 000,528,384 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\Ralink Driver\RT2860 Wireless LAN Card\Driver\RaInst.exe [color=#A23BEC]< %APPDATA%\*. >[/color] [2010/07/14 14:42:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Adobe [2010/12/25 12:00:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\ALLCapture [2010/08/21 13:15:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Apple Computer [2011/01/28 23:44:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\ArcSoft [2011/09/02 21:20:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Auslogics [2011/09/02 22:29:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Canneverbe Limited [2010/12/25 13:33:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\CocoonSoftware [2010/12/23 23:21:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Help [2009/08/18 09:20:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Identities [2009/08/18 12:03:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\InstallShield [2010/05/23 12:28:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Macromedia [2011/09/01 12:38:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Malwarebytes [2011/01/15 14:55:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\ManyCam [2011/01/15 18:50:27 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Parent\Application Data\Microsoft [2011/09/01 19:27:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Mozilla [2011/02/05 20:51:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\MP-Manager [2010/05/23 12:31:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Sun [2011/02/10 19:02:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Winamp [2010/07/13 10:29:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\WinRAR [color=#A23BEC]< %APPDATA%\*.exe /s >[/color] [2009/11/06 08:04:40 | 010,377,728 | ---- | M] () -- C:\Documents and Settings\Parent\Application Data\CocoonSoftware\QMC\ffmpeg.exe [2008/04/02 13:35:18 | 007,945,216 | ---- | M] () -- C:\Documents and Settings\Parent\Application Data\CocoonSoftware\QMC\ffmpegHD.exe [2010/09/27 16:58:55 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\Parent\Application Data\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe [color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color] [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp3.cab:AGP440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp3.cab:atapi.sys [2008/04/14 14:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\dllcache\atapi.sys [2008/04/14 14:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp3.cab:cdrom.sys [2008/04/14 14:00:00 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys [color=#A23BEC]< MD5 for: CHANGER.SYS >[/color] [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp3.cab:Changer.sys [color=#A23BEC]< MD5 for: DISK.SYS >[/color] [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:disk.sys [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp3.cab:disk.sys [2008/04/14 14:00:00 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\system32\dllcache\disk.sys [2008/04/14 14:00:00 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\system32\drivers\disk.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2008/04/14 14:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\system32\dllcache\eventlog.dll [2008/04/14 14:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\system32\eventlog.dll [color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color] [2008/04/14 14:00:00 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\explorer.exe [2008/04/14 14:00:00 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\system32\dllcache\explorer.exe [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008/04/14 14:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys [2008/04/14 14:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys [color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color] [2008/04/14 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\system32\dllcache\netlogon.dll [2008/04/14 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\system32\netlogon.dll [color=#A23BEC]< MD5 for: RASACD.SYS >[/color] [2008/04/14 14:00:00 | 000,008,832 | ---- | M] (Microsoft Corporation) MD5=FE0D99D6F31E4FAD8159F690D68DED9C -- C:\WINDOWS\system32\dllcache\rasacd.sys [2008/04/14 14:00:00 | 000,008,832 | ---- | M] (Microsoft Corporation) MD5=FE0D99D6F31E4FAD8159F690D68DED9C -- C:\WINDOWS\system32\drivers\rasacd.sys [color=#A23BEC]< MD5 for: RDPWD.SYS >[/color] [2011/06/24 16:09:15 | 000,139,656 | ---- | M] (Microsoft Corporation) MD5=3348E61A78BA4F79C795AAD6565D3B6F -- C:\WINDOWS\$hf_mig$\KB2570222\SP3QFE\rdpwd.sys [2011/06/24 16:09:15 | 000,139,656 | ---- | M] (Microsoft Corporation) MD5=3348E61A78BA4F79C795AAD6565D3B6F -- C:\WINDOWS\SoftwareDistribution\Download\2da9cfedece4fa796545bf065a958699\SP3QFE\rdpwd.sys [2008/04/14 14:00:00 | 000,139,656 | ---- | M] (Microsoft Corporation) MD5=6728E45B66F93C08F11DE2E316FC70DD -- C:\WINDOWS\$NtUninstallKB2570222$\rdpwd.sys [2011/06/24 16:10:47 | 000,139,656 | ---- | M] (Microsoft Corporation) MD5=FC105DD312ED64EB66BFF111E8EC6EAC -- C:\WINDOWS\SoftwareDistribution\Download\2da9cfedece4fa796545bf065a958699\SP3GDR\rdpwd.sys [2011/06/24 16:10:47 | 000,139,656 | ---- | M] (Microsoft Corporation) MD5=FC105DD312ED64EB66BFF111E8EC6EAC -- C:\WINDOWS\system32\dllcache\rdpwd.sys [2011/06/24 16:10:47 | 000,139,656 | ---- | M] (Microsoft Corporation) MD5=FC105DD312ED64EB66BFF111E8EC6EAC -- C:\WINDOWS\system32\drivers\rdpwd.sys [color=#A23BEC]< MD5 for: SCECLI.DLL >[/color] [2008/04/14 14:00:00 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\system32\dllcache\scecli.dll [2008/04/14 14:00:00 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\system32\scecli.dll [color=#A23BEC]< MD5 for: SFLOPPY.SYS >[/color] [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Sfloppy.sys [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp3.cab:Sfloppy.sys [2008/04/14 14:00:00 | 000,011,392 | ---- | M] (Microsoft Corporation) MD5=8E6B8C671615D126FDC553D1E2DE5562 -- C:\WINDOWS\system32\drivers\sfloppy.sys [color=#A23BEC]< MD5 for: SPLITTER.SYS >[/color] [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:splitter.sys [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp3.cab:splitter.sys [2008/04/13 11:45:08 | 000,006,272 | ---- | M] (Microsoft Corporation) MD5=AB8B92451ECB048A4D1DE7C3FFCB4A9F -- C:\WINDOWS\system32\dllcache\splitter.sys [2008/04/13 11:45:08 | 000,006,272 | ---- | M] (Microsoft Corporation) MD5=AB8B92451ECB048A4D1DE7C3FFCB4A9F -- C:\WINDOWS\system32\drivers\splitter.sys [color=#A23BEC]< MD5 for: SWMIDI.SYS >[/color] [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:swmidi.sys [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp3.cab:swmidi.sys [2008/04/13 11:45:10 | 000,056,576 | ---- | M] (Microsoft Corporation) MD5=8CE882BCC6CF8A62F2B2323D95CB3D01 -- C:\WINDOWS\system32\dllcache\swmidi.sys [2008/04/13 11:45:10 | 000,056,576 | ---- | M] (Microsoft Corporation) MD5=8CE882BCC6CF8A62F2B2323D95CB3D01 -- C:\WINDOWS\system32\drivers\swmidi.sys [color=#A23BEC]< MD5 for: TCPIP.SYS >[/color] [2008/04/14 14:00:00 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys [2008/06/20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys [2008/06/20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys [2008/06/20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys [2008/06/20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys [2008/06/20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\SoftwareDistribution\Download\f96addb4e216f2399cbadef9606eabb2\sp3qfe\tcpip.sys [color=#A23BEC]< MD5 for: TDPIPE.SYS >[/color] [2008/04/14 14:00:00 | 000,012,040 | ---- | M] (Microsoft Corporation) MD5=6471A66807F5E104E4885F5B67349397 -- C:\WINDOWS\system32\dllcache\tdpipe.sys [2008/04/14 14:00:00 | 000,012,040 | ---- | M] (Microsoft Corporation) MD5=6471A66807F5E104E4885F5B67349397 -- C:\WINDOWS\system32\drivers\tdpipe.sys [color=#A23BEC]< MD5 for: TDTCP.SYS >[/color] [2008/04/14 14:00:00 | 000,021,896 | ---- | M] (Microsoft Corporation) MD5=C56B6D0402371CF3700EB322EF3AAF61 -- C:\WINDOWS\system32\dllcache\tdtcp.sys [2008/04/14 14:00:00 | 000,021,896 | ---- | M] (Microsoft Corporation) MD5=C56B6D0402371CF3700EB322EF3AAF61 -- C:\WINDOWS\system32\drivers\tdtcp.sys [color=#A23BEC]< MD5 for: USBPRINT.SYS >[/color] [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:usbprint.sys [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp3.cab:usbprint.sys [2008/04/13 12:47:38 | 000,025,856 | ---- | M] (Microsoft Corporation) MD5=A717C8721046828520C9EDF31288FC00 -- C:\WINDOWS\system32\dllcache\usbprint.sys [2008/04/13 12:47:38 | 000,025,856 | ---- | M] (Microsoft Corporation) MD5=A717C8721046828520C9EDF31288FC00 -- C:\WINDOWS\system32\drivers\usbprint.sys [color=#A23BEC]< MD5 for: USBSCAN.SYS >[/color] [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:usbscan.sys [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp3.cab:usbscan.sys [color=#A23BEC]< MD5 for: USERINIT.EXE >[/color] [2008/04/14 14:00:00 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\system32\dllcache\userinit.exe [2008/04/14 14:00:00 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\system32\userinit.exe [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2011/09/04 18:05:59 | 000,570,368 | ---- | M] () MD5=9C0519648438775677CEB4E4AAE64BFA -- C:\Documents and Settings\Parent\Mes documents\Téléchargements\winlogon.exe [2008/04/14 14:00:00 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\system32\dllcache\winlogon.exe [2008/04/14 14:00:00 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\system32\winlogon.exe [color=#A23BEC]< %systemroot%\*. /mp /s >[/color] [color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color] [24 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ] [color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color] < End of report >

_________________scan de OTL _______________________

jeanmimigab · le 04 Sep 2011 17:43

hello,

Bizarre pour OTL, c'est rare d'être embêté avec lui :-?

On va faire autrement...

Désactives temporairement ton anti virus
Télécharge Combofix sur ton Bureau (et pas ailleurs)

Fait un double-clic sur l'icône de ComboFix.exe pour démarrer le scan et suis les instructions indiquées par combofix.
Lorsque le scan sera complet, un rapport apparaîtra, enregistre le sur ton bureau.
Redémarre impérativement ton pc !!
Copie/colle le rapport combofix dans ta prochaine réponse

NOTE : Le rapport se trouve également ici : C:\Combofix.txt
NOTE : Ne pas cliquer dans la fenêtre de Combofix durant l'analyse ; ceci provoquerait le gel du programme.

