Jé59

Membres

Afficher le profil Afficher son activité

Compteur de contenus
10
Inscription
le 22 février 2011
Dernière visite
le 18 août 2011

Jé59's Achievements

Junior Member (3/12)

Réputation sur la communauté

[Résolu] Problème avec mon disque dur

Jé59 a répondu à un(e) sujet de Jé59 dans Hardware

Pour le moment je n'ai pas eu de soucis depuis ma manip. Sa fait 2 jours que mon DD est visible non stop mais bon on ne sait jamais.
- le 16 août 2011
- 6 réponses
[Résolu] Problème avec mon disque dur

Jé59 a répondu à un(e) sujet de Jé59 dans Hardware

Merci pour ses deux solutions. Seulement je n'ai pas d'autre connecteur ni même de nappe, pour le moment j'ai juste débrancher la nappe et le connecteur et j'ai souflé un bon coup dedans et au redemarrage mon DD est la, allez savoir pourquoi... Bref je vais regarder dans la semaine pour me procurer une autre nappe ainsi qu'un autre connecteur parce que je sens qu'il va pas être visible longtemps...
- le 15 août 2011
- 6 réponses
[Résolu] Problème avec mon disque dur

Jé59 a posté un sujet dans Hardware

Bonsoir à tous, je poste ce message parce que depuis quelques temps j'ai un problème avec un de mes DD et je n'arrive pas à le résoudre alors je compte sur vous pour m'aider Depuis environ une semaine mon dique dur Western digital 500 Go(qui en esclave) n'apparait plus dans le poste de travail. Ce qui est très ennuiyeux parce que je ne peux y accéder par aucun moyen et j'avais l'habitude d'y ranger beaucoup de mes fichiers. Je ne le voix même pas dans le gestionnaire des disques. En fait celui ci disparait et réparait quand il veut sans que je ne puisse y faire quoi que se soit. Je le soupçonne d'être en format RAW seulement je ne le voix pas et quand il réparait miraculesement il est en NTFS. Voila alors j'ai deux questions: -Comment pourrais-je récupérer mes fichiers sur ce DD? -Ne voudrais pas t-il mieux en acheter un nouveau? D'avance,merci pour votre aide.
- le 14 août 2011
- 6 réponses
Mon PC Me Rend Fou

Jé59 a répondu à un(e) sujet de Jé59 dans Analyses et éradication malwares

Ah merci c'était aussi bête que sa. Pour le moment mon PC fonctionnent correctement c'est super merci encore
- le 25 février 2011
- 13 réponses
Mon PC Me Rend Fou

Jé59 a répondu à un(e) sujet de Jé59 dans Analyses et éradication malwares

Bon voila c'est fait l'analyse n'a rien trouver de particulier seulment j'aurais voulus le faire sur mon deuxieme disque dur D avec quel manip je peux faire sa? Si non mon pc ne c'est pas eteind et j'ai pas eu de gros probleme depuis que j'ai fais tout ce que vous m'aviez conseillez hier soir et ce matin. J'espere que a continura^^.
- le 25 février 2011
- 13 réponses
Mon PC Me Rend Fou

Jé59 a répondu à un(e) sujet de Jé59 dans Analyses et éradication malwares

J'ai Fais tout ce qui à été dit plus haut sauf la premiere action: Pour vérifier ton disque dur (après avoir fait les étapes suivantes) Cliquer sur "Démarrer" => "Exécuter" et saisir chkdsk /f /r (espace avant /f et avant /r). Cliquer sur OK et laisser faire. Quand j'essais j'ai un petit ecran noir qui disparais très vite et rien ne ce passe ensuite. Si je n'ais pas aperçus de probleme particuliers pour le moment.
- le 25 février 2011
- 13 réponses
Mon PC Me Rend Fou

Jé59 a répondu à un(e) sujet de Jé59 dans Analyses et éradication malwares

Voici De nouveau le rapport pour OTL : All processes killed ========== OTL ========== HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyOverride| /E : value set successfully! C:\Users\Jé\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} folder moved successfully. C:\Users\Jé\AppData\Roaming\mozilla\Extensions folder moved successfully. C:\Users\Jé\AppData\Roaming\mozilla\Firefox\Profiles\2ocy35ho.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\local folder moved successfully. C:\Users\Jé\AppData\Roaming\mozilla\Firefox\Profiles\2ocy35ho.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\defaults\preferences folder moved successfully. C:\Users\Jé\AppData\Roaming\mozilla\Firefox\Profiles\2ocy35ho.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\defaults folder moved successfully. C:\Users\Jé\AppData\Roaming\mozilla\Firefox\Profiles\2ocy35ho.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\components folder moved successfully. C:\Users\Jé\AppData\Roaming\mozilla\Firefox\Profiles\2ocy35ho.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}\chrome folder moved successfully. C:\Users\Jé\AppData\Roaming\mozilla\Firefox\Profiles\2ocy35ho.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} folder moved successfully. C:\Users\Jé\AppData\Roaming\mozilla\Firefox\Profiles\2ocy35ho.default\extensions folder moved successfully. C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} folder moved successfully. C:\Program Files\mozilla firefox\extensions folder moved successfully. Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93} Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully. Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found. Starting removal of ActiveX control {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}\ deleted successfully. Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}\ not found. Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found. ========== SERVICES/DRIVERS ========== ========== REGISTRY ========== ========== FILES ========== ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Jé ->Temp folder emptied: 1808771917 bytes ->Temporary Internet Files folder emptied: 95574361 bytes ->Java cache emptied: 511188 bytes ->FireFox cache emptied: 45003028 bytes ->Flash cache emptied: 3877 bytes User: Public %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 24166993 bytes RecycleBin emptied: 3868495681 bytes Total Files Cleaned = 5 572,00 mb [EMPTYFLASH] User: All Users User: Default User: Default User User: Jé ->Flash cache emptied: 0 bytes User: Public Total Flash Files Cleaned = 0,00 mb OTL by OldTimer - Version 3.2.21.0 log created on 02242011_200114 Files\Folders moved on Reboot... C:\Users\Jé\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SYZ0UFY5\adsCADGPNY5.htm moved successfully. C:\Users\Jé\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SYZ0UFY5\adsCAKU8RDV.htm moved successfully. C:\Users\Jé\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NAQVASBP\afr[1].htm moved successfully. C:\Users\Jé\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NAQVASBP\AP_CPL_728x90[1].htm moved successfully. C:\Users\Jé\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NAQVASBP\ban_home_728x90[1].htm moved successfully. C:\Users\Jé\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NAQVASBP\likebox[1].htm moved successfully. C:\Users\Jé\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NAQVASBP\mon-pc-me-rend-fou-t183149[1].html moved successfully. C:\Users\Jé\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NAQVASBP\sem[1].htm moved successfully. C:\Users\Jé\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\KVA951ZC\AP_ADV_728x90[1].htm moved successfully. C:\Users\Jé\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\2CEDBFBC-DBA8-43AA-B1FD-CC8E6316E3E2.dat moved successfully. C:\Users\Jé\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\MSIMGSIZ.DAT moved successfully. Registry entries deleted on Reboot... Je pensais mon DD deffectueux car à plusieur reprise dans le précédent rapport on peut voir "Error - 24/02/2011 05:58:09 | Computer Name = Jé-PC | Source = Ntfs | ID = 131 Description = La structure du système de fichiers du volume C: ne peut pas être corrigée. Exécutez l’utilitaire chkdsk sur le volume C:." Je voulais rajouter que par moment une fois ou plus par jour mon ordi s'arrte ou fait une memoire physique puis redemarre mais j'ai un ecran noir avec ecrit " Enter The Key or restart the computer" en truc dans ce style et pour faire disparaitre ce message je dois eteindre et attendre un petit moment. C'est pour sa que je pensais au dd , peut etre que celui ci chauffe trop et au bout d'un moment "craque" et ne reste pas en place. Merci.
- le 24 février 2011
- 13 réponses
Mon PC Me Rend Fou

