C quoi lost 13.at
Résolu
freviane
Messages postés
58
Date d'inscription
Statut
Membre
Dernière intervention
-
freviane Messages postés 58 Date d'inscription Statut Membre Dernière intervention -
freviane Messages postés 58 Date d'inscription Statut Membre Dernière intervention -
Bonjour,
voila mon problème,depuis ce matin ma page d'accueil ne s'ouvre plus sur la page sfr ,elle s'ouvre sur une barre de recherche ou moteur "LOST13.AT googles comment ce débarrasser de ce truc ????????????
MERCI POUR VOS RÉPONSES
cordialement
voila mon problème,depuis ce matin ma page d'accueil ne s'ouvre plus sur la page sfr ,elle s'ouvre sur une barre de recherche ou moteur "LOST13.AT googles comment ce débarrasser de ce truc ????????????
MERCI POUR VOS RÉPONSES
cordialement
A voir également:
- C quoi lost 13.at
- Fifa 13 - Télécharger - Jeux vidéo
- At mail - Forum Clavier
- Test redmi note 13 5g - Accueil - Téléphones
- Désactiver capteur de proximité xiaomi redmi note 13 ✓ - Forum Xiaomi
- World at arms - Télécharger - Rôle RPG
29 réponses
Téléchargez AdwCleaner ( d'Xplode ) sur votre bureau.
Lancez le, cliquez sur [Recherche] puis patientez le temps du scan.
Une fois le scan fini, un rapport s'ouvrira.
Note : Le rapport est également sauvegardé sous C:\AdwCleaner[R1].txt
Lancez le, cliquez sur [Recherche] puis patientez le temps du scan.
Une fois le scan fini, un rapport s'ouvrira.
Note : Le rapport est également sauvegardé sous C:\AdwCleaner[R1].txt
Il me faut poster ton rapport suite à l'exécution de ADWCleaner.
Pour retrouver ta page de SFR va dans Options, et tu change l'adresse de démarrage, mais ils faut savoir pourquoi ta page à été modifier, alors poste déjà la rapport demandé ensuite on feras une analyse approfondie
Pour retrouver ta page de SFR va dans Options, et tu change l'adresse de démarrage, mais ils faut savoir pourquoi ta page à été modifier, alors poste déjà la rapport demandé ensuite on feras une analyse approfondie
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Note : Le rapport est également sauvegardé sous C:\AdwCleaner[R1].txt
Si tu ne retrouve pas refais un scan
Si tu ne retrouve pas refais un scan
***** [Fichiers / Dossiers] *****
***** [H. Navipromo] *****
***** [Registre] *****
***** [Navigateurs] *****
-\\ Internet Explorer v8.0.7601.17514
[OK] Le registre ne contient aucune entrée illégitime.
-\\ Mozilla Firefox v10.0.2 (fr)
Profil : 85ah3xo8.default
Fichier : C:\Users\freddy\AppData\Roaming\Mozilla\Firefox\Profiles\85ah3xo8.default\prefs.js
[OK] Le fichier ne contient aucune entrée illégitime.
-\\ Google Chrome v [Impossible d'obtenir la version]
Fichier : C:\Users\freddy\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] Le fichier ne contient aucune entrée illégitime.
*************************
AdwCleaner[R1].txt - [2153 octets] - [10/03/2012 13:10:36]
AdwCleaner[S1].txt - [2225 octets] - [10/03/2012 13:11:11]
AdwCleaner[R2].txt - [1126 octets] - [10/03/2012 13:36:01]
########## EOF - C:\AdwCleaner[R2].txt - [1254 octets] ##########
***** [H. Navipromo] *****
***** [Registre] *****
***** [Navigateurs] *****
-\\ Internet Explorer v8.0.7601.17514
[OK] Le registre ne contient aucune entrée illégitime.
-\\ Mozilla Firefox v10.0.2 (fr)
Profil : 85ah3xo8.default
Fichier : C:\Users\freddy\AppData\Roaming\Mozilla\Firefox\Profiles\85ah3xo8.default\prefs.js
[OK] Le fichier ne contient aucune entrée illégitime.
-\\ Google Chrome v [Impossible d'obtenir la version]
Fichier : C:\Users\freddy\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] Le fichier ne contient aucune entrée illégitime.
*************************
AdwCleaner[R1].txt - [2153 octets] - [10/03/2012 13:10:36]
AdwCleaner[S1].txt - [2225 octets] - [10/03/2012 13:11:11]
AdwCleaner[R2].txt - [1126 octets] - [10/03/2012 13:36:01]
########## EOF - C:\AdwCleaner[R2].txt - [1254 octets] ##########
Télécharge OTL
http://www.geekstogo.com/forum/files/file/398-otl-oldtimers-list-it/ sur ton bureau.
Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur
Lance OTL
Sous Personnalisation, copie-colle le script ci-dessous :
netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%temp%\.exe /s
%SYSTEMDRIVE%\*.exe
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
/md5start
consrv.dll
explorer.exe
winlogon.exe
wininit.exe
/md5stop
HKEY_LOCAL_MACHINE\SYSTEM\SYSTEM\CurrentControlSet\Services\lanmanserver\parameters /s
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems /s
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\AppCertDlls /s
CREATERESTOREPOINT
nslookup www.google.fr /c
SAVEMBR:0
hklm\software\clients\startmenuinternet|command /rs
hklm\software\clients\startmenuinternet|command /64 /rs
Clique sur le bouton Analyse.
Quand le scan est fini, utilise le site http://pjjoint.malekal.com/ pour envoyer le rapport OTL.txt (et Extra.txt si présent), donne le ou les liens pjjoint.
http://www.geekstogo.com/forum/files/file/398-otl-oldtimers-list-it/ sur ton bureau.
Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur
Lance OTL
Sous Personnalisation, copie-colle le script ci-dessous :
netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%temp%\.exe /s
%SYSTEMDRIVE%\*.exe
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
/md5start
consrv.dll
explorer.exe
winlogon.exe
wininit.exe
/md5stop
HKEY_LOCAL_MACHINE\SYSTEM\SYSTEM\CurrentControlSet\Services\lanmanserver\parameters /s
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems /s
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\AppCertDlls /s
CREATERESTOREPOINT
nslookup www.google.fr /c
SAVEMBR:0
hklm\software\clients\startmenuinternet|command /rs
hklm\software\clients\startmenuinternet|command /64 /rs
Clique sur le bouton Analyse.
Quand le scan est fini, utilise le site http://pjjoint.malekal.com/ pour envoyer le rapport OTL.txt (et Extra.txt si présent), donne le ou les liens pjjoint.
