Messages postés
Date d'inscription
lundi 21 décembre 2009
Dernière intervention
19 mai 2015
2 mars 2011 à 00:27
Utilisateur anonyme - 6 mars 2011 à 20:57
Utilisateur anonyme - 6 mars 2011 à 20:57
A voir également:
- Pc doctor - Télécharger - Optimisation
- Disk doctor - Télécharger - Récupération de données
- Car doctor - Télécharger - Vie quotidienne
- Kingsoft PC Doctor - Télécharger - Sécurité
- Device doctor - Télécharger - Informations & Diagnostic
222 réponses
Utilisateur anonyme
3 mars 2011 à 00:01
3 mars 2011 à 00:01
et en attendant si tu arrives a faire ca avec celui-ci...
Messages postés
Date d'inscription
lundi 21 décembre 2009
Dernière intervention
19 mai 2015
3 mars 2011 à 04:29
3 mars 2011 à 04:29
D'accord je fais sa demain car je ne peut pas actuellement. a bientot
Messages postés
Date d'inscription
lundi 21 décembre 2009
Dernière intervention
19 mai 2015
3 mars 2011 à 14:51
3 mars 2011 à 14:51
Bonjour je commence a faire sa.
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Messages postés
Date d'inscription
lundi 21 décembre 2009
Dernière intervention
19 mai 2015
3 mars 2011 à 15:06
3 mars 2011 à 15:06
je viens de metrte otlpe a partir d'un pc sain sur un cd vierge apres j'ai mis le cd sur le pc infecté, la ya une fenetre reatogo qui s'ouvre et je ne sais pas quoi faire apres.
moment de grace
Messages postés
Date d'inscription
samedi 6 décembre 2008
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
3 mars 2011 à 15:08
3 mars 2011 à 15:08
une fois le bureau de reatogo chargé , tu lances OTLPE , l'icone jaune
* Double-click sur l'icone OTLPE
* Quand demandé "Do you wish to load the remote registry", select Yes
* Quand demandé "Do you wish to load remote user profile(s) for scanning", select Yes
* Vérifier que "Automatically Load All Remaining Users" est sélectionné et press OK
* Sous Custom Scan box copie_colle le contenu en gras ci dessous:
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
c:\$recycle.bin\*.* /s
* clic Run Scan pour démarrer le scan.
* une fois terminé , le fichier se trouve là C:\OTL.txt
* copie_colle le contenu dans ta prochaine réponse
* Double-click sur l'icone OTLPE
* Quand demandé "Do you wish to load the remote registry", select Yes
* Quand demandé "Do you wish to load remote user profile(s) for scanning", select Yes
* Vérifier que "Automatically Load All Remaining Users" est sélectionné et press OK
* Sous Custom Scan box copie_colle le contenu en gras ci dessous:
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
c:\$recycle.bin\*.* /s
* clic Run Scan pour démarrer le scan.
* une fois terminé , le fichier se trouve là C:\OTL.txt
* copie_colle le contenu dans ta prochaine réponse
Messages postés
Date d'inscription
lundi 21 décembre 2009
Dernière intervention
19 mai 2015
3 mars 2011 à 15:22
3 mars 2011 à 15:22
* Quand demandé "Do you wish to load the remote registry", select Yes
* Quand demandé "Do you wish to load remote user profile(s) for scanning", select Yes
* Vérifier que "Automatically Load All Remaining Users" est sélectionné et press OK
* Sous Custom Scan box copie_colle le contenu en gras ci dessous:
J'ai lancé reatogo et ensuite otlpe mais je ne vois pas ou c'est
* Quand demandé "Do you wish to load remote user profile(s) for scanning", select Yes
* Vérifier que "Automatically Load All Remaining Users" est sélectionné et press OK
* Sous Custom Scan box copie_colle le contenu en gras ci dessous:
J'ai lancé reatogo et ensuite otlpe mais je ne vois pas ou c'est
moment de grace
Messages postés
Date d'inscription
samedi 6 décembre 2008
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
3 mars 2011 à 15:28
3 mars 2011 à 15:28
Messages postés
Date d'inscription
lundi 21 décembre 2009
Dernière intervention
19 mai 2015
3 mars 2011 à 15:32
3 mars 2011 à 15:32
sa me fait pas sa quand je lance reatogo et otlpe ensuite jai 2 fenetre qui s'affiche une pour chacun des programmes
moment de grace
Messages postés
Date d'inscription
samedi 6 décembre 2008
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
3 mars 2011 à 15:33
3 mars 2011 à 15:33
as tu redemarré le pc à partir du cd ?
Messages postés
Date d'inscription
lundi 21 décembre 2009
Dernière intervention
19 mai 2015
Modifié par lasource37 le 3/03/2011 à 15:35
Modifié par lasource37 le 3/03/2011 à 15:35
je ne c pas comment faire sa :s et sur le cd se t rouve reatogo
moment de grace
Messages postés
Date d'inscription
samedi 6 décembre 2008
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
3 mars 2011 à 15:41
3 mars 2011 à 15:41
laisse le cd dans le lecteur
redemarre le pc
au tout début du lancement, tu devrais avoir un message "appuyer sur une touche pour demarrer à partir du pc"
ce que tu fais
tu suis ensuite la procédure au dessus
laisse le cd dans le lecteur
redemarre le pc
au tout début du lancement, tu devrais avoir un message "appuyer sur une touche pour demarrer à partir du pc"
ce que tu fais
tu suis ensuite la procédure au dessus
Messages postés
Date d'inscription
lundi 21 décembre 2009
Dernière intervention
19 mai 2015
3 mars 2011 à 15:43
3 mars 2011 à 15:43
Messages postés
Date d'inscription
lundi 21 décembre 2009
Dernière intervention
19 mai 2015
3 mars 2011 à 15:55
3 mars 2011 à 15:55
quand je redémare mon pc ya eu la barre de chargement de reatogo mai apres ya eu un ecran bleu clair qui c bloqué. la j'ai redémarré mon pc est il bug ya un écran noir et jpeut plus bouger la souris aider moi sa fait la meme chose en mode sans echec>.
Messages postés
Date d'inscription
lundi 21 décembre 2009
Dernière intervention
19 mai 2015
3 mars 2011 à 16:07
3 mars 2011 à 16:07
je suis actuellement sur un autre pc
Messages postés
Date d'inscription
lundi 21 décembre 2009
Dernière intervention
19 mai 2015
3 mars 2011 à 16:28
3 mars 2011 à 16:28
J'ai reussi a relancer mon pc avec reatogo maintenant sur mon pc infecté il y a un nouvel configuration du bureau avec reatogo en fond d'écran. que dois je faire maintenant ? merci
Messages postés
Date d'inscription
lundi 21 décembre 2009
Dernière intervention
19 mai 2015
3 mars 2011 à 17:53
3 mars 2011 à 17:53
OTL logfile created on: 3/3/2011 5:31:04 PM - Run
OTLPE by OldTimer - Version Folder = X:\Programs\OTLPE
Windows 7 Ultimate (Version = 6.1.7600) - Type = System
Internet Explorer (Version = 8.0.7600.16385)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy
3.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 87.00% Memory free
3.00 Gb Paging File | 3.00 Gb Available in Paging File | 96.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = E: | %SystemRoot% = E:\Windows | %ProgramFiles% = E:\Program Files
Drive C: | 100.00 Mb Total Space | 65.70 Mb Free Space | 65.70% Space Free | Partition Type: NTFS
Drive D: | 465.76 Gb Total Space | 257.71 Gb Free Space | 55.33% Space Free | Partition Type: NTFS
Drive E: | 139.64 Gb Total Space | 11.80 Gb Free Space | 8.45% Space Free | Partition Type: NTFS
Drive F: | 3.72 Gb Total Space | 1.67 Gb Free Space | 44.76% Space Free | Partition Type: FAT32
Drive X: | 284.08 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet001
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV - [2011/03/01 13:45:49 | 000,407,336 | ---- | M] (Valve Corporation) [On_Demand] -- E:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2010/10/15 18:40:40 | 000,037,664 | ---- | M] (Apple Inc.) [Auto] -- E:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/05/27 09:23:22 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2010/01/26 10:45:08 | 000,243,056 | ---- | M] (CybelSoft) [On_Demand] -- E:\Program Files\\maconfservice.exe -- (maconfservice)
SRV - [2009/09/27 10:48:00 | 000,240,232 | ---- | M] (NVIDIA Corporation) [Auto] -- E:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2009/08/04 11:29:54 | 000,219,360 | ---- | M] (DeviceVM, Inc.) [Auto] -- E:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe -- (BCUService)
SRV - [2009/07/13 20:16:21 | 000,185,856 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\wwansvc.dll -- (WwanSvc)
SRV - [2009/07/13 20:16:17 | 000,151,552 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\wbiosrvc.dll -- (WbioSrvc)
SRV - [2009/07/13 20:16:17 | 000,119,808 | ---- | M] (Microsoft Corporation) [Auto] -- E:\Windows\System32\umpo.dll -- (Power)
SRV - [2009/07/13 20:16:16 | 000,037,376 | ---- | M] (Microsoft Corporation) [Auto] -- E:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2009/07/13 20:16:15 | 000,053,760 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\sppuinotify.dll -- (sppuinotify)
SRV - [2009/07/13 20:16:13 | 000,043,520 | ---- | M] (Microsoft Corporation) [Auto] -- E:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper)
SRV - [2009/07/13 20:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/13 20:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/13 20:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\pnrpsvc.dll -- (PNRPsvc)
SRV - [2009/07/13 20:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\pnrpsvc.dll -- (p2pimsvc)
SRV - [2009/07/13 20:16:12 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\provsvc.dll -- (HomeGroupProvider)
SRV - [2009/07/13 20:16:12 | 000,020,480 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg)
SRV - [2009/07/13 20:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto] -- E:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/07/13 20:15:36 | 000,194,560 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\ListSvc.dll -- (HomeGroupListener)
SRV - [2009/07/13 20:15:21 | 000,797,696 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2009/07/13 20:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto] -- E:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2009/07/13 20:15:10 | 000,218,624 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\defragsvc.dll -- (defragsvc)
SRV - [2009/07/13 20:14:59 | 000,076,800 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\bdesvc.dll -- (BDESVC)
SRV - [2009/07/13 20:14:58 | 000,088,064 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\AxInstSv.dll -- (AxInstSV)
SRV - [2009/07/13 20:14:53 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\appidsvc.dll -- (AppIDSvc)
SRV - [2009/07/13 20:14:29 | 003,179,520 | ---- | M] (Microsoft Corporation) [Auto] -- E:\Windows\System32\sppsvc.exe -- (sppsvc)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - File not found [Kernel | On_Demand] -- -- (gdrv)
DRV - File not found [File_System | Auto] -- -- (eamonm)
DRV - [2010/12/20 12:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2010/12/08 05:53:18 | 000,841,912 | ---- | M] (<Turtle Entertainment>) [Kernel | Auto] -- E:\Windows\System32\drivers\ESLWireACD.sys -- (ESLWireAC)
DRV - [2010/03/02 04:53:42 | 000,024,504 | ---- | M] (Turtle Entertainment GmbH) [Kernel | On_Demand] -- E:\Windows\System32\drivers\ESLvnic.sys -- (ESLvnic1)
DRV - [2010/02/11 07:28:26 | 000,014,336 | ---- | M] (CybelSoft) [Kernel | On_Demand] -- E:\Program Files\\Drivers\driverhardwarev2.sys -- (driverhardwarev2)
DRV - [2009/12/11 02:44:02 | 000,133,720 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- E:\Windows\System32\drivers\ksecpkg.sys -- (KSecPkg)
DRV - [2009/09/27 18:12:21 | 009,509,832 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2009/08/25 06:26:36 | 002,758,240 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- E:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2009/08/21 15:24:03 | 000,066,592 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2009/08/13 03:10:36 | 000,096,368 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot] -- E:\Windows\System32\drivers\jraid.sys -- (JRAID)
DRV - [2009/07/30 06:58:26 | 000,187,392 | ---- | M] (Realtek ) [Kernel | On_Demand] -- E:\Windows\System32\drivers\Rt86win7.sys -- (RTL8167)
DRV - [2009/07/13 20:26:21 | 000,015,952 | ---- | M] (CMD Technology, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\cmdide.sys -- (cmdide)
DRV - [2009/07/13 20:26:17 | 000,297,552 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\adpahci.sys -- (adpahci)
DRV - [2009/07/13 20:26:15 | 000,422,976 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\adp94xx.sys -- (adp94xx)
DRV - [2009/07/13 20:26:15 | 000,159,312 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\amdsbs.sys -- (amdsbs)
DRV - [2009/07/13 20:26:15 | 000,146,512 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\adpu320.sys -- (adpu320)
DRV - [2009/07/13 20:26:15 | 000,086,608 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\arcsas.sys -- (arcsas)
DRV - [2009/07/13 20:26:15 | 000,079,952 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\amdsata.sys -- (amdsata)
DRV - [2009/07/13 20:26:15 | 000,076,368 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\arc.sys -- (arc)
DRV - [2009/07/13 20:26:15 | 000,023,616 | ---- | M] (Advanced Micro Devices) [Kernel | Boot] -- E:\Windows\System32\drivers\amdxata.sys -- (amdxata)
DRV - [2009/07/13 20:26:15 | 000,014,400 | ---- | M] (Acer Laboratories Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\aliide.sys -- (aliide)
DRV - [2009/07/13 20:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\nvstor.sys -- (nvstor)
DRV - [2009/07/13 20:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\nvraid.sys -- (nvraid)
DRV - [2009/07/13 20:20:44 | 000,044,624 | ---- | M] (IBM Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\nfrd960.sys -- (nfrd960)
DRV - [2009/07/13 20:20:37 | 000,089,168 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\lsi_sas.sys -- (LSI_SAS)
DRV - [2009/07/13 20:20:36 | 000,332,352 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\iaStorV.sys -- (iaStorV)
DRV - [2009/07/13 20:20:36 | 000,235,584 | ---- | M] (LSI Corporation, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\MegaSR.sys -- (MegaSR)
DRV - [2009/07/13 20:20:36 | 000,096,848 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2009/07/13 20:20:36 | 000,095,824 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\lsi_fc.sys -- (LSI_FC)
