Bonjour à tous
Je viens d'effectuer HijackThis et je vous en communique les résultats afin de savoir ce qui cloche dans le ralentissement de Vista.
Merci et bonne journée à vous
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:17:08, on 03/08/2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Windows\ehome\ehtray.exe
C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe
C:\Program Files\Orange HSS\Launcher\Launcher.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Windows\ehome\ehmsas.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\2\AlertModule.exe
C:\Program Files\Orange HSS\systray\systrayapp.exe
C:\Program Files\Orange HSS\Deskboard\deskboard.exe
C:\Program Files\Orange HSS\connectivity\connectivitymanager.exe
C:\Program Files\Orange HSS\connectivity\CoreCom\CoreCom.exe
C:\Program Files\Orange HSS\connectivity\CoreCom\OraConfigRecover.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTCOMModule\1\FTCOMModule.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Gérard\AppData\Roaming\Mozilla\Firefox\Profiles\xtlol3hj.default\extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B}\components\afom.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\trend micro\HiJackThis\HiJackThis.exe
C:\Windows\system32\taskmgr.exe
C:\Program Files\Windows NT\Accessories\wordpad.exe
C:\Windows\system32\SearchFilterHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com/?fr=fp-yie9
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://r.orange.fr/r/Ohome_portail?ref=O_OI_defaultPage
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.foozir.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fourni par Yahoo!
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange HSS\SearchURLHook\SearchPageURL.dll
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {01677B4B-0610-4814-94A0-5F570DD7A88F} - (no file)
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1d1b60fd-b21f-4b9a-8a5f-64e8544828d7} - (no file)
O2 - BHO: ToolbarOrange.InitToolbarBHO - {1d970ed5-3eda-438d-bffd-715931e2775b} - mscoree.dll (file missing)
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {48405d3d-2674-4cd8-b1ef-9a719443bd3f} - (no file)
O2 - BHO: (no name) - {4daac69c-cba7-45e2-9bc8-1044483d3352} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: (no name) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - (no file)
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - (no file)
O2 - BHO: (no name) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - (no file)
O2 - BHO: MegaIEMn - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll
O2 - BHO: (no name) - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - (no file)
O2 - BHO: (no name) - {cd36797a-70f3-4acd-8825-623d3b896881} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: (no name) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - (no file)
O2 - BHO: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - (no file)
O2 - BHO: (no name) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - (no file)
O3 - Toolbar: eBuyClub - {B00A2A69-AEB9-4466-A3D3-D965CCF868B6} - C:\Program Files\ShoppingBarreEbuyClub\tbcore3.dll
O3 - Toolbar: (no name) - {1d1b60fd-b21f-4b9a-8a5f-64e8544828d7} - (no file)
O3 - Toolbar: (no name) - {965B54B0-71E0-4611-8DE7-F73FA0B20E26} - (no file)
O3 - Toolbar: (no name) - {C17590D2-ECB4-4b15-8820-F58798DCC118} - (no file)
O3 - Toolbar: (no name) - {48405d3d-2674-4cd8-b1ef-9a719443bd3f} - (no file)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O3 - Toolbar: barre d'outils Orange - {c9a6357b-25cc-4bcf-96c1-78736985d412} - mscoree.dll (file missing)
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [orangeinside] C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe
O4 - HKCU\..\Run: [orahssStartup] "C:\Program Files\Orange HSS\Launcher\Launcher.exe" -appid connectivityapp
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: ajouter cette page à vos favoris Orange - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\addfavorites_html\addfavorites.html
O8 - Extra context menu item: envoyer le texte sélectionné par sms - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\sendsmsselectedtext_html\sendsmsselectedtext.html
O8 - Extra context menu item: envoyer par sms - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\sendsms_html\sendsms.html
O8 - Extra context menu item: envoyer un mail - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\sendmail_html\sendmail.html
O8 - Extra context menu item: orange.fr - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\orange_html\orange.html
O8 - Extra context menu item: rechercher le texte sélectionné - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\selectedsearch_html\selectedsearch.html
O8 - Extra context menu item: traduire la page - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\translate_html\translate.html
O8 - Extra context menu item: traduire le texte sélectionné - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\translateSelectedText_html\translateSelectedText.html
O9 - Extra button: eBuyClub - {B00A2A69-AEB9-4466-A3D3-D965CCF868B6} - C:\Program Files\ShoppingBarreEbuyClub\tbcore3.dll
O9 - Extra 'Tools' menuitem: eBuyClub - {B00A2A69-AEB9-4466-A3D3-D965CCF868B6} - C:\Program Files\ShoppingBarreEbuyClub\tbcore3.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://logicielsgratuits.orange.fr
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} -
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} (Java Plug-in 1.6.0_15) -
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{9B9F4BE0-99DE-4C7D-9017-07F1AC0BFB23}: NameServer = 81.253.149.9 80.10.246.3
O17 - HKLM\System\CCS\Services\Tcpip\..\{AE31E1EA-7A75-4564-96A3-B40327653830}: NameServer = 208.67.222.222,208.67.220.220
O20 - AppInit_DLLs:
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Intel(R) Alert Service (AlertService) - Adaptec, Inc. - (no file)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe
O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30011 (AppHostSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Service de transfert intelligent en arrière-plan (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Services de chiffrement (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcsvc.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Configuration automatique de réseau câblé (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Service de stratégie de diagnostic (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (Eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - Unknown owner - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Accès du périphérique d'interface utilisateur (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Gestion des clés et des certificats d'intégrité (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Modules de génération de clés IKE et AuthIP (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Assistance IP (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe
O23 - Service: Service KtmRm pour Distributed Transaction Coordinator (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Assistance NetBIOS sur TCP/IP (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe
O23 - Service: Service Initiateur iSCSI de Microsoft (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: Agent de protection d’accès réseau (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe
O23 - Service: Connexions réseau (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprof.dll,-246 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: getPlus(R) Helper 3004 (nosGetPlusHelper) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Orange update Core Service - Unknown owner - C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe
O23 - Service: Gestionnaire d'identité réseau homologue (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Groupement de mise en réseau de pairs (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Service de l’Assistant Compatibilité des programmes (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Service de publication des noms d’ordinateurs PNRP (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Protocole de résolution de noms d'homologues (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe
O23 - Service: Expérience audio-vidéo haute qualité Windows (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Gestionnaire de connexions d'accès distant (RasMan) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Ouverture de session secondaire (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe
O23 - Service: @%SystemRoot%\system32\SLUINotify.dll,-103 (SLUINotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Interruption SNMP (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Acquisition d'image Windows (WIA) (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Services de base de module de plateforme sécurisée (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Services Terminal Server (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Client de suivi de lien distribué (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30003 (W3SVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30001 (WAS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Windows Connect Now - Registre de configuration (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Service hôte WDIServiceHost (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Hôte système de diagnostics (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: WebClient - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Prise en charge de l’application Rapports et solutions aux problèmes du Panneau de configuration (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Service de rapport d'erreurs Windows (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Service de configuration automatique WLAN (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe
O23 - Service: Service Énumérateur d’appareil mobile (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100 (WPFFontCache_v0400) - Unknown owner - C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
O23 - Service: Centre de sécurité (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: Windows Update (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Windows Driver Foundation - Infrastructure de pilote mode-utilisateur (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
--
End of file - 24103 bytes
Antivirus- Antispywares & Antimalwares
- Pare-feu
- Nettoyeurs fichiers & registre
- Navigateurs & Clients mail
Tutoriel Hijackthis- Tutoriel Malwarebytes
- Tutoriel RSIT
- Tutoriel CCleaner
- Tutoriel GlaryUtilities
- Tutoriel UsbFix
- Tutoriel AD-Remover
- Astuce Navipromo
- Astuce rogues
- Désactiver l'UAC sous
 |
 |
 |
 |
 |
 |
-
- Publicité
Vista au ralenti
12 messages
• Page 1 sur 1
• Copier l’adresse BBCode de la page
-
mercureendirect 
- Progression vers le rang suivant:
- Messages: 6
- Age: 53
- Inscription: 03 Aoû 2011 10:05
- Localisation: france
- Sexe:
Point(s) : 45- Donner
Publicité
Re: Vista au ralenti
de shion-ares » 03 Aoû 2011 11:07
Bonjour & 
hijackthis étant dépassé il ne montre plus tout fait ceci STP, mais avant désinstalle Spybot il ne sert plus a rien
Utilises ce logiciel de diagnostic :
• Télécharges ZHPDiag
• Laisses toi guider lors de l'installation, il se lancera automatiquement à la fin.
• Cliques sur l'icône représentant une loupe (« Lancer le diagnostic »)
• Enregistres le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
• Héberges le rapport ZHPDiag.txt sur ce site, puis copies/colles le lien fourni dans ta prochaine réponse sur le forum.
hijackthis étant dépassé il ne montre plus tout fait ceci STP, mais avant désinstalle Spybot il ne sert plus a rien
Utilises ce logiciel de diagnostic :
• Télécharges ZHPDiag
• Laisses toi guider lors de l'installation, il se lancera automatiquement à la fin.
• Cliques sur l'icône représentant une loupe (« Lancer le diagnostic »)
• Enregistres le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
• Héberges le rapport ZHPDiag.txt sur ce site, puis copies/colles le lien fourni dans ta prochaine réponse sur le forum.
-
shion-ares 
- Messages: 1266
- Age: 42
- Inscription: 15 Juil 2009 09:00
- Localisation: herbignac
- Sexe:
Point(s) : 6890- Donner
- Nombre de réponses utiles: 66
Re: Vista au ralenti
de mercureendirect » 04 Aoû 2011 15:40
merci pour la rapidité du service
Je vais essayer le nouveau logiciel afin de sortir de ce problème.
J'ai viré mon fidèle Spybot mais c'est pas encore au top
à mon avis, y doit y avoir d'autres intrus
merci pour tout
*************************************
Rapport de ZHPDiag/MD5 v1.28.13 par Nicolas Coolman, Update du 03/08/2011
Run by Gérard at 03/08/2011 19:05:47
Web site : http://www.premiumorange.com/zeb-help-p ... pdiag.html
---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 5.0 v (Defaut)
GCIE: Google Chrome v13.0.782.107
---\\ Windows Product Information
Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)
Windows Server License Manager Script : OK
~ Vista, OEM_COA_SLP channel
Windows ID Activation : OK
~ Windows Partial Key : Y3FBG
Windows License : OK
Windows Automatic Updates : OK
Windows Activation Technologies : KO
---\\ System Information
~ Processor: x86 Family 6 Model 15 Stepping 11, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2045 MB (36% free)
System Restore: Activé (Enable)
System drive C: has 97 GB (21%) free of 446 GB
---\\ Logged in mode
~ Computer Name: PC-DE-GÉRARD
~ User Name: Gérard
~ All Users Names: Gérard, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Gérard\AppData\Roaming\
~ %Desktop% : C:\Users\Gérard\Desktop\
~ %Favorites% : C:\Users\Gérard\Favorites\
~ %LocalAppData% : C:\Users\Gérard\AppData\Local\
~ %StartMenu% : C:\Users\Gérard\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\system32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 97 Go of 446 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 13 Go of 20 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ Hard drive, Flash drive, Thumb drive (Free 1177 Go of 1397 Go)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.10/06/2009 - 22:27:38.) -- C:\Windows\Explorer.exe [2926592]
[MD5.4B555106290BD117334E9A08761C035A] - (....) (.02/11/2006 - 10:45:37.) -- C:\Windows\system32\rundll32.exe [44544]
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.31/03/2009 - 08:33:37.) -- C:\Windows\system32\Wininit.exe [96768]
[MD5.A1236375B74EA63C75657D564890C436] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.14/04/2011 - 15:49:59.) -- C:\Windows\system32\wininet.dll [1126912]
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.10/06/2009 - 22:28:14.) -- C:\Windows\system32\Winlogon.exe [314368]
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.10/06/2009 - 22:32:28.) -- C:\Windows\system32\drivers\atapi.sys [19944]
[MD5.6A4A98CEE84CF9E99564510DDA4BAA47] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.10/06/2009 - 22:32:50.) -- C:\Windows\system32\drivers\ntfs.sys [1083880]
~ Scan Generic Processes in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 15/5329
~ Mes musiques (My Musics) : 216/6774
~ Mes Videos (My Videos) : 3/1105
~ Mes Favoris (My Favorites) : 0/81
~ Mes Documents (My Documents) : 7/10503
~ Mon Bureau (My Desktop) : 16/2437
~ Menu demarrer (Programs) : 0/55
~ Scan Hidden Files in 01mn 41s
---\\ Processus lancés
[MD5.2D821AFA5A1A9CA7F9F997A1AAD09E72] - (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe [168960]
[MD5.E7CF222185411C6A3E68273C452B3283] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe [3493720]
[MD5.13E7CFE8E269ED15E7FC9C3EBBCB7E2B] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [254696]
[MD5.BF08674925F151BD4537B89A493E3E0C] - (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe [125952]
[MD5.B48EB6CE11823C5F0AC597551FAB4215] - (.Orange - Executable Orange Inside.) -- C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe [861696]
[MD5.FDAF774A3A5C3BEA5D1D6A5B0819FEAA] - (.France Telecom SA - Pas de description.) -- C:\Program Files\Orange HSS\Launcher\Launcher.exe [462848]
[MD5.B9B06EA03F7E904676BC674583068570] - (.Pas de propriétaire - ADIMON MFC Application.) -- C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe [1214032]
[MD5.0F4195B9B348DE5CF9B822F81704B20E] - (.Microsoft Corporation - Media Center Media Status Aggregator Servic.) -- C:\Windows\ehome\ehmsas.exe [37376]
[MD5.BFB23E911908D21F71D83E74FE1184C4] - (.France Telecom SA - Pas de description.) -- C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\2\AlertModule.exe [90112]
[MD5.36243A94767A1854CE81FE5B355E9EF3] - (.France Telecom SA - Pas de description.) -- C:\Program Files\Orange HSS\systray\systrayapp.exe [90112]
[MD5.A7CB5E535EDB0F38C66E9492B266BAB3] - (...) -- C:\Program Files\Orange HSS\Deskboard\deskboard.exe [827392]
[MD5.D0FB1B53E3270D67221694B6A2CDEC68] - (.France Telecom SA - Pas de description.) -- C:\Program Files\Orange HSS\connectivity\connectivitymanager.exe [622592]
[MD5.842C87D270CFFFACC46D14F47C45A7E9] - (.France Telecom SA - Pas de description.) -- C:\Program Files\Orange HSS\connectivity\CoreCom\CoreCom.exe [323584]
[MD5.83399A359700CC3AC3ED5FFA5293E5FE] - (.France Telecom SA - Pas de description.) -- C:\Program Files\Orange HSS\connectivity\CoreCom\OraConfigRecover.exe [28672]
[MD5.88893B3E28564692CCBEF5755E85C968] - (.France Telecom SA - Pas de description.) -- C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTCOMModule\1\FTCOMModule.exe [65536]
[MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe [69120]
[MD5.7C508FC091977757B6C8E2D131D3D258] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [663552]
[MD5.AC4E4A0CD9C4C4CC1940CD627C52846F] - (.Nicolas Coolman - Nettoyeur de rapport ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPFix.exe [502272]
~ Scan Processes Running in 00mn 06s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Gérard\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default][HomePage] http://www.google.fr
G0 - GCSP: Preference [User Data\Default] https://login.yahoo.comn%26amp%3BstartM ... D353696822" ]
G2 - GCE: Preference [User Data\Default] [afpbkpjjkfakdcakapanjoeijlphieei] RapidShare DownloadHelper v.1.1.1 (Activé)
G2 - GCE: Preference [User Data\Default] [jfmjfhklogoienhpfnppmbcbjfjnkonk] RealPlayer HTML5Video Downloader Extension v.1.4 (Activé)
G2 - GCE: Preference [User Data\Default] [lncjcfkpannmofmpgdfoonkniofdnaba] Chrome PDF Viewer v. (Désactivé)
~ Scan Google Browser in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Gérard\AppData\Roaming\Mozilla\Firefox\Profiles\u4wyiv6k.default\prefs.js
C:\Users\Gérard\AppData\Roaming\Mozilla\Firefox\Profiles\xtlol3hj.default\prefs.js
M3 - MFPP: Plugins - [Gérard] -- C:\Users\Gérard\AppData\Roaming\Mozilla\Firefox\Profiles\xtlol3hj.default\searchplugins\bigseekpro.xml
M3 - MFPP: Plugins - [Gérard] -- C:\Users\Gérard\AppData\Roaming\Mozilla\Firefox\Profiles\xtlol3hj.default\searchplugins\iMeshWebSearch.xml
M3 - MFPP: Plugins - [Gérard] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Gérard] -- C:\Program Files\Mozilla FireFox\searchplugins\babylon.xml
M3 - MFPP: Plugins - [Gérard] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Gérard] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Gérard] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Gérard] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Gérard] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Gérard] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
M0 - MFSP: prefs.js [Gérard - u4wyiv6k.default] http://www.google.fr
M0 - MFSP: prefs.js [Gérard - xtlol3hj.default] http://www.google.fr
M2 - MFEP: prefs.js [Gérard - u4wyiv6k.default\antidote7_win_firefox_103@druide.com] [] Installation des boutons d'Antidote v7.0.1001251956 (.Druide informatique inc..)
M2 - MFEP: prefs.js [Gérard - u4wyiv6k.default\toolbar@Orange.fr] [] barre d'outils Orange v4.1.1.0 (.Orange.)
M2 - MFEP: prefs.js [Gérard - u4wyiv6k.default\{28292ff6-3f0b-492e-aaca-e066d2df3194}] [xul] XUL Cache v1.0 (.Canonical Ltd..)
M2 - MFEP: prefs.js [Gérard - u4wyiv6k.default\{635abd67-4fe9-1b23-4f01-e679fa7484c1}] [yahoo.ytff] Yahoo! Toolbar v2.1.1.20091029021655 (.Yahoo!.)
M2 - MFEP: prefs.js [Gérard - xtlol3hj.default\ramback@pavlov.net] [] RAMBack v1.0 (.Stuart Parmenter.)
M2 - MFEP: prefs.js [Gérard - xtlol3hj.default\toolbar@Orange.fr] [] barre d'outils Orange v4.1.1.0 (.Orange.)
M2 - MFEP: prefs.js [Gérard - xtlol3hj.default\{394DCBA4-1F92-4f8e-8EC9-8D2CB90CB69B}] [] LightShot (screenshot tool) v2.0.1 (.SkillBrains.)
M2 - MFEP: prefs.js [Gérard - xtlol3hj.default\{635abd67-4fe9-1b23-4f01-e679fa7484c1}] [yahoo.ytff] Yahoo! Toolbar v2.3.8.20110620112826 (.Yahoo!.)
M2 - MFEP: prefs.js [Gérard - xtlol3hj.default\{b749fc7c-e949-447f-926c-3f4eed6accfe}] [] Modify Headers v0.7.0.2 (.Gareth Hunt.)
M2 - MFEP: prefs.js [Gérard - xtlol3hj.default\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B}] [] Memory Fox v7.4 (.IDEVFH.)
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - 1.9.0042.0.) -- C:\Program Files\Mozilla Firefox\Plugins\npLegitCheckPlugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.0.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Mozilla Firefox\Plugins\nppl3260.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealJukebox Netscape Plugin.) -- C:\Program Files\Mozilla Firefox\Plugins\nprjplug.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - 12.0.1.647.) -- C:\Program Files\Mozilla Firefox\Plugins\nprpjplug.dll
P2 - FPN:Firefox Plugin Navigator . (.NOS Microsystems Ltd. - getplusplusadobe16291.) -- C:\Program Files\Mozilla Firefox\Plugins\np_gp.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.6.) -- C:\Windows\system32\Adobe\Director\np32dsw.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (...) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (.not file.)
P2 - FPN: [HKLM] [@google.com/npPicasa3,version=3.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Google\Picasa3\npPicasa3.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_26 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60531.0.) -- c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.5] - (.Microsoft Corp. - Office Live Update v1.5.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@nosltd.com/getPlus+(R),version=1.6.2.91] - (.NOS Microsystems Ltd. - getplusplusadobe16291.) -- C:\Program Files\NOS\bin\np_gp.dll
P2 - FPN: [HKLM] [@real.com/nppl3260;version=12.0.1.647] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- c:\program files\real\realplayer\Netscape6\nppl3260.dll
P2 - FPN: [HKLM] [@real.com/nprjplug;version=12.0.1.647] - (.RealNetworks, Inc. - RealJukebox Netscape Plugin.) -- c:\program files\real\realplayer\Netscape6\nprjplug.dll
P2 - FPN: [HKLM] [@real.com/nprpchromebrowserrecordext;version=12.0.1.652] - (.RealNetworks, Inc. - RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserre
P2 - FPN: [HKLM] [@real.com/nprphtml5videoshim;version=12.0.1.652] - (.RealNetworks, Inc. - RealPlayer(tm) HTML5VideoShim Plug-In.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
P2 - FPN: [HKLM] [@real.com/nprpjplug;version=12.0.1.647] - (.RealNetworks, Inc. - 12.0.1.647.) -- c:\program files\real\realplayer\Netscape6\nprpjplug.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.0.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
~ Scan Firefox Browser in 00mn 02s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://r.orange.fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.foozir.com
R0 - HKUS\S-1-5-21-3110841774-1849680747-3807454378-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://r.orange.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = about:blank
R3 - URLSearchHook: (no name) - {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} . (...) (No version) -- (.not file.)
R3 - URLSearchHook: (no name) - {1d1b60fd-b21f-4b9a-8a5f-64e8544828d7} . (...) (No version) -- (.not file.)
R3 - URLSearchHook: (no name) - {48405d3d-2674-4cd8-b1ef-9a719443bd3f} . (...) (No version) -- (.not file.)
