ANTIMALWARE DOCTOR

Fermé
lasource37 Messages postés 225 Date d'inscription lundi 21 décembre 2009 Statut Membre Dernière intervention 19 mai 2015 - 2 mars 2011 à 00:27
 Utilisateur anonyme - 6 mars 2011 à 20:57
Bonjour, il y a environ 1h j'ai reçu ce virus. j'ai téléchargé malwarebytes antimalware, fais les mises a jours mais lors de l'analyse, le logiciel plante au bout d'un moment. safait plusieurs fois que j'essaye, j'ai meme redémarré mon pc. Merci de m'aider si vous pouvez :)
A voir également:
  • ANTIMALWARE DOCTOR
  • Pc doctor - Télécharger - Optimisation
  • Disk doctor - Télécharger - Récupération de données
  • Car doctor - Télécharger - Vie quotidienne
  • Antimalware - Télécharger - Antivirus & Antimalwares
  • Spyware doctor - Télécharger - Antivirus & Antimalwares

222 réponses

Utilisateur anonyme
3 mars 2011 à 00:01
et en attendant si tu arrives a faire ca avec celui-ci...

https://forums.commentcamarche.net/forum/affich-21044049-antimalware-doctor?page=7#167
0
lasource37 Messages postés 225 Date d'inscription lundi 21 décembre 2009 Statut Membre Dernière intervention 19 mai 2015
3 mars 2011 à 04:29
D'accord je fais sa demain car je ne peut pas actuellement. a bientot
0
Utilisateur anonyme
3 mars 2011 à 04:47
ok
0
lasource37 Messages postés 225 Date d'inscription lundi 21 décembre 2009 Statut Membre Dernière intervention 19 mai 2015
3 mars 2011 à 14:51
Bonjour je commence a faire sa.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
lasource37 Messages postés 225 Date d'inscription lundi 21 décembre 2009 Statut Membre Dernière intervention 19 mai 2015
3 mars 2011 à 15:06
je viens de metrte otlpe a partir d'un pc sain sur un cd vierge apres j'ai mis le cd sur le pc infecté, la ya une fenetre reatogo qui s'ouvre et je ne sais pas quoi faire apres.
0
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 2 274
3 mars 2011 à 15:08
une fois le bureau de reatogo chargé , tu lances OTLPE , l'icone jaune

* Double-click sur l'icone OTLPE
* Quand demandé "Do you wish to load the remote registry", select Yes
* Quand demandé "Do you wish to load remote user profile(s) for scanning", select Yes
* Vérifier que "Automatically Load All Remaining Users" est sélectionné et press OK

* Sous Custom Scan box copie_colle le contenu en gras ci dessous:

netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%SYSTEMDRIVE%\*.*
%SYSTEMDRIVE%\*.exe
%PROGRAMFILES%\*.*
%PROGRAMFILES%\*.
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
explorer.exe
svchost.exe
userinit.exe
qmgr.dll
ws2_32.dll
proquota.exe
imm32.dll
kernel32.dll
ndis.sys
autochk.exe
spoolsv.exe
xmlprov.dll
ntmssvc.dll
mswsock.dll
Beep.SYS
ntfs.sys
termsrv.dll
sfcfiles.dll
st3shark.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
c:\$recycle.bin\*.* /s


* clic Run Scan pour démarrer le scan.
* une fois terminé , le fichier se trouve là C:\OTL.txt
* copie_colle le contenu dans ta prochaine réponse
0
lasource37 Messages postés 225 Date d'inscription lundi 21 décembre 2009 Statut Membre Dernière intervention 19 mai 2015
3 mars 2011 à 15:22
* Quand demandé "Do you wish to load the remote registry", select Yes
* Quand demandé "Do you wish to load remote user profile(s) for scanning", select Yes
* Vérifier que "Automatically Load All Remaining Users" est sélectionné et press OK

* Sous Custom Scan box copie_colle le contenu en gras ci dessous:



J'ai lancé reatogo et ensuite otlpe mais je ne vois pas ou c'est
0
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 2 274
3 mars 2011 à 15:28
0
lasource37 Messages postés 225 Date d'inscription lundi 21 décembre 2009 Statut Membre Dernière intervention 19 mai 2015
3 mars 2011 à 15:32
sa me fait pas sa quand je lance reatogo et otlpe ensuite jai 2 fenetre qui s'affiche une pour chacun des programmes
0
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 2 274
3 mars 2011 à 15:33
as tu redemarré le pc à partir du cd ?
0
lasource37 Messages postés 225 Date d'inscription lundi 21 décembre 2009 Statut Membre Dernière intervention 19 mai 2015
Modifié par lasource37 le 3/03/2011 à 15:35
je ne c pas comment faire sa :s et sur le cd se t rouve reatogo
0
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 2 274
3 mars 2011 à 15:41
ok

laisse le cd dans le lecteur
redemarre le pc
au tout début du lancement, tu devrais avoir un message "appuyer sur une touche pour demarrer à partir du pc"

ce que tu fais

tu suis ensuite la procédure au dessus
0
lasource37 Messages postés 225 Date d'inscription lundi 21 décembre 2009 Statut Membre Dernière intervention 19 mai 2015
3 mars 2011 à 15:43
D'accord
0
lasource37 Messages postés 225 Date d'inscription lundi 21 décembre 2009 Statut Membre Dernière intervention 19 mai 2015
3 mars 2011 à 15:55
quand je redémare mon pc ya eu la barre de chargement de reatogo mai apres ya eu un ecran bleu clair qui c bloqué. la j'ai redémarré mon pc est il bug ya un écran noir et jpeut plus bouger la souris aider moi sa fait la meme chose en mode sans echec>.
0
lasource37 Messages postés 225 Date d'inscription lundi 21 décembre 2009 Statut Membre Dernière intervention 19 mai 2015
3 mars 2011 à 16:07
je suis actuellement sur un autre pc
0
lasource37 Messages postés 225 Date d'inscription lundi 21 décembre 2009 Statut Membre Dernière intervention 19 mai 2015
3 mars 2011 à 16:28
J'ai reussi a relancer mon pc avec reatogo maintenant sur mon pc infecté il y a un nouvel configuration du bureau avec reatogo en fond d'écran. que dois je faire maintenant ? merci
0
lasource37 Messages postés 225 Date d'inscription lundi 21 décembre 2009 Statut Membre Dernière intervention 19 mai 2015
3 mars 2011 à 17:53
OTL logfile created on: 3/3/2011 5:31:04 PM - Run
OTLPE by OldTimer - Version 3.1.44.3 Folder = X:\Programs\OTLPE
Windows 7 Ultimate (Version = 6.1.7600) - Type = System
Internet Explorer (Version = 8.0.7600.16385)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 87.00% Memory free
3.00 Gb Paging File | 3.00 Gb Available in Paging File | 96.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = E: | %SystemRoot% = E:\Windows | %ProgramFiles% = E:\Program Files
Drive C: | 100.00 Mb Total Space | 65.70 Mb Free Space | 65.70% Space Free | Partition Type: NTFS
Drive D: | 465.76 Gb Total Space | 257.71 Gb Free Space | 55.33% Space Free | Partition Type: NTFS
Drive E: | 139.64 Gb Total Space | 11.80 Gb Free Space | 8.45% Space Free | Partition Type: NTFS
Drive F: | 3.72 Gb Total Space | 1.67 Gb Free Space | 44.76% Space Free | Partition Type: FAT32
Drive X: | 284.08 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet001

