Internet ne fonctionne plus
Miche93
Messages postés
106
Statut
Membre
-
Utilisateur anonyme -
Utilisateur anonyme -
Bonjour,
Internet disparu, anti-virus Kaspersky aussi (même s'il est toujours sur le PC). Impossible de faire une restauration système, ni de mode sans échec.
On m'a conseillé de nettoyer avec cd rescue kaspersky, ce que j'ai tenté de faire, mais quand le logiciel commence à s'installer, au bout de quelques secondes, écran noir, plus rien, le PC tourne toujours mais c'est tout.
Help !!
Merci de vos conseils
Internet disparu, anti-virus Kaspersky aussi (même s'il est toujours sur le PC). Impossible de faire une restauration système, ni de mode sans échec.
On m'a conseillé de nettoyer avec cd rescue kaspersky, ce que j'ai tenté de faire, mais quand le logiciel commence à s'installer, au bout de quelques secondes, écran noir, plus rien, le PC tourne toujours mais c'est tout.
Help !!
Merci de vos conseils
A voir également:
- Internet ne fonctionne plus
- Gps sans internet - Guide
- Complete internet repair - Télécharger - Web & Internet
- Mon pc rame sur internet - Guide
- Internet explorer 11 - Télécharger - Navigateurs
- Internet explorer - Guide
16 réponses
Bonsoir
Et ceci l'as tu tenté?
Tu procèdes comme pour accéder au mode sans échec mais tu choisis:
Invite de commande en mode sans échec :
Voici ce que tu dois taper (validez avec la touche Entrée à la fin de chaque ligne).
@ pour espace
cd \
cd@windows
cd@system32
cd@restore
rstrui
Pour obtenir :
C : \windows \system32 \restore> rstrui
Cela te permettra d'accéder à la restauration
@+
Et ceci l'as tu tenté?
Tu procèdes comme pour accéder au mode sans échec mais tu choisis:
Invite de commande en mode sans échec :
Voici ce que tu dois taper (validez avec la touche Entrée à la fin de chaque ligne).
@ pour espace
cd \
cd@windows
cd@system32
cd@restore
rstrui
Pour obtenir :
C : \windows \system32 \restore> rstrui
Cela te permettra d'accéder à la restauration
@+
Quand je fais F8 pour accéder au mode sans échec, j'ai une fenêtre avec :
1st Floppy Drive
CDROM
HDD
Que je clique sur Floppy Drive ou HDD, le PC se remet en marche normalement. Je n'y comprends plus rien
1st Floppy Drive
CDROM
HDD
Que je clique sur Floppy Drive ou HDD, le PC se remet en marche normalement. Je n'y comprends plus rien
La touche F5 me permet d'accéder au mode sans échec. Mais dès que je choisis soit "mode sans échec", soit "invite de commande en mode sans échec", écran noir et Windows redémarre normalement.
Bonsoir
Il reste l'option LiveCD
Pour cela:
Télécharge OTLPE sur le bureau.
Prépare un CD vierge
Utilise un logiciel de gravure dont tu disposes.
Ou celui-ci Cdburner
Attention il s'agit de graver une imageISO
Note : Le CD gravé, il faut maintenant redémarrer la machine sur le lecteur CDROM
Pour se faire suivre ce lien : Booter sur un CD
Tuto OTLPE
Tu lances l'iso d'OTLPE que tu as gravé.
* une fois le bureau de reatogo chargé , tu lances OTLPE , l'icône jaune
* Double-clique sur l'icone OTLPE
* quand demandé "Do you wish to load the remote registry", select Yes
* quand demandé "Do you wish to load remote user profile(s) for scanning", select Yes
* vérifier que "Automatically Load All Remaining Users" est sélectionné et press OK
* sous Custom Scan box
1) copie_colle le contenu du cadre ci dessous:
netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%SYSTEMDRIVE%\*.exe
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
cdrom.sys
disk.sys
ndis.sys
mountmgr.sys
aec.sys
rasacd.sys
mrxsmb10.sys
mrxsmb20.sys
termdd.sys
mrxsmb.sys
win32k.sys
storport.sys
IdeChnDr.sys
viasraid.sys
explorer.exe
winlogon.exe
wininit.exe
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
CREATERESTOREPOINT
* copie colle ce texte dans un fichier texte|bloc note que tu enregistres sur clé usb que tu brancheras sous reatogo tu pourras alors facilement le copier\coller.
* 2) Clic Run Scan pour démarrer le scan.
* Une fois terminé , le fichier se trouve là C:\OTL.txt
* Copie_colle le contenu dans ta prochaine réponse.
@+
Il reste l'option LiveCD
Pour cela:
Télécharge OTLPE sur le bureau.
Prépare un CD vierge
Utilise un logiciel de gravure dont tu disposes.
Ou celui-ci Cdburner
Attention il s'agit de graver une imageISO
Note : Le CD gravé, il faut maintenant redémarrer la machine sur le lecteur CDROM
Pour se faire suivre ce lien : Booter sur un CD
Tuto OTLPE
Tu lances l'iso d'OTLPE que tu as gravé.
* une fois le bureau de reatogo chargé , tu lances OTLPE , l'icône jaune
* Double-clique sur l'icone OTLPE
* quand demandé "Do you wish to load the remote registry", select Yes
* quand demandé "Do you wish to load remote user profile(s) for scanning", select Yes
* vérifier que "Automatically Load All Remaining Users" est sélectionné et press OK
* sous Custom Scan box
1) copie_colle le contenu du cadre ci dessous:
netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%SYSTEMDRIVE%\*.exe
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
cdrom.sys
disk.sys
ndis.sys
mountmgr.sys
aec.sys
rasacd.sys
mrxsmb10.sys
mrxsmb20.sys
termdd.sys
mrxsmb.sys
win32k.sys
storport.sys
IdeChnDr.sys
viasraid.sys
explorer.exe
winlogon.exe
wininit.exe
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
CREATERESTOREPOINT
* copie colle ce texte dans un fichier texte|bloc note que tu enregistres sur clé usb que tu brancheras sous reatogo tu pourras alors facilement le copier\coller.
* 2) Clic Run Scan pour démarrer le scan.
* Une fois terminé , le fichier se trouve là C:\OTL.txt
* Copie_colle le contenu dans ta prochaine réponse.
@+
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Le processus s'est déroulé correctement jusqu'à l'icône jaune OTLPE. Quand je l'ai lancé, j'ai eu une fenêtre "Choose windows directory - My Computer avec le détail des disques B, C, D, X (pour réatogo) et Shared Document
Je coche OK et j'ai une autre fenêtre "no windows installation found". et je ne peux pas aller plus loin.
Je coche OK et j'ai une autre fenêtre "no windows installation found". et je ne peux pas aller plus loin.
Ce fut fastidieux mais j'y suis arrivée. Ci-dessous le résultat :
OTL logfile created on: 1/22/2012 12:31:23 PM - Run
OTLPE by OldTimer - Version 3.1.48.0 Folder = X:\Programs\OTLPE
Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
Internet Explorer (Version = )
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
895.00 Mb Total Physical Memory | 674.00 Mb Available Physical Memory | 75.00% Memory free
807.00 Mb Paging File | 712.00 Mb Available in Paging File | 88.00% Paging File free
Paging file location(s): C:\pagefile.sys 1344 2688 [binary data]
%SystemDrive% = D: | %SystemRoot% = D:\WINDOWS | %ProgramFiles% = D:\Program Files
Drive C: | 135.23 Gb Total Space | 132.19 Gb Free Space | 97.75% Space Free | Partition Type: NTFS
Drive D: | 97.65 Gb Total Space | 63.30 Gb Free Space | 64.82% Space Free | Partition Type: NTFS
Drive E: | 975.95 Mb Total Space | 975.34 Mb Free Space | 99.94% Space Free | Partition Type: FAT
Drive X: | 436.59 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet001
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV - [2011/02/18 09:37:16 | 000,037,664 | ---- | M] (Apple Inc.) [Auto] -- D:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/11/02 16:06:06 | 000,365,336 | ---- | M] (Kaspersky Lab ZAO) [Auto] -- D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe -- (AVP)
SRV - [2010/05/03 05:17:44 | 000,188,416 | R--- | M] (Canal+ Active) [Auto] -- D:\Program Files\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe -- (CanalPlus.VOD)
SRV - [2008/05/13 09:12:54 | 000,069,632 | ---- | M] (Ralink Technology, Corp.) [Auto] -- D:\Program Files\RALINK\Common\RalinkRegistryWriter.exe -- (RalinkRegistryWriter)
SRV - [2003/07/28 14:28:22 | 000,089,136 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2003/06/19 17:25:00 | 000,322,120 | ---- | M] (Microsoft Corporation) [Auto] -- D:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE -- (MDM)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
DRV - File not found [Kernel | System] -- -- (PCIDump)
DRV - File not found [Kernel | System] -- -- (lbrtfdc)
DRV - File not found [Kernel | System] -- -- (i2omgmt)
DRV - File not found [Kernel | System] -- -- (Changer)
DRV - [2011/12/23 15:09:25 | 000,232,512 | ---- | M] (DT Soft Ltd) [Kernel | System] -- D:\WINDOWS\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2011/12/18 09:31:02 | 000,475,736 | ---- | M] (Kaspersky Lab) [File_System | System] -- D:\WINDOWS\system32\drivers\klif.sys -- (KLIF)
DRV - [2010/06/16 07:54:02 | 000,271,360 | ---- | M] () [Kernel | Auto] -- D:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2010/06/16 07:54:01 | 000,018,048 | ---- | M] () [Kernel | Auto] -- D:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2010/06/09 10:43:52 | 000,011,352 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System] -- D:\WINDOWS\system32\drivers\kl2.sys -- (kl2)
DRV - [2010/06/09 10:43:50 | 000,132,184 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot] -- D:\WINDOWS\system32\drivers\kl1.sys -- (KL1)
DRV - [2010/05/07 05:06:26 | 000,032,856 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\klim5.sys -- (klim5)
DRV - [2009/11/08 22:21:18 | 000,059,388 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System] -- D:\WINDOWS\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2009/11/02 13:27:24 | 000,019,472 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\klmouflt.sys -- (klmouflt)
DRV - [2008/08/18 12:54:00 | 000,145,952 | ---- | M] (NVIDIA Corporation) [Kernel | Boot] -- D:\WINDOWS\system32\drivers\nvgts.sys -- (nvgts)
DRV - [2008/08/01 05:36:00 | 000,054,784 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2008/08/01 05:36:00 | 000,022,016 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2008/06/10 15:53:24 | 000,580,096 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\rt2870.sys -- (rt2870)
DRV - [2007/10/02 01:32:00 | 004,613,120 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2004/12/09 10:25:49 | 000,047,104 | ---- | M] (Protection Technology) [Kernel | Boot] -- D:\WINDOWS\system32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2004/12/03 05:20:41 | 000,020,544 | ---- | M] (Protection Technology) [Kernel | Boot] -- D:\WINDOWS\system32\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x)
DRV - [2004/10/28 05:47:59 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot] -- D:\WINDOWS\system32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\systemprofile_ON_D\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Utilisateur_ON_D\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/toolbar/ie8/sidebar.html
IE - HKU\Utilisateur_ON_D\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
IE - HKU\Utilisateur_ON_D\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.foozir.com/
IE - HKU\Utilisateur_ON_D\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/toolbar/ie8/sidebar.html
IE - HKU\Utilisateur_ON_D\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/toolbar/ie8/sidebar.html
IE - HKU\Utilisateur_ON_D\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Utilisateur_ON_D\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: D:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: D:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: D:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@canalplus.fr/Assistants VOD,version=1.0.0.0: D:\Program Files\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\npCpVod.dll (Canal+ Active)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: D:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: D:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@soe.sony.com/installer,version=1.0.3: D:\Program Files\Sony Online Entertainment\npsoe.dll ()
[2011/12/18 10:07:48 | 000,000,000 | ---D | M] (No name found) -- D:\Program Files\Mozilla Firefox\extensions
[2011/12/18 09:33:52 | 000,000,000 | ---D | M] (Anti-bannière) -- D:\Program Files\Mozilla Firefox\extensions\KavAntiBanner@kaspersky.ru_bak
[2011/12/18 09:33:49 | 000,000,000 | ---D | M] (Analyse des liens (URL Advisor)) -- D:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru_bak
[2012/01/07 05:48:43 | 000,121,816 | ---- | M] (Mozilla Foundation) -- D:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/01/07 05:48:38 | 000,001,516 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2012/01/07 05:48:38 | 000,002,252 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/01/07 05:48:38 | 000,001,822 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2012/01/07 05:48:38 | 000,001,154 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2012/01/07 05:48:38 | 000,001,426 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2012/01/07 05:48:38 | 000,000,956 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml
O1 HOSTS File: ([2011/07/31 04:02:42 | 000,436,274 | R--- | M]) - D:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 15016 more lines...