Dr.w4n1x · le 04 Sep 2011 18:25

Code: Tout sélectionner: OTL logfile created on: 04/09/2011 18:19:16 - Run 3 OTL by OldTimer - Version 3.2.27.0 Folder = C:\Documents and Settings\Parent\Mes documents\Téléchargements Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 1015,17 Mb Total Physical Memory | 347,01 Mb Available Physical Memory | 34,18% Memory free 2,39 Gb Paging File | 1,83 Gb Available in Paging File | 76,74% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 72,06 Gb Total Space | 44,25 Gb Free Space | 61,41% Space Free | Partition Type: NTFS Drive D: | 72,05 Gb Total Space | 71,86 Gb Free Space | 99,73% Space Free | Partition Type: NTFS Drive E: | 689,26 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: NAUGHTY-GUY | User Name: Parent | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011/09/04 18:11:28 | 000,581,120 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Parent\Mes documents\Téléchargements\OTL.exe PRC - [2011/08/31 01:21:39 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2011/07/06 19:52:38 | 000,449,584 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe PRC - [2011/07/06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe PRC - [2011/07/04 13:43:54 | 003,493,720 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe PRC - [2011/07/04 13:43:51 | 000,042,184 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe PRC - [2010/10/16 01:40:40 | 000,037,664 | ---- | M] (Apple Inc.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe PRC - [2010/02/18 11:43:18 | 000,248,040 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe PRC - [2009/12/16 20:31:06 | 000,222,528 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\SiteAdvisor Enterprise\McSACore.exe PRC - [2009/08/25 16:00:00 | 000,226,624 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Common Framework\naPrdMgr.exe PRC - [2009/08/25 16:00:00 | 000,136,512 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Common Framework\UdaterUI.exe PRC - [2009/08/25 16:00:00 | 000,103,744 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Common Framework\FrameworkService.exe PRC - [2009/08/25 16:00:00 | 000,091,456 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Common Framework\McTray.exe PRC - [2009/07/27 16:58:38 | 000,397,312 | ---- | M] () -- C:\Program Files\ASUS\Eee Docking\Eee Docking.exe PRC - [2009/06/25 11:25:40 | 000,712,704 | ---- | M] () -- C:\Program Files\ASUS\LiveUpdate\LiveUpdate.exe PRC - [2009/04/16 19:46:30 | 000,630,784 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe PRC - [2009/04/16 18:58:54 | 000,118,784 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\EeePC\ACPI\AsTray.exe PRC - [2009/03/25 10:43:40 | 000,376,832 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\ASUS\EeePC\Super Hybrid Engine\SuperHybridEngine.exe PRC - [2009/03/13 16:15:02 | 000,098,304 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\EeePC\ACPI\AsEPCMon.exe PRC - [2008/04/14 14:00:00 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2011/09/04 10:53:47 | 001,384,960 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\11090400\algo.dll MOD - [2011/09/03 10:46:00 | 000,208,544 | ---- | M] () -- C:\Program Files\Alwil Software\Avast5\defs\11090400\aswRep.dll MOD - [2011/08/31 01:21:39 | 001,846,232 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll MOD - [2010/03/15 16:57:20 | 000,067,872 | ---- | M] () -- C:\Program Files\Fichiers communs\Apple\Apple Application Support\zlib1.dll MOD - [2010/01/27 03:07:32 | 003,884,312 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll MOD - [2009/08/25 16:00:00 | 000,057,344 | ---- | M] () -- C:\Program Files\McAfee\Common Framework\boost_thread-vc71-mt-1_32.dll MOD - [2009/07/27 16:58:38 | 000,397,312 | ---- | M] () -- C:\Program Files\ASUS\Eee Docking\Eee Docking.exe MOD - [2009/06/25 11:25:40 | 000,712,704 | ---- | M] () -- C:\Program Files\ASUS\LiveUpdate\LiveUpdate.exe MOD - [2009/06/25 10:15:22 | 000,135,168 | ---- | M] () -- C:\Program Files\ASUS\LiveUpdate\Enumeration.dll MOD - [2009/03/23 17:55:50 | 000,176,128 | ---- | M] () -- C:\Program Files\ASUS\LiveUpdate\Parser.dll MOD - [2009/03/23 17:53:46 | 000,106,496 | ---- | M] () -- C:\Program Files\ASUS\LiveUpdate\ClientSocket.dll MOD - [2008/04/14 14:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll MOD - [2005/08/22 16:38:16 | 003,264,512 | ---- | M] () -- C:\Program Files\McAfee\Common Framework\cryptocme2.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Auto | Stopped] -- -- (mysql) SRV - File not found [On_Demand | Stopped] -- -- (McComponentHostService) SRV - File not found [On_Demand | Stopped] -- -- (getPlusHelper) getPlus(R) SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt) SRV - File not found [Auto | Stopped] -- -- (Apache2.2) SRV - [2011/07/06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService) SRV - [2011/07/04 13:43:51 | 000,042,184 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus) SRV - [2010/10/16 01:40:40 | 000,037,664 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device) SRV - [2010/02/10 20:07:44 | 000,016,384 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\runservice.exe -- (LicCtrlService) SRV - [2009/12/16 20:31:06 | 000,222,528 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\SiteAdvisor Enterprise\McSACore.exe -- (McAfee SiteAdvisor Enterprise Service) SRV - [2009/08/25 16:00:00 | 000,103,744 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\Common Framework\FrameworkService.exe -- (McAfeeFramework) SRV - [2008/11/04 02:06:28 | 000,441,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv) SRV - [2006/10/26 14:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2011/07/06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector) DRV - [2011/07/04 13:36:43 | 000,441,176 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx) DRV - [2011/07/04 13:36:32 | 000,309,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP) DRV - [2011/07/04 13:35:23 | 000,043,608 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi) DRV - [2011/07/04 13:35:12 | 000,102,616 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2) DRV - [2011/07/04 13:32:32 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr) DRV - [2011/07/04 13:32:13 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4) DRV - [2011/07/04 13:32:12 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2010/02/03 15:56:56 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi) DRV - [2009/08/24 14:22:58 | 000,034,688 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcampr5.sys -- (PCAMPR5) DRV - [2009/08/24 14:22:58 | 000,032,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcandis5.sys -- (PCANDIS5) DRV - [2009/08/05 23:48:42 | 000,054,752 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys -- (fssfltr) DRV - [2009/07/10 21:33:36 | 001,015,424 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rt2860.sys -- (RT80x86) DRV - [2009/04/27 13:26:44 | 005,074,944 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2009/03/13 16:32:18 | 001,759,616 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC) DRV - [2009/03/02 07:03:47 | 000,038,912 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\l1c51x86.sys -- (L1c) DRV - [2008/11/19 10:21:28 | 000,039,040 | ---- | M] (GenesysLogic Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\uvclf.sys -- (uvclf) DRV - [2008/08/05 14:10:12 | 001,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt) DRV - [2008/04/14 14:00:00 | 000,088,320 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx) DRV - [2008/04/14 14:00:00 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb) DRV - [2008/04/14 14:00:00 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx) DRV - [2008/04/08 15:59:28 | 000,010,752 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASUSACPI.SYS -- (AsusACPI) DRV - [2006/01/04 09:41:48 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt) DRV - [2004/11/30 12:10:00 | 000,161,792 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sdpiosys.sys -- (sdpiosys) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search bar = http://search.msn.com/spbasic.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ IE - HKLM\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - File not found IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 09 6D B0 00 BB 6E 05 44 8D AA 11 C2 DC B9 11 2E [binary data] IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 09 6D B0 00 BB 6E 05 44 8D AA 11 C2 DC B9 11 2E [binary data] IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 09 6D B0 00 BB 6E 05 44 8D AA 11 C2 DC B9 11 2E [binary data] IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 09 6D B0 00 BB 6E 05 44 8D AA 11 C2 DC B9 11 2E [binary data] IE - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ IE - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp IE - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr IE - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0A DF C0 28 55 BA CB 01 [binary data] IE - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local> [color=#E56717]========== FireFox ==========[/color] FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\Program Files\McAfee\SiteAdvisor Enterprise\ [2011/09/03 10:05:47 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/09/04 00:16:50 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/09/01 19:27:22 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Parent\Application Data\Mozilla\Extensions [2011/09/01 19:26:59 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2010/04/28 22:11:13 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2010/01/19 13:26:45 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION [2011/08/31 01:21:40 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2011/08/30 23:09:39 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml [2011/08/30 22:29:49 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml [2011/08/30 23:09:39 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml [2011/08/30 23:09:39 | 000,001,154 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml [2011/08/30 23:09:39 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml [2011/08/30 23:09:39 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml O1 HOSTS File: ([2008/04/14 14:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (no name) - {02C1B427-6EBB-4405-8DAA-11C2DCB9112e} - File not found O2 - BHO: (no name) - {05552263-DC16-45EC-A825-518579DADB92} - File not found O2 - BHO: (Aide pour le lien d'Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (HabboFR Toolbar) - {08cb157c-3862-4b24-b113-3a5aa5cf5c47} - File not found O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - File not found O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - File not found O2 - BHO: (freetrialdownloads-FR Toolbar) - {3d681970-489b-4c1c-a2ad-29dba7bc3a31} - File not found O2 - BHO: (Softonic_France Toolbar) - {4daac69c-cba7-45e2-9bc8-1044483d3352} - File not found O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2 - BHO: (Eazel-FR Toolbar) - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} - File not found O2 - BHO: (bc33a3da) - {AA619383-78A1-F033-DBE4-D881E5D13347} - File not found O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\SiteAdvisor Enterprise\McIEPlg.dll (McAfee, Inc.) O2 - BHO: (SearchElf 1.2 Toolbar) - {f4e6547e-325b-403c-a3bb-ad29ed37a92f} - File not found O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found. O3 - HKLM\..\Toolbar: (HabboFR Toolbar) - {08cb157c-3862-4b24-b113-3a5aa5cf5c47} - File not found O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files\McAfee\SiteAdvisor Enterprise\McIEPlg.dll (McAfee, Inc.) O3 - HKLM\..\Toolbar: (freetrialdownloads-FR Toolbar) - {3d681970-489b-4c1c-a2ad-29dba7bc3a31} - File not found O3 - HKLM\..\Toolbar: (Softonic_France Toolbar) - {4daac69c-cba7-45e2-9bc8-1044483d3352} - File not found O3 - HKLM\..\Toolbar: (Eazel-FR Toolbar) - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} - File not found O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - File not found O3 - HKLM\..\Toolbar: (SearchElf 1.2 Toolbar) - {f4e6547e-325b-403c-a3bb-ad29ed37a92f} - File not found O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..\Toolbar\WebBrowser: (HabboFR Toolbar) - {08CB157C-3862-4B24-B113-3A5AA5CF5C47} - File not found O3 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..\Toolbar\WebBrowser: (freetrialdownloads-FR Toolbar) - {3D681970-489B-4C1C-A2AD-29DBA7BC3A31} - File not found O3 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..\Toolbar\WebBrowser: (Softonic_France Toolbar) - {4DAAC69C-CBA7-45E2-9BC8-1044483D3352} - File not found O3 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..\Toolbar\WebBrowser: (Eazel-FR Toolbar) - {A8F9752D-E2B8-4E7A-86B5-499F4330E2FE} - File not found O4 - HKLM..\Run: [AsusACPIServer] C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe (ASUSTeK Computer Inc.) O4 - HKLM..\Run: [AsusEPCMonitor] C:\Program Files\EeePC\ACPI\AsEPCMon.exe (ASUSTeK Computer Inc.) O4 - HKLM..\Run: [AsusTray] C:\Program Files\EeePC\ACPI\AsTray.exe (ASUSTeK Computer Inc.) O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [EEESplendidAR] C:\Program Files\ASUS\EPC\EeeSplendid\AutoRun.exe () O4 - HKLM..\Run: [KernelFaultCheck] File not found O4 - HKLM..\Run: [LiveUpdate] C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe () O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) O4 - HKLM..\Run: [McAfeeUpdaterUI] C:\Program Files\McAfee\Common Framework\udaterui.exe (McAfee, Inc.) O4 - HKLM..\Run: [ORAHSSSessionManager] File not found O4 - HKLM..\Run: [snp2uvc] File not found O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.) O4 - HKLM..\Run: [SynAsusAcpi] C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe (Synaptics Incorporated) O4 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007..\Run: [EA Core] File not found O4 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007..\Run: [Eee Docking] C:\Program Files\ASUS\Eee Docking\Eee Docking.exe () O4 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007..\Run: [WebcamMaxAutoRun] File not found O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\ SuperHybridEngine.lnk = C:\Program Files\ASUS\EeePC\Super Hybrid Engine\SuperHybridEngine.exe (ASUSTeK Computer Inc.) O4 - Startup: C:\Documents and Settings\Mael\Menu Démarrer\Programmes\Démarrage\LimeWire On Startup.lnk = File not found O4 - Startup: C:\Documents and Settings\Mael\Menu Démarrer\Programmes\Démarrage\Notification de cadeaux MSN.lnk = File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - File not found O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - File not found O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O15 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..Trusted Domains: facebook.com ([www] http in Sites de confiance) O15 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..Trusted Domains: google.com ([www] http in Sites de confiance) O15 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..Trusted Domains: habbo.fr ([www] http in Sites de confiance) O15 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..Trusted Domains: youtube.com ([www] http in Sites de confiance) O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control) O16 - DPF: {50DC58D0-C870-4BE6-BC41-971ED2D5F022} http://www.super-messenger.fr/tab/HookWlmEx.exe (HookWlmEx Control) O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} http://messenger.zone.msn.com/MessengerGamesContent/GameContent/fr/uno1/GAME_UNO1.cab (UnoCtrl Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab (PhotoPickConvert Class) O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8BF2436B-DBFE-48D7-B65B-770ABAFE6CEC}: DhcpNameServer = 192.168.1.1 192.168.1.1 O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor Enterprise\McIEPlg.dll (McAfee, Inc.) O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation) O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor Enterprise\McIEPlg.dll (McAfee, Inc.) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - File not found O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - AppInit_DLLs: (c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\progra~1\bandoo\bndhook.dll) - File not found O20 - AppInit_DLLs: (c:\windows\system32\csseqchk32.dll) - File not found O20 - AppInit_DLLs: (c:\windows\system32\csseqchk32.dll) - File not found O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop Components:0 (Ma page d'accueil) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Eee PC Seashell_2.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Eee PC Seashell_2.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009/08/18 09:16:52 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2011/04/27 11:54:54 | 000,000,144 | R--- | M] () - E:\autorun.inf -- [ CDFS ] O33 - MountPoints2\{4a201048-c17c-11df-bd8b-e7ed7a9b5adb}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{4a201048-c17c-11df-bd8b-e7ed7a9b5adb}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{4df5a81c-4572-11df-bd0a-0025d353be93}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{4df5a81c-4572-11df-bd0a-0025d353be93}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{62681ef4-296c-11e0-bdc5-e537b8b82e01}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{62681ef4-296c-11e0-bdc5-e537b8b82e01}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{a051d0d4-3155-11e0-bdcd-c8bb8c25963e}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{a051d0d4-3155-11e0-bdcd-c8bb8c25963e}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{a1279f61-13ee-11df-bcab-0025d353be93}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{a1279f61-13ee-11df-bcab-0025d353be93}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{b05cc236-0ffe-11e0-bdae-a71e5442ec60}\Shell\AutoRun\command - "" = F:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{b05cc236-0ffe-11e0-bdae-a71e5442ec60}\Shell\open\command - "" = F:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{e6aa81b3-11ee-11e0-bdb2-9542a65dbcca}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O33 - MountPoints2\{e6aa81b3-11ee-11e0-bdb2-9542a65dbcca}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: AppMgmt - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: WmdmPmSp - File not found MsConfig - StartUpReg: [b]Adobe Reader Speed Launcher[/b] - hkey= - key= - C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated) MsConfig - StartUpReg: [b]MsnMsgr[/b] - hkey= - key= - C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe (Microsoft Corporation) SafeBootMin: 98253591.sys - File not found SafeBootMin: AppMgmt - File not found SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: 98253591.sys - File not found SafeBootNet: AppMgmt - File not found SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun) ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Rendu VML (Vector Graphics Rendering) ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4 ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation ActiveX: {2A3320D6-C805-4280-B423-B665BDE33D8F} - Microsoft .NET Framework 1.1 Security Update (KB979906) ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll ActiveX: {2F6EFCE6-10DF-49F9-9E64-9AE3775B2588} - Microsoft .NET Framework 1.1 Security Update (KB2416447) ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Liaison de données Dynamic HTML pour Java ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Logiciel de navigation hors connexion ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe ActiveX: {3F7924B9-D148-3141-87B1-68F36043A940} - .NET Framework ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460) ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Création avancée ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Aide sur Internet Explorer ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - Classes Java DirectAnimation ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.7 ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Outils d'installation Internet Explorer ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Améliorations pour la navigation ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - Accès au site MSN ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework ActiveX: {73fa19d0-2d75-11d2-995d-00c04f98bbc9} - Web Folders ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - %SystemRoot%\system32\ie4uinit.exe ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Liaison de données Dynamic HTML ActiveX: {ACC563BC-4266-43f0-B6ED-9D38C4202C7E} - ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Polices de base Internet Explorer ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Planificateur de tâches ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1 ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Adobe Flash Player 9 ActiveX ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - Aide HTML ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE ActiveX: D27CDB6E-AE6D-11CF-96B8-444553540000 - Adobe Flash Player 9 ActiveX Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation) Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.) Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.) Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation) Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.) Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation) Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation) Drivers32: vidc.VP60 - C:\WINDOWS\system32\vp6vfw.dll (On2.com) Drivers32: vidc.VP61 - C:\WINDOWS\system32\vp6vfw.dll (On2.com) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2011/09/04 17:53:59 | 000,000,000 | ---D | C] -- C:\ubuntu [2011/09/03 10:07:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Parent\Menu Démarrer\Programmes\Ad-Remover [2011/09/03 09:57:01 | 000,000,000 | -HSD | C] -- C:\found.000 [2011/09/02 22:29:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited [2011/09/02 22:29:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Parent\Application Data\Canneverbe Limited [2011/09/02 21:20:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Parent\Application Data\Auslogics [2011/09/02 21:20:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Auslogics [2011/09/02 21:20:09 | 000,000,000 | ---D | C] -- C:\Program Files\Auslogics [2011/09/02 21:10:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Defraggler [2011/09/02 21:10:04 | 000,000,000 | ---D | C] -- C:\Program Files\Defraggler [2011/09/02 20:29:23 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Remover [2011/09/02 13:45:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Parent\Mes documents\Téléchargements [2011/09/02 12:42:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Parent\Menu Démarrer\Programmes\Outils d'administration [2011/09/01 19:34:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ZHP [2011/09/01 19:27:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Parent\Local Settings\Application Data\Mozilla [2011/09/01 19:27:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Parent\Application Data\Mozilla [2011/09/01 19:26:57 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2011/09/01 12:38:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Parent\Application Data\Malwarebytes [2011/09/01 12:38:37 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2011/09/01 12:38:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Malwarebytes' Anti-Malware [2011/09/01 12:38:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes [2011/09/01 12:38:31 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2011/09/01 12:38:30 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2011/09/01 10:18:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Atheros Ethernet Utility [2011/09/01 10:18:23 | 000,000,000 | ---D | C] -- C:\Program Files\Atheros Communications Inc [2011/09/01 10:13:41 | 000,000,000 | R--D | C] -- C:\WINDOWS\AsDmiHtm [2011/09/01 00:12:29 | 000,441,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys [2009/08/18 13:41:21 | 000,196,608 | ---- | C] ( ) -- C:\WINDOWS\System32\csnp2uvc.dll [2009/08/18 13:41:19 | 000,225,280 | ---- | C] ( ) -- C:\WINDOWS\System32\rsnp2uvc.dll [24 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\WINDOWS\Fonts\*.tmp files -> C:\WINDOWS\Fonts\*.tmp -> ] [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\Documents and Settings\Parent\*.tmp files -> C:\Documents and Settings\Parent\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2011/09/04 18:06:00 | 000,001,054 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2011/09/04 18:01:46 | 000,000,049 | -HS- | M] () -- C:\WINDOWS\System32\mmf.sys [2011/09/04 18:01:06 | 000,001,052 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1cc682775c9da75.job [2011/09/04 18:00:44 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011/09/04 17:57:45 | 000,000,244 | RHS- | M] () -- C:\boot.ini [2011/09/04 17:57:41 | 000,148,209 | ---- | M] () -- C:\wubildr [2011/09/04 17:57:41 | 000,008,192 | ---- | M] () -- C:\wubildr.mbr [2011/09/04 15:51:24 | 000,000,000 | RHS- | M] () -- C:\CONFIG.SYS [2011/09/04 11:12:33 | 000,511,312 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat [2011/09/04 11:12:33 | 000,085,312 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat [2011/09/04 11:12:32 | 000,441,772 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2011/09/04 11:12:32 | 000,071,708 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2011/09/04 00:06:35 | 000,249,496 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011/09/03 21:39:03 | 000,001,355 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2011/09/03 12:50:17 | 000,018,988 | ---- | M] () -- C:\WINDOWS\Ascd_tmp.ini [2011/09/02 21:20:11 | 000,000,899 | ---- | M] () -- C:\Documents and Settings\Parent\Bureau\Auslogics Disk Defrag.lnk [2011/09/02 17:56:51 | 000,000,000 | ---- | M] () -- C:\PhysicalDisk0_MBR.bin [2011/09/01 19:27:02 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\Parent\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk [2011/09/01 19:27:02 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Mozilla Firefox.lnk [2011/09/01 12:38:38 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk [2011/09/01 10:18:37 | 000,048,244 | ---- | M] () -- C:\WINDOWS\Ascd_log.ini [2011/09/01 10:15:30 | 000,000,977 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\ SuperHybridEngine.lnk [2011/09/01 10:12:15 | 000,001,746 | ---- | M] () -- C:\WINDOWS\Language_trs.ini [2011/09/01 00:17:43 | 000,072,704 | ---- | M] () -- C:\Documents and Settings\Parent\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011/09/01 00:12:29 | 000,003,121 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2011/08/31 23:44:58 | 000,000,148 | -HS- | M] () -- C:\WINDOWS\System32\470852575 [2011/08/31 23:44:57 | 000,001,185 | ---- | M] () -- C:\WINDOWS\System32\1010469107 [2011/08/31 23:44:31 | 000,000,165 | ---- | M] () -- C:\WINDOWS\System32\sl2112958797 [2011/08/31 23:38:11 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [24 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\Documents and Settings\Parent\*.tmp files -> C:\Documents and Settings\Parent\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011/09/04 17:57:41 | 000,148,209 | ---- | C] () -- C:\wubildr [2011/09/04 17:57:41 | 000,008,192 | ---- | C] () -- C:\wubildr.mbr [2011/09/02 21:20:11 | 000,000,899 | ---- | C] () -- C:\Documents and Settings\Parent\Bureau\Auslogics Disk Defrag.lnk [2011/09/01 19:44:28 | 000,000,000 | ---- | C] () -- C:\PhysicalDisk0_MBR.bin [2011/09/01 19:27:02 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\Parent\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk [2011/09/01 19:27:02 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk [2011/09/01 19:27:02 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Mozilla Firefox.lnk [2011/09/01 12:38:38 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk [2011/09/01 10:12:57 | 000,048,244 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini [2011/09/01 10:12:15 | 000,001,746 | ---- | C] () -- C:\WINDOWS\Language_trs.ini [2011/09/01 10:12:11 | 000,018,988 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini [2011/09/01 10:12:11 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS [2011/08/31 23:46:37 | 000,001,052 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1cc682775c9da75.job [2011/01/12 19:02:35 | 000,040,602 | ---- | C] () -- C:\WINDOWS\System32\api_hook_list.dat [2010/12/23 16:20:30 | 000,001,041 | ---- | C] () -- C:\WINDOWS\videoimp.ini [2010/12/23 16:19:53 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll [2010/08/10 22:32:53 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat [2010/07/10 12:25:55 | 000,072,704 | ---- | C] () -- C:\Documents and Settings\Parent\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010/07/03 20:31:13 | 000,203,776 | -HS- | C] () -- C:\WINDOWS\System32\unrar.exe [2010/06/27 18:11:47 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll [2010/06/27 16:24:40 | 000,522,672 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat [2010/04/05 08:35:07 | 000,033,148 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat [2010/03/11 09:23:14 | 000,000,206 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI [2010/02/10 20:07:45 | 000,000,049 | -HS- | C] () -- C:\WINDOWS\System32\mmf.sys [2010/02/10 20:07:44 | 000,048,640 | ---- | C] () -- C:\WINDOWS\mmfs.dll [2010/02/10 20:07:44 | 000,016,384 | ---- | C] () -- C:\WINDOWS\runservice.exe [2010/02/09 14:32:58 | 000,000,030 | ---- | C] () -- C:\WINDOWS\mscpt.dat [2010/01/20 22:29:15 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2010/01/13 19:51:02 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\Parent\Local Settings\Application Data\fusioncache.dat [2009/11/06 11:58:04 | 000,178,975 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat [2009/08/18 15:10:09 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini [2009/08/18 14:08:53 | 000,040,960 | ---- | C] () -- C:\WINDOWS\uvcrecordfix.exe [2009/08/18 14:08:53 | 000,024,576 | ---- | C] () -- C:\WINDOWS\Sleep.exe [2009/08/18 13:41:21 | 001,759,616 | ---- | C] () -- C:\WINDOWS\System32\drivers\snp2uvc.sys [2009/08/18 13:41:21 | 000,028,544 | ---- | C] () -- C:\WINDOWS\System32\drivers\sncduvc.sys [2009/08/18 13:41:21 | 000,015,497 | ---- | C] () -- C:\WINDOWS\snp2uvc.ini [2009/08/18 13:38:22 | 000,021,864 | ---- | C] () -- C:\WINDOWS\AsAcpiSvrLang.ini [2009/08/18 13:38:22 | 000,012,208 | ---- | C] () -- C:\WINDOWS\AsTrayLang.ini [2009/08/18 12:03:52 | 000,013,930 | ---- | C] () -- C:\WINDOWS\System32\RaCoInst.dat [2009/08/18 12:01:03 | 000,000,712 | ---- | C] () -- C:\WINDOWS\System32\drivers\SamSfPa.dat [2009/08/18 12:01:03 | 000,000,008 | ---- | C] () -- C:\WINDOWS\System32\drivers\rtkhdaud.dat [2009/08/18 11:57:17 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4906.dll [2009/08/18 11:11:08 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2009/08/18 11:10:22 | 000,249,496 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2009/08/18 11:04:18 | 000,005,312 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI [2009/08/18 11:04:12 | 000,511,312 | ---- | C] () -- C:\WINDOWS\System32\perfh00C.dat [2009/08/18 11:04:12 | 000,322,810 | ---- | C] () -- C:\WINDOWS\System32\perfi00C.dat [2009/08/18 11:04:12 | 000,085,312 | ---- | C] () -- C:\WINDOWS\System32\perfc00C.dat [2009/08/18 11:04:12 | 000,034,108 | ---- | C] () -- C:\WINDOWS\System32\perfd00C.dat [2009/08/18 11:04:06 | 000,028,400 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys [2009/08/18 11:04:06 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2009/08/18 11:04:05 | 000,441,772 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2009/08/18 11:04:05 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2009/08/18 11:04:05 | 000,071,708 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2009/08/18 