[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2011/03/01 13:45:49 | 000,407,336 | ---- | M] (Valve Corporation) [On_Demand] -- E:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2010/10/15 18:40:40 | 000,037,664 | ---- | M] (Apple Inc.) [Auto] -- E:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/05/27 09:23:22 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2010/01/26 10:45:08 | 000,243,056 | ---- | M] (CybelSoft) [On_Demand] -- E:\Program Files\ma-config.com\maconfservice.exe -- (maconfservice)
SRV - [2009/09/27 10:48:00 | 000,240,232 | ---- | M] (NVIDIA Corporation) [Auto] -- E:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2009/08/04 11:29:54 | 000,219,360 | ---- | M] (DeviceVM, Inc.) [Auto] -- E:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe -- (BCUService)
SRV - [2009/07/13 20:16:21 | 000,185,856 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\wwansvc.dll -- (WwanSvc)
SRV - [2009/07/13 20:16:17 | 000,151,552 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\wbiosrvc.dll -- (WbioSrvc)
SRV - [2009/07/13 20:16:17 | 000,119,808 | ---- | M] (Microsoft Corporation) [Auto] -- E:\Windows\System32\umpo.dll -- (Power)
SRV - [2009/07/13 20:16:16 | 000,037,376 | ---- | M] (Microsoft Corporation) [Auto] -- E:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2009/07/13 20:16:15 | 000,053,760 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\sppuinotify.dll -- (sppuinotify)
SRV - [2009/07/13 20:16:13 | 000,043,520 | ---- | M] (Microsoft Corporation) [Auto] -- E:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper)
SRV - [2009/07/13 20:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/13 20:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/13 20:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\pnrpsvc.dll -- (PNRPsvc)
SRV - [2009/07/13 20:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\pnrpsvc.dll -- (p2pimsvc)
SRV - [2009/07/13 20:16:12 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\provsvc.dll -- (HomeGroupProvider)
SRV - [2009/07/13 20:16:12 | 000,020,480 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg)
SRV - [2009/07/13 20:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto] -- E:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/07/13 20:15:36 | 000,194,560 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\ListSvc.dll -- (HomeGroupListener)
SRV - [2009/07/13 20:15:21 | 000,797,696 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2009/07/13 20:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto] -- E:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2009/07/13 20:15:10 | 000,218,624 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\defragsvc.dll -- (defragsvc)
SRV - [2009/07/13 20:14:59 | 000,076,800 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\bdesvc.dll -- (BDESVC)
SRV - [2009/07/13 20:14:58 | 000,088,064 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\AxInstSv.dll -- (AxInstSV)
SRV - [2009/07/13 20:14:53 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\appidsvc.dll -- (AppIDSvc)
SRV - [2009/07/13 20:14:29 | 003,179,520 | ---- | M] (Microsoft Corporation) [Auto] -- E:\Windows\System32\sppsvc.exe -- (sppsvc)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | On_Demand] -- -- (gdrv)
DRV - File not found [File_System | Auto] -- -- (eamonm)
DRV - [2010/12/20 12:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2010/12/08 05:53:18 | 000,841,912 | ---- | M] (<Turtle Entertainment>) [Kernel | Auto] -- E:\Windows\System32\drivers\ESLWireACD.sys -- (ESLWireAC)
DRV - [2010/03/02 04:53:42 | 000,024,504 | ---- | M] (Turtle Entertainment GmbH) [Kernel | On_Demand] -- E:\Windows\System32\drivers\ESLvnic.sys -- (ESLvnic1)
DRV - [2010/02/11 07:28:26 | 000,014,336 | ---- | M] (CybelSoft) [Kernel | On_Demand] -- E:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys -- (driverhardwarev2)
DRV - [2009/12/11 02:44:02 | 000,133,720 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- E:\Windows\System32\drivers\ksecpkg.sys -- (KSecPkg)
DRV - [2009/09/27 18:12:21 | 009,509,832 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2009/08/25 06:26:36 | 002,758,240 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- E:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2009/08/21 15:24:03 | 000,066,592 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2009/08/13 03:10:36 | 000,096,368 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot] -- E:\Windows\System32\drivers\jraid.sys -- (JRAID)
DRV - [2009/07/30 06:58:26 | 000,187,392 | ---- | M] (Realtek ) [Kernel | On_Demand] -- E:\Windows\System32\drivers\Rt86win7.sys -- (RTL8167)
DRV - [2009/07/13 20:26:21 | 000,015,952 | ---- | M] (CMD Technology, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\cmdide.sys -- (cmdide)
DRV - [2009/07/13 20:26:17 | 000,297,552 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\adpahci.sys -- (adpahci)
DRV - [2009/07/13 20:26:15 | 000,422,976 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\adp94xx.sys -- (adp94xx)
DRV - [2009/07/13 20:26:15 | 000,159,312 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\amdsbs.sys -- (amdsbs)
DRV - [2009/07/13 20:26:15 | 000,146,512 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\adpu320.sys -- (adpu320)
DRV - [2009/07/13 20:26:15 | 000,086,608 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\arcsas.sys -- (arcsas)
DRV - [2009/07/13 20:26:15 | 000,079,952 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\amdsata.sys -- (amdsata)
DRV - [2009/07/13 20:26:15 | 000,076,368 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\arc.sys -- (arc)
DRV - [2009/07/13 20:26:15 | 000,023,616 | ---- | M] (Advanced Micro Devices) [Kernel | Boot] -- E:\Windows\System32\drivers\amdxata.sys -- (amdxata)
DRV - [2009/07/13 20:26:15 | 000,014,400 | ---- | M] (Acer Laboratories Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\aliide.sys -- (aliide)
DRV - [2009/07/13 20:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\nvstor.sys -- (nvstor)
DRV - [2009/07/13 20:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\nvraid.sys -- (nvraid)
DRV - [2009/07/13 20:20:44 | 000,044,624 | ---- | M] (IBM Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\nfrd960.sys -- (nfrd960)
DRV - [2009/07/13 20:20:37 | 000,089,168 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\lsi_sas.sys -- (LSI_SAS)
DRV - [2009/07/13 20:20:36 | 000,332,352 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\iaStorV.sys -- (iaStorV)
DRV - [2009/07/13 20:20:36 | 000,235,584 | ---- | M] (LSI Corporation, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\MegaSR.sys -- (MegaSR)
DRV - [2009/07/13 20:20:36 | 000,096,848 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2009/07/13 20:20:36 | 000,095,824 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\lsi_fc.sys -- (LSI_FC)
DRV - [2009/07/13 20:20:36 | 000,054,864 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\lsi_sas2.sys -- (LSI_SAS2)
DRV - [2009/07/13 20:20:36 | 000,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\iirsp.sys -- (iirsp)
DRV - [2009/07/13 20:20:36 | 000,030,800 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\megasas.sys -- (megasas)