DRV - [2009/07/13 20:20:36 | 000,054,864 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\lsi_sas2.sys -- (LSI_SAS2)
DRV - [2009/07/13 20:20:36 | 000,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\iirsp.sys -- (iirsp)
DRV - [2009/07/13 20:20:36 | 000,030,800 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\megasas.sys -- (megasas)
DRV - [2009/07/13 20:20:36 | 000,013,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- E:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy)
DRV - [2009/07/13 20:20:28 | 000,453,712 | ---- | M] (Emulex) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\elxstor.sys -- (elxstor)
DRV - [2009/07/13 20:20:28 | 000,070,720 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\djsvs.sys -- (aic78xx)
DRV - [2009/07/13 20:20:28 | 000,067,152 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\HpSAMD.sys -- (HpSAMD)
DRV - [2009/07/13 20:20:28 | 000,046,160 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- E:\Windows\System32\drivers\fsdepends.sys -- (FsDepends)
DRV - [2009/07/13 20:19:11 | 000,141,904 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\vsmraid.sys -- (vsmraid)
DRV - [2009/07/13 20:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\vmbus.sys -- (vmbus)
DRV - [2009/07/13 20:19:10 | 000,159,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\vhdmp.sys -- (vhdmp)
DRV - [2009/07/13 20:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- E:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2009/07/13 20:19:10 | 000,032,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- E:\Windows\System32\drivers\vdrvroot.sys -- (vdrvroot)
DRV - [2009/07/13 20:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\storvsc.sys -- (storvsc)
DRV - [2009/07/13 20:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- E:\Windows\System32\drivers\wimmount.sys -- (WIMMount)
DRV - [2009/07/13 20:19:10 | 000,016,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\viaide.sys -- (viaide)
DRV - [2009/07/13 20:19:04 | 001,383,488 | ---- | M] (QLogic Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\ql2300.sys -- (ql2300)
DRV - [2009/07/13 20:19:04 | 000,173,648 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- E:\Windows\System32\drivers\rdyboost.sys -- (rdyboost)
DRV - [2009/07/13 20:19:04 | 000,106,064 | ---- | M] (QLogic Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\ql40xx.sys -- (ql40xx)
DRV - [2009/07/13 20:19:04 | 000,077,888 | ---- | M] (Silicon Integrated Systems) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\sisraid4.sys -- (SiSRaid4)
DRV - [2009/07/13 20:19:04 | 000,043,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- E:\Windows\System32\drivers\pcw.sys -- (pcw)
DRV - [2009/07/13 20:19:04 | 000,040,016 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\SiSRaid2.sys -- (SiSRaid2)
DRV - [2009/07/13 20:19:04 | 000,021,072 | ---- | M] (Promise Technology) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\stexstor.sys -- (stexstor)
DRV - [2009/07/13 20:17:54 | 000,369,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- E:\Windows\System32\drivers\cng.sys -- (CNG)
DRV - [2009/07/13 19:57:25 | 000,272,128 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand] -- E:\Windows\System32\Drivers\Brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2009/07/13 19:02:41 | 000,018,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\rdpbus.sys -- (rdpbus)
DRV - [2009/07/13 19:01:41 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | System] -- E:\Windows\System32\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV - [2009/07/13 18:55:00 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
DRV - [2009/07/13 18:53:51 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | System] -- E:\Windows\System32\drivers\wfplwf.sys -- (WfpLwf)
DRV - [2009/07/13 18:52:44 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\ndiscap.sys -- (NdisCap)
DRV - [2009/07/13 18:52:02 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\vwifibus.sys -- (vwifibus)
DRV - [2009/07/13 18:52:00 | 000,163,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\1394ohci.sys -- (1394ohci)
DRV - [2009/07/13 18:51:35 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\umpass.sys -- (UmPass)
DRV - [2009/07/13 18:51:23 | 000,080,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\USBAUDIO.sys -- (usbaudio) Pilote USB audio (WDM)
DRV - [2009/07/13 18:51:08 | 000,004,096 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV - [2009/07/13 18:46:55 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\MTConfig.sys -- (MTConfig)
DRV - [2009/07/13 18:45:26 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\CompositeBus.sys -- (CompositeBus)
DRV - [2009/07/13 18:36:52 | 000,050,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\drivers\appid.sys -- (AppID)
DRV - [2009/07/13 18:33:50 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\scfilter.sys -- (scfilter)
DRV - [2009/07/13 18:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\vms3cap.sys -- (s3cap)
DRV - [2009/07/13 18:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\VMBusHID.sys -- (VMBusHID)
DRV - [2009/07/13 18:24:05 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | System] -- E:\Windows\System32\drivers\discache.sys -- (discache)
DRV - [2009/07/13 18:16:36 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\acpipmi.sys -- (AcpiPmi)
DRV - [2009/07/13 18:11:04 | 000,052,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\amdppm.sys -- (AmdPPM)
DRV - [2009/07/13 17:54:14 | 000,026,624 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/13 17:53:33 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand] -- E:\Windows\System32\Drivers\BrUsbMdm.sys -- (BrUsbMdm)
DRV - [2009/07/13 17:53:33 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand] -- E:\Windows\System32\Drivers\BrUsbSer.sys -- (BrUsbSer)
DRV - [2009/07/13 17:53:32 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand] -- E:\Windows\System32\Drivers\BrSerWdm.sys -- (BrSerWdm)
DRV - [2009/07/13 17:53:28 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\BrFiltLo.sys -- (BrFiltLo)
DRV - [2009/07/13 17:53:28 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\BrFiltUp.sys -- (BrFiltUp)
DRV - [2009/07/13 17:02:49 | 000,229,888 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\b57nd60x.sys -- (b57nd60x)
DRV - [2009/07/13 17:02:48 | 003,100,160 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\evbdx.sys -- (ebdrv)
DRV - [2009/07/13 17:02:48 | 000,430,080 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\bxvbdx.sys -- (b06bdrv)
DRV - [2008/03/10 08:46:24 | 000,873,472 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand] -- E:\Windows\System32\drivers\WlanUZAG.sys -- (SA760V32)
DRV - [2008/03/10 08:46:24 | 000,020,736 | ---- | M] (ZDC., Inc. (ZDC)) [Kernel | On_Demand] -- E:\Windows\System32\ZDCndis5.sys -- (ZDCNDIS5)
DRV - [2008/02/18 07:21:34 | 000,104,960 | ---- | M] (Saitek) [Kernel | On_Demand] -- E:\Windows\System32\drivers\SaiK0728.sys -- (SaiK0728)
DRV - [2005/08/17 00:46:26 | 000,093,872 | ---- | M] (MCCI) [Kernel | On_Demand] -- E:\Windows\System32\drivers\sscdmdm.sys -- (sscdmdm)
DRV - [2005/08/17 00:46:20 | 000,008,272 | ---- | M] (MCCI) [Kernel | On_Demand] -- E:\Windows\System32\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV - [2005/08/17 00:45:00 | 000,058,352 | ---- | M] (MCCI) [Kernel | On_Demand] -- E:\Windows\System32\drivers\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - File not found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Home_ON_E\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache =
IE - HKU\Home_ON_E\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr
IE - HKU\Home_ON_E\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = EF BE D3 20 C4 8F CB 01 [binary data]
IE - HKU\Home_ON_E\..\URLSearchHook: {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - E:\Program Files\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.)
IE - HKU\Home_ON_E\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Home_ON_E\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
[color=#E56717]========== FireFox ==========[/color]
FF - "AVG Secure Search"
FF - "AVG Secure Search"
FF - prefs.js..browser.startup.homepage: ""
FF - prefs.js..extensions.enabledItems:
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:
FF - prefs.js..keyword.URL: ""
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/01/16 04:18:23 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/01/16 04:18:23 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\ C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
[2009/12/23 07:09:49 | 000,000,000 | ---D | M] (No name found) -- E:\Users\Home\AppData\Roaming\Mozilla\Extensions
[2011/03/01 20:49:22 | 000,000,000 | ---D | M] (No name found) -- E:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\in172zqd.default\extensions
[2010/05/06 09:15:42 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- E:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\in172zqd.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2010/02/26 05:38:24 | 000,000,000 | ---D | M] (Illimitux) -- E:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\in172zqd.default\extensions\
[2011/03/01 20:49:22 | 000,000,000 | ---D | M] (No name found) -- E:\Program Files\Mozilla Firefox\extensions
[2010/09/14 06:10:38 | 000,001,516 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml
[2010/09/14 06:10:38 | 000,001,822 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml
[2010/09/14 06:10:38 | 000,000,757 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml
[2010/09/14 06:10:38 | 000,001,426 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml
[2010/09/14 06:10:38 | 000,000,956 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml
O1 HOSTS File: ([2009/06/10 16:39:37 | 000,000,824 | ---- | M]) - E:\Windows\System32\drivers\etc\hosts
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - File not found
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - File not found
O3 - HKU\Home_ON_E\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - File not found
O4 - HKLM..\Run: [BCU] E:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)
O4 - HKLM..\Run: [JMB36X IDE Setup] E:\Windows\RaidTool\xInsIDE.exe ()
O4 - HKLM..\Run: [RtHDVCpl] E:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SaiVolume] E:\Program Files\Saitek\CyborgKeyboard\SaiVolume.exe (Saitek)
O4 - HKU\Home_ON_E..\Run: [ESL Wire] E:\Program Files\EslWire\wire.exe (Turtle Entertainment GmbH)
O4 - HKU\Home_ON_E..\Run: [RESTART_STICKY_NOTES] E:\Windows\System32\StikyNot.exe (Microsoft Corporation)
O4 - HKU\Home_ON_E..\Run: [RGSC] File not found
O4 - HKU\Home_ON_E..\Run: [Steam] E:\Program Files\Steam\Steam.exe (Valve Corporation)
O4 - HKLM..\RunOnce: [AvgUninstallURL] E:\Windows\System32\cmd.exe (Microsoft Corporation)
O4 - HKU\LocalService_ON_E..\RunOnce: [mctadmin] E:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\NetworkService_ON_E..\RunOnce: [mctadmin] E:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - Startup: E:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE Gamer HUD Lite.lnk ()
O4 - Startup: E:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ 3.2.lnk ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9 - Extra Button: - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - File not found
O9 - Extra 'Tools' menuitem : - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - E:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} (Java Plug-in 1.6.0_18)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer =
O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - E:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - E:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O30 - LSA: Security Packages - (pku2u) - E:\Windows\System32\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (livessp) - E:\Windows\System32\livessp.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 16:42:20 | 000,000,024 | ---- | M] () - E:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 06:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{0df905be-8c0c-11df-a4cb-00241dde4df1}\Shell - "" = AutoRun
O33 - MountPoints2\{0df905be-8c0c-11df-a4cb-00241dde4df1}\Shell\AutoRun\command - "" = F:\LaunchU3.exe
O33 - MountPoints2\{978da26c-efb8-11de-8420-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{978da26c-efb8-11de-8420-806e6f6e6963}\Shell\AutoRun\command - "" = D:\reatogoMenu.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\ [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2011/03/03 09:08:55 | 002,193,408 | ---- | C] (OldTimer Tools) -- E:\Users\Home\Desktop\OTLPE.exe
[2011/03/02 07:10:09 | 000,000,000 | ---D | C] -- E:\Program Files\SanityCheck
[2011/03/02 06:32:29 | 000,000,000 | ---D | C] -- E:\Program Files\SEAF
[2011/03/02 06:20:00 | 000,000,000 | R--D | C] -- E:\32788R22FWJFW
[2011/03/02 06:15:15 | 000,000,000 | ---D | C] -- E:\Users\Home\Desktop\SysProt
[2011/03/01 22:17:13 | 000,000,000 | -HSD | C] -- E:\Config.Msi
[2011/03/01 19:16:14 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- E:\Windows\System32\drivers\mbamswissarmy.sys
[2011/03/01 19:16:11 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- E:\Windows\System32\drivers\mbam.sys
[2011/03/01 18:37:53 | 000,000,000 | ---D | C] -- E:\Windows\System32\RK_Quarantine
[2011/03/01 16:01:28 | 000,000,000 | ---D | C] -- E:\Users\Home\AppData\Roaming\Malwarebytes
[2011/03/01 16:01:17 | 000,000,000 | ---D | C] -- E:\Program Files\Malwarebytes' Anti-Malware
[2011/03/01 15:56:30 | 000,118,784 | RHS- | C] (Zfmjnkpky Wzygsdcruph) -- E:\Users\Home\AppData\Roaming\wmvdspa6.dll
