Security warning : application cannot be executed, the file .....exe.is infected

bagneki · le 23 juin 2010

salut et merci beaucoup NO.PP pour tous tes conseils.

qu'en est -il de la presence de ALUREON que Mbam avait signaler apres analyse par TDSKILLER ET GMER?

voici les resultats de SEAF

1. ========================= SEAF 1.0.0.7 - C_XX

2.

3. Commencé à: 16:11:38 le 23/06/2010

4.

5. Valeur(s) recherchée(s):

6.

7. owddcxwut

8. kvqrbxgtssd

9. luduvupf

10.

11. (!) --- Calcul du Hash "MD5"

12. (!) --- Informations supplémentaires

13. (!) --- Recherche registre

14.

15. ====== Fichier(s) (TC: Date de création, TM: Date de modification, DA, Dernier accès) ======

16.

17. Aucun fichier trouvé

18.

19. ====== Dossier(s) (TC: Date de création, TM: Date de modification, DA, Dernier accès) ======

20.

21. "c:\_OTL\MovedFiles\06212010_060542\C_Users\hugues\AppData\Local\owddcxwut" [ ----D---- ]

22. TC: 19/06/2010,10:04:39 | TM: 21/06/2010,02:16:50 | DA: 21/06/2010,02:16:50

23.

24. =========================

25.

26.

27. ====== Entrée(s) du registre ======

28.

29.

30.

31. [HKEY_CLASSES_ROOT\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]

32. "C:\Users\hugues\AppData\Local\owddcxwut\kvqrbxgtssd.exe"="Kernel Veryfier"

33.

34. [HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]

35. "C:\Users\hugues\AppData\Local\owddcxwut\kvqrbxgtssd.exe"="Kernel Veryfier"

36.

37. [HKEY_USERS\S-1-5-21-1286651634-2638253971-3409342703-1000\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]

38. "C:\Users\hugues\AppData\Local\owddcxwut\kvqrbxgtssd.exe"="Kernel Veryfier"

39.

40. [HKEY_USERS\S-1-5-21-1286651634-2638253971-3409342703-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]

41. "C:\Users\hugues\AppData\Local\owddcxwut\kvqrbxgtssd.exe"="Kernel Veryfier"

42.

43.

44.

45. [HKEY_CLASSES_ROOT\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]

46. "C:\Users\hugues\AppData\Local\owddcxwut\kvqrbxgtssd.exe"="Kernel Veryfier"

47.

48. [HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]

49. "C:\Users\hugues\AppData\Local\owddcxwut\kvqrbxgtssd.exe"="Kernel Veryfier"

50.

51. [HKEY_USERS\S-1-5-21-1286651634-2638253971-3409342703-1000\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]

52. "C:\Users\hugues\AppData\Local\owddcxwut\kvqrbxgtssd.exe"="Kernel Veryfier"

53.

54. [HKEY_USERS\S-1-5-21-1286651634-2638253971-3409342703-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]

55. "C:\Users\hugues\AppData\Local\owddcxwut\kvqrbxgtssd.exe"="Kernel Veryfier"

56.

57.

58.

59. =========================

60.

61. Fin à: 16:18:29 le 23/06/2010 ( E.O.F )

voici le nouveau rapport OTL avec les nouveaux parametres demandes.

OTL logfile created on: 6/23/2010 7:20:35 PM - Run 4

OTL by OldTimer - Version 3.2.6.0 Folder = C:\Users\b\Desktop

Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18928)

Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 52.00% Memory free

6.00 Gb Paging File | 4.00 Gb Available in Paging File | 74.00% Paging File free

Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files

Drive C: | 222.84 Gb Total Space | 134.81 Gb Free Space | 60.50% Space Free | Partition Type: NTFS

Drive D: | 10.04 Gb Total Space | 1.72 Gb Free Space | 17.09% Space Free | Partition Type: NTFS

E: Drive not present or media not loaded

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: HUGUES-PC

Current User Name: hugues

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: Current user

Company Name Whitelist: Off

Skip Microsoft Files: Off

File Age = 30 Days

Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/06/20 12:55:08 | 000,572,416 | ---- | M] (OldTimer Tools) -- C:\Users\b\Desktop\OTL.scr

PRC - [2010/05/06 13:59:42 | 002,815,192 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe

PRC - [2010/05/06 13:59:38 | 000,040,384 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

PRC - [2009/11/02 17:24:58 | 000,257,440 | R--- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashUtil10d.exe

PRC - [2009/09/28 09:42:50 | 000,109,056 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe

PRC - [2009/04/10 23:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe

PRC - [2008/12/04 13:29:32 | 000,131,928 | ---- | M] (Microsoft Corp.) -- C:\Program Files\MSN\Toolbar\3.0.0988.2\msntask.exe

PRC - [2008/11/09 13:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe

PRC - [2008/10/17 15:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) -- c:\Program Files\Common Files\Symantec Shared\CCSVCHST.EXE

PRC - [2008/05/22 18:10:42 | 001,245,064 | ---- | M] () -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe

PRC - [2008/04/16 11:55:02 | 000,221,239 | ---- | M] (IDT, Inc.) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f691e717\stacsv.exe

PRC - [2008/03/26 15:26:56 | 000,341,328 | ---- | M] () -- C:\Windows\SMINST\BLService.exe

PRC - [2008/02/11 22:05:54 | 000,073,728 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f691e717\AEstSrv.exe

PRC - [2008/02/09 15:06:00 | 000,238,968 | ---- | M] (Symantec Corporation) -- c:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe

PRC - [2008/02/06 12:10:00 | 000,051,576 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\NPC\2.0\HSLoader.exe

PRC - [2007/12/11 12:15:04 | 000,012,800 | ---- | M] (Agere Systems) -- C:\Windows\System32\agrsmsvc.exe

PRC - [2007/01/05 04:10:26 | 000,154,432 | R--- | M] (Primax Electronics Ltd.) -- C:\Windows\System32\PELMICED.EXE

PRC - [2007/01/04 14:38:08 | 000,024,652 | ---- | M] (Viewpoint Corporation) -- C:\Program Files\Viewpoint\Common\ViewpointService.exe

PRC - [2006/11/03 02:32:00 | 000,049,152 | R--- | M] (Primax Electronics Ltd.) -- C:\Windows\System32\ICO.EXE

========== Modules (SafeList) ==========

MOD - [2010/06/20 12:55:08 | 000,572,416 | ---- | M] (OldTimer Tools) -- C:\Users\b\Desktop\OTL.scr

MOD - [2009/04/10 23:21:38 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll

MOD - [2008/01/20 19:24:37 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscript.ocx

========== Win32 Services (SafeList) ==========

SRV - [2010/05/06 13:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)

SRV - [2010/05/06 13:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)

SRV - [2010/05/06 13:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)

SRV - [2009/09/28 09:42:50 | 000,109,056 | ---- | M] (ArcSoft Inc.) [Auto | Running] -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon)

SRV - [2009/09/24 18:27:04 | 000,793,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\FntCache.dll -- (FontCache)

SRV - [2008/11/09 13:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)

SRV - [2008/10/17 15:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (LiveUpdate Notice)

SRV - [2008/10/17 15:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (CLTNetCnService)

SRV - [2008/10/17 15:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccSetMgr)

SRV - [2008/10/17 15:52:10 | 000,149,352 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccEvtMgr)

SRV - [2008/09/05 11:52:32 | 003,220,856 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- c:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE -- (LiveUpdate)

SRV - [2008/05/22 18:10:42 | 001,245,064 | ---- | M] () [On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe -- (Symantec Core LC)

SRV - [2008/04/16 11:55:02 | 000,221,239 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f691e717\stacsv.exe -- (STacSV)

SRV - [2008/03/26 15:26:56 | 000,341,328 | ---- | M] () [Auto | Running] -- C:\Windows\SMINST\BLService.exe -- (Recovery Service for Windows)

SRV - [2008/02/11 22:05:54 | 000,073,728 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f691e717\AEstSrv.exe -- (AESTFilters)

SRV - [2008/02/09 15:06:00 | 000,238,968 | ---- | M] (Symantec Corporation) [Auto | Running] -- c:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe -- (Automatic LiveUpdate Scheduler)

SRV - [2008/01/20 19:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)

SRV - [2007/12/11 12:15:04 | 000,012,800 | ---- | M] (Agere Systems) [Auto | Running] -- C:\Windows\System32\agrsmsvc.exe -- (AgereModemAudio)