OTL logfile created on: 10/03/2012 13:45:44 - Run 1
OTL by OldTimer - Version 3.2.36.2 Folder = C:\Users\freddy\Downloads
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy
2,00 Gb Total Physical Memory | 1,08 Gb Available Physical Memory | 54,12% Memory free
4,00 Gb Paging File | 2,86 Gb Available in Paging File | 71,45% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 929,56 Gb Total Space | 747,75 Gb Free Space | 80,44% Space Free | Partition Type: NTFS
Computer Name: FREDDY-PC | User Name: freddy | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2012/03/10 13:45:24 | 000,593,920 | ---- | M] (OldTimer Tools) -- C:\Users\freddy\Downloads\OTL.exe
PRC - [2012/02/26 19:07:44 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012/02/22 16:16:30 | 000,740,216 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe
PRC - [2012/02/10 05:13:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2012/02/10 04:02:27 | 001,820,480 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2012/02/10 04:02:07 | 000,857,408 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
PRC - [2012/02/09 20:05:32 | 000,382,272 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2012/01/03 14:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/12/20 10:59:00 | 000,196,904 | ---- | M] (Nitro PDF Software) -- C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe
PRC - [2011/06/24 05:22:20 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2011/06/10 07:23:52 | 000,959,880 | ---- | M] (SFR) -- C:\Program Files\SFR\Kit\9props.exe
PRC - [2011/04/24 23:15:02 | 000,202,296 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe
PRC - [2011/04/24 23:12:42 | 000,131,472 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtblfs.exe
PRC - [2011/02/25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/11/20 13:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2010/05/04 12:07:22 | 000,503,080 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Update\NASvc.exe
PRC - [2010/04/29 23:08:14 | 000,742,720 | ---- | M] (SFR) -- C:\Program Files\SFR\Media Center\MediaCenter.exe
PRC - [2007/09/05 07:59:02 | 000,024,635 | ---- | M] (Apache Software Foundation) -- C:\Program Files\SFR\Media Center\httpd\httpd.exe
[color=#E56717]========== Modules (No Company Name) ==========[/color]
MOD - [2012/02/26 19:07:44 | 001,911,768 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012/02/09 20:05:16 | 000,360,768 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll
MOD - [2012/01/05 18:46:43 | 008,527,008 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll
MOD - [2011/11/08 21:46:02 | 000,093,696 | ---- | M] () -- C:\Program Files\FileZilla FTP Client\fzshellext.dll
MOD - [2011/04/24 23:13:30 | 007,008,656 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\QtGui4.dll
MOD - [2011/04/24 23:13:28 | 000,192,912 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\QtSql4.dll
MOD - [2011/04/24 23:13:26 | 001,270,160 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\QtScript4.dll
MOD - [2011/04/24 23:13:26 | 000,758,160 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\QtNetwork4.dll
MOD - [2011/04/24 23:13:24 | 002,118,032 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\QtCore4.dll
MOD - [2011/04/24 23:13:24 | 002,089,360 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\QtDeclarative4.dll
MOD - [2011/04/20 19:56:28 | 000,025,088 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\imageformats\qgif4.dll
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV - [2012/02/10 05:13:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012/02/09 20:05:32 | 000,382,272 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2012/01/04 20:51:39 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2012/01/03 14:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/12/20 10:59:00 | 000,196,904 | ---- | M] (Nitro PDF Software) [Auto | Running] -- C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe -- (NitroReaderDriverReadSpool2)
SRV - [2011/04/24 23:15:02 | 000,202,296 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe -- (AVP)
SRV - [2010/05/04 12:07:22 | 000,503,080 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2009/07/14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - [2012/02/10 05:13:00 | 010,816,832 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2012/01/17 13:45:56 | 000,148,800 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2012/01/04 19:35:43 | 000,570,160 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\Windows\System32\drivers\klif.sys -- (KLIF)
DRV - [2011/03/10 18:36:18 | 000,023,856 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\klim6.sys -- (KLIM6)
DRV - [2011/03/04 13:23:20 | 000,011,352 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\kl2.sys -- (kl2)
DRV - [2011/03/04 13:23:14 | 000,133,208 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\kl1.sys -- (KL1)
DRV - [2011/01/03 09:38:36 | 000,136,680 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadmdm.sys -- (ssadmdm)
DRV - [2011/01/03 09:38:36 | 000,121,192 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadbus.sys -- (ssadbus) SAMSUNG Android USB Composite Device driver (WDM)
DRV - [2011/01/03 09:38:36 | 000,114,152 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadserd.sys -- (ssadserd) SAMSUNG Android USB Diagnostic Serial Port (WDM)
DRV - [2011/01/03 09:38:36 | 000,012,776 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadmdfl.sys -- (ssadmdfl) SAMSUNG Android USB Modem (Filter)
DRV - [2010/12/21 06:55:02 | 000,030,312 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadadb.sys -- (androidusb)
DRV - [2010/11/20 11:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/03/23 02:17:06 | 001,812,512 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTL85n86.sys -- (RTL85n86)
DRV - [2009/11/02 20:27:16 | 000,019,984 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\klmouflt.sys -- (klmouflt)
DRV - [2009/07/13 23:02:47 | 000,050,688 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L1C62x86.sys -- (L1C) NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20)
DRV - [2009/05/20 06:22:44 | 001,872,192 | ---- | M] (C-Media Inc) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\cmudax3.sys -- (cmuda3)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = https://www.bing.com/?scope=web&mkt=fr-FR{searchTerms}&FORM=IE8SRC
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lost13.at
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://lost13.at/keyword/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://lost13.at
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://lost13.at
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://lost13.at
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = lost13.at
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://lost13.at/find.jsp?cx=partner-pub-9695538427146728:yvjqb5-xuvw&cof=FORID:11&ie=ISO-8859-1&q={searchTerms}&sa=Recherche+Google&siteurl=lost13.at/&lang=En
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://actus.sfr.fr
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_bak = http://lost13.at
IE - HKCU\..\SearchScopes,DefaultScope = {557C21FE-7274-410D-853E-9ED4471BF193}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = https://www.bing.com/?scope=web&mkt=fr-FR{searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
[color=#E56717]========== FireFox ==========[/color]
FF - prefs.js..browser.search.defaultenginename: "Search Results"
FF - prefs.js..browser.search.order.1: "Search Results"
FF - prefs.js..browser.search.selectedEngine: "Search Results"
FF - prefs.js..browser.startup.homepage: "http://lost13.at/"
FF - prefs.js..keyword.URL: "http://lost13.at/find.jsp?cx=partner-pub-9695538427146728:yvjqb5-xuvw&cof=FORID:11&ie=ISO-8859-1&sa=Recherche+Google&siteurl=lost13.at/&lang=En&q="
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.4: C:\Program Files\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.110.0: C:\Program Files\Battlelog Web Plugins\1.110.0\npesnlaunch.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@nitropdf.com/NitroPDF: C:\Program Files\Nitro PDF\Reader 2\npnitromozilla.dll ( )
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\linkfilter@kaspersky.ru: C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\FFExt\linkfilter@kaspersky.ru [2012/02/21 14:49:29 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\virtualKeyboard@kaspersky.ru: C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\FFExt\virtualKeyboard@kaspersky.ru [2012/02/21 14:49:29 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/02/26 19:07:45 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
[2012/03/03 18:51:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\freddy\AppData\Roaming\mozilla\Extensions
[2012/03/03 18:51:17 | 000,000,000 | ---D | M] (No name found) -- C:\Users\freddy\AppData\Roaming\mozilla\Firefox\Profiles\85ah3xo8.default\extensions
[2012/03/07 12:41:52 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions
[2012/03/07 12:41:52 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}
[2012/02/21 14:49:29 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\PROGRAM FILES\KASPERSKY LAB\KASPERSKY ANTI-VIRUS 2012\FFEXT\LINKFILTER@KASPERSKY.RU
[2012/02/21 14:49:29 | 000,000,000 | ---D | M] (Kaspersky Virtual Keyboard) -- C:\PROGRAM FILES\KASPERSKY LAB\KASPERSKY ANTI-VIRUS 2012\FFEXT\VIRTUALKEYBOARD@KASPERSKY.RU