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} . (...) (No version) -- C:\Program Files\Orange HSS\SearchURLHook\SearchPageURL.dll
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\system32\ieframe.dll
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 0
~ Scan IE Browser in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Scan Hosts File in 00mn 03s
---\\ Browser Helper Objects de navigateur (O2)
[MD5.43C30AFEADF8399C4166A130910D77BA] - (.Yahoo! Inc. - Yahoo! Toolbar.) -- C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [1204328]
[MD5.D2ADA8AF0EE98F3F76536015D74EE4BF] - (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [63912]
[MD5.C2591E7BCACBDE2EB6D15CFF5D7432BE] - (.RealPlayer - RealPlayer Download and Record Plugin.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [386264]
[MD5.35F73F1936BDE91F1B6995510A61E7A8] - (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll [1562960]
[MD5.69974B4FB022B6FB8691BF537B4C1A26] - (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [191792]
[MD5.75D85BD73B985DD443EA640C0A907B4F] - (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [820864]
[MD5.5F04E79AB3C0016ED1F6B5E35CDDBCC6] - (.Megaupload Limited - Mega Manager IE Click Catcher.) -- C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll [110592]
[MD5.E7D55E121FF1951CB86C7E0DC6A33877] - (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll [42272]
~ Scan BHO in 00mn 02s
---\\ Internet Explorer Toolbars (O3)
[MD5.1E8F48BD2B6BEC3DAC134E8C5847964B] - (.Pas de propriétaire - IE Toolbar Engine.) -- C:\Program Files\ShoppingBarreEbuyClub\tbcore3.dll [2650112]
[MD5.43C30AFEADF8399C4166A130910D77BA] - (.Yahoo! Inc. - Yahoo! Toolbar.) -- C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [1204328]
[MD5.75D85BD73B985DD443EA640C0A907B4F] - (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [820864]
[MD5.128DD9AF8640DBCC711940903C8B554F] - (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll [297808]
~ Scan Toolbar in 00mn 01s
---\\ Applications démarrées par registre & par dossier (O4)
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
[MD5.904E13BA41AF2E353A32CF351CA53639] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [748336]
[MD5.2D821AFA5A1A9CA7F9F997A1AAD09E72] - (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe [168960]
[MD5.8EDD145FA87508B8E6C83BD6616AA28A] - (.The Audacity Team - Audacity®, the Free, Cross-Platform Sound E.) -- C:\Program Files\Audacity 1.3 Beta (Unicode)\audacity.exe [7759872]
[MD5.D87D8FEE759898A1CA34826A45D87AEE] - (...) -- C:\Program Files\Audio Formats Converter\aconvert.exe [3482112]
[MD5.00F36B07393D43FAAD546F0D0AB3F510] - (.Christian Feron - CalcCF.) -- C:\Program Files\CalcCF_Standart\CalcCF.exe [526816]
[MD5.48482D7632647C9160E35B113F62AF9C] - (.Steinberg Media Technologies GmbH - Clean Audio Restoration.) -- C:\Program Files\Pinnacle\Clean 5\Clean.exe [21119027]
[MD5.7DDC297EF3CD7BAD09FEBE9C1792D764] - (...) -- C:\Program Files\DFX\WMP\Help\DFX Manual.chm [225858]
[MD5.60A00D46783DC8867A11654C5E528BBE] - (.ToniArts - EasyCleaner executable.) -- C:\Program Files\EasyClea.exe [2117632]
[MD5.E6DBA76B9342E95F1300711AC8F64598] - (.Gigatribe SAS - Gigatribe.) -- C:\Program Files\GigaTribe\gigatribe.exe [4144640]
[MD5.9EA911B04A38CEC9E40343953DFD62D6] - (.Glarysoft Ltd - Glary Utilities.) -- C:\Program Files\Glary Utilities\Integrator.exe [499512]
[MD5.29C81875332F7084321C3A82A9A7BF9F] - (.Trend Micro Inc. - HijackThis.) -- C:\Users\Gérard\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe [388096]
[MD5.42732C6292079A4FE007507DD6950507] - (.INFORAD Ltd - Inforad multi countries manager.) -- C:\Program Files\INFORAD\IFDMAN.exe [3314688]
[MD5.CD9FC7C18A278B59683CC9938CEAF5F4] - (.EZ SoftMagic - MP3 Splitter & Joiner.) -- C:\Program Files\MP3 Splitter & Joiner\Mp3Mate.exe [483328]
[MD5.03058F6459E50762FE95AB4C9E4092DB] - (.Antonio Da Cruz - PhotoFiltre.) -- C:\Program Files\PhotoFiltre\PhotoFiltre.exe [2741248]
[MD5.3D0E99AB0EF4BBCCAD9FDFECAF7BDD6A] - (.--- - Pas de description.) -- C:\Program Files\PowerpointImageExtractor_V1_2\PowerpointImageExtractor.exe [1674240]
[MD5.21221CD7C7C844F6F0E0B7BC69CBA36B] - (.Microsoft Corporation - Microsoft Office PowerPoint Viewer.) -- C:\Program Files\Microsoft Office\Office12\PowerPoint Viewer\PPTVIEW.EXE [1790792]
[MD5.6E59A65889328BC3C70CEEF01A223F89] - (...) -- C:\Program Files\GOTO.games\Ramdam Deluxe\ramdam.exe [1399808]
[MD5.595879C4B1CC1FC7D52C4CE9D36BCD31] - (.VS Revo Group - Revo Uninstaller.) -- C:\Program Files\VS Revo Group\Revo Uninstaller\Revouninstaller.exe [3147344]
[MD5.3B1B5D09D3C9C4CD39D4DB06ED7A0855] - (.Safer Networking Limited - Spybot - Search & Destroy.) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe [4891472]
[MD5.A7E92AEE1DC2FEA4E95C58E5B1D97B4A] - (...) -- C:\Users\Gérard\AppData\Roaming\Microsoft\Installer\{3FF40A2F-1871-4C98-A546-CF12B5ED23D5}\_9A444215E9C048508AF9FA.exe [2238]
[MD5.7A9CF19B1531007A94E7FF2286C166AC] - (.XnView, http://www.xnview.com - XnView for Windows.) -- C:\Program Files\XnView\xnview.exe [4362240]
[MD5.250ADEEEE07348C9E2F130F009A8A20C] - (.Microsoft Corporation - Outil d'arrêt et d'annotation Windows.) -- C:\Windows\System32\shutdown.exe [29696]
[MD5.EE8DEBD2D159E7052EB0DAA5CA19FAF7] - (.Orbiscom Ltd. All rights reserved. - ECBL Client.) -- C:\Program Files\e-Carte Bleue La Banque Postale\ecbl-lbp.exe [278528]
[MD5.E6DBA76B9342E95F1300711AC8F64598] - (.Gigatribe SAS - Gigatribe.) -- C:\Program Files\GigaTribe\gigatribe.exe [4144640]
[MD5.E8CF6556E37BAD500F763B1DEF8780BC] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1017912]
[MD5.904E13BA41AF2E353A32CF351CA53639] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [748336]
[MD5.167F58674CD403B1176F9F369F288D6A] - (.MPC-HC Team - Media Player Classic - Home Cinema.) -- C:\Program Files\K-Lite Codec Pack\Media Player Classic\mpc-hc.exe [6015488]
[MD5.6C9CD3ECBA6732661C8BBE37A877A2BD] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [924632]
[MD5.D1D89B046E466B7B00AC3ACEC68CE830] - (.Google Inc. - Picasa.) -- C:\Program Files\Google\Picasa3\Picasa3.exe [8861176]
[MD5.8F6BC753731C2658C209E85A1BAF3A58] - (.POTI, Inc. - Songbird Web Player.) -- C:\Program Files\Songbird\songbird.exe [176640]
[MD5.3B1B5D09D3C9C4CD39D4DB06ED7A0855] - (.Safer Networking Limited - Spybot - Search & Destroy.) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe [4891472]
[MD5.2D821AFA5A1A9CA7F9F997A1AAD09E72] - (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe [168960]
[MD5.7A9CF19B1531007A94E7FF2286C166AC] - (.XnView, http://www.xnview.com - XnView for Windows.) -- C:\Program Files\XnView\xnview.exe [4362240]
~ Scan Global Startup in 00mn 19s
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
[MD5.4509E05C87B0772DDAB4C26DAAABC672] - (.Google Inc. - Google Photos Screensaver.) -- C:\Windows\system32\GPhotos.scr [4284416]
[MD5.B4303738098C5B7C55277695E9B63EEC] - (...) -- C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\addfavorites_html\addfavorites.html [218]
[MD5.3922E6AC68F210CC953E6EB6E9270C22] - (...) -- C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\sendsmsselectedtext_html\sendsmsselectedtext.html [344]
[MD5.E970837666D089C1C0F14283CBCEDA53] - (...) -- C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\sendsms_html\sendsms.html [215]
[MD5.A10DD7A426957201293A4DE11660335D] - (...) -- C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\sendmail_html\sendmail.html [179]
[MD5.01A9FA6E5A49B1A089B54A2ECBB5EE01] - (...) -- C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\orange_html\orange.html [194]
[MD5.B36838049E431CA3E618BA589C63FDCF] - (...) -- C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\selectedsearch_html\selectedsearch.html [358]
[MD5.8F06993A157B7791463B4B7BD5F50B40] - (...) -- C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\translate_html\translate.html [269]
[MD5.D5B1D8A93B0BEF2E34BCBFA186F9B009] - (...) -- C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\translateSelectedText_html\translateSelectedText.html [388]
~ Scan IE Menu Contextuel in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
~ Scan IE Extra Buttons in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
[MD5.D1A84F7D4CAFCFE2A32149FF418056E5] - (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll [48128]
[MD5.FC62A635063B762E1C3C60EA77279378] - (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de m.) -- C:\Windows\system32\napinsp.dll [50176]
[MD5.690D41DF1D555F96D4898A0F54EBA065] - (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll [62464]
[MD5.690D41DF1D555F96D4898A0F54EBA065] - (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll [62464]
[MD5.8617350C9B590B63E620881092751BCB] - (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Micro.) -- C:\Windows\system32\mswsock.dll [223232]
[MD5.C411C80F90D6732380352B98B37BBD53] - (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll [19968]
[MD5.37BC9E0E4B3657B54037777135569D1E] - (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll [152864]
~ Scan Winsock in 00mn 00s
---\\ Protocole additionnel (O18)
[MD5.3F63F95C998F7E1AF409BC74E83D45E5] - (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll [12269056]
[MD5.DF6DE2F5AFB9FA1CFA02081EF9B3E7E8] - (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll [1102336]
[MD5.73F97C8899429EFAEE8C8944DCC08C2E] - (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll [1544704]
[MD5.DF6DE2F5AFB9FA1CFA02081EF9B3E7E8] - (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll [1102336]
[MD5.DF6DE2F5AFB9FA1CFA02081EF9B3E7E8] - (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll [1102336]
[MD5.DF6DE2F5AFB9FA1CFA02081EF9B3E7E8] - (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll [1102336]
[MD5.DF6DE2F5AFB9FA1CFA02081EF9B3E7E8] - (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll [1102336]
[MD5.08886EFE112F7E5437711FCF6D8B04C1] - (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll [141824]
[MD5.3F63F95C998F7E1AF409BC74E83D45E5] - (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll [12269056]
[MD5.DF6DE2F5AFB9FA1CFA02081EF9B3E7E8] - (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll [1102336]
[MD5.3F63F95C998F7E1AF409BC74E83D45E5] - (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll [12269056]
[MD5.8FFDEB99EAC611D617016F2174D48FC6] - (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll [739328]
[MD5.DF6DE2F5AFB9FA1CFA02081EF9B3E7E8] - (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll [1102336]
[MD5.08886EFE112F7E5437711FCF6D8B04C1] - (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll [141824]
[MD5.BBFF7F0AC61F8A29241BC00B3785CCB0] - (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [230760]
[MD5.3F63F95C998F7E1AF409BC74E83D45E5] - (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll [12269056]
[MD5.73F97C8899429EFAEE8C8944DCC08C2E] - (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll [1544704]
[MD5.3F63F95C998F7E1AF409BC74E83D45E5] - (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll [12269056]
~ Scan Protocole Additionnel in 00mn 05s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
[MD5.5193DE33F3284C447E0D31DAFBF92570] - (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll [203776]
~ Scan SSODL in 00mn 00s
---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
[MD5.4504819D18FAC09B6108D8728467E5B2] - (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll [1324032]
~ Scan STS/SSO in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
[MD5.11A52CF7B265631DEEB24C6149309EFF] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [64952]
[MD5.D16C826F375A44802BF317982E81A7E2] - (.AVAST Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [42184]
[MD5.7B82584B6C7F41F471F9B6A6319C14F5] - (.France Telecom SA - Pas de description.) -- C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [57344]
[MD5.2333057542C91AE8228BDCCC2E5F2632] - (.Logitech Inc. - LVPrcSrv Module..) -- C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe [162648]
[MD5.C1303870D5F9EAD4BEB68559AAB7A87B] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 197.4.) -- C:\Windows\system32\nvvsvc.exe [129640]
[MD5.5C9A5B7219A57B47A1545917EF1EC9F7] - (.France Telecom SA - Orange Upd@te.) -- C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe [1055872]
[MD5.17E0BEF5CA5C9CE52CC8082AC6EBC449] - (.Pas de propriétaire - RichVideo Module.) -- C:\Program Files\CyberLink\Shared Files\RichVideo.exe [272024]
[MD5.55C1E4FDFD62A48FB5A2CE25F3AA8AE8] - (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [809296]
[MD5.5A0C788C5BC5F2C993CB60940ADCF95E] - (.X10 - X10 Module.) -- C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe [20480]
[MD5.5867CE254625645345C833510D24F124] - (.Cyberlink Corp. - FCL Driver.) -- C:\Program Files\HomeCinema\PlayMovie\000.fcl [41456]
[MD5.5867CE254625645345C833510D24F124] - (.Cyberlink Corp. - FCL Driver.) -- C:\Program Files\HomeCinema\PowerDVD\000.fcl [41456]
~ Scan Services in 00mn 03s
---\\ Enumération Active Desktop & MHTML Editor (O24)
~ Scan Desktop Component in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
[MD5.327027F6BC3407FB33F16047325DF272] - (...) -- C:\Windows\Tasks\File Helper.job [334]
[MD5.AF3B8C5132C0FB0D2C946CC8B8DD0576] - (...) -- C:\Windows\Tasks\GlaryInitialize.job [314]
[MD5.DE136CBD6EB54595B73D665254018B91] - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1052]
[MD5.EC4126B06E730A9E1344C12AD61AD779] - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1056]
[MD5.1F1948AB4730D2F504D7A6C5DE33B138] - (...) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3110841774-1849680747-3807454378-1000.job [1028]
[MD5.E51721D9353E01C4F4786EC8855B0A19] - (...) -- C:\Windows\Tasks\User_Feed_Synchronization-{96FC5E7F-2C33-454B-BF1D-4F55CE49562C}.job [404]
~ Scan Scheduled Task in 00mn 12s
---\\ Pilotes lancés au démarrage (O41)
~ Scan Drivers in 00mn 01s
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.FAC3FA39C357A416E5F4D3FE30D23A62] - 03/08/2011 - 18:06:05 ---A- . (...) -- C:\Licence.txt [941]
O44 - LFC:[MD5.962666A695ECACD05264E99A64368E72] - 03/08/2011 - 17:30:23 ---A- . (...) -- C:\Windows\WindowsUpdate.log [35518819]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 03/08/2011 - 16:06:31 ---A- . (...) -- C:\Windows\setupact.log [0]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 03/08/2011 - 16:06:31 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.7424AEF65C05AA2CAF80BAD606DD0424] - 02/08/2011 - 23:20:15 ---A- . (...) -- C:\Windows\system32\PerfStringBackup.INI [1575678]
O44 - LFC:[MD5.B6E26E84100868CEE803B6DDA40029CB] - 02/08/2011 - 23:20:15 ---A- . (...) -- C:\Windows\system32\perfc009.dat [111234]
O44 - LFC:[MD5.DF4D80058B09F9724A67ED1E47A25CAA] - 02/08/2011 - 23:20:15 ---A- . (...) -- C:\Windows\system32\perfc00C.dat [136156]
O44 - LFC:[MD5.0B23B2DBA76FB72D4B56E8F77CA4FA0B] - 02/08/2011 - 23:20:15 ---A- . (...) -- C:\Windows\system32\perfh009.dat [623858]
O44 - LFC:[MD5.6E6ED7C59D2B73328342A4DC374FC6F3] - 02/08/2011 - 23:20:15 ---A- . (...) -- C:\Windows\system32\perfh00C.dat [712176]
O44 - LFC:[MD5.7CDD4BF7D80A8E184D30022A88747804] - 02/08/2011 - 23:11:32 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.7C99210B48B96B4600BBA91BE367F8EC] - 02/08/2011 - 23:00:05 ---A- . (...) -- C:\Windows\system32\umstartup000.etl [67584]
O44 - LFC:[MD5.5F0886752906D9E75ED79B42F4271C83] - 02/08/2011 - 12:45:04 ---A- . (...) -- C:\ExtractLog.txt [1420]
O44 - LFC:[MD5.413C92DA5095CE7BE28B5C2E5AC3E02B] - 31/07/2011 - 11:13:04 ---A- . (...) -- C:\Windows\system32\FNTCACHE.DAT [362584]
O44 - LFC:[MD5.2FBAC90315A4242B4196FEC8BAB91B79] - 07/07/2011 - 15:54:29 ---A- . (...) -- C:\Windows\EXCEL.XLB [267]
O44 - LFC:[MD5.67457CC4E07119CCF2736BF0877735D5] - 07/07/2011 - 15:54:29 ---A- . (...) -- C:\Windows\EXCEL4.INI [233]
O44 - LFC:[MD5.01C47C2ECED034EF6F8C1552A97CFF00] - 06/07/2011 - 15:27:22 ---A- . (...) -- C:\Windows\system32\config.nt [2577]
~ Scan Files in 00mn 23s
---\\ Contrôle du Safe Boot (CSB) (O49)
~ Scan CSB in 00mn 00s
---\\ MountPoints2 Shell Key (O51)
~ Scan Keys in 00mn 00s
---\\ ShareTools MSconfig StartupReg (O53)
~ Scan SMSR Keys in 00mn 00s
---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.53A3664BCA7BBC1C09744455BF2EA136] - 30/03/2009 - 10:01:58 ---A- . (.NXP Semiconductors Germany GmbH - 3xHybrid.) -- C:\Windows\system32\drivers\3xHybrid.sys [1242976]
O58 - SDL:[MD5.8DBFD1ED1EC1EE6C3977532912B18C21] - 23/06/2011 - 15:56:32 ---A- . (.Analog Deivces - USB Firmware loader.) -- C:\Windows\system32\drivers\adildr.sys [56088]
O58 - SDL:[MD5.B43C906C46BE1131DC503D8BB1D51063] - 23/06/2011 - 15:57:52 ---A- . (.Analog Deivces - USB Firmware loader.) -- C:\Windows\system32\drivers\adildrx64.sys [58264]
O58 - SDL:[MD5.5609B325404F0BB0EABEC05F1BC62116] - 23/06/2011 - 15:57:14 ---A- . (.Analog Devices Inc. - ADSL USB Driver.) -- C:\Windows\system32\drivers\adiusbaw.sys [116888]
O58 - SDL:[MD5.463E7666A296AEB62E89B57B68C26B33] - 23/06/2011 - 15:58:16 ---A- . (.Analog Devices Inc. - ADSL USB Driver.) -- C:\Windows\system32\drivers\adiusbawx64.sys [166936]
O58 - SDL:[MD5.2EDC5BBAC6C651ECE337BDE8ED97C9FB] - 02/11/2006 - 10:51:38 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [420968]
O58 - SDL:[MD5.B84088CA3CDCA97DA44A984C6CE1CCAD] - 02/11/2006 - 10:51:32 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [297576]
O58 - SDL:[MD5.7880C67BCCC27C86FD05AA2AFB5EA469] - 02/11/2006 - 10:50:35 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (x86).) -- C:\Windows\system32\drivers\adpu160m.sys [98408]
O58 - SDL:[MD5.9AE713F8E30EFC2ABCCD84904333DF4D] - 02/11/2006 - 10:51:00 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys [147048]
O58 - SDL:[MD5.A7B8A3A79D35215D798A300DF49ED23F] - 31/03/2009 - 13:58:56 ---A- . (.Arcsoft, Inc. - Arcsoft(R) ASPI Shell.) -- C:\Windows\system32\drivers\afc.sys [11776]
O58 - SDL:[MD5.496EDA16A127AC9A38BB285BEF17DBB5] - 17/04/2007 - 11:27:45 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [17592]
O58 - SDL:[MD5.5F673180268BB1FDB69C99B6619FE379] - 02/11/2006 - 10:50:09 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [67688]
O58 - SDL:[MD5.957F7540B5E7F602E44648C7DE5A1C05] - 02/11/2006 - 10:50:10 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [67688]
O58 - SDL:[MD5.E54E27976E2C5A6465D44C10B1D87AC0] - 24/11/2009 - 15:20:32 ---A- . (.Adaptec - ASPI for WIN32 Kernel Driver.) -- C:\Windows\system32\drivers\ASPI32.SYS [84832]
O58 - SDL:[MD5.861CB512E4E850E87DD2316F88D69330] - 31/03/2009 - 12:32:12 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\system32\drivers\aswFsBlk.sys [19544]
O58 - SDL:[MD5.FF83C93AEEE8B0CF4B464CA667A67ACD] - 25/11/2009 - 12:32:20 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\system32\drivers\aswMonFlt.sys [54104]
O58 - SDL:[MD5.8DB043BF96BB6D334E5B4888E709E1C7] - 31/03/2009 - 12:32:32 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\Windows\system32\drivers\aswRdr.sys [25432]
O58 - SDL:[MD5.17230708A2028CD995656DF455F2E303] - 03/03/2011 - 12:36:43 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\system32\drivers\aswSnx.sys [441176]
O58 - SDL:[MD5.DBEDD9D43B00630966EF05D2D8D04CEE] - 31/03/2009 - 12:36:32 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\system32\drivers\aswSP.sys [309848]
O58 - SDL:[MD5.984CFCE2168286C2511695C2F9621475] - 31/03/2009 - 12:35:23 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\system32\drivers\aswTdi.sys [43608]
O58 - SDL:[MD5.E642B131FB74CAF4BB8A014F31113142] - 02/11/2006 - 08:36:43 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys [2028032]
O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 02/11/2006 - 09:24:45 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [13568]
O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 02/11/2006 - 09:24:46 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [5248]
O58 - SDL:[MD5.B304E75CFF293029EDDF094246747113] - 02/11/2006 - 09:25:24 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [71808]
O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [62336]
O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [12160]
O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 02/11/2006 - 09:24:47 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [11904]
O58 - SDL:[MD5.59172A0724F2AB769F31D61B0571D75B] - 17/04/2007 - 11:27:45 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [19128]
O58 - SDL:[MD5.AE1FDF7BF7BB6C6A70F67699D880592A] - 02/11/2006 - 10:50:11 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys [71272]
O58 - SDL:[MD5.476D9F2F0789CDE89ACEE2A2FB21EC5A] - 30/03/2009 - 10:37:58 ---A- . (.Intel Corporation - Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver.) -- C:\Windows\system32\drivers\e1e6032.sys [229248]
O58 - SDL:[MD5.F88FB26547FD2CE6D0A5AF2985892C48] - 02/11/2006 - 08:30:54 ---A- . (.Intel Corporation - Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver.) -- C:\Windows\system32\drivers\E1G60I32.sys [117760]
O58 - SDL:[MD5.D32E68DA595ACD9FADCC110BEE196ACE] - 23/06/2011 - 12:47:48 ---A- . (.Analog Deivces - USB Firmware loader.) -- C:\Windows\system32\drivers\e4ldr.sys [69656]
O58 - SDL:[MD5.3D905CA492629743AF2906941471D01F] - 23/06/2011 - 12:47:10 ---A- . (.Analog Deivces - USB Firmware loader.) -- C:\Windows\system32\drivers\e4ldrx64.sys [71832]
O58 - SDL:[MD5.F7958C94559D5030F5023F14D46B9F2F] - 23/06/2011 - 12:48:04 ---A- . (.Analog Devices Inc. - ADSL USB Driver.) -- C:\Windows\system32\drivers\e4usbaw.sys [104344]
O58 - SDL:[MD5.B637E55545DC6A43EB4878D1A82022BE] - 23/06/2011 - 12:46:30 ---A- . (.Analog Devices Inc. - ADSL USB Driver.) -- C:\Windows\system32\drivers\e4usbawx64.sys [146968]
O58 - SDL:[MD5.E8F3F21A71720C84BCF423B80028359F] - 02/11/2006 - 10:51:34 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [316520]
O58 - SDL:[MD5.B2B2C38E916184FF8523C7439DDD417F] - 02/11/2006 - 08:30:56 ---A- . (.VIA Technologies, Inc. - NDIS 5.0 miniport driver.) -- C:\Windows\system32\drivers\fetnd5.sys [45568]
O58 - SDL:[MD5.7C17235845D5AE3FB33EAD47B5881521] - 17/02/2009 - 11:19:44 ---A- . (.FTDI Ltd. - FTDIBUS USB Driver.) -- C:\Windows\system32\drivers\ftdibus.sys [57672]
O58 - SDL:[MD5.4AC51459805264AFFD5F6FDFB9D9235F] - 10/09/2009 - 12:03:22 ---A- . (.GEAR Software Inc. - CD/DVD Class Filter Driver.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys [15664]
O58 - SDL:[MD5.DF353B401001246853763C4B7AAA6F50] - 02/11/2006 - 10:50:10 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\system32\drivers\HpCISSs.sys [37480]
O58 - SDL:[MD5.EF5A3348F28C0F020E081716F503C204] - 30/03/2009 - 07:35:40 ---A- . (.Intel Corporation - NDIS 6.0 Advanced Networking Services..) -- C:\Windows\system32\drivers\iANSW60.sys [100240]
O58 - SDL:[MD5.C957BF4B5D80B46C5017BF0101E6C906] - 02/11/2006 - 10:51:25 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\system32\drivers\iaStorV.sys [232040]
O58 - SDL:[MD5.2D077BF86E843F901D8DB709C95B49A5] - 02/11/2006 - 10:50:17 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [41576]
O58 - SDL:[MD5.7F440F8CED849FCDFA85BB3521B4F048] - 30/03/2009 - 13:23:22 ---A- . (.Intel Corporation - Intel(R) software driver for Intel(R) Viiv(TM) technology.) -- C:\Windows\system32\drivers\IntelDH.sys [5632]
O58 - SDL:[MD5.0107D088E5D1D427D982B2058E0ADB32] - 30/03/2009 - 22:35:30 ---A- . (.Intel Corporation - Intel(R) Network Adapter Diagnostic Driver.) -- C:\Windows\system32\drivers\iqvw32.sys [31072]
O58 - SDL:[MD5.BCED60D16156E428F8DF8CF27B0DF150] - 02/11/2006 - 10:50:07 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\system32\drivers\iteatapi.sys [35944]
O58 - SDL:[MD5.06FA654504A498C30ADCA8BEC4E87E7E] - 02/11/2006 - 10:50:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\system32\drivers\iteraid.sys [35944]
O58 - SDL:[MD5.A2262FB9F28935E862B4DB46438C80D2] - 02/11/2006 - 10:50:04 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [65640]
O58 - SDL:[MD5.30D73327D390F72A62F32C103DAF1D6D] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [65640]
O58 - SDL:[MD5.E1E36FEFD45849A95F1AB81DE0159FE3] - 02/11/2006 - 10:50:10 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [65640]
O58 - SDL:[MD5.CBF0BF6AF73A704211BBB52EFACAA8A0] - 27/07/2010 - 07:12:26 ---A- . (.Logitech Inc. - Logitech AudioProcessing Filter Driver.) -- C:\Windows\system32\drivers\lvpopflt.sys [114784]
O58 - SDL:[MD5.8BE71D7EDB8C7494913722059F760DD0] - 11/10/2010 - 17:43:30 ---A- . (...) -- C:\Windows\system32\drivers\LVPr2Mon.sys [25824]
O58 - SDL:[MD5.6917B407DBEC11B3A078ABFC2EC2AC7C] - 27/07/2010 - 07:12:50 ---A- . (.Logitech Inc. - Logitech Kernel Audio Improvement Filter Driver.) -- C:\Windows\system32\drivers\lvrs.sys [282336]
O58 - SDL:[MD5.44876E70E07E9A653BBE423DBFA35A1A] - 27/07/2010 - 07:14:58 ---A- . (.Logitech Inc. - Logitech USB Video Class Driver.) -- C:\Windows\system32\drivers\lvuvc.sys [6842464]
O58 - SDL:[MD5.D153B14FC6598EAE8422A2037553ADCE] - 02/11/2006 - 10:49:53 ---A- . (.LSI Logic Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\system32\drivers\megasas.sys [28776]
O58 - SDL:[MD5.4FBBB70D30FD20EC51F80061703B001E] - 02/11/2006 - 10:49:59 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\system32\drivers\Mraid35x.sys [33384]
O58 - SDL:[MD5.5D235DAA0A9FEED8D880DF7277D6CCC8] - 01/06/2009 - 15:36:43 ---A- . (.Marvell Semiconductor, Inc - NDIS 5.1 driver.) -- C:\Windows\system32\drivers\MRVW225.sys [299904]
O58 - SDL:[MD5.9BA2F93E4F01EC58E722B36639E0CE5D] - 30/03/2009 - 09:38:22 ---A- . (.Ralink Technology Corp. - Ralink 802.11n Wireless Adapter Driver.) -- C:\Windows\system32\drivers\netr28u.sys [554496]
O58 - SDL:[MD5.2E7FB731D4790A1BC6270ACCEFACB36E] - 02/11/2006 - 10:50:19 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [45160]
O58 - SDL:[MD5.E875C093AEC0C978A90F30C9E0DFBB72] - 02/11/2006 - 08:36:50 ---A- . (.N-trig Innovative Technologies - Pilote intégré de digitalisateur de tablette N-trig.) -- C:\Windows\system32\drivers\ntrigdigi.sys [20608]
O58 - SDL:[MD5.C8CB6135884CBC2A10225C4C3CEF0F95] - 03/04/2010 - 21:55:32 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 197.45.) -- C:\Windows\system32\drivers\nvlddmkm.sys [11573800]
O58 - SDL:[MD5.E69E946F80C1C31C53003BFBF50CBB7C] - 02/11/2006 - 10:50:24 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [88680]
O58 - SDL:[MD5.9E0BA19A28C498A6D323D065DB76DFFC] - 02/11/2006 - 10:50:13 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [40040]
O58 - SDL:[MD5.D15E81E880B8541C70E0C2C876B4C29D] - 08/05/2009 - 16:30:33 ---A- . (.Casimir666 Incorporated - PN31 Lower Filter.) -- C:\Windows\system32\drivers\PN31Snoop.sys [14336]
O58 - SDL:[MD5.CCDAC889326317792480C0A67156A1EC] - 02/11/2006 - 10:51:45 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [900712]
O58 - SDL:[MD5.81A7E5C076E59995D54BC1ED3A16E60B] - 02/11/2006 - 10:50:35 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [106088]
O58 - SDL:[MD5.8B1D0CDD82174C5421A1FC547A15F724] - 31/03/2010 - 10:34:18 R--A- . (.Windows (R) Codename Longhorn DDK provider - QuikSync Fs mini filter driver.) -- C:\Windows\system32\drivers\QsFsFltr.sys [13824]
O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 02/11/2006 - 07:37:21 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [20480]
O58 - SDL:[MD5.8B80A722CCE8E16F495FCAEB43D863D1] - 19/05/2011 - 13:32:02 ---A- . (.Prolific Technology Inc. - USB-to-Serial Cable Driver.) -- C:\Windows\system32\drivers\ser2pl.sys [81920]
O58 - SDL:[MD5.CEDD6F4E7D84E9F98B34B3FE988373AA] - 02/11/2006 - 10:50:10 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [38504]
O58 - SDL:[MD5.DF843C528C4F69D12CE41CE462E973A7] - 02/11/2006 - 10:50:16 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [71784]
O58 - SDL:[MD5.9F66C4BD06334BB772317C438644EF74] - 31/03/2009 - 17:48:34 ---A- . (.Pas de propriétaire - USB2.0 PC Camera driver.) -- C:\Windows\system32\drivers\sncamd.sys [25472]
O58 - SDL:[MD5.8C5AF605A85C5214D40542D933DA737C] - 31/03/2009 - 10:38:06 ---A- . (.Pas de propriétaire - USB2.0 PC Camera driver.) -- C:\Windows\system32\drivers\snp2sxp.sys [12039552]
O58 - SDL:[MD5.192AA3AC01DF071B541094F251DEED10] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\system32\drivers\symc8xx.sys [35944]
O58 - SDL:[MD5.8C8EB8C76736EBAF3B13B633B2E64125] - 02/11/2006 - 10:49:56 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_hi.sys [31848]
O58 - SDL:[MD5.8072AF52B5FD103BBBA387A1E49F62CB] - 02/11/2006 - 10:50:03 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_u3.sys [34920]
O58 - SDL:[MD5.BB277D40458B4BDDDDA51F02A1E77F99] - 04/05/2010 - 11:17:34 ---A- . (.SIA Syncrosoft - SynasUSB.sys.) -- C:\Windows\system32\drivers\synasUSB.sys [16896]
O58 - SDL:[MD5.3CD4EA35A6221B85DCC25DAA46313F8D] - 02/11/2006 - 10:51:25 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\system32\drivers\uliahci.sys [235112]
O58 - SDL:[MD5.8514D0E5CD0534467C5FC61BE94A569F] - 02/11/2006 - 10:50:35 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\system32\drivers\ulsata.sys [98408]
O58 - SDL:[MD5.38C3C6E62B157A6BC46594FADA45C62B] - 02/11/2006 - 10:50:45 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series Windows Drivers.) -- C:\Windows\system32\drivers\ulsata2.sys [115816]
O58 - SDL:[MD5.83CAFCB53201BBAC04D822F32438E244] - 10/06/2011 - 07:06:08 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\system32\drivers\usbaapl.sys [42496]
O58 - SDL:[MD5.B2ABAB4CA46BAD182E27763DC19C780F] - 28/08/2009 - 16:56:26 ---A- . (.Avnex - Avnex Ltd. Virtual Audio Device (WDM).) -- C:\Windows\system32\drivers\vcsvad.sys [17792]
O58 - SDL:[MD5.7EDDFD2D6DE8A2B83B700F59895FB889] - 22/06/2011 - 11:00:00 ---A- . (.VIA Technologies, Inc. - NT4.0 ATAPI IDE Miniport Driver.) -- C:\Windows\system32\drivers\VIADSK.SYS [50208]
O58 - SDL:[MD5.7AA7EC9A08DC2C39649C413B1A26E298] - 17/04/2007 - 11:27:45 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [20152]
O58 - SDL:[MD5.662626BCCF060F2F4B6D5AF7AC121FF5] - 22/06/2011 - 13:45:04 ---A- . (.VIA Technologies. Inc. - VIA PFD driver.) -- C:\Windows\system32\drivers\VIAPFD.SYS [3279]
O58 - SDL:[MD5.D984439746D42B30FC65A4C3546C6829] - 02/11/2006 - 10:50:41 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR X86-32.) -- C:\Windows\system32\drivers\vsmraid.sys [112232]
O58 - SDL:[MD5.AB2D77BF7222B007717ABB61B15F9AE2] - 30/03/2009 - 09:31:04 ---A- . (.X10 Wireless Technology, Inc. - X10 HID Control Interface.) -- C:\Windows\system32\drivers\x10hid.sys [13976]
O58 - SDL:[MD5.6BBF7A3BAB8FFDCCF82057FA2AAE2B7B] - 30/03/2009 - 14:18:18 ---A- . (.X10 Wireless Technology, Inc. - X10 USB Control Interface.) -- C:\Windows\system32\drivers\x10ufx2.sys [27416]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 02/11/2006 - 08:09:42 ---A- . (...) -- C:\Windows\system32\ANSI.SYS [9029]
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 02/11/2006 - 08:09:45 ---A- . (...) -- C:\Windows\system32\country.sys [27097]
O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 02/11/2006 - 08:09:41 ---A- . (...) -- C:\Windows\system32\HIMEM.SYS [4768]
O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\system32\KEY01.SYS [42809]
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\system32\KEYBOARD.SYS [42537]
O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 02/11/2006 - 08:09:29 ---A- . (...) -- C:\Windows\system32\NTDOS.SYS [27866]
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 02/11/2006 - 08:09:35 ---A- . (...) -- C:\Windows\system32\NTDOS404.SYS [29146]
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 02/11/2006 - 08:09:38 ---A- . (...) -- C:\Windows\system32\NTDOS411.SYS [29370]
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 02/11/2006 - 08:09:40 ---A- . (...) -- C:\Windows\system32\NTDOS412.SYS [29274]
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 02/11/2006 - 08:09:31 ---A- . (...) -- C:\Windows\system32\NTDOS804.SYS [29146]
O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 02/11/2006 - 08:09:20 ---A- . (...) -- C:\Windows\system32\NTIO.SYS [33952]
O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 02/11/2006 - 08:09:23 ---A- . (...) -- C:\Windows\system32\NTIO404.SYS [34672]
O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 02/11/2006 - 08:09:24 ---A- . (...) -- C:\Windows\system32\NTIO411.SYS [35776]
O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 02/11/2006 - 08:09:26 ---A- . (...) -- C:\Windows\system32\NTIO412.SYS [35536]
O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 02/11/2006 - 08:09:22 ---A- . (...) -- C:\Windows\system32\NTIO804.SYS [34672]
O58 - SDL:[MD5.A16FB34E56C781DC56BE7492315655B9] - 19/05/2011 - 15:05:02 ---A- . (.Prolific Technology Inc. - USB-Serial USB Driver.) -- C:\Windows\system32\SER9PL.sys [35892]
~ Scan Drivers in 00mn 40s
End of the scan (550 lines in 04mn 09s)(0)
**************************************************************
Rapport de ZHPFix 1.12.3345 par Nicolas Coolman, Update du 29/07/2011
Fichier d'export Registre :
Run by Gérard at 03/08/2011 19:14:44
Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)
Web site : http://www.premiumorange.com/zeb-help-p ... hpfix.html
========== Logiciel(s) ==========
ABSENT Uninstall Process: c:\program files\zhpdiag\unins000.exe
SUPPRIME O63 - Logiciel: RSIT - (random/random)
========== Clé(s) du Registre ==========
SUPPRIME Partiel Software Key: {45A66726-69BC-466B-A7A4-12FCBA4883D7}
========== Dossier(s) ==========
SUPPRIME Temporaires Windows: : 72
========== Fichier(s) ==========
SUPPRIME Temporaires Windows: : 56
========== Dossiers/Fichiers cachés restaurés ==========
Mes images (My Pictures) : 16 Restauré(s) avec succès
Ma musique (My Music) : 218 Restauré(s) avec succès
Ma Video (My Video) : 4 Restauré(s) avec succès
Mes Favoris (My Favorites) : 2 Restauré(s) avec succès
Mes Documents (My Documents) : 14 Restauré(s) avec succès
Mon Bureau (My Desktop) : 22 Restauré(s) avec succès
Menu demarrer (Programs) : 7 Restauré(s) avec succès
Dossier utilisateur (AppData) : 1586 Restauré(s) avec succès
Programmes (Program Files) : 0
========== Récapitulatif ==========
1 : Clé(s) du Registre
1 : Dossier(s)
1 : Fichier(s)
2 : Logiciel(s)
1869 : Dossiers/Fichiers cachés restaurés
========== Chemin du fichier rapport ==========
C:\ZHP\ZHPFixReport.txt
End of the scan in 10mn 14s
Je vais essayer le nouveau logiciel afin de sortir de ce problème.