SRV - [2007/08/22 00:21:00 | 000,055,640 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe -- (comHost)

SRV - [2007/01/04 14:38:08 | 000,024,652 | ---- | M] (Viewpoint Corporation) [Auto | Running] -- C:\Program Files\Viewpoint\Common\ViewpointService.exe -- (Viewpoint Manager Service)

========== Driver Services (SafeList) ==========

DRV - [2010/05/06 13:39:23 | 000,046,672 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)

DRV - [2010/05/06 13:39:00 | 000,164,048 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)

DRV - [2010/05/06 13:34:27 | 000,023,376 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)

DRV - [2010/05/06 13:34:10 | 000,051,792 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)

DRV - [2010/05/06 13:33:47 | 000,019,024 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)

DRV - [2010/04/29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)

DRV - [2010/02/26 21:34:18 | 000,025,656 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\hpdskflt.sys -- (hpdskflt)

DRV - [2010/02/26 21:33:56 | 000,033,848 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Accelerometer.sys -- (Accelerometer)

DRV - [2009/12/30 12:21:16 | 000,027,192 | ---- | M] (VS Revo Group) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\revoflt.sys -- (Revoflt)

DRV - [2009/09/30 02:00:00 | 001,323,568 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20090930.002\NAVEX15.SYS -- (NAVEX15)

DRV - [2009/09/30 02:00:00 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)

DRV - [2009/09/30 02:00:00 | 000,102,448 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)

DRV - [2009/09/30 02:00:00 | 000,084,912 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20090930.002\NAVENG.SYS -- (NAVENG)

DRV - [2009/09/02 04:09:24 | 000,176,128 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)

DRV - [2009/07/17 05:40:00 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\Windows\System32\drivers\StarOpen.sys -- (StarOpen)

DRV - [2009/02/19 12:31:42 | 000,024,112 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\SymIMV.sys -- (SymIM)

DRV - [2009/02/19 12:31:18 | 000,041,008 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMNDISV.SYS -- (SYMNDISV)

DRV - [2009/02/19 12:31:16 | 000,184,496 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\SYMTDI.SYS -- (SYMTDI)

DRV - [2009/02/19 12:31:16 | 000,096,560 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMFW.SYS -- (SYMFW)

DRV - [2009/02/19 12:31:16 | 000,022,320 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMREDRV.SYS -- (SYMREDRV)

DRV - [2009/02/19 12:31:16 | 000,013,616 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMDNS.SYS -- (SYMDNS)

DRV - [2009/01/10 09:17:09 | 000,124,464 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent)

DRV - [2008/11/21 22:53:40 | 001,204,128 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)

DRV - [2008/09/12 00:33:24 | 000,270,384 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Symantec\Definitions\SymcData\ipsdefs\20081106.001\IDSvix86.sys -- (IDSvix86)

DRV - [2008/09/05 14:31:42 | 000,447,024 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)

DRV - [2008/07/30 17:42:12 | 000,023,888 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\COH_Mon.sys -- (COH_Mon)

DRV - [2008/04/27 11:07:44 | 000,909,824 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)

DRV - [2008/04/21 20:59:04 | 000,062,976 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTSTOR.sys -- (RTSTOR)

DRV - [2008/04/16 11:58:24 | 000,379,904 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA)

DRV - [2008/04/14 15:56:18 | 000,170,000 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\ahcix86s.sys -- (ahcix86s)

DRV - [2008/03/28 04:24:16 | 003,544,064 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)

DRV - [2008/01/31 16:51:00 | 000,317,616 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\srtspl.sys -- (SRTSPL)

DRV - [2008/01/31 16:51:00 | 000,279,088 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\srtsp.sys -- (SRTSP)

DRV - [2008/01/31 16:51:00 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\srtspx.sys -- (SRTSPX)

DRV - [2008/01/23 14:23:12 | 000,052,736 | ---- | M] (ENE TECHNOLOGY INC.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\enecir.sys -- (enecir)

DRV - [2008/01/20 19:23:27 | 000,386,616 | ---- | M] (LSI Corporation, Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\megasr.sys -- (MegaSR)

DRV - [2008/01/20 19:23:27 | 000,149,560 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320)

DRV - [2008/01/20 19:23:27 | 000,031,288 | ---- | M] (LSI Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\megasas.sys -- (megasas)

DRV - [2008/01/20 19:23:26 | 000,101,432 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m)

DRV - [2008/01/20 19:23:26 | 000,074,808 | ---- | M] (Silicon Integrated Systems) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4)

DRV - [2008/01/20 19:23:26 | 000,040,504 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs)

DRV - [2008/01/20 19:23:25 | 000,300,600 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci)

DRV - [2008/01/20 19:23:25 | 000,089,656 | ---- | M] (LSI Logic) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS)

DRV - [2008/01/20 19:23:24 | 001,122,360 | ---- | M] (QLogic Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300)

DRV - [2008/01/20 19:23:24 | 000,118,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel®

DRV - [2008/01/20 19:23:24 | 000,079,928 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas)

DRV - [2008/01/20 19:23:23 | 000,654,336 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VSTCNXT3.SYS -- (winachsf)

DRV - [2008/01/20 19:23:23 | 000,235,064 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV)

DRV - [2008/01/20 19:23:23 | 000,130,616 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid)

DRV - [2008/01/20 19:23:23 | 000,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2)

DRV - [2008/01/20 19:23:23 | 000,096,312 | ---- | M] (LSI Logic) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI)

DRV - [2008/01/20 19:23:23 | 000,096,312 | ---- | M] (LSI Logic) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC)

DRV - [2008/01/20 19:23:23 | 000,079,416 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\arc.sys -- (arc)

DRV - [2008/01/20 19:23:22 | 000,987,648 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VSTDPV3.SYS -- (HSF_DPV)

DRV - [2008/01/20 19:23:22 | 000,342,584 | ---- | M] (Emulex) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor)

DRV - [2008/01/20 19:23:22 | 000,200,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VSTAZL3.SYS -- (HSFHWAZL)

DRV - [2008/01/20 19:23:21 | 000,422,968 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx)

DRV - [2008/01/20 19:23:21 | 000,102,968 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid)

DRV - [2008/01/20 19:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor)

DRV - [2008/01/20 19:23:20 | 000,238,648 | ---- | M] (ULi Electronics Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci)

DRV - [2008/01/20 19:23:00 | 000,020,024 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\viaide.sys -- (viaide)

DRV - [2008/01/20 19:23:00 | 000,019,000 | ---- | M] (CMD Technology, Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide)

DRV - [2008/01/20 19:23:00 | 000,017,464 | ---- | M] (Acer Laboratories Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\aliide.sys -- (aliide)

DRV - [2008/01/17 12:31:26 | 000,196,784 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SynTP.sys -- (SynTP)

DRV - [2008/01/07 13:42:04 | 000,015,416 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\Amddfltr.sys -- (Amddfltr)

DRV - [2007/08/08 16:39:00 | 000,036,056 | ---- | M] (Symantec Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\CO_Mon.sys -- (CO_Mon)

DRV - [2007/07/11 10:30:22 | 000,007,168 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\HpqRemHid.sys -- (HpqRemHid)

DRV - [2007/07/03 16:58:20 | 000,106,792 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdmdm.sys -- (sscdmdm)

DRV - [2007/07/03 16:57:24 | 000,011,944 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdmdfl.sys -- (sscdmdfl)

DRV - [2007/07/03 16:54:24 | 000,080,552 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM)

DRV - [2007/06/18 17:12:04 | 000,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)

DRV - [2007/05/02 11:12:36 | 000,109,704 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssm_mdm.sys -- (ssm_mdm)

DRV - [2007/05/02 11:12:36 | 000,015,112 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssm_mdfl.sys -- (ssm_mdfl)

DRV - [2007/05/02 11:12:34 | 000,083,592 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssm_bus.sys -- (ssm_bus) SAMSUNG Mobile USB Device II 1.0 driver (WDM)

DRV - [2006/11/03 02:33:00 | 000,016,512 | R--- | M] (Primax Electronics Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PELMOUSE.SYS -- (pelmouse)

DRV - [2006/11/03 02:33:00 | 000,013,184 | R--- | M] (Primax Electronics Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PELUSBlf.SYS -- (pelusblf)

DRV - [2006/11/02 02:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx)

DRV - [2006/11/02 02:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata)

DRV - [2006/11/02 02:50:19 | 000,045,160 | ---- | M] (IBM Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960)

