Virus "System Fix", PC completement bloquer
Fermé
Tdk88
Messages postés
26
Date d'inscription
lundi 28 novembre 2011
Statut
Membre
Dernière intervention
2 décembre 2011
-
28 nov. 2011 à 19:10
jacques.gache Messages postés 33453 Date d'inscription mardi 13 novembre 2007 Statut Contributeur sécurité Dernière intervention 25 janvier 2016 - 2 déc. 2011 à 20:52
jacques.gache Messages postés 33453 Date d'inscription mardi 13 novembre 2007 Statut Contributeur sécurité Dernière intervention 25 janvier 2016 - 2 déc. 2011 à 20:52
A voir également:
- Virus "System Fix", PC completement bloquer
- Test performance pc - Guide
- Reinitialiser pc - Guide
- Pc lent - Guide
- Reboot system now - Guide
- Whatsapp pc - Télécharger - Messagerie
12 réponses
Utilisateur anonyme
28 nov. 2011 à 20:49
28 nov. 2011 à 20:49
Bonsoir
* Télécharger sur le bureau RogueKiller(par Tigzy)
* Quitter tous les programmes en cours
* Sous Vista/Seven , clic droit -> lancer en tant qu'administrateur
* Sinon lancer simplement RogueKiller.exe
* Lorsque demandé, taper 2 et valider
* Un rapport à dû s'ouvrir (RKreport.txt se trouve également à côté de l'exécutable), donner son contenu à la personne qui vous aide
* Si le programme a été bloqué, ne pas hésiter a essayé plusieurs fois. Si vraiment cela ne passe pas (ça peut arriver), le renommer en winlogon.exe
@+
* Télécharger sur le bureau RogueKiller(par Tigzy)
* Quitter tous les programmes en cours
* Sous Vista/Seven , clic droit -> lancer en tant qu'administrateur
* Sinon lancer simplement RogueKiller.exe
* Lorsque demandé, taper 2 et valider
* Un rapport à dû s'ouvrir (RKreport.txt se trouve également à côté de l'exécutable), donner son contenu à la personne qui vous aide
* Si le programme a été bloqué, ne pas hésiter a essayé plusieurs fois. Si vraiment cela ne passe pas (ça peut arriver), le renommer en winlogon.exe
@+
Tdk88
Messages postés
26
Date d'inscription
lundi 28 novembre 2011
Statut
Membre
Dernière intervention
2 décembre 2011
28 nov. 2011 à 21:03
28 nov. 2011 à 21:03
Bonsoir et merci beaucoup pour votre aide.
Je n'ai plus acces a internet sur mon pc, ni aux disque dur, tout est vide.J'ai essayer en mode sans echec mais il ni a plus d'internet
De plus quand j essai de telecharger Roguekiller avec le MacPro de ma femme il ne m autorise pas a le copier sur une clef usb, il me dise que c est un virus et que je n ai pas l autorisation.
C'est vraiment embetant.
Y aurai t il une solution?
Encore merci !!
Je n'ai plus acces a internet sur mon pc, ni aux disque dur, tout est vide.J'ai essayer en mode sans echec mais il ni a plus d'internet
De plus quand j essai de telecharger Roguekiller avec le MacPro de ma femme il ne m autorise pas a le copier sur une clef usb, il me dise que c est un virus et que je n ai pas l autorisation.
C'est vraiment embetant.
Y aurai t il une solution?
Encore merci !!
jacques.gache
Messages postés
33453
Date d'inscription
mardi 13 novembre 2007
Statut
Contributeur sécurité
Dernière intervention
25 janvier 2016
1 616
28 nov. 2011 à 21:05
28 nov. 2011 à 21:05
bonjour, juste de passage , quand tu prend mode sans echec tu prends avec prise en charge reseau ? dans ce mode tu auras normalement internet !!
Tdk88
Messages postés
26
Date d'inscription
lundi 28 novembre 2011
Statut
Membre
Dernière intervention
2 décembre 2011
28 nov. 2011 à 21:21
28 nov. 2011 à 21:21
Jai eu acces a internet 1 minute mais maintenant il y a un message d erreur disant que le site google est dangereux et il me propose d acheter Xp antispyware 2012.
Il a l air costaud ce virus!!
Jai eu le temp de telecharger Rogue et jai le rapport mais impossible de l envoyer ou de le copier sur une clef usb
Merci encore
Il a l air costaud ce virus!!
Jai eu le temp de telecharger Rogue et jai le rapport mais impossible de l envoyer ou de le copier sur une clef usb
Merci encore
Utilisateur anonyme
29 nov. 2011 à 18:26
29 nov. 2011 à 18:26
Bonsoir
Après le passage de Roguekiller;arrives tu à faire quelque chose?
@+
Après le passage de Roguekiller;arrives tu à faire quelque chose?
@+
Tdk88
Messages postés
26
Date d'inscription
lundi 28 novembre 2011
Statut
Membre
Dernière intervention
2 décembre 2011
Modifié par Tdk88 le 29/11/2011 à 18:35
Modifié par Tdk88 le 29/11/2011 à 18:35
Bonjour Guillaume
Aujourd'hui ma souris est completement imobile, les fleches aussi, donc impossible de faire quoi que ce soit.
Je ne peu pas acceder a mon pc en tant qu administrateur(je suis bloquer ou il faut selectioner administrateur ou mon compte), j'ai tres peur qu il ny ai plus rien a faire.
Aurai tu idee?
Bonne journee a toi et merci encore pour ton aide
Aujourd'hui ma souris est completement imobile, les fleches aussi, donc impossible de faire quoi que ce soit.
Je ne peu pas acceder a mon pc en tant qu administrateur(je suis bloquer ou il faut selectioner administrateur ou mon compte), j'ai tres peur qu il ny ai plus rien a faire.
Aurai tu idee?
Bonne journee a toi et merci encore pour ton aide
jacques.gache
Messages postés
33453
Date d'inscription
mardi 13 novembre 2007
Statut
Contributeur sécurité
Dernière intervention
25 janvier 2016
1 616
29 nov. 2011 à 18:38
29 nov. 2011 à 18:38
bonjour, je pense que guillaume va te proposer un live cd , mais il faut un pc fonctionnel pour graver l'image disque sur un cd , et puis après le mettre dans le pc malade et booter dessus
Tdk88
Messages postés
26
Date d'inscription
lundi 28 novembre 2011
Statut
Membre
Dernière intervention
2 décembre 2011
29 nov. 2011 à 18:45
29 nov. 2011 à 18:45
J'ai un pc fonctionel donc je pense etre en mesure de graver l image disque, et j'ai nero.
Encore merci
Encore merci
jacques.gache
Messages postés
33453
Date d'inscription
mardi 13 novembre 2007
Statut
Contributeur sécurité
Dernière intervention
25 janvier 2016
1 616
29 nov. 2011 à 18:51
29 nov. 2011 à 18:51
en attendant guillaume regarde cela https://forum.malekal.com/viewtopic.php?t=23453&start=
Tdk88
Messages postés
26
Date d'inscription
lundi 28 novembre 2011
Statut
Membre
Dernière intervention
2 décembre 2011
29 nov. 2011 à 18:59
29 nov. 2011 à 18:59
Je uis en train de telecharger la version standart en attendant vos instructions.
Merci!
Merci!
Utilisateur anonyme
Modifié par Guillaume5188 le 29/11/2011 à 19:18
Modifié par Guillaume5188 le 29/11/2011 à 19:18
Re
@ jacques.gache merci du coup de main ;))
@ Tdk88
Tu lances l'iso d'OTLPENet que tu as gravé.
* une fois le bureau de reatogo chargé , tu lances OTLPE , l'icône jaune
* Double-clique sur l'icone OTLPE
* quand demandé "Do you wish to load the remote registry", select Yes
* quand demandé "Do you wish to load remote user profile(s) for scanning", select Yes
* vérifier que "Automatically Load All Remaining Users" est sélectionné et press OK
* sous Custom Scan box
1) copie_colle le contenu du cadre ci dessous:
netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%SYSTEMDRIVE%\*.exe
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
cdrom.sys
disk.sys
ndis.sys
mountmgr.sys
aec.sys
rasacd.sys
mrxsmb10.sys
mrxsmb20.sys
termdd.sys
mrxsmb.sys
win32k.sys
storport.sys
IdeChnDr.sys
viasraid.sys
explorer.exe
winlogon.exe
wininit.exe
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
CREATERESTOREPOINT
* copie colle ce texte dans un fichier texte|bloc note que tu enregistres sur clé usb que tu brancheras sous reatogo tu pourras alors facilement le copier\coller.
* 2) Clic Run Scan pour démarrer le scan.
* Une fois terminé , le fichier se trouve là C:\OTL.txt
* Copie_colle le contenu dans ta prochaine réponse.
@+
---------Contributeur Sécurité---------
On a tous été un jour débutant dans quelque chose.
Mais le savoir est la récompense de l'assiduité.
@ jacques.gache merci du coup de main ;))
@ Tdk88
Tu lances l'iso d'OTLPENet que tu as gravé.
* une fois le bureau de reatogo chargé , tu lances OTLPE , l'icône jaune
* Double-clique sur l'icone OTLPE
* quand demandé "Do you wish to load the remote registry", select Yes
* quand demandé "Do you wish to load remote user profile(s) for scanning", select Yes
* vérifier que "Automatically Load All Remaining Users" est sélectionné et press OK
* sous Custom Scan box
1) copie_colle le contenu du cadre ci dessous:
netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%SYSTEMDRIVE%\*.exe
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
cdrom.sys
disk.sys
ndis.sys
mountmgr.sys
aec.sys
rasacd.sys
mrxsmb10.sys
mrxsmb20.sys
termdd.sys
mrxsmb.sys
win32k.sys
storport.sys
IdeChnDr.sys
viasraid.sys
explorer.exe
winlogon.exe
wininit.exe
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
CREATERESTOREPOINT
* copie colle ce texte dans un fichier texte|bloc note que tu enregistres sur clé usb que tu brancheras sous reatogo tu pourras alors facilement le copier\coller.
* 2) Clic Run Scan pour démarrer le scan.
* Une fois terminé , le fichier se trouve là C:\OTL.txt
* Copie_colle le contenu dans ta prochaine réponse.
@+
---------Contributeur Sécurité---------
On a tous été un jour débutant dans quelque chose.
Mais le savoir est la récompense de l'assiduité.
Tdk88
Messages postés
26
Date d'inscription
lundi 28 novembre 2011
Statut
Membre
Dernière intervention
2 décembre 2011
29 nov. 2011 à 19:31
29 nov. 2011 à 19:31
Tout d abord merci a vous deux
J ai nero express qui ne me permet pas de graver ce .exe en image.
Que dois je faire?
J ai nero express qui ne me permet pas de graver ce .exe en image.
Que dois je faire?
Tdk88
Messages postés
26
Date d'inscription
lundi 28 novembre 2011
Statut
Membre
Dernière intervention
2 décembre 2011
29 nov. 2011 à 20:23
29 nov. 2011 à 20:23
J'ai chercher partout mais je ne voi pas de solution, comment transformer un .exe en iso?
Je suis sur que c'et pas bien compliquer mais je ne ais pas quel logiciel utilier, auriez vou une idee?
Merci d avance
Je suis sur que c'et pas bien compliquer mais je ne ais pas quel logiciel utilier, auriez vou une idee?