[2011/03/01 15:55:15 | 000,000,000 | ---D | C] -- E:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Antimalware Doctor
[2011/02/09 16:23:51 | 002,329,088 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\win32k.sys
[2011/02/09 16:23:45 | 000,716,800 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\jscript.dll
[2011/02/09 16:23:45 | 000,428,032 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\vbscript.dll
[2011/02/09 16:23:41 | 000,606,208 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\mstime.dll
[2011/02/09 16:23:41 | 000,599,040 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\msfeeds.dll
[2011/02/09 16:23:41 | 000,381,440 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\iedkcs32.dll
[2011/02/09 16:23:41 | 000,185,856 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\iepeers.dll
[2011/02/09 16:23:41 | 000,176,640 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\ieui.dll
[2011/02/09 16:23:40 | 001,638,912 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\mshtml.tlb
[2011/02/09 16:23:40 | 000,386,048 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\html.iec
[2011/02/09 16:23:40 | 000,064,512 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\msfeedsbs.dll
[2011/02/09 16:23:40 | 000,048,128 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\jsproxy.dll
[2011/02/09 16:23:40 | 000,044,544 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\licmgr10.dll
[2011/02/09 16:23:40 | 000,012,800 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\msfeedssync.exe
[2011/02/09 16:23:35 | 000,294,400 | ---- | C] (Adobe Systems Incorporated) -- E:\Windows\System32\atmfd.dll
[2011/02/09 16:23:35 | 000,034,304 | ---- | C] (Adobe Systems) -- E:\Windows\System32\atmlib.dll
[2011/02/09 16:23:34 | 003,901,824 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\ntoskrnl.exe
[2011/02/09 16:23:33 | 003,957,120 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\ntkrnlpa.exe
[2011/02/09 14:07:03 | 000,000,000 | ---D | C] -- E:\Users\Home\AppData\Local\Electronic Arts
[2011/02/09 14:07:00 | 000,000,000 | ---D | C] -- E:\Users\Home\Documents\Electronic Arts
[2011/02/09 14:06:33 | 000,000,000 | ---D | C] -- E:\Users\Home\Documents\Electrontic Arts
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2011/03/03 10:13:46 | 000,067,584 | --S- | M] () -- E:\Windows\bootstat.dat
[2011/03/03 10:12:07 | 2613,698,560 | -HS- | M] () -- E:\hiberfil.sys
[2011/03/03 09:43:17 | 000,014,416 | -H-- | M] () -- E:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/03/03 09:43:17 | 000,014,416 | -H-- | M] () -- E:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/03/03 09:25:00 | 000,001,072 | ---- | M] () -- E:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2129638292-2542384058-1853087902-1000UA.job
[2011/03/03 08:54:37 | 000,694,766 | ---- | M] () -- E:\Windows\System32\perfh00C.dat
[2011/03/03 08:54:37 | 000,606,992 | ---- | M] () -- E:\Windows\System32\perfh009.dat
[2011/03/03 08:54:37 | 000,127,478 | ---- | M] () -- E:\Windows\System32\perfc00C.dat
[2011/03/03 08:54:37 | 000,103,370 | ---- | M] () -- E:\Windows\System32\perfc009.dat
[2011/03/02 15:25:00 | 000,001,020 | ---- | M] () -- E:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2129638292-2542384058-1853087902-1000Core.job
[2011/03/02 07:33:37 | 000,003,367 | ---- | M] () -- E:\Users\Home\AppData\Local\Temp30.html
[2011/03/02 07:12:42 | 000,001,293 | ---- | M] () -- E:\Users\Home\AppData\Local\Temp1.html
[2011/03/02 07:10:09 | 000,000,920 | ---- | M] () -- E:\Users\Home\Desktop\SanityCheck.lnk
[2011/03/02 06:26:27 | 000,285,640 | ---- | M] () -- E:\Users\Home\Desktop\
[2011/03/02 06:13:49 | 000,354,396 | ---- | M] () -- E:\Users\Home\Desktop\
[2011/03/02 06:11:48 | 000,300,929 | ---- | M] () -- E:\Users\Home\Desktop\agibck70dl.exe
[2011/03/02 06:04:40 | 000,285,697 | ---- | M] () -- E:\Users\Home\Desktop\
[2011/03/02 06:02:16 | 000,300,971 | ---- | M] () -- E:\Users\Home\Desktop\newsecureapp70700.exe
[2011/03/02 05:23:32 | 004,278,549 | ---- | M] () -- E:\Users\Home\Desktop\ComboFix (1).exe
[2011/03/01 15:56:30 | 000,118,784 | RHS- | M] (Zfmjnkpky Wzygsdcruph) -- E:\Users\Home\AppData\Roaming\wmvdspa6.dll
[2011/03/01 15:55:15 | 000,001,125 | ---- | M] () -- E:\Users\Home\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Antimalware Doctor.lnk
[2011/02/09 21:18:05 | 000,289,256 | ---- | M] () -- E:\Windows\System32\FNTCACHE.DAT
[2011/02/02 13:48:58 | 002,193,408 | ---- | M] (OldTimer Tools) -- E:\Users\Home\Desktop\OTLPE.exe
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2011/03/02 07:33:37 | 000,003,367 | ---- | C] () -- E:\Users\Home\AppData\Local\Temp30.html
[2011/03/02 07:11:09 | 000,001,293 | ---- | C] () -- E:\Users\Home\AppData\Local\Temp1.html
[2011/03/02 07:10:09 | 000,000,920 | ---- | C] () -- E:\Users\Home\Desktop\SanityCheck.lnk
[2011/03/02 06:26:37 | 000,300,929 | ---- | C] () -- E:\Users\Home\Desktop\agibck70dl.exe
[2011/03/02 06:26:31 | 000,285,640 | ---- | C] () -- E:\Users\Home\Desktop\
[2011/03/02 06:15:13 | 000,354,396 | ---- | C] () -- E:\Users\Home\Desktop\
[2011/03/02 06:05:01 | 000,300,971 | ---- | C] () -- E:\Users\Home\Desktop\newsecureapp70700.exe
[2011/03/02 06:04:42 | 000,285,697 | ---- | C] () -- E:\Users\Home\Desktop\
[2011/03/02 05:23:35 | 004,278,549 | ---- | C] () -- E:\Users\Home\Desktop\ComboFix (1).exe
[2011/03/01 15:55:15 | 000,001,125 | ---- | C] () -- E:\Users\Home\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Antimalware Doctor.lnk
[2010/10/13 19:36:44 | 000,179,263 | ---- | C] () -- E:\Windows\System32\
[2010/06/23 19:01:13 | 000,116,224 | ---- | C] () -- E:\Windows\System32\pdfcmnnt.dll
[2010/03/16 09:43:50 | 000,000,050 | ---- | C] () -- E:\Windows\MegaManager.INI
[2009/12/23 07:32:04 | 000,073,728 | ---- | C] () -- E:\Windows\System32\RtNicProp32.dll
[2009/12/23 07:30:18 | 000,146,432 | ---- | C] () -- E:\Windows\System32\APOMngr.DLL
[2009/12/23 07:30:18 | 000,072,704 | ---- | C] () -- E:\Windows\System32\CmdRtr.DLL
[2009/12/23 07:26:37 | 000,000,010 | ---- | C] () -- E:\Windows\GSetup.ini
[2009/08/02 18:21:54 | 000,197,912 | ---- | C] () -- E:\Windows\System32\physxcudart_20.dll
[2009/08/02 18:21:54 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelTraditionalChinese.dll
[2009/08/02 18:21:54 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelSwedish.dll
[2009/08/02 18:21:54 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelSpanish.dll
[2009/08/02 18:21:54 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelSimplifiedChinese.dll
[2009/08/02 18:21:54 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelPortugese.dll
[2009/08/02 18:21:54 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelKorean.dll
[2009/08/02 18:21:54 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelJapanese.dll
[2009/08/02 18:21:52 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelGerman.dll
[2009/08/02 18:21:52 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelFrench.dll
[2009/07/13 19:02:54 | 000,245,248 | ---- | C] () -- E:\Windows\System32\DShowRdpFilter.dll
[2009/07/13 18:51:43 | 000,073,728 | ---- | C] () -- E:\Windows\System32\BthpanContextHandler.dll
[2009/07/13 18:42:10 | 000,064,000 | ---- | C] () -- E:\Windows\System32\BWContextHandler.dll
[color=#E56717]========== LOP Check ==========[/color]
[2011/02/16 19:33:25 | 000,032,496 | ---- | M] () -- E:\Windows\Tasks\SCHEDLGU.TXT
[color=#E56717]========== Purity Check ==========[/color]
[color=#E56717]========== Custom Scans ==========[/color]
Invalid Environment Variable: %ALLUSERSPROFILE%\Application Data\*.
Invalid Environment Variable: %ALLUSERSPROFILE%\Application Data\*.exe
Invalid Environment Variable: %APPDATA%\*.
Invalid Environment Variable: %APPDATA%\*.exe
[color=#A23BEC]< %SYSTEMDRIVE%\*.* >[/color]
[2009/06/10 16:42:20 | 000,000,024 | ---- | M] () -- E:\autoexec.bat
[2009/06/10 16:42:20 | 000,000,010 | ---- | M] () -- E:\config.sys
[2009/12/23 07:32:42 | 000,000,197 | ---- | M] () -- E:\csb.log
[2011/03/03 10:12:07 | 2613,698,560 | -HS- | M] () -- E:\hiberfil.sys
[2009/12/23 07:32:15 | 000,000,190 | ---- | M] () -- E:\Install.log
[2010/03/16 09:46:54 | 000,000,000 | RHS- | M] () -- E:\IO.SYS
[2010/03/16 09:46:54 | 000,000,000 | RHS- | M] () -- E:\MSDOS.SYS
[2011/03/03 17:28:40 | 000,130,298 | ---- | M] () -- E:\OTL.Txt
[2011/03/03 10:12:12 | 3484,934,144 | -HS- | M] () -- E:\pagefile.sys
[2009/12/23 07:30:13 | 000,002,020 | ---- | M] () -- E:\RHDSetup.log
[2011/03/02 05:30:34 | 000,003,272 | ---- | M] () -- E:\RstAssociations.txt
[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
[color=#A23BEC]< %PROGRAMFILES%\*.* >[/color]
[2009/07/13 23:41:57 | 000,000,174 | -HS- | M] () -- E:\Program Files\desktop.ini
[color=#A23BEC]< %PROGRAMFILES%\*. >[/color]
[2011/01/25 06:15:55 | 000,000,000 | ---D | M] -- E:\Program Files\7de1b14852741633c10b073f9217
[2010/10/21 08:36:18 | 000,000,000 | ---D | M] -- E:\Program Files\Adobe
[2009/12/23 07:36:36 | 000,000,000 | ---D | M] -- E:\Program Files\AGEIA Technologies
[2009/12/26 06:41:40 | 000,000,000 | ---D | M] -- E:\Program Files\Apple Software Update
[2009/12/23 07:07:21 | 000,000,000 | ---D | M] -- E:\Program Files\AVG
[2010/12/24 09:26:42 | 000,000,000 | ---D | M] -- E:\Program Files\Bonjour
[2010/05/06 09:15:42 | 000,000,000 | ---D | M] -- E:\Program Files\CCleaner
[2010/12/10 05:50:14 | 000,000,000 | ---D | M] -- E:\Program Files\CDBurnerXP
[2010/10/21 08:36:18 | 000,000,000 | ---D | M] -- E:\Program Files\Common Files
[2009/12/23 07:27:14 | 000,000,000 | -H-D | M] -- E:\Program Files\DeviceVM
[2010/03/28 18:02:08 | 000,000,000 | ---D | M] -- E:\Program Files\Drivers
[2009/07/14 04:01:30 | 000,000,000 | ---D | M] -- E:\Program Files\DVD Maker
[2010/05/07 08:35:45 | 000,000,000 | ---D | M] -- E:\Program Files\eMule
[2011/03/02 04:06:11 | 000,000,000 | ---D | M] -- E:\Program Files\EslWire
[2009/12/23 06:55:06 | 000,000,000 | -HSD | M] -- E:\Program Files\Fichiers communs
[2011/02/16 11:37:59 | 000,000,000 | ---D | M] -- E:\Program Files\Full Tilt Poker.Fr
[2009/12/23 07:41:39 | 000,000,000 | ---D | M] -- E:\Program Files\GIGABYTE
[2011/02/27 11:23:59 | 000,000,000 | ---D | M] -- E:\Program Files\Heroes of Newerth
[2010/03/16 09:44:06 | 000,000,000 | -H-D | M] -- E:\Program Files\InstallShield Installation Information
[2009/12/23 07:27:34 | 000,000,000 | ---D | M] -- E:\Program Files\Intel
[2011/02/09 21:17:00 | 000,000,000 | ---D | M] -- E:\Program Files\Internet Explorer
[2010/12/24 09:28:03 | 000,000,000 | ---D | M] -- E:\Program Files\iPod
[2010/12/24 09:28:12 | 000,000,000 | ---D | M] -- E:\Program Files\iTunes
[2010/01/04 21:07:36 | 000,000,000 | ---D | M] -- E:\Program Files\Java
[2010/03/26 05:44:54 | 000,000,000 | ---D | M] -- E:\Program Files\JRE
[2010/03/28 17:40:33 | 000,000,000 | ---D | M] -- E:\Program Files\
[2011/03/01 19:16:14 | 000,000,000 | ---D | M] -- E:\Program Files\Malwarebytes' Anti-Malware
[2009/12/23 09:47:51 | 000,000,000 | ---D | M] -- E:\Program Files\Microsoft
[2009/07/14 04:01:21 | 000,000,000 | ---D | M] -- E:\Program Files\Microsoft Games
[2009/12/31 11:59:48 | 000,000,000 | ---D | M] -- E:\Program Files\Microsoft Games for Windows - LIVE
[2011/03/01 21:16:25 | 000,000,000 | ---D | M] -- E:\Program Files\Mozilla Firefox
[2009/07/13 23:52:30 | 000,000,000 | ---D | M] -- E:\Program Files\MSBuild
[2010/11/16 11:51:16 | 000,000,000 | ---D | M] -- E:\Program Files\MSECache
[2010/03/09 09:38:16 | 000,000,000 | ---D | M] -- E:\Program Files\Mumble
[2010/02/04 19:04:14 | 000,000,000 | ---D | M] -- E:\Program Files\NCsoft
[2011/03/01 22:47:36 | 000,000,000 | ---D | M] -- E:\Program Files\Neffy
[2009/12/23 07:37:13 | 000,000,000 | ---D | M] -- E:\Program Files\NVIDIA Corporation
[2010/03/26 05:44:54 | 000,000,000 | ---D | M] -- E:\Program Files\ 3
[2010/03/26 05:43:57 | 000,000,000 | ---D | M] -- E:\Program Files\ 3.2 (fr) Installation Files
[2010/04/13 11:33:58 | 000,000,000 | ---D | M] -- E:\Program Files\Pcsx2
[2010/06/23 19:01:16 | 000,000,000 | ---D | M] -- E:\Program Files\PDFCreator
[2010/12/25 03:27:08 | 000,000,000 | ---D | M] -- E:\Program Files\QuickTime
[2009/12/23 07:31:51 | 000,000,000 | ---D | M] -- E:\Program Files\Realtek
[2009/07/13 23:52:30 | 000,000,000 | ---D | M] -- E:\Program Files\Reference Assemblies
[2009/12/23 08:57:35 | 000,000,000 | ---D | M] -- E:\Program Files\SAGEM Wi-Fi 11g USB ADAPTER
[2010/03/28 18:02:43 | 000,000,000 | ---D | M] -- E:\Program Files\Saitek
[2011/03/02 07:10:09 | 000,000,000 | ---D | M] -- E:\Program Files\SanityCheck
[2011/03/02 06:32:29 | 000,000,000 | ---D | M] -- E:\Program Files\SEAF
[2011/03/03 09:25:48 | 000,000,000 | ---D | M] -- E:\Program Files\Steam
[2010/01/10 19:36:53 | 000,000,000 | ---D | M] -- E:\Program Files\Teamspeak2_RC2
[2009/12/23 07:30:13 | 000,000,000 | -H-D | M] -- E:\Program Files\Temp
[2010/05/30 14:25:10 | 000,000,000 | ---D | M] -- E:\Program Files\TmNationsForever
[2009/07/13 23:53:23 | 000,000,000 | -H-D | M] -- E:\Program Files\Uninstall Information
[2009/12/23 07:06:41 | 000,000,000 | ---D | M] -- E:\Program Files\VideoLAN
[2011/01/01 11:08:32 | 000,000,000 | ---D | M] -- E:\Program Files\Warcraft III
[2009/07/14 03:39:39 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Defender
[2009/07/14 04:01:29 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Journal
[2009/12/23 09:47:47 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Live
[2009/12/23 09:47:38 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Live SkyDrive
[2010/12/16 00:58:47 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Mail
[2010/10/14 11:31:00 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Media Player
[2009/12/23 06:55:06 | 000,000,000 | ---D | M] -- E:\Program Files\Windows NT
[2009/07/14 03:39:39 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Photo Viewer
[2009/07/13 23:52:32 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Portable Devices