11:04:05 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2009/08/18 11:04:04 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2009/08/18 11:04:04 | 000,004,562 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat [2009/08/18 11:04:04 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat [2009/08/18 11:04:02 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2009/08/18 11:04:02 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2009/08/18 11:04:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2009/08/18 11:03:58 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin [2009/08/18 09:19:07 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2009/08/18 09:14:51 | 000,021,892 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2008/10/07 10:13:30 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll [2008/10/07 10:13:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll [2008/10/07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll [2008/10/07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll [2008/10/07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll [2008/10/07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll [2008/10/07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll [2008/10/07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll [2008/10/07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll [2008/10/07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll [2004/11/30 12:10:00 | 000,161,792 | ---- | C] () -- C:\WINDOWS\System32\drivers\SDPIOSYS.SYS [color=#E56717]========== LOP Check ==========[/color] [2011/02/21 18:11:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software [2011/09/02 22:29:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited [2010/09/27 17:00:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Electronic Arts [2011/02/19 18:41:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FXhome [2010/12/25 13:33:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\QuickMediaConverter [2009/08/18 12:03:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ralink Driver [2010/04/04 18:35:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521} [2010/04/04 19:24:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mael\Application Data\Pioneer [2010/03/23 18:06:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mael\Application Data\Tific [2010/07/03 22:01:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mael\Application Data\Unity [2010/12/25 12:00:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\ALLCapture [2011/09/02 21:20:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Auslogics [2011/09/02 22:29:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Canneverbe Limited [2010/12/25 13:33:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\CocoonSoftware [2011/01/15 14:55:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\ManyCam [2011/02/05 20:51:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\MP-Manager [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color] [color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*. >[/color] [2010/01/31 10:46:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Adobe [2011/02/21 18:11:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software [2010/04/04 18:30:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Apple [2010/04/04 18:34:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Apple Computer [2009/08/18 13:37:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Atheros [2010/12/29 15:47:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVS4YOU [2011/09/02 22:29:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited [2010/09/27 17:00:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Electronic Arts [2011/02/19 18:41:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FXhome [2011/09/01 12:38:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes [2011/09/02 17:35:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\McAfee [2010/07/18 12:28:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\McAfee Security Scan [2010/06/05 03:02:12 | 000,000,000 | --SD | M] -- C:\Documents and Settings\All Users\Application Data\Microsoft [2011/09/03 21:38:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Microsoft Help [2010/03/24 18:49:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Norton [2010/02/16 18:43:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NortonInstaller [2010/12/29 19:54:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NOS [2010/12/25 13:33:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\QuickMediaConverter [2009/08/18 12:03:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ralink Driver [2009/08/18 14:18:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Skype [2010/04/28 22:12:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sun [2010/02/16 18:43:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Symantec [2010/12/29 15:59:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Winamp Toolbar [2010/01/14 16:39:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage [2010/04/04 18:35:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521} [color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*.exe /s >[/color] [2009/02/04 13:56:14 | 000,075,112 | ---- | M] (GEAR Software, Inc.) -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}\x86\DifXInstall32.exe [2010/03/26 01:48:24 | 000,073,000 | ---- | M] (Apple Inc.) -- C:\Documents and Settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 9.1.0.79\SetupAdmin.exe [2008/08/06 16:31:14 | 000,528,384 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\Ralink Driver\RT2860 Wireless LAN Card\Driver\RaInst.exe [color=#A23BEC]< %APPDATA%\*. >[/color] [2010/07/14 14:42:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Adobe [2010/12/25 12:00:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\ALLCapture [2010/08/21 13:15:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Apple Computer [2011/01/28 23:44:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\ArcSoft [2011/09/02 21:20:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Auslogics [2011/09/02 22:29:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Canneverbe Limited [2010/12/25 13:33:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\CocoonSoftware [2010/12/23 23:21:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Help [2009/08/18 09:20:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Identities [2009/08/18 12:03:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\InstallShield [2010/05/23 12:28:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Macromedia [2011/09/01 12:38:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Malwarebytes [2011/01/15 14:55:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\ManyCam [2011/01/15 18:50:27 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Parent\Application Data\Microsoft [2011/09/01 19:27:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Mozilla [2011/02/05 20:51:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\MP-Manager [2010/05/23 12:31:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Sun [2011/02/10 19:02:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\Winamp [2010/07/13 10:29:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Parent\Application Data\WinRAR [color=#A23BEC]< %APPDATA%\*.exe /s >[/color] [2009/11/06 08:04:40 | 010,377,728 | ---- | M] () -- C:\Documents and Settings\Parent\Application Data\CocoonSoftware\QMC\ffmpeg.exe [2008/04/02 13:35:18 | 007,945,216 | ---- | M] () -- C:\Documents and Settings\Parent\Application Data\CocoonSoftware\QMC\ffmpegHD.exe [2010/09/27 16:58:55 | 000,010,134 | R--- | M] () -- C:\Documents and Settings\Parent\Application Data\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe [color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color] [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp3.cab:AGP440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp3.cab:atapi.sys [2008/04/14 14:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\dllcache\atapi.sys [2008/04/14 14:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp3.cab:cdrom.sys [2008/04/14 14:00:00 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys [color=#A23BEC]< MD5 for: CHANGER.SYS >[/color] [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Changer.sys [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp3.cab:Changer.sys [color=#A23BEC]< MD5 for: DISK.SYS >[/color] [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:disk.sys [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp3.cab:disk.sys [2008/04/14 14:00:00 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\system32\dllcache\disk.sys [2008/04/14 14:00:00 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\system32\drivers\disk.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2008/04/14 14:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\system32\dllcache\eventlog.dll [2008/04/14 14:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\system32\eventlog.dll [color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color] [2008/04/14 14:00:00 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\explorer.exe [2008/04/14 14:00:00 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\system32\dllcache\explorer.exe [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008/04/14 14:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys [2008/04/14 14:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys [color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color] [2008/04/14 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\system32\dllcache\netlogon.dll [2008/04/14 14:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\system32\netlogon.dll [color=#A23BEC]< MD5 for: RASACD.SYS >[/color] [2008/04/14 14:00:00 | 000,008,832 | ---- | M] (Microsoft Corporation) MD5=FE0D99D6F31E4FAD8159F690D68DED9C -- C:\WINDOWS\system32\dllcache\rasacd.sys [2008/04/14 14:00:00 | 000,008,832 | ---- | M] (Microsoft Corporation) MD5=FE0D99D6F31E4FAD8159F690D68DED9C -- C:\WINDOWS\system32\drivers\rasacd.sys [color=#A23BEC]< MD5 for: RDPWD.SYS >[/color] [2011/06/24 16:09:15 | 000,139,656 | ---- | M] (Microsoft Corporation) MD5=3348E61A78BA4F79C795AAD6565D3B6F -- C:\WINDOWS\$hf_mig$\KB2570222\SP3QFE\rdpwd.sys [2011/06/24 16:09:15 | 000,139,656 | ---- | M] (Microsoft Corporation) MD5=3348E61A78BA4F79C795AAD6565D3B6F -- C:\WINDOWS\SoftwareDistribution\Download\2da9cfedece4fa796545bf065a958699\SP3QFE\rdpwd.sys [2008/04/14 14:00:00 | 000,139,656 | ---- | M] (Microsoft Corporation) MD5=6728E45B66F93C08F11DE2E316FC70DD -- C:\WINDOWS\$NtUninstallKB2570222$\rdpwd.sys [2011/06/24 16:10:47 | 000,139,656 | ---- | M] (Microsoft Corporation) MD5=FC105DD312ED64EB66BFF111E8EC6EAC -- C:\WINDOWS\SoftwareDistribution\Download\2da9cfedece4fa796545bf065a958699\SP3GDR\rdpwd.sys [2011/06/24 16:10:47 | 000,139,656 | ---- | M] (Microsoft Corporation) MD5=FC105DD312ED64EB66BFF111E8EC6EAC -- C:\WINDOWS\system32\dllcache\rdpwd.sys [2011/06/24 16:10:47 | 000,139,656 | ---- | M] (Microsoft Corporation) MD5=FC105DD312ED64EB66BFF111E8EC6EAC -- C:\WINDOWS\system32\drivers\rdpwd.sys [color=#A23BEC]< MD5 for: SCECLI.DLL >[/color] [2008/04/14 14:00:00 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\system32\dllcache\scecli.dll [2008/04/14 14:00:00 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\system32\scecli.dll [color=#A23BEC]< MD5 for: SFLOPPY.SYS >[/color] [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:Sfloppy.sys [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp3.cab:Sfloppy.sys [2008/04/14 14:00:00 | 000,011,392 | ---- | M] (Microsoft Corporation) MD5=8E6B8C671615D126FDC553D1E2DE5562 -- C:\WINDOWS\system32\drivers\sfloppy.sys [color=#A23BEC]< MD5 for: SPLITTER.SYS >[/color] [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:splitter.sys [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp3.cab:splitter.sys [2008/04/13 11:45:08 | 000,006,272 | ---- | M] (Microsoft Corporation) MD5=AB8B92451ECB048A4D1DE7C3FFCB4A9F -- C:\WINDOWS\system32\dllcache\splitter.sys [2008/04/13 11:45:08 | 000,006,272 | ---- | M] (Microsoft Corporation) MD5=AB8B92451ECB048A4D1DE7C3FFCB4A9F -- C:\WINDOWS\system32\drivers\splitter.sys [color=#A23BEC]< MD5 for: SWMIDI.SYS >[/color] [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:swmidi.sys [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp3.cab:swmidi.sys [2008/04/13 11:45:10 | 000,056,576 | ---- | M] (Microsoft Corporation) MD5=8CE882BCC6CF8A62F2B2323D95CB3D01 -- C:\WINDOWS\system32\dllcache\swmidi.sys [2008/04/13 11:45:10 | 000,056,576 | ---- | M] (Microsoft Corporation) MD5=8CE882BCC6CF8A62F2B2323D95CB3D01 -- C:\WINDOWS\system32\drivers\swmidi.sys [color=#A23BEC]< MD5 for: TCPIP.SYS >[/color] [2008/04/14 14:00:00 | 000,361,344 | ---- | M] (Microsoft Corporation) MD5=93EA8D04EC73A85DB02EB8805988F733 -- C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys [2008/06/20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\dllcache\tcpip.sys [2008/06/20 13:51:12 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=9AEFA14BD6B182D61E3119FA5F436D3D -- C:\WINDOWS\system32\drivers\tcpip.sys [2008/06/20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB2509553\SP3QFE\tcpip.sys [2008/06/20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys [2008/06/20 13:59:02 | 000,361,600 | ---- | M] (Microsoft Corporation) MD5=AD978A1B783B5719720CFF204B666C8E -- C:\WINDOWS\SoftwareDistribution\Download\f96addb4e216f2399cbadef9606eabb2\sp3qfe\tcpip.sys [color=#A23BEC]< MD5 for: TDPIPE.SYS >[/color] [2008/04/14 14:00:00 | 000,012,040 | ---- | M] (Microsoft Corporation) MD5=6471A66807F5E104E4885F5B67349397 -- C:\WINDOWS\system32\dllcache\tdpipe.sys [2008/04/14 14:00:00 | 000,012,040 | ---- | M] (Microsoft Corporation) MD5=6471A66807F5E104E4885F5B67349397 -- C:\WINDOWS\system32\drivers\tdpipe.sys [color=#A23BEC]< MD5 for: TDTCP.SYS >[/color] [2008/04/14 14:00:00 | 000,021,896 | ---- | M] (Microsoft Corporation) MD5=C56B6D0402371CF3700EB322EF3AAF61 -- C:\WINDOWS\system32\dllcache\tdtcp.sys [2008/04/14 14:00:00 | 000,021,896 | ---- | M] (Microsoft Corporation) MD5=C56B6D0402371CF3700EB322EF3AAF61 -- C:\WINDOWS\system32\drivers\tdtcp.sys [color=#A23BEC]< MD5 for: USBPRINT.SYS >[/color] [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:usbprint.sys [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp3.cab:usbprint.sys [2008/04/13 12:47:38 | 000,025,856 | ---- | M] (Microsoft Corporation) MD5=A717C8721046828520C9EDF31288FC00 -- C:\WINDOWS\system32\dllcache\usbprint.sys [2008/04/13 12:47:38 | 000,025,856 | ---- | M] (Microsoft Corporation) MD5=A717C8721046828520C9EDF31288FC00 -- C:\WINDOWS\system32\drivers\usbprint.sys [color=#A23BEC]< MD5 for: USBSCAN.SYS >[/color] [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:usbscan.sys [2008/04/14 14:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\I386\sp3.cab:usbscan.sys [color=#A23BEC]< MD5 for: USERINIT.EXE >[/color] [2008/04/14 14:00:00 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\system32\dllcache\userinit.exe [2008/04/14 14:00:00 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=E74DDB12188C2FF57A78624DBF7332FC -- C:\WINDOWS\system32\userinit.exe [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2011/09/04 18:05:59 | 000,570,368 | ---- | M] () MD5=9C0519648438775677CEB4E4AAE64BFA -- C:\Documents and Settings\Parent\Mes documents\Téléchargements\winlogon.exe [2008/04/14 14:00:00 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\system32\dllcache\winlogon.exe [2008/04/14 14:00:00 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\system32\winlogon.exe [color=#A23BEC]< %systemroot%\*. /mp /s >[/color] [color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color] [24 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ] [color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color] < End of report >