Merci d avance
jacques.gache
Messages postés
33453
Date d'inscription
mardi 13 novembre 2007
Statut
Contributeur sécurité
Dernière intervention
25 janvier 2016
1 616
29 nov. 2011 à 20:40
29 nov. 2011 à 20:40
* Quand le téléchargement sera fini, Double Clic sur OTLPENet.exe(clic droit executer en tant qu'administrateur sous vista|seven) et assures-toi d'avoir insérer un CDR vierge dans ton graveur CD/DVD. Une fenêtre va s'ouvrir pour te demander si tu souhaites graver Le CD, clique sur le bouton Oui.
regarde dans le lien que je t'ai donné dans la partie :
Graver et Démarrer OTLPE depuis un CD
regarde dans le lien que je t'ai donné dans la partie :
Graver et Démarrer OTLPE depuis un CD
Tdk88
Messages postés
26
Date d'inscription
lundi 28 novembre 2011
Statut
Membre
Dernière intervention
2 décembre 2011
29 nov. 2011 à 22:00
29 nov. 2011 à 22:00
Merci beucoup vous 2, je me sens vriment stupide!
voici le rapport:
OTL logfile created on: 11/29/2011 3:42:47 PM - Run
OTLPE by OldTimer - Version 3.1.48.0 Folder = X:\Programs\OTLPE
Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
Internet Explorer (Version = 6.0.2900.5512)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
3.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 91.00% Memory free
3.00 Gb Paging File | 3.00 Gb Available in Paging File | 98.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97.65 Gb Total Space | 24.91 Gb Free Space | 25.51% Space Free | Partition Type: NTFS
Drive D: | 97.65 Gb Total Space | 0.08 Gb Free Space | 0.09% Space Free | Partition Type: NTFS
Drive E: | 3.62 Gb Total Space | 0.34 Gb Free Space | 9.32% Space Free | Partition Type: FAT32
Drive X: | 284.12 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet003
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV - File not found [Disabled] -- -- (HidServ)
SRV - [2011/10/21 11:17:18 | 000,269,480 | -H-- | M] (Avira GmbH) [Auto] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011/05/04 08:16:50 | 000,136,360 | -H-- | M] (Avira GmbH) [Auto] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2009/08/28 19:42:54 | 000,144,672 | -H-- | M] (Apple Inc.) [Auto] -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2008/11/04 01:06:28 | 000,441,712 | -H-- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2007/07/25 09:32:34 | 000,294,912 | -H-- | M] (Intel(R) Corporation) [Auto] -- C:\Program Files\Intel\Wireless\Bin\WLKEEPER.exe -- (WLANKEEPER) Intel(R)
SRV - [2006/11/05 04:15:12 | 000,880,640 | -H-- | M] (Sonic Solutions) [On_Demand] -- C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe -- (RoxMediaDB9)
SRV - [2006/11/05 04:13:00 | 000,159,744 | -H-- | M] (Sonic Solutions) [On_Demand] -- C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe -- (RoxWatch9)
SRV - [2006/10/26 07:03:08 | 000,145,184 | -H-- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2006/09/14 07:54:34 | 000,073,728 | -H-- | M] (MicroVision Development, Inc.) [On_Demand] -- C:\Program Files\Fichiers communs\SureThing Shared\stllssvr.exe -- (stllssvr)
SRV - [2004/10/21 21:24:18 | 000,073,728 | -H-- | M] (Macrovision Corporation) [On_Demand] -- C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
DRV - File not found [Kernel | System] -- -- (PCIDump)
DRV - File not found [Kernel | System] -- -- (lbrtfdc)
DRV - File not found [Kernel | System] -- -- (i2omgmt)
DRV - File not found [Kernel | System] -- -- (Changer)
DRV - File not found [Kernel | On_Demand] -- -- (catchme)
DRV - [2011/10/21 11:17:22 | 000,138,192 | -H-- | M] (Avira GmbH) [Kernel | System] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2011/10/21 11:17:22 | 000,066,616 | -H-- | M] (Avira GmbH) [File_System | Auto] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2010/06/17 09:28:02 | 000,028,520 | -H-- | M] (Avira GmbH) [Kernel | System] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010/06/17 09:27:52 | 000,011,608 | -H-- | M] (Avira GmbH) [Kernel | System] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2009/08/27 19:33:06 | 000,281,760 | -H-- | M] () [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2009/08/27 19:33:05 | 000,025,888 | -H-- | M] () [Kernel | Auto] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2009/08/14 10:52:02 | 000,721,904 | -H-- | M] (Duplex Secure Ltd.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2008/04/13 21:00:52 | 000,054,144 | -H-- | M] () [Kernel | System] -- C:\WINDOWS\system32\drivers\i8042prt.sys -- (i8042prt)
DRV - [2008/04/13 20:57:34 | 000,058,752 | -H-- | M] () [Kernel | System] -- C:\WINDOWS\system32\drivers\redbook.sys -- (redbook)
DRV - [2007/08/08 01:17:54 | 002,211,456 | -H-- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\NETw4x32.sys -- (NETw4x32) Pilote de carte Intel(R)
DRV - [2007/05/29 08:29:30 | 000,012,416 | -H-- | M] (Intel Corporation) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\s24trans.sys -- (s24trans)
DRV - [2007/05/06 10:12:00 | 001,222,840 | -H-- | M] (SigmaTel, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2007/03/19 18:00:00 | 000,234,496 | -H-- | M] (Creative Technology Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\OEM02Dev.sys -- (OEM02Dev)
DRV - [2007/03/05 11:45:00 | 000,007,424 | -H-- | M] (EyePower Games Pte. Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\OEM02Vfx.sys -- (OEM02Vfx)
DRV - [2007/02/08 13:05:30 | 000,028,120 | -H-- | M] (Roxio) [File_System | System] -- C:\WINDOWS\system32\drivers\DLARTL_M.SYS -- (DLARTL_M)
DRV - [2007/02/08 13:05:30 | 000,012,856 | -H-- | M] (Roxio) [File_System | System] -- C:\WINDOWS\system32\drivers\DLACDBHM.SYS -- (DLACDBHM)
DRV - [2007/01/10 10:43:00 | 000,141,376 | -H-- | M] (Creative Technology Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\OEM02Afx.sys -- (OEM02Afx)
DRV - [2006/11/20 21:25:44 | 000,045,568 | RH-- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\bcm4sbxp.sys -- (bcm4sbxp)
DRV - [2006/11/14 17:16:24 | 000,032,256 | -H-- | M] (REDC) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2006/11/14 12:42:46 | 000,043,520 | -H-- | M] (REDC) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2006/11/14 10:35:20 | 000,037,376 | -H-- | M] (REDC) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2006/11/02 18:47:36 | 000,989,696 | RH-- | M] (Conexant Systems, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV)
DRV - [2006/11/02 18:47:00 | 000,209,152 | RH-- | M] (Conexant Systems, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys -- (HSFHWAZL)
DRV - [2006/11/02 18:46:56 | 000,730,112 | RH-- | M] (Conexant Systems, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2006/10/26 09:22:08 | 000,009,432 | -H-- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLADResM.SYS -- (DLADResM)
DRV - [2006/10/26 09:21:34 | 000,094,648 | -H-- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLAUDFAM.SYS -- (DLAUDFAM)
DRV - [2006/10/26 09:21:34 | 000,035,096 | -H-- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLABMFSM.SYS -- (DLABMFSM)
DRV - [2006/10/26 09:21:32 | 000,097,848 | -H-- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLAUDF_M.SYS -- (DLAUDF_M)
DRV - [2006/10/26 09:21:30 | 000,026,296 | -H-- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLAOPIOM.SYS -- (DLAOPIOM)
DRV - [2006/10/26 09:21:28 | 000,032,472 | -H-- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLABOIOM.SYS -- (DLABOIOM)
DRV - [2006/10/26 09:21:26 | 000,014,520 | -H-- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLAPoolM.SYS -- (DLAPoolM)
DRV - [2006/10/26 09:21:24 | 000,104,536 | -H-- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLAIFS_M.SYS -- (DLAIFS_M)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Administrateur_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\tim_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\tim_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: File not found
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/04/04 16:28:48 | 000,000,000 | -H-D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/04/03 22:18:29 | 000,000,000 | -H-D | M]
[2011/04/28 22:08:34 | 000,000,000 | -H-D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/08/29 07:28:53 | 000,000,000 | -H-D | M] (Kaspersky URL Advisor) -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
[2011/03/11 15:10:30 | 000,001,516 | -H-- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2011/03/11 15:10:30 | 000,001,822 | -H-- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2011/03/11 15:10:30 | 000,000,757 | -H-- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2011/03/11 15:10:31 | 000,001,426 | -H-- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2008/12/30 04:01:20 | 000,002,253 | -H-- | M] () -- C:\Program Files\mozilla firefox\searchplugins\xeoocom.xml
[2011/03/11 15:10:31 | 000,000,956 | -H-- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml
O1 HOSTS File: ([2011/05/12 13:13:34 | 000,000,027 | -H-- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [GrooveMonitor] File not found
O4 - HKLM..\Run: [IntelWireless] File not found
O4 - HKLM..\Run: [IntelZeroConfig] File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NVHotkey] C:\WINDOWS\System32\nvhotkey.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [OEM02Mon.exe] File not found
O4 - HKLM..\Run: [QuickTime Task] File not found
O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\WINDOWS\stsystra.exe (SigmaTel, Inc.)
O4 - HKLM..\Run: [yEfRqQhDUGAmlI.exe] C:\Documents and Settings\All Users\Application Data\yEfRqQhDUGAmlI.exe ()
O4 - HKU\tim_ON_C..\Run: [cacaoweb] File not found
O4 - HKU\tim_ON_C..\Run: [SuperCopier2.exe] File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\Administrateur_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\systemprofile_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\tim_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\tim_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\tim_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\tim_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 1
O7 - HKU\tim_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.10.1
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/05/17 09:23:31 | 000,000,000 | -H-- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 06:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: HidServ - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
MsConfig - StartUpFolder: C:^Documents and Settings^tim^Menu Démarrer^Programmes^Démarrage^Registration .LNK - - File not found
MsConfig - StartUpReg: [b]Adobe Reader Speed Launcher[/b] - hkey= - key= - C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
MsConfig - StartUpReg: [b]CanonMyPrinter[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]CanonSolutionMenu[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]ctfmon.exe[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]DAEMON Tools Lite[/b] - hkey= - key= - C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
MsConfig - StartUpReg: [b]DivXUpdate[/b] - hkey= - key= - C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
MsConfig - StartUpReg: [b]Google Update[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]ISUSPM Startup[/b] - hkey= - key= - C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation)
MsConfig - StartUpReg: [b]ISUSScheduler[/b] - hkey= - key= - C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe (Macrovision Corporation)
MsConfig - StartUpReg: [b]iTunesHelper[/b] - hkey= - key= - C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
MsConfig - StartUpReg: [b]KernelFaultCheck[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]MSMSGS[/b] - hkey= - key= - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
MsConfig - StartUpReg: [b]Omnipage[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]QuickTime Task[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]RoxWatchTray[/b] - hkey= - key= - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe (Sonic Solutions)
MsConfig - StartUpReg: [b]SunJavaUpdateSched[/b] - hkey= - key= - C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 2
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vds - Service
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Rendu VML (Vector Graphics Rendering)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Lecteur Windows Media Microsoft 6.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Liaison de données Dynamic HTML pour Java
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Logiciel de navigation hors connexion
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Création avancée
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015C} - Microsoft DirectX
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Aide sur Internet Explorer
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - Classes Java DirectAnimation
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.7
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Outils d'installation Internet Explorer
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Améliorations pour la navigation
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - Accès au site MSN
ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework
ActiveX: {73fa19d0-2d75-11d2-995d-00c04f98bbc9} - Web Folders
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - %SystemRoot%\system32\ie4uinit.exe
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Liaison de données Dynamic HTML
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Polices de base Internet Explorer
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Planificateur de tâches
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - Aide HTML
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.yv12 - C:\WINDOWS\System32\yv12vfw.dll (www.helixcommunity.org)
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2011/11/29 14:53:03 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\tim\Recent
[2011/11/28 15:16:49 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrateur\Application Data\Sun
[2011/11/28 15:13:30 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrateur\Bureau\RK_Quarantine
[2011/11/28 12:32:48 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\tim\Menu Démarrer\Programmes\System Fix
[2011/11/19 11:22:27 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Google Earth
[2011/11/19 11:20:40 | 000,000,000 | --SD | C] -- C:\WINDOWS\system32\config\systemprofile\Cookies
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2011/11/29 14:52:58 | 000,002,206 | -H-- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/11/29 14:52:26 | 000,001,046 | -H-- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/11/29 14:52:08 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/11/29 14:51:57 | 3219,169,280 | -HS- | M] () -- C:\hiberfil.sys