[2009/07/14 03:39:39 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Sidebar
[2009/12/24 04:58:15 | 000,000,000 | ---D | M] -- E:\Program Files\WinRAR
[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2009/07/13 20:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- E:\Windows\System32\drivers\AGP440.sys
[2009/07/13 20:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- E:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_65848c2d7375a720\AGP440.sys
[2009/07/13 20:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- E:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\AGP440.sys
[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2009/07/13 20:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- E:\Windows\System32\drivers\atapi.sys
[2009/07/13 20:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- E:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_f64b9c35a3a5be81\atapi.sys
[2009/07/13 20:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- E:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys
[color=#A23BEC]< MD5 for: AUTOCHK.EXE >[/color]
[2009/07/13 20:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- E:\Windows\System32\autochk.exe
[2009/07/13 20:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- E:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2009/07/13 18:45:01 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=505506526A9D467307B3C393DEDAF858 -- E:\Windows\System32\drivers\beep.sys
[2009/07/13 18:45:01 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=505506526A9D467307B3C393DEDAF858 -- E:\Windows\winsxs\x86_microsoft-windows-beepsys_31bf3856ad364e35_6.1.7600.16385_none_c3f6f77668f0ddcc\beep.sys
[color=#A23BEC]< MD5 for: CNGAUDIT.DLL >[/color]
[2009/07/13 20:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- E:\Windows\System32\cngaudit.dll
[2009/07/13 20:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- E:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
[2009/07/13 20:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- E:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2009/10/31 00:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- E:\Windows\explorer.exe
[2009/10/31 00:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- E:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_51a66d6ddafc2ed1\explorer.exe
[2010/11/12 09:15:50 | 000,254,976 | ---- | M] () MD5=976A1B76A7D2A6CB184D63CB0500E8DC -- E:\Users\Home\AppData\Local\Temp\RarSFX0\procs\explorer.exe
[2010/11/12 09:15:50 | 000,254,976 | ---- | M] () MD5=976A1B76A7D2A6CB184D63CB0500E8DC -- E:\Users\Home\AppData\Local\Temp\RarSFX1\procs\explorer.exe
[2009/08/03 00:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- E:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_526619d4f3f142e6\explorer.exe
[2005/08/15 19:54:58 | 000,001,536 | ---- | M] () MD5=ABC6379205DE2618851C4FCBF72112EB -- E:\Users\Home\AppData\Local\Temp\RarSFX0\h\explorer.exe
[2005/08/15 19:54:58 | 000,001,536 | ---- | M] () MD5=ABC6379205DE2618851C4FCBF72112EB -- E:\Users\Home\AppData\Local\Temp\RarSFX1\h\explorer.exe
[2009/08/03 00:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- E:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_51e07e31dad00878\explorer.exe
[2009/10/31 01:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- E:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_52283b2af41f3691\explorer.exe
[color=#A23BEC]< MD5 for: IASTORV.SYS >[/color]
[2009/07/13 20:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- E:\Windows\System32\drivers\iaStorV.sys
[2009/07/13 20:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- E:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_18cccb83b34e1453\iaStorV.sys
[2009/07/13 20:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- E:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_aee7a89be91b9000\iaStorV.sys
[color=#A23BEC]< MD5 for: IMM32.DLL >[/color]
[2009/07/13 20:15:32 | 000,118,272 | ---- | M] (Microsoft Corporation) MD5=5DF8132ADF721329234403189FC94E16 -- E:\Windows\System32\imm32.dll
[2009/07/13 20:15:32 | 000,118,272 | ---- | M] (Microsoft Corporation) MD5=5DF8132ADF721329234403189FC94E16 -- E:\Windows\winsxs\x86_microsoft-windows-imm32_31bf3856ad364e35_6.1.7600.16385_none_5c2c7439dbbe9273\imm32.dll
[color=#A23BEC]< MD5 for: KERNEL32.DLL >[/color]
[2009/12/08 06:33:31 | 000,857,088 | ---- | M] (Microsoft Corporation) MD5=0369BA73CE6D918745579B24339765E8 -- E:\Windows\System32\kernel32.dll
[2009/12/08 06:33:31 | 000,857,088 | ---- | M] (Microsoft Corporation) MD5=0369BA73CE6D918745579B24339765E8 -- E:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.1.7600.16481_none_93903c22b7a2b5ea\kernel32.dll
[2009/07/13 20:15:35 | 000,857,088 | ---- | M] (Microsoft Corporation) MD5=4605F7EE9805F7E1C98D6C959DD2949C -- E:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.1.7600.16385_none_93943b64b79f1e1f\kernel32.dll
[2009/12/08 06:57:44 | 000,857,088 | ---- | M] (Microsoft Corporation) MD5=EB7B2309A2B16EEB73C2C13477FEF8FB -- E:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.1.7600.20591_none_940f0901d0c871a5\kernel32.dll
[color=#A23BEC]< MD5 for: MSWSOCK.DLL >[/color]
[2009/07/13 20:15:51 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=11A41F17527ED75D6B758FDD7F4FD00D -- E:\Windows\System32\mswsock.dll
[2009/07/13 20:15:51 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=11A41F17527ED75D6B758FDD7F4FD00D -- E:\Windows\winsxs\x86_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.1.7600.16385_none_b829ad298e9f53ff\mswsock.dll
[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2009/07/13 20:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- E:\Windows\System32\drivers\ndis.sys
[2009/07/13 20:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- E:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_a79d81ea7d62a289\ndis.sys
[color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color]
[2009/07/13 20:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- E:\Windows\System32\netlogon.dll
[2009/07/13 20:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- E:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_fd8e0d66994d7dc8\netlogon.dll
[color=#A23BEC]< MD5 for: NTFS.SYS >[/color]
[2009/07/13 20:20:44 | 001,210,432 | ---- | M] (Microsoft Corporation) MD5=3795DCD21F740EE799FB7223234215AF -- E:\Windows\System32\drivers\ntfs.sys
[2009/07/13 20:20:44 | 001,210,432 | ---- | M] (Microsoft Corporation) MD5=3795DCD21F740EE799FB7223234215AF -- E:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7600.16385_none_a6477fe07e3f2f04\ntfs.sys
[color=#A23BEC]< MD5 for: NVSTOR.SYS >[/color]
[2009/07/13 20:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- E:\Windows\System32\drivers\nvstor.sys
[2009/07/13 20:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- E:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_5bde3fe2945bce9e\nvstor.sys
[2009/07/13 20:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- E:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_39b1194b205239d8\nvstor.sys
[color=#A23BEC]< MD5 for: PROQUOTA.EXE >[/color]
[2009/07/13 20:14:29 | 000,028,160 | ---- | M] (Microsoft Corporation) MD5=8CDF71E78469BE54C29C1AD2FC8DE611 -- E:\Windows\System32\proquota.exe
[2009/07/13 20:14:29 | 000,028,160 | ---- | M] (Microsoft Corporation) MD5=8CDF71E78469BE54C29C1AD2FC8DE611 -- E:\Windows\winsxs\x86_microsoft-windows-proquota_31bf3856ad364e35_6.1.7600.16385_none_279d4dfaf3b8bd5a\proquota.exe
[color=#A23BEC]< MD5 for: QMGR.DLL >[/color]
[2009/07/13 20:16:12 | 000,589,312 | ---- | M] (Microsoft Corporation) MD5=53F476476F55A27F580661BDE09C4EC4 -- E:\Windows\System32\qmgr.dll
[2009/07/13 20:16:12 | 000,589,312 | ---- | M] (Microsoft Corporation) MD5=53F476476F55A27F580661BDE09C4EC4 -- E:\Windows\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.1.7600.16385_none_23671b105ac5a0fd\qmgr.dll
[color=#A23BEC]< MD5 for: SCECLI.DLL >[/color]
[2009/07/13 20:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- E:\Windows\System32\scecli.dll
[2009/07/13 20:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- E:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll
[color=#A23BEC]< MD5 for: SPOOLSV.EXE >[/color]
[2010/08/19 23:25:14 | 000,316,928 | ---- | M] (Microsoft Corporation) MD5=2FB4CE429488156B19C0D8E5C4552043 -- E:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.20785_none_d6ab9bc23bf9f1c6\spoolsv.exe
[2009/07/13 20:14:41 | 000,316,416 | ---- | M] (Microsoft Corporation) MD5=49B6DD6AB3715B7A67965F17194E98A9 -- E:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.16385_none_d621f94522dc5a87\spoolsv.exe
[2010/08/21 00:32:37 | 000,316,928 | ---- | M] (Microsoft Corporation) MD5=D1BB750EB51694DE183E08B9C33BE5B2 -- E:\Windows\System32\spoolsv.exe
[2010/08/21 00:32:37 | 000,316,928 | ---- | M] (Microsoft Corporation) MD5=D1BB750EB51694DE183E08B9C33BE5B2 -- E:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.16661_none_d6339da722cfb4be\spoolsv.exe
[color=#A23BEC]< MD5 for: SVCHOST.EXE >[/color]
[2009/07/13 20:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- E:\Windows\System32\svchost.exe
[2009/07/13 20:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- E:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[color=#A23BEC]< MD5 for: TERMSRV.DLL >[/color]
[2009/07/13 20:16:15 | 000,543,232 | ---- | M] (Microsoft Corporation) MD5=A01E50A04D7B1960B33E92B9080E6A94 -- E:\Windows\System32\termsrv.dll
[2009/07/13 20:16:15 | 000,543,232 | ---- | M] (Microsoft Corporation) MD5=A01E50A04D7B1960B33E92B9080E6A94 -- E:\Windows\winsxs\x86_microsoft-windows-t..teconnectionmanager_31bf3856ad364e35_6.1.7600.16385_none_8e7597ebb597acd3\termsrv.dll
[color=#A23BEC]< MD5 for: USERINIT.EXE >[/color]
[2009/07/13 20:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- E:\Windows\System32\userinit.exe
[2009/07/13 20:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- E:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009/05/26 12:47:22 | 000,031,232 | ---- | M] (NirSoft) MD5=AC6094297CD882B8626466CDEB64F19F -- E:\Users\Home\AppData\Local\Temp\RarSFX0\userinit.exe
[2009/05/26 12:47:22 | 000,031,232 | ---- | M] (NirSoft) MD5=AC6094297CD882B8626466CDEB64F19F -- E:\Users\Home\AppData\Local\Temp\RarSFX1\userinit.exe
[color=#A23BEC]< MD5 for: WS2_32.DLL >[/color]
[2009/07/13 20:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- E:\Windows\System32\ws2_32.dll
[2009/07/13 20:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- E:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll
[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[2009/07/13 20:15:07 | 000,418,816 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\cscui.dll
[2009/07/13 20:15:08 | 000,077,824 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\davclnt.dll
[2009/07/13 20:15:13 | 000,018,944 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\drprov.dll
[2009/07/13 20:15:14 | 000,189,952 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\EhStorShell.dll
[2009/07/13 20:15:21 | 000,828,928 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\fontext.dll
[2009/07/13 20:16:11 | 000,069,120 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\ntlanman.dll
[2009/07/13 20:16:11 | 000,442,880 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\ntshrui.dll
[2010/07/27 09:03:24 | 012,867,584 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\shell32.dll
[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
[color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color]
[color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color]
[color=#A23BEC]< c:\$recycle.bin\*.* /s >[/color]
< End of report >
OTLPE by OldTimer - Version Folder = X:\Programs\OTLPE
Windows 7 Ultimate (Version = 6.1.7600) - Type = System
Internet Explorer (Version = 8.0.7600.16385)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy
3.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 87.00% Memory free
3.00 Gb Paging File | 3.00 Gb Available in Paging File | 96.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = E: | %SystemRoot% = E:\Windows | %ProgramFiles% = E:\Program Files
Drive C: | 100.00 Mb Total Space | 65.70 Mb Free Space | 65.70% Space Free | Partition Type: NTFS
Drive D: | 465.76 Gb Total Space | 257.71 Gb Free Space | 55.33% Space Free | Partition Type: NTFS
Drive E: | 139.64 Gb Total Space | 11.80 Gb Free Space | 8.45% Space Free | Partition Type: NTFS
Drive F: | 3.72 Gb Total Space | 1.67 Gb Free Space | 44.76% Space Free | Partition Type: FAT32
Drive X: | 284.08 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet001
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV - [2011/03/01 13:45:49 | 000,407,336 | ---- | M] (Valve Corporation) [On_Demand] -- E:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2010/10/15 18:40:40 | 000,037,664 | ---- | M] (Apple Inc.) [Auto] -- E:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/05/27 09:23:22 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2010/01/26 10:45:08 | 000,243,056 | ---- | M] (CybelSoft) [On_Demand] -- E:\Program Files\\maconfservice.exe -- (maconfservice)
SRV - [2009/09/27 10:48:00 | 000,240,232 | ---- | M] (NVIDIA Corporation) [Auto] -- E:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2009/08/04 11:29:54 | 000,219,360 | ---- | M] (DeviceVM, Inc.) [Auto] -- E:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe -- (BCUService)
SRV - [2009/07/13 20:16:21 | 000,185,856 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\wwansvc.dll -- (WwanSvc)
SRV - [2009/07/13 20:16:17 | 000,151,552 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\wbiosrvc.dll -- (WbioSrvc)
SRV - [2009/07/13 20:16:17 | 000,119,808 | ---- | M] (Microsoft Corporation) [Auto] -- E:\Windows\System32\umpo.dll -- (Power)