DRV - [2009/07/13 20:20:36 | 000,013,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- E:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy)
DRV - [2009/07/13 20:20:28 | 000,453,712 | ---- | M] (Emulex) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\elxstor.sys -- (elxstor)
DRV - [2009/07/13 20:20:28 | 000,070,720 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\djsvs.sys -- (aic78xx)
DRV - [2009/07/13 20:20:28 | 000,067,152 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\HpSAMD.sys -- (HpSAMD)
DRV - [2009/07/13 20:20:28 | 000,046,160 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- E:\Windows\System32\drivers\fsdepends.sys -- (FsDepends)
DRV - [2009/07/13 20:19:11 | 000,141,904 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\vsmraid.sys -- (vsmraid)
DRV - [2009/07/13 20:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\vmbus.sys -- (vmbus)
DRV - [2009/07/13 20:19:10 | 000,159,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\vhdmp.sys -- (vhdmp)
DRV - [2009/07/13 20:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- E:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2009/07/13 20:19:10 | 000,032,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- E:\Windows\System32\drivers\vdrvroot.sys -- (vdrvroot)
DRV - [2009/07/13 20:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\storvsc.sys -- (storvsc)
DRV - [2009/07/13 20:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- E:\Windows\System32\drivers\wimmount.sys -- (WIMMount)
DRV - [2009/07/13 20:19:10 | 000,016,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\viaide.sys -- (viaide)
DRV - [2009/07/13 20:19:04 | 001,383,488 | ---- | M] (QLogic Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\ql2300.sys -- (ql2300)
DRV - [2009/07/13 20:19:04 | 000,173,648 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- E:\Windows\System32\drivers\rdyboost.sys -- (rdyboost)
DRV - [2009/07/13 20:19:04 | 000,106,064 | ---- | M] (QLogic Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\ql40xx.sys -- (ql40xx)
DRV - [2009/07/13 20:19:04 | 000,077,888 | ---- | M] (Silicon Integrated Systems) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\sisraid4.sys -- (SiSRaid4)
DRV - [2009/07/13 20:19:04 | 000,043,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- E:\Windows\System32\drivers\pcw.sys -- (pcw)
DRV - [2009/07/13 20:19:04 | 000,040,016 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\SiSRaid2.sys -- (SiSRaid2)
DRV - [2009/07/13 20:19:04 | 000,021,072 | ---- | M] (Promise Technology) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\stexstor.sys -- (stexstor)
DRV - [2009/07/13 20:17:54 | 000,369,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- E:\Windows\System32\drivers\cng.sys -- (CNG)
DRV - [2009/07/13 19:57:25 | 000,272,128 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand] -- E:\Windows\System32\Drivers\Brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2009/07/13 19:02:41 | 000,018,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\rdpbus.sys -- (rdpbus)
DRV - [2009/07/13 19:01:41 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | System] -- E:\Windows\System32\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV - [2009/07/13 18:55:00 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
DRV - [2009/07/13 18:53:51 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | System] -- E:\Windows\System32\drivers\wfplwf.sys -- (WfpLwf)
DRV - [2009/07/13 18:52:44 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\ndiscap.sys -- (NdisCap)
DRV - [2009/07/13 18:52:02 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\vwifibus.sys -- (vwifibus)
DRV - [2009/07/13 18:52:00 | 000,163,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\1394ohci.sys -- (1394ohci)
DRV - [2009/07/13 18:51:35 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\umpass.sys -- (UmPass)
DRV - [2009/07/13 18:51:23 | 000,080,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\USBAUDIO.sys -- (usbaudio) Pilote USB audio (WDM)
DRV - [2009/07/13 18:51:08 | 000,004,096 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV - [2009/07/13 18:46:55 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\MTConfig.sys -- (MTConfig)
DRV - [2009/07/13 18:45:26 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\CompositeBus.sys -- (CompositeBus)
DRV - [2009/07/13 18:36:52 | 000,050,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\drivers\appid.sys -- (AppID)
DRV - [2009/07/13 18:33:50 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\scfilter.sys -- (scfilter)
DRV - [2009/07/13 18:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\vms3cap.sys -- (s3cap)
DRV - [2009/07/13 18:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\VMBusHID.sys -- (VMBusHID)
DRV - [2009/07/13 18:24:05 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | System] -- E:\Windows\System32\drivers\discache.sys -- (discache)
DRV - [2009/07/13 18:16:36 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\acpipmi.sys -- (AcpiPmi)
DRV - [2009/07/13 18:11:04 | 000,052,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\amdppm.sys -- (AmdPPM)
DRV - [2009/07/13 17:54:14 | 000,026,624 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/13 17:53:33 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand] -- E:\Windows\System32\Drivers\BrUsbMdm.sys -- (BrUsbMdm)
DRV - [2009/07/13 17:53:33 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand] -- E:\Windows\System32\Drivers\BrUsbSer.sys -- (BrUsbSer)
DRV - [2009/07/13 17:53:32 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand] -- E:\Windows\System32\Drivers\BrSerWdm.sys -- (BrSerWdm)
DRV - [2009/07/13 17:53:28 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\BrFiltLo.sys -- (BrFiltLo)
DRV - [2009/07/13 17:53:28 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\BrFiltUp.sys -- (BrFiltUp)
DRV - [2009/07/13 17:02:49 | 000,229,888 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\b57nd60x.sys -- (b57nd60x)
DRV - [2009/07/13 17:02:48 | 003,100,160 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\evbdx.sys -- (ebdrv)
DRV - [2009/07/13 17:02:48 | 000,430,080 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\bxvbdx.sys -- (b06bdrv)
DRV - [2008/03/10 08:46:24 | 000,873,472 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand] -- E:\Windows\System32\drivers\WlanUZAG.sys -- (SA760V32)
DRV - [2008/03/10 08:46:24 | 000,020,736 | ---- | M] (ZDC., Inc. (ZDC)) [Kernel | On_Demand] -- E:\Windows\System32\ZDCndis5.sys -- (ZDCNDIS5)
DRV - [2008/02/18 07:21:34 | 000,104,960 | ---- | M] (Saitek) [Kernel | On_Demand] -- E:\Windows\System32\drivers\SaiK0728.sys -- (SaiK0728)
DRV - [2005/08/17 00:46:26 | 000,093,872 | ---- | M] (MCCI) [Kernel | On_Demand] -- E:\Windows\System32\drivers\sscdmdm.sys -- (sscdmdm)
DRV - [2005/08/17 00:46:20 | 000,008,272 | ---- | M] (MCCI) [Kernel | On_Demand] -- E:\Windows\System32\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV - [2005/08/17 00:45:00 | 000,058,352 | ---- | M] (MCCI) [Kernel | On_Demand] -- E:\Windows\System32\drivers\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]



IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - File not found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\Home_ON_E\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = https://www.msn.com/fr-fr?ocid=iehp
IE - HKU\Home_ON_E\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr
IE - HKU\Home_ON_E\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = EF BE D3 20 C4 8F CB 01 [binary data]
IE - HKU\Home_ON_E\..\URLSearchHook: {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - E:\Program Files\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.)
IE - HKU\Home_ON_E\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Home_ON_E\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local




[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.defaultenginename: "AVG Secure Search"
FF - prefs.js..browser.search.selectedEngine: "AVG Secure Search"
FF - prefs.js..browser.startup.homepage: "www.google.fr"
FF - prefs.js..extensions.enabledItems: illimitux@illimitux.net:4.0b
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:1.5.4.20081105
FF - prefs.js..keyword.URL: "https://search.avg.com/route/?d=4b3207fc&v=6.010.006.004&i=23&tp=ab&iy=b&ychte=fr&lng=fr&q="


FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/01/16 04:18:23 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/01/16 04:18:23 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

[2009/12/23 07:09:49 | 000,000,000 | ---D | M] (No name found) -- E:\Users\Home\AppData\Roaming\Mozilla\Extensions
[2011/03/01 20:49:22 | 000,000,000 | ---D | M] (No name found) -- E:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\in172zqd.default\extensions
[2010/05/06 09:15:42 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- E:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\in172zqd.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2010/02/26 05:38:24 | 000,000,000 | ---D | M] (Illimitux) -- E:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\in172zqd.default\extensions\illimitux@illimitux.net
[2011/03/01 20:49:22 | 000,000,000 | ---D | M] (No name found) -- E:\Program Files\Mozilla Firefox\extensions
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}
File not found (No name found) -- C:\USERS\HOME\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IN172ZQD.DEFAULT\EXTENSIONS\{635ABD67-4FE9-1B23-4F01-E679FA7484C1}
File not found (No name found) -- C:\USERS\HOME\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\IN172ZQD.DEFAULT\EXTENSIONS\ILLIMITUX@ILLIMITUX.NET
[2010/09/14 06:10:38 | 000,001,516 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml
[2010/09/14 06:10:38 | 000,001,822 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml
[2010/09/14 06:10:38 | 000,000,757 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml
[2010/09/14 06:10:38 | 000,001,426 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml
[2010/09/14 06:10:38 | 000,000,956 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml

O1 HOSTS File: ([2009/06/10 16:39:37 | 000,000,824 | ---- | M]) - E:\Windows\System32\drivers\etc\hosts
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - File not found
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - File not found
O3 - HKU\Home_ON_E\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - File not found
O4 - HKLM..\Run: [BCU] E:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)
O4 - HKLM..\Run: [JMB36X IDE Setup] E:\Windows\RaidTool\xInsIDE.exe ()
O4 - HKLM..\Run: [RtHDVCpl] E:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SaiVolume] E:\Program Files\Saitek\CyborgKeyboard\SaiVolume.exe (Saitek)
O4 - HKU\Home_ON_E..\Run: [ESL Wire] E:\Program Files\EslWire\wire.exe (Turtle Entertainment GmbH)
O4 - HKU\Home_ON_E..\Run: [RESTART_STICKY_NOTES] E:\Windows\System32\StikyNot.exe (Microsoft Corporation)
O4 - HKU\Home_ON_E..\Run: [RGSC] File not found
O4 - HKU\Home_ON_E..\Run: [Steam] E:\Program Files\Steam\Steam.exe (Valve Corporation)
O4 - HKLM..\RunOnce: [AvgUninstallURL] E:\Windows\System32\cmd.exe (Microsoft Corporation)
O4 - HKU\LocalService_ON_E..\RunOnce: [mctadmin] E:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\NetworkService_ON_E..\RunOnce: [mctadmin] E:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - Startup: E:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE Gamer HUD Lite.lnk ()
O4 - Startup: E:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9 - Extra Button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - File not found
O9 - Extra 'Tools' menuitem : PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - E:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - E:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - E:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O30 - LSA: Security Packages - (pku2u) - E:\Windows\System32\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (livessp) - E:\Windows\System32\livessp.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 16:42:20 | 000,000,024 | ---- | M] () - E:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 06:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{0df905be-8c0c-11df-a4cb-00241dde4df1}\Shell - "" = AutoRun
O33 - MountPoints2\{0df905be-8c0c-11df-a4cb-00241dde4df1}\Shell\AutoRun\command - "" = F:\LaunchU3.exe
O33 - MountPoints2\{978da26c-efb8-11de-8420-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{978da26c-efb8-11de-8420-806e6f6e6963}\Shell\AutoRun\command - "" = D:\reatogoMenu.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2011/03/03 09:08:55 | 002,193,408 | ---- | C] (OldTimer Tools) -- E:\Users\Home\Desktop\OTLPE.exe
[2011/03/02 07:10:09 | 000,000,000 | ---D | C] -- E:\Program Files\SanityCheck
[2011/03/02 06:32:29 | 000,000,000 | ---D | C] -- E:\Program Files\SEAF
[2011/03/02 06:20:00 | 000,000,000 | R--D | C] -- E:\32788R22FWJFW
[2011/03/02 06:15:15 | 000,000,000 | ---D | C] -- E:\Users\Home\Desktop\SysProt
[2011/03/01 22:17:13 | 000,000,000 | -HSD | C] -- E:\Config.Msi
[2011/03/01 19:16:14 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- E:\Windows\System32\drivers\mbamswissarmy.sys
[2011/03/01 19:16:11 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- E:\Windows\System32\drivers\mbam.sys
[2011/03/01 18:37:53 | 000,000,000 | ---D | C] -- E:\Windows\System32\RK_Quarantine
[2011/03/01 16:01:28 | 000,000,000 | ---D | C] -- E:\Users\Home\AppData\Roaming\Malwarebytes
[2011/03/01 16:01:17 | 000,000,000 | ---D | C] -- E:\Program Files\Malwarebytes' Anti-Malware
[2011/03/01 15:56:30 | 000,118,784 | RHS- | C] (Zfmjnkpky Wzygsdcruph) -- E:\Users\Home\AppData\Roaming\wmvdspa6.dll
[2011/03/01 15:55:15 | 000,000,000 | ---D | C] -- E:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Antimalware Doctor
[2011/02/09 16:23:51 | 002,329,088 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\win32k.sys
[2011/02/09 16:23:45 | 000,716,800 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\jscript.dll
[2011/02/09 16:23:45 | 000,428,032 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\vbscript.dll
[2011/02/09 16:23:41 | 000,606,208 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\mstime.dll
[2011/02/09 16:23:41 | 000,599,040 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\msfeeds.dll
[2011/02/09 16:23:41 | 000,381,440 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\iedkcs32.dll
[2011/02/09 16:23:41 | 000,185,856 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\iepeers.dll
[2011/02/09 16:23:41 | 000,176,640 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\ieui.dll
[2011/02/09 16:23:40 | 001,638,912 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\mshtml.tlb
[2011/02/09 16:23:40 | 000,386,048 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\html.iec
[2011/02/09 16:23:40 | 000,064,512 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\msfeedsbs.dll
[2011/02/09 16:23:40 | 000,048,128 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\jsproxy.dll
[2011/02/09 16:23:40 | 000,044,544 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\licmgr10.dll
[2011/02/09 16:23:40 | 000,012,800 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\msfeedssync.exe
[2011/02/09 16:23:35 | 000,294,400 | ---- | C] (Adobe Systems Incorporated) -- E:\Windows\System32\atmfd.dll
[2011/02/09 16:23:35 | 000,034,304 | ---- | C] (Adobe Systems) -- E:\Windows\System32\atmlib.dll
[2011/02/09 16:23:34 | 003,901,824 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\ntoskrnl.exe
[2011/02/09 16:23:33 | 003,957,120 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\ntkrnlpa.exe
[2011/02/09 14:07:03 | 000,000,000 | ---D | C] -- E:\Users\Home\AppData\Local\Electronic Arts
[2011/02/09 14:07:00 | 000,000,000 | ---D | C] -- E:\Users\Home\Documents\Electronic Arts
[2011/02/09 14:06:33 | 000,000,000 | ---D | C] -- E:\Users\Home\Documents\Electrontic Arts