O2 - BHO: (Yahoo! Toolbar Helper) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - D:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\ievkbd.dll (Kaspersky Lab ZAO)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (no name) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - No CLSID value found.
O2 - BHO: (Nero Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - D:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll (Kaspersky Lab ZAO)
O3 - HKU\Utilisateur_ON_D\..\Toolbar\WebBrowser: (Nero Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - D:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O4 - HKLM..\Run: [AVP] D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe (Kaspersky Lab ZAO)
O4 - HKLM..\Run: [NvCplDaemon] D:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKU\.DEFAULT..\Run: [Steam] File not found
O4 - HKU\systemprofile_ON_D..\Run: [Steam] File not found
O4 - HKU\Utilisateur_ON_D..\Run: [DAEMON Tools Lite] D:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - Startup: D:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Ralink Wireless Utility.lnk = D:\Program Files\RALINK\Common\RaUI.exe (Ralink Technology, Corp.)
O4 - Startup: D:\Documents and Settings\Utilisateur\Menu Démarrer\Programmes\Démarrage\LimeWire On Startup.lnk = D:\Program Files\LimeWire\LimeWire.exe (Lime Wire, LLC)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\LocalService_ON_D\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\NetworkService_ON_D\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\systemprofile_ON_D\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Utilisateur_ON_D\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - D:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - D:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll) - D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\kloehk.dll (Kaspersky Lab ZAO)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - D:\WINDOWS\explorer.exe (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - File not found - -- [ NTFS ]
O32 - AutoRun File - [2010/02/02 18:21:07 | 000,000,000 | ---- | M] () - D:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 06:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Ralink Wireless Utility.lnk - D:\Program Files\RALINK\Common\RaUI.exe - (Ralink Technology, Corp.)
MsConfig - StartUpFolder: C:^Documents and Settings^Utilisateur^Menu Démarrer^Programmes^Démarrage^LimeWire On Startup.lnk - D:\Program Files\LimeWire\LimeWire.exe - (Lime Wire, LLC)
MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 2
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vds - Service
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {1a3e09be-1e45-494b-9174-d7385b45bbf5} -
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Rendu VML (Vector Graphics Rendering)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Liaison de données Dynamic HTML pour Java
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {3C3901C5-3455-3E0A-A214-0B093A5070A6} - .NET Framework
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Création avancée
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - Classes Java DirectAnimation
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5056b317-8d4c-43ee-8543-b9d1e234b8f4} - Mise à jour de sécurité pour Windows XP (KB923789)
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Dossiers Web
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - Internet Explorer
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Planificateur de tâches
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Shockwave Flash
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} -
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2012/01/21 09:20:51 | 000,000,000 | RH-D | C] -- D:\Documents and Settings\Utilisateur\Recent
[2012/01/17 10:49:05 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Application Data\Yahoo! Companion
[2012/01/12 13:30:17 | 002,106,216 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\D3DCompiler_43.dll
[2012/01/12 13:30:17 | 000,527,192 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XAudio2_7.dll
[2012/01/12 13:30:17 | 000,239,960 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\xactengine3_7.dll
[2012/01/12 13:30:17 | 000,074,072 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XAPOFX1_5.dll
[2012/01/12 13:30:16 | 001,998,168 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\D3DX9_43.dll
[2012/01/12 13:30:16 | 001,868,128 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dcsx_43.dll
[2012/01/12 13:30:16 | 000,470,880 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx10_43.dll
[2012/01/12 13:30:16 | 000,248,672 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx11_43.dll
[2012/01/12 13:28:59 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Démarrer\Programmes\Ubisoft
[2012/01/12 13:23:23 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Utilisateur\Mes documents\NCIS
[2012/01/12 13:20:04 | 000,000,000 | ---D | C] -- D:\Program Files\Ubisoft
[2012/01/12 11:34:38 | 000,000,000 | ---D | C] -- D:\Program Files\Yontoo Layers Runtime
[2012/01/12 11:34:30 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Application Data\Tarma Installer
[2012/01/10 15:59:52 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Utilisateur\Mes documents\My Games
[2012/01/07 11:11:23 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Démarrer\Programmes\IHF Handball Challenge 12
[2012/01/07 11:08:36 | 000,000,000 | ---D | C] -- D:\Program Files\NeutronGames
[2011/12/24 11:36:04 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Utilisateur\Local Settings\Application Data\ApplicationHistory
[2011/12/24 11:32:30 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\URTTEMP
[2011/12/24 10:41:49 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Utilisateur\Menu Démarrer\Programmes\Cyanide
[2011/12/24 10:30:48 | 000,000,000 | ---D | C] -- D:\Program Files\Cyanide
[2011/12/23 16:37:33 | 000,528,216 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XAudio2_6.dll
[2011/12/23 16:37:33 | 000,074,072 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XAPOFX1_4.dll
[2011/12/23 16:37:32 | 000,515,416 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XAudio2_5.dll
[2011/12/23 16:37:32 | 000,238,936 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\xactengine3_6.dll
[2011/12/23 16:37:32 | 000,238,936 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\xactengine3_5.dll
[2011/12/23 16:37:32 | 000,022,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\X3DAudio1_7.dll
[2011/12/23 16:37:31 | 005,501,792 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dcsx_42.dll
[2011/12/23 16:37:31 | 000,453,456 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx10_42.dll
[2011/12/23 16:37:31 | 000,235,344 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx11_42.dll
[2011/12/23 15:34:41 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Utilisateur\Application Data\ProtectDISC
[2011/12/23 15:10:34 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Documents\DAEMON Tools Images
[2011/12/23 15:09:43 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Utilisateur\Application Data\OpenCandy
[2011/12/23 15:09:25 | 000,232,512 | ---- | C] (DT Soft Ltd) -- D:\WINDOWS\System32\drivers\dtsoftbus01.sys
[2011/12/23 15:09:17 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Démarrer\Programmes\DAEMON Tools Lite
[2011/12/23 15:09:14 | 000,000,000 | ---D | C] -- D:\Program Files\DAEMON Tools Lite
[2011/12/23 15:08:29 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Utilisateur\Application Data\DAEMON Tools Lite
[2011/12/23 15:08:25 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2011/12/23 15:06:19 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Utilisateur\Application Data\DAEMON Tools Pro
[2011/12/23 15:06:19 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Application Data\DAEMON Tools Pro
[5 D:\WINDOWS\System32\*.tmp files -> D:\WINDOWS\System32\*.tmp -> ]
[4 D:\WINDOWS\*.tmp files -> D:\WINDOWS\*.tmp -> ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2012/01/21 14:13:08 | 000,002,048 | --S- | M] () -- D:\WINDOWS\bootstat.dat
[2012/01/21 13:31:00 | 000,235,289 | ---- | M] () -- D:\WINDOWS\System32\NvApps.xml
[2012/01/21 12:01:00 | 000,000,246 | ---- | M] () -- D:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2012/01/20 14:43:17 | 000,000,826 | ---- | M] () -- D:\Documents and Settings\Utilisateur\Mes documents\cc_20120120_204313.reg
[2012/01/20 14:43:03 | 000,000,934 | ---- | M] () -- D:\Documents and Settings\Utilisateur\Mes documents\cc_20120120_204300.reg
[2012/01/20 14:42:49 | 000,009,876 | ---- | M] () -- D:\Documents and Settings\Utilisateur\Mes documents\cc_20120120_204246.reg
[2012/01/20 13:59:04 | 000,002,206 | ---- | M] () -- D:\WINDOWS\System32\wpa.dbl
[2012/01/18 14:56:23 | 000,002,573 | ---- | M] () -- D:\Documents and Settings\Utilisateur\Bureau\Microsoft Office Word 2003.lnk
[2012/01/12 13:31:50 | 000,001,889 | ---- | M] () -- D:\Documents and Settings\All Users\Bureau\Jeu NCIS.lnk
[2012/01/12 13:28:59 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Menu Démarrer\Programmes\Ubisoft
[2012/01/10 19:09:36 | 000,075,776 | ---- | M] () -- D:\Documents and Settings\Utilisateur\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/01/07 11:16:22 | 000,004,096 | ---- | M] () -- D:\Documents and Settings\All Users\Documents\00002DCE.LCS
[2012/01/07 11:11:53 | 000,413,696 | ---- | M] (Creative Labs) -- D:\WINDOWS\System32\wrap_oal.dll
[2012/01/07 11:11:49 | 000,110,592 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- D:\WINDOWS\System32\OpenAL32.dll
[2012/01/07 11:11:25 | 000,000,844 | ---- | M] () -- D:\Documents and Settings\Utilisateur\Application Data\Microsoft\Internet Explorer\Quick Launch\IHF Handball Challenge 12.lnk