[2012/02/26 19:07:45 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/02/26 19:07:42 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2012/02/26 19:07:42 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/02/26 19:07:42 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2012/02/26 19:07:42 | 000,001,154 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2012/02/26 19:07:42 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2012/02/26 19:07:42 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml
[color=#E56717]========== Chrome ==========[/color]
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = http://lost13.at/find.jsp?cx=partner-pub-9695538427146728:yvjqb5-xuvw&cof=FORID:11&ie=ISO-8859-1&q={searchTerms}&sa=Recherche+Google&siteurl=lost13.at/&lang=En
CHR - default_search_provider: suggest_url =
CHR - Extension: YouTube = C:\Users\freddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2_0\
CHR - Extension: Recherche Google = C:\Users\freddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.14_0\
CHR - Extension: Analyse des liens (URL Advisor) = C:\Users\freddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\12.0.0.397_0\
CHR - Extension: Clavier virtuel = C:\Users\freddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\12.0.0.374_0\
CHR - Extension: Gmail = C:\Users\freddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\6.1.3_0\
CHR - Extension: Kaspersky Anti-banni\u00E8re = C:\Users\freddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\12.0.0.374_0\
O1 HOSTS File: ([2009/06/10 22:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Objet d'aide à la navigation SFR) - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} - C:\Program Files\SFR\Kit\SFRNavErrorHelper.dll (SFR)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll (Kaspersky Lab ZAO)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll (Kaspersky Lab ZAO)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe (Kaspersky Lab ZAO)
O4 - HKLM..\Run: [CmPCIaudio] RunDll32 CMICNFG3.cpl,CMICtrlWnd File not found
O4 - HKCU..\Run: [Connexion SFR 9props.exe] C:\Program Files\SFR\Kit\9props.exe (SFR)
O4 - HKCU..\Run: [Neuf Media Center] C:\Program Files\SFR\Media Center\MediaCenter.exe (SFR)
O4 - HKCU..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 28
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 File not found
O9 - Extra Button: Clavier &virtuel - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll (Kaspersky Lab ZAO)
O9 - Extra Button: Analyse des &liens - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll (Kaspersky Lab ZAO)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1E1CDC55-70CF-47B2-A1C8-00B6781B060A}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2E0532E3-8B14-4DB9-9BF9-A585535F996F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{87A01944-3365-4E60-BED1-AECF9CCDEE60}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\10\OWC10.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - Winlogon\Notify\klogon: DllName - (C:\Windows\system32\klogon.dll) - C:\Windows\System32\klogon.dll (Kaspersky Lab ZAO)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2012/03/07 13:26:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2012/03/07 12:41:51 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2012/03/07 12:41:51 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2012/03/07 12:41:51 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2012/03/07 12:41:42 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2012/03/05 20:45:17 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Local\Nero_AG
[2012/03/05 20:45:11 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Local\Nero
[2012/03/05 18:05:48 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Local\ESN Sonar
[2012/03/03 20:42:06 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Roaming\NeroDigital(TM)
[2012/03/03 20:40:00 | 000,000,000 | ---D | C] -- C:\Users\freddy\Documents\Nero
[2012/03/03 18:17:21 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Roaming\FreeCDRipper
[2012/03/03 18:15:48 | 000,000,000 | ---D | C] -- C:\ProgramData\boost_interprocess
[2012/03/03 18:15:46 | 000,164,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\COMCT232.OCX
[2012/03/03 18:15:45 | 002,084,864 | ---- | C] (NCT Company Ltd.) -- C:\Windows\System32\AudDesign.dll
[2012/03/03 18:15:45 | 001,986,560 | ---- | C] (NCT Company Ltd.) -- C:\Windows\System32\AudFile.dll
[2012/03/03 18:15:45 | 001,212,416 | ---- | C] (NCT Company Ltd.) -- C:\Windows\System32\AudioInfos.dll
[2012/03/03 18:15:45 | 000,479,232 | ---- | C] (NCT Company Ltd.) -- C:\Windows\System32\AudioVisu.dll
[2012/03/03 18:15:45 | 000,458,752 | ---- | C] (NCT Company Ltd.) -- C:\Windows\System32\AudPlayer.dll
[2012/03/03 18:15:45 | 000,454,656 | ---- | C] (NCT Company Ltd.) -- C:\Windows\System32\AudioRecord.dll
[2012/03/03 18:15:45 | 000,417,792 | ---- | C] (NCT Company Ltd.) -- C:\Windows\System32\AudDisplay.dll
[2012/03/03 18:15:45 | 000,348,160 | ---- | C] (NCT Company Ltd.) -- C:\Windows\System32\WMAFile.dll
[2012/03/03 18:15:45 | 000,224,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TABCTL32.OCX
[2012/03/03 18:15:45 | 000,119,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VB6FR.DLL
[2012/03/03 18:15:45 | 000,115,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msinet.OCX
[2012/03/03 18:15:45 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VB6STKIT.DLL
[2012/03/03 18:15:45 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TABCTFR.DLL
[2012/03/03 18:15:45 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetfr.DLL
[2012/03/03 18:15:44 | 000,662,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSCOMCT2.OCX
[2012/03/03 18:15:44 | 000,152,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\COMDLG32.OCX
[2012/03/03 18:15:44 | 000,141,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSCMCFR.DLL
[2012/03/03 18:15:44 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Mscc2fr.dll
[2012/03/03 18:15:44 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CMDLGFR.DLL
[2012/03/03 18:15:44 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Roaming\FreeAudioPack
[2012/03/03 18:15:44 | 000,000,000 | ---D | C] -- C:\Program Files\Free mp3 Wma Converter
[2012/03/03 00:47:04 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2012/03/01 20:37:25 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Roaming\Nero
[2012/03/01 20:28:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero
[2012/03/01 20:28:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
[2012/03/01 20:28:44 | 000,000,000 | ---D | C] -- C:\Program Files\Nero
[2012/03/01 20:28:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero
[2012/03/01 17:33:23 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Roaming\GlarySoft
[2012/03/01 10:33:55 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Local\Adobe
[2012/03/01 10:28:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2012/03/01 10:28:37 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2012/03/01 10:27:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2012/02/29 17:45:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities
[2012/02/29 17:45:28 | 000,000,000 | ---D | C] -- C:\Program Files\Glary Utilities
[2012/02/28 20:24:40 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Roaming\dvdcss
[2012/02/23 22:23:38 | 004,448,256 | ---- | C] (Google Inc.) -- C:\Windows\System32\GPhotos.scr
[2012/02/22 19:18:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2012/02/22 19:16:08 | 000,876,864 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvhdagenco3220103.dll
[2012/02/22 19:16:07 | 019,443,520 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll
[2012/02/22 19:16:07 | 010,816,832 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2012/02/22 19:16:07 | 005,892,928 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll
[2012/02/22 19:16:07 | 002,517,312 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll
[2012/02/22 19:16:07 | 002,437,440 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll
[2012/02/22 19:16:07 | 000,812,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvumdshim.dll
[2012/02/22 19:16:07 | 000,301,376 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdecodemft.dll
[2012/02/22 19:16:07 | 000,215,360 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvinit.dll
[2012/02/22 19:16:07 | 000,148,800 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvhda32v.sys
[2012/02/22 19:16:07 | 000,061,248 | ---- | C] (Khronos Group) -- C:\Windows\System32\OpenCL.dll
[2012/02/22 19:16:07 | 000,027,968 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvhdap32.dll
[2012/02/22 19:16:06 | 017,543,488 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll
[2012/02/20 19:29:43 | 000,000,000 | ---D | C] -- C:\Users\freddy\Desktop\pbsetup
[2012/02/19 14:19:13 | 000,000,000 | ---D | C] -- C:\Users\freddy\Desktop\Zaz - Zaz - 2010 - FLAC
[2012/02/18 17:06:04 | 000,000,000 | ---D | C] -- C:\Users\freddy\Documents\BioWare
[2012/02/16 22:44:30 | 000,000,000 | ---D | C] -- C:\Users\freddy\Desktop\Windows Loader v2.0.1
[2012/02/16 20:37:40 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl
[2012/02/16 20:37:32 | 000,599,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2012/02/16 20:37:31 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012/02/16 20:37:31 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012/02/16 20:37:31 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012/02/16 20:37:31 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012/02/16 20:37:30 | 002,343,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2012/02/15 18:23:33 | 000,000,000 | ---D | C] -- C:\ProgramData\EA Logs