J'ai viré mon fidèle Spybot mais c'est pas encore au top
à mon avis, y doit y avoir d'autres intrus
merci pour tout
*************************************
Rapport de ZHPDiag/MD5 v1.28.13 par Nicolas Coolman, Update du 03/08/2011
Run by Gérard at 03/08/2011 19:05:47
Web site : http://www.premiumorange.com/zeb-help-p ... pdiag.html
---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 5.0 v (Defaut)
GCIE: Google Chrome v13.0.782.107
---\\ Windows Product Information
Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)
Windows Server License Manager Script : OK
~ Vista, OEM_COA_SLP channel
Windows ID Activation : OK
~ Windows Partial Key : Y3FBG
Windows License : OK
Windows Automatic Updates : OK
Windows Activation Technologies : KO
---\\ System Information
~ Processor: x86 Family 6 Model 15 Stepping 11, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2045 MB (36% free)
System Restore: Activé (Enable)
System drive C: has 97 GB (21%) free of 446 GB
---\\ Logged in mode
~ Computer Name: PC-DE-GÉRARD
~ User Name: Gérard
~ All Users Names: Gérard, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Gérard\AppData\Roaming\
~ %Desktop% : C:\Users\Gérard\Desktop\
~ %Favorites% : C:\Users\Gérard\Favorites\
~ %LocalAppData% : C:\Users\Gérard\AppData\Local\
~ %StartMenu% : C:\Users\Gérard\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\system32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 97 Go of 446 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 13 Go of 20 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ Hard drive, Flash drive, Thumb drive (Free 1177 Go of 1397 Go)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.10/06/2009 - 22:27:38.) -- C:\Windows\Explorer.exe [2926592]
[MD5.4B555106290BD117334E9A08761C035A] - (....) (.02/11/2006 - 10:45:37.) -- C:\Windows\system32\rundll32.exe [44544]
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.31/03/2009 - 08:33:37.) -- C:\Windows\system32\Wininit.exe [96768]
[MD5.A1236375B74EA63C75657D564890C436] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.14/04/2011 - 15:49:59.) -- C:\Windows\system32\wininet.dll [1126912]
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.10/06/2009 - 22:28:14.) -- C:\Windows\system32\Winlogon.exe [314368]
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.10/06/2009 - 22:32:28.) -- C:\Windows\system32\drivers\atapi.sys [19944]
[MD5.6A4A98CEE84CF9E99564510DDA4BAA47] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.10/06/2009 - 22:32:50.) -- C:\Windows\system32\drivers\ntfs.sys [1083880]
~ Scan Generic Processes in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 15/5329
~ Mes musiques (My Musics) : 216/6774
~ Mes Videos (My Videos) : 3/1105
~ Mes Favoris (My Favorites) : 0/81
~ Mes Documents (My Documents) : 7/10503
~ Mon Bureau (My Desktop) : 16/2437
~ Menu demarrer (Programs) : 0/55
~ Scan Hidden Files in 01mn 41s
---\\ Processus lancés
[MD5.2D821AFA5A1A9CA7F9F997A1AAD09E72] - (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe [168960]
[MD5.E7CF222185411C6A3E68273C452B3283] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe [3493720]
[MD5.13E7CFE8E269ED15E7FC9C3EBBCB7E2B] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [254696]
[MD5.BF08674925F151BD4537B89A493E3E0C] - (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe [125952]
[MD5.B48EB6CE11823C5F0AC597551FAB4215] - (.Orange - Executable Orange Inside.) -- C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe [861696]
[MD5.FDAF774A3A5C3BEA5D1D6A5B0819FEAA] - (.France Telecom SA - Pas de description.) -- C:\Program Files\Orange HSS\Launcher\Launcher.exe [462848]
[MD5.B9B06EA03F7E904676BC674583068570] - (.Pas de propriétaire - ADIMON MFC Application.) -- C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe [1214032]
[MD5.0F4195B9B348DE5CF9B822F81704B20E] - (.Microsoft Corporation - Media Center Media Status Aggregator Servic.) -- C:\Windows\ehome\ehmsas.exe [37376]
[MD5.BFB23E911908D21F71D83E74FE1184C4] - (.France Telecom SA - Pas de description.) -- C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\2\AlertModule.exe [90112]
[MD5.36243A94767A1854CE81FE5B355E9EF3] - (.France Telecom SA - Pas de description.) -- C:\Program Files\Orange HSS\systray\systrayapp.exe [90112]
[MD5.A7CB5E535EDB0F38C66E9492B266BAB3] - (...) -- C:\Program Files\Orange HSS\Deskboard\deskboard.exe [827392]
[MD5.D0FB1B53E3270D67221694B6A2CDEC68] - (.France Telecom SA - Pas de description.) -- C:\Program Files\Orange HSS\connectivity\connectivitymanager.exe [622592]
[MD5.842C87D270CFFFACC46D14F47C45A7E9] - (.France Telecom SA - Pas de description.) -- C:\Program Files\Orange HSS\connectivity\CoreCom\CoreCom.exe [323584]
[MD5.83399A359700CC3AC3ED5FFA5293E5FE] - (.France Telecom SA - Pas de description.) -- C:\Program Files\Orange HSS\connectivity\CoreCom\OraConfigRecover.exe [28672]
[MD5.88893B3E28564692CCBEF5755E85C968] - (.France Telecom SA - Pas de description.) -- C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTCOMModule\1\FTCOMModule.exe [65536]
[MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe [69120]
[MD5.7C508FC091977757B6C8E2D131D3D258] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [663552]
[MD5.AC4E4A0CD9C4C4CC1940CD627C52846F] - (.Nicolas Coolman - Nettoyeur de rapport ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPFix.exe [502272]
~ Scan Processes Running in 00mn 06s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Gérard\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default][HomePage] http://www.google.fr
G0 - GCSP: Preference [User Data\Default] https://login.yahoo.comn%26amp%3BstartM ... D353696822" ]
G2 - GCE: Preference [User Data\Default] [afpbkpjjkfakdcakapanjoeijlphieei] RapidShare DownloadHelper v.1.1.1 (Activé)
G2 - GCE: Preference [User Data\Default] [jfmjfhklogoienhpfnppmbcbjfjnkonk] RealPlayer HTML5Video Downloader Extension v.1.4 (Activé)
G2 - GCE: Preference [User Data\Default] [lncjcfkpannmofmpgdfoonkniofdnaba] Chrome PDF Viewer v. (Désactivé)
~ Scan Google Browser in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Gérard\AppData\Roaming\Mozilla\Firefox\Profiles\u4wyiv6k.default\prefs.js
C:\Users\Gérard\AppData\Roaming\Mozilla\Firefox\Profiles\xtlol3hj.default\prefs.js
M3 - MFPP: Plugins - [Gérard] -- C:\Users\Gérard\AppData\Roaming\Mozilla\Firefox\Profiles\xtlol3hj.default\searchplugins\bigseekpro.xml
M3 - MFPP: Plugins - [Gérard] -- C:\Users\Gérard\AppData\Roaming\Mozilla\Firefox\Profiles\xtlol3hj.default\searchplugins\iMeshWebSearch.xml
M3 - MFPP: Plugins - [Gérard] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Gérard] -- C:\Program Files\Mozilla FireFox\searchplugins\babylon.xml
M3 - MFPP: Plugins - [Gérard] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Gérard] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Gérard] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Gérard] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Gérard] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Gérard] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
M0 - MFSP: prefs.js [Gérard - u4wyiv6k.default] http://www.google.fr
M0 - MFSP: prefs.js [Gérard - xtlol3hj.default] http://www.google.fr
M2 - MFEP: prefs.js [Gérard - u4wyiv6k.default\antidote7_win_firefox_103@druide.com] [] Installation des boutons d'Antidote v7.0.1001251956 (.Druide informatique inc..)
M2 - MFEP: prefs.js [Gérard - u4wyiv6k.default\toolbar@Orange.fr] [] barre d'outils Orange v4.1.1.0 (.Orange.)
M2 - MFEP: prefs.js [Gérard - u4wyiv6k.default\{28292ff6-3f0b-492e-aaca-e066d2df3194}] [xul] XUL Cache v1.0 (.Canonical Ltd..)
M2 - MFEP: prefs.js [Gérard - u4wyiv6k.default\{635abd67-4fe9-1b23-4f01-e679fa7484c1}] [yahoo.ytff] Yahoo! Toolbar v2.1.1.20091029021655 (.Yahoo!.)
M2 - MFEP: prefs.js [Gérard - xtlol3hj.default\ramback@pavlov.net] [] RAMBack v1.0 (.Stuart Parmenter.)
M2 - MFEP: prefs.js [Gérard - xtlol3hj.default\toolbar@Orange.fr] [] barre d'outils Orange v4.1.1.0 (.Orange.)
M2 - MFEP: prefs.js [Gérard - xtlol3hj.default\{394DCBA4-1F92-4f8e-8EC9-8D2CB90CB69B}] [] LightShot (screenshot tool) v2.0.1 (.SkillBrains.)
M2 - MFEP: prefs.js [Gérard - xtlol3hj.default\{635abd67-4fe9-1b23-4f01-e679fa7484c1}] [yahoo.ytff] Yahoo! Toolbar v2.3.8.20110620112826 (.Yahoo!.)
M2 - MFEP: prefs.js [Gérard - xtlol3hj.default\{b749fc7c-e949-447f-926c-3f4eed6accfe}] [] Modify Headers v0.7.0.2 (.Gareth Hunt.)
M2 - MFEP: prefs.js [Gérard - xtlol3hj.default\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B}] [] Memory Fox v7.4 (.IDEVFH.)
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - 1.9.0042.0.) -- C:\Program Files\Mozilla Firefox\Plugins\npLegitCheckPlugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.0.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Mozilla Firefox\Plugins\nppl3260.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealJukebox Netscape Plugin.) -- C:\Program Files\Mozilla Firefox\Plugins\nprjplug.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - 12.0.1.647.) -- C:\Program Files\Mozilla Firefox\Plugins\nprpjplug.dll
P2 - FPN:Firefox Plugin Navigator . (.NOS Microsystems Ltd. - getplusplusadobe16291.) -- C:\Program Files\Mozilla Firefox\Plugins\np_gp.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.6.) -- C:\Windows\system32\Adobe\Director\np32dsw.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (...) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (.not file.)
P2 - FPN: [HKLM] [@google.com/npPicasa3,version=3.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Google\Picasa3\npPicasa3.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_26 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60531.0.) -- c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.5] - (.Microsoft Corp. - Office Live Update v1.5.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@nosltd.com/getPlus+(R),version=1.6.2.91] - (.NOS Microsystems Ltd. - getplusplusadobe16291.) -- C:\Program Files\NOS\bin\np_gp.dll
P2 - FPN: [HKLM] [@real.com/nppl3260;version=12.0.1.647] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- c:\program files\real\realplayer\Netscape6\nppl3260.dll
P2 - FPN: [HKLM] [@real.com/nprjplug;version=12.0.1.647] - (.RealNetworks, Inc. - RealJukebox Netscape Plugin.) -- c:\program files\real\realplayer\Netscape6\nprjplug.dll
P2 - FPN: [HKLM] [@real.com/nprpchromebrowserrecordext;version=12.0.1.652] - (.RealNetworks, Inc. - RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserre
P2 - FPN: [HKLM] [@real.com/nprphtml5videoshim;version=12.0.1.652] - (.RealNetworks, Inc. - RealPlayer(tm) HTML5VideoShim Plug-In.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
P2 - FPN: [HKLM] [@real.com/nprpjplug;version=12.0.1.647] - (.RealNetworks, Inc. - 12.0.1.647.) -- c:\program files\real\realplayer\Netscape6\nprpjplug.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.0.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
~ Scan Firefox Browser in 00mn 02s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://r.orange.fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.foozir.com
R0 - HKUS\S-1-5-21-3110841774-1849680747-3807454378-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://r.orange.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = about:blank
R3 - URLSearchHook: (no name) - {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} . (...) (No version) -- (.not file.)
R3 - URLSearchHook: (no name) - {1d1b60fd-b21f-4b9a-8a5f-64e8544828d7} . (...) (No version) -- (.not file.)
R3 - URLSearchHook: (no name) - {48405d3d-2674-4cd8-b1ef-9a719443bd3f} . (...) (No version) -- (.not file.)
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} . (...) (No version) -- C:\Program Files\Orange HSS\SearchURLHook\SearchPageURL.dll
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\system32\ieframe.dll
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 0
~ Scan IE Browser in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Scan Hosts File in 00mn 03s
---\\ Browser Helper Objects de navigateur (O2)
[MD5.43C30AFEADF8399C4166A130910D77BA] - (.Yahoo! Inc. - Yahoo! Toolbar.) -- C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [1204328]
[MD5.D2ADA8AF0EE98F3F76536015D74EE4BF] - (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [63912]
[MD5.C2591E7BCACBDE2EB6D15CFF5D7432BE] - (.RealPlayer - RealPlayer Download and Record Plugin.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [386264]
[MD5.35F73F1936BDE91F1B6995510A61E7A8] - (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll [1562960]
[MD5.69974B4FB022B6FB8691BF537B4C1A26] - (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [191792]
[MD5.75D85BD73B985DD443EA640C0A907B4F] - (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [820864]
[MD5.5F04E79AB3C0016ED1F6B5E35CDDBCC6] - (.Megaupload Limited - Mega Manager IE Click Catcher.) -- C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll [110592]
[MD5.E7D55E121FF1951CB86C7E0DC6A33877] - (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll [42272]
~ Scan BHO in 00mn 02s
---\\ Internet Explorer Toolbars (O3)
[MD5.1E8F48BD2B6BEC3DAC134E8C5847964B] - (.Pas de propriétaire - IE Toolbar Engine.) -- C:\Program Files\ShoppingBarreEbuyClub\tbcore3.dll [2650112]
[MD5.43C30AFEADF8399C4166A130910D77BA] - (.Yahoo! Inc. - Yahoo! Toolbar.) -- C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [1204328]
[MD5.75D85BD73B985DD443EA640C0A907B4F] - (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [820864]
[MD5.128DD9AF8640DBCC711940903C8B554F] - (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll [297808]
~ Scan Toolbar in 00mn 01s
---\\ Applications démarrées par registre & par dossier (O4)
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
[MD5.904E13BA41AF2E353A32CF351CA53639] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [748336]
[MD5.2D821AFA5A1A9CA7F9F997A1AAD09E72] - (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe [168960]
[MD5.8EDD145FA87508B8E6C83BD6616AA28A] - (.The Audacity Team - Audacity®, the Free, Cross-Platform Sound E.) -- C:\Program Files\Audacity 1.3 Beta (Unicode)\audacity.exe [7759872]
[MD5.D87D8FEE759898A1CA34826A45D87AEE] - (...) -- C:\Program Files\Audio Formats Converter\aconvert.exe [3482112]
[MD5.00F36B07393D43FAAD546F0D0AB3F510] - (.Christian Feron - CalcCF.) -- C:\Program Files\CalcCF_Standart\CalcCF.exe [526816]
[MD5.48482D7632647C9160E35B113F62AF9C] - (.Steinberg Media Technologies GmbH - Clean Audio Restoration.) -- C:\Program Files\Pinnacle\Clean 5\Clean.exe [21119027]
[MD5.7DDC297EF3CD7BAD09FEBE9C1792D764] - (...) -- C:\Program Files\DFX\WMP\Help\DFX Manual.chm [225858]
[MD5.60A00D46783DC8867A11654C5E528BBE] - (.ToniArts - EasyCleaner executable.) -- C:\Program Files\EasyClea.exe [2117632]
[MD5.E6DBA76B9342E95F1300711AC8F64598] - (.Gigatribe SAS - Gigatribe.) -- C:\Program Files\GigaTribe\gigatribe.exe [4144640]
[MD5.9EA911B04A38CEC9E40343953DFD62D6] - (.Glarysoft Ltd - Glary Utilities.) -- C:\Program Files\Glary Utilities\Integrator.exe [499512]
[MD5.29C81875332F7084321C3A82A9A7BF9F] - (.Trend Micro Inc. - HijackThis.) -- C:\Users\Gérard\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe [388096]
[MD5.42732C6292079A4FE007507DD6950507] - (.INFORAD Ltd - Inforad multi countries manager.) -- C:\Program Files\INFORAD\IFDMAN.exe [3314688]
[MD5.CD9FC7C18A278B59683CC9938CEAF5F4] - (.EZ SoftMagic - MP3 Splitter & Joiner.) -- C:\Program Files\MP3 Splitter & Joiner\Mp3Mate.exe [483328]
[MD5.03058F6459E50762FE95AB4C9E4092DB] - (.Antonio Da Cruz - PhotoFiltre.) -- C:\Program Files\PhotoFiltre\PhotoFiltre.exe [2741248]
[MD5.3D0E99AB0EF4BBCCAD9FDFECAF7BDD6A] - (.--- - Pas de description.) -- C:\Program Files\PowerpointImageExtractor_V1_2\PowerpointImageExtractor.exe [1674240]
[MD5.21221CD7C7C844F6F0E0B7BC69CBA36B] - (.Microsoft Corporation - Microsoft Office PowerPoint Viewer.) -- C:\Program Files\Microsoft Office\Office12\PowerPoint Viewer\PPTVIEW.EXE [1790792]
[MD5.6E59A65889328BC3C70CEEF01A223F89] - (...) -- C:\Program Files\GOTO.games\Ramdam Deluxe\ramdam.exe [1399808]
[MD5.595879C4B1CC1FC7D52C4CE9D36BCD31] - (.VS Revo Group - Revo Uninstaller.) -- C:\Program Files\VS Revo Group\Revo Uninstaller\Revouninstaller.exe [3147344]
[MD5.3B1B5D09D3C9C4CD39D4DB06ED7A0855] - (.Safer Networking Limited - Spybot - Search & Destroy.) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe [4891472]
[MD5.A7E92AEE1DC2FEA4E95C58E5B1D97B4A] - (...) -- C:\Users\Gérard\AppData\Roaming\Microsoft\Installer\{3FF40A2F-1871-4C98-A546-CF12B5ED23D5}\_9A444215E9C048508AF9FA.exe [2238]
[MD5.7A9CF19B1531007A94E7FF2286C166AC] - (.XnView, http://www.xnview.com - XnView for Windows.) -- C:\Program Files\XnView\xnview.exe [4362240]
[MD5.250ADEEEE07348C9E2F130F009A8A20C] - (.Microsoft Corporation - Outil d'arrêt et d'annotation Windows.) -- C:\Windows\System32\shutdown.exe [29696]
[MD5.EE8DEBD2D159E7052EB0DAA5CA19FAF7] - (.Orbiscom Ltd. All rights reserved. - ECBL Client.) -- C:\Program Files\e-Carte Bleue La Banque Postale\ecbl-lbp.exe [278528]
[MD5.E6DBA76B9342E95F1300711AC8F64598] - (.Gigatribe SAS - Gigatribe.) -- C:\Program Files\GigaTribe\gigatribe.exe [4144640]
[MD5.E8CF6556E37BAD500F763B1DEF8780BC] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1017912]
[MD5.904E13BA41AF2E353A32CF351CA53639] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [748336]
[MD5.167F58674CD403B1176F9F369F288D6A] - (.MPC-HC Team - Media Player Classic - Home Cinema.) -- C:\Program Files\K-Lite Codec Pack\Media Player Classic\mpc-hc.exe [6015488]
[MD5.6C9CD3ECBA6732661C8BBE37A877A2BD] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [924632]
[MD5.D1D89B046E466B7B00AC3ACEC68CE830] - (.Google Inc. - Picasa.) -- C:\Program Files\Google\Picasa3\Picasa3.exe [8861176]
[MD5.8F6BC753731C2658C209E85A1BAF3A58] - (.POTI, Inc. - Songbird Web Player.) -- C:\Program Files\Songbird\songbird.exe [176640]
[MD5.3B1B5D09D3C9C4CD39D4DB06ED7A0855] - (.Safer Networking Limited - Spybot - Search & Destroy.) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe [4891472]
[MD5.2D821AFA5A1A9CA7F9F997A1AAD09E72] - (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe [168960]
[MD5.7A9CF19B1531007A94E7FF2286C166AC] - (.XnView, http://www.xnview.com - XnView for Windows.) -- C:\Program Files\XnView\xnview.exe [4362240]
~ Scan Global Startup in 00mn 19s
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
[MD5.4509E05C87B0772DDAB4C26DAAABC672] - (.Google Inc. - Google Photos Screensaver.) -- C:\Windows\system32\GPhotos.scr [4284416]
[MD5.B4303738098C5B7C55277695E9B63EEC] - (...) -- C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\addfavorites_html\addfavorites.html [218]
[MD5.3922E6AC68F210CC953E6EB6E9270C22] - (...) -- C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\sendsmsselectedtext_html\sendsmsselectedtext.html [344]
[MD5.E970837666D089C1C0F14283CBCEDA53] - (...) -- C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\sendsms_html\sendsms.html [215]
[MD5.A10DD7A426957201293A4DE11660335D] - (...) -- C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\sendmail_html\sendmail.html [179]
[MD5.01A9FA6E5A49B1A089B54A2ECBB5EE01] - (...) -- C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\orange_html\orange.html [194]
[MD5.B36838049E431CA3E618BA589C63FDCF] - (...) -- C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\selectedsearch_html\selectedsearch.html [358]
[MD5.8F06993A157B7791463B4B7BD5F50B40] - (...) -- C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\translate_html\translate.html [269]
[MD5.D5B1D8A93B0BEF2E34BCBFA186F9B009] - (...) -- C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\translateSelectedText_html\translateSelectedText.html [388]
~ Scan IE Menu Contextuel in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
~ Scan IE Extra Buttons in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
[MD5.D1A84F7D4CAFCFE2A32149FF418056E5] - (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll [48128]
[MD5.FC62A635063B762E1C3C60EA77279378] - (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de m.) -- C:\Windows\system32\napinsp.dll [50176]
[MD5.690D41DF1D555F96D4898A0F54EBA065] - (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll [62464]
[MD5.690D41DF1D555F96D4898A0F54EBA065] - (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll [62464]
[MD5.8617350C9B590B63E620881092751BCB] - (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Micro.) -- C:\Windows\system32\mswsock.dll [223232]
[MD5.C411C80F90D6732380352B98B37BBD53] - (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll [19968]
[MD5.37BC9E0E4B3657B54037777135569D1E] - (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll [152864]
~ Scan Winsock in 00mn 00s
---\\ Protocole additionnel (O18)
[MD5.3F63F95C998F7E1AF409BC74E83D45E5] - (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll [12269056]
[MD5.DF6DE2F5AFB9FA1CFA02081EF9B3E7E8] - (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll [1102336]
[MD5.73F97C8899429EFAEE8C8944DCC08C2E] - (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll [1544704]
[MD5.DF6DE2F5AFB9FA1CFA02081EF9B3E7E8] - (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll [1102336]
[MD5.DF6DE2F5AFB9FA1CFA02081EF9B3E7E8] - (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll [1102336]
[MD5.DF6DE2F5AFB9FA1CFA02081EF9B3E7E8] - (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll [1102336]
[MD5.DF6DE2F5AFB9FA1CFA02081EF9B3E7E8] - (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll [1102336]
[MD5.08886EFE112F7E5437711FCF6D8B04C1] - (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll [141824]
[MD5.3F63F95C998F7E1AF409BC74E83D45E5] - (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll [12269056]
[MD5.DF6DE2F5AFB9FA1CFA02081EF9B3E7E8] - (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll [1102336]
[MD5.3F63F95C998F7E1AF409BC74E83D45E5] - (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll [12269056]
[MD5.8FFDEB99EAC611D617016F2174D48FC6] - (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll [739328]
[MD5.DF6DE2F5AFB9FA1CFA02081EF9B3E7E8] - (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll [1102336]
[MD5.08886EFE112F7E5437711FCF6D8B04C1] - (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll [141824]
[MD5.BBFF7F0AC61F8A29241BC00B3785CCB0] - (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [230760]
[MD5.3F63F95C998F7E1AF409BC74E83D45E5] - (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll [12269056]
[MD5.73F97C8899429EFAEE8C8944DCC08C2E] - (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll [1544704]
[MD5.3F63F95C998F7E1AF409BC74E83D45E5] - (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll [12269056]
~ Scan Protocole Additionnel in 00mn 05s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
[MD5.5193DE33F3284C447E0D31DAFBF92570] - (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll [203776]
~ Scan SSODL in 00mn 00s
---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
[MD5.4504819D18FAC09B6108D8728467E5B2] - (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll [1324032]
~ Scan STS/SSO in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
[MD5.11A52CF7B265631DEEB24C6149309EFF] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [64952]
[MD5.D16C826F375A44802BF317982E81A7E2] - (.AVAST Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [42184]
[MD5.7B82584B6C7F41F471F9B6A6319C14F5] - (.France Telecom SA - Pas de description.) -- C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [57344]
[MD5.2333057542C91AE8228BDCCC2E5F2632] - (.Logitech Inc. - LVPrcSrv Module..) -- C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe [162648]
[MD5.C1303870D5F9EAD4BEB68559AAB7A87B] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 197.4.) -- C:\Windows\system32\nvvsvc.exe [129640]
[MD5.5C9A5B7219A57B47A1545917EF1EC9F7] - (.France Telecom SA - Orange Upd@te.) -- C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe [1055872]
[MD5.17E0BEF5CA5C9CE52CC8082AC6EBC449] - (.Pas de propriétaire - RichVideo Module.) -- C:\Program Files\CyberLink\Shared Files\RichVideo.exe [272024]
[MD5.55C1E4FDFD62A48FB5A2CE25F3AA8AE8] - (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [809296]
[MD5.5A0C788C5BC5F2C993CB60940ADCF95E] - (.X10 - X10 Module.) -- C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe [20480]
[MD5.5867CE254625645345C833510D24F124] - (.Cyberlink Corp. - FCL Driver.) -- C:\Program Files\HomeCinema\PlayMovie\000.fcl [41456]
[MD5.5867CE254625645345C833510D24F124] - (.Cyberlink Corp. - FCL Driver.) -- C:\Program Files\HomeCinema\PowerDVD\000.fcl [41456]
~ Scan Services in 00mn 03s
---\\ Enumération Active Desktop & MHTML Editor (O24)
~ Scan Desktop Component in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
[MD5.327027F6BC3407FB33F16047325DF272] - (...) -- C:\Windows\Tasks\File Helper.job [334]
[MD5.AF3B8C5132C0FB0D2C946CC8B8DD0576] - (...) -- C:\Windows\Tasks\GlaryInitialize.job [314]
[MD5.DE136CBD6EB54595B73D665254018B91] - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1052]
[MD5.EC4126B06E730A9E1344C12AD61AD779] - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1056]
[MD5.1F1948AB4730D2F504D7A6C5DE33B138] - (...) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3110841774-1849680747-3807454378-1000.job [1028]
[MD5.E51721D9353E01C4F4786EC8855B0A19] - (...) -- C:\Windows\Tasks\User_Feed_Synchronization-{96FC5E7F-2C33-454B-BF1D-4F55CE49562C}.job [404]
~ Scan Scheduled Task in 00mn 12s
---\\ Pilotes lancés au démarrage (O41)
~ Scan Drivers in 00mn 01s
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.FAC3FA39C357A416E5F4D3FE30D23A62] - 03/08/2011 - 18:06:05 ---A- . (...) -- C:\Licence.txt [941]
O44 - LFC:[MD5.962666A695ECACD05264E99A64368E72] - 03/08/2011 - 17:30:23 ---A- . (...) -- C:\Windows\WindowsUpdate.log [35518819]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 03/08/2011 - 16:06:31 ---A- . (...) -- C:\Windows\setupact.log [0]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 03/08/2011 - 16:06:31 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.7424AEF65C05AA2CAF80BAD606DD0424] - 02/08/2011 - 23:20:15 ---A- . (...) -- C:\Windows\system32\PerfStringBackup.INI [1575678]
O44 - LFC:[MD5.B6E26E84100868CEE803B6DDA40029CB] - 02/08/2011 - 23:20:15 ---A- . (...) -- C:\Windows\system32\perfc009.dat [111234]
O44 - LFC:[MD5.DF4D80058B09F9724A67ED1E47A25CAA] - 02/08/2011 - 23:20:15 ---A- . (...) -- C:\Windows\system32\perfc00C.dat [136156]
O44 - LFC:[MD5.0B23B2DBA76FB72D4B56E8F77CA4FA0B] - 02/08/2011 - 23:20:15 ---A- . (...) -- C:\Windows\system32\perfh009.dat [623858]
O44 - LFC:[MD5.6E6ED7C59D2B73328342A4DC374FC6F3] - 02/08/2011 - 23:20:15 ---A- . (...) -- C:\Windows\system32\perfh00C.dat [712176]
