Boottson.dll - Résolu

[lance_yien]

Bonjour,

 

Comme tu l'as vu ce programme est:

 

"c:\program files\inkscape\python\lib\site-packages\numpy\f2py\crackfortran.py"

 

Je te laisse, donc, le soin de désinstaller Python et supprimer son dossier (en gras) si toujours présent: c:\program files\inkscape

 

As-tu encore des soucis à vérifier sur ta machine avant de conclure?

[patcar06]

Bonjour

 

Après désinstallation de inkscape, suppression du dossier + un coup de ccleaner dans la base de registre, j'ai toujours le message d'erreur Rundll au redémarrage.

 

Comme apparemment je n'ai pas de virus y a t'il un moyen de supprimer ce message d'erreur?

[lance_yien]

...

Comme apparemment je n'ai pas de virus y a t'il un moyen de supprimer ce message d'erreur?

On est là pour ça mais j'ai besoin de plus de précisions:

- Moment exact de l'apparition.

- Titre de la fenêtre et contenu exact du message ou plus simple une capture d'écran.

- Est-ce toujours en rapport avec un certain "Boottson.dll" comme indiqué dans ton titre.

[patcar06]

Le message apparait à l'affichage du bureau (uniquement en mode utilisateur) je ne sais pas comment insérer une image dans ma réponse, apparemment il faut que l'image soit hébergée quelque part?

 

C'est une fenêtre RUNDLL et le message est: Erreur de chargement de boottson.dll le module spécifié est introuvable.

[lance_yien]

Pour héberger fichiers/images, aller sur le site :Ci-Joint

Cliquer sur Parcourir, chercher le fichier/ dossier à héberger et cliquer dessus. Cliquer sur Créer le lien CJoint.

Dans la page suivante --> , une adresse (http//...) sera créée. La copier /coller dans la prochaine réponse.

--

 

Imprimer ces instructions ou les enregistrer dans un fichier texte sur le Bureau pour les consulter facilement à tout moment et télécharger, sur le Bureau TDSSKiller.zip depuis ici.

Dézipper TDSSKiller.zip (clic-droit dessus => "Extraire ici". Glisser TDSSKiller.zip dans la corbeille pour le supprimer.

• Fermer tout et désactiver antivirus et tout autre programme de protection. Cliquer sur TDSSKiller.exe pour lancer le programme.
   
  
• Cliquer sur le bouton Start Scan et patienter jusqu'à la fin de l'analyse.
   
  
• Si un fichier infecté est détecté, l'action par défaut sera Cure. Cliquer sur le bouton Continue Sans rien changer.
   
  
• Si un fichier suspect est détecté, l'action par défaut sera Skip. Cliquer sur le bouton Continue Sans rien changer.

Si vous êtes invité à redémarre la machine pour finir le processus (reboot the computer to complete the process), cliquez sur le bouton Reboot Now. Le rapport sera sauvegardé à la racine de la partition système, là où Windows est installé (généralement C:\); son format est du type "TDSSKiller.[Version]_[Date]_[Heure]_log.txt" (par exemple, C:\TDSSKiller.2.2.0_20.12.2009_15.31.43_log.txt). Poster son contenu.

Si aucun redémarrage n'est requis, cliquer sur Report. Un fichier texte s'ouvre et sera sauvegardé de la même manière, poster son contenu.

 

 

>>> Utiliser OTL: Désactiver antivirus/ parefeu et antispyware et fermer toutes les applications et fenêtres ouvertes.

Double-cliquer sur OTL.exe puis sans rien changer ni rien ajouter, cliquer sur le bouton bleu Analyse et laisser faire.

Copier/ Coller le contenu du rapport généré.

 

 

Rapports demandés:

• TDSSKiller_log.txt
• OTL.txt

[patcar06]

Le rapport TDSSKiller.2.5.11.0_25.07.2011_19.18.37_log.txt:

 

2011/07/25 19:18:37.0359 3064 TDSS rootkit removing tool 2.5.11.0 Jul 11 2011 16:56:56

2011/07/25 19:18:37.0859 3064 ================================================================================

2011/07/25 19:18:37.0859 3064 SystemInfo:

2011/07/25 19:18:37.0859 3064

2011/07/25 19:18:37.0859 3064 OS Version: 5.1.2600 ServicePack: 3.0

2011/07/25 19:18:37.0859 3064 Product type: Workstation

2011/07/25 19:18:37.0859 3064 ComputerName: PATRICE-PC

2011/07/25 19:18:37.0859 3064 UserName: Pat-admin

2011/07/25 19:18:37.0859 3064 Windows directory: C:\WINDOWS

2011/07/25 19:18:37.0859 3064 System windows directory: C:\WINDOWS

2011/07/25 19:18:37.0859 3064 Processor architecture: Intel x86

2011/07/25 19:18:37.0859 3064 Number of processors: 4

2011/07/25 19:18:37.0859 3064 Page size: 0x1000

2011/07/25 19:18:37.0875 3064 Boot type: Normal boot

2011/07/25 19:18:37.0875 3064 ================================================================================

2011/07/25 19:18:39.0578 3064 Initialize success

2011/07/25 19:19:26.0421 2524 ================================================================================

2011/07/25 19:19:26.0421 2524 Scan started

2011/07/25 19:19:26.0421 2524 Mode: Manual;

2011/07/25 19:19:26.0421 2524 ================================================================================

2011/07/25 19:19:27.0390 2524 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys

2011/07/25 19:19:27.0421 2524 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys

2011/07/25 19:19:27.0468 2524 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys

2011/07/25 19:19:27.0500 2524 AegisP (023867b6606fbabcdd52e089c4a507da) C:\WINDOWS\system32\DRIVERS\AegisP.sys

2011/07/25 19:19:27.0515 2524 Afc (fe3ea6e9afc1a78e6edca121e006afb7) C:\WINDOWS\system32\drivers\Afc.sys

2011/07/25 19:19:27.0546 2524 AFD (355556d9e580915118cd7ef736653a89) C:\WINDOWS\System32\drivers\afd.sys

2011/07/25 19:19:27.0656 2524 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys

2011/07/25 19:19:27.0718 2524 AsIO (2b4e66fac6503494a2c6f32bb6ab3826) C:\WINDOWS\system32\drivers\AsIO.sys

2011/07/25 19:19:27.0734 2524 Aspi32 (b979979ab8027f7f53fb16ec4229b7db) C:\WINDOWS\system32\drivers\Aspi32.sys

2011/07/25 19:19:27.0765 2524 asusgsb (d320732bcf5ff856120bd06855c66867) C:\WINDOWS\system32\drivers\asusgsb.sys

2011/07/25 19:19:27.0781 2524 asuskbnt (b3b881eb81013aac11594a5400ada47a) C:\WINDOWS\system32\drivers\atkkbnt.sys

2011/07/25 19:19:27.0812 2524 ASUSVRC (94442e3029ff6c9f08140fe6718af4fb) C:\WINDOWS\system32\DRIVERS\AsusVRC.sys

2011/07/25 19:19:27.0828 2524 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys

2011/07/25 19:19:27.0843 2524 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys

2011/07/25 19:19:27.0953 2524 ati2mtag (1d99d1b43638e31ea5cf4a8fd199762b) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys

2011/07/25 19:19:28.0062 2524 AtiHdmiService (7e13f3f0f4c4c337a6949a18d1d23089) C:\WINDOWS\system32\drivers\AtiHdmi.sys

2011/07/25 19:19:28.0093 2524 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys

2011/07/25 19:19:28.0125 2524 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys

2011/07/25 19:19:28.0203 2524 avgio (0b497c79824f8e1bf22fa6aacd3de3a0) C:\Program Files\Avira\AntiVir Desktop\avgio.sys

2011/07/25 19:19:28.0218 2524 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\WINDOWS\system32\DRIVERS\avgntflt.sys

2011/07/25 19:19:28.0250 2524 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\WINDOWS\system32\DRIVERS\avipbb.sys

2011/07/25 19:19:28.0281 2524 BANTExt (5d7be7b19e827125e016325334e58ff1) C:\WINDOWS\System32\Drivers\BANTExt.sys

2011/07/25 19:19:28.0312 2524 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys

2011/07/25 19:19:28.0359 2524 BthEnum (b279426e3c0c344893ed78a613a73bde) C:\WINDOWS\system32\DRIVERS\BthEnum.sys

2011/07/25 19:19:28.0375 2524 BthPan (80602b8746d3738f5886ce3d67ef06b6) C:\WINDOWS\system32\DRIVERS\bthpan.sys

2011/07/25 19:19:28.0406 2524 BTHPORT (ef26202fee56f7607c6b794059df347a) C:\WINDOWS\system32\Drivers\BTHport.sys

2011/07/25 19:19:28.0421 2524 BTHUSB (61364cd71ef63b0f038b7e9df00f1efa) C:\WINDOWS\system32\Drivers\BTHUSB.sys

2011/07/25 19:19:28.0453 2524 btiaa2dp (828320c73097597728593723ff5c2760) C:\WINDOWS\system32\drivers\btiaa2dp.sys

2011/07/25 19:19:28.0484 2524 BTiAPan (1599487510d9c84420689267dda53168) C:\WINDOWS\system32\DRIVERS\btiapan.sys

2011/07/25 19:19:28.0500 2524 btiarcp (416baf4f7c123fbc9b46b8e2a2619ea1) C:\WINDOWS\system32\DRIVERS\btiarcp.sys