[2012/02/15 17:09:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
[2012/02/15 17:08:49 | 000,821,824 | ---- | C] (Devguru Co., Ltd.) -- C:\Windows\System32\dgderapi.dll
[2012/02/15 13:20:23 | 000,000,000 | ---D | C] -- C:\Users\freddy\Desktop\doc
[2012/02/15 13:01:19 | 000,000,000 | ---D | C] -- C:\Users\freddy\Documents\SelfMV
[2012/02/15 13:01:13 | 000,000,000 | ---D | C] -- C:\Temp
[2012/02/15 13:00:48 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Local\Samsung
[2012/02/15 13:00:35 | 000,000,000 | ---D | C] -- C:\Users\freddy\Documents\samsung
[2012/02/15 12:50:35 | 001,416,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WdfCoInstaller01005.dll
[2012/02/15 12:50:35 | 001,416,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\WdfCoInstaller01005.dll
[2012/02/15 12:50:35 | 000,136,680 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ssadmdm.sys
[2012/02/15 12:50:35 | 000,121,192 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ssadbus.sys
[2012/02/15 12:50:35 | 000,114,152 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ssadserd.sys
[2012/02/15 12:50:35 | 000,030,312 | ---- | C] (Google Inc) -- C:\Windows\System32\drivers\ssadadb.sys
[2012/02/15 12:50:35 | 000,012,776 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ssadmdfl.sys
[2012/02/15 12:50:35 | 000,010,472 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ssadcmnt.sys
[2012/02/15 12:50:35 | 000,010,472 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ssadcm.sys
[2012/02/15 12:50:35 | 000,010,344 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ssadwhnt.sys
[2012/02/15 12:50:35 | 000,010,344 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ssadwh.sys
[2012/02/15 12:49:17 | 004,659,712 | ---- | C] (Dmitry Streblechenko) -- C:\Windows\System32\Redemption.dll
[2012/02/15 12:48:53 | 000,000,000 | ---D | C] -- C:\Program Files\MarkAny
[2012/02/15 12:48:04 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Roaming\Samsung
[2012/02/15 12:48:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Samsung
[2012/02/15 12:48:03 | 000,000,000 | ---D | C] -- C:\Program Files\Samsung
[2012/02/15 12:44:38 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Local\Downloaded Installations
[2012/02/13 23:29:23 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2012/02/13 16:59:36 | 008,126,464 | R--- | C] (C-Media Corporation) -- C:\Windows\System\CMICNFG3.cpl
[2012/02/13 16:58:48 | 001,872,192 | ---- | C] (C-Media Inc) -- C:\Windows\System32\drivers\cmudax3.sys
[2012/02/13 16:58:48 | 000,036,864 | ---- | C] (C-Media Electronics Ins.) -- C:\Windows\System32\cmudax3.DLL
[2012/02/13 16:58:40 | 000,319,968 | R--- | C] (Microsoft Corporation) -- C:\Windows\difxapi.dll
[2012/02/12 19:12:02 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
[2012/02/12 19:04:29 | 000,098,304 | ---- | C] (Sony DADC Austria AG.) -- C:\Windows\System32\CmdLineExt.dll
[2012/02/11 12:16:58 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Roaming\vlc
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2012/03/10 13:21:40 | 000,014,336 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/03/10 13:21:40 | 000,014,336 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/03/10 13:20:20 | 000,704,242 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2012/03/10 13:20:20 | 000,615,810 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/03/10 13:20:20 | 000,130,548 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2012/03/10 13:20:20 | 000,106,190 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/03/10 13:17:33 | 000,000,314 | ---- | M] () -- C:\Windows\tasks\GlaryInitialize.job
[2012/03/10 13:14:27 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/03/10 13:14:13 | 1609,965,568 | -HS- | M] () -- C:\hiberfil.sys
[2012/03/09 21:28:37 | 000,000,000 | ---- | M] () -- C:\Users\freddy\back25.rc
[2012/03/09 19:55:21 | 000,282,864 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2012/03/09 19:51:42 | 000,139,176 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2012/03/09 19:51:35 | 000,282,864 | ---- | M] () -- C:\Windows\System32\PnkBstrB.ex0
[2012/03/07 16:37:16 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2012/03/07 12:41:43 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2012/03/07 12:41:43 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2012/03/07 12:41:43 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2012/03/07 12:41:43 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2012/02/29 09:24:29 | 000,131,298 | ---- | M] () -- C:\Users\freddy\Documents\SFR Mail - Impression d'un message.pdf
[2012/02/27 17:57:09 | 000,007,605 | ---- | M] () -- C:\Users\freddy\AppData\Local\Resmon.ResmonCfg
[2012/02/27 15:57:17 | 000,014,480 | ---- | M] () -- C:\Users\freddy\Documents\cc_20120227_155712.reg
[2012/02/23 22:23:38 | 004,448,256 | ---- | M] (Google Inc.) -- C:\Windows\System32\GPhotos.scr
[2012/02/23 09:18:36 | 000,237,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2012/02/17 08:36:42 | 000,284,592 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012/02/16 22:45:21 | 000,285,443 | RHS- | M] () -- C:\QTPVB
[2012/02/16 22:45:21 | 000,000,020 | RHS- | M] () -- C:\win7.ld
[2012/02/15 17:09:09 | 000,001,923 | ---- | M] () -- C:\Users\freddy\Application Data\Microsoft\Internet Explorer\Quick Launch\Samsung Kies.lnk
[2012/02/15 13:01:38 | 000,008,192 | ---- | M] () -- C:\Users\freddy\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/02/13 18:20:41 | 000,000,164 | ---- | M] () -- C:\Windows\Cmicnfg3.ini.cfl
[2012/02/13 18:20:35 | 000,000,136 | ---- | M] () -- C:\Windows\System\Dlap.pfx
[2012/02/13 18:20:35 | 000,000,134 | ---- | M] () -- C:\Windows\Cmicnfg3.ini.imi
[2012/02/13 18:20:23 | 000,000,073 | ---- | M] () -- C:\Windows\System\Cmicnfg3.ini
[2012/02/12 19:04:29 | 000,098,304 | ---- | M] (Sony DADC Austria AG.) -- C:\Windows\System32\CmdLineExt.dll
[2012/02/10 05:13:00 | 019,443,520 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll
[2012/02/10 05:13:00 | 017,543,488 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll
[2012/02/10 05:13:00 | 015,009,600 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
[2012/02/10 05:13:00 | 010,816,832 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2012/02/10 05:13:00 | 007,713,088 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvwgf2um.dll
[2012/02/10 05:13:00 | 005,892,928 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll
[2012/02/10 05:13:00 | 002,517,312 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll
[2012/02/10 05:13:00 | 002,437,440 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll
[2012/02/10 05:13:00 | 002,301,248 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll
[2012/02/10 05:13:00 | 001,000,256 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvdispco32.dll
[2012/02/10 05:13:00 | 000,881,984 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvgenco32.dll
[2012/02/10 05:13:00 | 000,812,352 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvumdshim.dll
[2012/02/10 05:13:00 | 000,301,376 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvdecodemft.dll
[2012/02/10 05:13:00 | 000,215,360 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvinit.dll
[2012/02/10 05:13:00 | 000,061,248 | ---- | M] (Khronos Group) -- C:\Windows\System32\OpenCL.dll
[2012/02/10 05:13:00 | 000,008,772 | ---- | M] () -- C:\Windows\System32\nvinfo.pb
[2012/02/10 04:03:04 | 002,497,985 | ---- | M] () -- C:\Windows\System32\nvcoproc.bin
[2012/02/10 04:02:06 | 003,881,792 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.dll
[2012/02/10 04:00:44 | 002,719,040 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvsvc.dll
[2012/02/10 04:00:26 | 000,108,352 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvmctray.dll
[2012/02/10 04:00:26 | 000,062,272 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvshext.dll
[2012/02/10 04:00:25 | 002,561,344 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvsvcr.dll
[2012/02/09 20:05:44 | 000,416,064 | ---- | M] () -- C:\Windows\System32\nvStreaming.exe
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2012/03/09 21:28:37 | 000,000,000 | ---- | C] () -- C:\Users\freddy\back25.rc
[2012/03/07 16:37:16 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2012/03/05 20:48:47 | 730,920,946 | ---- | C] () -- C:\Users\freddy\Desktop\Il etait une fois Jesus-Film d'animation.avi
[2012/03/03 18:15:45 | 000,116,296 | ---- | C] () -- C:\Windows\System32\NCTWMAProfiles.prx
[2012/03/01 10:28:56 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2012/02/29 17:45:32 | 000,000,314 | ---- | C] () -- C:\Windows\tasks\GlaryInitialize.job
[2012/02/29 09:24:26 | 000,131,298 | ---- | C] () -- C:\Users\freddy\Documents\SFR Mail - Impression d'un message.pdf
[2012/02/27 17:57:09 | 000,007,605 | ---- | C] () -- C:\Users\freddy\AppData\Local\Resmon.ResmonCfg
[2012/02/27 15:57:15 | 000,014,480 | ---- | C] () -- C:\Users\freddy\Documents\cc_20120227_155712.reg
[2012/02/22 19:17:26 | 002,497,985 | ---- | C] () -- C:\Windows\System32\nvcoproc.bin
[2012/02/16 22:45:20 | 000,285,443 | RHS- | C] () -- C:\QTPVB
[2012/02/15 17:09:09 | 000,001,923 | ---- | C] () -- C:\Users\freddy\Application Data\Microsoft\Internet Explorer\Quick Launch\Samsung Kies.lnk
[2012/02/15 13:01:20 | 000,008,192 | ---- | C] () -- C:\Users\freddy\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/02/13 16:59:42 | 000,143,360 | R--- | C] () -- C:\Windows\System\VmixP6.dll
[2012/02/13 16:59:31 | 000,544,768 | R--- | C] () -- C:\Windows\System32\Cmeaupci.exe
[2012/02/13 16:59:31 | 000,000,164 | ---- | C] () -- C:\Windows\Cmicnfg3.ini.cfl
[2012/02/13 16:59:31 | 000,000,136 | ---- | C] () -- C:\Windows\System\Dlap.pfx
[2012/02/13 16:58:44 | 000,000,134 | ---- | C] () -- C:\Windows\Cmicnfg3.ini.imi
[2012/02/13 16:58:43 | 000,299,008 | R--- | C] () -- C:\Windows\System32\CmiInstallResAll.dll
[2012/02/13 16:58:43 | 000,002,123 | R--- | C] () -- C:\Windows\Cmicnfg3.ini.cfg
[2012/02/09 20:05:44 | 000,416,064 | ---- | C] () -- C:\Windows\System32\nvStreaming.exe
[2012/01/06 13:55:19 | 000,139,176 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2012/01/06 13:55:18 | 000,138,056 | ---- | C] () -- C:\Users\freddy\AppData\Roaming\PnkBstrK.sys
[2012/01/06 13:54:49 | 000,282,864 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2012/01/06 13:54:46 | 000,076,888 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2012/01/06 12:01:44 | 000,000,382 | ---- | C] () -- C:\Windows\ODBC.INI
[2012/01/04 19:37:24 | 000,017,408 | ---- | C] () -- C:\Users\freddy\AppData\Local\WebpageIcons.db
[2012/01/04 19:36:54 | 000,115,369 | ---- | C] () -- C:\Windows\System32\drivers\klin.dat
[2012/01/04 19:36:54 | 000,097,961 | ---- | C] () -- C:\Windows\System32\drivers\klick.dat
[2011/03/11 12:43:54 | 000,029,763 | ---- | C] () -- C:\Windows\System32\drivers\klopp.dat
[2011/01/29 17:00:24 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
[2011/01/29 17:00:22 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
[2011/01/29 17:00:22 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2011/01/29 17:00:22 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2011/01/29 17:00:22 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll
< End of report >
OTL by OldTimer - Version 3.2.36.2 Folder = C:\Users\freddy\Downloads
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy
2,00 Gb Total Physical Memory | 1,08 Gb Available Physical Memory | 54,12% Memory free
4,00 Gb Paging File | 2,86 Gb Available in Paging File | 71,45% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 929,56 Gb Total Space | 747,75 Gb Free Space | 80,44% Space Free | Partition Type: NTFS
Computer Name: FREDDY-PC | User Name: freddy | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2012/03/10 13:45:24 | 000,593,920 | ---- | M] (OldTimer Tools) -- C:\Users\freddy\Downloads\OTL.exe
PRC - [2012/02/26 19:07:44 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012/02/22 16:16:30 | 000,740,216 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe
PRC - [2012/02/10 05:13:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2012/02/10 04:02:27 | 001,820,480 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2012/02/10 04:02:07 | 000,857,408 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
PRC - [2012/02/09 20:05:32 | 000,382,272 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2012/01/03 14:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/12/20 10:59:00 | 000,196,904 | ---- | M] (Nitro PDF Software) -- C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe
PRC - [2011/06/24 05:22:20 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2011/06/10 07:23:52 | 000,959,880 | ---- | M] (SFR) -- C:\Program Files\SFR\Kit\9props.exe
PRC - [2011/04/24 23:15:02 | 000,202,296 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe
PRC - [2011/04/24 23:12:42 | 000,131,472 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtblfs.exe
PRC - [2011/02/25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/11/20 13:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2010/05/04 12:07:22 | 000,503,080 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Update\NASvc.exe
PRC - [2010/04/29 23:08:14 | 000,742,720 | ---- | M] (SFR) -- C:\Program Files\SFR\Media Center\MediaCenter.exe
PRC - [2007/09/05 07:59:02 | 000,024,635 | ---- | M] (Apache Software Foundation) -- C:\Program Files\SFR\Media Center\httpd\httpd.exe
[color=#E56717]========== Modules (No Company Name) ==========[/color]
MOD - [2012/02/26 19:07:44 | 001,911,768 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012/02/09 20:05:16 | 000,360,768 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll
MOD - [2012/01/05 18:46:43 | 008,527,008 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll
MOD - [2011/11/08 21:46:02 | 000,093,696 | ---- | M] () -- C:\Program Files\FileZilla FTP Client\fzshellext.dll
MOD - [2011/04/24 23:13:30 | 007,008,656 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\QtGui4.dll
MOD - [2011/04/24 23:13:28 | 000,192,912 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\QtSql4.dll
MOD - [2011/04/24 23:13:26 | 001,270,160 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\QtScript4.dll
MOD - [2011/04/24 23:13:26 | 000,758,160 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\QtNetwork4.dll
MOD - [2011/04/24 23:13:24 | 002,118,032 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\QtCore4.dll
MOD - [2011/04/24 23:13:24 | 002,089,360 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\QtDeclarative4.dll
MOD - [2011/04/20 19:56:28 | 000,025,088 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\imageformats\qgif4.dll
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV - [2012/02/10 05:13:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012/02/09 20:05:32 | 000,382,272 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2012/01/04 20:51:39 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2012/01/03 14:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/12/20 10:59:00 | 000,196,904 | ---- | M] (Nitro PDF Software) [Auto | Running] -- C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe -- (NitroReaderDriverReadSpool2)
SRV - [2011/04/24 23:15:02 | 000,202,296 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe -- (AVP)
SRV - [2010/05/04 12:07:22 | 000,503,080 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2009/07/14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - [2012/02/10 05:13:00 | 010,816,832 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2012/01/17 13:45:56 | 000,148,800 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2012/01/04 19:35:43 | 000,570,160 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\Windows\System32\drivers\klif.sys -- (KLIF)
DRV - [2011/03/10 18:36:18 | 000,023,856 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\klim6.sys -- (KLIM6)
DRV - [2011/03/04 13:23:20 | 000,011,352 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\kl2.sys -- (kl2)
DRV - [2011/03/04 13:23:14 | 000,133,208 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\kl1.sys -- (KL1)
DRV - [2011/01/03 09:38:36 | 000,136,680 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadmdm.sys -- (ssadmdm)
DRV - [2011/01/03 09:38:36 | 000,121,192 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadbus.sys -- (ssadbus) SAMSUNG Android USB Composite Device driver (WDM)
DRV - [2011/01/03 09:38:36 | 000,114,152 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadserd.sys -- (ssadserd) SAMSUNG Android USB Diagnostic Serial Port (WDM)
DRV - [2011/01/03 09:38:36 | 000,012,776 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadmdfl.sys -- (ssadmdfl) SAMSUNG Android USB Modem (Filter)
DRV - [2010/12/21 06:55:02 | 000,030,312 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadadb.sys -- (androidusb)
DRV - [2010/11/20 11:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/03/23 02:17:06 | 001,812,512 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTL85n86.sys -- (RTL85n86)
DRV - [2009/11/02 20:27:16 | 000,019,984 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\klmouflt.sys -- (klmouflt)
DRV - [2009/07/13 23:02:47 | 000,050,688 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L1C62x86.sys -- (L1C) NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20)
DRV - [2009/05/20 06:22:44 | 001,872,192 | ---- | M] (C-Media Inc) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\cmudax3.sys -- (cmuda3)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = https://www.bing.com/?scope=web&mkt=fr-FR{searchTerms}&FORM=IE8SRC
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lost13.at
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://lost13.at/keyword/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://lost13.at
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://lost13.at
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://lost13.at
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = lost13.at
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://lost13.at/find.jsp?cx=partner-pub-9695538427146728:yvjqb5-xuvw&cof=FORID:11&ie=ISO-8859-1&q={searchTerms}&sa=Recherche+Google&siteurl=lost13.at/&lang=En
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://actus.sfr.fr
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_bak = http://lost13.at
IE - HKCU\..\SearchScopes,DefaultScope = {557C21FE-7274-410D-853E-9ED4471BF193}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = https://www.bing.com/?scope=web&mkt=fr-FR{searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
[color=#E56717]========== FireFox ==========[/color]
FF - prefs.js..browser.search.defaultenginename: "Search Results"
FF - prefs.js..browser.search.order.1: "Search Results"
FF - prefs.js..browser.search.selectedEngine: "Search Results"
FF - prefs.js..browser.startup.homepage: "http://lost13.at/"
FF - prefs.js..keyword.URL: "http://lost13.at/find.jsp?cx=partner-pub-9695538427146728:yvjqb5-xuvw&cof=FORID:11&ie=ISO-8859-1&sa=Recherche+Google&siteurl=lost13.at/&lang=En&q="
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.4: C:\Program Files\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.110.0: C:\Program Files\Battlelog Web Plugins\1.110.0\npesnlaunch.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@nitropdf.com/NitroPDF: C:\Program Files\Nitro PDF\Reader 2\npnitromozilla.dll ( )
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\linkfilter@kaspersky.ru: C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\FFExt\linkfilter@kaspersky.ru [2012/02/21 14:49:29 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\virtualKeyboard@kaspersky.ru: C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\FFExt\virtualKeyboard@kaspersky.ru [2012/02/21 14:49:29 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/02/26 19:07:45 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
[2012/03/03 18:51:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\freddy\AppData\Roaming\mozilla\Extensions
[2012/03/03 18:51:17 | 000,000,000 | ---D | M] (No name found) -- C:\Users\freddy\AppData\Roaming\mozilla\Firefox\Profiles\85ah3xo8.default\extensions
[2012/03/07 12:41:52 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions
[2012/03/07 12:41:52 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}
[2012/02/21 14:49:29 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\PROGRAM FILES\KASPERSKY LAB\KASPERSKY ANTI-VIRUS 2012\FFEXT\LINKFILTER@KASPERSKY.RU
[2012/02/21 14:49:29 | 000,000,000 | ---D | M] (Kaspersky Virtual Keyboard) -- C:\PROGRAM FILES\KASPERSKY LAB\KASPERSKY ANTI-VIRUS 2012\FFEXT\VIRTUALKEYBOARD@KASPERSKY.RU
[2012/02/26 19:07:45 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/02/26 19:07:42 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2012/02/26 19:07:42 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/02/26 19:07:42 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2012/02/26 19:07:42 | 000,001,154 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2012/02/26 19:07:42 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2012/02/26 19:07:42 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml
[color=#E56717]========== Chrome ==========[/color]
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = http://lost13.at/find.jsp?cx=partner-pub-9695538427146728:yvjqb5-xuvw&cof=FORID:11&ie=ISO-8859-1&q={searchTerms}&sa=Recherche+Google&siteurl=lost13.at/&lang=En
CHR - default_search_provider: suggest_url =
CHR - Extension: YouTube = C:\Users\freddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2_0\
CHR - Extension: Recherche Google = C:\Users\freddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.14_0\
CHR - Extension: Analyse des liens (URL Advisor) = C:\Users\freddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\12.0.0.397_0\
CHR - Extension: Clavier virtuel = C:\Users\freddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\12.0.0.374_0\
CHR - Extension: Gmail = C:\Users\freddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\6.1.3_0\
CHR - Extension: Kaspersky Anti-banni\u00E8re = C:\Users\freddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\12.0.0.374_0\
O1 HOSTS File: ([2009/06/10 22:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Objet d'aide à la navigation SFR) - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} - C:\Program Files\SFR\Kit\SFRNavErrorHelper.dll (SFR)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll (Kaspersky Lab ZAO)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll (Kaspersky Lab ZAO)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe (Kaspersky Lab ZAO)
O4 - HKLM..\Run: [CmPCIaudio] RunDll32 CMICNFG3.cpl,CMICtrlWnd File not found
O4 - HKCU..\Run: [Connexion SFR 9props.exe] C:\Program Files\SFR\Kit\9props.exe (SFR)
O4 - HKCU..\Run: [Neuf Media Center] C:\Program Files\SFR\Media Center\MediaCenter.exe (SFR)
O4 - HKCU..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 28
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 File not found
O9 - Extra Button: Clavier &virtuel - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll (Kaspersky Lab ZAO)
O9 - Extra Button: Analyse des &liens - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll (Kaspersky Lab ZAO)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1E1CDC55-70CF-47B2-A1C8-00B6781B060A}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2E0532E3-8B14-4DB9-9BF9-A585535F996F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{87A01944-3365-4E60-BED1-AECF9CCDEE60}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\10\OWC10.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - Winlogon\Notify\klogon: DllName - (C:\Windows\system32\klogon.dll) - C:\Windows\System32\klogon.dll (Kaspersky Lab ZAO)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2012/03/07 13:26:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2012/03/07 12:41:51 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2012/03/07 12:41:51 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2012/03/07 12:41:51 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2012/03/07 12:41:42 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2012/03/05 20:45:17 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Local\Nero_AG
[2012/03/05 20:45:11 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Local\Nero
[2012/03/05 18:05:48 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Local\ESN Sonar
[2012/03/03 20:42:06 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Roaming\NeroDigital(TM)
[2012/03/03 20:40:00 | 000,000,000 | ---D | C] -- C:\Users\freddy\Documents\Nero
[2012/03/03 18:17:21 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Roaming\FreeCDRipper
[2012/03/03 18:15:48 | 000,000,000 | ---D | C] -- C:\ProgramData\boost_interprocess
[2012/03/03 18:15:46 | 000,164,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\COMCT232.OCX
[2012/03/03 18:15:45 | 002,084,864 | ---- | C] (NCT Company Ltd.) -- C:\Windows\System32\AudDesign.dll
[2012/03/03 18:15:45 | 001,986,560 | ---- | C] (NCT Company Ltd.) -- C:\Windows\System32\AudFile.dll
[2012/03/03 18:15:45 | 001,212,416 | ---- | C] (NCT Company Ltd.) -- C:\Windows\System32\AudioInfos.dll
[2012/03/03 18:15:45 | 000,479,232 | ---- | C] (NCT Company Ltd.) -- C:\Windows\System32\AudioVisu.dll
[2012/03/03 18:15:45 | 000,458,752 | ---- | C] (NCT Company Ltd.) -- C:\Windows\System32\AudPlayer.dll
[2012/03/03 18:15:45 | 000,454,656 | ---- | C] (NCT Company Ltd.) -- C:\Windows\System32\AudioRecord.dll
[2012/03/03 18:15:45 | 000,417,792 | ---- | C] (NCT Company Ltd.) -- C:\Windows\System32\AudDisplay.dll
[2012/03/03 18:15:45 | 000,348,160 | ---- | C] (NCT Company Ltd.) -- C:\Windows\System32\WMAFile.dll
[2012/03/03 18:15:45 | 000,224,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TABCTL32.OCX
[2012/03/03 18:15:45 | 000,119,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VB6FR.DLL
[2012/03/03 18:15:45 | 000,115,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msinet.OCX
[2012/03/03 18:15:45 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VB6STKIT.DLL
[2012/03/03 18:15:45 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TABCTFR.DLL
[2012/03/03 18:15:45 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetfr.DLL
[2012/03/03 18:15:44 | 000,662,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSCOMCT2.OCX
[2012/03/03 18:15:44 | 000,152,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\COMDLG32.OCX
[2012/03/03 18:15:44 | 000,141,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSCMCFR.DLL
[2012/03/03 18:15:44 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Mscc2fr.dll
[2012/03/03 18:15:44 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CMDLGFR.DLL
[2012/03/03 18:15:44 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Roaming\FreeAudioPack
[2012/03/03 18:15:44 | 000,000,000 | ---D | C] -- C:\Program Files\Free mp3 Wma Converter
[2012/03/03 00:47:04 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2012/03/01 20:37:25 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Roaming\Nero
[2012/03/01 20:28:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero
[2012/03/01 20:28:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
[2012/03/01 20:28:44 | 000,000,000 | ---D | C] -- C:\Program Files\Nero
[2012/03/01 20:28:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero
[2012/03/01 17:33:23 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Roaming\GlarySoft
[2012/03/01 10:33:55 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Local\Adobe
[2012/03/01 10:28:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2012/03/01 10:28:37 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2012/03/01 10:27:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2012/02/29 17:45:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities
[2012/02/29 17:45:28 | 000,000,000 | ---D | C] -- C:\Program Files\Glary Utilities
[2012/02/28 20:24:40 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Roaming\dvdcss
[2012/02/23 22:23:38 | 004,448,256 | ---- | C] (Google Inc.) -- C:\Windows\System32\GPhotos.scr
[2012/02/22 19:18:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2012/02/22 19:16:08 | 000,876,864 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvhdagenco3220103.dll
[2012/02/22 19:16:07 | 019,443,520 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll
[2012/02/22 19:16:07 | 010,816,832 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2012/02/22 19:16:07 | 005,892,928 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll
[2012/02/22 19:16:07 | 002,517,312 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll
[2012/02/22 19:16:07 | 002,437,440 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll
[2012/02/22 19:16:07 | 000,812,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvumdshim.dll
[2012/02/22 19:16:07 | 000,301,376 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdecodemft.dll
[2012/02/22 19:16:07 | 000,215,360 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvinit.dll
[2012/02/22 19:16:07 | 000,148,800 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvhda32v.sys
[2012/02/22 19:16:07 | 000,061,248 | ---- | C] (Khronos Group) -- C:\Windows\System32\OpenCL.dll
[2012/02/22 19:16:07 | 000,027,968 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvhdap32.dll
[2012/02/22 19:16:06 | 017,543,488 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll
[2012/02/20 19:29:43 | 000,000,000 | ---D | C] -- C:\Users\freddy\Desktop\pbsetup
[2012/02/19 14:19:13 | 000,000,000 | ---D | C] -- C:\Users\freddy\Desktop\Zaz - Zaz - 2010 - FLAC
[2012/02/18 17:06:04 | 000,000,000 | ---D | C] -- C:\Users\freddy\Documents\BioWare
[2012/02/16 22:44:30 | 000,000,000 | ---D | C] -- C:\Users\freddy\Desktop\Windows Loader v2.0.1
[2012/02/16 20:37:40 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl
[2012/02/16 20:37:32 | 000,599,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2012/02/16 20:37:31 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012/02/16 20:37:31 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012/02/16 20:37:31 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012/02/16 20:37:31 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012/02/16 20:37:30 | 002,343,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2012/02/15 18:23:33 | 000,000,000 | ---D | C] -- C:\ProgramData\EA Logs
[2012/02/15 17:09:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
[2012/02/15 17:08:49 | 000,821,824 | ---- | C] (Devguru Co., Ltd.) -- C:\Windows\System32\dgderapi.dll
[2012/02/15 13:20:23 | 000,000,000 | ---D | C] -- C:\Users\freddy\Desktop\doc
[2012/02/15 13:01:19 | 000,000,000 | ---D | C] -- C:\Users\freddy\Documents\SelfMV
[2012/02/15 13:01:13 | 000,000,000 | ---D | C] -- C:\Temp
[2012/02/15 13:00:48 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Local\Samsung
[2012/02/15 13:00:35 | 000,000,000 | ---D | C] -- C:\Users\freddy\Documents\samsung
[2012/02/15 12:50:35 | 001,416,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WdfCoInstaller01005.dll
[2012/02/15 12:50:35 | 001,416,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\WdfCoInstaller01005.dll
[2012/02/15 12:50:35 | 000,136,680 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ssadmdm.sys
[2012/02/15 12:50:35 | 000,121,192 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ssadbus.sys
[2012/02/15 12:50:35 | 000,114,152 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ssadserd.sys
[2012/02/15 12:50:35 | 000,030,312 | ---- | C] (Google Inc) -- C:\Windows\System32\drivers\ssadadb.sys
[2012/02/15 12:50:35 | 000,012,776 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ssadmdfl.sys
[2012/02/15 12:50:35 | 000,010,472 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ssadcmnt.sys
[2012/02/15 12:50:35 | 000,010,472 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ssadcm.sys
[2012/02/15 12:50:35 | 000,010,344 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ssadwhnt.sys
[2012/02/15 12:50:35 | 000,010,344 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ssadwh.sys
[2012/02/15 12:49:17 | 004,659,712 | ---- | C] (Dmitry Streblechenko) -- C:\Windows\System32\Redemption.dll
[2012/02/15 12:48:53 | 000,000,000 | ---D | C] -- C:\Program Files\MarkAny
[2012/02/15 12:48:04 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Roaming\Samsung
[2012/02/15 12:48:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Samsung
[2012/02/15 12:48:03 | 000,000,000 | ---D | C] -- C:\Program Files\Samsung
[2012/02/15 12:44:38 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Local\Downloaded Installations
[2012/02/13 23:29:23 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2012/02/13 16:59:36 | 008,126,464 | R--- | C] (C-Media Corporation) -- C:\Windows\System\CMICNFG3.cpl
[2012/02/13 16:58:48 | 001,872,192 | ---- | C] (C-Media Inc) -- C:\Windows\System32\drivers\cmudax3.sys
[2012/02/13 16:58:48 | 000,036,864 | ---- | C] (C-Media Electronics Ins.) -- C:\Windows\System32\cmudax3.DLL
[2012/02/13 16:58:40 | 000,319,968 | R--- | C] (Microsoft Corporation) -- C:\Windows\difxapi.dll
[2012/02/12 19:12:02 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
[2012/02/12 19:04:29 | 000,098,304 | ---- | C] (Sony DADC Austria AG.) -- C:\Windows\System32\CmdLineExt.dll
[2012/02/11 12:16:58 | 000,000,000 | ---D | C] -- C:\Users\freddy\AppData\Roaming\vlc
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2012/03/10 13:21:40 | 000,014,336 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/03/10 13:21:40 | 000,014,336 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/03/10 13:20:20 | 000,704,242 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2012/03/10 13:20:20 | 000,615,810 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/03/10 13:20:20 | 000,130,548 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2012/03/10 13:20:20 | 000,106,190 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/03/10 13:17:33 | 000,000,314 | ---- | M] () -- C:\Windows\tasks\GlaryInitialize.job
[2012/03/10 13:14:27 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/03/10 13:14:13 | 1609,965,568 | -HS- | M] () -- C:\hiberfil.sys
[2012/03/09 21:28:37 | 000,000,000 | ---- | M] () -- C:\Users\freddy\back25.rc
[2012/03/09 19:55:21 | 000,282,864 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2012/03/09 19:51:42 | 000,139,176 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2012/03/09 19:51:35 | 000,282,864 | ---- | M] () -- C:\Windows\System32\PnkBstrB.ex0
[2012/03/07 16:37:16 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2012/03/07 12:41:43 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2012/03/07 12:41:43 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2012/03/07 12:41:43 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2012/03/07 12:41:43 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2012/02/29 09:24:29 | 000,131,298 | ---- | M] () -- C:\Users\freddy\Documents\SFR Mail - Impression d'un message.pdf
[2012/02/27 17:57:09 | 000,007,605 | ---- | M] () -- C:\Users\freddy\AppData\Local\Resmon.ResmonCfg
[2012/02/27 15:57:17 | 000,014,480 | ---- | M] () -- C:\Users\freddy\Documents\cc_20120227_155712.reg
[2012/02/23 22:23:38 | 004,448,256 | ---- | M] (Google Inc.) -- C:\Windows\System32\GPhotos.scr
[2012/02/23 09:18:36 | 000,237,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2012/02/17 08:36:42 | 000,284,592 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012/02/16 22:45:21 | 000,285,443 | RHS- | M] () -- C:\QTPVB
[2012/02/16 22:45:21 | 000,000,020 | RHS- | M] () -- C:\win7.ld
[2012/02/15 17:09:09 | 000,001,923 | ---- | M] () -- C:\Users\freddy\Application Data\Microsoft\Internet Explorer\Quick Launch\Samsung Kies.lnk
[2012/02/15 13:01:38 | 000,008,192 | ---- | M] () -- C:\Users\freddy\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/02/13 18:20:41 | 000,000,164 | ---- | M] () -- C:\Windows\Cmicnfg3.ini.cfl
[2012/02/13 18:20:35 | 000,000,136 | ---- | M] () -- C:\Windows\System\Dlap.pfx
[2012/02/13 18:20:35 | 000,000,134 | ---- | M] () -- C:\Windows\Cmicnfg3.ini.imi
[2012/02/13 18:20:23 | 000,000,073 | ---- | M] () -- C:\Windows\System\Cmicnfg3.ini
[2012/02/12 19:04:29 | 000,098,304 | ---- | M] (Sony DADC Austria AG.) -- C:\Windows\System32\CmdLineExt.dll
[2012/02/10 05:13:00 | 019,443,520 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll
[2012/02/10 05:13:00 | 017,543,488 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll
[2012/02/10 05:13:00 | 015,009,600 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
[2012/02/10 05:13:00 | 010,816,832 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2012/02/10 05:13:00 | 007,713,088 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvwgf2um.dll
[2012/02/10 05:13:00 | 005,892,928 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll
[2012/02/10 05:13:00 | 002,517,312 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll
[2012/02/10 05:13:00 | 002,437,440 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll
[2012/02/10 05:13:00 | 002,301,248 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll
[2012/02/10 05:13:00 | 001,000,256 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvdispco32.dll
[2012/02/10 05:13:00 | 000,881,984 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvgenco32.dll
[2012/02/10 05:13:00 | 000,812,352 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvumdshim.dll
[2012/02/10 05:13:00 | 000,301,376 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvdecodemft.dll
[2012/02/10 05:13:00 | 000,215,360 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvinit.dll
[2012/02/10 05:13:00 | 000,061,248 | ---- | M] (Khronos Group) -- C:\Windows\System32\OpenCL.dll
[2012/02/10 05:13:00 | 000,008,772 | ---- | M] () -- C:\Windows\System32\nvinfo.pb
[2012/02/10 04:03:04 | 002,497,985 | ---- | M] () -- C:\Windows\System32\nvcoproc.bin
[2012/02/10 04:02:06 | 003,881,792 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.dll