jeanmimigab · le 04 Sep 2011 19:21

re,

* Fais un double-clic sur l'icône d'OTL pour le lancer
/!\ pour Vista/Seven fais un clic-droit sur l'icône d'OTL et choisis "Exécuter en tant qu'administrateur"

* Assure toi d'avoir fermé toutes les applications en court de fonctionnement.

* Quand la fenêtre d'OTL apparaît, assure toi que dans la section "Rapport" (en haut à droite) la case "Rapport minimal" soit cochée.

* Copies et colles le contenue de cette citation dans la partie inférieure d'OTL "Personnalisation"

:OTL
DRV - [2004/11/30 12:10:00 | 000,161,792 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sdpiosys.sys -- (sdpiosys)
O2 - BHO: (no name) - {02C1B427-6EBB-4405-8DAA-11C2DCB9112e} - File not found
O2 - BHO: (no name) - {05552263-DC16-45EC-A825-518579DADB92} - File not found
O2 - BHO: (HabboFR Toolbar) - {08cb157c-3862-4b24-b113-3a5aa5cf5c47} - File not found
O2 - BHO: (freetrialdownloads-FR Toolbar) - {3d681970-489b-4c1c-a2ad-29dba7bc3a31} - File not found
O2 - BHO: (Softonic_France Toolbar) - {4daac69c-cba7-45e2-9bc8-1044483d3352} - File not found
O2 - BHO: (Eazel-FR Toolbar) - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} - File not found
O2 - BHO: (bc33a3da) - {AA619383-78A1-F033-DBE4-D881E5D13347} - File not found
O2 - BHO: (SearchElf 1.2 Toolbar) - {f4e6547e-325b-403c-a3bb-ad29ed37a92f} - File not found
O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.
O3 - HKLM\..\Toolbar: (HabboFR Toolbar) - {08cb157c-3862-4b24-b113-3a5aa5cf5c47} - File not found
O3 - HKLM\..\Toolbar: (freetrialdownloads-FR Toolbar) - {3d681970-489b-4c1c-a2ad-29dba7bc3a31} - File not found
O3 - HKLM\..\Toolbar: (Softonic_France Toolbar) - {4daac69c-cba7-45e2-9bc8-1044483d3352} - File not found
O3 - HKLM\..\Toolbar: (Eazel-FR Toolbar) - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} - File not found
O3 - HKLM\..\Toolbar: (SearchElf 1.2 Toolbar) - {f4e6547e-325b-403c-a3bb-ad29ed37a92f} - File not found
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..\Toolbar\WebBrowser: (HabboFR Toolbar) - {08CB157C-3862-4B24-B113-3A5AA5CF5C47} - File not found
O3 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..\Toolbar\WebBrowser: (freetrialdownloads-FR Toolbar) - {3D681970-489B-4C1C-A2AD-29DBA7BC3A31} - File not found
O3 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..\Toolbar\WebBrowser: (Softonic_France Toolbar) - {4DAAC69C-CBA7-45E2-9BC8-1044483D3352} - File not found
O3 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..\Toolbar\WebBrowser: (Eazel-FR Toolbar) - {A8F9752D-E2B8-4E7A-86B5-499F4330E2FE} - File not found
O4 - HKLM\..\Run: [ORAHSSSessionManager] File not found
O4 - HKLM\..\Run: [snp2uvc] File not found
O4 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..\Run: [EA Core] File not found
O4 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..\Run: [WebcamMaxAutoRun] File not found
O4 - Startup: C:\Documents and Settings\Mael\Menu Démarrer\Programmes\Démarrage\LimeWire On Startup.lnk = File not found
O4 - Startup: C:\Documents and Settings\Mael\Menu Démarrer\Programmes\Démarrage\Notification de cadeaux MSN.lnk = File not found
O20 - AppInit_DLLs: (c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csse
O20 - AppInit_DLLs: (c:\windows\system32\csseqchk32.dll) - File not found
O20 - AppInit_DLLs: (c:\windows\system32\csseqchk32.dll) - File not found
O33 - MountPoints2\{4a201048-c17c-11df-bd8b-e7ed7a9b5adb}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ
O33 - MountPoints2\{4a201048-c17c-11df-bd8b-e7ed7a9b5adb}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ
O33 - MountPoints2\{4df5a81c-4572-11df-bd0a-0025d353be93}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ
O33 - MountPoints2\{4df5a81c-4572-11df-bd0a-0025d353be93}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ
O33 - MountPoints2\{62681ef4-296c-11e0-bdc5-e537b8b82e01}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ
O33 - MountPoints2\{62681ef4-296c-11e0-bdc5-e537b8b82e01}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ
O33 - MountPoints2\{a051d0d4-3155-11e0-bdcd-c8bb8c25963e}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ
O33 - MountPoints2\{a051d0d4-3155-11e0-bdcd-c8bb8c25963e}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ
O33 - MountPoints2\{a1279f61-13ee-11df-bcab-0025d353be93}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ
O33 - MountPoints2\{a1279f61-13ee-11df-bcab-0025d353be93}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ
O33 - MountPoints2\{b05cc236-0ffe-11e0-bdae-a71e5442ec60}\Shell\AutoRun\command - "" = F:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ
O33 - MountPoints2\{b05cc236-0ffe-11e0-bdae-a71e5442ec60}\Shell\open\command - "" = F:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ
O33 - MountPoints2\{e6aa81b3-11ee-11e0-bdb2-9542a65dbcca}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ
O33 - MountPoints2\{e6aa81b3-11ee-11e0-bdb2-9542a65dbcca}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ
SafeBootMin: 98253591.sys - File not found
SafeBootNet: 98253591.sys - File not found
[24 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\Fonts\*.tmp files -> C:\WINDOWS\Fonts\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\Documents and Settings\Parent\*.tmp files -> C:\Documents and Settings\Parent\*.tmp -> ]

:Files
C:\WINDOWS\system32\drivers\sdpiosys.sys
c:\windows\system32\csseqchk32.dll
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1cc682775c9da75.job
C:\WINDOWS\System32\470852575
C:\WINDOWS\System32\1010469107
C:\WINDOWS\System32\sl2112958797

:Commands
[emptytemp]
[EMPTYFLASH]

* Cliques sur l'icône "Correction" (en haut à gauche) .
* Laisse le scan aller à son terme sans te servir du PC
* A la fin du scan un rapport va s'ouvrir
* Copie et colle le rapports dans ta réponse stp...