[2012/01/07 11:11:25 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Menu Démarrer\Programmes\IHF Handball Challenge 12
[2012/01/01 05:54:13 | 000,000,784 | ---- | M] () -- D:\Documents and Settings\All Users\Bureau\Malwarebytes Anti-Malware.lnk
[2012/01/01 05:54:13 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Menu Démarrer\Programmes\Malwarebytes' Anti-Malware
[2012/01/01 05:52:58 | 000,011,130 | ---- | M] () -- D:\Documents and Settings\Utilisateur\Mes documents\cc_20120101_115254.reg
[2011/12/24 11:36:05 | 000,000,134 | ---- | M] () -- D:\Documents and Settings\Utilisateur\Local Settings\Application Data\fusioncache.dat
[2011/12/24 11:33:03 | 000,000,000 | R--D | M] -- D:\Documents and Settings\All Users\Menu Démarrer\Programmes\Outils d'administration
[2011/12/24 11:33:02 | 000,697,170 | ---- | M] () -- D:\WINDOWS\System32\perfh00C.dat
[2011/12/24 11:33:02 | 000,608,714 | ---- | M] () -- D:\WINDOWS\System32\perfh009.dat
[2011/12/24 11:33:02 | 000,161,888 | ---- | M] () -- D:\WINDOWS\System32\perfc00C.dat
[2011/12/24 11:33:02 | 000,133,430 | ---- | M] () -- D:\WINDOWS\System32\perfc009.dat
[2011/12/24 10:41:49 | 000,000,873 | ---- | M] () -- D:\Documents and Settings\Utilisateur\Bureau\Pro Rugby Manager 2005.lnk
[2011/12/23 15:12:09 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Menu Démarrer\Programmes\DAEMON Tools Lite
[2011/12/23 15:09:25 | 000,232,512 | ---- | M] (DT Soft Ltd) -- D:\WINDOWS\System32\drivers\dtsoftbus01.sys
[5 D:\WINDOWS\System32\*.tmp files -> D:\WINDOWS\System32\*.tmp -> ]
[4 D:\WINDOWS\*.tmp files -> D:\WINDOWS\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2012/01/20 14:43:15 | 000,000,826 | ---- | C] () -- D:\Documents and Settings\Utilisateur\Mes documents\cc_20120120_204313.reg
[2012/01/20 14:43:02 | 000,000,934 | ---- | C] () -- D:\Documents and Settings\Utilisateur\Mes documents\cc_20120120_204300.reg
[2012/01/20 14:42:47 | 000,009,876 | ---- | C] () -- D:\Documents and Settings\Utilisateur\Mes documents\cc_20120120_204246.reg
[2012/01/12 13:31:50 | 000,001,889 | ---- | C] () -- D:\Documents and Settings\All Users\Bureau\Jeu NCIS.lnk
[2012/01/07 11:11:25 | 000,000,844 | ---- | C] () -- D:\Documents and Settings\Utilisateur\Application Data\Microsoft\Internet Explorer\Quick Launch\IHF Handball Challenge 12.lnk
[2012/01/01 05:54:13 | 000,000,784 | ---- | C] () -- D:\Documents and Settings\All Users\Bureau\Malwarebytes Anti-Malware.lnk
[2012/01/01 05:52:57 | 000,011,130 | ---- | C] () -- D:\Documents and Settings\Utilisateur\Mes documents\cc_20120101_115254.reg
[2011/12/24 11:36:05 | 000,000,134 | ---- | C] () -- D:\Documents and Settings\Utilisateur\Local Settings\Application Data\fusioncache.dat
[2011/12/24 10:41:48 | 000,000,873 | ---- | C] () -- D:\Documents and Settings\Utilisateur\Bureau\Pro Rugby Manager 2005.lnk
[2011/12/23 15:34:45 | 000,004,096 | ---- | C] () -- D:\Documents and Settings\All Users\Documents\00002DCE.LCS
[2011/12/18 09:33:26 | 000,115,369 | ---- | C] () -- D:\WINDOWS\System32\drivers\klin.dat
[2011/12/18 09:33:26 | 000,097,961 | ---- | C] () -- D:\WINDOWS\System32\drivers\klick.dat
[2011/10/08 09:24:18 | 000,017,408 | ---- | C] () -- D:\Documents and Settings\Utilisateur\Local Settings\Application Data\WebpageIcons.db
[2011/02/15 04:11:08 | 000,000,012 | ---- | C] () -- D:\Documents and Settings\Utilisateur\intlname.ols
[2010/11/16 04:20:01 | 000,000,050 | ---- | C] () -- D:\WINDOWS\MegaManager.INI
[2010/11/02 05:26:58 | 000,376,832 | ---- | C] () -- D:\WINDOWS\System32\AegisI5Installer.exe
[2010/11/02 05:26:49 | 000,438,272 | ---- | C] () -- D:\WINDOWS\System32\RaCoInst.dll
[2010/11/02 05:26:38 | 000,011,783 | ---- | C] () -- D:\WINDOWS\System32\RaCoInst.dat
[2010/11/02 05:26:38 | 000,004,096 | ---- | C] () -- D:\WINDOWS\System32\drivers\rt2870.bin
[2010/10/06 06:52:27 | 000,001,974 | ---- | C] () -- D:\WINDOWS\wininit.ini
[2010/09/22 20:18:57 | 000,266,610 | ---- | C] () -- D:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
[2010/09/22 17:53:11 | 000,266,610 | ---- | C] () -- D:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-515967899-57989841-1801674531-1003-0.dat
[2010/06/16 07:54:01 | 000,271,360 | ---- | C] () -- D:\WINDOWS\System32\drivers\atksgt.sys
[2010/06/16 07:54:01 | 000,018,048 | ---- | C] () -- D:\WINDOWS\System32\drivers\lirsgt.sys
[2010/04/23 11:09:02 | 000,075,776 | ---- | C] () -- D:\Documents and Settings\Utilisateur\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/03/28 17:29:56 | 000,050,260 | -H-- | C] () -- D:\WINDOWS\System32\mlfcache.dat
[2010/02/03 05:35:17 | 000,168,448 | ---- | C] () -- D:\WINDOWS\System32\unrar.dll
[2010/02/03 05:35:17 | 000,000,038 | ---- | C] () -- D:\WINDOWS\avisplitter.ini
[2010/02/03 05:35:16 | 000,881,664 | ---- | C] () -- D:\WINDOWS\System32\xvidcore.dll
[2010/02/03 05:35:16 | 000,205,824 | ---- | C] () -- D:\WINDOWS\System32\xvidvfw.dll
[2010/02/03 05:35:15 | 003,596,288 | ---- | C] () -- D:\WINDOWS\System32\qt-dx331.dll
[2010/02/03 05:35:14 | 000,085,504 | ---- | C] () -- D:\WINDOWS\System32\ff_vfw.dll
[2010/02/03 05:34:46 | 000,000,385 | ---- | C] () -- D:\WINDOWS\ODBC.INI
[2010/02/03 05:31:16 | 000,000,000 | ---- | C] () -- D:\WINDOWS\nsreg.dat
[2010/02/03 03:21:56 | 000,004,984 | ---- | C] () -- D:\WINDOWS\System32\drivers\nvphy.bin
[2010/02/02 19:06:38 | 000,004,205 | ---- | C] () -- D:\WINDOWS\ODBCINST.INI
[2010/02/02 19:03:57 | 000,269,392 | ---- | C] () -- D:\WINDOWS\System32\FNTCACHE.DAT
[2010/02/02 18:23:11 | 000,002,048 | --S- | C] () -- D:\WINDOWS\bootstat.dat
[2010/02/02 18:18:30 | 000,021,892 | ---- | C] () -- D:\WINDOWS\System32\emptyregdb.dat
[2009/09/09 12:01:40 | 000,027,675 | ---- | C] () -- D:\WINDOWS\System32\drivers\klopp.dat
[2009/08/02 17:21:54 | 000,197,912 | ---- | C] () -- D:\WINDOWS\System32\physxcudart_20.dll
[2009/08/02 17:21:54 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2009/08/02 17:21:54 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelSwedish.dll
[2009/08/02 17:21:54 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelSpanish.dll
[2009/08/02 17:21:54 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2009/08/02 17:21:54 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelPortugese.dll
[2009/08/02 17:21:54 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelKorean.dll
[2009/08/02 17:21:54 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelJapanese.dll
[2009/08/02 17:21:52 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelGerman.dll
[2009/08/02 17:21:52 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelFrench.dll
[2009/06/10 02:29:34 | 001,724,416 | ---- | C] () -- D:\WINDOWS\System32\nvwdmcpl.dll
[2009/06/10 02:29:34 | 001,657,376 | ---- | C] () -- D:\WINDOWS\System32\nwiz.exe
[2009/06/10 02:29:34 | 001,101,824 | ---- | C] () -- D:\WINDOWS\System32\nvwimg.dll
[2009/06/10 02:29:34 | 000,466,944 | ---- | C] () -- D:\WINDOWS\System32\nvshell.dll
[2009/06/10 02:29:34 | 000,449,056 | ---- | C] () -- D:\WINDOWS\System32\nvappbar.exe
[2009/06/10 02:29:34 | 000,436,768 | ---- | C] () -- D:\WINDOWS\System32\keystone.exe
[2009/06/10 02:29:32 | 001,507,328 | ---- | C] () -- D:\WINDOWS\System32\nview.dll
[2009/06/10 00:03:00 | 001,580,550 | ---- | C] () -- D:\WINDOWS\System32\nvdata.bin
[2004/08/05 07:00:00 | 013,107,200 | ---- | C] () -- D:\WINDOWS\System32\oembios.bin
[2004/08/05 07:00:00 | 000,697,170 | ---- | C] () -- D:\WINDOWS\System32\perfh00C.dat
[2004/08/05 07:00:00 | 000,673,088 | ---- | C] () -- D:\WINDOWS\System32\mlang.dat
[2004/08/05 07:00:00 | 000,608,714 | ---- | C] () -- D:\WINDOWS\System32\perfh009.dat
[2004/08/05 07:00:00 | 000,322,810 | ---- | C] () -- D:\WINDOWS\System32\perfi00C.dat
[2004/08/05 07:00:00 | 000,272,128 | ---- | C] () -- D:\WINDOWS\System32\perfi009.dat
[2004/08/05 07:00:00 | 000,218,003 | ---- | C] () -- D:\WINDOWS\System32\dssec.dat
[2004/08/05 07:00:00 | 000,161,888 | ---- | C] () -- D:\WINDOWS\System32\perfc00C.dat
[2004/08/05 07:00:00 | 000,133,430 | ---- | C] () -- D:\WINDOWS\System32\perfc009.dat
[2004/08/05 07:00:00 | 000,046,258 | ---- | C] () -- D:\WINDOWS\System32\mib.bin
[2004/08/05 07:00:00 | 000,034,108 | ---- | C] () -- D:\WINDOWS\System32\perfd00C.dat
[2004/08/05 07:00:00 | 000,028,626 | ---- | C] () -- D:\WINDOWS\System32\perfd009.dat
[2004/08/05 07:00:00 | 000,004,569 | ---- | C] () -- D:\WINDOWS\System32\secupd.dat
[2004/08/05 07:00:00 | 000,004,463 | ---- | C] () -- D:\WINDOWS\System32\oembios.dat
[2004/08/05 07:00:00 | 000,001,804 | ---- | C] () -- D:\WINDOWS\System32\dcache.bin
[2004/08/05 07:00:00 | 000,000,741 | ---- | C] () -- D:\WINDOWS\System32\noise.dat
[2003/04/01 04:58:02 | 000,005,260 | ---- | C] () -- D:\WINDOWS\System32\OUTLPERF.INI
[color=#E56717]========== LOP Check ==========[/color]
[2011/12/18 09:39:13 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\AVAST Software
[2010/10/18 10:53:14 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\Clarus
[2011/12/23 15:08:32 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2011/12/23 15:06:19 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\DAEMON Tools Pro
[2010/10/12 05:01:37 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\Downloaded Installations
[2010/02/14 08:40:54 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\Sports Interactive
[2012/01/12 11:34:37 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\Tarma Installer
[2010/04/20 05:24:49 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2010/02/04 15:13:10 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2012/01/21 12:01:00 | 000,000,246 | ---- | M] () -- D:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job
[color=#E56717]========== Purity Check ==========[/color]
[color=#E56717]========== Custom Scans ==========[/color]
Invalid Environment Variable: %ALLUSERSPROFILE%\Application Data\*.