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2011/03/03 10:13:46 | 000,067,584 | --S- | M] () -- E:\Windows\bootstat.dat
[2011/03/03 10:12:07 | 2613,698,560 | -HS- | M] () -- E:\hiberfil.sys
[2011/03/03 09:43:17 | 000,014,416 | -H-- | M] () -- E:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/03/03 09:43:17 | 000,014,416 | -H-- | M] () -- E:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/03/03 09:25:00 | 000,001,072 | ---- | M] () -- E:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2129638292-2542384058-1853087902-1000UA.job
[2011/03/03 08:54:37 | 000,694,766 | ---- | M] () -- E:\Windows\System32\perfh00C.dat
[2011/03/03 08:54:37 | 000,606,992 | ---- | M] () -- E:\Windows\System32\perfh009.dat
[2011/03/03 08:54:37 | 000,127,478 | ---- | M] () -- E:\Windows\System32\perfc00C.dat
[2011/03/03 08:54:37 | 000,103,370 | ---- | M] () -- E:\Windows\System32\perfc009.dat
[2011/03/02 15:25:00 | 000,001,020 | ---- | M] () -- E:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2129638292-2542384058-1853087902-1000Core.job
[2011/03/02 07:33:37 | 000,003,367 | ---- | M] () -- E:\Users\Home\AppData\Local\Temp30.html
[2011/03/02 07:12:42 | 000,001,293 | ---- | M] () -- E:\Users\Home\AppData\Local\Temp1.html
[2011/03/02 07:10:09 | 000,000,920 | ---- | M] () -- E:\Users\Home\Desktop\SanityCheck.lnk
[2011/03/02 06:26:27 | 000,285,640 | ---- | M] () -- E:\Users\Home\Desktop\cijrYvJslP.zip
[2011/03/02 06:13:49 | 000,354,396 | ---- | M] () -- E:\Users\Home\Desktop\sysprot-antirootkit_sysprot_antirootkit_1.0.1.0_anglais_72180.zip
[2011/03/02 06:11:48 | 000,300,929 | ---- | M] () -- E:\Users\Home\Desktop\agibck70dl.exe
[2011/03/02 06:04:40 | 000,285,697 | ---- | M] () -- E:\Users\Home\Desktop\cij87cXh54.zip
[2011/03/02 06:02:16 | 000,300,971 | ---- | M] () -- E:\Users\Home\Desktop\newsecureapp70700.exe
[2011/03/02 05:23:32 | 004,278,549 | ---- | M] () -- E:\Users\Home\Desktop\ComboFix (1).exe
[2011/03/01 15:56:30 | 000,118,784 | RHS- | M] (Zfmjnkpky Wzygsdcruph) -- E:\Users\Home\AppData\Roaming\wmvdspa6.dll
[2011/03/01 15:55:15 | 000,001,125 | ---- | M] () -- E:\Users\Home\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Antimalware Doctor.lnk
[2011/02/09 21:18:05 | 000,289,256 | ---- | M] () -- E:\Windows\System32\FNTCACHE.DAT
[2011/02/02 13:48:58 | 002,193,408 | ---- | M] (OldTimer Tools) -- E:\Users\Home\Desktop\OTLPE.exe

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2011/03/02 07:33:37 | 000,003,367 | ---- | C] () -- E:\Users\Home\AppData\Local\Temp30.html
[2011/03/02 07:11:09 | 000,001,293 | ---- | C] () -- E:\Users\Home\AppData\Local\Temp1.html
[2011/03/02 07:10:09 | 000,000,920 | ---- | C] () -- E:\Users\Home\Desktop\SanityCheck.lnk
[2011/03/02 06:26:37 | 000,300,929 | ---- | C] () -- E:\Users\Home\Desktop\agibck70dl.exe
[2011/03/02 06:26:31 | 000,285,640 | ---- | C] () -- E:\Users\Home\Desktop\cijrYvJslP.zip
[2011/03/02 06:15:13 | 000,354,396 | ---- | C] () -- E:\Users\Home\Desktop\sysprot-antirootkit_sysprot_antirootkit_1.0.1.0_anglais_72180.zip
[2011/03/02 06:05:01 | 000,300,971 | ---- | C] () -- E:\Users\Home\Desktop\newsecureapp70700.exe
[2011/03/02 06:04:42 | 000,285,697 | ---- | C] () -- E:\Users\Home\Desktop\cij87cXh54.zip
[2011/03/02 05:23:35 | 004,278,549 | ---- | C] () -- E:\Users\Home\Desktop\ComboFix (1).exe
[2011/03/01 15:55:15 | 000,001,125 | ---- | C] () -- E:\Users\Home\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Antimalware Doctor.lnk
[2010/10/13 19:36:44 | 000,179,263 | ---- | C] () -- E:\Windows\System32\xlive.dll.cat
[2010/06/23 19:01:13 | 000,116,224 | ---- | C] () -- E:\Windows\System32\pdfcmnnt.dll
[2010/03/16 09:43:50 | 000,000,050 | ---- | C] () -- E:\Windows\MegaManager.INI
[2009/12/23 07:32:04 | 000,073,728 | ---- | C] () -- E:\Windows\System32\RtNicProp32.dll
[2009/12/23 07:30:18 | 000,146,432 | ---- | C] () -- E:\Windows\System32\APOMngr.DLL
[2009/12/23 07:30:18 | 000,072,704 | ---- | C] () -- E:\Windows\System32\CmdRtr.DLL
[2009/12/23 07:26:37 | 000,000,010 | ---- | C] () -- E:\Windows\GSetup.ini
[2009/08/02 18:21:54 | 000,197,912 | ---- | C] () -- E:\Windows\System32\physxcudart_20.dll
[2009/08/02 18:21:54 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelTraditionalChinese.dll
[2009/08/02 18:21:54 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelSwedish.dll
[2009/08/02 18:21:54 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelSpanish.dll
[2009/08/02 18:21:54 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelSimplifiedChinese.dll
[2009/08/02 18:21:54 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelPortugese.dll
[2009/08/02 18:21:54 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelKorean.dll
[2009/08/02 18:21:54 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelJapanese.dll
[2009/08/02 18:21:52 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelGerman.dll
[2009/08/02 18:21:52 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelFrench.dll
[2009/07/13 19:02:54 | 000,245,248 | ---- | C] () -- E:\Windows\System32\DShowRdpFilter.dll
[2009/07/13 18:51:43 | 000,073,728 | ---- | C] () -- E:\Windows\System32\BthpanContextHandler.dll
[2009/07/13 18:42:10 | 000,064,000 | ---- | C] () -- E:\Windows\System32\BWContextHandler.dll

[color=#E56717]========== LOP Check ==========[/color]

[2011/02/16 19:33:25 | 000,032,496 | ---- | M] () -- E:\Windows\Tasks\SCHEDLGU.TXT

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]


Invalid Environment Variable: %ALLUSERSPROFILE%\Application Data\*.