Dr.w4n1x · le 05 Sep 2011 17:31

Code: Tout sélectionner: OTL logfile created on: 05/09/2011 18:20:04 - Run 1 OTL by OldTimer - Version 3.2.27.0 Folder = C:\Documents and Settings\Mael\Mes documents\Téléchargements Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 1015,17 Mb Total Physical Memory | 554,69 Mb Available Physical Memory | 54,64% Memory free 2,38 Gb Paging File | 2,04 Gb Available in Paging File | 85,36% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 72,06 Gb Total Space | 65,38 Gb Free Space | 90,73% Space Free | Partition Type: NTFS Drive D: | 72,05 Gb Total Space | 71,99 Gb Free Space | 99,91% Space Free | Partition Type: NTFS Computer Name: ORDINATEUR | User Name: Mael | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011/09/05 18:19:42 | 000,581,120 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mael\Mes documents\Téléchargements\OTL.exe PRC - [2011/08/31 01:21:39 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2009/07/27 16:58:38 | 000,397,312 | ---- | M] () -- C:\Program Files\ASUS\Eee Docking\Eee Docking.exe PRC - [2009/06/25 11:25:40 | 000,712,704 | ---- | M] () -- C:\Program Files\ASUS\LiveUpdate\LiveUpdate.exe PRC - [2009/04/16 19:46:30 | 000,630,784 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe PRC - [2009/04/16 18:58:54 | 000,118,784 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\EeePC\ACPI\AsTray.exe PRC - [2009/03/25 10:43:40 | 000,376,832 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\ASUS\EeePC\Super Hybrid Engine\SuperHybridEngine.exe PRC - [2009/03/13 16:15:02 | 000,098,304 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\EeePC\ACPI\AsEPCMon.exe PRC - [2008/04/14 14:00:00 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008/04/14 14:00:00 | 000,401,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cmd.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2011/08/31 01:21:39 | 001,846,232 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll MOD - [2009/07/27 16:58:38 | 000,397,312 | ---- | M] () -- C:\Program Files\ASUS\Eee Docking\Eee Docking.exe MOD - [2009/06/25 11:25:40 | 000,712,704 | ---- | M] () -- C:\Program Files\ASUS\LiveUpdate\LiveUpdate.exe MOD - [2009/06/25 10:15:22 | 000,135,168 | ---- | M] () -- C:\Program Files\ASUS\LiveUpdate\Enumeration.dll MOD - [2009/03/23 17:55:50 | 000,176,128 | ---- | M] () -- C:\Program Files\ASUS\LiveUpdate\Parser.dll MOD - [2009/03/23 17:53:46 | 000,106,496 | ---- | M] () -- C:\Program Files\ASUS\LiveUpdate\ClientSocket.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt) SRV - [2006/10/26 19:49:34 | 000,441,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv) SRV - [2006/10/26 14:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2009/07/10 21:33:36 | 001,015,424 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rt2860.sys -- (RT80x86) DRV - [2009/04/27 13:26:44 | 005,074,944 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2009/03/13 16:32:18 | 001,759,616 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC) DRV - [2009/03/02 07:03:47 | 000,038,912 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\l1c51x86.sys -- (L1c) DRV - [2009/02/06 18:08:42 | 000,055,152 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys -- (fssfltr) DRV - [2008/11/19 10:21:28 | 000,039,040 | ---- | M] (GenesysLogic Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\uvclf.sys -- (uvclf) DRV - [2008/08/05 14:10:12 | 001,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt) DRV - [2008/04/08 15:59:28 | 000,010,752 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASUSACPI.SYS -- (AsusACPI) DRV - [2006/01/04 09:41:48 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1805762057-2462029759-667695360-1006\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com IE - HKU\S-1-5-21-1805762057-2462029759-667695360-1006\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8064.0206: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/09/05 18:16:03 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/09/05 18:17:37 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Mael\Application Data\Mozilla\Extensions [2011/09/05 18:16:03 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2011/08/31 01:21:40 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2011/08/30 23:09:39 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml [2011/08/30 22:29:49 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml [2011/08/30 23:09:39 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml [2011/08/30 23:09:39 | 000,001,154 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml [2011/08/30 23:09:39 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml [2011/08/30 23:09:39 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml O1 HOSTS File: ([2008/04/14 14:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Aide pour le lien d'Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.) O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found. O4 - HKLM..\Run: [AsusACPIServer] C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe (ASUSTeK Computer Inc.) O4 - HKLM..\Run: [AsusEPCMonitor] C:\Program Files\EeePC\ACPI\AsEPCMon.exe (ASUSTeK Computer Inc.) O4 - HKLM..\Run: [AsusTray] C:\Program Files\EeePC\ACPI\AsTray.exe (ASUSTeK Computer Inc.) O4 - HKLM..\Run: [LiveUpdate] C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe () O4 - HKLM..\Run: [snp2uvc] File not found O4 - HKLM..\Run: [SynAsusAcpi] C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe (Synaptics Incorporated) O4 - HKU\S-1-5-21-1805762057-2462029759-667695360-1006..\Run: [Eee Docking] C:\Program Files\ASUS\Eee Docking\Eee Docking.exe () O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\ SuperHybridEngine.lnk = C:\Program Files\ASUS\EeePC\Super Hybrid Engine\SuperHybridEngine.exe (ASUSTeK Computer Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1805762057-2462029759-667695360-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.) O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{341CC20B-155F-4DD9-B958-7162C540C173}: DhcpNameServer = 192.168.1.1 192.168.1.1 O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop Components:0 (Ma page d'accueil) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Eee PC Seashell_1.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Eee PC Seashell_1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009/08/18 09:16:52 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2011/09/05 18:19:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mael\Mes documents\Téléchargements [2011/09/05 18:17:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mael\Local Settings\Application Data\Mozilla [2011/09/05 18:17:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mael\Application Data\Mozilla [2011/09/05 18:16:02 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2011/09/05 18:13:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2011/09/05 18:07:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mael\Application Data\Macromedia [2011/09/05 18:07:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2011/09/05 18:07:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mael\Application Data\Adobe [2011/09/05 18:07:46 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Mael\PrivacIE [2011/09/05 18:07:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood [2011/09/05 17:55:34 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Mael\Application Data\Microsoft [2011/09/05 17:55:34 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Mael\SendTo [2011/09/05 17:55:34 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Mael\Recent [2011/09/05 17:55:34 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Mael\Application Data [2011/09/05 17:55:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mael\Mes documents\Mes images [2011/09/05 17:55:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mael\Mes documents [2011/09/05 17:55:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mael\Menu Démarrer [2011/09/05 17:55:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mael\Mes documents\Ma musique [2011/09/05 17:55:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mael\Favoris [2011/09/05 17:55:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mael\Menu Démarrer\Programmes\Démarrage [2011/09/05 17:55:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Mael\Menu Démarrer\Programmes\Accessoires [2011/09/05 17:55:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Mael\IETldCache [2011/09/05 17:55:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Mael\Cookies [2011/09/05 17:55:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Mael\Voisinage réseau [2011/09/05 17:55:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Mael\Voisinage d'impression [2011/09/05 17:55:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Mael\Modèles [2011/09/05 17:55:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Mael\Local Settings [2011/09/05 17:55:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mael\Mes documents\My Videos [2011/09/05 17:55:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mael\Mes documents\My Pictures [2011/09/05 17:55:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mael\Mes documents\My Office [2011/09/05 17:55:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mael\Mes documents\My Music [2011/09/05 17:55:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mael\Mes documents\My Ebooks [2011/09/05 17:55:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mael\Local Settings\Application Data\Microsoft Help [2011/09/05 17:55:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mael\Local Settings\Application Data\Microsoft [2011/09/05 17:55:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mael\Application Data\InstallShield [2011/09/05 17:55:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mael\Application Data\Identities [2011/09/05 17:55:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mael\Bureau [2011/09/05 17:55:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mael\Local Settings\Application Data\ApplicationHistory [2011/09/05 17:55:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mael\Local Settings\Application Data\Adobe [2009/08/18 13:41:21 | 000,196,608 | ---- | C] ( ) -- C:\WINDOWS\System32\csnp2uvc.dll [2009/08/18 13:41:19 | 000,225,280 | ---- | C] ( ) -- C:\WINDOWS\System32\rsnp2uvc.dll [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2011/09/05 18:16:05 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\Mael\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk [2011/09/05 18:16:05 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Mozilla Firefox.lnk [2011/09/05 17:59:39 | 000,469,060 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat [2011/09/05 17:59:39 | 000,401,712 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2011/09/05 17:59:39 | 000,076,052 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat [2011/09/05 17:59:39 | 000,062,992 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2011/09/05 17:55:40 | 000,000,782 | ---- | M] () -- C:\Documents and Settings\Mael\Bureau\Windows Media Player.lnk [2011/09/05 17:55:32 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011/09/05 17:55:30 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011/09/05 17:54:56 | 000,000,068 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2011/09/05 17:53:23 | 000,000,216 | RHS- | M] () -- C:\boot.ini [2011/09/05 17:50:32 | 000,005,208 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011/09/05 18:16:05 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\Mael\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk [2011/09/05 18:16:05 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Mozilla Firefox.lnk [2011/09/05 18:16:04 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk [2011/09/05 17:55:40 | 000,000,782 | ---- | C] () -- C:\Documents and Settings\Mael\Bureau\Windows Media Player.lnk [2011/09/05 17:55:35 | 000,000,691 | ---- | C] () -- C:\Documents and Settings\Mael\Bureau\Install Norton Internet Security.lnk [2011/09/05 17:55:35 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\Mael\Application Data\Microsoft\Internet Explorer\Quick Launch\Bureau.scf [2011/09/05 17:55:34 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Mael\Menu Démarrer\Programmes\Assistance à distance.lnk [2011/09/05 17:55:34 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\Mael\Menu Démarrer\Programmes\Internet Explorer.lnk [2011/09/05 17:55:34 | 000,000,788 | ---- | C] () -- C:\Documents and Settings\Mael\Menu Démarrer\Programmes\Windows Media Player.lnk [2011/09/05 17:55:34 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\Mael\Menu Démarrer\Programmes\Outlook Express.lnk [2011/09/05 17:55:34 | 000,000,135 | ---- | C] () -- C:\Documents and Settings\Mael\Local Settings\Application Data\fusioncache.dat [2009/08/18 15:10:09 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini [2009/08/18 14:08:53 | 000,040,960 | ---- | C] () -- C:\WINDOWS\uvcrecordfix.exe [2009/08/18 14:08:53 | 000,024,576 | ---- | C] () -- C:\WINDOWS\Sleep.exe [2009/08/18 13:41:21 | 001,759,616 | ---- | C] () -- C:\WINDOWS\System32\drivers\snp2uvc.sys [2009/08/18 13:41:21 | 000,028,544 | ---- | C] () -- C:\WINDOWS\System32\drivers\sncduvc.sys [2009/08/18 13:41:21 | 000,015,497 | ---- | C] () -- C:\WINDOWS\snp2uvc.ini [2009/08/18 13:38:22 | 000,021,864 | ---- | C] () -- C:\WINDOWS\AsAcpiSvrLang.ini [2009/08/18 13:38:22 | 000,012,208 | ---- | C] () -- C:\WINDOWS\AsTrayLang.ini [2009/08/18 12:03:52 | 000,013,930 | ---- | C] () -- C:\WINDOWS\System32\RaCoInst.dat [2009/08/18 12:01:03 | 000,000,712 | ---- | C] () -- C:\WINDOWS\System32\drivers\SamSfPa.dat [2009/08/18 12:01:03 | 000,000,008 | ---- | C] () -- C:\WINDOWS\System32\drivers\rtkhdaud.dat [2009/08/18 11:57:17 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4906.dll [2009/08/18 11:11:08 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2009/08/18 11:10:22 | 000,182,632 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2009/08/18 11:04:18 | 000,005,312 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI [2009/08/18 11:04:12 | 000,469,060 | ---- | C] () -- C:\WINDOWS\System32\perfh00C.dat [2009/08/18 11:04:12 | 000,322,810 | ---- | C] () -- C:\WINDOWS\System32\perfi00C.dat [2009/08/18 11:04:12 | 000,076,052 | ---- | C] () -- C:\WINDOWS\System32\perfc00C.dat [2009/08/18 11:04:12 | 000,034,108 | ---- | C] () -- C:\WINDOWS\System32\perfd00C.dat [2009/08/18 11:04:06 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2009/08/18 11:04:05 | 000,401,712 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2009/08/18 11:04:05 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2009/08/18 11:04:05 | 000,062,992 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2009/08/18 11:04:05 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2009/08/18 11:04:04 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2009/08/18 11:04:04 | 000,004,562 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat [2009/08/18 11:04:04 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat [2009/08/18 11:04:02 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2009/08/18 11:04:02 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2009/08/18 11:04:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2009/08/18 11:03:58 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin [2009/08/18 09:19:07 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2009/08/18 09:14:51 | 000,021,892 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [color=#E56717]========== LOP Check ==========[/color] [2009/08/18 12:03:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ralink Driver [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< DRV - [2004/11/30 12:10:00 | 000,161,792 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sdpiosys.sys -- (sdpiosys) >[/color] Invalid Switch: 30 12:10:00 | 000,161,792 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\sdpiosys.sys -- (sdpiosys) [color=#A23BEC]< O2 - BHO: (no name) - {02C1B427-6EBB-4405-8DAA-11C2DCB9112e} - File not found >[/color] [color=#A23BEC]< O2 - BHO: (no name) - {05552263-DC16-45EC-A825-518579DADB92} - File not found >[/color] [color=#A23BEC]< O2 - BHO: (HabboFR Toolbar) - {08cb157c-3862-4b24-b113-3a5aa5cf5c47} - File not found >[/color] [color=#A23BEC]< O2 - BHO: (freetrialdownloads-FR Toolbar) - {3d681970-489b-4c1c-a2ad-29dba7bc3a31} - File not found >[/color] [color=#A23BEC]< O2 - BHO: (Softonic_France Toolbar) - {4daac69c-cba7-45e2-9bc8-1044483d3352} - File not found >[/color] [color=#A23BEC]< O2 - BHO: (Eazel-FR Toolbar) - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} - File not found >[/color] [color=#A23BEC]< O2 - BHO: (bc33a3da) - {AA619383-78A1-F033-DBE4-D881E5D13347} - File not found >[/color] [color=#A23BEC]< O2 - BHO: (SearchElf 1.2 Toolbar) - {f4e6547e-325b-403c-a3bb-ad29ed37a92f} - File not found >[/color] [color=#A23BEC]< O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found. >[/color] [color=#A23BEC]< O3 - HKLM\..\Toolbar: (HabboFR Toolbar) - {08cb157c-3862-4b24-b113-3a5aa5cf5c47} - File not found >[/color] [color=#A23BEC]< O3 - HKLM\..\Toolbar: (freetrialdownloads-FR Toolbar) - {3d681970-489b-4c1c-a2ad-29dba7bc3a31} - File not found >[/color] [color=#A23BEC]< O3 - HKLM\..\Toolbar: (Softonic_France Toolbar) - {4daac69c-cba7-45e2-9bc8-1044483d3352} - File not found >[/color] [color=#A23BEC]< O3 - HKLM\..\Toolbar: (Eazel-FR Toolbar) - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} - File not found >[/color] [color=#A23BEC]< O3 - HKLM\..\Toolbar: (SearchElf 1.2 Toolbar) - {f4e6547e-325b-403c-a3bb-ad29ed37a92f} - File not found >[/color] [color=#A23BEC]< O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. >[/color] [color=#A23BEC]< O3 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..\Toolbar\WebBrowser: (HabboFR Toolbar) - {08CB157C-3862-4B24-B113-3A5AA5CF5C47} - File not found >[/color] [color=#A23BEC]< O3 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..\Toolbar\WebBrowser: (freetrialdownloads-FR Toolbar) - {3D681970-489B-4C1C-A2AD-29DBA7BC3A31} - File not found >[/color] [color=#A23BEC]< O3 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..\Toolbar\WebBrowser: (Softonic_France Toolbar) - {4DAAC69C-CBA7-45E2-9BC8-1044483D3352} - File not found >[/color] [color=#A23BEC]< O3 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..\Toolbar\WebBrowser: (Eazel-FR Toolbar) - {A8F9752D-E2B8-4E7A-86B5-499F4330E2FE} - File not found >[/color] [color=#A23BEC]< O4 - HKLM\..\Run: [ORAHSSSessionManager] File not found >[/color] [color=#A23BEC]< O4 - HKLM\..\Run: [snp2uvc] File not found >[/color] [color=#A23BEC]< O4 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..\Run: [EA Core] File not found >[/color] [color=#A23BEC]< O4 - HKU\S-1-5-21-2146320110-794938869-2925267354-1007\..\Run: [WebcamMaxAutoRun] File not found >[/color] [color=#A23BEC]< O4 - Startup: C:\Documents and Settings\Mael\Menu Démarrer\Programmes\Démarrage\LimeWire On Startup.lnk = File not found >[/color] [color=#A23BEC]< O4 - Startup: C:\Documents and Settings\Mael\Menu Démarrer\Programmes\Démarrage\Notification de cadeaux MSN.lnk = File not found >[/color] [color=#A23BEC]< O20 - AppInit_DLLs: (c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csseqchk32.dll c:\windows\system32\csse >[/color] [color=#A23BEC]< O20 - AppInit_DLLs: (c:\windows\system32\csseqchk32.dll) - File not found >[/color] [color=#A23BEC]< O20 - AppInit_DLLs: (c:\windows\system32\csseqchk32.dll) - File not found >[/color] [color=#A23BEC]< O33 - MountPoints2\{4a201048-c17c-11df-bd8b-e7ed7a9b5adb}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ >[/color] [color=#A23BEC]< O33 - MountPoints2\{4a201048-c17c-11df-bd8b-e7ed7a9b5adb}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ >[/color] [color=#A23BEC]< O33 - MountPoints2\{4df5a81c-4572-11df-bd0a-0025d353be93}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ >[/color] [color=#A23BEC]< O33 - MountPoints2\{4df5a81c-4572-11df-bd0a-0025d353be93}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ >[/color] [color=#A23BEC]< O33 - MountPoints2\{62681ef4-296c-11e0-bdc5-e537b8b82e01}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ >[/color] [color=#A23BEC]< O33 - MountPoints2\{62681ef4-296c-11e0-bdc5-e537b8b82e01}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ >[/color] [color=#A23BEC]< O33 - MountPoints2\{a051d0d4-3155-11e0-bdcd-c8bb8c25963e}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ >[/color] [color=#A23BEC]< O33 - MountPoints2\{a051d0d4-3155-11e0-bdcd-c8bb8c25963e}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ >[/color] [color=#A23BEC]< O33 - MountPoints2\{a1279f61-13ee-11df-bcab-0025d353be93}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ >[/color] [color=#A23BEC]< O33 - MountPoints2\{a1279f61-13ee-11df-bcab-0025d353be93}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ >[/color] [color=#A23BEC]< O33 - MountPoints2\{b05cc236-0ffe-11e0-bdae-a71e5442ec60}\Shell\AutoRun\command - "" = F:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ >[/color] [color=#A23BEC]< O33 - MountPoints2\{b05cc236-0ffe-11e0-bdae-a71e5442ec60}\Shell\open\command - "" = F:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ >[/color] [color=#A23BEC]< O33 - MountPoints2\{e6aa81b3-11ee-11e0-bdb2-9542a65dbcca}\Shell\AutoRun\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ >[/color] [color=#A23BEC]< O33 - MountPoints2\{e6aa81b3-11ee-11e0-bdb2-9542a65dbcca}\Shell\open\command - "" = E:\driver\usb\–¼‡‘Š•†‘Í€ŒŽ >[/color] [color=#A23BEC]< SafeBootMin: 98253591.sys - File not found >[/color] [color=#A23BEC]< SafeBootNet: 98253591.sys - File not found >[/color] [color=#A23BEC]< [24 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] >[/color] [color=#A23BEC]< [1 C:\WINDOWS\Fonts\*.tmp files -> C:\WINDOWS\Fonts\*.tmp -> ] >[/color] [color=#A23BEC]< [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] >[/color] [color=#A23BEC]< [1 C:\Documents and Settings\Parent\*.tmp files -> C:\Documents and Settings\Parent\*.tmp -> ] >[/color] [color=#A23BEC]< >[/color] [color=#A23BEC]< :Files >[/color] [color=#A23BEC]< C:\WINDOWS\system32\drivers\sdpiosys.sys >[/color] [color=#A23BEC]< c:\windows\system32\csseqchk32.dll >[/color] [color=#A23BEC]< C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1cc682775c9da75.job >[/color] [color=#A23BEC]< C:\WINDOWS\System32\470852575 >[/color] [color=#A23BEC]< C:\WINDOWS\System32\1010469107 >[/color] [color=#A23BEC]< C:\WINDOWS\System32\sl2112958797 >[/color] [color=#A23BEC]< >[/color] [color=#A23BEC]< :Commands >[/color] [color=#A23BEC]< [emptytemp] >[/color] [color=#A23BEC]< [EMPTYFLASH] >[/color] < End of report >

jeanmimigab · le 05 Sep 2011 19:41

hello,

tu t'es trompés, lis bien mes instructions entièrement car tu as cliqué sur "analyse" et non sur "correction"

jeanmimigab a écrit:re,

* Cliques sur l'icône "Correction" (en haut à gauche) .

recommence la manip en cliquant sur correction et postes le rapport qui s'ouvre stp :wink:

Dr.w4n1x · le 06 Sep 2011 10:55

Bonjour , d'abord je vous présente mes plus sincère excuses ;
J'ai fait la réinstallation de Windows XP via le live CD et ensuite j'ai installer Xubuntu en seul et unique système d'exploitation :oops:

Voila .
Merci du temps consacrer a mon topic (je rappelle que tu ne m'as pas été inutile car bien au contraire j'avais encore des virus , mais je me suis rendu compte que là , je n'en avais plus . Alors j'ai ma décision) : réinstallation du système .

-Merci a vous deux Raptor14 et a Jeanmimigab je ne vous oublirais pas , je n'utilisais plus mon pc depuis au moins 10mois a cause de tout ces virus et maintenant je peut vous dire que je profite de mon ordinateur pour me conssacrer a ma passion :
le language Javascript , le C++ , dévellopement de jeux (.

..) .

Je reviendrais souvent en cas de problèmes . :wink:

-Dr.w4n1x

jeanmimigab · le 06 Sep 2011 16:28

hello,

Tu n'as pas a t'excuser, c'est ton choix et ça nous a quand même fais plaisir de t'aider :wink:

Bon courage pour la prog, habitué au batch je me suis mis au C et je rame un peu, mais bon ça viendra :lol:

@++

Comment remettre a zéro mon pc • page 4

Re: Comment remettre a zéro mon pc

Re: Comment remettre a zéro mon pc

Re: Comment remettre a zéro mon pc

Re: Comment remettre a zéro mon pc

Re: Comment remettre a zéro mon pc

Re: Comment remettre a zéro mon pc

Re: Comment remettre a zéro mon pc

Re: Comment remettre a zéro mon pc

Re: Comment remettre a zéro mon pc

Re: Comment remettre a zéro mon pc

Re: Comment remettre a zéro mon pc

Re: Comment remettre a zéro mon pc

Re: Comment remettre a zéro mon pc

Re: Comment remettre a zéro mon pc

Sujets similaires

Qui est en ligne