[2011/11/28 15:19:28 | 000,014,704 | -HS- | M] () -- C:\Documents and Settings\All Users\Application Data\qlwdyp7y0swn1tpj2oxq5d840k7c
[2011/11/28 15:19:28 | 000,014,704 | -HS- | M] () -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\qlwdyp7y0swn1tpj2oxq5d840k7c
[2011/11/28 15:17:08 | 000,335,872 | -H-- | M] () -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\uyx.exe
[2011/11/28 15:17:08 | 000,335,872 | -H-- | M] () -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\fri.exe
[2011/11/28 15:16:47 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011/11/28 15:13:32 | 000,111,872 | ---- | M] () -- C:\WINDOWS\System32\drivers\TrueSight.sys
[2011/11/28 15:13:30 | 000,766,976 | -H-- | M] () -- C:\Documents and Settings\Administrateur\Bureau\RogueKiller.exe
[2011/11/28 14:42:39 | 000,000,849 | -H-- | M] () -- C:\Documents and Settings\tim\Application Data\Microsoft\Internet Explorer\Quick Launch\System Fix.lnk
[2011/11/28 13:19:01 | 000,001,050 | -H-- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/11/28 12:36:19 | 000,562,760 | -H-- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2011/11/28 12:36:19 | 000,485,358 | -H-- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/11/28 12:36:19 | 000,107,940 | -H-- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2011/11/28 12:36:19 | 000,088,912 | -H-- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/11/28 12:33:11 | 000,000,416 | -H-- | M] () -- C:\Documents and Settings\All Users\Application Data\Jjem0MOm0HHg4m
[2011/11/28 12:32:52 | 000,000,831 | -H-- | M] () -- C:\Documents and Settings\tim\Bureau\System Fix.lnk
[2011/11/28 12:32:52 | 000,000,320 | -H-- | M] () -- C:\Documents and Settings\All Users\Application Data\~Jjem0MOm0HHg4m
[2011/11/28 12:32:52 | 000,000,224 | -H-- | M] () -- C:\Documents and Settings\All Users\Application Data\~Jjem0MOm0HHg4mr
[2011/11/28 12:32:26 | 000,351,488 | -H-- | M] () -- C:\Documents and Settings\All Users\Application Data\Jjem0MOm0HHg4m.exe
[2011/11/28 12:32:16 | 000,118,601 | -H-- | M] () -- C:\WINDOWS\System32\nvModes.001
[2011/11/28 12:29:56 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ZHP
[2011/11/28 12:29:56 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\myfile2
[2011/11/28 12:29:56 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft Silverlight
[2011/11/28 12:29:56 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Google Earth
[2011/11/28 12:27:33 | 000,444,672 | -H-- | M] () -- C:\Documents and Settings\All Users\Application Data\yEfRqQhDUGAmlI.exe
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2011/11/29 12:21:37 | 3219,169,280 | -HS- | C] () -- C:\hiberfil.sys
[2011/11/28 15:17:09 | 000,014,704 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\qlwdyp7y0swn1tpj2oxq5d840k7c
[2011/11/28 15:17:09 | 000,014,704 | -HS- | C] () -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\qlwdyp7y0swn1tpj2oxq5d840k7c
[2011/11/28 15:17:08 | 000,335,872 | -H-- | C] () -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\uyx.exe
[2011/11/28 15:17:08 | 000,335,872 | -H-- | C] () -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\fri.exe
[2011/11/28 15:13:32 | 000,111,872 | ---- | C] () -- C:\WINDOWS\System32\drivers\TrueSight.sys
[2011/11/28 15:13:17 | 000,766,976 | -H-- | C] () -- C:\Documents and Settings\Administrateur\Bureau\RogueKiller.exe
[2011/11/28 14:42:36 | 000,000,849 | -H-- | C] () -- C:\Documents and Settings\tim\Application Data\Microsoft\Internet Explorer\Quick Launch\System Fix.lnk
[2011/11/28 12:32:52 | 000,000,831 | -H-- | C] () -- C:\Documents and Settings\tim\Bureau\System Fix.lnk
[2011/11/28 12:32:52 | 000,000,224 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\~Jjem0MOm0HHg4mr
[2011/11/28 12:32:51 | 000,000,320 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\~Jjem0MOm0HHg4m
[2011/11/28 12:32:34 | 000,000,416 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\Jjem0MOm0HHg4m
[2011/11/28 12:32:26 | 000,351,488 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\Jjem0MOm0HHg4m.exe
[2011/11/28 12:27:34 | 000,444,672 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\yEfRqQhDUGAmlI.exe
[2011/05/12 12:54:45 | 000,256,512 | -H-- | C] () -- C:\WINDOWS\PEV.exe
[2011/05/12 12:54:45 | 000,098,816 | -H-- | C] () -- C:\WINDOWS\sed.exe
[2011/05/12 12:54:45 | 000,089,088 | -H-- | C] () -- C:\WINDOWS\MBR.exe
[2011/05/12 12:54:45 | 000,080,412 | -H-- | C] () -- C:\WINDOWS\grep.exe
[2011/05/12 12:54:45 | 000,068,096 | -H-- | C] () -- C:\WINDOWS\zip.exe
[2011/05/12 04:01:36 | 000,000,112 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\18eS4gm2.dat
[2011/04/28 19:46:48 | 000,000,120 | -H-- | C] () -- C:\WINDOWS\Awacuvijukijad.dat
[2011/04/28 19:46:48 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\Gtuxewiduc.bin
[2010/11/29 09:33:15 | 000,000,161 | -H-- | C] () -- C:\WINDOWS\MyDrivers.ini
[2010/11/18 19:57:07 | 000,354,816 | -H-- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2010/09/07 08:23:29 | 000,000,600 | -H-- | C] () -- C:\Documents and Settings\tim\Application Data\winscp.rnd
[2010/08/13 17:14:25 | 000,000,017 | -H-- | C] () -- C:\WINDOWS\Missing.ini
[2010/03/10 08:19:48 | 000,002,240 | -H-- | C] () -- C:\WINDOWS\LENDIG.sys
[2010/02/25 10:04:15 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/02/23 16:52:14 | 000,000,029 | -H-- | C] () -- C:\WINDOWS\popcinfo.dat
[2010/02/13 14:37:34 | 000,000,047 | -H-- | C] () -- C:\WINDOWS\popcinfot.dat
[2010/01/20 12:08:39 | 000,007,680 | -H-- | C] () -- C:\WINDOWS\System32\CNMVS61.DLL
[2010/01/04 14:54:36 | 000,064,040 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2009/11/29 22:08:07 | 000,000,540 | -H-- | C] () -- C:\Documents and Settings\tim\Raccourci vers Bureau.lnk
[2009/11/18 14:38:55 | 000,163,840 | -H-- | C] () -- C:\WINDOWS\System32\ArtFfct.dll
[2009/11/18 14:38:54 | 012,550,144 | -H-- | C] () -- C:\WINDOWS\CS-80V(10 voices).dll
[2009/08/27 19:33:06 | 000,281,760 | -H-- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2009/08/27 19:33:05 | 000,025,888 | -H-- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2009/08/25 07:12:22 | 000,010,240 | -H-- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2009/06/30 08:43:49 | 000,056,056 | -H-- | C] () -- C:\WINDOWS\System32\DLAAPI_W.DLL
[2009/06/30 08:43:49 | 000,000,164 | -H-- | C] () -- C:\WINDOWS\wininit.ini
[2009/05/27 05:56:54 | 000,000,754 | -H-- | C] () -- C:\WINDOWS\WORDPAD.INI
[2009/05/27 03:55:24 | 000,002,030 | -H-- | C] () -- C:\Documents and Settings\tim\Application Data\wklnhst.dat
[2009/05/19 06:25:06 | 000,000,705 | -H-- | C] () -- C:\Documents and Settings\tim\.lnk
[2009/05/17 19:14:36 | 000,000,323 | -H-- | C] () -- C:\WINDOWS\WakeMeUP.INI
[2009/05/17 13:53:55 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\nsreg.dat
[2009/05/17 13:31:38 | 000,123,392 | -H-- | C] () -- C:\Documents and Settings\tim\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/05/17 10:50:21 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2009/05/17 10:05:46 | 000,356,352 | -H-- | C] () -- C:\WINDOWS\System32\AegisI5Installer.exe
[2009/05/17 09:54:58 | 000,118,601 | -H-- | C] () -- C:\WINDOWS\System32\nvModes.dat
[2009/05/17 09:54:02 | 001,703,936 | -H-- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2009/05/17 09:54:02 | 001,019,904 | -H-- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2009/05/17 09:54:01 | 001,018,804 | -H-- | C] () -- C:\WINDOWS\System32\nvucode.bin
[2009/05/17 09:54:01 | 000,466,944 | -H-- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2009/05/17 09:53:59 | 001,474,560 | -H-- | C] () -- C:\WINDOWS\System32\nview.dll
[2009/05/17 09:53:58 | 001,339,392 | -H-- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2009/05/17 09:53:55 | 000,442,368 | -H-- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2009/05/17 09:53:53 | 000,425,984 | -H-- | C] () -- C:\WINDOWS\System32\keystone.exe
[2009/05/17 09:53:52 | 001,626,112 | -H-- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2009/05/17 09:51:36 | 000,016,480 | -H-- | C] () -- C:\WINDOWS\System32\rixdicon.dll
[2009/05/17 09:26:16 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2009/05/17 09:20:34 | 000,021,892 | -H-- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2009/05/17 05:09:49 | 000,058,752 | -H-- | C] () -- C:\WINDOWS\System32\drivers\redbook.sys
[2009/05/17 05:07:49 | 000,004,205 | -H-- | C] () -- C:\WINDOWS\ODBCINST.INI
[2009/05/17 05:06:35 | 000,329,888 | -H-- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2008/10/07 02:13:22 | 000,058,648 | -H-- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2008/10/07 02:13:20 | 000,058,648 | -H-- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2008/10/07 02:13:20 | 000,058,648 | -H-- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2008/10/07 02:13:20 | 000,058,648 | -H-- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2008/10/07 02:13:20 | 000,058,648 | -H-- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2008/10/07 02:13:20 | 000,058,648 | -H-- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2008/10/07 02:13:20 | 000,058,648 | -H-- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2008/10/07 02:13:20 | 000,058,648 | -H-- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2008/10/07 02:13:20 | 000,058,648 | -H-- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2008/06/05 01:58:26 | 000,197,912 | -H-- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2007/08/06 18:22:15 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\px.ini
[2006/09/16 16:36:50 | 000,520,192 | -H-- | C] () -- C:\WINDOWS\System32\CddbPlaylist2Roxio.dll
[2006/09/16 16:36:50 | 000,204,800 | -H-- | C] () -- C:\WINDOWS\System32\CddbFileTaggerRoxio.dll
[2005/03/28 18:22:59 | 013,107,200 | -H-- | C] () -- C:\WINDOWS\System32\oembios.bin
[2005/03/28 18:22:59 | 000,004,627 | -H-- | C] () -- C:\WINDOWS\System32\oembios.dat
[2004/08/05 05:00:00 | 000,673,088 | -H-- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004/08/05 05:00:00 | 000,562,760 | -H-- | C] () -- C:\WINDOWS\System32\perfh00C.dat
[2004/08/05 05:00:00 | 000,485,358 | -H-- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004/08/05 05:00:00 | 000,322,810 | -H-- | C] () -- C:\WINDOWS\System32\perfi00C.dat
[2004/08/05 05:00:00 | 000,272,128 | -H-- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004/08/05 05:00:00 | 000,218,003 | -H-- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004/08/05 05:00:00 | 000,107,940 | -H-- | C] () -- C:\WINDOWS\System32\perfc00C.dat
[2004/08/05 05:00:00 | 000,088,912 | -H-- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004/08/05 05:00:00 | 000,054,144 | -H-- | C] () -- C:\WINDOWS\System32\drivers\i8042prt.sys
[2004/08/05 05:00:00 | 000,046,258 | -H-- | C] () -- C:\WINDOWS\System32\mib.bin
[2004/08/05 05:00:00 | 000,034,108 | -H-- | C] () -- C:\WINDOWS\System32\perfd00C.dat
[2004/08/05 05:00:00 | 000,028,626 | -H-- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004/08/05 05:00:00 | 000,004,569 | -H-- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004/08/05 05:00:00 | 000,001,804 | -H-- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004/08/05 05:00:00 | 000,000,741 | -H-- | C] () -- C:\WINDOWS\System32\noise.dat
[2002/09/17 17:45:00 | 000,119,808 | -H-- | C] () -- C:\WINDOWS\lsb_un20.exe
[color=#E56717]========== LOP Check ==========[/color]
[2011/03/07 10:36:30 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\.minecraft
[2009/11/11 15:26:55 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Ableton
[2009/05/26 07:39:00 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Braid
[2011/05/12 13:14:30 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\cacaoweb
[2011/04/26 13:59:58 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Canon
[2010/09/11 09:03:43 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Crayon Physics Deluxe
[2010/08/29 11:19:10 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\CVitae
[2009/08/14 10:56:28 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\DAEMON Tools Lite
[2009/08/14 06:55:35 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\FabFilter
[2010/01/04 10:14:57 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\FreeFLVConverter
[2010/03/22 07:56:56 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\GARMIN
[2011/01/11 08:39:41 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\GZero
[2011/04/20 13:09:39 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Iceni
[2009/06/14 06:42:33 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\iZotope
[2011/01/25 08:42:41 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\MSNInstaller
[2009/05/19 14:12:44 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\NCH Swift Sound
[2010/06/09 12:46:28 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Nevosoft
[2009/08/14 06:47:35 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\One
[2010/05/12 13:47:21 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\PhotoFiltre
[2010/05/12 13:47:20 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Pixia
[2010/08/29 09:08:51 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\runic games
[2009/11/20 15:22:47 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\SharePod
[2010/12/13 17:04:45 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Spotify
[2010/02/15 08:41:28 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Steinberg
[2009/05/27 03:55:25 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Template
[2010/12/02 15:05:25 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Thinstall
[2009/08/27 19:34:44 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Ubisoft
[2011/05/06 08:44:39 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\uTorrent
[2010/05/30 10:32:35 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\2DBoy
[2010/11/11 16:56:54 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2011/04/26 13:59:56 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJScan
[2010/09/21 05:09:39 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJSetup000
[2010/09/21 05:10:28 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJSetup001
[2009/08/14 10:55:17 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2010/12/28 16:53:09 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\dLkLf06301
[2011/04/20 13:09:39 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Iceni
[2009/05/19 14:12:44 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
[2010/02/13 05:29:22 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\PopCap Games
[2010/01/04 00:00:01 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[color=#E56717]========== Purity Check ==========[/color]
[color=#E56717]========== Custom Scans ==========[/color]
Invalid Environment Variable: %ALLUSERSPROFILE%\Application Data\*.
Invalid Environment Variable: %ALLUSERSPROFILE%\Application Data\*.exe
[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
[color=#A23BEC]< MD5 for: AEC.SYS >[/color]
[2004/08/05 05:00:00 | 018,779,217 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:aec.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:aec.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:aec.sys
[2004/08/03 15:39:38 | 000,142,464 | -H-- | M] (Microsoft Corporation) MD5=841F385C6CFAF66B58FBD898722BB4F0 -- C:\WINDOWS\$NtServicePackUninstall$\aec.sys
[2008/04/13 11:39:23 | 000,142,592 | -H-- | M] (Microsoft Corporation) MD5=8BED39E3C35D6A489438B8141717A557 -- C:\WINDOWS\ERDNT\cache\aec.sys
[2008/04/13 11:39:23 | 000,142,592 | -H-- | M] (Microsoft Corporation) MD5=8BED39E3C35D6A489438B8141717A557 -- C:\WINDOWS\ServicePackFiles\i386\aec.sys
[2008/04/13 11:39:23 | 000,142,592 | -H-- | M] (Microsoft Corporation) MD5=8BED39E3C35D6A489438B8141717A557 -- C:\WINDOWS\system32\drivers\aec.sys
[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2004/08/05 05:00:00 | 018,779,217 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008/04/13 13:36:38 | 000,042,368 | -H-- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ERDNT\cache\agp440.sys
[2008/04/13 13:36:38 | 000,042,368 | -H-- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008/04/13 13:36:38 | 000,042,368 | -H-- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2004/08/05 05:00:00 | 018,779,217 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008/04/13 13:40:30 | 000,096,512 | -H-- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008/04/13 13:40:30 | 000,096,512 | -H-- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008/04/13 13:40:30 | 000,096,512 | -H-- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004/08/05 05:00:00 | 000,095,360 | -H-- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2004/08/05 05:00:00 | 018,779,217 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008/04/13 13:40:46 | 000,062,976 | -H-- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008/04/13 13:40:46 | 000,062,976 | -H-- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2004/08/05 05:00:00 | 000,049,536 | -H-- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
[color=#A23BEC]< MD5 for: DISK.SYS >[/color]
[2004/08/05 05:00:00 | 018,779,217 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:disk.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:disk.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:disk.sys
[2004/08/05 05:00:00 | 000,036,352 | -H-- | M] (Microsoft Corporation) MD5=00CA44E4534865F8A3B64F7C0984BFF0 -- C:\WINDOWS\$NtServicePackUninstall$\disk.sys
[2008/04/13 13:40:47 | 000,036,352 | -H-- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\ServicePackFiles\i386\disk.sys
[2008/04/13 13:40:47 | 000,036,352 | -H-- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\system32\drivers\disk.sys
[color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
[2004/08/05 05:00:00 | 000,055,808 | -H-- | M] (Microsoft Corporation) MD5=21E83876A6287F15538EF187D286FE11 -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
[2008/04/13 21:33:24 | 000,056,320 | -H-- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\ERDNT\cache\eventlog.dll
[2008/04/13 21:33:24 | 000,056,320 | -H-- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008/04/13 21:33:24 | 000,056,320 | -H-- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\system32\eventlog.dll
[color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
[2004/08/05 05:00:00 | 001,036,288 | -H-- | M] (Microsoft Corporation) MD5=4C33E5B9A6197B6ED215F6CFBA0A2DAA -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
[2008/04/13 21:34:03 | 001,037,824 | -H-- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\ERDNT\cache\explorer.exe
[2008/04/13 21:34:03 | 001,037,824 | -H-- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\explorer.exe
[2008/04/13 21:34:03 | 001,037,824 | -H-- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[color=#A23BEC]< MD5 for: IASTOR.SYS >[/color]
[2007/07/12 16:35:02 | 000,305,176 | -H-- | M] (Intel Corporation) MD5=2358C53F30CB9DCD1D3843C4E2F299B2 -- C:\WINDOWS\dell\iastor\iastor.sys
[color=#A23BEC]< MD5 for: MOUNTMGR.SYS >[/color]
[2004/08/05 05:00:00 | 000,042,240 | -H-- | M] (Microsoft Corporation) MD5=65653F3B4477F3C63E68A9659F85EE2E -- C:\WINDOWS\$NtServicePackUninstall$\mountmgr.sys
[2008/04/13 13:39:46 | 000,042,368 | -H-- | M] (Microsoft Corporation) MD5=A80B9A0BAD1B73637DBCBBA7DF72D3FD -- C:\WINDOWS\ServicePackFiles\i386\mountmgr.sys
[2008/04/13 13:39:46 | 000,042,368 | -H-- | M] (Microsoft Corporation) MD5=A80B9A0BAD1B73637DBCBBA7DF72D3FD -- C:\WINDOWS\system32\drivers\mountmgr.sys
[color=#A23BEC]< MD5 for: MRXSMB.SYS >[/color]
[2004/08/05 05:00:00 | 018,779,217 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:mrxsmb.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:mrxsmb.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:mrxsmb.sys
[2011/02/17 08:18:24 | 000,455,936 | -H-- | M] (Microsoft Corporation) MD5=0EA4D8ED179B75F8AFA7998BA22285CA -- C:\WINDOWS\SoftwareDistribution\Download\699ee2ac4f9ea8ea1babe26c8f35b4ef\SP3GDR\mrxsmb.sys
[2004/08/05 05:00:00 | 000,451,456 | -H-- | M] (Microsoft Corporation) MD5=1FD607FC67F7F7C633C3DA65BFC53D18 -- C:\WINDOWS\$NtUninstallKB957097_0$\mrxsmb.sys
[2009/12/04 13:22:22 | 000,455,424 | -H-- | M] (Microsoft Corporation) MD5=421F7B922CEC5A5F340E7574A98F7B7C -- C:\WINDOWS\$NtUninstallKB980232$\mrxsmb.sys
[2009/12/04 12:25:56 | 000,456,832 | -H-- | M] (Microsoft Corporation) MD5=602549D1E8A622E5746991F6C56B21CA -- C:\WINDOWS\$hf_mig$\KB978251\SP3QFE\mrxsmb.sys
[2008/10/24 06:21:09 | 000,455,296 | -H-- | M] (Microsoft Corporation) MD5=60AE98742484E7AB80C3C1450E708148 -- C:\WINDOWS\$hf_mig$\KB957097\SP3GDR\mrxsmb.sys
[2008/10/24 06:21:09 | 000,455,296 | -H-- | M] (Microsoft Corporation) MD5=60AE98742484E7AB80C3C1450E708148 -- C:\WINDOWS\$NtUninstallKB978251$\mrxsmb.sys
[2008/04/13 14:17:01 | 000,456,576 | -H-- | M] (Microsoft Corporation) MD5=68755F0FF16070178B54674FE5B847B0 -- C:\WINDOWS\$NtUninstallKB957097$\mrxsmb.sys
[2008/04/13 14:17:01 | 000,456,576 | -H-- | M] (Microsoft Corporation) MD5=68755F0FF16070178B54674FE5B847B0 -- C:\WINDOWS\ServicePackFiles\i386\mrxsmb.sys
[2008/10/24 06:10:42 | 000,453,632 | -H-- | M] (Microsoft Corporation) MD5=6F2D483B97B395544E59749C47963C6A -- C:\WINDOWS\$NtServicePackUninstall$\mrxsmb.sys
[2008/10/24 06:41:11 | 000,455,936 | -H-- | M] (Microsoft Corporation) MD5=7170AB42B51954DEF2781A4D1CCE65F4 -- C:\WINDOWS\$hf_mig$\KB957097\SP3QFE\mrxsmb.sys
[2011/07/15 08:29:31 | 000,456,320 | -H-- | M] (Microsoft Corporation) MD5=7D304A5EB4344EBEEAB53A2FE3FFB9F0 -- C:\WINDOWS\SoftwareDistribution\Download\0666a7b23113c5176068ac15399dd921\SP3GDR\mrxsmb.sys
[2008/10/24 06:25:29 | 000,455,936 | -H-- | M] (Microsoft Corporation) MD5=D07DA410091143336DAE419A921AAE2B -- C:\WINDOWS\$hf_mig$\KB957097\SP2QFE\mrxsmb.sys
[2010/02/24 06:57:57 | 000,457,216 | -H-- | M] (Microsoft Corporation) MD5=D09B9F0B9960DD41E73127B7814C115F -- C:\WINDOWS\$hf_mig$\KB980232\SP3QFE\mrxsmb.sys
[2010/02/24 08:11:07 | 000,455,680 | -H-- | M] (Microsoft Corporation) MD5=F3AEFB11ABC521122B67095044169E98 -- C:\WINDOWS\Driver Cache\i386\mrxsmb.sys
[2010/02/24 08:11:07 | 000,455,680 | -H-- | M] (Microsoft Corporation) MD5=F3AEFB11ABC521122B67095044169E98 -- C:\WINDOWS\system32\dllcache\mrxsmb.sys
[2010/02/24 08:11:07 | 000,455,680 | -H-- | M] (Microsoft Corporation) MD5=F3AEFB11ABC521122B67095044169E98 -- C:\WINDOWS\system32\drivers\mrxsmb.sys
[2011/07/15 08:29:35 | 000,457,856 | -H-- | M] (Microsoft Corporation) MD5=FB2FCCC70F7174C7BF64F48E96D3ADF4 -- C:\WINDOWS\SoftwareDistribution\Download\0666a7b23113c5176068ac15399dd921\SP3QFE\mrxsmb.sys
[2011/02/17 08:19:38 | 000,457,472 | -H-- | M] (Microsoft Corporation) MD5=FB7DFD15D760AD339837A470F0E780D3 -- C:\WINDOWS\SoftwareDistribution\Download\699ee2ac4f9ea8ea1babe26c8f35b4ef\SP3QFE\mrxsmb.sys
[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2008/04/13 14:20:37 | 000,182,656 | -H-- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ERDNT\cache\ndis.sys
[2008/04/13 14:20:37 | 000,182,656 | -H-- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008/04/13 14:20:37 | 000,182,656 | -H-- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2004/08/05 05:00:00 | 000,182,912 | -H-- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys
[color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color]
[2008/04/13 21:33:34 | 000,407,040 | -H-- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\ERDNT\cache\netlogon.dll
[2008/04/13 21:33:34 | 000,407,040 | -H-- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008/04/13 21:33:34 | 000,407,040 | -H-- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\system32\netlogon.dll
[2004/08/05 05:00:00 | 000,407,040 | -H-- | M] (Microsoft Corporation) MD5=FAF07FDCDE76000621A28D19F8E2E8EB -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[color=#A23BEC]< MD5 for: NVATA.SYS >[/color]
[2006/10/18 17:31:38 | 000,105,472 | -H-- | M] (NVIDIA Corporation) MD5=EF9941593B2E9B436F64A87DDB570D1A -- C:\WINDOWS\dell\nvraid\nvata.sys
[color=#A23BEC]< MD5 for: NVATABUS.SYS >[/color]
[2006/10/18 16:31:38 | 000,105,472 | -H-- | M] (NVIDIA Corporation) MD5=EF9941593B2E9B436F64A87DDB570D1A -- C:\WINDOWS\dell\nvraid\NvAtaBus.sys
[color=#A23BEC]< MD5 for: RASACD.SYS >[/color]
[2004/08/05 05:00:00 | 000,008,832 | -H-- | M] (Microsoft Corporation) MD5=FE0D99D6F31E4FAD8159F690D68DED9C -- C:\WINDOWS\system32\dllcache\rasacd.sys
[2004/08/05 05:00:00 | 000,008,832 | -H-- | M] (Microsoft Corporation) MD5=FE0D99D6F31E4FAD8159F690D68DED9C -- C:\WINDOWS\system32\drivers\rasacd.sys
[color=#A23BEC]< MD5 for: SCECLI.DLL >[/color]
[2008/04/13 21:33:40 | 000,187,392 | -H-- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2008/04/13 21:33:40 | 000,187,392 | -H-- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008/04/13 21:33:40 | 000,187,392 | -H-- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\system32\scecli.dll
[2004/08/05 05:00:00 | 000,186,368 | -H-- | M] (Microsoft Corporation) MD5=DEC0397F35D027874804EC72979D03CC -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[color=#A23BEC]< MD5 for: TERMDD.SYS >[/color]
[2004/08/05 05:00:00 | 018,779,217 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:termdd.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:termdd.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:termdd.sys
[2008/04/13 21:34:52 | 000,040,840 | -H-- | M] (Microsoft Corporation) MD5=88155247177638048422893737429D9E -- C:\WINDOWS\ServicePackFiles\i386\termdd.sys
[2008/04/13 21:34:52 | 000,040,840 | -H-- | M] (Microsoft Corporation) MD5=88155247177638048422893737429D9E -- C:\WINDOWS\system32\drivers\termdd.sys
[2004/08/03 17:55:12 | 000,040,840 | -H-- | M] (Microsoft Corporation) MD5=A540A99C281D933F3D69D55E48727F47 -- C:\WINDOWS\$NtServicePackUninstall$\termdd.sys
[color=#A23BEC]< MD5 for: WIN32K.SYS >[/color]
[2008/04/13 20:58:06 | 001,
voici le rapport:
OTL logfile created on: 11/29/2011 3:42:47 PM - Run
OTLPE by OldTimer - Version 3.1.48.0 Folder = X:\Programs\OTLPE
Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
Internet Explorer (Version = 6.0.2900.5512)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
3.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 91.00% Memory free
3.00 Gb Paging File | 3.00 Gb Available in Paging File | 98.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97.65 Gb Total Space | 24.91 Gb Free Space | 25.51% Space Free | Partition Type: NTFS
Drive D: | 97.65 Gb Total Space | 0.08 Gb Free Space | 0.09% Space Free | Partition Type: NTFS
Drive E: | 3.62 Gb Total Space | 0.34 Gb Free Space | 9.32% Space Free | Partition Type: FAT32
Drive X: | 284.12 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet003
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV - File not found [Disabled] -- -- (HidServ)
SRV - [2011/10/21 11:17:18 | 000,269,480 | -H-- | M] (Avira GmbH) [Auto] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011/05/04 08:16:50 | 000,136,360 | -H-- | M] (Avira GmbH) [Auto] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2009/08/28 19:42:54 | 000,144,672 | -H-- | M] (Apple Inc.) [Auto] -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2008/11/04 01:06:28 | 000,441,712 | -H-- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2007/07/25 09:32:34 | 000,294,912 | -H-- | M] (Intel(R) Corporation) [Auto] -- C:\Program Files\Intel\Wireless\Bin\WLKEEPER.exe -- (WLANKEEPER) Intel(R)
SRV - [2006/11/05 04:15:12 | 000,880,640 | -H-- | M] (Sonic Solutions) [On_Demand] -- C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe -- (RoxMediaDB9)
SRV - [2006/11/05 04:13:00 | 000,159,744 | -H-- | M] (Sonic Solutions) [On_Demand] -- C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe -- (RoxWatch9)
SRV - [2006/10/26 07:03:08 | 000,145,184 | -H-- | M] (Microsoft Corporation) [On_Demand] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2006/09/14 07:54:34 | 000,073,728 | -H-- | M] (MicroVision Development, Inc.) [On_Demand] -- C:\Program Files\Fichiers communs\SureThing Shared\stllssvr.exe -- (stllssvr)
SRV - [2004/10/21 21:24:18 | 000,073,728 | -H-- | M] (Macrovision Corporation) [On_Demand] -- C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
DRV - File not found [Kernel | System] -- -- (PCIDump)
DRV - File not found [Kernel | System] -- -- (lbrtfdc)
DRV - File not found [Kernel | System] -- -- (i2omgmt)
DRV - File not found [Kernel | System] -- -- (Changer)
DRV - File not found [Kernel | On_Demand] -- -- (catchme)
DRV - [2011/10/21 11:17:22 | 000,138,192 | -H-- | M] (Avira GmbH) [Kernel | System] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2011/10/21 11:17:22 | 000,066,616 | -H-- | M] (Avira GmbH) [File_System | Auto] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2010/06/17 09:28:02 | 000,028,520 | -H-- | M] (Avira GmbH) [Kernel | System] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010/06/17 09:27:52 | 000,011,608 | -H-- | M] (Avira GmbH) [Kernel | System] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2009/08/27 19:33:06 | 000,281,760 | -H-- | M] () [Kernel | Auto] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2009/08/27 19:33:05 | 000,025,888 | -H-- | M] () [Kernel | Auto] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2009/08/14 10:52:02 | 000,721,904 | -H-- | M] (Duplex Secure Ltd.) [Kernel | Boot] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2008/04/13 21:00:52 | 000,054,144 | -H-- | M] () [Kernel | System] -- C:\WINDOWS\system32\drivers\i8042prt.sys -- (i8042prt)
DRV - [2008/04/13 20:57:34 | 000,058,752 | -H-- | M] () [Kernel | System] -- C:\WINDOWS\system32\drivers\redbook.sys -- (redbook)
DRV - [2007/08/08 01:17:54 | 002,211,456 | -H-- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\NETw4x32.sys -- (NETw4x32) Pilote de carte Intel(R)
DRV - [2007/05/29 08:29:30 | 000,012,416 | -H-- | M] (Intel Corporation) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\s24trans.sys -- (s24trans)
DRV - [2007/05/06 10:12:00 | 001,222,840 | -H-- | M] (SigmaTel, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2007/03/19 18:00:00 | 000,234,496 | -H-- | M] (Creative Technology Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\OEM02Dev.sys -- (OEM02Dev)
DRV - [2007/03/05 11:45:00 | 000,007,424 | -H-- | M] (EyePower Games Pte. Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\OEM02Vfx.sys -- (OEM02Vfx)
DRV - [2007/02/08 13:05:30 | 000,028,120 | -H-- | M] (Roxio) [File_System | System] -- C:\WINDOWS\system32\drivers\DLARTL_M.SYS -- (DLARTL_M)
DRV - [2007/02/08 13:05:30 | 000,012,856 | -H-- | M] (Roxio) [File_System | System] -- C:\WINDOWS\system32\drivers\DLACDBHM.SYS -- (DLACDBHM)
DRV - [2007/01/10 10:43:00 | 000,141,376 | -H-- | M] (Creative Technology Ltd.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\OEM02Afx.sys -- (OEM02Afx)
DRV - [2006/11/20 21:25:44 | 000,045,568 | RH-- | M] (Broadcom Corporation) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\bcm4sbxp.sys -- (bcm4sbxp)
DRV - [2006/11/14 17:16:24 | 000,032,256 | -H-- | M] (REDC) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2006/11/14 12:42:46 | 000,043,520 | -H-- | M] (REDC) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2006/11/14 10:35:20 | 000,037,376 | -H-- | M] (REDC) [Kernel | Auto] -- C:\WINDOWS\system32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2006/11/02 18:47:36 | 000,989,696 | RH-- | M] (Conexant Systems, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV)
DRV - [2006/11/02 18:47:00 | 000,209,152 | RH-- | M] (Conexant Systems, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys -- (HSFHWAZL)
DRV - [2006/11/02 18:46:56 | 000,730,112 | RH-- | M] (Conexant Systems, Inc.) [Kernel | On_Demand] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2006/10/26 09:22:08 | 000,009,432 | -H-- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLADResM.SYS -- (DLADResM)
DRV - [2006/10/26 09:21:34 | 000,094,648 | -H-- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLAUDFAM.SYS -- (DLAUDFAM)
DRV - [2006/10/26 09:21:34 | 000,035,096 | -H-- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLABMFSM.SYS -- (DLABMFSM)
DRV - [2006/10/26 09:21:32 | 000,097,848 | -H-- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLAUDF_M.SYS -- (DLAUDF_M)
DRV - [2006/10/26 09:21:30 | 000,026,296 | -H-- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLAOPIOM.SYS -- (DLAOPIOM)
DRV - [2006/10/26 09:21:28 | 000,032,472 | -H-- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLABOIOM.SYS -- (DLABOIOM)
DRV - [2006/10/26 09:21:26 | 000,014,520 | -H-- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLAPoolM.SYS -- (DLAPoolM)
DRV - [2006/10/26 09:21:24 | 000,104,536 | -H-- | M] (Roxio) [File_System | Auto] -- C:\WINDOWS\system32\DLA\DLAIFS_M.SYS -- (DLAIFS_M)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Administrateur_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\tim_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\tim_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: File not found
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/04/04 16:28:48 | 000,000,000 | -H-D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/04/03 22:18:29 | 000,000,000 | -H-D | M]
[2011/04/28 22:08:34 | 000,000,000 | -H-D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/08/29 07:28:53 | 000,000,000 | -H-D | M] (Kaspersky URL Advisor) -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
[2011/03/11 15:10:30 | 000,001,516 | -H-- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2011/03/11 15:10:30 | 000,001,822 | -H-- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2011/03/11 15:10:30 | 000,000,757 | -H-- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2011/03/11 15:10:31 | 000,001,426 | -H-- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2008/12/30 04:01:20 | 000,002,253 | -H-- | M] () -- C:\Program Files\mozilla firefox\searchplugins\xeoocom.xml
[2011/03/11 15:10:31 | 000,000,956 | -H-- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml
O1 HOSTS File: ([2011/05/12 13:13:34 | 000,000,027 | -H-- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [GrooveMonitor] File not found
O4 - HKLM..\Run: [IntelWireless] File not found
O4 - HKLM..\Run: [IntelZeroConfig] File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NVHotkey] C:\WINDOWS\System32\nvhotkey.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [OEM02Mon.exe] File not found
O4 - HKLM..\Run: [QuickTime Task] File not found
O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\WINDOWS\stsystra.exe (SigmaTel, Inc.)
O4 - HKLM..\Run: [yEfRqQhDUGAmlI.exe] C:\Documents and Settings\All Users\Application Data\yEfRqQhDUGAmlI.exe ()
O4 - HKU\tim_ON_C..\Run: [cacaoweb] File not found
O4 - HKU\tim_ON_C..\Run: [SuperCopier2.exe] File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\Administrateur_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\systemprofile_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\tim_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\tim_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\tim_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\tim_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 1
O7 - HKU\tim_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.10.1
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/05/17 09:23:31 | 000,000,000 | -H-- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 06:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: HidServ - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
MsConfig - StartUpFolder: C:^Documents and Settings^tim^Menu Démarrer^Programmes^Démarrage^Registration .LNK - - File not found
MsConfig - StartUpReg: [b]Adobe Reader Speed Launcher[/b] - hkey= - key= - C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
MsConfig - StartUpReg: [b]CanonMyPrinter[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]CanonSolutionMenu[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]ctfmon.exe[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]DAEMON Tools Lite[/b] - hkey= - key= - C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
MsConfig - StartUpReg: [b]DivXUpdate[/b] - hkey= - key= - C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
MsConfig - StartUpReg: [b]Google Update[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]ISUSPM Startup[/b] - hkey= - key= - C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation)
MsConfig - StartUpReg: [b]ISUSScheduler[/b] - hkey= - key= - C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe (Macrovision Corporation)
MsConfig - StartUpReg: [b]iTunesHelper[/b] - hkey= - key= - C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
MsConfig - StartUpReg: [b]KernelFaultCheck[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]MSMSGS[/b] - hkey= - key= - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
MsConfig - StartUpReg: [b]Omnipage[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]QuickTime Task[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]RoxWatchTray[/b] - hkey= - key= - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe (Sonic Solutions)
MsConfig - StartUpReg: [b]SunJavaUpdateSched[/b] - hkey= - key= - C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 2
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vds - Service
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Rendu VML (Vector Graphics Rendering)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Lecteur Windows Media Microsoft 6.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Liaison de données Dynamic HTML pour Java
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Logiciel de navigation hors connexion
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Création avancée
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015C} - Microsoft DirectX
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Aide sur Internet Explorer
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - Classes Java DirectAnimation
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.7
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Outils d'installation Internet Explorer
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Améliorations pour la navigation
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - Accès au site MSN
ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework
ActiveX: {73fa19d0-2d75-11d2-995d-00c04f98bbc9} - Web Folders
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - %SystemRoot%\system32\ie4uinit.exe
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Liaison de données Dynamic HTML
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Polices de base Internet Explorer
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Planificateur de tâches
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - Aide HTML
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.yv12 - C:\WINDOWS\System32\yv12vfw.dll (www.helixcommunity.org)
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2011/11/29 14:53:03 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\tim\Recent
[2011/11/28 15:16:49 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrateur\Application Data\Sun
[2011/11/28 15:13:30 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrateur\Bureau\RK_Quarantine
[2011/11/28 12:32:48 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\tim\Menu Démarrer\Programmes\System Fix
[2011/11/19 11:22:27 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Google Earth
[2011/11/19 11:20:40 | 000,000,000 | --SD | C] -- C:\WINDOWS\system32\config\systemprofile\Cookies
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2011/11/29 14:52:58 | 000,002,206 | -H-- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/11/29 14:52:26 | 000,001,046 | -H-- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/11/29 14:52:08 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/11/29 14:51:57 | 3219,169,280 | -HS- | M] () -- C:\hiberfil.sys
[2011/11/28 15:19:28 | 000,014,704 | -HS- | M] () -- C:\Documents and Settings\All Users\Application Data\qlwdyp7y0swn1tpj2oxq5d840k7c
[2011/11/28 15:19:28 | 000,014,704 | -HS- | M] () -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\qlwdyp7y0swn1tpj2oxq5d840k7c
[2011/11/28 15:17:08 | 000,335,872 | -H-- | M] () -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\uyx.exe
[2011/11/28 15:17:08 | 000,335,872 | -H-- | M] () -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\fri.exe
[2011/11/28 15:16:47 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011/11/28 15:13:32 | 000,111,872 | ---- | M] () -- C:\WINDOWS\System32\drivers\TrueSight.sys
[2011/11/28 15:13:30 | 000,766,976 | -H-- | M] () -- C:\Documents and Settings\Administrateur\Bureau\RogueKiller.exe
[2011/11/28 14:42:39 | 000,000,849 | -H-- | M] () -- C:\Documents and Settings\tim\Application Data\Microsoft\Internet Explorer\Quick Launch\System Fix.lnk
[2011/11/28 13:19:01 | 000,001,050 | -H-- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/11/28 12:36:19 | 000,562,760 | -H-- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2011/11/28 12:36:19 | 000,485,358 | -H-- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/11/28 12:36:19 | 000,107,940 | -H-- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2011/11/28 12:36:19 | 000,088,912 | -H-- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/11/28 12:33:11 | 000,000,416 | -H-- | M] () -- C:\Documents and Settings\All Users\Application Data\Jjem0MOm0HHg4m
[2011/11/28 12:32:52 | 000,000,831 | -H-- | M] () -- C:\Documents and Settings\tim\Bureau\System Fix.lnk
[2011/11/28 12:32:52 | 000,000,320 | -H-- | M] () -- C:\Documents and Settings\All Users\Application Data\~Jjem0MOm0HHg4m
[2011/11/28 12:32:52 | 000,000,224 | -H-- | M] () -- C:\Documents and Settings\All Users\Application Data\~Jjem0MOm0HHg4mr
[2011/11/28 12:32:26 | 000,351,488 | -H-- | M] () -- C:\Documents and Settings\All Users\Application Data\Jjem0MOm0HHg4m.exe
[2011/11/28 12:32:16 | 000,118,601 | -H-- | M] () -- C:\WINDOWS\System32\nvModes.001
[2011/11/28 12:29:56 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ZHP
[2011/11/28 12:29:56 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\myfile2
[2011/11/28 12:29:56 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft Silverlight
[2011/11/28 12:29:56 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Google Earth
[2011/11/28 12:27:33 | 000,444,672 | -H-- | M] () -- C:\Documents and Settings\All Users\Application Data\yEfRqQhDUGAmlI.exe
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2011/11/29 12:21:37 | 3219,169,280 | -HS- | C] () -- C:\hiberfil.sys
[2011/11/28 15:17:09 | 000,014,704 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\qlwdyp7y0swn1tpj2oxq5d840k7c
[2011/11/28 15:17:09 | 000,014,704 | -HS- | C] () -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\qlwdyp7y0swn1tpj2oxq5d840k7c
[2011/11/28 15:17:08 | 000,335,872 | -H-- | C] () -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\uyx.exe
[2011/11/28 15:17:08 | 000,335,872 | -H-- | C] () -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\fri.exe
[2011/11/28 15:13:32 | 000,111,872 | ---- | C] () -- C:\WINDOWS\System32\drivers\TrueSight.sys
[2011/11/28 15:13:17 | 000,766,976 | -H-- | C] () -- C:\Documents and Settings\Administrateur\Bureau\RogueKiller.exe
[2011/11/28 14:42:36 | 000,000,849 | -H-- | C] () -- C:\Documents and Settings\tim\Application Data\Microsoft\Internet Explorer\Quick Launch\System Fix.lnk
[2011/11/28 12:32:52 | 000,000,831 | -H-- | C] () -- C:\Documents and Settings\tim\Bureau\System Fix.lnk
[2011/11/28 12:32:52 | 000,000,224 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\~Jjem0MOm0HHg4mr
[2011/11/28 12:32:51 | 000,000,320 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\~Jjem0MOm0HHg4m
[2011/11/28 12:32:34 | 000,000,416 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\Jjem0MOm0HHg4m
[2011/11/28 12:32:26 | 000,351,488 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\Jjem0MOm0HHg4m.exe
[2011/11/28 12:27:34 | 000,444,672 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\yEfRqQhDUGAmlI.exe
[2011/05/12 12:54:45 | 000,256,512 | -H-- | C] () -- C:\WINDOWS\PEV.exe
[2011/05/12 12:54:45 | 000,098,816 | -H-- | C] () -- C:\WINDOWS\sed.exe
[2011/05/12 12:54:45 | 000,089,088 | -H-- | C] () -- C:\WINDOWS\MBR.exe
[2011/05/12 12:54:45 | 000,080,412 | -H-- | C] () -- C:\WINDOWS\grep.exe
[2011/05/12 12:54:45 | 000,068,096 | -H-- | C] () -- C:\WINDOWS\zip.exe
[2011/05/12 04:01:36 | 000,000,112 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\18eS4gm2.dat
[2011/04/28 19:46:48 | 000,000,120 | -H-- | C] () -- C:\WINDOWS\Awacuvijukijad.dat
[2011/04/28 19:46:48 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\Gtuxewiduc.bin
[2010/11/29 09:33:15 | 000,000,161 | -H-- | C] () -- C:\WINDOWS\MyDrivers.ini
[2010/11/18 19:57:07 | 000,354,816 | -H-- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2010/09/07 08:23:29 | 000,000,600 | -H-- | C] () -- C:\Documents and Settings\tim\Application Data\winscp.rnd
[2010/08/13 17:14:25 | 000,000,017 | -H-- | C] () -- C:\WINDOWS\Missing.ini
[2010/03/10 08:19:48 | 000,002,240 | -H-- | C] () -- C:\WINDOWS\LENDIG.sys
[2010/02/25 10:04:15 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/02/23 16:52:14 | 000,000,029 | -H-- | C] () -- C:\WINDOWS\popcinfo.dat
[2010/02/13 14:37:34 | 000,000,047 | -H-- | C] () -- C:\WINDOWS\popcinfot.dat
[2010/01/20 12:08:39 | 000,007,680 | -H-- | C] () -- C:\WINDOWS\System32\CNMVS61.DLL
[2010/01/04 14:54:36 | 000,064,040 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2009/11/29 22:08:07 | 000,000,540 | -H-- | C] () -- C:\Documents and Settings\tim\Raccourci vers Bureau.lnk
[2009/11/18 14:38:55 | 000,163,840 | -H-- | C] () -- C:\WINDOWS\System32\ArtFfct.dll
[2009/11/18 14:38:54 | 012,550,144 | -H-- | C] () -- C:\WINDOWS\CS-80V(10 voices).dll
[2009/08/27 19:33:06 | 000,281,760 | -H-- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2009/08/27 19:33:05 | 000,025,888 | -H-- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2009/08/25 07:12:22 | 000,010,240 | -H-- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2009/06/30 08:43:49 | 000,056,056 | -H-- | C] () -- C:\WINDOWS\System32\DLAAPI_W.DLL
[2009/06/30 08:43:49 | 000,000,164 | -H-- | C] () -- C:\WINDOWS\wininit.ini
[2009/05/27 05:56:54 | 000,000,754 | -H-- | C] () -- C:\WINDOWS\WORDPAD.INI
[2009/05/27 03:55:24 | 000,002,030 | -H-- | C] () -- C:\Documents and Settings\tim\Application Data\wklnhst.dat
[2009/05/19 06:25:06 | 000,000,705 | -H-- | C] () -- C:\Documents and Settings\tim\.lnk
[2009/05/17 19:14:36 | 000,000,323 | -H-- | C] () -- C:\WINDOWS\WakeMeUP.INI
[2009/05/17 13:53:55 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\nsreg.dat
[2009/05/17 13:31:38 | 000,123,392 | -H-- | C] () -- C:\Documents and Settings\tim\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/05/17 10:50:21 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2009/05/17 10:05:46 | 000,356,352 | -H-- | C] () -- C:\WINDOWS\System32\AegisI5Installer.exe
[2009/05/17 09:54:58 | 000,118,601 | -H-- | C] () -- C:\WINDOWS\System32\nvModes.dat
[2009/05/17 09:54:02 | 001,703,936 | -H-- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2009/05/17 09:54:02 | 001,019,904 | -H-- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2009/05/17 09:54:01 | 001,018,804 | -H-- | C] () -- C:\WINDOWS\System32\nvucode.bin
[2009/05/17 09:54:01 | 000,466,944 | -H-- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2009/05/17 09:53:59 | 001,474,560 | -H-- | C] () -- C:\WINDOWS\System32\nview.dll
[2009/05/17 09:53:58 | 001,339,392 | -H-- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2009/05/17 09:53:55 | 000,442,368 | -H-- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2009/05/17 09:53:53 | 000,425,984 | -H-- | C] () -- C:\WINDOWS\System32\keystone.exe
[2009/05/17 09:53:52 | 001,626,112 | -H-- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2009/05/17 09:51:36 | 000,016,480 | -H-- | C] () -- C:\WINDOWS\System32\rixdicon.dll
[2009/05/17 09:26:16 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2009/05/17 09:20:34 | 000,021,892 | -H-- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2009/05/17 05:09:49 | 000,058,752 | -H-- | C] () -- C:\WINDOWS\System32\drivers\redbook.sys
[2009/05/17 05:07:49 | 000,004,205 | -H-- | C] () -- C:\WINDOWS\ODBCINST.INI
[2009/05/17 05:06:35 | 000,329,888 | -H-- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2008/10/07 02:13:22 | 000,058,648 | -H-- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2008/10/07 02:13:20 | 000,058,648 | -H-- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2008/10/07 02:13:20 | 000,058,648 | -H-- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2008/10/07 02:13:20 | 000,058,648 | -H-- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2008/10/07 02:13:20 | 000,058,648 | -H-- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2008/10/07 02:13:20 | 000,058,648 | -H-- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2008/10/07 02:13:20 | 000,058,648 | -H-- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2008/10/07 02:13:20 | 000,058,648 | -H-- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2008/10/07 02:13:20 | 000,058,648 | -H-- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2008/06/05 01:58:26 | 000,197,912 | -H-- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2007/08/06 18:22:15 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\px.ini
[2006/09/16 16:36:50 | 000,520,192 | -H-- | C] () -- C:\WINDOWS\System32\CddbPlaylist2Roxio.dll
[2006/09/16 16:36:50 | 000,204,800 | -H-- | C] () -- C:\WINDOWS\System32\CddbFileTaggerRoxio.dll
[2005/03/28 18:22:59 | 013,107,200 | -H-- | C] () -- C:\WINDOWS\System32\oembios.bin
[2005/03/28 18:22:59 | 000,004,627 | -H-- | C] () -- C:\WINDOWS\System32\oembios.dat
[2004/08/05 05:00:00 | 000,673,088 | -H-- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004/08/05 05:00:00 | 000,562,760 | -H-- | C] () -- C:\WINDOWS\System32\perfh00C.dat
[2004/08/05 05:00:00 | 000,485,358 | -H-- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004/08/05 05:00:00 | 000,322,810 | -H-- | C] () -- C:\WINDOWS\System32\perfi00C.dat
[2004/08/05 05:00:00 | 000,272,128 | -H-- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004/08/05 05:00:00 | 000,218,003 | -H-- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004/08/05 05:00:00 | 000,107,940 | -H-- | C] () -- C:\WINDOWS\System32\perfc00C.dat
[2004/08/05 05:00:00 | 000,088,912 | -H-- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004/08/05 05:00:00 | 000,054,144 | -H-- | C] () -- C:\WINDOWS\System32\drivers\i8042prt.sys
[2004/08/05 05:00:00 | 000,046,258 | -H-- | C] () -- C:\WINDOWS\System32\mib.bin
[2004/08/05 05:00:00 | 000,034,108 | -H-- | C] () -- C:\WINDOWS\System32\perfd00C.dat
[2004/08/05 05:00:00 | 000,028,626 | -H-- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004/08/05 05:00:00 | 000,004,569 | -H-- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004/08/05 05:00:00 | 000,001,804 | -H-- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004/08/05 05:00:00 | 000,000,741 | -H-- | C] () -- C:\WINDOWS\System32\noise.dat
[2002/09/17 17:45:00 | 000,119,808 | -H-- | C] () -- C:\WINDOWS\lsb_un20.exe
[color=#E56717]========== LOP Check ==========[/color]
[2011/03/07 10:36:30 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\.minecraft
[2009/11/11 15:26:55 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Ableton
[2009/05/26 07:39:00 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Braid
[2011/05/12 13:14:30 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\cacaoweb
[2011/04/26 13:59:58 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Canon
[2010/09/11 09:03:43 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Crayon Physics Deluxe
[2010/08/29 11:19:10 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\CVitae
[2009/08/14 10:56:28 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\DAEMON Tools Lite
[2009/08/14 06:55:35 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\FabFilter
[2010/01/04 10:14:57 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\FreeFLVConverter
[2010/03/22 07:56:56 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\GARMIN
[2011/01/11 08:39:41 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\GZero
[2011/04/20 13:09:39 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Iceni
[2009/06/14 06:42:33 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\iZotope
[2011/01/25 08:42:41 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\MSNInstaller
[2009/05/19 14:12:44 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\NCH Swift Sound
[2010/06/09 12:46:28 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Nevosoft
[2009/08/14 06:47:35 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\One
[2010/05/12 13:47:21 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\PhotoFiltre
[2010/05/12 13:47:20 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Pixia
[2010/08/29 09:08:51 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\runic games
[2009/11/20 15:22:47 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\SharePod
[2010/12/13 17:04:45 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Spotify
[2010/02/15 08:41:28 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Steinberg
[2009/05/27 03:55:25 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Template
[2010/12/02 15:05:25 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Thinstall
[2009/08/27 19:34:44 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\Ubisoft
[2011/05/06 08:44:39 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\tim\Application Data\uTorrent
[2010/05/30 10:32:35 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\2DBoy
[2010/11/11 16:56:54 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2011/04/26 13:59:56 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJScan
[2010/09/21 05:09:39 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJSetup000
[2010/09/21 05:10:28 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJSetup001
[2009/08/14 10:55:17 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2010/12/28 16:53:09 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\dLkLf06301
[2011/04/20 13:09:39 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Iceni
[2009/05/19 14:12:44 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
[2010/02/13 05:29:22 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\PopCap Games
[2010/01/04 00:00:01 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[color=#E56717]========== Purity Check ==========[/color]
[color=#E56717]========== Custom Scans ==========[/color]
Invalid Environment Variable: %ALLUSERSPROFILE%\Application Data\*.
Invalid Environment Variable: %ALLUSERSPROFILE%\Application Data\*.exe
[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
[color=#A23BEC]< MD5 for: AEC.SYS >[/color]
[2004/08/05 05:00:00 | 018,779,217 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:aec.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:aec.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:aec.sys
[2004/08/03 15:39:38 | 000,142,464 | -H-- | M] (Microsoft Corporation) MD5=841F385C6CFAF66B58FBD898722BB4F0 -- C:\WINDOWS\$NtServicePackUninstall$\aec.sys
[2008/04/13 11:39:23 | 000,142,592 | -H-- | M] (Microsoft Corporation) MD5=8BED39E3C35D6A489438B8141717A557 -- C:\WINDOWS\ERDNT\cache\aec.sys
[2008/04/13 11:39:23 | 000,142,592 | -H-- | M] (Microsoft Corporation) MD5=8BED39E3C35D6A489438B8141717A557 -- C:\WINDOWS\ServicePackFiles\i386\aec.sys
[2008/04/13 11:39:23 | 000,142,592 | -H-- | M] (Microsoft Corporation) MD5=8BED39E3C35D6A489438B8141717A557 -- C:\WINDOWS\system32\drivers\aec.sys
[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2004/08/05 05:00:00 | 018,779,217 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008/04/13 13:36:38 | 000,042,368 | -H-- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ERDNT\cache\agp440.sys
[2008/04/13 13:36:38 | 000,042,368 | -H-- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008/04/13 13:36:38 | 000,042,368 | -H-- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2004/08/05 05:00:00 | 018,779,217 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008/04/13 13:40:30 | 000,096,512 | -H-- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008/04/13 13:40:30 | 000,096,512 | -H-- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008/04/13 13:40:30 | 000,096,512 | -H-- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004/08/05 05:00:00 | 000,095,360 | -H-- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2004/08/05 05:00:00 | 018,779,217 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008/04/13 13:40:46 | 000,062,976 | -H-- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008/04/13 13:40:46 | 000,062,976 | -H-- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2004/08/05 05:00:00 | 000,049,536 | -H-- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
[color=#A23BEC]< MD5 for: DISK.SYS >[/color]
[2004/08/05 05:00:00 | 018,779,217 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:disk.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:disk.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:disk.sys
[2004/08/05 05:00:00 | 000,036,352 | -H-- | M] (Microsoft Corporation) MD5=00CA44E4534865F8A3B64F7C0984BFF0 -- C:\WINDOWS\$NtServicePackUninstall$\disk.sys
[2008/04/13 13:40:47 | 000,036,352 | -H-- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\ServicePackFiles\i386\disk.sys
[2008/04/13 13:40:47 | 000,036,352 | -H-- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\system32\drivers\disk.sys
[color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
[2004/08/05 05:00:00 | 000,055,808 | -H-- | M] (Microsoft Corporation) MD5=21E83876A6287F15538EF187D286FE11 -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
[2008/04/13 21:33:24 | 000,056,320 | -H-- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\ERDNT\cache\eventlog.dll
[2008/04/13 21:33:24 | 000,056,320 | -H-- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008/04/13 21:33:24 | 000,056,320 | -H-- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\system32\eventlog.dll
[color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
[2004/08/05 05:00:00 | 001,036,288 | -H-- | M] (Microsoft Corporation) MD5=4C33E5B9A6197B6ED215F6CFBA0A2DAA -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe
[2008/04/13 21:34:03 | 001,037,824 | -H-- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\ERDNT\cache\explorer.exe
[2008/04/13 21:34:03 | 001,037,824 | -H-- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\explorer.exe
[2008/04/13 21:34:03 | 001,037,824 | -H-- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe
[color=#A23BEC]< MD5 for: IASTOR.SYS >[/color]
[2007/07/12 16:35:02 | 000,305,176 | -H-- | M] (Intel Corporation) MD5=2358C53F30CB9DCD1D3843C4E2F299B2 -- C:\WINDOWS\dell\iastor\iastor.sys
[color=#A23BEC]< MD5 for: MOUNTMGR.SYS >[/color]
[2004/08/05 05:00:00 | 000,042,240 | -H-- | M] (Microsoft Corporation) MD5=65653F3B4477F3C63E68A9659F85EE2E -- C:\WINDOWS\$NtServicePackUninstall$\mountmgr.sys
[2008/04/13 13:39:46 | 000,042,368 | -H-- | M] (Microsoft Corporation) MD5=A80B9A0BAD1B73637DBCBBA7DF72D3FD -- C:\WINDOWS\ServicePackFiles\i386\mountmgr.sys
[2008/04/13 13:39:46 | 000,042,368 | -H-- | M] (Microsoft Corporation) MD5=A80B9A0BAD1B73637DBCBBA7DF72D3FD -- C:\WINDOWS\system32\drivers\mountmgr.sys
[color=#A23BEC]< MD5 for: MRXSMB.SYS >[/color]
[2004/08/05 05:00:00 | 018,779,217 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:mrxsmb.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:mrxsmb.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:mrxsmb.sys
[2011/02/17 08:18:24 | 000,455,936 | -H-- | M] (Microsoft Corporation) MD5=0EA4D8ED179B75F8AFA7998BA22285CA -- C:\WINDOWS\SoftwareDistribution\Download\699ee2ac4f9ea8ea1babe26c8f35b4ef\SP3GDR\mrxsmb.sys
[2004/08/05 05:00:00 | 000,451,456 | -H-- | M] (Microsoft Corporation) MD5=1FD607FC67F7F7C633C3DA65BFC53D18 -- C:\WINDOWS\$NtUninstallKB957097_0$\mrxsmb.sys
[2009/12/04 13:22:22 | 000,455,424 | -H-- | M] (Microsoft Corporation) MD5=421F7B922CEC5A5F340E7574A98F7B7C -- C:\WINDOWS\$NtUninstallKB980232$\mrxsmb.sys
[2009/12/04 12:25:56 | 000,456,832 | -H-- | M] (Microsoft Corporation) MD5=602549D1E8A622E5746991F6C56B21CA -- C:\WINDOWS\$hf_mig$\KB978251\SP3QFE\mrxsmb.sys
[2008/10/24 06:21:09 | 000,455,296 | -H-- | M] (Microsoft Corporation) MD5=60AE98742484E7AB80C3C1450E708148 -- C:\WINDOWS\$hf_mig$\KB957097\SP3GDR\mrxsmb.sys
[2008/10/24 06:21:09 | 000,455,296 | -H-- | M] (Microsoft Corporation) MD5=60AE98742484E7AB80C3C1450E708148 -- C:\WINDOWS\$NtUninstallKB978251$\mrxsmb.sys
[2008/04/13 14:17:01 | 000,456,576 | -H-- | M] (Microsoft Corporation) MD5=68755F0FF16070178B54674FE5B847B0 -- C:\WINDOWS\$NtUninstallKB957097$\mrxsmb.sys
[2008/04/13 14:17:01 | 000,456,576 | -H-- | M] (Microsoft Corporation) MD5=68755F0FF16070178B54674FE5B847B0 -- C:\WINDOWS\ServicePackFiles\i386\mrxsmb.sys
[2008/10/24 06:10:42 | 000,453,632 | -H-- | M] (Microsoft Corporation) MD5=6F2D483B97B395544E59749C47963C6A -- C:\WINDOWS\$NtServicePackUninstall$\mrxsmb.sys
[2008/10/24 06:41:11 | 000,455,936 | -H-- | M] (Microsoft Corporation) MD5=7170AB42B51954DEF2781A4D1CCE65F4 -- C:\WINDOWS\$hf_mig$\KB957097\SP3QFE\mrxsmb.sys
[2011/07/15 08:29:31 | 000,456,320 | -H-- | M] (Microsoft Corporation) MD5=7D304A5EB4344EBEEAB53A2FE3FFB9F0 -- C:\WINDOWS\SoftwareDistribution\Download\0666a7b23113c5176068ac15399dd921\SP3GDR\mrxsmb.sys
[2008/10/24 06:25:29 | 000,455,936 | -H-- | M] (Microsoft Corporation) MD5=D07DA410091143336DAE419A921AAE2B -- C:\WINDOWS\$hf_mig$\KB957097\SP2QFE\mrxsmb.sys
[2010/02/24 06:57:57 | 000,457,216 | -H-- | M] (Microsoft Corporation) MD5=D09B9F0B9960DD41E73127B7814C115F -- C:\WINDOWS\$hf_mig$\KB980232\SP3QFE\mrxsmb.sys
[2010/02/24 08:11:07 | 000,455,680 | -H-- | M] (Microsoft Corporation) MD5=F3AEFB11ABC521122B67095044169E98 -- C:\WINDOWS\Driver Cache\i386\mrxsmb.sys
[2010/02/24 08:11:07 | 000,455,680 | -H-- | M] (Microsoft Corporation) MD5=F3AEFB11ABC521122B67095044169E98 -- C:\WINDOWS\system32\dllcache\mrxsmb.sys
[2010/02/24 08:11:07 | 000,455,680 | -H-- | M] (Microsoft Corporation) MD5=F3AEFB11ABC521122B67095044169E98 -- C:\WINDOWS\system32\drivers\mrxsmb.sys
[2011/07/15 08:29:35 | 000,457,856 | -H-- | M] (Microsoft Corporation) MD5=FB2FCCC70F7174C7BF64F48E96D3ADF4 -- C:\WINDOWS\SoftwareDistribution\Download\0666a7b23113c5176068ac15399dd921\SP3QFE\mrxsmb.sys
[2011/02/17 08:19:38 | 000,457,472 | -H-- | M] (Microsoft Corporation) MD5=FB7DFD15D760AD339837A470F0E780D3 -- C:\WINDOWS\SoftwareDistribution\Download\699ee2ac4f9ea8ea1babe26c8f35b4ef\SP3QFE\mrxsmb.sys
[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2008/04/13 14:20:37 | 000,182,656 | -H-- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ERDNT\cache\ndis.sys
[2008/04/13 14:20:37 | 000,182,656 | -H-- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008/04/13 14:20:37 | 000,182,656 | -H-- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2004/08/05 05:00:00 | 000,182,912 | -H-- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys
[color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color]
[2008/04/13 21:33:34 | 000,407,040 | -H-- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\ERDNT\cache\netlogon.dll
[2008/04/13 21:33:34 | 000,407,040 | -H-- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008/04/13 21:33:34 | 000,407,040 | -H-- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\system32\netlogon.dll
[2004/08/05 05:00:00 | 000,407,040 | -H-- | M] (Microsoft Corporation) MD5=FAF07FDCDE76000621A28D19F8E2E8EB -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[color=#A23BEC]< MD5 for: NVATA.SYS >[/color]
[2006/10/18 17:31:38 | 000,105,472 | -H-- | M] (NVIDIA Corporation) MD5=EF9941593B2E9B436F64A87DDB570D1A -- C:\WINDOWS\dell\nvraid\nvata.sys
[color=#A23BEC]< MD5 for: NVATABUS.SYS >[/color]
[2006/10/18 16:31:38 | 000,105,472 | -H-- | M] (NVIDIA Corporation) MD5=EF9941593B2E9B436F64A87DDB570D1A -- C:\WINDOWS\dell\nvraid\NvAtaBus.sys
[color=#A23BEC]< MD5 for: RASACD.SYS >[/color]
[2004/08/05 05:00:00 | 000,008,832 | -H-- | M] (Microsoft Corporation) MD5=FE0D99D6F31E4FAD8159F690D68DED9C -- C:\WINDOWS\system32\dllcache\rasacd.sys
[2004/08/05 05:00:00 | 000,008,832 | -H-- | M] (Microsoft Corporation) MD5=FE0D99D6F31E4FAD8159F690D68DED9C -- C:\WINDOWS\system32\drivers\rasacd.sys
[color=#A23BEC]< MD5 for: SCECLI.DLL >[/color]
[2008/04/13 21:33:40 | 000,187,392 | -H-- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2008/04/13 21:33:40 | 000,187,392 | -H-- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008/04/13 21:33:40 | 000,187,392 | -H-- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\system32\scecli.dll
[2004/08/05 05:00:00 | 000,186,368 | -H-- | M] (Microsoft Corporation) MD5=DEC0397F35D027874804EC72979D03CC -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[color=#A23BEC]< MD5 for: TERMDD.SYS >[/color]
[2004/08/05 05:00:00 | 018,779,217 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:termdd.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:termdd.sys
[2009/05/26 06:51:40 | 023,892,017 | -H-- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:termdd.sys
[2008/04/13 21:34:52 | 000,040,840 | -H-- | M] (Microsoft Corporation) MD5=88155247177638048422893737429D9E -- C:\WINDOWS\ServicePackFiles\i386\termdd.sys
[2008/04/13 21:34:52 | 000,040,840 | -H-- | M] (Microsoft Corporation) MD5=88155247177638048422893737429D9E -- C:\WINDOWS\system32\drivers\termdd.sys
[2004/08/03 17:55:12 | 000,040,840 | -H-- | M] (Microsoft Corporation) MD5=A540A99C281D933F3D69D55E48727F47 -- C:\WINDOWS\$NtServicePackUninstall$\termdd.sys
[color=#A23BEC]< MD5 for: WIN32K.SYS >[/color]
[2008/04/13 20:58:06 | 001,
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Tdk88
Messages postés
26
Date d'inscription
lundi 28 novembre 2011
Statut
Membre
Dernière intervention
2 décembre 2011
30 nov. 2011 à 14:06
30 nov. 2011 à 14:06
Bonjour,
Est ce que vous auriez bessoin d,un rapport roguekiller maintenant?
Merci enormement pour votre aide, je suis impressionne par l'entraide sur ce forum, c'est vraiment sympa.
Est ce que vous auriez bessoin d,un rapport roguekiller maintenant?
Merci enormement pour votre aide, je suis impressionne par l'entraide sur ce forum, c'est vraiment sympa.
Utilisateur anonyme
30 nov. 2011 à 18:16
30 nov. 2011 à 18:16
Bonsoir
Pour me poster le rapport OTLPE utilise :
http://pjjoint.malekal.com/
ou
https://www.cjoint.com/
@+
Pour me poster le rapport OTLPE utilise :
http://pjjoint.malekal.com/
ou
https://www.cjoint.com/
@+
Tdk88
Messages postés
26
Date d'inscription
lundi 28 novembre 2011
Statut
Membre
Dernière intervention
2 décembre 2011
Modifié par Tdk88 le 1/12/2011 à 15:13
Modifié par Tdk88 le 1/12/2011 à 15:13
Voici le rapport:
https://pjjoint.malekal.com/files.php?id=20111201_i8n11g15z10u13
Merci d'avance
https://pjjoint.malekal.com/files.php?id=20111201_i8n11g15z10u13
Merci d'avance
Tdk88
Messages postés
26
Date d'inscription
lundi 28 novembre 2011
Statut
Membre
Dernière intervention
2 décembre 2011
1 déc. 2011 à 15:19
1 déc. 2011 à 15:19
Sorry je me suis tromper je vous renvoi le bon tout de suite!
Tdk88
Messages postés
26
Date d'inscription
lundi 28 novembre 2011
Statut
Membre
Dernière intervention
2 décembre 2011
1 déc. 2011 à 15:28
1 déc. 2011 à 15:28
Utilisateur anonyme
Modifié par Guillaume5188 le 1/12/2011 à 16:35
Modifié par Guillaume5188 le 1/12/2011 à 16:35
Bonjour
Relance ce CD OTLPE
* Double-clique sur l'icone OTLPE
* quand demandé "Do you wish to load the remote registry", selectionne "Yes"
* quand demandé "Do you wish to load remote user profile(s) for scanning", selectionne "Yes"
* verifier que "Automatically Load All Remaining Users" est sélectionné et presse OK
* sous Custom Scan box copie_colle le tout ci dessous
----------------------------------------------------------------------------------
:OTL
O4 - HKLM..\Run: [yEfRqQhDUGAmlI.exe] C:\Documents and Settings\All Users\Application Data\yEfRqQhDUGAmlI.exe ()
:Files
C:\Documents and Settings\All Users\Application Data\yEfRqQhDUGAmlI.exe
C:\Documents and Settings\All Users\Application Data\qlwdyp7y0swn1tpj2oxq5d840k7c
C:\Documents and Settings\Administrateur\Local Settings\Application Data\qlwdyp7y0swn1tpj2oxq5d840k7c
C:\Documents and Settings\Administrateur\Local Settings\Application Data\uyx.exe
C:\Documents and Settings\Administrateur\Local Settings\Application Data\fri.exe
C:\Documents and Settings\tim\Application Data\Microsoft\Internet Explorer\Quick Launch\System Fix.lnk
C:\Documents and Settings\All Users\Application Data\Jjem0MOm0HHg4m
C:\Documents and Settings\tim\Bureau\System Fix.lnk
C:\Documents and Settings\All Users\Application Data\~Jjem0MOm0HHg4m
C:\Documents and Settings\All Users\Application Data\~Jjem0MOm0HHg4mr
C:\Documents and Settings\All Users\Application Data\Jjem0MOm0HHg4m.exe
C:\Documents and Settings\All Users\Application Data\yEfRqQhDUGAmlI.exe
[CREATERESTOREPOINT]
[resethosts]
[Purity]
[Empty Temp Folders]
[CREATERESTOREPOINT]
[resethosts]
---------------------------------------------------------------------------------------------------------------
* Puis clique sur le bouton Correction en haut de la fenêtre.
* Laisse le programme travailler, le PC va redémarrer.
Tu verras un log s'ouvrir après le fix (c'est le log qui montre si la suppression a réussi).
sauvegarde-le sur ton Bureau et poste-le après redémarrage.
Note : Si tu ne le trouves pas, c'est un fichier log dans C:\_OTL\MovedFiles
Regarde suivant la date : mmjjaaaa_xxxxxxxx.log
@+
---------Contributeur Sécurité---------
On a tous été un jour débutant dans quelque chose.
Mais le savoir est la récompense de l'assiduité.
Relance ce CD OTLPE
* Double-clique sur l'icone OTLPE
* quand demandé "Do you wish to load the remote registry", selectionne "Yes"
* quand demandé "Do you wish to load remote user profile(s) for scanning", selectionne "Yes"
* verifier que "Automatically Load All Remaining Users" est sélectionné et presse OK
* sous Custom Scan box copie_colle le tout ci dessous
----------------------------------------------------------------------------------
:OTL
O4 - HKLM..\Run: [yEfRqQhDUGAmlI.exe] C:\Documents and Settings\All Users\Application Data\yEfRqQhDUGAmlI.exe ()
:Files
C:\Documents and Settings\All Users\Application Data\yEfRqQhDUGAmlI.exe
C:\Documents and Settings\All Users\Application Data\qlwdyp7y0swn1tpj2oxq5d840k7c
C:\Documents and Settings\Administrateur\Local Settings\Application Data\qlwdyp7y0swn1tpj2oxq5d840k7c
C:\Documents and Settings\Administrateur\Local Settings\Application Data\uyx.exe
C:\Documents and Settings\Administrateur\Local Settings\Application Data\fri.exe
C:\Documents and Settings\tim\Application Data\Microsoft\Internet Explorer\Quick Launch\System Fix.lnk
C:\Documents and Settings\All Users\Application Data\Jjem0MOm0HHg4m
C:\Documents and Settings\tim\Bureau\System Fix.lnk
C:\Documents and Settings\All Users\Application Data\~Jjem0MOm0HHg4m
C:\Documents and Settings\All Users\Application Data\~Jjem0MOm0HHg4mr
C:\Documents and Settings\All Users\Application Data\Jjem0MOm0HHg4m.exe
C:\Documents and Settings\All Users\Application Data\yEfRqQhDUGAmlI.exe
[CREATERESTOREPOINT]
[resethosts]
[Purity]
[Empty Temp Folders]
[CREATERESTOREPOINT]
[resethosts]
---------------------------------------------------------------------------------------------------------------
* Puis clique sur le bouton Correction en haut de la fenêtre.
* Laisse le programme travailler, le PC va redémarrer.
Tu verras un log s'ouvrir après le fix (c'est le log qui montre si la suppression a réussi).
sauvegarde-le sur ton Bureau et poste-le après redémarrage.
Note : Si tu ne le trouves pas, c'est un fichier log dans C:\_OTL\MovedFiles
Regarde suivant la date : mmjjaaaa_xxxxxxxx.log
@+
---------Contributeur Sécurité---------
On a tous été un jour débutant dans quelque chose.
Mais le savoir est la récompense de l'assiduité.
Tdk88
Messages postés
26
Date d'inscription
lundi 28 novembre 2011
Statut
Membre
Dernière intervention
2 décembre 2011
1 déc. 2011 à 17:35
1 déc. 2011 à 17:35
Bonjour
* quand demandé "Do you wish to load the remote registry", selectionne "Yes" : on ne ma pas demander
* quand demandé "Do you wish to load remote user profile(s) for scanning", selectionne "Yes" : idem
Il n'y avait pas le bouton correction donc jai taper run fix
LE pc na pas enclencher de redemarrage donc je sais pas si c'est bon signe.
En gros sa a pris 20 seconde et j'ai eu ce rapport:
https://pjjoint.malekal.com/files.php?id=20111201_b8t5x14l13i9
* quand demandé "Do you wish to load the remote registry", selectionne "Yes" : on ne ma pas demander
* quand demandé "Do you wish to load remote user profile(s) for scanning", selectionne "Yes" : idem
Il n'y avait pas le bouton correction donc jai taper run fix
LE pc na pas enclencher de redemarrage donc je sais pas si c'est bon signe.
En gros sa a pris 20 seconde et j'ai eu ce rapport:
https://pjjoint.malekal.com/files.php?id=20111201_b8t5x14l13i9
Utilisateur anonyme
1 déc. 2011 à 17:37
1 déc. 2011 à 17:37
Re
Démarre ton PC normalement et tiens moi au courant;merci.
@+
Démarre ton PC normalement et tiens moi au courant;merci.
@+
Tdk88
Messages postés
26
Date d'inscription
lundi 28 novembre 2011
Statut
Membre
Dernière intervention
2 décembre 2011
1 déc. 2011 à 17:47
1 déc. 2011 à 17:47
Donc jai redemarrer normalement, la souris ne bouge pas, le clavier ne repond pas et je ne vois aucune icones sur mon bureau.
Par contre il ny a aucun message d'erreur de "system fix"(avant une vingtaine s'afficher".
Merci encore pour ton aide ;0)
Par contre il ny a aucun message d'erreur de "system fix"(avant une vingtaine s'afficher".
Merci encore pour ton aide ;0)
Utilisateur anonyme
1 déc. 2011 à 17:50
1 déc. 2011 à 17:50
Re
Arrête ton PC.
Patiente un peu (une trentaine de secondes)
Démarre ton PC;et regarde si il détecte ta souris et ton clavier.
@+
Arrête ton PC.
Patiente un peu (une trentaine de secondes)
Démarre ton PC;et regarde si il détecte ta souris et ton clavier.
@+
Tdk88
Messages postés
26
Date d'inscription
lundi 28 novembre 2011
Statut
Membre
Dernière intervention
2 décembre 2011
1 déc. 2011 à 18:01
1 déc. 2011 à 18:01
Toujours pareil, la souris ni le clavier ne repondent, snif !
Tdk88
Messages postés
26
Date d'inscription
lundi 28 novembre 2011
Statut
Membre
Dernière intervention
2 décembre 2011
1 déc. 2011 à 18:07
1 déc. 2011 à 18:07
C'est un pc portable.
Mon clavier et ma souris marchent sous OTLP, donc je ne vois pas trop la manip a faire!
Mon clavier et ma souris marchent sous OTLP, donc je ne vois pas trop la manip a faire!
Tdk88
Messages postés
26
Date d'inscription
lundi 28 novembre 2011
Statut
Membre
Dernière intervention
2 décembre 2011
1 déc. 2011 à 18:23
1 déc. 2011 à 18:23
desoler ma souris marche avec reatogo. mais pas sous xp
comment lancer une telle recherche sous reatogo?
comment lancer une telle recherche sous reatogo?