2011/07/25 19:19:28.0531 2524 btiaspp (b6098e3275d306f4166d7d9d0f157584) C:\WINDOWS\system32\DRIVERS\btiaspp.sys

2011/07/25 19:19:28.0546 2524 BTIAUSB (529430030288a9c619c2ec569f7bb286) C:\WINDOWS\system32\DRIVERS\btiausb.sys

2011/07/25 19:19:28.0578 2524 BTPROT (c84b59444b41b71f6b4e469fa4072d69) C:\WINDOWS\system32\DRIVERS\btprot.sys

2011/07/25 19:19:28.0625 2524 camvid20 (5f68a3ab60262e3bf5b5c6c926e53525) C:\WINDOWS\system32\DRIVERS\camdrv21.sys

2011/07/25 19:19:28.0671 2524 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys

2011/07/25 19:19:28.0687 2524 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys

2011/07/25 19:19:28.0718 2524 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys

2011/07/25 19:19:28.0734 2524 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys

2011/07/25 19:19:28.0765 2524 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys

2011/07/25 19:19:28.0812 2524 cmdGuard (251f906328af49e7927a1ad12b543a2f) C:\WINDOWS\system32\DRIVERS\cmdguard.sys

2011/07/25 19:19:28.0843 2524 cmdHlp (207f06d08afcdd3bbc801eab1a845cfb) C:\WINDOWS\system32\DRIVERS\cmdhlp.sys

2011/07/25 19:19:28.0921 2524 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys

2011/07/25 19:19:28.0968 2524 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys

2011/07/25 19:19:29.0000 2524 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys

2011/07/25 19:19:29.0031 2524 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys

2011/07/25 19:19:29.0062 2524 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys

2011/07/25 19:19:29.0156 2524 driverhardwarev2 (0f1189883690949ba7a9f68339587e51) C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys

2011/07/25 19:19:29.0171 2524 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys

2011/07/25 19:19:29.0203 2524 EIO_XP (0daf3544804650526751c478aeccce63) C:\WINDOWS\system32\drivers\EIO_XP.sys

2011/07/25 19:19:29.0234 2524 ElbyCDFL (ce37e3d51912e59c80c6d84337c0b4cd) C:\WINDOWS\system32\Drivers\ElbyCDFL.sys

2011/07/25 19:19:29.0250 2524 ElbyCDIO (178cc9403816c082d22a1d47fa1f9c85) C:\WINDOWS\system32\Drivers\ElbyCDIO.sys

2011/07/25 19:19:29.0281 2524 ewusbnet (4fd02e31eac2cbc81eb08a1ce81e73a2) C:\WINDOWS\system32\DRIVERS\ewusbnet.sys

2011/07/25 19:19:29.0312 2524 ew_hwusbdev (e98a64c7f106740a38fb2b78197816f8) C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys

2011/07/25 19:19:29.0343 2524 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys

2011/07/25 19:19:29.0375 2524 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys

2011/07/25 19:19:29.0390 2524 FilterService (b73ec688c29f81f9da0fcf63682b3ecb) C:\WINDOWS\system32\DRIVERS\lvuvcflt.sys

2011/07/25 19:19:29.0406 2524 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys

2011/07/25 19:19:29.0437 2524 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys

2011/07/25 19:19:29.0468 2524 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys

2011/07/25 19:19:29.0484 2524 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys

2011/07/25 19:19:29.0500 2524 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys

2011/07/25 19:19:29.0515 2524 giveio (77ebf3e9386daa51551af429052d88d0) C:\WINDOWS\system32\giveio.sys

2011/07/25 19:19:29.0562 2524 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys

2011/07/25 19:19:29.0593 2524 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys

2011/07/25 19:19:29.0625 2524 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys

2011/07/25 19:19:29.0671 2524 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys

2011/07/25 19:19:29.0703 2524 huawei_enumerator (22a4b14530194fc57c1c849fb5afee17) C:\WINDOWS\system32\DRIVERS\ew_jubusenum.sys

2011/07/25 19:19:29.0734 2524 hwdatacard (3e3bfe85b9fe3720bf4c108f57c945fb) C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys

2011/07/25 19:19:29.0796 2524 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\drivers\i8042prt.sys

2011/07/25 19:19:29.0828 2524 iAnywhere_btAudio (bf5317124ccaa045c4ac1c0895fa08f7) C:\WINDOWS\system32\drivers\btiasco.sys

2011/07/25 19:19:29.0859 2524 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys

2011/07/25 19:19:29.0921 2524 Inspect (c9953067b2c9e3d3dd44ec22d1e0815a) C:\WINDOWS\system32\DRIVERS\inspect.sys

2011/07/25 19:19:30.0000 2524 IntcAzAudAddService (6f336c2d18ba1e7ce8d0f31541c87a1d) C:\WINDOWS\system32\drivers\RtkHDAud.sys

2011/07/25 19:19:30.0109 2524 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys

2011/07/25 19:19:30.0125 2524 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys

2011/07/25 19:19:30.0156 2524 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys

2011/07/25 19:19:30.0171 2524 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys

2011/07/25 19:19:30.0187 2524 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys

2011/07/25 19:19:30.0203 2524 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys

2011/07/25 19:19:30.0234 2524 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys

2011/07/25 19:19:30.0265 2524 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys

2011/07/25 19:19:30.0296 2524 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys

2011/07/25 19:19:30.0312 2524 kbdhid (94c59cb884ba010c063687c3a50dce8e) C:\WINDOWS\system32\DRIVERS\kbdhid.sys

2011/07/25 19:19:30.0343 2524 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys

2011/07/25 19:19:30.0375 2524 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys

2011/07/25 19:19:30.0406 2524 L1e (fa46f5d09edf93e0c71fe6500fe3f4ae) C:\WINDOWS\system32\DRIVERS\l1e51x86.sys

2011/07/25 19:19:30.0421 2524 LBeepKE (8f4d784b3f22f468eea99da02b0e39e5) C:\WINDOWS\system32\Drivers\LBeepKE.sys

2011/07/25 19:19:30.0453 2524 LHidFilt (dd83dc92463fce6324fd30a13d17d0da) C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys

2011/07/25 19:19:30.0484 2524 LMouFilt (8fe0008e183ff0293a925b78a5581c5f) C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys

2011/07/25 19:19:30.0500 2524 LUsbFilt (0dec219cb6efcbc872f88f9aec320ea6) C:\WINDOWS\system32\Drivers\LUsbFilt.Sys

2011/07/25 19:19:30.0515 2524 lvpopflt (9fb982de1c8dd769f8ed681dd878b12f) C:\WINDOWS\system32\DRIVERS\lvpopflt.sys

2011/07/25 19:19:30.0546 2524 LVPr2Mon (1a7db7a00a4b0d8da24cd691a4547291) C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys

2011/07/25 19:19:30.0593 2524 LVRS (37072ec9299e825f4335cc554b6fac6a) C:\WINDOWS\system32\DRIVERS\lvrs.sys

2011/07/25 19:19:30.0703 2524 LVUVC (a240e42a7402e927a71b6e8aa4629b13) C:\WINDOWS\system32\DRIVERS\lvuvc.sys

2011/07/25 19:19:30.0843 2524 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys

2011/07/25 19:19:30.0875 2524 Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys

2011/07/25 19:19:30.0890 2524 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys

2011/07/25 19:19:30.0921 2524 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys

2011/07/25 19:19:30.0937 2524 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys

2011/07/25 19:19:30.0953 2524 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys

2011/07/25 19:19:30.0984 2524 MRxSmb (0dc719e9b15e902346e87e9dcd5751fa) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys

2011/07/25 19:19:31.0000 2524 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys

2011/07/25 19:19:31.0031 2524 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys

2011/07/25 19:19:31.0046 2524 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys

2011/07/25 19:19:31.0078 2524 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys

2011/07/25 19:19:31.0093 2524 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys

2011/07/25 19:19:31.0109 2524 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys

2011/07/25 19:19:31.0156 2524 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\WINDOWS\system32\DRIVERS\ASACPI.sys

2011/07/25 19:19:31.0156 2524 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys

2011/07/25 19:19:31.0187 2524 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys

2011/07/25 19:19:31.0218 2524 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys

2011/07/25 19:19:31.0250 2524 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys

2011/07/25 19:19:31.0265 2524 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys

2011/07/25 19:19:31.0296 2524 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys

2011/07/25 19:19:31.0328 2524 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys

2011/07/25 19:19:31.0343 2524 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys

2011/07/25 19:19:31.0359 2524 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys

2011/07/25 19:19:31.0453 2524 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys

2011/07/25 19:19:31.0500 2524 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys

2011/07/25 19:19:31.0546 2524 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys

2011/07/25 19:19:31.0562 2524 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys

2011/07/25 19:19:31.0609 2524 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys

2011/07/25 19:19:31.0640 2524 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys

2011/07/25 19:19:31.0671 2524 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys

2011/07/25 19:19:31.0687 2524 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys

2011/07/25 19:19:31.0718 2524 PalmUSBD (240c0d4049a833b16b63b636acf01672) C:\WINDOWS\system32\drivers\PalmUSBD.sys

2011/07/25 19:19:31.0734 2524 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\drivers\Parport.sys

2011/07/25 19:19:31.0750 2524 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys

2011/07/25 19:19:31.0781 2524 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys

2011/07/25 19:19:31.0796 2524 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys

2011/07/25 19:19:31.0828 2524 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys

2011/07/25 19:19:31.0859 2524 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\drivers\Pcmcia.sys

2011/07/25 19:19:31.0968 2524 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys

2011/07/25 19:19:31.0984 2524 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys

2011/07/25 19:19:32.0015 2524 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys

2011/07/25 19:19:32.0031 2524 PxHelp20 (153d02480a0a2f45785522e814c634b6) C:\WINDOWS\system32\Drivers\PxHelp20.sys

2011/07/25 19:19:32.0093 2524 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys

2011/07/25 19:19:32.0125 2524 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys

2011/07/25 19:19:32.0140 2524 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys

2011/07/25 19:19:32.0156 2524 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys

2011/07/25 19:19:32.0187 2524 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys

2011/07/25 19:19:32.0203 2524 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys

2011/07/25 19:19:32.0234 2524 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys

2011/07/25 19:19:32.0265 2524 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys

2011/07/25 19:19:32.0296 2524 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys

2011/07/25 19:19:32.0328 2524 RFCOMM (851c30df2807fcfa21e4c681a7d6440e) C:\WINDOWS\system32\DRIVERS\rfcomm.sys

2011/07/25 19:19:32.0375 2524 RTL8023xp (67c9511a760149797e806ffd9f14ad37) C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys

2011/07/25 19:19:32.0406 2524 RTL8192su (7bfdf13721f0366212ab8e94361a05bd) C:\WINDOWS\system32\DRIVERS\RTL8192su.sys

2011/07/25 19:19:32.0437 2524 s0016bus (59509ad6cbc28f2c73056268985b3e48) C:\WINDOWS\system32\DRIVERS\s0016bus.sys

2011/07/25 19:19:32.0453 2524 s0016mdfl (b98c3a6f91f4fba285af9606a240c6b4) C:\WINDOWS\system32\DRIVERS\s0016mdfl.sys

2011/07/25 19:19:32.0468 2524 s0016mdm (8a83426f4fb7b5212825d9de76368b1a) C:\WINDOWS\system32\DRIVERS\s0016mdm.sys

2011/07/25 19:19:32.0500 2524 s0016mgmt (7a78bba97feb5e6d24c49e93a3bf7287) C:\WINDOWS\system32\DRIVERS\s0016mgmt.sys

2011/07/25 19:19:32.0531 2524 s0016nd5 (34ef7b5f611957b73e7219dd5a222ad1) C:\WINDOWS\system32\DRIVERS\s0016nd5.sys

2011/07/25 19:19:32.0546 2524 s0016obex (36792935847143e4a3cda0dc87248487) C:\WINDOWS\system32\DRIVERS\s0016obex.sys

2011/07/25 19:19:32.0578 2524 s0016unic (927208754fb27fc3e7a659e77500c5d1) C:\WINDOWS\system32\DRIVERS\s0016unic.sys

2011/07/25 19:19:32.0593 2524 sbp2port (b244960e5a1db8e9d5d17086de37c1e4) C:\WINDOWS\system32\DRIVERS\sbp2port.sys

2011/07/25 19:19:32.0625 2524 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys

2011/07/25 19:19:32.0656 2524 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys

2011/07/25 19:19:32.0687 2524 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\DRIVERS\serial.sys

2011/07/25 19:19:32.0703 2524 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys

2011/07/25 19:19:32.0750 2524 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys

2011/07/25 19:19:32.0765 2524 snapman380 (5ce1cf27620b144e212d407cdb14d339) C:\WINDOWS\system32\DRIVERS\snman380.sys

2011/07/25 19:19:32.0796 2524 speedfan (cadc69ceb6d6f32516c3da5795912b0a) C:\WINDOWS\system32\speedfan.sys

2011/07/25 19:19:32.0843 2524 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys

2011/07/25 19:19:32.0875 2524 Spyder2 (527bbe1a1e98e634b540325491927efe) C:\WINDOWS\system32\DRIVERS\Spyder2.sys

2011/07/25 19:19:32.0906 2524 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys

2011/07/25 19:19:32.0937 2524 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys

2011/07/25 19:19:32.0953 2524 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys

2011/07/25 19:19:32.0984 2524 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys

2011/07/25 19:19:33.0015 2524 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys

2011/07/25 19:19:33.0031 2524 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys

2011/07/25 19:19:33.0093 2524 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys

2011/07/25 19:19:33.0125 2524 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys

2011/07/25 19:19:33.0156 2524 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys

2011/07/25 19:19:33.0203 2524 tdrpman174 (d953f161177dab3c8440844a9ab6e5a2) C:\WINDOWS\system32\DRIVERS\tdrpm174.sys

2011/07/25 19:19:33.0250 2524 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys

2011/07/25 19:19:33.0265 2524 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys

2011/07/25 19:19:33.0281 2524 tifsfilter (6dcb8ddb481cd3c40fa68593723b4d89) C:\WINDOWS\system32\DRIVERS\tifsfilt.sys

2011/07/25 19:19:33.0296 2524 timounter (394fc70b88b7958fa85798bbc76d140a) C:\WINDOWS\system32\DRIVERS\timntr.sys

2011/07/25 19:19:33.0359 2524 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys

2011/07/25 19:19:33.0406 2524 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys

2011/07/25 19:19:33.0453 2524 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys

2011/07/25 19:19:33.0468 2524 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys

2011/07/25 19:19:33.0484 2524 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys

2011/07/25 19:19:33.0515 2524 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys

2011/07/25 19:19:33.0546 2524 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys

2011/07/25 19:19:33.0562 2524 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys

2011/07/25 19:19:33.0593 2524 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS

2011/07/25 19:19:33.0609 2524 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys

2011/07/25 19:19:33.0640 2524 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys

2011/07/25 19:19:33.0671 2524 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys

2011/07/25 19:19:33.0703 2524 Video3D (8643da4a6c83da6c10fcab1e5ab6632d) C:\WINDOWS\system32\Drivers\Video3D32.sys

2011/07/25 19:19:33.0718 2524 VNUSB (ae01e1ed5a81e0d268b91b4a6de5a872) C:\WINDOWS\system32\DRIVERS\VNUSB.sys

2011/07/25 19:19:33.0734 2524 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys

2011/07/25 19:19:33.0765 2524 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys

2011/07/25 19:19:33.0812 2524 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys

2011/07/25 19:19:33.0859 2524 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys

2011/07/25 19:19:33.0921 2524 WLNdis50 (bb2c5a7a555b387b85481b8bde5370d7) C:\WINDOWS\system32\DRIVERS\wlndis50.sys

2011/07/25 19:19:33.0968 2524 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS

2011/07/25 19:19:34.0015 2524 MBR (0x1B8) (c99c3199cfaa4cbdcd91493f6d113a50) \Device\Harddisk0\DR0

2011/07/25 19:19:34.0109 2524 MBR (0x1B8) (06449e7c4af0550b77e260798769aa40) \Device\Harddisk1\DR3

2011/07/25 19:19:34.0125 2524 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk2\DR4

2011/07/25 19:19:34.0125 2524 MBR (0x1B8) (06449e7c4af0550b77e260798769aa40) \Device\Harddisk3\DR7

2011/07/25 19:19:34.0140 2524 MBR (0x1B8) (988d3c46cbd13ec7f482b833c55264c8) \Device\Harddisk4\DR8

2011/07/25 19:19:34.0156 2524 Boot (0x1200) (197d2cd50738e6e80c00d58b1a2fc155) \Device\Harddisk0\DR0\Partition0

2011/07/25 19:19:34.0171 2524 Boot (0x1200) (6364e0874f17a64734115d2a17962159) \Device\Harddisk0\DR0\Partition1

2011/07/25 19:19:34.0171 2524 Boot (0x1200) (7948918986d44b32fca2289eee8c6666) \Device\Harddisk1\DR3\Partition0

2011/07/25 19:19:34.0187 2524 Boot (0x1200) (5f4896965561740c7ba106fd9805b0c4) \Device\Harddisk2\DR4\Partition0

2011/07/25 19:19:34.0187 2524 Boot (0x1200) (3262454fc1b8c34fb00868b234632b21) \Device\Harddisk3\DR7\Partition0

2011/07/25 19:19:34.0187 2524 Boot (0x1200) (c6ce3013f3c67bab7a5aa7bfd5eaee4f) \Device\Harddisk4\DR8\Partition0

2011/07/25 19:19:34.0203 2524 ================================================================================

2011/07/25 19:19:34.0203 2524 Scan finished

2011/07/25 19:19:34.0203 2524 ================================================================================

2011/07/25 19:19:34.0203 3716 Detected object count: 0

2011/07/25 19:19:34.0203 3716 Actual detected object count: 0

 

 

et le OTL.Txt:

 

OTL logfile created on: 25/07/2011 19:23:05 - Run 1

OTL by OldTimer - Version 3.2.26.1 Folder = C:\Documents and Settings\Patrice\Bureau

Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

 

2,00 Gb Total Physical Memory | 1,43 Gb Available Physical Memory | 71,49% Memory free

3,85 Gb Paging File | 3,31 Gb Available in Paging File | 85,96% Paging File free

Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

 

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 48,83 Gb Total Space | 13,69 Gb Free Space | 28,03% Space Free | Partition Type: NTFS

Drive D: | 547,34 Gb Total Space | 243,90 Gb Free Space | 44,56% Space Free | Partition Type: NTFS