SRV - [2009/07/13 20:16:16 | 000,037,376 | ---- | M] (Microsoft Corporation) [Auto] -- E:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2009/07/13 20:16:15 | 000,053,760 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\sppuinotify.dll -- (sppuinotify)
SRV - [2009/07/13 20:16:13 | 000,043,520 | ---- | M] (Microsoft Corporation) [Auto] -- E:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper)
SRV - [2009/07/13 20:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/13 20:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/13 20:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\pnrpsvc.dll -- (PNRPsvc)
SRV - [2009/07/13 20:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\pnrpsvc.dll -- (p2pimsvc)
SRV - [2009/07/13 20:16:12 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\provsvc.dll -- (HomeGroupProvider)
SRV - [2009/07/13 20:16:12 | 000,020,480 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg)
SRV - [2009/07/13 20:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto] -- E:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/07/13 20:15:36 | 000,194,560 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\ListSvc.dll -- (HomeGroupListener)
SRV - [2009/07/13 20:15:21 | 000,797,696 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2009/07/13 20:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto] -- E:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2009/07/13 20:15:10 | 000,218,624 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\defragsvc.dll -- (defragsvc)
SRV - [2009/07/13 20:14:59 | 000,076,800 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\bdesvc.dll -- (BDESVC)
SRV - [2009/07/13 20:14:58 | 000,088,064 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\AxInstSv.dll -- (AxInstSV)
SRV - [2009/07/13 20:14:53 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand] -- E:\Windows\System32\appidsvc.dll -- (AppIDSvc)
SRV - [2009/07/13 20:14:29 | 003,179,520 | ---- | M] (Microsoft Corporation) [Auto] -- E:\Windows\System32\sppsvc.exe -- (sppsvc)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - File not found [Kernel | On_Demand] -- -- (gdrv)
DRV - File not found [File_System | Auto] -- -- (eamonm)
DRV - [2010/12/20 12:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2010/12/08 05:53:18 | 000,841,912 | ---- | M] (<Turtle Entertainment>) [Kernel | Auto] -- E:\Windows\System32\drivers\ESLWireACD.sys -- (ESLWireAC)
DRV - [2010/03/02 04:53:42 | 000,024,504 | ---- | M] (Turtle Entertainment GmbH) [Kernel | On_Demand] -- E:\Windows\System32\drivers\ESLvnic.sys -- (ESLvnic1)
DRV - [2010/02/11 07:28:26 | 000,014,336 | ---- | M] (CybelSoft) [Kernel | On_Demand] -- E:\Program Files\\Drivers\driverhardwarev2.sys -- (driverhardwarev2)
DRV - [2009/12/11 02:44:02 | 000,133,720 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- E:\Windows\System32\drivers\ksecpkg.sys -- (KSecPkg)
DRV - [2009/09/27 18:12:21 | 009,509,832 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2009/08/25 06:26:36 | 002,758,240 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- E:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2009/08/21 15:24:03 | 000,066,592 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2009/08/13 03:10:36 | 000,096,368 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot] -- E:\Windows\System32\drivers\jraid.sys -- (JRAID)
DRV - [2009/07/30 06:58:26 | 000,187,392 | ---- | M] (Realtek ) [Kernel | On_Demand] -- E:\Windows\System32\drivers\Rt86win7.sys -- (RTL8167)
DRV - [2009/07/13 20:26:21 | 000,015,952 | ---- | M] (CMD Technology, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\cmdide.sys -- (cmdide)
DRV - [2009/07/13 20:26:17 | 000,297,552 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\adpahci.sys -- (adpahci)
DRV - [2009/07/13 20:26:15 | 000,422,976 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\adp94xx.sys -- (adp94xx)
DRV - [2009/07/13 20:26:15 | 000,159,312 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\amdsbs.sys -- (amdsbs)
DRV - [2009/07/13 20:26:15 | 000,146,512 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\adpu320.sys -- (adpu320)
DRV - [2009/07/13 20:26:15 | 000,086,608 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\arcsas.sys -- (arcsas)
DRV - [2009/07/13 20:26:15 | 000,079,952 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\amdsata.sys -- (amdsata)
DRV - [2009/07/13 20:26:15 | 000,076,368 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\arc.sys -- (arc)
DRV - [2009/07/13 20:26:15 | 000,023,616 | ---- | M] (Advanced Micro Devices) [Kernel | Boot] -- E:\Windows\System32\drivers\amdxata.sys -- (amdxata)
DRV - [2009/07/13 20:26:15 | 000,014,400 | ---- | M] (Acer Laboratories Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\aliide.sys -- (aliide)
DRV - [2009/07/13 20:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\nvstor.sys -- (nvstor)
DRV - [2009/07/13 20:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\nvraid.sys -- (nvraid)
DRV - [2009/07/13 20:20:44 | 000,044,624 | ---- | M] (IBM Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\nfrd960.sys -- (nfrd960)
DRV - [2009/07/13 20:20:37 | 000,089,168 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\lsi_sas.sys -- (LSI_SAS)
DRV - [2009/07/13 20:20:36 | 000,332,352 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\iaStorV.sys -- (iaStorV)
DRV - [2009/07/13 20:20:36 | 000,235,584 | ---- | M] (LSI Corporation, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\MegaSR.sys -- (MegaSR)
DRV - [2009/07/13 20:20:36 | 000,096,848 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2009/07/13 20:20:36 | 000,095,824 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\lsi_fc.sys -- (LSI_FC)
DRV - [2009/07/13 20:20:36 | 000,054,864 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\lsi_sas2.sys -- (LSI_SAS2)
DRV - [2009/07/13 20:20:36 | 000,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\iirsp.sys -- (iirsp)
DRV - [2009/07/13 20:20:36 | 000,030,800 | ---- | M] (LSI Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\megasas.sys -- (megasas)
DRV - [2009/07/13 20:20:36 | 000,013,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- E:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy)
DRV - [2009/07/13 20:20:28 | 000,453,712 | ---- | M] (Emulex) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\elxstor.sys -- (elxstor)
DRV - [2009/07/13 20:20:28 | 000,070,720 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\djsvs.sys -- (aic78xx)
DRV - [2009/07/13 20:20:28 | 000,067,152 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\HpSAMD.sys -- (HpSAMD)
DRV - [2009/07/13 20:20:28 | 000,046,160 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- E:\Windows\System32\drivers\fsdepends.sys -- (FsDepends)
DRV - [2009/07/13 20:19:11 | 000,141,904 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\vsmraid.sys -- (vsmraid)
DRV - [2009/07/13 20:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\vmbus.sys -- (vmbus)
DRV - [2009/07/13 20:19:10 | 000,159,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\vhdmp.sys -- (vhdmp)
DRV - [2009/07/13 20:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- E:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2009/07/13 20:19:10 | 000,032,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- E:\Windows\System32\drivers\vdrvroot.sys -- (vdrvroot)
DRV - [2009/07/13 20:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\storvsc.sys -- (storvsc)
DRV - [2009/07/13 20:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- E:\Windows\System32\drivers\wimmount.sys -- (WIMMount)
DRV - [2009/07/13 20:19:10 | 000,016,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\viaide.sys -- (viaide)
DRV - [2009/07/13 20:19:04 | 001,383,488 | ---- | M] (QLogic Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\ql2300.sys -- (ql2300)
DRV - [2009/07/13 20:19:04 | 000,173,648 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- E:\Windows\System32\drivers\rdyboost.sys -- (rdyboost)
DRV - [2009/07/13 20:19:04 | 000,106,064 | ---- | M] (QLogic Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\ql40xx.sys -- (ql40xx)
DRV - [2009/07/13 20:19:04 | 000,077,888 | ---- | M] (Silicon Integrated Systems) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\sisraid4.sys -- (SiSRaid4)
DRV - [2009/07/13 20:19:04 | 000,043,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- E:\Windows\System32\drivers\pcw.sys -- (pcw)
DRV - [2009/07/13 20:19:04 | 000,040,016 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\SiSRaid2.sys -- (SiSRaid2)
DRV - [2009/07/13 20:19:04 | 000,021,072 | ---- | M] (Promise Technology) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\stexstor.sys -- (stexstor)
DRV - [2009/07/13 20:17:54 | 000,369,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- E:\Windows\System32\drivers\cng.sys -- (CNG)
DRV - [2009/07/13 19:57:25 | 000,272,128 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand] -- E:\Windows\System32\Drivers\Brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2009/07/13 19:02:41 | 000,018,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\rdpbus.sys -- (rdpbus)
DRV - [2009/07/13 19:01:41 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | System] -- E:\Windows\System32\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV - [2009/07/13 18:55:00 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
DRV - [2009/07/13 18:53:51 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | System] -- E:\Windows\System32\drivers\wfplwf.sys -- (WfpLwf)
DRV - [2009/07/13 18:52:44 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\ndiscap.sys -- (NdisCap)
DRV - [2009/07/13 18:52:02 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\vwifibus.sys -- (vwifibus)
DRV - [2009/07/13 18:52:00 | 000,163,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\1394ohci.sys -- (1394ohci)
DRV - [2009/07/13 18:51:35 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\umpass.sys -- (UmPass)
DRV - [2009/07/13 18:51:23 | 000,080,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\USBAUDIO.sys -- (usbaudio) Pilote USB audio (WDM)
DRV - [2009/07/13 18:51:08 | 000,004,096 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV - [2009/07/13 18:46:55 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\MTConfig.sys -- (MTConfig)
DRV - [2009/07/13 18:45:26 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\CompositeBus.sys -- (CompositeBus)
DRV - [2009/07/13 18:36:52 | 000,050,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\drivers\appid.sys -- (AppID)
DRV - [2009/07/13 18:33:50 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\scfilter.sys -- (scfilter)
DRV - [2009/07/13 18:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\vms3cap.sys -- (s3cap)
DRV - [2009/07/13 18:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\VMBusHID.sys -- (VMBusHID)
DRV - [2009/07/13 18:24:05 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | System] -- E:\Windows\System32\drivers\discache.sys -- (discache)
DRV - [2009/07/13 18:16:36 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\acpipmi.sys -- (AcpiPmi)
DRV - [2009/07/13 18:11:04 | 000,052,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\amdppm.sys -- (AmdPPM)
DRV - [2009/07/13 17:54:14 | 000,026,624 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand] -- E:\Windows\system32\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/13 17:53:33 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand] -- E:\Windows\System32\Drivers\BrUsbMdm.sys -- (BrUsbMdm)
DRV - [2009/07/13 17:53:33 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand] -- E:\Windows\System32\Drivers\BrUsbSer.sys -- (BrUsbSer)
DRV - [2009/07/13 17:53:32 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand] -- E:\Windows\System32\Drivers\BrSerWdm.sys -- (BrSerWdm)
DRV - [2009/07/13 17:53:28 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\BrFiltLo.sys -- (BrFiltLo)
DRV - [2009/07/13 17:53:28 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\BrFiltUp.sys -- (BrFiltUp)
DRV - [2009/07/13 17:02:49 | 000,229,888 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- E:\Windows\System32\drivers\b57nd60x.sys -- (b57nd60x)
DRV - [2009/07/13 17:02:48 | 003,100,160 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\evbdx.sys -- (ebdrv)
DRV - [2009/07/13 17:02:48 | 000,430,080 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand] -- E:\Windows\system32\DRIVERS\bxvbdx.sys -- (b06bdrv)
DRV - [2008/03/10 08:46:24 | 000,873,472 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand] -- E:\Windows\System32\drivers\WlanUZAG.sys -- (SA760V32)
DRV - [2008/03/10 08:46:24 | 000,020,736 | ---- | M] (ZDC., Inc. (ZDC)) [Kernel | On_Demand] -- E:\Windows\System32\ZDCndis5.sys -- (ZDCNDIS5)
DRV - [2008/02/18 07:21:34 | 000,104,960 | ---- | M] (Saitek) [Kernel | On_Demand] -- E:\Windows\System32\drivers\SaiK0728.sys -- (SaiK0728)
DRV - [2005/08/17 00:46:26 | 000,093,872 | ---- | M] (MCCI) [Kernel | On_Demand] -- E:\Windows\System32\drivers\sscdmdm.sys -- (sscdmdm)
DRV - [2005/08/17 00:46:20 | 000,008,272 | ---- | M] (MCCI) [Kernel | On_Demand] -- E:\Windows\System32\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV - [2005/08/17 00:45:00 | 000,058,352 | ---- | M] (MCCI) [Kernel | On_Demand] -- E:\Windows\System32\drivers\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - File not found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Home_ON_E\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache =
IE - HKU\Home_ON_E\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr
IE - HKU\Home_ON_E\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = EF BE D3 20 C4 8F CB 01 [binary data]
IE - HKU\Home_ON_E\..\URLSearchHook: {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - E:\Program Files\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.)