DRV - [2006/11/02 02:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp)

DRV - [2006/11/02 02:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx)

DRV - [2006/11/02 02:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid)

DRV - [2006/11/02 02:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi)

DRV - [2006/11/02 02:50:05 | 000,035,944 | ---- | M] (LSI Logic) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx)

DRV - [2006/11/02 02:50:03 | 000,034,920 | ---- | M] (LSI Logic) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3)

DRV - [2006/11/02 02:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x)

DRV - [2006/11/02 02:49:56 | 000,031,848 | ---- | M] (LSI Logic) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi)

DRV - [2006/11/02 01:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)

DRV - [2006/11/02 01:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer)

DRV - [2006/11/02 01:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp)

DRV - [2006/11/02 01:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo)

DRV - [2006/11/02 01:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm)

DRV - [2006/11/02 01:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm)

DRV - [2006/11/02 00:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi)

DRV - [2006/11/02 00:30:56 | 000,429,056 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvm60x32.sys -- (NVENETFD)

DRV - [2006/11/02 00:30:53 | 000,464,384 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BCMWL6.SYS -- (BCM43XV)

DRV - [2006/10/29 13:23:12 | 000,007,680 | ---- | M] (ATI Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\AtiPcie.sys -- (AtiPcie) ATI PCI Express (3GIO)

DRV - [2004/02/04 11:27:56 | 000,049,536 | ---- | M] (Texas Instruments Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tiehdusb.sys -- (TIEHDUSB)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=83&bd=Pavilion&pf=cnnb'>http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=83&bd=Pavilion&pf=cnnb'>http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=83&bd=Pavilion&pf=cnnb'>http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=83&bd=Pavilion&pf=cnnb

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=83&bd=Pavilion&pf=cnnb

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://www.internetscout.biz/google/?q={searchTerms}'>http://www.internetscout.biz/google/?q={searchTerms}

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.internetscout.info/google/iesearch.php'>http://www.internetscout.info/google/iesearch.php

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=83&bd=Pavilion&pf=cnnb

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=83&bd=Pavilion&pf=cnnb

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://www.internetscout.biz/google/?q={searchTerms}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.internetscout.info/google/iesearch.php

IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll (Yahoo! Inc.)

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:5555

FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Program Files\Real\RealPlayer\browserrecord [2008/11/05 00:58:53 | 000,000,000 | ---D | M]

FF - HKLM\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/02/08 08:42:11 | 000,000,000 | ---D | M]

[2010/01/15 01:45:19 | 000,000,000 | ---D | M] -- C:\Users\hugues\AppData\Roaming\Mozilla\Extensions

[2010/01/15 01:45:19 | 000,000,000 | ---D | M] -- C:\Users\hugues\AppData\Roaming\Mozilla\Extensions\mozswing@mozswing.org

O1 HOSTS File: ([2010/06/21 22:40:56 | 000,000,098 | ---- | M]) - C:\Windows\System32\drivers\etc\Hosts

O1 - Hosts: 127.0.0.1 localhost

O1 - Hosts: ::1 localhost

O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll (Yahoo! Inc.)

O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)

O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)

O2 - BHO: (no name) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.5\CoIEPlg.dll (Symantec Corporation)

O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Common Files\Symantec Shared\IDS\IPSBHO.dll (Symantec Corporation)

O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)

O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)

O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll (Google Inc.)

O2 - BHO: (MSN Toolbar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN\Toolbar\3.0.0988.2\msneshellx.dll (Microsoft Corp.)

O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\YTSingleInstance.dll (Yahoo! Inc)

O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)

O3 - HKLM\..\Toolbar: (MSN Toolbar) - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - C:\Program Files\MSN\Toolbar\3.0.0988.2\msneshellx.dll (Microsoft Corp.)

O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

O3 - HKLM\..\Toolbar: (&Browsertools by imediacentral.com) - {46BA7FF1-D32A-4369-88BF-882830A8FA67} - C:\Windows\System32\imediacentral_com_browsertools.dll ()

O3 - HKLM\..\Toolbar: (Show Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.5\CoIEPlg.dll (Symantec Corporation)

O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll (Yahoo! Inc.)

O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

O3 - HKCU\..\Toolbar\WebBrowser: (Show Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.5\CoIEPlg.dll (Symantec Corporation)

O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (ALWIL Software)

O4 - HKLM..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe (Hewlett-Packard)

O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)

O4 - HKLM..\Run: [Mouse Suite 98 Daemon] C:\Windows\System32\ICO.EXE (Primax Electronics Ltd.)

O4 - HKLM..\Run: [startCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)

O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)

O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)

O4 - HKCU..\Run: [imediacentral.com] File not found

O4 - HKCU..\Run: [internetCalls] C:\Program Files\InternetCalls.com\InternetCalls\internetcalls.exe (InternetCalls)

O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)

O4 - HKLM..\RunOnce: [] File not found

O4 - HKLM..\RunOnce: [*WerKernelReporting] C:\Windows\System32\WerFault.exe (Microsoft Corporation)

O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)

O4 - HKCU..\RunOnce: [shockwave Updater] C:\Windows\System32\Adobe\Shockwave 11\SwHelper_1151601.exe -Update -1151601 -Mozilla\4.0 (compatible; MSIE 8.0; Windows NT 6.0; Trident\4.0; File not found

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: AllowLegacyWebView = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: AllowUnhashedWebView = 1

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1

O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)

O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)

O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)

O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)

O9 - Extra Button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)

O13 - gopher Prefix: missing

O15 - HKCU\..Trusted Ranges: Range1 ([http] in Local intranet)

O16 - DPF: {44990B00-3C9D-426D-81DF-AAB636FA4345} https://www-secure.symantec.com/techsupp/asa/ss/sa/sa_cabs/tgctlcm.cab (Symantec Configuration Class)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab'>http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab'>http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11)

O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)

O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Java Plug-in 1.6.0_05)

O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)

O16 - DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11)

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 68.87.73.246 68.87.71.230

O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)

O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)

O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)

O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)

O24 - Desktop WallPaper: C:\Users\hugues\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg

O24 - Desktop BackupWallPaper: C:\Users\hugues\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg

O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2008/05/22 19:20:45 | 000,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]

O33 - MountPoints2\{63c3d3ce-aa61-11de-89d9-001e68ce36a8}\Shell - "" = AutoRun

O33 - MountPoints2\{63c3d3ce-aa61-11de-89d9-001e68ce36a8}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -- File not found

O34 - HKLM BootExecute: (autocheck autochk *) - File not found

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010/06/23 15:01:34 | 000,000,000 | ---D | C] -- C:\Program Files\SEAF

[2010/06/21 06:05:42 | 000,000,000 | ---D | C] -- C:\_OTL

[2010/06/20 09:23:20 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys

[2010/06/20 09:23:19 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys

[2010/06/20 09:23:19 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware

[2010/06/09 04:15:29 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll

[2010/06/09 04:15:26 | 000,289,792 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll

[2010/06/09 04:15:26 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll

[2010/06/09 04:15:12 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll

[2010/06/09 04:15:12 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll

[2010/06/09 04:15:12 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll

[2010/06/09 04:15:11 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl

[2010/06/09 04:15:10 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll

[2010/06/09 04:15:10 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll

[2010/06/09 04:15:10 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe

[2010/06/09 04:15:09 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll

[2010/06/09 04:15:09 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll

[2010/06/09 04:15:09 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll

[2010/06/09 04:15:05 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb

[2010/06/09 04:15:05 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe

[2010/06/09 04:15:05 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll

[2010/06/09 04:15:05 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll

[2010/06/09 04:15:05 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe

[2010/06/09 04:15:03 | 002,037,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys

[2010/06/07 22:12:14 | 000,164,048 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswSP.sys

[2010/06/07 22:12:14 | 000,019,024 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswFsBlk.sys

[2010/06/07 22:12:12 | 000,023,376 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswRdr.sys

[2010/06/07 22:12:10 | 000,046,672 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswTdi.sys

[2010/06/07 22:12:09 | 000,051,792 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswMonFlt.sys

[2010/06/07 22:11:29 | 000,165,032 | ---- | C] (ALWIL Software) -- C:\Windows\System32\aswBoot.exe

[2010/06/07 22:11:29 | 000,038,848 | ---- | C] (ALWIL Software) -- C:\Windows\System32\avastSS.scr