Drive F: | 1,90 Gb Total Space | 1,90 Gb Free Space | 100,00% Space Free | Partition Type: FAT32

Drive G: | 1,91 Gb Total Space | 1,40 Gb Free Space | 73,37% Space Free | Partition Type: FAT

Drive H: | 465,76 Gb Total Space | 163,85 Gb Free Space | 35,18% Space Free | Partition Type: NTFS

Drive L: | 465,64 Gb Total Space | 167,45 Gb Free Space | 35,96% Space Free | Partition Type: FAT32

 

Computer Name: PATRICE-PC | User Name: Pat-admin | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: Current user

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

 

========== Processes (SafeList) ==========

 

PRC - [2011/07/25 19:22:24 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Patrice\Bureau\OTL.exe

PRC - [2011/07/03 12:31:13 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe

PRC - [2011/06/30 10:37:27 | 001,793,712 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe

PRC - [2011/06/30 10:37:05 | 002,554,696 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cfp.exe

PRC - [2011/06/07 09:49:33 | 000,136,360 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe

PRC - [2011/04/08 12:59:52 | 000,254,696 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe

PRC - [2011/02/09 21:36:21 | 000,186,760 | ---- | M] () -- C:\Program Files\Photodex\ProShowGold\scsiaccess.exe

PRC - [2010/11/04 09:56:26 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

PRC - [2010/10/27 19:17:52 | 000,207,424 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACDaemon.exe

PRC - [2010/08/25 11:27:44 | 000,309,824 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ArcCon.ac

PRC - [2010/04/05 21:55:01 | 000,116,104 | ---- | M] () -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe

PRC - [2010/03/18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACService.exe

PRC - [2010/02/12 21:23:32 | 000,148,744 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe

PRC - [2010/01/14 23:11:00 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe

PRC - [2009/12/22 11:17:04 | 000,225,280 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\DatacardService\DCService.exe

PRC - [2009/12/18 11:58:28 | 000,057,344 | ---- | M] (Nalpeiron Ltd.) -- C:\WINDOWS\system32\nlssrv32.exe

PRC - [2009/10/07 02:47:34 | 000,154,136 | ---- | M] (Logitech Inc.) -- C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcSrv.exe

PRC - [2009/09/10 17:02:14 | 000,505,152 | ---- | M] (D-Link Corp.) -- C:\Program Files\D-Link\DWA-131 revA\wirelesscm.exe

PRC - [2009/06/26 15:56:58 | 000,102,400 | ---- | M] (WDC) -- C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe

PRC - [2009/05/14 17:07:14 | 000,759,048 | ---- | M] (ABBYY) -- C:\Program Files\Fichiers communs\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe

PRC - [2008/12/23 19:25:14 | 000,554,264 | ---- | M] (Acronis) -- C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe

PRC - [2008/10/20 23:18:26 | 000,071,096 | ---- | M] () -- C:\Program Files\CDBurnerXP\NMSAccessU.exe

PRC - [2008/07/23 19:04:20 | 005,625,344 | ---- | M] () -- C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe

PRC - [2008/07/10 12:22:24 | 000,397,312 | ---- | M] (Sony Ericsson Mobile Communications AB) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe

PRC - [2008/05/26 20:34:48 | 001,423,360 | ---- | M] () -- C:\Program Files\ASUS\AI Suite\AiNap\AiNap.exe

PRC - [2008/04/14 14:00:00 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

PRC - [2008/04/14 13:45:08 | 000,262,144 | ---- | M] (ASUSTeK COMPUTER INC.) -- C:\WINDOWS\ATKKBService.exe

PRC - [2005/04/29 09:07:14 | 000,045,096 | ---- | M] (H+BEDV Datentechnik GmbH, Germany) -- C:\Program Files\AVPersonal\AVWUPSRV.EXE

 

 

========== Modules (SafeList) ==========

 

MOD - [2011/07/25 19:22:24 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Patrice\Bureau\OTL.exe

MOD - [2011/06/30 10:37:25 | 000,285,256 | ---- | M] (COMODO) -- C:\WINDOWS\system32\guard32.dll

MOD - [2010/08/23 18:12:39 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll

 

 

========== Win32 Services (SafeList) ==========

 

SRV - [2011/07/09 16:03:20 | 000,311,928 | ---- | M] (CybelSoft) [On_Demand | Stopped] -- C:\Program Files\ma-config.com\maconfservice.exe -- (maconfservice)

SRV - [2011/07/03 12:31:13 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)

SRV - [2011/06/30 10:37:27 | 001,793,712 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)

SRV - [2011/06/07 09:49:33 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)

SRV - [2011/02/09 21:36:21 | 000,186,760 | ---- | M] () [Auto | Running] -- C:\Program Files\Photodex\ProShowGold\scsiaccess.exe -- (ScsiAccess)

SRV - [2010/04/05 21:55:01 | 000,116,104 | ---- | M] () [Auto | Running] -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)

SRV - [2010/03/18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon)

SRV - [2010/02/19 14:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)

SRV - [2010/02/12 21:23:32 | 000,148,744 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe -- (CLPSLS)

SRV - [2009/12/22 11:17:04 | 000,225,280 | ---- | M] () [Auto | Running] -- C:\Documents and Settings\All Users\Application Data\DatacardService\DCService.exe -- (DCService.exe)

SRV - [2009/12/18 11:58:28 | 000,057,344 | ---- | M] (Nalpeiron Ltd.) [Auto | Running] -- C:\WINDOWS\system32\nlssrv32.exe -- (nlsX86cc)

SRV - [2009/10/07 02:47:34 | 000,154,136 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)

SRV - [2009/06/26 15:56:58 | 000,102,400 | ---- | M] (WDC) [Auto | Running] -- C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe -- (WDBtnMgrSvc.exe)

SRV - [2009/05/14 17:07:14 | 000,759,048 | ---- | M] (ABBYY) [Auto | Running] -- C:\Program Files\Fichiers communs\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Sprint.9.0)

SRV - [2009/05/07 23:19:18 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)

SRV - [2009/02/11 19:12:38 | 000,167,936 | ---- | M] () [Auto | Stopped] -- C:\Program Files\D-Link\DWA-131 revA\WLSVC.exe -- (WLSVC)

SRV - [2008/12/23 19:25:14 | 000,554,264 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)

SRV - [2008/11/07 18:40:52 | 000,121,360 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)

SRV - [2008/10/20 23:18:26 | 000,071,096 | ---- | M] () [Auto | Running] -- C:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccessU)

SRV - [2008/04/14 13:45:08 | 000,262,144 | ---- | M] (ASUSTeK COMPUTER INC.) [Auto | Running] -- C:\WINDOWS\ATKKBService.exe -- (ATKKeyboardService)

SRV - [2006/10/26 21:49:34 | 000,441,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)

SRV - [2006/10/26 16:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose)

SRV - [2005/11/14 02:06:04 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT)

SRV - [2005/04/29 09:07:14 | 000,045,096 | ---- | M] (H+BEDV Datentechnik GmbH, Germany) [Auto | Running] -- C:\Program Files\AVPersonal\AVWUPSRV.EXE -- (AVWUpSrv)

 

 

========== Driver Services (SafeList) ==========

 

DRV - [2011/07/03 12:31:14 | 000,138,192 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)

DRV - [2011/07/03 12:31:14 | 000,066,616 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)

DRV - [2011/07/02 14:33:46 | 000,016,640 | ---- | M] (CybelSoft) [Kernel | On_Demand | Stopped] -- C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys -- (driverhardwarev2)

DRV - [2011/06/30 10:38:14 | 000,097,504 | ---- | M] (COMODO) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\inspect.sys -- (Inspect)

DRV - [2011/06/30 10:38:13 | 000,029,400 | ---- | M] (COMODO) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\cmdhlp.sys -- (cmdHlp)

DRV - [2011/06/30 10:38:12 | 000,242,600 | ---- | M] (COMODO) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\cmdGuard.sys -- (cmdGuard)

DRV - [2010/07/07 04:27:52 | 005,069,312 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)

DRV - [2010/05/17 14:04:06 | 000,101,904 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService)

DRV - [2010/04/09 17:24:12 | 000,063,616 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ew_jubusenum.sys -- (huawei_enumerator)

DRV - [2010/03/25 12:08:30 | 000,105,728 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)

DRV - [2010/03/20 13:56:04 | 000,101,504 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ew_hwusbdev.sys -- (ew_hwusbdev)

DRV - [2010/03/20 12:28:00 | 000,117,504 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbnet.sys -- (ewusbnet)

DRV - [2009/10/07 10:49:50 | 000,023,832 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvuvcflt.sys -- (FilterService)

DRV - [2009/10/07 10:49:38 | 006,756,632 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvuvc.sys -- (LVUVC) Logitech Webcam 250(UVC)

DRV - [2009/10/07 10:47:54 | 000,266,008 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvrs.sys -- (LVRS)

DRV - [2009/10/07 10:46:12 | 000,114,712 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvpopflt.sys -- (lvpopflt)

DRV - [2009/10/07 02:46:36 | 000,025,752 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon)

DRV - [2009/08/05 22:23:22 | 000,588,032 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8192su.sys -- (RTL8192su)

DRV - [2009/05/11 13:49:19 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio)

DRV - [2009/05/11 11:12:49 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)

DRV - [2009/04/10 09:34:30 | 000,016,694 | ---- | M] (PalmSource, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PalmUSBD.sys -- (PalmUSBD)