Jé59 a répondu à un(e) sujet de Jé59 dans Analyses et éradication malwares

Voila les 2 rapports d'Oltimer. Otl .txt:* OTL logfile created on: 24/02/2011 11:03:37 - Run 1 OTL by OldTimer - Version 3.2.21.0 Folder = C:\Users\Jé\Desktop Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 66,00% Memory free 4,00 Gb Paging File | 3,00 Gb Available in Paging File | 81,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 186,31 Gb Total Space | 17,75 Gb Free Space | 9,53% Space Free | Partition Type: NTFS Drive E: | 100,00 Mb Total Space | 37,48 Mb Free Space | 37,49% Space Free | Partition Type: NTFS Drive F: | 465,66 Gb Total Space | 126,30 Gb Free Space | 27,12% Space Free | Partition Type: NTFS Drive G: | 7,50 Gb Total Space | 1,83 Gb Free Space | 24,44% Space Free | Partition Type: FAT32 Computer Name: JÉ-PC | User Name: Jé | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2011/02/24 10:42:44 | 000,577,024 | ---- | M] (OldTimer Tools) -- C:\Users\Jé\Desktop\OTL.exe PRC - [2011/02/10 21:51:09 | 000,234,656 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashUtil10m_ActiveX.exe PRC - [2011/01/05 11:59:50 | 000,037,664 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe PRC - [2010/09/22 12:03:38 | 000,249,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe PRC - [2010/03/26 10:52:24 | 001,234,216 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 10\Nero BackItUp\NBAgent.exe PRC - [2010/03/25 14:39:22 | 000,490,280 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Update\NASvc.exe PRC - [2009/11/06 14:39:12 | 002,072,576 | ---- | M] () -- C:\Program Files\NETGEAR\WG111v3\WG111v3.exe PRC - [2009/10/31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2009/07/14 02:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe PRC - [2009/07/14 02:14:12 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe ========== Modules (SafeList) ========== MOD - [2011/02/24 10:42:44 | 000,577,024 | ---- | M] (OldTimer Tools) -- C:\Users\Jé\Desktop\OTL.exe MOD - [2010/08/21 06:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll MOD - [2009/07/14 02:16:15 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspicli.dll MOD - [2009/07/14 02:16:13 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sechost.dll MOD - [2009/07/14 02:16:13 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\samcli.dll MOD - [2009/07/14 02:16:12 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\profapi.dll MOD - [2009/07/14 02:16:03 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netutils.dll MOD - [2009/07/14 02:15:35 | 000,288,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KernelBase.dll MOD - [2009/07/14 02:15:13 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll MOD - [2009/07/14 02:15:11 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devobj.dll MOD - [2009/07/14 02:15:07 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptbase.dll MOD - [2009/07/14 02:15:02 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll ========== Win32 Services (SafeList) ========== SRV - [2011/01/27 20:07:26 | 001,343,400 | ---- | M] () [unknown | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc) SRV - [2011/01/05 11:59:50 | 000,037,664 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device) SRV - [2010/11/02 05:36:16 | 000,801,792 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\FntCache.dll -- (FontCache) SRV - [2010/09/23 00:21:24 | 001,493,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe -- (fsssvc) SRV - [2010/09/22 16:33:04 | 000,051,040 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc) SRV - [2010/09/22 12:03:38 | 000,249,136 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort) SRV - [2010/03/25 14:39:22 | 000,490,280 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Update\NASvc.exe -- (NAUpdate) SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2009/07/14 02:16:21 | 000,185,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wwansvc.dll -- (WwanSvc) SRV - [2009/07/14 02:16:17 | 000,151,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wbiosrvc.dll -- (WbioSrvc) SRV - [2009/07/14 02:16:17 | 000,119,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpo.dll -- (Power) SRV - [2009/07/14 02:16:16 | 000,037,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\themeservice.dll -- (Themes) SRV - [2009/07/14 02:16:15 | 000,053,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sppuinotify.dll -- (sppuinotify) SRV - [2009/07/14 02:16:13 | 000,043,520 | ---- | M] (Microsoft Corporation) [unknown | Running] -- C:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper) SRV - [2009/07/14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc) SRV - [2009/07/14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc) SRV - [2009/07/14 02:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\pnrpsvc.dll -- (PNRPsvc) SRV - [2009/07/14 02:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\pnrpsvc.dll -- (p2pimsvc) SRV - [2009/07/14 02:16:12 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\provsvc.dll -- (HomeGroupProvider) SRV - [2009/07/14 02:16:12 | 000,020,480 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg) SRV - [2009/07/14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend) SRV - [2009/07/14 02:15:36 | 000,194,560 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\ListSvc.dll -- (HomeGroupListener) SRV - [2009/07/14 02:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp) SRV - [2009/07/14 02:15:10 | 000,218,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\defragsvc.dll -- (defragsvc) SRV - [2009/07/14 02:14:59 | 000,076,800 | ---- | M] (Microsoft Corporation) [unknown | Stopped] -- C:\Windows\System32\bdesvc.dll -- (BDESVC) SRV - [2009/07/14 02:14:58 | 000,088,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AxInstSv.dll -- (AxInstSV) Programme dinstallation ActiveX (AxInstSV) SRV - [2009/07/14 02:14:53 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\appidsvc.dll -- (AppIDSvc) SRV - [2009/07/14 02:14:29 | 003,179,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sppsvc.exe -- (sppsvc) ========== Driver Services (SafeList) ========== DRV - [2010/09/23 00:21:24 | 000,039,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\fssfltr.sys -- (fssfltr) DRV - [2009/12/11 08:44:02 | 000,133,720 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\ksecpkg.sys -- (KSecPkg) DRV - [2009/11/18 18:09:52 | 000,376,832 | ---- | M] (NETGEAR Inc. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\wg111v3.sys -- (RTL8187B) DRV - [2009/07/14 02:26:21 | 000,015,952 | ---- | M] (CMD Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\cmdide.sys -- (cmdide) DRV - [2009/07/14 02:26:17 | 000,297,552 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpahci.sys -- (adpahci) DRV - [2009/07/14 02:26:15 | 000,422,976 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adp94xx.sys -- (adp94xx) DRV - [2009/07/14 02:26:15 | 000,159,312 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsbs.sys -- (amdsbs) DRV - [2009/07/14 02:26:15 | 000,146,512 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpu320.sys -- (adpu320) DRV - [2009/07/14 02:26:15 | 000,086,608 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arcsas.sys -- (arcsas) DRV - [2009/07/14 02:26:15 | 000,079,952 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsata.sys -- (amdsata) DRV - [2009/07/14 02:26:15 | 000,076,368 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arc.sys -- (arc) DRV - [2009/07/14 02:26:15 | 000,023,616 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\amdxata.sys -- (amdxata) DRV - [2009/07/14 02:26:15 | 000,014,400 | ---- | M] (Acer Laboratories Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\aliide.sys -- (aliide) DRV - [2009/07/14 02:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nvstor.sys -- (nvstor) DRV - [2009/07/14 02:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nvraid.sys -- (nvraid) DRV - [2009/07/14 02:20:44 | 000,044,624 | ---- | M] (IBM Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nfrd960.sys -- (nfrd960) DRV - [2009/07/14 02:20:37 | 000,089,168 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas.sys -- (LSI_SAS) DRV - [2009/07/14 02:20:36 | 000,332,352 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iaStorV.sys -- (iaStorV) DRV - [2009/07/14 02:20:36 | 000,235,584 | ---- | M] (LSI Corporation, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MegaSR.sys -- (MegaSR) DRV - [2009/07/14 02:20:36 | 000,096,848 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_scsi.sys -- (LSI_SCSI) DRV - [2009/07/14 02:20:36 | 000,095,824 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_fc.sys -- (LSI_FC) DRV - [2009/07/14 02:20:36 | 000,054,864 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas2.sys -- (LSI_SAS2) DRV - [2009/07/14 02:20:36 | 000,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iirsp.sys -- (iirsp) DRV - [2009/07/14 02:20:36 | 000,030,800 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\megasas.sys -- (megasas) DRV - [2009/07/14 02:20:36 | 000,013,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy) DRV - [2009/07/14 02:20:28 | 000,453,712 | ---- | M] (Emulex) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\elxstor.sys -- (elxstor) DRV - [2009/07/14 02:20:28 | 000,070,720 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\djsvs.sys -- (aic78xx) DRV - [2009/07/14 02:20:28 | 000,067,152 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\HpSAMD.sys -- (HpSAMD) DRV - [2009/07/14 02:20:28 | 000,046,160 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\fsdepends.sys -- (FsDepends) DRV - [2009/07/14 02:19:11 | 