[2010/06/07 18:45:43 | 000,000,000 | ---D | C] -- C:\Users\hugues\Documents\New Folder

[2010/05/26 02:32:29 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll

[8 C:\Users\hugues\Documents\*.tmp files -> C:\Users\hugues\Documents\*.tmp -> ]

[6 C:\Users\hugues\Desktop\*.tmp files -> C:\Users\hugues\Desktop\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/06/23 19:09:44 | 005,242,880 | -HS- | M] () -- C:\Users\hugues\ntuser.dat

[2010/06/23 19:07:49 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

[2010/06/23 19:07:44 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat

[2010/06/23 15:21:56 | 000,524,288 | -HS- | M] () -- C:\Users\hugues\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms

[2010/06/23 15:21:56 | 000,065,536 | -HS- | M] () -- C:\Users\hugues\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TM.blf

[2010/06/23 15:13:18 | 000,000,267 | ---- | M] () -- C:\Users\Public\Documents\hpqp.ini

[2010/06/23 15:11:26 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job

[2010/06/23 15:08:14 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT

[2010/06/23 15:08:07 | 000,000,736 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0

[2010/06/23 15:08:07 | 000,000,736 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0

[2010/06/23 15:07:58 | 2950,520,832 | -HS- | M] () -- C:\hiberfil.sys

[2010/06/23 15:04:59 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat

[2010/06/23 07:18:28 | 006,291,456 | -H-- | M] () -- C:\Users\hugues\AppData\Local\IconCache.db

[2010/06/22 22:51:47 | 345,746,458 | ---- | M] () -- C:\Windows\MEMORY.DMP

[2010/06/22 21:47:12 | 000,000,420 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{4FF765DE-3D32-47CA-86EB-2C70321932C3}.job

[2010/06/22 04:14:01 | 000,011,415 | ---- | M] () -- C:\Users\Public\Documents\Malwarebytes.docx

[2010/06/21 22:40:56 | 000,000,098 | ---- | M] () -- C:\Windows\System32\drivers\etc\Hosts

[2010/06/21 21:54:16 | 000,000,548 | ---- | M] () -- C:\Windows\tasks\Norton Internet Security - Run Full System Scan - hugues.job

[2010/06/20 09:23:24 | 000,000,818 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk

[2010/06/19 22:59:49 | 000,000,632 | RHS- | M] () -- C:\Users\hugues\ntuser.pol

[2010/06/17 08:13:43 | 000,035,840 | ---- | M] () -- C:\Users\hugues\Desktop\gc hugues.doc

[2010/06/17 08:13:03 | 000,035,840 | ---- | M] () -- C:\Users\hugues\Desktop\GC lab gaelle.doc

[2010/06/17 04:46:33 | 000,000,162 | -H-- | M] () -- C:\Users\hugues\Desktop\~$ lab gaelle.doc

[2010/06/17 04:45:58 | 000,000,162 | -H-- | M] () -- C:\Users\hugues\Desktop\~$ hugues.doc

[2010/06/17 04:45:30 | 000,000,162 | -H-- | M] () -- C:\Users\hugues\Desktop\~$C lab 2.docx

[2010/06/13 22:10:56 | 002,614,028 | ---- | M] () -- C:\Users\hugues\Desktop\chapter 09 ch203 organic.pptx

[2010/06/13 12:34:15 | 002,614,028 | ---- | M] () -- C:\Users\hugues\Desktop\chapter 09 ch 203 orga.pptx

[2010/06/13 12:18:50 | 005,805,056 | ---- | M] () -- C:\Users\hugues\Desktop\chapter 08 ch203 orga.ppt

[2010/06/13 12:17:40 | 003,503,964 | ---- | M] () -- C:\Users\hugues\Desktop\chapter 07 ch203 orga.pptx

[2010/06/13 12:15:47 | 006,023,586 | ---- | M] () -- C:\Users\hugues\Desktop\chapter 06 ch203 orga.pptx

[2010/06/13 12:14:55 | 003,945,009 | ---- | M] () -- C:\Users\hugues\Desktop\chapter ch203 orga.pptx

[2010/06/13 12:12:46 | 005,711,819 | ---- | M] () -- C:\Users\hugues\Desktop\chapter 04 ch 203 orga.pptx

[2010/06/13 12:10:28 | 003,787,717 | ---- | M] () -- C:\Users\hugues\Desktop\chapter 03 ch203 orga.pptx

[2010/06/13 12:07:49 | 007,697,442 | ---- | M] () -- C:\Users\hugues\Desktop\chapter 02 ch203 orga.pptx

[2010/06/13 12:05:09 | 009,198,158 | ---- | M] () -- C:\Users\hugues\Desktop\chapter 01 ch203 orga.pptx

[2010/06/12 09:09:05 | 000,121,856 | ---- | M] () -- C:\Users\hugues\Desktop\answer exam 1 organic.ppt

[2010/06/10 21:47:20 | 000,402,984 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT

[2010/06/10 05:32:01 | 000,000,402 | ---- | M] () -- C:\Windows\tasks\EasyShare Registration Task.job

[2010/06/09 22:51:53 | 000,001,971 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk

[2010/06/09 05:56:44 | 000,011,218 | ---- | M] () -- C:\Users\hugues\Desktop\post lab.docx

[2010/06/07 22:12:15 | 000,001,840 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk

[2010/06/07 22:12:09 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt

[2010/06/07 01:49:26 | 000,690,960 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI

[2010/06/07 01:49:26 | 000,595,684 | ---- | M] () -- C:\Windows\System32\perfh009.dat

[2010/06/07 01:49:26 | 000,101,350 | ---- | M] () -- C:\Windows\System32\perfc009.dat

[2010/06/06 09:02:08 | 000,010,553 | ---- | M] () -- C:\Users\hugues\Documents\On your birthday.docx

[2010/06/06 08:56:41 | 000,000,430 | ---- | M] () -- C:\Windows\tasks\Driver Robot.job

[2010/06/05 07:05:45 | 000,000,000 | ---- | M] () -- C:\ProgramData\LauncherAccess.dt

[2010/06/05 07:02:27 | 000,029,184 | ---- | M] () -- C:\Users\hugues\Desktop\Melting Point hugues.doc

[2010/06/05 07:01:57 | 000,040,960 | ---- | M] () -- C:\Users\hugues\Desktop\tlc hugues.doc

[2010/06/05 07:01:06 | 000,264,704 | ---- | M] () -- C:\Users\hugues\Documents\example lab Report tlc.doc

[2010/06/03 00:56:04 | 000,000,326 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForhugues.job

[2010/06/03 00:28:25 | 000,014,299 | ---- | M] () -- C:\Users\hugues\Desktop\TLC lab 2.docx

[2010/06/01 00:21:16 | 000,059,982 | ---- | M] () -- C:\Users\hugues\Documents\conversa with ga.docx

[2010/05/31 02:56:09 | 000,015,737 | ---- | M] () -- C:\Users\hugues\Documents\Selam gaell1.docx

[2010/05/27 13:47:40 | 000,021,950 | ---- | M] () -- C:\Users\hugues\Documents\selam gaelle.docx

[2010/05/27 10:13:14 | 000,014,782 | ---- | M] () -- C:\Users\hugues\Documents\selam gaelle 1(Autosaved).docx

[2010/05/27 10:13:14 | 000,000,162 | -H-- | M] () -- C:\Users\hugues\Documents\~$lam gaelle 1(Autosaved).docx

[2010/05/26 16:55:16 | 000,000,162 | -H-- | M] () -- C:\Users\hugues\Documents\~$lam gaelle.docx

[2010/05/26 15:52:00 | 000,164,955 | ---- | M] () -- C:\Users\hugues\Documents\si l'amitie.docx

[2010/05/26 14:23:03 | 000,000,162 | -H-- | M] () -- C:\Users\hugues\Documents\~$ l'amitie.docx

[2010/05/26 13:27:01 | 000,028,514 | ---- | M] () -- C:\Users\hugues\Documents\excuse moi pour today.docx

[2010/05/26 12:31:41 | 000,000,162 | -H-- | M] () -- C:\Users\hugues\Documents\~$cuse moi pour today.docx

[2010/05/26 10:06:41 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll

[2010/05/26 08:58:25 | 000,012,493 | ---- | M] () -- C:\Users\hugues\Documents\tu sais quoi.docx

[2010/05/26 07:47:41 | 000,289,792 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll

[8 C:\Users\hugues\Documents\*.tmp files -> C:\Users\hugues\Documents\*.tmp -> ]

[6 C:\Users\hugues\Desktop\*.tmp files -> C:\Users\hugues\Desktop\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/06/22 04:14:00 | 000,011,415 | ---- | C] () -- C:\Users\Public\Documents\Malwarebytes.docx

[2010/06/20 09:23:24 | 000,000,818 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk

[2010/06/19 22:59:49 | 000,000,632 | RHS- | C] () -- C:\Users\hugues\ntuser.pol

[2010/06/17 04:46:33 | 000,000,162 | -H-- | C] () -- C:\Users\hugues\Desktop\~$ lab gaelle.doc

[2010/06/17 04:45:58 | 000,000,162 | -H-- | C] () -- C:\Users\hugues\Desktop\~$ hugues.doc

[2010/06/17 04:45:56 | 000,035,840 | ---- | C] () -- C:\Users\hugues\Desktop\gc hugues.doc

[2010/06/17 04:45:30 | 000,000,162 | -H-- | C] () -- C:\Users\hugues\Desktop\~$C lab 2.docx

[2010/06/17 04:22:13 | 000,035,840 | ---- | C] () -- C:\Users\hugues\Desktop\GC lab gaelle.doc

[2010/06/13 22:10:39 | 002,614,028 | ---- | C] () -- C:\Users\hugues\Desktop\chapter 09 ch203 organic.pptx

[2010/06/13 12:34:00 | 002,614,028 | ---- | C] () -- C:\Users\hugues\Desktop\chapter 09 ch 203 orga.pptx

[2010/06/13 12:18:46 | 005,805,056 | ---- | C] () -- C:\Users\hugues\Desktop\chapter 08 ch203 orga.ppt

[2010/06/13 12:17:24 | 003,503,964 | ---- | C] () -- C:\Users\hugues\Desktop\chapter 07 ch203 orga.pptx

[2010/06/13 12:15:43 | 006,023,586 | ---- | C] () -- C:\Users\hugues\Desktop\chapter 06 ch203 orga.pptx

[2010/06/13 12:14:37 | 003,945,009 | ---- | C] () -- C:\Users\hugues\Desktop\chapter ch203 orga.pptx

[2010/06/13 12:12:42 | 005,711,819 | ---- | C] () -- C:\Users\hugues\Desktop\chapter 04 ch 203 orga.pptx

[2010/06/13 12:10:24 | 003,787,717 | ---- | C] () -- C:\Users\hugues\Desktop\chapter 03 ch203 orga.pptx

[2010/06/13 12:07:44 | 007,697,442 | ---- | C] () -- C:\Users\hugues\Desktop\chapter 02 ch203 orga.pptx

[2010/06/13 12:05:05 | 009,198,158 | ---- | C] () -- C:\Users\hugues\Desktop\chapter 01 ch203 orga.pptx

[2010/06/12 09:08:59 | 000,121,856 | ---- | C] () -- C:\Users\hugues\Desktop\answer exam 1 organic.ppt

[2010/06/09 05:44:17 | 000,011,218 | ---- | C] () -- C:\Users\hugues\Desktop\post lab.docx

[2010/06/07 22:13:05 | 000,001,971 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk

[2010/06/07 22:12:15 | 000,001,840 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk

[2010/06/06 09:02:00 | 000,010,553 | ---- | C] () -- C:\Users\hugues\Documents\On your birthday.docx

[2010/06/05 07:01:05 | 000,264,704 | ---- | C] () -- C:\Users\hugues\Documents\example lab Report tlc.doc

[2010/06/03 00:28:24 | 000,014,299 | ---- | C] () -- C:\Users\hugues\Desktop\TLC lab 2.docx

[2010/06/02 23:11:37 | 000,040,960 | ---- | C] () -- C:\Users\hugues\Desktop\tlc hugues.doc

[2010/06/02 23:05:41 | 000,012,814 | ---- | C] () -- C:\Users\hugues\Documents\physics (2).docx

[2010/06/02 23:05:30 | 000,069,120 | ---- | C] () -- C:\Users\hugues\Documents\BIOL_4501_F04_exam2.doc

[2010/06/02 23:05:30 | 000,057,344 | ---- | C] () -- C:\Users\hugues\Documents\ch_11_instructor_guide micro.doc

[2010/06/02 23:05:30 | 000,050,688 | ---- | C] () -- C:\Users\hugues\Documents\PH204_Practice_Final_Exam.doc

[2010/06/02 23:05:30 | 000,024,819 | ---- | C] () -- C:\Users\hugues\Documents\gaelle micro.docx

[2010/06/02 23:05:30 | 000,001,871 | ---- | C] () -- C:\Users\hugues\Documents\HP Help and Support.lnk

[2010/06/02 23:05:29 | 000,298,496 | ---- | C] () -- C:\Users\hugues\Documents\ch_14_test_bank micro.doc

[2010/06/02 23:05:29 | 000,219,136 | ---- | C] () -- C:\Users\hugues\Documents\Chapter17web.doc

[2010/06/02 23:05:29 | 000,196,096 | ---- | C] () -- C:\Users\hugues\Documents\Lect Notes 203.doc

[2010/06/02 23:05:29 | 000,133,120 | ---- | C] () -- C:\Users\hugues\Documents\Chapter16web.doc

[2010/06/02 23:05:29 | 000,076,288 | ---- | C] () -- C:\Users\hugues\Documents\ch_14_instructor_guide.doc

[2010/06/02 23:05:29 | 000,074,240 | ---- | C] () -- C:\Users\hugues\Documents\BI 203 Test 16.doc

[2010/06/02 23:05:29 | 000,062,976 | ---- | C] () -- C:\Users\hugues\Documents\ch_15_test_bank biology.doc

[2010/06/02 23:05:29 | 000,055,296 | ---- | C] () -- C:\Users\hugues\Documents\BI 203 Test 17.doc

[2010/06/02 23:05:29 | 000,021,346 | ---- | C] () -- C:\Users\hugues\Documents\harmonic.docx

[2010/06/02 23:05:29 | 000,018,180 | ---- | C] () -- C:\Users\hugues\Documents\vocabulary for microbiology chapter 14.docx

[2010/06/02 23:05:28 | 001,743,872 | ---- | C] () -- C:\Users\hugues\Documents\chapter11book.doc

[2010/06/02 23:05:28 | 000,251,904 | ---- | C] () -- C:\Users\hugues\Documents\Energy-in-Thermal-Processes.ppt

[2010/06/02 23:05:28 | 000,070,926 | ---- | C] () -- C:\Users\hugues\Documents\heat and fusion lab.docx

[2010/06/02 23:05:28 | 000,054,272 | ---- | C] () -- C:\Users\hugues\Documents\Unknown Lab Report.doc

[2010/06/02 23:05:28 | 000,048,128 | ---- | C] () -- C:\Users\hugues\Documents\Exam2 F2006.doc

[2010/06/02 23:05:28 | 000,045,568 | ---- | C] () -- C:\Users\hugues\Documents\objective chapter micro.doc

[2010/06/02 23:05:28 | 000,013,972 | ---- | C] () -- C:\Users\hugues\Documents\Jean Emmanuel Durace Professor Steve Microbiology Unknown.docx

[2010/06/02 23:05:27 | 001,728,000 | ---- | C] () -- C:\Users\hugues\Documents\Vibrations-and-Waves.ppt

[2010/06/02 23:05:27 | 000,234,496 | ---- | C] () -- C:\Users\hugues\Documents\Fluid.doc

[2010/06/02 23:05:27 | 000,167,424 | ---- | C] () -- C:\Users\hugues\Documents\Archimedes.doc

[2010/06/02 23:05:27 | 000,096,768 | ---- | C] () -- C:\Users\hugues\Documents\ACS Practice Test 1.doc

[2010/06/02 23:05:27 | 000,062,464 | ---- | C] () -- C:\Users\hugues\Documents\212Lab01_Archimedes.doc

[2010/06/02 23:05:27 | 000,046,592 | ---- | C] () -- C:\Users\hugues\Documents\me313-5W08.doc

[2010/06/02 23:05:27 | 000,037,376 | ---- | C] () -- C:\Users\hugues\Documents\Answer Key acs Test 2.doc

[2010/06/02 23:05:27 | 000,033,792 | ---- | C] () -- C:\Users\hugues\Documents\Answer Key acsTest 1.doc