DRV - [2009/02/26 03:13:03 | 000,971,552 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\tdrpm174.sys -- (tdrpman174) Acronis Try&Decide and Restore Points filter (build 174)

DRV - [2009/02/26 03:12:59 | 000,540,000 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\timntr.sys -- (timounter)

DRV - [2009/02/26 03:12:59 | 000,044,704 | ---- | M] (Acronis) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\tifsfilt.sys -- (tifsfilter)

DRV - [2009/02/26 03:12:51 | 000,134,272 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\snman380.sys -- (snapman380) Acronis Snapshots Manager (Build 380)

DRV - [2009/01/21 17:49:40 | 000,118,656 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)

DRV - [2008/11/14 16:18:48 | 000,484,096 | ---- | M] (iAnywhere Solutions) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btprot.sys -- (BTPROT)

DRV - [2008/11/14 16:18:48 | 000,023,808 | ---- | M] (iAnywhere Solutions) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btiausb.sys -- (BTIAUSB)

DRV - [2008/10/02 13:01:46 | 004,878,336 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)

DRV - [2008/09/26 11:53:00 | 000,037,392 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)

DRV - [2008/09/26 11:53:00 | 000,028,816 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LUsbFilt.sys -- (LUsbFilt)

DRV - [2008/09/26 11:52:00 | 000,035,472 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)

DRV - [2008/09/26 11:52:00 | 000,010,384 | ---- | M] (Logitech, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\LBeepKE.sys -- (LBeepKE)

DRV - [2008/09/23 19:15:00 | 000,038,400 | R--- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\l1e51x86.sys -- (L1e)

DRV - [2008/09/16 13:21:06 | 000,079,744 | ---- | M] (iAnywhere Solutions) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btiaspp.sys -- (btiaspp)

DRV - [2008/09/16 13:21:06 | 000,067,456 | ---- | M] (iAnywhere Solutions) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btiaa2dp.sys -- (btiaa2dp)

DRV - [2008/09/16 13:21:06 | 000,030,720 | ---- | M] (iAnywhere Solutions) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btiapan.sys -- (BTiAPan)

DRV - [2008/07/30 18:04:24 | 000,019,712 | ---- | M] (iAnywhere Solutions) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btiasco.sys -- (iAnywhere_btAudio)

DRV - [2008/07/30 18:04:24 | 000,009,216 | ---- | M] (iAnywhere Solutions) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btiarcp.sys -- (btiarcp)

DRV - [2008/05/16 13:33:14 | 000,115,752 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016unic.sys -- (s0016unic) Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM)

DRV - [2008/05/16 13:33:14 | 000,025,512 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016nd5.sys -- (s0016nd5) Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS)

DRV - [2008/05/16 13:33:14 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mdfl.sys -- (s0016mdfl)

DRV - [2008/05/16 13:33:12 | 000,120,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mdm.sys -- (s0016mdm)

DRV - [2008/05/16 13:33:12 | 000,114,216 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016mgmt.sys -- (s0016mgmt) Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM)

DRV - [2008/05/16 13:33:12 | 000,110,632 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016obex.sys -- (s0016obex)

DRV - [2008/05/16 13:33:12 | 000,089,256 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s0016bus.sys -- (s0016bus) Sony Ericsson Device 0016 driver (WDM)

DRV - [2008/04/14 13:45:12 | 000,012,416 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\asusgsb.sys -- (asusgsb)

DRV - [2008/04/14 13:45:12 | 000,010,752 | ---- | M] (ASUSTeK COMPUTER INC.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Video3D32.sys -- (Video3D)

DRV - [2008/04/14 13:45:08 | 000,011,136 | ---- | M] (ASUSTeK COMPUTER INC.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\atkkbnt.sys -- (asuskbnt)

DRV - [2008/02/27 14:49:00 | 000,003,840 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\BANTExt.sys -- (BANTExt)

DRV - [2008/02/27 10:54:00 | 000,020,480 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\WLNdis50.sys -- (WLNdis50)

DRV - [2007/12/17 11:14:06 | 000,012,400 | R--- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AsIO.sys -- (AsIO)

DRV - [2007/02/16 02:57:04 | 000,034,760 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ElbyCDFL.sys -- (ElbyCDFL)

DRV - [2007/01/29 19:12:52 | 000,018,432 | ---- | M] (ASUSTeK COMPUTER INC.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AsusVRC.sys -- (ASUSVRC)

DRV - [2007/01/17 16:30:00 | 000,012,288 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Spyder2.sys -- (Spyder2)

DRV - [2006/11/10 15:05:00 | 000,018,688 | ---- | M] (Arcsoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\afc.sys -- (Afc)

DRV - [2006/06/14 15:44:30 | 000,012,288 | R--- | M] (ASUSTeK Computer Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\EIO_XP.sys -- (EIO_XP)

DRV - [2006/04/07 19:06:38 | 000,038,496 | ---- | M] (OLYMPUS IMAGING CORP.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\VNUSB.sys -- (VNUSB)

DRV - [2005/03/24 19:40:38 | 000,004,096 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)

DRV - [2004/08/13 04:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)

DRV - [2001/08/17 23:04:46 | 000,223,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\camdrv21.sys -- (camvid20)

DRV - [1999/09/10 14:06:00 | 000,025,244 | ---- | M] (Adaptec) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\aspi32.sys -- (Aspi32)

DRV - [1996/04/03 21:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)

 

 

========== Standard Registry (SafeList) ==========

 

 

========== Internet Explorer ==========

 

 

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

 

========== FireFox ==========

 

FF - prefs.js..browser.search.update: false

FF - prefs.js..browser.startup.homepage: "http://www.google.fr/ig?hl="

FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0

FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.0

FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:1.5.4.20081105

 

 

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()

FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)

FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)

FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)

FF - HKLM\Software\MozillaPlugins\@ma-config.com/HardwareDetection: C:\Program Files\ma-config.com\nphardwaredetection.dll (Cybelsoft)

FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@photodex.com/PhotodexPresenter: C:\Program Files\Photodex Presenter\npPxPlay.dll ( )

FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.69: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)

FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.3.69: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)

FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)

FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found

FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)

FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)

 

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/07/14 10:11:19 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/06/25 15:52:59 | 000,000,000 | ---D | M]

 

[2009/02/27 04:24:05 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Pat-admin\Application Data\Mozilla\Extensions

[2011/07/03 14:29:49 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Pat-admin\Application Data\Mozilla\Firefox\Profiles\7y5kqfwf.default\extensions

[2009/09/01 10:15:32 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Pat-admin\Application Data\Mozilla\Firefox\Profiles\7y5kqfwf.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}

[2010/09/07 19:49:31 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Pat-admin\Application Data\Mozilla\Firefox\Profiles\7y5kqfwf.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}

[2011/07/03 14:29:49 | 000,000,000 | ---D | M] ("Xmarks") -- C:\Documents and Settings\Pat-admin\Application Data\Mozilla\Firefox\Profiles\7y5kqfwf.default\extensions\foxmarks@kei.com

[2011/07/14 10:11:18 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions

[2011/06/25 15:53:00 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}

File not found (No name found) --

[2011/06/16 06:38:33 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll

[2011/06/25 15:52:51 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll

[2010/01/01 10:00:00 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml

[2010/01/01 10:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml

[2010/01/01 10:00:00 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml

[2010/01/01 10:00:00 | 000,001,154 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml

[2010/01/01 10:00:00 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml

[2010/01/01 10:00:00 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml

 

O1 HOSTS File: ([2011/07/20 09:00:23 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)

O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)

O2 - BHO: (SpywareGuardDLBLOCK.CBrowserHelper) - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll ()

O2 - BHO: (CmjBrowserHelperObject Object) - {AC41D38F-B56D-40AD-94E0-B493D130C959} - C:\Program Files\Mindjet\MindManager 6\Mm6InternetExplorer.dll (Mindjet)

O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)

O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files\Fichiers communs\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)

O4 - HKLM..\Run: [Ai Nap] C:\Program Files\ASUS\AI Suite\AiNap\AiNap.exe ()

O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)

O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)

O4 - HKLM..\Run: [bluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation)

O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO)

O4 - HKLM..\Run: [Cpu Level Up help] C:\Program Files\ASUS\AI Suite\CpuLevelUpHelp.exe ()

O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)

O4 - HKLM..\Run: [QFan Help] C:\Program Files\ASUS\AI Suite\QFan3\QFanHelp.exe ()

O4 - HKLM..\Run: [six Engine] C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe ()

O4 - HKLM..\Run: [sunJavaUpdateSched] C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)

O4 - HKLM..\Run: [switchBoard] C:\Program Files\Fichiers communs\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)

O4 - HKCU..\Run: [pdfSaver3] C:\Program Files\Tracker Software\PDF-XChange 3\pdfSaver\pdfSaver3.exe (Tracker Software Products Ltd.)

O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\ColorVisionStartup.lnk = C:\Program Files\ColorVision\Utility\ColorVisionStartup.exe (ColorVision Inc.)

O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Wireless Connection Manager.lnk = C:\Program Files\D-Link\DWA-131 revA\wirelesscm.exe (D-Link Corp.)

O4 - Startup: C:\Documents and Settings\Pat-admin\Menu Démarrer\Programmes\Démarrage\MRU-Blaster Silent Clean.lnk = C:\Program Files\MRU-Blaster\mrublaster.exe ()

O4 - Startup: C:\Documents and Settings\Pat-admin\Menu Démarrer\Programmes\Démarrage\SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe ()

O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0

O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0

O9 - Extra Button: Send to Mindjet MindManager - {531B9DC0-D8EE-4c76-A6EE-6C1E50569655} - C:\Program Files\Mindjet\MindManager 6\Mm6InternetExplorer.dll (Mindjet)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)

O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2

O18 - Protocol\Handler\belarc {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\Advisor\System\BAVoilaX.dll (Belarc, Inc.)

O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)

O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)

O20 - AppInit_DLLs: (C:\WINDOWS\system32\guard32.dll) - C:\WINDOWS\system32\guard32.dll (COMODO)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)

O20 - Winlogon\Notify\LBTWlgn: DllName - c:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll - c:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)

O24 - Desktop Components:0 (Ma page d'accueil) - About:Home

O24 - Desktop WallPaper: C:\Documents and Settings\Pat-admin\Local Settings\Application Data\Microsoft\Wallpaper1.bmp

O24 - Desktop BackupWallPaper: C:\Documents and Settings\Pat-admin\Local Settings\Application Data\Microsoft\Wallpaper1.bmp

O28 - HKLM ShellExecuteHooks: {81559C35-8464-49F7-BB0E-07A383BEF910} - C:\Program Files\SpywareGuard\spywareguard.dll ()

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2009/02/22 11:36:11 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

O34 - HKLM BootExecute: (autocheck autochk *) - File not found

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = ComFile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

 

========== Files/Folders - Created Within 30 Days ==========

 

[2011/07/24 22:43:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pat-admin\Application Data\dvdcss

[2011/07/24 22:37:18 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Pat-admin\Recent

[2011/07/23 22:11:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pat-admin\Application Data\DivX

[2011/07/23 21:53:41 | 000,000,000 | ---D | C] -- C:\Program Files\On2 Technologies

[2011/07/23 21:51:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\AC3Filter

[2011/07/23 21:51:56 | 000,000,000 | ---D | C] -- C:\Program Files\AC3Filter

[2011/07/23 21:24:50 | 000,000,000 | ---D | C] -- C:\Program Files\DivX

[2011/07/23 21:23:49 | 000,000,000 | ---D | C] -- C:\Program Files\Haali

[2011/07/23 21:23:35 | 000,000,000 | ---D | C] -- C:\Program Files\Xvid

[2011/07/23 21:23:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\DivX

[2011/07/23 19:52:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\AviSynth 2.5

[2011/07/23 17:59:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pat-admin\Application Data\EAC

[2011/07/23 17:59:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pat-admin\Application Data\AccurateRip

[2011/07/23 17:59:38 | 000,000,000 | ---D | C] -- C:\Program Files\Exact Audio Copy

[2011/07/22 19:10:06 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJMyPrinter

[2011/07/22 19:07:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJPLM

[2011/07/22 18:41:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Enregistrement utilisateur de Canon iP4800 series

[2011/07/22 18:41:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJMSetup

[2011/07/22 18:41:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Canon Utilities

[2011/07/22 18:41:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonBJ

[2011/07/22 18:41:13 | 000,290,816 | ---- | C] (CANON INC.) -- C:\WINDOWS\System32\CNMLMAF.DLL

[2011/07/22 18:41:10 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\CanonIJ Uninstaller Information

[2011/07/22 18:41:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Canon iP4800 series

[2011/07/22 18:41:06 | 000,180,224 | ---- | C] (CANON INC.) -- C:\WINDOWS\System32\CNMIUAF.DLL

[2011/07/22 18:40:53 | 000,000,000 | -H-D | C] -- C:\Program Files\CanonBJ

[2011/07/20 11:01:52 | 000,000,000 | -HSD | C] -- C:\RECYCLER

[2011/07/20 08:52:08 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe

[2011/07/20 08:52:08 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe

[2011/07/20 08:52:08 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe

[2011/07/20 08:52:08 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe

[2011/07/20 08:51:59 | 000,000,000 | ---D | C] -- C:\Qoobox

[2011/07/16 15:28:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ArcSoft Connect

[2011/07/16 15:28:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ArcSoft Scan-n-Stitch Deluxe

[2011/07/16 15:27:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pat-admin\Local Settings\Application Data\ArcSoft

[2011/07/16 15:26:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ArcSoft MediaImpression 2

[2011/07/16 15:26:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ArcSoft

[2011/07/16 15:25:00 | 000,018,688 | ---- | C] (Arcsoft, Inc.) -- C:\WINDOWS\System32\drivers\afc.sys

[2011/07/16 15:24:58 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\ArcSoft

[2011/07/16 15:24:56 | 000,000,000 | ---D | C] -- C:\Program Files\ArcSoft

[2011/07/16 15:20:43 | 000,390,656 | ---- | C] (Seiko Epson Corp.) -- C:\WINDOWS\System32\eswiaad.dll

[2011/07/16 15:20:43 | 000,204,800 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\esintad.dll

[2011/07/15 19:59:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pat-admin\Application Data\Malwarebytes

[2011/07/15 19:59:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes

[2011/07/15 14:36:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ma-config.com

[2011/07/13 14:24:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pat-admin\Application Data\WinRAR

[2011/07/13 14:24:54 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR

[2011/07/08 21:52:26 | 000,000,000 | ---D | C] -- C:\Program Files\Western Digital Technologies

[2011/07/07 18:27:00 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX

[2011/07/05 22:42:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pat-admin\Application Data\Epson

[2011/07/05 21:29:29 | 000,008,192 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\E_DCINST.DLL

[2011/07/05 21:29:28 | 000,093,696 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FLBGAE.DLL

[2011/07/05 21:29:28 | 000,063,488 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FD4BGAE.DLL

[2011/07/05 21:24:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\UDL

[2011/07/05 21:21:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Epson Software

[2011/07/05 21:20:57 | 000,000,000 | ---D | C] -- C:\Program Files\Epson Software

[2011/07/05 21:19:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pat-admin\Local Settings\Application Data\ABBYY

[2011/07/05 21:19:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ABBYY FineReader 9.0 Sprint

[2011/07/05 21:15:40 | 000,000,000 | ---D | C] -- C:\Program Files\ABBYY FineReader 9.0 Sprint

[2011/07/05 21:15:39 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\ABBYY

[2011/07/05 21:15:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ABBYY

[2011/07/05 21:14:28 | 000,474,892 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\ensppmon.dll

[2011/07/05 21:14:28 | 000,474,892 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\enppmon.dll

[2011/07/05 21:14:28 | 000,457,611 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\ensppui.dll

[2011/07/05 21:14:28 | 000,457,611 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\enppui.dll

[2011/07/05 21:14:28 | 000,249,344 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\enspres.dll

[2011/07/05 21:14:28 | 000,249,344 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\enpres.dll

[2011/07/05 21:14:15 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\EPSON

[2011/07/05 21:13:34 | 000,000,000 | ---D | C] -- C:\Program Files\EpsonNet

[2011/07/05 21:12:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\EPSON

[2011/07/05 21:12:45 | 000,132,560 | ---- | C] (Seiko Epson Corporation) -- C:\WINDOWS\System32\esdevapp.exe

[2011/07/05 21:12:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\EPSON

[2011/07/05 21:12:44 | 000,342,016 | ---- | C] (Seiko Epson Corporation) -- C:\WINDOWS\System32\eswiaud.dll

[2011/07/05 21:12:44 | 000,012,800 | ---- | C] (Seiko Epson Corporation) -- C:\WINDOWS\System32\escdev.dll

[2011/07/05 21:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\epson

[2011/07/02 00:42:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Pat-admin\Mes documents\DriverGenius

[2011/07/02 00:08:55 | 000,000,000 | ---D | C] -- C:\Program Files\ma-config.com

[2011/07/02 00:08:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ma-config.com

[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

 

========== Files - Modified Within 30 Days ==========

 

[2011/07/25 19:12:31 | 000,001,058 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job

[2011/07/25 19:12:08 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2011/07/25 13:49:00 | 000,001,062 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

[2011/07/25 10:57:14 | 000,005,938 | ---- | M] () -- C:\Documents and Settings\Pat-admin\Mes documents\cc_20110725_105711.reg

[2011/07/24 22:54:39 | 000,000,865 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\ColorVisionStartup.lnk

[2011/07/24 22:54:39 | 000,000,683 | ---- | M] () -- C:\Documents and Settings\Pat-admin\Menu Démarrer\Programmes\Démarrage\MRU-Blaster Silent Clean.lnk

[2011/07/24 22:54:39 | 000,000,650 | ---- | M] () -- C:\Documents and Settings\Pat-admin\Menu Démarrer\Programmes\Démarrage\SpywareGuard.lnk

[2011/07/24 22:54:39 | 000,000,641 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Wireless Connection Manager.lnk

[2011/07/24 22:50:37 | 000,000,156 | ---- | M] () -- C:\WINDOWS\Twunk001.MTX

[2011/07/24 22:50:37 | 000,000,004 | ---- | M] () -- C:\WINDOWS\Twain001.Mtx

[2011/07/24 22:43:41 | 000,005,120 | ---- | M] () -- C:\Documents and Settings\Pat-admin\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2011/07/24 22:37:50 | 000,002,150 | ---- | M] () -- C:\Documents and Settings\Pat-admin\Mes documents\cc_20110724_223747.reg

[2011/07/24 22:31:45 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2011/07/24 22:00:48 | 000,000,458 | ---- | M] () -- C:\WINDOWS\tasks\SyncBack Bookmarks-PC-Patrice.job

[2011/07/24 20:00:49 | 000,000,446 | ---- | M] () -- C:\WINDOWS\tasks\SyncBack Backup-Lucille.job

[2011/07/24 19:34:18 | 000,000,450 | ---- | M] () -- C:\WINDOWS\tasks\SyncBack Backup-Sabine-PC.job

[2011/07/24 18:17:58 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin

[2011/07/24 10:30:36 | 000,000,460 | ---- | M] () -- C:\WINDOWS\tasks\SyncBack Backup-Photos-Patrice.job

[2011/07/23 20:06:42 | 049,599,861 | ---- | M] () -- C:\Documents and Settings\Pat-admin\Mes documents\SetupRiamCodecPack_4.2.7.exe

[2011/07/20 10:05:39 | 000,000,460 | ---- | M] () -- C:\WINDOWS\tasks\SyncBack Backup-Sabine-Outlook.job

[2011/07/20 09:31:00 | 000,000,452 | ---- | M] () -- C:\WINDOWS\tasks\SyncBack Backup-Patrice-PC.job

[2011/07/20 09:00:23 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts

[2011/07/17 11:24:31 | 000,504,006 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat

[2011/07/17 11:24:31 | 000,435,704 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2011/07/17 11:24:31 | 000,081,774 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat

[2011/07/17 11:24:31 | 000,068,408 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2011/07/14 10:11:21 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\Pat-admin\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk

[2011/07/14 10:10:15 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl

[2011/07/14 09:58:03 | 000,002,474 | ---- | M] () -- C:\Documents and Settings\Pat-admin\Mes documents\cc_20110714_095800.reg

[2011/07/14 09:53:19 | 003,778,456 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2011/07/08 21:29:53 | 000,000,610 | ---- | M] () -- C:\Documents and Settings\Pat-admin\Mes documents\cc_20110708_212948.reg

[2011/07/06 17:02:16 | 000,000,438 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.ics

[2011/07/06 09:15:04 | 000,000,462 | ---- | M] () -- C:\WINDOWS\tasks\SyncBack Backup-Patrice-Outlook.job

[2011/07/05 22:53:25 | 000,000,000 | ---- | M] () -- C:\WINDOWS\EEventManager.INI

[2011/07/05 22:37:59 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Twunk002.MTX

[2011/07/05 21:22:59 | 000,000,306 | ---- | M] () -- C:\WINDOWS\setup.iss

[2011/07/05 02:00:00 | 000,000,354 | ---- | M] () -- C:\WINDOWS\tasks\AdobeAAMUpdater-1.0-PATRICE-PC-Patrice.job

[2011/07/05 01:59:59 | 000,000,358 | ---- | M] () -- C:\WINDOWS\tasks\AdobeAAMUpdater-1.0-PATRICE-PC-Pat-admin.job

[2011/07/04 09:42:40 | 000,025,722 | ---- | M] () -- C:\Documents and Settings\Pat-admin\Mes documents\cc_20110704_094236.reg

[2011/07/03 12:31:14 | 000,138,192 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys

[2011/07/03 12:31:14 | 000,066,616 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys

[2011/06/30 10:38:14 | 000,097,504 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\inspect.sys

[2011/06/30 10:38:13 | 000,029,400 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\cmdhlp.sys

[2011/06/30 10:38:12 | 000,242,600 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\cmdGuard.sys

[2011/06/30 10:38:10 | 000,017,416 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\cmderd.sys

[2011/06/30 10:37:25 | 000,285,256 | ---- | M] (COMODO) -- C:\WINDOWS\System32\guard32.dll

[2011/06/26 08:45:56 | 000,256,000 | ---- | M] () -- C:\WINDOWS\PEV.exe

[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

 

========== Files Created - No Company Name ==========

 

[2011/07/25 10:57:13 | 000,005,938 | ---- | C] () -- C:\Documents and Settings\Pat-admin\Mes documents\cc_20110725_105711.reg

[2011/07/24 22:37:49 | 000,002,150 | ---- | C] () -- C:\Documents and Settings\Pat-admin\Mes documents\cc_20110724_223747.reg

[2011/07/24 18:17:58 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin

[2011/07/23 21:51:56 | 000,497,664 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.acm

[2011/07/23 20:06:40 | 049,599,861 | ---- | C] () -- C:\Documents and Settings\Pat-admin\Mes documents\SetupRiamCodecPack_4.2.7.exe

[2011/07/20 08:52:08 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe

[2011/07/20 08:52:08 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe

[2011/07/20 08:52:08 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe

[2011/07/20 08:52:08 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe

[2011/07/20 08:52:08 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe

[2011/07/16 15:20:43 | 000,065,793 | ---- | C] () -- C:\WINDOWS\System32\esfwad.bin

[2011/07/14 18:35:54 | 000,000,458 | ---- | C] () -- C:\WINDOWS\tasks\SyncBack Bookmarks-PC-Patrice.job

[2011/07/14 10:11:21 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\Pat-admin\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk

[2011/07/14 10:11:20 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk

[2011/07/14 09:58:02 | 000,002,474 | ---- | C] () -- C:\Documents and Settings\Pat-admin\Mes documents\cc_20110714_095800.reg

[2011/07/08 21:29:49 | 000,000,610 | ---- | C] () -- C:\Documents and Settings\Pat-admin\Mes documents\cc_20110708_212948.reg

[2011/07/05 22:53:25 | 000,000,000 | ---- | C] () -- C:\WINDOWS\EEventManager.INI

[2011/07/05 22:37:59 | 000,000,156 | ---- | C] () -- C:\WINDOWS\Twunk001.MTX

[2011/07/05 22:37:59 | 000,000,004 | ---- | C] () -- C:\WINDOWS\Twain001.Mtx

[2011/07/05 22:37:59 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Twunk002.MTX

[2011/07/05 21:22:54 | 000,000,306 | ---- | C] () -- C:\WINDOWS\setup.iss

[2011/07/04 09:42:38 | 000,025,722 | ---- | C] () -- C:\Documents and Settings\Pat-admin\Mes documents\cc_20110704_094236.reg

[2011/06/06 15:53:04 | 000,376,832 | ---- | C] () -- C:\WINDOWS\System32\AegisI5Installer.exe

[2011/06/06 15:52:39 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\wlndis50.sys

[2011/06/06 15:52:39 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\drivers\WLNdis50.sys

[2011/01/30 18:08:42 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll

[2010/09/15 10:03:19 | 000,007,763 | ---- | C] () -- C:\WINDOWS\AmvPlayer.ini

[2010/09/15 10:03:18 | 000,008,802 | ---- | C] () -- C:\WINDOWS\AmvTransform.ini

[2010/09/15 09:26:39 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\AVSredirect.dll

[2010/08/18 18:55:10 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\Pipe Organ

[2010/08/15 02:05:48 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin

[2010/08/15 02:05:39 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat

[2010/08/15 02:05:39 | 000,294,912 | ---- | C] () -- C:\WINDOWS\System32\ATIODE.exe

[2010/08/15 02:05:39 | 000,205,156 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat

[2010/08/15 02:05:39 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ATIODCLI.exe

[2010/08/15 02:05:39 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat

[2010/03/28 20:27:53 | 000,082,289 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini

[2009/12/18 11:58:28 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\Viveza2FC32.dll

[2009/10/11 15:10:26 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat

[2009/10/07 02:46:36 | 000,025,752 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPr2Mon.sys

[2009/10/07 02:23:08 | 000,013,584 | ---- | C] () -- C:\WINDOWS\System32\drivers\iKeyLFT2.dll

[2009/06/07 00:58:31 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\Work - Home

[2009/06/07 00:58:31 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\Pat-admin\Application Data\WebServer

[2009/06/07 00:58:31 | 000,000,012 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\Desktop Pictures

[2009/06/07 00:55:18 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLbx.DAT

[2009/05/21 21:16:46 | 000,004,212 | -H-- | C] () -- C:\WINDOWS\System32\zllictbl.dat

[2009/05/10 18:47:23 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLbz.DAT

[2009/04/04 11:44:13 | 000,000,041 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\.zreglib

[2009/04/03 23:51:29 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll

[2009/03/23 23:27:39 | 000,000,000 | ---- | C] () -- C:\WINDOWS\QuickInstall.INI

[2009/03/20 01:09:27 | 000,000,094 | ---- | C] () -- C:\WINDOWS\family.ini

[2009/03/16 20:28:58 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\OdiOlDVR.dll

[2009/03/16 20:28:58 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\OdiAPI.dll

[2009/02/27 13:17:01 | 000,003,840 | ---- | C] () -- C:\WINDOWS\System32\drivers\BANTExt.sys

[2009/02/27 01:11:14 | 000,005,120 | ---- | C] () -- C:\Documents and Settings\Pat-admin\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2009/02/24 22:23:12 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLdy.DAT

[2009/02/24 13:54:16 | 000,006,656 | ---- | C] () -- C:\WINDOWS\System32\CNMVS58.DLL

[2009/02/23 06:47:43 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI

[2009/02/23 06:44:29 | 003,778,456 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2009/02/23 04:31:28 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\drivers\nVivid.bin

[2009/02/23 04:31:28 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\drivers\nStandard.bin

[2009/02/23 04:31:28 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\drivers\nAsmedia.bin

[2009/02/23 04:31:28 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\drivers\nAdvanced.bin

[2009/02/23 04:31:27 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll

[2009/02/23 04:31:27 | 000,196,653 | ---- | C] () -- C:\WINDOWS\System32\drivers\aVivid.bin

[2009/02/23 04:31:27 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\drivers\aAdvanced.bin

[2009/02/23 04:31:27 | 000,196,582 | ---- | C] () -- C:\WINDOWS\System32\drivers\aStandard.bin

[2009/02/23 04:31:27 | 000,196,582 | ---- | C] () -- C:\WINDOWS\System32\drivers\aAsmedia.bin

[2009/02/23 04:31:27 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll

[2009/02/23 04:31:27 | 000,046,592 | ---- | C] () -- C:\WINDOWS\System32\asfrench.dll

[2009/02/23 04:31:27 | 000,046,080 | ---- | C] () -- C:\WINDOWS\System32\asrussian.dll

[2009/02/23 04:31:27 | 000,046,080 | ---- | C] () -- C:\WINDOWS\System32\asgerman.dll

[2009/02/23 04:31:27 | 000,046,080 | ---- | C] () -- C:\WINDOWS\System32\aseng.dll

[2009/02/23 04:31:27 | 000,045,568 | ---- | C] () -- C:\WINDOWS\System32\askorean.dll

[2009/02/23 04:31:27 | 000,045,568 | ---- | C] () -- C:\WINDOWS\System32\asjapan.dll

[2009/02/23 04:31:27 | 000,045,568 | ---- | C] () -- C:\WINDOWS\System32\aschs.dll

[2009/02/23 04:31:27 | 000,000,018 | ---- | C] () -- C:\WINDOWS\System32\atkid.ini

[2009/02/23 04:31:26 | 000,045,568 | ---- | C] () -- C:\WINDOWS\System32\ASCHT.dll

[2009/02/23 03:43:11 | 000,260,248 | ---- | C] () -- C:\WINDOWS\System32\QMO.dll

[2009/02/23 03:43:11 | 000,092,312 | ---- | C] () -- C:\WINDOWS\System32\QMOCameraDll.dll

[2009/02/23 01:45:42 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat

[2009/02/22 12:50:57 | 000,024,576 | R--- | C] () -- C:\WINDOWS\System32\AsIO.dll

[2009/02/22 12:50:57 | 000,012,400 | R--- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys

[2009/02/22 12:50:55 | 000,011,832 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp64.sys

[2009/02/22 12:50:55 | 000,010,216 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp32.sys

[2009/02/22 12:42:13 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys

[2009/02/22 12:42:05 | 000,029,180 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini

[2009/02/22 12:42:05 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS

[2009/02/22 11:37:46 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat

[2009/02/22 11:33:37 | 000,021,892 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat

[2008/05/09 18:08:32 | 000,000,995 | ---- | C] () -- C:\Documents and Settings\Pat-admin\Local Settings\Application Data\bmarchive.bms

[2008/04/14 14:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin

[2008/04/14 14:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat

[2008/04/14 14:00:00 | 000,504,006 | ---- | C] () -- C:\WINDOWS\System32\perfh00C.dat

[2008/04/14 14:00:00 | 000,435,704 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat

[2008/04/14 14:00:00 | 000,322,810 | ---- | C] () -- C:\WINDOWS\System32\perfi00C.dat

[2008/04/14 14:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat

[2008/04/14 14:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat

[2008/04/14 14:00:00 | 000,081,774 | ---- | C] () -- C:\WINDOWS\System32\perfc00C.dat

[2008/04/14 14:00:00 | 000,068,408 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat

[2008/04/14 14:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin

[2008/04/14 14:00:00 | 000,034,108 | ---- | C] () -- C:\WINDOWS\System32\perfd00C.dat

[2008/04/14 14:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat

[2008/04/14 14:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat

[2008/04/14 14:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat

[2008/04/14 14:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin

[2008/04/14 14:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat

[2007/03/20 19:16:12 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\ASDR.exe

[2007/02/13 19:16:04 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\drivers\Spyder2.sys

[2006/03/06 11:41:02 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\AMV_DecDLL.dll

[2004/10/11 13:19:00 | 000,092,672 | ---- | C] () -- C:\WINDOWS\System32\ASUSASV2.DLL

[2004/09/16 14:26:40 | 000,012,634 | ---- | C] () -- C:\WINDOWS\System32\drivers\ADFUUD.SYS

[2004/09/16 14:26:40 | 000,012,634 | ---- | C] () -- C:\WINDOWS\ADFUUD.SYS

[2004/07/10 20:55:38 | 000,252,416 | ---- | C] () -- C:\WINDOWS\System32\wsiShared.dll

[1996/04/03 21:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

 

========== Alternate Data Streams ==========

 

@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\All Users\Documents\test2.txt:SummaryInformation

@Alternate Data Stream - 140 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8CE646EE

@Alternate Data Stream - 1190 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:Bx5k1wsubtgZUmf9LlQGwFMEqJGnT

@Alternate Data Stream - 1034 bytes -> C:\Program Files\Fichiers communs\System:Uo2AHWFkvddMwoVQaLB8yF

@Alternate Data Stream - 1025 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:McNYHDyd9ZViID54V6M5NJQ7Mujev

@Alternate Data Stream - 1021 bytes -> C:\Program Files\Fichiers communs\System:PVCJausQNS3n3qUvj4hC01dmJajW

@Alternate Data Stream - 1001 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:lar6WI5lOSGnGAUb5VT65FDrKA

 

< End of report >

[patcar06]

Et enfin une copie d'écran du message d'erreur:

 

Lien CJoint.com 0GztGfH0yTX

[lance_yien]

TDSSKiller ne montre pas d'infection.

 

>>> OTL: Fermer toute s les applications et fenêtres en cours et désactiver les programmes de protection (antivirus etc...) puis lancer OTL.

Copier la liste suivante (commençant par :OTL) et la coller dans l'espace sous "Personnalisation" (les : au début et le ] à la fin sont très important, merci de vérifier).

 

:OTL

O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files\Fichiers communs\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)

O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)

O4 - HKLM..\Run: [switchBoard] C:\Program Files\Fichiers communs\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)

O4 - HKCU..\Run: [pdfSaver3] C:\Program Files\Tracker Software\PDF-XChange 3\pdfSaver\pdfSaver3.exe (Tracker Software Products Ltd.)

O4 - Startup: C:\Documents and Settings\Pat-admin\Menu Démarrer\Programmes\Démarrage\MRU-Blaster Silent Clean.lnk = C:\Program Files\MRU-Blaster\mrublaster.exe ()

O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present

O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present

 

:Services

 

:Reg

 

:Files

 

:Commands

[REBOOT]

Cliquer sur le bouton rouge Correction et laisser faire.

Si un ou plusieurs fichiers ne peuvent pas être supprimés normalement, le programme demandera de redémarrer la machine pour finir le processus, cliquer sur Oui.

A la fin un rapport s'ouvre dans le bloc-note. Copier son contenu et le coller dans une nouvelle réponse. Fermer le rapport et OTL.

Redémarrer la machine (même si c'est une deuxième fois) et vérifier.

 

Si le message est toujours présent, télécharger sur le Bureau SystemLook (par jpshortstuff) depuis ici ou ici.

Double-cliquer sur SystemLook.exe et y copier/ coller le texte suivant (commençant par :filefind).

 

:filefind
*boottson*
:regfind
boottson

 

Cliquer sur le bouton Look et attendre que l'analyse se termine.

A la fin, un rapport s'ouvre dans le bloc-note et sera enregistré sur le Bureau sous le nom de "SystemLook.txt". Copier/ coller son contenu dans la prochaine réponse.

 

 

Rapports demandés:

- OTL.txt

- SystemLook.txt

[patcar06]

========== OTL ==========

Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeCS5ServiceManager not found.

File C:\Program Files\Fichiers communs\Adobe\CS5ServiceManager\CS5ServiceManager.exe not found.

Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ArcSoft Connection Service not found.

File C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACDaemon.exe not found.

Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SwitchBoard not found.

File C:\Program Files\Fichiers communs\Adobe\SwitchBoard\SwitchBoard.exe not found.

Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\pdfSaver3 not found.

File C:\Program Files\Tracker Software\PDF-XChange 3\pdfSaver\pdfSaver3.exe not found.

File move failed. C:\Documents and Settings\Pat-admin\Menu Démarrer\Programmes\Démarrage\MRU-Blaster Silent Clean.lnk scheduled to be moved on reboot.

File C:\Program Files\MRU-Blaster\mrublaster.exe not found.

Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ not found.

Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ not found.

========== SERVICES/DRIVERS ==========

========== REGISTRY ==========

========== FILES ==========

========== COMMANDS ==========

 

OTL by OldTimer - Version 3.2.26.1 log created on 07252011_212905

 

Files\Folders moved on Reboot...

File\Folder C:\Documents and Settings\Pat-admin\Menu Démarrer\Programmes\Démarrage\MRU-Blaster Silent Clean.lnk not found!

 

Registry entries deleted on Reboot...

[patcar06]

J'ai toujours mon message d'erreur en redémarrant, j'ai donc lancé SystemLook mais que ce soit sous mon compte utilisateur ou administrateur j'ai ce message:

 

SystemLook.exe a rencontré un problème et doit fermer. Nous vous prions de nous excuser pour le désagrément encouru.

 

Voici quand même le fichier SystemLook.txt

 

SystemLook 04.09.10 by jpshortstuff

Log created at 21:53 on 25/07/2011 by Pat-admin

Administrator - Elevation successful

 

========== filefind ==========

 

Searching for "*boottson*"

No files found.

 

========== regfind ==========

 

Searching for "boottson"