000,141,904 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vsmraid.sys -- (vsmraid) DRV - [2009/07/14 02:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vmbus.sys -- (vmbus) DRV - [2009/07/14 02:19:10 | 000,159,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vhdmp.sys -- (vhdmp) DRV - [2009/07/14 02:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vmstorfl.sys -- (storflt) DRV - [2009/07/14 02:19:10 | 000,032,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vdrvroot.sys -- (vdrvroot) DRV - [2009/07/14 02:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\storvsc.sys -- (storvsc) DRV - [2009/07/14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\wimmount.sys -- (WIMMount) DRV - [2009/07/14 02:19:10 | 000,016,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\viaide.sys -- (viaide) DRV - [2009/07/14 02:19:04 | 001,383,488 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql2300.sys -- (ql2300) DRV - [2009/07/14 02:19:04 | 000,173,648 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\rdyboost.sys -- (rdyboost) DRV - [2009/07/14 02:19:04 | 000,106,064 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql40xx.sys -- (ql40xx) DRV - [2009/07/14 02:19:04 | 000,077,888 | ---- | M] (Silicon Integrated Systems) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\sisraid4.sys -- (SiSRaid4) DRV - [2009/07/14 02:19:04 | 000,043,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pcw.sys -- (pcw) DRV - [2009/07/14 02:19:04 | 000,040,016 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\SiSRaid2.sys -- (SiSRaid2) DRV - [2009/07/14 02:19:04 | 000,021,072 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\stexstor.sys -- (stexstor) DRV - [2009/07/14 02:17:54 | 000,369,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\cng.sys -- (CNG) DRV - [2009/07/14 01:57:25 | 000,272,128 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\Brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM) DRV - [2009/07/14 01:02:41 | 000,018,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rdpbus.sys -- (rdpbus) DRV - [2009/07/14 01:01:41 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\RDPREFMP.sys -- (RDPREFMP) DRV - [2009/07/14 00:55:00 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2) DRV - [2009/07/14 00:53:51 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\wfplwf.sys -- (WfpLwf) DRV - [2009/07/14 00:52:44 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ndiscap.sys -- (NdisCap) DRV - [2009/07/14 00:52:04 | 000,048,128 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\vwififlt.sys -- (vwififlt) DRV - [2009/07/14 00:52:02 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifibus.sys -- (vwifibus) DRV - [2009/07/14 00:52:00 | 000,163,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\1394ohci.sys -- (1394ohci) DRV - [2009/07/14 00:51:35 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\umpass.sys -- (UmPass) DRV - [2009/07/14 00:51:08 | 000,004,096 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf) DRV - [2009/07/14 00:46:55 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MTConfig.sys -- (MTConfig) DRV - [2009/07/14 00:45:26 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CompositeBus.sys -- (CompositeBus) DRV - [2009/07/14 00:36:52 | 000,050,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\appid.sys -- (AppID) DRV - [2009/07/14 00:33:50 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | Unknown | Stopped] -- C:\Windows\System32\drivers\scfilter.sys -- (scfilter) DRV - [2009/07/14 00:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vms3cap.sys -- (s3cap) DRV - [2009/07/14 00:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\VMBusHID.sys -- (VMBusHID) DRV - [2009/07/14 00:24:05 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\discache.sys -- (discache) DRV - [2009/07/14 00:16:36 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\acpipmi.sys -- (AcpiPmi) DRV - [2009/07/14 00:11:04 | 000,052,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdppm.sys -- (AmdPPM) DRV - [2009/07/13 23:54:14 | 000,026,624 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\hcw85cir.sys -- (hcw85cir) DRV - [2009/07/13 23:53:33 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbMdm.sys -- (BrUsbMdm) DRV - [2009/07/13 23:53:33 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbSer.sys -- (BrUsbSer) DRV - [2009/07/13 23:53:32 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrSerWdm.sys -- (BrSerWdm) DRV - [2009/07/13 23:53:28 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltLo.sys -- (BrFiltLo) DRV - [2009/07/13 23:53:28 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltUp.sys -- (BrFiltUp) DRV - [2009/07/13 23:02:52 | 000,139,776 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rt86win7.sys -- (RTL8167) DRV - [2009/07/13 23:02:49 | 000,229,888 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\b57nd60x.sys -- (b57nd60x) DRV - [2009/07/13 23:02:48 | 003,100,160 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\evbdx.sys -- (ebdrv) DRV - [2009/07/13 23:02:48 | 000,430,080 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\bxvbdx.sys -- (b06bdrv) DRV - [2009/06/10 22:19:48 | 009,853,248 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN : Hotmail, Messenger, Bing, Actualité et Sport IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 15 D9 1A 26 FB BD CB 01 [binary data] IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local ========== FireFox ========== FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.1 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/02/21 20:29:09 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/02/21 20:29:06 | 000,000,000 | ---D | M] [2011/02/21 20:29:22 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jé\AppData\Roaming\mozilla\Extensions [2011/02/22 21:14:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jé\AppData\Roaming\mozilla\Firefox\Profiles\2ocy35ho.default\extensions [2011/02/21 20:30:33 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Jé\AppData\Roaming\mozilla\Firefox\Profiles\2ocy35ho.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2011/02/21 20:29:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions File not found (No name found) -- C:\USERS\JÃ©\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\2OCY35HO.DEFAULT\EXTENSIONS\{B9DB16A4-6EDC-47EC-A1F4-B86292ED211D} [2010/07/23 01:44:11 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml [2010/07/23 01:44:11 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml [2010/07/23 01:44:11 | 000,000,757 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml [2010/07/23 01:44:11 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml [2010/07/23 01:44:11 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml O1 HOSTS File: ([2009/06/10 22:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation) O2 - BHO: (Windows Live Messenger Companion Helper) - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation) O2 - BHO: (Bing Bar BHO) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll (Microsoft Corporation) O3 - HKLM\..\Toolbar: (@C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll,-100) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll (Microsoft Corporation) O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [NBAgent] C:\Program Files\Nero\Nero 10\Nero BackItUp\NBAgent.exe (Nero AG) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1 O9 - Extra Button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation) O9 - Extra Button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation) O18 - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation) O30 - LSA: Security Packages - (livessp) - C:\Windows\System32\livessp.dll (Microsoft Corp.) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009/06/10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O32 - AutoRun File - [2009/06/10 22:42:20 | 000,000,024 | ---- | M] () - F:\autoexec.bat -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: FastUserSwitchingCompatibility - File not found NetSvcs: Ias - File not found NetSvcs: Nla - File not found NetSvcs: Ntmssvc - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: SRService - File not found NetSvcs: WmdmPmSp - File not found NetSvcs: LogonHours - File not found NetSvcs: PCAudit - File not found NetSvcs: helpsvc - File not found NetSvcs: uploadmgr - File not found NetSvcs: Themes - C:\Windows\System32\themeservice.dll (Microsoft Corporation) NetSvcs: BDESVC - C:\Windows\System32\bdesvc.dll (Microsoft Corporation) Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.) ========== Files/Folders - Created Within 30 Days ========== [2011/02/24 10:42:41 | 000,577,024 | ---- | C] (OldTimer Tools) -- C:\Users\Jé\Desktop\OTL.exe [2011/02/24 10:17:03 | 000,000,000 | -HSD | C] -- C:\found.001 [2011/02/23 12:35:39 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Roaming\Malwarebytes [2011/02/23 12:35:31 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys [2011/02/23 12:35:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware [2011/02/23 12:35:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2011/02/23 12:35:27 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys [2011/02/23 12:35:27 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2011/02/23 10:43:50 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Local\Diagnostics [2011/02/21 20:32:51 | 000,000,000 | ---D | C] -- C:\Users\Jé\dwhelper [2011/02/21 20:29:17 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Roaming\Mozilla [2011/02/21 20:29:17 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Local\Mozilla [2011/02/21 20:29:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox [2011/02/21 20:29:04 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2011/02/10 20:43:03 | 000,000,000 | ---D | C] -- C:\Windows\fr [2011/02/10 20:42:40 | 000,039,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\fssfltr.sys [2011/02/10 20:42:23 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live [2011/02/10 20:42:04 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition [2011/02/10 11:27:42 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll [2011/02/10 11:27:42 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll [2011/02/10 11:27:07 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Local\ElevatedDiagnostics [2011/02/09 11:04:40 | 002,329,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2011/02/09 11:04:30 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2011/02/09 11:04:30 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll [2011/02/09 11:04:30 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2011/02/09 11:04:30 | 000,386,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec [2011/02/09 11:04:30 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2011/02/09 11:04:30 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll [2011/02/09 11:04:30 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll [2011/02/09 11:04:30 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll [2011/02/09 11:04:30 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe [2011/02/09 11:04:28 | 000,294,400 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll [2011/02/09 11:04:28 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll [2011/02/09 11:04:27 | 003,957,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe [2011/02/09 11:04:27 | 003,901,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe [2011/02/09 11:04:25 | 001,170,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll [2011/02/09 11:04:24 | 001,074,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll [2011/02/09 11:04:24 | 000,801,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll [2011/02/09 11:04:24 | 000,739,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll [2011/02/09 11:04:24 | 000,442,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll [2011/02/09 11:04:24 | 000,283,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll [2011/02/09 11:04:23 | 001,495,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll [2011/02/09 11:04:23 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll [2011/02/09 11:04:23 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll [2011/02/09 11:04:23 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll [2011/02/09 11:04:22 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\upnp.dll [2011/02/09 11:04:21 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\davclnt.dll [2011/02/09 11:04:20 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wscapi.dll [2011/02/09 11:04:20 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slwga.dll [2011/02/09 11:04:19 | 000,219,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgmms1.sys [2011/02/09 11:04:19 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll [2011/02/08 20:04:31 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Toolbar [2011/02/08 20:04:18 | 000,000,000 | ---D | C] -- C:\Program Files\Bing Bar Installer [2011/02/08 20:04:15 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_5.dll [2011/02/08 20:04:15 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_42.dll [2011/02/08 20:04:15 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_3.dll [2011/02/08 20:04:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight [2011/02/08 20:03:02 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight [2011/02/08 13:04:08 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Local\Nero_AG [2011/02/08 13:03:13 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Local\Nero [2011/02/07 09:15:44 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_32.dll [2011/02/07 09:13:31 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Local\Windows Live [2011/02/07 09:12:47 | 003,181,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll [2011/02/07 09:12:47 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll [2011/02/07 09:12:46 | 001,619,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL [2011/02/05 19:35:00 | 000,000,000 | ---D | C] -- C:\Users\Jé\Tracing [2011/02/04 20:45:08 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft [2011/02/04 20:44:50 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft [2011/02/04 20:44:12 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live [2011/02/04 20:43:37 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH [2011/02/04 20:30:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live [2011/02/02 12:25:36 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Local\Adobe [2011/02/02 12:23:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2011/02/02 12:23:20 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2011/02/02 12:22:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe [2011/01/29 11:30:15 | 000,000,000 | ---D | C] -- C:\ProgramData\QuickMediaConverter [2011/01/29 11:30:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickMediaConverter [2011/01/29 11:30:02 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Roaming\CocoonSoftware [2011/01/29 11:29:45 | 000,000,000 | ---D | C] -- C:\Program Files\QuickMediaConverter [2011/01/29 11:29:40 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Local\WDSetup [2011/01/28 17:03:24 | 000,000,000 | ---D | C] -- C:\ProgramData\AVS4YOU [2011/01/28 17:03:12 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Roaming\AVS4YOU [2011/01/28 17:02:24 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU [2011/01/28 17:01:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU [2011/01/28 16:59:46 | 010,833,920 | ---- | C] (Intel Corporation) -- C:\Windows\System32\libmfxsw32.dll [2011/01/28 16:59:27 | 010,915,840 | ---- | C] (Intel Corporation) -- C:\Windows\System32\libmfxhw32.dll [2011/01/28 16:58:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AVSMedia [2011/01/28 16:58:54 | 001,700,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\GdiPlus.dll [2011/01/28 16:58:54 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml3a.dll [2011/01/28 16:58:54 | 000,000,000 | ---D | C] -- C:\Program Files\AVS4YOU [2011/01/28 10:53:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip [2011/01/28 10:53:46 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip [2011/01/28 10:52:33 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Roaming\WinRAR [2011/01/28 09:27:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes [2011/01/28 09:27:29 | 000,000,000 | ---D | C] -- C:\Program Files\iPod [2011/01/28 07:32:48 | 001,037,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll [2011/01/28 07:32:48 | 000,133,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ksecpkg.sys [2011/01/28 07:32:40 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL [2011/01/27 20:33:19 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe [2011/01/27 20:33:19 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll [2011/01/27 20:33:19 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll [2011/01/27 20:19:02 | 000,000,000 | ---D | C] -- C:\Windows\System32\Wat [2011/01/27 20:08:49 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe [2011/01/27 20:07:35 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ks.sys [2011/01/27 20:06:57 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2011/01/27 14:31:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guitar Pro 5 [2011/01/27 14:30:47 | 000,000,000 | ---D | C] -- C:\Program Files\Guitar Pro 5 [2011/01/27 14:04:31 | 000,197,632 | ---- | C] (Intel® Corporation) -- C:\Windows\System32\ir32_32.dll [2011/01/27 14:04:31 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\System32\iccvid.dll [2011/01/27 14:04:30 | 002,614,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe [2011/01/27 14:04:28 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll [2011/01/27 14:04:21 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2011/01/27 14:04:21 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2011/01/27 14:04:06 | 001,320,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll [2011/01/27 14:04:05 | 000,507,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe [2011/01/27 14:04:05 | 000,442,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe [2011/01/27 14:03:16 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\webio.dll [2011/01/27 13:59:42 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll [2011/01/27 13:58:09 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CPFilters.dll [2011/01/27 13:58:08 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdri.dll [2011/01/27 13:58:08 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax [2011/01/27 13:58:07 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll [2011/01/27 13:58:07 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax [2011/01/27 13:54:53 | 000,496,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll [2011/01/27 13:54:53 | 000,351,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll [2011/01/27 13:54:53 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll [2011/01/27 13:54:53 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\schtasks.exe [2011/01/27 13:53:30 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll [2011/01/27 13:53:02 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbc32.dll [2011/01/27 13:49:30 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll [2011/01/27 13:49:13 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll [2011/01/27 13:49:13 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll [2011/01/27 13:41:51 | 000,026,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Diskdump.sys [2011/01/27 13:41:30 | 001,328,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll [2011/01/27 13:41:30 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll [2011/01/27 13:41:30 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll [2011/01/27 13:41:13 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll [2011/01/27 13:39:07 | 000,738,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll [2011/01/27 13:38:56 | 000,101,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe [2011/01/27 13:38:12 | 000,369,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll [2011/01/27 13:38:12 | 000,365,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll [2011/01/27 13:38:12 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe [2011/01/27 13:38:11 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe [2011/01/27 13:38:11 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe [2011/01/27 13:38:11 | 000,277,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe [2011/01/27 13:38:11 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll [2011/01/27 13:38:11 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll [2011/01/27 13:37:03 | 000,363,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\StructuredQuery.dll [2011/01/27 12:57:26 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Roaming\Nero [2011/01/27 12:24:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero [2011/01/27 12:23:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero [2011/01/27 12:23:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero [2011/01/27 12:23:42 | 000,000,000 | ---D | C] -- C:\Program Files\Nero [2011/01/27 12:21:01 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2011/01/27 12:20:03 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_42.dll [2011/01/27 12:19:40 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll [2011/01/27 12:19:15 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_40.dll [2011/01/27 12:18:53 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_35.dll [2011/01/27 12:18:29 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_34.dll [2011/01/27 12:18:05 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_30.dll [2011/01/27 10:23:34 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Roaming\PhotoFiltre [2011/01/27 10:23:32 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre [2011/01/27 10:23:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre [2011/01/27 10:23:31 | 000,000,000 | ---D | C] -- C:\Program Files\PhotoFiltre [2011/01/27 10:13:38 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Local\WBFSManager [2011/01/27 10:09:33 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Roaming\Macromedia [2011/01/27 10:09:33 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Roaming\Adobe [2011/01/27 10:09:29 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed [2011/01/27 10:08:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WBFS Manager [2011/01/27 10:08:40 | 000,000,000 | ---D | C] -- C:\Users\Jé\Documents\WBFS Manager Covers [2011/01/27 10:08:40 | 000,000,000 | ---D | C] -- C:\Program Files\WBFS [2011/01/27 08:56:21 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes [2011/01/27 08:51:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime [2011/01/27 08:51:35 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime [2011/01/27 08:29:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR [2011/01/27 08:29:31 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR [2011/01/27 08:29:24 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2011/01/27 08:28:26 | 000,222,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe [2011/01/27 08:27:44 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader [2011/01/27 08:27:11 | 000,000,000 | ---D | C] -- C:\Program Files\JDownloader [2011/01/27 08:27:06 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\deploytk.dll [2011/01/27 08:27:06 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe [2011/01/27 08:27:06 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe [2011/01/27 08:27:06 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe [2011/01/27 08:26:49 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2011/01/27 08:24:31 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Local\Apple Computer [2011/01/27 08:24:30 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Roaming\Apple Computer [2011/01/27 08:24:11 | 000,107,368 | ---- | C] (GEAR Software Inc.) -- C:\Windows\System32\GEARAspi.dll [2011/01/27 08:24:11 | 000,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE [2011/01/27 08:23:51 | 000,000,000 | ---D | C] -- C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521} [2011/01/27 07:59:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer [2011/01/27 07:59:20 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Local\Apple [2011/01/27 07:59:19 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update [2011/01/27 07:58:54 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour [2011/01/27 07:58:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple [2011/01/27 07:58:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple [2011/01/26 21:54:22 | 000,000,000 | ---D | C] -- C:\Program Files\InstallShield Installation Information [2011/01/26 21:53:39 | 000,376,832 | ---- | C] (NETGEAR Inc. ) -- C:\Windows\System32\drivers\wg111v3.sys [2011/01/26 21:53:35 | 000,000,000 | ---D | C] -- C:\Program Files\NETGEAR [2011/01/26 21:53:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assistant Smart Wizard NETGEAR pour WG111v3 [2011/01/26 21:53:01 | 000,000,000 | -HSD | C] -- C:\Windows\Installer [2011/01/26 21:52:59 | 000,000,000 | ---D | C] -- C:\Windows\Downloaded Installations [2011/01/26 21:50:25 | 000,000,000 | R--D | C] -- C:\Users\Jé\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup [2011/01/26 21:50:25 | 000,000,000 | R--D | C] -- C:\Users\Jé\Searches [2011/01/26 21:50:25 | 000,000,000 | R--D | C] -- C:\Users\Jé\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools [2011/01/26 21:50:25 | 000,000,000 | -H-D | C] -- C:\Users\Jé\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned [2011/01/26 21:50:10 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Roaming\Identities [2011/01/26 21:50:04 | 000,000,000 | R--D | C] -- C:\Users\Jé\Contacts [2011/01/26 21:49:36 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Local\VirtualStore [2011/01/26 21:49:30 | 000,000,000 | --SD | C] -- C:\Users\Jé\AppData\Roaming\Microsoft [2011/01/26 21:49:30 | 000,000,000 | R--D | C] -- C:\Users\Jé\Videos [2011/01/26 21:49:30 | 000,000,000 | R--D | C] -- C:\Users\Jé\Saved Games [2011/01/26 21:49:30 | 000,000,000 | R--D | C] -- C:\Users\Jé\Pictures [2011/01/26 21:49:30 | 000,000,000 | R--D | C] -- C:\Users\Jé\Music [2011/01/26 21:49:30 | 000,000,000 | R--D | C] -- C:\Users\Jé\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance [2011/01/26 21:49:30 | 000,000,000 | R--D | C] -- C:\Users\Jé\Links [2011/01/26 21:49:30 | 000,000,000 | R--D | C] -- C:\Users\Jé\Favorites [2011/01/26 21:49:30 | 000,000,000 | R--D | C] -- C:\Users\Jé\Downloads [2011/01/26 21:49:30 | 000,000,000 | R--D | C] -- C:\Users\Jé\Documents [2011/01/26 21:49:30 | 000,000,000 | R--D | C] -- C:\Users\Jé\Desktop [2011/01/26 21:49:30 | 000,000,000 | R--D | C] -- C:\Users\Jé\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories [2011/01/26 21:49:30 | 000,000,000 | -HSD | C] -- C:\Users\Jé\Voisinage réseau [2011/01/26 21:49:30 | 000,000,000 | -HSD | C] -- C:\Users\Jé\Voisinage d'impression [2011/01/26 21:49:30 | 000,000,000 | -HSD | C] -- C:\Users\Jé\AppData\Local\Temporary Internet Files [2011/01/26 21:49:30 | 000,000,000 | -HSD | C] -- C:\Users\Jé\SendTo [2011/01/26 21:49:30 | 000,000,000 | -HSD | C] -- C:\Users\Jé\Recent [2011/01/26 21:49:30 | 000,000,000 | -HSD | C] -- C:\Users\Jé\Modèles [2011/01/26 21:49:30 | 000,000,000 | -HSD | C] -- C:\Users\Jé\Documents\Mes vidéos [2011/01/26 21:49:30 | 000,000,000 | -HSD | C] -- C:\Users\Jé\Documents\Mes images [2011/01/26 21:49:30 | 000,000,000 | -HSD | C] -- C:\Users\Jé\Mes documents [2011/01/26 21:49:30 | 000,000,000 | -HSD | C] -- C:\Users\Jé\Menu Démarrer [2011/01/26 21:49:30 | 000,000,000 | -HSD | C] -- C:\Users\Jé\Documents\Ma musique [2011/01/26 21:49:30 | 000,000,000 | -HSD | C] -- C:\Users\Jé\Local Settings [2011/01/26 21:49:30 | 000,000,000 | -HSD | C] -- C:\Users\Jé\AppData\Local\Historique [2011/01/26 21:49:30 | 000,000,000 | -HSD | C] -- C:\Users\Jé\Cookies [2011/01/26 21:49:30 | 000,000,000 | -HSD | C] -- C:\Users\Jé\Application Data [2011/01/26 21:49:30 | 000,000,000 | -HSD | C] -- C:\Users\Jé\AppData\Local\Application Data [2011/01/26 21:49:30 | 000,000,000 | -H-D | C] -- C:\Users\Jé\AppData [2011/01/26 21:49:30 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Local\Temp [2011/01/26 21:49:30 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Local\Microsoft [2011/01/26 21:49:30 | 000,000,000 | ---D | C] -- C:\Users\Jé\AppData\Roaming\Media Center Programs [2011/01/26 21:49:20 | 000,000,000 | -HSD | C] -- C:\ProgramData\Modèles [2011/01/26 21:49:20 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mes vidéos [2011/01/26 21:49:20 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mes images [2011/01/26 21:49:20 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Démarrer [2011/01/26 21:49:20 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Ma musique [2011/01/26 21:49:20 | 000,000,000 | -HSD | C] -- C:\Program Files\Fichiers communs [2011/01/26 21:49:20 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoris [2011/01/26 21:49:20 | 000,000,000 | -HSD | C] -- C:\ProgramData\Bureau [2011/01/26 21:39:16 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution [2011/01/26 21:36:26 | 000,000,000 | ---D | C] -- C:\Windows\Minidump [2011/01/26 21:36:02 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch [2011/01/26 21:34:36 | 000,000,000 | ---D | C] -- C:\Windows\Panther [2011/01/26 09:00:32 | 000,000,000 | ---D | C] -- C:\Users\Jé\Desktop\Image jé [2011/01/26 08:58:00 | 000,000,000 | ---D | C] -- C:\Users\Jé\Desktop\Code De La Route ========== Files - Modified Within 30 Days ========== [2011/02/24 11:01:20 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2011/02/24 11:01:17 | 1610,063,872 | -HS- | M] () -- C:\hiberfil.sys [2011/02/24 10:54:53 | 000,704,242 | ---- | M] () -- C:\Windows\System32\perfh00C.dat [2011/02/24 10:54:53 | 000,615,810 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2011/02/24 10:54:53 | 000,130,548 | ---- | M] () -- C:\Windows\System32\perfc00C.dat [2011/02/24 10:54:53 | 000,106,190 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2011/02/24 10:42:44 | 000,577,024 | ---- | M] (OldTimer Tools) -- C:\Users\Jé\Desktop\OTL.exe [2011/02/24 10:17:57 | 000,003,272 | ---- | M] () -- C:\bootsqm.dat [2011/02/23 12:35:31 | 000,001,071 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2011/02/22 10:30:18 | 000,000,979 | ---- | M] () -- C:\Users\Jé\Desktop\dwhelper - Raccourci.lnk [2011/02/21 20:29:10 | 000,001,913 | ---- | M] () -- C:\Users\Jé\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk [2011/02/20 22:57:39 | 000,009,584 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2011/02/20 22:57:39 | 000,009,584 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2011/02/10 11:23:29 | 000,268,312 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2011/02/08 20:06:01 | 000,000,020 | ---- | M] () -- C:\Windows\(ùˆ [2011/02/03 06:45:07 | 000,219,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgmms1.sys [2011/02/02 17:11:20 | 000,222,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe [2011/01/27 20:24:51 | 000,409,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\systemcpl.dll [2011/01/27 10:14:31 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf [2011/01/27 09:15:00 | 000,000,896 | ---- | M] () -- C:\Users\Jé\Desktop\Téléchargements - Raccourci.lnk [2011/01/27 08:28:51 | 000,001,427 | ---- | M] () -- C:\Users\Jé\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [2011/01/27 08:26:51 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deploytk.dll [2011/01/27 08:26:51 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe [2011/01/27 08:26:51 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe [2011/01/27 08:26:51 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe [2011/01/26 21:53:37 | 000,002,031 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WG111v3 Smart Wizard.lnk [2011/01/26 21:53:37 | 000,002,031 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Assistant SMART WIZARD NETGEAR pour WG111v3.lnk [2011/01/26 21:40:29 | 000,057,704 | ---- | M] () -- C:\Windows\System32\license.rtf [2011/01/26 21:34:24 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK ========== Files Created - No Company Name ========== [2011/02/24 10:17:57 | 000,003,272 | ---- | C] () -- C:\bootsqm.dat [2011/02/23 12:35:31 | 000,001,071 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2011/02/22 10:30:18 | 000,000,979 | ---- | C] () -- C:\Users\Jé\Desktop\dwhelper - Raccourci.lnk [2011/02/21 20:29:10 | 000,001,913 | ---- | C] () -- C:\Users\Jé\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk [2011/02/10 20:42:19 | 000,001,251 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk [2011/02/10 20:42:09 | 000,001,320 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk [2011/02/10 20:41:57 | 000,001,404 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk [2011/02/10 20:41:43 | 000,002,432 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk [2011/02/08 20:06:01 | 000,000,020 | ---- | C] () -- C:\Windows\(ùˆ [2011/02/02 12:23:27 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk [2011/01/27 10:14:31 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf [2011/01/27 09:15:00 | 000,000,896 | ---- | C] () -- C:\Users\Jé\Desktop\Téléchargements - Raccourci.lnk [2011/01/27 08:28:51 | 000,001,427 | ---- | C] () -- C:\Users\Jé\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [2011/01/27 07:59:20 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk [2011/01/26 21:53:37 | 000,002,031 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WG111v3 Smart Wizard.lnk [2011/01/26 21:53:37 | 000,002,031 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Assistant SMART WIZARD NETGEAR pour WG111v3.lnk [2011/01/26 21:50:27 | 000,001,433 | ---- | C] () -- C:\Users\Jé\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk [2011/01/26 21:49:30 | 000,000,290 | ---- | C] () -- C:\Users\Jé\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk [2011/01/26 21:49:30 | 000,000,272 | ---- | C] () -- C:\Users\Jé\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk [2011/01/26 21:40:04 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk [2011/01/26 21:39:53 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk [2009/07/14 00:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll [2009/07/14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll ========== Custom Scans ========== < %SYSTEMDRIVE%\*.* > [2009/06/10 22:42:20 | 000,000,024 | ---- | M] () -- C:\autoexec.bat [2009/07/14 02:38:58 | 000,383,562 | RHS- | M] () -- C:\bootmgr [2011/01/26 21:34:24 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK [2011/02/24 10:17:57 | 000,003,272 | ---- | M] () -- C:\bootsqm.dat [2009/06/10 22:42:20 | 000,000,010 | ---- | M] () -- C:\config.sys [2011/02/24 11:01:17 | 1610,063,872 | -HS- | M] () -- C:\hiberfil.sys [2011/02/24 11:01:18 | 2146,754,560 | -HS- | M] () -- C:\pagefile.sys < %systemroot%\*. /mp /s > < %systemroot%\system32\*.dll /lockedfiles > [2009/07/14 02:15:13 | 000,346,112 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\dxtmsft.dll [2009/07/14 02:15:13 | 000,215,552 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\dxtrans.dll [2010/12/18 06:29:18 | 000,185,856 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\iepeers.dll < %systemroot%\Tasks\*.job /lockedfiles > < %systemroot%\System32\config\*.sav > < %systemroot%\system32\drivers\*.sys /90 > [2011/02/03 06:45:07 | 000,219,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgmms1.sys [2010/12/20 18:08:40 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys [2010/12/20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys < HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU > < HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs > HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2011-02-24 06:58:20 < > < End of report > Extrat.txt OTL Extras logfile created on: 24/02/2011 11:03:37 - Run 1 OTL by OldTimer - Version 3.2.21.0 Folder = C:\Users\Jé\Desktop Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 66,00% Memory free 4,00 Gb Paging File | 3,00 Gb Available in Paging File | 81,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 186,31 Gb Total Space | 17,75 Gb Free Space | 9,53% Space Free | Partition Type: NTFS Drive E: | 100,00 Mb Total Space | 37,48 Mb Free Space | 37,49% Space Free | Partition Type: NTFS Drive F: | 465,66 Gb Total Space | 126,30 Gb Free Space | 27,12% Space Free | Partition Type: NTFS Drive G: | 7,50 Gb Total Space | 1,83 Gb Free Space | 24,44% Space Free | Partition Type: FAT32 Computer Name: JÉ-PC | User Name: Jé | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation) .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation) ========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation) htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = Reg Error: Unknown registry data type -- File not found "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 ========== Authorized Applications List ========== ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{08234a0d-cf39-4dca-99f0-0c5cb496da81}" = Barre d'outils Bing "{08C8666B-C502-4AB3-B4CB-D74AC42D14FE}" = Nero BackItUp 10 Help (CHM) "{09F56A49-A7B1-4AAB-95B9-D13094254AD1}" = Windows Live UX Platform Language Pack "{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer "{0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}" = Microsoft .NET Framework 4 Client Profile FRA Language Pack "{16987E99-C95C-4513-9239-7B44A0A71DB5}" = Nero SoundTrax 10 Help (CHM) "{19A4A990-5343-4FF7-B3B5-6F046C091EDF}" = Windows Live Remote Client "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update "{1F7FB68F-52F6-46A3-B42F-38CE46295AE5}" = Nero MediaHub 10 "{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions "{227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0}" = Windows Live Remote Service "{237CCB62-8454-43E3-B158-3ACD0134852E}" = High-Definition Video Playback 10 "{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}" = Nero Core Components 10 "{26A24AE4-039D-4CA4-87B4-2F83216015FF}" = Java 6 Update 15 "{277C1559-4CF7-44FF-8D07-98AA9C13AABD}" = Nero Multimedia Suite 10 "{2A981294-F14C-4F0F-9627-D793270922F8}" = Bonjour "{329411A0-19F3-4740-874F-17400B126F27}" = Nero Vision 10 Help (CHM) "{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery "{33643918-7957-4839-92C7-EA96CB621A98}" = Nero Express 10 Help (CHM) "{34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}" = Windows Live "{34490F4E-48D0-492E-8249-B48BECF0537C}" = Nero DiscSpeed 10 "{3B9A92DA-6374-4872-B646-253F18624D5F}" = Windows Live Writer "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{488F0347-C4A7-4374-91A7-30818BEDA710}" = Galerie de photos Windows Live "{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform "{523B2B1B-D8DB-4B41-90FF-C4D799E2758A}" = Nero ControlCenter 10 Help (CHM) "{5396FBD8-8BD7-47F9-92AE-F62F13D5A11D}" = NETGEAR WG111v3 wireless USB 2.0 adapter "{555868C6-49FB-484F-BB43-8980651A1B00}" = Nero BurnRights 10 Help (CHM) "{55D003F4-9599-44BF-BA9E-95D060730DD3}" = Contrôle ActiveX Windows Live Mesh pour connexions à distance "{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime "{5BF5F9C5-E95B-4AFA-94BE-F2A9CA73B61D}" = Apple Mobile Device Support "{5F548A02-80BC-404D-BAE6-F05F9BF6B449}" = Nero DiscCopyGadget 10 Help (CHM) "{6057E21C-ABE9-4059-AE3E-3BEB9925E660}" = Windows Live Messenger "{61AD15B2-50DB-4686-A739-14FE180D4429}" = Windows Live ID Sign-in Assistant "{62687B11-58B5-4A18-9BC3-9DF4CE03F194}" = Windows Live Writer Resources "{63AA3EAB-23BB-48B2-9AD0-44F878075604}" = Nero 10 Menu TemplatePack Basic "{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update "{65C0025A-2CDE-43C5-82D0-C7A56EF0DB39}" = Bing Bar Platform "{66049135-9659-4AAD-9169-9CCA269EBB3E}" = Nero InfoTool 10 Help (CHM) "{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE "{68AB6930-5BFF-4FF6-923B-516A91984FE6}" = Nero BackItUp 10 "{6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}" = Windows Live Movie Maker "{6DFB899F-17A2-48F0-A533-ED8D6866CF38}" = Nero Control Center 10 "{6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}" = Complément Messenger "{70550193-1C22-445C-8FA4-564E155DB1A7}" = Nero Express 10 "{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core "{7A295D8F-484B-4FFB-89AB-C1FD497591FE}" = Nero WaveEditor 10 Help (CHM) "{7A5D731D-B4B3-490E-B339-75685712BAAB}" = Nero Burning ROM 10 "{825E9A84-1E03-4526-9F8E-45015C938A7C}" = WBFS Manager 4.0 "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{841F1FB4-FDF8-461C-A496-3E1CFD84C0B5}" = Windows Live Mesh "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime "{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT "{8ECEC853-5C3D-4B10-B5C7-FF11FF724807}" = Nero Recode 10 "{92E25238-61A3-4ACD-A407-3C480EEF47A7}" = Nero RescueAgent 10 Help (CHM) "{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker "{92EC1A84-7FFC-42DF-A8F6-79C21C4765A5}" = Nero DiscCopy Gadget 10 "{943CFD7D-5336-47AF-9418-E02473A5A517}" = Nero BurnRights 10 "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}" = Nero Vision 10 "{9B6B24BE-80E7-46C4-9FA5-B167D5E0F345}" = Nero BurningROM 10 Help (CHM) "{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail "{9FAE6E8D-E686-49F5-A574-0A58DFD9580C}" = Windows Live Mail "{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer "{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common "{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer "{AAD47011-8518-4608-9656-951DA35B587B}" = iTunes "{AB93C51F-71F9-4A28-8134-FE1B5B9373E9}" = Windows Live Remote Service Resources "{AC76BA86-7AD7-1036-7B44-AA0000000001}" = Adobe Reader X (10.0.1) - Français "{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter "{C18A0418-442A-4186-AF98-D08F5054A2FC}" = Nero DiscSpeed 10 Help (CHM) "{C3273C55-E1E4-41FF-8D69-0158090DB8D8}" = Nero CoverDesigner 10 Help (CHM) "{C3580AC4-C827-4332-B935-9A282ED5BB97}" = Nero Dolby Files 10 "{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update "{C893D8C0-1BA0-4517-B11C-E89B65E72F70}" = Windows Live Photo Common "{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform "{CFF8B8E8-E086-4DE0-935F-FE22CAB54F80}" = Microsoft Search Enhancement Pack "{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}" = Microsoft Primary Interoperability Assemblies 2005 "{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform "{DB7C1D4A-08BA-4C7E-A8AA-B7F9BB372DCF}" = Nero Recode 10 Help (CHM) "{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh "{DFDBE1F9-04CE-4645-BB6C-4590EABC7A9C}" = Windows Live Remote Client Resources "{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10 "{E1EE5339-5D32-458F-BAAB-B19F6301BCE2}" = Nero SoundTrax 10 "{E337E787-CF61-4B7B-B84F-509202A54023}" = Nero RescueAgent 10 "{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger "{EDCDFAD5-DF80-4600-A493-E9DAD6810230}" = Nero WaveEditor 10 "{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU] "{F412B4AF-388C-4FF5-9B2F-33DB1C536953}" = Nero InfoTool 10 "{F467862A-D9CA-47ED-8D81-B4B3C9399272}" = Nero MediaHub 10 Help (CHM) "{F53D678E-238F-4A71-9742-08BB6774E9DC}" = Windows Live Family Safety "{F5CB822F-B365-43D1-BCC0-4FDA1A2017A7}" = Nero 10 Movie ThemePack Basic "{F6117F9C-ADB5-4590-9BE4-12C7BEC28702}" = Nero StartSmart 10 Help (CHM) "{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}" = Nero StartSmart 10 "{FCF00A6E-FB58-477A-ABE9-232907105521}" = Nero CoverDesigner 10 "{FCFBA290-CB48-4AF1-A241-2685AEDEDD66}" = Windows Live Family Safety "7-Zip" = 7-Zip 4.65 "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "AVS Screen Capture_is1" = AVS Screen Capture version 2.0.1 "AVS Update Manager_is1" = AVS Update Manager 1.0 "AVS Video Editor_is1" = AVS Video Editor 5 "AVS Video Recorder_is1" = AVS Video Recorder 2.4 "AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.4 "CCleaner" = CCleaner "Guitar Pro 5_is1" = Guitar Pro 5.2 "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Client Profile FRA Language Pack" = Module linguistique Microsoft .NET Framework 4 Client Profile FRA "Mozilla Firefox (3.6." = Mozilla Firefox (3.6. "WinLiveSuite" = Windows Live "WinRAR archiver" = Logiciel d'archivage WinRAR ========== HKEY_CURRENT_USER Uninstall List ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "PhotoFiltre" = PhotoFiltre "QUICKMEDIACONVERTER" = QMC ========== Last 10 Event Log Errors ========== [ Application Events ] Error - 24/02/2011 04:15:06 | Computer Name = Jé-PC | Source = ESENT | ID = 412 Description = Windows (3704) Windows: Impossible de lire l'en-tête du journal C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.log. Erreur -501. Error - 24/02/2011 04:15:06 | Computer Name = Jé-PC | Source = Windows Search Service | ID = 9000 Description = Error - 24/02/2011 04:15:06 | Computer Name = Jé-PC | Source = Windows Search Service | ID = 7040 Description = Error - 24/02/2011 04:15:06 | Computer Name = Jé-PC | Source = Windows Search Service | ID = 7042 Description = Error - 24/02/2011 04:15:06 | Computer Name = Jé-PC | Source = Windows Search Service | ID = 9002 Description = Error - 24/02/2011 04:15:06 | Computer Name = Jé-PC | Source = Windows Search Service | ID = 3029 Description = Error - 24/02/2011 04:15:07 | Computer Name = Jé-PC | Source = Windows Search Service | ID = 3029 Description = Error - 24/02/2011 04:15:07 | Computer Name = Jé-PC | Source = Windows Search Service | ID = 3028 Description = Error - 24/02/2011 04:15:07 | Computer Name = Jé-PC | Source = Windows Search Service | ID = 3058 Description = Error - 24/02/2011 04:15:07 | Computer Name = Jé-PC | Source = Windows Search Service | ID = 7010 Description = [ System Events ] Error - 24/02/2011 05:58:09 | Computer Name = Jé-PC | Source = Ntfs | ID = 131 Description = La structure du système de fichiers du volume C: ne peut pas être corrigée. Exécutez lutilitaire chkdsk sur le volume C:. Error - 24/02/2011 05:58:09 | Computer Name = Jé-PC | Source = Ntfs | ID = 262199 Description = La structure du système de fichiers sur le disque est endommagée et inutilisable. Exécutez lutilitaire chkdsk sur le volume \Device\HarddiskVolume1. Error - 24/02/2011 05:58:09 | Computer Name = Jé-PC | Source = Ntfs | ID = 262199 Description = La structure du système de fichiers sur le disque est endommagée et inutilisable. Exécutez lutilitaire chkdsk sur le volume C:. Error - 24/02/2011 05:58:09 | Computer Name = Jé-PC | Source = Ntfs | ID = 131 Description = La structure du système de fichiers du volume C: ne peut pas être corrigée. Exécutez lutilitaire chkdsk sur le volume C:. Error - 24/02/2011 05:58:09 | Computer Name = Jé-PC | Source = Ntfs | ID = 262199 Description = La structure du système de fichiers sur le disque est endommagée et inutilisable. Exécutez lutilitaire chkdsk sur le volume \Device\HarddiskVolume1. Error - 24/02/2011 05:58:09 | Computer Name = Jé-PC | Source = Ntfs | ID = 262199 Description = La structure du système de fichiers sur le disque est endommagée et inutilisable. Exécutez lutilitaire chkdsk sur le volume C:. Error - 24/02/2011 06:01:22 | Computer Name = Jé-PC | Source = EventLog | ID = 6008 Description = Larrêt système précédant à 10:57:42 le ?24/?02/?2011 nétait pas prévu. Error - 24/02/2011 06:01:09 | Computer Name = Jé-PC | Source = Microsoft-Windows-Kernel-Processor-Power | ID = 6 Description = Certaines fonctionnalités de gestion de lalimentation relatives aux performances du processeur ont été désactivées en raison dun problème connu avec le microprogramme. Contactez le fabricant de lordinateur pour obtenir la mise à jour du microprogramme. Error - 24/02/2011 06:01:30 | Computer Name = Jé-PC | Source = BugCheck | ID = 1001 Description = Error - 24/02/2011 06:08:17 | Computer Name = Jé-PC | Source = Ntfs | ID = 262199 Description = La structure du système de fichiers sur le disque est endommagée et inutilisable. Exécutez lutilitaire chkdsk sur le volume \Device\HarddiskVolume1. < End of report > Apparament mon DD C serait endommagé si j'ai bien compris?
- le 24 février 2011
- 13 réponses
Mon PC Me Rend Fou