Invalid Environment Variable: %ALLUSERSPROFILE%\Application Data\*.exe
[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
[color=#A23BEC]< MD5 for: AEC.SYS >[/color]
[2004/08/05 07:00:00 | 018,779,217 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:aec.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:aec.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp3.cab:aec.sys
[2004/08/03 16:39:38 | 000,142,464 | ---- | M] (Microsoft Corporation) MD5=841F385C6CFAF66B58FBD898722BB4F0 -- D:\WINDOWS\$NtServicePackUninstall$\aec.sys
[2008/04/13 03:39:24 | 000,142,592 | ---- | M] (Microsoft Corporation) MD5=8BED39E3C35D6A489438B8141717A557 -- D:\WINDOWS\ServicePackFiles\i386\aec.sys
[2008/04/13 03:39:24 | 000,142,592 | ---- | M] (Microsoft Corporation) MD5=8BED39E3C35D6A489438B8141717A557 -- D:\WINDOWS\system32\drivers\aec.sys
[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2004/08/05 07:00:00 | 018,779,217 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008/04/13 05:36:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- D:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008/04/13 05:36:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- D:\WINDOWS\system32\drivers\agp440.sys
[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2004/08/05 07:00:00 | 018,779,217 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008/04/13 05:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- D:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008/04/13 05:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- D:\WINDOWS\system32\drivers\atapi.sys
[2004/08/05 07:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- D:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2004/08/05 07:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- D:\WINDOWS\system32\ReinstallBackups\0000\DriverFiles\i386\atapi.sys
[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2004/08/05 07:00:00 | 018,779,217 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008/04/13 05:40:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- D:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008/04/13 05:40:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- D:\WINDOWS\system32\drivers\cdrom.sys
[2004/08/05 07:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- D:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
[color=#A23BEC]< MD5 for: DISK.SYS >[/color]
[2004/08/05 07:00:00 | 018,779,217 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:disk.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:disk.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp3.cab:disk.sys
[2004/08/05 07:00:00 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=00CA44E4534865F8A3B64F7C0984BFF0 -- D:\WINDOWS\$NtServicePackUninstall$\disk.sys
[2008/04/13 05:40:48 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- D:\WINDOWS\ServicePackFiles\i386\disk.sys
[2008/04/13 05:40:48 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- D:\WINDOWS\system32\drivers\disk.sys
[color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
[2004/08/05 07:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=21E83876A6287F15538EF187D286FE11 -- D:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
[2008/04/13 13:33:26 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- D:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008/04/13 13:33:26 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- D:\WINDOWS\system32\eventlog.dll
[color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
[2004/08/05 07:00:00 | 001,036,288 | ---- | M] (Microsoft Corporation) MD5=4C33E5B9A6197B6ED215F6CFBA0A2DAA -- D:\WINDOWS\$NtServicePackUninstall$\explorer.exe
[2008/04/13 13:34:04 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- D:\WINDOWS\explorer.exe
[2008/04/13 13:34:04 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- D:\WINDOWS\ServicePackFiles\i386\explorer.exe
[color=#A23BEC]< MD5 for: MOUNTMGR.SYS >[/color]
[2004/08/05 07:00:00 | 000,042,240 | ---- | M] (Microsoft Corporation) MD5=65653F3B4477F3C63E68A9659F85EE2E -- D:\WINDOWS\$NtServicePackUninstall$\mountmgr.sys
[2008/04/13 05:39:48 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=A80B9A0BAD1B73637DBCBBA7DF72D3FD -- D:\WINDOWS\ServicePackFiles\i386\mountmgr.sys
[2008/04/13 05:39:48 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=A80B9A0BAD1B73637DBCBBA7DF72D3FD -- D:\WINDOWS\system32\drivers\mountmgr.sys
[color=#A23BEC]< MD5 for: MRXSMB.SYS >[/color]
[2004/08/05 07:00:00 | 018,779,217 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:mrxsmb.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:mrxsmb.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp3.cab:mrxsmb.sys
[2004/08/05 07:00:00 | 000,451,456 | ---- | M] (Microsoft Corporation) MD5=1FD607FC67F7F7C633C3DA65BFC53D18 -- D:\WINDOWS\$NtServicePackUninstall$\mrxsmb.sys
[2009/12/04 13:22:22 | 000,455,424 | ---- | M] (Microsoft Corporation) MD5=421F7B922CEC5A5F340E7574A98F7B7C -- D:\WINDOWS\$NtUninstallKB980232$\mrxsmb.sys
[2009/12/04 12:25:56 | 000,456,832 | ---- | M] (Microsoft Corporation) MD5=602549D1E8A622E5746991F6C56B21CA -- D:\WINDOWS\$hf_mig$\KB978251\SP3QFE\mrxsmb.sys
[2008/10/24 06:21:09 | 000,455,296 | ---- | M] (Microsoft Corporation) MD5=60AE98742484E7AB80C3C1450E708148 -- D:\WINDOWS\$NtUninstallKB978251$\mrxsmb.sys
[2008/04/13 06:17:02 | 000,456,576 | ---- | M] (Microsoft Corporation) MD5=68755F0FF16070178B54674FE5B847B0 -- D:\WINDOWS\$NtUninstallKB957097$\mrxsmb.sys
[2008/04/13 06:17:02 | 000,456,576 | ---- | M] (Microsoft Corporation) MD5=68755F0FF16070178B54674FE5B847B0 -- D:\WINDOWS\ServicePackFiles\i386\mrxsmb.sys
[2008/10/24 06:41:11 | 000,455,936 | ---- | M] (Microsoft Corporation) MD5=7170AB42B51954DEF2781A4D1CCE65F4 -- D:\WINDOWS\$hf_mig$\KB957097\SP3QFE\mrxsmb.sys
[2010/02/24 06:57:57 | 000,457,216 | ---- | M] (Microsoft Corporation) MD5=D09B9F0B9960DD41E73127B7814C115F -- D:\WINDOWS\$hf_mig$\KB980232\SP3QFE\mrxsmb.sys
[2010/02/24 08:11:07 | 000,455,680 | ---- | M] (Microsoft Corporation) MD5=F3AEFB11ABC521122B67095044169E98 -- D:\WINDOWS\Driver Cache\i386\mrxsmb.sys
[2010/02/24 08:11:07 | 000,455,680 | ---- | M] (Microsoft Corporation) MD5=F3AEFB11ABC521122B67095044169E98 -- D:\WINDOWS\system32\dllcache\mrxsmb.sys
[2010/02/24 08:11:07 | 000,455,680 | ---- | M] (Microsoft Corporation) MD5=F3AEFB11ABC521122B67095044169E98 -- D:\WINDOWS\system32\drivers\mrxsmb.sys
[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2008/04/13 06:20:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- D:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008/04/13 06:20:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- D:\WINDOWS\system32\drivers\ndis.sys
[2004/08/05 07:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- D:\WINDOWS\$NtServicePackUninstall$\ndis.sys
[color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color]
[2008/04/13 13:33:36 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- D:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008/04/13 13:33:36 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- D:\WINDOWS\system32\netlogon.dll
[2004/08/05 07:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=FAF07FDCDE76000621A28D19F8E2E8EB -- D:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[color=#A23BEC]< MD5 for: NVGTS.SYS >[/color]
[2008/08/18 12:54:00 | 000,145,952 | ---- | M] (NVIDIA Corporation) MD5=37954CD1D0AFC11BECD149F7C3EC88C2 -- D:\NVIDIA\nForceWin2k\15.23\IS\IDE\WinXP\sataraid\nvgts.sys
[2008/08/18 12:54:00 | 000,145,952 | ---- | M] (NVIDIA Corporation) MD5=EA98BFE4931BD13D747D647C1859796E -- D:\NVIDIA\nForceWin2k\15.23\IS\IDE\WinXP\sata_ide\nvgts.sys
[2008/08/18 12:54:00 | 000,145,952 | ---- | M] (NVIDIA Corporation) MD5=EA98BFE4931BD13D747D647C1859796E -- D:\WINDOWS\system32\drivers\nvgts.sys
[color=#A23BEC]< MD5 for: NVRD32.SYS >[/color]
[2008/08/18 12:54:00 | 000,133,152 | ---- | M] (NVIDIA Corporation) MD5=BEF704AA9E17D176A46DDF77C6A52194 -- D:\NVIDIA\nForceWin2k\15.23\IS\IDE\WinXP\sataraid\nvrd32.sys
[color=#A23BEC]< MD5 for: RASACD.SYS >[/color]
[2004/08/05 07:00:00 | 000,008,832 | ---- | M] (Microsoft Corporation) MD5=FE0D99D6F31E4FAD8159F690D68DED9C -- D:\WINDOWS\system32\dllcache\rasacd.sys
[2004/08/05 07:00:00 | 000,008,832 | ---- | M] (Microsoft Corporation) MD5=FE0D99D6F31E4FAD8159F690D68DED9C -- D:\WINDOWS\system32\drivers\rasacd.sys
[color=#A23BEC]< MD5 for: SCECLI.DLL >[/color]
[2008/04/13 13:33:42 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- D:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008/04/13 13:33:42 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- D:\WINDOWS\system32\scecli.dll
[2004/08/05 07:00:00 | 000,186,368 | ---- | M] (Microsoft Corporation) MD5=DEC0397F35D027874804EC72979D03CC -- D:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[color=#A23BEC]< MD5 for: TERMDD.SYS >[/color]
[2004/08/05 07:00:00 | 018,779,217 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:termdd.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:termdd.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp3.cab:termdd.sys
[2008/04/13 13:34:54 | 000,040,840 | ---- | M] (Microsoft Corporation) MD5=88155247177638048422893737429D9E -- D:\WINDOWS\ServicePackFiles\i386\termdd.sys
[2008/04/13 13:34:54 | 000,040,840 | ---- | M] (Microsoft Corporation) MD5=88155247177638048422893737429D9E -- D:\WINDOWS\system32\drivers\termdd.sys
[2004/08/03 18:55:12 | 000,040,840 | ---- | M] (Microsoft Corporation) MD5=A540A99C281D933F3D69D55E48727F47 -- D:\WINDOWS\$NtServicePackUninstall$\termdd.sys
[color=#A23BEC]< MD5 for: WIN32K.SYS >[/color]
[2008/04/13 12:58:08 | 001,845,760 | ---- | M] (Microsoft Corporation) MD5=0E65F97FF5B39068D1D2186B3D7600C7 -- D:\WINDOWS\$NtUninstallKB969947$\win32k.sys
[2008/04/13 12:58:08 | 001,845,760 | ---- | M] (Microsoft Corporation) MD5=0E65F97FF5B39068D1D2186B3D7600C7 -- D:\WINDOWS\ServicePackFiles\i386\win32k.sys
[2010/05/02 03:02:25 | 001,860,480 | ---- | M] (Microsoft Corporation) MD5=117089D35359DD8FE8054DA17AC6EE19 -- D:\WINDOWS\$hf_mig$\KB979559\SP3QFE\win32k.sys
[2010/10/26 08:59:49 | 001,862,400 | ---- | M] (Microsoft Corporation) MD5=19209B83DC73BCA78558C2F220DB65E2 -- D:\WINDOWS\$hf_mig$\KB2436673\SP3QFE\win32k.sys
[2010/12/31 09:04:24 | 001,855,104 | ---- | M] (Microsoft Corporation) MD5=3AB58BCEC87615E452991E8E257ADFA9 -- D:\WINDOWS\system32\dllcache\win32k.sys
[2010/12/31 09:04:24 | 001,855,104 | ---- | M] (Microsoft Corporation) MD5=3AB58BCEC87615E452991E8E257ADFA9 -- D:\WINDOWS\system32\win32k.sys
[2009/08/14 10:58:52 | 001,859,840 | ---- | M] (Microsoft Corporation) MD5=479DD2D56488951B4842B6ECBB770239 -- D:\WINDOWS\$hf_mig$\KB969947\SP3QFE\win32k.sys
[2004/08/05 07:00:00 | 001,836,032 | ---- | M] (Microsoft Corporation) MD5=6B8D8840CC7D6C822FD159613D61EBA3 -- D:\WINDOWS\$NtServicePackUninstall$\win32k.sys
[2010/09/01 02:54:08 | 001,862,016 | ---- | M] (Microsoft Corporation) MD5=81C11BC7F3FAE0CC76941A8AB9B2ED1A -- D:\WINDOWS\$hf_mig$\KB981957\SP3QFE\win32k.sys
[2009/08/14 10:13:59 | 001,850,752 | ---- | M] (Microsoft Corporation) MD5=8441F8A5DC42BD5F2BEAA95297EE0E10 -- D:\WINDOWS\$NtUninstallKB979559$\win32k.sys
[2010/10/26 09:07:17 | 001,853,440 | ---- | M] (Microsoft Corporation) MD5=A872D428716E5C454D97F16785656351 -- D:\WINDOWS\$NtUninstallKB2479628$\win32k.sys
[2010/09/01 02:55:16 | 001,852,928 | ---- | M] (Microsoft Corporation) MD5=C71A8AFDCD34601F7FDE2DA3792CEAE9 -- D:\WINDOWS\$NtUninstallKB2436673$\win32k.sys