IE - HKU\Home_ON_E\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Home_ON_E\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
[color=#E56717]========== FireFox ==========[/color]
FF - "AVG Secure Search"
FF - "AVG Secure Search"
FF - prefs.js..browser.startup.homepage: ""
FF - prefs.js..extensions.enabledItems:
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:
FF - prefs.js..keyword.URL: ""
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/01/16 04:18:23 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/01/16 04:18:23 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\ C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
[2009/12/23 07:09:49 | 000,000,000 | ---D | M] (No name found) -- E:\Users\Home\AppData\Roaming\Mozilla\Extensions
[2011/03/01 20:49:22 | 000,000,000 | ---D | M] (No name found) -- E:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\in172zqd.default\extensions
[2010/05/06 09:15:42 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- E:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\in172zqd.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2010/02/26 05:38:24 | 000,000,000 | ---D | M] (Illimitux) -- E:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\in172zqd.default\extensions\
[2011/03/01 20:49:22 | 000,000,000 | ---D | M] (No name found) -- E:\Program Files\Mozilla Firefox\extensions
[2010/09/14 06:10:38 | 000,001,516 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml
[2010/09/14 06:10:38 | 000,001,822 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml
[2010/09/14 06:10:38 | 000,000,757 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml
[2010/09/14 06:10:38 | 000,001,426 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml
[2010/09/14 06:10:38 | 000,000,956 | ---- | M] () -- E:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml
O1 HOSTS File: ([2009/06/10 16:39:37 | 000,000,824 | ---- | M]) - E:\Windows\System32\drivers\etc\hosts
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - File not found
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - File not found
O3 - HKU\Home_ON_E\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - File not found
O4 - HKLM..\Run: [BCU] E:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)
O4 - HKLM..\Run: [JMB36X IDE Setup] E:\Windows\RaidTool\xInsIDE.exe ()
O4 - HKLM..\Run: [RtHDVCpl] E:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SaiVolume] E:\Program Files\Saitek\CyborgKeyboard\SaiVolume.exe (Saitek)
O4 - HKU\Home_ON_E..\Run: [ESL Wire] E:\Program Files\EslWire\wire.exe (Turtle Entertainment GmbH)
O4 - HKU\Home_ON_E..\Run: [RESTART_STICKY_NOTES] E:\Windows\System32\StikyNot.exe (Microsoft Corporation)
O4 - HKU\Home_ON_E..\Run: [RGSC] File not found
O4 - HKU\Home_ON_E..\Run: [Steam] E:\Program Files\Steam\Steam.exe (Valve Corporation)
O4 - HKLM..\RunOnce: [AvgUninstallURL] E:\Windows\System32\cmd.exe (Microsoft Corporation)
O4 - HKU\LocalService_ON_E..\RunOnce: [mctadmin] E:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\NetworkService_ON_E..\RunOnce: [mctadmin] E:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - Startup: E:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE Gamer HUD Lite.lnk ()
O4 - Startup: E:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ 3.2.lnk ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9 - Extra Button: - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - File not found
O9 - Extra 'Tools' menuitem : - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - E:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} (Java Plug-in 1.6.0_18)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer =
O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - E:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - E:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O30 - LSA: Security Packages - (pku2u) - E:\Windows\System32\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (livessp) - E:\Windows\System32\livessp.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 16:42:20 | 000,000,024 | ---- | M] () - E:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 06:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{0df905be-8c0c-11df-a4cb-00241dde4df1}\Shell - "" = AutoRun
O33 - MountPoints2\{0df905be-8c0c-11df-a4cb-00241dde4df1}\Shell\AutoRun\command - "" = F:\LaunchU3.exe
O33 - MountPoints2\{978da26c-efb8-11de-8420-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{978da26c-efb8-11de-8420-806e6f6e6963}\Shell\AutoRun\command - "" = D:\reatogoMenu.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\ [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2011/03/03 09:08:55 | 002,193,408 | ---- | C] (OldTimer Tools) -- E:\Users\Home\Desktop\OTLPE.exe
[2011/03/02 07:10:09 | 000,000,000 | ---D | C] -- E:\Program Files\SanityCheck
[2011/03/02 06:32:29 | 000,000,000 | ---D | C] -- E:\Program Files\SEAF
[2011/03/02 06:20:00 | 000,000,000 | R--D | C] -- E:\32788R22FWJFW
[2011/03/02 06:15:15 | 000,000,000 | ---D | C] -- E:\Users\Home\Desktop\SysProt
[2011/03/01 22:17:13 | 000,000,000 | -HSD | C] -- E:\Config.Msi
[2011/03/01 19:16:14 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- E:\Windows\System32\drivers\mbamswissarmy.sys
[2011/03/01 19:16:11 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- E:\Windows\System32\drivers\mbam.sys
[2011/03/01 18:37:53 | 000,000,000 | ---D | C] -- E:\Windows\System32\RK_Quarantine
[2011/03/01 16:01:28 | 000,000,000 | ---D | C] -- E:\Users\Home\AppData\Roaming\Malwarebytes
[2011/03/01 16:01:17 | 000,000,000 | ---D | C] -- E:\Program Files\Malwarebytes' Anti-Malware
[2011/03/01 15:56:30 | 000,118,784 | RHS- | C] (Zfmjnkpky Wzygsdcruph) -- E:\Users\Home\AppData\Roaming\wmvdspa6.dll
[2011/03/01 15:55:15 | 000,000,000 | ---D | C] -- E:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Antimalware Doctor
[2011/02/09 16:23:51 | 002,329,088 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\win32k.sys
[2011/02/09 16:23:45 | 000,716,800 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\jscript.dll
[2011/02/09 16:23:45 | 000,428,032 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\vbscript.dll
[2011/02/09 16:23:41 | 000,606,208 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\mstime.dll
[2011/02/09 16:23:41 | 000,599,040 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\msfeeds.dll
[2011/02/09 16:23:41 | 000,381,440 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\iedkcs32.dll
[2011/02/09 16:23:41 | 000,185,856 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\iepeers.dll
[2011/02/09 16:23:41 | 000,176,640 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\ieui.dll
[2011/02/09 16:23:40 | 001,638,912 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\mshtml.tlb
[2011/02/09 16:23:40 | 000,386,048 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\html.iec
[2011/02/09 16:23:40 | 000,064,512 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\msfeedsbs.dll
[2011/02/09 16:23:40 | 000,048,128 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\jsproxy.dll
[2011/02/09 16:23:40 | 000,044,544 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\licmgr10.dll
[2011/02/09 16:23:40 | 000,012,800 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\msfeedssync.exe
[2011/02/09 16:23:35 | 000,294,400 | ---- | C] (Adobe Systems Incorporated) -- E:\Windows\System32\atmfd.dll
[2011/02/09 16:23:35 | 000,034,304 | ---- | C] (Adobe Systems) -- E:\Windows\System32\atmlib.dll
[2011/02/09 16:23:34 | 003,901,824 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\ntoskrnl.exe
[2011/02/09 16:23:33 | 003,957,120 | ---- | C] (Microsoft Corporation) -- E:\Windows\System32\ntkrnlpa.exe
[2011/02/09 14:07:03 | 000,000,000 | ---D | C] -- E:\Users\Home\AppData\Local\Electronic Arts
[2011/02/09 14:07:00 | 000,000,000 | ---D | C] -- E:\Users\Home\Documents\Electronic Arts
[2011/02/09 14:06:33 | 000,000,000 | ---D | C] -- E:\Users\Home\Documents\Electrontic Arts
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2011/03/03 10:13:46 | 000,067,584 | --S- | M] () -- E:\Windows\bootstat.dat
[2011/03/03 10:12:07 | 2613,698,560 | -HS- | M] () -- E:\hiberfil.sys
[2011/03/03 09:43:17 | 000,014,416 | -H-- | M] () -- E:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/03/03 09:43:17 | 000,014,416 | -H-- | M] () -- E:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/03/03 09:25:00 | 000,001,072 | ---- | M] () -- E:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2129638292-2542384058-1853087902-1000UA.job
[2011/03/03 08:54:37 | 000,694,766 | ---- | M] () -- E:\Windows\System32\perfh00C.dat
[2011/03/03 08:54:37 | 000,606,992 | ---- | M] () -- E:\Windows\System32\perfh009.dat
[2011/03/03 08:54:37 | 000,127,478 | ---- | M] () -- E:\Windows\System32\perfc00C.dat
[2011/03/03 08:54:37 | 000,103,370 | ---- | M] () -- E:\Windows\System32\perfc009.dat
[2011/03/02 15:25:00 | 000,001,020 | ---- | M] () -- E:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2129638292-2542384058-1853087902-1000Core.job
[2011/03/02 07:33:37 | 000,003,367 | ---- | M] () -- E:\Users\Home\AppData\Local\Temp30.html
[2011/03/02 07:12:42 | 000,001,293 | ---- | M] () -- E:\Users\Home\AppData\Local\Temp1.html
[2011/03/02 07:10:09 | 000,000,920 | ---- | M] () -- E:\Users\Home\Desktop\SanityCheck.lnk
[2011/03/02 06:26:27 | 000,285,640 | ---- | M] () -- E:\Users\Home\Desktop\
[2011/03/02 06:13:49 | 000,354,396 | ---- | M] () -- E:\Users\Home\Desktop\
[2011/03/02 06:11:48 | 000,300,929 | ---- | M] () -- E:\Users\Home\Desktop\agibck70dl.exe
[2011/03/02 06:04:40 | 000,285,697 | ---- | M] () -- E:\Users\Home\Desktop\
[2011/03/02 06:02:16 | 000,300,971 | ---- | M] () -- E:\Users\Home\Desktop\newsecureapp70700.exe
[2011/03/02 05:23:32 | 004,278,549 | ---- | M] () -- E:\Users\Home\Desktop\ComboFix (1).exe
[2011/03/01 15:56:30 | 000,118,784 | RHS- | M] (Zfmjnkpky Wzygsdcruph) -- E:\Users\Home\AppData\Roaming\wmvdspa6.dll
[2011/03/01 15:55:15 | 000,001,125 | ---- | M] () -- E:\Users\Home\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Antimalware Doctor.lnk
[2011/02/09 21:18:05 | 000,289,256 | ---- | M] () -- E:\Windows\System32\FNTCACHE.DAT
[2011/02/02 13:48:58 | 002,193,408 | ---- | M] (OldTimer Tools) -- E:\Users\Home\Desktop\OTLPE.exe
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2011/03/02 07:33:37 | 000,003,367 | ---- | C] () -- E:\Users\Home\AppData\Local\Temp30.html
[2011/03/02 07:11:09 | 000,001,293 | ---- | C] () -- E:\Users\Home\AppData\Local\Temp1.html
[2011/03/02 07:10:09 | 000,000,920 | ---- | C] () -- E:\Users\Home\Desktop\SanityCheck.lnk
[2011/03/02 06:26:37 | 000,300,929 | ---- | C] () -- E:\Users\Home\Desktop\agibck70dl.exe
[2011/03/02 06:26:31 | 000,285,640 | ---- | C] () -- E:\Users\Home\Desktop\
[2011/03/02 06:15:13 | 000,354,396 | ---- | C] () -- E:\Users\Home\Desktop\
[2011/03/02 06:05:01 | 000,300,971 | ---- | C] () -- E:\Users\Home\Desktop\newsecureapp70700.exe
[2011/03/02 06:04:42 | 000,285,697 | ---- | C] () -- E:\Users\Home\Desktop\
[2011/03/02 05:23:35 | 004,278,549 | ---- | C] () -- E:\Users\Home\Desktop\ComboFix (1).exe
[2011/03/01 15:55:15 | 000,001,125 | ---- | C] () -- E:\Users\Home\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Antimalware Doctor.lnk
[2010/10/13 19:36:44 | 000,179,263 | ---- | C] () -- E:\Windows\System32\
[2010/06/23 19:01:13 | 000,116,224 | ---- | C] () -- E:\Windows\System32\pdfcmnnt.dll
[2010/03/16 09:43:50 | 000,000,050 | ---- | C] () -- E:\Windows\MegaManager.INI
[2009/12/23 07:32:04 | 000,073,728 | ---- | C] () -- E:\Windows\System32\RtNicProp32.dll
[2009/12/23 07:30:18 | 000,146,432 | ---- | C] () -- E:\Windows\System32\APOMngr.DLL
[2009/12/23 07:30:18 | 000,072,704 | ---- | C] () -- E:\Windows\System32\CmdRtr.DLL
[2009/12/23 07:26:37 | 000,000,010 | ---- | C] () -- E:\Windows\GSetup.ini
[2009/08/02 18:21:54 | 000,197,912 | ---- | C] () -- E:\Windows\System32\physxcudart_20.dll
[2009/08/02 18:21:54 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelTraditionalChinese.dll
[2009/08/02 18:21:54 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelSwedish.dll
[2009/08/02 18:21:54 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelSpanish.dll
[2009/08/02 18:21:54 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelSimplifiedChinese.dll
[2009/08/02 18:21:54 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelPortugese.dll
[2009/08/02 18:21:54 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelKorean.dll
[2009/08/02 18:21:54 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelJapanese.dll
[2009/08/02 18:21:52 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelGerman.dll
[2009/08/02 18:21:52 | 000,058,648 | ---- | C] () -- E:\Windows\System32\AgCPanelFrench.dll
[2009/07/13 19:02:54 | 000,245,248 | ---- | C] () -- E:\Windows\System32\DShowRdpFilter.dll
[2009/07/13 18:51:43 | 000,073,728 | ---- | C] () -- E:\Windows\System32\BthpanContextHandler.dll
[2009/07/13 18:42:10 | 000,064,000 | ---- | C] () -- E:\Windows\System32\BWContextHandler.dll
[color=#E56717]========== LOP Check ==========[/color]
[2011/02/16 19:33:25 | 000,032,496 | ---- | M] () -- E:\Windows\Tasks\SCHEDLGU.TXT
[color=#E56717]========== Purity Check ==========[/color]
[color=#E56717]========== Custom Scans ==========[/color]
Invalid Environment Variable: %ALLUSERSPROFILE%\Application Data\*.
Invalid Environment Variable: %ALLUSERSPROFILE%\Application Data\*.exe
Invalid Environment Variable: %APPDATA%\*.
Invalid Environment Variable: %APPDATA%\*.exe
[color=#A23BEC]< %SYSTEMDRIVE%\*.* >[/color]
[2009/06/10 16:42:20 | 000,000,024 | ---- | M] () -- E:\autoexec.bat
[2009/06/10 16:42:20 | 000,000,010 | ---- | M] () -- E:\config.sys
[2009/12/23 07:32:42 | 000,000,197 | ---- | M] () -- E:\csb.log
[2011/03/03 10:12:07 | 2613,698,560 | -HS- | M] () -- E:\hiberfil.sys
[2009/12/23 07:32:15 | 000,000,190 | ---- | M] () -- E:\Install.log
[2010/03/16 09:46:54 | 000,000,000 | RHS- | M] () -- E:\IO.SYS
[2010/03/16 09:46:54 | 000,000,000 | RHS- | M] () -- E:\MSDOS.SYS
[2011/03/03 17:28:40 | 000,130,298 | ---- | M] () -- E:\OTL.Txt
[2011/03/03 10:12:12 | 3484,934,144 | -HS- | M] () -- E:\pagefile.sys
[2009/12/23 07:30:13 | 000,002,020 | ---- | M] () -- E:\RHDSetup.log
[2011/03/02 05:30:34 | 000,003,272 | ---- | M] () -- E:\RstAssociations.txt
[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
[color=#A23BEC]< %PROGRAMFILES%\*.* >[/color]
[2009/07/13 23:41:57 | 000,000,174 | -HS- | M] () -- E:\Program Files\desktop.ini
[color=#A23BEC]< %PROGRAMFILES%\*. >[/color]
[2011/01/25 06:15:55 | 000,000,000 | ---D | M] -- E:\Program Files\7de1b14852741633c10b073f9217
[2010/10/21 08:36:18 | 000,000,000 | ---D | M] -- E:\Program Files\Adobe
[2009/12/23 07:36:36 | 000,000,000 | ---D | M] -- E:\Program Files\AGEIA Technologies
[2009/12/26 06:41:40 | 000,000,000 | ---D | M] -- E:\Program Files\Apple Software Update
[2009/12/23 07:07:21 | 000,000,000 | ---D | M] -- E:\Program Files\AVG
[2010/12/24 09:26:42 | 000,000,000 | ---D | M] -- E:\Program Files\Bonjour
[2010/05/06 09:15:42 | 000,000,000 | ---D | M] -- E:\Program Files\CCleaner
[2010/12/10 05:50:14 | 000,000,000 | ---D | M] -- E:\Program Files\CDBurnerXP
[2010/10/21 08:36:18 | 000,000,000 | ---D | M] -- E:\Program Files\Common Files
[2009/12/23 07:27:14 | 000,000,000 | -H-D | M] -- E:\Program Files\DeviceVM
[2010/03/28 18:02:08 | 000,000,000 | ---D | M] -- E:\Program Files\Drivers
[2009/07/14 04:01:30 | 000,000,000 | ---D | M] -- E:\Program Files\DVD Maker
[2010/05/07 08:35:45 | 000,000,000 | ---D | M] -- E:\Program Files\eMule
[2011/03/02 04:06:11 | 000,000,000 | ---D | M] -- E:\Program Files\EslWire
[2009/12/23 06:55:06 | 000,000,000 | -HSD | M] -- E:\Program Files\Fichiers communs
[2011/02/16 11:37:59 | 000,000,000 | ---D | M] -- E:\Program Files\Full Tilt Poker.Fr
[2009/12/23 07:41:39 | 000,000,000 | ---D | M] -- E:\Program Files\GIGABYTE
[2011/02/27 11:23:59 | 000,000,000 | ---D | M] -- E:\Program Files\Heroes of Newerth
[2010/03/16 09:44:06 | 000,000,000 | -H-D | M] -- E:\Program Files\InstallShield Installation Information
[2009/12/23 07:27:34 | 000,000,000 | ---D | M] -- E:\Program Files\Intel
[2011/02/09 21:17:00 | 000,000,000 | ---D | M] -- E:\Program Files\Internet Explorer
[2010/12/24 09:28:03 | 000,000,000 | ---D | M] -- E:\Program Files\iPod
[2010/12/24 09:28:12 | 000,000,000 | ---D | M] -- E:\Program Files\iTunes
[2010/01/04 21:07:36 | 000,000,000 | ---D | M] -- E:\Program Files\Java
[2010/03/26 05:44:54 | 000,000,000 | ---D | M] -- E:\Program Files\JRE
[2010/03/28 17:40:33 | 000,000,000 | ---D | M] -- E:\Program Files\
[2011/03/01 19:16:14 | 000,000,000 | ---D | M] -- E:\Program Files\Malwarebytes' Anti-Malware
[2009/12/23 09:47:51 | 000,000,000 | ---D | M] -- E:\Program Files\Microsoft
[2009/07/14 04:01:21 | 000,000,000 | ---D | M] -- E:\Program Files\Microsoft Games
[2009/12/31 11:59:48 | 000,000,000 | ---D | M] -- E:\Program Files\Microsoft Games for Windows - LIVE
[2011/03/01 21:16:25 | 000,000,000 | ---D | M] -- E:\Program Files\Mozilla Firefox
[2009/07/13 23:52:30 | 000,000,000 | ---D | M] -- E:\Program Files\MSBuild
[2010/11/16 11:51:16 | 000,000,000 | ---D | M] -- E:\Program Files\MSECache
[2010/03/09 09:38:16 | 000,000,000 | ---D | M] -- E:\Program Files\Mumble
[2010/02/04 19:04:14 | 000,000,000 | ---D | M] -- E:\Program Files\NCsoft
[2011/03/01 22:47:36 | 000,000,000 | ---D | M] -- E:\Program Files\Neffy
[2009/12/23 07:37:13 | 000,000,000 | ---D | M] -- E:\Program Files\NVIDIA Corporation
[2010/03/26 05:44:54 | 000,000,000 | ---D | M] -- E:\Program Files\ 3
[2010/03/26 05:43:57 | 000,000,000 | ---D | M] -- E:\Program Files\ 3.2 (fr) Installation Files
[2010/04/13 11:33:58 | 000,000,000 | ---D | M] -- E:\Program Files\Pcsx2
[2010/06/23 19:01:16 | 000,000,000 | ---D | M] -- E:\Program Files\PDFCreator
[2010/12/25 03:27:08 | 000,000,000 | ---D | M] -- E:\Program Files\QuickTime
[2009/12/23 07:31:51 | 000,000,000 | ---D | M] -- E:\Program Files\Realtek
[2009/07/13 23:52:30 | 000,000,000 | ---D | M] -- E:\Program Files\Reference Assemblies
[2009/12/23 08:57:35 | 000,000,000 | ---D | M] -- E:\Program Files\SAGEM Wi-Fi 11g USB ADAPTER
[2010/03/28 18:02:43 | 000,000,000 | ---D | M] -- E:\Program Files\Saitek
[2011/03/02 07:10:09 | 000,000,000 | ---D | M] -- E:\Program Files\SanityCheck
[2011/03/02 06:32:29 | 000,000,000 | ---D | M] -- E:\Program Files\SEAF
[2011/03/03 09:25:48 | 000,000,000 | ---D | M] -- E:\Program Files\Steam
[2010/01/10 19:36:53 | 000,000,000 | ---D | M] -- E:\Program Files\Teamspeak2_RC2
[2009/12/23 07:30:13 | 000,000,000 | -H-D | M] -- E:\Program Files\Temp
[2010/05/30 14:25:10 | 000,000,000 | ---D | M] -- E:\Program Files\TmNationsForever
[2009/07/13 23:53:23 | 000,000,000 | -H-D | M] -- E:\Program Files\Uninstall Information
[2009/12/23 07:06:41 | 000,000,000 | ---D | M] -- E:\Program Files\VideoLAN
[2011/01/01 11:08:32 | 000,000,000 | ---D | M] -- E:\Program Files\Warcraft III
[2009/07/14 03:39:39 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Defender
[2009/07/14 04:01:29 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Journal
[2009/12/23 09:47:47 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Live
[2009/12/23 09:47:38 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Live SkyDrive
[2010/12/16 00:58:47 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Mail
[2010/10/14 11:31:00 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Media Player
[2009/12/23 06:55:06 | 000,000,000 | ---D | M] -- E:\Program Files\Windows NT
[2009/07/14 03:39:39 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Photo Viewer
[2009/07/13 23:52:32 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Portable Devices
[2009/07/14 03:39:39 | 000,000,000 | ---D | M] -- E:\Program Files\Windows Sidebar
[2009/12/24 04:58:15 | 000,000,000 | ---D | M] -- E:\Program Files\WinRAR
[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2009/07/13 20:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- E:\Windows\System32\drivers\AGP440.sys
[2009/07/13 20:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- E:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_65848c2d7375a720\AGP440.sys
[2009/07/13 20:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- E:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\AGP440.sys
[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2009/07/13 20:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- E:\Windows\System32\drivers\atapi.sys
[2009/07/13 20:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- E:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_f64b9c35a3a5be81\atapi.sys
[2009/07/13 20:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- E:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys
[color=#A23BEC]< MD5 for: AUTOCHK.EXE >[/color]
[2009/07/13 20:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- E:\Windows\System32\autochk.exe
[2009/07/13 20:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- E:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2009/07/13 18:45:01 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=505506526A9D467307B3C393DEDAF858 -- E:\Windows\System32\drivers\beep.sys
[2009/07/13 18:45:01 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=505506526A9D467307B3C393DEDAF858 -- E:\Windows\winsxs\x86_microsoft-windows-beepsys_31bf3856ad364e35_6.1.7600.16385_none_c3f6f77668f0ddcc\beep.sys
[color=#A23BEC]< MD5 for: CNGAUDIT.DLL >[/color]
[2009/07/13 20:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- E:\Windows\System32\cngaudit.dll
[2009/07/13 20:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- E:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
[2009/07/13 20:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- E:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2009/10/31 00:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- E:\Windows\explorer.exe
[2009/10/31 00:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- E:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_51a66d6ddafc2ed1\explorer.exe
[2010/11/12 09:15:50 | 000,254,976 | ---- | M] () MD5=976A1B76A7D2A6CB184D63CB0500E8DC -- E:\Users\Home\AppData\Local\Temp\RarSFX0\procs\explorer.exe
[2010/11/12 09:15:50 | 000,254,976 | ---- | M] () MD5=976A1B76A7D2A6CB184D63CB0500E8DC -- E:\Users\Home\AppData\Local\Temp\RarSFX1\procs\explorer.exe
[2009/08/03 00:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- E:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_526619d4f3f142e6\explorer.exe
[2005/08/15 19:54:58 | 000,001,536 | ---- | M] () MD5=ABC6379205DE2618851C4FCBF72112EB -- E:\Users\Home\AppData\Local\Temp\RarSFX0\h\explorer.exe
[2005/08/15 19:54:58 | 000,001,536 | ---- | M] () MD5=ABC6379205DE2618851C4FCBF72112EB -- E:\Users\Home\AppData\Local\Temp\RarSFX1\h\explorer.exe
[2009/08/03 00:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- E:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_51e07e31dad00878\explorer.exe
[2009/10/31 01:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- E:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_52283b2af41f3691\explorer.exe
[color=#A23BEC]< MD5 for: IASTORV.SYS >[/color]
[2009/07/13 20:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- E:\Windows\System32\drivers\iaStorV.sys
[2009/07/13 20:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- E:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_18cccb83b34e1453\iaStorV.sys
[2009/07/13 20:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- E:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_aee7a89be91b9000\iaStorV.sys
[color=#A23BEC]< MD5 for: IMM32.DLL >[/color]
[2009/07/13 20:15:32 | 000,118,272 | ---- | M] (Microsoft Corporation) MD5=5DF8132ADF721329234403189FC94E16 -- E:\Windows\System32\imm32.dll
[2009/07/13 20:15:32 | 000,118,272 | ---- | M] (Microsoft Corporation) MD5=5DF8132ADF721329234403189FC94E16 -- E:\Windows\winsxs\x86_microsoft-windows-imm32_31bf3856ad364e35_6.1.7600.16385_none_5c2c7439dbbe9273\imm32.dll
[color=#A23BEC]< MD5 for: KERNEL32.DLL >[/color]
[2009/12/08 06:33:31 | 000,857,088 | ---- | M] (Microsoft Corporation) MD5=0369BA73CE6D918745579B24339765E8 -- E:\Windows\System32\kernel32.dll
[2009/12/08 06:33:31 | 000,857,088 | ---- | M] (Microsoft Corporation) MD5=0369BA73CE6D918745579B24339765E8 -- E:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.1.7600.16481_none_93903c22b7a2b5ea\kernel32.dll
[2009/07/13 20:15:35 | 000,857,088 | ---- | M] (Microsoft Corporation) MD5=4605F7EE9805F7E1C98D6C959DD2949C -- E:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.1.7600.16385_none_93943b64b79f1e1f\kernel32.dll
[2009/12/08 06:57:44 | 000,857,088 | ---- | M] (Microsoft Corporation) MD5=EB7B2309A2B16EEB73C2C13477FEF8FB -- E:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.1.7600.20591_none_940f0901d0c871a5\kernel32.dll
[color=#A23BEC]< MD5 for: MSWSOCK.DLL >[/color]
[2009/07/13 20:15:51 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=11A41F17527ED75D6B758FDD7F4FD00D -- E:\Windows\System32\mswsock.dll
[2009/07/13 20:15:51 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=11A41F17527ED75D6B758FDD7F4FD00D -- E:\Windows\winsxs\x86_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.1.7600.16385_none_b829ad298e9f53ff\mswsock.dll
[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2009/07/13 20:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- E:\Windows\System32\drivers\ndis.sys
[2009/07/13 20:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- E:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_a79d81ea7d62a289\ndis.sys
[color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color]
[2009/07/13 20:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- E:\Windows\System32\netlogon.dll
[2009/07/13 20:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- E:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_fd8e0d66994d7dc8\netlogon.dll
[color=#A23BEC]< MD5 for: NTFS.SYS >[/color]
[2009/07/13 20:20:44 | 001,210,432 | ---- | M] (Microsoft Corporation) MD5=3795DCD21F740EE799FB7223234215AF -- E:\Windows\System32\drivers\ntfs.sys
[2009/07/13 20:20:44 | 001,210,432 | ---- | M] (Microsoft Corporation) MD5=3795DCD21F740EE799FB7223234215AF -- E:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7600.16385_none_a6477fe07e3f2f04\ntfs.sys
[color=#A23BEC]< MD5 for: NVSTOR.SYS >[/color]
[2009/07/13 20:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- E:\Windows\System32\drivers\nvstor.sys
[2009/07/13 20:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- E:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_5bde3fe2945bce9e\nvstor.sys
[2009/07/13 20:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- E:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_39b1194b205239d8\nvstor.sys
[color=#A23BEC]< MD5 for: PROQUOTA.EXE >[/color]
[2009/07/13 20:14:29 | 000,028,160 | ---- | M] (Microsoft Corporation) MD5=8CDF71E78469BE54C29C1AD2FC8DE611 -- E:\Windows\System32\proquota.exe
[2009/07/13 20:14:29 | 000,028,160 | ---- | M] (Microsoft Corporation) MD5=8CDF71E78469BE54C29C1AD2FC8DE611 -- E:\Windows\winsxs\x86_microsoft-windows-proquota_31bf3856ad364e35_6.1.7600.16385_none_279d4dfaf3b8bd5a\proquota.exe
[color=#A23BEC]< MD5 for: QMGR.DLL >[/color]
[2009/07/13 20:16:12 | 000,589,312 | ---- | M] (Microsoft Corporation) MD5=53F476476F55A27F580661BDE09C4EC4 -- E:\Windows\System32\qmgr.dll
[2009/07/13 20:16:12 | 000,589,312 | ---- | M] (Microsoft Corporation) MD5=53F476476F55A27F580661BDE09C4EC4 -- E:\Windows\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.1.7600.16385_none_23671b105ac5a0fd\qmgr.dll
[color=#A23BEC]< MD5 for: SCECLI.DLL >[/color]
[2009/07/13 20:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- E:\Windows\System32\scecli.dll
[2009/07/13 20:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- E:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll
[color=#A23BEC]< MD5 for: SPOOLSV.EXE >[/color]
[2010/08/19 23:25:14 | 000,316,928 | ---- | M] (Microsoft Corporation) MD5=2FB4CE429488156B19C0D8E5C4552043 -- E:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.20785_none_d6ab9bc23bf9f1c6\spoolsv.exe
[2009/07/13 20:14:41 | 000,316,416 | ---- | M] (Microsoft Corporation) MD5=49B6DD6AB3715B7A67965F17194E98A9 -- E:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.16385_none_d621f94522dc5a87\spoolsv.exe
[2010/08/21 00:32:37 | 000,316,928 | ---- | M] (Microsoft Corporation) MD5=D1BB750EB51694DE183E08B9C33BE5B2 -- E:\Windows\System32\spoolsv.exe
[2010/08/21 00:32:37 | 000,316,928 | ---- | M] (Microsoft Corporation) MD5=D1BB750EB51694DE183E08B9C33BE5B2 -- E:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.16661_none_d6339da722cfb4be\spoolsv.exe
[color=#A23BEC]< MD5 for: SVCHOST.EXE >[/color]
[2009/07/13 20:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- E:\Windows\System32\svchost.exe
[2009/07/13 20:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- E:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[color=#A23BEC]< MD5 for: TERMSRV.DLL >[/color]
[2009/07/13 20:16:15 | 000,543,232 | ---- | M] (Microsoft Corporation) MD5=A01E50A04D7B1960B33E92B9080E6A94 -- E:\Windows\System32\termsrv.dll
[2009/07/13 20:16:15 | 000,543,232 | ---- | M] (Microsoft Corporation) MD5=A01E50A04D7B1960B33E92B9080E6A94 -- E:\Windows\winsxs\x86_microsoft-windows-t..teconnectionmanager_31bf3856ad364e35_6.1.7600.16385_none_8e7597ebb597acd3\termsrv.dll
[color=#A23BEC]< MD5 for: USERINIT.EXE >[/color]
[2009/07/13 20:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- E:\Windows\System32\userinit.exe
[2009/07/13 20:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- E:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009/05/26 12:47:22 | 000,031,232 | ---- | M] (NirSoft) MD5=AC6094297CD882B8626466CDEB64F19F -- E:\Users\Home\AppData\Local\Temp\RarSFX0\userinit.exe
[2009/05/26 12:47:22 | 000,031,232 | ---- | M] (NirSoft) MD5=AC6094297CD882B8626466CDEB64F19F -- E:\Users\Home\AppData\Local\Temp\RarSFX1\userinit.exe
[color=#A23BEC]< MD5 for: WS2_32.DLL >[/color]
[2009/07/13 20:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- E:\Windows\System32\ws2_32.dll
[2009/07/13 20:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- E:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll
[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[2009/07/13 20:15:07 | 000,418,816 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\cscui.dll
[2009/07/13 20:15:08 | 000,077,824 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\davclnt.dll
[2009/07/13 20:15:13 | 000,018,944 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\drprov.dll
[2009/07/13 20:15:14 | 000,189,952 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\EhStorShell.dll
[2009/07/13 20:15:21 | 000,828,928 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\fontext.dll
[2009/07/13 20:16:11 | 000,069,120 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\ntlanman.dll
[2009/07/13 20:16:11 | 000,442,880 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\ntshrui.dll
[2010/07/27 09:03:24 | 012,867,584 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- E:\Windows\System32\shell32.dll
[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
[color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color]
[color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color]
[color=#A23BEC]< c:\$recycle.bin\*.* /s >[/color]
< End of report >
Messages postés
Date d'inscription
lundi 21 décembre 2009
Dernière intervention
19 mai 2015
Modifié par lasource37 le 3/03/2011 à 18:14
Modifié par lasource37 le 3/03/2011 à 18:14
Quand je veut démarrer mon pc sans le cd maintenant sa fait un ecran noir, ya le pointeur de la souris mais jpeut rien bouger ni utiliser le clavier !!
Une restauration du systeme peut-elle être efficace ? avec ce probleme + celui du virus?
Une restauration du systeme peut-elle être efficace ? avec ce probleme + celui du virus?
moment de grace
Messages postés
Date d'inscription
samedi 6 décembre 2008
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
3 mars 2011 à 18:30
3 mars 2011 à 18:30
tente une restauration systeme car ton rapport ne nous montre pas grand chose en fait
tente une restauration systeme car ton rapport ne nous montre pas grand chose en fait
Messages postés
Date d'inscription
lundi 21 décembre 2009
Dernière intervention
19 mai 2015
Modifié par lasource37 le 3/03/2011 à 18:41
Modifié par lasource37 le 3/03/2011 à 18:41
d'accord mais comment je fais? pas possible d'utiliser le clavire ni la souris si j'attend que sa se lance normalement./ Cela c produit apres utilisation de reatogo
Je dispose de windows 7
Je dispose de windows 7
moment de grace
Messages postés
Date d'inscription
samedi 6 décembre 2008
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
3 mars 2011 à 18:39
3 mars 2011 à 18:39
as tu le cd de seven ?
Messages postés
Date d'inscription
lundi 21 décembre 2009
Dernière intervention
19 mai 2015
Modifié par lasource37 le 3/03/2011 à 18:47
Modifié par lasource37 le 3/03/2011 à 18:47
Non, c'est quelqu'un qui m'a installé windows seven mais pas une vrai version pourtant tout marche niquel normalement j'ai mon pc depuis 1ans