Aller au contenu

Cyrilc222

Membres
  • Compteur de contenus

    4
  • Inscription

  • Dernière visite

Tout ce qui a été posté par Cyrilc222

  1. Bonjour à toutes et à tous, Depuis deux jours je rencontre des problèmes avec mon PC équipé de Windows Vista (à jour) et de McAfee Security Center: ce dernier n'est plus reconnu par Windows comme antivirus "actif" et l'analyse en temps réel se désactive continuellement (càd, dès que je l'active, une poignée de secondes plus tard elle se désactive de nouveau)...bref je pense avoir choppé quelque chose mais quoi? McAfee ne voit rien, MalwareBytes non plus, les softs de clean et maintenance du systeme genre Ccleaner et Glary tournent régulièrement, et je pense etre plutot attentif à la sécurité de mon pc (j'ai déja essayé quelques solutions déja présentes sur d'autres forum: [Résolu] analyse en temps réel de McAfee - Sécurité - Forums 01net & [résolu] Analyse en temps réel désactivée sur McAfee - Sécurité - Forums 01net , en vain)... J'ai fait un scan avec OTL dont le rapport est collé ci-dessous: OTL logfile created on: 13/09/2011 21:30:31 - Run 2 OTL by OldTimer - Version 3.2.28.0 Folder = C:\Users\Mélanie\Desktop Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 985,63 Mb Total Physical Memory | 149,43 Mb Available Physical Memory | 15,16% Memory free 2,18 Gb Paging File | 0,78 Gb Available in Paging File | 35,90% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 134,36 Gb Total Space | 67,36 Gb Free Space | 50,13% Space Free | Partition Type: NTFS Drive D: | 14,65 Gb Total Space | 9,25 Gb Free Space | 63,14% Space Free | Partition Type: NTFS Computer Name: PC-DE-MÉLANIE | User Name: Mélanie | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2011/09/12 23:57:06 | 000,581,632 | ---- | M] (OldTimer Tools) -- C:\Users\Mélanie\Desktop\OTL.exe PRC - [2011/08/19 15:59:30 | 000,148,520 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe PRC - [2011/08/19 15:55:34 | 000,160,344 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe PRC - [2011/08/19 15:55:18 | 000,166,024 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe PRC - [2011/07/13 09:58:00 | 001,312,384 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee.com\Agent\mcagent.exe PRC - [2011/06/11 19:32:51 | 000,240,288 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashUtil10s_ActiveX.exe PRC - [2011/01/27 18:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe PRC - [2009/04/11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2009/04/11 08:27:28 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conime.exe PRC - [2009/04/01 09:00:24 | 000,483,428 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\sttray.exe PRC - [2009/04/01 09:00:18 | 000,254,042 | ---- | M] (IDT, Inc.) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\stacsv.exe PRC - [2009/04/01 09:00:04 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\AEstSrv.exe PRC - [2009/04/01 08:18:54 | 000,049,250 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\HidFind.exe PRC - [2009/04/01 08:18:34 | 000,217,088 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\Apoint.exe PRC - [2009/04/01 08:18:32 | 000,054,568 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\ApMsgFwd.exe PRC - [2009/04/01 08:18:32 | 000,049,152 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\Apntex.exe PRC - [2009/01/09 19:06:32 | 001,735,760 | ---- | M] (Dell Inc.) -- C:\Program Files\Dell\QuickSet\quickset.exe PRC - [2008/12/18 20:05:28 | 000,155,648 | ---- | M] (Stardock Corporation) -- C:\Program Files\Dell\DellDock\DockLogin.exe PRC - [2008/05/08 00:41:14 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe PRC - [2008/05/08 00:41:12 | 000,178,712 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe PRC - [2008/01/21 04:33:00 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe ========== Modules (No Company Name) ========== MOD - [2011/09/01 03:10:47 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\a6d889aa69fd51c100352f23c7cebd22\System.Runtime.Remoting.ni.dll MOD - [2011/09/01 03:10:33 | 011,804,672 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\5aa9131000876de66160ff713b543d99\System.Web.ni.dll MOD - [2011/09/01 03:07:59 | 007,950,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\b9ea0d414c4861120bfb7365d8ec0939\System.ni.dll MOD - [2011/09/01 03:07:51 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\f6deb187f24bb3185841092b89fbfdbb\mscorlib.ni.dll MOD - [2008/12/22 12:32:38 | 000,054,784 | ---- | M] () -- C:\Windows\System32\bcmwlrmt.dll ========== Win32 Services (SafeList) ========== SRV - [2011/08/19 15:59:30 | 000,148,520 | ---- | M] (McAfee, Inc.) [unknown | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe -- (mfevtp) SRV - [2011/08/19 15:55:34 | 000,160,344 | ---- | M] () [unknown | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe -- (mfefire) SRV - [2011/08/19 15:55:18 | 000,166,024 | ---- | M] () [unknown | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe -- (McShield) SRV - [2011/01/27 18:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (MSK80Service) SRV - [2011/01/27 18:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McProxy) SRV - [2011/01/27 18:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McNASvc) SRV - [2011/01/27 18:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McNaiAnn) SRV - [2011/01/27 18:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (mcmscsvc) SRV - [2011/01/27 18:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (McMPFSvc) SRV - [2010/10/07 22:34:28 | 000,364,216 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS) SRV - [2009/06/18 10:36:33 | 000,016,680 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) [On_Demand | Stopped] -- C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe -- (GoToAssist) SRV - [2009/04/01 09:00:18 | 000,254,042 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\stacsv.exe -- (STacSV) SRV - [2009/04/01 09:00:04 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\AEstSrv.exe -- (AESTFilters) SRV - [2008/12/18 20:05:28 | 000,155,648 | ---- | M] (Stardock Corporation) [Auto | Running] -- C:\Program Files\Dell\DellDock\DockLogin.exe -- (DockLoginService) SRV - [2008/05/08 00:41:14 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe -- (IAANTMON) Intel® SRV - [2008/01/21 04:33:00 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend) ========== Driver Services (SafeList) ========== DRV - [2011/08/15 10:00:06 | 000,461,864 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\Windows\System32\drivers\mfehidk.sys -- (mfehidk) DRV - [2011/08/15 10:00:06 | 000,338,040 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\Windows\System32\drivers\mfefirek.sys -- (mfefirek) DRV - [2011/08/15 10:00:06 | 000,180,072 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\Windows\System32\drivers\mfeavfk.sys -- (mfeavfk) DRV - [2011/08/15 10:00:06 | 000,164,776 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\Windows\System32\drivers\mfewfpk.sys -- (mfewfpk) DRV - [2011/08/15 10:00:06 | 000,119,808 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\Windows\System32\drivers\mfeapfk.sys -- (mfeapfk) DRV - [2011/08/15 10:00:06 | 000,087,808 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Stopped] -- C:\Windows\System32\drivers\mferkdet.sys -- (mferkdet) DRV - [2011/08/15 10:00:06 | 000,064,712 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\mfenlfk.sys -- (mfenlfk) DRV - [2011/08/15 10:00:06 | 000,059,288 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\Windows\System32\drivers\mfebopk.sys -- (mfebopk) DRV - [2011/08/15 10:00:06 | 000,057,432 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\Windows\System32\drivers\cfwids.sys -- (cfwids) DRV - [2009/09/16 10:22:48 | 000,040,552 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mfesmfk.sys -- (mfesmfk) DRV - [2009/09/16 10:22:14 | 000,034,248 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mferkdk.sys -- (mferkdk) DRV - [2009/04/01 09:00:26 | 000,398,336 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA) DRV - [2009/04/01 08:18:30 | 000,192,048 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Apfiltr.sys -- (ApfiltrService) DRV - [2008/12/22 12:32:18 | 000,018,424 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\bcm42rly.sys -- (BCM42RLY) DRV - [2008/01/21 04:32:51 | 000,220,672 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\e1e6032.sys -- (e1express) Pilote de la connexion réseau Intel® DRV - [2006/11/02 09:36:43 | 002,028,032 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300) DRV - [2005/01/31 10:20:04 | 000,211,712 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\LV561AV.SYS -- (PID_0928) Logitech QuickCam Express(PID_0928) DRV - [2005/01/31 10:12:46 | 000,022,016 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\LVUSBSta.sys -- (LVUSBSta) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search bar = Le Complément de recherche d'Internet Explorer 6 n'est plus pris en charge. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-953400385-1745167662-3994556268-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport IE - HKU\S-1-5-21-953400385-1745167662-3994556268-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN : Hotmail, Messenger, Bing, Actualité et Sport IE - HKU\S-1-5-21-953400385-1745167662-3994556268-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr IE - HKU\S-1-5-21-953400385-1745167662-3994556268-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 20 A5 48 0B 5A 6E CC 01 [binary data] IE - HKU\S-1-5-21-953400385-1745167662-3994556268-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKU\S-1-5-21-953400385-1745167662-3994556268-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\progra~1\mcafee\msc\npmcsn~1.dll () FF - HKLM\Software\MozillaPlugins\@mcafee.com/MVT: C:\Program Files\McAfee\Supportability\MVT\npmvtplugin.dll (McAfee, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.449: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.3.448: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.1: C:\Users\Mélanie\AppData\Roaming\Facebook\npfbplugin_1_0_1.dll File not found FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{D19CA586-DD6C-4a0a-96F8-14644F340D60}: C:\Program Files\Common Files\McAfee\SystemCore [2011/09/13 20:20:16 | 000,000,000 | ---D | M] O1 HOSTS File: ([2006/09/18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\progra~1\mcafee\msk\mskapbho.dll () O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer) O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20110912221305.dll (McAfee, Inc.) O3: - HKU\S-1-5-21-953400385-1745167662-3994556268-1000\..\Toolbar\WebBrowser - No CLSID value found. O3 - HKU\S-1-5-21-953400385-1745167662-3994556268-1000\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found. O3: - HKU\S-1-5-21-953400385-1745167662-3994556268-1000\..\Toolbar\WebBrowser - No CLSID value found. O3 - HKU\S-1-5-21-953400385-1745167662-3994556268-1000\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found. O4 - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.) O4 - HKLM..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation) O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.) O4 - HKLM..\Run: [QuickSet] C:\Program Files\Dell\QuickSet\QuickSet.exe (Dell Inc.) O4 - HKLM..\Run: [sysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.) O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation) O4 - Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation) O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 File not found O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html File not found O9 - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL (Microsoft Corporation) O13 - gopher Prefix: missing O15 - HKU\S-1-5-21-953400385-1745167662-3994556268-1000\..Trusted Domains: internet ([]about in Trusted sites) O15 - HKU\S-1-5-21-953400385-1745167662-3994556268-1000\..Trusted Domains: mcafee.com ([]http in Trusted sites) O15 - HKU\S-1-5-21-953400385-1745167662-3994556268-1000\..Trusted Domains: mcafee.com ([]https in Trusted sites) O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab (Facebook Photo Uploader 5 Control) O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab (Facebook Photo Uploader 5 Control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11) O16 - DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B2A8CAAC-977D-438C-B84C-376E40BB0BA5}: DhcpNameServer = 192.168.2.1 O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\progra~1\mcafee\msc\mcsniepl.dll (McAfee, Inc.) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\GoToAssist: DllName - (C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll) - C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll (Citrix Online, a division of Citrix Systems, Inc.) O24 - Desktop WallPaper: C:\Users\Mélanie\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg O24 - Desktop BackupWallPaper: C:\Users\Mélanie\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2006/09/18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O33 - MountPoints2\{7b8d9d91-04f1-11df-9d1b-0023ae3cd8df}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL pIuxOB.exe O33 - MountPoints2\{83a98a2f-663a-11de-bcb3-0023ae3cd8df}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\CUeBUd.Exe O33 - MountPoints2\{a7198c93-fadc-11de-a32e-0023ae3cd8df}\Shell - "" = AutoRun O33 - MountPoints2\{a7198c93-fadc-11de-a32e-0023ae3cd8df}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a O33 - MountPoints2\{ed8e297b-0b31-11df-bdf6-0023ae3cd8df}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\XoaUsUf.Exe O33 - MountPoints2\{ed8e297e-0b31-11df-bdf6-0023ae3cd8df}\Shell - "" = AutoRun O33 - MountPoints2\{ed8e297e-0b31-11df-bdf6-0023ae3cd8df}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a O33 - MountPoints2\F\Shell - "" = AutoRun O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: FastUserSwitchingCompatibility - File not found NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation) NetSvcs: Nla - File not found NetSvcs: Ntmssvc - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: SRService - File not found NetSvcs: WmdmPmSp - File not found NetSvcs: LogonHours - File not found NetSvcs: PCAudit - File not found NetSvcs: helpsvc - File not found NetSvcs: uploadmgr - File not found MsConfig - StartUpReg: Adobe Reader Speed Launcher - hkey= - key= - c:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated) MsConfig - StartUpReg: BrMfcWnd - hkey= - key= - C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe (Brother Industries, Ltd.) MsConfig - StartUpReg: ControlCenter3 - hkey= - key= - C:\Program Files\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.) MsConfig - StartUpReg: Dell DataSafe Online - hkey= - key= - C:\Program Files\Dell DataSafe Online\DataSafeOnline.exe () MsConfig - StartUpReg: Google Quick Search Box - hkey= - key= - Reg Error: Value error. File not found MsConfig - StartUpReg: IndexSearch - hkey= - key= - C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe (Nuance Communications, Inc.) MsConfig - StartUpReg: msnmsgr - hkey= - key= - C:\Program Files\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation) MsConfig - StartUpReg: PaperPort PTD - hkey= - key= - C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe (Nuance Communications, Inc.) MsConfig - StartUpReg: PDVDDXSrv - hkey= - key= - C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.) MsConfig - StartUpReg: PPort11reminder - hkey= - key= - C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe (Nuance Communications, Inc.) MsConfig - StartUpReg: SSBkgdUpdate - hkey= - key= - C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe (Nuance Communications, Inc.) MsConfig - StartUpReg: TkBellExe - hkey= - key= - C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.) SafeBootMin: AppMgmt - File not found SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: HelpSvc - Service SafeBootMin: mcmscsvc - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.) SafeBootMin: MCODS - C:\Program Files\McAfee\VirusScan\mcods.exe (McAfee, Inc.) SafeBootMin: NTDS - File not found SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PEVSystemStart - Service SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: procexp90.Sys - Driver SafeBootMin: sacsvr - Service SafeBootMin: SCSI Class - Driver Group SafeBootMin: System Bus Extender - Driver Group SafeBootMin: WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation) SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices SafeBootNet: AppMgmt - File not found SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: GoToAssist - C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe (Citrix Online, a division of Citrix Systems, Inc.) SafeBootNet: HelpSvc - Service SafeBootNet: McMPFSvc - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.) SafeBootNet: mcmscsvc - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.) SafeBootNet: MCODS - C:\Program Files\McAfee\VirusScan\mcods.exe (McAfee, Inc.) SafeBootNet: Messenger - Service SafeBootNet: mfefire - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe () SafeBootNet: mfefirek - C:\Windows\System32\drivers\mfefirek.sys (McAfee, Inc.) SafeBootNet: mfefirek.sys - C:\Windows\System32\drivers\mfefirek.sys (McAfee, Inc.) SafeBootNet: mfehidk - C:\Windows\System32\drivers\mfehidk.sys (McAfee, Inc.) SafeBootNet: mfehidk.sys - C:\Windows\System32\drivers\mfehidk.sys (McAfee, Inc.) SafeBootNet: mfevtp - C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe (McAfee, Inc.) SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: NTDS - File not found SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PEVSystemStart - Service SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: procexp90.Sys - Driver SafeBootNet: rdsessmgr - Service SafeBootNet: sacsvr - Service SafeBootNet: SCSI Class - Driver Group SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation) SafeBootNet: WudfPf - Driver SafeBootNet: WudfUsbccidDriver - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun) ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 11.0 ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack ActiveX: {3C3901C5-3455-3E0A-A214-0B093A5070A6} - .NET Framework ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6 ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7 ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\system32\ie4uinit.exe -BaseSettings ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - .NET Framework ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1 ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\system32\unregmp2.exe /ShowWMP ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\system32\ie4uinit.exe -UserIconConfig ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: MSVideo - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation) Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation) Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.) Drivers32: VIDC.I420 - C:\Windows\System32\lvcodec2.dll (Logitech Inc.) ========== Files/Folders - Created Within 30 Days ========== [2011/09/13 21:23:24 | 000,000,000 | ---D | C] -- C:\ZHP [2011/09/13 21:23:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHPFix 1.12 [2011/09/13 21:23:10 | 000,000,000 | ---D | C] -- C:\Program Files\ZHPFix [2011/09/13 21:22:11 | 000,000,000 | --SD | C] -- C:\ComboFix [2011/09/13 21:20:27 | 001,231,842 | ---- | C] (Nicolas Coolman ) -- C:\Users\Mélanie\Desktop\ZHPFix.exe [2011/09/13 21:13:34 | 004,207,448 | R--- | C] (Swearware) -- C:\Users\Mélanie\Desktop\ComboFix.exe [2011/09/13 21:10:52 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe [2011/09/13 21:10:49 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe [2011/09/13 21:10:49 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe [2011/09/13 21:10:11 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT [2011/09/13 21:10:01 | 000,000,000 | ---D | C] -- C:\Qoobox [2011/09/13 20:20:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee [2011/09/13 07:14:52 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Remover [2011/09/13 06:51:17 | 000,222,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe [2011/09/12 23:56:38 | 000,581,632 | ---- | C] (OldTimer Tools) -- C:\Users\Mélanie\Desktop\OTL.exe [2011/09/12 23:25:49 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\Desktop\Fichiers à graver [2011/09/12 23:18:34 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Roaming\McAfee [2011/09/12 23:17:45 | 000,000,000 | R--D | C] -- C:\Users\Mélanie\Desktop\Mélanie [2011/09/12 23:15:09 | 000,000,000 | ---D | C] -- C:\Program Files\Audacity [2011/09/12 20:38:35 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\Desktop\Chanson [2011/09/12 19:52:03 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{FCABBD60-074C-45A9-B2FF-3FB95F23D85C} [2011/09/12 19:51:47 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{E36B7896-31EE-445B-B1B9-B18C9FF84F98} [2011/09/11 11:33:05 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{66B6D1E3-D218-4B19-9AF9-5FA045B2BE3C} [2011/09/11 11:32:43 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{E4480C22-4E5A-4917-B9DC-AA61FB662F20} [2011/09/10 19:12:49 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{47A49389-C806-463F-9B8E-F014F2A0A69B} [2011/09/10 19:12:25 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{8B471681-5256-4DFF-AE1A-52A62D168EBE} [2011/09/09 22:02:11 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{B3C3B085-2647-448A-9DA4-39997F57B3D8} [2011/09/09 22:01:45 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{3280BCA7-5FEC-4B76-B20F-6FD28D89BA2E} [2011/09/08 21:00:48 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{03B06C30-0909-4E50-B04E-D5185B6BBA67} [2011/09/08 21:00:36 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{D9D7814C-3DAC-430C-AD65-81EAAFD30938} [2011/09/07 19:45:51 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{FE2C52FB-B344-4DAB-9F2B-B7B3E544E98B} [2011/09/07 19:45:21 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{B7FC5596-6ED4-402A-8F86-BC5BB1E24B59} [2011/09/06 19:26:44 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{FF7319DA-F61A-4947-97E2-3B3FA3CC26E1} [2011/09/06 19:26:22 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{964C4BC1-C228-4244-AE93-0CB037C43999} [2011/09/05 22:58:34 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{06A6442D-9EF4-4784-BB67-FA6AA7E45993} [2011/09/05 22:58:02 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{5D6EEBEC-73CD-40CC-8452-505A133E5035} [2011/09/01 20:00:31 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{D89E5692-0391-455A-91BB-AB8DBD949A94} [2011/09/01 20:00:09 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{3DD85DB1-0D2D-42AD-A774-069B6A90A166} [2011/09/01 03:03:08 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2011/08/31 23:57:46 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{6A82EB6E-46BC-4759-9949-09B5D61D45DC} [2011/08/31 23:57:15 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{539689E3-8F24-4679-BBF9-24DBED7CAEFF} [2011/08/31 23:31:07 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{96E4CF5A-59B5-4373-A319-16E7EDF84823} [2011/08/30 19:28:46 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{072AF356-520A-4EE1-A2E5-8CE722693BD7} [2011/08/30 19:28:27 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{14A14C07-85B3-4E02-B47C-17E2658020DB} [2011/08/29 20:27:15 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{86FE8191-527E-40B8-AA94-D913F347FF31} [2011/08/29 20:26:46 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{1802EA2D-667B-4179-96AE-DD9F3231F3F8} [2011/08/28 23:02:36 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{A0135B8C-E949-4343-9AFD-2B1F3ADC02B6} [2011/08/28 23:02:14 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{23C1AE0B-B0DC-4971-8C8C-F51B1A0D04C7} [2011/08/28 11:01:45 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{E8B7A866-8FF7-4FD0-B38E-38F166C8518A} [2011/08/28 11:01:22 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{C67BC2AF-40D0-4A19-8205-9BF5B194F0AA} [2011/08/27 23:00:49 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{A9267A65-8047-47B4-9E36-D78512AADC2A} [2011/08/27 23:00:21 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{FFF5B3B2-4D77-4E15-9A71-6C1BED98F495} [2011/08/27 10:59:12 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{C54AFCE7-8651-45DE-B1A4-5106A108ECD9} [2011/08/27 10:58:43 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{4081A1D1-F7E9-4892-8EA5-5797FA596C67} [2011/08/26 19:18:57 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{96338F0E-0DD1-4951-B450-6E6D92AAEDCD} [2011/08/26 19:18:35 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{4F589F3E-35F1-4188-9E75-30CE7F92F0DB} [2011/08/25 19:59:19 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{CF9ADB1D-0635-4322-B46B-F6F05EEB728A} [2011/08/25 19:58:52 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{5801AF06-273B-4E44-B316-7FBF229FAC41} [2011/08/24 20:21:13 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{E39B33AB-22DF-4CF5-9CA9-07CD947CC696} [2011/08/24 20:20:58 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{12625712-BB87-4C53-ACAE-6F7ACB8CA047} [2011/08/23 21:56:00 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll [2011/08/23 20:51:31 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{8AA7A511-BA05-4687-B29E-72C0DDB1C798} [2011/08/23 20:50:58 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{1C7B8BD7-1E74-428E-97D2-442BED2EAA1E} [2011/08/22 20:28:31 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{CE8F1048-85AD-4C5B-9DE8-36C05960388B} [2011/08/22 20:28:05 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{8B0F1615-588C-4AA5-BADE-44AE82B1F95D} [2011/08/21 11:42:05 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{EF6E23DD-A6A2-4118-94AC-DF7F3341BB1E} [2011/08/21 11:41:40 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{B7B367A1-B3B3-4473-8779-EB79EDADB53C} [2011/08/20 18:39:37 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{93AB742B-C40B-4E77-B4E5-D60D96469558} [2011/08/20 18:39:16 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{F44EBFAC-9B64-4EC9-ACA2-56BB5036DCF7} [2011/08/20 00:28:55 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{380866FD-7ADF-43B3-89FD-97AB6013EBB0} [2011/08/20 00:28:39 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{00E6383A-F36D-4B84-8A1F-41DC8EB726EC} [2011/08/18 20:15:00 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{D0977DEF-2C8B-42D6-A7D9-917F968F689A} [2011/08/18 20:14:49 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{AF6AEF0C-D0E2-414B-A207-E71A258D37A4} [2011/08/17 19:58:07 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{4EFE120E-D629-4BFC-8AB0-782E23446EF8} [2011/08/17 19:57:51 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{DABCAF41-4CAE-4D1C-A71D-1D20D02CED34} [2011/08/16 20:55:08 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{F5E19816-AAD7-46E9-AC95-5D4CBD49D48A} [2011/08/16 20:54:43 | 000,000,000 | ---D | C] -- C:\Users\Mélanie\AppData\Local\{2EBA53EC-E84A-4360-A3CE-42C9CD4900AE} [2009/07/28 12:40:22 | 008,653,312 | ---- | C] (Dell, Inc. ) -- C:\Users\Mélanie\AppData\Roaming\DataSafeDotNet.exe ========== Files - Modified Within 30 Days ========== [2011/09/13 21:28:22 | 000,001,058 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2011/09/13 21:20:31 | 001,231,842 | ---- | M] (Nicolas Coolman ) -- C:\Users\Mélanie\Desktop\ZHPFix.exe [2011/09/13 21:08:22 | 004,207,448 | R--- | M] (Swearware) -- C:\Users\Mélanie\Desktop\ComboFix.exe [2011/09/13 20:28:00 | 000,001,054 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2011/09/13 20:21:33 | 000,000,316 | ---- | M] () -- C:\Windows\tasks\GlaryInitialize.job [2011/09/13 20:21:22 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2011/09/13 20:21:22 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2011/09/13 20:19:53 | 000,000,564 | ---- | M] () -- C:\Windows\tasks\PCDoctorBackgroundMonitorTask.job [2011/09/13 20:19:53 | 000,000,506 | ---- | M] () -- C:\Windows\tasks\SystemToolsDailyTest.job [2011/09/13 20:19:48 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2011/09/13 20:19:44 | 1032,204,288 | -HS- | M] () -- C:\hiberfil.sys [2011/09/13 07:15:05 | 000,001,678 | ---- | M] () -- C:\Users\Mélanie\Desktop\AD-R.lnk [2011/09/12 23:57:06 | 000,581,632 | ---- | M] (OldTimer Tools) -- C:\Users\Mélanie\Desktop\OTL.exe [2011/09/12 23:20:01 | 000,679,366 | ---- | M] () -- C:\Windows\System32\perfh00C.dat [2011/09/12 23:20:01 | 000,596,302 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2011/09/12 23:20:01 | 000,126,966 | ---- | M] () -- C:\Windows\System32\perfc00C.dat [2011/09/12 23:20:00 | 000,104,376 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2011/09/12 23:17:45 | 000,137,728 | ---- | M] () -- C:\Users\Mélanie\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011/09/12 23:15:11 | 000,000,754 | ---- | M] () -- C:\Users\Mélanie\Desktop\Audacity.lnk [2011/09/12 06:45:42 | 000,001,928 | ---- | M] () -- C:\Users\Mélanie\Documents\maintenance registre 12-09-2011.reg [2011/09/10 19:15:48 | 000,002,687 | ---- | M] () -- C:\Users\Mélanie\Desktop\Microsoft Office Word 2007.lnk [2011/08/31 17:00:50 | 000,022,216 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys [2011/08/15 10:00:06 | 000,461,864 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfehidk.sys [2011/08/15 10:00:06 | 000,338,040 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfefirek.sys [2011/08/15 10:00:06 | 000,180,072 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfeavfk.sys [2011/08/15 10:00:06 | 000,164,776 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfewfpk.sys [2011/08/15 10:00:06 | 000,119,808 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfeapfk.sys [2011/08/15 10:00:06 | 000,087,808 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mferkdet.sys [2011/08/15 10:00:06 | 000,064,712 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfenlfk.sys [2011/08/15 10:00:06 | 000,059,288 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfebopk.sys [2011/08/15 10:00:06 | 000,057,432 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\cfwids.sys [2011/08/15 10:00:06 | 000,009,344 | ---- | M] (McAfee, Inc.) -- C:\Windows\System32\drivers\mfeclnk.sys ========== Files Created - No Company Name ========== [2011/09/13 21:10:52 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe [2011/09/13 21:10:49 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe [2011/09/13 21:10:49 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe [2011/09/13 21:10:49 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe [2011/09/13 21:10:49 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe [2011/09/13 07:15:05 | 000,001,678 | ---- | C] () -- C:\Users\Mélanie\Desktop\AD-R.lnk [2011/09/12 23:16:46 | 000,001,941 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Virtual Technician.lnk [2011/09/12 23:15:11 | 000,000,754 | ---- | C] () -- C:\Users\Mélanie\Desktop\Audacity.lnk [2011/09/12 23:15:10 | 000,000,766 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk [2011/09/12 06:45:39 | 000,001,928 | ---- | C] () -- C:\Users\Mélanie\Documents\maintenance registre 12-09-2011.reg [2011/08/28 14:29:51 | 001,101,023 | ---- | C] () -- C:\Users\Mélanie\Documents\P5280063.JPG [2011/08/28 14:29:38 | 001,186,636 | ---- | C] () -- C:\Users\Mélanie\Documents\P5280055.JPG [2011/04/03 21:05:03 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat [2010/12/16 00:51:05 | 000,087,552 | ---- | C] () -- C:\Windows\System32\cpwmon2k.dll [2010/10/08 20:51:00 | 000,711,168 | ---- | C] () -- C:\Windows\is-RVV0D.exe [2009/11/14 19:03:28 | 000,000,739 | ---- | C] () -- C:\Windows\Brpfx04a.ini [2009/11/14 19:03:28 | 000,000,093 | ---- | C] () -- C:\Windows\brpcfx.ini [2009/11/14 18:55:12 | 000,000,066 | ---- | C] () -- C:\Windows\Brfaxrx.ini [2009/11/14 18:55:10 | 000,000,000 | ---- | C] () -- C:\Windows\brdfxspd.dat [2009/11/14 18:55:07 | 000,106,496 | ---- | C] () -- C:\Windows\System32\BrMuSNMP.dll [2009/11/14 18:52:05 | 000,031,831 | ---- | C] () -- C:\Windows\maxlink.ini [2009/11/14 18:50:44 | 000,000,441 | ---- | C] () -- C:\Windows\BRWMARK.INI [2009/11/14 18:50:43 | 000,000,065 | ---- | C] () -- C:\Windows\System32\BD7320.DAT [2009/09/24 13:52:40 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin [2009/09/24 13:52:39 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll [2009/08/11 15:00:02 | 000,137,728 | ---- | C] () -- C:\Users\Mélanie\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009/06/18 13:02:25 | 000,982,196 | ---- | C] () -- C:\Windows\System32\igkrng500.bin [2009/06/18 13:02:25 | 000,417,344 | ---- | C] () -- C:\Windows\System32\igcompkrng500.bin [2009/06/18 13:02:25 | 000,139,824 | ---- | C] () -- C:\Windows\System32\igfcg500.bin [2009/06/18 13:02:25 | 000,097,448 | ---- | C] () -- C:\Windows\System32\igfcg500m.bin [2009/06/18 12:58:39 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin [2009/06/18 10:24:26 | 000,006,656 | ---- | C] () -- C:\Windows\System32\bcmwlrc.dll [2009/06/18 10:24:25 | 000,054,784 | ---- | C] () -- C:\Windows\System32\bcmwlrmt.dll [2009/06/18 10:24:24 | 000,026,112 | ---- | C] () -- C:\Windows\System32\WLTRYSVC.EXE [2009/06/18 10:16:22 | 000,140,288 | ---- | C] () -- C:\Windows\System32\igfxtvcx.dll [2008/02/04 11:27:50 | 000,000,000 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat [2008/01/21 09:23:37 | 000,679,366 | ---- | C] () -- C:\Windows\System32\perfh00C.dat [2008/01/21 09:23:37 | 000,340,236 | ---- | C] () -- C:\Windows\System32\perfi00C.dat [2008/01/21 09:23:37 | 000,126,966 | ---- | C] () -- C:\Windows\System32\perfc00C.dat [2008/01/21 09:23:37 | 000,037,390 | ---- | C] () -- C:\Windows\System32\perfd00C.dat [2006/11/02 14:53:49 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2006/11/02 14:44:53 | 000,270,848 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT [2006/11/02 12:33:01 | 000,596,302 | ---- | C] () -- C:\Windows\System32\perfh009.dat [2006/11/02 12:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat [2006/11/02 12:33:01 | 000,104,376 | ---- | C] () -- C:\Windows\System32\perfc009.dat [2006/11/02 12:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat [2006/11/02 12:25:44 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll [2006/11/02 12:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat [2006/11/02 10:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2006/11/02 10:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT [2006/11/02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini [2006/11/02 09:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat [2005/01/31 08:37:58 | 000,009,255 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini [2004/08/09 08:00:42 | 000,000,114 | ---- | C] () -- C:\Windows\System32\BRLMW03A.INI ========== LOP Check ========== [2011/03/06 01:26:02 | 000,000,000 | ---D | M] -- C:\Users\Mélanie\AppData\Roaming\GlarySoft [2011/03/03 23:29:42 | 000,000,000 | ---D | M] -- C:\Users\Mélanie\AppData\Roaming\moovida-1 [2009/11/28 18:13:36 | 000,000,000 | ---D | M] -- C:\Users\Mélanie\AppData\Roaming\PC-FAX TX [2010/12/14 00:05:16 | 000,000,000 | ---D | M] -- C:\Users\Mélanie\AppData\Roaming\PCDr [2010/10/26 23:38:06 | 000,000,000 | ---D | M] -- C:\Users\Mélanie\AppData\Roaming\Windows Live Writer [2011/09/13 20:21:33 | 000,000,316 | ---- | M] () -- C:\Windows\Tasks\GlaryInitialize.job [2011/09/13 20:19:53 | 000,000,564 | ---- | M] () -- C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job [2011/09/13 20:18:57 | 000,032,562 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [2011/09/13 20:19:53 | 000,000,506 | ---- | M] () -- C:\Windows\Tasks\SystemToolsDailyTest.job ========== Purity Check ========== ========== Custom Scans ========== < %SYSTEMDRIVE%\*.* > [2011/09/13 07:18:11 | 000,003,248 | ---- | M] () -- C:\Ad-Report-CLEAN[1].txt [2011/09/13 07:16:02 | 000,003,017 | ---- | M] () -- C:\Ad-Report-SCAN[1].txt [2006/09/18 23:43:36 | 000,000,024 | ---- | M] () -- C:\autoexec.bat [2009/04/11 08:36:36 | 000,333,257 | RHS- | M] () -- C:\bootmgr [2006/09/18 23:43:37 | 000,000,010 | ---- | M] () -- C:\config.sys [2009/06/18 13:02:38 | 000,003,230 | RH-- | M] () -- C:\dell.sdr [2011/09/13 20:19:44 | 1032,204,288 | -HS- | M] () -- C:\hiberfil.sys [2011/09/13 20:19:43 | 1348,083,712 | -HS- | M] () -- C:\pagefile.sys < %SYSTEMDRIVE%\*.exe > < %PROGRAMFILES%\*.* > [2008/01/21 04:57:01 | 000,000,174 | -HS- | M] () -- C:\Program Files\desktop.ini < %PROGRAMFILES%\*. > [2010/12/16 00:51:03 | 000,000,000 | ---D | M] -- C:\Program Files\Acro Software [2011/09/13 07:15:05 | 000,000,000 | ---D | M] -- C:\Program Files\Ad-Remover [2010/10/08 20:11:14 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe [2009/10/08 21:11:14 | 000,000,000 | ---D | M] -- C:\Program Files\Apple Software Update [2011/09/12 23:15:10 | 000,000,000 | ---D | M] -- C:\Program Files\Audacity [2009/11/14 18:59:48 | 000,000,000 | ---D | M] -- C:\Program Files\Brother [2009/10/25 19:17:16 | 000,000,000 | ---D | M] -- C:\Program Files\Canon [2009/10/25 19:23:27 | 000,000,000 | -H-D | M] -- C:\Program Files\CanonBJ [2011/08/07 21:46:40 | 000,000,000 | ---D | M] -- C:\Program Files\CCleaner [2009/06/18 10:25:41 | 000,000,000 | ---D | M] -- C:\Program Files\Cisco [2009/06/18 10:36:33 | 000,000,000 | ---D | M] -- C:\Program Files\Citrix [2011/07/05 00:21:55 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files [2009/06/18 10:47:49 | 000,000,000 | ---D | M] -- C:\Program Files\CyberLink [2009/06/18 10:49:22 | 000,000,000 | ---D | M] -- C:\Program Files\Dell [2009/12/01 19:34:45 | 000,000,000 | ---D | M] -- C:\Program Files\Dell DataSafe Online [2009/06/18 10:24:00 | 000,000,000 | ---D | M] -- C:\Program Files\Dell Inc [2011/08/26 19:39:32 | 000,000,000 | ---D | M] -- C:\Program Files\Dell Support Center [2009/06/18 10:34:22 | 000,000,000 | ---D | M] -- C:\Program Files\Dell Video Chat [2009/06/18 13:02:08 | 000,000,000 | ---D | M] -- C:\Program Files\DellTPad [2009/06/24 19:49:59 | 000,000,000 | -HSD | M] -- C:\Program Files\Fichiers communs [2011/08/07 22:17:32 | 000,000,000 | ---D | M] -- C:\Program Files\Glary Utilities [2011/06/07 18:45:10 | 000,000,000 | ---D | M] -- C:\Program Files\Google [2010/12/16 00:51:49 | 000,000,000 | ---D | M] -- C:\Program Files\GPLGS [2009/06/18 05:07:38 | 000,000,000 | ---D | M] -- C:\Program Files\IDT [2009/11/14 18:55:04 | 000,000,000 | -H-D | M] -- C:\Program Files\InstallShield Installation Information [2009/06/18 10:28:41 | 000,000,000 | ---D | M] -- C:\Program Files\Intel [2011/08/10 21:47:45 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer [2009/06/18 10:23:08 | 000,000,000 | ---D | M] -- C:\Program Files\Java [2011/06/07 12:10:11 | 000,000,000 | ---D | M] -- C:\Program Files\Labtec [2011/09/12 23:58:23 | 000,000,000 | ---D | M] -- C:\Program Files\Malwarebytes' Anti-Malware [2011/09/12 23:16:40 | 000,000,000 | ---D | M] -- C:\Program Files\McAfee [2010/09/04 09:53:58 | 000,000,000 | ---D | M] -- C:\Program Files\McAfee.com [2010/05/26 22:15:09 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft [2011/04/05 19:16:43 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft CAPICOM 2.1.0.2 [2006/11/02 14:35:51 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Games [2011/07/14 13:01:49 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Office [2011/06/16 16:40:16 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Silverlight [2009/06/18 10:45:52 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft SQL Server Compact Edition [2009/07/02 01:24:19 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Works [2010/06/28 20:55:09 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft.NET [2010/08/29 11:35:29 | 000,000,000 | ---D | M] -- C:\Program Files\Movie Maker [2006/11/02 14:35:51 | 000,000,000 | ---D | M] -- C:\Program Files\MSBuild [2009/11/20 01:33:53 | 000,000,000 | ---D | M] -- C:\Program Files\MSXML 4.0 [2009/11/14 18:53:40 | 000,000,000 | ---D | M] -- C:\Program Files\Nuance [2009/10/30 21:38:02 | 000,000,000 | ---D | M] -- C:\Program Files\Real [2006/11/02 14:35:51 | 000,000,000 | ---D | M] -- C:\Program Files\Reference Assemblies [2009/06/18 10:36:28 | 000,000,000 | ---D | M] -- C:\Program Files\Roxio [2009/11/14 18:48:09 | 000,000,000 | ---D | M] -- C:\Program Files\ScanSoft [2011/07/05 00:22:09 | 000,000,000 | R--D | M] -- C:\Program Files\Skype [2006/11/02 14:58:18 | 000,000,000 | -H-D | M] -- C:\Program Files\Uninstall Information [2009/10/30 23:53:36 | 000,000,000 | ---D | M] -- C:\Program Files\VideoLAN [2010/01/24 14:05:34 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Calendar [2010/01/24 14:05:32 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Collaboration [2010/01/24 14:05:23 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Defender [2011/08/06 12:23:02 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Live [2011/08/10 21:47:45 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Mail [2010/10/16 20:53:21 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Player [2009/06/24 19:49:59 | 000,000,000 | ---D | M] -- C:\Program Files\Windows NT [2010/01/24 14:05:29 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Photo Gallery [2010/02/05 11:34:03 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Portable Devices [2010/01/24 14:05:33 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Sidebar [2011/09/13 21:23:24 | 000,000,000 | ---D | M] -- C:\Program Files\ZHPFix < MD5 for: AGP440.SYS > [2008/01/21 04:32:22 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\drivers\AGP440.sys [2008/01/21 04:32:22 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys [2008/01/21 04:32:22 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys [2008/01/21 04:32:22 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys [2008/01/21 04:32:22 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys [2006/11/02 11:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys < MD5 for: ATAPI.SYS > [2009/06/18 12:46:31 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=0D83C87A801A3DFCD1BF73893FE7518C -- C:\Windows\System32\drivers\atapi.sys [2009/06/18 12:46:31 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=0D83C87A801A3DFCD1BF73893FE7518C -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_4c9c5a00\atapi.sys [2009/06/18 12:46:31 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=0D83C87A801A3DFCD1BF73893FE7518C -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18034_none_dd1bb97e219e87cb\atapi.sys [2009/04/11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys [2009/04/11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys [2008/01/21 04:32:21 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys [2008/01/21 04:32:21 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys [2006/11/02 11:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys [2009/06/18 12:46:31 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=96DC4E1A9F90CCD489950A8935425C59 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.22134_none_dda556493abc2795\atapi.sys < MD5 for: AUTOCHK.EXE > [2009/04/11 08:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E99509F5E7 -- C:\Windows\System32\autochk.exe [2009/04/11 08:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E99509F5E7 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6002.18005_none_e3df6655bee2ee3b\autochk.exe [2008/01/21 04:34:33 | 000,642,560 | ---- | M] (Microsoft Corporation) MD5=2FC5BE79B51714B479809358E4908FC3 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6001.18000_none_e1f3ed49c1c122ef\autochk.exe < MD5 for: BEEP.SYS > [2008/01/21 04:33:14 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=67E506B75BD5326A3EC7B70BD014DFB6 -- C:\Windows\System32\drivers\beep.sys [2008/01/21 04:33:14 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=67E506B75BD5326A3EC7B70BD014DFB6 -- C:\Windows\winsxs\x86_microsoft-windows-beepsys_31bf3856ad364e35_6.0.6001.18000_none_c420a153079d485b\beep.sys < MD5 for: CNGAUDIT.DLL > [2006/11/02 11:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll [2006/11/02 11:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll < MD5 for: EXPLORER.EXE > [2009/06/18 12:57:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe [2009/06/18 12:57:02 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe [2009/06/18 12:57:01 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe [2009/04/11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\explorer.exe [2009/04/11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe [2009/06/18 12:57:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe [2008/01/21 04:34:05 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe < MD5 for: HIDSERV.DLL > [2009/06/18 13:00:46 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=53D5A2F9CE6AE47D7507727DF1DA79F8 -- C:\Windows\winsxs\x86_microsoft-windows-hid-user_31bf3856ad364e35_6.0.6001.22107_none_d73ce73ea085f962\hidserv.dll [2009/04/11 08:28:19 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=84067081F3318162797385E11A8F0582 -- C:\Windows\System32\hidserv.dll [2009/04/11 08:28:19 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=84067081F3318162797385E11A8F0582 -- C:\Windows\winsxs\x86_microsoft-windows-hid-user_31bf3856ad364e35_6.0.6002.18005_none_d897c17984907383\hidserv.dll [2006/11/02 11:46:05 | 000,025,600 | ---- | M] (Microsoft Corporation) MD5=8FA640195279ACE21BEA91396A0054FC -- C:\Windows\winsxs\x86_microsoft-windows-hid-user_31bf3856ad364e35_6.0.6000.16386_none_d47586718a839763\hidserv.dll [2009/06/18 13:00:46 | 000,025,600 | ---- | M] (Microsoft Corporation) MD5=E6EE735E857E1742F7AD8A724E9D2AE4 -- C:\Windows\winsxs\x86_microsoft-windows-hid-user_31bf3856ad364e35_6.0.6000.20765_none_d513c87ca391dd69\hidserv.dll < MD5 for: IASTOR.SYS > [2008/05/08 00:40:38 | 000,395,288 | ---- | M] (Intel Corporation) MD5=07FB761600EFF44AF02C35B8B57E5863 -- C:\Program Files\Intel\Intel Matrix Storage Manager\driver64\IaStor.sys [2008/09/01 12:15:54 | 000,317,976 | ---- | M] (Intel Corporation) MD5=80C633722DA72E97F3F5B3B11325696D -- C:\Drivers\storage\R197861\IaStor.sys [2008/05/08 00:40:02 | 000,317,976 | ---- | M] (Intel Corporation) MD5=80C633722DA72E97F3F5B3B11325696D -- C:\Program Files\Intel\Intel Matrix Storage Manager\driver\IaStor.sys [2008/09/01 12:15:54 | 000,317,976 | ---- | M] (Intel Corporation) MD5=80C633722DA72E97F3F5B3B11325696D -- C:\Windows\System32\drivers\iaStor.sys [2008/05/08 00:40:02 | 000,317,976 | ---- | M] (Intel Corporation) MD5=80C633722DA72E97F3F5B3B11325696D -- C:\Windows\System32\DriverStore\FileRepository\iaahci.inf_1ab0331f\iaStor.sys [2008/09/01 12:15:54 | 000,317,976 | ---- | M] (Intel Corporation) MD5=80C633722DA72E97F3F5B3B11325696D -- C:\Windows\System32\DriverStore\FileRepository\iastor.inf_8e717be2\iaStor.sys < MD5 for: IASTORV.SYS > [2008/01/21 04:32:49 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\drivers\iaStorV.sys [2008/01/21 04:32:49 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_c9df7691\iaStorV.sys [2008/01/21 04:32:49 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_af11527887c7fa8f\iaStorV.sys [2006/11/02 11:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys < MD5 for: IMM32.DLL > [2008/01/21 04:34:05 | 000,114,688 | ---- | M] (Microsoft Corporation) MD5=EC17194A193CD8E90D27CFB93DFA9A2E -- C:\Windows\winsxs\x86_microsoft-windows-imm32_31bf3856ad364e35_6.0.6001.18000_none_5c561e167a6afd02\imm32.dll [2009/04/11 08:28:20 | 000,114,688 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\imm32.dll [2009/04/11 08:28:20 | 000,114,688 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-imm32_31bf3856ad364e35_6.0.6002.18005_none_5e419722778cc84e\imm32.dll < MD5 for: KERNEL32.DLL > [2009/02/13 10:21:09 | 000,890,880 | ---- | M] (Microsoft Corporation) MD5=1987D817D08F5EAF0B7F334026FDDB79 -- C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6001.22376_none_9401d8206f9c7e67\kernel32.dll [2011/04/12 16:53:05 | 000,890,368 | ---- | M] (Microsoft Corporation) MD5=306835D4E74E49A5D10F0FCA0B422EB1 -- C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6001.18631_none_939e812b5662e4c2\kernel32.dll [2011/04/12 16:30:37 | 000,892,928 | ---- | M] (Microsoft Corporation) MD5=497A2DA8181560B3E2F8FFE0092FD1E6 -- C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6001.22898_none_93ee425a6faadaba\kernel32.dll [2011/04/12 17:08:23 | 000,893,440 | ---- | M] (Microsoft Corporation) MD5=7062DEB220FA1CCB1B65FC40D6E7D807 -- C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6002.22625_none_961d64be6c9b1d69\kernel32.dll [2009/02/13 09:26:37 | 000,875,520 | ---- | M] (Microsoft Corporation) MD5=B82C7AC1D559F0FD088792171D64C7F3 -- C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6000.16820_none_91c20a8f593529ed\kernel32.dll [2009/02/13 09:13:01 | 000,875,520 | ---- | M] (Microsoft Corporation) MD5=BB792054BD990EC05D9E260D50FEAD39 -- C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6000.21010_none_92564f68724ae108\kernel32.dll [2009/04/11 08:28:20 | 000,891,392 | ---- | M] (Microsoft Corporation) MD5=BB8509089E7DF514310814E1B2593FFC -- C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6002.18005_none_95a95e4d536d53fa\kernel32.dll [2009/02/13 10:49:05 | 000,888,832 | ---- | M] (Microsoft Corporation) MD5=DB6E3731E6F5C8AE2843F80B5787F7C6 -- C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6001.18215_none_93b81a93564f1da0\kernel32.dll [2008/01/21 04:33:52 | 000,888,320 | ---- | M] (Microsoft Corporation) MD5=DC2338093F91BA4E0512208E60206DDD -- C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6001.18000_none_93bde541564b88ae\kernel32.dll [2011/04/12 18:07:38 | 000,892,416 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\kernel32.dll [2011/04/12 18:07:38 | 000,892,416 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6002.18449_none_9582275d538a1db6\kernel32.dll < MD5 for: MSWSOCK.DLL > [2009/04/11 08:28:22 | 000,223,232 | ---- | M] (Microsoft Corporation) MD5=8617350C9B590B63E620881092751BCB -- C:\Windows\System32\mswsock.dll [2009/04/11 08:28:22 | 000,223,232 | ---- | M] (Microsoft Corporation) MD5=8617350C9B590B63E620881092751BCB -- C:\Windows\winsxs\x86_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.0.6002.18005_none_ba3ed0122a6d89da\mswsock.dll [2008/01/21 04:33:36 | 000,223,232 | ---- | M] (Microsoft Corporation) MD5=89FD0595EEA4E505CABEFCF7008F2612 -- C:\Windows\winsxs\x86_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.0.6001.18000_none_b85357062d4bbe8e\mswsock.dll < MD5 for: NDIS.SYS > [2009/04/11 08:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\System32\drivers\ndis.sys [2009/04/11 08:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6002.18005_none_a9b2a4d31930d864\ndis.sys [2008/01/21 04:33:22 | 000,529,464 | ---- | M] (Microsoft Corporation) MD5=9BDC71790FA08F0A0B5F10462B1BD0B1 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6001.18000_none_a7c72bc71c0f0d18\ndis.sys [2008/02/08 06:25:28 | 000,529,464 | ---- | M] (Microsoft Corporation) MD5=C8560010A542B5DCA94C62468DC20784 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6001.22110_none_a845f8a63534c8d3\ndis.sys [2008/02/08 06:22:00 | 000,503,352 | ---- | M] (Microsoft Corporation) MD5=E50187F20ED749F57C97836FEDE14BD6 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6000.20768_none_a631acb4382f8e4f\ndis.sys < MD5 for: NETLOGON.DLL > [2009/04/11 08:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\System32\netlogon.dll [2009/04/11 08:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll [2008/01/21 04:33:41 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll < MD5 for: NTFS.SYS > [2009/04/11 08:32:49 | 001,083,880 | ---- | M] (Microsoft Corporation) MD5=6A4A98CEE84CF9E99564510DDA4BAA47 -- C:\Windows\System32\drivers\ntfs.sys [2009/04/11 08:32:49 | 001,083,880 | ---- | M] (Microsoft Corporation) MD5=6A4A98CEE84CF9E99564510DDA4BAA47 -- C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6002.18005_none_a85ca2c91a0d64df\ntfs.sys [2008/01/21 04:33:23 | 001,081,912 | ---- | M] (Microsoft Corporation) MD5=B4EFFE29EB4F15538FD8A9681108492D -- C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6001.18000_none_a67129bd1ceb9993\ntfs.sys < MD5 for: NTMSSVC.DLL > [2008/01/21 04:35:18 | 000,460,288 | ---- | M] (Microsoft Corporation) MD5=A7DFF9642D510BE1EEC6664CD0369953 -- C:\Windows\winsxs\x86_microsoft-windows-r..emanagement-service_31bf3856ad364e35_6.0.6001.18000_none_0e3e31f00e12b007\ntmssvc.dll < MD5 for: NVSTOR.SYS > [2006/11/02 11:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys [2008/01/21 04:32:47 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\drivers\nvstor.sys [2008/01/21 04:32:47 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvstor.sys [2008/01/21 04:32:47 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys < MD5 for: PROQUOTA.EXE > [2006/11/02 11:45:33 | 000,027,648 | ---- | M] (Microsoft Corporation) MD5=C31AE90F24870B9A51655C36A9EB4BF3 -- C:\Windows\System32\proquota.exe [2006/11/02 11:45:33 | 000,027,648 | ---- | M] (Microsoft Corporation) MD5=C31AE90F24870B9A51655C36A9EB4BF3 -- C:\Windows\winsxs\x86_microsoft-windows-proquota_31bf3856ad364e35_6.0.6000.16386_none_259035db957a1715\proquota.exe < MD5 for: QMGR.DLL > [2008/01/21 04:34:49 | 000,758,272 | ---- | M] (Microsoft Corporation) MD5=02ED7B4DBC2A3232A389106DA7515C3D -- C:\Windows\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.0.6001.18000_none_2390c4ecf9720b8c\qmgr.dll [2009/04/11 08:28:23 | 000,758,784 | ---- | M] (Microsoft Corporation) MD5=93952506C6D67330367F7E7934B6A02F -- C:\Windows\System32\qmgr.dll [2009/04/11 08:28:23 | 000,758,784 | ---- | M] (Microsoft Corporation) MD5=93952506C6D67330367F7E7934B6A02F -- C:\Windows\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.0.6002.18005_none_257c3df8f693d6d8\qmgr.dll < MD5 for: SCECLI.DLL > [2008/01/21 04:34:39 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll [2009/04/11 08:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\System32\scecli.dll [2009/04/11 08:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll < MD5 for: SPOOLSV.EXE > [2010/08/17 15:32:33 | 000,126,464 | ---- | M] (Microsoft Corporation) MD5=3665F79026A3F91FBCA63F2C65A09B19 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6001.18511_none_d641dcfdc18fec21\spoolsv.exe [2009/04/11 08:28:05 | 000,127,488 | ---- | M] (Microsoft Corporation) MD5=524BFBEA40E6E404737CCBC754647A2E -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6002.18005_none_d8371c2dbeaa9062\spoolsv.exe [2008/01/21 04:34:33 | 000,125,952 | ---- | M] (Microsoft Corporation) MD5=846CDF9A3CF4DA9B306ADFB7D55EE4C2 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6001.18000_none_d64ba321c188c516\spoolsv.exe [2010/08/17 16:11:37 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=8554097E5136C3BF9F69FE578A1B35F4 -- C:\Windows\System32\spoolsv.exe [2010/08/17 16:11:37 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=8554097E5136C3BF9F69FE578A1B35F4 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6002.18294_none_d7d4d063bef46cd2\spoolsv.exe [2010/08/17 16:20:09 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=AAE98B295E88D439A6E0F6E8929424FB -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6002.22468_none_d882e000d7f61b4c\spoolsv.exe [2010/08/17 15:27:48 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=E807FC542C295BA256CE3567829E02A6 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6001.22743_none_d6ad0c7edac40f93\spoolsv.exe < MD5 for: SVCHOST.EXE > [2008/01/21 04:33:13 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\System32\svchost.exe [2008/01/21 04:33:13 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe < MD5 for: TERMSRV.DLL > [2009/04/11 08:28:24 | 000,449,024 | ---- | M] (Microsoft Corporation) MD5=BB95DA09BEF6E7A131BFF3BA5032090D -- C:\Windows\System32\termsrv.dll [2009/04/11 08:28:24 | 000,449,024 | ---- | M] (Microsoft Corporation) MD5=BB95DA09BEF6E7A131BFF3BA5032090D -- C:\Windows\winsxs\x86_microsoft-windows-t..teconnectionmanager_31bf3856ad364e35_6.0.6002.18005_none_908abad45165e2ae\termsrv.dll [2008/01/21 04:33:51 | 000,448,512 | ---- | M] (Microsoft Corporation) MD5=D605031E225AACCBCEB5B76A4F1603A6 -- C:\Windows\winsxs\x86_microsoft-windows-t..teconnectionmanager_31bf3856ad364e35_6.0.6001.18000_none_8e9f41c854441762\termsrv.dll < MD5 for: USERINIT.EXE > [2008/01/21 04:34:37 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe [2008/01/21 04:34:37 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe < MD5 for: VOLSNAP.SYS > [2006/11/02 11:51:18 | 000,208,488 | ---- | M] (Microsoft Corporation) MD5=11EF6C1CAEF76B685233450A126125D6 -- C:\Windows\System32\DriverStore\FileRepository\volume.inf_9320b452\volsnap.sys [2009/04/11 08:32:55 | 000,226,280 | ---- | M] (Microsoft Corporation) MD5=147281C01FCB1DF9252DE2A10D5E7093 -- C:\Windows\System32\drivers\volsnap.sys [2009/04/11 08:32:55 | 000,226,280 | ---- | M] (Microsoft Corporation) MD5=147281C01FCB1DF9252DE2A10D5E7093 -- C:\Windows\System32\DriverStore\FileRepository\volume.inf_1e6030e4\volsnap.sys [2009/04/11 08:32:55 | 000,226,280 | ---- | M] (Microsoft Corporation) MD5=147281C01FCB1DF9252DE2A10D5E7093 -- C:\Windows\winsxs\x86_volume.inf_31bf3856ad364e35_6.0.6002.18005_none_17a2308cf936c619\volsnap.sys [2008/01/21 04:32:47 | 000,227,896 | ---- | M] (Microsoft Corporation) MD5=D8B4A53DD2769F226B3EB374374987C9 -- C:\Windows\System32\DriverStore\FileRepository\volume.inf_f53a1785\volsnap.sys [2008/01/21 04:32:47 | 000,227,896 | ---- | M] (Microsoft Corporation) MD5=D8B4A53DD2769F226B3EB374374987C9 -- C:\Windows\winsxs\x86_volume.inf_31bf3856ad364e35_6.0.6001.18000_none_15b6b780fc14facd\volsnap.sys < MD5 for: WININET.DLL > [2011/02/22 08:21:28 | 000,916,480 | ---- | M] (Microsoft Corporation) MD5=047CDEFF94B63F0A4791372B47427B60 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.19048_none_e4aeb3d1b7b9b7a1\wininet.dll [2009/04/24 17:43:32 | 000,828,416 | ---- | M] (Microsoft Corporation) MD5=07DBFC0759F61E95901AF2B2D4E83451 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6002.22121_none_04446854b8264f82\wininet.dll [2009/11/21 17:03:43 | 000,916,480 | ---- | M] (Microsoft Corporation) MD5=0B603B1B76FF6CA2D88B658A9ECC40E8 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.22956_none_e52ba614d0e11045\wininet.dll [2010/01/02 16:56:17 | 000,916,480 | ---- | M] (Microsoft Corporation) MD5=1DC5E46312CBA5C1614B3D3359DB09C5 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.22973_none_e513055ed0f3fc22\wininet.dll [2010/02/23 17:06:06 | 000,919,040 | ---- | M] (Microsoft Corporation) MD5=24427C9C96556887A2F161800F00B2DE -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.22995_none_e4ff661ad10266b2\wininet.dll [2009/04/23 14:15:31 | 000,828,416 | ---- | M] (Microsoft Corporation) MD5=24CBE22F35941FBFD6144A5C011EA999 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6002.18024_none_03bdcc679f05fbbd\wininet.dll [2011/07/22 04:48:26 | 001,126,912 | ---- | M] (Microsoft Corporation) MD5=2C7332C222D1FE1FC57D622699A8C001 -- C:\Windows\System32\wininet.dll [2011/07/22 04:48:26 | 001,126,912 | ---- | M] (Microsoft Corporation) MD5=2C7332C222D1FE1FC57D622699A8C001 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_9.1.8112.16434_none_c1d45f5fdfbcbfee\wininet.dll [2008/01/21 04:34:21 | 000,825,856 | ---- | M] (Microsoft Corporation) MD5=455D715A840579BDC1CF8E5C1DA76849 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6001.18000_none_01e8f37da1d311e6\wininet.dll [2009/05/13 00:49:30 | 000,915,456 | ---- | M] (Microsoft Corporation) MD5=4BEDA2520729640D927E09A51AB916C4 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.22874_none_e51403c2d0f31852\wininet.dll [2010/09/08 08:01:28 | 000,916,480 | ---- | M] (Microsoft Corporation) MD5=545264F1F3AC5BD57B159EBBDC4FDC58 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.18975_none_e48b6b0db7d48c2d\wininet.dll [2010/11/02 08:01:54 | 000,916,480 | ---- | M] (Microsoft Corporation) MD5=5681261BF2572F8776E1344DCB090C0B -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.18999_none_e479cc5db7e1296b\wininet.dll [2009/07/21 23:52:28 | 000,915,456 | ---- | M] (Microsoft Corporation) MD5=6206A2BF9741B31C258ACC51972AFCAA -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.18813_none_e4ca481bb7a5b4b2\wininet.dll [2009/04/24 18:05:41 | 000,827,904 | ---- | M] (Microsoft Corporation) MD5=64EAF7CF461A15DB4EAEB1D50A10E88E -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6001.18248_none_01c5b9e9a1ec46b0\wininet.dll [2009/06/18 12:52:44 | 000,827,904 | ---- | M] (Microsoft Corporation) MD5=65647F41CEC0C8EEC9DF5BC1168EC76C -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6000.20996_none_003107debe0dae90\wininet.dll [2009/06/18 12:52:38 | 000,827,904 | ---- | M] (Microsoft Corporation) MD5=6A986C2CD30633447DAB21A4852E40D6 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6001.22355_none_024185eabb14b666\wininet.dll [2009/03/08 13:34:57 | 000,914,944 | ---- | M] (Microsoft Corporation) MD5=6CE32F7778061CCC5814D5E0F282D369 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.18702_none_e4d415d7b79e8243\wininet.dll [2010/09/08 08:25:04 | 000,919,552 | ---- | M] (Microsoft Corporation) MD5=6D4B5C39BB00A8BD98462664E73AC403 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.23067_none_e521ae94d0e878cf\wininet.dll [2010/12/18 08:27:04 | 000,916,480 | ---- | M] (Microsoft Corporation) MD5=74BCC23D622F32DA0450D164735ACAB1 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.19019_none_e4d023dfb7a07d25\wininet.dll [2009/04/24 18:00:16 | 000,828,416 | ---- | M] (Microsoft Corporation) MD5=77C60DD61D21777734B1C945540473A4 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6001.22418_none_026fc85ebaf18fce\wininet.dll [2010/06/26 08:05:49 | 000,916,480 | ---- | M] (Microsoft Corporation) MD5=78D42E00B5AB233F34116C0EF07F1BC9 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.18943_none_e4a9da3db7be05ac\wininet.dll [2010/12/18 09:18:09 | 000,919,552 | ---- | M] (Microsoft Corporation) MD5=7D6AACE6BF60B5A1D572E082DEC9F0F0 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.23111_none_e551be5ad0c55237\wininet.dll [2009/04/11 08:28:25 | 000,828,416 | ---- | M] (Microsoft Corporation) MD5=8777B44511D8BCCF47B5A7CBDC02DE11 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6002.18005_none_03d46c899ef4dd32\wininet.dll [2010/01/02 08:38:20 | 000,916,480 | ---- | M] (Microsoft Corporation) MD5=91B8712BDC74295DA14A08F519B70D65 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.18882_none_e47d985db7df5ef2\wininet.dll [2010/05/04 08:31:32 | 000,919,040 | ---- | M] (Microsoft Corporation) MD5=9DF755B063C647A1CAEB17F3E2FDDE1D -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.23019_none_e559bec4d0be1fc8\wininet.dll [2011/04/25 22:57:10 | 001,126,912 | ---- | M] (Microsoft Corporation) MD5=A1236375B74EA63C75657D564890C436 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_9.1.8112.16421_none_c1dc2e6ddfb757f8\wininet.dll [2011/07/22 03:48:19 | 001,126,912 | ---- | M] (Microsoft Corporation) MD5=AA75F065975FCE762FC9BBF5A3C08368 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_9.1.8112.20534_none_c25dfc2af8da5fb8\wininet.dll [2011/02/22 09:18:35 | 000,919,552 | ---- | M] (Microsoft Corporation) MD5=B3A938D522F085171387FEF112AEECF5 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.23143_none_e5334f2ad0dbd8b8\wininet.dll [2009/08/27 15:29:46 | 000,916,480 | ---- | M] (Microsoft Corporation) MD5=D0DD9439DB3C927209CFFE095AA1F097 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.22918_none_e558e658d0bed32f\wininet.dll [2010/11/02 09:12:02 | 000,919,552 | ---- | M] (Microsoft Corporation) MD5=D364DEB34DB229A4C1EFB1BC68F505C4 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.23091_none_e4fb3d14d1063498\wininet.dll [2009/05/09 07:50:28 | 000,915,456 | ---- | M] (Microsoft Corporation) MD5=D78B62CC91F043CED52F23F0085E7FE2 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.18783_none_e47e96c1b7de7b22\wininet.dll [2009/04/24 18:22:31 | 000,827,392 | ---- | M] (Microsoft Corporation) MD5=D94BDEEF2E47EB4A46B957253C697F01 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6000.16851_none_ffcda951a4d4204f\wininet.dll [2009/11/21 08:40:20 | 000,916,480 | ---- | M] (Microsoft Corporation) MD5=DCB9E422810877D7C4115BACE54B084C -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.18865_none_e4963913b7cc7315\wininet.dll [2009/08/27 07:22:28 | 000,916,480 | ---- | M] (Microsoft Corporation) MD5=E3AB6EBE520E1898663B011D2FC0DF11 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.18828_none_e4c479a1b7a94f56\wininet.dll [2009/07/22 08:03:04 | 000,915,456 | ---- | M] (Microsoft Corporation) MD5=E48ADF567FE3EFCC2EB88A2BE5E020CB -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.22903_none_e55eb4d2d0bb388b\wininet.dll [2009/04/24 18:01:22 | 000,828,928 | ---- | M] (Microsoft Corporation) MD5=E7D90AF9B0C7FA98DF353E022EE1C63E -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6000.21046_none_0066ef9cbde5561d\wininet.dll [2010/02/23 08:39:13 | 000,916,480 | ---- | M] (Microsoft Corporation) MD5=EC3B3E6071E3FCD4290BFD42676EE064 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.18904_none_e4d61a37b79caf3f\wininet.dll [2010/05/04 07:59:21 | 000,916,480 | ---- | M] (Microsoft Corporation) MD5=F317362AEB06140E7FB1B29331FDC038 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.18928_none_e4c47b87b7a94c7d\wininet.dll [2010/06/26 08:51:32 | 000,919,040 | ---- | M] (Microsoft Corporation) MD5=F60F99762FABCD7F4B53A4A0EBAE3505 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.23040_none_e5304c66d0de8f8c\wininet.dll [2009/06/18 12:52:38 | 000,827,392 | ---- | M] (Microsoft Corporation) MD5=FB79A2AA5E92653B9A394FE26D799BF8 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6001.18203_none_01ebf827a1d05839\wininet.dll [2009/06/18 12:52:44 | 000,826,368 | ---- | M] (Microsoft Corporation) MD5=FF35D495AC08549154D1D96990513CD9 -- C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6000.16809_none_000bbb3da4a45f52\wininet.dll < MD5 for: WININIT.EXE > [2008/01/21 04:33:13 | 000,096,768 | ---- | M] (Microsoft Corporation) MD5=101BA3EA053480BB5D957EF37C06B5ED -- C:\Windows\System32\wininit.exe [2008/01/21 04:33:13 | 000,096,768 | ---- | M] (Microsoft Corporation) MD5=101BA3EA053480BB5D957EF37C06B5ED -- C:\Windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.0.6001.18000_none_30f2b8cf0450a6a2\wininit.exe < MD5 for: WINLOGON.EXE > [2009/04/11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe [2009/04/11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe [2009/04/11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe [2009/04/11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe [2008/01/21 04:34:38 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe [2008/01/21 04:34:38 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe < MD5 for: WS2_32.DLL > [2008/01/21 04:34:36 | 000,179,200 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\ws2_32.dll [2008/01/21 04:34:36 | 000,179,200 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.0.6001.18000_none_f2b7b0c2ce5605c4\ws2_32.dll < %systemroot%\*. /mp /s > < %systemroot%\system32\*.dll /lockedfiles > [2008/12/22 12:32:38 | 000,054,784 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\bcmwlrmt.dll [2011/04/25 22:57:08 | 000,353,792 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtmsft.dll [2011/04/25 22:57:08 | 000,223,232 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtrans.dll [2011/04/25 22:57:05 | 000,118,784 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\iepeers.dll < %systemroot%\Tasks\*.job /lockedfiles > < %systemroot%\system32\drivers\*.sys /lockedfiles > < %systemroot%\System32\config\*.sav > [2008/01/21 05:31:11 | 015,716,352 | ---- | M] () -- C:\Windows\System32\config\COMPONENTS.SAV [2008/01/21 05:31:01 | 000,102,400 | ---- | M] () -- C:\Windows\System32\config\DEFAULT.SAV [2008/01/21 05:31:12 | 000,020,480 | ---- | M] () -- C:\Windows\System32\config\SECURITY.SAV [2006/11/02 12:34:08 | 010,133,504 | ---- | M] () -- C:\Windows\System32\config\SOFTWARE.SAV [2006/11/02 12:34:08 | 001,826,816 | ---- | M] () -- C:\Windows\System32\config\SYSTEM.SAV < c:\$recycle.bin\*.* /s > [2008/02/04 12:36:14 | 000,000,129 | -HS- | M] () -- c:\$recycle.bin\S-1-5-21-3575871321-1707736094-2975733792-500\desktop.ini [2009/06/24 19:55:15 | 000,000,129 | -HS- | M] () -- c:\$recycle.bin\S-1-5-21-953400385-1745167662-3994556268-1000\desktop.ini [2009/06/18 10:59:11 | 000,000,129 | -HS- | M] () -- c:\$recycle.bin\S-1-5-21-953400385-1745167662-3994556268-500\desktop.ini < End of report > Et le extra: OTL Extras logfile created on: 13/09/2011 00:05:14 - Run 1 OTL by OldTimer - Version 3.2.28.0 Folder = C:\Users\Mélanie\Downloads Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 985,63 Mb Total Physical Memory | 154,86 Mb Available Physical Memory | 15,71% Memory free 2,18 Gb Paging File | 0,80 Gb Available in Paging File | 36,45% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 134,36 Gb Total Space | 66,28 Gb Free Space | 49,33% Space Free | Partition Type: NTFS Drive D: | 14,65 Gb Total Space | 9,25 Gb Free Space | 63,14% Space Free | Partition Type: NTFS Computer Name: PC-DE-MÉLANIE | User Name: Mélanie | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation) .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation) ========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation) http [open] -- Reg Error: Value error. https [open] -- Reg Error: Value error. inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~2\Office12\ONENOTE.EXE "%L" Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 "VistaSp1" = Reg Error: Unknown registry data type -- File not found "VistaSp2" = Reg Error: Unknown registry data type -- File not found [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 ========== Authorized Applications List ========== ========== Vista Active Open Ports Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{634FC4C2-B25C-4379-B760-1128AD5E7C6B}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) | "{A3489C4E-177B-4948-ABC0-F7CC6E327011}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) | "{CA6EFE73-C63D-49C9-9A27-9C88D38467EF}" = lport=2869 | protocol=6 | dir=in | app=system | "{F8EAB51D-3F8D-4725-96B6-73524F45B527}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe | ========== Vista Active Application Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{14A75F95-7148-4F63-BDD7-B479A6585407}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe | "{1F704B1C-FB50-49DF-82B9-ADD313470A71}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe | "{34DF291D-8F08-463A-80FD-314568E04C5B}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe | "{4818AD6B-5863-42DB-9A96-73396B39E68E}" = protocol=17 | dir=in | app=c:\program files\dell video chat\dellvideochat.exe | "{52D323E8-2EE8-4A95-B8E8-9A4127A2A452}" = protocol=6 | dir=in | app=c:\program files\dell video chat\dellvideochat.exe | "{787C905E-E1CE-40FC-B42E-E17642AB8472}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe | "{7B4DA912-359A-4EC8-9242-342398D2179D}" = dir=in | app=c:\program files\cyberlink\powerdvd dx\pdvddxsrv.exe | "{A752AAFB-5C60-4670-9A05-E065349FA8A8}" = dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe | "{ACD45DCE-70A0-44E2-915D-EBCE49343722}" = dir=in | app=c:\program files\skype\phone\skype.exe | "{DC233D7C-4FC4-44D2-8873-66340272B8B6}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe | "{E5476995-523A-414B-8903-AB0AD1D810B4}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe | "{EAA1A7DD-30EF-419B-8C1C-8D84BAF6F8D6}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe | "{F81D8818-C2AE-4B0B-ACA0-EE1170CE326B}" = dir=in | app=c:\program files\cyberlink\powerdvd dx\powerdvd.exe | ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 "{0090A87C-3E0E-43D4-AA71-A71B06563A4A}" = Dell Support Center "{05E379CC-F626-4E7D-8354-463865B303BF}" = Windows Live UX Platform Language Pack "{08E81ABD-79F7-49C2-881F-FD6CB0975693}" = Roxio Creator Data "{09760D42-E223-42AD-8C3E-55B47D0DDAC3}" = Roxio Creator DE "{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer "{0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}" = Microsoft .NET Framework 4 Client Profile FRA Language Pack "{13766F76-6C8C-4E57-A9F3-3212D1C6E0D1}" = Dell DataSafe Online "{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}" = Roxio Creator Tools "{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update "{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions "{2075CB0A-D26F-4DAA-B424-5079296B43BA}" = Windows Live FolderShare "{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java 6 Update 11 "{2BC2781A-F7F6-452E-95EB-018A522F1B2C}" = PaperPort Image Printer "{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Roxio Update Manager "{3138EAD3-700B-4A10-B617-B3F8096EE30D}" = Dell Edoc Viewer "{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery "{34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}" = Windows Live "{3B9A92DA-6374-4872-B646-253F18624D5F}" = Windows Live Writer "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{3E31821C-7917-367E-938E-E65FC413EA31}" = Microsoft .NET Framework 3.5 Language Pack SP1 - fra "{415B2719-AD3A-4944-B404-C472DB6085B3}" = Cisco EAP-FAST Module "{46E1B1F2-A279-4356-9B17-029F9CC72EAE}" = Brother MFL-Pro Suite "{488F0347-C4A7-4374-91A7-30818BEDA710}" = Galerie de photos Windows Live "{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}" = Microsoft Search Enhancement Pack "{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}" = Segoe UI "{62687B11-58B5-4A18-9BC3-9DF4CE03F194}" = Windows Live Writer Resources "{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3 "{669C7BD8-DAA2-49B6-966C-F1E2AAE6B17E}" = Cisco PEAP Module "{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD DX "{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE "{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update "{6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}" = Windows Live Movie Maker "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}" = Roxio Creator Audio "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{7A8FF745-BBC5-482B-88E4-18D3178249A9}" = ScanSoft PaperPort 11 "{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide "{83770D14-21B9-44B3-8689-F7B523F94560}" = Cisco LEAP Module "{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform "{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT "{90120000-0016-040C-0000-0000000FF1CE}" = Microsoft Office Excel MUI (French) 2007 "{90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0018-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007 "{90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001B-040C-0000-0000000FF1CE}" = Microsoft Office Word MUI (French) 2007 "{90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2007 "{90120000-001F-0401-0000-0000000FF1CE}_HOMESTUDENTR_{14809F99-C601-4D4A-9391-F1E8FAA964C5}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007 "{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007 "{90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007 "{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2007 "{90120000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2007 "{90120000-006E-040C-0000-0000000FF1CE}_HOMESTUDENTR_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-00A1-040C-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (French) 2007 "{90120000-00A1-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In "{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager "{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007 "{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2) "{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581) "{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail "{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = Dell Touchpad "{9FAE6E8D-E686-49F5-A574-0A58DFD9580C}" = Windows Live Mail "{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common "{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer "{AB61A2E9-37D3-485D-9085-19FBDF8CEF4A}" = Windows Live Messenger "{AC76BA86-7AD7-1036-7B44-A94000000001}" = Adobe Reader 9.4.5 - Français "{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter "{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}" = Roxio Creator Copy "{B935C985-A17F-484B-8470-09E4FC27DC26}" = Dell-eBay "{C4972073-2BFE-475D-8441-564EA97DA161}" = QuickSet "{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}" = Windows Live ID Sign-in Assistant "{C893D8C0-1BA0-4517-B11C-E89B65E72F70}" = Windows Live Photo Common "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform "{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform "{D6F879CC-59D6-4D4B-AE9B-D761E48D25ED}" = Skype™ 5.3 "{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10 "{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger "{ED439A64-F018-4DD4-8BA5-328D85AB09AB}" = Roxio Creator DE "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU] "{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}" = Microsoft Office Live Add-in 1.5 "{F6CB42B9-F033-4152-8813-FF11DA8E6A78}" = Dell Dock "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Audacity_is1" = Audacity 1.2.6 "Broadcom 802.11 Application" = Dell Wireless WLAN Card Utility "CCleaner" = CCleaner "CutePDF Writer Installation" = CutePDF Writer 2.8 "Dell Support Center" = Dell Support Center "Dell Video Chat" = Dell Video Chat "Glary Utilities_is1" = Glary Utilities 2.35.0.1216 "GoToAssist" = GoToAssist 8.0.0.514 "HOMESTUDENTR" = Microsoft Office Home and Student 2007 "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware version 1.51.2.1300 "McAfee Virtual Technician" = McAfee Virtual Technician "Microsoft .NET Framework 3.5 Language Pack SP1 - fra" = Module linguistique Microsoft .NET Framework 3.5 SP1- fra "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Client Profile FRA Language Pack" = Module linguistique Microsoft .NET Framework 4 Client Profile FRA "MSC" = McAfee SecurityCenter "RealPlayer 12.0" = RealPlayer "TVWiz" = Intel® TV Wizard "VLC media player" = VLC media player 1.0.2 "WinLiveSuite" = Windows Live ========== HKEY_USERS Uninstall List ========== [HKEY_USERS\S-1-5-21-953400385-1745167662-3994556268-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] ========== Last 10 Event Log Errors ========== [ Application Events ] Error - 22/03/2011 14:21:16 | Computer Name = PC-de-Mélanie | Source = EventSystem | ID = 4621 Description = Error - 22/03/2011 14:42:29 | Computer Name = PC-de-Mélanie | Source = WinMgmt | ID = 10 Description = Error - 22/03/2011 16:39:31 | Computer Name = PC-de-Mélanie | Source = WinMgmt | ID = 10 Description = Error - 23/03/2011 14:14:34 | Computer Name = PC-de-Mélanie | Source = WinMgmt | ID = 10 Description = Error - 23/03/2011 14:27:30 | Computer Name = PC-de-Mélanie | Source = Perflib | ID = 1010 Description = Error - 23/03/2011 14:27:33 | Computer Name = PC-de-Mélanie | Source = Perflib | ID = 1008 Description = Error - 23/03/2011 14:54:43 | Computer Name = PC-de-Mélanie | Source = Application Error | ID = 1000 Description = Application défaillante iexplore.exe, version 8.0.6001.19019, horodatage 0x4d0c3d4c, module défaillant mshtml.dll, version 8.0.6001.19019, horodatage 0x4d0c53b1, code d’exception 0xc0000005, décalage d’erreur 0x0042f38d, ID du processus 0x1594, heure de début de l’application 0x01cbe98b33ebf700. Error - 23/03/2011 18:01:07 | Computer Name = PC-de-Mélanie | Source = WinMgmt | ID = 10 Description = Error - 23/03/2011 18:08:11 | Computer Name = PC-de-Mélanie | Source = Application Hang | ID = 1002 Description = Le programme wmplayer.exe version 11.0.6002.18311 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans l’application Rapports et solutions aux problèmes du Panneau de configuration. ID de processus : 160c Heure de début : 01cbe9a67a0d9656 Heure de fin : 270 Error - 24/03/2011 04:50:27 | Computer Name = PC-de-Mélanie | Source = WinMgmt | ID = 10 Description = [ Broadcom Wireless LAN Events ] Error - 06/08/2011 04:18:48 | Computer Name = PC-de-Mélanie | Source = WLAN-Tray | ID = 0 Description = 10:18:46, Sat, Aug 06, 11 Error - Unable to gain access to user store [ OSession Events ] Error - 04/09/2009 07:59:23 | Computer Name = PC-de-Mélanie | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6504.5001, Microsoft Office Version: 12.0.6425.1000. This session lasted 11942 seconds with 4860 seconds of active time. This session ended with a crash. Error - 15/12/2009 11:36:12 | Computer Name = PC-de-Mélanie | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 26681 seconds with 14940 seconds of active time. This session ended with a crash. Error - 08/08/2010 15:11:34 | Computer Name = PC-de-Mélanie | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6535.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 12655 seconds with 240 seconds of active time. This session ended with a crash. Error - 02/03/2011 11:45:06 | Computer Name = PC-de-Mélanie | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1954 seconds with 1200 seconds of active time. This session ended with a crash. [ System Events ] Error - 12/09/2011 13:36:38 | Computer Name = PC-de-Mélanie | Source = Service Control Manager | ID = 7000 Description = Error - 12/09/2011 14:02:36 | Computer Name = PC-de-Mélanie | Source = Service Control Manager | ID = 7043 Description = Error - 12/09/2011 14:10:07 | Computer Name = PC-de-Mélanie | Source = Microsoft-Windows-Kernel-Processor-Power | ID = 2 Description = Error - 12/09/2011 14:11:59 | Computer Name = PC-de-Mélanie | Source = Service Control Manager | ID = 7000 Description = Error - 12/09/2011 14:11:59 | Computer Name = PC-de-Mélanie | Source = Service Control Manager | ID = 7000 Description = Error - 12/09/2011 14:15:10 | Computer Name = PC-de-Mélanie | Source = DCOM | ID = 10010 Description = Error - 12/09/2011 14:15:46 | Computer Name = PC-de-Mélanie | Source = DCOM | ID = 10010 Description = Error - 12/09/2011 17:40:56 | Computer Name = PC-de-Mélanie | Source = Microsoft-Windows-Kernel-Processor-Power | ID = 2 Description = Error - 12/09/2011 17:42:54 | Computer Name = PC-de-Mélanie | Source = Service Control Manager | ID = 7000 Description = Error - 12/09/2011 17:42:54 | Computer Name = PC-de-Mélanie | Source = Service Control Manager | ID = 7000 Description = < End of report > En vous remerciant d'avance pour votre aide, Bonne soirée, Cyril
  2. arf,je me suis fait avoir comme un bleu,de mémoire je me souviens ne pas l'avoir téléchargé sur ce site! Web Media Player est bien désinstallé depuis! Bonne soirée et merci, @+
  3. Salut et merci pour ta réponse aussi rapide,j'ai bien suivi tes indications,voila le rapport navilog1 apres opé: Clean Navipromo version 3.3.2 commencé le 23/10/2007 à 19:57:47.93 Outil exécuté depuis C:\Program Files\navilog1 Mise à jour le 22.10.2007 à 19h00 par IL-MAFIOSO Microsoft Windows XP [version 5.1.2600] Internet Explorer : 7.0.5730.11 Mode suppression par méthode manuelle Nom du fichier saisi : ukagcdsfvd Merci encore!
  4. Bonjour, Etant nouveau sur le forum,je me préente,Cyril 20 ans,étudiant et responsable associatif,les présentations étant faites, je vais vous demande un ptit coup de main,que bcp de monde a d'ores et déja demandé...Je m'explique,en surf sur internet j'ai régulièrement ds fenetres de pubs qui s'ouvrent (ex qd je suis sur le site de lufthansa,j'ai ue fenetre pour les vols pas cher,qd je viens sur votre site j'ai une fenetre pour sws spyware,etc,...)...Alors comme Ni Mc Afee (tant en anti virus que spyware)et spybot search destoy n'ont rien vu ,je désespere... je poste dc ci desous les rapports Hijackthis et Navilog1: Merci d'avance, @+ Cyril P.S.:mes problemes coincident à peu pres avec l'installation d'un log appelé web media player...si ca peu aider... Voila voila,merci d'avance!
×
×
  • Créer...