[2010/06/24 04:02:32 | 001,852,032 | ---- | M] (Microsoft Corporation) MD5=CA341AEF1BBBF1EF98B07E46681257D9 -- D:\WINDOWS\$NtUninstallKB981957$\win32k.sys
[2010/05/02 03:08:14 | 001,851,392 | ---- | M] (Microsoft Corporation) MD5=D6491CA433261FCBDC99D27064E5F180 -- D:\WINDOWS\$NtUninstallKB2160329$\win32k.sys
[2010/06/24 16:29:54 | 001,861,248 | ---- | M] (Microsoft Corporation) MD5=F1AEB1184052F4598390CE4CD638CA14 -- D:\WINDOWS\$hf_mig$\KB2160329\SP3QFE\win32k.sys
[2010/12/31 09:02:58 | 001,864,192 | ---- | M] (Microsoft Corporation) MD5=FA7694CA8CE7E7660676C646A15A3CEE -- D:\WINDOWS\$hf_mig$\KB2479628\SP3QFE\win32k.sys
[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2011/12/24 11:50:20 | 000,182,856 | ---- | M] () MD5=B382935AB01B27D0E14F267DBF288896 -- D:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2004/08/05 07:00:00 | 000,506,368 | ---- | M] (Microsoft Corporation) MD5=D2DE785AEAB0BB8CA4C14A8A199DBE4E -- D:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008/04/13 13:34:30 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- D:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008/04/13 13:34:30 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- D:\WINDOWS\system32\winlogon.exe
[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[2011/01/21 09:44:12 | 008,518,656 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- D:\WINDOWS\system32\shell32.dll
[5 D:\WINDOWS\system32\*.tmp files -> D:\WINDOWS\system32\*.tmp -> ]
[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
[color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color]
[color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color]
[2010/02/02 19:03:13 | 000,094,208 | ---- | M] () -- D:\WINDOWS\System32\config\default.sav
[2010/02/02 19:03:13 | 000,663,552 | ---- | M] () -- D:\WINDOWS\System32\config\software.sav
[2010/02/02 19:03:13 | 000,434,176 | ---- | M] () -- D:\WINDOWS\System32\config\system.sav
[color=#A23BEC]< CREATERESTOREPOINT >[/color]
< End of report >
OTL logfile created on: 1/22/2012 12:31:23 PM - Run
OTLPE by OldTimer - Version 3.1.48.0 Folder = X:\Programs\OTLPE
Microsoft Windows XP Service Pack 3 (Version = 5.1.2600) - Type = SYSTEM
Internet Explorer (Version = )
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
895.00 Mb Total Physical Memory | 674.00 Mb Available Physical Memory | 75.00% Memory free
807.00 Mb Paging File | 712.00 Mb Available in Paging File | 88.00% Paging File free
Paging file location(s): C:\pagefile.sys 1344 2688 [binary data]
%SystemDrive% = D: | %SystemRoot% = D:\WINDOWS | %ProgramFiles% = D:\Program Files
Drive C: | 135.23 Gb Total Space | 132.19 Gb Free Space | 97.75% Space Free | Partition Type: NTFS
Drive D: | 97.65 Gb Total Space | 63.30 Gb Free Space | 64.82% Space Free | Partition Type: NTFS
Drive E: | 975.95 Mb Total Space | 975.34 Mb Free Space | 99.94% Space Free | Partition Type: FAT
Drive X: | 436.59 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet001
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV - [2011/02/18 09:37:16 | 000,037,664 | ---- | M] (Apple Inc.) [Auto] -- D:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010/11/02 16:06:06 | 000,365,336 | ---- | M] (Kaspersky Lab ZAO) [Auto] -- D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe -- (AVP)
SRV - [2010/05/03 05:17:44 | 000,188,416 | R--- | M] (Canal+ Active) [Auto] -- D:\Program Files\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe -- (CanalPlus.VOD)
SRV - [2008/05/13 09:12:54 | 000,069,632 | ---- | M] (Ralink Technology, Corp.) [Auto] -- D:\Program Files\RALINK\Common\RalinkRegistryWriter.exe -- (RalinkRegistryWriter)
SRV - [2003/07/28 14:28:22 | 000,089,136 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2003/06/19 17:25:00 | 000,322,120 | ---- | M] (Microsoft Corporation) [Auto] -- D:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE -- (MDM)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - File not found [Kernel | On_Demand] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand] -- -- (PDCOMP)
DRV - File not found [Kernel | System] -- -- (PCIDump)
DRV - File not found [Kernel | System] -- -- (lbrtfdc)
DRV - File not found [Kernel | System] -- -- (i2omgmt)
DRV - File not found [Kernel | System] -- -- (Changer)
DRV - [2011/12/23 15:09:25 | 000,232,512 | ---- | M] (DT Soft Ltd) [Kernel | System] -- D:\WINDOWS\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2011/12/18 09:31:02 | 000,475,736 | ---- | M] (Kaspersky Lab) [File_System | System] -- D:\WINDOWS\system32\drivers\klif.sys -- (KLIF)
DRV - [2010/06/16 07:54:02 | 000,271,360 | ---- | M] () [Kernel | Auto] -- D:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2010/06/16 07:54:01 | 000,018,048 | ---- | M] () [Kernel | Auto] -- D:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2010/06/09 10:43:52 | 000,011,352 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System] -- D:\WINDOWS\system32\drivers\kl2.sys -- (kl2)
DRV - [2010/06/09 10:43:50 | 000,132,184 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot] -- D:\WINDOWS\system32\drivers\kl1.sys -- (KL1)
DRV - [2010/05/07 05:06:26 | 000,032,856 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\klim5.sys -- (klim5)
DRV - [2009/11/08 22:21:18 | 000,059,388 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System] -- D:\WINDOWS\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2009/11/02 13:27:24 | 000,019,472 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\klmouflt.sys -- (klmouflt)
DRV - [2008/08/18 12:54:00 | 000,145,952 | ---- | M] (NVIDIA Corporation) [Kernel | Boot] -- D:\WINDOWS\system32\drivers\nvgts.sys -- (nvgts)
DRV - [2008/08/01 05:36:00 | 000,054,784 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2008/08/01 05:36:00 | 000,022,016 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2008/06/10 15:53:24 | 000,580,096 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\rt2870.sys -- (rt2870)
DRV - [2007/10/02 01:32:00 | 004,613,120 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2004/12/09 10:25:49 | 000,047,104 | ---- | M] (Protection Technology) [Kernel | Boot] -- D:\WINDOWS\system32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2004/12/03 05:20:41 | 000,020,544 | ---- | M] (Protection Technology) [Kernel | Boot] -- D:\WINDOWS\system32\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x)
DRV - [2004/10/28 05:47:59 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot] -- D:\WINDOWS\system32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\systemprofile_ON_D\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Utilisateur_ON_D\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/toolbar/ie8/sidebar.html
IE - HKU\Utilisateur_ON_D\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
IE - HKU\Utilisateur_ON_D\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.foozir.com/
IE - HKU\Utilisateur_ON_D\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/toolbar/ie8/sidebar.html
IE - HKU\Utilisateur_ON_D\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/toolbar/ie8/sidebar.html
IE - HKU\Utilisateur_ON_D\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\Utilisateur_ON_D\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: D:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: D:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: D:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@canalplus.fr/Assistants VOD,version=1.0.0.0: D:\Program Files\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\npCpVod.dll (Canal+ Active)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: D:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: D:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@soe.sony.com/installer,version=1.0.3: D:\Program Files\Sony Online Entertainment\npsoe.dll ()
[2011/12/18 10:07:48 | 000,000,000 | ---D | M] (No name found) -- D:\Program Files\Mozilla Firefox\extensions
[2011/12/18 09:33:52 | 000,000,000 | ---D | M] (Anti-bannière) -- D:\Program Files\Mozilla Firefox\extensions\KavAntiBanner@kaspersky.ru_bak
[2011/12/18 09:33:49 | 000,000,000 | ---D | M] (Analyse des liens (URL Advisor)) -- D:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru_bak
[2012/01/07 05:48:43 | 000,121,816 | ---- | M] (Mozilla Foundation) -- D:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/01/07 05:48:38 | 000,001,516 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2012/01/07 05:48:38 | 000,002,252 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/01/07 05:48:38 | 000,001,822 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2012/01/07 05:48:38 | 000,001,154 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2012/01/07 05:48:38 | 000,001,426 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2012/01/07 05:48:38 | 000,000,956 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml
O1 HOSTS File: ([2011/07/31 04:02:42 | 000,436,274 | R--- | M]) - D:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 15016 more lines...
O2 - BHO: (Yahoo! Toolbar Helper) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - D:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\ievkbd.dll (Kaspersky Lab ZAO)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (no name) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - No CLSID value found.
O2 - BHO: (Nero Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - D:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll (Kaspersky Lab ZAO)
O3 - HKU\Utilisateur_ON_D\..\Toolbar\WebBrowser: (Nero Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - D:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O4 - HKLM..\Run: [AVP] D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe (Kaspersky Lab ZAO)
O4 - HKLM..\Run: [NvCplDaemon] D:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKU\.DEFAULT..\Run: [Steam] File not found
O4 - HKU\systemprofile_ON_D..\Run: [Steam] File not found
O4 - HKU\Utilisateur_ON_D..\Run: [DAEMON Tools Lite] D:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - Startup: D:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Ralink Wireless Utility.lnk = D:\Program Files\RALINK\Common\RaUI.exe (Ralink Technology, Corp.)
O4 - Startup: D:\Documents and Settings\Utilisateur\Menu Démarrer\Programmes\Démarrage\LimeWire On Startup.lnk = D:\Program Files\LimeWire\LimeWire.exe (Lime Wire, LLC)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\LocalService_ON_D\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\NetworkService_ON_D\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\systemprofile_ON_D\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\Utilisateur_ON_D\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - D:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - D:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll) - D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\kloehk.dll (Kaspersky Lab ZAO)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - D:\WINDOWS\explorer.exe (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - File not found - -- [ NTFS ]
O32 - AutoRun File - [2010/02/02 18:21:07 | 000,000,000 | ---- | M] () - D:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006/03/24 06:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found
MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Ralink Wireless Utility.lnk - D:\Program Files\RALINK\Common\RaUI.exe - (Ralink Technology, Corp.)