Jé59 a répondu à un(e) sujet de Jé59 dans Analyses et éradication malwares

Dabord merci pour ce super tutoriel. J'ai tout suivis et fais toutes les actions demandé plus haut et j'ai rien trouver de suspect, je vous laisse regarder les rapports que j'ai obtenus. Malware Bytes Anti-Malware : alwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Version de la base de données: 5851 Windows 6.1.7600 Internet Explorer 8.0.7600.16385 23/02/2011 12:40:20 mbam-log-2011-02-23 (12-40-20).txt Type d'examen: Examen rapide Elément(s) analysé(s): 143673 Temps écoulé: 4 minute(s), 1 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté) Security Check : Results of screen317's Security Check version 0.99.8 Windows 7 (UAC is enabled) Internet Explorer 8 `````````````````````````````` Antivirus/Firewall Check: WMI entry may not exist for antivirus; attempting automatic update. ``````````````````````````````` Anti-malware/Other Utilities Check: Malwarebytes' Anti-Malware CCleaner Java 6 Update 15 Out of date Java installed! Adobe Flash Player 10.2.152.26 Adobe Reader X (10.0.1) - Français Mozilla Firefox (3.6. ```````````````````````````````` Process Check: objlist.exe by Laurent ``````````End of Log```````````` Voila donc d'apres les tests rien d'alarmant cepandant je vous invite à réagir sur le sujet^
- le 23 février 2011
- 13 réponses
Mon PC Me Rend Fou

Jé59 a posté un sujet dans Analyses et éradication malwares

Bonjour à tous vous l'aurez remarquer le titre du sujet est banal mais pourtant c'est la vérité, j'en peu plus ^^. Depuis plusieur semaine mon ordinateur fais que buger ou freezeer je sais pas exactement quels termes il faut employer. Celui si fait que ralentir à chaque fois que je surf sur le web ou encore quand j'ecoute de la musique et que je fais une autre action (même legere) sur le pc j'entend comme des bruits de parasites et a force sa finis par me couper la musique et ecrit itunes ne répond pas. Mais j'ai encore plein d'autres,exemples: Quand je copie un fichier sur ma clé usb avec la musique dérrierre ben celui si ralenti considérablement et finis par bloquer , pareil quand je veux dezipper un fichier ou ouvrir deux fichiers video ou audio en même temps. En fait j'ai l'impression que je peux faire qu'une chose a la fois sur mon PC, si je suis sur une page internet sa vas mais si j'ouvre d'autres onglet c'est la cata. J'ai penser pendant un moment au fait qu'il chauffait trop , mais ya aussi plein d'autre possibilité donc je sais plus trop quoi penser c'est pour sa que je vous demande conseils aujourd hui. D'avance Merci pour vos infos.
- le 22 février 2011
- 13 réponses

Connexion

Jé59

Compteur de contenus

Inscription

Dernière visite

Jé59's Achievements

Junior Member (3/12)

Réputation sur la communauté

[Résolu] Problème avec mon disque dur

[Résolu] Problème avec mon disque dur

[Résolu] Problème avec mon disque dur

Mon PC Me Rend Fou

Mon PC Me Rend Fou

Mon PC Me Rend Fou

Mon PC Me Rend Fou

Mon PC Me Rend Fou

Mon PC Me Rend Fou

Mon PC Me Rend Fou

Zebulon

Outils en ligne

Naviguer