[2012/02/10 04:00:44 | 002,719,040 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvsvc.dll
[2012/02/10 04:00:26 | 000,108,352 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvmctray.dll
[2012/02/10 04:00:26 | 000,062,272 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvshext.dll
[2012/02/10 04:00:25 | 002,561,344 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvsvcr.dll
[2012/02/09 20:05:44 | 000,416,064 | ---- | M] () -- C:\Windows\System32\nvStreaming.exe
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2012/03/09 21:28:37 | 000,000,000 | ---- | C] () -- C:\Users\freddy\back25.rc
[2012/03/07 16:37:16 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2012/03/05 20:48:47 | 730,920,946 | ---- | C] () -- C:\Users\freddy\Desktop\Il etait une fois Jesus-Film d'animation.avi
[2012/03/03 18:15:45 | 000,116,296 | ---- | C] () -- C:\Windows\System32\NCTWMAProfiles.prx
[2012/03/01 10:28:56 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2012/02/29 17:45:32 | 000,000,314 | ---- | C] () -- C:\Windows\tasks\GlaryInitialize.job
[2012/02/29 09:24:26 | 000,131,298 | ---- | C] () -- C:\Users\freddy\Documents\SFR Mail - Impression d'un message.pdf
[2012/02/27 17:57:09 | 000,007,605 | ---- | C] () -- C:\Users\freddy\AppData\Local\Resmon.ResmonCfg
[2012/02/27 15:57:15 | 000,014,480 | ---- | C] () -- C:\Users\freddy\Documents\cc_20120227_155712.reg
[2012/02/22 19:17:26 | 002,497,985 | ---- | C] () -- C:\Windows\System32\nvcoproc.bin
[2012/02/16 22:45:20 | 000,285,443 | RHS- | C] () -- C:\QTPVB
[2012/02/15 17:09:09 | 000,001,923 | ---- | C] () -- C:\Users\freddy\Application Data\Microsoft\Internet Explorer\Quick Launch\Samsung Kies.lnk
[2012/02/15 13:01:20 | 000,008,192 | ---- | C] () -- C:\Users\freddy\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/02/13 16:59:42 | 000,143,360 | R--- | C] () -- C:\Windows\System\VmixP6.dll
[2012/02/13 16:59:31 | 000,544,768 | R--- | C] () -- C:\Windows\System32\Cmeaupci.exe
[2012/02/13 16:59:31 | 000,000,164 | ---- | C] () -- C:\Windows\Cmicnfg3.ini.cfl
[2012/02/13 16:59:31 | 000,000,136 | ---- | C] () -- C:\Windows\System\Dlap.pfx
[2012/02/13 16:58:44 | 000,000,134 | ---- | C] () -- C:\Windows\Cmicnfg3.ini.imi
[2012/02/13 16:58:43 | 000,299,008 | R--- | C] () -- C:\Windows\System32\CmiInstallResAll.dll
[2012/02/13 16:58:43 | 000,002,123 | R--- | C] () -- C:\Windows\Cmicnfg3.ini.cfg
[2012/02/09 20:05:44 | 000,416,064 | ---- | C] () -- C:\Windows\System32\nvStreaming.exe
[2012/01/06 13:55:19 | 000,139,176 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2012/01/06 13:55:18 | 000,138,056 | ---- | C] () -- C:\Users\freddy\AppData\Roaming\PnkBstrK.sys
[2012/01/06 13:54:49 | 000,282,864 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2012/01/06 13:54:46 | 000,076,888 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2012/01/06 12:01:44 | 000,000,382 | ---- | C] () -- C:\Windows\ODBC.INI
[2012/01/04 19:37:24 | 000,017,408 | ---- | C] () -- C:\Users\freddy\AppData\Local\WebpageIcons.db
[2012/01/04 19:36:54 | 000,115,369 | ---- | C] () -- C:\Windows\System32\drivers\klin.dat
[2012/01/04 19:36:54 | 000,097,961 | ---- | C] () -- C:\Windows\System32\drivers\klick.dat
[2011/03/11 12:43:54 | 000,029,763 | ---- | C] () -- C:\Windows\System32\drivers\klopp.dat
[2011/01/29 17:00:24 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
[2011/01/29 17:00:22 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
[2011/01/29 17:00:22 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2011/01/29 17:00:22 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2011/01/29 17:00:22 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll
< End of report >
Postes tes rapports via le site
Quand le scan est fini, utilise le site http://pjjoint.malekal.com/ pour envoyer le rapport OTL.txt (et Extra.txt si présent), donne le ou les liens pjjoint.
Les rapports sont très long et prennent beaucoup de place sur le forum.
Relance OTL et copie/colle les lignes ci dessous et clique sur Correction,
Poste le rapport qui en découle via pjjoint.
Quand le scan est fini, utilise le site http://pjjoint.malekal.com/ pour envoyer le rapport OTL.txt (et Extra.txt si présent), donne le ou les liens pjjoint.
Les rapports sont très long et prennent beaucoup de place sur le forum.
Relance OTL et copie/colle les lignes ci dessous et clique sur Correction,
IE - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} => Infection BT (Adware.Bandoo)
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lost13.at
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://lost13.at/keyword/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://lost13.at
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://lost13.at
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://lost13.at
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = lost13.at
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://lost13.at/find.jsp?cx=partner-pub-9695538427146728:yvjqb5-xuvw&cof=FORID:11&ie=ISO-8859-1&q={searchTerms}&sa=Recherche+Google&siteurl=lost13.at/&lang=En
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_bak = http://lost13.at
IE - HKCU\..\SearchScopes,DefaultScope = {557C21FE-7274-410D-853E-9ED4471BF193}
CHR - default_search_provider: search_url = http://lost13.at/find.jsp?cx=partner-pub-9695538427146728:yvjqb5-xuvw&cof=FORID:11&ie=ISO-8859-1&q={searchTerms}&sa=Recherche+Google&siteurl=lost13.at/&lang=En
Poste le rapport qui en découle via pjjoint.
voila le lien et le mot de passe https://pjjoint.malekal.com/files.php?id=20120310_i13v6g12h9s8
freg
freg
Tu n'as pas suivit les dernières instructions, surement par ma faute il te faut copier/coller les lignes que je t'ai donné trois postes plus haut.
Ensuite une fois les lignes coller dans la partie basse de la fenêtre de OTL, juste en dessous de Personnalisation tu dois cliquer sur correction.
Ensuite une fois les lignes coller dans la partie basse de la fenêtre de OTL, juste en dessous de Personnalisation tu dois cliquer sur correction.
voila le résultat
tu me fais savoir ce que tu en penses.
mais j'ai toujours la même page
merci
# AdwCleaner v1.501 - Rapport créé le 10/03/2012 à 20:33:31
# Mis à jour le 04/03/2012 par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (32 bits)
# Nom d'utilisateur : freddy - FREDDY-PC
# Exécuté depuis : C:\Users\freddy\Downloads\adwcleaner.exe
# Option [Suppression]
***** [Services] *****
***** [Fichiers / Dossiers] *****
***** [H. Navipromo] *****
***** [Registre] *****
***** [Navigateurs] *****
-\\ Internet Explorer v8.0.7601.17514
[OK] Le registre ne contient aucune entrée illégitime.
-\\ Mozilla Firefox v10.0.2 (fr)
Profil : 85ah3xo8.default
Fichier : C:\Users\freddy\AppData\Roaming\Mozilla\Firefox\Profiles\85ah3xo8.default\prefs.js
[OK] Le fichier ne contient aucune entrée illégitime.
-\\ Google Chrome v [Impossible d'obtenir la version]
Fichier : C:\Users\freddy\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] Le fichier ne contient aucune entrée illégitime.
tu me fais savoir ce que tu en penses.
mais j'ai toujours la même page
merci
# AdwCleaner v1.501 - Rapport créé le 10/03/2012 à 20:33:31
# Mis à jour le 04/03/2012 par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (32 bits)
# Nom d'utilisateur : freddy - FREDDY-PC
# Exécuté depuis : C:\Users\freddy\Downloads\adwcleaner.exe
# Option [Suppression]
***** [Services] *****
***** [Fichiers / Dossiers] *****
***** [H. Navipromo] *****
***** [Registre] *****
***** [Navigateurs] *****
-\\ Internet Explorer v8.0.7601.17514
[OK] Le registre ne contient aucune entrée illégitime.
-\\ Mozilla Firefox v10.0.2 (fr)
Profil : 85ah3xo8.default
Fichier : C:\Users\freddy\AppData\Roaming\Mozilla\Firefox\Profiles\85ah3xo8.default\prefs.js
[OK] Le fichier ne contient aucune entrée illégitime.
-\\ Google Chrome v [Impossible d'obtenir la version]
Fichier : C:\Users\freddy\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] Le fichier ne contient aucune entrée illégitime.
Bonjour, tu ne suis pas les directives, je te demande de passer OTL en mode nettoyage.
Relance OTL et copie/colle les lignes ci dessous :
Ensuite une fois les lignes coller dans la partie basse de la fenêtre de OTL, juste en dessous de Personnalisation tu dois cliquer sur correction.
Poste le rapport qui en découle via pjjoint.
Relance OTL et copie/colle les lignes ci dessous :
Ensuite une fois les lignes coller dans la partie basse de la fenêtre de OTL, juste en dessous de Personnalisation tu dois cliquer sur correction.
IE - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lost13.at
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://lost13.at/keyword/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://lost13.at
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://lost13.at
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://lost13.at
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = lost13.at
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://lost13.at/find.jsp?cx=partner-pub-9695538427146728:yvjqb5-xuvw&cof=FORID:11&ie=ISO-8859-1&q={searchTerms}&sa=Recherche+Google&siteurl=lost13.at/&lang=En
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_bak = http://lost13.at
IE - HKCU\..\SearchScopes,DefaultScope = {557C21FE-7274-410D-853E-9ED4471BF193}
CHR - default_search_provider: search_url = http://lost13.at/find.jsp?cx=partner-pub-9695538427146728:yvjqb5-xuvw&cof=FORID:11&ie=ISO-8859-1&q={searchTerms}&sa=Recherche+Google&siteurl=lost13.at/&lang=En
Poste le rapport qui en découle via pjjoint.