[2010/06/02 23:05:27 | 000,032,979 | ---- | C] () -- C:\Users\hugues\Documents\Cinchona and its Product.docx

[2010/06/02 23:05:27 | 000,029,757 | ---- | C] () -- C:\Users\hugues\Documents\GNLD Online Store.docx

[2010/06/02 23:05:26 | 005,795,840 | ---- | C] () -- C:\Users\hugues\Documents\Chapter17_LEC.ppt

[2010/06/02 23:05:26 | 000,062,281 | ---- | C] () -- C:\Users\hugues\Documents\archimed.docx

[2010/06/02 23:05:25 | 010,184,192 | ---- | C] () -- C:\Users\hugues\Documents\Chapter15_LEC.ppt

[2010/06/02 23:05:23 | 012,636,160 | ---- | C] () -- C:\Users\hugues\Documents\Chapter16_ chemistry.ppt

[2010/06/02 23:05:23 | 000,378,373 | ---- | C] () -- C:\Users\hugues\Documents\A block of cherry wood that is 20 cm long.docx

[2010/06/02 23:05:23 | 000,011,353 | ---- | C] () -- C:\Users\hugues\Documents\Problem1.docx

[2010/06/02 23:05:22 | 006,416,896 | ---- | C] () -- C:\Users\hugues\Documents\sln chapter7 prof.doc

[2010/06/02 23:05:22 | 005,068,288 | ---- | C] () -- C:\Users\hugues\Documents\sln chapter9 prof.doc

[2010/06/02 23:05:22 | 002,890,240 | ---- | C] () -- C:\Users\hugues\Documents\prob chapter9 prof.doc

[2010/06/02 23:05:22 | 002,040,832 | ---- | C] () -- C:\Users\hugues\Documents\problem chapter7 prof.doc

[2010/06/02 23:05:22 | 001,886,208 | ---- | C] () -- C:\Users\hugues\Documents\Rotational-Equilibrium-and-dynamics.ppt

[2010/06/02 23:05:22 | 000,055,770 | ---- | C] () -- C:\Users\hugues\Documents\lab equilibruim.docx

[2010/06/02 23:05:22 | 000,011,316 | ---- | C] () -- C:\Users\hugues\Documents\physics lab 7.docx

[2010/06/02 23:05:21 | 000,947,200 | ---- | C] () -- C:\Users\hugues\Documents\exam biolo.doc

[2010/06/02 23:05:21 | 000,196,096 | ---- | C] () -- C:\Users\hugues\Documents\Lect Notes 203.doc

[2010/06/02 05:22:59 | 000,029,184 | ---- | C] () -- C:\Users\hugues\Desktop\Melting Point hugues.doc

[2010/06/01 00:21:14 | 000,059,982 | ---- | C] () -- C:\Users\hugues\Documents\conversa with ga.docx

[2010/05/31 01:40:55 | 000,015,737 | ---- | C] () -- C:\Users\hugues\Documents\Selam gaell1.docx

[2010/05/27 10:13:14 | 000,000,162 | -H-- | C] () -- C:\Users\hugues\Documents\~$lam gaelle 1(Autosaved).docx

[2010/05/27 10:13:13 | 000,014,782 | ---- | C] () -- C:\Users\hugues\Documents\selam gaelle 1(Autosaved).docx

[2010/05/26 16:55:16 | 000,000,162 | -H-- | C] () -- C:\Users\hugues\Documents\~$lam gaelle.docx

[2010/05/26 14:23:03 | 000,000,162 | -H-- | C] () -- C:\Users\hugues\Documents\~$ l'amitie.docx

[2010/05/26 14:23:02 | 000,164,955 | ---- | C] () -- C:\Users\hugues\Documents\si l'amitie.docx

[2010/05/26 12:31:41 | 000,000,162 | -H-- | C] () -- C:\Users\hugues\Documents\~$cuse moi pour today.docx

[2010/05/26 12:31:39 | 000,028,514 | ---- | C] () -- C:\Users\hugues\Documents\excuse moi pour today.docx

[2010/05/26 08:58:23 | 000,012,493 | ---- | C] () -- C:\Users\hugues\Documents\tu sais quoi.docx

[2010/05/26 08:58:06 | 000,021,950 | ---- | C] () -- C:\Users\hugues\Documents\selam gaelle.docx

[2009/09/18 07:33:28 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll

[2009/06/13 08:36:24 | 000,005,632 | ---- | C] () -- C:\Windows\System32\drivers\StarOpen.sys

[2009/05/30 23:05:15 | 000,719,360 | ---- | C] () -- C:\Windows\System32\imediacentral_com_browsertools.dll

[2009/05/30 23:05:15 | 000,343,040 | ---- | C] () -- C:\Windows\System32\browsertools_helper.dll

[2009/03/05 07:54:58 | 000,073,728 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll

[2009/02/22 14:33:20 | 000,001,208 | ---- | C] () -- C:\Windows\Radio_Fr.ini

[2008/10/12 05:07:08 | 000,008,771 | ---- | C] () -- C:\Windows\System32\Setup2k.ini

[2008/10/12 05:07:08 | 000,000,184 | ---- | C] () -- C:\Windows\System32\presetup.ini

[2008/03/28 02:19:10 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll

[2006/11/02 05:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll

[2006/11/02 00:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini

[2006/03/08 10:58:00 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll

========== Custom Scans ==========

< :OTL >

< dir /s C:\_OTL\MovedFiles /c >

Volume in drive C has no label.

Volume Serial Number is 4179-A3DD

Directory of C:\_OTL\MOVEDFILES

06/21/2010 10:40 PM <DIR> .

06/21/2010 10:40 PM <DIR> ..

06/21/2010 06:05 AM <DIR> 06212010_060541

06/21/2010 06:05 AM <DIR> 06212010_060542

06/21/2010 10:23 PM 13,048 06212010_060542.log

06/21/2010 10:36 PM <DIR> 06212010_222449

06/21/2010 10:36 PM 13,318 06212010_222449.log

06/23/2010 07:08 PM <DIR> 06212010_223844

06/23/2010 07:09 PM 14,422 06212010_223844.log

3 File(s) 40,788 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060541

06/21/2010 06:05 AM <DIR> .

06/21/2010 06:05 AM <DIR> ..

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542

06/21/2010 06:05 AM <DIR> .

06/21/2010 06:05 AM <DIR> ..

06/21/2010 10:23 PM <DIR> C_Users

06/21/2010 10:23 PM <DIR> C_Windows

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Users

06/21/2010 10:23 PM <DIR> .

06/21/2010 10:23 PM <DIR> ..

06/21/2010 10:23 PM <DIR> b

06/21/2010 06:05 AM <DIR> hugues

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Users\b

06/21/2010 10:23 PM <DIR> .

06/21/2010 10:23 PM <DIR> ..

06/21/2010 10:23 PM <DIR> AppData

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Users\b\AppData

06/21/2010 10:23 PM <DIR> .

06/21/2010 10:23 PM <DIR> ..

06/21/2010 10:23 PM <DIR> Local

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Users\b\AppData\Local

06/21/2010 10:23 PM <DIR> .

06/21/2010 10:23 PM <DIR> ..

06/21/2010 10:23 PM <DIR> Microsoft

06/21/2010 10:23 PM <DIR> Temp

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Users\b\AppData\Local\Microsoft

06/21/2010 10:23 PM <DIR> .

06/21/2010 10:23 PM <DIR> ..

06/21/2010 10:23 PM <DIR> Windows

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Users\b\AppData\Local\Microsoft\Windows

06/21/2010 10:23 PM <DIR> .

06/21/2010 10:23 PM <DIR> ..

06/21/2010 10:23 PM <DIR> Temporary Internet Files

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files

06/21/2010 10:23 PM <DIR> .

06/21/2010 10:23 PM <DIR> ..

06/21/2010 10:23 PM <DIR> Content.IE5

06/21/2010 10:23 PM <DIR> Low

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5

06/21/2010 10:23 PM <DIR> .

06/21/2010 10:23 PM <DIR> ..

06/21/2010 10:23 PM <DIR> PA65AMD5

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PA65AMD5

06/21/2010 10:23 PM <DIR> .

06/21/2010 10:23 PM <DIR> ..

06/21/2010 07:23 AM 1,494 data[6].aspx

1 File(s) 1,494 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low

06/21/2010 10:23 PM <DIR> .

06/21/2010 10:23 PM <DIR> ..