MsConfig - StartUpFolder: C:^Documents and Settings^Utilisateur^Menu Démarrer^Programmes^Démarrage^LimeWire On Startup.lnk - D:\Program Files\LimeWire\LimeWire.exe - (Lime Wire, LLC)
MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 2
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vds - Service
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {1a3e09be-1e45-494b-9174-d7385b45bbf5} -
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Rendu VML (Vector Graphics Rendering)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Liaison de données Dynamic HTML pour Java
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {3C3901C5-3455-3E0A-A214-0B093A5070A6} - .NET Framework
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Création avancée
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - Classes Java DirectAnimation
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5056b317-8d4c-43ee-8543-b9d1e234b8f4} - Mise à jour de sécurité pour Windows XP (KB923789)
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Dossiers Web
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - Internet Explorer
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Planificateur de tâches
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Shockwave Flash
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} -
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2012/01/21 09:20:51 | 000,000,000 | RH-D | C] -- D:\Documents and Settings\Utilisateur\Recent
[2012/01/17 10:49:05 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Application Data\Yahoo! Companion
[2012/01/12 13:30:17 | 002,106,216 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\D3DCompiler_43.dll
[2012/01/12 13:30:17 | 000,527,192 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XAudio2_7.dll
[2012/01/12 13:30:17 | 000,239,960 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\xactengine3_7.dll
[2012/01/12 13:30:17 | 000,074,072 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XAPOFX1_5.dll
[2012/01/12 13:30:16 | 001,998,168 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\D3DX9_43.dll
[2012/01/12 13:30:16 | 001,868,128 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dcsx_43.dll
[2012/01/12 13:30:16 | 000,470,880 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx10_43.dll
[2012/01/12 13:30:16 | 000,248,672 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx11_43.dll
[2012/01/12 13:28:59 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Démarrer\Programmes\Ubisoft
[2012/01/12 13:23:23 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Utilisateur\Mes documents\NCIS
[2012/01/12 13:20:04 | 000,000,000 | ---D | C] -- D:\Program Files\Ubisoft
[2012/01/12 11:34:38 | 000,000,000 | ---D | C] -- D:\Program Files\Yontoo Layers Runtime
[2012/01/12 11:34:30 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Application Data\Tarma Installer
[2012/01/10 15:59:52 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Utilisateur\Mes documents\My Games
[2012/01/07 11:11:23 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Démarrer\Programmes\IHF Handball Challenge 12
[2012/01/07 11:08:36 | 000,000,000 | ---D | C] -- D:\Program Files\NeutronGames
[2011/12/24 11:36:04 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Utilisateur\Local Settings\Application Data\ApplicationHistory
[2011/12/24 11:32:30 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\URTTEMP
[2011/12/24 10:41:49 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Utilisateur\Menu Démarrer\Programmes\Cyanide
[2011/12/24 10:30:48 | 000,000,000 | ---D | C] -- D:\Program Files\Cyanide
[2011/12/23 16:37:33 | 000,528,216 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XAudio2_6.dll
[2011/12/23 16:37:33 | 000,074,072 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XAPOFX1_4.dll
[2011/12/23 16:37:32 | 000,515,416 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\XAudio2_5.dll
[2011/12/23 16:37:32 | 000,238,936 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\xactengine3_6.dll
[2011/12/23 16:37:32 | 000,238,936 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\xactengine3_5.dll
[2011/12/23 16:37:32 | 000,022,360 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\X3DAudio1_7.dll
[2011/12/23 16:37:31 | 005,501,792 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dcsx_42.dll
[2011/12/23 16:37:31 | 000,453,456 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx10_42.dll
[2011/12/23 16:37:31 | 000,235,344 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\d3dx11_42.dll
[2011/12/23 15:34:41 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Utilisateur\Application Data\ProtectDISC
[2011/12/23 15:10:34 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Documents\DAEMON Tools Images
[2011/12/23 15:09:43 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Utilisateur\Application Data\OpenCandy
[2011/12/23 15:09:25 | 000,232,512 | ---- | C] (DT Soft Ltd) -- D:\WINDOWS\System32\drivers\dtsoftbus01.sys
[2011/12/23 15:09:17 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Menu Démarrer\Programmes\DAEMON Tools Lite
[2011/12/23 15:09:14 | 000,000,000 | ---D | C] -- D:\Program Files\DAEMON Tools Lite
[2011/12/23 15:08:29 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Utilisateur\Application Data\DAEMON Tools Lite
[2011/12/23 15:08:25 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2011/12/23 15:06:19 | 000,000,000 | ---D | C] -- D:\Documents and Settings\Utilisateur\Application Data\DAEMON Tools Pro
[2011/12/23 15:06:19 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Application Data\DAEMON Tools Pro
[5 D:\WINDOWS\System32\*.tmp files -> D:\WINDOWS\System32\*.tmp -> ]
[4 D:\WINDOWS\*.tmp files -> D:\WINDOWS\*.tmp -> ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2012/01/21 14:13:08 | 000,002,048 | --S- | M] () -- D:\WINDOWS\bootstat.dat
[2012/01/21 13:31:00 | 000,235,289 | ---- | M] () -- D:\WINDOWS\System32\NvApps.xml
[2012/01/21 12:01:00 | 000,000,246 | ---- | M] () -- D:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2012/01/20 14:43:17 | 000,000,826 | ---- | M] () -- D:\Documents and Settings\Utilisateur\Mes documents\cc_20120120_204313.reg
[2012/01/20 14:43:03 | 000,000,934 | ---- | M] () -- D:\Documents and Settings\Utilisateur\Mes documents\cc_20120120_204300.reg
[2012/01/20 14:42:49 | 000,009,876 | ---- | M] () -- D:\Documents and Settings\Utilisateur\Mes documents\cc_20120120_204246.reg
[2012/01/20 13:59:04 | 000,002,206 | ---- | M] () -- D:\WINDOWS\System32\wpa.dbl
[2012/01/18 14:56:23 | 000,002,573 | ---- | M] () -- D:\Documents and Settings\Utilisateur\Bureau\Microsoft Office Word 2003.lnk
[2012/01/12 13:31:50 | 000,001,889 | ---- | M] () -- D:\Documents and Settings\All Users\Bureau\Jeu NCIS.lnk
[2012/01/12 13:28:59 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Menu Démarrer\Programmes\Ubisoft
[2012/01/10 19:09:36 | 000,075,776 | ---- | M] () -- D:\Documents and Settings\Utilisateur\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/01/07 11:16:22 | 000,004,096 | ---- | M] () -- D:\Documents and Settings\All Users\Documents\00002DCE.LCS
[2012/01/07 11:11:53 | 000,413,696 | ---- | M] (Creative Labs) -- D:\WINDOWS\System32\wrap_oal.dll
[2012/01/07 11:11:49 | 000,110,592 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- D:\WINDOWS\System32\OpenAL32.dll
[2012/01/07 11:11:25 | 000,000,844 | ---- | M] () -- D:\Documents and Settings\Utilisateur\Application Data\Microsoft\Internet Explorer\Quick Launch\IHF Handball Challenge 12.lnk
[2012/01/07 11:11:25 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Menu Démarrer\Programmes\IHF Handball Challenge 12
[2012/01/01 05:54:13 | 000,000,784 | ---- | M] () -- D:\Documents and Settings\All Users\Bureau\Malwarebytes Anti-Malware.lnk
[2012/01/01 05:54:13 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Menu Démarrer\Programmes\Malwarebytes' Anti-Malware
[2012/01/01 05:52:58 | 000,011,130 | ---- | M] () -- D:\Documents and Settings\Utilisateur\Mes documents\cc_20120101_115254.reg
[2011/12/24 11:36:05 | 000,000,134 | ---- | M] () -- D:\Documents and Settings\Utilisateur\Local Settings\Application Data\fusioncache.dat
[2011/12/24 11:33:03 | 000,000,000 | R--D | M] -- D:\Documents and Settings\All Users\Menu Démarrer\Programmes\Outils d'administration
[2011/12/24 11:33:02 | 000,697,170 | ---- | M] () -- D:\WINDOWS\System32\perfh00C.dat
[2011/12/24 11:33:02 | 000,608,714 | ---- | M] () -- D:\WINDOWS\System32\perfh009.dat
[2011/12/24 11:33:02 | 000,161,888 | ---- | M] () -- D:\WINDOWS\System32\perfc00C.dat
[2011/12/24 11:33:02 | 000,133,430 | ---- | M] () -- D:\WINDOWS\System32\perfc009.dat
[2011/12/24 10:41:49 | 000,000,873 | ---- | M] () -- D:\Documents and Settings\Utilisateur\Bureau\Pro Rugby Manager 2005.lnk
[2011/12/23 15:12:09 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Menu Démarrer\Programmes\DAEMON Tools Lite
[2011/12/23 15:09:25 | 000,232,512 | ---- | M] (DT Soft Ltd) -- D:\WINDOWS\System32\drivers\dtsoftbus01.sys
[5 D:\WINDOWS\System32\*.tmp files -> D:\WINDOWS\System32\*.tmp -> ]
[4 D:\WINDOWS\*.tmp files -> D:\WINDOWS\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2012/01/20 14:43:15 | 000,000,826 | ---- | C] () -- D:\Documents and Settings\Utilisateur\Mes documents\cc_20120120_204313.reg
[2012/01/20 14:43:02 | 000,000,934 | ---- | C] () -- D:\Documents and Settings\Utilisateur\Mes documents\cc_20120120_204300.reg
[2012/01/20 14:42:47 | 000,009,876 | ---- | C] () -- D:\Documents and Settings\Utilisateur\Mes documents\cc_20120120_204246.reg
[2012/01/12 13:31:50 | 000,001,889 | ---- | C] () -- D:\Documents and Settings\All Users\Bureau\Jeu NCIS.lnk
[2012/01/07 11:11:25 | 000,000,844 | ---- | C] () -- D:\Documents and Settings\Utilisateur\Application Data\Microsoft\Internet Explorer\Quick Launch\IHF Handball Challenge 12.lnk
[2012/01/01 05:54:13 | 000,000,784 | ---- | C] () -- D:\Documents and Settings\All Users\Bureau\Malwarebytes Anti-Malware.lnk
[2012/01/01 05:52:57 | 000,011,130 | ---- | C] () -- D:\Documents and Settings\Utilisateur\Mes documents\cc_20120101_115254.reg
[2011/12/24 11:36:05 | 000,000,134 | ---- | C] () -- D:\Documents and Settings\Utilisateur\Local Settings\Application Data\fusioncache.dat
[2011/12/24 10:41:48 | 000,000,873 | ---- | C] () -- D:\Documents and Settings\Utilisateur\Bureau\Pro Rugby Manager 2005.lnk
[2011/12/23 15:34:45 | 000,004,096 | ---- | C] () -- D:\Documents and Settings\All Users\Documents\00002DCE.LCS
[2011/12/18 09:33:26 | 000,115,369 | ---- | C] () -- D:\WINDOWS\System32\drivers\klin.dat
[2011/12/18 09:33:26 | 000,097,961 | ---- | C] () -- D:\WINDOWS\System32\drivers\klick.dat
[2011/10/08 09:24:18 | 000,017,408 | ---- | C] () -- D:\Documents and Settings\Utilisateur\Local Settings\Application Data\WebpageIcons.db
[2011/02/15 04:11:08 | 000,000,012 | ---- | C] () -- D:\Documents and Settings\Utilisateur\intlname.ols
[2010/11/16 04:20:01 | 000,000,050 | ---- | C] () -- D:\WINDOWS\MegaManager.INI
[2010/11/02 05:26:58 | 000,376,832 | ---- | C] () -- D:\WINDOWS\System32\AegisI5Installer.exe
[2010/11/02 05:26:49 | 000,438,272 | ---- | C] () -- D:\WINDOWS\System32\RaCoInst.dll
[2010/11/02 05:26:38 | 000,011,783 | ---- | C] () -- D:\WINDOWS\System32\RaCoInst.dat
[2010/11/02 05:26:38 | 000,004,096 | ---- | C] () -- D:\WINDOWS\System32\drivers\rt2870.bin
[2010/10/06 06:52:27 | 000,001,974 | ---- | C] () -- D:\WINDOWS\wininit.ini
[2010/09/22 20:18:57 | 000,266,610 | ---- | C] () -- D:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
[2010/09/22 17:53:11 | 000,266,610 | ---- | C] () -- D:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-515967899-57989841-1801674531-1003-0.dat