Invalid Environment Variable: %ALLUSERSPROFILE%\Application Data\*.exe

Invalid Environment Variable: %APPDATA%\*.

Invalid Environment Variable: %APPDATA%\*.exe

[color=#A23BEC]< %SYSTEMDRIVE%\*.* >[/color]
[2009/06/10 16:42:20 | 000,000,024 | ---- | M] () -- E:\autoexec.bat
[2009/06/10 16:42:20 | 000,000,010 | ---- | M] () -- E:\config.sys
[2009/12/23 07:32:42 | 000,000,197 | ---- | M] () -- E:\csb.log
[2011/03/03 10:12:07 | 2613,698,560 | -HS- | M] () -- E:\hiberfil.sys
[2009/12/23 07:32:15 | 000,000,190 | ---- | M] () -- E:\Install.log
[2010/03/16 09:46:54 | 000,000,000 | RHS- | M] () -- E:\IO.SYS
[2010/03/16 09:46:54 | 000,000,000 | RHS- | M] () -- E:\MSDOS.SYS
[2011/03/03 17:28:40 | 000,130,298 | ---- | M] () -- E:\OTL.Txt
[2011/03/03 10:12:12 | 3484,934,144 | -HS- | M] () -- E:\pagefile.sys
[2009/12/23 07:30:13 | 000,002,020 | ---- | M] () -- E:\RHDSetup.log
[2011/03/02 05:30:34 | 000,003,272 | ---- | M] () -- E:\RstAssociations.txt

[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]

[color=#A23BEC]< %PROGRAMFILES%\*.* >[/color]
[2009/07/13 23:41:57 | 000,000,174 | -HS- | M] () -- E:\Program Files\desktop.ini

[color=#A23BEC]< %PROGRAMFILES%\*. >[/color]
[2011/01/25 06:15:55 | 000,000,000 | ---D | M] -- E:\Program Files\7de1b14852741633c10b073f9217
[2010/10/21 08:36:18 | 000,000,000 | ---D | M] -- E:\Program Files\Adobe
[2009/12/23 07:36:36 | 000,000,000 | ---D | M] -- E:\Program Files\AGEIA Technologies
[2009/12/26 06:41:40 | 000,000,000 | ---D | M] -- E:\Program Files\Apple Software Update
[2009/12/23 07:07:21 | 000,000,000 | ---D | M] -- E:\Program Files\AVG
[2010/12/24 09:26:42 | 000,000,000 | ---D | M] -- E:\Program Files\Bonjour
[2010/05/06 09:15:42 | 000,000,000 | ---D | M] -- E:\Program Files\CCleaner
[2010/12/10 05:50:14 | 000,000,000 | ---D | M] -- E:\Program Files\CDBurnerXP
[2010/10/21 08:36:18 | 000,000,000 | ---D | M] -- E:\Program Files\Common Files
[2009/12/23 07:27:14 | 000,000,000 | -H-D | M] -- E:\Program Files\DeviceVM
[2010/03/28 18:02:08 | 000,000,000 | ---D | M] -- E:\Program Files\Drivers
[2009/07/14 04:01:30 | 000,000,000 | ---D | M] -- E:\Program Files\DVD Maker
[2010/05/07 08:35:45 | 000,000,000 | ---D | M] -- E:\Program Files\eMule
[2011/03/02 04:06:11 | 000,000,000 | ---D | M] -- E:\Program Files\EslWire
[2009/12/23 06:55:06 | 000,000,000 | -HSD | M] -- E:\Program Files\Fichiers communs
[2011/02/16 11:37:59 | 000,000,000 | ---D | M] -- E:\Program Files\Full Tilt Poker.Fr
[2009/12/23 07:41:39 | 000,000,000 | ---D | M] -- E:\Program Files\GIGABYTE
[2011/02/27 11:23:59 | 000,000,000 | ---D | M] -- E:\Program Files\Heroes of Newerth
[2010/03/16 09:44:06 | 000,000,000 | -H-D | M] -- E:\Program Files\InstallShield Installation Information
[2009/12/23 07:27:34 | 000,000,000 | ---D | M] -- E:\Program Files\Intel
[2011/02/09 21:17:00 | 000,000,000 | ---D | M] -- E:\Program Files\Internet Explorer
[2010/12/24 09:28:03 | 000,000,000 | ---D | M] -- E:\Program Files\iPod
[2010/12/24 09:28:12 | 000,000,000 | ---D | M] -- E:\Program Files\iTunes
[2010/01/04 21:07:36 | 000,000,000 | ---D | M] -- E:\Program Files\Java
[2010/03/26 05:44:54 | 000,000,000 | ---D | M] -- E:\Program Files\JRE
[2010/03/28 17:40:33 | 000,000,000 | ---D | M] -- E:\Program Files\ma-config.com
[2011/03/01 19:16:14 | 000,000,000 | ---D | M] -- E:\Program Files\Malwarebytes' Anti-Malware
[2009/12/23 09:47:51 | 000,000,000 | ---D | M] -- E:\Program Files\Microsoft
[2009/07/14 04:01:21 | 000,000,000 | ---D | M] -- E:\Program Files\Microsoft Games
[2009/12/31 11:59:48 | 000,000,000 | ---D | M] -- E:\Program Files\Microsoft Games for Windows - LIVE
[2011/03/01 21:16:25 | 000,000,000 | ---D | M] -- E:\Program Files\Mozilla Firefox
[2009/07/13 23:52:30 | 000,000,000 | ---D | M] -- E:\Program Files\MSBuild
[2010/11/16 11:51:16 | 000,000,000 | ---D | M] -- E:\Program Files\MSECache
[2010/03/09 09:38:16 | 000,000,000 | ---D | M] -- E:\Program Files\Mumble
[2010/02/04 19:04:14 | 000,000,000 | ---D | M] -- E:\Program Files\NCsoft
[2011/03/01 22:47:36 | 000,000,000 | ---D | M] -- E:\Program Files\Neffy
[2009/12/23 07:37:13 | 000,000,000 | ---D | M] -- E:\Program Files\NVIDIA Corporation
[2010/03/26 05:44:54 | 000,000,000 | ---D | M] -- E:\Program Files\OpenOffice.org 3
[2010/03/26 05:43:57 | 000,000,000 | ---D | M] -- E:\Program Files\OpenOffice.org 3.2 (fr) Installation Files
[2010/04/13 11:33:58 | 000,000,000 | ---D | M] -- E:\Program Files\Pcsx2
[2010/06/23 19:01:16 | 000,000,000 | ---D | M] -- E:\Program Files\PDFCreator
[2010/12/25 03:27:08 | 000,000,000 | ---D | M] -- E:\Program Files\QuickTime
[2009/12/23 07:31:51 | 000,000,000 | ---D | M] -- E:\Program Files\Realtek
[2009/07/13 23:52:30 | 000,000,000 | ---D | M] -- E:\Program Files\Reference Assemblies
[2009/12/23 08:57:35 | 000,000,000 | ---D | M] -- E:\Program Files\SAGEM Wi-Fi 11g USB ADAPTER
[2010/03/28 18:02:43 | 000,000,000 | ---D | M] -- E:\Program Files\Saitek
[2011/03/02 07:10:09 | 000,000,000 | ---D | M] -- E:\Program Files\SanityCheck
[2011/03/02 06:32:29 | 000,000,000 | ---D | M] -- E:\Program Files\SEAF
[2011/03/03 09:25:48 | 000,000,000 | ---D | M] -- E:\Program Files\Steam
[2010/01/10 19:36:53 | 000,000,000 | ---D | M] -- E:\Program Files\Teamspeak2_RC2
[2009/12/23 07:30:13 | 000,000,000 | -H-D | M] -- E:\Program Files\Temp
[2010/05/30 14:25:10 | 000,000,000 | ---D | M] -- E:\Program Files\TmNationsForever
[2009/07/13 23:53:23 | 000,000,000 | -H-D | M] -- E:\Program Files\Uninstall Information
[2009/12/23 07:06:41 | 000,000,000 | ---D | M] -- E:\Program Files\VideoLAN
[2011/01/01 11:08:32 | 000,000,000 | ---D | M] -- E:\Program Files\Warcraft III
[2009/07/14 03:39:39 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Defender
[2009/07/14 04:01:29 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Journal
[2009/12/23 09:47:47 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Live
[2009/12/23 09:47:38 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Live SkyDrive
[2010/12/16 00:58:47 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Mail
[2010/10/14 11:31:00 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Media Player
[2009/12/23 06:55:06 | 000,000,000 | ---D | M] -- E:\Program Files\Windows NT
[2009/07/14 03:39:39 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Photo Viewer
[2009/07/13 23:52:32 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Portable Devices
[2009/07/14 03:39:39 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Sidebar
[2009/12/24 04:58:15 | 000,000,000 | ---D | M] -- E:\Program Files\WinRAR


[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2009/07/13 20:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- E:\Windows\System32\drivers\AGP440.sys
[2009/07/13 20:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- E:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_65848c2d7375a720\AGP440.sys
[2009/07/13 20:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- E:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\AGP440.sys

[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2009/07/13 20:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- E:\Windows\System32\drivers\atapi.sys
[2009/07/13 20:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- E:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_f64b9c35a3a5be81\atapi.sys
[2009/07/13 20:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- E:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys

[color=#A23BEC]< MD5 for: AUTOCHK.EXE >[/color]
[2009/07/13 20:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- E:\Windows\System32\autochk.exe
[2009/07/13 20:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- E:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe

[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2009/07/13 18:45:01 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=505506526A9D467307B3C393DEDAF858 -- E:\Windows\System32\drivers\beep.sys
[2009/07/13 18:45:01 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=505506526A9D467307B3C393DEDAF858 -- E:\Windows\winsxs\x86_microsoft-windows-beepsys_31bf3856ad364e35_6.1.7600.16385_none_c3f6f77668f0ddcc\beep.sys

[color=#A23BEC]< MD5 for: CNGAUDIT.DLL >[/color]
[2009/07/13 20:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- E:\Windows\System32\cngaudit.dll
[2009/07/13 20:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- E:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll

[color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
[2009/07/13 20:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- E:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2009/10/31 00:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- E:\Windows\explorer.exe
[2009/10/31 00:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- E:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_51a66d6ddafc2ed1\explorer.exe
[2010/11/12 09:15:50 | 000,254,976 | ---- | M] () MD5=976A1B76A7D2A6CB184D63CB0500E8DC -- E:\Users\Home\AppData\Local\Temp\RarSFX0\procs\explorer.exe
[2010/11/12 09:15:50 | 000,254,976 | ---- | M] () MD5=976A1B76A7D2A6CB184D63CB0500E8DC -- E:\Users\Home\AppData\Local\Temp\RarSFX1\procs\explorer.exe
[2009/08/03 00:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- E:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_526619d4f3f142e6\explorer.exe
[2005/08/15 19:54:58 | 000,001,536 | ---- | M] () MD5=ABC6379205DE2618851C4FCBF72112EB -- E:\Users\Home\AppData\Local\Temp\RarSFX0\h\explorer.exe
[2005/08/15 19:54:58 | 000,001,536 | ---- | M] () MD5=ABC6379205DE2618851C4FCBF72112EB -- E:\Users\Home\AppData\Local\Temp\RarSFX1\h\explorer.exe
[2009/08/03 00:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- E:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_51e07e31dad00878\explorer.exe
[2009/10/31 01:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- E:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_52283b2af41f3691\explorer.exe

[color=#A23BEC]< MD5 for: IASTORV.SYS >[/color]
[2009/07/13 20:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- E:\Windows\System32\drivers\iaStorV.sys
[2009/07/13 20:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- E:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_18cccb83b34e1453\iaStorV.sys
[2009/07/13 20:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- E:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_aee7a89be91b9000\iaStorV.sys

[color=#A23BEC]< MD5 for: IMM32.DLL >[/color]
[2009/07/13 20:15:32 | 000,118,272 | ---- | M] (Microsoft Corporation) MD5=5DF8132ADF721329234403189FC94E16 -- E:\Windows\System32\imm32.dll
[2009/07/13 20:15:32 | 000,118,272 | ---- | M] (Microsoft Corporation) MD5=5DF8132ADF721329234403189FC94E16 -- E:\Windows\winsxs\x86_microsoft-windows-imm32_31bf3856ad364e35_6.1.7600.16385_none_5c2c7439dbbe9273\imm32.dll

[color=#A23BEC]< MD5 for: KERNEL32.DLL >[/color]
[2009/12/08 06:33:31 | 000,857,088 | ---- | M] (Microsoft Corporation) MD5=0369BA73CE6D918745579B24339765E8 -- E:\Windows\System32\kernel32.dll
[2009/12/08 06:33:31 | 000,857,088 | ---- | M] (Microsoft Corporation) MD5=0369BA73CE6D918745579B24339765E8 -- E:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.1.7600.16481_none_93903c22b7a2b5ea\kernel32.dll
[2009/07/13 20:15:35 | 000,857,088 | ---- | M] (Microsoft Corporation) MD5=4605F7EE9805F7E1C98D6C959DD2949C -- E:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.1.7600.16385_none_93943b64b79f1e1f\kernel32.dll
[2009/12/08 06:57:44 | 000,857,088 | ---- | M] (Microsoft Corporation) MD5=EB7B2309A2B16EEB73C2C13477FEF8FB -- E:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.1.7600.20591_none_940f0901d0c871a5\kernel32.dll

[color=#A23BEC]< MD5 for: MSWSOCK.DLL >[/color]
[2009/07/13 20:15:51 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=11A41F17527ED75D6B758FDD7F4FD00D -- E:\Windows\System32\mswsock.dll
[2009/07/13 20:15:51 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=11A41F17527ED75D6B758FDD7F4FD00D -- E:\Windows\winsxs\x86_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.1.7600.16385_none_b829ad298e9f53ff\mswsock.dll

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2009/07/13 20:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- E:\Windows\System32\drivers\ndis.sys
[2009/07/13 20:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- E:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_a79d81ea7d62a289\ndis.sys

[color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color]
[2009/07/13 20:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- E:\Windows\System32\netlogon.dll
[2009/07/13 20:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- E:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_fd8e0d66994d7dc8\netlogon.dll

[color=#A23BEC]< MD5 for: NTFS.SYS >[/color]
[2009/07/13 20:20:44 | 001,210,432 | ---- | M] (Microsoft Corporation) MD5=3795DCD21F740EE799FB7223234215AF -- E:\Windows\System32\drivers\ntfs.sys
[2009/07/13 20:20:44 | 001,210,432 | ---- | M] (Microsoft Corporation) MD5=3795DCD21F740EE799FB7223234215AF -- E:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7600.16385_none_a6477fe07e3f2f04\ntfs.sys

[color=#A23BEC]< MD5 for: NVSTOR.SYS >[/color]
[2009/07/13 20:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- E:\Windows\System32\drivers\nvstor.sys
[2009/07/13 20:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- E:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_5bde3fe2945bce9e\nvstor.sys
[2009/07/13 20:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- E:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_39b1194b205239d8\nvstor.sys

[color=#A23BEC]< MD5 for: PROQUOTA.EXE >[/color]
[2009/07/13 20:14:29 | 000,028,160 | ---- | M] (Microsoft Corporation) MD5=8CDF71E78469BE54C29C1AD2FC8DE611 -- E:\Windows\System32\proquota.exe
[2009/07/13 20:14:29 | 000,028,160 | ---- | M] (Microsoft Corporation) MD5=8CDF71E78469BE54C29C1AD2FC8DE611 -- E:\Windows\winsxs\x86_microsoft-windows-proquota_31bf3856ad364e35_6.1.7600.16385_none_279d4dfaf3b8bd5a\proquota.exe

[color=#A23BEC]< MD5 for: QMGR.DLL >[/color]
[2009/07/13 20:16:12 | 000,589,312 | ---- | M] (Microsoft Corporation) MD5=53F476476F55A27F580661BDE09C4EC4 -- E:\Windows\System32\qmgr.dll
[2009/07/13 20:16:12 | 000,589,312 | ---- | M] (Microsoft Corporation) MD5=53F476476F55A27F580661BDE09C4EC4 -- E:\Windows\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.1.7600.16385_none_23671b105ac5a0fd\qmgr.dll

[color=#A23BEC]< MD5 for: SCECLI.DLL >[/color]
[2009/07/13 20:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- E:\Windows\System32\scecli.dll
[2009/07/13 20:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- E:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll

[color=#A23BEC]< MD5 for: SPOOLSV.EXE >[/color]
[2010/08/19 23:25:14 | 000,316,928 | ---- | M] (Microsoft Corporation) MD5=2FB4CE429488156B19C0D8E5C4552043 -- E:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.20785_none_d6ab9bc23bf9f1c6\spoolsv.exe
[2009/07/13 20:14:41 | 000,316,416 | ---- | M] (Microsoft Corporation) MD5=49B6DD6AB3715B7A67965F17194E98A9 -- E:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.16385_none_d621f94522dc5a87\spoolsv.exe
[2010/08/21 00:32:37 | 000,316,928 | ---- | M] (Microsoft Corporation) MD5=D1BB750EB51694DE183E08B9C33BE5B2 -- E:\Windows\System32\spoolsv.exe
[2010/08/21 00:32:37 | 000,316,928 | ---- | M] (Microsoft Corporation) MD5=D1BB750EB51694DE183E08B9C33BE5B2 -- E:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.16661_none_d6339da722cfb4be\spoolsv.exe

[color=#A23BEC]< MD5 for: SVCHOST.EXE >[/color]
[2009/07/13 20:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- E:\Windows\System32\svchost.exe
[2009/07/13 20:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- E:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe

[color=#A23BEC]< MD5 for: TERMSRV.DLL >[/color]
[2009/07/13 20:16:15 | 000,543,232 | ---- | M] (Microsoft Corporation) MD5=A01E50A04D7B1960B33E92B9080E6A94 -- E:\Windows\System32\termsrv.dll
[2009/07/13 20:16:15 | 000,543,232 | ---- | M] (Microsoft Corporation) MD5=A01E50A04D7B1960B33E92B9080E6A94 -- E:\Windows\winsxs\x86_microsoft-windows-t..teconnectionmanager_31bf3856ad364e35_6.1.7600.16385_none_8e7597ebb597acd3\termsrv.dll

[color=#A23BEC]< MD5 for: USERINIT.EXE >[/color]
[2009/07/13 20:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- E:\Windows\System32\userinit.exe
[2009/07/13 20:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- E:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009/05/26 12:47:22 | 000,031,232 | ---- | M] (NirSoft) MD5=AC6094297CD882B8626466CDEB64F19F -- E:\Users\Home\AppData\Local\Temp\RarSFX0\userinit.exe
[2009/05/26 12:47:22 | 000,031,232 | ---- | M] (NirSoft) MD5=AC6094297CD882B8626466CDEB64F19F -- E:\Users\Home\AppData\Local\Temp\RarSFX1\userinit.exe

[color=#A23BEC]< MD5 for: WS2_32.DLL >[/color]
[2009/07/13 20:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- E:\Windows\System32\ws2_32.dll
[2009/07/13 20:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- E:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll

[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]

[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[2009/07/13 20:15:07 | 000,418,816 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\cscui.dll
[2009/07/13 20:15:08 | 000,077,824 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\davclnt.dll
[2009/07/13 20:15:13 | 000,018,944 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\drprov.dll
[2009/07/13 20:15:14 | 000,189,952 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\EhStorShell.dll
[2009/07/13 20:15:21 | 000,828,928 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\fontext.dll
[2009/07/13 20:16:11 | 000,069,120 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\ntlanman.dll
[2009/07/13 20:16:11 | 000,442,880 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\ntshrui.dll
[2010/07/27 09:03:24 | 012,867,584 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\shell32.dll

[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color]

[color=#A23BEC]< c:\$recycle.bin\*.* /s >[/color]
< End of report >
0
lasource37 Messages postés 225 Date d'inscription lundi 21 décembre 2009 Statut Membre Dernière intervention 19 mai 2015
Modifié par lasource37 le 3/03/2011 à 18:14
Quand je veut démarrer mon pc sans le cd maintenant sa fait un ecran noir, ya le pointeur de la souris mais jpeut rien bouger ni utiliser le clavier !!
Une restauration du systeme peut-elle être efficace ? avec ce probleme + celui du virus?
0
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 2 274
3 mars 2011 à 18:30
oui

tente une restauration systeme car ton rapport ne nous montre pas grand chose en fait
0
lasource37 Messages postés 225 Date d'inscription lundi 21 décembre 2009 Statut Membre Dernière intervention 19 mai 2015
Modifié par lasource37 le 3/03/2011 à 18:41
d'accord mais comment je fais? pas possible d'utiliser le clavire ni la souris si j'attend que sa se lance normalement./ Cela c produit apres utilisation de reatogo
Je dispose de windows 7
0
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 2 274
3 mars 2011 à 18:39
as tu le cd de seven ?
0
lasource37 Messages postés 225 Date d'inscription lundi 21 décembre 2009 Statut Membre Dernière intervention 19 mai 2015
Modifié par lasource37 le 3/03/2011 à 18:47
Non, c'est quelqu'un qui m'a installé windows seven mais pas une vrai version pourtant tout marche niquel normalement j'ai mon pc depuis 1ans
0