06/21/2010 10:23 PM <DIR> Content.IE5

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5

06/21/2010 10:23 PM <DIR> .

06/21/2010 10:23 PM <DIR> ..

06/21/2010 10:23 PM <DIR> BVI0N832

06/21/2010 10:23 PM <DIR> LZCSSH2I

06/21/2010 10:23 PM <DIR> OGZS410X

06/21/2010 10:23 PM <DIR> X9S8N15T

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\BVI0N832

06/21/2010 10:23 PM <DIR> .

06/21/2010 10:23 PM <DIR> ..

06/21/2010 05:56 AM 5,836 ads[6].txt

06/21/2010 05:56 AM 978 afr[3].php

06/21/2010 05:56 AM 981 afr[4].php

06/20/2010 07:22 PM 1,215 povh[1].htm

06/21/2010 05:56 AM 600,662 security-warning-application-cannot-be-executed-the-file-t177544[1].html

5 File(s) 609,672 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LZCSSH2I

06/21/2010 10:23 PM <DIR> .

06/21/2010 10:23 PM <DIR> ..

06/20/2010 07:22 PM 622 ban_home_728x90[1].htm

1 File(s) 622 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\OGZS410X

06/21/2010 10:23 PM <DIR> .

06/21/2010 10:23 PM <DIR> ..

06/21/2010 05:59 AM 2,601 229f14[1].txt

06/21/2010 05:56 AM 0 img[5].txt

06/21/2010 05:56 AM 0 img[6].txt

3 File(s) 2,601 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\X9S8N15T

06/21/2010 10:23 PM <DIR> .

06/21/2010 10:23 PM <DIR> ..

06/20/2010 07:22 PM 390 AP_ADV_300x250[1].htm

06/20/2010 07:22 PM 406 AP_ADV_728x90[1].htm

06/20/2010 07:22 PM 623 rectangle_300x250[1].htm

3 File(s) 1,419 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Users\b\AppData\Local\Temp

06/21/2010 10:23 PM <DIR> .

06/21/2010 10:23 PM <DIR> ..

06/21/2010 10:23 PM <DIR> Low

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Users\b\AppData\Local\Temp\Low

06/21/2010 10:23 PM <DIR> .

06/21/2010 10:23 PM <DIR> ..

06/21/2010 05:58 AM 16,384 ~DF5BCF.tmp

06/21/2010 05:53 AM 16,384 ~DFEBFD.tmp

2 File(s) 32,768 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Users\hugues

06/21/2010 06:05 AM <DIR> .

06/21/2010 06:05 AM <DIR> ..

06/21/2010 06:05 AM <DIR> AppData

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Users\hugues\AppData

06/21/2010 06:05 AM <DIR> .

06/21/2010 06:05 AM <DIR> ..

06/21/2010 06:05 AM <DIR> Local

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Users\hugues\AppData\Local

06/21/2010 06:05 AM <DIR> .

06/21/2010 06:05 AM <DIR> ..

06/21/2010 02:16 AM <DIR> owddcxwut

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Users\hugues\AppData\Local\owddcxwut

06/21/2010 02:16 AM <DIR> .

06/21/2010 02:16 AM <DIR> ..

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Windows

06/21/2010 10:23 PM <DIR> .

06/21/2010 10:23 PM <DIR> ..

06/21/2010 10:28 PM <DIR> System32

06/21/2010 10:23 PM <DIR> temp

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Windows\System32

06/21/2010 10:28 PM <DIR> .

06/21/2010 10:28 PM <DIR> ..

06/21/2010 08:04 AM <DIR> drivers

05/12/2009 01:31 PM 666,112 recctrl2.exe

1 File(s) 666,112 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Windows\System32\drivers

06/21/2010 08:04 AM <DIR> .

06/21/2010 08:04 AM <DIR> ..

06/21/2010 08:04 AM <DIR> etc

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Windows\System32\drivers\etc

06/21/2010 08:04 AM <DIR> .

06/21/2010 08:04 AM <DIR> ..

09/18/2006 02:41 PM 761 hosts

1 File(s) 761 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Windows\temp

06/21/2010 10:23 PM <DIR> .

06/21/2010 10:23 PM <DIR> ..

06/21/2010 10:23 PM <DIR> _avast5_

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_060542\C_Windows\temp\_avast5_

06/21/2010 10:23 PM <DIR> .

06/21/2010 10:23 PM <DIR> ..

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_222449

06/21/2010 10:36 PM <DIR> .

06/21/2010 10:36 PM <DIR> ..

06/21/2010 10:36 PM <DIR> C_Users

06/21/2010 10:36 PM <DIR> C_Windows

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_222449\C_Users

06/21/2010 10:36 PM <DIR> .

06/21/2010 10:36 PM <DIR> ..

06/21/2010 10:36 PM <DIR> b

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_222449\C_Users\b

06/21/2010 10:36 PM <DIR> .

06/21/2010 10:36 PM <DIR> ..

06/21/2010 10:36 PM <DIR> AppData

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_222449\C_Users\b\AppData

06/21/2010 10:36 PM <DIR> .

06/21/2010 10:36 PM <DIR> ..

06/21/2010 10:36 PM <DIR> Local

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_222449\C_Users\b\AppData\Local

06/21/2010 10:36 PM <DIR> .

06/21/2010 10:36 PM <DIR> ..

06/21/2010 10:36 PM <DIR> Microsoft

06/21/2010 10:36 PM <DIR> Temp

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_222449\C_Users\b\AppData\Local\Microsoft

06/21/2010 10:36 PM <DIR> .

06/21/2010 10:36 PM <DIR> ..

06/21/2010 10:36 PM <DIR> Windows

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_222449\C_Users\b\AppData\Local\Microsoft\Windows

06/21/2010 10:36 PM <DIR> .

06/21/2010 10:36 PM <DIR> ..

06/21/2010 10:36 PM <DIR> Temporary Internet Files

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_222449\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files

06/21/2010 10:36 PM <DIR> .

06/21/2010 10:36 PM <DIR> ..

06/21/2010 10:36 PM <DIR> Content.IE5

06/21/2010 10:36 PM <DIR> Low

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_222449\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5

06/21/2010 10:36 PM <DIR> .

06/21/2010 10:36 PM <DIR> ..

06/21/2010 10:36 PM <DIR> E8NUGQAA

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_222449\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E8NUGQAA

06/21/2010 10:36 PM <DIR> .

06/21/2010 10:36 PM <DIR> ..

06/21/2010 09:59 PM 1,473 data[1].aspx

1 File(s) 1,473 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_222449\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low

06/21/2010 10:36 PM <DIR> .

06/21/2010 10:36 PM <DIR> ..

06/21/2010 10:36 PM <DIR> Content.IE5

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_222449\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5

06/21/2010 10:36 PM <DIR> .

06/21/2010 10:36 PM <DIR> ..

06/21/2010 10:36 PM <DIR> 3TL1A01F

06/21/2010 10:36 PM <DIR> U5TLSIFY

06/21/2010 10:36 PM <DIR> W3H0925M

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_222449\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3TL1A01F

06/21/2010 10:36 PM <DIR> .

06/21/2010 10:36 PM <DIR> ..

06/21/2010 10:06 PM 5,719 ads[2].txt

06/21/2010 10:06 PM 978 afr[1].php

06/21/2010 10:06 PM 981 afr[2].php

06/21/2010 10:00 PM 622 ban_home_728x90[1].htm

06/21/2010 10:00 PM 1,215 povh[1].htm

06/21/2010 10:00 PM 623 rectangle_300x250[1].htm

06/21/2010 10:06 PM 600,662 security-warning-application-cannot-be-executed-the-file-t177544[1].html

7 File(s) 610,800 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_222449\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U5TLSIFY

06/21/2010 10:36 PM <DIR> .

06/21/2010 10:36 PM <DIR> ..

06/21/2010 10:08 PM 2,601 229f14[1].txt

06/21/2010 10:00 PM 390 AP_ADV_300x250[1].htm

06/21/2010 10:00 PM 406 AP_ADV_728x90[1].htm

3 File(s) 3,397 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_222449\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\W3H0925M

06/21/2010 10:36 PM <DIR> .

06/21/2010 10:36 PM <DIR> ..

06/21/2010 10:21 PM 3,105 6eacf79a[1].txt

06/21/2010 10:06 PM 0 img[2].txt

06/21/2010 10:06 PM 0 img[3].txt

3 File(s) 3,105 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_222449\C_Users\b\AppData\Local\Temp

06/21/2010 10:36 PM <DIR> .