O44 - LFC:[MD5.7CDD4BF7D80A8E184D30022A88747804] - 02/08/2011 - 23:11:32 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.7C99210B48B96B4600BBA91BE367F8EC] - 02/08/2011 - 23:00:05 ---A- . (...) -- C:\Windows\system32\umstartup000.etl [67584]
O44 - LFC:[MD5.5F0886752906D9E75ED79B42F4271C83] - 02/08/2011 - 12:45:04 ---A- . (...) -- C:\ExtractLog.txt [1420]
O44 - LFC:[MD5.413C92DA5095CE7BE28B5C2E5AC3E02B] - 31/07/2011 - 11:13:04 ---A- . (...) -- C:\Windows\system32\FNTCACHE.DAT [362584]
O44 - LFC:[MD5.2FBAC90315A4242B4196FEC8BAB91B79] - 07/07/2011 - 15:54:29 ---A- . (...) -- C:\Windows\EXCEL.XLB [267]
O44 - LFC:[MD5.67457CC4E07119CCF2736BF0877735D5] - 07/07/2011 - 15:54:29 ---A- . (...) -- C:\Windows\EXCEL4.INI [233]
O44 - LFC:[MD5.01C47C2ECED034EF6F8C1552A97CFF00] - 06/07/2011 - 15:27:22 ---A- . (...) -- C:\Windows\system32\config.nt [2577]
~ Scan Files in 00mn 23s
---\\ Contrôle du Safe Boot (CSB) (O49)
~ Scan CSB in 00mn 00s
---\\ MountPoints2 Shell Key (O51)
~ Scan Keys in 00mn 00s
---\\ ShareTools MSconfig StartupReg (O53)
~ Scan SMSR Keys in 00mn 00s
---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.53A3664BCA7BBC1C09744455BF2EA136] - 30/03/2009 - 10:01:58 ---A- . (.NXP Semiconductors Germany GmbH - 3xHybrid.) -- C:\Windows\system32\drivers\3xHybrid.sys [1242976]
O58 - SDL:[MD5.8DBFD1ED1EC1EE6C3977532912B18C21] - 23/06/2011 - 15:56:32 ---A- . (.Analog Deivces - USB Firmware loader.) -- C:\Windows\system32\drivers\adildr.sys [56088]
O58 - SDL:[MD5.B43C906C46BE1131DC503D8BB1D51063] - 23/06/2011 - 15:57:52 ---A- . (.Analog Deivces - USB Firmware loader.) -- C:\Windows\system32\drivers\adildrx64.sys [58264]
O58 - SDL:[MD5.5609B325404F0BB0EABEC05F1BC62116] - 23/06/2011 - 15:57:14 ---A- . (.Analog Devices Inc. - ADSL USB Driver.) -- C:\Windows\system32\drivers\adiusbaw.sys [116888]
O58 - SDL:[MD5.463E7666A296AEB62E89B57B68C26B33] - 23/06/2011 - 15:58:16 ---A- . (.Analog Devices Inc. - ADSL USB Driver.) -- C:\Windows\system32\drivers\adiusbawx64.sys [166936]
O58 - SDL:[MD5.2EDC5BBAC6C651ECE337BDE8ED97C9FB] - 02/11/2006 - 10:51:38 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [420968]
O58 - SDL:[MD5.B84088CA3CDCA97DA44A984C6CE1CCAD] - 02/11/2006 - 10:51:32 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [297576]
O58 - SDL:[MD5.7880C67BCCC27C86FD05AA2AFB5EA469] - 02/11/2006 - 10:50:35 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (x86).) -- C:\Windows\system32\drivers\adpu160m.sys [98408]
O58 - SDL:[MD5.9AE713F8E30EFC2ABCCD84904333DF4D] - 02/11/2006 - 10:51:00 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys [147048]
O58 - SDL:[MD5.A7B8A3A79D35215D798A300DF49ED23F] - 31/03/2009 - 13:58:56 ---A- . (.Arcsoft, Inc. - Arcsoft(R) ASPI Shell.) -- C:\Windows\system32\drivers\afc.sys [11776]
O58 - SDL:[MD5.496EDA16A127AC9A38BB285BEF17DBB5] - 17/04/2007 - 11:27:45 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [17592]
O58 - SDL:[MD5.5F673180268BB1FDB69C99B6619FE379] - 02/11/2006 - 10:50:09 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [67688]
O58 - SDL:[MD5.957F7540B5E7F602E44648C7DE5A1C05] - 02/11/2006 - 10:50:10 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [67688]
O58 - SDL:[MD5.E54E27976E2C5A6465D44C10B1D87AC0] - 24/11/2009 - 15:20:32 ---A- . (.Adaptec - ASPI for WIN32 Kernel Driver.) -- C:\Windows\system32\drivers\ASPI32.SYS [84832]
O58 - SDL:[MD5.861CB512E4E850E87DD2316F88D69330] - 31/03/2009 - 12:32:12 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\system32\drivers\aswFsBlk.sys [19544]
O58 - SDL:[MD5.FF83C93AEEE8B0CF4B464CA667A67ACD] - 25/11/2009 - 12:32:20 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\system32\drivers\aswMonFlt.sys [54104]
O58 - SDL:[MD5.8DB043BF96BB6D334E5B4888E709E1C7] - 31/03/2009 - 12:32:32 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\Windows\system32\drivers\aswRdr.sys [25432]
O58 - SDL:[MD5.17230708A2028CD995656DF455F2E303] - 03/03/2011 - 12:36:43 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\system32\drivers\aswSnx.sys [441176]
O58 - SDL:[MD5.DBEDD9D43B00630966EF05D2D8D04CEE] - 31/03/2009 - 12:36:32 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\system32\drivers\aswSP.sys [309848]
O58 - SDL:[MD5.984CFCE2168286C2511695C2F9621475] - 31/03/2009 - 12:35:23 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\system32\drivers\aswTdi.sys [43608]
O58 - SDL:[MD5.E642B131FB74CAF4BB8A014F31113142] - 02/11/2006 - 08:36:43 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys [2028032]
O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 02/11/2006 - 09:24:45 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [13568]
O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 02/11/2006 - 09:24:46 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [5248]
O58 - SDL:[MD5.B304E75CFF293029EDDF094246747113] - 02/11/2006 - 09:25:24 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [71808]
O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [62336]
O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [12160]
O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 02/11/2006 - 09:24:47 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [11904]
O58 - SDL:[MD5.59172A0724F2AB769F31D61B0571D75B] - 17/04/2007 - 11:27:45 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [19128]
O58 - SDL:[MD5.AE1FDF7BF7BB6C6A70F67699D880592A] - 02/11/2006 - 10:50:11 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys [71272]
O58 - SDL:[MD5.476D9F2F0789CDE89ACEE2A2FB21EC5A] - 30/03/2009 - 10:37:58 ---A- . (.Intel Corporation - Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver.) -- C:\Windows\system32\drivers\e1e6032.sys [229248]
O58 - SDL:[MD5.F88FB26547FD2CE6D0A5AF2985892C48] - 02/11/2006 - 08:30:54 ---A- . (.Intel Corporation - Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver.) -- C:\Windows\system32\drivers\E1G60I32.sys [117760]
O58 - SDL:[MD5.D32E68DA595ACD9FADCC110BEE196ACE] - 23/06/2011 - 12:47:48 ---A- . (.Analog Deivces - USB Firmware loader.) -- C:\Windows\system32\drivers\e4ldr.sys [69656]
O58 - SDL:[MD5.3D905CA492629743AF2906941471D01F] - 23/06/2011 - 12:47:10 ---A- . (.Analog Deivces - USB Firmware loader.) -- C:\Windows\system32\drivers\e4ldrx64.sys [71832]
O58 - SDL:[MD5.F7958C94559D5030F5023F14D46B9F2F] - 23/06/2011 - 12:48:04 ---A- . (.Analog Devices Inc. - ADSL USB Driver.) -- C:\Windows\system32\drivers\e4usbaw.sys [104344]
O58 - SDL:[MD5.B637E55545DC6A43EB4878D1A82022BE] - 23/06/2011 - 12:46:30 ---A- . (.Analog Devices Inc. - ADSL USB Driver.) -- C:\Windows\system32\drivers\e4usbawx64.sys [146968]
O58 - SDL:[MD5.E8F3F21A71720C84BCF423B80028359F] - 02/11/2006 - 10:51:34 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [316520]
O58 - SDL:[MD5.B2B2C38E916184FF8523C7439DDD417F] - 02/11/2006 - 08:30:56 ---A- . (.VIA Technologies, Inc. - NDIS 5.0 miniport driver.) -- C:\Windows\system32\drivers\fetnd5.sys [45568]
O58 - SDL:[MD5.7C17235845D5AE3FB33EAD47B5881521] - 17/02/2009 - 11:19:44 ---A- . (.FTDI Ltd. - FTDIBUS USB Driver.) -- C:\Windows\system32\drivers\ftdibus.sys [57672]
O58 - SDL:[MD5.4AC51459805264AFFD5F6FDFB9D9235F] - 10/09/2009 - 12:03:22 ---A- . (.GEAR Software Inc. - CD/DVD Class Filter Driver.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys [15664]
O58 - SDL:[MD5.DF353B401001246853763C4B7AAA6F50] - 02/11/2006 - 10:50:10 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\system32\drivers\HpCISSs.sys [37480]
O58 - SDL:[MD5.EF5A3348F28C0F020E081716F503C204] - 30/03/2009 - 07:35:40 ---A- . (.Intel Corporation - NDIS 6.0 Advanced Networking Services..) -- C:\Windows\system32\drivers\iANSW60.sys [100240]
O58 - SDL:[MD5.C957BF4B5D80B46C5017BF0101E6C906] - 02/11/2006 - 10:51:25 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\system32\drivers\iaStorV.sys [232040]
O58 - SDL:[MD5.2D077BF86E843F901D8DB709C95B49A5] - 02/11/2006 - 10:50:17 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [41576]
O58 - SDL:[MD5.7F440F8CED849FCDFA85BB3521B4F048] - 30/03/2009 - 13:23:22 ---A- . (.Intel Corporation - Intel(R) software driver for Intel(R) Viiv(TM) technology.) -- C:\Windows\system32\drivers\IntelDH.sys [5632]
O58 - SDL:[MD5.0107D088E5D1D427D982B2058E0ADB32] - 30/03/2009 - 22:35:30 ---A- . (.Intel Corporation - Intel(R) Network Adapter Diagnostic Driver.) -- C:\Windows\system32\drivers\iqvw32.sys [31072]
O58 - SDL:[MD5.BCED60D16156E428F8DF8CF27B0DF150] - 02/11/2006 - 10:50:07 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\system32\drivers\iteatapi.sys [35944]
O58 - SDL:[MD5.06FA654504A498C30ADCA8BEC4E87E7E] - 02/11/2006 - 10:50:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\system32\drivers\iteraid.sys [35944]
O58 - SDL:[MD5.A2262FB9F28935E862B4DB46438C80D2] - 02/11/2006 - 10:50:04 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [65640]
O58 - SDL:[MD5.30D73327D390F72A62F32C103DAF1D6D] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [65640]
O58 - SDL:[MD5.E1E36FEFD45849A95F1AB81DE0159FE3] - 02/11/2006 - 10:50:10 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [65640]
O58 - SDL:[MD5.CBF0BF6AF73A704211BBB52EFACAA8A0] - 27/07/2010 - 07:12:26 ---A- . (.Logitech Inc. - Logitech AudioProcessing Filter Driver.) -- C:\Windows\system32\drivers\lvpopflt.sys [114784]
O58 - SDL:[MD5.8BE71D7EDB8C7494913722059F760DD0] - 11/10/2010 - 17:43:30 ---A- . (...) -- C:\Windows\system32\drivers\LVPr2Mon.sys [25824]
O58 - SDL:[MD5.6917B407DBEC11B3A078ABFC2EC2AC7C] - 27/07/2010 - 07:12:50 ---A- . (.Logitech Inc. - Logitech Kernel Audio Improvement Filter Driver.) -- C:\Windows\system32\drivers\lvrs.sys [282336]
O58 - SDL:[MD5.44876E70E07E9A653BBE423DBFA35A1A] - 27/07/2010 - 07:14:58 ---A- . (.Logitech Inc. - Logitech USB Video Class Driver.) -- C:\Windows\system32\drivers\lvuvc.sys [6842464]
O58 - SDL:[MD5.D153B14FC6598EAE8422A2037553ADCE] - 02/11/2006 - 10:49:53 ---A- . (.LSI Logic Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\system32\drivers\megasas.sys [28776]
O58 - SDL:[MD5.4FBBB70D30FD20EC51F80061703B001E] - 02/11/2006 - 10:49:59 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\system32\drivers\Mraid35x.sys [33384]
O58 - SDL:[MD5.5D235DAA0A9FEED8D880DF7277D6CCC8] - 01/06/2009 - 15:36:43 ---A- . (.Marvell Semiconductor, Inc - NDIS 5.1 driver.) -- C:\Windows\system32\drivers\MRVW225.sys [299904]
O58 - SDL:[MD5.9BA2F93E4F01EC58E722B36639E0CE5D] - 30/03/2009 - 09:38:22 ---A- . (.Ralink Technology Corp. - Ralink 802.11n Wireless Adapter Driver.) -- C:\Windows\system32\drivers\netr28u.sys [554496]
O58 - SDL:[MD5.2E7FB731D4790A1BC6270ACCEFACB36E] - 02/11/2006 - 10:50:19 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [45160]
O58 - SDL:[MD5.E875C093AEC0C978A90F30C9E0DFBB72] - 02/11/2006 - 08:36:50 ---A- . (.N-trig Innovative Technologies - Pilote intégré de digitalisateur de tablette N-trig.) -- C:\Windows\system32\drivers\ntrigdigi.sys [20608]
O58 - SDL:[MD5.C8CB6135884CBC2A10225C4C3CEF0F95] - 03/04/2010 - 21:55:32 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 197.45.) -- C:\Windows\system32\drivers\nvlddmkm.sys [11573800]
O58 - SDL:[MD5.E69E946F80C1C31C53003BFBF50CBB7C] - 02/11/2006 - 10:50:24 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [88680]
O58 - SDL:[MD5.9E0BA19A28C498A6D323D065DB76DFFC] - 02/11/2006 - 10:50:13 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [40040]
O58 - SDL:[MD5.D15E81E880B8541C70E0C2C876B4C29D] - 08/05/2009 - 16:30:33 ---A- . (.Casimir666 Incorporated - PN31 Lower Filter.) -- C:\Windows\system32\drivers\PN31Snoop.sys [14336]
O58 - SDL:[MD5.CCDAC889326317792480C0A67156A1EC] - 02/11/2006 - 10:51:45 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [900712]
O58 - SDL:[MD5.81A7E5C076E59995D54BC1ED3A16E60B] - 02/11/2006 - 10:50:35 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [106088]
O58 - SDL:[MD5.8B1D0CDD82174C5421A1FC547A15F724] - 31/03/2010 - 10:34:18 R--A- . (.Windows (R) Codename Longhorn DDK provider - QuikSync Fs mini filter driver.) -- C:\Windows\system32\drivers\QsFsFltr.sys [13824]
O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 02/11/2006 - 07:37:21 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [20480]
O58 - SDL:[MD5.8B80A722CCE8E16F495FCAEB43D863D1] - 19/05/2011 - 13:32:02 ---A- . (.Prolific Technology Inc. - USB-to-Serial Cable Driver.) -- C:\Windows\system32\drivers\ser2pl.sys [81920]
O58 - SDL:[MD5.CEDD6F4E7D84E9F98B34B3FE988373AA] - 02/11/2006 - 10:50:10 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [38504]
O58 - SDL:[MD5.DF843C528C4F69D12CE41CE462E973A7] - 02/11/2006 - 10:50:16 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [71784]
O58 - SDL:[MD5.9F66C4BD06334BB772317C438644EF74] - 31/03/2009 - 17:48:34 ---A- . (.Pas de propriétaire - USB2.0 PC Camera driver.) -- C:\Windows\system32\drivers\sncamd.sys [25472]
O58 - SDL:[MD5.8C5AF605A85C5214D40542D933DA737C] - 31/03/2009 - 10:38:06 ---A- . (.Pas de propriétaire - USB2.0 PC Camera driver.) -- C:\Windows\system32\drivers\snp2sxp.sys [12039552]
O58 - SDL:[MD5.192AA3AC01DF071B541094F251DEED10] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\system32\drivers\symc8xx.sys [35944]
O58 - SDL:[MD5.8C8EB8C76736EBAF3B13B633B2E64125] - 02/11/2006 - 10:49:56 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_hi.sys [31848]
O58 - SDL:[MD5.8072AF52B5FD103BBBA387A1E49F62CB] - 02/11/2006 - 10:50:03 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_u3.sys [34920]
O58 - SDL:[MD5.BB277D40458B4BDDDDA51F02A1E77F99] - 04/05/2010 - 11:17:34 ---A- . (.SIA Syncrosoft - SynasUSB.sys.) -- C:\Windows\system32\drivers\synasUSB.sys [16896]
O58 - SDL:[MD5.3CD4EA35A6221B85DCC25DAA46313F8D] - 02/11/2006 - 10:51:25 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\system32\drivers\uliahci.sys [235112]
O58 - SDL:[MD5.8514D0E5CD0534467C5FC61BE94A569F] - 02/11/2006 - 10:50:35 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\system32\drivers\ulsata.sys [98408]
O58 - SDL:[MD5.38C3C6E62B157A6BC46594FADA45C62B] - 02/11/2006 - 10:50:45 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series Windows Drivers.) -- C:\Windows\system32\drivers\ulsata2.sys [115816]
O58 - SDL:[MD5.83CAFCB53201BBAC04D822F32438E244] - 10/06/2011 - 07:06:08 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\system32\drivers\usbaapl.sys [42496]
O58 - SDL:[MD5.B2ABAB4CA46BAD182E27763DC19C780F] - 28/08/2009 - 16:56:26 ---A- . (.Avnex - Avnex Ltd. Virtual Audio Device (WDM).) -- C:\Windows\system32\drivers\vcsvad.sys [17792]
O58 - SDL:[MD5.7EDDFD2D6DE8A2B83B700F59895FB889] - 22/06/2011 - 11:00:00 ---A- . (.VIA Technologies, Inc. - NT4.0 ATAPI IDE Miniport Driver.) -- C:\Windows\system32\drivers\VIADSK.SYS [50208]
O58 - SDL:[MD5.7AA7EC9A08DC2C39649C413B1A26E298] - 17/04/2007 - 11:27:45 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [20152]
O58 - SDL:[MD5.662626BCCF060F2F4B6D5AF7AC121FF5] - 22/06/2011 - 13:45:04 ---A- . (.VIA Technologies. Inc. - VIA PFD driver.) -- C:\Windows\system32\drivers\VIAPFD.SYS [3279]
O58 - SDL:[MD5.D984439746D42B30FC65A4C3546C6829] - 02/11/2006 - 10:50:41 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR X86-32.) -- C:\Windows\system32\drivers\vsmraid.sys [112232]
O58 - SDL:[MD5.AB2D77BF7222B007717ABB61B15F9AE2] - 30/03/2009 - 09:31:04 ---A- . (.X10 Wireless Technology, Inc. - X10 HID Control Interface.) -- C:\Windows\system32\drivers\x10hid.sys [13976]
O58 - SDL:[MD5.6BBF7A3BAB8FFDCCF82057FA2AAE2B7B] - 30/03/2009 - 14:18:18 ---A- . (.X10 Wireless Technology, Inc. - X10 USB Control Interface.) -- C:\Windows\system32\drivers\x10ufx2.sys [27416]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 02/11/2006 - 08:09:42 ---A- . (...) -- C:\Windows\system32\ANSI.SYS [9029]
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 02/11/2006 - 08:09:45 ---A- . (...) -- C:\Windows\system32\country.sys [27097]
O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 02/11/2006 - 08:09:41 ---A- . (...) -- C:\Windows\system32\HIMEM.SYS [4768]
O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\system32\KEY01.SYS [42809]
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\system32\KEYBOARD.SYS [42537]
O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 02/11/2006 - 08:09:29 ---A- . (...) -- C:\Windows\system32\NTDOS.SYS [27866]
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 02/11/2006 - 08:09:35 ---A- . (...) -- C:\Windows\system32\NTDOS404.SYS [29146]
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 02/11/2006 - 08:09:38 ---A- . (...) -- C:\Windows\system32\NTDOS411.SYS [29370]
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 02/11/2006 - 08:09:40 ---A- . (...) -- C:\Windows\system32\NTDOS412.SYS [29274]
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 02/11/2006 - 08:09:31 ---A- . (...) -- C:\Windows\system32\NTDOS804.SYS [29146]
O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 02/11/2006 - 08:09:20 ---A- . (...) -- C:\Windows\system32\NTIO.SYS [33952]
O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 02/11/2006 - 08:09:23 ---A- . (...) -- C:\Windows\system32\NTIO404.SYS [34672]
O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 02/11/2006 - 08:09:24 ---A- . (...) -- C:\Windows\system32\NTIO411.SYS [35776]
O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 02/11/2006 - 08:09:26 ---A- . (...) -- C:\Windows\system32\NTIO412.SYS [35536]
O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 02/11/2006 - 08:09:22 ---A- . (...) -- C:\Windows\system32\NTIO804.SYS [34672]
O58 - SDL:[MD5.A16FB34E56C781DC56BE7492315655B9] - 19/05/2011 - 15:05:02 ---A- . (.Prolific Technology Inc. - USB-Serial USB Driver.) -- C:\Windows\system32\SER9PL.sys [35892]
~ Scan Drivers in 00mn 40s
End of the scan (550 lines in 04mn 09s)(0)
**************************************************************
Rapport de ZHPFix 1.12.3345 par Nicolas Coolman, Update du 29/07/2011
Fichier d'export Registre :
Run by Gérard at 03/08/2011 19:14:44
Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)
Web site : http://www.premiumorange.com/zeb-help-p ... hpfix.html
========== Logiciel(s) ==========
ABSENT Uninstall Process: c:\program files\zhpdiag\unins000.exe
SUPPRIME O63 - Logiciel: RSIT - (random/random)
========== Clé(s) du Registre ==========
SUPPRIME Partiel Software Key: {45A66726-69BC-466B-A7A4-12FCBA4883D7}
========== Dossier(s) ==========
SUPPRIME Temporaires Windows: : 72
========== Fichier(s) ==========
SUPPRIME Temporaires Windows: : 56
========== Dossiers/Fichiers cachés restaurés ==========
Mes images (My Pictures) : 16 Restauré(s) avec succès
Ma musique (My Music) : 218 Restauré(s) avec succès
Ma Video (My Video) : 4 Restauré(s) avec succès
Mes Favoris (My Favorites) : 2 Restauré(s) avec succès
Mes Documents (My Documents) : 14 Restauré(s) avec succès
Mon Bureau (My Desktop) : 22 Restauré(s) avec succès
Menu demarrer (Programs) : 7 Restauré(s) avec succès
Dossier utilisateur (AppData) : 1586 Restauré(s) avec succès
Programmes (Program Files) : 0
========== Récapitulatif ==========
1 : Clé(s) du Registre
1 : Dossier(s)
1 : Fichier(s)
2 : Logiciel(s)
1869 : Dossiers/Fichiers cachés restaurés
========== Chemin du fichier rapport ==========
C:\ZHP\ZHPFixReport.txt
End of the scan in 10mn 14s
-
mercureendirect - Progression vers le rang suivant:
- Messages: 6
- Age: 53
- Inscription: 03 Aoû 2011 10:05
- Localisation: france
- Sexe:
Point(s) : 45- Donner
Re: Vista au ralenti
de shion-ares » 04 Aoû 2011 22:21
Bonsoir
une question c'est quoi ? est ce que c'est toi qui a lancé ou tu te fait aider
une question c'est quoi ? est ce que c'est toi qui a lancé ou tu te fait aider
Invité a écrit:End of the scan (550 lines in 04mn 09s)(0)
**************************************************************
Rapport de ZHPFix 1.12.3345 par Nicolas Coolman, Update du 29/07/2011
Fichier d'export Registre :
Run by Gérard at 03/08/2011 19:14:44
Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)
Web site : http://www.premiumorange.com/zeb-help-p ... hpfix.html
========== Logiciel(s) ==========
ABSENT Uninstall Process: c:\program files\zhpdiag\unins000.exe
SUPPRIME O63 - Logiciel: RSIT - (random/random)
========== Clé(s) du Registre ==========
SUPPRIME Partiel Software Key: {45A66726-69BC-466B-A7A4-12FCBA4883D7}
========== Dossier(s) ==========
SUPPRIME Temporaires Windows: : 72
========== Fichier(s) ==========
SUPPRIME Temporaires Windows: : 56
========== Dossiers/Fichiers cachés restaurés ==========
Mes images (My Pictures) : 16 Restauré(s) avec succès
Ma musique (My Music) : 218 Restauré(s) avec succès
Ma Video (My Video) : 4 Restauré(s) avec succès
Mes Favoris (My Favorites) : 2 Restauré(s) avec succès
Mes Documents (My Documents) : 14 Restauré(s) avec succès
Mon Bureau (My Desktop) : 22 Restauré(s) avec succès
Menu demarrer (Programs) : 7 Restauré(s) avec succès
Dossier utilisateur (AppData) : 1586 Restauré(s) avec succès
Programmes (Program Files) : 0
========== Récapitulatif ==========
1 : Clé(s) du Registre
1 : Dossier(s)
1 : Fichier(s)
2 : Logiciel(s)
1869 : Dossiers/Fichiers cachés restaurés
========== Chemin du fichier rapport ==========
C:\ZHP\ZHPFixReport.txt
End of the scan in 10mn 14s
-
shion-ares - Messages: 1266
- Age: 42
- Inscription: 15 Juil 2009 09:00
- Localisation: herbignac
- Sexe:
Point(s) : 6890- Donner
- Nombre de réponses utiles: 66
Re: Vista au ralenti
de mercureendirect » 05 Aoû 2011 13:05
Désolé, j'ai tout envoyé au lieu de suivre les instructions. Voici le lien demandé.
merci
http://www.cijoint.fr/cjlink.php?file=c ... hQWZbb.txt
merci
http://www.cijoint.fr/cjlink.php?file=c ... hQWZbb.txt
-
mercureendirect - Progression vers le rang suivant:
- Messages: 6
- Age: 53
- Inscription: 03 Aoû 2011 10:05
- Localisation: france
- Sexe:
Point(s) : 45- Donner
Re: Vista au ralenti
de shion-ares » 05 Aoû 2011 15:08
Hello
ok fait ceci STP
ok fait ceci STP
- Télécharge Malwarebytes
- Tu auras un tutoriel à ta disposition pour l'installer et l'utiliser correctement.
- Fais la mise à jour du logiciel (elle se fait normalement à l'installation)
- Lance une analyse complète en cliquant sur "Exécuter un examen complet"
- Sélectionne les disques que tu veux analyser et clique sur "Lancer l'examen"
- L'analyse peut durer un bon moment.....
- Une fois l'analyse terminée, clique sur "OK" puis sur "Afficher les résultats"
- Vérifie que tout est bien coché et clique sur "Supprimer la sélection" => et ensuite sur "OK"
- Un rapport va s'ouvrir dans le bloc note... Fais un copié/collé du rapport dans ta prochaine réponse sur le forum
-
shion-ares - Messages: 1266
- Age: 42
- Inscription: 15 Juil 2009 09:00
- Localisation: herbignac
- Sexe:
Point(s) : 6890- Donner
- Nombre de réponses utiles: 66
Re: Vista au ralenti
de mercureendirect » 06 Aoû 2011 00:44
Bonsoir
J'ai effectué l'opération demandée. Ca a du planter entretemps (style "écran bleu") alors j'ai relancé en mode sans échec
er j'ai obtenu ce qui suit. J'ai enregistré dans WordPad sans corriger quoi que ce soit, je voulais le poster avant de savoir quoi faire.
Bon week-end
PS : Je fais ça seul, je ne me fais pas aider alors désolé par avance si je "rame" un peu
/////////////////////////////////////////////////////////////////////
Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org
Version de la base de données: 7384
Windows 6.0.6002 Service Pack 2 (Safe Mode)
Internet Explorer 9.0.8112.16421
05/08/2011 23:55:43
mbam-log-2011-08-05 (23-55-21).txt
Type d'examen: Examen complet (C:\|)
Elément(s) analysé(s): 326036
Temps écoulé: 1 heure(s), 14 minute(s), 30 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 15
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 2
Fichier(s) infecté(s): 17
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\CLSID\{293A63F7-C3B6-423a-9845-901AC0A7EE6E} (Trojan.Eorezo) -> No action taken.
HKEY_CLASSES_ROOT\TypeLib\{0BF73E27-2734-4F7B-925A-4BBB1457F5FA} (Trojan.Eorezo) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{E2ED56B6-35FC-4484-9530-EC87FB458E78} (Trojan.Eorezo) -> No action taken.
HKEY_CLASSES_ROOT\PCTutoBHO.PCTBHO.1 (Trojan.Eorezo) -> No action taken.
HKEY_CLASSES_ROOT\PCTutoBHO.PCTBHO (Trojan.Eorezo) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{293A63F7-C3B6-423A-9845-901AC0A7EE6E} (Trojan.Eorezo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{01677B4B-0610-4814-94A0-5F570DD7A88F} (Trojan.SearchRedir.G) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{01677B4B-0610-4814-94A0-5F570DD7A88F} (Trojan.SearchRedir.G) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7} (Adware.Softomate) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1D4DB7D2-6EC9-47a3-BD87-1E41684E07BB} (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PcTuto_is1 (Trojan.Eorezo) -> No action taken.
HKEY_CLASSES_ROOT\.fsharproj (Trojan.BHO) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\fcn (Rogue.Residue) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> No action taken.
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\pctuto (PUP.Tuto4PC) -> Value: pctuto -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\autoupdater (PUP.Tuto4PC) -> Value: autoupdater -> No action taken.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
c:\program files\agence-exclusive (Trojan.Eorezo) -> No action taken.
c:\Users\Gérard\AppData\Roaming\agence-exclusive\agence-exclusive (PUP.Tuto4PC) -> No action taken.
Fichier(s) infecté(s):
c:\program files\agence-exclusive\pctuto.exe (PUP.Tuto4PC) -> No action taken.
c:\Users\Gérard\AppData\Roaming\agence-exclusive\agence-exclusive\autoupdater.exe (PUP.Tuto4PC) -> No action taken.
c:\program files\agence-exclusive\pctutobho.dll (Trojan.Eorezo) -> No action taken.
c:\program files\uninstall fun web products.dll (Adware.MyWebSearch) -> No action taken.
c:\Users\Gérard\AppData\Roaming\agence-exclusive\agence-exclusive\updatepctuto.exe (PUP.Tuto4PC) -> No action taken.
c:\Users\Gérard\Desktop\destructor.exe (Joke.Stressreducer) -> No action taken.
c:\Users\Gérard\Desktop\pctuto_01net_vlc.exe (Trojan.Eorezo) -> No action taken.
c:\Users\Gérard\downloads\pdfconvertersetup.exe (Adware.Agent) -> No action taken.
c:\Users\Gérard\downloads\plugin_vlc.exe (Trojan.Dropper) -> No action taken.
c:\Users\Gérard\downloads\popularscreensavers.exe (Adware.FunWeb) -> No action taken.
c:\program files\agence-exclusive\confmedia.cyp (Trojan.Eorezo) -> No action taken.
c:\program files\agence-exclusive\unins000.dat (Trojan.Eorezo) -> No action taken.
c:\program files\agence-exclusive\unins000.exe (Trojan.Eorezo) -> No action taken.
c:\Windows\gnuhashes.ini (Malware.Trace) -> No action taken.
c:\Users\Gérard\AppData\Roaming\agence-exclusive\agence-exclusive\user_config.cyp (PUP.Tuto4PC) -> No action taken.
c:\Users\Gérard\AppData\Roaming\agence-exclusive\agence-exclusive\shared.cyp (PUP.Tuto4PC) -> No action taken.
c:\Users\Gérard\AppData\Roaming\agence-exclusive\agence-exclusive\user_profil.cyp (PUP.Tuto4PC) -> No action taken.
J'ai effectué l'opération demandée. Ca a du planter entretemps (style "écran bleu") alors j'ai relancé en mode sans échec
er j'ai obtenu ce qui suit. J'ai enregistré dans WordPad sans corriger quoi que ce soit, je voulais le poster avant de savoir quoi faire.
Bon week-end
PS : Je fais ça seul, je ne me fais pas aider alors désolé par avance si je "rame" un peu
/////////////////////////////////////////////////////////////////////
Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org
Version de la base de données: 7384
Windows 6.0.6002 Service Pack 2 (Safe Mode)
Internet Explorer 9.0.8112.16421
05/08/2011 23:55:43
mbam-log-2011-08-05 (23-55-21).txt
Type d'examen: Examen complet (C:\|)
Elément(s) analysé(s): 326036
Temps écoulé: 1 heure(s), 14 minute(s), 30 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 15
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 2
Fichier(s) infecté(s): 17
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\CLSID\{293A63F7-C3B6-423a-9845-901AC0A7EE6E} (Trojan.Eorezo) -> No action taken.
HKEY_CLASSES_ROOT\TypeLib\{0BF73E27-2734-4F7B-925A-4BBB1457F5FA} (Trojan.Eorezo) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{E2ED56B6-35FC-4484-9530-EC87FB458E78} (Trojan.Eorezo) -> No action taken.
HKEY_CLASSES_ROOT\PCTutoBHO.PCTBHO.1 (Trojan.Eorezo) -> No action taken.
HKEY_CLASSES_ROOT\PCTutoBHO.PCTBHO (Trojan.Eorezo) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{293A63F7-C3B6-423A-9845-901AC0A7EE6E} (Trojan.Eorezo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{01677B4B-0610-4814-94A0-5F570DD7A88F} (Trojan.SearchRedir.G) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{01677B4B-0610-4814-94A0-5F570DD7A88F} (Trojan.SearchRedir.G) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7} (Adware.Softomate) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1D4DB7D2-6EC9-47a3-BD87-1E41684E07BB} (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PcTuto_is1 (Trojan.Eorezo) -> No action taken.
HKEY_CLASSES_ROOT\.fsharproj (Trojan.BHO) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\fcn (Rogue.Residue) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (Adware.MyWebSearch) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> No action taken.
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\pctuto (PUP.Tuto4PC) -> Value: pctuto -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\autoupdater (PUP.Tuto4PC) -> Value: autoupdater -> No action taken.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
c:\program files\agence-exclusive (Trojan.Eorezo) -> No action taken.
c:\Users\Gérard\AppData\Roaming\agence-exclusive\agence-exclusive (PUP.Tuto4PC) -> No action taken.
Fichier(s) infecté(s):
c:\program files\agence-exclusive\pctuto.exe (PUP.Tuto4PC) -> No action taken.
c:\Users\Gérard\AppData\Roaming\agence-exclusive\agence-exclusive\autoupdater.exe (PUP.Tuto4PC) -> No action taken.
c:\program files\agence-exclusive\pctutobho.dll (Trojan.Eorezo) -> No action taken.
c:\program files\uninstall fun web products.dll (Adware.MyWebSearch) -> No action taken.
c:\Users\Gérard\AppData\Roaming\agence-exclusive\agence-exclusive\updatepctuto.exe (PUP.Tuto4PC) -> No action taken.
c:\Users\Gérard\Desktop\destructor.exe (Joke.Stressreducer) -> No action taken.
c:\Users\Gérard\Desktop\pctuto_01net_vlc.exe (Trojan.Eorezo) -> No action taken.
c:\Users\Gérard\downloads\pdfconvertersetup.exe (Adware.Agent) -> No action taken.
c:\Users\Gérard\downloads\plugin_vlc.exe (Trojan.Dropper) -> No action taken.
c:\Users\Gérard\downloads\popularscreensavers.exe (Adware.FunWeb) -> No action taken.
c:\program files\agence-exclusive\confmedia.cyp (Trojan.Eorezo) -> No action taken.
c:\program files\agence-exclusive\unins000.dat (Trojan.Eorezo) -> No action taken.
c:\program files\agence-exclusive\unins000.exe (Trojan.Eorezo) -> No action taken.
c:\Windows\gnuhashes.ini (Malware.Trace) -> No action taken.
c:\Users\Gérard\AppData\Roaming\agence-exclusive\agence-exclusive\user_config.cyp (PUP.Tuto4PC) -> No action taken.
c:\Users\Gérard\AppData\Roaming\agence-exclusive\agence-exclusive\shared.cyp (PUP.Tuto4PC) -> No action taken.
c:\Users\Gérard\AppData\Roaming\agence-exclusive\agence-exclusive\user_profil.cyp (PUP.Tuto4PC) -> No action taken.
-
mercureendirect - Progression vers le rang suivant:
- Messages: 6
- Age: 53
- Inscription: 03 Aoû 2011 10:05
- Localisation: france
- Sexe:
Point(s) : 45- Donner
Re: Vista au ralenti
de shion-ares » 06 Aoû 2011 09:21
Bonjour
ok pas de souci mais tu n'a pas suivi ce qui était marquer sur MBAM
ok pas de souci mais tu n'a pas suivi ce qui était marquer sur MBAM
- Télécharge Malwarebytes
- Tu auras un tutoriel à ta disposition pour l'installer et l'utiliser correctement.
- Fais la mise à jour du logiciel (elle se fait normalement à l'installation)
- Lance une analyse complète en cliquant sur "Exécuter un examen complet"
- Sélectionne les disques que tu veux analyser et clique sur "Lancer l'examen"
- L'analyse peut durer un bon moment.....
- Une fois l'analyse terminée, clique sur "OK" puis sur "Afficher les résultats"
- Vérifie que tout est bien coché et clique sur "Supprimer la sélection" => et ensuite sur "OK"
- Un rapport va s'ouvrir dans le bloc note... Fais un copié/collé du rapport dans ta prochaine réponse sur le forum
-
shion-ares - Messages: 1266
- Age: 42
- Inscription: 15 Juil 2009 09:00
- Localisation: herbignac
- Sexe:
Point(s) : 6890- Donner
- Nombre de réponses utiles: 66
Re: Vista au ralenti
de mercureendirect » 06 Aoû 2011 16:21
Bonjour
voilà, j'ai fait le nécessaire mais en mode sans échec
Je voudrais bien trouver le rapport d'analyse, mais je ne sais pas où le trouver car la boîte de dialogue s'est fermée avant que j'aie pu prendre note
merci
voilà, j'ai fait le nécessaire mais en mode sans échec
Je voudrais bien trouver le rapport d'analyse, mais je ne sais pas où le trouver car la boîte de dialogue s'est fermée avant que j'aie pu prendre note
merci
-
mercureendirect - Progression vers le rang suivant:
- Messages: 6
- Age: 53
- Inscription: 03 Aoû 2011 10:05
- Localisation: france
- Sexe:
Point(s) : 45- Donner
Re: Vista au ralenti
de shion-ares » 08 Aoû 2011 09:20
Bonjour
Désoler du retard
Le rapport tu doit le trouver dans Rapports/logs quand tu ouvre MBAM
Ensuite à suivre
Désoler du retard
Le rapport tu doit le trouver dans Rapports/logs quand tu ouvre MBAM
Ensuite à suivre
- Télécharge OTL sur ton Bureau.
- Faite un double clic sur l'icône pour le lancer. Vérifie que toutes les autres fenêtres sont fermées afin qu'il s'exécute sans interruption.
- Quand la fenêtre apparaît, sous Rapport en haut, coche Rapport Complet.
- Sous Registre: standard coche Tous.
- Clique sur le bouton Analyse. Ne modifie aucun paramètre. L'analyse ne va pas durer longtemps.
- Quand l'analyse est terminée, deux fenêtres du Bloc-notes vont s'ouvrir. OTL.Txt et Extras.Txt. Ces fichiers sont sauvegardés au même endroit que OTL.
- Copie (Edition->Sélectionner tout, Edition->Copier) le contenu de ces fichiers, l'un après l'autre, et envoie-les dans ta prochaine réponse.
-
shion-ares - Messages: 1266
- Age: 42
- Inscription: 15 Juil 2009 09:00
- Localisation: herbignac
- Sexe:
Point(s) : 6890- Donner
- Nombre de réponses utiles: 66
Re: Vista au ralenti
de mercureendirect » 09 Aoû 2011 15:25
Bonjour
voilà les résultats attendus
c'est moi qui suis désolé pour le retard
encore merci et bonne après-midi
----------------------------------------------------------------------------------------------------------------------------------------
OTL logfile created on: 09/08/2011 15:15:36 - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Users\Gérard\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy
2,00 Gb Total Physical Memory | 0,77 Gb Available Physical Memory | 38,55% Memory free
4,23 Gb Paging File | 1,99 Gb Available in Paging File | 47,14% Paging File free
Paging file location(s): ?:\pagefile.sys
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 445,76 Gb Total Space | 82,70 Gb Free Space | 18,55% Space Free | Partition Type: NTFS
Drive D: | 19,99 Gb Total Space | 12,74 Gb Free Space | 63,72% Space Free | Partition Type: FAT32
Drive F: | 1396,92 Gb Total Space | 1162,74 Gb Free Space | 83,24% Space Free | Partition Type: FAT32
Computer Name: PC-DE-GÉRARD | User Name: Gérard | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011/08/09 10:27:40 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Gérard\Desktop\OTL.exe
PRC - [2011/07/04 13:43:54 | 003,493,720 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2011/06/16 06:38:32 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011/05/05 15:34:14 | 000,861,696 | ---- | M] (Orange) -- C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe
PRC - [2011/04/16 12:18:52 | 000,647,168 | ---- | M] (IDEVFH) -- C:\Users\Gérard\AppData\Roaming\Mozilla\Firefox\Profiles\xtlol3hj.default\extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B}\components\afom.exe
PRC - [2010/04/07 15:00:04 | 005,758,976 | ---- | M] (http://www.emule-project.net) -- C:\Program Files\eMule\emule.exe
PRC - [2009/04/10 23:27:38 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2007/01/23 19:24:00 | 000,090,112 | ---- | M] (France Telecom SA) -- C:\Program Files\Orange HSS\systray\systrayapp.exe
PRC - [2007/01/23 19:19:10 | 000,462,848 | ---- | M] (France Telecom SA) -- C:\Program Files\Orange HSS\Launcher\Launcher.exe
PRC - [2007/01/23 19:12:36 | 000,827,392 | ---- | M] () -- C:\Program Files\Orange HSS\Deskboard\deskboard.exe
PRC - [2007/01/23 18:58:58 | 000,622,592 | ---- | M] (France Telecom SA) -- C:\Program Files\Orange HSS\connectivity\connectivitymanager.exe
PRC - [2007/01/23 18:58:02 | 000,028,672 | ---- | M] (France Telecom SA) -- C:\Program Files\Orange HSS\connectivity\CoreCom\OraConfigRecover.exe
PRC - [2007/01/23 18:57:54 | 000,323,584 | ---- | M] (France Telecom SA) -- C:\Program Files\Orange HSS\connectivity\CoreCom\CoreCom.exe
PRC - [2007/01/23 18:55:00 | 000,065,536 | ---- | M] (France Telecom SA) -- C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTCOMModule\1\FTCOMModule.exe
PRC - [2007/01/23 18:51:10 | 000,090,112 | ---- | M] (France Telecom SA) -- C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\2\AlertModule.exe
PRC - [2007/01/09 12:49:24 | 001,214,032 | ---- | M] () -- C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
========== Modules (SafeList) ==========
MOD - [2011/08/09 10:27:40 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Gérard\Desktop\OTL.exe
MOD - [2011/07/04 13:43:51 | 000,199,792 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\snxhk.dll
MOD - [2010/08/31 17:43:52 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
MOD - [2007/01/23 19:11:52 | 000,006,144 | ---- | M] (France Telecom SA) -- C:\Program Files\Orange HSS\Launcher\Inactivity.Dll
========== Win32 Services (SafeList) ==========
SRV - File not found [On_Demand | Stopped] -- -- (nosGetPlusHelper) getPlus(R)
SRV - File not found [Auto | Stopped] -- -- (AlertService) Intel(R)
SRV - [2011/07/06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011/07/04 13:43:51 | 000,042,184 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011/06/06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/04/20 16:36:02 | 001,055,872 | ---- | M] (France Telecom SA) [Auto | Stopped] -- C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe -- (Orange update Core Service)
SRV - [2010/05/07 18:47:32 | 000,162,648 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
SRV - [2010/04/21 19:46:17 | 000,373,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\inetsrv\iisw3adm.dll -- (WAS)
SRV - [2010/04/21 19:46:17 | 000,373,760 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\inetsrv\iisw3adm.dll -- (W3SVC)
SRV - [2009/04/10 23:28:18 | 000,052,224 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\inetsrv\apphostsvc.dll -- (AppHostSvc)
SRV - [2008/01/19 09:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV - [2007/10/15 21:58:02 | 000,290,909 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\HomeCinema\TV Enhance\Kernel\TV\TVECapSvc.exe -- (TVECapSvc) TVEnhance Background Capture Service (TBCS)
SRV - [2007/10/15 21:58:02 | 000,114,779 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\HomeCinema\TV Enhance\Kernel\TV\TVESched.exe -- (TVESched) TVEnhance Task Scheduler (TTS))
SRV - [2007/01/23 19:54:42 | 000,057,344 | ---- | M] (France Telecom SA) [Auto | Running] -- C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe -- (FTRTSVC)
SRV - [2001/11/12 13:31:48 | 000,020,480 | ---- | M] (X10) [Auto | Running] -- C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe -- (x10nets)
========== Driver Services (SafeList) ==========
DRV - [2011/07/06 19:52:42 | 000,041,272 | ---- | M] (Malwarebytes Corporation) [Kernel | Disabled | Running] -- C:\Windows\System32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2011/07/06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011/07/04 13:36:43 | 000,441,176 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011/07/04 13:36:32 | 000,309,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011/07/04 13:35:23 | 000,043,608 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011/07/04 13:32:32 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011/07/04 13:32:20 | 000,054,104 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2011/07/04 13:32:12 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010/07/27 08:14:58 | 006,842,464 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lvuvc.sys -- (LVUVC) Logitech HD Webcam C270(UVC)
DRV - [2010/07/27 08:12:50 | 000,282,336 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lvrs.sys -- (LVRS)
DRV - [2010/07/27 08:12:26 | 000,114,784 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lvpopflt.sys -- (lvpopflt)
DRV - [2010/05/20 15:27:24 | 000,030,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nx6000.sys -- (MSHUSBVideo)
DRV - [2010/05/07 18:43:30 | 000,025,824 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
DRV - [2010/04/03 22:55:32 | 011,573,800 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2009/11/19 14:32:02 | 000,081,920 | ---- | M] (Prolific Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ser2pl.sys -- (Ser2pl)
DRV - [2009/03/30 14:23:22 | 000,005,632 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\IntelDH.sys -- (IntelDH)
DRV - [2009/02/25 11:34:18 | 000,013,824 | R--- | M] (Windows (R) Codename Longhorn DDK provider) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\QsFsFltr.sys -- (QsFsFltr)
DRV - [2009/02/17 12:19:44 | 000,057,672 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ftdibus.sys -- (FTDIBUS)
DRV - [2008/12/10 17:56:26 | 000,017,792 | ---- | M] (Avnex) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vcsvad.sys -- (VCSVADHWSer) Avnex Virtual Audio Device (WDM)
DRV - [2008/01/19 07:55:32 | 000,006,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\loop.sys -- (msloop)
DRV - [2007/10/11 12:21:34 | 000,041,456 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Running] -- C:\Program Files\HomeCinema\PlayMovie\000.fcl -- ({49DE1C67-83F8-4102-99E0-C16DCC7EEC796})
DRV - [2007/10/09 16:14:56 | 000,041,456 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Running] -- C:\Program Files\HomeCinema\PowerDVD\000.fcl -- ({95808DC4-FA4A-4C74-92FE-5B863F82066B})
DRV - [2007/09/21 10:38:22 | 000,554,496 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netr28u.sys -- (netr28u)
DRV - [2007/08/22 11:01:58 | 001,242,976 | ---- | M] (NXP Semiconductors Germany GmbH) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\3xHybrid.sys -- (3xHybrid)
DRV - [2007/06/19 11:37:58 | 000,229,248 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\e1e6032.sys -- (e1express) Intel(R)
DRV - [2007/05/11 16:36:43 | 000,299,904 | ---- | M] (Marvell Semiconductor, Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\MRVW225.sys -- (MRVW225)
DRV - [2007/04/09 11:38:06 | 012,039,552 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\snp2sxp.sys -- (SNP2STD) USB2.0 PC Camera (SNP2STD)
DRV - [2007/01/04 13:48:04 | 000,104,344 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\e4usbaw.sys -- (e4usbaw)
DRV - [2007/01/04 13:47:48 | 000,069,656 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\e4ldr.sys -- (E4LOADER) General Purpose USB Driver (e4ldr.sys)
DRV - [2006/11/30 15:18:18 | 000,027,416 | ---- | M] (X10 Wireless Technology, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\x10ufx2.sys -- (XUIF)
DRV - [2006/11/28 21:46:22 | 000,028,224 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PCAMp50.sys -- (PCAMp50)
DRV - [2006/11/28 21:46:20 | 000,027,072 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\PCASp50.sys -- (PCASp50)
DRV - [2006/11/17 10:31:04 | 000,013,976 | ---- | M] (X10 Wireless Technology, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\x10hid.sys -- (X10Hid)
DRV - [2006/11/02 09:36:43 | 002,028,032 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
DRV - [2005/02/23 14:58:56 | 000,011,776 | ---- | M] (Arcsoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\afc.sys -- (Afc)
DRV - [2002/07/17 16:20:32 | 000,084,832 | ---- | M] (Adaptec) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ASPI32.SYS -- (ASPI)
DRV - [2001/12/18 14:45:04 | 000,003,279 | ---- | M] (VIA Technologies. Inc.) [Kernel | System | Running] -- C:\Windows\System32\Drivers\VIAPFD.SYS -- (VIAPFD)
========== Standard Registry (All) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.foozir.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
IE - HKLM\..\URLSearchHook: {1d1b60fd-b21f-4b9a-8a5f-64e8544828d7} - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {48405d3d-2674-4cd8-b1ef-9a719443bd3f} - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - Reg Error: Key error. File not found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 25 B0 00 00 92 08 3C 4A 8A 4B 9A ED DA E1 F9 8C [binary data]
IE - HKU\S-1-5-19\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 25 B0 00 00 92 08 3C 4A 8A 4B 9A ED DA E1 F9 8C [binary data]
IE - HKU\S-1-5-20\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com/?fr=fp-yie9
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://r.orange.fr/r/Ohome_portail?ref=O_OI_defaultPage
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 32 62 03 A0 43 C0 C9 01 [binary data]
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 25 B0 00 00 92 08 3C 4A 8A 4B 9A ED DA E1 F9 8C [binary data]
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange HSS\SearchURLHook\SearchPageURL.dll ()
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.update: false
FF - prefs.js..browser.startup.homepage: "http://www.google.fr"
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.1.20091029021655
FF - prefs.js..extensions.enabledItems: antidote7_win_firefox_103@druide.com:7.0.1001251956
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {35379F86-8CCB-4724-AE33-4278DE266C70}:1.0.5
FF - prefs.js..extensions.enabledItems: {28292ff6-3f0b-492e-aaca-e066d2df3194}:1.0
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.3
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nosltd.com/getPlus+(R),version=1.6.2.91: C:\Program Files\NOS\bin\np_gp.dll (NOS Microsystems Ltd.)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.647: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.647: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.652: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.652: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.647: c:\program files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2011/07/06 16:27:21 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011/08/06 21:47:14 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/06/24 11:19:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/06/24 11:33:06 | 000,000,000 | ---D | M]
[2011/08/06 16:00:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Gérard\AppData\Roaming\mozilla\Extensions
[2011/07/31 01:32:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\u4wyiv6k.default\extensions
[2010/06/02 14:17:54 | 000,000,000 | ---D | M] (XUL Cache) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\u4wyiv6k.default\extensions\{28292ff6-3f0b-492e-aaca-e066d2df3194}
[2010/02/19 02:13:15 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\u4wyiv6k.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2010/03/25 14:07:58 | 000,000,000 | ---D | M] (Installation des boutons d'Antidote) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\u4wyiv6k.default\extensions\antidote7_win_firefox_103@druide.com
[2011/07/31 01:32:51 | 000,000,000 | ---D | M] (barre d'outils Orange) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\u4wyiv6k.default\extensions\toolbar@Orange.fr
[2011/08/01 13:28:53 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\xtlol3hj.default\extensions
[2011/08/01 13:28:53 | 000,000,000 | ---D | M] (LightShot (screenshot tool)) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\xtlol3hj.default\extensions\{394DCBA4-1F92-4f8e-8EC9-8D2CB90CB69B}
[2011/06/23 12:59:40 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\xtlol3hj.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2011/04/02 12:31:37 | 000,000,000 | ---D | M] (Modify Headers) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\xtlol3hj.default\extensions\{b749fc7c-e949-447f-926c-3f4eed6accfe}
[2011/06/15 23:57:38 | 000,000,000 | ---D | M] (Memory Fox) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\xtlol3hj.default\extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B}
[2011/06/23 12:57:59 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\xtlol3hj.default\extensions\nostmp
[2011/06/15 23:57:38 | 000,000,000 | ---D | M] (RAMBack) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\xtlol3hj.default\extensions\ramback@pavlov.net
[2011/07/31 01:32:52 | 000,000,000 | ---D | M] (barre d'outils Orange) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\xtlol3hj.default\extensions\toolbar@Orange.fr
[2011/06/23 12:57:18 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions
[2011/06/23 12:57:18 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2011/06/10 19:08:05 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\ORBITDOWNLOADER\ADDONS\ONECLICKYOUTUBEDOWNLOADER
File not found (No name found) -- C:\USERS\GéRARD\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\U4WYIV6K.DEFAULT\EXTENSIONS\{28292FF6-3F0B-492E-AACA-E066D2DF3194}
File not found (No name found) -- C:\USERS\GéRARD\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\U4WYIV6K.DEFAULT\EXTENSIONS\{635ABD67-4FE9-1B23-4F01-E679FA7484C1}
File not found (No name found) -- C:\USERS\GéRARD\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\U4WYIV6K.DEFAULT\EXTENSIONS\ANTIDOTE7_WIN_FIREFOX_103@DRUIDE.COM
[2011/06/16 06:38:33 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2007/04/10 18:21:08 | 000,163,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\np-mswmp.dll
[2011/05/04 04:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2009/06/25 14:20:28 | 001,446,264 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\npLegitCheckPlugin.dll
[2011/06/06 12:55:30 | 000,183,696 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll
[2011/06/24 11:19:33 | 000,150,712 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nppl3260.dll
[2010/12/15 20:52:06 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin.dll
[2010/12/15 20:52:06 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll
[2010/12/15 20:52:06 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll
[2010/12/15 20:52:06 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll
[2010/12/15 20:52:06 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll
[2010/12/15 20:52:06 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll
[2010/12/15 20:52:06 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll
[2011/06/24 11:29:48 | 000,011,776 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprjplug.dll
[2011/06/24 11:17:02 | 000,105,472 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprpjplug.dll
[2010/09/01 15:52:56 | 000,035,136 | ---- | M] (NOS Microsystems Ltd.) -- C:\Program Files\mozilla firefox\plugins\np_gp.dll
[2010/01/01 10:00:00 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2011/04/06 23:36:56 | 000,002,423 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2010/01/01 10:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2010/01/01 10:00:00 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2010/01/01 10:00:00 | 000,001,154 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2010/01/01 10:00:00 | 000,002,364 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2010/01/01 10:00:00 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2010/01/01 10:00:00 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml
O1 HOSTS File: ([2011/07/31 13:42:47 | 000,435,545 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 14990 more lines...
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {1d1b60fd-b21f-4b9a-8a5f-64e8544828d7} - No CLSID value found.
O2 - BHO: (ToolbarOrange.InitToolbarBHO) - {1d970ed5-3eda-438d-bffd-715931e2775b} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (no name) - {48405d3d-2674-4cd8-b1ef-9a719443bd3f} - No CLSID value found.
O2 - BHO: (no name) - {4daac69c-cba7-45e2-9bc8-1044483d3352} - No CLSID value found.
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (no name) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - No CLSID value found.
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - No CLSID value found.
O2 - BHO: (no name) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - No CLSID value found.
O2 - BHO: (IeMonitorBho Class) - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll (Megaupload Limited)
O2 - BHO: (no name) - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - No CLSID value found.
O2 - BHO: (no name) - {cd36797a-70f3-4acd-8825-623d3b896881} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (no name) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - No CLSID value found.
O2 - BHO: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - No CLSID value found.
O2 - BHO: (no name) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {1d1b60fd-b21f-4b9a-8a5f-64e8544828d7} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {48405d3d-2674-4cd8-b1ef-9a719443bd3f} - No CLSID value found.
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - {965B54B0-71E0-4611-8DE7-F73FA0B20E26} - No CLSID value found.
O3 - HKLM\..\Toolbar: (eBuyClub) - {B00A2A69-AEB9-4466-A3D3-D965CCF868B6} - C:\Program Files\ShoppingBarreEbuyClub\tbcore3.dll ()
O3 - HKLM\..\Toolbar: (no name) - {C17590D2-ECB4-4b15-8820-F58798DCC118} - No CLSID value found.
O3 - HKLM\..\Toolbar: (barre d'outils Orange) - {c9a6357b-25cc-4bcf-96c1-78736985d412} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..\Toolbar\WebBrowser: (no name) - {1D1B60FD-B21F-4B9A-8A5F-64E8544828D7} - No CLSID value found.
O3 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..\Toolbar\WebBrowser: (no name) - {48405D3D-2674-4CD8-B1EF-9A719443BD3F} - No CLSID value found.
O3 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..\Toolbar\WebBrowser: (no name) - {965B54B0-71E0-4611-8DE7-F73FA0B20E26} - No CLSID value found.
O3 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..\Toolbar\WebBrowser: (eBuyClub) - {B00A2A69-AEB9-4466-A3D3-D965CCF868B6} - C:\Program Files\ShoppingBarreEbuyClub\tbcore3.dll ()
O4 - HKLM..\Run: [avast5] File not found
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000..\Run: [ehTray.exe] C:\Windows\ehome\ehtray.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000..\Run: [orahssStartup] C:\Program Files\Orange HSS\Launcher\Launcher.exe (France Telecom SA)
O4 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000..\Run: [orangeinside] C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe (Orange)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: BindDirectlyToPropertySetStorage = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95 00 00 00 [binary data]
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: ajouter cette page à vos favoris Orange - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\addfavorites_html\addfavorites.html ()
O8 - Extra context menu item: envoyer le texte sélectionné par sms - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\sendsmsselectedtext_html\sendsmsselectedtext.html ()
O8 - Extra context menu item: envoyer par sms - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\sendsms_html\sendsms.html ()
O8 - Extra context menu item: envoyer un mail - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\sendmail_html\sendmail.html ()
O8 - Extra context menu item: orange.fr - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\orange_html\orange.html ()
O8 - Extra context menu item: rechercher le texte sélectionné - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\selectedsearch_html\selectedsearch.html ()
O8 - Extra context menu item: traduire la page - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\translate_html\translate.html ()
O8 - Extra context menu item: traduire le texte sélectionné - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\translateSelectedText_html\translateSelectedText.html ()
O9 - Extra Button: eBuyClub - {B00A2A69-AEB9-4466-A3D3-D965CCF868B6} - C:\Program Files\ShoppingBarreEbuyClub\tbcore3.dll ()
O9 - Extra 'Tools' menuitem : eBuyClub - {B00A2A69-AEB9-4466-A3D3-D965CCF868B6} - C:\Program Files\ShoppingBarreEbuyClub\tbcore3.dll ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\System32\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\System32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000025 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000027 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000028 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000029 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000030 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000031 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000032 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000033 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000034 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000035 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000036 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000037 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000038 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000039 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000040 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000041 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000042 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..Trusted Domains: orange.fr ([logicielsgratuits] http in Trusted sites)
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/ ... ontrol.cab (Office Genuine Advantage Validation Tool)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_05)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\Windows\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\Windows\System32\sysdm.cpl (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\System32\webcheck.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Component Categories cache daemon - C:\Windows\System32\browseui.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\System32\credssp.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\System32\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\System32\tspkg.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/06/13 00:09:28 | 000,000,150 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2009/06/16 03:00:35 | 000,000,127 | ---- | M] () - C:\AUTOEXEC.SYD -- [ NTFS ]
O33 - MountPoints2\{7db4f44d-53d1-11df-af9c-000000000000}\Shell - "" = AutoRun
O33 - MountPoints2\{7db4f44d-53d1-11df-af9c-000000000000}\Shell\AutoRun\command - "" = P:\LaunchU3.exe -a
O33 - MountPoints2\E\Shell - "" = AutoRun
O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\setup.exe
O34 - HKLM BootExecute: (autocheck autochk /p \??\N:) - File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011/08/09 10:27:38 | 000,579,584 | ---- | C] (OldTimer Tools) -- C:\Users\Gérard\Desktop\OTL.exe
[2011/08/09 02:19:43 | 000,000,000 | ---D | C] -- C:\Users\Gérard\AppData\Roaming\Media Player Classic
[2011/08/07 00:04:59 | 000,000,000 | ---D | C] -- C:\ProgramData\eMule
[2011/08/06 23:58:19 | 000,000,000 | ---D | C] -- C:\Users\Gérard\AppData\Roaming\WinRAR
[2011/08/06 15:51:31 | 000,000,000 | ---D | C] -- C:\Users\Gérard\AppData\Roaming\Malwarebytes
[2011/08/05 15:16:02 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/08/05 15:16:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/08/05 15:16:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/08/05 15:15:20 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/08/05 15:15:20 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/08/05 12:42:49 | 000,000,000 | ---D | C] -- C:\Users\Gérard\AppData\Roaming\vlc
[2011/08/05 12:42:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\pctuto
[2011/08/05 12:30:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2011/08/05 12:30:07 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2011/08/04 06:08:39 | 000,000,000 | ---D | C] -- C:\Users\Gérard\Desktop\COVERS divers
[2011/08/03 23:29:34 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2011/08/03 19:02:51 | 000,000,000 | ---D | C] -- C:\ZHP
[2011/07/31 23:40:25 | 000,000,000 | ---D | C] -- C:\Users\Gérard\Desktop\1977- In The Grassland Away
[2011/07/31 01:44:42 | 002,043,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011/07/31 01:43:34 | 000,375,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2011/07/31 01:43:34 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2011/07/31 01:30:37 | 000,000,000 | ---D | C] -- C:\Users\Gérard\AppData\Roaming\Orange
[2011/07/12 11:20:54 | 000,083,816 | ---- | C] (Apple Inc.) -- C:\Windows\System32\dns-sd.exe
[2011/07/12 11:20:54 | 000,073,064 | ---- | C] (Apple Inc.) -- C:\Windows\System32\dnssd.dll
[2009/04/18 15:53:32 | 002,117,632 | ---- | C] (ToniArts) -- C:\Program Files\EasyClea.exe
[2009/03/31 11:47:48 | 000,151,552 | ---- | C] ( ) -- C:\Windows\System32\rsnp2std.dll
[2009/03/31 11:47:48 | 000,077,824 | ---- | C] ( ) -- C:\Windows\System32\csnp2std.dll
[4 C:\Users\Gérard\AppData\Local\*.tmp files -> C:\Users\Gérard\AppData\Local\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2050/01/01 00:00:00 | 000,111,616 | ---- | M] () -- C:\Users\Gérard\Desktop\La_formule_du_sexe.pps
[2011/08/09 15:19:08 | 000,004,960 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/08/09 15:19:08 | 000,004,960 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/08/09 15:16:04 | 000,001,056 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/08/09 10:48:16 | 000,181,442 | ---- | M] () -- C:\Users\Gérard\Desktop\home_flance3_fr.jpg
[2011/08/09 10:46:59 | 001,115,952 | ---- | M] () -- C:\Users\Gérard\Desktop\home_12longtooth.jpg
[2011/08/09 10:46:15 | 000,704,954 | ---- | M] () -- C:\Users\Gérard\Desktop\13_cliff.jpg
[2011/08/09 10:27:40 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Gérard\Desktop\OTL.exe
[2011/08/09 10:22:59 | 000,000,510 | ---- | M] () -- C:\Windows\WORDPAD.INI
[2011/08/09 10:04:37 | 000,056,320 | ---- | M] () -- C:\Users\Gérard\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/08/09 02:53:51 | 000,003,264 | ---- | M] () -- C:\Program Files\Options.ini
[2011/08/09 01:30:58 | 000,712,176 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2011/08/09 01:30:58 | 000,623,858 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/08/09 01:30:58 | 000,136,156 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2011/08/09 01:30:58 | 000,111,234 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/08/09 01:16:01 | 000,001,052 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/08/07 03:07:01 | 000,000,334 | ---- | M] () -- C:\Windows\tasks\File Helper.job
[2011/08/06 21:19:07 | 000,034,997 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2011/08/06 21:19:07 | 000,034,997 | ---- | M] () -- C:\ProgramData\nvModes.001
[2011/08/06 21:15:57 | 000,065,536 | ---- | M] () -- C:\Windows\System32\Ikeext.etl
[2011/08/06 21:15:36 | 000,000,314 | ---- | M] () -- C:\Windows\tasks\GlaryInitialize.job
[2011/08/06 21:14:50 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/08/06 21:14:39 | 000,082,944 | ---- | M] () -- C:\Windows\System32\umstartup.etl
[2011/08/06 20:02:43 | 000,043,008 | ---- | M] () -- C:\Windows\System32\umstartup000.etl
[2011/08/06 19:05:36 | 000,000,000 | ---- | M] () -- C:\Users\Gérard\AppData\Local\{1276E518-863E-49EB-A5F1-7161D4EDAFD8}
[2011/08/06 13:59:35 | 000,000,680 | ---- | M] () -- C:\Users\Gérard\AppData\Local\d3d9caps.dat
[2011/08/06 08:38:37 | 000,001,028 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3110841774-1849680747-3807454378-1000.job
[2011/08/05 15:16:03 | 000,000,906 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/08/05 12:28:42 | 021,073,936 | ---- | M] () -- C:\Users\Gérard\Desktop\vlc-1.1.11-win32.exe
[2011/08/04 00:23:49 | 000,000,675 | ---- | M] () -- C:\Windows\Clean! presets.set
[2011/08/03 11:04:43 | 000,000,863 | ---- | M] () -- C:\Users\Gérard\Desktop\Glary Utilities.lnk
[2011/08/03 06:14:21 | 000,001,971 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011/08/02 08:16:04 | 000,000,020 | ---- | M] () -- C:\Users\Public\Documents\ExitAP.ini
[2011/07/31 13:42:47 | 000,435,545 | R--- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2011/07/31 12:13:04 | 000,362,584 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/07/31 11:53:26 | 000,000,000 | ---- | M] () -- C:\Users\Gérard\AppData\Local\{DAC555B8-9BB1-4E0D-914E-6D7FFD0EE9B7}
[2011/07/12 11:20:54 | 000,083,816 | ---- | M] (Apple Inc.) -- C:\Windows\System32\dns-sd.exe
[2011/07/12 11:20:54 | 000,073,064 | ---- | M] (Apple Inc.) -- C:\Windows\System32\dnssd.dll
[4 C:\Users\Gérard\AppData\Local\*.tmp files -> C:\Users\Gérard\AppData\Local\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011/08/09 10:48:04 | 000,181,442 | ---- | C] () -- C:\Users\Gérard\Desktop\home_flance3_fr.jpg
[2011/08/09 10:46:58 | 001,115,952 | ---- | C] () -- C:\Users\Gérard\Desktop\home_12longtooth.jpg
[2011/08/09 10:46:14 | 000,704,954 | ---- | C] () -- C:\Users\Gérard\Desktop\13_cliff.jpg
[2011/08/06 19:05:11 | 000,000,000 | ---- | C] () -- C:\Users\Gérard\AppData\Local\{1276E518-863E-49EB-A5F1-7161D4EDAFD8}
[2011/08/05 15:16:03 | 000,000,906 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/08/05 12:24:18 | 021,073,936 | ---- | C] () -- C:\Users\Gérard\Desktop\vlc-1.1.11-win32.exe
[2011/08/04 00:23:49 | 000,000,675 | ---- | C] () -- C:\Windows\Clean! presets.set
[2011/07/31 14:29:37 | 000,000,680 | ---- | C] () -- C:\Users\Gérard\AppData\Local\d3d9caps.dat
[2011/07/31 11:52:45 | 000,000,000 | ---- | C] () -- C:\Users\Gérard\AppData\Local\{DAC555B8-9BB1-4E0D-914E-6D7FFD0EE9B7}
[2011/06/25 01:14:31 | 000,056,320 | ---- | C] () -- C:\Users\Gérard\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/06/22 21:13:19 | 000,126,976 | ---- | C] () -- C:\Windows\System32\coclassfast.dll
[2011/06/22 21:13:14 | 000,176,128 | ---- | C] () -- C:\Windows\autoclk.exe
[2011/06/22 20:57:28 | 000,000,109 | ---- | C] () -- C:\Windows\Kit.ini
[2011/05/24 23:54:03 | 000,396,800 | ---- | C] () -- C:\Windows\System32\PSDrvCheck.exe
[2011/05/24 23:48:28 | 000,019,968 | ---- | C] () -- C:\Windows\System32\Cpuinf32.dll
[2011/05/19 22:07:48 | 000,134,144 | ---- | C] () -- C:\Windows\System32\ifdreset.exe
[2011/05/11 12:08:31 | 000,000,152 | ---- | C] () -- C:\Windows\LITTRE.INI
[2011/05/11 12:08:02 | 000,029,696 | ---- | C] () -- C:\Windows\System32\CLRECH.DLL
[2011/05/11 12:08:01 | 000,000,150 | ---- | C] () -- C:\Windows\System32\IC32.INI
[2011/05/11 12:08:00 | 000,251,392 | ---- | C] () -- C:\Windows\System32\TX32.DLL
[2011/05/03 23:33:41 | 000,073,728 | ---- | C] () -- C:\Windows\Dit.exe
[2011/05/03 23:33:41 | 000,065,536 | ---- | C] () -- C:\Windows\Dit.DLL
[2011/05/03 23:33:41 | 000,000,208 | ---- | C] () -- C:\Windows\Dit.INI
[2011/05/03 23:33:39 | 000,065,536 | ---- | C] () -- C:\Windows\DitExp.exe
[2011/05/03 13:47:40 | 000,000,043 | ---- | C] () -- C:\Windows\Antidote.ini
[2011/04/30 02:17:14 | 000,000,077 | ---- | C] () -- C:\Windows\Antidote7.ini
[2011/04/28 18:59:52 | 000,188,416 | ---- | C] () -- C:\Windows\adiras.exe
[2011/04/28 13:48:33 | 000,000,168 | ---- | C] () -- C:\Windows\adidsl.ini
[2011/04/28 13:48:33 | 000,000,021 | ---- | C] () -- C:\Windows\Fast800.ini
[2011/04/28 13:42:55 | 000,247,296 | ---- | C] () -- C:\Windows\adirasx64.exe
[2011/04/28 13:42:55 | 000,127,456 | ---- | C] () -- C:\Windows\System32\IPDETECT.EXE
[2011/04/28 13:42:53 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9P2.BIN
[2011/04/28 13:42:53 | 000,024,576 | ---- | C] () -- C:\Windows\enddisk32.exe
[2011/04/28 13:42:52 | 000,152,220 | ---- | C] () -- C:\Windows\System32\drivers\L1E4I2.BIN
[2011/04/28 13:42:52 | 000,152,220 | ---- | C] () -- C:\Windows\System32\drivers\L1E4I1.BIN
[2011/04/28 13:42:52 | 000,152,220 | ---- | C] () -- C:\Windows\System32\drivers\L1E4I0.BIN
[2011/04/28 13:42:52 | 000,152,132 | ---- | C] () -- C:\Windows\System32\drivers\L1E4P2.BIN
[2011/04/28 13:42:52 | 000,152,132 | ---- | C] () -- C:\Windows\System32\drivers\L1E4P1.BIN
[2011/04/28 13:42:52 | 000,152,132 | ---- | C] () -- C:\Windows\System32\drivers\L1E4P0.BIN
[2011/04/28 13:42:52 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9P1.BIN
[2011/04/28 13:42:52 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9P0.BIN
[2011/04/28 13:42:52 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9I2.BIN
[2011/04/28 13:42:52 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9I1.BIN
[2011/04/28 13:42:52 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9I0.BIN
[2011/04/28 13:42:52 | 000,152,036 | ---- | C] () -- C:\Windows\System32\drivers\L1E4D2.BIN
[2011/04/28 13:42:52 | 000,152,034 | ---- | C] () -- C:\Windows\System32\drivers\L1E4D0.BIN
[2011/04/28 13:42:52 | 000,046,892 | ---- | C] () -- C:\Windows\System32\ADADIX16.DLL
[2011/04/28 13:42:51 | 000,152,034 | ---- | C] () -- C:\Windows\System32\drivers\L1E4D1.BIN
[2011/04/28 13:42:51 | 000,022,395 | ---- | C] () -- C:\Windows\System32\drivers\fpga.bin
[2011/04/06 23:37:11 | 000,098,304 | ---- | C] () -- C:\Windows\System32\redmonnt.dll
[2011/03/13 21:32:28 | 000,704,000 | ---- | C] () -- C:\Windows\is-2B9F6.exe
[2011/01/17 23:41:16 | 000,704,000 | ---- | C] () -- C:\Windows\is-LIIEQ.exe
[2010/10/18 15:09:10 | 000,673,280 | ---- | C] () -- C:\Windows\is-L9QJT.exe
[2010/10/10 22:03:23 | 000,000,216 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
[2010/09/29 01:05:45 | 000,000,582 | ---- | C] () -- C:\Program Files\BlackLst.ecb
[2010/09/27 21:43:56 | 000,003,264 | ---- | C] () -- C:\Program Files\Options.ini
[2010/09/27 21:34:19 | 000,000,000 | ---- | C] () -- C:\Windows\PhotoNow.INI
[2010/09/13 23:49:53 | 009,079,808 | ---- | C] () -- C:\Windows\System32\alltoall.exe
[2010/08/13 19:58:33 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2010/08/13 19:58:09 | 000,790,528 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2010/08/13 19:58:09 | 000,134,144 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2010/08/06 14:03:29 | 000,000,989 | ---- | C] () -- C:\Windows\adiras.ini
[2010/07/27 08:03:20 | 010,829,656 | ---- | C] () -- C:\Windows\System32\LogiDPP.dll
[2010/07/27 08:03:20 | 000,102,744 | ---- | C] () -- C:\Windows\System32\LogiDPPApp.exe
[2010/07/27 08:03:18 | 000,290,648 | ---- | C] () -- C:\Windows\System32\DevManagerCore.dll
[2010/07/27 07:56:04 | 000,090,411 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini
[2010/06/28 02:59:28 | 000,085,504 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2010/06/07 13:27:31 | 000,034,997 | ---- | C] () -- C:\ProgramData\nvModes.001
[2010/06/07 13:27:29 | 000,034,997 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2010/05/31 18:09:54 | 000,000,367 | ---- | C] () -- C:\ProgramData\875003888
[2010/05/31 18:09:53 | 000,000,817 | ---- | C] () -- C:\ProgramData\1685532576
[2010/05/31 18:08:37 | 000,000,113 | ---- | C] () -- C:\ProgramData\sl1439100258
[2010/05/31 18:08:22 | 000,203,776 | ---- | C] () -- C:\ProgramData\unrar.exe
[2010/05/27 16:31:49 | 000,015,360 | ---- | C] () -- C:\Windows\System32\GetInst32.dll
[2010/05/27 14:46:44 | 000,001,965 | ---- | C] () -- C:\Windows\if42le.ini
[2010/05/27 14:46:44 | 000,000,338 | ---- | C] () -- C:\Windows\Pexplore.ini
[2010/05/07 18:46:36 | 000,014,168 | ---- | C] () -- C:\Windows\System32\drivers\iKeyLFT2.dll
[2010/05/07 18:43:30 | 000,025,824 | ---- | C] () -- C:\Windows\System32\drivers\LVPr2Mon.sys
[2009/11/28 21:15:41 | 000,673,280 | ---- | C] () -- C:\Windows\is-2J92S.exe
[2009/10/28 23:25:21 | 000,000,050 | ---- | C] () -- C:\Windows\MegaManager.INI
[2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2009/06/22 12:16:42 | 000,000,510 | ---- | C] () -- C:\Windows\WORDPAD.INI
[2009/06/15 20:08:44 | 000,000,000 | ---- | C] () -- C:\Windows\System32\NTIBUN5.dll
[2009/06/10 14:45:50 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/06/10 14:45:05 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2009/05/31 02:21:38 | 000,005,699 | ---- | C] () -- C:\Windows\wininit.ini
[2009/04/22 23:29:01 | 000,165,376 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2009/04/04 22:07:42 | 000,000,233 | ---- | C] () -- C:\Windows\EXCEL4.INI
[2009/04/04 16:06:29 | 000,000,056 | ---- | C] () -- C:\Windows\System32\ezsidmv.dat
[2009/04/01 03:21:11 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2009/04/01 03:09:21 | 000,000,049 | ---- | C] () -- C:\Windows\cdplayer.ini
[2009/03/31 11:47:49 | 012,039,552 | ---- | C] () -- C:\Windows\System32\drivers\snp2sxp.sys
[2009/03/31 11:47:49 | 000,025,472 | ---- | C] () -- C:\Windows\System32\drivers\sncamd.sys
[2009/03/31 11:47:49 | 000,015,497 | ---- | C] () -- C:\Windows\snp2std.ini
[2009/03/30 18:47:24 | 000,036,864 | ---- | C] () -- C:\Windows\gotouninstall.exe
[2009/03/30 16:27:20 | 000,009,824 | ---- | C] () -- C:\Windows\System32\34CoInstaller.dll
[2009/03/30 15:28:18 | 000,000,382 | ---- | C] () -- C:\Windows\ODBC.INI
[2009/03/30 15:02:26 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2009/03/30 14:30:33 | 000,127,184 | ---- | C] () -- C:\Windows\Unwise.exe
[2006/12/12 04:43:45 | 000,000,000 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2006/11/02 17:48:33 | 000,712,176 | ---- | C] () -- C:\Windows\System32\perfh00C.dat
[2006/11/02 17:48:33 | 000,340,236 | ---- | C] () -- C:\Windows\System32\perfi00C.dat
[2006/11/02 17:48:33 | 000,136,156 | ---- | C] () -- C:\Windows\System32\perfc00C.dat
[2006/11/02 17:48:33 | 000,037,390 | ---- | C] () -- C:\Windows\System32\perfd00C.dat
[2006/11/02 14:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 14:47:37 | 000,362,584 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 12:33:01 | 000,623,858 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 12:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 12:33:01 | 000,111,234 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 12:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 12:25:44 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2006/11/02 12:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 10:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 10:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 09:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
========== Alternate Data Streams ==========
@Alternate Data Stream - 64 bytes -> C:\Users\Gérard\Desktop\Poulette et Laurence.avi:TOC.WMV
@Alternate Data Stream - 64 bytes -> C:\Users\Gérard\Desktop\foulard.flv:TOC.WMV
@Alternate Data Stream - 64 bytes -> C:\Users\Gérard\Desktop\file dans ta chambre.mp4:TOC.WMV
@Alternate Data Stream - 64 bytes -> C:\Users\Gérard\Desktop\Deep Purple - Live In Japan (1972, Japan).avi:TOC.WMV
< End of report >
-------------------------------------------------------------
OTL Extras logfile created on: 09/08/2011 15:15:37 - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Users\Gérard\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy
2,00 Gb Total Physical Memory | 0,77 Gb Available Physical Memory | 38,55% Memory free
4,23 Gb Paging File | 1,99 Gb Available in Paging File | 47,14% Paging File free
Paging file location(s): ?:\pagefile.sys
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 445,76 Gb Total Space | 82,70 Gb Free Space | 18,55% Space Free | Partition Type: NTFS
Drive D: | 19,99 Gb Total Space | 12,74 Gb Free Space | 63,72% Space Free | Partition Type: FAT32
Drive F: | 1396,92 Gb Total Space | 1162,74 Gb Free Space | 83,24% Space Free | Partition Type: FAT32
Computer Name: PC-DE-GÉRARD | User Name: Gérard | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
[HKEY_USERS\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Orange HSS\Launcher\Launcher.exe" -appid serviceweb -args %1 (France Telecom SA)
htmlfile [opennew] -- "C:\Program Files\Orange HSS\Launcher\Launcher.exe" -appid serviceweb -args %1 (France Telecom SA)
http [open] -- "C:\Program Files\Orange HSS\Launcher\Launcher.exe" -appid serviceweb -args %1 (France Telecom SA)
https [open] -- "C:\Program Files\Orange HSS\Launcher\Launcher.exe" -appid serviceweb -args %1 (France Telecom SA)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Parcourir avec XnView] -- "C:\Program Files\XnView\xnview.exe" "%1" (XnView, http://www.xnview.com)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"UacDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-3110841774-1849680747-3807454378-1000]
"EnableNotifications" = 0
"EnableNotificationsRef" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Users\Gérard\AppData\Roaming\svchost.exe" = C:\Users\Gérard\AppData\Roaming\svchost.exe:*:Enabled:svchost
"C:\Program Files\Orange HSS\Connectivity\ConnectivityManager.exe" = C:\Program Files\Orange HSS\Connectivity\ConnectivityManager.exe:*:enabled:CSS -- (France Telecom SA)
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{014AACA2-8D1B-4BE0-9BF5-5CFB1F179B61}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{0605E597-E665-4282-AE80-2BDFE5FCA4D9}" = lport=137 | protocol=17 | dir=in | app=system |
"{10024699-E5F4-44B5-AE1F-A8F708550B04}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{1469133D-2904-4245-8160-36B88397BD76}" = lport=1900 | protocol=17 | dir=in | name=intel(r) viiv(tm) media server upnp discovery |
"{40F3528A-AB4D-40C8-8879-CB2925D48408}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{44F74417-47F4-4537-A56D-02F3261E6474}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{4E38B074-E3E5-4D88-8014-8F84FFE2D193}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{5907BB72-B022-4A4F-938C-FA097879E3E3}" = rport=445 | protocol=6 | dir=out | app=system |
"{5D55FDE9-E3B9-40A8-AAE2-F43C99504232}" = lport=445 | protocol=6 | dir=in | app=system |
"{65D0B031-8B13-41EF-9CE0-328A4B5E8780}" = lport=138 | protocol=17 | dir=in | app=system |
"{9266D552-DEAA-4E21-BE90-DBD73106809D}" = lport=9442 | protocol=17 | dir=in | name=intel(r) viiv(tm) media server discovery |
"{A0129672-ABAC-4F54-B260-F72E37ACE41A}" = rport=138 | protocol=17 | dir=out | app=system |
"{A86F4F6E-CF77-4948-8FA3-CE44047DE28D}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{AEE76094-EC03-4158-BE41-EB3578490F87}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{B34173CB-4104-45E8-8269-B1F5DB75D5CA}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{C02D8037-A459-423B-9628-466146EB94DD}" = lport=139 | protocol=6 | dir=in | app=system |
"{D0488AB2-8461-49BC-AE8D-7259CA87B01B}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{E82E0A3E-51DB-4FFB-B746-B86B3369D56A}" = rport=139 | protocol=6 | dir=out | app=system |
"{ECF5FD67-1EA5-4E80-803E-3F5354A17AE3}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F8E96A09-07AB-4AFF-A269-B4B3BD740EEA}" = rport=137 | protocol=17 | dir=out | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{2B7FD11F-3EB6-4F0D-8AAE-4ED5A1F8FA9F}" = protocol=6 | dir=in | app=c:\program files\orange\orangeupdate\service\oucore.exe |
"{3DA86412-708E-4B1D-9122-ED73A671CBE9}" = protocol=17 | dir=in | app=c:\program files\orange\orangeupdate\service\oucore.exe |
"{41C41254-7DD8-4B21-9EC6-45234F684C41}" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"{4F36AD3D-FD12-4AA3-A30A-ECAA157EACBD}" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaws.exe |
"{61D93CD9-51A6-48FA-8335-76859C2097E7}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{693A2CAA-8EE3-4D60-B9EA-AE904FBBA5CF}" = protocol=17 | dir=in | app=c:\program files\gigatribe\gigatribe.exe |
"{6ADFE76A-F4F5-4402-A7B3-70084DD91E3A}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{868B98E7-8347-4346-97E1-491E3285833C}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{88DA6877-2624-4350-9EF4-7016BBA6AD1C}" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"{8A0274CA-6AA8-45DF-93B6-E03F0CF8DC77}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{96F2DBC7-93BD-47C4-BA19-19124A6CAC5A}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{BEBB6A04-3A27-44A9-863F-6D10DAC1DC0E}" = protocol=6 | dir=in | app=c:\program files\gigatribe\gigatribe.exe |
"{C4B89FAB-1BE1-4875-8B93-807C4BEC61B2}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{D65BF808-50C6-4E1F-9FF2-8BAECDD85AE3}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{F1A2D587-3E69-4051-93F3-2AF3C942E7ED}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{F3B92C0F-E313-43DA-9B4C-1A09A8220CAB}" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaws.exe |
"TCP Query User{2C0D58DC-28C4-4057-98E1-03593BEEC7C8}C:\program files\mozilla firefox\plugin-container.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\plugin-container.exe |
"TCP Query User{38AA7477-5F0C-4A15-9037-E60EC20F34E0}C:\program files\emule\emule.exe" = protocol=6 | dir=in | app=c:\program files\emule\emule.exe |
"TCP Query User{61CA2341-517B-4AB7-AEC1-C14758788DC5}C:\program files\emule\emule.exe" = protocol=6 | dir=in | app=c:\program files\emule\emule.exe |
"TCP Query User{89E8A440-E6EA-46C2-9BF5-E287CBB231EE}C:\program files\java\jre6\launch4j-tmp\crazyloader.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\launch4j-tmp\crazyloader.exe |
"TCP Query User{F8EB0C22-C70B-4337-8BAA-B76991380BAB}C:\program files\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\program files\google\chrome\application\chrome.exe |
"UDP Query User{51760CEC-BCCB-4D70-8437-B5A38830F613}C:\program files\emule\emule.exe" = protocol=17 | dir=in | app=c:\program files\emule\emule.exe |
"UDP Query User{68E03430-471E-412B-B1AF-973180C68476}C:\program files\java\jre6\launch4j-tmp\crazyloader.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\launch4j-tmp\crazyloader.exe |
"UDP Query User{96F5E40A-DBC3-43C4-BC15-C3C6EED3E200}C:\program files\emule\emule.exe" = protocol=17 | dir=in | app=c:\program files\emule\emule.exe |
"UDP Query User{CC785776-5F84-444B-B099-7A89406F3991}C:\program files\mozilla firefox\plugin-container.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\plugin-container.exe |
"UDP Query User{D0B2AEDB-4B30-40B1-AD23-25957DAEEB14}C:\program files\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\program files\google\chrome\application\chrome.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{3B160861-7250-451E-B5EE-8B92BF30A710}" = Microsoft Works
"{3D3E663D-4E7E-4577-A560-7ECDDD45548A}" = PVSonyDll
"{3FF40A2F-1871-4C98-A546-CF12B5ED23D5}" = VoiceMailSystem
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AE3A0CB-87B0-4F51-BECD-3D1F8DFDD62F}" = SAGEM F@st 800-840
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{5DC0DF76-3B2F-4C38-BE34-58627949BC1A}" = Mega Manager
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0020-040C-0000-0000000FF1CE}" = Module de compatibilité pour Microsoft Office System 2007
"{9085040C-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Word Viewer 2003
"{911B040C-6000-11D3-8CFE-0050048383C9}" = Microsoft Word 2002
"{95120000-003F-040C-0000-0000000FF1CE}" = Microsoft Office Excel Viewer
"{95140000-00AF-040C-0000-0000000FF1CE}" = Visionneuse Microsoft PowerPoint
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{AC76BA86-7AD7-1036-7B44-AA1000000001}" = Adobe Reader X (10.1.0) - Français
"{B3575D00-27EF-49C2-B9E0-14B3D954E992}" = Apple Application Support
"{BBBF4CFE-9D26-4D93-A869-B2B021B3CA85}" = Intel(R) PRO Network Connections
"{C23CD6DA-1958-43A5-ADD0-59396572E02E}" = Apple Mobile Device Support
"{C897FCB3-2F8B-4185-8035-79E2AF3A92A4}" = iTunes
"{D03482C5-9AD8-496D-B388-692AE04C93AF}" = Bonjour
"{D13FE823-C575-4451-AC37-E645A67AA581}_1.2.2.0" = Orange Installeur version 1.2.2.0
"{D40EB009-0499-459c-A8AF-C9C110766215}" = Logitech Webcam Software
"{D8E363A7-88B7-446D-B2C0-E26CE4DC8E54}" = U3Launcher
"{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager
"{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}" = PL-2303 USB-to-Serial
"{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}" = Microsoft Office Live Add-in 1.5
"{ORAHSS}.Browser" = Navigateur Orange
"{ORAHSS}.UninstallSuite" = Orange - Logiciels Internet
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Audio Formats Converter" = Audio Formats Converter 1.1
"avast" = avast! Free Antivirus
"Calculatrice CalcCF Standart_is1" = Calculatrice (CalcCF) Standart 1.4
"CCleaner" = CCleaner
"Clean 5" = Clean 5
"DFX for RealPlayer" = DFX for RealPlayer
"DFX for Windows Media Player" = DFX for Windows Media Player
"eMule" = eMule
"ffdshow_is1" = ffdshow [rev 3154] [2009-12-09]
"FFmpeg for Audacity on Windows_is1" = FFmpeg for Audacity on Windows
"Glary Utilities_is1" = Glary Utilities 2.35.0.1216
"Google Chrome" = Google Chrome
"INFORAD MANAGER_is1" = INFORAD MANAGER 3.6
"KLiteCodecPack_is1" = K-Lite Codec Pack 6.3.0 (Full)
"LabelEditor" = Label Editor
"Logitech Vid" = Logitech Vid HD
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware version 1.51.1.1800
"Media Player Classic" = Media Player Classic fr
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile FRA Language Pack" = Module linguistique Microsoft .NET Framework 4 Client Profile FRA
"Mozilla Firefox 5.0 (x86 fr)" = Mozilla Firefox 5.0 (x86 fr)
"MP3 Splitter & Joiner_is1" = MP3 Splitter & Joiner
"OrangeToolbar" = barre d'outils Orange
"OrangeUpdateManager" = Orange update
"Picasa 3" = Picasa 3
"PowerpointImageExtractor_is1" = PowerpointImageExtractor
"RealPlayer 12.0" = RealPlayer
"Recuva" = Recuva
"Revo Uninstaller" = Revo Uninstaller 1.92
"ShalSoft.GigaTribe_is1" = GigaTribe 3.19
"Songbird-release-1438" = Songbird 1.4.3 (Build 1438)
"TradersLittleHelper_is1" = Trader's Little Helper 2.4.1
"VLC media player" = VLC media player 1.1.11
"WaveLabLite" = WaveLab Lite
"X10Hardware" = X10 Hardware(TM)
"XnView_is1" = XnView 1.97
"Yahoo! Companion" = Yahoo! Toolbar
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Orange Inside" = Orange Inside
"pdfsam" = pdfsam
========== Last 10 Event Log Errors ==========
[ Antivirus Events ]
Error - 01/02/2010 05:15:17 | Computer Name = PC-de-Gérard | Source = avast! | ID = 33554522
Description =
Error - 06/02/2010 09:44:27 | Computer Name = PC-de-Gérard | Source = avast! | ID = 33554522
Description =
Error - 07/02/2010 17:07:38 | Computer Name = PC-de-Gérard | Source = avast! | ID = 33554522
Description =
Error - 07/03/2010 07:55:39 | Computer Name = PC-de-Gérard | Source = avast! | ID = 33554522
Description =
Error - 24/03/2010 00:25:20 | Computer Name = PC-de-Gérard | Source = avast! | ID = 33554522
Description =
Error - 24/03/2010 03:31:11 | Computer Name = PC-de-Gérard | Source = avast! | ID = 33554522
Description =
Error - 24/03/2010 08:01:35 | Computer Name = PC-de-Gérard | Source = avast! | ID = 33554522
Description =
Error - 24/03/2010 19:33:25 | Computer Name = PC-de-Gérard | Source = avast! | ID = 33554522
Description =
Error - 26/03/2010 04:27:37 | Computer Name = PC-de-Gérard | Source = avast! | ID = 33554522
Description =
Error - 26/03/2010 04:28:01 | Computer Name = PC-de-Gérard | Source = avast! | ID = 33554522
Description =
========== Last 10 Event Log Errors ==========
Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!
< End of report >
voilà les résultats attendus
c'est moi qui suis désolé pour le retard
encore merci et bonne après-midi
----------------------------------------------------------------------------------------------------------------------------------------
OTL logfile created on: 09/08/2011 15:15:36 - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Users\Gérard\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy
2,00 Gb Total Physical Memory | 0,77 Gb Available Physical Memory | 38,55% Memory free
4,23 Gb Paging File | 1,99 Gb Available in Paging File | 47,14% Paging File free
Paging file location(s): ?:\pagefile.sys
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 445,76 Gb Total Space | 82,70 Gb Free Space | 18,55% Space Free | Partition Type: NTFS
Drive D: | 19,99 Gb Total Space | 12,74 Gb Free Space | 63,72% Space Free | Partition Type: FAT32
Drive F: | 1396,92 Gb Total Space | 1162,74 Gb Free Space | 83,24% Space Free | Partition Type: FAT32
Computer Name: PC-DE-GÉRARD | User Name: Gérard | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011/08/09 10:27:40 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Gérard\Desktop\OTL.exe
PRC - [2011/07/04 13:43:54 | 003,493,720 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2011/06/16 06:38:32 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011/05/05 15:34:14 | 000,861,696 | ---- | M] (Orange) -- C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe
PRC - [2011/04/16 12:18:52 | 000,647,168 | ---- | M] (IDEVFH) -- C:\Users\Gérard\AppData\Roaming\Mozilla\Firefox\Profiles\xtlol3hj.default\extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B}\components\afom.exe
PRC - [2010/04/07 15:00:04 | 005,758,976 | ---- | M] (http://www.emule-project.net) -- C:\Program Files\eMule\emule.exe
PRC - [2009/04/10 23:27:38 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2007/01/23 19:24:00 | 000,090,112 | ---- | M] (France Telecom SA) -- C:\Program Files\Orange HSS\systray\systrayapp.exe
PRC - [2007/01/23 19:19:10 | 000,462,848 | ---- | M] (France Telecom SA) -- C:\Program Files\Orange HSS\Launcher\Launcher.exe
PRC - [2007/01/23 19:12:36 | 000,827,392 | ---- | M] () -- C:\Program Files\Orange HSS\Deskboard\deskboard.exe
PRC - [2007/01/23 18:58:58 | 000,622,592 | ---- | M] (France Telecom SA) -- C:\Program Files\Orange HSS\connectivity\connectivitymanager.exe
PRC - [2007/01/23 18:58:02 | 000,028,672 | ---- | M] (France Telecom SA) -- C:\Program Files\Orange HSS\connectivity\CoreCom\OraConfigRecover.exe
PRC - [2007/01/23 18:57:54 | 000,323,584 | ---- | M] (France Telecom SA) -- C:\Program Files\Orange HSS\connectivity\CoreCom\CoreCom.exe
PRC - [2007/01/23 18:55:00 | 000,065,536 | ---- | M] (France Telecom SA) -- C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTCOMModule\1\FTCOMModule.exe
PRC - [2007/01/23 18:51:10 | 000,090,112 | ---- | M] (France Telecom SA) -- C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\2\AlertModule.exe
PRC - [2007/01/09 12:49:24 | 001,214,032 | ---- | M] () -- C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
========== Modules (SafeList) ==========
MOD - [2011/08/09 10:27:40 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Gérard\Desktop\OTL.exe
MOD - [2011/07/04 13:43:51 | 000,199,792 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\snxhk.dll
MOD - [2010/08/31 17:43:52 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
MOD - [2007/01/23 19:11:52 | 000,006,144 | ---- | M] (France Telecom SA) -- C:\Program Files\Orange HSS\Launcher\Inactivity.Dll
========== Win32 Services (SafeList) ==========
SRV - File not found [On_Demand | Stopped] -- -- (nosGetPlusHelper) getPlus(R)
SRV - File not found [Auto | Stopped] -- -- (AlertService) Intel(R)
SRV - [2011/07/06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011/07/04 13:43:51 | 000,042,184 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011/06/06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/04/20 16:36:02 | 001,055,872 | ---- | M] (France Telecom SA) [Auto | Stopped] -- C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe -- (Orange update Core Service)
SRV - [2010/05/07 18:47:32 | 000,162,648 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
SRV - [2010/04/21 19:46:17 | 000,373,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\inetsrv\iisw3adm.dll -- (WAS)
SRV - [2010/04/21 19:46:17 | 000,373,760 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\inetsrv\iisw3adm.dll -- (W3SVC)
SRV - [2009/04/10 23:28:18 | 000,052,224 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\inetsrv\apphostsvc.dll -- (AppHostSvc)
SRV - [2008/01/19 09:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV - [2007/10/15 21:58:02 | 000,290,909 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\HomeCinema\TV Enhance\Kernel\TV\TVECapSvc.exe -- (TVECapSvc) TVEnhance Background Capture Service (TBCS)
SRV - [2007/10/15 21:58:02 | 000,114,779 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\HomeCinema\TV Enhance\Kernel\TV\TVESched.exe -- (TVESched) TVEnhance Task Scheduler (TTS))
SRV - [2007/01/23 19:54:42 | 000,057,344 | ---- | M] (France Telecom SA) [Auto | Running] -- C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe -- (FTRTSVC)
SRV - [2001/11/12 13:31:48 | 000,020,480 | ---- | M] (X10) [Auto | Running] -- C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe -- (x10nets)
========== Driver Services (SafeList) ==========
DRV - [2011/07/06 19:52:42 | 000,041,272 | ---- | M] (Malwarebytes Corporation) [Kernel | Disabled | Running] -- C:\Windows\System32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2011/07/06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011/07/04 13:36:43 | 000,441,176 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011/07/04 13:36:32 | 000,309,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011/07/04 13:35:23 | 000,043,608 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011/07/04 13:32:32 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011/07/04 13:32:20 | 000,054,104 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2011/07/04 13:32:12 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010/07/27 08:14:58 | 006,842,464 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lvuvc.sys -- (LVUVC) Logitech HD Webcam C270(UVC)
DRV - [2010/07/27 08:12:50 | 000,282,336 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lvrs.sys -- (LVRS)
DRV - [2010/07/27 08:12:26 | 000,114,784 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lvpopflt.sys -- (lvpopflt)
DRV - [2010/05/20 15:27:24 | 000,030,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nx6000.sys -- (MSHUSBVideo)
DRV - [2010/05/07 18:43:30 | 000,025,824 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
DRV - [2010/04/03 22:55:32 | 011,573,800 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2009/11/19 14:32:02 | 000,081,920 | ---- | M] (Prolific Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ser2pl.sys -- (Ser2pl)
DRV - [2009/03/30 14:23:22 | 000,005,632 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\IntelDH.sys -- (IntelDH)
DRV - [2009/02/25 11:34:18 | 000,013,824 | R--- | M] (Windows (R) Codename Longhorn DDK provider) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\QsFsFltr.sys -- (QsFsFltr)
DRV - [2009/02/17 12:19:44 | 000,057,672 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ftdibus.sys -- (FTDIBUS)
DRV - [2008/12/10 17:56:26 | 000,017,792 | ---- | M] (Avnex) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vcsvad.sys -- (VCSVADHWSer) Avnex Virtual Audio Device (WDM)
DRV - [2008/01/19 07:55:32 | 000,006,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\loop.sys -- (msloop)
DRV - [2007/10/11 12:21:34 | 000,041,456 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Running] -- C:\Program Files\HomeCinema\PlayMovie\000.fcl -- ({49DE1C67-83F8-4102-99E0-C16DCC7EEC796})
DRV - [2007/10/09 16:14:56 | 000,041,456 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Running] -- C:\Program Files\HomeCinema\PowerDVD\000.fcl -- ({95808DC4-FA4A-4C74-92FE-5B863F82066B})
DRV - [2007/09/21 10:38:22 | 000,554,496 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netr28u.sys -- (netr28u)
DRV - [2007/08/22 11:01:58 | 001,242,976 | ---- | M] (NXP Semiconductors Germany GmbH) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\3xHybrid.sys -- (3xHybrid)
DRV - [2007/06/19 11:37:58 | 000,229,248 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\e1e6032.sys -- (e1express) Intel(R)
DRV - [2007/05/11 16:36:43 | 000,299,904 | ---- | M] (Marvell Semiconductor, Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\MRVW225.sys -- (MRVW225)
DRV - [2007/04/09 11:38:06 | 012,039,552 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\snp2sxp.sys -- (SNP2STD) USB2.0 PC Camera (SNP2STD)
DRV - [2007/01/04 13:48:04 | 000,104,344 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\e4usbaw.sys -- (e4usbaw)
DRV - [2007/01/04 13:47:48 | 000,069,656 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\e4ldr.sys -- (E4LOADER) General Purpose USB Driver (e4ldr.sys)
DRV - [2006/11/30 15:18:18 | 000,027,416 | ---- | M] (X10 Wireless Technology, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\x10ufx2.sys -- (XUIF)
DRV - [2006/11/28 21:46:22 | 000,028,224 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PCAMp50.sys -- (PCAMp50)
DRV - [2006/11/28 21:46:20 | 000,027,072 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\PCASp50.sys -- (PCASp50)
DRV - [2006/11/17 10:31:04 | 000,013,976 | ---- | M] (X10 Wireless Technology, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\x10hid.sys -- (X10Hid)
DRV - [2006/11/02 09:36:43 | 002,028,032 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
DRV - [2005/02/23 14:58:56 | 000,011,776 | ---- | M] (Arcsoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\afc.sys -- (Afc)
DRV - [2002/07/17 16:20:32 | 000,084,832 | ---- | M] (Adaptec) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ASPI32.SYS -- (ASPI)
DRV - [2001/12/18 14:45:04 | 000,003,279 | ---- | M] (VIA Technologies. Inc.) [Kernel | System | Running] -- C:\Windows\System32\Drivers\VIAPFD.SYS -- (VIAPFD)
========== Standard Registry (All) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.foozir.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
IE - HKLM\..\URLSearchHook: {1d1b60fd-b21f-4b9a-8a5f-64e8544828d7} - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {48405d3d-2674-4cd8-b1ef-9a719443bd3f} - Reg Error: Key error. File not found
IE - HKLM\..\URLSearchHook: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - Reg Error: Key error. File not found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 25 B0 00 00 92 08 3C 4A 8A 4B 9A ED DA E1 F9 8C [binary data]
IE - HKU\S-1-5-19\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 25 B0 00 00 92 08 3C 4A 8A 4B 9A ED DA E1 F9 8C [binary data]
IE - HKU\S-1-5-20\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com/?fr=fp-yie9
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://r.orange.fr/r/Ohome_portail?ref=O_OI_defaultPage
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 32 62 03 A0 43 C0 C9 01 [binary data]
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 25 B0 00 00 92 08 3C 4A 8A 4B 9A ED DA E1 F9 8C [binary data]
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange HSS\SearchURLHook\SearchPageURL.dll ()
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.update: false
FF - prefs.js..browser.startup.homepage: "http://www.google.fr"
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.1.20091029021655
FF - prefs.js..extensions.enabledItems: antidote7_win_firefox_103@druide.com:7.0.1001251956
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {35379F86-8CCB-4724-AE33-4278DE266C70}:1.0.5
FF - prefs.js..extensions.enabledItems: {28292ff6-3f0b-492e-aaca-e066d2df3194}:1.0
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.3
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nosltd.com/getPlus+(R),version=1.6.2.91: C:\Program Files\NOS\bin\np_gp.dll (NOS Microsystems Ltd.)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.647: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.647: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.652: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.652: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.647: c:\program files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2011/07/06 16:27:21 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011/08/06 21:47:14 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/06/24 11:19:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/06/24 11:33:06 | 000,000,000 | ---D | M]
[2011/08/06 16:00:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Gérard\AppData\Roaming\mozilla\Extensions
[2011/07/31 01:32:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\u4wyiv6k.default\extensions
[2010/06/02 14:17:54 | 000,000,000 | ---D | M] (XUL Cache) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\u4wyiv6k.default\extensions\{28292ff6-3f0b-492e-aaca-e066d2df3194}
[2010/02/19 02:13:15 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\u4wyiv6k.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2010/03/25 14:07:58 | 000,000,000 | ---D | M] (Installation des boutons d'Antidote) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\u4wyiv6k.default\extensions\antidote7_win_firefox_103@druide.com
[2011/07/31 01:32:51 | 000,000,000 | ---D | M] (barre d'outils Orange) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\u4wyiv6k.default\extensions\toolbar@Orange.fr
[2011/08/01 13:28:53 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\xtlol3hj.default\extensions
[2011/08/01 13:28:53 | 000,000,000 | ---D | M] (LightShot (screenshot tool)) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\xtlol3hj.default\extensions\{394DCBA4-1F92-4f8e-8EC9-8D2CB90CB69B}
[2011/06/23 12:59:40 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\xtlol3hj.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2011/04/02 12:31:37 | 000,000,000 | ---D | M] (Modify Headers) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\xtlol3hj.default\extensions\{b749fc7c-e949-447f-926c-3f4eed6accfe}
[2011/06/15 23:57:38 | 000,000,000 | ---D | M] (Memory Fox) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\xtlol3hj.default\extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B}
[2011/06/23 12:57:59 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\xtlol3hj.default\extensions\nostmp
[2011/06/15 23:57:38 | 000,000,000 | ---D | M] (RAMBack) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\xtlol3hj.default\extensions\ramback@pavlov.net
[2011/07/31 01:32:52 | 000,000,000 | ---D | M] (barre d'outils Orange) -- C:\Users\Gérard\AppData\Roaming\mozilla\Firefox\Profiles\xtlol3hj.default\extensions\toolbar@Orange.fr
[2011/06/23 12:57:18 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions
[2011/06/23 12:57:18 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2011/06/10 19:08:05 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES\ORBITDOWNLOADER\ADDONS\ONECLICKYOUTUBEDOWNLOADER
File not found (No name found) -- C:\USERS\GéRARD\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\U4WYIV6K.DEFAULT\EXTENSIONS\{28292FF6-3F0B-492E-AACA-E066D2DF3194}
File not found (No name found) -- C:\USERS\GéRARD\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\U4WYIV6K.DEFAULT\EXTENSIONS\{635ABD67-4FE9-1B23-4F01-E679FA7484C1}
File not found (No name found) -- C:\USERS\GéRARD\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\U4WYIV6K.DEFAULT\EXTENSIONS\ANTIDOTE7_WIN_FIREFOX_103@DRUIDE.COM
[2011/06/16 06:38:33 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2007/04/10 18:21:08 | 000,163,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\np-mswmp.dll
[2011/05/04 04:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2009/06/25 14:20:28 | 001,446,264 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\npLegitCheckPlugin.dll
[2011/06/06 12:55:30 | 000,183,696 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll
[2011/06/24 11:19:33 | 000,150,712 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nppl3260.dll
[2010/12/15 20:52:06 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin.dll
[2010/12/15 20:52:06 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll
[2010/12/15 20:52:06 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll
[2010/12/15 20:52:06 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll
[2010/12/15 20:52:06 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll
[2010/12/15 20:52:06 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll
[2010/12/15 20:52:06 | 000,159,744 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll
[2011/06/24 11:29:48 | 000,011,776 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprjplug.dll
[2011/06/24 11:17:02 | 000,105,472 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprpjplug.dll
[2010/09/01 15:52:56 | 000,035,136 | ---- | M] (NOS Microsystems Ltd.) -- C:\Program Files\mozilla firefox\plugins\np_gp.dll
[2010/01/01 10:00:00 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2011/04/06 23:36:56 | 000,002,423 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2010/01/01 10:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2010/01/01 10:00:00 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2010/01/01 10:00:00 | 000,001,154 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2010/01/01 10:00:00 | 000,002,364 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2010/01/01 10:00:00 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2010/01/01 10:00:00 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml
O1 HOSTS File: ([2011/07/31 13:42:47 | 000,435,545 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 14990 more lines...
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {1d1b60fd-b21f-4b9a-8a5f-64e8544828d7} - No CLSID value found.
O2 - BHO: (ToolbarOrange.InitToolbarBHO) - {1d970ed5-3eda-438d-bffd-715931e2775b} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (no name) - {48405d3d-2674-4cd8-b1ef-9a719443bd3f} - No CLSID value found.
O2 - BHO: (no name) - {4daac69c-cba7-45e2-9bc8-1044483d3352} - No CLSID value found.
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (no name) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - No CLSID value found.
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - No CLSID value found.
O2 - BHO: (no name) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - No CLSID value found.
O2 - BHO: (IeMonitorBho Class) - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll (Megaupload Limited)
O2 - BHO: (no name) - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - No CLSID value found.
O2 - BHO: (no name) - {cd36797a-70f3-4acd-8825-623d3b896881} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (no name) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - No CLSID value found.
O2 - BHO: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - No CLSID value found.
O2 - BHO: (no name) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {1d1b60fd-b21f-4b9a-8a5f-64e8544828d7} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {48405d3d-2674-4cd8-b1ef-9a719443bd3f} - No CLSID value found.
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - {965B54B0-71E0-4611-8DE7-F73FA0B20E26} - No CLSID value found.
O3 - HKLM\..\Toolbar: (eBuyClub) - {B00A2A69-AEB9-4466-A3D3-D965CCF868B6} - C:\Program Files\ShoppingBarreEbuyClub\tbcore3.dll ()
O3 - HKLM\..\Toolbar: (no name) - {C17590D2-ECB4-4b15-8820-F58798DCC118} - No CLSID value found.
O3 - HKLM\..\Toolbar: (barre d'outils Orange) - {c9a6357b-25cc-4bcf-96c1-78736985d412} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..\Toolbar\WebBrowser: (no name) - {1D1B60FD-B21F-4B9A-8A5F-64E8544828D7} - No CLSID value found.
O3 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..\Toolbar\WebBrowser: (no name) - {48405D3D-2674-4CD8-B1EF-9A719443BD3F} - No CLSID value found.
O3 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..\Toolbar\WebBrowser: (no name) - {965B54B0-71E0-4611-8DE7-F73FA0B20E26} - No CLSID value found.
O3 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..\Toolbar\WebBrowser: (eBuyClub) - {B00A2A69-AEB9-4466-A3D3-D965CCF868B6} - C:\Program Files\ShoppingBarreEbuyClub\tbcore3.dll ()
O4 - HKLM..\Run: [avast5] File not found
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000..\Run: [ehTray.exe] C:\Windows\ehome\ehtray.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000..\Run: [orahssStartup] C:\Program Files\Orange HSS\Launcher\Launcher.exe (France Telecom SA)
O4 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000..\Run: [orangeinside] C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe (Orange)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: BindDirectlyToPropertySetStorage = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95 00 00 00 [binary data]
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: ajouter cette page à vos favoris Orange - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\addfavorites_html\addfavorites.html ()
O8 - Extra context menu item: envoyer le texte sélectionné par sms - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\sendsmsselectedtext_html\sendsmsselectedtext.html ()
O8 - Extra context menu item: envoyer par sms - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\sendsms_html\sendsms.html ()
O8 - Extra context menu item: envoyer un mail - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\sendmail_html\sendmail.html ()
O8 - Extra context menu item: orange.fr - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\orange_html\orange.html ()
O8 - Extra context menu item: rechercher le texte sélectionné - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\selectedsearch_html\selectedsearch.html ()
O8 - Extra context menu item: traduire la page - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\translate_html\translate.html ()
O8 - Extra context menu item: traduire le texte sélectionné - C:\Users\Gérard\AppData\Roaming\Orange\OrangeInside\src\translateSelectedText_html\translateSelectedText.html ()
O9 - Extra Button: eBuyClub - {B00A2A69-AEB9-4466-A3D3-D965CCF868B6} - C:\Program Files\ShoppingBarreEbuyClub\tbcore3.dll ()
O9 - Extra 'Tools' menuitem : eBuyClub - {B00A2A69-AEB9-4466-A3D3-D965CCF868B6} - C:\Program Files\ShoppingBarreEbuyClub\tbcore3.dll ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\System32\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\System32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000025 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000027 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000028 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000029 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000030 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000031 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000032 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000033 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000034 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000035 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000036 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000037 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000038 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000039 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000040 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000041 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000042 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..Trusted Domains: orange.fr ([logicielsgratuits] http in Trusted sites)
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/ ... ontrol.cab (Office Genuine Advantage Validation Tool)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_05)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\Windows\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\Windows\System32\sysdm.cpl (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\System32\webcheck.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Component Categories cache daemon - C:\Windows\System32\browseui.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\System32\credssp.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\System32\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\System32\tspkg.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/06/13 00:09:28 | 000,000,150 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2009/06/16 03:00:35 | 000,000,127 | ---- | M] () - C:\AUTOEXEC.SYD -- [ NTFS ]
O33 - MountPoints2\{7db4f44d-53d1-11df-af9c-000000000000}\Shell - "" = AutoRun
O33 - MountPoints2\{7db4f44d-53d1-11df-af9c-000000000000}\Shell\AutoRun\command - "" = P:\LaunchU3.exe -a
O33 - MountPoints2\E\Shell - "" = AutoRun
O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\setup.exe
O34 - HKLM BootExecute: (autocheck autochk /p \??\N:) - File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2011/08/09 10:27:38 | 000,579,584 | ---- | C] (OldTimer Tools) -- C:\Users\Gérard\Desktop\OTL.exe
[2011/08/09 02:19:43 | 000,000,000 | ---D | C] -- C:\Users\Gérard\AppData\Roaming\Media Player Classic
[2011/08/07 00:04:59 | 000,000,000 | ---D | C] -- C:\ProgramData\eMule
[2011/08/06 23:58:19 | 000,000,000 | ---D | C] -- C:\Users\Gérard\AppData\Roaming\WinRAR
[2011/08/06 15:51:31 | 000,000,000 | ---D | C] -- C:\Users\Gérard\AppData\Roaming\Malwarebytes
[2011/08/05 15:16:02 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/08/05 15:16:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/08/05 15:16:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/08/05 15:15:20 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/08/05 15:15:20 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/08/05 12:42:49 | 000,000,000 | ---D | C] -- C:\Users\Gérard\AppData\Roaming\vlc
[2011/08/05 12:42:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\pctuto
[2011/08/05 12:30:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2011/08/05 12:30:07 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2011/08/04 06:08:39 | 000,000,000 | ---D | C] -- C:\Users\Gérard\Desktop\COVERS divers
[2011/08/03 23:29:34 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2011/08/03 19:02:51 | 000,000,000 | ---D | C] -- C:\ZHP
[2011/07/31 23:40:25 | 000,000,000 | ---D | C] -- C:\Users\Gérard\Desktop\1977- In The Grassland Away
[2011/07/31 01:44:42 | 002,043,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011/07/31 01:43:34 | 000,375,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2011/07/31 01:43:34 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2011/07/31 01:30:37 | 000,000,000 | ---D | C] -- C:\Users\Gérard\AppData\Roaming\Orange
[2011/07/12 11:20:54 | 000,083,816 | ---- | C] (Apple Inc.) -- C:\Windows\System32\dns-sd.exe
[2011/07/12 11:20:54 | 000,073,064 | ---- | C] (Apple Inc.) -- C:\Windows\System32\dnssd.dll
[2009/04/18 15:53:32 | 002,117,632 | ---- | C] (ToniArts) -- C:\Program Files\EasyClea.exe
[2009/03/31 11:47:48 | 000,151,552 | ---- | C] ( ) -- C:\Windows\System32\rsnp2std.dll
[2009/03/31 11:47:48 | 000,077,824 | ---- | C] ( ) -- C:\Windows\System32\csnp2std.dll
[4 C:\Users\Gérard\AppData\Local\*.tmp files -> C:\Users\Gérard\AppData\Local\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2050/01/01 00:00:00 | 000,111,616 | ---- | M] () -- C:\Users\Gérard\Desktop\La_formule_du_sexe.pps
[2011/08/09 15:19:08 | 000,004,960 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/08/09 15:19:08 | 000,004,960 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/08/09 15:16:04 | 000,001,056 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/08/09 10:48:16 | 000,181,442 | ---- | M] () -- C:\Users\Gérard\Desktop\home_flance3_fr.jpg
[2011/08/09 10:46:59 | 001,115,952 | ---- | M] () -- C:\Users\Gérard\Desktop\home_12longtooth.jpg
[2011/08/09 10:46:15 | 000,704,954 | ---- | M] () -- C:\Users\Gérard\Desktop\13_cliff.jpg
[2011/08/09 10:27:40 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Gérard\Desktop\OTL.exe
[2011/08/09 10:22:59 | 000,000,510 | ---- | M] () -- C:\Windows\WORDPAD.INI
[2011/08/09 10:04:37 | 000,056,320 | ---- | M] () -- C:\Users\Gérard\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/08/09 02:53:51 | 000,003,264 | ---- | M] () -- C:\Program Files\Options.ini
[2011/08/09 01:30:58 | 000,712,176 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2011/08/09 01:30:58 | 000,623,858 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/08/09 01:30:58 | 000,136,156 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2011/08/09 01:30:58 | 000,111,234 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/08/09 01:16:01 | 000,001,052 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/08/07 03:07:01 | 000,000,334 | ---- | M] () -- C:\Windows\tasks\File Helper.job
[2011/08/06 21:19:07 | 000,034,997 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2011/08/06 21:19:07 | 000,034,997 | ---- | M] () -- C:\ProgramData\nvModes.001
[2011/08/06 21:15:57 | 000,065,536 | ---- | M] () -- C:\Windows\System32\Ikeext.etl
[2011/08/06 21:15:36 | 000,000,314 | ---- | M] () -- C:\Windows\tasks\GlaryInitialize.job
[2011/08/06 21:14:50 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/08/06 21:14:39 | 000,082,944 | ---- | M] () -- C:\Windows\System32\umstartup.etl
[2011/08/06 20:02:43 | 000,043,008 | ---- | M] () -- C:\Windows\System32\umstartup000.etl
[2011/08/06 19:05:36 | 000,000,000 | ---- | M] () -- C:\Users\Gérard\AppData\Local\{1276E518-863E-49EB-A5F1-7161D4EDAFD8}
[2011/08/06 13:59:35 | 000,000,680 | ---- | M] () -- C:\Users\Gérard\AppData\Local\d3d9caps.dat
[2011/08/06 08:38:37 | 000,001,028 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3110841774-1849680747-3807454378-1000.job
[2011/08/05 15:16:03 | 000,000,906 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/08/05 12:28:42 | 021,073,936 | ---- | M] () -- C:\Users\Gérard\Desktop\vlc-1.1.11-win32.exe
[2011/08/04 00:23:49 | 000,000,675 | ---- | M] () -- C:\Windows\Clean! presets.set
[2011/08/03 11:04:43 | 000,000,863 | ---- | M] () -- C:\Users\Gérard\Desktop\Glary Utilities.lnk
[2011/08/03 06:14:21 | 000,001,971 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011/08/02 08:16:04 | 000,000,020 | ---- | M] () -- C:\Users\Public\Documents\ExitAP.ini
[2011/07/31 13:42:47 | 000,435,545 | R--- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2011/07/31 12:13:04 | 000,362,584 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/07/31 11:53:26 | 000,000,000 | ---- | M] () -- C:\Users\Gérard\AppData\Local\{DAC555B8-9BB1-4E0D-914E-6D7FFD0EE9B7}
[2011/07/12 11:20:54 | 000,083,816 | ---- | M] (Apple Inc.) -- C:\Windows\System32\dns-sd.exe
[2011/07/12 11:20:54 | 000,073,064 | ---- | M] (Apple Inc.) -- C:\Windows\System32\dnssd.dll
[4 C:\Users\Gérard\AppData\Local\*.tmp files -> C:\Users\Gérard\AppData\Local\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2011/08/09 10:48:04 | 000,181,442 | ---- | C] () -- C:\Users\Gérard\Desktop\home_flance3_fr.jpg
[2011/08/09 10:46:58 | 001,115,952 | ---- | C] () -- C:\Users\Gérard\Desktop\home_12longtooth.jpg
[2011/08/09 10:46:14 | 000,704,954 | ---- | C] () -- C:\Users\Gérard\Desktop\13_cliff.jpg
[2011/08/06 19:05:11 | 000,000,000 | ---- | C] () -- C:\Users\Gérard\AppData\Local\{1276E518-863E-49EB-A5F1-7161D4EDAFD8}
[2011/08/05 15:16:03 | 000,000,906 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/08/05 12:24:18 | 021,073,936 | ---- | C] () -- C:\Users\Gérard\Desktop\vlc-1.1.11-win32.exe
[2011/08/04 00:23:49 | 000,000,675 | ---- | C] () -- C:\Windows\Clean! presets.set
[2011/07/31 14:29:37 | 000,000,680 | ---- | C] () -- C:\Users\Gérard\AppData\Local\d3d9caps.dat
[2011/07/31 11:52:45 | 000,000,000 | ---- | C] () -- C:\Users\Gérard\AppData\Local\{DAC555B8-9BB1-4E0D-914E-6D7FFD0EE9B7}
[2011/06/25 01:14:31 | 000,056,320 | ---- | C] () -- C:\Users\Gérard\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/06/22 21:13:19 | 000,126,976 | ---- | C] () -- C:\Windows\System32\coclassfast.dll
[2011/06/22 21:13:14 | 000,176,128 | ---- | C] () -- C:\Windows\autoclk.exe
[2011/06/22 20:57:28 | 000,000,109 | ---- | C] () -- C:\Windows\Kit.ini
[2011/05/24 23:54:03 | 000,396,800 | ---- | C] () -- C:\Windows\System32\PSDrvCheck.exe
[2011/05/24 23:48:28 | 000,019,968 | ---- | C] () -- C:\Windows\System32\Cpuinf32.dll
[2011/05/19 22:07:48 | 000,134,144 | ---- | C] () -- C:\Windows\System32\ifdreset.exe
[2011/05/11 12:08:31 | 000,000,152 | ---- | C] () -- C:\Windows\LITTRE.INI
[2011/05/11 12:08:02 | 000,029,696 | ---- | C] () -- C:\Windows\System32\CLRECH.DLL
[2011/05/11 12:08:01 | 000,000,150 | ---- | C] () -- C:\Windows\System32\IC32.INI
[2011/05/11 12:08:00 | 000,251,392 | ---- | C] () -- C:\Windows\System32\TX32.DLL
[2011/05/03 23:33:41 | 000,073,728 | ---- | C] () -- C:\Windows\Dit.exe
[2011/05/03 23:33:41 | 000,065,536 | ---- | C] () -- C:\Windows\Dit.DLL
[2011/05/03 23:33:41 | 000,000,208 | ---- | C] () -- C:\Windows\Dit.INI
[2011/05/03 23:33:39 | 000,065,536 | ---- | C] () -- C:\Windows\DitExp.exe
[2011/05/03 13:47:40 | 000,000,043 | ---- | C] () -- C:\Windows\Antidote.ini
[2011/04/30 02:17:14 | 000,000,077 | ---- | C] () -- C:\Windows\Antidote7.ini
[2011/04/28 18:59:52 | 000,188,416 | ---- | C] () -- C:\Windows\adiras.exe
[2011/04/28 13:48:33 | 000,000,168 | ---- | C] () -- C:\Windows\adidsl.ini
[2011/04/28 13:48:33 | 000,000,021 | ---- | C] () -- C:\Windows\Fast800.ini
[2011/04/28 13:42:55 | 000,247,296 | ---- | C] () -- C:\Windows\adirasx64.exe
[2011/04/28 13:42:55 | 000,127,456 | ---- | C] () -- C:\Windows\System32\IPDETECT.EXE
[2011/04/28 13:42:53 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9P2.BIN
[2011/04/28 13:42:53 | 000,024,576 | ---- | C] () -- C:\Windows\enddisk32.exe
[2011/04/28 13:42:52 | 000,152,220 | ---- | C] () -- C:\Windows\System32\drivers\L1E4I2.BIN
[2011/04/28 13:42:52 | 000,152,220 | ---- | C] () -- C:\Windows\System32\drivers\L1E4I1.BIN
[2011/04/28 13:42:52 | 000,152,220 | ---- | C] () -- C:\Windows\System32\drivers\L1E4I0.BIN
[2011/04/28 13:42:52 | 000,152,132 | ---- | C] () -- C:\Windows\System32\drivers\L1E4P2.BIN
[2011/04/28 13:42:52 | 000,152,132 | ---- | C] () -- C:\Windows\System32\drivers\L1E4P1.BIN
[2011/04/28 13:42:52 | 000,152,132 | ---- | C] () -- C:\Windows\System32\drivers\L1E4P0.BIN
[2011/04/28 13:42:52 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9P1.BIN
[2011/04/28 13:42:52 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9P0.BIN
[2011/04/28 13:42:52 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9I2.BIN
[2011/04/28 13:42:52 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9I1.BIN
[2011/04/28 13:42:52 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9I0.BIN
[2011/04/28 13:42:52 | 000,152,036 | ---- | C] () -- C:\Windows\System32\drivers\L1E4D2.BIN
[2011/04/28 13:42:52 | 000,152,034 | ---- | C] () -- C:\Windows\System32\drivers\L1E4D0.BIN
[2011/04/28 13:42:52 | 000,046,892 | ---- | C] () -- C:\Windows\System32\ADADIX16.DLL
[2011/04/28 13:42:51 | 000,152,034 | ---- | C] () -- C:\Windows\System32\drivers\L1E4D1.BIN
[2011/04/28 13:42:51 | 000,022,395 | ---- | C] () -- C:\Windows\System32\drivers\fpga.bin
[2011/04/06 23:37:11 | 000,098,304 | ---- | C] () -- C:\Windows\System32\redmonnt.dll
[2011/03/13 21:32:28 | 000,704,000 | ---- | C] () -- C:\Windows\is-2B9F6.exe
[2011/01/17 23:41:16 | 000,704,000 | ---- | C] () -- C:\Windows\is-LIIEQ.exe
[2010/10/18 15:09:10 | 000,673,280 | ---- | C] () -- C:\Windows\is-L9QJT.exe
[2010/10/10 22:03:23 | 000,000,216 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
[2010/09/29 01:05:45 | 000,000,582 | ---- | C] () -- C:\Program Files\BlackLst.ecb
[2010/09/27 21:43:56 | 000,003,264 | ---- | C] () -- C:\Program Files\Options.ini
[2010/09/27 21:34:19 | 000,000,000 | ---- | C] () -- C:\Windows\PhotoNow.INI
[2010/09/13 23:49:53 | 009,079,808 | ---- | C] () -- C:\Windows\System32\alltoall.exe
[2010/08/13 19:58:33 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2010/08/13 19:58:09 | 000,790,528 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2010/08/13 19:58:09 | 000,134,144 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2010/08/06 14:03:29 | 000,000,989 | ---- | C] () -- C:\Windows\adiras.ini
[2010/07/27 08:03:20 | 010,829,656 | ---- | C] () -- C:\Windows\System32\LogiDPP.dll
[2010/07/27 08:03:20 | 000,102,744 | ---- | C] () -- C:\Windows\System32\LogiDPPApp.exe
[2010/07/27 08:03:18 | 000,290,648 | ---- | C] () -- C:\Windows\System32\DevManagerCore.dll
[2010/07/27 07:56:04 | 000,090,411 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini
[2010/06/28 02:59:28 | 000,085,504 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2010/06/07 13:27:31 | 000,034,997 | ---- | C] () -- C:\ProgramData\nvModes.001
[2010/06/07 13:27:29 | 000,034,997 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2010/05/31 18:09:54 | 000,000,367 | ---- | C] () -- C:\ProgramData\875003888
[2010/05/31 18:09:53 | 000,000,817 | ---- | C] () -- C:\ProgramData\1685532576
[2010/05/31 18:08:37 | 000,000,113 | ---- | C] () -- C:\ProgramData\sl1439100258
[2010/05/31 18:08:22 | 000,203,776 | ---- | C] () -- C:\ProgramData\unrar.exe
[2010/05/27 16:31:49 | 000,015,360 | ---- | C] () -- C:\Windows\System32\GetInst32.dll
[2010/05/27 14:46:44 | 000,001,965 | ---- | C] () -- C:\Windows\if42le.ini
[2010/05/27 14:46:44 | 000,000,338 | ---- | C] () -- C:\Windows\Pexplore.ini
[2010/05/07 18:46:36 | 000,014,168 | ---- | C] () -- C:\Windows\System32\drivers\iKeyLFT2.dll
[2010/05/07 18:43:30 | 000,025,824 | ---- | C] () -- C:\Windows\System32\drivers\LVPr2Mon.sys
[2009/11/28 21:15:41 | 000,673,280 | ---- | C] () -- C:\Windows\is-2J92S.exe
[2009/10/28 23:25:21 | 000,000,050 | ---- | C] () -- C:\Windows\MegaManager.INI
[2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2009/06/22 12:16:42 | 000,000,510 | ---- | C] () -- C:\Windows\WORDPAD.INI
[2009/06/15 20:08:44 | 000,000,000 | ---- | C] () -- C:\Windows\System32\NTIBUN5.dll
[2009/06/10 14:45:50 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/06/10 14:45:05 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2009/05/31 02:21:38 | 000,005,699 | ---- | C] () -- C:\Windows\wininit.ini
[2009/04/22 23:29:01 | 000,165,376 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2009/04/04 22:07:42 | 000,000,233 | ---- | C] () -- C:\Windows\EXCEL4.INI
[2009/04/04 16:06:29 | 000,000,056 | ---- | C] () -- C:\Windows\System32\ezsidmv.dat
[2009/04/01 03:21:11 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2009/04/01 03:09:21 | 000,000,049 | ---- | C] () -- C:\Windows\cdplayer.ini
[2009/03/31 11:47:49 | 012,039,552 | ---- | C] () -- C:\Windows\System32\drivers\snp2sxp.sys
[2009/03/31 11:47:49 | 000,025,472 | ---- | C] () -- C:\Windows\System32\drivers\sncamd.sys
[2009/03/31 11:47:49 | 000,015,497 | ---- | C] () -- C:\Windows\snp2std.ini
[2009/03/30 18:47:24 | 000,036,864 | ---- | C] () -- C:\Windows\gotouninstall.exe
[2009/03/30 16:27:20 | 000,009,824 | ---- | C] () -- C:\Windows\System32\34CoInstaller.dll
[2009/03/30 15:28:18 | 000,000,382 | ---- | C] () -- C:\Windows\ODBC.INI
[2009/03/30 15:02:26 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2009/03/30 14:30:33 | 000,127,184 | ---- | C] () -- C:\Windows\Unwise.exe
[2006/12/12 04:43:45 | 000,000,000 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2006/11/02 17:48:33 | 000,712,176 | ---- | C] () -- C:\Windows\System32\perfh00C.dat
[2006/11/02 17:48:33 | 000,340,236 | ---- | C] () -- C:\Windows\System32\perfi00C.dat
[2006/11/02 17:48:33 | 000,136,156 | ---- | C] () -- C:\Windows\System32\perfc00C.dat
[2006/11/02 17:48:33 | 000,037,390 | ---- | C] () -- C:\Windows\System32\perfd00C.dat
[2006/11/02 14:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 14:47:37 | 000,362,584 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 12:33:01 | 000,623,858 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 12:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 12:33:01 | 000,111,234 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 12:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 12:25:44 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2006/11/02 12:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 10:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 10:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 09:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
========== Alternate Data Streams ==========
@Alternate Data Stream - 64 bytes -> C:\Users\Gérard\Desktop\Poulette et Laurence.avi:TOC.WMV
@Alternate Data Stream - 64 bytes -> C:\Users\Gérard\Desktop\foulard.flv:TOC.WMV
@Alternate Data Stream - 64 bytes -> C:\Users\Gérard\Desktop\file dans ta chambre.mp4:TOC.WMV
@Alternate Data Stream - 64 bytes -> C:\Users\Gérard\Desktop\Deep Purple - Live In Japan (1972, Japan).avi:TOC.WMV
< End of report >
-------------------------------------------------------------
OTL Extras logfile created on: 09/08/2011 15:15:37 - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Users\Gérard\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy
2,00 Gb Total Physical Memory | 0,77 Gb Available Physical Memory | 38,55% Memory free
4,23 Gb Paging File | 1,99 Gb Available in Paging File | 47,14% Paging File free
Paging file location(s): ?:\pagefile.sys
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 445,76 Gb Total Space | 82,70 Gb Free Space | 18,55% Space Free | Partition Type: NTFS
Drive D: | 19,99 Gb Total Space | 12,74 Gb Free Space | 63,72% Space Free | Partition Type: FAT32
Drive F: | 1396,92 Gb Total Space | 1162,74 Gb Free Space | 83,24% Space Free | Partition Type: FAT32
Computer Name: PC-DE-GÉRARD | User Name: Gérard | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
[HKEY_USERS\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Orange HSS\Launcher\Launcher.exe" -appid serviceweb -args %1 (France Telecom SA)
htmlfile [opennew] -- "C:\Program Files\Orange HSS\Launcher\Launcher.exe" -appid serviceweb -args %1 (France Telecom SA)
http [open] -- "C:\Program Files\Orange HSS\Launcher\Launcher.exe" -appid serviceweb -args %1 (France Telecom SA)
https [open] -- "C:\Program Files\Orange HSS\Launcher\Launcher.exe" -appid serviceweb -args %1 (France Telecom SA)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Parcourir avec XnView] -- "C:\Program Files\XnView\xnview.exe" "%1" (XnView, http://www.xnview.com)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"UacDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-3110841774-1849680747-3807454378-1000]
"EnableNotifications" = 0
"EnableNotificationsRef" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Users\Gérard\AppData\Roaming\svchost.exe" = C:\Users\Gérard\AppData\Roaming\svchost.exe:*:Enabled:svchost
"C:\Program Files\Orange HSS\Connectivity\ConnectivityManager.exe" = C:\Program Files\Orange HSS\Connectivity\ConnectivityManager.exe:*:enabled:CSS -- (France Telecom SA)
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{014AACA2-8D1B-4BE0-9BF5-5CFB1F179B61}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{0605E597-E665-4282-AE80-2BDFE5FCA4D9}" = lport=137 | protocol=17 | dir=in | app=system |
"{10024699-E5F4-44B5-AE1F-A8F708550B04}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{1469133D-2904-4245-8160-36B88397BD76}" = lport=1900 | protocol=17 | dir=in | name=intel(r) viiv(tm) media server upnp discovery |
"{40F3528A-AB4D-40C8-8879-CB2925D48408}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{44F74417-47F4-4537-A56D-02F3261E6474}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{4E38B074-E3E5-4D88-8014-8F84FFE2D193}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{5907BB72-B022-4A4F-938C-FA097879E3E3}" = rport=445 | protocol=6 | dir=out | app=system |
"{5D55FDE9-E3B9-40A8-AAE2-F43C99504232}" = lport=445 | protocol=6 | dir=in | app=system |
"{65D0B031-8B13-41EF-9CE0-328A4B5E8780}" = lport=138 | protocol=17 | dir=in | app=system |
"{9266D552-DEAA-4E21-BE90-DBD73106809D}" = lport=9442 | protocol=17 | dir=in | name=intel(r) viiv(tm) media server discovery |
"{A0129672-ABAC-4F54-B260-F72E37ACE41A}" = rport=138 | protocol=17 | dir=out | app=system |
"{A86F4F6E-CF77-4948-8FA3-CE44047DE28D}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{AEE76094-EC03-4158-BE41-EB3578490F87}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{B34173CB-4104-45E8-8269-B1F5DB75D5CA}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{C02D8037-A459-423B-9628-466146EB94DD}" = lport=139 | protocol=6 | dir=in | app=system |
"{D0488AB2-8461-49BC-AE8D-7259CA87B01B}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{E82E0A3E-51DB-4FFB-B746-B86B3369D56A}" = rport=139 | protocol=6 | dir=out | app=system |
"{ECF5FD67-1EA5-4E80-803E-3F5354A17AE3}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F8E96A09-07AB-4AFF-A269-B4B3BD740EEA}" = rport=137 | protocol=17 | dir=out | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{2B7FD11F-3EB6-4F0D-8AAE-4ED5A1F8FA9F}" = protocol=6 | dir=in | app=c:\program files\orange\orangeupdate\service\oucore.exe |
"{3DA86412-708E-4B1D-9122-ED73A671CBE9}" = protocol=17 | dir=in | app=c:\program files\orange\orangeupdate\service\oucore.exe |
"{41C41254-7DD8-4B21-9EC6-45234F684C41}" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"{4F36AD3D-FD12-4AA3-A30A-ECAA157EACBD}" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaws.exe |
"{61D93CD9-51A6-48FA-8335-76859C2097E7}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{693A2CAA-8EE3-4D60-B9EA-AE904FBBA5CF}" = protocol=17 | dir=in | app=c:\program files\gigatribe\gigatribe.exe |
"{6ADFE76A-F4F5-4402-A7B3-70084DD91E3A}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{868B98E7-8347-4346-97E1-491E3285833C}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{88DA6877-2624-4350-9EF4-7016BBA6AD1C}" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"{8A0274CA-6AA8-45DF-93B6-E03F0CF8DC77}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{96F2DBC7-93BD-47C4-BA19-19124A6CAC5A}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{BEBB6A04-3A27-44A9-863F-6D10DAC1DC0E}" = protocol=6 | dir=in | app=c:\program files\gigatribe\gigatribe.exe |
"{C4B89FAB-1BE1-4875-8B93-807C4BEC61B2}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{D65BF808-50C6-4E1F-9FF2-8BAECDD85AE3}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{F1A2D587-3E69-4051-93F3-2AF3C942E7ED}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{F3B92C0F-E313-43DA-9B4C-1A09A8220CAB}" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaws.exe |
"TCP Query User{2C0D58DC-28C4-4057-98E1-03593BEEC7C8}C:\program files\mozilla firefox\plugin-container.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\plugin-container.exe |
"TCP Query User{38AA7477-5F0C-4A15-9037-E60EC20F34E0}C:\program files\emule\emule.exe" = protocol=6 | dir=in | app=c:\program files\emule\emule.exe |
"TCP Query User{61CA2341-517B-4AB7-AEC1-C14758788DC5}C:\program files\emule\emule.exe" = protocol=6 | dir=in | app=c:\program files\emule\emule.exe |
"TCP Query User{89E8A440-E6EA-46C2-9BF5-E287CBB231EE}C:\program files\java\jre6\launch4j-tmp\crazyloader.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\launch4j-tmp\crazyloader.exe |
"TCP Query User{F8EB0C22-C70B-4337-8BAA-B76991380BAB}C:\program files\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\program files\google\chrome\application\chrome.exe |
"UDP Query User{51760CEC-BCCB-4D70-8437-B5A38830F613}C:\program files\emule\emule.exe" = protocol=17 | dir=in | app=c:\program files\emule\emule.exe |
"UDP Query User{68E03430-471E-412B-B1AF-973180C68476}C:\program files\java\jre6\launch4j-tmp\crazyloader.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\launch4j-tmp\crazyloader.exe |
"UDP Query User{96F5E40A-DBC3-43C4-BC15-C3C6EED3E200}C:\program files\emule\emule.exe" = protocol=17 | dir=in | app=c:\program files\emule\emule.exe |
"UDP Query User{CC785776-5F84-444B-B099-7A89406F3991}C:\program files\mozilla firefox\plugin-container.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\plugin-container.exe |
"UDP Query User{D0B2AEDB-4B30-40B1-AD23-25957DAEEB14}C:\program files\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\program files\google\chrome\application\chrome.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{3B160861-7250-451E-B5EE-8B92BF30A710}" = Microsoft Works
"{3D3E663D-4E7E-4577-A560-7ECDDD45548A}" = PVSonyDll
"{3FF40A2F-1871-4C98-A546-CF12B5ED23D5}" = VoiceMailSystem
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AE3A0CB-87B0-4F51-BECD-3D1F8DFDD62F}" = SAGEM F@st 800-840
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{5DC0DF76-3B2F-4C38-BE34-58627949BC1A}" = Mega Manager
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0020-040C-0000-0000000FF1CE}" = Module de compatibilité pour Microsoft Office System 2007
"{9085040C-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Word Viewer 2003
"{911B040C-6000-11D3-8CFE-0050048383C9}" = Microsoft Word 2002
"{95120000-003F-040C-0000-0000000FF1CE}" = Microsoft Office Excel Viewer
"{95140000-00AF-040C-0000-0000000FF1CE}" = Visionneuse Microsoft PowerPoint
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{AC76BA86-7AD7-1036-7B44-AA1000000001}" = Adobe Reader X (10.1.0) - Français
"{B3575D00-27EF-49C2-B9E0-14B3D954E992}" = Apple Application Support
"{BBBF4CFE-9D26-4D93-A869-B2B021B3CA85}" = Intel(R) PRO Network Connections
"{C23CD6DA-1958-43A5-ADD0-59396572E02E}" = Apple Mobile Device Support
"{C897FCB3-2F8B-4185-8035-79E2AF3A92A4}" = iTunes
"{D03482C5-9AD8-496D-B388-692AE04C93AF}" = Bonjour
"{D13FE823-C575-4451-AC37-E645A67AA581}_1.2.2.0" = Orange Installeur version 1.2.2.0
"{D40EB009-0499-459c-A8AF-C9C110766215}" = Logitech Webcam Software
"{D8E363A7-88B7-446D-B2C0-E26CE4DC8E54}" = U3Launcher
"{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager
"{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}" = PL-2303 USB-to-Serial
"{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}" = Microsoft Office Live Add-in 1.5
"{ORAHSS}.Browser" = Navigateur Orange
"{ORAHSS}.UninstallSuite" = Orange - Logiciels Internet
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Audio Formats Converter" = Audio Formats Converter 1.1
"avast" = avast! Free Antivirus
"Calculatrice CalcCF Standart_is1" = Calculatrice (CalcCF) Standart 1.4
"CCleaner" = CCleaner
"Clean 5" = Clean 5
"DFX for RealPlayer" = DFX for RealPlayer
"DFX for Windows Media Player" = DFX for Windows Media Player
"eMule" = eMule
"ffdshow_is1" = ffdshow [rev 3154] [2009-12-09]
"FFmpeg for Audacity on Windows_is1" = FFmpeg for Audacity on Windows
"Glary Utilities_is1" = Glary Utilities 2.35.0.1216
"Google Chrome" = Google Chrome
"INFORAD MANAGER_is1" = INFORAD MANAGER 3.6
"KLiteCodecPack_is1" = K-Lite Codec Pack 6.3.0 (Full)
"LabelEditor" = Label Editor
"Logitech Vid" = Logitech Vid HD
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware version 1.51.1.1800
"Media Player Classic" = Media Player Classic fr
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile FRA Language Pack" = Module linguistique Microsoft .NET Framework 4 Client Profile FRA
"Mozilla Firefox 5.0 (x86 fr)" = Mozilla Firefox 5.0 (x86 fr)
"MP3 Splitter & Joiner_is1" = MP3 Splitter & Joiner
"OrangeToolbar" = barre d'outils Orange
"OrangeUpdateManager" = Orange update
"Picasa 3" = Picasa 3
"PowerpointImageExtractor_is1" = PowerpointImageExtractor
"RealPlayer 12.0" = RealPlayer
"Recuva" = Recuva
"Revo Uninstaller" = Revo Uninstaller 1.92
"ShalSoft.GigaTribe_is1" = GigaTribe 3.19
"Songbird-release-1438" = Songbird 1.4.3 (Build 1438)
"TradersLittleHelper_is1" = Trader's Little Helper 2.4.1
"VLC media player" = VLC media player 1.1.11
"WaveLabLite" = WaveLab Lite
"X10Hardware" = X10 Hardware(TM)
"XnView_is1" = XnView 1.97
"Yahoo! Companion" = Yahoo! Toolbar
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-3110841774-1849680747-3807454378-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Orange Inside" = Orange Inside
"pdfsam" = pdfsam
========== Last 10 Event Log Errors ==========
[ Antivirus Events ]
Error - 01/02/2010 05:15:17 | Computer Name = PC-de-Gérard | Source = avast! | ID = 33554522
Description =
Error - 06/02/2010 09:44:27 | Computer Name = PC-de-Gérard | Source = avast! | ID = 33554522
Description =
Error - 07/02/2010 17:07:38 | Computer Name = PC-de-Gérard | Source = avast! | ID = 33554522
Description =
Error - 07/03/2010 07:55:39 | Computer Name = PC-de-Gérard | Source = avast! | ID = 33554522
Description =
Error - 24/03/2010 00:25:20 | Computer Name = PC-de-Gérard | Source = avast! | ID = 33554522
Description =
Error - 24/03/2010 03:31:11 | Computer Name = PC-de-Gérard | Source = avast! | ID = 33554522
Description =
Error - 24/03/2010 08:01:35 | Computer Name = PC-de-Gérard | Source = avast! | ID = 33554522
Description =
Error - 24/03/2010 19:33:25 | Computer Name = PC-de-Gérard | Source = avast! | ID = 33554522
Description =
Error - 26/03/2010 04:27:37 | Computer Name = PC-de-Gérard | Source = avast! | ID = 33554522
Description =
Error - 26/03/2010 04:28:01 | Computer Name = PC-de-Gérard | Source = avast! | ID = 33554522
Description =
========== Last 10 Event Log Errors ==========
Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!
< End of report >
-
mercureendirect - Progression vers le rang suivant:
- Messages: 6
- Age: 53
- Inscription: 03 Aoû 2011 10:05
- Localisation: france
- Sexe:
Point(s) : 45- Donner
Re: Vista au ralenti
de shion-ares » 11 Aoû 2011 09:20
Bonjour
Avast est il encore actif car pour moi il ne l'ai plus
désinstalle puis réinstalle le voici son utilitaire pour le supprimer
http://www.commentcamarche.net/download ... n-de-avast
puis recharge le ici
http://www.avast.com/fr-fr/index
Ensuite fait ce qui suis
* Fais un double-clic sur l'icône d'OTL pour le lancer
/!\ pour Vista/Seven fais un clic-droit sur l'icône d'OTL et choisis "Exécuter en tant qu'administrateur"
* Assure toi d'avoir fermé toutes les applications en court de fonctionnement.
* Quand la fenêtre d'OTL apparaît, assure toi que dans la section "Rapport" (en haut à droite) la case "Rapport minimal" soit cochée.
* Copies et colles le contenue de cette citation dans la partie inférieure d'OTL "Personnalisation"
:Otl
O2 - BHO: (no name) - {48405d3d-2674-4cd8-b1ef-9a719443bd3f} - No CLSID value found.
O2 - BHO: (no name) - {4daac69c-cba7-45e2-9bc8-1044483d3352} - No CLSID value found.
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (no name) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - No CLSID value found.
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - No CLSID value found.
O2 - BHO: (no name) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - No CLSID value found.
O2 - BHO: (IeMonitorBho Class) - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll (Megaupload Limited)
O2 - BHO: (no name) - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - No CLSID value found.
O2 - BHO: (no name) - {cd36797a-70f3-4acd-8825-623d3b896881} - No CLSID value found.
O2 - BHO: (no name) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - No CLSID value found.
O2 - BHO: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - No CLSID value found.
O2 - BHO: (no name) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {1d1b60fd-b21f-4b9a-8a5f-64e8544828d7} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {48405d3d-2674-4cd8-b1ef-9a719443bd3f} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {965B54B0-71E0-4611-8DE7-F73FA0B20E26} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {C17590D2-ECB4-4b15-8820-F58798DCC118} - No CLSID value found.
O3 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..\Toolbar\WebBrowser: (no name) - {1D1B60FD-B21F-4B9A-8A5F-64E8544828D7} - No CLSID value found.
O3 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..\Toolbar\WebBrowser: (no name) - {48405D3D-2674-4CD8-B1EF-9A719443BD3F} - No CLSID value found.
O3 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..\Toolbar\WebBrowser: (no name) - {965B54B0-71E0-4611-8DE7-F73FA0B20E26} - No CLSID value found.
:commands
[emptytemp]
[RESETHOSTS]
[EMPTYFLASH]
* Cliques sur l'icône "Correction" (en haut à gauche) .
* Laisse le scan aller à son terme sans te servir du PC
* A la fin du scan un rapport va s'ouvrir "OTL.Txt"
* Copie et colle le rapports dans ta réponse stp...
* Au cas où, tu peux les retrouver dans le dossier C:\OTL ou sur ton bureau en fonction des cas rencontrés
Avast est il encore actif car pour moi il ne l'ai plus
désinstalle puis réinstalle le voici son utilitaire pour le supprimer
http://www.commentcamarche.net/download ... n-de-avast
puis recharge le ici
http://www.avast.com/fr-fr/index
Ensuite fait ce qui suis
* Fais un double-clic sur l'icône d'OTL pour le lancer
/!\ pour Vista/Seven fais un clic-droit sur l'icône d'OTL et choisis "Exécuter en tant qu'administrateur"
* Assure toi d'avoir fermé toutes les applications en court de fonctionnement.
* Quand la fenêtre d'OTL apparaît, assure toi que dans la section "Rapport" (en haut à droite) la case "Rapport minimal" soit cochée.
* Copies et colles le contenue de cette citation dans la partie inférieure d'OTL "Personnalisation"
:Otl
O2 - BHO: (no name) - {48405d3d-2674-4cd8-b1ef-9a719443bd3f} - No CLSID value found.
O2 - BHO: (no name) - {4daac69c-cba7-45e2-9bc8-1044483d3352} - No CLSID value found.
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (no name) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - No CLSID value found.
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - No CLSID value found.
O2 - BHO: (no name) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - No CLSID value found.
O2 - BHO: (IeMonitorBho Class) - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll (Megaupload Limited)
O2 - BHO: (no name) - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - No CLSID value found.
O2 - BHO: (no name) - {cd36797a-70f3-4acd-8825-623d3b896881} - No CLSID value found.
O2 - BHO: (no name) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - No CLSID value found.
O2 - BHO: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - No CLSID value found.
O2 - BHO: (no name) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {1d1b60fd-b21f-4b9a-8a5f-64e8544828d7} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {48405d3d-2674-4cd8-b1ef-9a719443bd3f} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {965B54B0-71E0-4611-8DE7-F73FA0B20E26} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {C17590D2-ECB4-4b15-8820-F58798DCC118} - No CLSID value found.
O3 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..\Toolbar\WebBrowser: (no name) - {1D1B60FD-B21F-4B9A-8A5F-64E8544828D7} - No CLSID value found.
O3 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..\Toolbar\WebBrowser: (no name) - {48405D3D-2674-4CD8-B1EF-9A719443BD3F} - No CLSID value found.
O3 - HKU\S-1-5-21-3110841774-1849680747-3807454378-1000\..\Toolbar\WebBrowser: (no name) - {965B54B0-71E0-4611-8DE7-F73FA0B20E26} - No CLSID value found.
:commands
[emptytemp]
[RESETHOSTS]
[EMPTYFLASH]
* Cliques sur l'icône "Correction" (en haut à gauche) .
* Laisse le scan aller à son terme sans te servir du PC
* A la fin du scan un rapport va s'ouvrir "OTL.Txt"
* Copie et colle le rapports dans ta réponse stp...
* Au cas où, tu peux les retrouver dans le dossier C:\OTL ou sur ton bureau en fonction des cas rencontrés
-
shion-ares - Messages: 1266
- Age: 42
- Inscription: 15 Juil 2009 09:00
- Localisation: herbignac
- Sexe:
Point(s) : 6890- Donner
- Nombre de réponses utiles: 66
12 messages
• Page 1 sur 1
Retourner vers Assistance à distance
Qui est en ligne
Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 1 invité
Qui a vu ce sujet 
Publicités par Advertisement Management