[2010/06/16 07:54:01 | 000,271,360 | ---- | C] () -- D:\WINDOWS\System32\drivers\atksgt.sys
[2010/06/16 07:54:01 | 000,018,048 | ---- | C] () -- D:\WINDOWS\System32\drivers\lirsgt.sys
[2010/04/23 11:09:02 | 000,075,776 | ---- | C] () -- D:\Documents and Settings\Utilisateur\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/03/28 17:29:56 | 000,050,260 | -H-- | C] () -- D:\WINDOWS\System32\mlfcache.dat
[2010/02/03 05:35:17 | 000,168,448 | ---- | C] () -- D:\WINDOWS\System32\unrar.dll
[2010/02/03 05:35:17 | 000,000,038 | ---- | C] () -- D:\WINDOWS\avisplitter.ini
[2010/02/03 05:35:16 | 000,881,664 | ---- | C] () -- D:\WINDOWS\System32\xvidcore.dll
[2010/02/03 05:35:16 | 000,205,824 | ---- | C] () -- D:\WINDOWS\System32\xvidvfw.dll
[2010/02/03 05:35:15 | 003,596,288 | ---- | C] () -- D:\WINDOWS\System32\qt-dx331.dll
[2010/02/03 05:35:14 | 000,085,504 | ---- | C] () -- D:\WINDOWS\System32\ff_vfw.dll
[2010/02/03 05:34:46 | 000,000,385 | ---- | C] () -- D:\WINDOWS\ODBC.INI
[2010/02/03 05:31:16 | 000,000,000 | ---- | C] () -- D:\WINDOWS\nsreg.dat
[2010/02/03 03:21:56 | 000,004,984 | ---- | C] () -- D:\WINDOWS\System32\drivers\nvphy.bin
[2010/02/02 19:06:38 | 000,004,205 | ---- | C] () -- D:\WINDOWS\ODBCINST.INI
[2010/02/02 19:03:57 | 000,269,392 | ---- | C] () -- D:\WINDOWS\System32\FNTCACHE.DAT
[2010/02/02 18:23:11 | 000,002,048 | --S- | C] () -- D:\WINDOWS\bootstat.dat
[2010/02/02 18:18:30 | 000,021,892 | ---- | C] () -- D:\WINDOWS\System32\emptyregdb.dat
[2009/09/09 12:01:40 | 000,027,675 | ---- | C] () -- D:\WINDOWS\System32\drivers\klopp.dat
[2009/08/02 17:21:54 | 000,197,912 | ---- | C] () -- D:\WINDOWS\System32\physxcudart_20.dll
[2009/08/02 17:21:54 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2009/08/02 17:21:54 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelSwedish.dll
[2009/08/02 17:21:54 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelSpanish.dll
[2009/08/02 17:21:54 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2009/08/02 17:21:54 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelPortugese.dll
[2009/08/02 17:21:54 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelKorean.dll
[2009/08/02 17:21:54 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelJapanese.dll
[2009/08/02 17:21:52 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelGerman.dll
[2009/08/02 17:21:52 | 000,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelFrench.dll
[2009/06/10 02:29:34 | 001,724,416 | ---- | C] () -- D:\WINDOWS\System32\nvwdmcpl.dll
[2009/06/10 02:29:34 | 001,657,376 | ---- | C] () -- D:\WINDOWS\System32\nwiz.exe
[2009/06/10 02:29:34 | 001,101,824 | ---- | C] () -- D:\WINDOWS\System32\nvwimg.dll
[2009/06/10 02:29:34 | 000,466,944 | ---- | C] () -- D:\WINDOWS\System32\nvshell.dll
[2009/06/10 02:29:34 | 000,449,056 | ---- | C] () -- D:\WINDOWS\System32\nvappbar.exe
[2009/06/10 02:29:34 | 000,436,768 | ---- | C] () -- D:\WINDOWS\System32\keystone.exe
[2009/06/10 02:29:32 | 001,507,328 | ---- | C] () -- D:\WINDOWS\System32\nview.dll
[2009/06/10 00:03:00 | 001,580,550 | ---- | C] () -- D:\WINDOWS\System32\nvdata.bin
[2004/08/05 07:00:00 | 013,107,200 | ---- | C] () -- D:\WINDOWS\System32\oembios.bin
[2004/08/05 07:00:00 | 000,697,170 | ---- | C] () -- D:\WINDOWS\System32\perfh00C.dat
[2004/08/05 07:00:00 | 000,673,088 | ---- | C] () -- D:\WINDOWS\System32\mlang.dat
[2004/08/05 07:00:00 | 000,608,714 | ---- | C] () -- D:\WINDOWS\System32\perfh009.dat
[2004/08/05 07:00:00 | 000,322,810 | ---- | C] () -- D:\WINDOWS\System32\perfi00C.dat
[2004/08/05 07:00:00 | 000,272,128 | ---- | C] () -- D:\WINDOWS\System32\perfi009.dat
[2004/08/05 07:00:00 | 000,218,003 | ---- | C] () -- D:\WINDOWS\System32\dssec.dat
[2004/08/05 07:00:00 | 000,161,888 | ---- | C] () -- D:\WINDOWS\System32\perfc00C.dat
[2004/08/05 07:00:00 | 000,133,430 | ---- | C] () -- D:\WINDOWS\System32\perfc009.dat
[2004/08/05 07:00:00 | 000,046,258 | ---- | C] () -- D:\WINDOWS\System32\mib.bin
[2004/08/05 07:00:00 | 000,034,108 | ---- | C] () -- D:\WINDOWS\System32\perfd00C.dat
[2004/08/05 07:00:00 | 000,028,626 | ---- | C] () -- D:\WINDOWS\System32\perfd009.dat
[2004/08/05 07:00:00 | 000,004,569 | ---- | C] () -- D:\WINDOWS\System32\secupd.dat
[2004/08/05 07:00:00 | 000,004,463 | ---- | C] () -- D:\WINDOWS\System32\oembios.dat
[2004/08/05 07:00:00 | 000,001,804 | ---- | C] () -- D:\WINDOWS\System32\dcache.bin
[2004/08/05 07:00:00 | 000,000,741 | ---- | C] () -- D:\WINDOWS\System32\noise.dat
[2003/04/01 04:58:02 | 000,005,260 | ---- | C] () -- D:\WINDOWS\System32\OUTLPERF.INI
[color=#E56717]========== LOP Check ==========[/color]
[2011/12/18 09:39:13 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\AVAST Software
[2010/10/18 10:53:14 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\Clarus
[2011/12/23 15:08:32 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
[2011/12/23 15:06:19 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\DAEMON Tools Pro
[2010/10/12 05:01:37 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\Downloaded Installations
[2010/02/14 08:40:54 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\Sports Interactive
[2012/01/12 11:34:37 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\Tarma Installer
[2010/04/20 05:24:49 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2010/02/04 15:13:10 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2012/01/21 12:01:00 | 000,000,246 | ---- | M] () -- D:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job
[color=#E56717]========== Purity Check ==========[/color]
[color=#E56717]========== Custom Scans ==========[/color]
Invalid Environment Variable: %ALLUSERSPROFILE%\Application Data\*.
Invalid Environment Variable: %ALLUSERSPROFILE%\Application Data\*.exe
[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
[color=#A23BEC]< MD5 for: AEC.SYS >[/color]
[2004/08/05 07:00:00 | 018,779,217 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:aec.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:aec.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp3.cab:aec.sys
[2004/08/03 16:39:38 | 000,142,464 | ---- | M] (Microsoft Corporation) MD5=841F385C6CFAF66B58FBD898722BB4F0 -- D:\WINDOWS\$NtServicePackUninstall$\aec.sys
[2008/04/13 03:39:24 | 000,142,592 | ---- | M] (Microsoft Corporation) MD5=8BED39E3C35D6A489438B8141717A557 -- D:\WINDOWS\ServicePackFiles\i386\aec.sys
[2008/04/13 03:39:24 | 000,142,592 | ---- | M] (Microsoft Corporation) MD5=8BED39E3C35D6A489438B8141717A557 -- D:\WINDOWS\system32\drivers\aec.sys
[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2004/08/05 07:00:00 | 018,779,217 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008/04/13 05:36:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- D:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008/04/13 05:36:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- D:\WINDOWS\system32\drivers\agp440.sys
[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2004/08/05 07:00:00 | 018,779,217 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008/04/13 05:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- D:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008/04/13 05:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- D:\WINDOWS\system32\drivers\atapi.sys
[2004/08/05 07:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- D:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2004/08/05 07:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- D:\WINDOWS\system32\ReinstallBackups\0000\DriverFiles\i386\atapi.sys
[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2004/08/05 07:00:00 | 018,779,217 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008/04/13 05:40:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- D:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008/04/13 05:40:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- D:\WINDOWS\system32\drivers\cdrom.sys
[2004/08/05 07:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- D:\WINDOWS\$NtServicePackUninstall$\cdrom.sys
[color=#A23BEC]< MD5 for: DISK.SYS >[/color]
[2004/08/05 07:00:00 | 018,779,217 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:disk.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:disk.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp3.cab:disk.sys
[2004/08/05 07:00:00 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=00CA44E4534865F8A3B64F7C0984BFF0 -- D:\WINDOWS\$NtServicePackUninstall$\disk.sys
[2008/04/13 05:40:48 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- D:\WINDOWS\ServicePackFiles\i386\disk.sys
[2008/04/13 05:40:48 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- D:\WINDOWS\system32\drivers\disk.sys
[color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
[2004/08/05 07:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=21E83876A6287F15538EF187D286FE11 -- D:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
[2008/04/13 13:33:26 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- D:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008/04/13 13:33:26 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- D:\WINDOWS\system32\eventlog.dll
[color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
[2004/08/05 07:00:00 | 001,036,288 | ---- | M] (Microsoft Corporation) MD5=4C33E5B9A6197B6ED215F6CFBA0A2DAA -- D:\WINDOWS\$NtServicePackUninstall$\explorer.exe
[2008/04/13 13:34:04 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- D:\WINDOWS\explorer.exe
[2008/04/13 13:34:04 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- D:\WINDOWS\ServicePackFiles\i386\explorer.exe
[color=#A23BEC]< MD5 for: MOUNTMGR.SYS >[/color]
[2004/08/05 07:00:00 | 000,042,240 | ---- | M] (Microsoft Corporation) MD5=65653F3B4477F3C63E68A9659F85EE2E -- D:\WINDOWS\$NtServicePackUninstall$\mountmgr.sys
[2008/04/13 05:39:48 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=A80B9A0BAD1B73637DBCBBA7DF72D3FD -- D:\WINDOWS\ServicePackFiles\i386\mountmgr.sys
[2008/04/13 05:39:48 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=A80B9A0BAD1B73637DBCBBA7DF72D3FD -- D:\WINDOWS\system32\drivers\mountmgr.sys
[color=#A23BEC]< MD5 for: MRXSMB.SYS >[/color]
[2004/08/05 07:00:00 | 018,779,217 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:mrxsmb.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:mrxsmb.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp3.cab:mrxsmb.sys
[2004/08/05 07:00:00 | 000,451,456 | ---- | M] (Microsoft Corporation) MD5=1FD607FC67F7F7C633C3DA65BFC53D18 -- D:\WINDOWS\$NtServicePackUninstall$\mrxsmb.sys
[2009/12/04 13:22:22 | 000,455,424 | ---- | M] (Microsoft Corporation) MD5=421F7B922CEC5A5F340E7574A98F7B7C -- D:\WINDOWS\$NtUninstallKB980232$\mrxsmb.sys
[2009/12/04 12:25:56 | 000,456,832 | ---- | M] (Microsoft Corporation) MD5=602549D1E8A622E5746991F6C56B21CA -- D:\WINDOWS\$hf_mig$\KB978251\SP3QFE\mrxsmb.sys
[2008/10/24 06:21:09 | 000,455,296 | ---- | M] (Microsoft Corporation) MD5=60AE98742484E7AB80C3C1450E708148 -- D:\WINDOWS\$NtUninstallKB978251$\mrxsmb.sys
[2008/04/13 06:17:02 | 000,456,576 | ---- | M] (Microsoft Corporation) MD5=68755F0FF16070178B54674FE5B847B0 -- D:\WINDOWS\$NtUninstallKB957097$\mrxsmb.sys
[2008/04/13 06:17:02 | 000,456,576 | ---- | M] (Microsoft Corporation) MD5=68755F0FF16070178B54674FE5B847B0 -- D:\WINDOWS\ServicePackFiles\i386\mrxsmb.sys
[2008/10/24 06:41:11 | 000,455,936 | ---- | M] (Microsoft Corporation) MD5=7170AB42B51954DEF2781A4D1CCE65F4 -- D:\WINDOWS\$hf_mig$\KB957097\SP3QFE\mrxsmb.sys
[2010/02/24 06:57:57 | 000,457,216 | ---- | M] (Microsoft Corporation) MD5=D09B9F0B9960DD41E73127B7814C115F -- D:\WINDOWS\$hf_mig$\KB980232\SP3QFE\mrxsmb.sys
[2010/02/24 08:11:07 | 000,455,680 | ---- | M] (Microsoft Corporation) MD5=F3AEFB11ABC521122B67095044169E98 -- D:\WINDOWS\Driver Cache\i386\mrxsmb.sys
[2010/02/24 08:11:07 | 000,455,680 | ---- | M] (Microsoft Corporation) MD5=F3AEFB11ABC521122B67095044169E98 -- D:\WINDOWS\system32\dllcache\mrxsmb.sys
[2010/02/24 08:11:07 | 000,455,680 | ---- | M] (Microsoft Corporation) MD5=F3AEFB11ABC521122B67095044169E98 -- D:\WINDOWS\system32\drivers\mrxsmb.sys
[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2008/04/13 06:20:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- D:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008/04/13 06:20:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- D:\WINDOWS\system32\drivers\ndis.sys
[2004/08/05 07:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- D:\WINDOWS\$NtServicePackUninstall$\ndis.sys
[color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color]
[2008/04/13 13:33:36 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- D:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008/04/13 13:33:36 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- D:\WINDOWS\system32\netlogon.dll
[2004/08/05 07:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=FAF07FDCDE76000621A28D19F8E2E8EB -- D:\WINDOWS\$NtServicePackUninstall$\netlogon.dll
[color=#A23BEC]< MD5 for: NVGTS.SYS >[/color]
[2008/08/18 12:54:00 | 000,145,952 | ---- | M] (NVIDIA Corporation) MD5=37954CD1D0AFC11BECD149F7C3EC88C2 -- D:\NVIDIA\nForceWin2k\15.23\IS\IDE\WinXP\sataraid\nvgts.sys
[2008/08/18 12:54:00 | 000,145,952 | ---- | M] (NVIDIA Corporation) MD5=EA98BFE4931BD13D747D647C1859796E -- D:\NVIDIA\nForceWin2k\15.23\IS\IDE\WinXP\sata_ide\nvgts.sys
[2008/08/18 12:54:00 | 000,145,952 | ---- | M] (NVIDIA Corporation) MD5=EA98BFE4931BD13D747D647C1859796E -- D:\WINDOWS\system32\drivers\nvgts.sys
[color=#A23BEC]< MD5 for: NVRD32.SYS >[/color]
[2008/08/18 12:54:00 | 000,133,152 | ---- | M] (NVIDIA Corporation) MD5=BEF704AA9E17D176A46DDF77C6A52194 -- D:\NVIDIA\nForceWin2k\15.23\IS\IDE\WinXP\sataraid\nvrd32.sys
[color=#A23BEC]< MD5 for: RASACD.SYS >[/color]
[2004/08/05 07:00:00 | 000,008,832 | ---- | M] (Microsoft Corporation) MD5=FE0D99D6F31E4FAD8159F690D68DED9C -- D:\WINDOWS\system32\dllcache\rasacd.sys
[2004/08/05 07:00:00 | 000,008,832 | ---- | M] (Microsoft Corporation) MD5=FE0D99D6F31E4FAD8159F690D68DED9C -- D:\WINDOWS\system32\drivers\rasacd.sys
[color=#A23BEC]< MD5 for: SCECLI.DLL >[/color]
[2008/04/13 13:33:42 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- D:\WINDOWS\ServicePackFiles\i386\scecli.dll
[2008/04/13 13:33:42 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- D:\WINDOWS\system32\scecli.dll
[2004/08/05 07:00:00 | 000,186,368 | ---- | M] (Microsoft Corporation) MD5=DEC0397F35D027874804EC72979D03CC -- D:\WINDOWS\$NtServicePackUninstall$\scecli.dll
[color=#A23BEC]< MD5 for: TERMDD.SYS >[/color]
[2004/08/05 07:00:00 | 018,779,217 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp2.cab:termdd.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:termdd.sys
[2008/04/13 13:47:24 | 020,102,028 | ---- | M] () .cab file -- D:\WINDOWS\ServicePackFiles\i386\sp3.cab:termdd.sys
[2008/04/13 13:34:54 | 000,040,840 | ---- | M] (Microsoft Corporation) MD5=88155247177638048422893737429D9E -- D:\WINDOWS\ServicePackFiles\i386\termdd.sys
[2008/04/13 13:34:54 | 000,040,840 | ---- | M] (Microsoft Corporation) MD5=88155247177638048422893737429D9E -- D:\WINDOWS\system32\drivers\termdd.sys
[2004/08/03 18:55:12 | 000,040,840 | ---- | M] (Microsoft Corporation) MD5=A540A99C281D933F3D69D55E48727F47 -- D:\WINDOWS\$NtServicePackUninstall$\termdd.sys
[color=#A23BEC]< MD5 for: WIN32K.SYS >[/color]
[2008/04/13 12:58:08 | 001,845,760 | ---- | M] (Microsoft Corporation) MD5=0E65F97FF5B39068D1D2186B3D7600C7 -- D:\WINDOWS\$NtUninstallKB969947$\win32k.sys
[2008/04/13 12:58:08 | 001,845,760 | ---- | M] (Microsoft Corporation) MD5=0E65F97FF5B39068D1D2186B3D7600C7 -- D:\WINDOWS\ServicePackFiles\i386\win32k.sys
[2010/05/02 03:02:25 | 001,860,480 | ---- | M] (Microsoft Corporation) MD5=117089D35359DD8FE8054DA17AC6EE19 -- D:\WINDOWS\$hf_mig$\KB979559\SP3QFE\win32k.sys
[2010/10/26 08:59:49 | 001,862,400 | ---- | M] (Microsoft Corporation) MD5=19209B83DC73BCA78558C2F220DB65E2 -- D:\WINDOWS\$hf_mig$\KB2436673\SP3QFE\win32k.sys
[2010/12/31 09:04:24 | 001,855,104 | ---- | M] (Microsoft Corporation) MD5=3AB58BCEC87615E452991E8E257ADFA9 -- D:\WINDOWS\system32\dllcache\win32k.sys
[2010/12/31 09:04:24 | 001,855,104 | ---- | M] (Microsoft Corporation) MD5=3AB58BCEC87615E452991E8E257ADFA9 -- D:\WINDOWS\system32\win32k.sys
[2009/08/14 10:58:52 | 001,859,840 | ---- | M] (Microsoft Corporation) MD5=479DD2D56488951B4842B6ECBB770239 -- D:\WINDOWS\$hf_mig$\KB969947\SP3QFE\win32k.sys
[2004/08/05 07:00:00 | 001,836,032 | ---- | M] (Microsoft Corporation) MD5=6B8D8840CC7D6C822FD159613D61EBA3 -- D:\WINDOWS\$NtServicePackUninstall$\win32k.sys
[2010/09/01 02:54:08 | 001,862,016 | ---- | M] (Microsoft Corporation) MD5=81C11BC7F3FAE0CC76941A8AB9B2ED1A -- D:\WINDOWS\$hf_mig$\KB981957\SP3QFE\win32k.sys
[2009/08/14 10:13:59 | 001,850,752 | ---- | M] (Microsoft Corporation) MD5=8441F8A5DC42BD5F2BEAA95297EE0E10 -- D:\WINDOWS\$NtUninstallKB979559$\win32k.sys
[2010/10/26 09:07:17 | 001,853,440 | ---- | M] (Microsoft Corporation) MD5=A872D428716E5C454D97F16785656351 -- D:\WINDOWS\$NtUninstallKB2479628$\win32k.sys
[2010/09/01 02:55:16 | 001,852,928 | ---- | M] (Microsoft Corporation) MD5=C71A8AFDCD34601F7FDE2DA3792CEAE9 -- D:\WINDOWS\$NtUninstallKB2436673$\win32k.sys
[2010/06/24 04:02:32 | 001,852,032 | ---- | M] (Microsoft Corporation) MD5=CA341AEF1BBBF1EF98B07E46681257D9 -- D:\WINDOWS\$NtUninstallKB981957$\win32k.sys
[2010/05/02 03:08:14 | 001,851,392 | ---- | M] (Microsoft Corporation) MD5=D6491CA433261FCBDC99D27064E5F180 -- D:\WINDOWS\$NtUninstallKB2160329$\win32k.sys
[2010/06/24 16:29:54 | 001,861,248 | ---- | M] (Microsoft Corporation) MD5=F1AEB1184052F4598390CE4CD638CA14 -- D:\WINDOWS\$hf_mig$\KB2160329\SP3QFE\win32k.sys
[2010/12/31 09:02:58 | 001,864,192 | ---- | M] (Microsoft Corporation) MD5=FA7694CA8CE7E7660676C646A15A3CEE -- D:\WINDOWS\$hf_mig$\KB2479628\SP3QFE\win32k.sys
[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2011/12/24 11:50:20 | 000,182,856 | ---- | M] () MD5=B382935AB01B27D0E14F267DBF288896 -- D:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2004/08/05 07:00:00 | 000,506,368 | ---- | M] (Microsoft Corporation) MD5=D2DE785AEAB0BB8CA4C14A8A199DBE4E -- D:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008/04/13 13:34:30 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- D:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008/04/13 13:34:30 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- D:\WINDOWS\system32\winlogon.exe
[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[2011/01/21 09:44:12 | 008,518,656 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- D:\WINDOWS\system32\shell32.dll
[5 D:\WINDOWS\system32\*.tmp files -> D:\WINDOWS\system32\*.tmp -> ]
[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
[color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color]
[color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color]
[2010/02/02 19:03:13 | 000,094,208 | ---- | M] () -- D:\WINDOWS\System32\config\default.sav
[2010/02/02 19:03:13 | 000,663,552 | ---- | M] () -- D:\WINDOWS\System32\config\software.sav
[2010/02/02 19:03:13 | 000,434,176 | ---- | M] () -- D:\WINDOWS\System32\config\system.sav
[color=#A23BEC]< CREATERESTOREPOINT >[/color]
< End of report >
Bonjour
Oups...
Ton PC fonctionne normalement;tu ne rencontres qu'un problème de connexion Internet et un problème d'antivirus inactif?
C'est cela?
@+
Oups...
Ton PC fonctionne normalement;tu ne rencontres qu'un problème de connexion Internet et un problème d'antivirus inactif?
C'est cela?
@+
OUI. Je ne peux pas me connecter (pourtant la qualité de liaison est de 100 %), je ne peux pas ouvrir mon anti-virus Kaspersky. Les 2 existent toujours sur mon PC. Je ne peux pas faire une restauration système, une fenêtre blanche apparaît. bref, je suis complètement bloquée et je ne sais pas pourquoi. C'est arrivé d'un seul coup en ouvrant le PC un matin !
Re
Ouvre ce lien et télécharge ZHPDiag de Nicolas Coolman :
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
Ou
https://www.commentcamarche.net/telecharger/utilitaires/24803-zhpdiag/
Serveur N°2
Ou
http://www.premiumorange.com/zeb-help-process/zhpdiag.html
en bas de la page ZHP avec un numéro de version.
Une fois le téléchargement achevé, dé zippe le fichier obtenu et place ZHPDiag.exe sur ton Bureau.
Double-clique sur l'icône pour lancer le programme. Sous Vista ou Seven clic droit « exécuter en tant que administrateur »
Clique sur la loupe pour lancer l'analyse.
Laisse l'outil travailler, il peut être assez long.
Ferme ZHPDiag en fin d'analyse.
Pour transmettre le rapport clique sur ce lien :
http://pjjoint.malekal.com/
https://www.cjoint.com/
Clique sur Parcourir et cherche le répertoire où est installé ZHPDiag (en général C:\Program Files\ZHPDiag).
Sélectionne le fichier ZHPDiag.txt.
Clique sur "Cliquez ici pour déposer le fichier".
Un lien de cette forme :
http://www.cijoint.fr/cjlink.php?file=cj200905/cijSKAP5fU.txt
est ajouté dans la page.
Copie ce lien dans ta réponse.
Merci
A+
Ouvre ce lien et télécharge ZHPDiag de Nicolas Coolman :
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
Ou
https://www.commentcamarche.net/telecharger/utilitaires/24803-zhpdiag/
Serveur N°2
Ou
http://www.premiumorange.com/zeb-help-process/zhpdiag.html
en bas de la page ZHP avec un numéro de version.
Une fois le téléchargement achevé, dé zippe le fichier obtenu et place ZHPDiag.exe sur ton Bureau.
Double-clique sur l'icône pour lancer le programme. Sous Vista ou Seven clic droit « exécuter en tant que administrateur »
Clique sur la loupe pour lancer l'analyse.
Laisse l'outil travailler, il peut être assez long.
Ferme ZHPDiag en fin d'analyse.
Pour transmettre le rapport clique sur ce lien :
http://pjjoint.malekal.com/
https://www.cjoint.com/
Clique sur Parcourir et cherche le répertoire où est installé ZHPDiag (en général C:\Program Files\ZHPDiag).
Sélectionne le fichier ZHPDiag.txt.
Clique sur "Cliquez ici pour déposer le fichier".
Un lien de cette forme :
http://www.cijoint.fr/cjlink.php?file=cj200905/cijSKAP5fU.txt
est ajouté dans la page.
Copie ce lien dans ta réponse.
Merci
A+
Kaspersky ne s'ouvre pas, c'est comme si je l'anti-virus n'était pas actif. Quant à Internet, j'ai le message "Erreur de connexion" à chaque fois.
J'ai l'impression que tout ma connexion a sauté et quand je vais dans Panneau de Configuration, Connexion réseau, la fenêtre est blanche. C'est un PC qui se connecte par une clé free. Et je n'arrive pas à tout réinitialiser.
J'ai l'impression que tout ma connexion a sauté et quand je vais dans Panneau de Configuration, Connexion réseau, la fenêtre est blanche. C'est un PC qui se connecte par une clé free. Et je n'arrive pas à tout réinitialiser.
Re
Tu disposes bien de la clé de licence de Kaspersky?
Si c'est le cas ;désinstalle le ;et vérifie si tu as retrouvé ta connexion
@+
---------Contributeur Sécurité---------
On a tous été un jour débutant dans quelque chose.
Mais le savoir est la récompense de l'assiduité.
Tu disposes bien de la clé de licence de Kaspersky?
Si c'est le cas ;désinstalle le ;et vérifie si tu as retrouvé ta connexion
@+
---------Contributeur Sécurité---------
On a tous été un jour débutant dans quelque chose.
Mais le savoir est la récompense de l'assiduité.
J'ai la clé de licence Kaspersky, mais je ne peux pas le désinstaller, j'ai le message "impossible d'accéder au service Windows Installer etc.."