06/21/2010 10:36 PM <DIR> ..

06/21/2010 10:36 PM <DIR> Low

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_222449\C_Users\b\AppData\Local\Temp\Low

06/21/2010 10:36 PM <DIR> .

06/21/2010 10:36 PM <DIR> ..

06/21/2010 10:08 PM 16,384 ~DF4314.tmp

06/21/2010 10:19 PM 16,384 ~DFADB4.tmp

06/21/2010 09:59 PM 16,384 ~DFF3C9.tmp

3 File(s) 49,152 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_222449\C_Windows

06/21/2010 10:36 PM <DIR> .

06/21/2010 10:36 PM <DIR> ..

06/21/2010 10:42 PM <DIR> System32

06/21/2010 10:36 PM <DIR> temp

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_222449\C_Windows\System32

06/21/2010 10:42 PM <DIR> .

06/21/2010 10:42 PM <DIR> ..

06/21/2010 10:26 PM <DIR> drivers

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_222449\C_Windows\System32\drivers

06/21/2010 10:26 PM <DIR> .

06/21/2010 10:26 PM <DIR> ..

06/21/2010 10:26 PM <DIR> etc

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_222449\C_Windows\System32\drivers\etc

06/21/2010 10:26 PM <DIR> .

06/21/2010 10:26 PM <DIR> ..

06/21/2010 08:04 AM 98 Hosts

1 File(s) 98 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_222449\C_Windows\temp

06/21/2010 10:36 PM <DIR> .

06/21/2010 10:36 PM <DIR> ..

06/21/2010 10:36 PM <DIR> _avast5_

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_222449\C_Windows\temp\_avast5_

06/21/2010 10:36 PM <DIR> .

06/21/2010 10:36 PM <DIR> ..

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844

06/23/2010 07:08 PM <DIR> .

06/23/2010 07:08 PM <DIR> ..

06/23/2010 07:08 PM <DIR> C_Users

06/23/2010 07:08 PM <DIR> C_Windows

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844\C_Users

06/23/2010 07:08 PM <DIR> .

06/23/2010 07:08 PM <DIR> ..

06/23/2010 07:08 PM <DIR> b

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844\C_Users\b

06/23/2010 07:08 PM <DIR> .

06/23/2010 07:08 PM <DIR> ..

06/23/2010 07:08 PM <DIR> AppData

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844\C_Users\b\AppData

06/23/2010 07:08 PM <DIR> .

06/23/2010 07:08 PM <DIR> ..

06/23/2010 07:08 PM <DIR> Local

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844\C_Users\b\AppData\Local

06/23/2010 07:08 PM <DIR> .

06/23/2010 07:08 PM <DIR> ..

06/23/2010 07:08 PM <DIR> Microsoft

06/23/2010 07:08 PM <DIR> Temp

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844\C_Users\b\AppData\Local\Microsoft

06/23/2010 07:08 PM <DIR> .

06/23/2010 07:08 PM <DIR> ..

06/23/2010 07:08 PM <DIR> Windows

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844\C_Users\b\AppData\Local\Microsoft\Windows

06/23/2010 07:08 PM <DIR> .

06/23/2010 07:08 PM <DIR> ..

06/23/2010 07:08 PM <DIR> Temporary Internet Files

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files

06/23/2010 07:08 PM <DIR> .

06/23/2010 07:08 PM <DIR> ..

06/23/2010 07:08 PM <DIR> Content.IE5

06/23/2010 07:08 PM <DIR> Low

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5

06/23/2010 07:08 PM <DIR> .

06/23/2010 07:08 PM <DIR> ..

06/23/2010 07:08 PM <DIR> W7OAOV16

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\W7OAOV16

06/23/2010 07:08 PM <DIR> .

06/23/2010 07:08 PM <DIR> ..

06/21/2010 10:32 PM 1,471 data[1].aspx

1 File(s) 1,471 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low

06/23/2010 07:08 PM <DIR> .

06/23/2010 07:08 PM <DIR> ..

06/23/2010 07:08 PM <DIR> Content.IE5

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5

06/23/2010 07:08 PM <DIR> .

06/23/2010 07:08 PM <DIR> ..

06/23/2010 07:08 PM <DIR> MCYFFOV9

06/23/2010 07:08 PM <DIR> N9P8MH59

06/23/2010 07:08 PM <DIR> U180IM7M

06/23/2010 07:08 PM <DIR> XU7NS0LQ

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MCYFFOV9

06/23/2010 07:08 PM <DIR> .

06/23/2010 07:08 PM <DIR> ..

06/21/2010 10:33 PM 406 AP_ADV_728x90[1].htm

06/21/2010 10:33 PM 622 ban_home_728x90[1].htm

06/21/2010 10:32 PM 135,842 hp-laptop_aol_com[2].htm

06/21/2010 10:33 PM 0 img[1].txt

4 File(s) 136,870 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\N9P8MH59

06/23/2010 07:08 PM <DIR> .

06/23/2010 07:08 PM <DIR> ..

06/21/2010 10:33 PM 5,790 ads[1].txt

06/21/2010 10:33 PM 0 img[1].txt

06/21/2010 10:32 PM 1,210 load_v6[1].htm

3 File(s) 7,000 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U180IM7M

06/23/2010 07:08 PM <DIR> .

06/23/2010 07:08 PM <DIR> ..

06/21/2010 10:33 PM 981 afr[1].php

06/21/2010 10:33 PM 623 rectangle_300x250[1].htm

06/21/2010 10:32 PM 600,674 security-warning-application-cannot-be-executed-the-file-t177544[1].html

06/21/2010 10:33 PM 886 tcodewads_at[1].htm

4 File(s) 603,164 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844\C_Users\b\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\XU7NS0LQ

06/23/2010 07:08 PM <DIR> .

06/23/2010 07:08 PM <DIR> ..

06/21/2010 10:32 PM 978 afr[1].php

06/21/2010 10:33 PM 390 AP_ADV_300x250[1].htm

06/21/2010 10:32 PM 1,210 load_v6[1].htm

06/21/2010 10:32 PM 1,215 povh[1].htm

4 File(s) 3,793 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844\C_Users\b\AppData\Local\Temp

06/23/2010 07:08 PM <DIR> .

06/23/2010 07:08 PM <DIR> ..

06/23/2010 07:08 PM <DIR> Low

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844\C_Users\b\AppData\Local\Temp\Low

06/23/2010 07:08 PM <DIR> .

06/23/2010 07:08 PM <DIR> ..

06/21/2010 10:32 PM 16,384 ~DF3DE7.tmp

06/21/2010 10:32 PM 16,384 ~DF3E61.tmp

2 File(s) 32,768 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844\C_Windows

06/23/2010 07:08 PM <DIR> .

06/23/2010 07:08 PM <DIR> ..

06/21/2010 10:40 PM <DIR> System32

06/23/2010 07:08 PM <DIR> temp

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844\C_Windows\System32

06/21/2010 10:40 PM <DIR> .

06/21/2010 10:40 PM <DIR> ..

06/21/2010 10:40 PM <DIR> drivers

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844\C_Windows\System32\drivers

06/21/2010 10:40 PM <DIR> .

06/21/2010 10:40 PM <DIR> ..

06/21/2010 10:40 PM <DIR> etc

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844\C_Windows\System32\drivers\etc

06/21/2010 10:40 PM <DIR> .

06/21/2010 10:40 PM <DIR> ..

06/21/2010 10:26 PM 98 Hosts

1 File(s) 98 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844\C_Windows\temp

06/23/2010 07:08 PM <DIR> .

06/23/2010 07:08 PM <DIR> ..

06/23/2010 07:08 PM <DIR> _avast5_

0 File(s) 0 bytes

Directory of C:\_OTL\MOVEDFILES\06212010_223844\C_Windows\temp\_avast5_

06/23/2010 07:08 PM <DIR> .

06/23/2010 07:08 PM <DIR> ..

0 File(s) 0 bytes

Total Files Listed:

57 File(s) 2,809,426 bytes

230 Dir(s) 144,755,142,656 bytes free

< >

< End of report >

une fois de plus merci beaucoup.

Modifié le 24 juin 2010 par bagneki

no.ppp · le 23 juin 2010

Re,

J'ai rajouté une procédure, fais la

bagneki · le 24 juin 2010

salut et merci une fois de plus pour les conseils

voici les deux procedures que tu demandes: